1 /* 2 * Copyright (c) 2000-2001 Boris Popov 3 * All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 3. All advertising materials mentioning features or use of this software 14 * must display the following acknowledgement: 15 * This product includes software developed by Boris Popov. 16 * 4. Neither the name of the author nor the names of any co-contributors 17 * may be used to endorse or promote products derived from this software 18 * without specific prior written permission. 19 * 20 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 23 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 30 * SUCH DAMAGE. 31 * 32 * $FreeBSD$ 33 */ 34 #include <sys/param.h> 35 #include <sys/systm.h> 36 #include <sys/kernel.h> 37 #include <sys/malloc.h> 38 #include <sys/mbuf.h> 39 #include <sys/proc.h> 40 #include <sys/protosw.h> 41 #include <sys/socket.h> 42 #include <sys/socketvar.h> 43 #include <sys/poll.h> 44 #include <sys/uio.h> 45 #include <sys/sysctl.h> 46 #include <sys/condvar.h> 47 48 #include <net/if.h> 49 #include <net/route.h> 50 51 #include <netinet/in.h> 52 #include <netinet/tcp.h> 53 54 #include <sys/mchain.h> 55 56 #include <netsmb/netbios.h> 57 58 #include <netsmb/smb.h> 59 #include <netsmb/smb_conn.h> 60 #include <netsmb/smb_tran.h> 61 #include <netsmb/smb_trantcp.h> 62 #include <netsmb/smb_subr.h> 63 64 #define M_NBDATA M_PCB 65 66 static int smb_tcpsndbuf = 10 * 1024; 67 static int smb_tcprcvbuf = 10 * 1024; 68 69 SYSCTL_DECL(_net_smb); 70 SYSCTL_INT(_net_smb, OID_AUTO, tcpsndbuf, CTLFLAG_RW, &smb_tcpsndbuf, 0, ""); 71 SYSCTL_INT(_net_smb, OID_AUTO, tcprcvbuf, CTLFLAG_RW, &smb_tcprcvbuf, 0, ""); 72 73 #define nb_sosend(so,m,flags,td) (so)->so_proto->pr_usrreqs->pru_sosend( \ 74 so, NULL, 0, m, 0, flags, td) 75 76 static int nbssn_recv(struct nbpcb *nbp, struct mbuf **mpp, int *lenp, 77 u_int8_t *rpcodep, struct thread *td); 78 static int smb_nbst_disconnect(struct smb_vc *vcp, struct thread *td); 79 80 static int 81 nb_setsockopt_int(struct socket *so, int level, int name, int val) 82 { 83 struct sockopt sopt; 84 85 bzero(&sopt, sizeof(sopt)); 86 sopt.sopt_level = level; 87 sopt.sopt_name = name; 88 sopt.sopt_val = &val; 89 sopt.sopt_valsize = sizeof(val); 90 return sosetopt(so, &sopt); 91 } 92 93 static __inline int 94 nb_poll(struct nbpcb *nbp, int events, struct thread *td) 95 { 96 return nbp->nbp_tso->so_proto->pr_usrreqs->pru_sopoll(nbp->nbp_tso, 97 events, NULL, td); 98 } 99 100 static int 101 nbssn_rselect(struct nbpcb *nbp, struct timeval *tv, int events, 102 struct thread *td) 103 { 104 struct timeval atv, rtv, ttv; 105 int ncoll, timo, error; 106 107 if (tv) { 108 atv = *tv; 109 if (itimerfix(&atv)) { 110 error = EINVAL; 111 goto done_noproclock; 112 } 113 getmicrouptime(&rtv); 114 timevaladd(&atv, &rtv); 115 } 116 timo = 0; 117 mtx_lock(&sellock); 118 retry: 119 120 ncoll = nselcoll; 121 mtx_lock_spin(&sched_lock); 122 td->td_flags |= TDF_SELECT; 123 mtx_unlock_spin(&sched_lock); 124 mtx_unlock(&sellock); 125 error = nb_poll(nbp, events, td); 126 mtx_lock(&sellock); 127 if (error) { 128 error = 0; 129 goto done; 130 } 131 if (tv) { 132 getmicrouptime(&rtv); 133 if (timevalcmp(&rtv, &atv, >=)) 134 goto done; 135 ttv = atv; 136 timevalsub(&ttv, &rtv); 137 timo = tvtohz(&ttv); 138 } 139 /* 140 * An event of our interest may occur during locking a process. 141 * In order to avoid missing the event that occurred during locking 142 * the process, test P_SELECT and rescan file descriptors if 143 * necessary. 144 */ 145 mtx_lock_spin(&sched_lock); 146 if ((td->td_flags & TDF_SELECT) == 0 || nselcoll != ncoll) { 147 mtx_unlock_spin(&sched_lock); 148 goto retry; 149 } 150 mtx_unlock_spin(&sched_lock); 151 152 if (timo > 0) 153 error = cv_timedwait(&selwait, &sellock, timo); 154 else { 155 cv_wait(&selwait, &sellock); 156 error = 0; 157 } 158 159 done: 160 clear_selinfo_list(td); 161 162 mtx_lock_spin(&sched_lock); 163 td->td_flags &= ~TDF_SELECT; 164 mtx_unlock_spin(&sched_lock); 165 mtx_unlock(&sellock); 166 167 done_noproclock: 168 if (error == ERESTART) 169 return 0; 170 return error; 171 } 172 173 static int 174 nb_intr(struct nbpcb *nbp, struct proc *p) 175 { 176 return 0; 177 } 178 179 static void 180 nb_upcall(struct socket *so, void *arg, int waitflag) 181 { 182 struct nbpcb *nbp = arg; 183 184 if (arg == NULL || nbp->nbp_selectid == NULL) 185 return; 186 wakeup(nbp->nbp_selectid); 187 } 188 189 static int 190 nb_sethdr(struct mbuf *m, u_int8_t type, u_int32_t len) 191 { 192 u_int32_t *p = mtod(m, u_int32_t *); 193 194 *p = htonl((len & 0x1FFFF) | (type << 24)); 195 return 0; 196 } 197 198 static int 199 nb_put_name(struct mbchain *mbp, struct sockaddr_nb *snb) 200 { 201 int error; 202 u_char seglen, *cp; 203 204 cp = snb->snb_name; 205 if (*cp == 0) 206 return EINVAL; 207 NBDEBUG("[%s]\n", cp); 208 for (;;) { 209 seglen = (*cp) + 1; 210 error = mb_put_mem(mbp, cp, seglen, MB_MSYSTEM); 211 if (error) 212 return error; 213 if (seglen == 1) 214 break; 215 cp += seglen; 216 } 217 return 0; 218 } 219 220 static int 221 nb_connect_in(struct nbpcb *nbp, struct sockaddr_in *to, struct thread *td) 222 { 223 struct socket *so; 224 int error, s; 225 226 error = socreate(AF_INET, &so, SOCK_STREAM, IPPROTO_TCP, 227 td->td_ucred, td); 228 if (error) 229 return error; 230 nbp->nbp_tso = so; 231 so->so_upcallarg = (caddr_t)nbp; 232 so->so_upcall = nb_upcall; 233 so->so_rcv.sb_flags |= SB_UPCALL; 234 so->so_rcv.sb_timeo = (5 * hz); 235 so->so_snd.sb_timeo = (5 * hz); 236 error = soreserve(so, nbp->nbp_sndbuf, nbp->nbp_rcvbuf); 237 if (error) 238 goto bad; 239 nb_setsockopt_int(so, SOL_SOCKET, SO_KEEPALIVE, 1); 240 nb_setsockopt_int(so, IPPROTO_TCP, TCP_NODELAY, 1); 241 so->so_rcv.sb_flags &= ~SB_NOINTR; 242 so->so_snd.sb_flags &= ~SB_NOINTR; 243 error = soconnect(so, (struct sockaddr*)to, td); 244 if (error) 245 goto bad; 246 s = splnet(); 247 while ((so->so_state & SS_ISCONNECTING) && so->so_error == 0) { 248 tsleep(&so->so_timeo, PSOCK, "nbcon", 2 * hz); 249 if ((so->so_state & SS_ISCONNECTING) && so->so_error == 0 && 250 (error = nb_intr(nbp, td->td_proc)) != 0) { 251 so->so_state &= ~SS_ISCONNECTING; 252 splx(s); 253 goto bad; 254 } 255 } 256 if (so->so_error) { 257 error = so->so_error; 258 so->so_error = 0; 259 splx(s); 260 goto bad; 261 } 262 splx(s); 263 return 0; 264 bad: 265 smb_nbst_disconnect(nbp->nbp_vc, td); 266 return error; 267 } 268 269 static int 270 nbssn_rq_request(struct nbpcb *nbp, struct thread *td) 271 { 272 struct mbchain mb, *mbp = &mb; 273 struct mdchain md, *mdp = &md; 274 struct mbuf *m0; 275 struct timeval tv; 276 struct sockaddr_in sin; 277 u_short port; 278 u_int8_t rpcode; 279 int error, rplen; 280 281 error = mb_init(mbp); 282 if (error) 283 return error; 284 mb_put_uint32le(mbp, 0); 285 nb_put_name(mbp, nbp->nbp_paddr); 286 nb_put_name(mbp, nbp->nbp_laddr); 287 nb_sethdr(mbp->mb_top, NB_SSN_REQUEST, mb_fixhdr(mbp) - 4); 288 error = nb_sosend(nbp->nbp_tso, mbp->mb_top, 0, td); 289 if (!error) { 290 nbp->nbp_state = NBST_RQSENT; 291 } 292 mb_detach(mbp); 293 mb_done(mbp); 294 if (error) 295 return error; 296 TIMESPEC_TO_TIMEVAL(&tv, &nbp->nbp_timo); 297 error = nbssn_rselect(nbp, &tv, POLLIN, td); 298 if (error == EWOULDBLOCK) { /* Timeout */ 299 NBDEBUG("initial request timeout\n"); 300 return ETIMEDOUT; 301 } 302 if (error) /* restart or interrupt */ 303 return error; 304 error = nbssn_recv(nbp, &m0, &rplen, &rpcode, td); 305 if (error) { 306 NBDEBUG("recv() error %d\n", error); 307 return error; 308 } 309 /* 310 * Process NETBIOS reply 311 */ 312 if (m0) 313 md_initm(mdp, m0); 314 error = 0; 315 do { 316 if (rpcode == NB_SSN_POSRESP) { 317 nbp->nbp_state = NBST_SESSION; 318 nbp->nbp_flags |= NBF_CONNECTED; 319 break; 320 } 321 if (rpcode != NB_SSN_RTGRESP) { 322 error = ECONNABORTED; 323 break; 324 } 325 if (rplen != 6) { 326 error = ECONNABORTED; 327 break; 328 } 329 md_get_mem(mdp, (caddr_t)&sin.sin_addr, 4, MB_MSYSTEM); 330 md_get_uint16(mdp, &port); 331 sin.sin_port = port; 332 nbp->nbp_state = NBST_RETARGET; 333 smb_nbst_disconnect(nbp->nbp_vc, td); 334 error = nb_connect_in(nbp, &sin, td); 335 if (!error) 336 error = nbssn_rq_request(nbp, td); 337 if (error) { 338 smb_nbst_disconnect(nbp->nbp_vc, td); 339 break; 340 } 341 } while(0); 342 if (m0) 343 md_done(mdp); 344 return error; 345 } 346 347 static int 348 nbssn_recvhdr(struct nbpcb *nbp, int *lenp, 349 u_int8_t *rpcodep, int flags, struct thread *td) 350 { 351 struct socket *so = nbp->nbp_tso; 352 struct uio auio; 353 struct iovec aio; 354 u_int32_t len; 355 int error; 356 357 aio.iov_base = (caddr_t)&len; 358 aio.iov_len = sizeof(len); 359 auio.uio_iov = &aio; 360 auio.uio_iovcnt = 1; 361 auio.uio_segflg = UIO_SYSSPACE; 362 auio.uio_rw = UIO_READ; 363 auio.uio_offset = 0; 364 auio.uio_resid = sizeof(len); 365 auio.uio_td = td; 366 error = so->so_proto->pr_usrreqs->pru_soreceive 367 (so, (struct sockaddr **)NULL, &auio, 368 (struct mbuf **)NULL, (struct mbuf **)NULL, &flags); 369 if (error) 370 return error; 371 if (auio.uio_resid > 0) { 372 SMBSDEBUG("short reply\n"); 373 return EPIPE; 374 } 375 len = ntohl(len); 376 *rpcodep = (len >> 24) & 0xFF; 377 len &= 0x1ffff; 378 if (len > SMB_MAXPKTLEN) { 379 SMBERROR("packet too long (%d)\n", len); 380 return EFBIG; 381 } 382 *lenp = len; 383 return 0; 384 } 385 386 static int 387 nbssn_recv(struct nbpcb *nbp, struct mbuf **mpp, int *lenp, 388 u_int8_t *rpcodep, struct thread *td) 389 { 390 struct socket *so = nbp->nbp_tso; 391 struct uio auio; 392 struct mbuf *m; 393 u_int8_t rpcode; 394 int len; 395 int error, rcvflg; 396 397 if (so == NULL) 398 return ENOTCONN; 399 400 if (mpp) 401 *mpp = NULL; 402 for(;;) { 403 m = NULL; 404 error = nbssn_recvhdr(nbp, &len, &rpcode, MSG_DONTWAIT, td); 405 if (so->so_state & 406 (SS_ISDISCONNECTING | SS_ISDISCONNECTED | SS_CANTRCVMORE)) { 407 nbp->nbp_state = NBST_CLOSED; 408 NBDEBUG("session closed by peer\n"); 409 return ECONNRESET; 410 } 411 if (error) 412 return error; 413 if (len == 0 && nbp->nbp_state != NBST_SESSION) 414 break; 415 if (rpcode == NB_SSN_KEEPALIVE) 416 continue; 417 bzero(&auio, sizeof(auio)); 418 auio.uio_resid = len; 419 auio.uio_td = td; 420 do { 421 rcvflg = MSG_WAITALL; 422 error = so->so_proto->pr_usrreqs->pru_soreceive 423 (so, (struct sockaddr **)NULL, 424 &auio, &m, (struct mbuf **)NULL, &rcvflg); 425 } while (error == EWOULDBLOCK || error == EINTR || 426 error == ERESTART); 427 if (error) 428 break; 429 if (auio.uio_resid > 0) { 430 SMBERROR("packet is shorter than expected\n"); 431 error = EPIPE; 432 break; 433 } 434 if (nbp->nbp_state == NBST_SESSION && 435 rpcode == NB_SSN_MESSAGE) 436 break; 437 NBDEBUG("non-session packet %x\n", rpcode); 438 if (m) 439 m_freem(m); 440 } 441 if (error) { 442 if (m) 443 m_freem(m); 444 return error; 445 } 446 if (mpp) 447 *mpp = m; 448 else 449 m_freem(m); 450 *lenp = len; 451 *rpcodep = rpcode; 452 return 0; 453 } 454 455 /* 456 * SMB transport interface 457 */ 458 static int 459 smb_nbst_create(struct smb_vc *vcp, struct thread *td) 460 { 461 struct nbpcb *nbp; 462 463 MALLOC(nbp, struct nbpcb *, sizeof *nbp, M_NBDATA, M_WAITOK); 464 bzero(nbp, sizeof *nbp); 465 nbp->nbp_timo.tv_sec = 15; /* XXX: sysctl ? */ 466 nbp->nbp_state = NBST_CLOSED; 467 nbp->nbp_vc = vcp; 468 nbp->nbp_sndbuf = smb_tcpsndbuf; 469 nbp->nbp_rcvbuf = smb_tcprcvbuf; 470 vcp->vc_tdata = nbp; 471 return 0; 472 } 473 474 static int 475 smb_nbst_done(struct smb_vc *vcp, struct thread *td) 476 { 477 struct nbpcb *nbp = vcp->vc_tdata; 478 479 if (nbp == NULL) 480 return ENOTCONN; 481 smb_nbst_disconnect(vcp, td); 482 if (nbp->nbp_laddr) 483 free(nbp->nbp_laddr, M_SONAME); 484 if (nbp->nbp_paddr) 485 free(nbp->nbp_paddr, M_SONAME); 486 free(nbp, M_NBDATA); 487 return 0; 488 } 489 490 static int 491 smb_nbst_bind(struct smb_vc *vcp, struct sockaddr *sap, struct thread *td) 492 { 493 struct nbpcb *nbp = vcp->vc_tdata; 494 struct sockaddr_nb *snb; 495 int error, slen; 496 497 NBDEBUG("\n"); 498 error = EINVAL; 499 do { 500 if (nbp->nbp_flags & NBF_LOCADDR) 501 break; 502 /* 503 * It is possible to create NETBIOS name in the kernel, 504 * but nothing prevents us to do it in the user space. 505 */ 506 if (sap == NULL) 507 break; 508 slen = sap->sa_len; 509 if (slen < NB_MINSALEN) 510 break; 511 snb = (struct sockaddr_nb*)dup_sockaddr(sap, 1); 512 if (snb == NULL) { 513 error = ENOMEM; 514 break; 515 } 516 nbp->nbp_laddr = snb; 517 nbp->nbp_flags |= NBF_LOCADDR; 518 error = 0; 519 } while(0); 520 return error; 521 } 522 523 static int 524 smb_nbst_connect(struct smb_vc *vcp, struct sockaddr *sap, struct thread *td) 525 { 526 struct nbpcb *nbp = vcp->vc_tdata; 527 struct sockaddr_in sin; 528 struct sockaddr_nb *snb; 529 struct timespec ts1, ts2; 530 int error, slen; 531 532 NBDEBUG("\n"); 533 if (nbp->nbp_tso != NULL) 534 return EISCONN; 535 if (nbp->nbp_laddr == NULL) 536 return EINVAL; 537 slen = sap->sa_len; 538 if (slen < NB_MINSALEN) 539 return EINVAL; 540 if (nbp->nbp_paddr) { 541 free(nbp->nbp_paddr, M_SONAME); 542 nbp->nbp_paddr = NULL; 543 } 544 snb = (struct sockaddr_nb*)dup_sockaddr(sap, 1); 545 if (snb == NULL) 546 return ENOMEM; 547 nbp->nbp_paddr = snb; 548 sin = snb->snb_addrin; 549 getnanotime(&ts1); 550 error = nb_connect_in(nbp, &sin, td); 551 if (error) 552 return error; 553 getnanotime(&ts2); 554 timespecsub(&ts2, &ts1); 555 if (ts2.tv_sec == 0 && ts2.tv_sec == 0) 556 ts2.tv_sec = 1; 557 nbp->nbp_timo = ts2; 558 timespecadd(&nbp->nbp_timo, &ts2); 559 timespecadd(&nbp->nbp_timo, &ts2); 560 timespecadd(&nbp->nbp_timo, &ts2); /* * 4 */ 561 error = nbssn_rq_request(nbp, td); 562 if (error) 563 smb_nbst_disconnect(vcp, td); 564 return error; 565 } 566 567 static int 568 smb_nbst_disconnect(struct smb_vc *vcp, struct thread *td) 569 { 570 struct nbpcb *nbp = vcp->vc_tdata; 571 struct socket *so; 572 573 if (nbp == NULL || nbp->nbp_tso == NULL) 574 return ENOTCONN; 575 if ((so = nbp->nbp_tso) != NULL) { 576 nbp->nbp_flags &= ~NBF_CONNECTED; 577 nbp->nbp_tso = (struct socket *)NULL; 578 soshutdown(so, 2); 579 soclose(so); 580 } 581 if (nbp->nbp_state != NBST_RETARGET) { 582 nbp->nbp_state = NBST_CLOSED; 583 } 584 return 0; 585 } 586 587 static int 588 smb_nbst_send(struct smb_vc *vcp, struct mbuf *m0, struct thread *td) 589 { 590 struct nbpcb *nbp = vcp->vc_tdata; 591 int error; 592 593 if (nbp->nbp_state != NBST_SESSION) { 594 error = ENOTCONN; 595 goto abort; 596 } 597 M_PREPEND(m0, 4, M_WAITOK); 598 if (m0 == NULL) 599 return ENOBUFS; 600 nb_sethdr(m0, NB_SSN_MESSAGE, m_fixhdr(m0) - 4); 601 error = nb_sosend(nbp->nbp_tso, m0, 0, td); 602 return error; 603 abort: 604 if (m0) 605 m_freem(m0); 606 return error; 607 } 608 609 610 static int 611 smb_nbst_recv(struct smb_vc *vcp, struct mbuf **mpp, struct thread *td) 612 { 613 struct nbpcb *nbp = vcp->vc_tdata; 614 u_int8_t rpcode; 615 int error, rplen; 616 617 nbp->nbp_flags |= NBF_RECVLOCK; 618 error = nbssn_recv(nbp, mpp, &rplen, &rpcode, td); 619 nbp->nbp_flags &= ~NBF_RECVLOCK; 620 return error; 621 } 622 623 static void 624 smb_nbst_timo(struct smb_vc *vcp) 625 { 626 return; 627 } 628 629 static void 630 smb_nbst_intr(struct smb_vc *vcp) 631 { 632 struct nbpcb *nbp = vcp->vc_tdata; 633 634 if (nbp == NULL || nbp->nbp_tso == NULL) 635 return; 636 sorwakeup(nbp->nbp_tso); 637 sowwakeup(nbp->nbp_tso); 638 } 639 640 static int 641 smb_nbst_getparam(struct smb_vc *vcp, int param, void *data) 642 { 643 struct nbpcb *nbp = vcp->vc_tdata; 644 645 switch (param) { 646 case SMBTP_SNDSZ: 647 *(int*)data = nbp->nbp_sndbuf; 648 break; 649 case SMBTP_RCVSZ: 650 *(int*)data = nbp->nbp_rcvbuf; 651 break; 652 case SMBTP_TIMEOUT: 653 *(struct timespec*)data = nbp->nbp_timo; 654 break; 655 default: 656 return EINVAL; 657 } 658 return 0; 659 } 660 661 static int 662 smb_nbst_setparam(struct smb_vc *vcp, int param, void *data) 663 { 664 struct nbpcb *nbp = vcp->vc_tdata; 665 666 switch (param) { 667 case SMBTP_SELECTID: 668 nbp->nbp_selectid = data; 669 break; 670 default: 671 return EINVAL; 672 } 673 return 0; 674 } 675 676 /* 677 * Check for fatal errors 678 */ 679 static int 680 smb_nbst_fatal(struct smb_vc *vcp, int error) 681 { 682 switch (error) { 683 case ENOTCONN: 684 case ENETRESET: 685 case ECONNABORTED: 686 return 1; 687 } 688 return 0; 689 } 690 691 692 struct smb_tran_desc smb_tran_nbtcp_desc = { 693 SMBT_NBTCP, 694 smb_nbst_create, smb_nbst_done, 695 smb_nbst_bind, smb_nbst_connect, smb_nbst_disconnect, 696 smb_nbst_send, smb_nbst_recv, 697 smb_nbst_timo, smb_nbst_intr, 698 smb_nbst_getparam, smb_nbst_setparam, 699 smb_nbst_fatal 700 }; 701 702