diff options
Diffstat (limited to 'src/nu_server.c')
| -rwxr-xr-x | src/nu_server.c | 131 |
1 files changed, 80 insertions, 51 deletions
diff --git a/src/nu_server.c b/src/nu_server.c index ddd555e..d79967c 100755 --- a/src/nu_server.c +++ b/src/nu_server.c | |||
| @@ -32,30 +32,58 @@ static void netbios_read( SMB_HEADER **buf) { | |||
| 32 | bailout( "Short read." ); | 32 | bailout( "Short read." ); |
| 33 | } | 33 | } |
| 34 | 34 | ||
| 35 | static void netbios_write( SMB_COMMAND cmd, | 35 | static void netbios_write( SMB_HEADER *buf, |
| 36 | SMB_HEADER *buf, | 36 | SMB_DATA *data, |
| 37 | SMB_PARAMS *buf2, | 37 | int datacount ) { |
| 38 | SMB_BYTES *buf3 ) { | 38 | struct iovec iov[1 + 2 * SMB_MAXREQUEST] = { {buf , sizeof(SMB_HEADER) } }; |
| 39 | BYTE buf_[4] = { 0, 0, 0, 0 }; | 39 | int i, sizeout = sizeof( SMB_HEADER ); |
| 40 | if(!buf2 ) buf2 = (SMB_PARAMS*)buf_; | 40 | |
| 41 | if(!buf3 ) buf3 = (SMB_BYTES*)buf_; | 41 | for( i=0; i < datacount; ++i ) |
| 42 | 42 | iov[1+2*i].iov_base = data[i].params, | |
| 43 | struct iovec iov[16] = { {buf , sizeof(SMB_HEADER) }, | 43 | sizeout += iov[1+2*i].iov_len = 1 + data[i].params->WordCount * 2, |
| 44 | {buf2, 1 + buf2->WordCount * 2}, | 44 | iov[2+2*i].iov_base = data[i].bytes, |
| 45 | {buf3, 2 + buf3->ByteCount } }; | 45 | sizeout += iov[2+2*i].iov_len = 2 + data[i].bytes->ByteCount; |
| 46 | 46 | ||
| 47 | buf->netbios_command = cmd; | 47 | buf->netbios_command = buf->netbios_flags = 0; |
| 48 | buf->netbios_flags = 0; | 48 | buf->netbios_size = htons( sizeout ); |
| 49 | buf->netbios_size = htons( sizeof(SMB_HEADER) - 4 + | ||
| 50 | 1 + buf2->WordCount * 2 + | ||
| 51 | 2 + buf3->ByteCount ); | ||
| 52 | buf->Flags = 0x88; | 49 | buf->Flags = 0x88; |
| 53 | buf->Flags2 = 0x4001; | 50 | buf->Flags2 = 0x4001; |
| 54 | 51 | ||
| 55 | if( writev( childsock, iov, 3 ) < htons( buf->netbios_size ) + 4 ) | 52 | if( writev( childsock, iov, 1 + 2 * datacount ) < sizeout + 4 ) |
| 56 | bailout( "Write failed." ); | 53 | bailout( "Write failed." ); |
| 57 | } | 54 | } |
| 58 | 55 | ||
| 56 | static const BYTE SMB_COM_NEGOTIATE_bytes[] = { 8,0,0x67,0x61,0x74,0x6c,0x69,0x6e,0x67,0 }; | ||
| 57 | static WORD SMB_COM_NEGOTIATE_params[] = { | ||
| 58 | 0x0511, 0x0000, 0x0001, 0x0001, 0x0000, 0x0100, 0x0000, 0x0100, 0x0000, | ||
| 59 | 0x0000, 0xC049, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000 }; | ||
| 60 | |||
| 61 | static SMB_STATUS handle_SMB_COM_NEGOTIATE( SMB_DATA *data ) { | ||
| 62 | struct timeval t; gettimeofday( &t, NULL ); | ||
| 63 | SMB_COM_NEGOTIATE_params[8] = getpid(); | ||
| 64 | SMB_COM_NEGOTIATE_params[9] = getppid(); | ||
| 65 | *(QWORD*)(SMB_COM_NEGOTIATE_params+12) = getnttime( &t ); | ||
| 66 | |||
| 67 | data->params = SMB_COM_NEGOTIATE_bytes; data->bytes = SMB_COM_NEGOTIATE_params; | ||
| 68 | return STATUS_SUCCESS; | ||
| 69 | } | ||
| 70 | |||
| 71 | static const BYTE SMB_SESSION_SETUP_ANDX_bytes[] = { | ||
| 72 | 19,0,'O','S',0,'g','a','t','l','i','n','g',0,'g','a','t','l','i','n','g',0}; | ||
| 73 | static BYTE SMB_SESSION_SETUP_ANDX_params[] = { 4, 0, 0, 23, 0, 1, 0, 0, 0 }; | ||
| 74 | |||
| 75 | static SMB_STATUS handle_SMB_SESSION_SETUP_ANDX( SMB_DATA *data ) { | ||
| 76 | data->params = SMB_SESSION_SETUP_ANDX_bytes; data->bytes = SMB_SESSION_SETUP_ANDX_params; | ||
| 77 | return STATUS_SUCCESS; | ||
| 78 | } | ||
| 79 | |||
| 80 | static‰int command_handler_match( const void *a, const void *b ) { return *(BYTE*)a - *(BYTE*)b; } | ||
| 81 | static SMB_COMMAND_HANDLER command_handler[] = { | ||
| 82 | { { SMB_COM_NEGOTIATE, 0x00, handle_SMB_COM_NEGOTIATE }, | ||
| 83 | { SMB_COM_SESSION_SETUP_ANDX, 0x01, handle_SMB_COM_SESSION_SETUP_ANDX } | ||
| 84 | } | ||
| 85 | }; | ||
| 86 | |||
| 59 | static void child( ) { | 87 | static void child( ) { |
| 60 | SMB_HEADER *inpacket = NULL; | 88 | SMB_HEADER *inpacket = NULL; |
| 61 | 89 | ||
| @@ -69,6 +97,12 @@ static void child( ) { | |||
| 69 | write( childsock, inpacket, 4); | 97 | write( childsock, inpacket, 4); |
| 70 | 98 | ||
| 71 | while( 1 ) { | 99 | while( 1 ) { |
| 100 | SMB_COMMAND cmd; | ||
| 101 | SMB_DATA requests[ 1 + SMB_MAXREQUESTS ]; | ||
| 102 | SMB_STATUS status = STATUS_SUCCESS; | ||
| 103 | WORD sizeout = sizeof( SMB_HEADER ); | ||
| 104 | int num_requests = 0; | ||
| 105 | |||
| 72 | netbios_read( &inpacket ); | 106 | netbios_read( &inpacket ); |
| 73 | 107 | ||
| 74 | if( inpacket->netbios_command != 0 ) | 108 | if( inpacket->netbios_command != 0 ) |
| @@ -76,46 +110,41 @@ static void child( ) { | |||
| 76 | if( inpacket->Protocol != SMB_HEADER_PROTOCOL_MAGIC ) | 110 | if( inpacket->Protocol != SMB_HEADER_PROTOCOL_MAGIC ) |
| 77 | bailout( "Protocol identifier mismatch"); | 111 | bailout( "Protocol identifier mismatch"); |
| 78 | 112 | ||
| 79 | switch( inpacket->Command ) { | 113 | cmd = inpacket->Command; |
| 80 | case SMB_COM_NEGOTIATE: | 114 | requests[ 0 ].params = (SMB_PARAMS*)(inpacket+1); |
| 81 | { | 115 | |
| 82 | const BYTE bytes[] = { 8,0,0x67,0x61,0x74,0x6c,0x69,0x6e,0x67,0 }; | 116 | while( (status == STATUS_SUCCESS) && (cmd != 0xff) ) { |
| 83 | WORD params[] = { 0x0511, 0x0000, 0x0001, 0x0001, 0x0000, 0x0100, | 117 | SMB_COMMAND_HANDLER *handler = (SMB_COMMAND_HANDLER*)bsearch( cmd, command_handler, |
| 84 | 0x0000, 0x0100, 0x0000, 0x0000, 0xC049, 0x0000, | 118 | sizeof(command_handler)/sizeof(*command_handler), sizeof(*command_handler), command_handler_match); |
| 85 | 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000 }; | 119 | |
| 86 | struct timeval t; gettimeofday( &t, NULL ); | 120 | requests[ num_request ].bytes = 2 + *((WORD*)requests[ num_request ].params) + (BYTE*)requests[ num_request ].params; |
| 87 | 121 | if( handler ) { | |
| 88 | *(DWORD*)&inpacket->Status = STATUS_SUCCESS; | 122 | if( handler->flags & SMB_COMMAND_FLAG_ANDX ) { |
| 89 | params[8] = getpid(); params[9] = getppid(); | 123 | cmd = ((BYTE*)requests[ num_requests ].params)[3]; |
| 90 | *(QWORD*)¶ms[12] = getnttime( &t ); | 124 | requests[ num_requests+1 ].params = ((BYTE*)inpacket) + ((WORD*)requests[ num_requests ].params)[2]; |
| 91 | netbios_write( 0, inpacket, (SMB_PARAMS*)params, (SMB_BYTES*)bytes); | 125 | } |
| 92 | break; | 126 | |
| 93 | } | 127 | status = handler->handler( &requests( num_requests ) ); |
| 94 | /* case SMB_COM_SESSION_SETUP_ANDX: | 128 | |
| 95 | { | 129 | if( (status == STATUS_SUCCESS) && (handler->flags & SMB_COMMAND_FLAG_ANDX) ) { |
| 96 | const BYTE bytes[] = { 19, 0, 'O', 'S', 0, 'g', 'a', 't', 'l', | 130 | sizeout += 3 + 2 * requests[ num_requests ].params->WordCount + requests[ num_requests ].bytes->ByteCount; |
| 97 | 'i', 'n', 'g', 0, 'g', 'a', 't', 'l', 'i', | 131 | ((WORD*)requests[ num_requests ].params)[2] = sizeout; |
| 98 | 'n', 'g', 0}; | 132 | ((BYTE*)requests[ num_requests ].params)[3] = cmd; |
| 99 | BYTE params[] = { 4, 0, 0, 23, 0, 1, 0, 0, 0 }; | 133 | } |
| 100 | 134 | num_requests++; | |
| 101 | } */ | 135 | } else |
| 102 | default: | 136 | status = 0x00400002; |
| 103 | { | ||
| 104 | fprintf( stderr, "Got message: %02X\n", inpacket->Command ); | ||
| 105 | *(DWORD*)&inpacket->Status = 0x00400002; | ||
| 106 | netbios_write( 0, inpacket, NULL, NULL ); | ||
| 107 | break; | ||
| 108 | } | ||
| 109 | } | 137 | } |
| 110 | 138 | ||
| 139 | memcpy( inpacket->status, &status, 4 ); /* not aligned, maybe we might do a store DWORD on x86 */ | ||
| 140 | netbios_write( inpacket, requests, num_requests ); | ||
| 111 | } /* End main loop */ | 141 | } /* End main loop */ |
| 112 | } | 142 | } |
| 113 | 143 | ||
| 114 | int main() | 144 | int main() { |
| 115 | { | ||
| 116 | struct sockaddr_in sa; | 145 | struct sockaddr_in sa; |
| 117 | int l=1; | 146 | int l=1; |
| 118 | 147 | ||
| 119 | signal( SIGINT, sigint); | 148 | signal( SIGINT, sigint); |
| 120 | 149 | ||
| 121 | bzero( &sa, sizeof( sa)); | 150 | bzero( &sa, sizeof( sa)); |