| blob | 203bdb8da89850adc7df8eb91b0f29b6a6648b1c |
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Main SMB server routines
5 Copyright (C) Andrew Tridgell 1992-1997
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
20 */
37 /* the last message the was processed */
40 /* a useful macro to debug the last message processed */
41 #define LAST_MESSAGE() smb_fn_name(last_message)
60 /*
61 * Indirection for file fd's. Needed as POSIX locking
62 * is based on file/process, not fd/process.
63 */
69 /*
70 * Size of data we can send to client. Set
71 * by the client for all protocols above CORE.
72 * Set by us for CORE protocol.
73 */
75 /*
76 * Size of the data we can receive. Set by us.
77 * Can be modified by the max xmit parameter.
78 */
81 /* a fnum to use when chaining */
84 /* number of open connections */
89 pstring OriginalDir;
91 /* these can be set by some functions to override the error codes */
102 /* for readability... */
103 #define IS_DOS_READONLY(test_mode) (((test_mode) & aRONLY) != 0)
104 #define IS_DOS_DIR(test_mode) (((test_mode) & aDIR) != 0)
105 #define IS_DOS_ARCHIVE(test_mode) (((test_mode) & aARCH) != 0)
106 #define IS_DOS_SYSTEM(test_mode) (((test_mode) & aSYSTEM) != 0)
107 #define IS_DOS_HIDDEN(test_mode) (((test_mode) & aHIDDEN) != 0)
109 /****************************************************************************
110 when exiting, take the whole family
111 ****************************************************************************/
113 {
116 }
117 /****************************************************************************
118 Send a SIGTERM to our process group.
119 *****************************************************************************/
121 {
123 }
125 /****************************************************************************
126 change a dos mode to a unix mode
127 base permission for files:
128 everybody gets read bit set
129 dos readonly is represented in unix by removing everyone's write bit
130 dos archive is represented in unix by the user's execute bit
131 dos system is represented in unix by the group's execute bit
132 dos hidden is represented in unix by the other's execute bit
133 Then apply create mask,
134 then add force bits.
135 base permission for directories:
136 dos directory is represented in unix by unix's dir bit and the exec bit
137 Then apply create mask,
138 then add force bits.
139 ****************************************************************************/
141 {
148 /* We never make directories read only for the owner as under DOS a user
149 can always create a file in a read-only directory. */
151 /* Apply directory mask */
153 /* Add in force bits */
165 /* Apply mode mask */
167 /* Add in force bits */
169 }
171 }
174 /****************************************************************************
175 change a unix mode to a dos mode
176 ****************************************************************************/
178 {
193 }
207 #if LINKS_READ_ONLY
210 #endif
212 /* hide files with a name starting with a . */
214 {
217 p++;
218 else
223 }
226 }
229 /*******************************************************************
230 chmod a file - but preserve some bits
231 ********************************************************************/
233 {
242 }
250 /* preserve the s bits */
253 /* preserve the t bit */
254 #ifdef S_ISVTX
256 #endif
258 /* possibly preserve the x bits */
265 /* if we previously had any r bits set then leave them alone */
269 }
271 /* if we previously had any w bits set then leave them alone
272 if the new mode is not rdonly */
277 }
280 }
283 /****************************************************************************
284 check if two filenames are equal
286 this needs to be careful about whether we are case sensitive
287 ****************************************************************************/
289 {
293 /* handle filenames ending in a single dot */
295 {
296 BOOL ret;
301 }
304 {
305 BOOL ret;
310 }
312 /* now normal filename handling */
317 }
320 /****************************************************************************
321 mangle the 2nd name and check if it is then equal to the first name
322 ****************************************************************************/
324 {
325 pstring tmpname;
334 }
337 /****************************************************************************
338 scan a directory to find a filename, matching without case sensitivity
340 If the name looks like a mangled name then try via the mangling functions
341 ****************************************************************************/
343 {
346 BOOL mangled;
347 pstring name2;
351 /* handle null paths */
358 }
363 /* open the directory */
365 {
368 }
370 /* now scan for matching names */
372 {
382 {
383 /* we've found the file, change it's name and return */
388 }
389 }
393 }
395 /****************************************************************************
396 This routine is called to convert names from the dos namespace to unix
397 namespace. It needs to handle any case conversions, mangling, format
398 changes etc.
400 We assume that we have already done a chdir() to the right "root" directory
401 for this service.
403 The function will return False if some part of the name except for the last
404 part cannot be resolved
406 If the saved_last_component != 0, then the unmodified last component
407 of the pathname is returned there. This is used in an exceptional
408 case in reply_mv (so far). If saved_last_component == 0 then nothing
409 is returned there.
410 ****************************************************************************/
412 {
415 pstring dirpath;
421 /* convert to basic unix format - removing \ chars and cleaning it up */
425 /* names must be relative to the root of the service - trim any leading /.
426 also trim trailing /'s */
429 /*
430 * Ensure saved_last_component is valid even if file exists.
431 */
436 else
438 }
444 /* check if it's a printer file */
446 {
448 {
450 fstring name2;
452 /* sanitise the name */
456 }
458 }
460 /* stat the name - if it exists then we are all done! */
466 /* a special case - if we don't have any mangling chars and are case
467 sensitive then searching won't help */
472 /* now we need to recursively match the name against the real
473 directory structure */
479 /* now match each part of the path name separately, trying the names
480 as is first, then trying to scan the directory for matching names */
482 {
483 /* pinpoint the end of this section of the filename */
486 /* chop the name at this point */
492 /* check if the name exists up to this point */
494 {
495 /* it exists. it must either be a directory or this must be
496 the last part of the path for it to be OK */
498 {
499 /* an intermediate part of the name isn't a directory */
503 }
504 }
505 else
506 {
507 pstring rest;
511 /* remember the rest of the pathname so it can be restored
512 later */
515 /* try to find this part of the path in the directory */
518 {
520 {
521 /* an intermediate part of the name can't be found */
525 }
527 /* just the last part of the name doesn't exist */
528 /* we may need to strupper() or strlower() it in case
529 this conversion is being used for file creation
530 purposes */
531 /* if the filename is of mixed case then don't normalise it */
536 /* check on the mangled stack to see if we can recover the
537 base of the filename */
543 }
545 /* restore the rest of the string */
547 {
550 }
551 }
553 /* add to the dirpath that we have resolved so far */
557 /* restore the / that we wiped out earlier */
559 }
561 /* the name has been resolved */
564 }
567 /****************************************************************************
568 normalise for DOS usage
569 ****************************************************************************/
571 {
572 /* check if the disk is beyond the max disk size */
575 /* convert to blocks - and don't overflow */
579 applications getting
580 div by 0 errors */
581 }
584 {
589 {
596 }
597 }
598 }
600 /****************************************************************************
601 return number of 1K blocks available on a path and total number
602 ****************************************************************************/
604 {
606 #ifndef NO_STATFS
607 #ifdef USE_STATVFS
609 #else
610 #ifdef ULTRIX
612 #else
614 #endif
615 #endif
616 #endif
618 #ifdef QUOTAS
620 {
623 }
624 #endif
627 /* possibly use system() to get the result */
629 {
631 pstring syscmd;
632 pstring outfile;
641 {
647 {
650 }
651 else
653 }
658 }
660 #ifdef NO_STATFS
663 #else
664 #ifdef STATFS4
666 #else
667 #ifdef USE_STATVFS
669 #else
670 #ifdef STATFS3
672 #else
677 {
683 }
685 #ifdef ULTRIX
689 #else
690 #ifdef USE_STATVFS
692 #else
693 #ifdef USE_F_FSIZE
694 /* eg: osf1 has f_fsize = fundamental filesystem block size,
695 f_bsize = optimal transfer block size (MX: 94-04-19) */
697 #else
702 #ifdef STATFS4
704 #else
710 #if defined(SCO) || defined(ISC) || defined(MIPS)
712 #endif
714 /* handle rediculous bsize values - some OSes are broken */
722 {
726 }
728 #endif
729 }
732 /****************************************************************************
733 wrap it to get filenames right
734 ****************************************************************************/
736 {
738 }
742 /****************************************************************************
743 check a filename - possibly caling reducename
745 This is called by every routine before it allows an operation on a filename.
746 It does any final confirmation necessary to ensure that the filename is
747 a valid one for the user to access.
748 ****************************************************************************/
750 {
751 BOOL ret;
756 {
759 }
766 }
768 /****************************************************************************
769 check a filename - possibly caling reducename
770 ****************************************************************************/
772 {
773 /* special case of pipe opens */
778 {
782 }
783 }
785 /****************************************************************************
786 fd support routines - attempt to do a sys_open
787 ****************************************************************************/
790 {
793 /* Fix for files ending in '.' */
796 {
799 }
801 #if (defined(ENAMETOOLONG) && defined(HAVE_PATHCONF))
803 {
808 {
810 p++;
811 }
813 {
816 }
817 else
818 {
822 p++;
823 }
825 {
831 }
832 }
833 #endif
835 }
837 /****************************************************************************
838 fd support routines - attempt to find an already open file by dev
839 and inode - increments the ref_count of the returned file_fd_struct *.
840 ****************************************************************************/
842 {
859 }
860 }
862 }
864 /****************************************************************************
865 fd support routines - attempt to find a empty slot in the FileFd array.
866 Increments the ref_count of the returned entry.
867 ****************************************************************************/
869 {
883 /* Increment max used counter if neccessary, cuts down
884 on search time when re-using */
890 }
891 }
895 }
897 /****************************************************************************
898 fd support routines - attempt to re-open an already open fd as O_RDWR.
899 Save the already open fd (we cannot close due to POSIX file locking braindamage.
900 ****************************************************************************/
903 {
916 }
918 /****************************************************************************
919 fd support routines - attempt to close the file referenced by this fd.
920 Decrements the ref_count and returns it.
921 ****************************************************************************/
923 {
924 DEBUG(3,("fd_attempt_close on file_fd_struct %d, fd = %d, dev = %x, inode = %x, open_flags = %d, ref_count = %d.\n",
944 }
945 }
947 }
949 /****************************************************************************
950 open a file
951 ****************************************************************************/
953 {
955 pstring fname;
965 /* check permissions */
967 {
971 }
973 /* this handles a bug in Win95 - it doesn't say to create the file when it
974 should */
978 /*
979 if (flags == O_WRONLY)
980 DEBUG(3,("Bug in client? Set O_WRONLY without O_CREAT\n"));
981 */
983 #if UTIME_WORKAROUND
984 /* XXXX - is this OK?? */
985 /* this works around a utime bug but can cause other problems */
988 #endif
990 /*
991 * Ensure we have a valid struct stat so we can search the
992 * open fd table.
993 */
1002 }
1006 }
1007 }
1009 /*
1010 * Check to see if we have this file already
1011 * open. If we do, just use the already open fd and increment the
1012 * reference count (fd_get_already_open increments the ref_count).
1013 */
1018 /* File was already open. */
1023 }
1025 /*
1026 * If not opened O_RDWR try
1027 * and do that here - a chmod may have been done
1028 * between the last open and now.
1029 */
1033 /*
1034 * Ensure that if we wanted write access
1035 * it has been opened for write, and if we wanted read it
1036 * was open for read.
1037 */
1046 }
1050 /* We need to allocate a new file_fd_struct (this increments the
1051 ref_count). */
1054 /*
1055 * Whatever the requested flags, attempt read/write access,
1056 * as we don't know what flags future file opens may require.
1057 * If this fails, try again with the required flags.
1058 * Even if we open read/write when only read access was
1059 * requested the setting of the can_write flag in
1060 * the file_struct will protect us from errant
1061 * write requests. We never need to worry about O_APPEND
1062 * as this is not set anywhere in Samba.
1063 */
1065 /* Set the flags as needed without the read/write modes. */
1068 /*
1069 * On some systems opening a file for R/W access on a read only
1070 * filesystems sets errno to EROFS.
1071 */
1072 #ifdef EROFS
1083 }
1084 }
1085 }
1089 pstring dname;
1103 }
1104 }
1107 {
1110 /* Ensure the ref_count is decremented. */
1114 }
1117 {
1119 /* Do the fstat */
1121 /* Error - backout !! */
1124 /* Ensure the ref_count is decremented. */
1127 }
1129 }
1130 /* Set the correct entries in fd_ptr. */
1154 /*
1155 * If the printer is marked as postscript output a leading
1156 * file identifier to ensure the file is treated as a raw
1157 * postscript file.
1158 * This has a similar effect as CtrlD=0 in WIN.INI file.
1159 * tim@fsg.com 09/06/94
1160 */
1163 {
1166 }
1173 }
1175 #if USE_MMAP
1176 /* mmap it if read-only */
1178 {
1184 {
1187 }
1188 }
1189 #endif
1190 }
1192 /*******************************************************************
1193 sync a file
1194 ********************************************************************/
1196 {
1197 #ifndef NO_FSYNC
1199 #endif
1200 }
1202 /****************************************************************************
1203 run a file if it is a magic script
1204 ****************************************************************************/
1206 {
1212 {
1216 else
1217 p++;
1221 }
1223 {
1225 pstring magic_output;
1226 pstring fname;
1231 else
1238 }
1239 }
1242 /****************************************************************************
1243 close a file - possibly invalidating the read prediction
1244 ****************************************************************************/
1246 {
1251 share_lock_token token;
1257 {
1260 }
1262 #if USE_MMAP
1264 {
1267 }
1268 #endif
1271 {
1274 }
1281 /* NT uses smbclose to start a print - weird */
1285 /* check for magic scripts */
1291 }
1295 /*******************************************************************
1296 reproduce the share mode access table
1297 ********************************************************************/
1300 {
1309 /* the new smbpub.zip spec says that if the file extension is
1310 .com, .dll, .exe or .sym then allow the open. I will force
1311 it to read-only as this seems sensible although the spec is
1312 a little unclear on this. */
1319 }
1322 }
1325 {
1341 }
1343 }
1345 /*******************************************************************
1346 check if the share mode on a file allows it to be deleted or unlinked
1347 return True if sharing doesn't prevent the operation
1348 ********************************************************************/
1350 {
1356 share_lock_token token;
1369 {
1375 }
1377 /* XXXX exactly what share mode combinations should be allowed for
1378 deleting/renaming? */
1379 /* If we got here then either there were no share modes or
1380 all share modes were DENY_DOS and the pid == getpid() */
1383 free_and_exit:
1389 }
1391 /****************************************************************************
1392 C. Hoch 11/22/95
1393 Helper for open_file_shared.
1394 Truncate a file after checking locking; close file if locked.
1395 **************************************************************************/
1398 {
1401 /* If share modes are in force for this connection we
1402 have the share entry locked. Unlock it before closing. */
1407 /* Share mode no longer locked. */
1412 }
1413 else
1415 }
1416 }
1419 /****************************************************************************
1420 open a file with a share mode
1421 ****************************************************************************/
1424 {
1433 share_lock_token token;
1440 /* this is for OS/2 EAs - try and say we don't support them */
1442 {
1446 }
1449 {
1452 }
1459 /* note that we ignore the append flag as
1460 append does not mean the same thing under dos and unix */
1463 {
1477 }
1481 {
1483 {
1486 }
1488 }
1491 {
1495 }
1500 {
1507 {
1513 }
1516 {
1517 /* someone else has a share lock on it, check to see
1518 if we can too */
1523 {
1533 }
1535 {
1543 {
1547 access_allowed));
1555 }
1562 }
1563 }
1566 }
1573 {
1576 }
1579 {
1583 {
1584 /* We created the file - thus we must now lock the share entry before creating it. */
1589 }
1592 {
1602 }
1610 {
1614 }
1615 /* We must create the share mode entry before truncate as
1616 truncate can fail due to locking and have to close the
1617 file (which expects the share_mode_entry to be there).
1618 */
1624 }
1628 }
1630 /****************************************************************************
1631 seek a file. Try to avoid the seek if possible
1632 ****************************************************************************/
1634 {
1641 }
1643 /****************************************************************************
1644 read from a file
1645 ****************************************************************************/
1647 {
1651 {
1657 }
1659 #if USE_MMAP
1661 {
1664 {
1670 }
1671 }
1672 #endif
1678 {
1681 }
1686 }
1689 }
1692 /****************************************************************************
1693 write to a file
1694 ****************************************************************************/
1696 {
1700 }
1709 }
1710 }
1711 }
1714 }
1717 /****************************************************************************
1718 load parameters specific to a connection/service
1719 ****************************************************************************/
1721 {
1727 {
1730 }
1739 {
1743 }
1758 }
1761 /****************************************************************************
1762 find a service entry
1763 ****************************************************************************/
1765 {
1772 /* now handle the special case of a home directory */
1774 {
1779 {
1782 {
1785 }
1786 }
1787 }
1789 /* If we still don't have a service, attempt to add it as a printer. */
1791 {
1795 {
1801 {
1808 }
1809 else
1811 }
1812 }
1814 /* just possibly it's a default service? */
1816 {
1823 }
1824 }
1825 }
1829 {
1832 }
1838 }
1841 /****************************************************************************
1842 create an error packet from a cached error.
1843 ****************************************************************************/
1845 {
1851 /* We can now delete the auxiliary struct */
1855 }
1858 struct
1859 {
1864 {
1875 #ifdef EDQUOT
1877 #endif
1878 #ifdef ENOTEMPTY
1880 #endif
1881 #ifdef EXDEV
1883 #endif
1886 };
1889 /****************************************************************************
1890 create an error packet from errno
1891 ****************************************************************************/
1893 {
1899 {
1904 }
1905 else
1906 {
1908 {
1910 {
1914 }
1915 i++;
1916 }
1917 }
1920 }
1923 /****************************************************************************
1924 create an error packet. Normally called using the ERROR() macro
1925 ****************************************************************************/
1927 {
1937 line,
1940 error_class,
1941 error_code));
1947 }
1950 #ifndef SIGCLD_IGNORE
1951 /****************************************************************************
1952 this prevents zombie child processes
1953 ****************************************************************************/
1955 {
1958 {
1962 }
1963 depth++;
1968 #ifdef USE_WAITPID
1970 #endif
1972 /* Stop zombies */
1973 /* Stevens, Adv. Unix Prog. says that on system V you must call
1974 wait before reinstalling the signal handler, because the kernel
1975 calls the handler from within the signal-call when there is a
1976 child that has exited. This would lead to an infinite recursion
1977 if done vice versa. */
1979 #ifndef DONT_REINSTALL_SIG
1980 #ifdef SIGCLD_IGNORE
1982 #else
1984 #endif
1985 #endif
1987 #ifndef USE_WAITPID
1989 #endif
1990 depth--;
1993 }
1994 #endif
1996 /****************************************************************************
1997 this is called when the client exits abruptly
1998 **************************************************************************/
2000 {
2008 #ifndef DONT_REINSTALL_SIG
2010 #endif
2013 }
2017 }
2019 /****************************************************************************
2020 open the socket communication
2021 ****************************************************************************/
2023 {
2027 {
2032 /* Stop zombies */
2033 #ifdef SIGCLD_IGNORE
2035 #else
2037 #endif
2039 /* open an incoming socket */
2044 /* ready to listen */
2046 {
2050 }
2055 /* now accept incoming connections - forking a new process
2056 for each incoming connection */
2059 {
2066 {
2069 }
2071 #ifdef NO_FORK_DEBUG
2072 #ifndef NO_SIGNAL_TEST
2075 #endif
2077 #else
2079 {
2080 /* Child code ... */
2081 #ifndef NO_SIGNAL_TEST
2084 #endif
2085 /* close the listening socket */
2088 /* close our standard file descriptors */
2095 /* Reset global variables in util.c so that
2096 client substitutions will be done correctly
2097 in the process.
2098 */
2101 }
2103 #endif
2104 }
2105 }
2106 else
2107 {
2108 /* We will abort gracefully when the client or remote system
2109 goes away */
2110 #ifndef NO_SIGNAL_TEST
2112 #endif
2115 /* close our standard file descriptors */
2120 }
2123 }
2126 /****************************************************************************
2127 check if a snum is in use
2128 ****************************************************************************/
2130 {
2136 }
2138 /****************************************************************************
2139 reload the services file
2140 **************************************************************************/
2142 {
2143 BOOL ret;
2146 {
2147 pstring fname;
2150 {
2153 }
2154 }
2165 /* perhaps the config filename is now set */
2173 {
2178 }
2179 }
2183 /* this forces service parameters to be flushed */
2187 }
2191 /****************************************************************************
2192 this prevents zombie child processes
2193 ****************************************************************************/
2195 {
2199 #ifndef DONT_REINSTALL_SIG
2201 #endif
2204 }
2206 /****************************************************************************
2207 Setup the groups a user belongs to.
2208 ****************************************************************************/
2211 {
2213 {
2215 {
2219 }
2220 }
2221 else
2222 {
2239 /* The following bit of code is very strange. It is due to the
2240 fact that some OSes use int* and some use gid_t* for
2241 getgroups, and some (like SunOS) use both, one in prototypes,
2242 and one in man pages and the actual code. Thus we detect it
2243 dynamically using some very ugly code */
2245 {
2246 /* does getgroups return ints or gid_t ?? */
2259 {
2262 }
2263 else
2264 {
2271 }
2272 }
2277 }
2279 }
2281 /****************************************************************************
2282 make a connection to a service
2283 ****************************************************************************/
2285 {
2298 {
2300 {
2303 }
2307 }
2310 {
2315 {
2318 }
2319 }
2323 }
2325 /* you can only connect to the IPC$ service as an ipc device */
2330 {
2333 else
2335 }
2337 /* if the request is as a printer and you can't print then refuse */
2342 }
2344 /* lowercase the user name */
2347 /* add it as a possible user name */
2350 /* shall we let them in? */
2352 {
2355 }
2359 {
2362 }
2367 /* find out some info about the user */
2371 {
2374 }
2378 {
2379 pstring list;
2391 }
2393 /* admin user check */
2396 {
2399 }
2400 else
2417 #if HAVE_GETGRNAM
2419 {
2421 pstring gname;
2424 /* default service may be a group name */
2429 {
2432 }
2433 else
2435 }
2436 #endif
2439 {
2441 fstring fuser;
2445 {
2451 }
2452 else
2454 }
2456 {
2457 pstring s;
2462 }
2464 /* groups stuff added by ih */
2469 {
2470 /* Find all the groups this uid is in and store them. Used by become_user() */
2473 /* check number of connections */
2477 {
2480 }
2490 /* execute any "root preexec = " line */
2492 {
2493 pstring cmd;
2498 }
2501 {
2509 }
2511 }
2514 {
2524 }
2526 }
2530 #if SOFTLINK_OPTIMISATION
2531 /* resolve any soft links early */
2532 {
2533 pstring s;
2538 }
2539 #endif
2541 num_connections_open++;
2544 /* execute any "preexec = " line */
2546 {
2547 pstring cmd;
2551 }
2553 /* we've finished with the sensitive stuff */
2556 {
2557 DEBUG(IS_IPC(cnum)?3:1,("%s %s (%s) connect to service %s as user %s (uid=%d,gid=%d) (pid %d)\n",
2559 remote_machine,
2565 }
2568 }
2571 /****************************************************************************
2572 find first available file slot
2573 ****************************************************************************/
2575 {
2577 /* we start at 1 here for an obscure reason I can't now remember,
2578 but I think is important :-) */
2584 }
2586 /****************************************************************************
2587 find first available connection slot, starting from a random position.
2588 The randomisation stops problems with the server dieing and clients
2589 thinking the server is still available.
2590 ****************************************************************************/
2592 {
2597 again:
2600 {
2602 {
2605 }
2606 i++;
2609 }
2612 {
2615 }
2619 }
2622 /****************************************************************************
2623 reply for the core protocol
2624 ****************************************************************************/
2626 {
2632 }
2635 /****************************************************************************
2636 reply for the coreplus protocol
2637 ****************************************************************************/
2639 {
2643 readbraw and writebraw (possibly) */
2650 }
2653 /****************************************************************************
2654 reply for the lanman 1.0 protocol
2655 ****************************************************************************/
2657 {
2662 /* We need to save and restore this as it can be destroyed
2663 if we call another server if security=server
2664 Thanks to Paul Nelson @ Thursby for pointing this out.
2665 */
2673 #ifdef SMB_PASSWD
2674 /* Create a token value and add it to the outgoing packet. */
2677 #endif
2683 #ifdef SMB_PASSWD
2685 #endif
2686 }
2694 readbraw writebraw (possibly) */
2701 }
2704 /****************************************************************************
2705 reply for the lanman 2.0 protocol
2706 ****************************************************************************/
2708 {
2713 /* We need to save and restore this as it can be destroyed
2714 if we call another server if security=server
2715 Thanks to Paul Nelson @ Thursby for pointing this out.
2716 */
2724 #ifdef SMB_PASSWD
2725 /* Create a token value and add it to the outgoing packet. */
2728 #endif
2736 #ifdef SMB_PASSWD
2738 #endif
2739 }
2751 }
2754 /****************************************************************************
2755 reply for the nt protocol
2756 ****************************************************************************/
2758 {
2759 /* dual names + lock_and_read + nt SMBs + remote API calls */
2761 /*
2762 other valid capabilities which we may support at some time...
2763 CAP_LARGE_FILES|CAP_NT_SMBS|CAP_RPC_REMOTE_APIS;
2764 CAP_LARGE_FILES|CAP_LARGE_READX|
2765 CAP_STATUS32|CAP_LEVEL_II_OPLOCKS;
2766 */
2774 /* We need to save and restore this as it can be destroyed
2775 if we call another server if security=server
2776 Thanks to Paul Nelson @ Thursby for pointing this out.
2777 */
2781 {
2783 }
2788 /* decide where (if) to put the encryption challenge, and
2789 follow it with the OEM'd domain name
2790 */
2792 #if UNICODE
2794 #else
2796 #endif
2800 #if UNICODE
2801 /* put the OEM'd domain name */
2803 #else
2805 #endif
2808 #ifdef SMB_PASSWD
2809 /* Create a token value and add it to the outgoing packet. */
2811 {
2814 /* Tell the nt machine how long the challenge is. */
2816 }
2817 #endif
2823 #ifdef SMB_PASSWD
2825 #endif
2826 }
2840 }
2842 /* these are the protocol lists used for auto architecture detection:
2844 WinNT 3.51:
2845 protocol [PC NETWORK PROGRAM 1.0]
2846 protocol [XENIX CORE]
2847 protocol [MICROSOFT NETWORKS 1.03]
2848 protocol [LANMAN1.0]
2849 protocol [Windows for Workgroups 3.1a]
2850 protocol [LM1.2X002]
2851 protocol [LANMAN2.1]
2852 protocol [NT LM 0.12]
2854 Win95:
2855 protocol [PC NETWORK PROGRAM 1.0]
2856 protocol [XENIX CORE]
2857 protocol [MICROSOFT NETWORKS 1.03]
2858 protocol [LANMAN1.0]
2859 protocol [Windows for Workgroups 3.1a]
2860 protocol [LM1.2X002]
2861 protocol [LANMAN2.1]
2862 protocol [NT LM 0.12]
2864 OS/2:
2865 protocol [PC NETWORK PROGRAM 1.0]
2866 protocol [XENIX CORE]
2867 protocol [LANMAN1.0]
2868 protocol [LM1.2X002]
2869 protocol [LANMAN2.1]
2870 */
2872 /*
2873 * Modified to recognize the architecture of the remote machine better.
2874 *
2875 * This appears to be the matrix of which protocol is used by which
2876 * MS product.
2877 Protocol WfWg Win95 WinNT OS/2
2878 PC NETWORK PROGRAM 1.0 1 1 1 1
2879 XENIX CORE 2 2
2880 MICROSOFT NETWORKS 3.0 2 2
2881 DOS LM1.2X002 3 3
2882 MICROSOFT NETWORKS 1.03 3
2883 DOS LANMAN2.1 4 4
2884 LANMAN1.0 4 3
2885 Windows for Workgroups 3.1a 5 5 5
2886 LM1.2X002 6 4
2887 LANMAN2.1 7 5
2888 NT LM 0.12 6 8
2889 *
2890 * tim@fsg.com 09/29/95
2891 */
2894 #define ARCH_WIN95 0x2
2896 #define ARCH_WINNT 0x8
2897 #define ARCH_SAMBA 0x10
2899 #define ARCH_ALL 0x1F
2901 /* List of supported protocols, most desired first */
2918 };
2921 /****************************************************************************
2922 reply to a negprot
2923 ****************************************************************************/
2925 {
2937 {
2938 Index++;
2959 }
2962 }
2983 }
2985 /* possibly reload - change of architecture */
2988 /* a special case to stop password server loops */
2993 /* Check for protocols, most desirable first */
2995 {
3000 {
3003 Index++;
3005 }
3008 }
3017 }
3020 }
3026 }
3029 /****************************************************************************
3030 close all open files for a connection
3031 ****************************************************************************/
3033 {
3038 }
3039 }
3043 /****************************************************************************
3044 close a cnum
3045 ****************************************************************************/
3047 {
3053 {
3056 }
3073 /* execute any "postexec = " line */
3075 {
3076 pstring cmd;
3081 }
3084 /* execute any "root postexec = " line */
3086 {
3087 pstring cmd;
3091 }
3094 num_connections_open--;
3096 {
3103 }
3108 }
3111 /****************************************************************************
3112 simple routines to do connection counting
3113 ****************************************************************************/
3115 {
3117 pstring fname;
3139 {
3142 }
3146 /* find a free spot */
3148 {
3150 {
3154 }
3157 }
3160 {
3164 }
3168 /* remove our mark */
3171 {
3175 }
3181 }
3184 /****************************************************************************
3185 simple routines to do connection counting
3186 ****************************************************************************/
3188 {
3190 pstring fname;
3213 {
3218 }
3225 {
3228 }
3230 /* find a free spot */
3232 {
3237 {
3240 }
3243 {
3249 }
3251 {
3254 }
3255 }
3258 {
3262 }
3264 /* fill in the crec */
3277 /* make our mark */
3280 {
3283 }
3287 }
3289 #if DUMP_CORE
3290 /*******************************************************************
3291 prepare to dump a core file - carefully!
3292 ********************************************************************/
3294 {
3296 pstring dname;
3306 #ifndef NO_GETRLIMIT
3307 #ifdef RLIMIT_CORE
3308 {
3315 }
3316 #endif
3317 #endif
3322 }
3323 #endif
3325 /****************************************************************************
3326 exit the server
3327 ****************************************************************************/
3329 {
3341 #ifdef DFS_AUTH
3344 #endif
3353 #if DUMP_CORE
3355 #endif
3356 }
3358 #ifdef FAST_SHARE_MODES
3364 }
3366 /****************************************************************************
3367 do some standard substitutions in a string
3368 ****************************************************************************/
3370 {
3374 {
3381 }
3383 }
3385 }
3387 /*
3388 These flags determine some of the permissions required to do an operation
3390 Note that I don't set NEED_WRITE on some write operations because they
3391 are used by some brain-dead clients when printing, and I don't want to
3392 force write permissions on print services.
3393 */
3394 #define AS_USER (1<<0)
3395 #define NEED_WRITE (1<<1)
3396 #define TIME_INIT (1<<2)
3397 #define CAN_IPC (1<<3)
3398 #define AS_GUEST (1<<5)
3401 /*
3402 define a list of possible SMB messages and their corresponding
3403 functions. Any message that has a NULL function is unimplemented -
3404 please feel free to contribute implementations!
3405 */
3406 struct smb_message_struct
3407 {
3412 #if PROFILING
3414 #endif
3415 }
3416 smb_messages[] = {
3418 /* CORE PROTOCOL */
3435 /* note that SMBmknew and SMBcreate are deliberately overloaded */
3448 /* this is a Pathworks specific call, allowing the
3449 changing of the root path */
3462 /* CORE+ PROTOCOL FOLLOWS */
3470 /* LANMAN1.0 PROTOCOL FOLLOWS */
3494 /* LANMAN2.0 PROTOCOL FOLLOWS */
3500 /* messaging routines */
3506 /* NON-IMPLEMENTED PARTS OF THE CORE PROTOCOL */
3512 };
3514 /****************************************************************************
3515 return a string containing the function name of a SMB command
3516 ****************************************************************************/
3518 {
3532 }
3535 /****************************************************************************
3536 do a switch on the message type, and return the response size
3537 ****************************************************************************/
3539 {
3546 #if PROFILING
3552 #endif
3560 /* make sure this is an SMB packet */
3562 {
3565 }
3572 {
3575 }
3576 else
3577 {
3580 {
3585 /* does this protocol need to be run as root? */
3589 /* does this protocol need to be run as the connected user? */
3593 else
3595 }
3596 /* this code is to work around a bug is MS client 3 without
3597 introducing a security hole - it needs to be able to do
3598 print queue checks as guest if it isn't logged in properly */
3602 /* does it need write permission? */
3606 /* ipc services are limited */
3610 /* load service specific parameters */
3614 /* does this protocol need to be run as guest? */
3621 }
3622 else
3623 {
3625 }
3626 }
3628 #if PROFILING
3631 {
3634 }
3635 {
3641 }
3645 #endif
3648 }
3651 /****************************************************************************
3652 construct a chained reply and add it to the already made reply
3653 **************************************************************************/
3655 {
3668 /* maybe its not chained */
3672 }
3675 /* this is the first part of the chain */
3678 }
3680 /* we need to tell the client where the next part of the reply will be */
3684 /* remember how much the caller added to the chain, only counting stuff
3685 after the parameter words */
3688 /* work out pointers into the original packets. The
3689 headers on these need to be filled in */
3693 /* remember the original command type */
3696 /* save the data which will be overwritten by the new headers */
3700 /* give the new packet the same header as the last part of the SMB */
3703 /* create the in buffer */
3706 /* create the out buffer */
3715 means a reply */
3726 /* process the request */
3730 /* copy the new reply and request headers over the old ones, but
3731 preserve the smb_com field */
3735 /* restore the saved data, being careful not to overwrite any
3736 data from the reply header */
3738 {
3742 }
3745 }
3749 /****************************************************************************
3750 construct a reply to the incoming packet
3751 ****************************************************************************/
3753 {
3776 means a reply */
3791 }
3794 /****************************************************************************
3795 process commands from the client
3796 ****************************************************************************/
3798 {
3811 #if PRIME_NMBD
3813 {
3819 }
3820 #endif
3823 {
3824 int32 len;
3843 {
3852 }
3858 }
3862 /* become root again if waiting */
3865 /* check for smb.conf reload */
3870 /* check the share modes every 10 secs */
3874 /* clean the share modes every 5 minutes */
3879 /* automatic timeout if all connections are closed */
3883 }
3890 }
3891 /* also send a keepalive to the password server if its still
3892 connected */
3896 }
3898 /* check for connection timeouts */
3901 {
3902 /* close dirptrs on connections that are idle */
3909 }
3914 }
3915 }
3929 #ifdef WITH_VTP
3933 }
3934 #endif
3947 {
3949 nread,
3951 }
3952 else
3954 }
3955 trans_num++;
3956 }
3957 }
3960 /****************************************************************************
3961 initialise connect, service and file structs
3962 ****************************************************************************/
3964 {
3969 {
3978 }
3981 {
3985 }
3988 {
3997 }
4000 }
4002 /****************************************************************************
4003 usage on the program
4004 ****************************************************************************/
4006 {
4009 printf("Usage: %s [-D] [-p port] [-d debuglevel] [-l log basename] [-s services file]\n",pname);
4019 }
4022 /****************************************************************************
4023 main program
4024 ****************************************************************************/
4026 {
4028 /* shall I run as a daemon */
4035 #ifdef NEED_AUTH_PARAMETERS
4037 #endif
4039 #ifdef SecureWare
4041 #endif
4053 /* make absolutely sure we run as root - to handle cases whre people
4054 are crazy enough to have it setuid */
4055 #ifdef USE_SETRES
4057 #else
4062 #endif
4067 /* we want total control over the permissions on created files,
4068 so set our umask to 0 */
4075 /* this is for people who can't start the program correctly */
4077 {
4078 argv++;
4079 argc--;
4080 }
4084 {
4095 {
4098 }
4107 {
4110 }
4118 else
4131 }
4138 #ifndef NO_GETRLIMIT
4139 #ifdef RLIMIT_NOFILE
4140 {
4147 }
4148 #endif
4149 #endif
4156 {
4159 }
4170 #ifndef NO_SIGNAL_TEST
4172 #endif
4177 {
4180 }
4183 {
4186 }
4189 {
4195 {
4198 }
4200 {
4203 }
4206 {
4209 }
4210 /* Leave pid file open & locked for the duration... */
4211 }
4216 #ifdef FAST_SHARE_MODES
4221 /* possibly reload the services file. */
4227 {
4230 }
4237 }