search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
r15837: starting sync up for 3.0.23rc1 (in sync with SAMBA_3_0 r15822)
[Samba.git] / source / client / smbspool.c
blobe5cd4f2e8e6573c5eaa0a8087102f218aa83c82d
1 /*
2 Unix SMB/CIFS implementation.
3 SMB backend for the Common UNIX Printing System ("CUPS")
4 Copyright 1999 by Easy Software Products
5 Copyright Andrew Tridgell 1994-1998
6 Copyright Andrew Bartlett 2002
7 Copyright Rodrigo Fernandez-Vizarra 2005
8
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 2 of the License, or
12 (at your option) any later version.
13
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
18
19 You should have received a copy of the GNU General Public License
20 along with this program; if not, write to the Free Software
21 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 */
23
24 #include "includes.h"
25
26 #define TICKET_CC_DIR "/tmp"
27 #define CC_PREFIX "krb5cc_" /* prefix of the ticket cache */
28 #define CC_MAX_FILE_LEN 24
29 #define CC_MAX_FILE_PATH_LEN (sizeof(TICKET_CC_DIR)-1)+ CC_MAX_FILE_LEN+2
30 #define OVERWRITE 1
31 #define KRB5CCNAME "KRB5CCNAME"
32 #define MAX_RETRY_CONNECT 3
33
34
35 /*
36 * Globals...
37 */
38
39 extern BOOL in_client; /* Boolean for client library */
40
41
42 /*
43 * Local functions...
44 */
45
46 static void list_devices(void);
47 static struct cli_state *smb_complete_connection(const char *, const char *,int , const char *, const char *, const char *, const char *, int);
48 static struct cli_state *smb_connect(const char *, const char *, int, const char *, const char *, const char *, const char *);
49 static int smb_print(struct cli_state *, char *, FILE *);
50
51
52 /*
53 * 'main()' - Main entry for SMB backend.
54 */
55
56 int /* O - Exit status */
57 main(int argc, /* I - Number of command-line arguments */
58 char *argv[]) /* I - Command-line arguments */
59 {
60 int i; /* Looping var */
61 int copies; /* Number of copies */
62 int port; /* Port number */
63 char uri[1024], /* URI */
64 *sep, /* Pointer to separator */
65 *password; /* Password */
66 const char *username, /* Username */
67 *server, /* Server name */
68 *printer; /* Printer name */
69 const char *workgroup; /* Workgroup */
70 FILE *fp; /* File to print */
71 int status=0; /* Status of LPD job */
72 struct cli_state *cli; /* SMB interface */
73 char null_str[1];
74 int tries = 0;
75
76 null_str[0] = '\0';
77
78 /* we expect the URI in argv[0]. Detect the case where it is in argv[1] and cope */
79 if (argc > 2 && strncmp(argv[0],"smb://", 6) && !strncmp(argv[1],"smb://", 6)) {
80 argv++;
81 argc--;
82 }
83
84 if (argc == 1)
85 {
86 /*
87 * NEW! In CUPS 1.1 the backends are run with no arguments to list the
88 * available devices. These can be devices served by this backend
89 * or any other backends (i.e. you can have an SNMP backend that
90 * is only used to enumerate the available network printers... :)
91 */
92
93 list_devices();
94 return (0);
95 }
96
97 if (argc < 6 || argc > 7)
98 {
99 fprintf(stderr, "Usage: %s [DEVICE_URI] job-id user title copies options [file]\n",
100 argv[0]);
101 fputs(" The DEVICE_URI environment variable can also contain the\n", stderr);
102 fputs(" destination printer:\n", stderr);
103 fputs("\n", stderr);
104 fputs(" smb://[username:password@][workgroup/]server[:port]/printer\n", stderr);
105 return (1);
106 }
107
108 /*
109 * If we have 7 arguments, print the file named on the command-line.
110 * Otherwise, print data from stdin...
111 */
112
113
114 if (argc == 6)
115 {
116 /*
117 * Print from Copy stdin to a temporary file...
118 */
119
120 fp = stdin;
121 copies = 1;
122 }
123 else if ((fp = fopen(argv[6], "rb")) == NULL)
124 {
125 perror("ERROR: Unable to open print file");
126 return (1);
127 }
128 else
129 copies = atoi(argv[4]);
130
131 /*
132 * Find the URI...
133 */
134
135 if (getenv("DEVICE_URI") != NULL)
136 strncpy(uri, getenv("DEVICE_URI"), sizeof(uri) - 1);
137 else if (strncmp(argv[0], "smb://", 6) == 0)
138 strncpy(uri, argv[0], sizeof(uri) - 1);
139 else
140 {
141 fputs("ERROR: No device URI found in DEVICE_URI environment variable or argv[0] !\n", stderr);
142 return (1);
143 }
144
145 uri[sizeof(uri) - 1] = '\0';
146
147 /*
148 * Extract the destination from the URI...
149 */
150
151 if ((sep = strrchr_m(uri, '@')) != NULL)
152 {
153 username = uri + 6;
154 *sep++ = '\0';
155
156 server = sep;
157
158 /*
159 * Extract password as needed...
160 */
161
162 if ((password = strchr_m(username, ':')) != NULL)
163 *password++ = '\0';
164 else
165 password = null_str;
166 }
167 else
168 {
169 username = null_str;
170 password = null_str;
171 server = uri + 6;
172 }
173
174 if ((sep = strchr_m(server, '/')) == NULL)
175 {
176 fputs("ERROR: Bad URI - need printer name!\n", stderr);
177 return (1);
178 }
179
180 *sep++ = '\0';
181 printer = sep;
182
183 if ((sep = strchr_m(printer, '/')) != NULL)
184 {
185 /*
186 * Convert to smb://[username:password@]workgroup/server/printer...
187 */
188
189 *sep++ = '\0';
190
191 workgroup = server;
192 server = printer;
193 printer = sep;
194 }
195 else
196 workgroup = NULL;
197
198 if ((sep = strrchr_m(server, ':')) != NULL)
199 {
200 *sep++ = '\0';
201
202 port=atoi(sep);
203 }
204 else
205 port=0;
206
207
208 /*
209 * Setup the SAMBA server state...
210 */
211
212 setup_logging("smbspool", True);
213
214 in_client = True; /* Make sure that we tell lp_load we are */
215
216 load_case_tables();
217
218 if (!lp_load(dyn_CONFIGFILE, True, False, False, True))
219 {
220 fprintf(stderr, "ERROR: Can't load %s - run testparm to debug it\n", dyn_CONFIGFILE);
221 return (1);
222 }
223
224 if (workgroup == NULL)
225 workgroup = lp_workgroup();
226
227 load_interfaces();
228
229 do
230 {
231 if ((cli = smb_connect(workgroup, server, port, printer, username, password, argv[2])) == NULL)
232 {
233 if (getenv("CLASS") == NULL)
234 {
235 fprintf(stderr, "ERROR: Unable to connect to CIFS host, will retry in 60 seconds...\n");
236 sleep (60); /* should just waiting and retrying fix authentication ??? */
237 tries++;
238 }
239 else
240 {
241 fprintf(stderr, "ERROR: Unable to connect to CIFS host, trying next printer...\n");
242 return (1);
243 }
244 }
245 }
246 while ((cli == NULL) && (tries < MAX_RETRY_CONNECT));
247
248 if (cli == NULL) {
249 fprintf(stderr, "ERROR: Unable to connect to CIFS host after (tried %d times)\n", tries);
250 return (1);
251 }
252
253 /*
254 * Now that we are connected to the server, ignore SIGTERM so that we
255 * can finish out any page data the driver sends (e.g. to eject the
256 * current page... Only ignore SIGTERM if we are printing data from
257 * stdin (otherwise you can't cancel raw jobs...)
258 */
259
260 if (argc < 7)
261 CatchSignal(SIGTERM, SIG_IGN);
262
263 /*
264 * Queue the job...
265 */
266
267 for (i = 0; i < copies; i ++)
268 if ((status = smb_print(cli, argv[3] /* title */, fp)) != 0)
269 break;
270
271 cli_shutdown(cli);
272
273 /*
274 * Return the queue status...
275 */
276
277 return (status);
278 }
279
280
281 /*
282 * 'list_devices()' - List the available printers seen on the network...
283 */
284
285 static void
286 list_devices(void)
287 {
288 /*
289 * Eventually, search the local workgroup for available hosts and printers.
290 */
291
292 puts("network smb \"Unknown\" \"Windows Printer via SAMBA\"");
293 }
294
295
296 /*
297 * get the name of the newest ticket cache for the uid user.
298 * pam_krb5 defines a non default ticket cache for each user
299 */
300 static
301 char * get_ticket_cache( uid_t uid )
302 {
303 char *ticket_file = NULL;
304 SMB_STRUCT_DIR *tcdir; /* directory where ticket caches are stored */
305 SMB_STRUCT_DIRENT *dirent; /* directory entry */
306 char *filename = NULL; /* holds file names on the tmp directory */
307 SMB_STRUCT_STAT buf;
308 char user_cache_prefix[CC_MAX_FILE_LEN];
309 char file_path[CC_MAX_FILE_PATH_LEN];
310 time_t t = 0;
311
312 snprintf(user_cache_prefix, CC_MAX_FILE_LEN, "%s%d", CC_PREFIX, uid );
313 tcdir = sys_opendir( TICKET_CC_DIR );
314 if ( tcdir == NULL )
315 return NULL;
316
317 while ( (dirent = sys_readdir( tcdir ) ) )
318 {
319 filename = dirent->d_name;
320 snprintf(file_path, CC_MAX_FILE_PATH_LEN,"%s/%s", TICKET_CC_DIR, filename);
321 if (sys_stat(file_path, &buf) == 0 )
322 {
323 if ( ( buf.st_uid == uid ) && ( S_ISREG(buf.st_mode) ) )
324 {
325 /*
326 * check the user id of the file to prevent denial of
327 * service attacks by creating fake ticket caches for the
328 * user
329 */
330 if ( strstr( filename, user_cache_prefix ) )
331 {
332 if ( buf.st_mtime > t )
333 {
334 /*
335 * a newer ticket cache found
336 */
337 free(ticket_file);
338 ticket_file=SMB_STRDUP(file_path);
339 t = buf.st_mtime;
340 }
341 }
342 }
343 }
344 }
345
346 sys_closedir(tcdir);
347
348 if ( ticket_file == NULL )
349 {
350 /* no ticket cache found */
351 fprintf(stderr, "ERROR: No ticket cache found for userid=%d\n", uid);
352 return NULL;
353 }
354
355 return ticket_file;
356 }
357
358 static struct cli_state
359 *smb_complete_connection(const char *myname,
360 const char *server,
361 int port,
362 const char *username,
363 const char *password,
364 const char *workgroup,
365 const char *share,
366 int flags)
367 {
368 struct cli_state *cli; /* New connection */
369 NTSTATUS nt_status;
370
371 /* Start the SMB connection */
372 nt_status = cli_start_connection( &cli, myname, server, NULL, port,
373 Undefined, flags, NULL);
374 if (!NT_STATUS_IS_OK(nt_status))
375 {
376 return NULL;
377 }
378
379 /* We pretty much guarentee password must be valid or a pointer
380 to a 0 char. */
381 if (!password) {
382 return NULL;
383 }
384
385 if ( (username) && (*username) &&
386 (strlen(password) == 0 ) &&
387 (cli->use_kerberos) )
388 {
389 /* Use kerberos authentication */
390 struct passwd *pw;
391 char *cache_file;
392
393
394 if ( !(pw = sys_getpwnam(username)) ) {
395 fprintf(stderr,"ERROR Can not get %s uid\n", username);
396 cli_shutdown(cli);
397 return NULL;
398 }
399
400 /*
401 * Get the ticket cache of the user to set KRB5CCNAME env
402 * variable
403 */
404 cache_file = get_ticket_cache( pw->pw_uid );
405 if ( cache_file == NULL )
406 {
407 fprintf(stderr, "ERROR: Can not get the ticket cache for %s\n", username);
408 cli_shutdown(cli);
409 return NULL;
410 }
411
412 if ( setenv(KRB5CCNAME, cache_file, OVERWRITE) < 0 )
413 {
414 fprintf(stderr, "ERROR: Can not add KRB5CCNAME to the environment");
415 cli_shutdown(cli);
416 free(cache_file);
417 return NULL;
418 }
419 free(cache_file);
420
421 /*
422 * Change the UID of the process to be able to read the kerberos
423 * ticket cache
424 */
425 setuid(pw->pw_uid);
426
427 }
428
429
430 if (!cli_session_setup(cli, username, password, strlen(password)+1,
431 password, strlen(password)+1,
432 workgroup))
433 {
434 fprintf(stderr,"ERROR: Session setup failed: %s\n", cli_errstr(cli));
435 if (NT_STATUS_V(cli_nt_error(cli)) ==
436 NT_STATUS_V(NT_STATUS_MORE_PROCESSING_REQUIRED))
437 {
438 fprintf(stderr, "did you forget to run kinit?\n");
439 }
440 cli_shutdown(cli);
441
442 return NULL;
443 }
444
445 if (!cli_send_tconX(cli, share, "?????", password, strlen(password)+1))
446 {
447 fprintf(stderr, "ERROR: Tree connect failed (%s)\n", cli_errstr(cli));
448 cli_shutdown(cli);
449 return NULL;
450 }
451
452 return cli;
453 }
454
455 /*
456 * 'smb_connect()' - Return a connection to a server.
457 */
458
459 static struct cli_state * /* O - SMB connection */
460 smb_connect(const char *workgroup, /* I - Workgroup */
461 const char *server, /* I - Server */
462 const int port, /* I - Port */
463 const char *share, /* I - Printer */
464 const char *username, /* I - Username */
465 const char *password, /* I - Password */
466 const char *jobusername) /* I - User who issued the print job */
467 {
468 struct cli_state *cli; /* New connection */
469 pstring myname; /* Client name */
470 struct passwd *pwd;
471
472 /*
473 * Get the names and addresses of the client and server...
474 */
475
476 get_myname(myname);
477
478 /* See if we have a username first. This is for backwards compatible
479 behavior with 3.0.14a */
480
481 if ( username && *username )
482 {
483 cli = smb_complete_connection(myname, server, port, username,
484 password, workgroup, share, 0 );
485 if (cli)
486 return cli;
487 }
488
489 /*
490 * Try to use the user kerberos credentials (if any) to authenticate
491 */
492 cli = smb_complete_connection(myname, server, port, jobusername, "",
493 workgroup, share,
494 CLI_FULL_CONNECTION_USE_KERBEROS );
495
496 if (cli ) { return cli; }
497
498 /* give a chance for a passwordless NTLMSSP session setup */
499
500 pwd = getpwuid(geteuid());
501 if (pwd == NULL) {
502 return NULL;
503 }
504
505 cli = smb_complete_connection(myname, server, port, pwd->pw_name, "",
506 workgroup, share, 0);
507
508 if (cli) { return cli; }
509
510 /*
511 * last try. Use anonymous authentication
512 */
513
514 cli = smb_complete_connection(myname, server, port, "", "",
515 workgroup, share, 0);
516 /*
517 * Return the new connection...
518 */
519
520 return (cli);
521 }
522
523
524 /*
525 * 'smb_print()' - Queue a job for printing using the SMB protocol.
526 */
527
528 static int /* O - 0 = success, non-0 = failure */
529 smb_print(struct cli_state *cli, /* I - SMB connection */
530 char *title, /* I - Title/job name */
531 FILE *fp) /* I - File to print */
532 {
533 int fnum; /* File number */
534 int nbytes, /* Number of bytes read */
535 tbytes; /* Total bytes read */
536 char buffer[8192], /* Buffer for copy */
537 *ptr; /* Pointer into tile */
538
539
540 /*
541 * Sanitize the title...
542 */
543
544 for (ptr = title; *ptr; ptr ++)
545 if (!isalnum((int)*ptr) && !isspace((int)*ptr))
546 *ptr = '_';
547
548 /*
549 * Open the printer device...
550 */
551
552 if ((fnum = cli_open(cli, title, O_RDWR | O_CREAT | O_TRUNC, DENY_NONE)) == -1)
553 {
554 fprintf(stderr, "ERROR: %s opening remote spool %s\n",
555 cli_errstr(cli), title);
556 return (1);
557 }
558
559 /*
560 * Copy the file to the printer...
561 */
562
563 if (fp != stdin)
564 rewind(fp);
565
566 tbytes = 0;
567
568 while ((nbytes = fread(buffer, 1, sizeof(buffer), fp)) > 0)
569 {
570 if (cli_write(cli, fnum, 0, buffer, tbytes, nbytes) != nbytes)
571 {
572 fprintf(stderr, "ERROR: Error writing spool: %s\n", cli_errstr(cli));
573 break;
574 }
575
576 tbytes += nbytes;
577 }
578
579 if (!cli_close(cli, fnum))
580 {
581 fprintf(stderr, "ERROR: %s closing remote spool %s\n",
582 cli_errstr(cli), title);
583 return (1);
584 }
585 else
586 return (0);
587 }
Samba GIT mirror