| blob | a236e2e6ecbfd5ad81934fd66ecdd7f54585fdaa |
1 /*
2 Unix SMB/Netbios implementation.
3 Version 1.9.
4 Main SMB server routines
5 Copyright (C) Andrew Tridgell 1992-1998
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
20 */
38 /* the last message the was processed */
41 /* a useful macro to debug the last message processed */
42 #define LAST_MESSAGE() smb_fn_name(last_message)
59 #ifdef DFS_AUTH
63 /*
64 * This is set on startup - it defines the SID for this
65 * machine.
66 */
72 /*
73 * Indirection for file fd's. Needed as POSIX locking
74 * is based on file/process, not fd/process.
75 */
81 /*
82 * Size of data we can send to client. Set
83 * by the client for all protocols above CORE.
84 * Set by us for CORE protocol.
85 */
87 /*
88 * Size of the data we can receive. Set by us.
89 * Can be modified by the max xmit parameter.
90 */
93 /* a fnum to use when chaining */
96 /* number of open connections */
99 /* Oplock ipc UDP socket. */
102 /* Current number of oplocks we have outstanding. */
111 /* these can be set by some functions to override the error codes */
122 /* for readability... */
123 #define IS_DOS_READONLY(test_mode) (((test_mode) & aRONLY) != 0)
124 #define IS_DOS_DIR(test_mode) (((test_mode) & aDIR) != 0)
125 #define IS_DOS_ARCHIVE(test_mode) (((test_mode) & aARCH) != 0)
126 #define IS_DOS_SYSTEM(test_mode) (((test_mode) & aSYSTEM) != 0)
127 #define IS_DOS_HIDDEN(test_mode) (((test_mode) & aHIDDEN) != 0)
129 /****************************************************************************
130 when exiting, take the whole family
131 ****************************************************************************/
133 {
136 }
137 /****************************************************************************
138 Send a SIGTERM to our process group.
139 *****************************************************************************/
141 {
143 }
145 /****************************************************************************
146 change a dos mode to a unix mode
147 base permission for files:
148 everybody gets read bit set
149 dos readonly is represented in unix by removing everyone's write bit
150 dos archive is represented in unix by the user's execute bit
151 dos system is represented in unix by the group's execute bit
152 dos hidden is represented in unix by the other's execute bit
153 Then apply create mask,
154 then add force bits.
155 base permission for directories:
156 dos directory is represented in unix by unix's dir bit and the exec bit
157 Then apply create mask,
158 then add force bits.
159 ****************************************************************************/
161 {
168 /* We never make directories read only for the owner as under DOS a user
169 can always create a file in a read-only directory. */
171 /* Apply directory mask */
173 /* Add in force bits */
185 /* Apply mode mask */
187 /* Add in force bits */
189 }
191 }
194 /****************************************************************************
195 change a unix mode to a dos mode
196 ****************************************************************************/
198 {
215 }
229 #ifdef S_ISLNK
230 #if LINKS_READ_ONLY
233 #endif
234 #endif
236 /* hide files with a name starting with a . */
238 {
241 p++;
242 else
247 }
249 /* Optimization : Only call is_hidden_path if it's not already
250 hidden. */
252 {
254 }
267 }
269 /*******************************************************************
270 chmod a file - but preserve some bits
271 ********************************************************************/
273 {
282 }
290 /* preserve the s bits */
293 /* preserve the t bit */
294 #ifdef S_ISVTX
296 #endif
298 /* possibly preserve the x bits */
305 /* if we previously had any r bits set then leave them alone */
309 }
311 /* if we previously had any w bits set then leave them alone
312 if the new mode is not rdonly */
317 }
320 }
322 /*******************************************************************
323 Wrapper around sys_utime that possibly allows DOS semantics rather
324 than POSIX.
325 *******************************************************************/
328 {
344 /* We have permission (given by the Samba admin) to
345 break POSIX semantics and allow a user to change
346 the time on a file they don't own but can write to
347 (as DOS does).
348 */
353 /* Check if we have write access. */
361 /* We are allowed to become root and change the filetime. */
365 }
366 }
369 }
371 /*******************************************************************
372 Change a filetime - possibly allowing DOS semantics.
373 *******************************************************************/
376 {
385 }
388 }
390 /****************************************************************************
391 check if two filenames are equal
393 this needs to be careful about whether we are case sensitive
394 ****************************************************************************/
396 {
400 /* handle filenames ending in a single dot */
402 {
403 BOOL ret;
408 }
411 {
412 BOOL ret;
417 }
419 /* now normal filename handling */
424 }
427 /****************************************************************************
428 mangle the 2nd name and check if it is then equal to the first name
429 ****************************************************************************/
431 {
432 pstring tmpname;
441 }
444 /****************************************************************************
445 scan a directory to find a filename, matching without case sensitivity
447 If the name looks like a mangled name then try via the mangling functions
448 ****************************************************************************/
450 {
453 BOOL mangled;
454 pstring name2;
458 /* handle null paths */
465 }
467 /*
468 * The incoming name can be mangled, and if we de-mangle it
469 * here it will not compare correctly against the filename (name2)
470 * read from the directory and then mangled by the name_map_mangle()
471 * call. We need to mangle both names or neither.
472 * (JRA).
473 */
477 /* open the directory */
479 {
482 }
484 /* now scan for matching names */
486 {
496 {
497 /* we've found the file, change it's name and return */
502 }
503 }
507 }
509 /****************************************************************************
510 This routine is called to convert names from the dos namespace to unix
511 namespace. It needs to handle any case conversions, mangling, format
512 changes etc.
514 We assume that we have already done a chdir() to the right "root" directory
515 for this service.
517 The function will return False if some part of the name except for the last
518 part cannot be resolved
520 If the saved_last_component != 0, then the unmodified last component
521 of the pathname is returned there. This is used in an exceptional
522 case in reply_mv (so far). If saved_last_component == 0 then nothing
523 is returned there.
525 The bad_path arg is set to True if the filename walk failed. This is
526 used to pick the correct error code to return between ENOENT and ENOTDIR
527 as Windows applications depend on ERRbadpath being returned if a component
528 of a pathname does not exist.
529 ****************************************************************************/
531 {
534 pstring dirpath;
543 /* convert to basic unix format - removing \ chars and cleaning it up */
547 /* names must be relative to the root of the service - trim any leading /.
548 also trim trailing /'s */
551 /*
552 * Ensure saved_last_component is valid even if file exists.
553 */
558 else
560 }
566 /* check if it's a printer file */
568 {
570 {
572 fstring name2;
574 /* sanitise the name */
578 }
580 }
582 /* stat the name - if it exists then we are all done! */
590 /* a special case - if we don't have any mangling chars and are case
591 sensitive then searching won't help */
596 /* now we need to recursively match the name against the real
597 directory structure */
603 /* now match each part of the path name separately, trying the names
604 as is first, then trying to scan the directory for matching names */
606 {
607 /* pinpoint the end of this section of the filename */
610 /* chop the name at this point */
616 /* check if the name exists up to this point */
618 {
619 /* it exists. it must either be a directory or this must be
620 the last part of the path for it to be OK */
622 {
623 /* an intermediate part of the name isn't a directory */
627 }
628 }
629 else
630 {
631 pstring rest;
635 /* remember the rest of the pathname so it can be restored
636 later */
639 /* try to find this part of the path in the directory */
642 {
644 {
645 /* an intermediate part of the name can't be found */
648 /* We need to return the fact that the intermediate
649 name resolution failed. This is used to return an
650 error of ERRbadpath rather than ERRbadfile. Some
651 Windows applications depend on the difference between
652 these two errors.
653 */
656 }
658 /* just the last part of the name doesn't exist */
659 /* we may need to strupper() or strlower() it in case
660 this conversion is being used for file creation
661 purposes */
662 /* if the filename is of mixed case then don't normalise it */
667 /* check on the mangled stack to see if we can recover the
668 base of the filename */
674 }
676 /* restore the rest of the string */
678 {
681 }
682 }
684 /* add to the dirpath that we have resolved so far */
688 /* restore the / that we wiped out earlier */
690 }
692 /* the name has been resolved */
695 }
698 /****************************************************************************
699 normalise for DOS usage
700 ****************************************************************************/
702 {
703 /* check if the disk is beyond the max disk size */
706 /* convert to blocks - and don't overflow */
710 applications getting
711 div by 0 errors */
712 }
715 {
720 {
727 }
728 }
729 }
731 /****************************************************************************
732 return number of 1K blocks available on a path and total number
733 ****************************************************************************/
735 {
738 #ifdef QUOTAS
743 #endif
745 #ifndef NO_STATFS
746 #ifdef USE_STATVFS
748 #else
749 #ifdef ULTRIX
751 #else
753 #endif
754 #endif
755 #endif
757 /* possibly use system() to get the result */
759 {
761 pstring syscmd;
762 pstring outfile;
771 {
777 {
780 }
781 else
783 }
788 #ifdef QUOTAS
789 /* Ensure we return the min value between the users quota and
790 what's free on the disk. Thanks to Albrecht Gebhardt
791 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
792 */
794 {
799 /* maybe dfree and dfreeq are calculated using different bsizes
800 so convert dfree from bsize into bsizeq */
801 /* avoid overflows due to multiplication, so do not:
802 *dfree = ((*dfree) * (*bsize)) / (bsizeq);
803 bsize and bsizeq are powers of 2 so its better to
804 to divide them getting a multiplication or division factor
805 for dfree. Rene Nieuwenhuizen (07-10-1997) */
808 else
813 }
814 #endif
816 }
818 #ifdef NO_STATFS
821 #else
822 #ifdef STATFS4
824 #else
825 #ifdef USE_STATVFS
827 #else
828 #ifdef STATFS3
830 #else
835 {
841 }
843 #ifdef ULTRIX
847 #else
848 #ifdef USE_STATVFS
850 #else
851 #ifdef USE_F_FSIZE
852 /* eg: osf1 has f_fsize = fundamental filesystem block size,
853 f_bsize = optimal transfer block size (MX: 94-04-19) */
855 #else
860 #ifdef STATFS4
862 #else
868 #if defined(SCO) || defined(ISC) || defined(MIPS)
870 #endif
872 /* handle rediculous bsize values - some OSes are broken */
880 {
884 }
886 #ifdef QUOTAS
887 /* Ensure we return the min value between the users quota and
888 what's free on the disk. Thanks to Albrecht Gebhardt
889 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
890 */
892 {
897 /* maybe dfree and dfreeq are calculated using different bsizes
898 so convert dfree from bsize into bsizeq */
899 /* avoid overflows due to multiplication, so do not:
900 *dfree = ((*dfree) * (*bsize)) / (bsizeq);
901 bsize and bsizeq are powers of 2 so its better to
902 to divide them getting a multiplication or division factor
903 for dfree. Rene Nieuwenhuizen (07-10-1997) */
906 else
911 }
912 #endif
914 #endif
915 }
918 /****************************************************************************
919 wrap it to get filenames right
920 ****************************************************************************/
922 {
924 }
928 /****************************************************************************
929 check a filename - possibly caling reducename
931 This is called by every routine before it allows an operation on a filename.
932 It does any final confirmation necessary to ensure that the filename is
933 a valid one for the user to access.
934 ****************************************************************************/
936 {
937 BOOL ret;
942 {
945 }
949 /* Check if we are allowing users to follow symlinks */
950 /* Patch from David Clerc <David.Clerc@cui.unige.ch>
951 University of Geneva */
953 #ifdef S_ISLNK
955 {
959 {
962 }
963 }
964 #endif
970 }
972 /****************************************************************************
973 check a filename - possibly caling reducename
974 ****************************************************************************/
976 {
977 /* special case of pipe opens */
982 {
986 }
987 }
989 /****************************************************************************
990 fd support routines - attempt to do a sys_open
991 ****************************************************************************/
993 {
996 /* Fix for files ending in '.' */
999 {
1002 }
1004 #if (defined(ENAMETOOLONG) && defined(HAVE_PATHCONF))
1006 {
1011 {
1013 p++;
1014 }
1016 {
1019 }
1020 else
1021 {
1025 p++;
1026 }
1028 {
1034 }
1035 }
1036 #endif
1038 }
1040 /****************************************************************************
1041 Cache a uid_t currently with this file open. This is an optimization only
1042 used when multiple sessionsetup's have been done to one smbd.
1043 ****************************************************************************/
1045 {
1049 }
1051 /****************************************************************************
1052 Remove a uid_t that currently has this file open. This is an optimization only
1053 used when multiple sessionsetup's have been done to one smbd.
1054 ****************************************************************************/
1056 {
1064 }
1066 }
1068 /****************************************************************************
1069 Check if a uid_t that currently has this file open is present. This is an
1070 optimization only used when multiple sessionsetup's have been done to one smbd.
1071 ****************************************************************************/
1073 {
1079 }
1081 /****************************************************************************
1082 fd support routines - attempt to find an already open file by dev
1083 and inode - increments the ref_count of the returned file_fd_struct *.
1084 ****************************************************************************/
1086 {
1103 }
1104 }
1106 }
1108 /****************************************************************************
1109 fd support routines - attempt to find a empty slot in the FileFd array.
1110 Increments the ref_count of the returned entry.
1111 ****************************************************************************/
1113 {
1130 /* Increment max used counter if neccessary, cuts down
1131 on search time when re-using */
1137 }
1138 }
1141 }
1143 /****************************************************************************
1144 fd support routines - attempt to re-open an already open fd as O_RDWR.
1145 Save the already open fd (we cannot close due to POSIX file locking braindamage.
1146 ****************************************************************************/
1148 {
1161 }
1163 /****************************************************************************
1164 fd support routines - attempt to close the file referenced by this fd.
1165 Decrements the ref_count and returns it.
1166 ****************************************************************************/
1168 {
1171 DEBUG(3,("fd_attempt_close on file_fd_struct %d, fd = %d, dev = %x, inode = %x, open_flags = %d, ref_count = %d.\n",
1194 }
1196 }
1198 /****************************************************************************
1199 fd support routines - check that current user has permissions
1200 to open this file. Used when uid not found in optimization cache.
1201 This is really ugly code, as due to POSIX locking braindamage we must
1202 fork and then attempt to open the file, and return success or failure
1203 via an exit code.
1204 ****************************************************************************/
1206 {
1207 pid_t child_pid;
1212 }
1215 /*
1216 * Parent.
1217 */
1218 pid_t wpid;
1223 }
1226 DEBUG(0,("check_access_allowed_for_current_user: We were waiting for the wrong process ID\n"));
1228 }
1229 #if defined(WIFEXITED) && defined(WEXITSTATUS)
1231 DEBUG(0,("check_access_allowed_for_current_user: The process exited while we were waiting\n"));
1233 }
1235 DEBUG(9,("check_access_allowed_for_current_user: The status of the process exiting was %d. Returning access denied.\n", status_code));
1237 }
1240 DEBUG(9,("check_access_allowed_for_current_user: The status of the process exiting was %d. Returning access denied.\n", status_code));
1242 }
1245 /*
1246 * Success - the child could open the file.
1247 */
1248 DEBUG(9,("check_access_allowed_for_current_user: The status of the process exiting was %d. Returning access allowed.\n", status_code));
1251 /*
1252 * Child.
1253 */
1255 DEBUG(9,("check_access_allowed_for_current_user: Child - attempting to open %s with mode %d.\n", fname, accmode ));
1257 /* Access denied. */
1259 }
1263 }
1266 }
1268 /****************************************************************************
1269 open a file
1270 ****************************************************************************/
1272 {
1274 pstring fname;
1287 /* check permissions */
1289 /*
1290 * This code was changed after seeing a client open request
1291 * containing the open mode of (DENY_WRITE/read-only) with
1292 * the 'create if not exist' bit set. The previous code
1293 * would fail to open the file read only on a read-only share
1294 * as it was checking the flags parameter directly against O_RDONLY,
1295 * this was failing as the flags parameter was set to O_RDONLY|O_CREAT.
1296 * JRA.
1297 */
1300 /* It's a read-only share - fail if we wanted to write. */
1305 }
1307 /* We don't want to write - but we must make sure that O_CREAT
1308 doesn't create the file if we have write access into the
1309 directory.
1310 */
1312 }
1313 }
1315 /* this handles a bug in Win95 - it doesn't say to create the file when it
1316 should */
1320 /*
1321 if (flags == O_WRONLY)
1322 DEBUG(3,("Bug in client? Set O_WRONLY without O_CREAT\n"));
1323 */
1325 /*
1326 * Ensure we have a valid struct stat so we can search the
1327 * open fd table.
1328 */
1337 }
1341 }
1342 }
1344 /*
1345 * Check to see if we have this file already
1346 * open. If we do, just use the already open fd and increment the
1347 * reference count (fd_get_already_open increments the ref_count).
1348 */
1350 /*
1351 * File was already open.
1352 */
1354 /*
1355 * Check it wasn't open for exclusive use.
1356 */
1361 }
1363 /*
1364 * Ensure that the user attempting to open
1365 * this file has permissions to do so, if
1366 * the user who originally opened the file wasn't
1367 * the same as the current user.
1368 */
1372 /* Error - permission denied. */
1375 /* Ensure the ref_count is decremented. */
1380 }
1381 }
1385 /*
1386 * If not opened O_RDWR try
1387 * and do that here - a chmod may have been done
1388 * between the last open and now.
1389 */
1393 /*
1394 * Ensure that if we wanted write access
1395 * it has been opened for write, and if we wanted read it
1396 * was open for read.
1397 */
1407 }
1411 /* We need to allocate a new file_fd_struct (this increments the
1412 ref_count). */
1415 /*
1416 * Whatever the requested flags, attempt read/write access,
1417 * as we don't know what flags future file opens may require.
1418 * If this fails, try again with the required flags.
1419 * Even if we open read/write when only read access was
1420 * requested the setting of the can_write flag in
1421 * the file_struct will protect us from errant
1422 * write requests. We never need to worry about O_APPEND
1423 * as this is not set anywhere in Samba.
1424 */
1426 /* Set the flags as needed without the read/write modes. */
1429 /*
1430 * On some systems opening a file for R/W access on a read only
1431 * filesystems sets errno to EROFS.
1432 */
1433 #ifdef EROFS
1444 }
1445 }
1446 }
1450 pstring dname;
1464 }
1465 }
1468 {
1471 /* Ensure the ref_count is decremented. */
1475 }
1478 {
1480 /* Do the fstat */
1482 /* Error - backout !! */
1485 /* Ensure the ref_count is decremented. */
1488 }
1490 }
1492 /* Set the correct entries in fd_ptr. */
1515 /*
1516 * Note that the file name here is the *untranslated* name
1517 * ie. it is still in the DOS codepage sent from the client.
1518 * All use of this filename will pass though the sys_xxxx
1519 * functions which will do the dos_to_unix translation before
1520 * mapping into a UNIX filename. JRA.
1521 */
1525 /*
1526 * If the printer is marked as postscript output a leading
1527 * file identifier to ensure the file is treated as a raw
1528 * postscript file.
1529 * This has a similar effect as CtrlD=0 in WIN.INI file.
1530 * tim@fsg.com 09/06/94
1531 */
1533 {
1536 }
1544 }
1546 #if USE_MMAP
1547 /* mmap it if read-only */
1549 {
1555 {
1558 }
1559 }
1560 #endif
1561 }
1563 /*******************************************************************
1564 sync a file
1565 ********************************************************************/
1567 {
1568 #ifndef NO_FSYNC
1570 #endif
1571 }
1573 /****************************************************************************
1574 run a file if it is a magic script
1575 ****************************************************************************/
1577 {
1583 {
1587 else
1588 p++;
1592 }
1594 {
1596 pstring magic_output;
1597 pstring fname;
1602 else
1609 }
1610 }
1613 /****************************************************************************
1614 close a file - possibly invalidating the read prediction
1616 If normal_close is 1 then this came from a normal SMBclose (or equivalent)
1617 operation otherwise it came as the result of some other operation such as
1618 the closing of the connection. In the latter case printing and
1619 magic scripts are not run
1620 ****************************************************************************/
1622 {
1631 #if USE_READ_PREDICTION
1633 #endif
1638 {
1641 }
1643 #if USE_MMAP
1645 {
1648 }
1649 #endif
1652 {
1655 }
1662 /* NT uses smbclose to start a print - weird */
1666 /* check for magic scripts */
1671 global_oplocks_open--;
1681 }
1683 /* we will catch bugs faster by zeroing this structure */
1685 }
1689 /*******************************************************************
1690 reproduce the share mode access table
1691 ********************************************************************/
1694 {
1704 /* the new smbpub.zip spec says that if the file extension is
1705 .com, .dll, .exe or .sym then allow the open. I will force
1706 it to read-only as this seems sensible although the spec is
1707 a little unclear on this. */
1714 }
1717 }
1720 {
1736 }
1738 }
1740 /*******************************************************************
1741 check if the share mode on a file allows it to be deleted or unlinked
1742 return True if sharing doesn't prevent the operation
1743 ********************************************************************/
1745 {
1766 /*
1767 * Check if the share modes will give us access.
1768 */
1771 {
1772 BOOL broke_oplock;
1774 do
1775 {
1779 {
1782 /*
1783 * Break oplocks before checking share modes. See comment in
1784 * open_file_shared for details.
1785 * Check if someone has an oplock on this file. If so we must
1786 * break it before continuing.
1787 */
1789 {
1791 /*
1792 * It appears that the NT redirector may have a bug, in that
1793 * it tries to do an SMBmv on a file that it has open with a
1794 * batch oplock, and then fails to respond to the oplock break
1795 * request. This only seems to occur when the client is doing an
1796 * SMBmv to the smbd it is using - thus we try and detect this
1797 * condition by checking if the file being moved is open and oplocked by
1798 * this smbd process, and then not sending the oplock break in this
1799 * special case. If the file was open with a deny mode that
1800 * prevents the move the SMBmv will fail anyway with a share
1801 * violation error. JRA.
1802 */
1804 {
1807 /*
1808 * This next line is a test that allows the deny-mode
1809 * processing to be skipped. This seems to be needed as
1810 * NT insists on the rename succeeding (in Office 9x no less !).
1811 * This should be removed as soon as (a) MS fix the redirector
1812 * bug or (b) NT SMB support in Samba makes NT not issue the
1813 * call (as is my fervent hope). JRA.
1814 */
1816 }
1817 else
1818 {
1822 /* Oplock break.... */
1825 {
1830 }
1834 }
1835 }
1837 /* someone else has a share lock on it, check to see
1838 if we can too */
1845 {
1848 }
1850 }
1852 /* XXXX exactly what share mode combinations should be allowed for
1853 deleting/renaming? */
1854 /* If we got here then either there were no share modes or
1855 all share modes were DENY_DOS and the pid == getpid() */
1858 free_and_exit:
1864 }
1866 /****************************************************************************
1867 C. Hoch 11/22/95
1868 Helper for open_file_shared.
1869 Truncate a file after checking locking; close file if locked.
1870 **************************************************************************/
1873 {
1876 /* If share modes are in force for this connection we
1877 have the share entry locked. Unlock it before closing. */
1882 /* Share mode no longer locked. */
1887 }
1888 else
1890 }
1891 }
1893 /****************************************************************************
1894 check if we can open a file with a share mode
1895 ****************************************************************************/
1898 {
1903 {
1907 }
1909 {
1917 {
1922 }
1930 }
1932 }
1934 /****************************************************************************
1935 open a file with a share mode
1936 ****************************************************************************/
1939 {
1956 /* this is for OS/2 EAs - try and say we don't support them */
1958 {
1960 /* OS/2 Workplace shell fix may be main code stream in a later release. */
1968 }
1971 {
1974 }
1981 /* note that we ignore the append flag as
1982 append does not mean the same thing under dos and unix */
1985 {
1999 }
2001 #if defined(O_SYNC)
2004 }
2009 {
2011 {
2014 }
2016 }
2019 {
2023 }
2028 {
2033 {
2039 }
2041 /*
2042 * Check if the share modes will give us access.
2043 */
2046 {
2047 BOOL broke_oplock;
2049 do
2050 {
2054 {
2057 /*
2058 * By observation of NetBench, oplocks are broken *before* share
2059 * modes are checked. This allows a file to be closed by the client
2060 * if the share mode would deny access and the client has an oplock.
2061 * Check if someone has an oplock on this file. If so we must break
2062 * it before continuing.
2063 */
2065 {
2070 /* Oplock break.... */
2073 {
2081 }
2085 }
2087 /* someone else has a share lock on it, check to see
2088 if we can too */
2090 {
2097 }
2102 {
2105 }
2107 }
2111 }
2118 {
2121 }
2124 {
2128 {
2129 /* We created the file - thus we must now lock the share entry before creating it. */
2134 }
2137 {
2147 }
2155 {
2159 }
2160 /* We must create the share mode entry before truncate as
2161 truncate can fail due to locking and have to close the
2162 file (which expects the share_mode_entry to be there).
2163 */
2165 {
2167 /* JRA. Currently this only services Exlcusive and batch
2168 oplocks (no other opens on this file). This needs to
2169 be extended to level II oplocks (multiple reader
2170 oplocks). */
2174 {
2177 global_oplocks_open++;
2183 }
2184 else
2185 {
2188 }
2190 }
2194 }
2198 }
2200 /****************************************************************************
2201 seek a file. Try to avoid the seek if possible
2202 ****************************************************************************/
2204 {
2212 }
2214 /****************************************************************************
2215 read from a file
2216 ****************************************************************************/
2218 {
2221 #if USE_READ_PREDICTION
2223 {
2229 }
2230 #endif
2232 #if USE_MMAP
2234 {
2238 {
2244 }
2245 }
2246 #endif
2252 {
2255 }
2260 }
2263 }
2266 /****************************************************************************
2267 write to a file
2268 ****************************************************************************/
2270 {
2274 }
2283 }
2284 }
2285 }
2288 }
2291 /****************************************************************************
2292 load parameters specific to a connection/service
2293 ****************************************************************************/
2295 {
2301 {
2304 }
2313 {
2317 }
2332 }
2335 /****************************************************************************
2336 find a service entry
2337 ****************************************************************************/
2339 {
2346 /* now handle the special case of a home directory */
2348 {
2352 {
2353 /*
2354 * Try mapping the servicename, it may
2355 * be a Windows to unix mapped user name.
2356 */
2359 }
2365 {
2368 {
2371 }
2372 }
2373 }
2375 /* If we still don't have a service, attempt to add it as a printer. */
2377 {
2381 {
2387 {
2394 }
2395 else
2397 }
2398 }
2400 /* just possibly it's a default service? */
2402 {
2405 {
2406 /*
2407 * We need to do a local copy here as lp_defaultservice()
2408 * returns one of the rotating lp_string buffers that
2409 * could get overwritten by the recursive find_service() call
2410 * below. Fix from Josef Hinteregger <joehtg@joehtg.co.at>.
2411 */
2412 pstring defservice;
2416 {
2419 }
2420 }
2421 }
2425 {
2428 }
2434 }
2437 /****************************************************************************
2438 create an error packet from a cached error.
2439 ****************************************************************************/
2441 {
2447 /* We can now delete the auxiliary struct */
2451 }
2454 struct
2455 {
2460 {
2472 #ifdef EDQUOT
2474 #endif
2475 #ifdef ENOTEMPTY
2477 #endif
2478 #ifdef EXDEV
2480 #endif
2483 };
2485 /****************************************************************************
2486 create an error packet from errno
2487 ****************************************************************************/
2489 {
2495 {
2500 }
2501 else
2502 {
2504 {
2506 {
2510 }
2511 i++;
2512 }
2513 }
2516 }
2519 /****************************************************************************
2520 create an error packet. Normally called using the ERROR() macro
2521 ****************************************************************************/
2523 {
2529 {
2534 }
2535 else
2536 {
2541 line,
2544 error_class,
2545 error_code));
2547 }
2553 }
2556 #ifndef SIGCLD_IGNORE
2557 /****************************************************************************
2558 this prevents zombie child processes
2559 ****************************************************************************/
2561 {
2564 {
2568 }
2569 depth++;
2574 #ifdef USE_WAITPID
2576 #endif
2578 /* Stop zombies */
2579 /* Stevens, Adv. Unix Prog. says that on system V you must call
2580 wait before reinstalling the signal handler, because the kernel
2581 calls the handler from within the signal-call when there is a
2582 child that has exited. This would lead to an infinite recursion
2583 if done vice versa. */
2585 #ifndef DONT_REINSTALL_SIG
2586 #ifdef SIGCLD_IGNORE
2588 #else
2590 #endif
2591 #endif
2593 #ifndef USE_WAITPID
2595 #endif
2596 depth--;
2599 }
2600 #endif
2602 /****************************************************************************
2603 this is called when the client exits abruptly
2604 **************************************************************************/
2606 {
2613 #ifndef DONT_REINSTALL_SIG
2615 #endif
2618 }
2622 }
2624 /****************************************************************************
2625 open the socket communication
2626 ****************************************************************************/
2628 {
2632 {
2635 fd_set listen_set;
2639 /* Stop zombies */
2640 #ifdef SIGCLD_IGNORE
2642 #else
2644 #endif
2652 {
2653 /* We have been given an interfaces line, and been
2654 told to only bind to those interfaces. Create a
2655 socket per interface and bind to only these.
2656 */
2659 {
2663 }
2665 /* Now open a listen socket for each of the interfaces. */
2667 {
2671 {
2674 }
2678 /* ready to listen */
2680 {
2684 }
2686 }
2687 }
2688 else
2689 {
2690 /* Just bind to 0.0.0.0 - accept connections from anywhere. */
2693 /* open an incoming socket */
2698 /* ready to listen */
2700 {
2704 }
2708 }
2710 /* now accept incoming connections - forking a new process
2711 for each incoming connection */
2714 {
2715 fd_set lfds;
2725 /* Find the sockets that are read-ready - accept on these. */
2727 {
2733 {
2735 {
2737 /* Clear this so we don't look at it again. */
2740 }
2741 }
2749 {
2752 }
2754 #ifdef NO_FORK_DEBUG
2755 #ifndef NO_SIGNAL_TEST
2762 {
2763 /* Child code ... */
2765 #ifndef NO_SIGNAL_TEST
2769 /* close the listening socket(s) */
2773 /* close our standard file descriptors */
2780 /* Reset global variables in util.c so that
2781 client substitutions will be done correctly
2782 in the process.
2783 */
2786 }
2792 else
2793 {
2794 /* Started from inetd. fd 0 is the socket. */
2795 /* We will abort gracefully when the client or remote system
2796 goes away */
2797 #ifndef NO_SIGNAL_TEST
2799 #endif
2802 /* close our standard file descriptors */
2807 }
2810 }
2812 /****************************************************************************
2813 process an smb from the client - split out from the process() code so
2814 it can be used by the oplock break code.
2815 ****************************************************************************/
2818 {
2820 #ifdef USE_SSL
2830 /* on the first packet, check the global hosts allow/ hosts
2831 deny parameters before doing any parsing of the packet
2832 passed to us by the client. This prevents attacks on our
2833 parsing code from hosts not in the hosts allow list */
2835 /* send a negative session response "not listining on calling
2836 name" */
2842 }
2843 }
2848 #ifdef USE_SSL
2854 trans_num++;
2856 }
2857 }
2860 #ifdef WITH_VTP
2862 {
2865 }
2866 #endif
2876 {
2881 {
2884 }
2885 else
2887 }
2888 trans_num++;
2889 }
2891 /****************************************************************************
2892 open the oplock IPC socket communication
2893 ****************************************************************************/
2895 {
2901 /* Open a lookback UDP socket on a random port. */
2904 {
2909 }
2911 /* Find out the transient UDP port we have been allocated. */
2913 {
2920 }
2927 }
2929 /****************************************************************************
2930 process an oplock break message.
2931 ****************************************************************************/
2933 {
2934 int32 msg_len;
2935 uint16 from_port;
2946 /* Switch on message command - currently OPLOCK_BREAK_CMD is the
2947 only valid request. */
2950 {
2952 /* Ensure that the msg length is correct. */
2954 {
2958 }
2959 {
2972 /*
2973 * If we have no record of any currently open oplocks,
2974 * it's not an error, as a close command may have
2975 * just been issued on the file that was oplocked.
2976 * Just return success in this case.
2977 */
2980 {
2982 {
2986 }
2987 }
2988 else
2989 {
2992 }
2994 /* Send the message back after OR'ing in the 'REPLY' bit. */
3004 {
3008 }
3014 }
3016 /*
3017 * Keep this as a debug case - eventually we can remove it.
3018 */
3024 {
3028 }
3030 {
3038 }
3045 }
3047 }
3049 /****************************************************************************
3050 Process an oplock break directly.
3051 ****************************************************************************/
3053 {
3064 pstring saved_dir;
3069 /* We need to search the file open table for the
3070 entry containing this dev and inode, and ensure
3071 we have an oplock on it. */
3073 {
3075 {
3081 }
3082 }
3083 }
3086 {
3087 /* The file could have been closed in the meantime - return success. */
3091 }
3093 /* Ensure we have an oplock on the file */
3095 /* There is a potential race condition in that an oplock could
3096 have been broken due to another udp request, and yet there are
3097 still oplock break messages being sent in the udp message
3098 queue for this file. So return true if we don't have an oplock,
3099 as we may have just freed it.
3100 */
3103 {
3104 DEBUG(0,("%s oplock_break: file %s (fnum = %d, dev = %x, inode = %x) has no oplock. Allowing break to succeed regardless.\n", timestring(), fsp->name, fnum, dev, inode));
3106 }
3108 /* mark the oplock break as sent - we don't want to send twice! */
3110 {
3111 DEBUG(0,("%s oplock_break: ERROR: oplock_break already sent for file %s (fnum = %d, dev = %x, inode = %x)\n", timestring(), fsp->name, fnum, dev, inode));
3113 /* We have to fail the open here as we cannot send another oplock break on this
3114 file whilst we are awaiting a response from the client - neither can we
3115 allow another open to succeed while we are waiting for the client. */
3117 }
3119 /* Now comes the horrid part. We must send an oplock break to the client,
3120 and then process incoming messages until we get a close or oplock release.
3121 At this point we know we need a new inbuf/outbuf buffer pair.
3122 We cannot use these staticaly as we may recurse into here due to
3123 messages crossing on the wire.
3124 */
3127 {
3130 }
3133 {
3138 }
3140 /* Prepare the SMBlockingX message. */
3152 /* Change this when we have level II oplocks. */
3157 /* Remember we just sent an oplock break on this file. */
3160 /* We need this in case a readraw crosses on the wire. */
3163 /* Process incoming messages. */
3165 /* JRA - If we don't get a break from the client in OPLOCK_BREAK_TIMEOUT
3166 seconds we should just die.... */
3170 /*
3171 * Save the information we need to re-become the
3172 * user, then unbecome the user whilst we're doing this.
3173 */
3180 {
3182 {
3183 /*
3184 * Die if we got an error.
3185 */
3202 }
3204 /*
3205 * There are certain SMB requests that we shouldn't allow
3206 * to recurse. opens, renames and deletes are the obvious
3207 * ones. This is handled in the switch_message() function.
3208 * If global_oplock_break is set they will push the packet onto
3209 * the pending smb queue and return -1 (no reply).
3210 * JRA.
3211 */
3215 /*
3216 * Die if we go over the time limit.
3217 */
3220 {
3227 }
3228 }
3230 /*
3231 * Go back to being the user who requested the oplock
3232 * break.
3233 */
3235 {
3241 }
3242 /* Including the directory. */
3245 /* Free the buffers we've been using to recurse. */
3249 /* We need this in case a readraw crossed on the wire. */
3253 /*
3254 * If the client did not respond we must die.
3255 */
3258 {
3264 }
3267 {
3268 /* The lockingX reply will have removed the oplock flag
3269 from the sharemode. */
3270 /* Paranoia.... */
3273 global_oplocks_open--;
3274 }
3276 /* Santity check - remove this later. JRA */
3278 {
3280 global_oplocks_open));
3282 }
3288 }
3290 /****************************************************************************
3291 Send an oplock break message to another smbd process. If the oplock is held
3292 by the local smbd then call the oplock break function directly.
3293 ****************************************************************************/
3297 {
3305 {
3306 /* We are breaking our own oplock, make sure it's us. */
3308 {
3312 }
3316 /* Call oplock break direct. */
3318 }
3320 /* We need to send a OPLOCK_BREAK_CMD message to the
3321 port in the share mode entry. */
3330 /* set the address and port */
3337 for dev = %x, inode = %x\n", timestring(), share_entry->pid, share_entry->op_port, dev, inode));
3341 {
3347 }
3349 /*
3350 * Now we must await the oplock broken message coming back
3351 * from the target smbd process. Timeout if it fails to
3352 * return in (OPLOCK_BREAK_TIMEOUT + OPLOCK_BREAK_TIMEOUT_FUDGEFACTOR) seconds.
3353 * While we get messages that aren't ours, loop.
3354 */
3360 {
3362 int32 reply_msg_len;
3363 uint16 reply_from_port;
3368 {
3370 {
3374 /*
3375 * This is a hack to make handling of failing clients more robust.
3376 * If a oplock break response message is not received in the timeout
3377 * period we may assume that the smbd servicing that client holding
3378 * the oplock has died and the client changes were lost anyway, so
3379 * we should continue to try and open the file.
3380 */
3382 }
3383 else
3388 }
3396 {
3397 /* Ignore it. */
3401 }
3403 /*
3404 * Test to see if this is the reply we are awaiting.
3405 */
3412 {
3413 /*
3414 * This is the reply we've been waiting for.
3415 */
3417 }
3418 else
3419 {
3420 /*
3421 * This is another message - probably a break request.
3422 * Process it to prevent potential deadlock.
3423 * Note that the code in switch_message() prevents
3424 * us from recursing into here as any SMB requests
3425 * we might process that would cause another oplock
3426 * break request to be made will be queued.
3427 * JRA.
3428 */
3431 }
3434 }
3439 }
3441 /****************************************************************************
3442 Get the next SMB packet, doing the local message processing automatically.
3443 ****************************************************************************/
3446 {
3448 BOOL ret;
3450 do
3451 {
3456 {
3457 /* Deal with oplock break requests from other smbd's. */
3460 }
3463 {
3464 /* Keepalive packet. */
3466 }
3468 }
3472 }
3474 /****************************************************************************
3475 check if a snum is in use
3476 ****************************************************************************/
3478 {
3484 }
3486 /****************************************************************************
3487 reload the services file
3488 **************************************************************************/
3490 {
3491 BOOL ret;
3494 {
3495 pstring fname;
3498 {
3501 }
3502 }
3513 /* perhaps the config filename is now set */
3521 {
3526 }
3527 }
3531 /* this forces service parameters to be flushed */
3535 }
3539 /****************************************************************************
3540 this prevents zombie child processes
3541 ****************************************************************************/
3545 {
3549 /*
3550 * Fix from <branko.cibej@hermes.si> here.
3551 * We used to reload in the signal handler - this
3552 * is a *BIG* no-no.
3553 */
3556 #ifndef DONT_REINSTALL_SIG
3558 #endif
3561 }
3564 /****************************************************************************
3565 make a connection to a service
3566 ****************************************************************************/
3568 {
3580 {
3583 {
3586 }
3588 DEBUG(0,("%s %s (%s) couldn't find service %s\n",timestring(),remote_machine,client_addr(Client),service));
3590 }
3593 {
3598 {
3600 {
3603 }
3604 }
3605 else
3606 {
3607 /*
3608 * Security = share. Try with sesssetup_user as the username.
3609 */
3611 {
3614 }
3615 }
3616 }
3620 }
3622 /* you can only connect to the IPC$ service as an ipc device */
3627 {
3630 else
3632 }
3634 /* if the request is as a printer and you can't print then refuse */
3639 }
3641 /* lowercase the user name */
3644 /* add it as a possible user name */
3647 /* shall we let them in? */
3649 {
3652 }
3656 {
3659 }
3664 /* find out some info about the user */
3668 {
3671 }
3675 {
3676 pstring list;
3688 }
3690 /* admin user check */
3692 /* JRA - original code denied admin user if the share was
3693 marked read_only. Changed as I don't think this is needed,
3694 but old code left in case there is a problem here.
3695 */
3697 #if 0
3699 #else
3700 )
3701 #endif
3702 {
3705 }
3706 else
3726 #if HAVE_GETGRNAM
3728 {
3730 pstring gname;
3733 /* default service may be a group name */
3738 {
3741 }
3742 else
3744 }
3745 #endif
3748 {
3750 fstring fuser;
3754 {
3760 }
3761 else
3763 }
3765 {
3766 pstring s;
3771 }
3773 /* groups stuff added by ih */
3780 {
3781 /* Find all the groups this uid is in and store them. Used by become_user() */
3785 /* check number of connections */
3789 {
3792 }
3800 /* execute any "root preexec = " line */
3802 {
3803 pstring cmd;
3808 }
3811 {
3819 }
3821 }
3824 {
3834 }
3836 }
3840 #if SOFTLINK_OPTIMISATION
3841 /* resolve any soft links early */
3842 {
3843 pstring s;
3848 }
3849 #endif
3851 num_connections_open++;
3854 /* execute any "preexec = " line */
3856 {
3857 pstring cmd;
3861 }
3863 /* we've finished with the sensitive stuff */
3866 /* Add veto/hide lists */
3868 {
3872 }
3874 {
3876 DEBUG(IS_IPC(cnum)?3:1,("%s %s (%s) connect to service %s as user %s (uid=%d,gid=%d) (pid %d)\n",
3878 remote_machine,
3884 }
3887 }
3889 /****************************************************************************
3890 Attempt to break an oplock on a file (if oplocked).
3891 Returns True if the file was closed as a result of
3892 the oplock break, False otherwise.
3893 Used as a last ditch attempt to free a space in the
3894 file table when we have run out.
3895 ****************************************************************************/
3898 {
3904 /* Try and break the oplock. */
3909 }
3910 }
3913 }
3915 /****************************************************************************
3916 find first available file slot
3917 ****************************************************************************/
3919 {
3923 /* we want to give out file handles differently on each new
3924 connection because of a common bug in MS clients where they try to
3925 reuse a file descriptor from an earlier smb connection. This code
3926 increases the chance that the errant client will get an error rather
3927 than causing corruption */
3931 }
3942 }
3944 /* returning a file handle of 0 is a bad idea - so we start at 1 */
3951 }
3953 /*
3954 * Before we give up, go through the open files
3955 * and see if there are any files opened with a
3956 * batch oplock. If so break the oplock and then
3957 * re-use that entry (if it becomes closed).
3958 * This may help as NT/95 clients tend to keep
3959 * files batch oplocked for quite a long time
3960 * after they have finished with them.
3961 */
3968 }
3969 }
3977 }
3978 }
3982 }
3984 /****************************************************************************
3985 find first available connection slot, starting from a random position.
3986 The randomisation stops problems with the server dieing and clients
3987 thinking the server is still available.
3988 ****************************************************************************/
3990 {
3995 again:
3998 {
4000 {
4003 }
4004 i++;
4007 }
4010 {
4013 }
4017 }
4020 /****************************************************************************
4021 reply for the core protocol
4022 ****************************************************************************/
4024 {
4030 }
4033 /****************************************************************************
4034 reply for the coreplus protocol
4035 ****************************************************************************/
4037 {
4041 readbraw and writebraw (possibly) */
4048 }
4051 /****************************************************************************
4052 reply for the lanman 1.0 protocol
4053 ****************************************************************************/
4055 {
4066 /* Create a token value and add it to the outgoing packet. */
4077 readbraw writebraw (possibly) */
4084 }
4087 /****************************************************************************
4088 reply for the lanman 2.0 protocol
4089 ****************************************************************************/
4091 {
4102 }
4107 }
4119 }
4120 }
4139 }
4142 /****************************************************************************
4143 reply for the nt protocol
4144 ****************************************************************************/
4146 {
4147 /* dual names + lock_and_read + nt SMBs + remote API calls */
4149 #ifdef HAVE_NT_SMBS
4150 |CAP_NT_SMBS
4152 ;
4154 /*
4155 other valid capabilities which we may support at some time...
4156 CAP_LARGE_FILES|CAP_NT_SMBS|CAP_RPC_REMOTE_APIS;
4157 CAP_LARGE_READX|CAP_STATUS32|CAP_LEVEL_II_OPLOCKS;
4158 */
4170 }
4175 }
4184 }
4185 }
4189 }
4194 /* decide where (if) to put the encryption challenge, and
4195 follow it with the OEM'd domain name
4196 */
4220 }
4222 /* these are the protocol lists used for auto architecture detection:
4224 WinNT 3.51:
4225 protocol [PC NETWORK PROGRAM 1.0]
4226 protocol [XENIX CORE]
4227 protocol [MICROSOFT NETWORKS 1.03]
4228 protocol [LANMAN1.0]
4229 protocol [Windows for Workgroups 3.1a]
4230 protocol [LM1.2X002]
4231 protocol [LANMAN2.1]
4232 protocol [NT LM 0.12]
4234 Win95:
4235 protocol [PC NETWORK PROGRAM 1.0]
4236 protocol [XENIX CORE]
4237 protocol [MICROSOFT NETWORKS 1.03]
4238 protocol [LANMAN1.0]
4239 protocol [Windows for Workgroups 3.1a]
4240 protocol [LM1.2X002]
4241 protocol [LANMAN2.1]
4242 protocol [NT LM 0.12]
4244 OS/2:
4245 protocol [PC NETWORK PROGRAM 1.0]
4246 protocol [XENIX CORE]
4247 protocol [LANMAN1.0]
4248 protocol [LM1.2X002]
4249 protocol [LANMAN2.1]
4250 */
4252 /*
4253 * Modified to recognize the architecture of the remote machine better.
4254 *
4255 * This appears to be the matrix of which protocol is used by which
4256 * MS product.
4257 Protocol WfWg Win95 WinNT OS/2
4258 PC NETWORK PROGRAM 1.0 1 1 1 1
4259 XENIX CORE 2 2
4260 MICROSOFT NETWORKS 3.0 2 2
4261 DOS LM1.2X002 3 3
4262 MICROSOFT NETWORKS 1.03 3
4263 DOS LANMAN2.1 4 4
4264 LANMAN1.0 4 3
4265 Windows for Workgroups 3.1a 5 5 5
4266 LM1.2X002 6 4
4267 LANMAN2.1 7 5
4268 NT LM 0.12 6 8
4269 *
4270 * tim@fsg.com 09/29/95
4271 */
4274 #define ARCH_WIN95 0x2
4276 #define ARCH_WINNT 0x8
4277 #define ARCH_SAMBA 0x10
4279 #define ARCH_ALL 0x1F
4281 /* List of supported protocols, most desired first */
4298 };
4301 /****************************************************************************
4302 reply to a negprot
4303 ****************************************************************************/
4305 {
4316 {
4317 Index++;
4338 }
4341 }
4362 }
4364 /* possibly reload - change of architecture */
4367 /* a special case to stop password server loops */
4372 /* Check for protocols, most desirable first */
4374 {
4379 {
4382 Index++;
4384 }
4387 }
4396 }
4399 }
4405 }
4408 /****************************************************************************
4409 close all open files for a connection
4410 ****************************************************************************/
4412 {
4417 }
4418 }
4422 /****************************************************************************
4423 close a cnum
4424 ****************************************************************************/
4426 {
4433 {
4436 }
4453 /* execute any "postexec = " line */
4455 {
4456 pstring cmd;
4461 }
4464 /* execute any "root postexec = " line */
4466 {
4467 pstring cmd;
4471 }
4474 num_connections_open--;
4476 {
4483 }
4492 }
4496 #if DUMP_CORE
4497 /*******************************************************************
4498 prepare to dump a core file - carefully!
4499 ********************************************************************/
4501 {
4503 pstring dname;
4513 #ifndef NO_GETRLIMIT
4514 #ifdef RLIMIT_CORE
4515 {
4522 }
4523 #endif
4524 #endif
4529 }
4530 #endif
4532 /****************************************************************************
4533 exit the server
4534 ****************************************************************************/
4536 {
4548 #ifdef DFS_AUTH
4551 #endif
4560 #if DUMP_CORE
4562 #endif
4563 }
4569 }
4571 /****************************************************************************
4572 do some standard substitutions in a string
4573 ****************************************************************************/
4575 {
4583 else
4590 /*
4591 * Patch from jkf@soton.ac.uk
4592 * Left the %N (NIS server name) in standard_sub_basic as it
4593 * is a feature for logon servers, hence uses the username.
4594 * The %p (NIS server path) code is here as it is used
4595 * instead of the default "path =" string in [homes] and so
4596 * needs the service name, not the username.
4597 */
4598 case 'p' : string_sub(p,"%p",automount_path(lp_servicename(Connections[cnum].service))); break;
4601 }
4602 }
4603 }
4605 }
4607 /*
4608 These flags determine some of the permissions required to do an operation
4610 Note that I don't set NEED_WRITE on some write operations because they
4611 are used by some brain-dead clients when printing, and I don't want to
4612 force write permissions on print services.
4613 */
4614 #define AS_USER (1<<0)
4615 #define NEED_WRITE (1<<1)
4616 #define TIME_INIT (1<<2)
4617 #define CAN_IPC (1<<3)
4618 #define AS_GUEST (1<<5)
4619 #define QUEUE_IN_OPLOCK (1<<6)
4621 /*
4622 define a list of possible SMB messages and their corresponding
4623 functions. Any message that has a NULL function is unimplemented -
4624 please feel free to contribute implementations!
4625 */
4626 struct smb_message_struct
4627 {
4632 #if PROFILING
4634 #endif
4635 }
4636 smb_messages[] = {
4638 /* CORE PROTOCOL */
4655 /* note that SMBmknew and SMBcreate are deliberately overloaded */
4668 /* this is a Pathworks specific call, allowing the
4669 changing of the root path */
4682 /* CORE+ PROTOCOL FOLLOWS */
4690 /* LANMAN1.0 PROTOCOL FOLLOWS */
4714 /* LANMAN2.0 PROTOCOL FOLLOWS */
4720 #ifdef HAVE_NT_SMBS
4721 /* NT PROTOCOL FOLLOWS */
4728 /* messaging routines */
4734 /* NON-IMPLEMENTED PARTS OF THE CORE PROTOCOL */
4740 };
4742 /****************************************************************************
4743 return a string containing the function name of a SMB command
4744 ****************************************************************************/
4746 {
4760 }
4763 /****************************************************************************
4764 do a switch on the message type, and return the response size
4765 ****************************************************************************/
4767 {
4774 #if PROFILING
4780 #endif
4788 /* make sure this is an SMB packet */
4790 {
4793 }
4800 {
4803 }
4804 else
4805 {
4809 {
4810 /*
4811 * Queue this message as we are the process of an oplock break.
4812 */
4819 }
4822 {
4826 /* In share mode security we must ignore the vuid. */
4828 /* Ensure this value is replaced in the incoming packet. */
4831 /*
4832 * Ensure the correct username is in sesssetup_user.
4833 * This is a really ugly bugfix for problems with
4834 * multiple session_setup_and_X's being done and
4835 * allowing %U and %G substitutions to work correctly.
4836 * There is a reason this code is done here, don't
4837 * move it unless you know what you're doing... :-).
4838 * JRA.
4839 */
4848 }
4850 /* does this protocol need to be run as root? */
4854 /* does this protocol need to be run as the connected user? */
4858 else
4860 }
4861 /* this code is to work around a bug is MS client 3 without
4862 introducing a security hole - it needs to be able to do
4863 print queue checks as guest if it isn't logged in properly */
4867 /* does it need write permission? */
4871 /* ipc services are limited */
4875 /* load service specific parameters */
4879 /* does this protocol need to be run as guest? */
4886 }
4887 else
4888 {
4890 }
4891 }
4893 #if PROFILING
4896 {
4899 }
4900 {
4906 }
4910 #endif
4913 }
4916 /****************************************************************************
4917 construct a chained reply and add it to the already made reply
4918 **************************************************************************/
4920 {
4933 /* maybe its not chained */
4937 }
4940 /* this is the first part of the chain */
4943 }
4945 /* we need to tell the client where the next part of the reply will be */
4949 /* remember how much the caller added to the chain, only counting stuff
4950 after the parameter words */
4953 /* work out pointers into the original packets. The
4954 headers on these need to be filled in */
4958 /* remember the original command type */
4961 /* save the data which will be overwritten by the new headers */
4965 /* give the new packet the same header as the last part of the SMB */
4968 /* create the in buffer */
4971 /* create the out buffer */
4980 means a reply */
4991 /* process the request */
4995 /* copy the new reply and request headers over the old ones, but
4996 preserve the smb_com field */
5000 /* restore the saved data, being careful not to overwrite any
5001 data from the reply header */
5003 {
5007 }
5010 }
5014 /****************************************************************************
5015 construct a reply to the incoming packet
5016 ****************************************************************************/
5018 {
5042 means a reply */
5057 }
5059 /****************************************************************************
5060 process commands from the client
5061 ****************************************************************************/
5063 {
5074 #if PRIME_NMBD
5076 {
5082 }
5083 #endif
5085 /* re-initialise the timezone */
5089 {
5099 #if USE_READ_PREDICTION
5102 #endif
5110 {
5117 {
5120 }
5123 {
5126 }
5129 {
5133 }
5137 /* become root again if waiting */
5140 /* check for smb.conf reload */
5142 {
5145 /* reload services, if files have changed. */
5147 }
5149 /*
5150 * If reload_after_sighup == True then we got a SIGHUP
5151 * and are being asked to reload. Fix from <branko.cibej@hermes.si>
5152 */
5155 {
5159 }
5161 /* automatic timeout if all connections are closed */
5163 {
5166 }
5169 {
5174 }
5175 /* also send a keepalive to the password server if its still
5176 connected */
5180 }
5182 /* check for connection timeouts */
5185 {
5186 /* close dirptrs on connections that are idle */
5193 }
5196 {
5199 }
5202 {
5205 pstring remote_machine_list;
5207 /*
5208 * We're in domain level security, and the code that
5209 * read the machine password flagged that the machine
5210 * password needs changing.
5211 */
5213 /*
5214 * First, open the machine password file with an exclusive lock.
5215 */
5221 }
5228 }
5230 /*
5231 * Make sure someone else hasn't already done this.
5232 */
5238 }
5245 }
5246 }
5250 else
5252 }
5253 }
5256 /****************************************************************************
5257 initialise connect, service and file structs
5258 ****************************************************************************/
5260 {
5264 /*
5265 * Set the machine NETBIOS name if not already
5266 * set from the config file.
5267 */
5270 {
5276 }
5280 {
5289 }
5292 {
5295 }
5298 {
5307 }
5309 /* for RPC pipes */
5312 /* for LSA handles */
5316 }
5318 /****************************************************************************
5319 usage on the program
5320 ****************************************************************************/
5322 {
5325 printf("Usage: %s [-D] [-p port] [-d debuglevel] [-l log basename] [-s services file]\n",pname);
5335 }
5338 /****************************************************************************
5339 main program
5340 ****************************************************************************/
5342 {
5344 /* shall I run as a daemon */
5350 #ifdef NEED_AUTH_PARAMETERS
5352 #endif
5354 #ifdef SecureWare
5356 #endif
5370 /* make absolutely sure we run as root - to handle cases where people
5371 are crazy enough to have it setuid */
5372 #ifdef USE_SETRES
5374 #else
5379 #endif
5384 /* we want total control over the permissions on created files,
5385 so set our umask to 0 */
5392 /* this is for people who can't start the program correctly */
5394 {
5395 argv++;
5396 argc--;
5397 }
5401 {
5409 {
5412 }
5421 {
5424 }
5432 else
5445 }
5452 #ifndef NO_GETRLIMIT
5453 #ifdef RLIMIT_NOFILE
5454 {
5457 /*
5458 * Set the fd limit to be MAX_OPEN_FILES + 10 to account for the
5459 * extra fd we need to read directories, as well as the log files
5460 * and standard handles etc.
5461 */
5466 }
5467 #endif
5468 #endif
5475 {
5478 }
5485 #ifdef USE_SSL
5486 {
5491 }
5499 {
5502 }
5504 #ifndef NO_SIGNAL_TEST
5506 #endif
5508 /* Setup the signals that allow the debug log level
5509 to by dynamically changed. */
5511 /* If we are using the malloc debug code we can't use
5512 SIGUSR1 and SIGUSR2 to do debug level changes. */
5514 #ifndef MEM_MAN
5515 #if defined(SIGUSR1)
5519 #if defined(SIGUSR2)
5527 {
5530 }
5533 {
5536 }
5540 }
5544 }
5555 /* possibly reload the services file. */
5561 {
5564 }
5566 /* Setup the oplock IPC socket. */
5575 }