Bug 13488 - 'epstatus' from dcerpc is not able to parse returned towers from empd
Summary: 'epstatus' from dcerpc is not able to parse returned towers from empd
Status: RESOLVED INVALID
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: File services (show other bugs)
Version: 4.8.2
Hardware: All All
: P5 normal (vote)
Target Milestone: ---
Assignee: Andreas Schneider
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-06-27 06:17 UTC by Andreas Schneider
Modified: 2018-07-05 16:32 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Schneider 2018-06-27 06:17:45 UTC 
https://github.com/dcerpc/dcerpc

cd dcerpc/dcerpc
autoreconf --install
./configure --prefix /opt/dce
make -j8

./tools/epstatus
0 endpoints registered


[2018/06/27 08:16:40.504290,  1, pid=29341, effective(65534, 65533), real(65534, 0), class=rpc_parse] ../librpc/ndr/ndr.c:471(ndr_print_function_debug)
       epm_Lookup: struct epm_Lookup
          out: struct epm_Lookup
              entry_handle             : *
                  entry_handle: struct policy_handle
                      handle_type              : 0x00000000 (0)
                      uuid                     : 00000000-0000-0000-0000-000000000000
              num_ents                 : *
                  num_ents                 : 0x00000003 (3)
              entries: ARRAY(3)
                  entries: struct epm_entry_t
                      object                   : 00000000-0000-0000-0000-000000000000
                      tower                    : *
                          tower: struct epm_twr_t
                              tower_length             : 0x0000004b (75)
                              tower: struct epm_tower
                                  num_floors               : 0x0005 (5)
                                  floors: ARRAY(5)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_UUID (13)
                                              lhs_data                 : DATA_BLOB length=18
  [0000] 78 56 34 12 34 12 CD AB   EF 00 01 23 45 67 CF FB   xV4.4... ...#Eg..
  [0010] 01 00                                              .. 
                                          rhs                      : union epm_rhs(case 13)
                                          uuid: struct epm_rhs_uuid
                                              unknown                  : DATA_BLOB length=2
  [0000] 00 00                                              .. 
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_UUID (13)
                                              lhs_data                 : DATA_BLOB length=18
  [0000] 04 5D 88 8A EB 1C C9 11   9F E8 08 00 2B 10 48 60   .]...... ....+.H`
  [0010] 02 00                                              .. 
                                          rhs                      : union epm_rhs(case 13)
                                          uuid: struct epm_rhs_uuid
                                              unknown                  : DATA_BLOB length=2
  [0000] 00 00                                              .. 
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_NCACN (11)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 11)
                                          ncacn: struct epm_rhs_ncacn
                                              minor_version            : 0x0000 (0)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_TCP (7)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 7)
                                          tcp: struct epm_rhs_tcp
                                              port                     : 0xc000 (49152)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_IP (9)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 9)
                                          ip: struct epm_rhs_ip
                                              ipaddr                   : 192.168.178.22
                      __annotation_offset      : 0x00000000 (0)
                      __annotation_length      : 0x00000009 (9)
                      annotation               : 'netlogon'
                  entries: struct epm_entry_t
                      object                   : 00000000-0000-0000-0000-000000000000
                      tower                    : *
                          tower: struct epm_twr_t
                              tower_length             : 0x0000004b (75)
                              tower: struct epm_tower
                                  num_floors               : 0x0005 (5)
                                  floors: ARRAY(5)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_UUID (13)
                                              lhs_data                 : DATA_BLOB length=18
  [0000] 78 57 34 12 34 12 CD AB   EF 00 01 23 45 67 89 AC   xW4.4... ...#Eg..
  [0010] 01 00                                              .. 
                                          rhs                      : union epm_rhs(case 13)
                                          uuid: struct epm_rhs_uuid
                                              unknown                  : DATA_BLOB length=2
  [0000] 00 00                                              .. 
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_UUID (13)
                                              lhs_data                 : DATA_BLOB length=18
  [0000] 04 5D 88 8A EB 1C C9 11   9F E8 08 00 2B 10 48 60   .]...... ....+.H`
  [0010] 02 00                                              .. 
                                          rhs                      : union epm_rhs(case 13)
                                          uuid: struct epm_rhs_uuid
                                              unknown                  : DATA_BLOB length=2
  [0000] 00 00                                              .. 
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_NCACN (11)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 11)
                                          ncacn: struct epm_rhs_ncacn
                                              minor_version            : 0x0000 (0)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_TCP (7)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 7)
                                          tcp: struct epm_rhs_tcp
                                              port                     : 0xc000 (49152)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_IP (9)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 9)
                                          ip: struct epm_rhs_ip
                                              ipaddr                   : 192.168.178.22
                      __annotation_offset      : 0x00000000 (0)
                      __annotation_length      : 0x00000005 (5)
                      annotation               : 'samr'
                  entries: struct epm_entry_t
                      object                   : 00000000-0000-0000-0000-000000000000
                      tower                    : *
                          tower: struct epm_twr_t
                              tower_length             : 0x0000004b (75)
                              tower: struct epm_tower
                                  num_floors               : 0x0005 (5)
                                  floors: ARRAY(5)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_UUID (13)
                                              lhs_data                 : DATA_BLOB length=18
  [0000] 78 57 34 12 34 12 CD AB   EF 00 01 23 45 67 89 AB   xW4.4... ...#Eg..
  [0010] 00 00                                              .. 
                                          rhs                      : union epm_rhs(case 13)
                                          uuid: struct epm_rhs_uuid
                                              unknown                  : DATA_BLOB length=2
  [0000] 00 00                                              .. 
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_UUID (13)
                                              lhs_data                 : DATA_BLOB length=18
  [0000] 04 5D 88 8A EB 1C C9 11   9F E8 08 00 2B 10 48 60   .]...... ....+.H`
  [0010] 02 00                                              .. 
                                          rhs                      : union epm_rhs(case 13)
                                          uuid: struct epm_rhs_uuid
                                              unknown                  : DATA_BLOB length=2
  [0000] 00 00                                              .. 
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_NCACN (11)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 11)
                                          ncacn: struct epm_rhs_ncacn
                                              minor_version            : 0x0000 (0)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_TCP (7)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 7)
                                          tcp: struct epm_rhs_tcp
                                              port                     : 0xc000 (49152)
                                      floors: struct epm_floor
                                          lhs: struct epm_lhs
                                              protocol                 : EPM_PROTOCOL_IP (9)
                                              lhs_data                 : DATA_BLOB length=0
                                          rhs                      : union epm_rhs(case 9)
                                          ip: struct epm_rhs_ip
                                              ipaddr                   : 192.168.178.22
                      __annotation_offset      : 0x00000000 (0)
                      __annotation_length      : 0x00000007 (7)
                      annotation               : 'lsarpc'
              result                   : 0x16c9a0d6 (382312662)
Comment 1 Andreas Schneider 2018-07-05 16:32:51 UTC 
epstatus from dcerpc works on a local database. It doesn't do any network connections.