search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
tests/krb5: Clarify checksum type assertion message
[Samba.git] / source3 / smbd / dir.c
blob51cd22d6c5a0cd24db0f87a6a2107f735d7221a5
1 /*
2 Unix SMB/CIFS implementation.
3 Directory handling routines
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Jeremy Allison 2007
6
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
11
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
16
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
19 */
20
21 #include "includes.h"
22 #include "system/filesys.h"
23 #include "smbd/smbd.h"
24 #include "smbd/globals.h"
25 #include "libcli/security/security.h"
26 #include "lib/util/bitmap.h"
27 #include "../lib/util/memcache.h"
28 #include "../librpc/gen_ndr/open_files.h"
29
30 /*
31 This module implements directory related functions for Samba.
32 */
33
34 /* "Special" directory offsets. */
35 #define END_OF_DIRECTORY_OFFSET ((long)-1)
36 #define START_OF_DIRECTORY_OFFSET ((long)0)
37 #define DOT_DOT_DIRECTORY_OFFSET ((long)0x80000000)
38
39 /* "Special" directory offsets in 32-bit wire format. */
40 #define WIRE_END_OF_DIRECTORY_OFFSET ((uint32_t)0xFFFFFFFF)
41 #define WIRE_START_OF_DIRECTORY_OFFSET ((uint32_t)0)
42 #define WIRE_DOT_DOT_DIRECTORY_OFFSET ((uint32_t)0x80000000)
43
44 /* Make directory handle internals available. */
45
46 struct name_cache_entry {
47 char *name;
48 long offset;
49 };
50
51 struct smb_Dir {
52 connection_struct *conn;
53 DIR *dir;
54 long offset;
55 struct smb_filename *dir_smb_fname;
56 size_t name_cache_size;
57 struct name_cache_entry *name_cache;
58 unsigned int name_cache_index;
59 unsigned int file_number;
60 files_struct *fsp; /* Back pointer to containing fsp, only
61 set from OpenDir_fsp(). */
62 };
63
64 struct dptr_struct {
65 struct dptr_struct *next, *prev;
66 int dnum;
67 uint16_t spid;
68 struct connection_struct *conn;
69 struct smb_Dir *dir_hnd;
70 bool expect_close;
71 char *wcard;
72 uint32_t attr;
73 struct smb_filename *smb_dname;
74 bool has_wild; /* Set to true if the wcard entry has MS wildcard characters in it. */
75 bool did_stat; /* Optimisation for non-wcard searches. */
76 bool priv; /* Directory handle opened with privilege. */
77 uint32_t counter;
78 struct memcache *dptr_cache;
79 };
80
81 static struct smb_Dir *OpenDir_fsp(TALLOC_CTX *mem_ctx, connection_struct *conn,
82 files_struct *fsp,
83 const char *mask,
84 uint32_t attr);
85
86 static void DirCacheAdd(struct smb_Dir *dir_hnd, const char *name, long offset);
87
88 static int smb_Dir_destructor(struct smb_Dir *dir_hnd);
89
90 #define INVALID_DPTR_KEY (-3)
91
92 /****************************************************************************
93 Initialise the dir bitmap.
94 ****************************************************************************/
95
96 bool init_dptrs(struct smbd_server_connection *sconn)
97 {
98 if (sconn->searches.dptr_bmap) {
99 return true;
100 }
101
102 sconn->searches.dptr_bmap = bitmap_talloc(
103 sconn, MAX_DIRECTORY_HANDLES);
104
105 if (sconn->searches.dptr_bmap == NULL) {
106 return false;
107 }
108
109 return true;
110 }
111
112 /****************************************************************************
113 Get the struct dptr_struct for a dir index.
114 ****************************************************************************/
115
116 static struct dptr_struct *dptr_get(struct smbd_server_connection *sconn,
117 int key)
118 {
119 struct dptr_struct *dptr;
120
121 for (dptr = sconn->searches.dirptrs; dptr != NULL; dptr = dptr->next) {
122 if(dptr->dnum != key) {
123 continue;
124 }
125 DLIST_PROMOTE(sconn->searches.dirptrs, dptr);
126 return dptr;
127 }
128 return(NULL);
129 }
130
131 /****************************************************************************
132 Get the dir path for a dir index.
133 ****************************************************************************/
134
135 const char *dptr_path(struct smbd_server_connection *sconn, int key)
136 {
137 struct dptr_struct *dptr = dptr_get(sconn, key);
138 if (dptr)
139 return(dptr->smb_dname->base_name);
140 return(NULL);
141 }
142
143 /****************************************************************************
144 Get the dir wcard for a dir index.
145 ****************************************************************************/
146
147 const char *dptr_wcard(struct smbd_server_connection *sconn, int key)
148 {
149 struct dptr_struct *dptr = dptr_get(sconn, key);
150 if (dptr)
151 return(dptr->wcard);
152 return(NULL);
153 }
154
155 /****************************************************************************
156 Get the dir attrib for a dir index.
157 ****************************************************************************/
158
159 uint16_t dptr_attr(struct smbd_server_connection *sconn, int key)
160 {
161 struct dptr_struct *dptr = dptr_get(sconn, key);
162 if (dptr)
163 return(dptr->attr);
164 return(0);
165 }
166
167 /****************************************************************************
168 Close all dptrs for a cnum.
169 ****************************************************************************/
170
171 void dptr_closecnum(connection_struct *conn)
172 {
173 struct dptr_struct *dptr, *next;
174 struct smbd_server_connection *sconn = conn->sconn;
175
176 if (sconn == NULL) {
177 return;
178 }
179
180 for(dptr = sconn->searches.dirptrs; dptr; dptr = next) {
181 next = dptr->next;
182 if (dptr->conn == conn) {
183 files_struct *fsp = dptr->dir_hnd->fsp;
184 close_file(NULL, fsp, NORMAL_CLOSE);
185 fsp = NULL;
186 }
187 }
188 }
189
190 /****************************************************************************
191 Create a new dir ptr. If the flag old_handle is true then we must allocate
192 from the bitmap range 0 - 255 as old SMBsearch directory handles are only
193 one byte long. If old_handle is false we allocate from the range
194 256 - MAX_DIRECTORY_HANDLES. We bias the number we return by 1 to ensure
195 a directory handle is never zero.
196 wcard must not be zero.
197 ****************************************************************************/
198
199 NTSTATUS dptr_create(connection_struct *conn,
200 struct smb_request *req,
201 files_struct *fsp,
202 bool old_handle,
203 bool expect_close,
204 uint16_t spid,
205 const char *wcard,
206 bool wcard_has_wild,
207 uint32_t attr,
208 struct dptr_struct **dptr_ret)
209 {
210 struct smbd_server_connection *sconn = conn->sconn;
211 struct dptr_struct *dptr = NULL;
212 struct smb_Dir *dir_hnd;
213
214 DBG_INFO("dir=%s\n", fsp_str_dbg(fsp));
215
216 if (sconn == NULL) {
217 DEBUG(0,("dptr_create: called with fake connection_struct\n"));
218 return NT_STATUS_INTERNAL_ERROR;
219 }
220
221 if (!wcard) {
222 return NT_STATUS_INVALID_PARAMETER;
223 }
224
225 if (!(fsp->access_mask & SEC_DIR_LIST)) {
226 DBG_INFO("dptr_create: directory %s "
227 "not open for LIST access\n",
228 fsp_str_dbg(fsp));
229 return NT_STATUS_ACCESS_DENIED;
230 }
231 dir_hnd = OpenDir_fsp(NULL, conn, fsp, wcard, attr);
232 if (!dir_hnd) {
233 return map_nt_error_from_unix(errno);
234 }
235
236 dptr = talloc_zero(NULL, struct dptr_struct);
237 if(!dptr) {
238 DEBUG(0,("talloc fail in dptr_create.\n"));
239 TALLOC_FREE(dir_hnd);
240 return NT_STATUS_NO_MEMORY;
241 }
242
243 dptr->smb_dname = cp_smb_filename(dptr, fsp->fsp_name);
244 if (dptr->smb_dname == NULL) {
245 TALLOC_FREE(dptr);
246 TALLOC_FREE(dir_hnd);
247 return NT_STATUS_NO_MEMORY;
248 }
249 dptr->conn = conn;
250 dptr->dir_hnd = dir_hnd;
251 dptr->spid = spid;
252 dptr->expect_close = expect_close;
253 dptr->wcard = talloc_strdup(dptr, wcard);
254 if (!dptr->wcard) {
255 TALLOC_FREE(dptr);
256 TALLOC_FREE(dir_hnd);
257 return NT_STATUS_NO_MEMORY;
258 }
259 if ((req != NULL && req->posix_pathnames) ||
260 (wcard[0] == '.' && wcard[1] == 0)) {
261 dptr->has_wild = True;
262 } else {
263 dptr->has_wild = wcard_has_wild;
264 }
265
266 dptr->attr = attr;
267
268 if (sconn->using_smb2) {
269 goto done;
270 }
271
272 if(old_handle) {
273
274 /*
275 * This is an old-style SMBsearch request. Ensure the
276 * value we return will fit in the range 1-255.
277 */
278
279 dptr->dnum = bitmap_find(sconn->searches.dptr_bmap, 0);
280
281 if(dptr->dnum == -1 || dptr->dnum > 254) {
282 DBG_ERR("returned %d: Error - all old "
283 "dirptrs in use ?\n",
284 dptr->dnum);
285 TALLOC_FREE(dptr);
286 TALLOC_FREE(dir_hnd);
287 return NT_STATUS_TOO_MANY_OPENED_FILES;
288 }
289 } else {
290
291 /*
292 * This is a new-style trans2 request. Allocate from
293 * a range that will return 256 - MAX_DIRECTORY_HANDLES.
294 */
295
296 dptr->dnum = bitmap_find(sconn->searches.dptr_bmap, 255);
297
298 if(dptr->dnum == -1 || dptr->dnum < 255) {
299 DBG_ERR("returned %d: Error - all new "
300 "dirptrs in use ?\n",
301 dptr->dnum);
302 TALLOC_FREE(dptr);
303 TALLOC_FREE(dir_hnd);
304 return NT_STATUS_TOO_MANY_OPENED_FILES;
305 }
306 }
307
308 bitmap_set(sconn->searches.dptr_bmap, dptr->dnum);
309
310 dptr->dnum += 1; /* Always bias the dnum by one - no zero dnums allowed. */
311
312 DLIST_ADD(sconn->searches.dirptrs, dptr);
313
314 done:
315 DBG_INFO("creating new dirptr [%d] for path [%s], expect_close = %d\n",
316 dptr->dnum, fsp_str_dbg(fsp), expect_close);
317
318 *dptr_ret = dptr;
319
320 return NT_STATUS_OK;
321 }
322
323
324 /****************************************************************************
325 Wrapper functions to access the lower level directory handles.
326 ****************************************************************************/
327
328 void dptr_CloseDir(files_struct *fsp)
329 {
330 struct smbd_server_connection *sconn = NULL;
331
332 if (fsp->dptr == NULL) {
333 return;
334 }
335 sconn = fsp->dptr->conn->sconn;
336
337 /*
338 * The destructor for the struct smb_Dir (fsp->dptr->dir_hnd)
339 * now handles all resource deallocation.
340 */
341
342 DBG_INFO("closing dptr key %d\n", fsp->dptr->dnum);
343
344 if (sconn != NULL && !sconn->using_smb2) {
345 DLIST_REMOVE(sconn->searches.dirptrs, fsp->dptr);
346
347 /*
348 * Free the dnum in the bitmap. Remember the dnum value is
349 * always biased by one with respect to the bitmap.
350 */
351
352 if (!bitmap_query(sconn->searches.dptr_bmap,
353 fsp->dptr->dnum - 1))
354 {
355 DBG_ERR("closing dnum = %d and bitmap not set !\n",
356 fsp->dptr->dnum);
357 }
358
359 bitmap_clear(sconn->searches.dptr_bmap, fsp->dptr->dnum - 1);
360 }
361
362 TALLOC_FREE(fsp->dptr->dir_hnd);
363 TALLOC_FREE(fsp->dptr);
364 }
365
366 void dptr_SeekDir(struct dptr_struct *dptr, long offset)
367 {
368 SeekDir(dptr->dir_hnd, offset);
369 }
370
371 long dptr_TellDir(struct dptr_struct *dptr)
372 {
373 return TellDir(dptr->dir_hnd);
374 }
375
376 bool dptr_has_wild(struct dptr_struct *dptr)
377 {
378 return dptr->has_wild;
379 }
380
381 int dptr_dnum(struct dptr_struct *dptr)
382 {
383 return dptr->dnum;
384 }
385
386 bool dptr_get_priv(struct dptr_struct *dptr)
387 {
388 return dptr->priv;
389 }
390
391 void dptr_set_priv(struct dptr_struct *dptr)
392 {
393 dptr->priv = true;
394 }
395
396 /****************************************************************************
397 Return the next visible file name, skipping veto'd and invisible files.
398 ****************************************************************************/
399
400 static const char *dptr_normal_ReadDirName(struct dptr_struct *dptr,
401 long *poffset, SMB_STRUCT_STAT *pst,
402 char **ptalloced)
403 {
404 /* Normal search for the next file. */
405 const char *name;
406 char *talloced = NULL;
407
408 while ((name = ReadDirName(dptr->dir_hnd, poffset, pst, &talloced))
409 != NULL) {
410 if (is_visible_file(dptr->conn,
411 dptr->dir_hnd,
412 name,
413 pst,
414 true)) {
415 *ptalloced = talloced;
416 return name;
417 }
418 TALLOC_FREE(talloced);
419 }
420 return NULL;
421 }
422
423 /****************************************************************************
424 Return the next visible file name, skipping veto'd and invisible files.
425 ****************************************************************************/
426
427 static char *dptr_ReadDirName(TALLOC_CTX *ctx,
428 struct dptr_struct *dptr,
429 long *poffset,
430 SMB_STRUCT_STAT *pst)
431 {
432 struct smb_filename smb_fname_base;
433 char *name = NULL;
434 const char *name_temp = NULL;
435 char *talloced = NULL;
436 char *pathreal = NULL;
437 char *found_name = NULL;
438 int ret;
439
440 SET_STAT_INVALID(*pst);
441
442 if (dptr->has_wild || dptr->did_stat) {
443 name_temp = dptr_normal_ReadDirName(dptr, poffset, pst,
444 &talloced);
445 if (name_temp == NULL) {
446 return NULL;
447 }
448 if (talloced != NULL) {
449 return talloc_move(ctx, &talloced);
450 }
451 return talloc_strdup(ctx, name_temp);
452 }
453
454 /* If poffset is -1 then we know we returned this name before and we
455 * have no wildcards. We're at the end of the directory. */
456 if (*poffset == END_OF_DIRECTORY_OFFSET) {
457 return NULL;
458 }
459
460 /* We know the stored wcard contains no wildcard characters.
461 * See if we can match with a stat call. If we can't, then set
462 * did_stat to true to ensure we only do this once and keep
463 * searching. */
464
465 dptr->did_stat = true;
466
467 /* First check if it should be visible. */
468 if (!is_visible_file(dptr->conn,
469 dptr->dir_hnd,
470 dptr->wcard,
471 pst,
472 true)) {
473 /* This only returns false if the file was found, but
474 is explicitly not visible. Set us to end of
475 directory, but return NULL as we know we can't ever
476 find it. */
477 goto ret;
478 }
479
480 if (VALID_STAT(*pst)) {
481 name = talloc_strdup(ctx, dptr->wcard);
482 goto ret;
483 }
484
485 pathreal = talloc_asprintf(ctx,
486 "%s/%s",
487 dptr->smb_dname->base_name,
488 dptr->wcard);
489 if (!pathreal)
490 return NULL;
491
492 /* Create an smb_filename with stream_name == NULL. */
493 smb_fname_base = (struct smb_filename) {
494 .base_name = pathreal,
495 .twrp = dptr->smb_dname->twrp,
496 };
497
498 if (SMB_VFS_STAT(dptr->conn, &smb_fname_base) == 0) {
499 *pst = smb_fname_base.st;
500 name = talloc_strdup(ctx, dptr->wcard);
501 goto clean;
502 } else {
503 /* If we get any other error than ENOENT or ENOTDIR
504 then the file exists we just can't stat it. */
505 if (errno != ENOENT && errno != ENOTDIR) {
506 name = talloc_strdup(ctx, dptr->wcard);
507 goto clean;
508 }
509 }
510
511 /* Stat failed. We know this is authoratiative if we are
512 * providing case sensitive semantics or the underlying
513 * filesystem is case sensitive.
514 */
515 if (dptr->conn->case_sensitive ||
516 !(dptr->conn->fs_capabilities & FILE_CASE_SENSITIVE_SEARCH))
517 {
518 goto clean;
519 }
520
521 /*
522 * Try case-insensitive stat if the fs has the ability. This avoids
523 * scanning the whole directory.
524 */
525 ret = SMB_VFS_GET_REAL_FILENAME(dptr->conn,
526 dptr->smb_dname,
527 dptr->wcard,
528 ctx,
529 &found_name);
530 if (ret == 0) {
531 name = found_name;
532 goto clean;
533 } else if (errno == ENOENT) {
534 /* The case-insensitive lookup was authoritative. */
535 goto clean;
536 }
537
538 TALLOC_FREE(pathreal);
539
540 name_temp = dptr_normal_ReadDirName(dptr, poffset, pst, &talloced);
541 if (name_temp == NULL) {
542 return NULL;
543 }
544 if (talloced != NULL) {
545 return talloc_move(ctx, &talloced);
546 }
547 return talloc_strdup(ctx, name_temp);
548
549 clean:
550 TALLOC_FREE(pathreal);
551 ret:
552 /* We need to set the underlying dir_hnd offset to -1
553 * also as this function is usually called with the
554 * output from TellDir. */
555 dptr->dir_hnd->offset = *poffset = END_OF_DIRECTORY_OFFSET;
556 return name;
557 }
558
559 /****************************************************************************
560 Search for a file by name, skipping veto'ed and not visible files.
561 ****************************************************************************/
562
563 bool dptr_SearchDir(struct dptr_struct *dptr, const char *name, long *poffset, SMB_STRUCT_STAT *pst)
564 {
565 SET_STAT_INVALID(*pst);
566
567 if (!dptr->has_wild && (dptr->dir_hnd->offset == END_OF_DIRECTORY_OFFSET)) {
568 /* This is a singleton directory and we're already at the end. */
569 *poffset = END_OF_DIRECTORY_OFFSET;
570 return False;
571 }
572
573 return SearchDir(dptr->dir_hnd, name, poffset);
574 }
575
576 /****************************************************************************
577 Map a native directory offset to a 32-bit cookie.
578 ****************************************************************************/
579
580 static uint32_t map_dir_offset_to_wire(struct dptr_struct *dptr, long offset)
581 {
582 DATA_BLOB key;
583 DATA_BLOB val;
584
585 if (offset == END_OF_DIRECTORY_OFFSET) {
586 return WIRE_END_OF_DIRECTORY_OFFSET;
587 } else if(offset == START_OF_DIRECTORY_OFFSET) {
588 return WIRE_START_OF_DIRECTORY_OFFSET;
589 } else if (offset == DOT_DOT_DIRECTORY_OFFSET) {
590 return WIRE_DOT_DOT_DIRECTORY_OFFSET;
591 }
592 if (sizeof(long) == 4) {
593 /* 32-bit machine. We can cheat... */
594 return (uint32_t)offset;
595 }
596 if (dptr->dptr_cache == NULL) {
597 /* Lazy initialize cache. */
598 dptr->dptr_cache = memcache_init(dptr, 0);
599 if (dptr->dptr_cache == NULL) {
600 return WIRE_END_OF_DIRECTORY_OFFSET;
601 }
602 } else {
603 /* Have we seen this offset before ? */
604 key.data = (void *)&offset;
605 key.length = sizeof(offset);
606 if (memcache_lookup(dptr->dptr_cache,
607 SMB1_SEARCH_OFFSET_MAP,
608 key,
609 &val)) {
610 uint32_t wire_offset;
611 SMB_ASSERT(val.length == sizeof(wire_offset));
612 memcpy(&wire_offset, val.data, sizeof(wire_offset));
613 DEBUG(10,("found wire %u <-> offset %ld\n",
614 (unsigned int)wire_offset,
615 (long)offset));
616 return wire_offset;
617 }
618 }
619 /* Allocate a new wire cookie. */
620 do {
621 dptr->counter++;
622 } while (dptr->counter == WIRE_START_OF_DIRECTORY_OFFSET ||
623 dptr->counter == WIRE_END_OF_DIRECTORY_OFFSET ||
624 dptr->counter == WIRE_DOT_DOT_DIRECTORY_OFFSET);
625 /* Store it in the cache. */
626 key.data = (void *)&offset;
627 key.length = sizeof(offset);
628 val.data = (void *)&dptr->counter;
629 val.length = sizeof(dptr->counter); /* MUST BE uint32_t ! */
630 memcache_add(dptr->dptr_cache,
631 SMB1_SEARCH_OFFSET_MAP,
632 key,
633 val);
634 /* And the reverse mapping for lookup from
635 map_wire_to_dir_offset(). */
636 memcache_add(dptr->dptr_cache,
637 SMB1_SEARCH_OFFSET_MAP,
638 val,
639 key);
640 DEBUG(10,("stored wire %u <-> offset %ld\n",
641 (unsigned int)dptr->counter,
642 (long)offset));
643 return dptr->counter;
644 }
645
646 /****************************************************************************
647 Fill the 5 byte server reserved dptr field.
648 ****************************************************************************/
649
650 bool dptr_fill(struct smbd_server_connection *sconn,
651 char *buf1,unsigned int key)
652 {
653 unsigned char *buf = (unsigned char *)buf1;
654 struct dptr_struct *dptr = dptr_get(sconn, key);
655 uint32_t wire_offset;
656 if (!dptr) {
657 DEBUG(1,("filling null dirptr %d\n",key));
658 return(False);
659 }
660 wire_offset = map_dir_offset_to_wire(dptr,TellDir(dptr->dir_hnd));
661 DEBUG(6,("fill on key %u dirptr 0x%lx now at %d\n",key,
662 (long)dptr->dir_hnd,(int)wire_offset));
663 buf[0] = key;
664 SIVAL(buf,1,wire_offset);
665 return(True);
666 }
667
668 /****************************************************************************
669 Map a 32-bit wire cookie to a native directory offset.
670 ****************************************************************************/
671
672 static long map_wire_to_dir_offset(struct dptr_struct *dptr, uint32_t wire_offset)
673 {
674 DATA_BLOB key;
675 DATA_BLOB val;
676
677 if (wire_offset == WIRE_END_OF_DIRECTORY_OFFSET) {
678 return END_OF_DIRECTORY_OFFSET;
679 } else if(wire_offset == WIRE_START_OF_DIRECTORY_OFFSET) {
680 return START_OF_DIRECTORY_OFFSET;
681 } else if (wire_offset == WIRE_DOT_DOT_DIRECTORY_OFFSET) {
682 return DOT_DOT_DIRECTORY_OFFSET;
683 }
684 if (sizeof(long) == 4) {
685 /* 32-bit machine. We can cheat... */
686 return (long)wire_offset;
687 }
688 if (dptr->dptr_cache == NULL) {
689 /* Logic error, cache should be initialized. */
690 return END_OF_DIRECTORY_OFFSET;
691 }
692 key.data = (void *)&wire_offset;
693 key.length = sizeof(wire_offset);
694 if (memcache_lookup(dptr->dptr_cache,
695 SMB1_SEARCH_OFFSET_MAP,
696 key,
697 &val)) {
698 /* Found mapping. */
699 long offset;
700 SMB_ASSERT(val.length == sizeof(offset));
701 memcpy(&offset, val.data, sizeof(offset));
702 DEBUG(10,("lookup wire %u <-> offset %ld\n",
703 (unsigned int)wire_offset,
704 (long)offset));
705 return offset;
706 }
707 return END_OF_DIRECTORY_OFFSET;
708 }
709
710 /****************************************************************************
711 Return the associated fsp and seek the dir_hnd on it it given the 5 byte
712 server field.
713 ****************************************************************************/
714
715 files_struct *dptr_fetch_fsp(struct smbd_server_connection *sconn,
716 char *buf, int *num)
717 {
718 unsigned int key = *(unsigned char *)buf;
719 struct dptr_struct *dptr = dptr_get(sconn, key);
720 uint32_t wire_offset;
721 long seekoff;
722
723 if (dptr == NULL) {
724 DEBUG(3,("fetched null dirptr %d\n",key));
725 return(NULL);
726 }
727 *num = key;
728 wire_offset = IVAL(buf,1);
729 seekoff = map_wire_to_dir_offset(dptr, wire_offset);
730 SeekDir(dptr->dir_hnd,seekoff);
731 DEBUG(3,("fetching dirptr %d for path %s at offset %d\n",
732 key, dptr->smb_dname->base_name, (int)seekoff));
733 return dptr->dir_hnd->fsp;
734 }
735
736 /****************************************************************************
737 Fetch the fsp associated with the dptr_num.
738 ****************************************************************************/
739
740 files_struct *dptr_fetch_lanman2_fsp(struct smbd_server_connection *sconn,
741 int dptr_num)
742 {
743 struct dptr_struct *dptr = dptr_get(sconn, dptr_num);
744 if (dptr == NULL) {
745 return NULL;
746 }
747 DBG_NOTICE("fetching dirptr %d for path %s\n",
748 dptr_num,
749 dptr->smb_dname->base_name);
750 return dptr->dir_hnd->fsp;
751 }
752
753 static bool mangle_mask_match(connection_struct *conn,
754 const char *filename,
755 const char *mask)
756 {
757 char mname[13];
758
759 if (!name_to_8_3(filename,mname,False,conn->params)) {
760 return False;
761 }
762 return mask_match_search(mname,mask,False);
763 }
764
765 bool smbd_dirptr_get_entry(TALLOC_CTX *ctx,
766 struct dptr_struct *dirptr,
767 const char *mask,
768 uint32_t dirtype,
769 bool dont_descend,
770 bool ask_sharemode,
771 bool get_dosmode,
772 bool (*match_fn)(TALLOC_CTX *ctx,
773 void *private_data,
774 const char *dname,
775 const char *mask,
776 char **_fname),
777 bool (*mode_fn)(TALLOC_CTX *ctx,
778 void *private_data,
779 struct smb_filename *smb_fname,
780 bool get_dosmode,
781 uint32_t *_mode),
782 void *private_data,
783 char **_fname,
784 struct smb_filename **_smb_fname,
785 uint32_t *_mode,
786 long *_prev_offset)
787 {
788 connection_struct *conn = dirptr->conn;
789 size_t slashlen;
790 size_t pathlen;
791 const char *dpath = dirptr->smb_dname->base_name;
792 bool dirptr_path_is_dot = ISDOT(dpath);
793
794 *_smb_fname = NULL;
795 *_mode = 0;
796
797 pathlen = strlen(dpath);
798 slashlen = ( dpath[pathlen-1] != '/') ? 1 : 0;
799
800 while (true) {
801 long cur_offset;
802 long prev_offset;
803 SMB_STRUCT_STAT sbuf = { 0 };
804 char *dname = NULL;
805 bool isdots;
806 char *fname = NULL;
807 char *pathreal = NULL;
808 struct smb_filename smb_fname;
809 uint32_t mode = 0;
810 bool ok;
811
812 cur_offset = dptr_TellDir(dirptr);
813 prev_offset = cur_offset;
814 dname = dptr_ReadDirName(ctx, dirptr, &cur_offset, &sbuf);
815
816 DEBUG(6,("smbd_dirptr_get_entry: dirptr 0x%lx now at offset %ld\n",
817 (long)dirptr, cur_offset));
818
819 if (dname == NULL) {
820 return false;
821 }
822
823 isdots = (ISDOT(dname) || ISDOTDOT(dname));
824 if (dont_descend && !isdots) {
825 TALLOC_FREE(dname);
826 continue;
827 }
828
829 /*
830 * fname may get mangled, dname is never mangled.
831 * Whenever we're accessing the filesystem we use
832 * pathreal which is composed from dname.
833 */
834
835 ok = match_fn(ctx, private_data, dname, mask, &fname);
836 if (!ok) {
837 TALLOC_FREE(dname);
838 continue;
839 }
840
841 /*
842 * This used to be
843 * pathreal = talloc_asprintf(ctx, "%s%s%s", dirptr->path,
844 * needslash?"/":"", dname);
845 * but this was measurably slower than doing the memcpy.
846 */
847
848 pathreal = talloc_array(
849 ctx, char,
850 pathlen + slashlen + talloc_get_size(dname));
851 if (!pathreal) {
852 TALLOC_FREE(dname);
853 TALLOC_FREE(fname);
854 return false;
855 }
856
857 /*
858 * We don't want to pass ./xxx to modules below us so don't
859 * add the path if it is just . by itself.
860 */
861 if (dirptr_path_is_dot) {
862 memcpy(pathreal, dname, talloc_get_size(dname));
863 } else {
864 memcpy(pathreal, dpath, pathlen);
865 pathreal[pathlen] = '/';
866 memcpy(pathreal + slashlen + pathlen, dname,
867 talloc_get_size(dname));
868 }
869
870 /* Create smb_fname with NULL stream_name. */
871 smb_fname = (struct smb_filename) {
872 .base_name = pathreal,
873 .st = sbuf,
874 .twrp = dirptr->smb_dname->twrp,
875 };
876
877 ok = mode_fn(ctx, private_data, &smb_fname, get_dosmode, &mode);
878 if (!ok) {
879 TALLOC_FREE(dname);
880 TALLOC_FREE(fname);
881 TALLOC_FREE(pathreal);
882 continue;
883 }
884
885 if (!dir_check_ftype(mode, dirtype)) {
886 DEBUG(5,("[%s] attribs 0x%x didn't match 0x%x\n",
887 fname, (unsigned int)mode, (unsigned int)dirtype));
888 TALLOC_FREE(dname);
889 TALLOC_FREE(fname);
890 TALLOC_FREE(pathreal);
891 continue;
892 }
893
894 if (ask_sharemode && !S_ISDIR(smb_fname.st.st_ex_mode)) {
895 struct timespec write_time_ts;
896 struct file_id fileid;
897
898 fileid = vfs_file_id_from_sbuf(conn,
899 &smb_fname.st);
900 get_file_infos(fileid, 0, NULL, &write_time_ts);
901 if (!is_omit_timespec(&write_time_ts)) {
902 update_stat_ex_mtime(&smb_fname.st,
903 write_time_ts);
904 }
905 }
906
907 DEBUG(3,("smbd_dirptr_get_entry mask=[%s] found %s "
908 "fname=%s (%s)\n",
909 mask, smb_fname_str_dbg(&smb_fname),
910 dname, fname));
911
912 if (!conn->sconn->using_smb2) {
913 /*
914 * The dircache is only needed for SMB1 because SMB1
915 * uses a name for the resume wheras SMB2 always
916 * continues from the next position (unless it's told to
917 * restart or close-and-reopen the listing).
918 */
919 DirCacheAdd(dirptr->dir_hnd, dname, cur_offset);
920 }
921
922 TALLOC_FREE(dname);
923
924 *_smb_fname = cp_smb_filename(ctx, &smb_fname);
925 TALLOC_FREE(pathreal);
926 if (*_smb_fname == NULL) {
927 return false;
928 }
929 *_fname = fname;
930 *_mode = mode;
931 *_prev_offset = prev_offset;
932
933 return true;
934 }
935
936 return false;
937 }
938
939 /****************************************************************************
940 Get an 8.3 directory entry.
941 ****************************************************************************/
942
943 static bool smbd_dirptr_8_3_match_fn(TALLOC_CTX *ctx,
944 void *private_data,
945 const char *dname,
946 const char *mask,
947 char **_fname)
948 {
949 connection_struct *conn = (connection_struct *)private_data;
950
951 if ((strcmp(mask,"*.*") == 0) ||
952 mask_match_search(dname, mask, false) ||
953 mangle_mask_match(conn, dname, mask)) {
954 char mname[13];
955 const char *fname;
956 /*
957 * Ensure we can push the original name as UCS2. If
958 * not, then just don't return this name.
959 */
960 NTSTATUS status;
961 size_t ret_len = 0;
962 size_t len = (strlen(dname) + 2) * 4; /* Allow enough space. */
963 uint8_t *tmp = talloc_array(talloc_tos(),
964 uint8_t,
965 len);
966
967 status = srvstr_push(NULL,
968 FLAGS2_UNICODE_STRINGS,
969 tmp,
970 dname,
971 len,
972 STR_TERMINATE,
973 &ret_len);
974
975 TALLOC_FREE(tmp);
976
977 if (!NT_STATUS_IS_OK(status)) {
978 return false;
979 }
980
981 if (!mangle_is_8_3(dname, false, conn->params)) {
982 bool ok = name_to_8_3(dname, mname, false,
983 conn->params);
984 if (!ok) {
985 return false;
986 }
987 fname = mname;
988 } else {
989 fname = dname;
990 }
991
992 *_fname = talloc_strdup(ctx, fname);
993 if (*_fname == NULL) {
994 return false;
995 }
996
997 return true;
998 }
999
1000 return false;
1001 }
1002
1003 static bool smbd_dirptr_8_3_mode_fn(TALLOC_CTX *ctx,
1004 void *private_data,
1005 struct smb_filename *smb_fname,
1006 bool get_dosmode,
1007 uint32_t *_mode)
1008 {
1009 connection_struct *conn = (connection_struct *)private_data;
1010
1011 if (!VALID_STAT(smb_fname->st)) {
1012 if ((SMB_VFS_STAT(conn, smb_fname)) != 0) {
1013 DEBUG(5,("smbd_dirptr_8_3_mode_fn: "
1014 "Couldn't stat [%s]. Error "
1015 "= %s\n",
1016 smb_fname_str_dbg(smb_fname),
1017 strerror(errno)));
1018 return false;
1019 }
1020 }
1021
1022 *_mode = dos_mode(conn, smb_fname);
1023 return true;
1024 }
1025
1026 bool get_dir_entry(TALLOC_CTX *ctx,
1027 struct dptr_struct *dirptr,
1028 const char *mask,
1029 uint32_t dirtype,
1030 char **_fname,
1031 off_t *_size,
1032 uint32_t *_mode,
1033 struct timespec *_date,
1034 bool check_descend,
1035 bool ask_sharemode)
1036 {
1037 connection_struct *conn = dirptr->conn;
1038 char *fname = NULL;
1039 struct smb_filename *smb_fname = NULL;
1040 uint32_t mode = 0;
1041 long prev_offset;
1042 bool ok;
1043
1044 ok = smbd_dirptr_get_entry(ctx,
1045 dirptr,
1046 mask,
1047 dirtype,
1048 check_descend,
1049 ask_sharemode,
1050 true,
1051 smbd_dirptr_8_3_match_fn,
1052 smbd_dirptr_8_3_mode_fn,
1053 conn,
1054 &fname,
1055 &smb_fname,
1056 &mode,
1057 &prev_offset);
1058 if (!ok) {
1059 return false;
1060 }
1061
1062 *_fname = talloc_move(ctx, &fname);
1063 *_size = smb_fname->st.st_ex_size;
1064 *_mode = mode;
1065 *_date = smb_fname->st.st_ex_mtime;
1066 TALLOC_FREE(smb_fname);
1067 return true;
1068 }
1069
1070 /*******************************************************************
1071 Check to see if a user can read a file. This is only approximate,
1072 it is used as part of the "hide unreadable" option. Don't
1073 use it for anything security sensitive.
1074 ********************************************************************/
1075
1076 static bool user_can_read_file(connection_struct *conn,
1077 struct files_struct *dirfsp,
1078 struct smb_filename *smb_fname)
1079 {
1080 NTSTATUS status;
1081 uint32_t rejected_share_access = 0;
1082 uint32_t rejected_mask = 0;
1083 struct security_descriptor *sd = NULL;
1084 uint32_t access_mask = FILE_READ_DATA|
1085 FILE_READ_EA|
1086 FILE_READ_ATTRIBUTES|
1087 SEC_STD_READ_CONTROL;
1088
1089 SMB_ASSERT(dirfsp == conn->cwd_fsp);
1090
1091 /*
1092 * Never hide files from the root user.
1093 * We use (uid_t)0 here not sec_initial_uid()
1094 * as make test uses a single user context.
1095 */
1096
1097 if (get_current_uid(conn) == (uid_t)0) {
1098 return True;
1099 }
1100
1101 /*
1102 * We can't directly use smbd_check_access_rights()
1103 * here, as this implicitly grants FILE_READ_ATTRIBUTES
1104 * which the Windows access-based-enumeration code
1105 * explicitly checks for on the file security descriptor.
1106 * See bug:
1107 *
1108 * https://bugzilla.samba.org/show_bug.cgi?id=10252
1109 *
1110 * and the smb2.acl2.ACCESSBASED test for details.
1111 */
1112
1113 rejected_share_access = access_mask & ~(conn->share_access);
1114 if (rejected_share_access) {
1115 DEBUG(10, ("rejected share access 0x%x "
1116 "on %s (0x%x)\n",
1117 (unsigned int)access_mask,
1118 smb_fname_str_dbg(smb_fname),
1119 (unsigned int)rejected_share_access ));
1120 return false;
1121 }
1122
1123 status = SMB_VFS_GET_NT_ACL_AT(conn,
1124 dirfsp,
1125 smb_fname,
1126 (SECINFO_OWNER |
1127 SECINFO_GROUP |
1128 SECINFO_DACL),
1129 talloc_tos(),
1130 &sd);
1131
1132 if (!NT_STATUS_IS_OK(status)) {
1133 DEBUG(10, ("Could not get acl "
1134 "on %s: %s\n",
1135 smb_fname_str_dbg(smb_fname),
1136 nt_errstr(status)));
1137 return false;
1138 }
1139
1140 status = se_file_access_check(sd,
1141 get_current_nttok(conn),
1142 false,
1143 access_mask,
1144 &rejected_mask);
1145
1146 TALLOC_FREE(sd);
1147
1148 if (NT_STATUS_EQUAL(status, NT_STATUS_ACCESS_DENIED)) {
1149 DEBUG(10,("rejected bits 0x%x read access for %s\n",
1150 (unsigned int)rejected_mask,
1151 smb_fname_str_dbg(smb_fname) ));
1152 return false;
1153 }
1154 return true;
1155 }
1156
1157 /*******************************************************************
1158 Check to see if a user can write a file (and only files, we do not
1159 check dirs on this one). This is only approximate,
1160 it is used as part of the "hide unwriteable" option. Don't
1161 use it for anything security sensitive.
1162 ********************************************************************/
1163
1164 static bool user_can_write_file(connection_struct *conn,
1165 struct files_struct *dirfsp,
1166 const struct smb_filename *smb_fname)
1167 {
1168 SMB_ASSERT(dirfsp == conn->cwd_fsp);
1169
1170 /*
1171 * Never hide files from the root user.
1172 * We use (uid_t)0 here not sec_initial_uid()
1173 * as make test uses a single user context.
1174 */
1175
1176 if (get_current_uid(conn) == (uid_t)0) {
1177 return True;
1178 }
1179
1180 SMB_ASSERT(VALID_STAT(smb_fname->st));
1181
1182 /* Pseudo-open the file */
1183
1184 if(S_ISDIR(smb_fname->st.st_ex_mode)) {
1185 return True;
1186 }
1187
1188 return can_write_to_file(conn, dirfsp, smb_fname);
1189 }
1190
1191 /*******************************************************************
1192 Is a file a "special" type ?
1193 ********************************************************************/
1194
1195 static bool file_is_special(connection_struct *conn,
1196 const struct smb_filename *smb_fname)
1197 {
1198 /*
1199 * Never hide files from the root user.
1200 * We use (uid_t)0 here not sec_initial_uid()
1201 * as make test uses a single user context.
1202 */
1203
1204 if (get_current_uid(conn) == (uid_t)0) {
1205 return False;
1206 }
1207
1208 SMB_ASSERT(VALID_STAT(smb_fname->st));
1209
1210 if (S_ISREG(smb_fname->st.st_ex_mode) ||
1211 S_ISDIR(smb_fname->st.st_ex_mode) ||
1212 S_ISLNK(smb_fname->st.st_ex_mode))
1213 return False;
1214
1215 return True;
1216 }
1217
1218 /*******************************************************************
1219 Should the file be seen by the client?
1220 NOTE: A successful return is no guarantee of the file's existence.
1221 ********************************************************************/
1222
1223 bool is_visible_file(connection_struct *conn,
1224 struct smb_Dir *dir_hnd,
1225 const char *name,
1226 SMB_STRUCT_STAT *pst,
1227 bool use_veto)
1228 {
1229 bool hide_unreadable = lp_hide_unreadable(SNUM(conn));
1230 bool hide_unwriteable = lp_hide_unwriteable_files(SNUM(conn));
1231 bool hide_special = lp_hide_special_files(SNUM(conn));
1232 int hide_new_files_timeout = lp_hide_new_files_timeout(SNUM(conn));
1233 char *entry = NULL;
1234 struct smb_filename *dir_path = dir_hnd->fsp->fsp_name;
1235 struct smb_filename *smb_fname_base = NULL;
1236 bool ret = false;
1237
1238 if ((strcmp(".",name) == 0) || (strcmp("..",name) == 0)) {
1239 return True; /* . and .. are always visible. */
1240 }
1241
1242 /* If it's a vetoed file, pretend it doesn't even exist */
1243 if (use_veto && IS_VETO_PATH(conn, name)) {
1244 DEBUG(10,("is_visible_file: file %s is vetoed.\n", name ));
1245 return False;
1246 }
1247
1248 if (hide_unreadable ||
1249 hide_unwriteable ||
1250 hide_special ||
1251 (hide_new_files_timeout != 0))
1252 {
1253 entry = talloc_asprintf(talloc_tos(),
1254 "%s/%s",
1255 dir_path->base_name,
1256 name);
1257 if (!entry) {
1258 ret = false;
1259 goto out;
1260 }
1261
1262 /* Create an smb_filename with stream_name == NULL. */
1263 smb_fname_base = synthetic_smb_fname(talloc_tos(),
1264 entry,
1265 NULL,
1266 pst,
1267 dir_path->twrp,
1268 0);
1269 if (smb_fname_base == NULL) {
1270 ret = false;
1271 goto out;
1272 }
1273
1274 /* If the file name does not exist, there's no point checking
1275 * the configuration options. We succeed, on the basis that the
1276 * checks *might* have passed if the file was present.
1277 */
1278 if (!VALID_STAT(*pst)) {
1279 if (SMB_VFS_STAT(conn, smb_fname_base) != 0) {
1280 ret = true;
1281 goto out;
1282 }
1283 *pst = smb_fname_base->st;
1284 }
1285
1286 /* Honour _hide unreadable_ option */
1287 if (hide_unreadable &&
1288 !user_can_read_file(conn,
1289 conn->cwd_fsp,
1290 smb_fname_base))
1291 {
1292 DEBUG(10,("is_visible_file: file %s is unreadable.\n",
1293 entry ));
1294 ret = false;
1295 goto out;
1296 }
1297 /* Honour _hide unwriteable_ option */
1298 if (hide_unwriteable &&
1299 !user_can_write_file(conn,
1300 conn->cwd_fsp,
1301 smb_fname_base))
1302 {
1303 DEBUG(10,("is_visible_file: file %s is unwritable.\n",
1304 entry ));
1305 ret = false;
1306 goto out;
1307 }
1308 /* Honour _hide_special_ option */
1309 if (hide_special && file_is_special(conn, smb_fname_base)) {
1310 DEBUG(10,("is_visible_file: file %s is special.\n",
1311 entry ));
1312 ret = false;
1313 goto out;
1314 }
1315
1316 if (hide_new_files_timeout != 0) {
1317
1318 double age = timespec_elapsed(
1319 &smb_fname_base->st.st_ex_mtime);
1320
1321 if (age < (double)hide_new_files_timeout) {
1322 ret = false;
1323 goto out;
1324 }
1325 }
1326 }
1327
1328 ret = true;
1329 out:
1330 TALLOC_FREE(smb_fname_base);
1331 TALLOC_FREE(entry);
1332 return ret;
1333 }
1334
1335 static int smb_Dir_destructor(struct smb_Dir *dir_hnd)
1336 {
1337 files_struct *fsp = dir_hnd->fsp;
1338
1339 SMB_VFS_CLOSEDIR(dir_hnd->conn, dir_hnd->dir);
1340 fsp->fh->fd = -1;
1341 if (fsp->dptr != NULL) {
1342 SMB_ASSERT(fsp->dptr->dir_hnd == dir_hnd);
1343 fsp->dptr->dir_hnd = NULL;
1344 }
1345 dir_hnd->fsp = NULL;
1346 return 0;
1347 }
1348
1349 /*******************************************************************
1350 Open a directory.
1351 ********************************************************************/
1352
1353 static int smb_Dir_OpenDir_destructor(struct smb_Dir *dir_hnd)
1354 {
1355 files_struct *fsp = dir_hnd->fsp;
1356
1357 smb_Dir_destructor(dir_hnd);
1358 file_free(NULL, fsp);
1359 return 0;
1360 }
1361
1362 struct smb_Dir *OpenDir(TALLOC_CTX *mem_ctx,
1363 connection_struct *conn,
1364 const struct smb_filename *smb_dname,
1365 const char *mask,
1366 uint32_t attr)
1367 {
1368 struct files_struct *fsp = NULL;
1369 struct smb_Dir *dir_hnd = NULL;
1370 NTSTATUS status;
1371
1372 status = open_internal_dirfsp(conn,
1373 smb_dname,
1374 O_RDONLY,
1375 &fsp);
1376 if (!NT_STATUS_IS_OK(status)) {
1377 return NULL;
1378 }
1379
1380 dir_hnd = OpenDir_fsp(mem_ctx, conn, fsp, mask, attr);
1381 if (dir_hnd == NULL) {
1382 return NULL;
1383 }
1384
1385 /*
1386 * This overwrites the destructor set by smb_Dir_OpenDir_destructor(),
1387 * but smb_Dir_OpenDir_destructor() calls the OpenDir_fsp() destructor.
1388 */
1389 talloc_set_destructor(dir_hnd, smb_Dir_OpenDir_destructor);
1390 return dir_hnd;
1391 }
1392
1393 /*******************************************************************
1394 Open a directory from an fsp.
1395 ********************************************************************/
1396
1397 static struct smb_Dir *OpenDir_fsp(TALLOC_CTX *mem_ctx, connection_struct *conn,
1398 files_struct *fsp,
1399 const char *mask,
1400 uint32_t attr)
1401 {
1402 struct smb_Dir *dir_hnd = talloc_zero(mem_ctx, struct smb_Dir);
1403
1404 if (!dir_hnd) {
1405 goto fail;
1406 }
1407
1408 if (!fsp->fsp_flags.is_directory) {
1409 errno = EBADF;
1410 goto fail;
1411 }
1412
1413 if (fsp->fh->fd == -1) {
1414 errno = EBADF;
1415 goto fail;
1416 }
1417
1418 dir_hnd->conn = conn;
1419
1420 if (!conn->sconn->using_smb2) {
1421 /*
1422 * The dircache is only needed for SMB1 because SMB1 uses a name
1423 * for the resume wheras SMB2 always continues from the next
1424 * position (unless it's told to restart or close-and-reopen the
1425 * listing).
1426 */
1427 dir_hnd->name_cache_size =
1428 lp_directory_name_cache_size(SNUM(conn));
1429 }
1430
1431 dir_hnd->dir_smb_fname = cp_smb_filename(dir_hnd, fsp->fsp_name);
1432 if (!dir_hnd->dir_smb_fname) {
1433 errno = ENOMEM;
1434 goto fail;
1435 }
1436
1437 dir_hnd->dir = SMB_VFS_FDOPENDIR(fsp, mask, attr);
1438 if (dir_hnd->dir == NULL) {
1439 goto fail;
1440 }
1441 dir_hnd->fsp = fsp;
1442
1443 talloc_set_destructor(dir_hnd, smb_Dir_destructor);
1444
1445 return dir_hnd;
1446
1447 fail:
1448 TALLOC_FREE(dir_hnd);
1449 return NULL;
1450 }
1451
1452
1453 /*******************************************************************
1454 Read from a directory.
1455 Return directory entry, current offset, and optional stat information.
1456 Don't check for veto or invisible files.
1457 ********************************************************************/
1458
1459 const char *ReadDirName(struct smb_Dir *dir_hnd, long *poffset,
1460 SMB_STRUCT_STAT *sbuf, char **ptalloced)
1461 {
1462 const char *n;
1463 char *talloced = NULL;
1464 connection_struct *conn = dir_hnd->conn;
1465
1466 /* Cheat to allow . and .. to be the first entries returned. */
1467 if (((*poffset == START_OF_DIRECTORY_OFFSET) ||
1468 (*poffset == DOT_DOT_DIRECTORY_OFFSET)) && (dir_hnd->file_number < 2))
1469 {
1470 if (dir_hnd->file_number == 0) {
1471 n = ".";
1472 *poffset = dir_hnd->offset = START_OF_DIRECTORY_OFFSET;
1473 } else {
1474 n = "..";
1475 *poffset = dir_hnd->offset = DOT_DOT_DIRECTORY_OFFSET;
1476 }
1477 dir_hnd->file_number++;
1478 *ptalloced = NULL;
1479 return n;
1480 }
1481
1482 if (*poffset == END_OF_DIRECTORY_OFFSET) {
1483 *poffset = dir_hnd->offset = END_OF_DIRECTORY_OFFSET;
1484 return NULL;
1485 }
1486
1487 /* A real offset, seek to it. */
1488 SeekDir(dir_hnd, *poffset);
1489
1490 while ((n = vfs_readdirname(conn, dir_hnd->dir, sbuf, &talloced))) {
1491 /* Ignore . and .. - we've already returned them. */
1492 if (*n == '.') {
1493 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
1494 TALLOC_FREE(talloced);
1495 continue;
1496 }
1497 }
1498 *poffset = dir_hnd->offset = SMB_VFS_TELLDIR(conn, dir_hnd->dir);
1499 *ptalloced = talloced;
1500 dir_hnd->file_number++;
1501 return n;
1502 }
1503 *poffset = dir_hnd->offset = END_OF_DIRECTORY_OFFSET;
1504 *ptalloced = NULL;
1505 return NULL;
1506 }
1507
1508 /*******************************************************************
1509 Rewind to the start.
1510 ********************************************************************/
1511
1512 void RewindDir(struct smb_Dir *dir_hnd, long *poffset)
1513 {
1514 SMB_VFS_REWINDDIR(dir_hnd->conn, dir_hnd->dir);
1515 dir_hnd->file_number = 0;
1516 dir_hnd->offset = START_OF_DIRECTORY_OFFSET;
1517 *poffset = START_OF_DIRECTORY_OFFSET;
1518 }
1519
1520 /*******************************************************************
1521 Seek a dir.
1522 ********************************************************************/
1523
1524 void SeekDir(struct smb_Dir *dirp, long offset)
1525 {
1526 if (offset != dirp->offset) {
1527 if (offset == START_OF_DIRECTORY_OFFSET) {
1528 RewindDir(dirp, &offset);
1529 /*
1530 * Ok we should really set the file number here
1531 * to 1 to enable ".." to be returned next. Trouble
1532 * is I'm worried about callers using SeekDir(dirp,0)
1533 * as equivalent to RewindDir(). So leave this alone
1534 * for now.
1535 */
1536 } else if (offset == DOT_DOT_DIRECTORY_OFFSET) {
1537 RewindDir(dirp, &offset);
1538 /*
1539 * Set the file number to 2 - we want to get the first
1540 * real file entry (the one we return after "..")
1541 * on the next ReadDir.
1542 */
1543 dirp->file_number = 2;
1544 } else if (offset == END_OF_DIRECTORY_OFFSET) {
1545 ; /* Don't seek in this case. */
1546 } else {
1547 SMB_VFS_SEEKDIR(dirp->conn, dirp->dir, offset);
1548 }
1549 dirp->offset = offset;
1550 }
1551 }
1552
1553 /*******************************************************************
1554 Tell a dir position.
1555 ********************************************************************/
1556
1557 long TellDir(struct smb_Dir *dir_hnd)
1558 {
1559 return(dir_hnd->offset);
1560 }
1561
1562 /*******************************************************************
1563 Add an entry into the dcache.
1564 ********************************************************************/
1565
1566 static void DirCacheAdd(struct smb_Dir *dir_hnd, const char *name, long offset)
1567 {
1568 struct name_cache_entry *e;
1569
1570 if (dir_hnd->name_cache_size == 0) {
1571 return;
1572 }
1573
1574 if (dir_hnd->name_cache == NULL) {
1575 dir_hnd->name_cache = talloc_zero_array(dir_hnd,
1576 struct name_cache_entry,
1577 dir_hnd->name_cache_size);
1578
1579 if (dir_hnd->name_cache == NULL) {
1580 return;
1581 }
1582 }
1583
1584 dir_hnd->name_cache_index = (dir_hnd->name_cache_index+1) %
1585 dir_hnd->name_cache_size;
1586 e = &dir_hnd->name_cache[dir_hnd->name_cache_index];
1587 TALLOC_FREE(e->name);
1588 e->name = talloc_strdup(dir_hnd, name);
1589 e->offset = offset;
1590 }
1591
1592 /*******************************************************************
1593 Find an entry by name. Leave us at the offset after it.
1594 Don't check for veto or invisible files.
1595 ********************************************************************/
1596
1597 bool SearchDir(struct smb_Dir *dir_hnd, const char *name, long *poffset)
1598 {
1599 int i;
1600 const char *entry = NULL;
1601 char *talloced = NULL;
1602 connection_struct *conn = dir_hnd->conn;
1603
1604 /* Search back in the name cache. */
1605 if (dir_hnd->name_cache_size && dir_hnd->name_cache) {
1606 for (i = dir_hnd->name_cache_index; i >= 0; i--) {
1607 struct name_cache_entry *e = &dir_hnd->name_cache[i];
1608 if (e->name && (conn->case_sensitive ? (strcmp(e->name, name) == 0) : strequal(e->name, name))) {
1609 *poffset = e->offset;
1610 SeekDir(dir_hnd, e->offset);
1611 return True;
1612 }
1613 }
1614 for (i = dir_hnd->name_cache_size - 1;
1615 i > dir_hnd->name_cache_index; i--) {
1616 struct name_cache_entry *e = &dir_hnd->name_cache[i];
1617 if (e->name && (conn->case_sensitive ? (strcmp(e->name, name) == 0) : strequal(e->name, name))) {
1618 *poffset = e->offset;
1619 SeekDir(dir_hnd, e->offset);
1620 return True;
1621 }
1622 }
1623 }
1624
1625 /* Not found in the name cache. Rewind directory and start from scratch. */
1626 SMB_VFS_REWINDDIR(conn, dir_hnd->dir);
1627 dir_hnd->file_number = 0;
1628 *poffset = START_OF_DIRECTORY_OFFSET;
1629 while ((entry = ReadDirName(dir_hnd, poffset, NULL, &talloced))) {
1630 if (conn->case_sensitive ? (strcmp(entry, name) == 0) : strequal(entry, name)) {
1631 TALLOC_FREE(talloced);
1632 return True;
1633 }
1634 TALLOC_FREE(talloced);
1635 }
1636 return False;
1637 }
1638
1639 struct files_below_forall_state {
1640 char *dirpath;
1641 size_t dirpath_len;
1642 int (*fn)(struct file_id fid, const struct share_mode_data *data,
1643 void *private_data);
1644 void *private_data;
1645 };
1646
1647 static int files_below_forall_fn(struct file_id fid,
1648 const struct share_mode_data *data,
1649 void *private_data)
1650 {
1651 struct files_below_forall_state *state = private_data;
1652 char tmpbuf[PATH_MAX];
1653 char *fullpath, *to_free;
1654 size_t len;
1655
1656 len = full_path_tos(data->servicepath, data->base_name,
1657 tmpbuf, sizeof(tmpbuf),
1658 &fullpath, &to_free);
1659 if (len == -1) {
1660 return 0;
1661 }
1662 if (state->dirpath_len >= len) {
1663 /*
1664 * Filter files above dirpath
1665 */
1666 goto out;
1667 }
1668 if (fullpath[state->dirpath_len] != '/') {
1669 /*
1670 * Filter file that don't have a path separator at the end of
1671 * dirpath's length
1672 */
1673 goto out;
1674 }
1675
1676 if (memcmp(state->dirpath, fullpath, state->dirpath_len) != 0) {
1677 /*
1678 * Not a parent
1679 */
1680 goto out;
1681 }
1682
1683 TALLOC_FREE(to_free);
1684 return state->fn(fid, data, state->private_data);
1685
1686 out:
1687 TALLOC_FREE(to_free);
1688 return 0;
1689 }
1690
1691 static int files_below_forall(connection_struct *conn,
1692 const struct smb_filename *dir_name,
1693 int (*fn)(struct file_id fid,
1694 const struct share_mode_data *data,
1695 void *private_data),
1696 void *private_data)
1697 {
1698 struct files_below_forall_state state = {
1699 .fn = fn,
1700 .private_data = private_data,
1701 };
1702 int ret;
1703 char tmpbuf[PATH_MAX];
1704 char *to_free;
1705
1706 state.dirpath_len = full_path_tos(conn->connectpath,
1707 dir_name->base_name,
1708 tmpbuf, sizeof(tmpbuf),
1709 &state.dirpath, &to_free);
1710 if (state.dirpath_len == -1) {
1711 return -1;
1712 }
1713
1714 ret = share_mode_forall(files_below_forall_fn, &state);
1715 TALLOC_FREE(to_free);
1716 return ret;
1717 }
1718
1719 struct have_file_open_below_state {
1720 bool found_one;
1721 };
1722
1723 static int have_file_open_below_fn(struct file_id fid,
1724 const struct share_mode_data *data,
1725 void *private_data)
1726 {
1727 struct have_file_open_below_state *state = private_data;
1728 state->found_one = true;
1729 return 1;
1730 }
1731
1732 bool have_file_open_below(connection_struct *conn,
1733 const struct smb_filename *name)
1734 {
1735 struct have_file_open_below_state state = {
1736 .found_one = false,
1737 };
1738 int ret;
1739
1740 if (!VALID_STAT(name->st)) {
1741 return false;
1742 }
1743 if (!S_ISDIR(name->st.st_ex_mode)) {
1744 return false;
1745 }
1746
1747 ret = files_below_forall(conn, name, have_file_open_below_fn, &state);
1748 if (ret == -1) {
1749 return false;
1750 }
1751
1752 return state.found_one;
1753 }
1754
1755 /*****************************************************************
1756 Is this directory empty ?
1757 *****************************************************************/
1758
1759 NTSTATUS can_delete_directory_fsp(files_struct *fsp)
1760 {
1761 NTSTATUS status = NT_STATUS_OK;
1762 long dirpos = 0;
1763 const char *dname = NULL;
1764 char *talloced = NULL;
1765 SMB_STRUCT_STAT st;
1766 struct connection_struct *conn = fsp->conn;
1767 struct smb_Dir *dir_hnd = OpenDir(talloc_tos(),
1768 conn,
1769 fsp->fsp_name,
1770 NULL,
1771 0);
1772
1773 if (!dir_hnd) {
1774 return map_nt_error_from_unix(errno);
1775 }
1776
1777 while ((dname = ReadDirName(dir_hnd, &dirpos, &st, &talloced))) {
1778 /* Quick check for "." and ".." */
1779 if (dname[0] == '.') {
1780 if (!dname[1] || (dname[1] == '.' && !dname[2])) {
1781 TALLOC_FREE(talloced);
1782 continue;
1783 }
1784 }
1785
1786 if (!is_visible_file(conn,
1787 dir_hnd,
1788 dname,
1789 &st,
1790 True)) {
1791 TALLOC_FREE(talloced);
1792 continue;
1793 }
1794
1795 DEBUG(10,("got name %s - can't delete\n",
1796 dname ));
1797 status = NT_STATUS_DIRECTORY_NOT_EMPTY;
1798 break;
1799 }
1800 TALLOC_FREE(talloced);
1801 TALLOC_FREE(dir_hnd);
1802
1803 if (!NT_STATUS_IS_OK(status)) {
1804 return status;
1805 }
1806
1807 if (!(fsp->posix_flags & FSP_POSIX_FLAGS_RENAME) &&
1808 lp_strict_rename(SNUM(conn)) &&
1809 have_file_open_below(fsp->conn, fsp->fsp_name))
1810 {
1811 return NT_STATUS_ACCESS_DENIED;
1812 }
1813
1814 return NT_STATUS_OK;
1815 }
Samba GIT mirror