| blob | 296962421560b0bffbeffb6dc1962cd7bcf8b066 |
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Main SMB server routines
5 Copyright (C) Andrew Tridgell 1992-1997
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
20 */
37 /* the last message the was processed */
40 /* a useful macro to debug the last message processed */
41 #define LAST_MESSAGE() smb_fn_name(last_message)
60 /*
61 * Indirection for file fd's. Needed as POSIX locking
62 * is based on file/process, not fd/process.
63 */
69 /*
70 * Size of data we can send to client. Set
71 * by the client for all protocols above CORE.
72 * Set by us for CORE protocol.
73 */
75 /*
76 * Size of the data we can receive. Set by us.
77 * Can be modified by the max xmit parameter.
78 */
81 /* a fnum to use when chaining */
84 /* number of open connections */
89 pstring OriginalDir;
91 /* these can be set by some functions to override the error codes */
102 /* for readability... */
103 #define IS_DOS_READONLY(test_mode) (((test_mode) & aRONLY) != 0)
104 #define IS_DOS_DIR(test_mode) (((test_mode) & aDIR) != 0)
105 #define IS_DOS_ARCHIVE(test_mode) (((test_mode) & aARCH) != 0)
106 #define IS_DOS_SYSTEM(test_mode) (((test_mode) & aSYSTEM) != 0)
107 #define IS_DOS_HIDDEN(test_mode) (((test_mode) & aHIDDEN) != 0)
109 /****************************************************************************
110 when exiting, take the whole family
111 ****************************************************************************/
113 {
116 }
117 /****************************************************************************
118 Send a SIGTERM to our process group.
119 *****************************************************************************/
121 {
123 }
125 /****************************************************************************
126 change a dos mode to a unix mode
127 base permission for files:
128 everybody gets read bit set
129 dos readonly is represented in unix by removing everyone's write bit
130 dos archive is represented in unix by the user's execute bit
131 dos system is represented in unix by the group's execute bit
132 dos hidden is represented in unix by the other's execute bit
133 Then apply create mask,
134 then add force bits.
135 base permission for directories:
136 dos directory is represented in unix by unix's dir bit and the exec bit
137 Then apply create mask,
138 then add force bits.
139 ****************************************************************************/
141 {
148 /* We never make directories read only for the owner as under DOS a user
149 can always create a file in a read-only directory. */
151 /* Apply directory mask */
153 /* Add in force bits */
165 /* Apply mode mask */
167 /* Add in force bits */
169 }
171 }
174 /****************************************************************************
175 change a unix mode to a dos mode
176 ****************************************************************************/
178 {
195 }
209 #if LINKS_READ_ONLY
212 #endif
214 /* hide files with a name starting with a . */
216 {
219 p++;
220 else
225 }
227 /* Optimization : Only call is_hidden_path if it's not already
228 hidden. */
230 {
232 }
245 }
248 /*******************************************************************
249 chmod a file - but preserve some bits
250 ********************************************************************/
252 {
261 }
269 /* preserve the s bits */
272 /* preserve the t bit */
273 #ifdef S_ISVTX
275 #endif
277 /* possibly preserve the x bits */
284 /* if we previously had any r bits set then leave them alone */
288 }
290 /* if we previously had any w bits set then leave them alone
291 if the new mode is not rdonly */
296 }
299 }
302 /****************************************************************************
303 check if two filenames are equal
305 this needs to be careful about whether we are case sensitive
306 ****************************************************************************/
308 {
312 /* handle filenames ending in a single dot */
314 {
315 BOOL ret;
320 }
323 {
324 BOOL ret;
329 }
331 /* now normal filename handling */
336 }
339 /****************************************************************************
340 mangle the 2nd name and check if it is then equal to the first name
341 ****************************************************************************/
343 {
344 pstring tmpname;
353 }
356 /****************************************************************************
357 scan a directory to find a filename, matching without case sensitivity
359 If the name looks like a mangled name then try via the mangling functions
360 ****************************************************************************/
362 {
365 BOOL mangled;
366 pstring name2;
370 /* handle null paths */
377 }
382 /* open the directory */
384 {
387 }
389 /* now scan for matching names */
391 {
401 {
402 /* we've found the file, change it's name and return */
407 }
408 }
412 }
414 /****************************************************************************
415 This routine is called to convert names from the dos namespace to unix
416 namespace. It needs to handle any case conversions, mangling, format
417 changes etc.
419 We assume that we have already done a chdir() to the right "root" directory
420 for this service.
422 The function will return False if some part of the name except for the last
423 part cannot be resolved
425 If the saved_last_component != 0, then the unmodified last component
426 of the pathname is returned there. This is used in an exceptional
427 case in reply_mv (so far). If saved_last_component == 0 then nothing
428 is returned there.
429 ****************************************************************************/
431 {
434 pstring dirpath;
440 /* convert to basic unix format - removing \ chars and cleaning it up */
444 /* names must be relative to the root of the service - trim any leading /.
445 also trim trailing /'s */
448 /*
449 * Ensure saved_last_component is valid even if file exists.
450 */
455 else
457 }
463 /* check if it's a printer file */
465 {
467 {
469 fstring name2;
471 /* sanitise the name */
475 }
477 }
479 /* stat the name - if it exists then we are all done! */
485 /* a special case - if we don't have any mangling chars and are case
486 sensitive then searching won't help */
491 /* now we need to recursively match the name against the real
492 directory structure */
498 /* now match each part of the path name separately, trying the names
499 as is first, then trying to scan the directory for matching names */
501 {
502 /* pinpoint the end of this section of the filename */
505 /* chop the name at this point */
511 /* check if the name exists up to this point */
513 {
514 /* it exists. it must either be a directory or this must be
515 the last part of the path for it to be OK */
517 {
518 /* an intermediate part of the name isn't a directory */
522 }
523 }
524 else
525 {
526 pstring rest;
530 /* remember the rest of the pathname so it can be restored
531 later */
534 /* try to find this part of the path in the directory */
537 {
539 {
540 /* an intermediate part of the name can't be found */
544 }
546 /* just the last part of the name doesn't exist */
547 /* we may need to strupper() or strlower() it in case
548 this conversion is being used for file creation
549 purposes */
550 /* if the filename is of mixed case then don't normalise it */
555 /* check on the mangled stack to see if we can recover the
556 base of the filename */
562 }
564 /* restore the rest of the string */
566 {
569 }
570 }
572 /* add to the dirpath that we have resolved so far */
576 /* restore the / that we wiped out earlier */
578 }
580 /* the name has been resolved */
583 }
586 /****************************************************************************
587 normalise for DOS usage
588 ****************************************************************************/
590 {
591 /* check if the disk is beyond the max disk size */
594 /* convert to blocks - and don't overflow */
598 applications getting
599 div by 0 errors */
600 }
603 {
608 {
615 }
616 }
617 }
619 /****************************************************************************
620 return number of 1K blocks available on a path and total number
621 ****************************************************************************/
623 {
626 #ifdef QUOTAS
631 #endif
633 #ifndef NO_STATFS
634 #ifdef USE_STATVFS
636 #else
637 #ifdef ULTRIX
639 #else
641 #endif
642 #endif
643 #endif
645 /* possibly use system() to get the result */
647 {
649 pstring syscmd;
650 pstring outfile;
659 {
665 {
668 }
669 else
671 }
676 #ifdef QUOTAS
677 /* Ensure we return the min value between the users quota and
678 what's free on the disk. Thanks to Albrecht Gebhardt
679 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
680 */
682 {
687 /* maybe dfree and dfreeq are calculated using different bsizes
688 so convert dfree from bsize into bsizeq */
693 }
694 #endif
696 }
698 #ifdef NO_STATFS
701 #else
702 #ifdef STATFS4
704 #else
705 #ifdef USE_STATVFS
707 #else
708 #ifdef STATFS3
710 #else
715 {
721 }
723 #ifdef ULTRIX
727 #else
728 #ifdef USE_STATVFS
730 #else
731 #ifdef USE_F_FSIZE
732 /* eg: osf1 has f_fsize = fundamental filesystem block size,
733 f_bsize = optimal transfer block size (MX: 94-04-19) */
735 #else
740 #ifdef STATFS4
742 #else
748 #if defined(SCO) || defined(ISC) || defined(MIPS)
750 #endif
752 /* handle rediculous bsize values - some OSes are broken */
760 {
764 }
766 #ifdef QUOTAS
767 /* Ensure we return the min value between the users quota and
768 what's free on the disk. Thanks to Albrecht Gebhardt
769 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
770 */
772 {
777 /* maybe dfree and dfreeq are calculated using different bsizes
778 so convert dfree from bsize into bsizeq */
783 }
784 #endif
786 #endif
787 }
790 /****************************************************************************
791 wrap it to get filenames right
792 ****************************************************************************/
794 {
796 }
800 /****************************************************************************
801 check a filename - possibly caling reducename
803 This is called by every routine before it allows an operation on a filename.
804 It does any final confirmation necessary to ensure that the filename is
805 a valid one for the user to access.
806 ****************************************************************************/
808 {
809 BOOL ret;
814 {
817 }
824 }
826 /****************************************************************************
827 check a filename - possibly caling reducename
828 ****************************************************************************/
830 {
831 /* special case of pipe opens */
836 {
840 }
841 }
843 /****************************************************************************
844 fd support routines - attempt to do a sys_open
845 ****************************************************************************/
848 {
851 /* Fix for files ending in '.' */
854 {
857 }
859 #if (defined(ENAMETOOLONG) && defined(HAVE_PATHCONF))
861 {
866 {
868 p++;
869 }
871 {
874 }
875 else
876 {
880 p++;
881 }
883 {
889 }
890 }
891 #endif
893 }
895 /****************************************************************************
896 fd support routines - attempt to find an already open file by dev
897 and inode - increments the ref_count of the returned file_fd_struct *.
898 ****************************************************************************/
900 {
917 }
918 }
920 }
922 /****************************************************************************
923 fd support routines - attempt to find a empty slot in the FileFd array.
924 Increments the ref_count of the returned entry.
925 ****************************************************************************/
927 {
941 /* Increment max used counter if neccessary, cuts down
942 on search time when re-using */
948 }
949 }
953 }
955 /****************************************************************************
956 fd support routines - attempt to re-open an already open fd as O_RDWR.
957 Save the already open fd (we cannot close due to POSIX file locking braindamage.
958 ****************************************************************************/
961 {
974 }
976 /****************************************************************************
977 fd support routines - attempt to close the file referenced by this fd.
978 Decrements the ref_count and returns it.
979 ****************************************************************************/
981 {
982 DEBUG(3,("fd_attempt_close on file_fd_struct %d, fd = %d, dev = %x, inode = %x, open_flags = %d, ref_count = %d.\n",
1002 }
1003 }
1005 }
1007 /****************************************************************************
1008 open a file
1009 ****************************************************************************/
1011 {
1013 pstring fname;
1023 /* check permissions */
1025 {
1029 }
1031 /* this handles a bug in Win95 - it doesn't say to create the file when it
1032 should */
1036 /*
1037 if (flags == O_WRONLY)
1038 DEBUG(3,("Bug in client? Set O_WRONLY without O_CREAT\n"));
1039 */
1041 #if UTIME_WORKAROUND
1042 /* XXXX - is this OK?? */
1043 /* this works around a utime bug but can cause other problems */
1046 #endif
1048 /*
1049 * Ensure we have a valid struct stat so we can search the
1050 * open fd table.
1051 */
1060 }
1064 }
1065 }
1067 /*
1068 * Check to see if we have this file already
1069 * open. If we do, just use the already open fd and increment the
1070 * reference count (fd_get_already_open increments the ref_count).
1071 */
1076 /* File was already open. */
1081 }
1083 /*
1084 * If not opened O_RDWR try
1085 * and do that here - a chmod may have been done
1086 * between the last open and now.
1087 */
1091 /*
1092 * Ensure that if we wanted write access
1093 * it has been opened for write, and if we wanted read it
1094 * was open for read.
1095 */
1104 }
1108 /* We need to allocate a new file_fd_struct (this increments the
1109 ref_count). */
1112 /*
1113 * Whatever the requested flags, attempt read/write access,
1114 * as we don't know what flags future file opens may require.
1115 * If this fails, try again with the required flags.
1116 * Even if we open read/write when only read access was
1117 * requested the setting of the can_write flag in
1118 * the file_struct will protect us from errant
1119 * write requests. We never need to worry about O_APPEND
1120 * as this is not set anywhere in Samba.
1121 */
1123 /* Set the flags as needed without the read/write modes. */
1126 /*
1127 * On some systems opening a file for R/W access on a read only
1128 * filesystems sets errno to EROFS.
1129 */
1130 #ifdef EROFS
1141 }
1142 }
1143 }
1147 pstring dname;
1161 }
1162 }
1165 {
1168 /* Ensure the ref_count is decremented. */
1172 }
1175 {
1177 /* Do the fstat */
1179 /* Error - backout !! */
1182 /* Ensure the ref_count is decremented. */
1185 }
1187 }
1188 /* Set the correct entries in fd_ptr. */
1212 /*
1213 * If the printer is marked as postscript output a leading
1214 * file identifier to ensure the file is treated as a raw
1215 * postscript file.
1216 * This has a similar effect as CtrlD=0 in WIN.INI file.
1217 * tim@fsg.com 09/06/94
1218 */
1221 {
1224 }
1231 }
1233 #if USE_MMAP
1234 /* mmap it if read-only */
1236 {
1242 {
1245 }
1246 }
1247 #endif
1248 }
1250 /*******************************************************************
1251 sync a file
1252 ********************************************************************/
1254 {
1255 #ifndef NO_FSYNC
1257 #endif
1258 }
1260 /****************************************************************************
1261 run a file if it is a magic script
1262 ****************************************************************************/
1264 {
1270 {
1274 else
1275 p++;
1279 }
1281 {
1283 pstring magic_output;
1284 pstring fname;
1289 else
1296 }
1297 }
1300 /****************************************************************************
1301 close a file - possibly invalidating the read prediction
1302 ****************************************************************************/
1304 {
1309 share_lock_token token;
1315 {
1318 }
1320 #if USE_MMAP
1322 {
1325 }
1326 #endif
1329 {
1332 }
1339 /* NT uses smbclose to start a print - weird */
1343 /* check for magic scripts */
1349 }
1353 /*******************************************************************
1354 reproduce the share mode access table
1355 ********************************************************************/
1358 {
1367 /* the new smbpub.zip spec says that if the file extension is
1368 .com, .dll, .exe or .sym then allow the open. I will force
1369 it to read-only as this seems sensible although the spec is
1370 a little unclear on this. */
1377 }
1380 }
1383 {
1399 }
1401 }
1403 /*******************************************************************
1404 check if the share mode on a file allows it to be deleted or unlinked
1405 return True if sharing doesn't prevent the operation
1406 ********************************************************************/
1408 {
1414 share_lock_token token;
1427 {
1433 }
1435 /* XXXX exactly what share mode combinations should be allowed for
1436 deleting/renaming? */
1437 /* If we got here then either there were no share modes or
1438 all share modes were DENY_DOS and the pid == getpid() */
1441 free_and_exit:
1447 }
1449 /****************************************************************************
1450 C. Hoch 11/22/95
1451 Helper for open_file_shared.
1452 Truncate a file after checking locking; close file if locked.
1453 **************************************************************************/
1456 {
1459 /* If share modes are in force for this connection we
1460 have the share entry locked. Unlock it before closing. */
1465 /* Share mode no longer locked. */
1470 }
1471 else
1473 }
1474 }
1477 /****************************************************************************
1478 open a file with a share mode
1479 ****************************************************************************/
1482 {
1491 share_lock_token token;
1498 /* this is for OS/2 EAs - try and say we don't support them */
1500 {
1504 }
1507 {
1510 }
1517 /* note that we ignore the append flag as
1518 append does not mean the same thing under dos and unix */
1521 {
1535 }
1539 {
1541 {
1544 }
1546 }
1549 {
1553 }
1558 {
1565 {
1571 }
1574 {
1575 /* someone else has a share lock on it, check to see
1576 if we can too */
1581 {
1591 }
1593 {
1601 {
1605 access_allowed));
1613 }
1620 }
1621 }
1624 }
1631 {
1634 }
1637 {
1641 {
1642 /* We created the file - thus we must now lock the share entry before creating it. */
1647 }
1650 {
1660 }
1668 {
1672 }
1673 /* We must create the share mode entry before truncate as
1674 truncate can fail due to locking and have to close the
1675 file (which expects the share_mode_entry to be there).
1676 */
1682 }
1686 }
1688 /****************************************************************************
1689 seek a file. Try to avoid the seek if possible
1690 ****************************************************************************/
1692 {
1699 }
1701 /****************************************************************************
1702 read from a file
1703 ****************************************************************************/
1705 {
1709 {
1715 }
1717 #if USE_MMAP
1719 {
1722 {
1728 }
1729 }
1730 #endif
1736 {
1739 }
1744 }
1747 }
1750 /****************************************************************************
1751 write to a file
1752 ****************************************************************************/
1754 {
1758 }
1767 }
1768 }
1769 }
1772 }
1775 /****************************************************************************
1776 load parameters specific to a connection/service
1777 ****************************************************************************/
1779 {
1785 {
1788 }
1797 {
1801 }
1816 }
1819 /****************************************************************************
1820 find a service entry
1821 ****************************************************************************/
1823 {
1830 /* now handle the special case of a home directory */
1832 {
1837 {
1840 {
1843 }
1844 }
1845 }
1847 /* If we still don't have a service, attempt to add it as a printer. */
1849 {
1853 {
1859 {
1866 }
1867 else
1869 }
1870 }
1872 /* just possibly it's a default service? */
1874 {
1881 }
1882 }
1883 }
1887 {
1890 }
1896 }
1899 /****************************************************************************
1900 create an error packet from a cached error.
1901 ****************************************************************************/
1903 {
1909 /* We can now delete the auxiliary struct */
1913 }
1916 struct
1917 {
1922 {
1933 #ifdef EDQUOT
1935 #endif
1936 #ifdef ENOTEMPTY
1938 #endif
1939 #ifdef EXDEV
1941 #endif
1944 };
1947 /****************************************************************************
1948 create an error packet from errno
1949 ****************************************************************************/
1951 {
1957 {
1962 }
1963 else
1964 {
1966 {
1968 {
1972 }
1973 i++;
1974 }
1975 }
1978 }
1981 /****************************************************************************
1982 create an error packet. Normally called using the ERROR() macro
1983 ****************************************************************************/
1985 {
1995 line,
1998 error_class,
1999 error_code));
2005 }
2008 #ifndef SIGCLD_IGNORE
2009 /****************************************************************************
2010 this prevents zombie child processes
2011 ****************************************************************************/
2013 {
2016 {
2020 }
2021 depth++;
2026 #ifdef USE_WAITPID
2028 #endif
2030 /* Stop zombies */
2031 /* Stevens, Adv. Unix Prog. says that on system V you must call
2032 wait before reinstalling the signal handler, because the kernel
2033 calls the handler from within the signal-call when there is a
2034 child that has exited. This would lead to an infinite recursion
2035 if done vice versa. */
2037 #ifndef DONT_REINSTALL_SIG
2038 #ifdef SIGCLD_IGNORE
2040 #else
2042 #endif
2043 #endif
2045 #ifndef USE_WAITPID
2047 #endif
2048 depth--;
2051 }
2052 #endif
2054 /****************************************************************************
2055 this is called when the client exits abruptly
2056 **************************************************************************/
2058 {
2066 #ifndef DONT_REINSTALL_SIG
2068 #endif
2071 }
2075 }
2077 /****************************************************************************
2078 open the socket communication
2079 ****************************************************************************/
2081 {
2085 {
2090 /* Stop zombies */
2091 #ifdef SIGCLD_IGNORE
2093 #else
2095 #endif
2097 /* open an incoming socket */
2102 /* ready to listen */
2104 {
2108 }
2113 /* now accept incoming connections - forking a new process
2114 for each incoming connection */
2117 {
2124 {
2127 }
2129 #ifdef NO_FORK_DEBUG
2130 #ifndef NO_SIGNAL_TEST
2133 #endif
2135 #else
2137 {
2138 /* Child code ... */
2139 #ifndef NO_SIGNAL_TEST
2142 #endif
2143 /* close the listening socket */
2146 /* close our standard file descriptors */
2153 /* Reset global variables in util.c so that
2154 client substitutions will be done correctly
2155 in the process.
2156 */
2159 }
2161 #endif
2162 }
2163 }
2164 else
2165 {
2166 /* We will abort gracefully when the client or remote system
2167 goes away */
2168 #ifndef NO_SIGNAL_TEST
2170 #endif
2173 /* close our standard file descriptors */
2178 }
2181 }
2184 /****************************************************************************
2185 check if a snum is in use
2186 ****************************************************************************/
2188 {
2194 }
2196 /****************************************************************************
2197 reload the services file
2198 **************************************************************************/
2200 {
2201 BOOL ret;
2204 {
2205 pstring fname;
2208 {
2211 }
2212 }
2223 /* perhaps the config filename is now set */
2231 {
2236 }
2237 }
2241 /* this forces service parameters to be flushed */
2245 }
2249 /****************************************************************************
2250 this prevents zombie child processes
2251 ****************************************************************************/
2253 {
2257 #ifndef DONT_REINSTALL_SIG
2259 #endif
2262 }
2264 /****************************************************************************
2265 Setup the groups a user belongs to.
2266 ****************************************************************************/
2269 {
2271 {
2273 {
2277 }
2278 }
2279 else
2280 {
2297 /* The following bit of code is very strange. It is due to the
2298 fact that some OSes use int* and some use gid_t* for
2299 getgroups, and some (like SunOS) use both, one in prototypes,
2300 and one in man pages and the actual code. Thus we detect it
2301 dynamically using some very ugly code */
2303 {
2304 /* does getgroups return ints or gid_t ?? */
2317 {
2320 }
2321 else
2322 {
2329 }
2330 }
2335 }
2337 }
2339 /****************************************************************************
2340 make a connection to a service
2341 ****************************************************************************/
2343 {
2356 {
2358 {
2361 }
2365 }
2368 {
2373 {
2376 }
2377 }
2381 }
2383 /* you can only connect to the IPC$ service as an ipc device */
2388 {
2391 else
2393 }
2395 /* if the request is as a printer and you can't print then refuse */
2400 }
2402 /* lowercase the user name */
2405 /* add it as a possible user name */
2408 /* shall we let them in? */
2410 {
2413 }
2417 {
2420 }
2425 /* find out some info about the user */
2429 {
2432 }
2436 {
2437 pstring list;
2449 }
2451 /* admin user check */
2454 {
2457 }
2458 else
2475 #if HAVE_GETGRNAM
2477 {
2479 pstring gname;
2482 /* default service may be a group name */
2487 {
2490 }
2491 else
2493 }
2494 #endif
2497 {
2499 fstring fuser;
2503 {
2509 }
2510 else
2512 }
2514 {
2515 pstring s;
2520 }
2522 /* groups stuff added by ih */
2527 {
2528 /* Find all the groups this uid is in and store them. Used by become_user() */
2531 /* check number of connections */
2535 {
2538 }
2548 /* execute any "root preexec = " line */
2550 {
2551 pstring cmd;
2556 }
2559 {
2567 }
2569 }
2572 {
2582 }
2584 }
2588 #if SOFTLINK_OPTIMISATION
2589 /* resolve any soft links early */
2590 {
2591 pstring s;
2596 }
2597 #endif
2599 num_connections_open++;
2602 /* execute any "preexec = " line */
2604 {
2605 pstring cmd;
2609 }
2611 /* we've finished with the sensitive stuff */
2614 {
2615 DEBUG(IS_IPC(cnum)?3:1,("%s %s (%s) connect to service %s as user %s (uid=%d,gid=%d) (pid %d)\n",
2617 remote_machine,
2623 }
2626 }
2629 /****************************************************************************
2630 find first available file slot
2631 ****************************************************************************/
2633 {
2635 /* we start at 1 here for an obscure reason I can't now remember,
2636 but I think is important :-) */
2642 }
2644 /****************************************************************************
2645 find first available connection slot, starting from a random position.
2646 The randomisation stops problems with the server dieing and clients
2647 thinking the server is still available.
2648 ****************************************************************************/
2650 {
2655 again:
2658 {
2660 {
2663 }
2664 i++;
2667 }
2670 {
2673 }
2677 }
2680 /****************************************************************************
2681 reply for the core protocol
2682 ****************************************************************************/
2684 {
2690 }
2693 /****************************************************************************
2694 reply for the coreplus protocol
2695 ****************************************************************************/
2697 {
2701 readbraw and writebraw (possibly) */
2708 }
2711 /****************************************************************************
2712 reply for the lanman 1.0 protocol
2713 ****************************************************************************/
2715 {
2720 /* We need to save and restore this as it can be destroyed
2721 if we call another server if security=server
2722 Thanks to Paul Nelson @ Thursby for pointing this out.
2723 */
2731 #ifdef SMB_PASSWD
2732 /* Create a token value and add it to the outgoing packet. */
2735 #endif
2741 #ifdef SMB_PASSWD
2743 #endif
2744 }
2752 readbraw writebraw (possibly) */
2759 }
2762 /****************************************************************************
2763 reply for the lanman 2.0 protocol
2764 ****************************************************************************/
2766 {
2771 /* We need to save and restore this as it can be destroyed
2772 if we call another server if security=server
2773 Thanks to Paul Nelson @ Thursby for pointing this out.
2774 */
2782 #ifdef SMB_PASSWD
2783 /* Create a token value and add it to the outgoing packet. */
2786 #endif
2794 #ifdef SMB_PASSWD
2796 #endif
2797 }
2809 }
2812 /****************************************************************************
2813 reply for the nt protocol
2814 ****************************************************************************/
2816 {
2817 /* dual names + lock_and_read + nt SMBs + remote API calls */
2819 /*
2820 other valid capabilities which we may support at some time...
2821 CAP_LARGE_FILES|CAP_NT_SMBS|CAP_RPC_REMOTE_APIS;
2822 CAP_LARGE_FILES|CAP_LARGE_READX|
2823 CAP_STATUS32|CAP_LEVEL_II_OPLOCKS;
2824 */
2832 /* We need to save and restore this as it can be destroyed
2833 if we call another server if security=server
2834 Thanks to Paul Nelson @ Thursby for pointing this out.
2835 */
2839 {
2841 }
2846 /* decide where (if) to put the encryption challenge, and
2847 follow it with the OEM'd domain name
2848 */
2850 #if UNICODE
2852 #else
2854 #endif
2858 #if UNICODE
2859 /* put the OEM'd domain name */
2861 #else
2863 #endif
2866 #ifdef SMB_PASSWD
2867 /* Create a token value and add it to the outgoing packet. */
2869 {
2872 /* Tell the nt machine how long the challenge is. */
2874 }
2875 #endif
2881 #ifdef SMB_PASSWD
2883 #endif
2884 }
2898 }
2900 /* these are the protocol lists used for auto architecture detection:
2902 WinNT 3.51:
2903 protocol [PC NETWORK PROGRAM 1.0]
2904 protocol [XENIX CORE]
2905 protocol [MICROSOFT NETWORKS 1.03]
2906 protocol [LANMAN1.0]
2907 protocol [Windows for Workgroups 3.1a]
2908 protocol [LM1.2X002]
2909 protocol [LANMAN2.1]
2910 protocol [NT LM 0.12]
2912 Win95:
2913 protocol [PC NETWORK PROGRAM 1.0]
2914 protocol [XENIX CORE]
2915 protocol [MICROSOFT NETWORKS 1.03]
2916 protocol [LANMAN1.0]
2917 protocol [Windows for Workgroups 3.1a]
2918 protocol [LM1.2X002]
2919 protocol [LANMAN2.1]
2920 protocol [NT LM 0.12]
2922 OS/2:
2923 protocol [PC NETWORK PROGRAM 1.0]
2924 protocol [XENIX CORE]
2925 protocol [LANMAN1.0]
2926 protocol [LM1.2X002]
2927 protocol [LANMAN2.1]
2928 */
2930 /*
2931 * Modified to recognize the architecture of the remote machine better.
2932 *
2933 * This appears to be the matrix of which protocol is used by which
2934 * MS product.
2935 Protocol WfWg Win95 WinNT OS/2
2936 PC NETWORK PROGRAM 1.0 1 1 1 1
2937 XENIX CORE 2 2
2938 MICROSOFT NETWORKS 3.0 2 2
2939 DOS LM1.2X002 3 3
2940 MICROSOFT NETWORKS 1.03 3
2941 DOS LANMAN2.1 4 4
2942 LANMAN1.0 4 3
2943 Windows for Workgroups 3.1a 5 5 5
2944 LM1.2X002 6 4
2945 LANMAN2.1 7 5
2946 NT LM 0.12 6 8
2947 *
2948 * tim@fsg.com 09/29/95
2949 */
2952 #define ARCH_WIN95 0x2
2954 #define ARCH_WINNT 0x8
2955 #define ARCH_SAMBA 0x10
2957 #define ARCH_ALL 0x1F
2959 /* List of supported protocols, most desired first */
2976 };
2979 /****************************************************************************
2980 reply to a negprot
2981 ****************************************************************************/
2983 {
2995 {
2996 Index++;
3017 }
3020 }
3041 }
3043 /* possibly reload - change of architecture */
3046 /* a special case to stop password server loops */
3051 /* Check for protocols, most desirable first */
3053 {
3058 {
3061 Index++;
3063 }
3066 }
3075 }
3078 }
3084 }
3087 /****************************************************************************
3088 close all open files for a connection
3089 ****************************************************************************/
3091 {
3096 }
3097 }
3101 /****************************************************************************
3102 close a cnum
3103 ****************************************************************************/
3105 {
3111 {
3114 }
3131 /* execute any "postexec = " line */
3133 {
3134 pstring cmd;
3139 }
3142 /* execute any "root postexec = " line */
3144 {
3145 pstring cmd;
3149 }
3152 num_connections_open--;
3154 {
3161 }
3166 }
3169 /****************************************************************************
3170 simple routines to do connection counting
3171 ****************************************************************************/
3173 {
3175 pstring fname;
3197 {
3200 }
3204 /* find a free spot */
3206 {
3208 {
3212 }
3215 }
3218 {
3222 }
3226 /* remove our mark */
3229 {
3233 }
3239 }
3242 /****************************************************************************
3243 simple routines to do connection counting
3244 ****************************************************************************/
3246 {
3248 pstring fname;
3271 {
3276 }
3283 {
3286 }
3288 /* find a free spot */
3290 {
3295 {
3298 }
3301 {
3307 }
3309 {
3312 }
3313 }
3316 {
3320 }
3322 /* fill in the crec */
3335 /* make our mark */
3338 {
3341 }
3345 }
3347 #if DUMP_CORE
3348 /*******************************************************************
3349 prepare to dump a core file - carefully!
3350 ********************************************************************/
3352 {
3354 pstring dname;
3364 #ifndef NO_GETRLIMIT
3365 #ifdef RLIMIT_CORE
3366 {
3373 }
3374 #endif
3375 #endif
3380 }
3381 #endif
3383 /****************************************************************************
3384 exit the server
3385 ****************************************************************************/
3387 {
3399 #ifdef DFS_AUTH
3402 #endif
3411 #if DUMP_CORE
3413 #endif
3414 }
3416 #ifdef FAST_SHARE_MODES
3422 }
3424 /****************************************************************************
3425 do some standard substitutions in a string
3426 ****************************************************************************/
3428 {
3432 {
3439 }
3441 }
3443 }
3445 /*
3446 These flags determine some of the permissions required to do an operation
3448 Note that I don't set NEED_WRITE on some write operations because they
3449 are used by some brain-dead clients when printing, and I don't want to
3450 force write permissions on print services.
3451 */
3452 #define AS_USER (1<<0)
3453 #define NEED_WRITE (1<<1)
3454 #define TIME_INIT (1<<2)
3455 #define CAN_IPC (1<<3)
3456 #define AS_GUEST (1<<5)
3459 /*
3460 define a list of possible SMB messages and their corresponding
3461 functions. Any message that has a NULL function is unimplemented -
3462 please feel free to contribute implementations!
3463 */
3464 struct smb_message_struct
3465 {
3470 #if PROFILING
3472 #endif
3473 }
3474 smb_messages[] = {
3476 /* CORE PROTOCOL */
3493 /* note that SMBmknew and SMBcreate are deliberately overloaded */
3506 /* this is a Pathworks specific call, allowing the
3507 changing of the root path */
3520 /* CORE+ PROTOCOL FOLLOWS */
3528 /* LANMAN1.0 PROTOCOL FOLLOWS */
3552 /* LANMAN2.0 PROTOCOL FOLLOWS */
3558 /* messaging routines */
3564 /* NON-IMPLEMENTED PARTS OF THE CORE PROTOCOL */
3570 };
3572 /****************************************************************************
3573 return a string containing the function name of a SMB command
3574 ****************************************************************************/
3576 {
3590 }
3593 /****************************************************************************
3594 do a switch on the message type, and return the response size
3595 ****************************************************************************/
3597 {
3604 #if PROFILING
3610 #endif
3618 /* make sure this is an SMB packet */
3620 {
3623 }
3630 {
3633 }
3634 else
3635 {
3638 {
3643 /* does this protocol need to be run as root? */
3647 /* does this protocol need to be run as the connected user? */
3651 else
3653 }
3654 /* this code is to work around a bug is MS client 3 without
3655 introducing a security hole - it needs to be able to do
3656 print queue checks as guest if it isn't logged in properly */
3660 /* does it need write permission? */
3664 /* ipc services are limited */
3668 /* load service specific parameters */
3672 /* does this protocol need to be run as guest? */
3679 }
3680 else
3681 {
3683 }
3684 }
3686 #if PROFILING
3689 {
3692 }
3693 {
3699 }
3703 #endif
3706 }
3709 /****************************************************************************
3710 construct a chained reply and add it to the already made reply
3711 **************************************************************************/
3713 {
3726 /* maybe its not chained */
3730 }
3733 /* this is the first part of the chain */
3736 }
3738 /* we need to tell the client where the next part of the reply will be */
3742 /* remember how much the caller added to the chain, only counting stuff
3743 after the parameter words */
3746 /* work out pointers into the original packets. The
3747 headers on these need to be filled in */
3751 /* remember the original command type */
3754 /* save the data which will be overwritten by the new headers */
3758 /* give the new packet the same header as the last part of the SMB */
3761 /* create the in buffer */
3764 /* create the out buffer */
3773 means a reply */
3784 /* process the request */
3788 /* copy the new reply and request headers over the old ones, but
3789 preserve the smb_com field */
3793 /* restore the saved data, being careful not to overwrite any
3794 data from the reply header */
3796 {
3800 }
3803 }
3807 /****************************************************************************
3808 construct a reply to the incoming packet
3809 ****************************************************************************/
3811 {
3834 means a reply */
3849 }
3852 /****************************************************************************
3853 process commands from the client
3854 ****************************************************************************/
3856 {
3869 #if PRIME_NMBD
3871 {
3877 }
3878 #endif
3881 {
3882 int32 len;
3902 {
3909 {
3912 }
3917 }
3923 }
3927 /* become root again if waiting */
3930 /* check for smb.conf reload */
3932 {
3935 /* remove all unused services. reduce some of that memory overhead. */
3938 /* reload services, if files have changed. */
3940 }
3942 /* automatic timeout if all connections are closed */
3946 }
3953 }
3954 /* also send a keepalive to the password server if its still
3955 connected */
3959 }
3961 /* check for connection timeouts */
3964 {
3965 /* close dirptrs on connections that are idle */
3972 }
3977 }
3978 }
3992 #ifdef WITH_VTP
3996 }
3997 #endif
4010 {
4012 nread,
4014 }
4015 else
4017 }
4018 trans_num++;
4019 }
4020 }
4023 /****************************************************************************
4024 initialise connect, service and file structs
4025 ****************************************************************************/
4027 {
4032 {
4041 }
4044 {
4048 }
4051 {
4060 }
4063 }
4065 /****************************************************************************
4066 usage on the program
4067 ****************************************************************************/
4069 {
4072 printf("Usage: %s [-D] [-p port] [-d debuglevel] [-l log basename] [-s services file]\n",pname);
4082 }
4085 /****************************************************************************
4086 main program
4087 ****************************************************************************/
4089 {
4091 /* shall I run as a daemon */
4098 #ifdef NEED_AUTH_PARAMETERS
4100 #endif
4102 #ifdef SecureWare
4104 #endif
4116 /* make absolutely sure we run as root - to handle cases whre people
4117 are crazy enough to have it setuid */
4118 #ifdef USE_SETRES
4120 #else
4125 #endif
4130 /* we want total control over the permissions on created files,
4131 so set our umask to 0 */
4138 /* this is for people who can't start the program correctly */
4140 {
4141 argv++;
4142 argc--;
4143 }
4147 {
4158 {
4161 }
4170 {
4173 }
4181 else
4194 }
4201 #ifndef NO_GETRLIMIT
4202 #ifdef RLIMIT_NOFILE
4203 {
4210 }
4211 #endif
4212 #endif
4219 {
4222 }
4233 #ifndef NO_SIGNAL_TEST
4235 #endif
4240 {
4243 }
4246 {
4249 }
4252 {
4258 {
4261 }
4263 {
4266 }
4269 {
4272 }
4273 /* Leave pid file open & locked for the duration... */
4274 }
4279 #ifdef FAST_SHARE_MODES
4284 /* possibly reload the services file. */
4290 {
4293 }
4300 }