svn commit: samba r11650 - in branches/SAMBA_4_0/source/smb_server: .

Thu, 10 Nov 2005 08:16:41 -0800 

Author: metze
Date: 2005-11-10 16:16:09 +0000 (Thu, 10 Nov 2005)
New Revision: 11650

WebSVN: 
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=11650

Log:
- as every call that goes down to the ntvfs layer need a valid tcon and session
  ntcancel also needs to have AS_USER
- move the SIGNING_NO_REPLY logic as global option, because this needs to be set
  for the error replies too.
- as we currently don't know how to generate signatures for ntcancel replies
  we just skip the sending of the reply 
- w2k3 first checks the VUID and then the TID, so we do now
- ntcreateX also uses ERRbaduid when getting a wrong VUID

metze
Modified:
   branches/SAMBA_4_0/source/smb_server/reply.c
   branches/SAMBA_4_0/source/smb_server/smb_server.c


Changeset:
Modified: branches/SAMBA_4_0/source/smb_server/reply.c
===================================================================
--- branches/SAMBA_4_0/source/smb_server/reply.c        2005-11-10 16:09:44 UTC 
(rev 11649)
+++ branches/SAMBA_4_0/source/smb_server/reply.c        2005-11-10 16:16:09 UTC 
(rev 11650)
@@ -2335,7 +2335,6 @@
 void reply_ntcancel(struct smbsrv_request *req)
 {
        /* NOTE: this request does not generate a reply */
-       req_signing_no_reply(req);
        ntvfs_cancel(req);
        req_destroy(req);
 }

Modified: branches/SAMBA_4_0/source/smb_server/smb_server.c
===================================================================
--- branches/SAMBA_4_0/source/smb_server/smb_server.c   2005-11-10 16:09:44 UTC 
(rev 11649)
+++ branches/SAMBA_4_0/source/smb_server/smb_server.c   2005-11-10 16:16:09 UTC 
(rev 11650)
@@ -114,6 +114,7 @@
   These flags determine some of the permissions required to do an operation 
 */
 #define AS_USER (1<<0)
+#define SIGNING_NO_REPLY (1<<1)
 
 /* 
    define a list of possible SMB messages and their corresponding
@@ -291,7 +292,7 @@
 /* 0xa1 */ { "SMBnttranss", reply_nttranss, AS_USER},
 /* 0xa2 */ { "SMBntcreateX", reply_ntcreate_and_X, AS_USER},
 /* 0xa3 */ { NULL, NULL, 0 },
-/* 0xa4 */ { "SMBntcancel", reply_ntcancel, 0},
+/* 0xa4 */ { "SMBntcancel", reply_ntcancel, AS_USER|SIGNING_NO_REPLY},
 /* 0xa5 */ { "SMBntrename", reply_ntrename, AS_USER},
 /* 0xa6 */ { NULL, NULL, 0 },
 /* 0xa7 */ { NULL, NULL, 0 },
@@ -411,6 +412,7 @@
        int flags;
        struct smbsrv_connection *smb_conn = req->smb_conn;
        uint16_t session_tag;
+       NTSTATUS status;
 
        type &= 0xff;
 
@@ -448,23 +450,64 @@
 
        DEBUG(3,("switch message %s (task_id %d)\n",smb_fn_name(type), 
req->smb_conn->connection->server_id));
 
-       /* does this protocol need a valid tree connection? */
-       if ((flags & AS_USER) && !req->tcon) {
+       /* this must be called before we do any reply */
+       if (flags & SIGNING_NO_REPLY) {
+               req_signing_no_reply(req);
+       }
+
+       /* see if the vuid is valid */
+       if ((flags & AS_USER) && !req->session) {
                /* amazingly, the error code depends on the command */
                switch (type) {
                        case SMBntcreateX:
-                               req_reply_error(req, NT_STATUS_DOS(ERRSRV, 
ERRinvnid));
+                       case SMBntcancel:
+                               status = NT_STATUS_DOS(ERRSRV, ERRbaduid);
                                break;
                        default:
-                               req_reply_error(req, NT_STATUS_INVALID_HANDLE);
+                               status = NT_STATUS_INVALID_HANDLE;
                                break;
                }
+               /* 
+                * TODO:
+                * don't know how to handle smb signing for this case 
+                * so just skip the reply
+                */
+               if ((flags & SIGNING_NO_REPLY) &&
+                   (req->smb_conn->signing.signing_state != 
SMB_SIGNING_ENGINE_OFF)) {
+                       DEBUG(1,("SKIP ERROR REPLY: %s %s because of unknown 
smb signing case\n",
+                               smb_fn_name(type), nt_errstr(status)));
+                       req_destroy(req);
+                       return;
+               }
+               req_reply_error(req, status);
                return;
        }
 
-       /* see if the vuid is valid */
-       if ((flags & AS_USER) && !req->session) {
-               req_reply_error(req, NT_STATUS_INVALID_HANDLE);
+       /* does this protocol need a valid tree connection? */
+       if ((flags & AS_USER) && !req->tcon) {
+               /* amazingly, the error code depends on the command */
+               switch (type) {
+                       case SMBntcreateX:
+                       case SMBntcancel:
+                               status = NT_STATUS_DOS(ERRSRV, ERRinvnid);
+                               break;
+                       default:
+                               status = NT_STATUS_INVALID_HANDLE;
+                               break;
+               }
+               /* 
+                * TODO:
+                * don't know how to handle smb signing for this case 
+                * so just skip the reply
+                */
+               if ((flags & SIGNING_NO_REPLY) &&
+                   (req->smb_conn->signing.signing_state != 
SMB_SIGNING_ENGINE_OFF)) {
+                       DEBUG(1,("SKIP ERROR REPLY: %s %s because of unknown 
smb signing case\n",
+                               smb_fn_name(type), nt_errstr(status)));
+                       req_destroy(req);
+                       return;
+               }
+               req_reply_error(req, status);
                return;
        }

Reply via email to