dcerpc / dcerpc Goto Github PK

Hello

I am stuck on an issue since we upgraded our software dependencies from cuda 10.1 to cuda 11.7 (in order to support the lastest NVidia GPU).

I was able to simplify the faulty code enough to write a simple test underlining the issue.

To sum up :
I wrote a dcerpc client which establish a connection with a distant server. The code works fine, unless I link with some NVidia Cuda libraries. In this case, when estabishing a connection, a thread cannot be created (#define EINVAL 22 /* Invalid argument */), and dcethread__delete crashed (probably because the thread is null and this case is not correctly handled).

And we are stuck here.

I don't know why the behavior changes when the app is linked with 4 specifics cuda lib (we need all of them 4).

By any chance can someone help us ?

Can you build and release the binary for consumption. I am intereated in dcerpcd service. I am taking a dependency on this and want my users to be able to download binary directly rather than building it locally.

When attempting to compile on 10.13.3, I am getting errors on both CFStringEncodingConverter and wc16str. It looks like the CF framework was removed from macOS and is causing those errors. Additional errors include:

ld: library not found for -lCrashReporterClient
clang: error: linker command failed with exit code 1 (use -v to see invocation)

dcerpc-opensource/dcerpc/ncklib/gssauthcn.h:100:10: fatal error: 'GSS/gssapi_spi.h' file not found
#include <GSS/gssapi_spi.h>

gssapi_spi appears to be part of the Heimdal private framework.

Any suggestion on getting the framework to compile on macOS 10.13?

Is there a package for unbuntu or any Linux Distro where I can directly download the bits without requiring to build locally?

I am using Ubuntu and build fails when making idl_compiler
this is the error when I run make

  CC       libdcethread_la-dcethread_frame_push.lo
  CC       libdcethread_la-dcethread_frame_pop.lo
  CCLD     libdcethread.la
libtool: warning: '-version-info/-version-number' is ignored for convenience libraries
ar: `u' modifier ignored since `D' is the default (see `U')

Making all in idl_compiler

make  all-am

  CC       acf_y.o
In file included from ./nidl.h:179:0,
                 from acf_y.y:112:
./nidlmsg.h:79:1: warning: "/*" within comment [-Wcomment]
 /*!  NAME:                                                                    */
 ^
In file included from acf_y.y:118:0:
./nidlmsg.h:79:1: warning: "/*" within comment [-Wcomment]
 /*!  NAME:                                                                    */
 ^
acf_y.y: In function ‘acf_parser_alloc’:
acf_y.y:1299:19: warning: unused parameter ‘cmd_val_arr’ [-Wunused-parameter]
     void        **cmd_val_arr,  /* [in] Array of command option values */
                   ^
  CC       acf_l.o
In file included from ./nidl.h:179:0,
                 from acf_l.l:99:
./nidlmsg.h:79:1: warning: "/*" within comment [-Wcomment]
 /*!  NAME:                                                                    */
 ^
In file included from acf_l.l:100:0:
acf_y.h:118:18: error: unknown type name ‘acf_parser_state_t’
 int acf_yyparse (acf_parser_state_t * acf);
                  ^
In file included from acf_l.l:102:0:
./nidlmsg.h:79:1: warning: "/*" within comment [-Wcomment]
 /*!  NAME:                                                                    */
 ^
acf_l.c: In function ‘yy_get_next_buffer’:
acf_l.c:1411:47: warning: comparison between signed and unsigned integer expressions [-Wsign-compare]
  if ((int) (yyg->yy_n_chars + number_to_move) > YY_CURRENT_BUFFER_LVALUE->yy_buf_size) {
                                               ^
acf_l.l: At top level:
acf_l.c:1491:17: warning: ‘yyunput’ defined but not used [-Wunused-function]
     static void yyunput (int c, char * yy_bp , yyscan_t yyscanner)
                 ^
acf_l.c:1539:16: warning: ‘input’ defined but not used [-Wunused-function]
     static int input  (yyscan_t yyscanner)

I am using the dceprc project in my open source project to submit certificate signing requests to Active Directory:

https://bitbucket.org/twocanoes/tcscertrequest

The user sometimes has multiple kerberos cache's and i'd like to be able to switch between them prior to submitting the certificate request. However, after the app is running, running kswitch to switch the default credential store doesn't change the credentials used when submitting the request. It is possible to set rpc_c_authz_name in rpc_binding_set_auth_info to use a different kerberos principal? Is there a better way to approach this?

Here is what I am doing (error checking/et al removed for clarity):

protocol_family = "ncacn_ip_tcp";

sprintf(partial_string_binding, "%s:%s[]",
        protocol_family,
        servername);

rpc_binding_from_string_binding((unsigned char *)partial_string_binding,
                                &binding_handle,
                                &status);

snprintf((char *)server_princ_name,1024,"host/%s",servername);

rpc_ep_resolve_binding(binding_handle,
                       ICertPassage_v0_0_c_ifspec,
                       &status);

 
rpc_binding_set_auth_info(binding_handle,
                          (unsigned_char_p_t)server_princ_name,
                          authn_level,
                          authn_protocol,
                          NULL,
                          rpc_c_authz_name,
                          &status);
    
DWORD dwFlags=0xFF;

char *pwszAuthority=calloc(1024,1);
c_to_utf16((char*)ca_name,(char *)pwszAuthority,&outlength);

pctbRequest.pb=(unsigned char *)[inCSR bytes];
pctbRequest.cb=(unsigned int)inCSR.length;

int attribute_string_len;
char *c_attributes=calloc(1024,1);
sprintf(c_attributes, "CertificateTemplate:%s",cert_template);
char *attributes=calloc(2048,1);

c_to_utf16(c_attributes,attributes,&attribute_string_len);
pctbAttribs.pb=(unsigned char *)attributes; 
pctbAttribs.cb=attribute_string_len+2;

DCETHREAD_TRY {
    DWORD outstatus=CertServerRequest(binding_handle,dwFlags,(unsigned short *)pwszAuthority,&pdwRequestId,&pdwDisposition,&pctbAttribs,&pctbRequest,&pctbCert,&pctbEncodedCert,&pctbDispositionMessage);
}

As per instructions for Linux:
To build on Linux or other UNIX-like systems, use the autotools build system.

~/dcerpc.git $ cd dcerpc
~/dcerpc.git $ ./buildconf
~/dcerpc.git $ ./configure && make
~/dcerpc.git $ sudo make install

buildconf is missing in the distribution, making this source code impossible to build on Linux.

I am having an issue connecting to a specific SMB server from OSX El Capitan (10.11.6). I am able to connect to and browse shares on other servers. So, I am trying to figure out what is wrong with the problem SMB server. I'm assuming this library is used on OSX due to the error code that appears in the console log. See below.

I have traced the session traffic between OSX and both these servers and the traffic looks good, and mostly similar, yet OSX will not issue the DCE bind request to srvsvc in the bad case. Rather it will negotiate the session, connect to the IPC share, open the srvsvc pipe, but then promptly disconnects from the share.

I am trying to connect using the Finder and "Connect to Server...". In the failure case, I will receive the following popup:

"there was a problem connecting to the server "badserver".

"There are no shares available or you are not allowed to access them on the server. Please contact your system administrator to resolve the problem"

If I look at the console log messages, there is one clue:

8/29/16 9:50:36.072 AM NetAuthSysAgent[74269]: RPC to srvsrvc gave error 0x16c9a034

Some research points to the error 0x16c9034 being a rpc_s_cannot_connect. Unfortunately, not very helpful.

The perplexing part is that the OSX stack has found the server, successfully authenticated, mounted the IPC share, AND opened the srvsvc file. But fails to issue the Bind request and netshareenum. I am not sure why it cannot connect although I have a suspicion. I am hoping somone has some experience with the SMB stack in OSX. I'm assuming it's the LikeWise stack (PBIS) from powerbroker and I've browsed through that code looking for clues but I end up lost in the weeds.

I can't upload the wireshark pcap files but I can email them if someone wants to take a look. I'll discuss them here instead.

In the Good scenario, I see:

1. Negotiate Request
2. Negotiate Response (success)
3. Setup Request
4. Setup Response (more processing required)
5. Setup Request
6. Setup Response (success)
7. Tree Connect (IPC)
8. Tree Connect Response (success)
9. Create Request (srvsvc)
10. Create Response (success)
11. DCE Bind Request
12. DCE Bind Response
13. NetShareEnum Request
14. NetShareEnum Response

In the Bad scenario, I see the following:

1. Negotiate Request (same as good scenario)
2. Negotiate Response (similar, but not returning a security blob. Not negotiating GSSAPI/SPNEGO)
3. Setup Request (same as good scenario)
4. Setup Response (more processing required, and with NTLMv2 security blob. Not wrapped in GSSAPI/SPNEGO)
5. Setup Request (valid NTLMv2 Security Response)
6. Setup Response (success)
7. Tree Connect Request (IPC) (same as good scenario)
8. Tree Connect Response (success)
9. Create Request (srvsvc) (same as good scenario)
10. Create Response (success)
11. Tree Disconnect Request (IPC) (here is the question. WHY??? Why won't it go forward with the bind request)
12. Tree Disconnect Response (success)

The hypothesis I have is that the OSX SMB stack will not send a bind request on a session that has not negotiated GSSAPI/SPNEGO. Is that true? Does anyone have any visibility into this? Is there any way to enable more verbose logging of the stack? Is there source code for the OSX stack that perhaps I could instrument to see what is going on. I've tried to build dcerpc for OSX but it appears some updates are needed to get it to compile with the GSS framework supplied with OSX 10.11.6.

Any help is greatly appreciated.

Hello, I tried to build the project on Mac OS X. But when I run the command xcodebuild -configuration Debug -target dceidl I get the error message ** BUILD FAILED ** with the description

/projects/dcerpc.git/BuildConfig/run-autoconf: line 130: ./buildconf: No such file or directory run-autoconf: error: buildconf failed

I can't find a buildconf in the project. Is it missing?

I'm running on ubuntu-18.04.2-desktop-amd64, and following the instructions of DCE 1.2.2 documentation set, F201.
After successful compiling, when I run greet_server, I get this error:
Error: Can’t use protocol sequences - rpc_s_cant_listen_socket (dce / rpc)

Why is this happening? I also run dcerpcd with no arguments, so all protseqs are listened on.

/System/Library/PrivateFrameworks/DCERPC.framework

Yeah bro... I ain't no fucking coder... That dumbass file right there cost me the last 4 months of fucking work and my parent called a shrink on me.. You don't know what the fuck your doing, pull this shit off the internet you fucking idiot. And I still haven't removed the shit... Broke 5 of my Macs fighting off the backdoor your dumbass opens up every day!!

Shit ain't fucking funny, you don't even have a download to fix the shit on your site, what an asshole... **

RPC is a CVE lister from March you DICK! OWN UP!

**

Hi I don't see any license file. Can you post a license file?

I doesn't like the comma in size_is here: [out, size_is(,*pcbDataOut)] byte** ppDataOut, and gives this error: The size attributes do not match the array dimension.

https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-bkrp/9dc083a6-541f-47ef-aa05-afc4891aa1dc

Any suggestions for a workaround? or alternative syntax that would work?