Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

2504 lines
75 KiB

  1. /*++
  2. Copyright (c) 1989 Microsoft Corporation
  3. Module Name:
  4. vcsndrcv.c
  5. Abstract:
  6. This module implements all functions related to transmitting and recieving SMB's on a
  7. connection based transport.
  8. Revision History:
  9. Balan Sethu Raman [SethuR] 6-March-1995
  10. Notes:
  11. --*/
  12. #include "precomp.h"
  13. #pragma hdrstop
  14. #include "vcsndrcv.h"
  15. #include "nbtioctl.h"
  16. //
  17. // Forward declarations
  18. //
  19. NTSTATUS
  20. VctTranceive(
  21. PSMBCE_SERVER_TRANSPORT pTransport,
  22. PSMBCEDB_SERVER_ENTRY pServerEntry,
  23. PSMB_EXCHANGE pExchange,
  24. ULONG SendOptions,
  25. PMDL pSmbMdl,
  26. ULONG SendLength,
  27. PVOID pSendCompletionContext);
  28. NTSTATUS
  29. VctReceive(
  30. PSMBCE_SERVER_TRANSPORT pTransport,
  31. PSMBCEDB_SERVER_ENTRY pServerEntry,
  32. PSMB_EXCHANGE pExchange);
  33. NTSTATUS
  34. VctSend(
  35. PSMBCE_SERVER_TRANSPORT pTransport,
  36. PSMBCEDB_SERVER_ENTRY pServerEntry,
  37. ULONG SendOptions,
  38. PMDL pSmbMdl,
  39. ULONG SendLength,
  40. PVOID pSendCompletionContext);
  41. NTSTATUS
  42. VctSendDatagram(
  43. PSMBCE_SERVER_TRANSPORT pTransport,
  44. PSMBCEDB_SERVER_ENTRY pServerEntry,
  45. ULONG SendOptions,
  46. PMDL pSmbMdl,
  47. ULONG SendLength,
  48. PVOID pSendCompletionContext);
  49. struct _SMBCE_VC *
  50. VctSelectVc(
  51. struct SMBCE_SERVER_VC_TRANSPORT *pVcTransport,
  52. BOOLEAN fMultiplexed);
  53. NTSTATUS
  54. VctInitializeExchange(
  55. PSMBCE_SERVER_TRANSPORT pTransport,
  56. PSMB_EXCHANGE pExchange);
  57. NTSTATUS
  58. VctUninitializeExchange(
  59. PSMBCE_SERVER_TRANSPORT pTransport,
  60. PSMB_EXCHANGE pExchange);
  61. NTSTATUS
  62. VctIndReceive(
  63. IN PVOID pEventContext,
  64. IN PRXCE_VC pVc,
  65. IN ULONG ReceiveFlags,
  66. IN ULONG BytesIndicated,
  67. IN ULONG BytesAvailable,
  68. OUT ULONG *pBytesTaken,
  69. IN PVOID pTsdu,
  70. OUT PMDL *pDataBufferPointer,
  71. OUT PULONG pDataBufferSize
  72. );
  73. NTSTATUS
  74. VctIndDataReady(
  75. IN PVOID pEventContext,
  76. IN PMDL pBuffer,
  77. IN ULONG DataSize,
  78. IN NTSTATUS CopyDataStatus
  79. );
  80. NTSTATUS
  81. VctIndEndpointError(
  82. IN PVOID pEventContext,
  83. IN NTSTATUS IndicatedStatus
  84. );
  85. NTSTATUS
  86. VctIndSendPossible(
  87. IN PVOID pEventContext,
  88. IN PRXCE_VC pRxCeVc,
  89. IN ULONG BytesAvailable
  90. );
  91. NTSTATUS
  92. VctIndReceiveDatagram(
  93. IN PVOID pRxCeEventContext,
  94. IN int SourceAddressLength,
  95. IN PVOID SourceAddress,
  96. IN int OptionsLength,
  97. IN PVOID Options,
  98. IN ULONG ReceiveDatagramFlags,
  99. IN ULONG BytesIndicated,
  100. IN ULONG BytesAvailable,
  101. OUT ULONG *BytesTaken,
  102. IN PVOID Tsdu,
  103. OUT PMDL *pDataBufferPointer,
  104. OUT PULONG pDataBufferSize
  105. );
  106. NTSTATUS
  107. VctIndSendComplete(
  108. IN PVOID pEventContext,
  109. IN PRXCE_VC pRxCeVc,
  110. IN PVOID pCompletionContext,
  111. IN NTSTATUS SendCompletionStatus
  112. );
  113. NTSTATUS
  114. VctCompleteInitialization(
  115. PSMBCEDB_SERVER_ENTRY pServerEntry,
  116. PSMBCE_TRANSPORT pTransport,
  117. struct SMBCE_SERVER_VC_TRANSPORT *pVcTransport);
  118. NTSTATUS
  119. VctUninitialize(
  120. PVOID pTransport);
  121. NTSTATUS
  122. VctpTranslateNetbiosNameToIpAddress(
  123. IN OEM_STRING *pName,
  124. OUT ULONG *pIpAddress
  125. );
  126. ULONG
  127. VctComputeTransportAddressSize(
  128. IN PUNICODE_STRING pServerName);
  129. NTSTATUS
  130. VctBuildTransportAddress (
  131. IN PTRANSPORT_ADDRESS pTransportAddress,
  132. IN ULONG TransportAddressLength,
  133. IN PUNICODE_STRING pServerName,
  134. OUT PULONG pServerIpAddress
  135. );
  136. NTSTATUS
  137. VctpCreateConnection(
  138. IN PSMBCEDB_SERVER_ENTRY pServerEntry,
  139. IN PTRANSPORT_ADDRESS pTransportAddress,
  140. IN ULONG TransportAddressLength,
  141. IN PUNICODE_STRING pServerName,
  142. OUT PSMBCE_TRANSPORT *pTransportPtr,
  143. IN OUT PRXCE_CONNECTION pRxCeConnection,
  144. IN OUT PRXCE_VC pRxCeVc);
  145. VOID
  146. VctpInitializeServerTransport(
  147. struct _RXCE_VC_CONNECT_CONTEXT *pRxCeConnectContext);
  148. NTSTATUS
  149. VctpInvokeTransportFunction(
  150. struct _RXCE_VC_CONNECT_CONTEXT *pRxCeConnectContext);
  151. VOID
  152. VctpUninitializeServerTransport(
  153. struct _RXCE_VC_CONNECT_CONTEXT *pRxCeConnectContext);
  154. NTSTATUS
  155. VctTearDownServerTransport(
  156. PSMBCE_SERVER_TRANSPORT pServerTransport);
  157. NTSTATUS
  158. VctInitiateDisconnect(
  159. PSMBCE_SERVER_TRANSPORT pServerTransport);
  160. #ifdef ALLOC_PRAGMA
  161. #pragma alloc_text(PAGE, VctTranceive)
  162. #pragma alloc_text(PAGE, VctReceive)
  163. #pragma alloc_text(PAGE, VctSend)
  164. #pragma alloc_text(PAGE, VctSendDatagram)
  165. #pragma alloc_text(PAGE, VctSelectVc)
  166. #pragma alloc_text(PAGE, VctInitializeExchange)
  167. #pragma alloc_text(PAGE, VctUninitializeExchange)
  168. #pragma alloc_text(PAGE, VctIndEndpointError)
  169. #pragma alloc_text(PAGE, VctIndSendPossible)
  170. #pragma alloc_text(PAGE, VctCompleteInitialization)
  171. #pragma alloc_text(PAGE, VctUninitialize)
  172. #pragma alloc_text(PAGE, VctpTranslateNetbiosNameToIpAddress)
  173. #pragma alloc_text(PAGE, VctComputeTransportAddressSize)
  174. #pragma alloc_text(PAGE, VctBuildTransportAddress)
  175. #pragma alloc_text(PAGE, VctpCreateConnection)
  176. #pragma alloc_text(PAGE, VctpInitializeServerTransport)
  177. #pragma alloc_text(PAGE, VctpUninitializeServerTransport)
  178. #pragma alloc_text(PAGE, VctpInvokeTransportFunction)
  179. #pragma alloc_text(PAGE, VctInstantiateServerTransport)
  180. #pragma alloc_text(PAGE, VctTearDownServerTransport)
  181. #pragma alloc_text(PAGE, VctInitiateDisconnect)
  182. #endif
  183. RXDT_DefineCategory(VCSNDRCV);
  184. #define Dbg (DEBUG_TRACE_VCSNDRCV)
  185. // Move this def to a common .h file.
  186. #define MAX_SMB_PACKET_SIZE (65536)
  187. #define MIN(a,b) ((a) < (b) ? (a) : (b))
  188. //
  189. // Forward references of functions ....
  190. //
  191. extern NTSTATUS
  192. VctTearDownServerTransport(
  193. PSMBCE_SERVER_TRANSPORT pTransport);
  194. extern NTSTATUS
  195. VctInitializeExchange(
  196. PSMBCE_SERVER_TRANSPORT pTransport,
  197. PSMB_EXCHANGE pExchange);
  198. extern PSMBCE_VC
  199. VctSelectVc(
  200. PSMBCE_SERVER_VC_TRANSPORT pVcTransport,
  201. BOOLEAN fMultiplexed);
  202. extern NTSTATUS
  203. SmbCeReceiveIndWithSecuritySignature(
  204. IN PSMBCEDB_SERVER_ENTRY pServerEntry,
  205. IN ULONG BytesIndicated,
  206. IN ULONG BytesAvailable,
  207. OUT ULONG *pBytesTaken,
  208. IN PVOID pTsdu,
  209. OUT PMDL *pDataBufferPointer,
  210. OUT PULONG pDataBufferSize,
  211. IN ULONG ReceiveFlags
  212. );
  213. extern NTSTATUS
  214. SmbCeDataReadyIndWithSecuritySignature(
  215. IN PSMBCEDB_SERVER_ENTRY pServerEntry,
  216. IN PMDL pBuffer,
  217. IN ULONG DataSize,
  218. IN NTSTATUS CopyDataStatus);
  219. #define SmbMmInitializeVcEntry(pVcEntry) \
  220. SmbMmInitializeHeader((pVcEntry));
  221. #define SmbMmUninitializeVcEntry(pVcEntry) \
  222. ASSERT(IsListEmpty(&(pVcEntry)->Requests.ListHead))
  223. #define VctSelectMultiplexedVcEntry(pVcTransport) VctSelectVc(pVcTransport,TRUE)
  224. #define VctSelectRawVcEntry(pVcTransport) VctSelectVc(pVcTransport,FALSE)
  225. //
  226. // Inline functions to update the state of a VC.
  227. //
  228. INLINE BOOLEAN
  229. VctUpdateVcStateLite(
  230. PSMBCE_VC pVc,
  231. SMBCE_VC_STATE NewState)
  232. {
  233. BOOLEAN Result = TRUE;
  234. ASSERT(SmbCeSpinLockAcquired());
  235. if (NewState == SMBCE_VC_STATE_RAW) {
  236. if (pVc->SwizzleCount != 0) {
  237. Result = FALSE;
  238. } else {
  239. pVc->State = NewState;
  240. }
  241. } else {
  242. pVc->State = NewState;
  243. }
  244. return Result;
  245. }
  246. INLINE BOOLEAN
  247. VctUpdateVcState(
  248. PSMBCE_VC pVc,
  249. SMBCE_VC_STATE NewState)
  250. {
  251. BOOLEAN Result = TRUE;
  252. SmbCeAcquireSpinLock();
  253. Result = VctUpdateVcStateLite(pVc,NewState);
  254. SmbCeReleaseSpinLock();
  255. return Result;
  256. }
  257. NTSTATUS
  258. VctTranceive(
  259. PSMBCE_SERVER_TRANSPORT pTransport,
  260. PSMBCEDB_SERVER_ENTRY pServerEntry,
  261. PSMB_EXCHANGE pExchange,
  262. ULONG SendOptions,
  263. PMDL pSmbMdl,
  264. ULONG SendLength,
  265. PVOID pSendCompletionContext)
  266. /*++
  267. Routine Description:
  268. This routine transmits/receives a SMB for a give exchange
  269. Arguments:
  270. pTransport - the transport
  271. pServerEntry - the server entry
  272. pExchange - the exchange instance issuing this SMB.
  273. SendOptions - options for send
  274. pSmbMdl - the SMB that needs to be sent.
  275. SendLength - length of data to be transmitted
  276. pSendCompletionContext - the send completion context
  277. Return Value:
  278. STATUS_SUCCESS - the server call construction has been finalized.
  279. STATUS_PENDING - the open involves network traffic and the exchange has been
  280. queued for notification ( pServerPointer is set to NULL)
  281. Other Status codes correspond to error situations.
  282. --*/
  283. {
  284. NTSTATUS Status = STATUS_SUCCESS;
  285. PSMBCE_VC pVc;
  286. PSMBCE_SERVER_VC_TRANSPORT pVcTransport;
  287. PSMB_HEADER pSmbHeader = MmGetSystemAddressForMdlSafe(pSmbMdl,LowPagePriority);
  288. USHORT Mid;
  289. BOOLEAN fInvokeSendCompleteHandler = TRUE;
  290. PAGED_CODE();
  291. ASSERT(pServerEntry->Header.ObjectType == SMBCEDB_OT_SERVER);
  292. if (pSmbHeader == NULL) {
  293. Status = STATUS_INSUFFICIENT_RESOURCES;
  294. } else {
  295. pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  296. // Ensure that the connection is still active before satisfying the request.
  297. if (SmbCeIsEntryInUse(&pServerEntry->Header)) {
  298. pVc = pExchange->SmbCeContext.TransportContext.Vcs.pVc;
  299. if (pVc == NULL) {
  300. Status = STATUS_CONNECTION_DISCONNECTED;
  301. }
  302. if ((Status == STATUS_SUCCESS) &&
  303. (pVc->State == SMBCE_VC_STATE_MULTIPLEXED)) {
  304. Status = RxCeSend(
  305. &pVc->RxCeVc,
  306. SendOptions,
  307. pSmbMdl,
  308. SendLength,
  309. pSendCompletionContext);
  310. if ((Status == STATUS_SUCCESS) || (Status == STATUS_PENDING)) {
  311. Status = STATUS_PENDING;
  312. // The underlying connection engine assumes the responsibility of
  313. // invoking the send complete handler from this point.
  314. fInvokeSendCompleteHandler = FALSE;
  315. }
  316. } else {
  317. RxDbgTrace(0, Dbg, ("VctTranceive: Disconnected connection detected\n"));
  318. Status = STATUS_CONNECTION_DISCONNECTED;
  319. }
  320. } else {
  321. // The server entry is not valid ...
  322. Status = STATUS_CONNECTION_DISCONNECTED;
  323. }
  324. }
  325. if (Status != STATUS_PENDING) {
  326. RxDbgTrace(0, Dbg, ("VctTranceive: Return Status %lx\n",Status));
  327. }
  328. // There are instances in which the send was aborted even before the underlying
  329. // transport was invoked. In such cases the appropriate send complete handler
  330. // needs to be called so that the associated exchange can be finalized.
  331. if (fInvokeSendCompleteHandler) {
  332. NTSTATUS LocalStatus;
  333. LocalStatus = SmbCeSendCompleteInd(
  334. pServerEntry,
  335. pSendCompletionContext,
  336. Status);
  337. RxDbgTrace(0, Dbg, ("VctTranceive: Send Complete Handler Return Status %lx\n",LocalStatus));
  338. }
  339. return Status;
  340. }
  341. NTSTATUS
  342. VctReceive(
  343. PSMBCE_SERVER_TRANSPORT pTransport,
  344. PSMBCEDB_SERVER_ENTRY pServerEntry,
  345. PSMB_EXCHANGE pExchange)
  346. /*++
  347. Routine Description:
  348. This routine transmits/receives a SMB for a give exchange
  349. Arguments:
  350. pTransport - the server transport
  351. pServerEntry - the server entry
  352. pExchange - the exchange instance issuing this SMB.
  353. Return Value:
  354. STATUS_PENDING - the request has been queued
  355. Other Status codes correspond to error situations.
  356. --*/
  357. {
  358. NTSTATUS Status = STATUS_SUCCESS;
  359. PSMBCEDB_NET_ROOT_ENTRY pNetRootEntry;
  360. PSMBCE_VC pVc;
  361. PSMBCE_SERVER_VC_TRANSPORT pVcTransport;
  362. PAGED_CODE();
  363. ASSERT(pServerEntry->Header.ObjectType == SMBCEDB_OT_SERVER);
  364. pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  365. pVc = pExchange->SmbCeContext.TransportContext.Vcs.pVc;
  366. // Ensure that the connection is still active before satisfying the request.
  367. if (SmbCeIsEntryInUse(&pServerEntry->Header) &&
  368. (pVc != NULL)) {
  369. Status = STATUS_SUCCESS;
  370. } else {
  371. // The server entry is not valid ...
  372. Status = STATUS_CONNECTION_DISCONNECTED;
  373. }
  374. return Status;
  375. }
  376. NTSTATUS
  377. VctSend(
  378. PSMBCE_SERVER_TRANSPORT pTransport,
  379. PSMBCEDB_SERVER_ENTRY pServerEntry,
  380. ULONG SendOptions,
  381. PMDL pSmbMdl,
  382. ULONG SendLength,
  383. PVOID pSendCompletionContext)
  384. /*++
  385. Routine Description:
  386. This routine opens/creates a server entry in the connection engine database
  387. Arguments:
  388. pTransport - the server transport
  389. pServer - the recepient server
  390. SendOptions - options for send
  391. pSmbMdl - the SMB that needs to be sent.
  392. SendLength - length of data to be sent
  393. pSendCompletionContext - the send completion context
  394. Return Value:
  395. STATUS_SUCCESS - the send was successful.
  396. STATUS_PENDING - the send has been queued
  397. Other Status codes correspond to error situations.
  398. --*/
  399. {
  400. NTSTATUS Status = STATUS_CONNECTION_DISCONNECTED;
  401. PSMBCE_VC pVc;
  402. PSMBCE_SERVER_VC_TRANSPORT pVcTransport;
  403. BOOLEAN fInvokeSendCompleteHandler = TRUE;
  404. PAGED_CODE();
  405. ASSERT(pServerEntry->Header.ObjectType == SMBCEDB_OT_SERVER);
  406. pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  407. pVc = VctSelectMultiplexedVcEntry(pVcTransport);
  408. if (pVc != NULL) {
  409. if (pVc->State == SMBCE_VC_STATE_MULTIPLEXED) {
  410. Status = RxCeSend(
  411. &pVc->RxCeVc,
  412. SendOptions,
  413. pSmbMdl,
  414. SendLength,
  415. pSendCompletionContext);
  416. if ((Status == STATUS_SUCCESS) || (Status == STATUS_PENDING)) {
  417. // The underlying connection engine assumes the responsibility of
  418. // invoking the send complete handler from this point.
  419. fInvokeSendCompleteHandler = FALSE;
  420. }
  421. }
  422. }
  423. if (!NT_SUCCESS(Status)) {
  424. RxDbgTrace(0, Dbg, ("VctSend: RxCeSend returned %lx\n",Status));
  425. }
  426. // There are instances in which the send was aborted even before the underlying
  427. // transport was invoked. In such cases the appropriate send complete handler
  428. // needs to be called so that the associated exchange can be finalized.
  429. if (fInvokeSendCompleteHandler) {
  430. NTSTATUS LocalStatus;
  431. LocalStatus = SmbCeSendCompleteInd(
  432. pServerEntry,
  433. pSendCompletionContext,
  434. Status);
  435. RxDbgTrace(0, Dbg, ("VctTranceive: Send Complete Handler Return Status %lx\n",LocalStatus));
  436. }
  437. return Status;
  438. }
  439. NTSTATUS
  440. VctSendDatagram(
  441. PSMBCE_SERVER_TRANSPORT pTransport,
  442. PSMBCEDB_SERVER_ENTRY pServerEntry,
  443. ULONG SendOptions,
  444. PMDL pSmbMdl,
  445. ULONG SendLength,
  446. PVOID pSendCompletionContext)
  447. /*++
  448. Routine Description:
  449. This routine opens/creates a server entry in the connection engine database
  450. Arguments:
  451. pTransport - the server transport
  452. pServer - the recepient server
  453. SendOptions - options for send
  454. pSmbMdl - the SMB that needs to be sent.
  455. SendLength - length of data to be sent
  456. pSendCompletionContext - the send completion context
  457. Return Value:
  458. STATUS_SUCCESS - the server call construction has been finalized.
  459. STATUS_PENDING - the open involves network traffic and the exchange has been
  460. queued for notification ( pServerPointer is set to NULL)
  461. Other Status codes correspond to error situations.
  462. --*/
  463. {
  464. PAGED_CODE();
  465. return STATUS_NOT_IMPLEMENTED;
  466. }
  467. PSMBCE_VC
  468. VctSelectVc(
  469. PSMBCE_SERVER_VC_TRANSPORT pVcTransport,
  470. BOOLEAN fMultiplexed)
  471. /*++
  472. Routine Description:
  473. This routine embodies the logic for the selection of a VC on which the SMB exchange
  474. will transpire
  475. Arguments:
  476. pVcTransport - the transport structure
  477. fMultiplexed - the desired mode
  478. Return Value:
  479. a referenced VC entry if successful otherwise NULL
  480. --*/
  481. {
  482. NTSTATUS Status;
  483. PSMBCE_VC pVc = NULL;
  484. ULONG VcIndex,NumberOfActiveVcs = 0;
  485. SMBCE_VC_STATE DesiredState;
  486. PAGED_CODE();
  487. if (fMultiplexed) {
  488. RxDbgTrace(0, Dbg, ("VctSelectVc: Referencing Multiplexed entry\n"));
  489. DesiredState = SMBCE_VC_STATE_MULTIPLEXED;
  490. } else {
  491. RxDbgTrace(0, Dbg, ("VctSelectVc: Referencing Raw entry\n"));
  492. DesiredState = SMBCE_VC_STATE_RAW;
  493. }
  494. // Acquire the resource
  495. SmbCeAcquireResource();
  496. // Choose the first VC that can support multiplexed requests
  497. for (VcIndex = 0; VcIndex < pVcTransport->MaximumNumberOfVCs; VcIndex++) {
  498. PSMBCE_VC pTempVc = &pVcTransport->Vcs[VcIndex];
  499. NumberOfActiveVcs++;
  500. if (pTempVc->State == SMBCE_VC_STATE_MULTIPLEXED) {
  501. if (DesiredState == SMBCE_VC_STATE_MULTIPLEXED) {
  502. pVc = pTempVc;
  503. break;
  504. } else {
  505. // If the current number of active references to a VC is zero, it can
  506. // be transformed into the raw mode.
  507. if (VctUpdateVcState(pTempVc,SMBCE_VC_STATE_RAW)) {
  508. pVc = pTempVc;
  509. break;
  510. } else {
  511. NumberOfActiveVcs++;
  512. }
  513. }
  514. }
  515. }
  516. if (pVc == NULL) {
  517. // Check if it is O.K. to add VCs to this connection. Currently the server
  518. // implementation supports only one VC per connection. Therefore if an
  519. // active VC exists which has been grabbed for raw mode use an error is returned.
  520. // Subsequently when the server is upgraded to handle multiple VCs the logic
  521. // for adding a new VC will be implemented as part of this routine.
  522. }
  523. if (pVc != NULL) {
  524. VctReferenceVc(pVc);
  525. }
  526. // release the resource
  527. SmbCeReleaseResource();
  528. return pVc;
  529. }
  530. NTSTATUS
  531. VctInitializeExchange(
  532. PSMBCE_SERVER_TRANSPORT pTransport,
  533. PSMB_EXCHANGE pExchange)
  534. /*++
  535. Routine Description:
  536. This routine initializes the transport information pertinent to a exchange
  537. Arguments:
  538. pTransport - the transport structure
  539. pExchange - the exchange instance
  540. Return Value:
  541. STATUS_SUCCESS -
  542. Other Status codes correspond to error situations.
  543. --*/
  544. {
  545. PSMBCEDB_SERVER_ENTRY pServerEntry;
  546. PSMBCE_SERVER_VC_TRANSPORT pVcTransport;
  547. PAGED_CODE();
  548. pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  549. ASSERT(pExchange->SmbCeContext.TransportContext.Vcs.pVc == NULL);
  550. pExchange->SmbCeContext.TransportContext.Vcs.pVc
  551. = VctSelectMultiplexedVcEntry(pVcTransport);
  552. if (pExchange->SmbCeContext.TransportContext.Vcs.pVc == NULL) {
  553. RxDbgTrace(0, Dbg, ("VctInitializeExchange: Unsuccessful\n"));
  554. return STATUS_CONNECTION_DISCONNECTED;
  555. } else {
  556. RxDbgTrace(0, Dbg, ("VctInitializeExchange: Successful\n"));
  557. return STATUS_SUCCESS;
  558. }
  559. }
  560. NTSTATUS
  561. VctUninitializeExchange(
  562. PSMBCE_SERVER_TRANSPORT pTransport,
  563. PSMB_EXCHANGE pExchange)
  564. /*++
  565. Routine Description:
  566. This routine uninitializes the transport information pertinent to a exchange
  567. Arguments:
  568. pExchange - the exchange instance
  569. Return Value:
  570. STATUS_SUCCESS -
  571. Other Status codes correspond to error situations.
  572. --*/
  573. {
  574. PSMBCE_SERVER_VC_TRANSPORT pVcTransport;
  575. PAGED_CODE();
  576. pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  577. RxDbgTrace(0, Dbg, ("VctUninitializeExchange: Successful\n"));
  578. if (pExchange->SmbCeContext.TransportContext.Vcs.pVc != NULL) {
  579. VctDereferenceVc(pExchange->SmbCeContext.TransportContext.Vcs.pVc);
  580. }
  581. pExchange->SmbCeContext.TransportContext.Vcs.pVc = NULL;
  582. return STATUS_SUCCESS;
  583. }
  584. NTSTATUS
  585. VctIndReceive(
  586. IN PVOID pEventContext,
  587. IN PRXCE_VC pVc,
  588. IN ULONG ReceiveFlags,
  589. IN ULONG BytesIndicated,
  590. IN ULONG BytesAvailable,
  591. OUT ULONG *pBytesTaken,
  592. IN PVOID pTsdu, // pointer describing this TSDU, typically a lump of bytes
  593. OUT PMDL *pDataBufferPointer, // the buffer in which data is to be copied.
  594. OUT PULONG pDataBufferSize // amount of data to copy
  595. )
  596. /*++
  597. Routine Description:
  598. This routine handles the receive indication for SMB's along all vcs in a connection to a
  599. server.
  600. Arguments:
  601. pEventContext - the server entry
  602. hVc - the Vc on which the SMB has been received
  603. ReceiveFlags - options for receive
  604. BytesIndicated - the bytes that are present in the indication.
  605. BytesAvailable - the total data available
  606. pTsdu - the data
  607. pDataBufferPointer - the buffer for copying the data not indicated.
  608. pDataBufferSize - the length of the buffer
  609. Return Value:
  610. STATUS_SUCCESS -
  611. Other Status codes correspond to error situations.
  612. --*/
  613. {
  614. NTSTATUS Status;
  615. PSMBCEDB_SERVER_ENTRY pServerEntry = (PSMBCEDB_SERVER_ENTRY)pEventContext;
  616. if (pServerEntry->SecuritySignaturesActive) {
  617. Status = SmbCeReceiveIndWithSecuritySignature(
  618. pServerEntry,
  619. BytesIndicated,
  620. BytesAvailable,
  621. pBytesTaken,
  622. pTsdu,
  623. pDataBufferPointer,
  624. pDataBufferSize,
  625. ReceiveFlags);
  626. } else {
  627. Status = SmbCeReceiveInd(
  628. pServerEntry,
  629. BytesIndicated,
  630. BytesAvailable,
  631. pBytesTaken,
  632. pTsdu,
  633. pDataBufferPointer,
  634. pDataBufferSize,
  635. ReceiveFlags);
  636. }
  637. return Status;
  638. }
  639. NTSTATUS
  640. VctIndDataReady(
  641. IN PVOID pEventContext,
  642. IN PMDL pBuffer,
  643. IN ULONG DataSize,
  644. IN NTSTATUS CopyDataStatus
  645. )
  646. /*++
  647. Routine Description:
  648. This routine handles the indication when the requested data has been copied
  649. Arguments:
  650. pEventContext - the server instance
  651. pBuffer - the buffer being returned
  652. DataSize - the amount of data copied in bytes
  653. CopyDataStatus - CopyDataStatus
  654. Return Value:
  655. STATUS_SUCCESS - the server call construction has been finalized.
  656. Other Status codes correspond to error situations.
  657. --*/
  658. {
  659. NTSTATUS Status;
  660. PSMBCEDB_SERVER_ENTRY pServerEntry = (PSMBCEDB_SERVER_ENTRY)pEventContext;
  661. if (pServerEntry->SecuritySignaturesActive) {
  662. Status = SmbCeDataReadyIndWithSecuritySignature(
  663. pServerEntry,
  664. pBuffer,
  665. DataSize,
  666. CopyDataStatus);
  667. } else {
  668. Status = SmbCeDataReadyInd(
  669. pServerEntry,
  670. pBuffer,
  671. DataSize,
  672. CopyDataStatus);
  673. }
  674. return STATUS_SUCCESS;
  675. }
  676. NTSTATUS
  677. VctIndDisconnect(
  678. IN PVOID pEventContext,
  679. IN PRXCE_VC pRxCeVc,
  680. IN int DisconnectDataLength,
  681. IN PVOID DisconnectData,
  682. IN int DisconnectInformationLength,
  683. IN PVOID DisconnectInformation,
  684. IN ULONG DisconnectFlags
  685. )
  686. /*++
  687. Routine Description:
  688. This routine handles the disconnect indication for a VC.
  689. Arguments:
  690. pEventContext - the server instance
  691. hVc - the virtual circuit
  692. DisconnectDataLength -
  693. DisconnectData -
  694. DisconnectInformationLength -
  695. DisconnectInformation -
  696. DisconnectFlags -
  697. Return Value:
  698. STATUS_SUCCESS - the disconnect indication has been handled
  699. --*/
  700. {
  701. PSMBCEDB_SERVER_ENTRY pServerEntry = (PSMBCEDB_SERVER_ENTRY)pEventContext;
  702. PSMBCEDB_SERVER_ENTRY pListEntry;
  703. PSMBCE_VC pVc;
  704. PSMBCEDB_REQUEST_ENTRY pRequestEntry;
  705. PSMB_EXCHANGE pExchange;
  706. PSMBCE_SERVER_VC_TRANSPORT pVcTransport;
  707. BOOLEAN fValidServerEntry = FALSE;
  708. BOOLEAN OutstandingWorkItem;
  709. // Traverse the list of server entries to ensure that the disconnect was on a
  710. // valid server entry. If it is not on a valid server entry ignore it.
  711. SmbCeAcquireSpinLock();
  712. pListEntry = SmbCeGetFirstServerEntry();
  713. while (pListEntry != NULL) {
  714. if (pListEntry == pServerEntry) {
  715. // The invalidation needs to hold onto an extra reference to avoid
  716. // race conditions which could lead to premature destruction of
  717. // this server entry.
  718. SmbCeReferenceServerEntry(pServerEntry);
  719. fValidServerEntry = TRUE;
  720. break;
  721. }
  722. pListEntry = SmbCeGetNextServerEntry(pListEntry);
  723. }
  724. if (fValidServerEntry) {
  725. pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pServerEntry->pTransport;
  726. if (pVcTransport != NULL) {
  727. ULONG VcIndex;
  728. for (VcIndex = 0; VcIndex < pVcTransport->MaximumNumberOfVCs; VcIndex++) {
  729. pVc = &pVcTransport->Vcs[VcIndex];
  730. if (&pVc->RxCeVc == pRxCeVc) {
  731. VctUpdateVcStateLite(pVc,SMBCE_VC_STATE_DISCONNECTED);
  732. pVc->Status = STATUS_CONNECTION_DISCONNECTED;
  733. break;
  734. }
  735. }
  736. }
  737. OutstandingWorkItem = pServerEntry->DisconnectWorkItemOutstanding;
  738. // OK to unconditionally set to TRUE
  739. pServerEntry->DisconnectWorkItemOutstanding = TRUE;
  740. }
  741. // Release the resource
  742. SmbCeReleaseSpinLock();
  743. if (fValidServerEntry) {
  744. RxDbgTrace(0,Dbg,("@@@@@@ Disconnect Indication for %lx @@@@@\n",pServerEntry));
  745. InterlockedIncrement(&MRxSmbStatistics.ServerDisconnects);
  746. // Update the Server entry if this is the only VC associated with the transport.
  747. SmbCeTransportDisconnectIndicated(pServerEntry);
  748. // only dereference if necessary (we might already have an outstanding request)
  749. if(OutstandingWorkItem == FALSE ) {
  750. InitializeListHead(&pServerEntry->WorkQueueItemForDisconnect.List);
  751. RxPostToWorkerThread(
  752. MRxSmbDeviceObject,
  753. CriticalWorkQueue,
  754. &pServerEntry->WorkQueueItemForDisconnect,
  755. SmbCepDereferenceServerEntry,
  756. pServerEntry);
  757. }
  758. RxDbgTrace(0, Dbg, ("VctIndDisconnect: Processing Disconnect indication on VC entry %lx\n",pVc));
  759. }
  760. return STATUS_SUCCESS;
  761. }
  762. NTSTATUS
  763. VctIndError(
  764. IN PVOID pEventContext,
  765. IN PRXCE_VC pRxCeVc,
  766. IN NTSTATUS IndicatedStatus
  767. )
  768. /*++
  769. Routine Description:
  770. This routine handles the error indication
  771. Arguments:
  772. pEventContext - the server instance
  773. pRxCeVc - the RxCe virtual circuit
  774. Status - the error
  775. Return Value:
  776. STATUS_SUCCESS
  777. --*/
  778. {
  779. NTSTATUS Status;
  780. ULONG VcIndex;
  781. PSMBCEDB_SERVER_ENTRY pServerEntry = (PSMBCEDB_SERVER_ENTRY)pEventContext;
  782. PSMBCE_VC pVc;
  783. PSMBCE_SERVER_VC_TRANSPORT pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pServerEntry->pTransport;
  784. // Acquire the resource
  785. SmbCeAcquireSpinLock();
  786. // Map the RXCE vc handle to the appropriate SMBCE entry and get the request
  787. // list associated with it.
  788. for (VcIndex = 0; VcIndex < pVcTransport->MaximumNumberOfVCs; VcIndex++) {
  789. pVc = &pVcTransport->Vcs[VcIndex];
  790. if (&pVc->RxCeVc == pRxCeVc) {
  791. VctUpdateVcStateLite(pVc,SMBCE_VC_STATE_DISCONNECTED);
  792. pVc->Status = IndicatedStatus;
  793. break;
  794. }
  795. }
  796. // Release the resource
  797. SmbCeReleaseSpinLock();
  798. RxDbgTrace(0, Dbg, ("VctIndError: Processing Error indication on VC entry %lx\n",pVc));
  799. Status = SmbCeErrorInd(
  800. pServerEntry,
  801. IndicatedStatus);
  802. return Status;
  803. }
  804. NTSTATUS
  805. VctIndEndpointError(
  806. IN PVOID pEventContext,
  807. IN NTSTATUS IndicatedStatus
  808. )
  809. /*++
  810. Routine Description:
  811. This routine handles the error indication
  812. Arguments:
  813. pEventContext - the server instance
  814. Status - the error
  815. Return Value:
  816. STATUS_SUCCESS
  817. --*/
  818. {
  819. PAGED_CODE();
  820. return STATUS_SUCCESS;
  821. }
  822. NTSTATUS
  823. VctIndSendPossible(
  824. IN PVOID pEventContext, // the event context.
  825. IN PRXCE_VC pRxCeVc,
  826. IN ULONG BytesAvailable
  827. )
  828. /*++
  829. Routine Description:
  830. This routine handles the error indication
  831. Arguments:
  832. pEventContext - the server instance
  833. hVc - the VC instance
  834. BytesAvailable - the number of bytes that can be sent
  835. Return Value:
  836. STATUS_SUCCESS
  837. --*/
  838. {
  839. PAGED_CODE();
  840. return STATUS_SUCCESS;
  841. }
  842. NTSTATUS
  843. VctIndReceiveDatagram(
  844. IN PVOID pRxCeEventContext, // the event context
  845. IN int SourceAddressLength, // length of the originator of the datagram
  846. IN PVOID SourceAddress, // string describing the originator of the datagram
  847. IN int OptionsLength, // options for the receive
  848. IN PVOID Options, //
  849. IN ULONG ReceiveDatagramFlags, //
  850. IN ULONG BytesIndicated, // number of bytes this indication
  851. IN ULONG BytesAvailable, // number of bytes in complete Tsdu
  852. OUT ULONG *BytesTaken, // number of bytes used
  853. IN PVOID Tsdu, // pointer describing this TSDU, typically a lump of bytes
  854. OUT PMDL *pDataBufferPointer, // the buffer in which data is to be copied.
  855. OUT PULONG pDataBufferSize // amount of data to copy
  856. )
  857. {
  858. return STATUS_SUCCESS;
  859. }
  860. NTSTATUS
  861. VctIndSendComplete(
  862. IN PVOID pEventContext,
  863. IN PRXCE_VC pRxCeVc,
  864. IN PVOID pCompletionContext,
  865. IN NTSTATUS SendCompletionStatus
  866. )
  867. /*++
  868. Routine Description:
  869. This routine handles the send complete indication for asynchronous sends
  870. Arguments:
  871. pEventContext - the server instance
  872. pRxCeVc - the RxCe VC instance
  873. pCompletionContext - the context for identifying the send request
  874. SendCompletionStatus - the send completion status
  875. Return Value:
  876. STATUS_SUCCESS always ..
  877. --*/
  878. {
  879. NTSTATUS Status;
  880. PSMBCEDB_SERVER_ENTRY pServerEntry = (PSMBCEDB_SERVER_ENTRY)pEventContext;
  881. Status = SmbCeSendCompleteInd(
  882. pServerEntry,
  883. pCompletionContext,
  884. SendCompletionStatus);
  885. return Status;
  886. }
  887. //
  888. // Static dispatch vectors for Virtual Circuit based transports
  889. //
  890. RXCE_ADDRESS_EVENT_HANDLER
  891. MRxSmbVctAddressEventHandler = {
  892. VctIndEndpointError,
  893. VctIndReceiveDatagram,
  894. VctIndDataReady,
  895. VctIndSendPossible,
  896. NULL
  897. };
  898. RXCE_CONNECTION_EVENT_HANDLER
  899. MRxSmbVctConnectionEventHandler = {
  900. VctIndDisconnect,
  901. VctIndError,
  902. VctIndReceive,
  903. VctIndReceiveDatagram,
  904. VctIndReceive,
  905. VctIndSendPossible,
  906. VctIndDataReady,
  907. VctIndSendComplete
  908. };
  909. TRANSPORT_DISPATCH_VECTOR
  910. MRxSmbVctTransportDispatch = {
  911. VctSend,
  912. VctSendDatagram,
  913. VctTranceive,
  914. VctReceive,
  915. NULL,
  916. VctInitializeExchange,
  917. VctUninitializeExchange,
  918. VctTearDownServerTransport,
  919. VctInitiateDisconnect
  920. };
  921. typedef enum _RXCE_VC_FUNCTION_CODE {
  922. VcConnect,
  923. VcDisconnect
  924. } RXCE_VC_FUNCTION_CODE, *PRXCE_VC_FUNCTION_CODE;
  925. typedef struct _RXCE_VC_CONNECT_CONTEXT {
  926. RXCE_VC_FUNCTION_CODE FunctionCode;
  927. PRX_WORKERTHREAD_ROUTINE pRoutine;
  928. PSMBCEDB_SERVER_ENTRY pServerEntry;
  929. PMRX_SRVCALL_CALLBACK_CONTEXT pCallbackContext;
  930. PSMBCE_SERVER_TRANSPORT pServerTransport;
  931. NTSTATUS Status;
  932. KEVENT SyncEvent;
  933. } RXCE_VC_CONNECT_CONTEXT, *PRXCE_VC_CONNECT_CONTEXT;
  934. NTSTATUS
  935. VctCompleteInitialization(
  936. PSMBCEDB_SERVER_ENTRY pServerEntry,
  937. PSMBCE_TRANSPORT pTransport,
  938. PSMBCE_SERVER_VC_TRANSPORT pVcTransport)
  939. /*++
  940. Routine Description:
  941. This routine initializes the transport information corresponding to a server
  942. Arguments:
  943. pServerEntry - the server entry instance in the database
  944. Return Value:
  945. STATUS_SUCCESS - the server transport construction has been finalized.
  946. Other Status codes correspond to error situations.
  947. Notes:
  948. The remote address can be either deduced from the information in the Rx Context
  949. or a NETBIOS address needs to be built from the server name.
  950. This transport address is used subsequently to establish the connection.
  951. --*/
  952. {
  953. NTSTATUS Status;
  954. PSMBCE_VC pVc;
  955. RXCE_CONNECTION_INFO ConnectionInfo;
  956. RXCE_TRANSPORT_PROVIDER_INFO ProviderInfo;
  957. PAGED_CODE();
  958. pVc = &pVcTransport->Vcs[0];
  959. // Query the transport information ...
  960. Status = RxCeQueryInformation(
  961. &pVc->RxCeVc,
  962. RxCeTransportProviderInformation,
  963. &ProviderInfo,
  964. sizeof(ProviderInfo));
  965. if (NT_SUCCESS(Status)) {
  966. pVcTransport->MaximumSendSize = MIN( ProviderInfo.MaxSendSize,
  967. MAXIMUM_PARTIAL_BUFFER_SIZE );
  968. } else {
  969. // CODE.IMPROVMENT - fix constant below to a #define, also is the
  970. // value correct?
  971. ASSERT( 1024 <= MAXIMUM_PARTIAL_BUFFER_SIZE );
  972. pVcTransport->MaximumSendSize = 1024;
  973. }
  974. // Query the connection information ....
  975. Status = RxCeQueryInformation(
  976. &pVc->RxCeVc,
  977. RxCeConnectionEndpointInformation,
  978. &ConnectionInfo,
  979. sizeof(ConnectionInfo));
  980. if (NT_SUCCESS(Status)) {
  981. // The setting of the delay parameter is an important heuristic
  982. // that determines how quickly and how often timeouts occur. As
  983. // a first cut a very conservative estimate for the time has been
  984. // choosen, i.e., double the time required to transmit a 64 k packet.
  985. // This parameter should be fine tuned.
  986. pVcTransport->Delay.QuadPart = (-ConnectionInfo.Delay.QuadPart) +
  987. (-ConnectionInfo.Delay.QuadPart);
  988. if (ConnectionInfo.Throughput.LowPart != 0) {
  989. pVcTransport->Delay.QuadPart +=
  990. (MAX_SMB_PACKET_SIZE/ConnectionInfo.Throughput.LowPart) * 1000 * 10000;
  991. }
  992. RxDbgTrace( 0, Dbg, ("Connection delay set to %ld 100ns ticks\n",pVcTransport->Delay.LowPart));
  993. pVcTransport->pDispatchVector = &MRxSmbVctTransportDispatch;
  994. pVcTransport->MaximumNumberOfVCs = 1;
  995. pVc->State = SMBCE_VC_STATE_MULTIPLEXED;
  996. pVcTransport->State = SMBCEDB_ACTIVE;
  997. } else {
  998. RxDbgTrace(0, Dbg, ("VctInitialize : RxCeQueryInformation returned %lx\n",Status));
  999. }
  1000. if (NT_SUCCESS(Status)) {
  1001. pVcTransport->pTransport = pTransport;
  1002. } else {
  1003. RxDbgTrace(0, Dbg, ("VctInitialize : Connection Initialization Failed %lx\n",Status));
  1004. }
  1005. return Status;
  1006. }
  1007. NTSTATUS
  1008. VctUninitialize(
  1009. PVOID pTransport)
  1010. /*++
  1011. Routine Description:
  1012. This routine uninitializes the transport instance
  1013. Arguments:
  1014. pVcTransport - the VC transport instance
  1015. Return Value:
  1016. STATUS_SUCCESS - the server transport construction has been uninitialzied.
  1017. Other Status codes correspond to error situations.
  1018. Notes:
  1019. --*/
  1020. {
  1021. NTSTATUS Status = STATUS_SUCCESS;
  1022. ULONG VcIndex;
  1023. PSMBCE_VC pVc;
  1024. PSMBCE_SERVER_VC_TRANSPORT pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  1025. ULONG TransportFlags;
  1026. PAGED_CODE();
  1027. // The spinlock needs to be acquired for manipulating the list of Vcs because of
  1028. // indications that will be processed till the appropriate RXCE data structures are
  1029. // dismantled
  1030. for (VcIndex = 0; VcIndex < pVcTransport->MaximumNumberOfVCs; VcIndex++) {
  1031. pVc = &pVcTransport->Vcs[VcIndex];
  1032. // Assert the fact that the request list associated with the VC is empty.
  1033. // Tear down the VC entry
  1034. Status = RxCeTearDownVC(&pVc->RxCeVc);
  1035. ASSERT(Status == STATUS_SUCCESS);
  1036. }
  1037. // Tear down the connection endpoint ..
  1038. Status = RxCeTearDownConnection(&pVcTransport->RxCeConnection);
  1039. ASSERT(Status == STATUS_SUCCESS);
  1040. RxDbgTrace(0, Dbg, ("VctUninitialize : RxCeDisconnect returned %lx\n",Status));
  1041. // Dereference the underlying transport
  1042. if (pVcTransport->pTransport != NULL) {
  1043. SmbCeDereferenceTransport(pVcTransport->pTransport);
  1044. }
  1045. ASSERT((pVcTransport->Vcs[0].RxCeVc.hEndpoint == INVALID_HANDLE_VALUE) ||
  1046. (pVcTransport->Vcs[0].RxCeVc.hEndpoint == NULL));
  1047. ASSERT(pVcTransport->Vcs[0].RxCeVc.pEndpointFileObject == NULL);
  1048. // Free up the transport entry
  1049. RxFreePool(pVcTransport);
  1050. return Status;
  1051. }
  1052. NTSTATUS
  1053. VctpTranslateNetbiosNameToIpAddress(
  1054. IN OEM_STRING *pName,
  1055. OUT ULONG *pIpAddress
  1056. )
  1057. /*++
  1058. Routine Description:
  1059. This routine converts ascii ipaddr (11.101.4.25) into a ULONG. This is
  1060. based on the inet_addr code in winsock
  1061. Arguments:
  1062. pName - the string containing the ipaddress
  1063. Return Value:
  1064. the ipaddress as a ULONG if it's a valid ipaddress. Otherwise, 0.
  1065. Notes:
  1066. The body of this routine has been borrowed fron NetBt.
  1067. --*/
  1068. {
  1069. NTSTATUS Status;
  1070. PCHAR pStr;
  1071. int i;
  1072. int len, fieldLen;
  1073. int fieldsDone;
  1074. ULONG IpAddress;
  1075. BYTE ByteVal;
  1076. PCHAR pIpPtr;
  1077. BOOLEAN fDotFound;
  1078. BOOLEAN fieldOk;
  1079. PAGED_CODE();
  1080. Status = STATUS_INVALID_ADDRESS_COMPONENT;
  1081. if (pName->Length > NETBIOS_NAME_LEN) {
  1082. return Status;
  1083. }
  1084. pStr = pName->Buffer;
  1085. len = 0;
  1086. pIpPtr = (PCHAR)&IpAddress;
  1087. pIpPtr += 3; // so that we store in network order
  1088. fieldsDone=0;
  1089. //
  1090. // the 11.101.4.25 format can be atmost 15 chars, and pName is guaranteed
  1091. // to be at least 16 chars long (how convenient!!). Convert the string to
  1092. // a ULONG.
  1093. //
  1094. while(len < NETBIOS_NAME_LEN)
  1095. {
  1096. fieldLen=0;
  1097. fieldOk = FALSE;
  1098. ByteVal = 0;
  1099. fDotFound = FALSE;
  1100. //
  1101. // This loop traverses each of the four fields (max len of each
  1102. // field is 3, plus 1 for the '.'
  1103. //
  1104. while (fieldLen < 4)
  1105. {
  1106. if (*pStr >='0' && *pStr <='9')
  1107. {
  1108. ByteVal = (ByteVal*10) + (*pStr - '0');
  1109. fieldOk = TRUE;
  1110. }
  1111. else if (*pStr == '.' || *pStr == ' ' || *pStr == '\0')
  1112. {
  1113. *pIpPtr = ByteVal;
  1114. pIpPtr--;
  1115. fieldsDone++;
  1116. if (*pStr == '.')
  1117. fDotFound = TRUE;
  1118. // if we got a space or 0, assume it's the 4th field
  1119. if (*pStr == ' ' || *pStr == '\0')
  1120. {
  1121. break;
  1122. }
  1123. }
  1124. // unacceptable char: can't be ipaddr
  1125. else
  1126. {
  1127. return(Status);
  1128. }
  1129. pStr++;
  1130. len++;
  1131. fieldLen++;
  1132. // if we found the dot, we are done with this field: go to the next one
  1133. if (fDotFound)
  1134. break;
  1135. }
  1136. // this field wasn't ok (e.g. "11.101..4" or "11.101.4." etc.)
  1137. if (!fieldOk)
  1138. {
  1139. return(Status);
  1140. }
  1141. // if we are done with all 4 fields, we are done with the outer loop too
  1142. if ( fieldsDone == 4)
  1143. break;
  1144. if (!fDotFound)
  1145. {
  1146. return(Status);
  1147. }
  1148. }
  1149. //
  1150. // make sure the remaining chars are spaces or 0's (i.e. don't allow
  1151. // 11.101.4.25xyz to succeed)
  1152. //
  1153. for (i=len; i<NETBIOS_NAME_LEN; i++, pStr++)
  1154. {
  1155. if (*pStr != ' ' && *pStr != '\0')
  1156. {
  1157. return(Status);
  1158. }
  1159. }
  1160. *pIpAddress = IpAddress;
  1161. return( STATUS_SUCCESS );
  1162. }
  1163. ULONG
  1164. VctComputeTransportAddressSize(
  1165. IN PUNICODE_STRING pServerName)
  1166. /*++
  1167. Routine Description:
  1168. This routine takes a computer name (PUNICODE_STRING) and computes the size of the
  1169. TRANSPORT_ADDRESSS buffer required to connect to it.
  1170. Arguments:
  1171. IN PUNICODE_STRING Name - Supplies the name to put into the transport
  1172. Return Value:
  1173. size of the buffer.
  1174. Notes:
  1175. The compound transport address passed to the transports consists of two
  1176. TDI_NETBIOS_EX_ADDRESSes and a TDI_NETBIOS_ADDRESS. The two NETBIOS_EX addresses refer
  1177. to the two different endpoints registered by the server, i.e., *SMBSERVER and
  1178. the Server name padded upto NETBIOS_NAME_LEN with blanks. The order in which
  1179. the two NETBIOS_EX addresses are constructed depend upon the length of the server
  1180. name. If it is greater than NETBIOS_NAME_LEN *SMBSERVER is the first enpoint
  1181. and vice versa
  1182. --*/
  1183. {
  1184. ULONG NetbiosAddressLength,NetbiosExAddressLength,NetbiosUnicodeExAddressLength,TransportAddressSize;
  1185. ULONG OemServerNameLength;
  1186. PAGED_CODE();
  1187. OemServerNameLength = RtlUnicodeStringToOemSize(pServerName);
  1188. NetbiosAddressLength = sizeof(TDI_ADDRESS_NETBIOS);
  1189. if( OemServerNameLength > NETBIOS_NAME_LEN ) {
  1190. NetbiosAddressLength += OemServerNameLength - NETBIOS_NAME_LEN;
  1191. }
  1192. NetbiosExAddressLength = FIELD_OFFSET(TDI_ADDRESS_NETBIOS_EX,NetbiosAddress) +
  1193. NetbiosAddressLength;
  1194. NetbiosUnicodeExAddressLength = FIELD_OFFSET(TDI_ADDRESS_NETBIOS_UNICODE_EX,RemoteNameBuffer) +
  1195. pServerName->Length +
  1196. DNS_NAME_BUFFER_LENGTH * sizeof(WCHAR);
  1197. TransportAddressSize = FIELD_OFFSET(TRANSPORT_ADDRESS,Address) +
  1198. 3 * FIELD_OFFSET(TA_ADDRESS,Address) +
  1199. NetbiosAddressLength +
  1200. 2 * NetbiosExAddressLength +
  1201. NetbiosUnicodeExAddressLength;
  1202. return TransportAddressSize;
  1203. }
  1204. NTSTATUS
  1205. VctBuildTransportAddress (
  1206. IN PTRANSPORT_ADDRESS pTransportAddress,
  1207. IN ULONG TransportAddressLength,
  1208. IN PUNICODE_STRING pServerName,
  1209. OUT PULONG pServerIpAddress
  1210. )
  1211. /*++
  1212. Routine Description:
  1213. This routine takes a computer name (PUNICODE_STRING) and converts it into an
  1214. acceptable form for passing in as transport address.
  1215. Arguments:
  1216. pTransportAddress - Supplies the structure to fill in
  1217. TransportAddressLength - Supplies the length of the buffer at TransportAddress
  1218. pServerName - Supplies the name to put into the transport
  1219. pServerNameIsInIpAddressFormat = Server Name is of the dotted IP address kind
  1220. Return Value:
  1221. None.
  1222. Notes:
  1223. The compound transport address passed to the transports consists of two
  1224. TDI_NETBIOS_EX_ADDRESSes and a TDI_NETBIOS_ADDRESS. The two NETBIOS_EX addresses refer
  1225. to the two different endpoints registered by the server, i.e., *SMBSERVER and
  1226. the Server name padded upto NETBIOS_NAME_LEN with blanks. The order in which
  1227. the two NETBIOS_EX addresses are constructed depend upon the length of the server
  1228. name. If it is greater than NETBIOS_NAME_LEN *SMBSERVER is the first enpoint
  1229. and vice versa
  1230. The WINS database can be inconsistent for extended periods of time. In order to
  1231. account for this inconsistency on NETBIOS names and DNS names we will not
  1232. issue the address for *SMBSERVER. This will be revisited when we have a better
  1233. mechanism for identifying/authenticating the server and the client machine to each other.
  1234. --*/
  1235. {
  1236. OEM_STRING OemServerName;
  1237. NTSTATUS Status;
  1238. PTDI_ADDRESS_NETBIOS_EX pTdiNetbiosExAddress;
  1239. PTDI_ADDRESS_NETBIOS pTdiNetbiosAddress;
  1240. PTA_ADDRESS pFirstNetbiosExAddress,pSecondNetbiosExAddress,pNetbiosAddress,pNetbiosUnicodeExAddress;
  1241. PTDI_ADDRESS_NETBIOS_UNICODE_EX pTdiNetbiosUnicodeExAddress;
  1242. PCHAR FirstEndpointName,SecondEndpointName;
  1243. CHAR EndpointNameBuffer[NETBIOS_NAME_LEN];
  1244. WCHAR UnicodeEndpointNameBuffer[NETBIOS_NAME_LEN];
  1245. USHORT NetbiosAddressLength,NetbiosExAddressLength;
  1246. USHORT NetbiosAddressType = TDI_ADDRESS_TYPE_NETBIOS;
  1247. ULONG ComponentLength;
  1248. ULONG RemoteIpAddress;
  1249. BOOLEAN ServerNameIsInIpAddressForm;
  1250. PAGED_CODE();
  1251. if (TransportAddressLength < VctComputeTransportAddressSize(pServerName)) {
  1252. return STATUS_BUFFER_OVERFLOW;
  1253. }
  1254. pFirstNetbiosExAddress = &pTransportAddress->Address[0];
  1255. pTdiNetbiosExAddress = (PTDI_ADDRESS_NETBIOS_EX)pFirstNetbiosExAddress->Address;
  1256. pTdiNetbiosExAddress->NetbiosAddress.NetbiosNameType = TDI_ADDRESS_NETBIOS_TYPE_QUICK_UNIQUE;
  1257. OemServerName.Length = pServerName->Length;
  1258. OemServerName.MaximumLength = OemServerName.Length + 1;
  1259. OemServerName.Buffer = pTdiNetbiosExAddress->NetbiosAddress.NetbiosName;
  1260. Status = RtlUpcaseUnicodeStringToOemString(&OemServerName, pServerName, FALSE);
  1261. if( !NT_SUCCESS( Status ) ) {
  1262. //return STATUS_BAD_NETWORK_PATH;
  1263. OemServerName.Length = 0;
  1264. }
  1265. if (OemServerName.Length < NETBIOS_NAME_LEN) {
  1266. RtlCopyMemory( &OemServerName.Buffer[ OemServerName.Length ],
  1267. " ",
  1268. NETBIOS_NAME_LEN - OemServerName.Length
  1269. );
  1270. OemServerName.Length = NETBIOS_NAME_LEN;
  1271. }
  1272. Status = VctpTranslateNetbiosNameToIpAddress(&OemServerName,&RemoteIpAddress);
  1273. if (Status == STATUS_SUCCESS) {
  1274. if ((RemoteIpAddress == 0) || (RemoteIpAddress == 0xffffffff)) {
  1275. // If the server name is a valid IP address and matches with one of the two
  1276. // broadcast addresses used by IP turn back the request.
  1277. return STATUS_INVALID_ADDRESS_COMPONENT;
  1278. }
  1279. *pServerIpAddress = RemoteIpAddress;
  1280. ServerNameIsInIpAddressForm = TRUE;
  1281. } else {
  1282. *pServerIpAddress = 0;
  1283. ServerNameIsInIpAddressForm = FALSE;
  1284. }
  1285. NetbiosAddressLength = sizeof(TDI_ADDRESS_NETBIOS);
  1286. if( OemServerName.Length > NETBIOS_NAME_LEN ) {
  1287. NetbiosAddressLength += OemServerName.Length - NETBIOS_NAME_LEN;
  1288. }
  1289. NetbiosExAddressLength = (USHORT)(FIELD_OFFSET(TDI_ADDRESS_NETBIOS_EX,NetbiosAddress) +
  1290. NetbiosAddressLength);
  1291. pFirstNetbiosExAddress->AddressLength = NetbiosExAddressLength;
  1292. pFirstNetbiosExAddress->AddressType = TDI_ADDRESS_TYPE_NETBIOS_EX;
  1293. #if 0
  1294. // This arm of the code will be activated and the other arm deactivated when we have
  1295. // mutual authenitication between server and client machines in NT5.0
  1296. if (ServerNameIsInIpAddressForm) {
  1297. pTransportAddress->TAAddressCount = 2;
  1298. pNetbiosAddress = (PTA_ADDRESS)((PCHAR)pFirstNetbiosExAddress +
  1299. FIELD_OFFSET(TA_ADDRESS,Address) +
  1300. NetbiosExAddressLength);
  1301. FirstEndpointName = SMBSERVER_LOCAL_ENDPOINT_NAME;
  1302. } else {
  1303. pTransportAddress->TAAddressCount = 3;
  1304. pSecondNetbiosExAddress = (PTA_ADDRESS)((PCHAR)pFirstNetbiosExAddress +
  1305. FIELD_OFFSET(TA_ADDRESS,Address) +
  1306. NetbiosExAddressLength);
  1307. pNetbiosAddress = (PTA_ADDRESS)((PCHAR)pSecondNetbiosExAddress +
  1308. FIELD_OFFSET(TA_ADDRESS,Address) +
  1309. NetbiosExAddressLength);
  1310. // Scan the server name till the first delimiter (DNS delimiter .) and form
  1311. // the endpoint name by padding the remaining name with blanks.
  1312. RtlCopyMemory(
  1313. EndpointNameBuffer,
  1314. OemServerName.Buffer,
  1315. NETBIOS_NAME_LEN);
  1316. ComponentLength = 0;
  1317. while (ComponentLength < NETBIOS_NAME_LEN) {
  1318. if (EndpointNameBuffer[ComponentLength] == '.') {
  1319. break;
  1320. }
  1321. ComponentLength++;
  1322. }
  1323. if (ComponentLength == NETBIOS_NAME_LEN) {
  1324. EndpointNameBuffer[NETBIOS_NAME_LEN - 1] = ' ';
  1325. } else {
  1326. RtlCopyMemory(&EndpointNameBuffer[ComponentLength],
  1327. " ",
  1328. NETBIOS_NAME_LEN - ComponentLength);
  1329. }
  1330. FirstEndpointName = EndpointNameBuffer;
  1331. SecondEndpointName = SMBSERVER_LOCAL_ENDPOINT_NAME;
  1332. }
  1333. #else
  1334. pTransportAddress->TAAddressCount = 3;
  1335. pNetbiosAddress = (PTA_ADDRESS)((PCHAR)pFirstNetbiosExAddress +
  1336. FIELD_OFFSET(TA_ADDRESS,Address) +
  1337. NetbiosExAddressLength);
  1338. if (ServerNameIsInIpAddressForm) {
  1339. FirstEndpointName = SMBSERVER_LOCAL_ENDPOINT_NAME;
  1340. } else {
  1341. // Scan the server name till the first delimiter (DNS delimiter .) and form
  1342. // the endpoint name by padding the remaining name with blanks.
  1343. RtlCopyMemory(
  1344. EndpointNameBuffer,
  1345. OemServerName.Buffer,
  1346. NETBIOS_NAME_LEN);
  1347. ComponentLength = 0;
  1348. while (ComponentLength < NETBIOS_NAME_LEN) {
  1349. if (EndpointNameBuffer[ComponentLength] == '.') {
  1350. break;
  1351. }
  1352. ComponentLength++;
  1353. }
  1354. if (ComponentLength == NETBIOS_NAME_LEN) {
  1355. EndpointNameBuffer[NETBIOS_NAME_LEN - 1] = ' ';
  1356. } else {
  1357. RtlCopyMemory(&EndpointNameBuffer[ComponentLength],
  1358. " ",
  1359. NETBIOS_NAME_LEN - ComponentLength);
  1360. }
  1361. FirstEndpointName = EndpointNameBuffer;
  1362. }
  1363. #endif
  1364. // Copy the first endpoint name
  1365. RtlCopyMemory(
  1366. pTdiNetbiosExAddress->EndpointName,
  1367. FirstEndpointName,
  1368. NETBIOS_NAME_LEN);
  1369. #if 0
  1370. // This will be activated alongwith the other code when mutual authentication is
  1371. // in place
  1372. if (!ServerNameIsInIpAddressForm) {
  1373. // The same NETBIOS_EX address needs to be duplicated with a different endpoint name
  1374. // for the second TA_ADDRESS.
  1375. RtlCopyMemory(
  1376. pSecondNetbiosExAddress,
  1377. pFirstNetbiosExAddress,
  1378. (FIELD_OFFSET(TA_ADDRESS,Address) + NetbiosExAddressLength));
  1379. RtlCopyMemory(
  1380. ((PCHAR)pSecondNetbiosExAddress +
  1381. FIELD_OFFSET(TA_ADDRESS,Address) +
  1382. FIELD_OFFSET(TDI_ADDRESS_NETBIOS_EX,EndpointName)),
  1383. SecondEndpointName,
  1384. NETBIOS_NAME_LEN);
  1385. }
  1386. #else
  1387. //ASSERT(pTransportAddress->TAAddressCount == 2);
  1388. #endif
  1389. // The Netbios address associated with the first NETBIOS_EX address is the last netbios
  1390. // address that is passed in.
  1391. RtlCopyMemory(
  1392. ((PCHAR)pNetbiosAddress),
  1393. &NetbiosAddressLength,
  1394. sizeof(USHORT));
  1395. RtlCopyMemory(
  1396. ((PCHAR)pNetbiosAddress + FIELD_OFFSET(TA_ADDRESS,AddressType)),
  1397. &NetbiosAddressType,
  1398. sizeof(USHORT));
  1399. RtlCopyMemory(
  1400. ((PCHAR)pNetbiosAddress + FIELD_OFFSET(TA_ADDRESS,Address)),
  1401. &pTdiNetbiosExAddress->NetbiosAddress,
  1402. NetbiosAddressLength);
  1403. // Unicode Netbios name
  1404. pNetbiosUnicodeExAddress = (PTA_ADDRESS)((PCHAR)pNetbiosAddress +
  1405. FIELD_OFFSET(TA_ADDRESS,Address) +
  1406. NetbiosAddressLength);
  1407. pNetbiosUnicodeExAddress->AddressLength = (USHORT)(FIELD_OFFSET(TDI_ADDRESS_NETBIOS_UNICODE_EX,RemoteNameBuffer) +
  1408. DNS_NAME_BUFFER_LENGTH * sizeof(WCHAR));
  1409. pNetbiosUnicodeExAddress->AddressType = TDI_ADDRESS_TYPE_NETBIOS_UNICODE_EX;
  1410. pTdiNetbiosUnicodeExAddress = (PTDI_ADDRESS_NETBIOS_UNICODE_EX)pNetbiosUnicodeExAddress->Address;
  1411. pTdiNetbiosUnicodeExAddress->NetbiosNameType = TDI_ADDRESS_NETBIOS_TYPE_QUICK_UNIQUE;
  1412. pTdiNetbiosUnicodeExAddress->NameBufferType = NBT_READWRITE;
  1413. pTdiNetbiosUnicodeExAddress->EndpointName.Length = (NETBIOS_NAME_LEN)*sizeof(WCHAR);
  1414. pTdiNetbiosUnicodeExAddress->EndpointName.MaximumLength = (NETBIOS_NAME_LEN+1)*sizeof(WCHAR);
  1415. pTdiNetbiosUnicodeExAddress->EndpointName.Buffer = (PWSTR)pTdiNetbiosUnicodeExAddress->EndpointBuffer;
  1416. pTdiNetbiosUnicodeExAddress->RemoteName.Length = pServerName->Length;
  1417. pTdiNetbiosUnicodeExAddress->RemoteName.MaximumLength = DNS_NAME_BUFFER_LENGTH*sizeof(WCHAR);
  1418. pTdiNetbiosUnicodeExAddress->RemoteName.Buffer = (PWSTR)pTdiNetbiosUnicodeExAddress->RemoteNameBuffer;
  1419. if (pTdiNetbiosUnicodeExAddress->RemoteName.MaximumLength > pServerName->Length) {
  1420. ComponentLength = pServerName->Length;
  1421. } else {
  1422. ComponentLength = pTdiNetbiosUnicodeExAddress->RemoteName.MaximumLength;
  1423. }
  1424. RtlCopyMemory(
  1425. pTdiNetbiosUnicodeExAddress->RemoteNameBuffer,
  1426. pServerName->Buffer,
  1427. ComponentLength);
  1428. if (ServerNameIsInIpAddressForm) {
  1429. RtlCopyMemory(
  1430. pTdiNetbiosUnicodeExAddress->EndpointBuffer,
  1431. SMBSERVER_LOCAL_ENDPOINT_NAME_UNICODE,
  1432. NETBIOS_NAME_LEN);
  1433. } else {
  1434. // Scan the server name till the first delimiter (DNS delimiter .) and form
  1435. // the endpoint name by padding the remaining name with blanks.
  1436. RtlCopyMemory(
  1437. pTdiNetbiosUnicodeExAddress->EndpointBuffer,
  1438. L" ",
  1439. NETBIOS_NAME_LEN*sizeof(WCHAR));
  1440. if (pTdiNetbiosUnicodeExAddress->EndpointName.Length > pServerName->Length) {
  1441. ComponentLength = pServerName->Length;
  1442. } else {
  1443. ComponentLength = pTdiNetbiosUnicodeExAddress->EndpointName.Length;
  1444. }
  1445. RtlCopyMemory(
  1446. pTdiNetbiosUnicodeExAddress->EndpointBuffer,
  1447. pServerName->Buffer,
  1448. ComponentLength);
  1449. ComponentLength = 0;
  1450. while (ComponentLength < NETBIOS_NAME_LEN) {
  1451. if (pTdiNetbiosUnicodeExAddress->EndpointBuffer[ComponentLength] == L'.') {
  1452. break;
  1453. }
  1454. ComponentLength++;
  1455. }
  1456. if (ComponentLength == NETBIOS_NAME_LEN) {
  1457. pTdiNetbiosUnicodeExAddress->EndpointBuffer[NETBIOS_NAME_LEN - 1] = ' ';
  1458. } else {
  1459. RtlCopyMemory(&pTdiNetbiosUnicodeExAddress->EndpointBuffer[ComponentLength],
  1460. L" ",
  1461. (NETBIOS_NAME_LEN-ComponentLength)*sizeof(WCHAR));
  1462. }
  1463. }
  1464. //DbgPrint("Build TA %lx %lx %lx\n",pFirstNetbiosExAddress,pNetbiosAddress,pNetbiosUnicodeExAddress);
  1465. return STATUS_SUCCESS;
  1466. }
  1467. typedef struct _SMBCE_VC_CONNECTION_COMPLETION_CONTEXT {
  1468. RXCE_CONNECTION_COMPLETION_CONTEXT;
  1469. PSMBCE_TRANSPORT_ARRAY pTransportArray;
  1470. PSMBCE_TRANSPORT pTransport;
  1471. PSMBCE_SERVER_VC_TRANSPORT pServerTransport;
  1472. ULONG TransportAddressLength;
  1473. PTRANSPORT_ADDRESS pTransportAddress;
  1474. PSMBCE_SERVER_TRANSPORT_CONSTRUCTION_CONTEXT pContext;
  1475. } SMBCE_VC_CONNECTION_COMPLETION_CONTEXT,
  1476. *PSMBCE_VC_CONNECTION_COMPLETION_CONTEXT;
  1477. NTSTATUS
  1478. VctpCreateConnectionCallback(
  1479. IN OUT PRXCE_CONNECTION_COMPLETION_CONTEXT pContext)
  1480. /*++
  1481. Routine Description:
  1482. This is the connection callback routine initiated when the underlying
  1483. transports have completed initialization
  1484. Arguments:
  1485. pCOntext = the connection completion context
  1486. Notes:
  1487. --*/
  1488. {
  1489. NTSTATUS Status;
  1490. PSMBCE_VC_CONNECTION_COMPLETION_CONTEXT pVcCompletionContext;
  1491. PSMBCE_SERVER_TRANSPORT_CONSTRUCTION_CONTEXT pSmbCeContext;
  1492. PSMBCEDB_SERVER_ENTRY pServerEntry;
  1493. PAGED_CODE();
  1494. ASSERT(IoGetCurrentProcess() == RxGetRDBSSProcess());
  1495. pVcCompletionContext = (PSMBCE_VC_CONNECTION_COMPLETION_CONTEXT)pContext;
  1496. pSmbCeContext = pVcCompletionContext->pContext;
  1497. pServerEntry = pSmbCeContext->pServerEntry;
  1498. pSmbCeContext->Status = pVcCompletionContext->Status;
  1499. Status = pVcCompletionContext->Status;
  1500. if (Status == STATUS_SUCCESS) {
  1501. PTA_ADDRESS pTaAdress;
  1502. PTRANSPORT_ADDRESS pTransportAddress = (PTRANSPORT_ADDRESS)pVcCompletionContext->pConnectionInformation->RemoteAddress;
  1503. LONG NoOfAddress;
  1504. if (pVcCompletionContext->pTransport == NULL) {
  1505. pVcCompletionContext->pTransport =
  1506. pVcCompletionContext->pTransportArray->SmbCeTransports[
  1507. pVcCompletionContext->AddressIndex];
  1508. SmbCeReferenceTransport(pVcCompletionContext->pTransport);
  1509. }
  1510. //DbgPrint("Remote address %lx \n",pVcCompletionContext->pConnectionInformation->RemoteAddress);
  1511. //DbgPrint("Number of TA returned %d %lx\n",pTransportAddress->TAAddressCount,pTransportAddress->Address);
  1512. pTaAdress = &pTransportAddress->Address[0];
  1513. for (NoOfAddress=0; NoOfAddress<pTransportAddress->TAAddressCount;NoOfAddress++) {
  1514. if (pTaAdress->AddressType == TDI_ADDRESS_TYPE_NETBIOS_UNICODE_EX) {
  1515. PTDI_ADDRESS_NETBIOS_UNICODE_EX pTdiNetbiosUnicodeExAddress;
  1516. pTdiNetbiosUnicodeExAddress = (PTDI_ADDRESS_NETBIOS_UNICODE_EX)pTaAdress->Address;
  1517. pTdiNetbiosUnicodeExAddress->EndpointName.Buffer = (PWSTR)pTdiNetbiosUnicodeExAddress->EndpointBuffer;
  1518. pTdiNetbiosUnicodeExAddress->RemoteName.Buffer = (PWSTR)pTdiNetbiosUnicodeExAddress->RemoteNameBuffer;
  1519. SmbCeAcquireResource();
  1520. if (pTdiNetbiosUnicodeExAddress->NameBufferType == NBT_WRITTEN) {
  1521. //DbgPrint("DNS name was returned from NetBT %wZ\n", &pTdiNetbiosUnicodeExAddress->RemoteName);
  1522. DWORD dwNewSize = pTdiNetbiosUnicodeExAddress->RemoteName.Length+2*sizeof(WCHAR);
  1523. // if old allocation is to small get rid of it
  1524. if(pServerEntry->DnsName.Buffer != NULL &&
  1525. dwNewSize > pServerEntry->DnsName.MaximumLength) {
  1526. RxFreePool(pServerEntry->DnsName.Buffer);
  1527. pServerEntry->DnsName.Buffer = NULL;
  1528. }
  1529. // make new allocation (if we don't already have one)
  1530. if(pServerEntry->DnsName.Buffer == NULL) {
  1531. pServerEntry->DnsName.Buffer = RxAllocatePoolWithTag(NonPagedPool, dwNewSize, MRXSMB_SERVER_POOLTAG);
  1532. }
  1533. if (pServerEntry->DnsName.Buffer != NULL) {
  1534. pServerEntry->DnsName.Length = pTdiNetbiosUnicodeExAddress->RemoteName.Length;
  1535. pServerEntry->DnsName.MaximumLength = pServerEntry->DnsName.Length+2*sizeof(WCHAR);
  1536. RtlCopyMemory(pServerEntry->DnsName.Buffer,
  1537. pTdiNetbiosUnicodeExAddress->RemoteNameBuffer,
  1538. pServerEntry->DnsName.Length);
  1539. } else {
  1540. Status = STATUS_INSUFFICIENT_RESOURCES;
  1541. }
  1542. } else {
  1543. //DbgPrint("DNS name was not returned from NetBT for %wZ\n", &pTdiNetbiosUnicodeExAddress->RemoteName);
  1544. if(pServerEntry->DnsName.Buffer != NULL) {
  1545. RxFreePool(pServerEntry->DnsName.Buffer);
  1546. pServerEntry->DnsName.Buffer = NULL;
  1547. }
  1548. }
  1549. SmbCeReleaseResource();
  1550. break;
  1551. } else {
  1552. //DbgPrint("TA %lx is not a NETBIOS_UNICODE_EX\n", pTaAdress);
  1553. pTaAdress = (PTA_ADDRESS)((PCHAR)pTaAdress +
  1554. FIELD_OFFSET(TA_ADDRESS,Address) +
  1555. pTaAdress->AddressLength);
  1556. }
  1557. }
  1558. if (Status == STATUS_SUCCESS) {
  1559. // The Server IP address is not known. Query the underlying
  1560. // transport for the remote transport address, i.e., NETBIOS
  1561. // name or IP address. This will be subsequently used to
  1562. // determine the VC number to be used in session setup and X for
  1563. // downlevel servers.
  1564. Status = RxCeQueryInformation(
  1565. pVcCompletionContext->pVc,
  1566. RxCeRemoteAddressInformation,
  1567. pVcCompletionContext->pTransportAddress,
  1568. pVcCompletionContext->TransportAddressLength);
  1569. }
  1570. if (Status == STATUS_SUCCESS) {
  1571. ULONG NumberOfAddresses;
  1572. USHORT AddressLength;
  1573. USHORT AddressType;
  1574. PBYTE pBuffer = (PBYTE)pVcCompletionContext->pTransportAddress;
  1575. // All Transports currently return a data structure in which
  1576. // the first four bytes are a ULONG which encodes the number
  1577. // of connections opened to the given remote address. The
  1578. // actual Transport address follows.
  1579. pBuffer += sizeof(ULONG);
  1580. // The buffer contains a TRANSPORT_ADDRESS, the first field
  1581. // of which is the count.
  1582. NumberOfAddresses = SmbGetUlong(pBuffer);
  1583. // This is followed by an array of variable length TA_ADDRESS
  1584. // structures. At this point pBuffer points to the first
  1585. // TA_ADDRESS.
  1586. pBuffer += sizeof(ULONG);
  1587. while (NumberOfAddresses-- > 0) {
  1588. AddressLength = SmbGetUshort(pBuffer);
  1589. pBuffer += sizeof(USHORT);
  1590. AddressType = SmbGetUshort(pBuffer);
  1591. if (AddressType != TDI_ADDRESS_TYPE_IP) {
  1592. // skip to the next TA_ADDRESS
  1593. pBuffer += AddressLength + sizeof(USHORT);
  1594. } else {
  1595. // Skip past the type field to position at the
  1596. // corresponding TDI_ADDRESS_IP structure
  1597. pBuffer += sizeof(USHORT);
  1598. // skip to the in_addr field
  1599. pBuffer += FIELD_OFFSET(TDI_ADDRESS_IP,in_addr);
  1600. // Extract the IP address
  1601. RtlCopyMemory(
  1602. &pServerEntry->Server.IpAddress,
  1603. pBuffer,
  1604. sizeof(ULONG));
  1605. break;
  1606. }
  1607. }
  1608. } else {
  1609. RxDbgTrace(0, Dbg, ("Remote Address Query returned %lx\n",Status));
  1610. }
  1611. if (NT_SUCCESS(Status)) {
  1612. Status = VctCompleteInitialization(
  1613. pServerEntry, // The server entry
  1614. pVcCompletionContext->pTransport, // the transport/address information
  1615. pVcCompletionContext->pServerTransport); // the server transport instance
  1616. }
  1617. if (NT_SUCCESS(Status)) {
  1618. pSmbCeContext->pTransport =
  1619. (PSMBCE_SERVER_TRANSPORT)pVcCompletionContext->pServerTransport;
  1620. pVcCompletionContext->pServerTransport = NULL;
  1621. pVcCompletionContext->pTransport = NULL;
  1622. }
  1623. pSmbCeContext->Status = Status;
  1624. } else {
  1625. SmbLogError(Status,
  1626. LOG,
  1627. VctpCreateConnectionCallback,
  1628. LOGULONG(Status)
  1629. LOGPTR(pServerEntry)
  1630. LOGUSTR(pServerEntry->Name));
  1631. }
  1632. if (!NT_SUCCESS(Status)) {
  1633. RxCeTearDownVC(pVcCompletionContext->pVc);
  1634. RxCeTearDownConnection(pVcCompletionContext->pConnection);
  1635. SmbCeDereferenceTransport(pVcCompletionContext->pTransport);
  1636. pVcCompletionContext->pTransport = NULL;
  1637. }
  1638. if (pVcCompletionContext->pTransportArray != NULL) {
  1639. SmbCeDereferenceTransportArray(pVcCompletionContext->pTransportArray);
  1640. }
  1641. if (pVcCompletionContext->pTransportAddress != NULL) {
  1642. RxFreePool(pVcCompletionContext->pTransportAddress);
  1643. }
  1644. if (pVcCompletionContext->pConnectionInformation != NULL) {
  1645. RxFreePool(pVcCompletionContext->pConnectionInformation);
  1646. }
  1647. ASSERT(pVcCompletionContext->pTransport == NULL);
  1648. if (pVcCompletionContext->pServerTransport != NULL) {
  1649. SmbMmFreeServerTransport(
  1650. (PSMBCE_SERVER_TRANSPORT)pVcCompletionContext->pServerTransport);
  1651. }
  1652. RxFreePool(pVcCompletionContext);
  1653. pSmbCeContext->State = SmbCeServerVcTransportConstructionEnd;
  1654. SmbCeConstructServerTransport(pSmbCeContext);
  1655. return STATUS_SUCCESS;
  1656. }
  1657. NTSTATUS
  1658. VctInstantiateServerTransport(
  1659. IN OUT PSMBCE_SERVER_TRANSPORT_CONSTRUCTION_CONTEXT pContext)
  1660. /*++
  1661. Routine Description:
  1662. This routine initializes the transport information corresponding to a server
  1663. Arguments:
  1664. pContext - the transport construction context
  1665. Return Value:
  1666. STATUS_PENDING - asynchronous construction has been initiated
  1667. Notes:
  1668. Currently, only connection oriented transports are handled. The current TDI
  1669. spec expects handles to be passed in as part of the connect request. This
  1670. implies that connect/reconnect/disconnect requests need to be issued from the
  1671. process which created the connection. In the case of the SMB mini rdr there
  1672. is no FSP associated with it ( threads are borrowed/commandeered ) from the
  1673. system process to do all the work. This is the reason for special casing VC
  1674. initialization into a separate routine. The server transport initialization
  1675. routine handles the other transport initialization and also provides the
  1676. context for VC initialization.
  1677. --*/
  1678. {
  1679. NTSTATUS Status = STATUS_PENDING;
  1680. PSMBCE_TRANSPORT_ARRAY pTransportArray;
  1681. PAGED_CODE();
  1682. ASSERT(IoGetCurrentProcess() == RxGetRDBSSProcess());
  1683. pTransportArray = SmbCeReferenceTransportArray();
  1684. if (pTransportArray == NULL) {
  1685. Status = STATUS_NETWORK_UNREACHABLE;
  1686. } else {
  1687. PSMBCEDB_SERVER_ENTRY pServerEntry;
  1688. UNICODE_STRING ServerName;
  1689. PSMBCE_VC_CONNECTION_COMPLETION_CONTEXT pCompletionContext;
  1690. PRXCE_CONNECTION_INFORMATION InitialConnectionInformation = NULL;
  1691. ULONG ServerIpAddress;
  1692. pServerEntry = pContext->pServerEntry;
  1693. ServerName.Buffer = pServerEntry->Name.Buffer + 1;
  1694. ServerName.Length = pServerEntry->Name.Length - sizeof(WCHAR);
  1695. ServerName.MaximumLength = pServerEntry->Name.MaximumLength - sizeof(WCHAR);
  1696. pServerEntry->Server.IpAddress = 0;
  1697. pCompletionContext = (PSMBCE_VC_CONNECTION_COMPLETION_CONTEXT)
  1698. RxAllocatePoolWithTag(
  1699. NonPagedPool,
  1700. sizeof(SMBCE_VC_CONNECTION_COMPLETION_CONTEXT),
  1701. MRXSMB_VC_POOLTAG);
  1702. if (pCompletionContext != NULL) {
  1703. RtlZeroMemory(pCompletionContext,sizeof(SMBCE_VC_CONNECTION_COMPLETION_CONTEXT));
  1704. pCompletionContext->pContext = pContext;
  1705. pCompletionContext->TransportAddressLength = VctComputeTransportAddressSize(
  1706. &ServerName);
  1707. pCompletionContext->pTransportAddress = (PTRANSPORT_ADDRESS)
  1708. RxAllocatePoolWithTag(
  1709. NonPagedPool,
  1710. pCompletionContext->TransportAddressLength,
  1711. MRXSMB_VC_POOLTAG);
  1712. if (pCompletionContext->pTransportAddress == NULL) {
  1713. Status = STATUS_INSUFFICIENT_RESOURCES;
  1714. } else {
  1715. RtlZeroMemory(pCompletionContext->pTransportAddress,
  1716. pCompletionContext->TransportAddressLength);
  1717. Status = VctBuildTransportAddress(
  1718. pCompletionContext->pTransportAddress,
  1719. pCompletionContext->TransportAddressLength,
  1720. &ServerName,
  1721. &ServerIpAddress);
  1722. }
  1723. if (Status == STATUS_SUCCESS) {
  1724. pCompletionContext->pServerTransport = (PSMBCE_SERVER_VC_TRANSPORT)
  1725. SmbMmAllocateServerTransport(
  1726. SMBCE_STT_VC);
  1727. if (pCompletionContext->pServerTransport == NULL) {
  1728. Status = STATUS_INSUFFICIENT_RESOURCES;
  1729. } else {
  1730. pCompletionContext->pConnection =
  1731. &(pCompletionContext->pServerTransport->RxCeConnection);
  1732. pCompletionContext->pVc =
  1733. &(pCompletionContext->pServerTransport->Vcs[0].RxCeVc);
  1734. }
  1735. }
  1736. if (Status == STATUS_SUCCESS) {
  1737. InitialConnectionInformation = RxAllocatePoolWithTag(
  1738. NonPagedPool,
  1739. sizeof(RXCE_CONNECTION_INFORMATION),
  1740. MRXSMB_VC_POOLTAG);
  1741. if (InitialConnectionInformation == NULL) {
  1742. Status = STATUS_INSUFFICIENT_RESOURCES;
  1743. } else {
  1744. InitialConnectionInformation->UserDataLength = 0;
  1745. InitialConnectionInformation->OptionsLength = 0;
  1746. InitialConnectionInformation->RemoteAddressLength = pCompletionContext->TransportAddressLength;
  1747. InitialConnectionInformation->RemoteAddress = pCompletionContext->pTransportAddress;
  1748. }
  1749. }
  1750. if (Status == STATUS_SUCCESS) {
  1751. PSMBCE_TRANSPORT pTransport;
  1752. pCompletionContext->pTransport = NULL;
  1753. pCompletionContext->pTransportArray = pTransportArray;
  1754. pCompletionContext->pConnectionInformation = InitialConnectionInformation;
  1755. //DbgPrint("Remote address %lx \n",pCompletionContext->pConnectionInformation->RemoteAddress);
  1756. if (pServerEntry->PreferredTransport != NULL) {
  1757. pTransport = pServerEntry->PreferredTransport;
  1758. Status = RxCeBuildConnection(
  1759. &pTransport->RxCeAddress,
  1760. InitialConnectionInformation,
  1761. &MRxSmbVctConnectionEventHandler,
  1762. pServerEntry,
  1763. pCompletionContext->pConnection,
  1764. pCompletionContext->pVc);
  1765. if (Status == STATUS_SUCCESS) {
  1766. pCompletionContext->pTransport = pTransport;
  1767. SmbCeReferenceTransport(pTransport);
  1768. }
  1769. ASSERT(Status != STATUS_PENDING);
  1770. if (Status != STATUS_SUCCESS) {
  1771. SmbCeDereferenceTransport(pServerEntry->PreferredTransport);
  1772. pServerEntry->PreferredTransport = NULL;
  1773. }
  1774. pCompletionContext->Status = Status;
  1775. VctpCreateConnectionCallback(
  1776. (PRXCE_CONNECTION_COMPLETION_CONTEXT)pCompletionContext);
  1777. Status = STATUS_PENDING;
  1778. } else {
  1779. Status = RxCeBuildConnectionOverMultipleTransports(
  1780. MRxSmbDeviceObject,
  1781. MRxSmbObeyBindingOrder ?
  1782. RxCeSelectBestSuccessfulTransport :
  1783. RxCeSelectFirstSuccessfulTransport,
  1784. pCompletionContext->pTransportArray->Count,
  1785. pCompletionContext->pTransportArray->LocalAddresses,
  1786. &ServerName,
  1787. InitialConnectionInformation,
  1788. &MRxSmbVctConnectionEventHandler,
  1789. pServerEntry,
  1790. VctpCreateConnectionCallback,
  1791. (PRXCE_CONNECTION_COMPLETION_CONTEXT)pCompletionContext);
  1792. // ASSERT(Status == STATUS_PENDING);
  1793. }
  1794. }
  1795. } else {
  1796. Status = STATUS_INSUFFICIENT_RESOURCES;
  1797. }
  1798. if (Status != STATUS_PENDING) {
  1799. if (pCompletionContext != NULL) {
  1800. if (pCompletionContext->pTransportAddress != NULL) {
  1801. RxFreePool(pCompletionContext->pTransportAddress);
  1802. }
  1803. if (pCompletionContext->pServerTransport != NULL) {
  1804. RxFreePool(pCompletionContext->pServerTransport);
  1805. }
  1806. RxFreePool(pCompletionContext);
  1807. }
  1808. if (InitialConnectionInformation != NULL) {
  1809. RxFreePool(InitialConnectionInformation);
  1810. }
  1811. SmbCeDereferenceTransportArray(pTransportArray);
  1812. }
  1813. }
  1814. if (Status != STATUS_PENDING) {
  1815. ASSERT(Status != STATUS_SUCCESS);
  1816. pContext->State = SmbCeServerVcTransportConstructionEnd;
  1817. pContext->Status = Status;
  1818. // Call the construct server transport routine to complete the construction
  1819. SmbCeConstructServerTransport(pContext);
  1820. Status = STATUS_PENDING;
  1821. }
  1822. return Status;
  1823. }
  1824. NTSTATUS
  1825. VctTearDownServerTransport(
  1826. PSMBCE_SERVER_TRANSPORT pServerTransport)
  1827. {
  1828. NTSTATUS Status;
  1829. PKEVENT pRundownEvent = pServerTransport->pRundownEvent;
  1830. PAGED_CODE();
  1831. ASSERT(IoGetCurrentProcess() == RxGetRDBSSProcess());
  1832. Status = VctUninitialize(pServerTransport);
  1833. if (pRundownEvent != NULL) {
  1834. KeSetEvent(pRundownEvent, 0, FALSE );
  1835. }
  1836. return Status;
  1837. }
  1838. NTSTATUS
  1839. VctInitiateDisconnect(
  1840. PSMBCE_SERVER_TRANSPORT pServerTransport)
  1841. {
  1842. ULONG VcIndex;
  1843. PSMBCE_VC pVc;
  1844. PSMBCE_SERVER_VC_TRANSPORT pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pServerTransport;
  1845. ASSERT(IoGetCurrentProcess() == RxGetRDBSSProcess());
  1846. for (VcIndex = 0; VcIndex < pVcTransport->MaximumNumberOfVCs; VcIndex++) {
  1847. NTSTATUS Status;
  1848. pVc = &pVcTransport->Vcs[VcIndex];
  1849. Status = RxCeInitiateVCDisconnect(&pVc->RxCeVc);
  1850. if (Status != STATUS_SUCCESS) {
  1851. RxDbgTrace(0, Dbg, ("VctInitiateDisconnect: Disconnected Status %lxd\n",Status));
  1852. }
  1853. }
  1854. return STATUS_SUCCESS;
  1855. }
  1856. PFILE_OBJECT
  1857. SmbCepReferenceEndpointFileObject(
  1858. PSMBCE_SERVER_TRANSPORT pTransport)
  1859. /*++
  1860. Routine Description:
  1861. This routine returns the connection file object associated with
  1862. a transport
  1863. Arguments:
  1864. pTransport - the transport instance
  1865. Notes:
  1866. This routine currently returns this for VC transports. When we implement
  1867. other transports a suitable abstraction needs to be implemented
  1868. --*/
  1869. {
  1870. PFILE_OBJECT pEndpointFileObject = NULL;
  1871. PSMBCE_OBJECT_HEADER pHeader = (PSMBCE_OBJECT_HEADER)pTransport;
  1872. if ((pHeader != NULL) && (pHeader->ObjectType == SMBCE_STT_VC)) {
  1873. PSMBCE_SERVER_VC_TRANSPORT pVcTransport = (PSMBCE_SERVER_VC_TRANSPORT)pTransport;
  1874. pEndpointFileObject = pVcTransport->Vcs[0].RxCeVc.pEndpointFileObject;
  1875. if (pEndpointFileObject != NULL) {
  1876. ObReferenceObject(pEndpointFileObject);
  1877. }
  1878. }
  1879. return pEndpointFileObject;
  1880. }
  1881.