| blob | f6a43a536da336236e4c4de3d738eadd38200814 |
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Main SMB server routines
5 Copyright (C) Andrew Tridgell 1992-1997
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
20 */
37 /* the last message the was processed */
40 /* a useful macro to debug the last message processed */
41 #define LAST_MESSAGE() smb_fn_name(last_message)
60 /*
61 * Indirection for file fd's. Needed as POSIX locking
62 * is based on file/process, not fd/process.
63 */
69 /*
70 * Size of data we can send to client. Set
71 * by the client for all protocols above CORE.
72 * Set by us for CORE protocol.
73 */
75 /*
76 * Size of the data we can receive. Set by us.
77 * Can be modified by the max xmit parameter.
78 */
81 /* a fnum to use when chaining */
84 /* number of open connections */
87 /* Oplock ipc UDP socket. */
90 /* Current number of oplocks we have outstanding. */
97 pstring OriginalDir;
99 /* these can be set by some functions to override the error codes */
110 /* for readability... */
111 #define IS_DOS_READONLY(test_mode) (((test_mode) & aRONLY) != 0)
112 #define IS_DOS_DIR(test_mode) (((test_mode) & aDIR) != 0)
113 #define IS_DOS_ARCHIVE(test_mode) (((test_mode) & aARCH) != 0)
114 #define IS_DOS_SYSTEM(test_mode) (((test_mode) & aSYSTEM) != 0)
115 #define IS_DOS_HIDDEN(test_mode) (((test_mode) & aHIDDEN) != 0)
117 /****************************************************************************
118 when exiting, take the whole family
119 ****************************************************************************/
121 {
124 }
125 /****************************************************************************
126 Send a SIGTERM to our process group.
127 *****************************************************************************/
129 {
131 }
133 /****************************************************************************
134 change a dos mode to a unix mode
135 base permission for files:
136 everybody gets read bit set
137 dos readonly is represented in unix by removing everyone's write bit
138 dos archive is represented in unix by the user's execute bit
139 dos system is represented in unix by the group's execute bit
140 dos hidden is represented in unix by the other's execute bit
141 Then apply create mask,
142 then add force bits.
143 base permission for directories:
144 dos directory is represented in unix by unix's dir bit and the exec bit
145 Then apply create mask,
146 then add force bits.
147 ****************************************************************************/
149 {
156 /* We never make directories read only for the owner as under DOS a user
157 can always create a file in a read-only directory. */
159 /* Apply directory mask */
161 /* Add in force bits */
173 /* Apply mode mask */
175 /* Add in force bits */
177 }
179 }
182 /****************************************************************************
183 change a unix mode to a dos mode
184 ****************************************************************************/
186 {
203 }
217 #ifdef S_ISLNK
218 #if LINKS_READ_ONLY
221 #endif
222 #endif
224 /* hide files with a name starting with a . */
226 {
229 p++;
230 else
235 }
237 /* Optimization : Only call is_hidden_path if it's not already
238 hidden. */
240 {
242 }
255 }
257 /*******************************************************************
258 chmod a file - but preserve some bits
259 ********************************************************************/
261 {
270 }
278 /* preserve the s bits */
281 /* preserve the t bit */
282 #ifdef S_ISVTX
284 #endif
286 /* possibly preserve the x bits */
293 /* if we previously had any r bits set then leave them alone */
297 }
299 /* if we previously had any w bits set then leave them alone
300 if the new mode is not rdonly */
305 }
308 }
310 /*******************************************************************
311 Wrapper around sys_utime that possibly allows DOS semantics rather
312 than POSIX.
313 *******************************************************************/
316 {
327 /* We have permission (given by the Samba admin) to
328 break POSIX semantics and allow a user to change
329 the time on a file they don't own but can write to
330 (as DOS does).
331 */
336 /* Check if we have write access. */
338 {
345 {
346 /* We are allowed to become root and change the filetime. */
350 }
351 }
354 }
356 /*******************************************************************
357 Change a filetime - possibly allowing DOS semantics.
358 *******************************************************************/
361 {
370 }
373 }
375 /****************************************************************************
376 check if two filenames are equal
378 this needs to be careful about whether we are case sensitive
379 ****************************************************************************/
381 {
385 /* handle filenames ending in a single dot */
387 {
388 BOOL ret;
393 }
396 {
397 BOOL ret;
402 }
404 /* now normal filename handling */
409 }
412 /****************************************************************************
413 mangle the 2nd name and check if it is then equal to the first name
414 ****************************************************************************/
416 {
417 pstring tmpname;
426 }
429 /****************************************************************************
430 scan a directory to find a filename, matching without case sensitivity
432 If the name looks like a mangled name then try via the mangling functions
433 ****************************************************************************/
435 {
438 BOOL mangled;
439 pstring name2;
443 /* handle null paths */
450 }
455 /* open the directory */
457 {
460 }
462 /* now scan for matching names */
464 {
473 || fname_equal(name, name2)) /* name2 here was changed to dname - since 1.9.16p2 - not sure of reason (jra) */
474 {
475 /* we've found the file, change it's name and return */
480 }
481 }
485 }
487 /****************************************************************************
488 This routine is called to convert names from the dos namespace to unix
489 namespace. It needs to handle any case conversions, mangling, format
490 changes etc.
492 We assume that we have already done a chdir() to the right "root" directory
493 for this service.
495 The function will return False if some part of the name except for the last
496 part cannot be resolved
498 If the saved_last_component != 0, then the unmodified last component
499 of the pathname is returned there. This is used in an exceptional
500 case in reply_mv (so far). If saved_last_component == 0 then nothing
501 is returned there.
503 The bad_path arg is set to True if the filename walk failed. This is
504 used to pick the correct error code to return between ENOENT and ENOTDIR
505 as Windows applications depend on ERRbadpath being returned if a component
506 of a pathname does not exist.
507 ****************************************************************************/
509 {
512 pstring dirpath;
521 /* convert to basic unix format - removing \ chars and cleaning it up */
525 /* names must be relative to the root of the service - trim any leading /.
526 also trim trailing /'s */
529 /*
530 * Ensure saved_last_component is valid even if file exists.
531 */
536 else
538 }
544 /* check if it's a printer file */
546 {
548 {
550 fstring name2;
552 /* sanitise the name */
556 }
558 }
560 /* stat the name - if it exists then we are all done! */
568 /* a special case - if we don't have any mangling chars and are case
569 sensitive then searching won't help */
574 /* now we need to recursively match the name against the real
575 directory structure */
581 /* now match each part of the path name separately, trying the names
582 as is first, then trying to scan the directory for matching names */
584 {
585 /* pinpoint the end of this section of the filename */
588 /* chop the name at this point */
594 /* check if the name exists up to this point */
596 {
597 /* it exists. it must either be a directory or this must be
598 the last part of the path for it to be OK */
600 {
601 /* an intermediate part of the name isn't a directory */
605 }
606 }
607 else
608 {
609 pstring rest;
613 /* remember the rest of the pathname so it can be restored
614 later */
617 /* try to find this part of the path in the directory */
620 {
622 {
623 /* an intermediate part of the name can't be found */
626 /* We need to return the fact that the intermediate
627 name resolution failed. This is used to return an
628 error of ERRbadpath rather than ERRbadfile. Some
629 Windows applications depend on the difference between
630 these two errors.
631 */
634 }
636 /* just the last part of the name doesn't exist */
637 /* we may need to strupper() or strlower() it in case
638 this conversion is being used for file creation
639 purposes */
640 /* if the filename is of mixed case then don't normalise it */
645 /* check on the mangled stack to see if we can recover the
646 base of the filename */
652 }
654 /* restore the rest of the string */
656 {
659 }
660 }
662 /* add to the dirpath that we have resolved so far */
666 /* restore the / that we wiped out earlier */
668 }
670 /* the name has been resolved */
673 }
676 /****************************************************************************
677 normalise for DOS usage
678 ****************************************************************************/
680 {
681 /* check if the disk is beyond the max disk size */
684 /* convert to blocks - and don't overflow */
688 applications getting
689 div by 0 errors */
690 }
693 {
698 {
705 }
706 }
707 }
709 /****************************************************************************
710 return number of 1K blocks available on a path and total number
711 ****************************************************************************/
713 {
716 #ifdef QUOTAS
721 #endif
723 #ifndef NO_STATFS
724 #ifdef USE_STATVFS
726 #else
727 #ifdef ULTRIX
729 #else
731 #endif
732 #endif
733 #endif
735 /* possibly use system() to get the result */
737 {
739 pstring syscmd;
740 pstring outfile;
749 {
755 {
758 }
759 else
761 }
766 #ifdef QUOTAS
767 /* Ensure we return the min value between the users quota and
768 what's free on the disk. Thanks to Albrecht Gebhardt
769 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
770 */
772 {
777 /* maybe dfree and dfreeq are calculated using different bsizes
778 so convert dfree from bsize into bsizeq */
779 /* avoid overflows due to multiplication, so do not:
780 *dfree = ((*dfree) * (*bsize)) / (bsizeq);
781 bsize and bsizeq are powers of 2 so its better to
782 to divide them getting a multiplication or division factor
783 for dfree. Rene Nieuwenhuizen (07-10-1997) */
786 else
791 }
792 #endif
794 }
796 #ifdef NO_STATFS
799 #else
800 #ifdef STATFS4
802 #else
803 #ifdef USE_STATVFS
805 #else
806 #ifdef STATFS3
808 #else
813 {
819 }
821 #ifdef ULTRIX
825 #else
826 #ifdef USE_STATVFS
828 #else
829 #ifdef USE_F_FSIZE
830 /* eg: osf1 has f_fsize = fundamental filesystem block size,
831 f_bsize = optimal transfer block size (MX: 94-04-19) */
833 #else
838 #ifdef STATFS4
840 #else
846 #if defined(SCO) || defined(ISC) || defined(MIPS)
848 #endif
850 /* handle rediculous bsize values - some OSes are broken */
858 {
862 }
864 #ifdef QUOTAS
865 /* Ensure we return the min value between the users quota and
866 what's free on the disk. Thanks to Albrecht Gebhardt
867 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
868 */
870 {
875 /* maybe dfree and dfreeq are calculated using different bsizes
876 so convert dfree from bsize into bsizeq */
877 /* avoid overflows due to multiplication, so do not:
878 *dfree = ((*dfree) * (*bsize)) / (bsizeq);
879 bsize and bsizeq are powers of 2 so its better to
880 to divide them getting a multiplication or division factor
881 for dfree. Rene Nieuwenhuizen (07-10-1997) */
884 else
889 }
890 #endif
892 #endif
893 }
896 /****************************************************************************
897 wrap it to get filenames right
898 ****************************************************************************/
900 {
902 }
906 /****************************************************************************
907 check a filename - possibly caling reducename
909 This is called by every routine before it allows an operation on a filename.
910 It does any final confirmation necessary to ensure that the filename is
911 a valid one for the user to access.
912 ****************************************************************************/
914 {
915 BOOL ret;
920 {
923 }
927 /* Check if we are allowing users to follow symlinks */
928 /* Patch from David Clerc <David.Clerc@cui.unige.ch>
929 University of Geneva */
931 #ifdef S_ISLNK
933 {
937 {
940 }
941 }
942 #endif
948 }
950 /****************************************************************************
951 check a filename - possibly caling reducename
952 ****************************************************************************/
954 {
955 /* special case of pipe opens */
960 {
964 }
965 }
967 /****************************************************************************
968 fd support routines - attempt to do a sys_open
969 ****************************************************************************/
971 {
974 /* Fix for files ending in '.' */
977 {
980 }
982 #if (defined(ENAMETOOLONG) && defined(HAVE_PATHCONF))
984 {
989 {
991 p++;
992 }
994 {
997 }
998 else
999 {
1003 p++;
1004 }
1006 {
1012 }
1013 }
1014 #endif
1016 }
1018 /****************************************************************************
1019 fd support routines - attempt to find an already open file by dev
1020 and inode - increments the ref_count of the returned file_fd_struct *.
1021 ****************************************************************************/
1023 {
1040 }
1041 }
1043 }
1045 /****************************************************************************
1046 fd support routines - attempt to find a empty slot in the FileFd array.
1047 Increments the ref_count of the returned entry.
1048 ****************************************************************************/
1050 {
1064 /* Increment max used counter if neccessary, cuts down
1065 on search time when re-using */
1071 }
1072 }
1076 }
1078 /****************************************************************************
1079 fd support routines - attempt to re-open an already open fd as O_RDWR.
1080 Save the already open fd (we cannot close due to POSIX file locking braindamage.
1081 ****************************************************************************/
1083 {
1096 }
1098 /****************************************************************************
1099 fd support routines - attempt to close the file referenced by this fd.
1100 Decrements the ref_count and returns it.
1101 ****************************************************************************/
1103 {
1104 DEBUG(3,("fd_attempt_close on file_fd_struct %d, fd = %d, dev = %x, inode = %x, open_flags = %d, ref_count = %d.\n",
1124 }
1125 }
1127 }
1129 /****************************************************************************
1130 open a file
1131 ****************************************************************************/
1133 {
1135 pstring fname;
1147 /* check permissions */
1149 {
1153 }
1155 /* this handles a bug in Win95 - it doesn't say to create the file when it
1156 should */
1160 /*
1161 if (flags == O_WRONLY)
1162 DEBUG(3,("Bug in client? Set O_WRONLY without O_CREAT\n"));
1163 */
1165 /*
1166 * Ensure we have a valid struct stat so we can search the
1167 * open fd table.
1168 */
1177 }
1181 }
1182 }
1184 /*
1185 * Check to see if we have this file already
1186 * open. If we do, just use the already open fd and increment the
1187 * reference count (fd_get_already_open increments the ref_count).
1188 */
1193 /* File was already open. */
1198 }
1200 /*
1201 * If not opened O_RDWR try
1202 * and do that here - a chmod may have been done
1203 * between the last open and now.
1204 */
1208 /*
1209 * Ensure that if we wanted write access
1210 * it has been opened for write, and if we wanted read it
1211 * was open for read.
1212 */
1221 }
1225 /* We need to allocate a new file_fd_struct (this increments the
1226 ref_count). */
1229 /*
1230 * Whatever the requested flags, attempt read/write access,
1231 * as we don't know what flags future file opens may require.
1232 * If this fails, try again with the required flags.
1233 * Even if we open read/write when only read access was
1234 * requested the setting of the can_write flag in
1235 * the file_struct will protect us from errant
1236 * write requests. We never need to worry about O_APPEND
1237 * as this is not set anywhere in Samba.
1238 */
1240 /* Set the flags as needed without the read/write modes. */
1243 /*
1244 * On some systems opening a file for R/W access on a read only
1245 * filesystems sets errno to EROFS.
1246 */
1247 #ifdef EROFS
1258 }
1259 }
1260 }
1264 pstring dname;
1278 }
1279 }
1282 {
1285 /* Ensure the ref_count is decremented. */
1289 }
1292 {
1294 /* Do the fstat */
1296 /* Error - backout !! */
1299 /* Ensure the ref_count is decremented. */
1302 }
1304 }
1305 /* Set the correct entries in fd_ptr. */
1330 /*
1331 * If the printer is marked as postscript output a leading
1332 * file identifier to ensure the file is treated as a raw
1333 * postscript file.
1334 * This has a similar effect as CtrlD=0 in WIN.INI file.
1335 * tim@fsg.com 09/06/94
1336 */
1339 {
1342 }
1349 }
1351 #if USE_MMAP
1352 /* mmap it if read-only */
1354 {
1360 {
1363 }
1364 }
1365 #endif
1366 }
1368 /*******************************************************************
1369 sync a file
1370 ********************************************************************/
1372 {
1373 #ifndef NO_FSYNC
1375 #endif
1376 }
1378 /****************************************************************************
1379 run a file if it is a magic script
1380 ****************************************************************************/
1382 {
1388 {
1392 else
1393 p++;
1397 }
1399 {
1401 pstring magic_output;
1402 pstring fname;
1407 else
1414 }
1415 }
1418 /****************************************************************************
1419 close a file - possibly invalidating the read prediction
1421 If normal_close is 1 then this came from a normal SMBclose (or equivalent)
1422 operation otherwise it came as the result of some other operation such as
1423 the closing of the connection. In the latter case printing and
1424 magic scripts are not run
1425 ****************************************************************************/
1427 {
1438 {
1441 }
1443 #if USE_MMAP
1445 {
1448 }
1449 #endif
1452 {
1455 }
1462 /* NT uses smbclose to start a print - weird */
1466 /* check for magic scripts */
1473 }
1477 /*******************************************************************
1478 reproduce the share mode access table
1479 ********************************************************************/
1482 {
1492 /* the new smbpub.zip spec says that if the file extension is
1493 .com, .dll, .exe or .sym then allow the open. I will force
1494 it to read-only as this seems sensible although the spec is
1495 a little unclear on this. */
1502 }
1505 }
1508 {
1524 }
1526 }
1528 /*******************************************************************
1529 check if the share mode on a file allows it to be deleted or unlinked
1530 return True if sharing doesn't prevent the operation
1531 ********************************************************************/
1533 {
1554 /*
1555 * Check if the share modes will give us access.
1556 */
1559 {
1560 BOOL broke_oplock;
1562 do
1563 {
1567 {
1570 /*
1571 * Break oplocks before checking share modes. See comment in
1572 * open_file_shared for details.
1573 * Check if someone has an oplock on this file. If so we must
1574 * break it before continuing.
1575 */
1577 {
1582 /* Oplock break.... */
1585 {
1590 }
1594 }
1596 /* someone else has a share lock on it, check to see
1597 if we can too */
1604 {
1607 }
1609 }
1611 /* XXXX exactly what share mode combinations should be allowed for
1612 deleting/renaming? */
1613 /* If we got here then either there were no share modes or
1614 all share modes were DENY_DOS and the pid == getpid() */
1617 free_and_exit:
1623 }
1625 /****************************************************************************
1626 C. Hoch 11/22/95
1627 Helper for open_file_shared.
1628 Truncate a file after checking locking; close file if locked.
1629 **************************************************************************/
1632 {
1635 /* If share modes are in force for this connection we
1636 have the share entry locked. Unlock it before closing. */
1641 /* Share mode no longer locked. */
1646 }
1647 else
1649 }
1650 }
1652 /****************************************************************************
1653 check if we can open a file with a share mode
1654 ****************************************************************************/
1657 {
1662 {
1666 }
1668 {
1676 {
1681 }
1689 }
1691 }
1693 /****************************************************************************
1694 open a file with a share mode
1695 ****************************************************************************/
1698 {
1715 /* this is for OS/2 EAs - try and say we don't support them */
1717 {
1719 /* OS/2 Workplace shell fix may be main code stream in a later release. */
1720 #ifdef OS2_WPS_FIX
1727 }
1730 {
1733 }
1740 /* note that we ignore the append flag as
1741 append does not mean the same thing under dos and unix */
1744 {
1758 }
1762 {
1764 {
1767 }
1769 }
1772 {
1776 }
1781 {
1786 {
1792 }
1794 /*
1795 * Check if the share modes will give us access.
1796 */
1799 {
1800 BOOL broke_oplock;
1802 do
1803 {
1807 {
1810 /*
1811 * By observation of NetBench, oplocks are broken *before* share
1812 * modes are checked. This allows a file to be closed by the client
1813 * if the share mode would deny access and the client has an oplock.
1814 * Check if someone has an oplock on this file. If so we must break
1815 * it before continuing.
1816 */
1818 {
1823 /* Oplock break.... */
1826 {
1834 }
1838 }
1840 /* someone else has a share lock on it, check to see
1841 if we can too */
1843 {
1850 }
1855 {
1858 }
1860 }
1864 }
1871 {
1874 }
1877 {
1881 {
1882 /* We created the file - thus we must now lock the share entry before creating it. */
1887 }
1890 {
1900 }
1908 {
1912 }
1913 /* We must create the share mode entry before truncate as
1914 truncate can fail due to locking and have to close the
1915 file (which expects the share_mode_entry to be there).
1916 */
1918 {
1920 /* JRA. Currently this only services Exlcusive and batch
1921 oplocks (no other opens on this file). This needs to
1922 be extended to level II oplocks (multiple reader
1923 oplocks). */
1926 {
1928 global_oplocks_open++;
1934 }
1935 else
1936 {
1939 }
1941 }
1945 }
1949 }
1951 /****************************************************************************
1952 seek a file. Try to avoid the seek if possible
1953 ****************************************************************************/
1955 {
1963 }
1965 /****************************************************************************
1966 read from a file
1967 ****************************************************************************/
1969 {
1973 {
1979 }
1981 #if USE_MMAP
1983 {
1986 {
1992 }
1993 }
1994 #endif
2000 {
2003 }
2008 }
2011 }
2014 /****************************************************************************
2015 write to a file
2016 ****************************************************************************/
2018 {
2022 }
2031 }
2032 }
2033 }
2036 }
2039 /****************************************************************************
2040 load parameters specific to a connection/service
2041 ****************************************************************************/
2043 {
2049 {
2052 }
2061 {
2065 }
2080 }
2083 /****************************************************************************
2084 find a service entry
2085 ****************************************************************************/
2087 {
2094 /* now handle the special case of a home directory */
2096 {
2101 {
2104 {
2107 }
2108 }
2109 }
2111 /* If we still don't have a service, attempt to add it as a printer. */
2113 {
2117 {
2123 {
2130 }
2131 else
2133 }
2134 }
2136 /* just possibly it's a default service? */
2138 {
2145 }
2146 }
2147 }
2151 {
2154 }
2160 }
2163 /****************************************************************************
2164 create an error packet from a cached error.
2165 ****************************************************************************/
2167 {
2173 /* We can now delete the auxiliary struct */
2177 }
2180 struct
2181 {
2186 {
2198 #ifdef EDQUOT
2200 #endif
2201 #ifdef ENOTEMPTY
2203 #endif
2204 #ifdef EXDEV
2206 #endif
2209 };
2211 /****************************************************************************
2212 create an error packet from errno
2213 ****************************************************************************/
2215 {
2221 {
2226 }
2227 else
2228 {
2230 {
2232 {
2236 }
2237 i++;
2238 }
2239 }
2242 }
2245 /****************************************************************************
2246 create an error packet. Normally called using the ERROR() macro
2247 ****************************************************************************/
2249 {
2259 line,
2262 error_class,
2263 error_code));
2269 }
2272 #ifndef SIGCLD_IGNORE
2273 /****************************************************************************
2274 this prevents zombie child processes
2275 ****************************************************************************/
2277 {
2280 {
2284 }
2285 depth++;
2290 #ifdef USE_WAITPID
2292 #endif
2294 /* Stop zombies */
2295 /* Stevens, Adv. Unix Prog. says that on system V you must call
2296 wait before reinstalling the signal handler, because the kernel
2297 calls the handler from within the signal-call when there is a
2298 child that has exited. This would lead to an infinite recursion
2299 if done vice versa. */
2301 #ifndef DONT_REINSTALL_SIG
2302 #ifdef SIGCLD_IGNORE
2304 #else
2306 #endif
2307 #endif
2309 #ifndef USE_WAITPID
2311 #endif
2312 depth--;
2315 }
2316 #endif
2318 /****************************************************************************
2319 this is called when the client exits abruptly
2320 **************************************************************************/
2322 {
2329 #ifndef DONT_REINSTALL_SIG
2331 #endif
2334 }
2338 }
2340 /****************************************************************************
2341 open the socket communication
2342 ****************************************************************************/
2344 {
2348 {
2353 /* Stop zombies */
2354 #ifdef SIGCLD_IGNORE
2356 #else
2358 #endif
2360 /* open an incoming socket */
2365 /* ready to listen */
2367 {
2371 }
2376 /* now accept incoming connections - forking a new process
2377 for each incoming connection */
2380 {
2387 {
2390 }
2392 #ifdef NO_FORK_DEBUG
2393 #ifndef NO_SIGNAL_TEST
2396 #endif
2398 #else
2400 {
2401 /* Child code ... */
2402 #ifndef NO_SIGNAL_TEST
2405 #endif
2406 /* close the listening socket */
2409 /* close our standard file descriptors */
2416 /* Reset global variables in util.c so that
2417 client substitutions will be done correctly
2418 in the process.
2419 */
2422 }
2424 #endif
2425 }
2426 }
2427 else
2428 {
2429 /* We will abort gracefully when the client or remote system
2430 goes away */
2431 #ifndef NO_SIGNAL_TEST
2433 #endif
2436 /* close our standard file descriptors */
2441 }
2444 }
2446 /****************************************************************************
2447 process an smb from the client - split out from the process() code so
2448 it can be used by the oplock break code.
2449 ****************************************************************************/
2452 {
2460 /* on the first packet, check the global hosts allow/ hosts
2461 deny parameters before doing any parsing of the packet
2462 passed to us by the client. This prevents attacks on our
2463 parsing code from hosts not in the hosts allow list */
2465 /* send a negative session response "not listining on calling
2466 name" */
2472 }
2473 }
2478 #ifdef WITH_VTP
2480 {
2483 }
2484 #endif
2492 {
2497 {
2500 }
2501 else
2503 }
2504 trans_num++;
2505 }
2507 /****************************************************************************
2508 open the oplock IPC socket communication
2509 ****************************************************************************/
2511 {
2517 /* Open a lookback UDP socket on a random port. */
2520 {
2525 }
2527 /* Find out the transient UDP port we have been allocated. */
2529 {
2536 }
2543 }
2545 /****************************************************************************
2546 process an oplock break message.
2547 ****************************************************************************/
2549 {
2550 int32 msg_len;
2551 int16 from_port;
2562 /* Switch on message command - currently OPLOCK_BREAK_CMD is the
2563 only valid request. */
2566 {
2568 /* Ensure that the msg length is correct. */
2570 {
2574 }
2575 {
2588 /*
2589 * If we have no record of any currently open oplocks,
2590 * it's not an error, as a close command may have
2591 * just been issued on the file that was oplocked.
2592 * Just return success in this case.
2593 */
2596 {
2598 {
2602 }
2603 }
2604 else
2605 {
2608 }
2610 /* Send the message back after OR'ing in the 'REPLY' bit. */
2620 {
2624 }
2630 }
2632 /*
2633 * Keep this as a debug case - eventually we can remove it.
2634 */
2640 {
2644 }
2646 {
2654 }
2661 }
2663 }
2665 /****************************************************************************
2666 Process an oplock break directly.
2667 ****************************************************************************/
2669 {
2682 {
2687 }
2694 }
2695 }
2697 /* We need to search the file open table for the
2698 entry containing this dev and inode, and ensure
2699 we have an oplock on it. */
2701 {
2703 {
2709 }
2710 }
2713 {
2714 /* The file could have been closed in the meantime - return success. */
2718 }
2720 /* Ensure we have an oplock on the file */
2722 /* There is a potential race condition in that an oplock could
2723 have been broken due to another udp request, and yet there are
2724 still oplock break messages being sent in the udp message
2725 queue for this file. So return true if we don't have an oplock,
2726 as we may have just freed it.
2727 */
2730 {
2734 }
2736 /* Now comes the horrid part. We must send an oplock break to the client,
2737 and then process incoming messages until we get a close or oplock release.
2738 */
2740 /* Prepare the SMBlockingX message. */
2752 /* Change this when we have level II oplocks. */
2759 /* Process incoming messages. */
2761 /* JRA - If we don't get a break from the client in OPLOCK_BREAK_TIMEOUT
2762 seconds we should just die.... */
2767 {
2769 {
2770 /*
2771 * Die if we got an error.
2772 */
2783 OPLOCK_BREAK_TIMEOUT));
2789 }
2792 /* We only need this in case a readraw crossed on the wire. */
2796 /*
2797 * Die if we go over the time limit.
2798 */
2801 {
2808 }
2809 }
2811 /*
2812 * If the client did not respond we must die.
2813 */
2816 {
2821 }
2824 {
2825 /* The lockingX reply will have removed the oplock flag
2826 from the sharemode. */
2827 /* Paranoia.... */
2829 }
2831 global_oplocks_open--;
2833 /* Santity check - remove this later. JRA */
2835 {
2837 global_oplocks_open));
2839 }
2845 }
2847 /****************************************************************************
2848 Send an oplock break message to another smbd process. If the oplock is held
2849 by the local smbd then call the oplock break function directly.
2850 ****************************************************************************/
2854 {
2860 {
2861 /* We are breaking our own oplock, make sure it's us. */
2863 {
2867 }
2871 /* Call oplock break direct. */
2873 }
2875 /* We need to send a OPLOCK_BREAK_CMD message to the
2876 port in the share mode entry. */
2885 /* set the address and port */
2896 {
2902 }
2904 /*
2905 * Now we must await the oplock broken message coming back
2906 * from the target smbd process. Timeout if it fails to
2907 * return in OPLOCK_BREAK_TIMEOUT seconds.
2908 * While we get messages that aren't ours, loop.
2909 */
2912 {
2914 int32 reply_msg_len;
2915 int16 reply_from_port;
2920 {
2925 else
2930 }
2932 /*
2933 * If the response we got was not an answer to our message, but
2934 * was a completely different request, push it onto the pending
2935 * udp message stack so that we can deal with it in the main loop.
2936 * It may be another oplock break request to us.
2937 */
2939 /*
2940 * Local note from JRA. There exists the possibility of a denial
2941 * of service attack here by allowing non-root processes running
2942 * on a local machine sending many of these pending messages to
2943 * a smbd port. Currently I'm not sure how to restrict the messages
2944 * I will queue (although I could add a limit to the queue) to
2945 * those received by root processes only. There should be a
2946 * way to make this bulletproof....
2947 */
2955 {
2956 /* Ignore it. */
2959 }
2966 {
2973 }
2976 }
2981 }
2983 /****************************************************************************
2984 check if a snum is in use
2985 ****************************************************************************/
2987 {
2993 }
2995 /****************************************************************************
2996 reload the services file
2997 **************************************************************************/
2999 {
3000 BOOL ret;
3003 {
3004 pstring fname;
3007 {
3010 }
3011 }
3022 /* perhaps the config filename is now set */
3030 {
3035 }
3036 }
3040 /* this forces service parameters to be flushed */
3044 }
3048 /****************************************************************************
3049 this prevents zombie child processes
3050 ****************************************************************************/
3052 {
3056 #ifndef DONT_REINSTALL_SIG
3058 #endif
3061 }
3063 /****************************************************************************
3064 Setup the groups a user belongs to.
3065 ****************************************************************************/
3069 {
3071 {
3073 {
3077 }
3078 }
3079 else
3080 {
3091 {
3094 }
3103 /* The following bit of code is very strange. It is due to the
3104 fact that some OSes use int* and some use gid_t* for
3105 getgroups, and some (like SunOS) use both, one in prototypes,
3106 and one in man pages and the actual code. Thus we detect it
3107 dynamically using some very ugly code */
3109 {
3110 /* does getgroups return ints or gid_t ?? */
3123 {
3126 }
3127 else
3128 {
3132 {
3134 }
3137 }
3138 }
3143 }
3145 }
3147 /****************************************************************************
3148 make a connection to a service
3149 ****************************************************************************/
3151 {
3164 {
3166 {
3169 }
3173 }
3176 {
3181 {
3184 }
3185 }
3189 }
3191 /* you can only connect to the IPC$ service as an ipc device */
3196 {
3199 else
3201 }
3203 /* if the request is as a printer and you can't print then refuse */
3208 }
3210 /* lowercase the user name */
3213 /* add it as a possible user name */
3216 /* shall we let them in? */
3218 {
3221 }
3225 {
3228 }
3233 /* find out some info about the user */
3237 {
3240 }
3244 {
3245 pstring list;
3257 }
3259 /* admin user check */
3261 /* JRA - original code denied admin user if the share was
3262 marked read_only. Changed as I don't think this is needed,
3263 but old code left in case there is a problem here.
3264 */
3266 #if 0
3268 #else
3269 )
3270 #endif
3271 {
3274 }
3275 else
3294 #if HAVE_GETGRNAM
3296 {
3298 pstring gname;
3301 /* default service may be a group name */
3306 {
3309 }
3310 else
3312 }
3313 #endif
3316 {
3318 fstring fuser;
3322 {
3328 }
3329 else
3331 }
3333 {
3334 pstring s;
3339 }
3341 /* groups stuff added by ih */
3348 {
3349 /* Find all the groups this uid is in and store them. Used by become_user() */
3353 /* check number of connections */
3357 {
3360 }
3370 /* execute any "root preexec = " line */
3372 {
3373 pstring cmd;
3378 }
3381 {
3389 }
3391 }
3394 {
3404 }
3406 }
3410 #if SOFTLINK_OPTIMISATION
3411 /* resolve any soft links early */
3412 {
3413 pstring s;
3418 }
3419 #endif
3421 num_connections_open++;
3424 /* execute any "preexec = " line */
3426 {
3427 pstring cmd;
3431 }
3433 /* we've finished with the sensitive stuff */
3436 /* Add veto/hide lists */
3438 {
3441 }
3443 {
3444 DEBUG(IS_IPC(cnum)?3:1,("%s %s (%s) connect to service %s as user %s (uid=%d,gid=%d) (pid %d)\n",
3446 remote_machine,
3452 }
3455 }
3458 /****************************************************************************
3459 find first available file slot
3460 ****************************************************************************/
3462 {
3464 /* we start at 1 here for an obscure reason I can't now remember,
3465 but I think is important :-) */
3471 }
3473 /****************************************************************************
3474 find first available connection slot, starting from a random position.
3475 The randomisation stops problems with the server dieing and clients
3476 thinking the server is still available.
3477 ****************************************************************************/
3479 {
3484 again:
3487 {
3489 {
3492 }
3493 i++;
3496 }
3499 {
3502 }
3506 }
3509 /****************************************************************************
3510 reply for the core protocol
3511 ****************************************************************************/
3513 {
3519 }
3522 /****************************************************************************
3523 reply for the coreplus protocol
3524 ****************************************************************************/
3526 {
3530 readbraw and writebraw (possibly) */
3537 }
3540 /****************************************************************************
3541 reply for the lanman 1.0 protocol
3542 ****************************************************************************/
3544 {
3549 /* We need to save and restore this as it can be destroyed
3550 if we call another server if security=server
3551 Thanks to Paul Nelson @ Thursby for pointing this out.
3552 */
3560 /* Create a token value and add it to the outgoing packet. */
3572 readbraw writebraw (possibly) */
3579 }
3582 /****************************************************************************
3583 reply for the lanman 2.0 protocol
3584 ****************************************************************************/
3586 {
3597 }
3602 }
3614 }
3615 }
3635 }
3638 /****************************************************************************
3639 reply for the nt protocol
3640 ****************************************************************************/
3642 {
3643 /* dual names + lock_and_read + nt SMBs + remote API calls */
3645 /*
3646 other valid capabilities which we may support at some time...
3647 CAP_LARGE_FILES|CAP_NT_SMBS|CAP_RPC_REMOTE_APIS;
3648 CAP_LARGE_READX|CAP_STATUS32|CAP_LEVEL_II_OPLOCKS;
3649 */
3661 }
3666 }
3675 }
3676 }
3680 }
3685 /* decide where (if) to put the encryption challenge, and
3686 follow it with the OEM'd domain name
3687 */
3711 }
3713 /* these are the protocol lists used for auto architecture detection:
3715 WinNT 3.51:
3716 protocol [PC NETWORK PROGRAM 1.0]
3717 protocol [XENIX CORE]
3718 protocol [MICROSOFT NETWORKS 1.03]
3719 protocol [LANMAN1.0]
3720 protocol [Windows for Workgroups 3.1a]
3721 protocol [LM1.2X002]
3722 protocol [LANMAN2.1]
3723 protocol [NT LM 0.12]
3725 Win95:
3726 protocol [PC NETWORK PROGRAM 1.0]
3727 protocol [XENIX CORE]
3728 protocol [MICROSOFT NETWORKS 1.03]
3729 protocol [LANMAN1.0]
3730 protocol [Windows for Workgroups 3.1a]
3731 protocol [LM1.2X002]
3732 protocol [LANMAN2.1]
3733 protocol [NT LM 0.12]
3735 OS/2:
3736 protocol [PC NETWORK PROGRAM 1.0]
3737 protocol [XENIX CORE]
3738 protocol [LANMAN1.0]
3739 protocol [LM1.2X002]
3740 protocol [LANMAN2.1]
3741 */
3743 /*
3744 * Modified to recognize the architecture of the remote machine better.
3745 *
3746 * This appears to be the matrix of which protocol is used by which
3747 * MS product.
3748 Protocol WfWg Win95 WinNT OS/2
3749 PC NETWORK PROGRAM 1.0 1 1 1 1
3750 XENIX CORE 2 2
3751 MICROSOFT NETWORKS 3.0 2 2
3752 DOS LM1.2X002 3 3
3753 MICROSOFT NETWORKS 1.03 3
3754 DOS LANMAN2.1 4 4
3755 LANMAN1.0 4 3
3756 Windows for Workgroups 3.1a 5 5 5
3757 LM1.2X002 6 4
3758 LANMAN2.1 7 5
3759 NT LM 0.12 6 8
3760 *
3761 * tim@fsg.com 09/29/95
3762 */
3765 #define ARCH_WIN95 0x2
3767 #define ARCH_WINNT 0x8
3768 #define ARCH_SAMBA 0x10
3770 #define ARCH_ALL 0x1F
3772 /* List of supported protocols, most desired first */
3789 };
3792 /****************************************************************************
3793 reply to a negprot
3794 ****************************************************************************/
3796 {
3807 {
3808 Index++;
3829 }
3832 }
3853 }
3855 /* possibly reload - change of architecture */
3858 /* a special case to stop password server loops */
3863 /* Check for protocols, most desirable first */
3865 {
3870 {
3873 Index++;
3875 }
3878 }
3887 }
3890 }
3896 }
3899 /****************************************************************************
3900 close all open files for a connection
3901 ****************************************************************************/
3903 {
3908 }
3909 }
3913 /****************************************************************************
3914 close a cnum
3915 ****************************************************************************/
3917 {
3923 {
3926 }
3943 /* execute any "postexec = " line */
3945 {
3946 pstring cmd;
3951 }
3954 /* execute any "root postexec = " line */
3956 {
3957 pstring cmd;
3961 }
3964 num_connections_open--;
3966 {
3973 }
3981 }
3984 /****************************************************************************
3985 simple routines to do connection counting
3986 ****************************************************************************/
3988 {
3990 pstring fname;
4012 {
4015 }
4019 /* find a free spot */
4021 {
4023 {
4027 }
4030 }
4033 {
4037 }
4041 /* remove our mark */
4044 {
4048 }
4054 }
4057 /****************************************************************************
4058 simple routines to do connection counting
4059 ****************************************************************************/
4061 {
4063 pstring fname;
4086 {
4091 }
4098 {
4101 }
4103 /* find a free spot */
4105 {
4110 {
4113 }
4116 {
4122 }
4124 {
4127 }
4128 }
4131 {
4135 }
4137 /* fill in the crec */
4150 /* make our mark */
4153 {
4156 }
4160 }
4162 #if DUMP_CORE
4163 /*******************************************************************
4164 prepare to dump a core file - carefully!
4165 ********************************************************************/
4167 {
4169 pstring dname;
4179 #ifndef NO_GETRLIMIT
4180 #ifdef RLIMIT_CORE
4181 {
4188 }
4189 #endif
4190 #endif
4195 }
4196 #endif
4198 /****************************************************************************
4199 exit the server
4200 ****************************************************************************/
4202 {
4214 #ifdef DFS_AUTH
4217 #endif
4226 #if DUMP_CORE
4228 #endif
4229 }
4235 }
4237 /****************************************************************************
4238 do some standard substitutions in a string
4239 ****************************************************************************/
4241 {
4249 else
4258 }
4259 }
4260 }
4262 }
4264 /*
4265 These flags determine some of the permissions required to do an operation
4267 Note that I don't set NEED_WRITE on some write operations because they
4268 are used by some brain-dead clients when printing, and I don't want to
4269 force write permissions on print services.
4270 */
4271 #define AS_USER (1<<0)
4272 #define NEED_WRITE (1<<1)
4273 #define TIME_INIT (1<<2)
4274 #define CAN_IPC (1<<3)
4275 #define AS_GUEST (1<<5)
4278 /*
4279 define a list of possible SMB messages and their corresponding
4280 functions. Any message that has a NULL function is unimplemented -
4281 please feel free to contribute implementations!
4282 */
4283 struct smb_message_struct
4284 {
4289 #if PROFILING
4291 #endif
4292 }
4293 smb_messages[] = {
4295 /* CORE PROTOCOL */
4312 /* note that SMBmknew and SMBcreate are deliberately overloaded */
4325 /* this is a Pathworks specific call, allowing the
4326 changing of the root path */
4339 /* CORE+ PROTOCOL FOLLOWS */
4347 /* LANMAN1.0 PROTOCOL FOLLOWS */
4371 /* LANMAN2.0 PROTOCOL FOLLOWS */
4377 /* messaging routines */
4383 /* NON-IMPLEMENTED PARTS OF THE CORE PROTOCOL */
4389 };
4391 /****************************************************************************
4392 return a string containing the function name of a SMB command
4393 ****************************************************************************/
4395 {
4409 }
4412 /****************************************************************************
4413 do a switch on the message type, and return the response size
4414 ****************************************************************************/
4416 {
4423 #if PROFILING
4429 #endif
4437 /* make sure this is an SMB packet */
4439 {
4442 }
4449 {
4452 }
4453 else
4454 {
4457 {
4462 /* does this protocol need to be run as root? */
4466 /* does this protocol need to be run as the connected user? */
4470 else
4472 }
4473 /* this code is to work around a bug is MS client 3 without
4474 introducing a security hole - it needs to be able to do
4475 print queue checks as guest if it isn't logged in properly */
4479 /* does it need write permission? */
4483 /* ipc services are limited */
4487 /* load service specific parameters */
4491 /* does this protocol need to be run as guest? */
4498 }
4499 else
4500 {
4502 }
4503 }
4505 #if PROFILING
4508 {
4511 }
4512 {
4518 }
4522 #endif
4525 }
4528 /****************************************************************************
4529 construct a chained reply and add it to the already made reply
4530 **************************************************************************/
4532 {
4545 /* maybe its not chained */
4549 }
4552 /* this is the first part of the chain */
4555 }
4557 /* we need to tell the client where the next part of the reply will be */
4561 /* remember how much the caller added to the chain, only counting stuff
4562 after the parameter words */
4565 /* work out pointers into the original packets. The
4566 headers on these need to be filled in */
4570 /* remember the original command type */
4573 /* save the data which will be overwritten by the new headers */
4577 /* give the new packet the same header as the last part of the SMB */
4580 /* create the in buffer */
4583 /* create the out buffer */
4592 means a reply */
4603 /* process the request */
4607 /* copy the new reply and request headers over the old ones, but
4608 preserve the smb_com field */
4612 /* restore the saved data, being careful not to overwrite any
4613 data from the reply header */
4615 {
4619 }
4622 }
4626 /****************************************************************************
4627 construct a reply to the incoming packet
4628 ****************************************************************************/
4630 {
4653 means a reply */
4668 }
4670 /****************************************************************************
4671 process commands from the client
4672 ****************************************************************************/
4674 {
4685 #if PRIME_NMBD
4687 {
4693 }
4694 #endif
4697 {
4716 {
4723 {
4726 }
4729 {
4732 }
4735 {
4739 }
4743 /* become root again if waiting */
4746 /* check for smb.conf reload */
4748 {
4751 /* reload services, if files have changed. */
4753 }
4755 /* automatic timeout if all connections are closed */
4757 {
4760 }
4763 {
4768 }
4769 /* also send a keepalive to the password server if its still
4770 connected */
4774 }
4776 /* check for connection timeouts */
4779 {
4780 /* close dirptrs on connections that are idle */
4787 }
4790 {
4793 }
4794 }
4798 else
4800 }
4801 }
4804 /****************************************************************************
4805 initialise connect, service and file structs
4806 ****************************************************************************/
4808 {
4813 {
4822 }
4825 {
4829 }
4832 {
4841 }
4844 }
4846 /****************************************************************************
4847 usage on the program
4848 ****************************************************************************/
4850 {
4853 printf("Usage: %s [-D] [-p port] [-d debuglevel] [-l log basename] [-s services file]\n",pname);
4863 }
4866 /****************************************************************************
4867 main program
4868 ****************************************************************************/
4870 {
4872 /* shall I run as a daemon */
4879 #ifdef NEED_AUTH_PARAMETERS
4881 #endif
4883 #ifdef SecureWare
4885 #endif
4897 /* make absolutely sure we run as root - to handle cases whre people
4898 are crazy enough to have it setuid */
4899 #ifdef USE_SETRES
4901 #else
4906 #endif
4911 /* we want total control over the permissions on created files,
4912 so set our umask to 0 */
4919 /* this is for people who can't start the program correctly */
4921 {
4922 argv++;
4923 argc--;
4924 }
4928 {
4939 {
4942 }
4951 {
4954 }
4962 else
4975 }
4982 #ifndef NO_GETRLIMIT
4983 #ifdef RLIMIT_NOFILE
4984 {
4991 }
4992 #endif
4993 #endif
5000 {
5003 }
5014 #ifndef NO_SIGNAL_TEST
5016 #endif
5021 {
5024 }
5027 {
5030 }
5033 {
5038 #ifdef O_NONBLOCK
5039 O_NONBLOCK |
5040 #endif
5042 {
5045 }
5047 {
5050 }
5053 {
5056 }
5057 /* Leave pid file open & locked for the duration... */
5058 }
5066 /* possibly reload the services file. */
5072 {
5075 }
5077 /* Setup the oplock IPC socket. */
5086 }