search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
fsrvp: add remote snapshot RPC server
[Samba.git] / source3 / smbd / server.c
blob030f760a3a90243db09314cde541962491d1ea2c
1 /*
2 Unix SMB/CIFS implementation.
3 Main SMB server routines
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Martin Pool 2002
6 Copyright (C) Jelmer Vernooij 2002-2003
7 Copyright (C) Volker Lendecke 1993-2007
8 Copyright (C) Jeremy Allison 1993-2007
9
10 This program is free software; you can redistribute it and/or modify
11 it under the terms of the GNU General Public License as published by
12 the Free Software Foundation; either version 3 of the License, or
13 (at your option) any later version.
14
15 This program is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 GNU General Public License for more details.
19
20 You should have received a copy of the GNU General Public License
21 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 */
23
24 #include "includes.h"
25 #include "system/filesys.h"
26 #include "popt_common.h"
27 #include "smbd/smbd.h"
28 #include "smbd/globals.h"
29 #include "registry/reg_init_full.h"
30 #include "libcli/auth/schannel.h"
31 #include "secrets.h"
32 #include "../lib/util/memcache.h"
33 #include "ctdbd_conn.h"
34 #include "util_cluster.h"
35 #include "printing/queue_process.h"
36 #include "rpc_server/rpc_service_setup.h"
37 #include "rpc_server/rpc_config.h"
38 #include "serverid.h"
39 #include "passdb.h"
40 #include "auth.h"
41 #include "messages.h"
42 #include "smbprofile.h"
43 #include "lib/id_cache.h"
44 #include "lib/param/param.h"
45 #include "lib/background.h"
46 #include "lib/conn_tdb.h"
47 #include "../lib/util/pidfile.h"
48 #include "lib/smbd_shim.h"
49 #include "scavenger.h"
50 #include "locking/leases_db.h"
51
52 struct smbd_open_socket;
53 struct smbd_child_pid;
54
55 struct smbd_parent_context {
56 bool interactive;
57
58 struct tevent_context *ev_ctx;
59 struct messaging_context *msg_ctx;
60
61 /* the list of listening sockets */
62 struct smbd_open_socket *sockets;
63
64 /* the list of current child processes */
65 struct smbd_child_pid *children;
66 size_t num_children;
67
68 struct tevent_timer *cleanup_te;
69 };
70
71 struct smbd_open_socket {
72 struct smbd_open_socket *prev, *next;
73 struct smbd_parent_context *parent;
74 int fd;
75 struct tevent_fd *fde;
76 };
77
78 struct smbd_child_pid {
79 struct smbd_child_pid *prev, *next;
80 pid_t pid;
81 };
82
83 extern void start_epmd(struct tevent_context *ev_ctx,
84 struct messaging_context *msg_ctx);
85
86 extern void start_lsasd(struct tevent_context *ev_ctx,
87 struct messaging_context *msg_ctx);
88
89 extern void start_fssd(struct tevent_context *ev_ctx,
90 struct messaging_context *msg_ctx);
91
92 #ifdef WITH_DFS
93 extern int dcelogin_atmost_once;
94 #endif /* WITH_DFS */
95
96 /*******************************************************************
97 What to do when smb.conf is updated.
98 ********************************************************************/
99
100 static void smbd_parent_conf_updated(struct messaging_context *msg,
101 void *private_data,
102 uint32_t msg_type,
103 struct server_id server_id,
104 DATA_BLOB *data)
105 {
106 struct tevent_context *ev_ctx =
107 talloc_get_type_abort(private_data, struct tevent_context);
108
109 DEBUG(10,("smbd_parent_conf_updated: Got message saying smb.conf was "
110 "updated. Reloading.\n"));
111 change_to_root_user();
112 reload_services(NULL, NULL, false);
113 printing_subsystem_update(ev_ctx, msg, false);
114 }
115
116 /*******************************************************************
117 Delete a statcache entry.
118 ********************************************************************/
119
120 static void smb_stat_cache_delete(struct messaging_context *msg,
121 void *private_data,
122 uint32_t msg_tnype,
123 struct server_id server_id,
124 DATA_BLOB *data)
125 {
126 const char *name = (const char *)data->data;
127 DEBUG(10,("smb_stat_cache_delete: delete name %s\n", name));
128 stat_cache_delete(name);
129 }
130
131 /****************************************************************************
132 Send a SIGTERM to our process group.
133 *****************************************************************************/
134
135 static void killkids(void)
136 {
137 if(am_parent) kill(0,SIGTERM);
138 }
139
140 static void msg_exit_server(struct messaging_context *msg,
141 void *private_data,
142 uint32_t msg_type,
143 struct server_id server_id,
144 DATA_BLOB *data)
145 {
146 DEBUG(3, ("got a SHUTDOWN message\n"));
147 exit_server_cleanly(NULL);
148 }
149
150 #ifdef DEVELOPER
151 static void msg_inject_fault(struct messaging_context *msg,
152 void *private_data,
153 uint32_t msg_type,
154 struct server_id src,
155 DATA_BLOB *data)
156 {
157 int sig;
158
159 if (data->length != sizeof(sig)) {
160 DEBUG(0, ("Process %s sent bogus signal injection request\n",
161 procid_str_static(&src)));
162 return;
163 }
164
165 sig = *(int *)data->data;
166 if (sig == -1) {
167 exit_server("internal error injected");
168 return;
169 }
170
171 #if HAVE_STRSIGNAL
172 DEBUG(0, ("Process %s requested injection of signal %d (%s)\n",
173 procid_str_static(&src), sig, strsignal(sig)));
174 #else
175 DEBUG(0, ("Process %s requested injection of signal %d\n",
176 procid_str_static(&src), sig));
177 #endif
178
179 kill(getpid(), sig);
180 }
181 #endif /* DEVELOPER */
182
183 static NTSTATUS messaging_send_to_children(struct messaging_context *msg_ctx,
184 uint32_t msg_type, DATA_BLOB* data)
185 {
186 NTSTATUS status;
187 struct smbd_parent_context *parent = am_parent;
188 struct smbd_child_pid *child;
189
190 if (parent == NULL) {
191 return NT_STATUS_INTERNAL_ERROR;
192 }
193
194 for (child = parent->children; child != NULL; child = child->next) {
195 status = messaging_send(parent->msg_ctx,
196 pid_to_procid(child->pid),
197 msg_type, data);
198 if (!NT_STATUS_IS_OK(status)) {
199 return status;
200 }
201 }
202 return NT_STATUS_OK;
203 }
204
205 static void smb_parent_send_to_children(struct messaging_context *ctx,
206 void* data,
207 uint32_t msg_type,
208 struct server_id srv_id,
209 DATA_BLOB* msg_data)
210 {
211 messaging_send_to_children(ctx, msg_type, msg_data);
212 }
213
214 /*
215 * Parent smbd process sets its own debug level first and then
216 * sends a message to all the smbd children to adjust their debug
217 * level to that of the parent.
218 */
219
220 static void smbd_msg_debug(struct messaging_context *msg_ctx,
221 void *private_data,
222 uint32_t msg_type,
223 struct server_id server_id,
224 DATA_BLOB *data)
225 {
226 debug_message(msg_ctx, private_data, MSG_DEBUG, server_id, data);
227
228 messaging_send_to_children(msg_ctx, MSG_DEBUG, data);
229 }
230
231 static void smbd_parent_id_cache_kill(struct messaging_context *msg_ctx,
232 void *private_data,
233 uint32_t msg_type,
234 struct server_id server_id,
235 DATA_BLOB* data)
236 {
237 const char *msg = (data && data->data)
238 ? (const char *)data->data : "<NULL>";
239 struct id_cache_ref id;
240
241 if (!id_cache_ref_parse(msg, &id)) {
242 DEBUG(0, ("Invalid ?ID: %s\n", msg));
243 return;
244 }
245
246 id_cache_delete_from_cache(&id);
247
248 messaging_send_to_children(msg_ctx, msg_type, data);
249 }
250
251 static void smbd_parent_id_cache_delete(struct messaging_context *ctx,
252 void* data,
253 uint32_t msg_type,
254 struct server_id srv_id,
255 DATA_BLOB* msg_data)
256 {
257 id_cache_delete_message(ctx, data, msg_type, srv_id, msg_data);
258
259 messaging_send_to_children(ctx, msg_type, msg_data);
260 }
261
262 struct smbd_parent_notify_state {
263 struct tevent_context *ev;
264 struct messaging_context *msg;
265 uint32_t msgtype;
266 struct notify_context *notify;
267 };
268
269 static int smbd_parent_notify_cleanup(void *private_data);
270 static void smbd_parent_notify_cleanup_done(struct tevent_req *req);
271 static void smbd_parent_notify_proxy_done(struct tevent_req *req);
272
273 static bool smbd_parent_notify_init(TALLOC_CTX *mem_ctx,
274 struct messaging_context *msg,
275 struct tevent_context *ev)
276 {
277 struct smbd_parent_notify_state *state;
278 struct tevent_req *req;
279
280 state = talloc(mem_ctx, struct smbd_parent_notify_state);
281 if (state == NULL) {
282 return false;
283 }
284 state->msg = msg;
285 state->ev = ev;
286 state->msgtype = MSG_SMB_NOTIFY_CLEANUP;
287
288 state->notify = notify_init(state, msg, ev);
289 if (state->notify == NULL) {
290 goto fail;
291 }
292 req = background_job_send(
293 state, state->ev, state->msg, &state->msgtype, 1,
294 lp_parm_int(-1, "smbd", "notify cleanup interval", 60),
295 smbd_parent_notify_cleanup, state->notify);
296 if (req == NULL) {
297 goto fail;
298 }
299 tevent_req_set_callback(req, smbd_parent_notify_cleanup_done, state);
300
301 if (!lp_clustering()) {
302 return true;
303 }
304
305 req = notify_cluster_proxy_send(state, ev, state->notify);
306 if (req == NULL) {
307 goto fail;
308 }
309 tevent_req_set_callback(req, smbd_parent_notify_proxy_done, state);
310
311 return true;
312 fail:
313 TALLOC_FREE(state);
314 return false;
315 }
316
317 static int smbd_parent_notify_cleanup(void *private_data)
318 {
319 struct notify_context *notify = talloc_get_type_abort(
320 private_data, struct notify_context);
321 notify_cleanup(notify);
322 return lp_parm_int(-1, "smbd", "notify cleanup interval", 60);
323 }
324
325 static void smbd_parent_notify_cleanup_done(struct tevent_req *req)
326 {
327 struct smbd_parent_notify_state *state = tevent_req_callback_data(
328 req, struct smbd_parent_notify_state);
329 NTSTATUS status;
330
331 status = background_job_recv(req);
332 TALLOC_FREE(req);
333 DEBUG(1, ("notify cleanup job ended with %s\n", nt_errstr(status)));
334
335 /*
336 * Provide self-healing: Whatever the error condition was, it
337 * will have printed it into log.smbd. Just retrying and
338 * spamming log.smbd once a minute should be fine.
339 */
340 req = background_job_send(
341 state, state->ev, state->msg, &state->msgtype, 1, 60,
342 smbd_parent_notify_cleanup, state->notify);
343 if (req == NULL) {
344 DEBUG(1, ("background_job_send failed\n"));
345 return;
346 }
347 tevent_req_set_callback(req, smbd_parent_notify_cleanup_done, state);
348 }
349
350 static void smbd_parent_notify_proxy_done(struct tevent_req *req)
351 {
352 int ret;
353
354 ret = notify_cluster_proxy_recv(req);
355 TALLOC_FREE(req);
356 DEBUG(1, ("notify proxy job ended with %s\n", strerror(ret)));
357 }
358
359 static void add_child_pid(struct smbd_parent_context *parent,
360 pid_t pid)
361 {
362 struct smbd_child_pid *child;
363
364 child = talloc_zero(parent, struct smbd_child_pid);
365 if (child == NULL) {
366 DEBUG(0, ("Could not add child struct -- malloc failed\n"));
367 return;
368 }
369 child->pid = pid;
370 DLIST_ADD(parent->children, child);
371 parent->num_children += 1;
372 }
373
374 static void smb_tell_num_children(struct messaging_context *ctx, void *data,
375 uint32_t msg_type, struct server_id srv_id,
376 DATA_BLOB *msg_data)
377 {
378 uint8_t buf[sizeof(uint32_t)];
379
380 if (am_parent) {
381 SIVAL(buf, 0, am_parent->num_children);
382 messaging_send_buf(ctx, srv_id, MSG_SMB_NUM_CHILDREN,
383 buf, sizeof(buf));
384 }
385 }
386
387
388 /*
389 at most every smbd:cleanuptime seconds (default 20), we scan the BRL
390 and locking database for entries to cleanup. As a side effect this
391 also cleans up dead entries in the connections database (due to the
392 traversal in message_send_all()
393
394 Using a timer for this prevents a flood of traversals when a large
395 number of clients disconnect at the same time (perhaps due to a
396 network outage).
397 */
398
399 static void cleanup_timeout_fn(struct tevent_context *event_ctx,
400 struct tevent_timer *te,
401 struct timeval now,
402 void *private_data)
403 {
404 struct smbd_parent_context *parent =
405 talloc_get_type_abort(private_data,
406 struct smbd_parent_context);
407
408 parent->cleanup_te = NULL;
409
410 DEBUG(1,("Cleaning up brl and lock database after unclean shutdown\n"));
411 message_send_all(parent->msg_ctx, MSG_SMB_UNLOCK, NULL, 0, NULL);
412 messaging_send_buf(parent->msg_ctx,
413 messaging_server_id(parent->msg_ctx),
414 MSG_SMB_BRL_VALIDATE, NULL, 0);
415 }
416
417 static void remove_child_pid(struct smbd_parent_context *parent,
418 pid_t pid,
419 bool unclean_shutdown)
420 {
421 struct smbd_child_pid *child;
422 struct server_id child_id;
423 int ret;
424
425 child_id = pid_to_procid(pid);
426
427 ret = messaging_cleanup(parent->msg_ctx, pid);
428
429 if ((ret != 0) && (ret != ENOENT)) {
430 DEBUG(10, ("%s: messaging_cleanup returned %s\n",
431 __func__, strerror(ret)));
432 }
433
434 smbprofile_cleanup(pid);
435
436 for (child = parent->children; child != NULL; child = child->next) {
437 if (child->pid == pid) {
438 struct smbd_child_pid *tmp = child;
439 DLIST_REMOVE(parent->children, child);
440 TALLOC_FREE(tmp);
441 parent->num_children -= 1;
442 break;
443 }
444 }
445
446 if (child == NULL) {
447 /* not all forked child processes are added to the children list */
448 DEBUG(2, ("Could not find child %d -- ignoring\n", (int)pid));
449 return;
450 }
451
452 if (unclean_shutdown) {
453 /* a child terminated uncleanly so tickle all
454 processes to see if they can grab any of the
455 pending locks
456 */
457 DEBUG(3,(__location__ " Unclean shutdown of pid %u\n",
458 (unsigned int)pid));
459 if (parent->cleanup_te == NULL) {
460 /* call the cleanup timer, but not too often */
461 int cleanup_time = lp_parm_int(-1, "smbd", "cleanuptime", 20);
462 parent->cleanup_te = tevent_add_timer(parent->ev_ctx,
463 parent,
464 timeval_current_ofs(cleanup_time, 0),
465 cleanup_timeout_fn,
466 parent);
467 DEBUG(1,("Scheduled cleanup of brl and lock database after unclean shutdown\n"));
468 }
469 }
470
471 if (!serverid_deregister(child_id)) {
472 DEBUG(1, ("Could not remove pid %d from serverid.tdb\n",
473 (int)pid));
474 }
475 }
476
477 /****************************************************************************
478 Have we reached the process limit ?
479 ****************************************************************************/
480
481 static bool allowable_number_of_smbd_processes(struct smbd_parent_context *parent)
482 {
483 int max_processes = lp_max_smbd_processes();
484
485 if (!max_processes)
486 return True;
487
488 return parent->num_children < max_processes;
489 }
490
491 static void smbd_sig_chld_handler(struct tevent_context *ev,
492 struct tevent_signal *se,
493 int signum,
494 int count,
495 void *siginfo,
496 void *private_data)
497 {
498 pid_t pid;
499 int status;
500 struct smbd_parent_context *parent =
501 talloc_get_type_abort(private_data,
502 struct smbd_parent_context);
503
504 while ((pid = sys_waitpid(-1, &status, WNOHANG)) > 0) {
505 bool unclean_shutdown = False;
506
507 /* If the child terminated normally, assume
508 it was an unclean shutdown unless the
509 status is 0
510 */
511 if (WIFEXITED(status)) {
512 unclean_shutdown = WEXITSTATUS(status);
513 }
514 /* If the child terminated due to a signal
515 we always assume it was unclean.
516 */
517 if (WIFSIGNALED(status)) {
518 unclean_shutdown = True;
519 }
520 remove_child_pid(parent, pid, unclean_shutdown);
521 }
522 }
523
524 static void smbd_setup_sig_chld_handler(struct smbd_parent_context *parent)
525 {
526 struct tevent_signal *se;
527
528 se = tevent_add_signal(parent->ev_ctx,
529 parent, /* mem_ctx */
530 SIGCHLD, 0,
531 smbd_sig_chld_handler,
532 parent);
533 if (!se) {
534 exit_server("failed to setup SIGCHLD handler");
535 }
536 }
537
538 static void smbd_open_socket_close_fn(struct tevent_context *ev,
539 struct tevent_fd *fde,
540 int fd,
541 void *private_data)
542 {
543 /* this might be the socket_wrapper swrap_close() */
544 close(fd);
545 }
546
547 static void smbd_accept_connection(struct tevent_context *ev,
548 struct tevent_fd *fde,
549 uint16_t flags,
550 void *private_data)
551 {
552 struct smbd_open_socket *s = talloc_get_type_abort(private_data,
553 struct smbd_open_socket);
554 struct messaging_context *msg_ctx = s->parent->msg_ctx;
555 struct sockaddr_storage addr;
556 socklen_t in_addrlen = sizeof(addr);
557 int fd;
558 pid_t pid = 0;
559 uint64_t unique_id;
560
561 fd = accept(s->fd, (struct sockaddr *)(void *)&addr,&in_addrlen);
562 if (fd == -1 && errno == EINTR)
563 return;
564
565 if (fd == -1) {
566 DEBUG(0,("accept: %s\n",
567 strerror(errno)));
568 return;
569 }
570
571 if (s->parent->interactive) {
572 reinit_after_fork(msg_ctx, ev, true);
573 smbd_process(ev, msg_ctx, fd, true);
574 exit_server_cleanly("end of interactive mode");
575 return;
576 }
577
578 if (!allowable_number_of_smbd_processes(s->parent)) {
579 close(fd);
580 return;
581 }
582
583 /*
584 * Generate a unique id in the parent process so that we use
585 * the global random state in the parent.
586 */
587 unique_id = serverid_get_random_unique_id();
588
589 pid = fork();
590 if (pid == 0) {
591 NTSTATUS status = NT_STATUS_OK;
592
593 /* Child code ... */
594 am_parent = NULL;
595
596 /*
597 * Can't use TALLOC_FREE here. Nulling out the argument to it
598 * would overwrite memory we've just freed.
599 */
600 talloc_free(s->parent);
601 s = NULL;
602
603 set_my_unique_id(unique_id);
604
605 /* Stop zombies, the parent explicitly handles
606 * them, counting worker smbds. */
607 CatchChild();
608
609 status = reinit_after_fork(msg_ctx,
610 ev,
611 true);
612 if (!NT_STATUS_IS_OK(status)) {
613 if (NT_STATUS_EQUAL(status,
614 NT_STATUS_TOO_MANY_OPENED_FILES)) {
615 DEBUG(0,("child process cannot initialize "
616 "because too many files are open\n"));
617 goto exit;
618 }
619 if (lp_clustering() &&
620 NT_STATUS_EQUAL(status,
621 NT_STATUS_INTERNAL_DB_ERROR)) {
622 DEBUG(1,("child process cannot initialize "
623 "because connection to CTDB "
624 "has failed\n"));
625 goto exit;
626 }
627
628 DEBUG(0,("reinit_after_fork() failed\n"));
629 smb_panic("reinit_after_fork() failed");
630 }
631
632 smbd_process(ev, msg_ctx, fd, false);
633 exit:
634 exit_server_cleanly("end of child");
635 return;
636 }
637
638 if (pid < 0) {
639 DEBUG(0,("smbd_accept_connection: fork() failed: %s\n",
640 strerror(errno)));
641 }
642
643 /* The parent doesn't need this socket */
644 close(fd);
645
646 /* Sun May 6 18:56:14 2001 ackley@cs.unm.edu:
647 Clear the closed fd info out of server_fd --
648 and more importantly, out of client_fd in
649 util_sock.c, to avoid a possible
650 getpeername failure if we reopen the logs
651 and use %I in the filename.
652 */
653
654 if (pid != 0) {
655 add_child_pid(s->parent, pid);
656 }
657
658 /* Force parent to check log size after
659 * spawning child. Fix from
660 * klausr@ITAP.Physik.Uni-Stuttgart.De. The
661 * parent smbd will log to logserver.smb. It
662 * writes only two messages for each child
663 * started/finished. But each child writes,
664 * say, 50 messages also in logserver.smb,
665 * begining with the debug_count of the
666 * parent, before the child opens its own log
667 * file logserver.client. In a worst case
668 * scenario the size of logserver.smb would be
669 * checked after about 50*50=2500 messages
670 * (ca. 100kb).
671 * */
672 force_check_log_size();
673 }
674
675 static bool smbd_open_one_socket(struct smbd_parent_context *parent,
676 struct tevent_context *ev_ctx,
677 const struct sockaddr_storage *ifss,
678 uint16_t port)
679 {
680 struct smbd_open_socket *s;
681
682 s = talloc(parent, struct smbd_open_socket);
683 if (!s) {
684 return false;
685 }
686
687 s->parent = parent;
688 s->fd = open_socket_in(SOCK_STREAM,
689 port,
690 parent->sockets == NULL ? 0 : 2,
691 ifss,
692 true);
693 if (s->fd == -1) {
694 DEBUG(0,("smbd_open_once_socket: open_socket_in: "
695 "%s\n", strerror(errno)));
696 TALLOC_FREE(s);
697 /*
698 * We ignore an error here, as we've done before
699 */
700 return true;
701 }
702
703 /* ready to listen */
704 set_socket_options(s->fd, "SO_KEEPALIVE");
705 set_socket_options(s->fd, lp_socket_options());
706
707 /* Set server socket to
708 * non-blocking for the accept. */
709 set_blocking(s->fd, False);
710
711 if (listen(s->fd, SMBD_LISTEN_BACKLOG) == -1) {
712 DEBUG(0,("open_sockets_smbd: listen: "
713 "%s\n", strerror(errno)));
714 close(s->fd);
715 TALLOC_FREE(s);
716 return false;
717 }
718
719 s->fde = tevent_add_fd(ev_ctx,
720 s,
721 s->fd, TEVENT_FD_READ,
722 smbd_accept_connection,
723 s);
724 if (!s->fde) {
725 DEBUG(0,("open_sockets_smbd: "
726 "tevent_add_fd: %s\n",
727 strerror(errno)));
728 close(s->fd);
729 TALLOC_FREE(s);
730 return false;
731 }
732 tevent_fd_set_close_fn(s->fde, smbd_open_socket_close_fn);
733
734 DLIST_ADD_END(parent->sockets, s, struct smbd_open_socket *);
735
736 return true;
737 }
738
739 /****************************************************************************
740 Open the socket communication.
741 ****************************************************************************/
742
743 static bool open_sockets_smbd(struct smbd_parent_context *parent,
744 struct tevent_context *ev_ctx,
745 struct messaging_context *msg_ctx,
746 const char *smb_ports)
747 {
748 int num_interfaces = iface_count();
749 int i,j;
750 const char **ports;
751 unsigned dns_port = 0;
752
753 #ifdef HAVE_ATEXIT
754 atexit(killkids);
755 #endif
756
757 /* Stop zombies */
758 smbd_setup_sig_chld_handler(parent);
759
760 ports = lp_smb_ports();
761
762 /* use a reasonable default set of ports - listing on 445 and 139 */
763 if (smb_ports) {
764 char **l;
765 l = str_list_make_v3(talloc_tos(), smb_ports, NULL);
766 ports = discard_const_p(const char *, l);
767 }
768
769 for (j = 0; ports && ports[j]; j++) {
770 unsigned port = atoi(ports[j]);
771
772 if (port == 0 || port > 0xffff) {
773 exit_server_cleanly("Invalid port in the config or on "
774 "the commandline specified!");
775 }
776 }
777
778 if (lp_interfaces() && lp_bind_interfaces_only()) {
779 /* We have been given an interfaces line, and been
780 told to only bind to those interfaces. Create a
781 socket per interface and bind to only these.
782 */
783
784 /* Now open a listen socket for each of the
785 interfaces. */
786 for(i = 0; i < num_interfaces; i++) {
787 const struct sockaddr_storage *ifss =
788 iface_n_sockaddr_storage(i);
789 if (ifss == NULL) {
790 DEBUG(0,("open_sockets_smbd: "
791 "interface %d has NULL IP address !\n",
792 i));
793 continue;
794 }
795
796 for (j = 0; ports && ports[j]; j++) {
797 unsigned port = atoi(ports[j]);
798
799 /* Keep the first port for mDNS service
800 * registration.
801 */
802 if (dns_port == 0) {
803 dns_port = port;
804 }
805
806 if (!smbd_open_one_socket(parent,
807 ev_ctx,
808 ifss,
809 port)) {
810 return false;
811 }
812 }
813 }
814 } else {
815 /* Just bind to 0.0.0.0 - accept connections
816 from anywhere. */
817
818 const char *sock_addr;
819 char *sock_tok;
820 const char *sock_ptr;
821
822 #if HAVE_IPV6
823 sock_addr = "::,0.0.0.0";
824 #else
825 sock_addr = "0.0.0.0";
826 #endif
827
828 for (sock_ptr=sock_addr;
829 next_token_talloc(talloc_tos(), &sock_ptr, &sock_tok, " \t,"); ) {
830 for (j = 0; ports && ports[j]; j++) {
831 struct sockaddr_storage ss;
832 unsigned port = atoi(ports[j]);
833
834 /* Keep the first port for mDNS service
835 * registration.
836 */
837 if (dns_port == 0) {
838 dns_port = port;
839 }
840
841 /* open an incoming socket */
842 if (!interpret_string_addr(&ss, sock_tok,
843 AI_NUMERICHOST|AI_PASSIVE)) {
844 continue;
845 }
846
847 /*
848 * If we fail to open any sockets
849 * in this loop the parent-sockets == NULL
850 * case below will prevent us from starting.
851 */
852
853 (void)smbd_open_one_socket(parent,
854 ev_ctx,
855 &ss,
856 port);
857 }
858 }
859 }
860
861 if (parent->sockets == NULL) {
862 DEBUG(0,("open_sockets_smbd: No "
863 "sockets available to bind to.\n"));
864 return false;
865 }
866
867 /* Setup the main smbd so that we can get messages. Note that
868 do this after starting listening. This is needed as when in
869 clustered mode, ctdb won't allow us to start doing database
870 operations until it has gone thru a full startup, which
871 includes checking to see that smbd is listening. */
872
873 if (!serverid_register(messaging_server_id(msg_ctx),
874 FLAG_MSG_GENERAL|FLAG_MSG_SMBD
875 |FLAG_MSG_PRINT_GENERAL
876 |FLAG_MSG_DBWRAP)) {
877 DEBUG(0, ("open_sockets_smbd: Failed to register "
878 "myself in serverid.tdb\n"));
879 return false;
880 }
881
882 /* Listen to messages */
883
884 messaging_register(msg_ctx, NULL, MSG_SHUTDOWN, msg_exit_server);
885 messaging_register(msg_ctx, ev_ctx, MSG_SMB_CONF_UPDATED,
886 smbd_parent_conf_updated);
887 messaging_register(msg_ctx, NULL, MSG_SMB_STAT_CACHE_DELETE,
888 smb_stat_cache_delete);
889 messaging_register(msg_ctx, NULL, MSG_DEBUG, smbd_msg_debug);
890 messaging_register(msg_ctx, NULL, MSG_SMB_BRL_VALIDATE,
891 brl_revalidate);
892 messaging_register(msg_ctx, NULL, MSG_SMB_FORCE_TDIS,
893 smb_parent_send_to_children);
894 messaging_register(msg_ctx, NULL, MSG_SMB_KILL_CLIENT_IP,
895 smb_parent_send_to_children);
896 messaging_register(msg_ctx, NULL, MSG_SMB_TELL_NUM_CHILDREN,
897 smb_tell_num_children);
898
899 messaging_register(msg_ctx, NULL,
900 ID_CACHE_DELETE, smbd_parent_id_cache_delete);
901 messaging_register(msg_ctx, NULL,
902 ID_CACHE_KILL, smbd_parent_id_cache_kill);
903
904 if (lp_clustering()) {
905 ctdbd_register_reconfigure(messaging_ctdbd_connection());
906 }
907
908 #ifdef DEVELOPER
909 messaging_register(msg_ctx, NULL, MSG_SMB_INJECT_FAULT,
910 msg_inject_fault);
911 #endif
912
913 if (lp_multicast_dns_register() && (dns_port != 0)) {
914 #ifdef WITH_DNSSD_SUPPORT
915 smbd_setup_mdns_registration(ev_ctx,
916 parent, dns_port);
917 #endif
918 #ifdef WITH_AVAHI_SUPPORT
919 void *avahi_conn;
920
921 avahi_conn = avahi_start_register(ev_ctx,
922 ev_ctx,
923 dns_port);
924 if (avahi_conn == NULL) {
925 DEBUG(10, ("avahi_start_register failed\n"));
926 }
927 #endif
928 }
929
930 return true;
931 }
932
933
934 /*
935 handle stdin becoming readable when we are in --foreground mode
936 */
937 static void smbd_stdin_handler(struct tevent_context *ev,
938 struct tevent_fd *fde,
939 uint16_t flags,
940 void *private_data)
941 {
942 char c;
943 if (read(0, &c, 1) != 1) {
944 /* we have reached EOF on stdin, which means the
945 parent has exited. Shutdown the server */
946 exit_server_cleanly("EOF on stdin");
947 }
948 }
949
950 struct smbd_parent_tevent_trace_state {
951 TALLOC_CTX *frame;
952 };
953
954 static void smbd_parent_tevent_trace_callback(enum tevent_trace_point point,
955 void *private_data)
956 {
957 struct smbd_parent_tevent_trace_state *state =
958 (struct smbd_parent_tevent_trace_state *)private_data;
959
960 switch (point) {
961 case TEVENT_TRACE_BEFORE_WAIT:
962 break;
963 case TEVENT_TRACE_AFTER_WAIT:
964 break;
965 case TEVENT_TRACE_BEFORE_LOOP_ONCE:
966 TALLOC_FREE(state->frame);
967 state->frame = talloc_stackframe();
968 break;
969 case TEVENT_TRACE_AFTER_LOOP_ONCE:
970 TALLOC_FREE(state->frame);
971 break;
972 }
973
974 errno = 0;
975 }
976
977 static void smbd_parent_loop(struct tevent_context *ev_ctx,
978 struct smbd_parent_context *parent)
979 {
980 struct smbd_parent_tevent_trace_state trace_state = {
981 .frame = NULL,
982 };
983 int ret = 0;
984
985 tevent_set_trace_callback(ev_ctx, smbd_parent_tevent_trace_callback,
986 &trace_state);
987
988 /* now accept incoming connections - forking a new process
989 for each incoming connection */
990 DEBUG(2,("waiting for connections\n"));
991
992 ret = tevent_loop_wait(ev_ctx);
993 if (ret != 0) {
994 DEBUG(0, ("tevent_loop_wait failed: %d, %s, exiting\n",
995 ret, strerror(errno)));
996 }
997
998 TALLOC_FREE(trace_state.frame);
999
1000 /* NOTREACHED return True; */
1001 }
1002
1003
1004 /****************************************************************************
1005 Initialise connect, service and file structs.
1006 ****************************************************************************/
1007
1008 static bool init_structs(void )
1009 {
1010 /*
1011 * Set the machine NETBIOS name if not already
1012 * set from the config file.
1013 */
1014
1015 if (!init_names())
1016 return False;
1017
1018 if (!secrets_init())
1019 return False;
1020
1021 return True;
1022 }
1023
1024 static void smbd_parent_sig_term_handler(struct tevent_context *ev,
1025 struct tevent_signal *se,
1026 int signum,
1027 int count,
1028 void *siginfo,
1029 void *private_data)
1030 {
1031 exit_server_cleanly("termination signal");
1032 }
1033
1034 static void smbd_parent_sig_hup_handler(struct tevent_context *ev,
1035 struct tevent_signal *se,
1036 int signum,
1037 int count,
1038 void *siginfo,
1039 void *private_data)
1040 {
1041 struct smbd_parent_context *parent =
1042 talloc_get_type_abort(private_data,
1043 struct smbd_parent_context);
1044
1045 change_to_root_user();
1046 DEBUG(1,("parent: Reloading services after SIGHUP\n"));
1047 reload_services(NULL, NULL, false);
1048
1049 printing_subsystem_update(parent->ev_ctx, parent->msg_ctx, true);
1050 }
1051
1052 /****************************************************************************
1053 main program.
1054 ****************************************************************************/
1055
1056 /* Declare prototype for build_options() to avoid having to run it through
1057 mkproto.h. Mixing $(builddir) and $(srcdir) source files in the current
1058 prototype generation system is too complicated. */
1059
1060 extern void build_options(bool screen);
1061
1062 int main(int argc,const char *argv[])
1063 {
1064 /* shall I run as a daemon */
1065 bool is_daemon = false;
1066 bool interactive = false;
1067 bool Fork = true;
1068 bool no_process_group = false;
1069 bool log_stdout = false;
1070 char *ports = NULL;
1071 char *profile_level = NULL;
1072 int opt;
1073 poptContext pc;
1074 bool print_build_options = False;
1075 enum {
1076 OPT_DAEMON = 1000,
1077 OPT_INTERACTIVE,
1078 OPT_FORK,
1079 OPT_NO_PROCESS_GROUP,
1080 OPT_LOG_STDOUT
1081 };
1082 struct poptOption long_options[] = {
1083 POPT_AUTOHELP
1084 {"daemon", 'D', POPT_ARG_NONE, NULL, OPT_DAEMON, "Become a daemon (default)" },
1085 {"interactive", 'i', POPT_ARG_NONE, NULL, OPT_INTERACTIVE, "Run interactive (not a daemon)"},
1086 {"foreground", 'F', POPT_ARG_NONE, NULL, OPT_FORK, "Run daemon in foreground (for daemontools, etc.)" },
1087 {"no-process-group", '\0', POPT_ARG_NONE, NULL, OPT_NO_PROCESS_GROUP, "Don't create a new process group" },
1088 {"log-stdout", 'S', POPT_ARG_NONE, NULL, OPT_LOG_STDOUT, "Log to stdout" },
1089 {"build-options", 'b', POPT_ARG_NONE, NULL, 'b', "Print build options" },
1090 {"port", 'p', POPT_ARG_STRING, &ports, 0, "Listen on the specified ports"},
1091 {"profiling-level", 'P', POPT_ARG_STRING, &profile_level, 0, "Set profiling level","PROFILE_LEVEL"},
1092 POPT_COMMON_SAMBA
1093 POPT_TABLEEND
1094 };
1095 struct smbd_parent_context *parent = NULL;
1096 TALLOC_CTX *frame;
1097 NTSTATUS status;
1098 struct tevent_context *ev_ctx;
1099 struct messaging_context *msg_ctx;
1100 struct server_id server_id;
1101 struct tevent_signal *se;
1102 int profiling_level;
1103 char *np_dir = NULL;
1104 static const struct smbd_shim smbd_shim_fns =
1105 {
1106 .cancel_pending_lock_requests_by_fid = smbd_cancel_pending_lock_requests_by_fid,
1107 .send_stat_cache_delete_message = smbd_send_stat_cache_delete_message,
1108 .change_to_root_user = smbd_change_to_root_user,
1109 .become_authenticated_pipe_user = smbd_become_authenticated_pipe_user,
1110 .unbecome_authenticated_pipe_user = smbd_unbecome_authenticated_pipe_user,
1111
1112 .contend_level2_oplocks_begin = smbd_contend_level2_oplocks_begin,
1113 .contend_level2_oplocks_end = smbd_contend_level2_oplocks_end,
1114
1115 .become_root = smbd_become_root,
1116 .unbecome_root = smbd_unbecome_root,
1117
1118 .exit_server = smbd_exit_server,
1119 .exit_server_cleanly = smbd_exit_server_cleanly,
1120 };
1121
1122 /*
1123 * Do this before any other talloc operation
1124 */
1125 talloc_enable_null_tracking();
1126 frame = talloc_stackframe();
1127
1128 setup_logging(argv[0], DEBUG_DEFAULT_STDOUT);
1129
1130 smb_init_locale();
1131
1132 set_smbd_shim(&smbd_shim_fns);
1133
1134 smbd_init_globals();
1135
1136 TimeInit();
1137
1138 #ifdef HAVE_SET_AUTH_PARAMETERS
1139 set_auth_parameters(argc,argv);
1140 #endif
1141
1142 pc = poptGetContext("smbd", argc, argv, long_options, 0);
1143 while((opt = poptGetNextOpt(pc)) != -1) {
1144 switch (opt) {
1145 case OPT_DAEMON:
1146 is_daemon = true;
1147 break;
1148 case OPT_INTERACTIVE:
1149 interactive = true;
1150 break;
1151 case OPT_FORK:
1152 Fork = false;
1153 break;
1154 case OPT_NO_PROCESS_GROUP:
1155 no_process_group = true;
1156 break;
1157 case OPT_LOG_STDOUT:
1158 log_stdout = true;
1159 break;
1160 case 'b':
1161 print_build_options = True;
1162 break;
1163 default:
1164 d_fprintf(stderr, "\nInvalid option %s: %s\n\n",
1165 poptBadOption(pc, 0), poptStrerror(opt));
1166 poptPrintUsage(pc, stderr, 0);
1167 exit(1);
1168 }
1169 }
1170 poptFreeContext(pc);
1171
1172 if (interactive) {
1173 Fork = False;
1174 log_stdout = True;
1175 }
1176
1177 if (log_stdout) {
1178 setup_logging(argv[0], DEBUG_STDOUT);
1179 } else {
1180 setup_logging(argv[0], DEBUG_FILE);
1181 }
1182
1183 if (print_build_options) {
1184 build_options(True); /* Display output to screen as well as debug */
1185 exit(0);
1186 }
1187
1188 #ifdef HAVE_SETLUID
1189 /* needed for SecureWare on SCO */
1190 setluid(0);
1191 #endif
1192
1193 set_remote_machine_name("smbd", False);
1194
1195 if (interactive && (DEBUGLEVEL >= 9)) {
1196 talloc_enable_leak_report();
1197 }
1198
1199 if (log_stdout && Fork) {
1200 DEBUG(0,("ERROR: Can't log to stdout (-S) unless daemon is in foreground (-F) or interactive (-i)\n"));
1201 exit(1);
1202 }
1203
1204 /* we want to re-seed early to prevent time delays causing
1205 client problems at a later date. (tridge) */
1206 generate_random_buffer(NULL, 0);
1207
1208 /* get initial effective uid and gid */
1209 sec_init();
1210
1211 /* make absolutely sure we run as root - to handle cases where people
1212 are crazy enough to have it setuid */
1213 gain_root_privilege();
1214 gain_root_group_privilege();
1215
1216 fault_setup();
1217 dump_core_setup("smbd", lp_logfile(talloc_tos()));
1218
1219 /* we are never interested in SIGPIPE */
1220 BlockSignals(True,SIGPIPE);
1221
1222 #if defined(SIGFPE)
1223 /* we are never interested in SIGFPE */
1224 BlockSignals(True,SIGFPE);
1225 #endif
1226
1227 #if defined(SIGUSR2)
1228 /* We are no longer interested in USR2 */
1229 BlockSignals(True,SIGUSR2);
1230 #endif
1231
1232 /* POSIX demands that signals are inherited. If the invoking process has
1233 * these signals masked, we will have problems, as we won't recieve them. */
1234 BlockSignals(False, SIGHUP);
1235 BlockSignals(False, SIGUSR1);
1236 BlockSignals(False, SIGTERM);
1237
1238 /* Ensure we leave no zombies until we
1239 * correctly set up child handling below. */
1240
1241 CatchChild();
1242
1243 /* we want total control over the permissions on created files,
1244 so set our umask to 0 */
1245 umask(0);
1246
1247 reopen_logs();
1248
1249 DEBUG(0,("smbd version %s started.\n", samba_version_string()));
1250 DEBUGADD(0,("%s\n", COPYRIGHT_STARTUP_MESSAGE));
1251
1252 DEBUG(2,("uid=%d gid=%d euid=%d egid=%d\n",
1253 (int)getuid(),(int)getgid(),(int)geteuid(),(int)getegid()));
1254
1255 /* Output the build options to the debug log */
1256 build_options(False);
1257
1258 if (sizeof(uint16) < 2 || sizeof(uint32) < 4) {
1259 DEBUG(0,("ERROR: Samba is not configured correctly for the word size on your machine\n"));
1260 exit(1);
1261 }
1262
1263 if (!lp_load_initial_only(get_dyn_CONFIGFILE())) {
1264 DEBUG(0, ("error opening config file '%s'\n", get_dyn_CONFIGFILE()));
1265 exit(1);
1266 }
1267
1268 if (!cluster_probe_ok()) {
1269 exit(1);
1270 }
1271
1272 /* Init the security context and global current_user */
1273 init_sec_ctx();
1274
1275 /*
1276 * Initialize the event context. The event context needs to be
1277 * initialized before the messaging context, cause the messaging
1278 * context holds an event context.
1279 * FIXME: This should be s3_tevent_context_init()
1280 */
1281 ev_ctx = server_event_context();
1282 if (ev_ctx == NULL) {
1283 exit(1);
1284 }
1285
1286 /*
1287 * Init the messaging context
1288 * FIXME: This should only call messaging_init()
1289 */
1290 msg_ctx = server_messaging_context();
1291 if (msg_ctx == NULL) {
1292 exit(1);
1293 }
1294
1295 /*
1296 * Reloading of the printers will not work here as we don't have a
1297 * server info and rpc services set up. It will be called later.
1298 */
1299 if (!reload_services(NULL, NULL, false)) {
1300 exit(1);
1301 }
1302
1303 if (lp_server_role() == ROLE_ACTIVE_DIRECTORY_DC
1304 && !lp_parm_bool(-1, "server role check", "inhibit", false)) {
1305 DEBUG(0, ("server role = 'active directory domain controller' not compatible with running smbd standalone. \n"));
1306 DEBUGADD(0, ("You should start 'samba' instead, and it will control starting smbd if required\n"));
1307 exit(1);
1308 }
1309
1310 /* ...NOTE... Log files are working from this point! */
1311
1312 DEBUG(3,("loaded services\n"));
1313
1314 init_structs();
1315
1316 if (!profile_setup(msg_ctx, False)) {
1317 DEBUG(0,("ERROR: failed to setup profiling\n"));
1318 return -1;
1319 }
1320
1321 if (profile_level != NULL) {
1322 profiling_level = atoi(profile_level);
1323 } else {
1324 profiling_level = lp_smbd_profiling_level();
1325 }
1326 set_profile_level(profiling_level, messaging_server_id(msg_ctx));
1327
1328 if (!is_daemon && !is_a_socket(0)) {
1329 if (!interactive) {
1330 DEBUG(3, ("Standard input is not a socket, "
1331 "assuming -D option\n"));
1332 }
1333
1334 /*
1335 * Setting is_daemon here prevents us from eventually calling
1336 * the open_sockets_inetd()
1337 */
1338
1339 is_daemon = True;
1340 }
1341
1342 if (is_daemon && !interactive) {
1343 DEBUG(3, ("Becoming a daemon.\n"));
1344 become_daemon(Fork, no_process_group, log_stdout);
1345 }
1346
1347 set_my_unique_id(serverid_get_random_unique_id());
1348
1349 #if HAVE_SETPGID
1350 /*
1351 * If we're interactive we want to set our own process group for
1352 * signal management.
1353 */
1354 if (interactive && !no_process_group)
1355 setpgid( (pid_t)0, (pid_t)0);
1356 #endif
1357
1358 if (!directory_exist(lp_lock_directory()))
1359 mkdir(lp_lock_directory(), 0755);
1360
1361 if (!directory_exist(lp_pid_directory()))
1362 mkdir(lp_pid_directory(), 0755);
1363
1364 if (is_daemon)
1365 pidfile_create(lp_pid_directory(), "smbd");
1366
1367 status = reinit_after_fork(msg_ctx,
1368 ev_ctx,
1369 false);
1370 if (!NT_STATUS_IS_OK(status)) {
1371 exit_daemon("reinit_after_fork() failed", map_errno_from_nt_status(status));
1372 }
1373
1374 if (!interactive) {
1375 /*
1376 * Do not initialize the parent-child-pipe before becoming a
1377 * daemon: this is used to detect a died parent in the child
1378 * process.
1379 */
1380 status = init_before_fork();
1381 if (!NT_STATUS_IS_OK(status)) {
1382 exit_daemon(nt_errstr(status), map_errno_from_nt_status(status));
1383 }
1384 }
1385
1386 parent = talloc_zero(ev_ctx, struct smbd_parent_context);
1387 if (!parent) {
1388 exit_server("talloc(struct smbd_parent_context) failed");
1389 }
1390 parent->interactive = interactive;
1391 parent->ev_ctx = ev_ctx;
1392 parent->msg_ctx = msg_ctx;
1393 am_parent = parent;
1394
1395 se = tevent_add_signal(parent->ev_ctx,
1396 parent,
1397 SIGTERM, 0,
1398 smbd_parent_sig_term_handler,
1399 parent);
1400 if (!se) {
1401 exit_server("failed to setup SIGTERM handler");
1402 }
1403 se = tevent_add_signal(parent->ev_ctx,
1404 parent,
1405 SIGHUP, 0,
1406 smbd_parent_sig_hup_handler,
1407 parent);
1408 if (!se) {
1409 exit_server("failed to setup SIGHUP handler");
1410 }
1411
1412 /* Setup all the TDB's - including CLEAR_IF_FIRST tdb's. */
1413
1414 if (smbd_memcache() == NULL) {
1415 exit_daemon("no memcache available", EACCES);
1416 }
1417
1418 memcache_set_global(smbd_memcache());
1419
1420 /* Initialise the password backed before the global_sam_sid
1421 to ensure that we fetch from ldap before we make a domain sid up */
1422
1423 if(!initialize_password_db(false, ev_ctx))
1424 exit(1);
1425
1426 if (!secrets_init()) {
1427 exit_daemon("smbd can not open secrets.tdb", EACCES);
1428 }
1429
1430 if (lp_server_role() == ROLE_DOMAIN_BDC || lp_server_role() == ROLE_DOMAIN_PDC) {
1431 struct loadparm_context *lp_ctx = loadparm_init_s3(NULL, loadparm_s3_helpers());
1432 if (!open_schannel_session_store(NULL, lp_ctx)) {
1433 exit_daemon("ERROR: Samba cannot open schannel store for secured NETLOGON operations.", EACCES);
1434 }
1435 TALLOC_FREE(lp_ctx);
1436 }
1437
1438 if(!get_global_sam_sid()) {
1439 exit_daemon("Samba cannot create a SAM SID", EACCES);
1440 }
1441
1442 server_id = messaging_server_id(msg_ctx);
1443 status = smbXsrv_version_global_init(&server_id);
1444 if (!NT_STATUS_IS_OK(status)) {
1445 exit_daemon("Samba cannot init server context", EACCES);
1446 }
1447
1448 status = smbXsrv_session_global_init();
1449 if (!NT_STATUS_IS_OK(status)) {
1450 exit_daemon("Samba cannot init session context", EACCES);
1451 }
1452
1453 status = smbXsrv_tcon_global_init();
1454 if (!NT_STATUS_IS_OK(status)) {
1455 exit_daemon("Samba cannot init tcon context", EACCES);
1456 }
1457
1458 if (!locking_init())
1459 exit_daemon("Samba cannot init locking", EACCES);
1460
1461 if (!leases_db_init(false)) {
1462 exit_daemon("Samba cannot init leases", EACCES);
1463 }
1464
1465 if (!smbd_parent_notify_init(NULL, msg_ctx, ev_ctx)) {
1466 exit_daemon("Samba cannot init notification", EACCES);
1467 }
1468
1469 if (!messaging_parent_dgm_cleanup_init(msg_ctx)) {
1470 exit(1);
1471 }
1472
1473 if (!smbd_scavenger_init(NULL, msg_ctx, ev_ctx)) {
1474 exit_daemon("Samba cannot init scavenging", EACCES);
1475 }
1476
1477 if (!serverid_parent_init(ev_ctx)) {
1478 exit_daemon("Samba cannot init server id", EACCES);
1479 }
1480
1481 if (!W_ERROR_IS_OK(registry_init_full()))
1482 exit_daemon("Samba cannot init registry", EACCES);
1483
1484 /* Open the share_info.tdb here, so we don't have to open
1485 after the fork on every single connection. This is a small
1486 performance improvment and reduces the total number of system
1487 fds used. */
1488 if (!share_info_db_init()) {
1489 exit_daemon("ERROR: failed to load share info db.", EACCES);
1490 }
1491
1492 status = init_system_session_info();
1493 if (!NT_STATUS_IS_OK(status)) {
1494 DEBUG(1, ("ERROR: failed to setup system user info: %s.\n",
1495 nt_errstr(status)));
1496 return -1;
1497 }
1498
1499 if (!init_guest_info()) {
1500 DEBUG(0,("ERROR: failed to setup guest info.\n"));
1501 return -1;
1502 }
1503
1504 if (!file_init_global()) {
1505 DEBUG(0, ("ERROR: file_init_global() failed\n"));
1506 return -1;
1507 }
1508 status = smbXsrv_open_global_init();
1509 if (!NT_STATUS_IS_OK(status)) {
1510 exit_daemon("Samba cannot init global open", map_errno_from_nt_status(status));
1511 }
1512
1513 /* This MUST be done before start_epmd() because otherwise
1514 * start_epmd() forks and races against dcesrv_ep_setup() to
1515 * call directory_create_or_exist() */
1516 if (!directory_create_or_exist(lp_ncalrpc_dir(), 0755)) {
1517 DEBUG(0, ("Failed to create pipe directory %s - %s\n",
1518 lp_ncalrpc_dir(), strerror(errno)));
1519 return -1;
1520 }
1521
1522 np_dir = talloc_asprintf(talloc_tos(), "%s/np", lp_ncalrpc_dir());
1523 if (!np_dir) {
1524 DEBUG(0, ("%s: Out of memory\n", __location__));
1525 return -1;
1526 }
1527
1528 if (!directory_create_or_exist_strict(np_dir, geteuid(), 0700)) {
1529 DEBUG(0, ("Failed to create pipe directory %s - %s\n",
1530 np_dir, strerror(errno)));
1531 return -1;
1532 }
1533
1534 if (is_daemon && !interactive) {
1535 if (rpc_epmapper_daemon() == RPC_DAEMON_FORK) {
1536 start_epmd(ev_ctx, msg_ctx);
1537 }
1538 }
1539
1540 if (!dcesrv_ep_setup(ev_ctx, msg_ctx)) {
1541 exit_daemon("Samba cannot setup ep pipe", EACCES);
1542 }
1543
1544 if (is_daemon && !interactive) {
1545 daemon_ready("smbd");
1546 }
1547
1548 /* only start other daemons if we are running as a daemon
1549 * -- bad things will happen if smbd is launched via inetd
1550 * and we fork a copy of ourselves here */
1551 if (is_daemon && !interactive) {
1552
1553 if (rpc_lsasd_daemon() == RPC_DAEMON_FORK) {
1554 start_lsasd(ev_ctx, msg_ctx);
1555 }
1556
1557 if (rpc_fss_daemon() == RPC_DAEMON_FORK) {
1558 start_fssd(ev_ctx, msg_ctx);
1559 }
1560
1561 if (!lp__disable_spoolss() &&
1562 (rpc_spoolss_daemon() != RPC_DAEMON_DISABLED)) {
1563 bool bgq = lp_parm_bool(-1, "smbd", "backgroundqueue", true);
1564
1565 if (!printing_subsystem_init(ev_ctx, msg_ctx, true, bgq)) {
1566 exit_daemon("Samba failed to init printing subsystem", EACCES);
1567 }
1568 }
1569 } else if (!lp__disable_spoolss() &&
1570 (rpc_spoolss_daemon() != RPC_DAEMON_DISABLED)) {
1571 if (!printing_subsystem_init(ev_ctx, msg_ctx, false, false)) {
1572 exit(1);
1573 }
1574 }
1575
1576 if (!is_daemon) {
1577 int sock;
1578
1579 /* inetd mode */
1580 TALLOC_FREE(frame);
1581
1582 /* Started from inetd. fd 0 is the socket. */
1583 /* We will abort gracefully when the client or remote system
1584 goes away */
1585 sock = dup(0);
1586
1587 /* close stdin, stdout (if not logging to it), but not stderr */
1588 close_low_fds(true, !debug_get_output_is_stdout(), false);
1589
1590 #ifdef HAVE_ATEXIT
1591 atexit(killkids);
1592 #endif
1593
1594 /* Stop zombies */
1595 smbd_setup_sig_chld_handler(parent);
1596
1597 smbd_process(ev_ctx, msg_ctx, sock, true);
1598
1599 exit_server_cleanly(NULL);
1600 return(0);
1601 }
1602
1603 if (!open_sockets_smbd(parent, ev_ctx, msg_ctx, ports))
1604 exit_server("open_sockets_smbd() failed");
1605
1606 /* do a printer update now that all messaging has been set up,
1607 * before we allow clients to start connecting */
1608 if (!lp__disable_spoolss() &&
1609 (rpc_spoolss_daemon() != RPC_DAEMON_DISABLED)) {
1610 printing_subsystem_update(ev_ctx, msg_ctx, false);
1611 }
1612
1613 TALLOC_FREE(frame);
1614 /* make sure we always have a valid stackframe */
1615 frame = talloc_stackframe();
1616
1617 if (!Fork) {
1618 /* if we are running in the foreground then look for
1619 EOF on stdin, and exit if it happens. This allows
1620 us to die if the parent process dies
1621 Only do this on a pipe or socket, no other device.
1622 */
1623 struct stat st;
1624 if (fstat(0, &st) != 0) {
1625 return false;
1626 }
1627 if (S_ISFIFO(st.st_mode) || S_ISSOCK(st.st_mode)) {
1628 tevent_add_fd(ev_ctx,
1629 parent,
1630 0,
1631 TEVENT_FD_READ,
1632 smbd_stdin_handler,
1633 NULL);
1634 }
1635 }
1636
1637 smbd_parent_loop(ev_ctx, parent);
1638
1639 exit_server_cleanly(NULL);
1640 TALLOC_FREE(frame);
1641 return(0);
1642 }
Samba GIT mirror