Line data Source code
1 : /*
2 : Unix SMB/CIFS implementation.
3 :
4 : core wins server handling
5 :
6 : Copyright (C) Andrew Tridgell 2005
7 : Copyright (C) Stefan Metzmacher 2005
8 :
9 : This program is free software; you can redistribute it and/or modify
10 : it under the terms of the GNU General Public License as published by
11 : the Free Software Foundation; either version 3 of the License, or
12 : (at your option) any later version.
13 :
14 : This program is distributed in the hope that it will be useful,
15 : but WITHOUT ANY WARRANTY; without even the implied warranty of
16 : MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 : GNU General Public License for more details.
18 :
19 : You should have received a copy of the GNU General Public License
20 : along with this program. If not, see <http://www.gnu.org/licenses/>.
21 : */
22 :
23 : #include "includes.h"
24 : #include "lib/util/dlinklist.h"
25 : #include "nbt_server/nbt_server.h"
26 : #include "nbt_server/wins/winsdb.h"
27 : #include "nbt_server/wins/winsserver.h"
28 : #include "librpc/gen_ndr/ndr_nbt.h"
29 : #include "system/time.h"
30 : #include "libcli/composite/composite.h"
31 : #include "samba/service_task.h"
32 : #include "system/network.h"
33 : #include "lib/socket/socket.h"
34 : #include "lib/socket/netif.h"
35 : #include <ldb.h>
36 : #include "param/param.h"
37 : #include "libcli/resolve/resolve.h"
38 : #include "lib/util/util_net.h"
39 : #include "lib/util/tsort.h"
40 :
41 : /*
42 : work out the ttl we will use given a client requested ttl
43 : */
44 245 : uint32_t wins_server_ttl(struct wins_server *winssrv, uint32_t ttl)
45 : {
46 245 : ttl = MIN(ttl, winssrv->config.max_renew_interval);
47 245 : ttl = MAX(ttl, winssrv->config.min_renew_interval);
48 245 : return ttl;
49 : }
50 :
51 238 : static enum wrepl_name_type wrepl_type(uint16_t nb_flags, struct nbt_name *name, bool mhomed)
52 : {
53 : /* this copes with the nasty hack that is the type 0x1c name */
54 238 : if (name->type == NBT_NAME_LOGON) {
55 47 : return WREPL_TYPE_SGROUP;
56 : }
57 191 : if (nb_flags & NBT_NM_GROUP) {
58 39 : return WREPL_TYPE_GROUP;
59 : }
60 152 : if (mhomed) {
61 88 : return WREPL_TYPE_MHOMED;
62 : }
63 64 : return WREPL_TYPE_UNIQUE;
64 : }
65 :
66 : /*
67 : register a new name with WINS
68 : */
69 194 : static uint8_t wins_register_new(struct nbt_name_socket *nbtsock,
70 : struct nbt_name_packet *packet,
71 : const struct socket_address *src,
72 : enum wrepl_name_type type)
73 : {
74 194 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
75 : struct nbtd_interface);
76 194 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
77 194 : struct nbt_name *name = &packet->questions[0].name;
78 194 : uint32_t ttl = wins_server_ttl(winssrv, packet->additional[0].ttl);
79 194 : uint16_t nb_flags = packet->additional[0].rdata.netbios.addresses[0].nb_flags;
80 194 : const char *address = packet->additional[0].rdata.netbios.addresses[0].ipaddr;
81 0 : struct winsdb_record rec;
82 0 : enum wrepl_name_node node;
83 :
84 : #define WREPL_NODE_NBT_FLAGS(nb_flags) \
85 : ((nb_flags & NBT_NM_OWNER_TYPE)>>13)
86 :
87 194 : node = WREPL_NODE_NBT_FLAGS(nb_flags);
88 :
89 194 : rec.name = name;
90 194 : rec.type = type;
91 194 : rec.state = WREPL_STATE_ACTIVE;
92 194 : rec.node = node;
93 194 : rec.is_static = false;
94 194 : rec.expire_time = time(NULL) + ttl;
95 194 : rec.version = 0; /* will be allocated later */
96 194 : rec.wins_owner = NULL; /* will be set later */
97 194 : rec.registered_by = src->addr;
98 194 : rec.addresses = winsdb_addr_list_make(packet);
99 194 : if (rec.addresses == NULL) return NBT_RCODE_SVR;
100 :
101 388 : rec.addresses = winsdb_addr_list_add(winssrv->wins_db,
102 : &rec, rec.addresses,
103 : address,
104 194 : winssrv->wins_db->local_owner,
105 : rec.expire_time,
106 : true);
107 194 : if (rec.addresses == NULL) return NBT_RCODE_SVR;
108 :
109 194 : DEBUG(4,("WINS: accepted registration of %s with address %s\n",
110 : nbt_name_string(packet, name), rec.addresses[0]->address));
111 :
112 194 : return winsdb_add(winssrv->wins_db, &rec, WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP);
113 : }
114 :
115 :
116 : /*
117 : update the ttl on an existing record
118 : */
119 25 : static uint8_t wins_update_ttl(struct nbt_name_socket *nbtsock,
120 : struct nbt_name_packet *packet,
121 : struct winsdb_record *rec,
122 : struct winsdb_addr *winsdb_addr,
123 : const struct socket_address *src)
124 : {
125 25 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
126 : struct nbtd_interface);
127 25 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
128 25 : uint32_t ttl = wins_server_ttl(winssrv, packet->additional[0].ttl);
129 25 : const char *address = packet->additional[0].rdata.netbios.addresses[0].ipaddr;
130 25 : uint32_t modify_flags = 0;
131 :
132 25 : rec->expire_time = time(NULL) + ttl;
133 25 : rec->registered_by = src->addr;
134 :
135 25 : if (winsdb_addr) {
136 46 : rec->addresses = winsdb_addr_list_add(winssrv->wins_db,
137 : rec, rec->addresses,
138 : winsdb_addr->address,
139 23 : winssrv->wins_db->local_owner,
140 : rec->expire_time,
141 : true);
142 23 : if (rec->addresses == NULL) return NBT_RCODE_SVR;
143 : }
144 :
145 25 : if (strcmp(winssrv->wins_db->local_owner, rec->wins_owner) != 0) {
146 0 : modify_flags = WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP;
147 : }
148 :
149 25 : DEBUG(5,("WINS: refreshed registration of %s at %s\n",
150 : nbt_name_string(packet, rec->name), address));
151 :
152 25 : return winsdb_modify(winssrv->wins_db, rec, modify_flags);
153 : }
154 :
155 : /*
156 : do a sgroup merge
157 : */
158 8 : static uint8_t wins_sgroup_merge(struct nbt_name_socket *nbtsock,
159 : struct nbt_name_packet *packet,
160 : struct winsdb_record *rec,
161 : const char *address,
162 : const struct socket_address *src)
163 : {
164 8 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
165 : struct nbtd_interface);
166 8 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
167 8 : uint32_t ttl = wins_server_ttl(winssrv, packet->additional[0].ttl);
168 :
169 8 : rec->expire_time = time(NULL) + ttl;
170 8 : rec->registered_by = src->addr;
171 :
172 16 : rec->addresses = winsdb_addr_list_add(winssrv->wins_db,
173 : rec, rec->addresses,
174 : address,
175 8 : winssrv->wins_db->local_owner,
176 : rec->expire_time,
177 : true);
178 8 : if (rec->addresses == NULL) return NBT_RCODE_SVR;
179 :
180 8 : DEBUG(5,("WINS: sgroup merge of %s at %s\n",
181 : nbt_name_string(packet, rec->name), address));
182 :
183 8 : return winsdb_modify(winssrv->wins_db, rec, WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP);
184 : }
185 :
186 : struct nbtd_wins_wack_state {
187 : struct nbtd_wins_wack_state *prev, *next;
188 : struct wins_server *winssrv;
189 : struct nbt_name_socket *nbtsock;
190 : struct nbtd_interface *iface;
191 : struct nbt_name_packet *request_packet;
192 : struct winsdb_record *rec;
193 : struct socket_address *src;
194 : const char *reg_address;
195 : enum wrepl_name_type new_type;
196 : struct wins_challenge_io io;
197 : NTSTATUS status;
198 : };
199 :
200 18 : static int nbtd_wins_wack_state_destructor(struct nbtd_wins_wack_state *s)
201 : {
202 18 : DLIST_REMOVE(s->iface->wack_queue, s);
203 18 : return 0;
204 : }
205 :
206 236 : static bool wins_check_wack_queue(struct nbtd_interface *iface,
207 : struct nbt_name_packet *packet,
208 : struct socket_address *src)
209 : {
210 0 : struct nbtd_wins_wack_state *s;
211 :
212 236 : for (s= iface->wack_queue; s; s = s->next) {
213 0 : if (packet->name_trn_id != s->request_packet->name_trn_id) {
214 0 : continue;
215 : }
216 0 : if (packet->operation != s->request_packet->operation) {
217 0 : continue;
218 : }
219 0 : if (src->port != s->src->port) {
220 0 : continue;
221 : }
222 0 : if (strcmp(src->addr, s->src->addr) != 0) {
223 0 : continue;
224 : }
225 :
226 0 : return true;
227 : }
228 :
229 236 : return false;
230 : }
231 :
232 : /*
233 : deny a registration request
234 : */
235 0 : static void wins_wack_deny(struct nbtd_wins_wack_state *s)
236 : {
237 0 : nbtd_name_registration_reply(s->nbtsock, s->request_packet,
238 : s->src, NBT_RCODE_ACT);
239 0 : DEBUG(4,("WINS: denied name registration request for %s from %s:%d\n",
240 : nbt_name_string(s, s->rec->name), s->src->addr, s->src->port));
241 0 : talloc_free(s);
242 0 : }
243 :
244 : /*
245 : allow a registration request
246 : */
247 18 : static void wins_wack_allow(struct nbtd_wins_wack_state *s)
248 : {
249 0 : NTSTATUS status;
250 18 : uint32_t ttl = wins_server_ttl(s->winssrv, s->request_packet->additional[0].ttl);
251 18 : struct winsdb_record *rec = s->rec, *rec2;
252 0 : uint32_t i,j;
253 :
254 18 : status = winsdb_lookup(s->winssrv->wins_db, rec->name, s, &rec2);
255 18 : if (!NT_STATUS_IS_OK(status) ||
256 18 : rec2->version != rec->version ||
257 18 : strcmp(rec2->wins_owner, rec->wins_owner) != 0) {
258 0 : DEBUG(5,("WINS: record %s changed during WACK - failing registration\n",
259 : nbt_name_string(s, rec->name)));
260 0 : wins_wack_deny(s);
261 0 : return;
262 : }
263 :
264 : /*
265 : * if the old name owner doesn't hold the name anymore
266 : * handle the request as new registration for the new name owner
267 : */
268 18 : if (!NT_STATUS_IS_OK(s->status)) {
269 0 : uint8_t rcode;
270 :
271 10 : winsdb_delete(s->winssrv->wins_db, rec);
272 10 : rcode = wins_register_new(s->nbtsock, s->request_packet, s->src, s->new_type);
273 10 : if (rcode != NBT_RCODE_OK) {
274 0 : DEBUG(1,("WINS: record %s failed to register as new during WACK\n",
275 : nbt_name_string(s, rec->name)));
276 0 : wins_wack_deny(s);
277 0 : return;
278 : }
279 10 : goto done;
280 : }
281 :
282 8 : rec->expire_time = time(NULL) + ttl;
283 8 : rec->registered_by = s->src->addr;
284 :
285 : /*
286 : * now remove all addresses that the client doesn't hold anymore
287 : * and update the time stamp and owner for the ones that are still there
288 : */
289 24 : for (i=0; rec->addresses[i]; i++) {
290 16 : bool found = false;
291 24 : for (j=0; j < s->io.out.num_addresses; j++) {
292 24 : if (strcmp(rec->addresses[i]->address, s->io.out.addresses[j]) != 0) continue;
293 :
294 16 : found = true;
295 16 : break;
296 : }
297 16 : if (found) {
298 32 : rec->addresses = winsdb_addr_list_add(s->winssrv->wins_db,
299 : rec, rec->addresses,
300 : s->reg_address,
301 16 : s->winssrv->wins_db->local_owner,
302 : rec->expire_time,
303 : true);
304 16 : if (rec->addresses == NULL) goto failed;
305 16 : continue;
306 : }
307 :
308 0 : winsdb_addr_list_remove(rec->addresses, rec->addresses[i]->address);
309 : }
310 :
311 16 : rec->addresses = winsdb_addr_list_add(s->winssrv->wins_db,
312 : rec, rec->addresses,
313 : s->reg_address,
314 8 : s->winssrv->wins_db->local_owner,
315 : rec->expire_time,
316 : true);
317 8 : if (rec->addresses == NULL) goto failed;
318 :
319 : /* if we have more than one address, this becomes implicit a MHOMED record */
320 8 : if (winsdb_addr_list_length(rec->addresses) > 1) {
321 8 : rec->type = WREPL_TYPE_MHOMED;
322 : }
323 :
324 8 : winsdb_modify(s->winssrv->wins_db, rec, WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP);
325 :
326 8 : DEBUG(4,("WINS: accepted registration of %s with address %s\n",
327 : nbt_name_string(s, rec->name), s->reg_address));
328 :
329 18 : done:
330 18 : nbtd_name_registration_reply(s->nbtsock, s->request_packet,
331 : s->src, NBT_RCODE_OK);
332 18 : failed:
333 18 : talloc_free(s);
334 : }
335 :
336 : /*
337 : called when a name query to a current owner completes
338 : */
339 18 : static void wack_wins_challenge_handler(struct composite_context *c_req)
340 : {
341 18 : struct nbtd_wins_wack_state *s = talloc_get_type(c_req->async.private_data,
342 : struct nbtd_wins_wack_state);
343 0 : bool found;
344 0 : uint32_t i;
345 :
346 18 : s->status = wins_challenge_recv(c_req, s, &s->io);
347 :
348 : /*
349 : * if the owner denies it holds the name, then allow
350 : * the registration
351 : */
352 18 : if (!NT_STATUS_IS_OK(s->status)) {
353 10 : wins_wack_allow(s);
354 10 : return;
355 : }
356 :
357 8 : if (s->new_type == WREPL_TYPE_GROUP || s->new_type == WREPL_TYPE_SGROUP) {
358 0 : DEBUG(1,("WINS: record %s failed to register as group type(%u) during WACK, it's still type(%u)\n",
359 : nbt_name_string(s, s->rec->name), s->new_type, s->rec->type));
360 0 : wins_wack_deny(s);
361 0 : return;
362 : }
363 :
364 : /*
365 : * if the owner still wants the name and doesn't reply
366 : * with the address trying to be registered, then deny
367 : * the registration
368 : */
369 8 : found = false;
370 16 : for (i=0; i < s->io.out.num_addresses; i++) {
371 16 : if (strcmp(s->reg_address, s->io.out.addresses[i]) != 0) continue;
372 :
373 8 : found = true;
374 8 : break;
375 : }
376 8 : if (!found) {
377 0 : wins_wack_deny(s);
378 0 : return;
379 : }
380 :
381 8 : wins_wack_allow(s);
382 8 : return;
383 : }
384 :
385 :
386 : /*
387 : a client has asked to register a unique name that someone else owns. We
388 : need to ask each of the current owners if they still want it. If they do
389 : then reject the registration, otherwise allow it
390 : */
391 18 : static void wins_register_wack(struct nbt_name_socket *nbtsock,
392 : struct nbt_name_packet *packet,
393 : struct winsdb_record *rec,
394 : struct socket_address *src,
395 : enum wrepl_name_type new_type)
396 : {
397 18 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
398 : struct nbtd_interface);
399 18 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
400 0 : struct nbtd_wins_wack_state *s;
401 0 : struct composite_context *c_req;
402 0 : uint32_t ttl;
403 :
404 18 : s = talloc_zero(nbtsock, struct nbtd_wins_wack_state);
405 18 : if (s == NULL) goto failed;
406 :
407 : /* package up the state variables for this wack request */
408 18 : s->winssrv = winssrv;
409 18 : s->nbtsock = nbtsock;
410 18 : s->iface = iface;
411 18 : s->request_packet = talloc_steal(s, packet);
412 18 : s->rec = talloc_steal(s, rec);
413 18 : s->reg_address = packet->additional[0].rdata.netbios.addresses[0].ipaddr;
414 18 : s->new_type = new_type;
415 18 : s->src = socket_address_copy(s, src);
416 18 : if (s->src == NULL) goto failed;
417 :
418 18 : s->io.in.nbtd_server = iface->nbtsrv;
419 18 : s->io.in.nbt_port = lpcfg_nbt_port(iface->nbtsrv->task->lp_ctx);
420 18 : s->io.in.event_ctx = iface->nbtsrv->task->event_ctx;
421 18 : s->io.in.name = rec->name;
422 18 : s->io.in.num_addresses = winsdb_addr_list_length(rec->addresses);
423 18 : s->io.in.addresses = winsdb_addr_string_list(s, rec->addresses);
424 18 : if (s->io.in.addresses == NULL) goto failed;
425 :
426 18 : DLIST_ADD_END(iface->wack_queue, s);
427 :
428 18 : talloc_set_destructor(s, nbtd_wins_wack_state_destructor);
429 :
430 : /*
431 : * send a WACK to the client, specifying the maximum time it could
432 : * take to check with the owner, plus some slack
433 : */
434 18 : ttl = 5 + 4 * winsdb_addr_list_length(rec->addresses);
435 18 : nbtd_wack_reply(nbtsock, packet, src, ttl);
436 :
437 : /*
438 : * send the challenge to the old addresses
439 : */
440 18 : c_req = wins_challenge_send(s, &s->io);
441 18 : if (c_req == NULL) goto failed;
442 :
443 18 : c_req->async.fn = wack_wins_challenge_handler;
444 18 : c_req->async.private_data = s;
445 18 : return;
446 :
447 0 : failed:
448 0 : talloc_free(s);
449 0 : nbtd_name_registration_reply(nbtsock, packet, src, NBT_RCODE_SVR);
450 : }
451 :
452 : /*
453 : register a name
454 : */
455 238 : static void nbtd_winsserver_register(struct nbt_name_socket *nbtsock,
456 : struct nbt_name_packet *packet,
457 : struct socket_address *src)
458 : {
459 0 : NTSTATUS status;
460 238 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
461 : struct nbtd_interface);
462 238 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
463 238 : struct nbt_name *name = &packet->questions[0].name;
464 0 : struct winsdb_record *rec;
465 238 : uint8_t rcode = NBT_RCODE_OK;
466 238 : uint16_t nb_flags = packet->additional[0].rdata.netbios.addresses[0].nb_flags;
467 238 : const char *address = packet->additional[0].rdata.netbios.addresses[0].ipaddr;
468 238 : bool mhomed = ((packet->operation & NBT_OPCODE) == NBT_OPCODE_MULTI_HOME_REG);
469 238 : enum wrepl_name_type new_type = wrepl_type(nb_flags, name, mhomed);
470 238 : struct winsdb_addr *winsdb_addr = NULL;
471 0 : bool duplicate_packet;
472 :
473 : /*
474 : * as a special case, the local master browser name is always accepted
475 : * for registration, but never stored, but w2k3 stores it if it's registered
476 : * as a group name, (but a query for the 0x1D name still returns not found!)
477 : */
478 238 : if (name->type == NBT_NAME_MASTER && !(nb_flags & NBT_NM_GROUP)) {
479 1 : rcode = NBT_RCODE_OK;
480 1 : goto done;
481 : }
482 :
483 : /* w2k3 refuses 0x1B names with marked as group */
484 237 : if (name->type == NBT_NAME_PDC && (nb_flags & NBT_NM_GROUP)) {
485 0 : rcode = NBT_RCODE_RFS;
486 0 : goto done;
487 : }
488 :
489 : /* w2k3 refuses 0x1C names with out marked as group */
490 237 : if (name->type == NBT_NAME_LOGON && !(nb_flags & NBT_NM_GROUP)) {
491 0 : rcode = NBT_RCODE_RFS;
492 0 : goto done;
493 : }
494 :
495 : /* w2k3 refuses 0x1E names with out marked as group */
496 237 : if (name->type == NBT_NAME_BROWSER && !(nb_flags & NBT_NM_GROUP)) {
497 0 : rcode = NBT_RCODE_RFS;
498 0 : goto done;
499 : }
500 :
501 237 : if (name->scope && strlen(name->scope) > 237) {
502 1 : rcode = NBT_RCODE_SVR;
503 1 : goto done;
504 : }
505 :
506 236 : duplicate_packet = wins_check_wack_queue(iface, packet, src);
507 236 : if (duplicate_packet) {
508 : /* just ignore the packet */
509 0 : DEBUG(5,("Ignoring duplicate packet while WACK is pending from %s:%d\n",
510 : src->addr, src->port));
511 18 : return;
512 : }
513 :
514 236 : status = winsdb_lookup(winssrv->wins_db, name, packet, &rec);
515 236 : if (NT_STATUS_EQUAL(NT_STATUS_OBJECT_NAME_NOT_FOUND, status)) {
516 168 : rcode = wins_register_new(nbtsock, packet, src, new_type);
517 168 : goto done;
518 68 : } else if (!NT_STATUS_IS_OK(status)) {
519 0 : rcode = NBT_RCODE_SVR;
520 0 : goto done;
521 68 : } else if (rec->is_static) {
522 0 : if (rec->type == WREPL_TYPE_GROUP || rec->type == WREPL_TYPE_SGROUP) {
523 0 : rcode = NBT_RCODE_OK;
524 0 : goto done;
525 : }
526 0 : rcode = NBT_RCODE_ACT;
527 0 : goto done;
528 : }
529 :
530 68 : if (rec->type == WREPL_TYPE_GROUP) {
531 5 : if (new_type != WREPL_TYPE_GROUP) {
532 1 : DEBUG(2,("WINS: Attempt to register name %s as non normal group(%u)"
533 : " while a normal group is already there\n",
534 : nbt_name_string(packet, name), new_type));
535 1 : rcode = NBT_RCODE_ACT;
536 1 : goto done;
537 : }
538 :
539 4 : if (rec->state == WREPL_STATE_ACTIVE) {
540 : /* TODO: is this correct? */
541 2 : rcode = wins_update_ttl(nbtsock, packet, rec, NULL, src);
542 2 : goto done;
543 : }
544 :
545 : /* TODO: is this correct? */
546 2 : winsdb_delete(winssrv->wins_db, rec);
547 2 : rcode = wins_register_new(nbtsock, packet, src, new_type);
548 2 : goto done;
549 : }
550 :
551 63 : if (rec->state != WREPL_STATE_ACTIVE) {
552 14 : winsdb_delete(winssrv->wins_db, rec);
553 14 : rcode = wins_register_new(nbtsock, packet, src, new_type);
554 14 : goto done;
555 : }
556 :
557 49 : switch (rec->type) {
558 40 : case WREPL_TYPE_UNIQUE:
559 : case WREPL_TYPE_MHOMED:
560 : /*
561 : * if its an active unique name, and the registration is for a group, then
562 : * see if the unique name owner still wants the name
563 : * TODO: is this correct?
564 : */
565 40 : if (new_type == WREPL_TYPE_GROUP || new_type == WREPL_TYPE_GROUP) {
566 0 : wins_register_wack(nbtsock, packet, rec, src, new_type);
567 0 : return;
568 : }
569 :
570 : /*
571 : * if the registration is for an address that is currently active, then
572 : * just update the expiry time of the record and the address
573 : */
574 40 : winsdb_addr = winsdb_addr_list_check(rec->addresses, address);
575 40 : if (winsdb_addr) {
576 22 : rcode = wins_update_ttl(nbtsock, packet, rec, winsdb_addr, src);
577 22 : goto done;
578 : }
579 :
580 : /*
581 : * we have to do a WACK to see if the current owner is willing
582 : * to give up its claim
583 : */
584 18 : wins_register_wack(nbtsock, packet, rec, src, new_type);
585 18 : return;
586 :
587 0 : case WREPL_TYPE_GROUP:
588 : /* this should not be reached as normal groups are handled above */
589 0 : DEBUG(0,("BUG at %s\n",__location__));
590 0 : rcode = NBT_RCODE_ACT;
591 0 : goto done;
592 :
593 9 : case WREPL_TYPE_SGROUP:
594 : /* if the new record isn't also a special group, refuse the registration */
595 9 : if (new_type != WREPL_TYPE_SGROUP) {
596 0 : DEBUG(2,("WINS: Attempt to register name %s as non special group(%u)"
597 : " while a special group is already there\n",
598 : nbt_name_string(packet, name), new_type));
599 0 : rcode = NBT_RCODE_ACT;
600 0 : goto done;
601 : }
602 :
603 : /*
604 : * if the registration is for an address that is currently active, then
605 : * just update the expiry time of the record and the address
606 : */
607 9 : winsdb_addr = winsdb_addr_list_check(rec->addresses, address);
608 9 : if (winsdb_addr) {
609 1 : rcode = wins_update_ttl(nbtsock, packet, rec, winsdb_addr, src);
610 1 : goto done;
611 : }
612 :
613 8 : rcode = wins_sgroup_merge(nbtsock, packet, rec, address, src);
614 8 : goto done;
615 : }
616 :
617 220 : done:
618 220 : nbtd_name_registration_reply(nbtsock, packet, src, rcode);
619 : }
620 :
621 0 : static uint32_t ipv4_match_bits(struct in_addr ip1, struct in_addr ip2)
622 : {
623 0 : uint32_t i, j, match=0;
624 0 : uint8_t *p1, *p2;
625 :
626 0 : p1 = (uint8_t *)&ip1.s_addr;
627 0 : p2 = (uint8_t *)&ip2.s_addr;
628 :
629 0 : for (i=0; i<4; i++) {
630 0 : if (p1[i] != p2[i]) break;
631 0 : match += 8;
632 : }
633 :
634 0 : if (i==4) return match;
635 :
636 0 : for (j=0; j<8; j++) {
637 0 : if ((p1[i] & (1<<(7-j))) != (p2[i] & (1<<(7-j))))
638 0 : break;
639 0 : match++;
640 : }
641 :
642 0 : return match;
643 : }
644 :
645 0 : static int nbtd_wins_randomize1Clist_sort(void *p1,/* (const char **) */
646 : void *p2,/* (const char **) */
647 : struct socket_address *src)
648 : {
649 0 : const char *a1 = (const char *)*(const char **)p1;
650 0 : const char *a2 = (const char *)*(const char **)p2;
651 0 : uint32_t match_bits1;
652 0 : uint32_t match_bits2;
653 :
654 0 : match_bits1 = ipv4_match_bits(interpret_addr2(a1), interpret_addr2(src->addr));
655 0 : match_bits2 = ipv4_match_bits(interpret_addr2(a2), interpret_addr2(src->addr));
656 :
657 0 : return NUMERIC_CMP(match_bits2, match_bits1);
658 : }
659 :
660 0 : static void nbtd_wins_randomize1Clist(struct loadparm_context *lp_ctx,
661 : const char **addresses, struct socket_address *src)
662 : {
663 0 : const char *mask;
664 0 : const char *tmp;
665 0 : uint32_t num_addrs;
666 0 : uint32_t idx, sidx;
667 0 : int r;
668 :
669 0 : for (num_addrs=0; addresses[num_addrs]; num_addrs++) { /* noop */ }
670 :
671 0 : if (num_addrs <= 1) return; /* nothing to do */
672 :
673 : /* first sort the addresses depending on the matching to the client */
674 0 : LDB_TYPESAFE_QSORT(addresses, num_addrs, src, nbtd_wins_randomize1Clist_sort);
675 :
676 0 : mask = lpcfg_parm_string(lp_ctx, NULL, "nbtd", "wins_randomize1Clist_mask");
677 0 : if (!mask) {
678 0 : mask = "255.255.255.0";
679 : }
680 :
681 : /*
682 : * choose a random address to be the first in the response to the client,
683 : * prefer the addresses inside the nbtd:wins_randomize1Clist_mask netmask
684 : */
685 0 : r = random();
686 0 : idx = sidx = r % num_addrs;
687 :
688 0 : while (1) {
689 0 : bool same;
690 :
691 : /* if the current one is in the same subnet, use it */
692 0 : same = iface_list_same_net(addresses[idx], src->addr, mask);
693 0 : if (same) {
694 0 : sidx = idx;
695 0 : break;
696 : }
697 :
698 : /* we need to check for idx == 0, after checking for the same net */
699 0 : if (idx == 0) break;
700 : /*
701 : * if we haven't found an address in the same subnet, search in ones
702 : * which match the client more
703 : *
704 : * some notes:
705 : *
706 : * it's not "idx = idx % r" but "idx = r % idx"
707 : * because in "a % b" b is the allowed range
708 : * and b-1 is the maximum possible result, so it must be decreasing
709 : * and the above idx == 0 check breaks the while(1) loop.
710 : */
711 0 : idx = r % idx;
712 : }
713 :
714 : /* note sidx == 0 is also valid here ... */
715 0 : tmp = addresses[0];
716 0 : addresses[0] = addresses[sidx];
717 0 : addresses[sidx] = tmp;
718 : }
719 :
720 : /*
721 : query a name
722 : */
723 56 : static void nbtd_winsserver_query(struct loadparm_context *lp_ctx,
724 : struct nbt_name_socket *nbtsock,
725 : struct nbt_name_packet *packet,
726 : struct socket_address *src)
727 : {
728 0 : NTSTATUS status;
729 56 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
730 : struct nbtd_interface);
731 56 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
732 56 : struct nbt_name *name = &packet->questions[0].name;
733 0 : struct winsdb_record *rec;
734 56 : struct winsdb_record *rec_1b = NULL;
735 0 : const char **addresses;
736 56 : const char **addresses_1b = NULL;
737 56 : uint16_t nb_flags = 0;
738 :
739 56 : if (name->type == NBT_NAME_MASTER) {
740 2 : goto notfound;
741 : }
742 :
743 : /*
744 : * w2k3 returns the first address of the 0x1B record as first address
745 : * to a 0x1C query
746 : *
747 : * since Windows 2000 Service Pack 2 there's on option to trigger this behavior:
748 : *
749 : * HKEY_LOCAL_MACHINE\System\CurrentControlset\Services\WINS\Parameters\Prepend1BTo1CQueries
750 : * Typ: Daten REG_DWORD
751 : * Value: 0 = deactivated, 1 = activated
752 : */
753 56 : if (name->type == NBT_NAME_LOGON &&
754 2 : lpcfg_parm_bool(lp_ctx, NULL, "nbtd", "wins_prepend1Bto1Cqueries", true)) {
755 0 : struct nbt_name name_1b;
756 :
757 2 : name_1b = *name;
758 2 : name_1b.type = NBT_NAME_PDC;
759 :
760 2 : status = winsdb_lookup(winssrv->wins_db, &name_1b, packet, &rec_1b);
761 2 : if (NT_STATUS_IS_OK(status)) {
762 0 : addresses_1b = winsdb_addr_string_list(packet, rec_1b->addresses);
763 : }
764 : }
765 :
766 54 : status = winsdb_lookup(winssrv->wins_db, name, packet, &rec);
767 54 : if (!NT_STATUS_IS_OK(status)) {
768 24 : if (!lpcfg_wins_dns_proxy(lp_ctx)) {
769 0 : goto notfound;
770 : }
771 :
772 24 : if (name->type != NBT_NAME_CLIENT && name->type != NBT_NAME_SERVER) {
773 12 : goto notfound;
774 : }
775 :
776 12 : nbtd_wins_dns_proxy_query(nbtsock, packet, src);
777 29 : return;
778 : }
779 :
780 : /*
781 : * for group's we always reply with
782 : * 255.255.255.255 as address, even if
783 : * the record is released or tombstoned
784 : */
785 30 : if (rec->type == WREPL_TYPE_GROUP) {
786 4 : addresses = str_list_add(NULL, "255.255.255.255");
787 4 : talloc_steal(packet, addresses);
788 4 : if (!addresses) {
789 0 : goto notfound;
790 : }
791 4 : nb_flags |= NBT_NM_GROUP;
792 4 : goto found;
793 : }
794 :
795 26 : if (rec->state != WREPL_STATE_ACTIVE) {
796 13 : goto notfound;
797 : }
798 :
799 13 : addresses = winsdb_addr_string_list(packet, rec->addresses);
800 13 : if (!addresses) {
801 0 : goto notfound;
802 : }
803 :
804 : /*
805 : * if addresses_1b isn't NULL, we have a 0x1C query and need to return the
806 : * first 0x1B address as first address
807 : */
808 13 : if (addresses_1b && addresses_1b[0]) {
809 0 : const char **addresses_1c = addresses;
810 0 : uint32_t i;
811 0 : uint32_t num_addrs;
812 :
813 0 : addresses = str_list_add(NULL, addresses_1b[0]);
814 0 : if (!addresses) {
815 0 : goto notfound;
816 : }
817 0 : talloc_steal(packet, addresses);
818 0 : num_addrs = 1;
819 :
820 0 : for (i=0; addresses_1c[i]; i++) {
821 0 : if (strcmp(addresses_1b[0], addresses_1c[i]) == 0) continue;
822 :
823 : /*
824 : * stop when we already have 25 addresses
825 : */
826 0 : if (num_addrs >= 25) break;
827 :
828 0 : num_addrs++;
829 0 : addresses = str_list_add(addresses, addresses_1c[i]);
830 0 : if (!addresses) {
831 0 : goto notfound;
832 : }
833 : }
834 : }
835 :
836 13 : if (rec->type == WREPL_TYPE_SGROUP) {
837 1 : nb_flags |= NBT_NM_GROUP;
838 : } else {
839 12 : nb_flags |= (rec->node <<13);
840 : }
841 :
842 : /*
843 : * since Windows 2000 Service Pack 2 there's on option to trigger this behavior:
844 : *
845 : * HKEY_LOCAL_MACHINE\System\CurrentControlset\Services\WINS\Parameters\Randomize1CList
846 : * Typ: Daten REG_DWORD
847 : * Value: 0 = deactivated, 1 = activated
848 : */
849 14 : if (name->type == NBT_NAME_LOGON &&
850 1 : lpcfg_parm_bool(lp_ctx, NULL, "nbtd", "wins_randomize1Clist", false)) {
851 0 : nbtd_wins_randomize1Clist(lp_ctx, addresses, src);
852 : }
853 :
854 13 : found:
855 17 : nbtd_name_query_reply(nbtsock, packet, src, name,
856 : 0, nb_flags, addresses);
857 17 : return;
858 :
859 27 : notfound:
860 27 : nbtd_negative_name_query_reply(nbtsock, packet, src);
861 : }
862 :
863 : /*
864 : release a name
865 : */
866 210 : static void nbtd_winsserver_release(struct nbt_name_socket *nbtsock,
867 : struct nbt_name_packet *packet,
868 : struct socket_address *src)
869 : {
870 0 : NTSTATUS status;
871 210 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
872 : struct nbtd_interface);
873 210 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
874 210 : struct nbt_name *name = &packet->questions[0].name;
875 0 : struct winsdb_record *rec;
876 210 : uint32_t modify_flags = 0;
877 0 : uint8_t ret;
878 :
879 210 : if (name->type == NBT_NAME_MASTER) {
880 2 : goto done;
881 : }
882 :
883 208 : if (name->scope && strlen(name->scope) > 237) {
884 1 : goto done;
885 : }
886 :
887 207 : status = winsdb_lookup(winssrv->wins_db, name, packet, &rec);
888 207 : if (!NT_STATUS_IS_OK(status)) {
889 15 : goto done;
890 : }
891 :
892 192 : if (rec->is_static) {
893 0 : if (rec->type == WREPL_TYPE_UNIQUE || rec->type == WREPL_TYPE_MHOMED) {
894 0 : goto done;
895 : }
896 0 : nbtd_name_release_reply(nbtsock, packet, src, NBT_RCODE_ACT);
897 0 : return;
898 : }
899 :
900 192 : if (rec->state != WREPL_STATE_ACTIVE) {
901 27 : goto done;
902 : }
903 :
904 : /*
905 : * TODO: do we need to check if
906 : * src->addr matches packet->additional[0].rdata.netbios.addresses[0].ipaddr
907 : * here?
908 : */
909 :
910 : /*
911 : * we only allow releases from an owner - other releases are
912 : * silently ignored
913 : */
914 165 : if (!winsdb_addr_list_check(rec->addresses, src->addr)) {
915 0 : int i;
916 0 : DEBUG(4,("WINS: silently ignoring attempted name release on %s from %s\n", nbt_name_string(rec, rec->name), src->addr));
917 0 : DEBUGADD(4, ("Registered Addresses: \n"));
918 0 : for (i=0; rec->addresses && rec->addresses[i]; i++) {
919 0 : DEBUGADD(4, ("%s\n", rec->addresses[i]->address));
920 : }
921 0 : goto done;
922 : }
923 :
924 165 : DEBUG(4,("WINS: released name %s from %s\n", nbt_name_string(rec, rec->name), src->addr));
925 :
926 165 : switch (rec->type) {
927 41 : case WREPL_TYPE_UNIQUE:
928 41 : rec->state = WREPL_STATE_RELEASED;
929 41 : break;
930 :
931 34 : case WREPL_TYPE_GROUP:
932 34 : rec->state = WREPL_STATE_RELEASED;
933 34 : break;
934 :
935 46 : case WREPL_TYPE_SGROUP:
936 46 : winsdb_addr_list_remove(rec->addresses, src->addr);
937 : /* TODO: do we need to take the ownership here? */
938 46 : if (winsdb_addr_list_length(rec->addresses) == 0) {
939 36 : rec->state = WREPL_STATE_RELEASED;
940 : }
941 46 : break;
942 :
943 44 : case WREPL_TYPE_MHOMED:
944 44 : winsdb_addr_list_remove(rec->addresses, src->addr);
945 : /* TODO: do we need to take the ownership here? */
946 44 : if (winsdb_addr_list_length(rec->addresses) == 0) {
947 42 : rec->state = WREPL_STATE_RELEASED;
948 : }
949 44 : break;
950 : }
951 :
952 165 : if (rec->state == WREPL_STATE_ACTIVE) {
953 : /*
954 : * If the record is still active, we need to update the
955 : * expire_time.
956 : *
957 : * if we're not the owner, we need to take the ownership.
958 : */
959 12 : rec->expire_time= time(NULL) + winssrv->config.max_renew_interval;
960 12 : if (strcmp(rec->wins_owner, winssrv->wins_db->local_owner) != 0) {
961 0 : modify_flags = WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP;
962 : }
963 12 : if (lpcfg_parm_bool(iface->nbtsrv->task->lp_ctx, NULL, "wreplsrv", "propagate name releases", false)) {
964 : /*
965 : * We have an option to propagate every name release,
966 : * this is off by default to match windows servers
967 : */
968 0 : modify_flags = WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP;
969 : }
970 153 : } else if (rec->state == WREPL_STATE_RELEASED) {
971 : /*
972 : * if we're not the owner, we need to take the owner ship
973 : * and make the record tombstone, but expire after
974 : * tombstone_interval + tombstone_timeout and not only after tombstone_timeout
975 : * like for normal tombstone records.
976 : * This is to replicate the record directly to the original owner,
977 : * where the record is still active
978 : */
979 153 : if (strcmp(rec->wins_owner, winssrv->wins_db->local_owner) == 0) {
980 153 : rec->expire_time= time(NULL) + winssrv->config.tombstone_interval;
981 : } else {
982 0 : rec->state = WREPL_STATE_TOMBSTONE;
983 0 : rec->expire_time= time(NULL) +
984 0 : winssrv->config.tombstone_interval +
985 0 : winssrv->config.tombstone_timeout;
986 0 : modify_flags = WINSDB_FLAG_ALLOC_VERSION | WINSDB_FLAG_TAKE_OWNERSHIP;
987 : }
988 : }
989 :
990 165 : ret = winsdb_modify(winssrv->wins_db, rec, modify_flags);
991 165 : if (ret != NBT_RCODE_OK) {
992 0 : DEBUG(1,("WINS: FAILED: released name %s at %s: error:%u\n",
993 : nbt_name_string(rec, rec->name), src->addr, ret));
994 : }
995 165 : done:
996 : /* we match w2k3 by always giving a positive reply to name releases. */
997 210 : nbtd_name_release_reply(nbtsock, packet, src, NBT_RCODE_OK);
998 : }
999 :
1000 :
1001 : /*
1002 : answer a name query
1003 : */
1004 5834 : void nbtd_winsserver_request(struct nbt_name_socket *nbtsock,
1005 : struct nbt_name_packet *packet,
1006 : struct socket_address *src)
1007 : {
1008 5834 : struct nbtd_interface *iface = talloc_get_type(nbtsock->incoming.private_data,
1009 : struct nbtd_interface);
1010 5834 : struct wins_server *winssrv = iface->nbtsrv->winssrv;
1011 5834 : if ((packet->operation & NBT_FLAG_BROADCAST) || winssrv == NULL) {
1012 5265 : return;
1013 : }
1014 :
1015 504 : switch (packet->operation & NBT_OPCODE) {
1016 56 : case NBT_OPCODE_QUERY:
1017 56 : nbtd_winsserver_query(iface->nbtsrv->task->lp_ctx, nbtsock, packet, src);
1018 56 : break;
1019 :
1020 238 : case NBT_OPCODE_REGISTER:
1021 : case NBT_OPCODE_REFRESH:
1022 : case NBT_OPCODE_REFRESH2:
1023 : case NBT_OPCODE_MULTI_HOME_REG:
1024 238 : nbtd_winsserver_register(nbtsock, packet, src);
1025 238 : break;
1026 :
1027 210 : case NBT_OPCODE_RELEASE:
1028 210 : nbtd_winsserver_release(nbtsock, packet, src);
1029 210 : break;
1030 : }
1031 :
1032 : }
1033 :
1034 : /*
1035 : startup the WINS server, if configured
1036 : */
1037 65 : NTSTATUS nbtd_winsserver_init(struct nbtd_server *nbtsrv)
1038 : {
1039 2 : uint32_t tmp;
1040 2 : const char *owner;
1041 :
1042 65 : if (!lpcfg_we_are_a_wins_server(nbtsrv->task->lp_ctx)) {
1043 0 : nbtsrv->winssrv = NULL;
1044 0 : return NT_STATUS_OK;
1045 : }
1046 :
1047 65 : nbtsrv->winssrv = talloc_zero(nbtsrv, struct wins_server);
1048 65 : NT_STATUS_HAVE_NO_MEMORY(nbtsrv->winssrv);
1049 :
1050 65 : nbtsrv->winssrv->config.max_renew_interval = lpcfg_max_wins_ttl(nbtsrv->task->lp_ctx);
1051 65 : nbtsrv->winssrv->config.min_renew_interval = lpcfg_min_wins_ttl(nbtsrv->task->lp_ctx);
1052 65 : tmp = lpcfg_parm_int(nbtsrv->task->lp_ctx, NULL, "wreplsrv", "tombstone_interval", 6*24*60*60);
1053 65 : nbtsrv->winssrv->config.tombstone_interval = tmp;
1054 65 : tmp = lpcfg_parm_int(nbtsrv->task->lp_ctx, NULL, "wreplsrv"," tombstone_timeout", 1*24*60*60);
1055 65 : nbtsrv->winssrv->config.tombstone_timeout = tmp;
1056 :
1057 65 : owner = lpcfg_parm_string(nbtsrv->task->lp_ctx, NULL, "winsdb", "local_owner");
1058 :
1059 65 : if (owner == NULL) {
1060 2 : struct interface *ifaces;
1061 65 : load_interface_list(nbtsrv->task, nbtsrv->task->lp_ctx, &ifaces);
1062 65 : owner = iface_list_first_v4(ifaces);
1063 : }
1064 :
1065 130 : nbtsrv->winssrv->wins_db = winsdb_connect(nbtsrv->winssrv, nbtsrv->task->event_ctx,
1066 65 : nbtsrv->task->lp_ctx,
1067 : owner, WINSDB_HANDLE_CALLER_NBTD);
1068 65 : if (!nbtsrv->winssrv->wins_db) {
1069 0 : return NT_STATUS_INTERNAL_DB_ERROR;
1070 : }
1071 :
1072 65 : irpc_add_name(nbtsrv->task->msg_ctx, "wins_server");
1073 :
1074 65 : return NT_STATUS_OK;
1075 : }
|
