search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Remove the tortured logic in another_ldap_try() and turn it into
[Samba/gebeck_regimport.git] / source4 / smbd / server.c
blobba8f8227a931db7e775879c9739492b2c6c2a713
1 /*
2 Unix SMB/CIFS implementation.
3
4 Main SMB server routines
5
6 Copyright (C) Andrew Tridgell 1992-2005
7 Copyright (C) Martin Pool 2002
8 Copyright (C) Jelmer Vernooij 2002
9 Copyright (C) James J Myers 2003 <myersjj@samba.org>
10
11 This program is free software; you can redistribute it and/or modify
12 it under the terms of the GNU General Public License as published by
13 the Free Software Foundation; either version 3 of the License, or
14 (at your option) any later version.
15
16 This program is distributed in the hope that it will be useful,
17 but WITHOUT ANY WARRANTY; without even the implied warranty of
18 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
19 GNU General Public License for more details.
20
21 You should have received a copy of the GNU General Public License
22 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 */
24
25 #include "includes.h"
26 #include "lib/events/events.h"
27 #include "version.h"
28 #include "lib/cmdline/popt_common.h"
29 #include "system/dir.h"
30 #include "system/filesys.h"
31 #include "ntvfs/ntvfs.h"
32 #include "ntptr/ntptr.h"
33 #include "auth/gensec/gensec.h"
34 #include "libcli/auth/schannel.h"
35 #include "smbd/process_model.h"
36 #include "param/secrets.h"
37 #include "smbd/pidfile.h"
38 #include "param/param.h"
39 #include "dsdb/samdb/samdb.h"
40 #include "auth/session.h"
41 #include "lib/messaging/irpc.h"
42 #include "librpc/gen_ndr/ndr_irpc.h"
43 #include "cluster/cluster.h"
44 #include "dynconfig/dynconfig.h"
45
46 /*
47 recursively delete a directory tree
48 */
49 static void recursive_delete(const char *path)
50 {
51 DIR *dir;
52 struct dirent *de;
53
54 dir = opendir(path);
55 if (!dir) {
56 return;
57 }
58
59 for (de=readdir(dir);de;de=readdir(dir)) {
60 char *fname;
61 struct stat st;
62
63 if (ISDOT(de->d_name) || ISDOTDOT(de->d_name)) {
64 continue;
65 }
66
67 fname = talloc_asprintf(path, "%s/%s", path, de->d_name);
68 if (stat(fname, &st) != 0) {
69 continue;
70 }
71 if (S_ISDIR(st.st_mode)) {
72 recursive_delete(fname);
73 talloc_free(fname);
74 continue;
75 }
76 if (unlink(fname) != 0) {
77 DEBUG(0,("Unabled to delete '%s' - %s\n",
78 fname, strerror(errno)));
79 smb_panic("unable to cleanup tmp files");
80 }
81 talloc_free(fname);
82 }
83 closedir(dir);
84 }
85
86 /*
87 cleanup temporary files. This is the new alternative to
88 TDB_CLEAR_IF_FIRST. Unfortunately TDB_CLEAR_IF_FIRST is not
89 efficient on unix systems due to the lack of scaling of the byte
90 range locking system. So instead of putting the burden on tdb to
91 cleanup tmp files, this function deletes them.
92 */
93 static void cleanup_tmp_files(struct loadparm_context *lp_ctx)
94 {
95 char *path;
96 TALLOC_CTX *mem_ctx = talloc_new(NULL);
97
98 path = smbd_tmp_path(mem_ctx, lp_ctx, NULL);
99
100 recursive_delete(path);
101 talloc_free(mem_ctx);
102 }
103
104 static void sig_hup(int sig)
105 {
106 debug_schedule_reopen_logs();
107 }
108
109 static void sig_term(int sig)
110 {
111 #if HAVE_GETPGRP
112 static int done_sigterm;
113 if (done_sigterm == 0 && getpgrp() == getpid()) {
114 DEBUG(0,("SIGTERM: killing children\n"));
115 done_sigterm = 1;
116 kill(-getpgrp(), SIGTERM);
117 }
118 #endif
119 DEBUG(0,("Exiting pid %d on SIGTERM\n", (int)getpid()));
120 exit(127);
121 }
122
123 /*
124 setup signal masks
125 */
126 static void setup_signals(void)
127 {
128 /* we are never interested in SIGPIPE */
129 BlockSignals(true,SIGPIPE);
130
131 #if defined(SIGFPE)
132 /* we are never interested in SIGFPE */
133 BlockSignals(true,SIGFPE);
134 #endif
135
136 /* We are no longer interested in USR1 */
137 BlockSignals(true, SIGUSR1);
138
139 #if defined(SIGUSR2)
140 /* We are no longer interested in USR2 */
141 BlockSignals(true,SIGUSR2);
142 #endif
143
144 /* POSIX demands that signals are inherited. If the invoking process has
145 * these signals masked, we will have problems, as we won't receive them. */
146 BlockSignals(false, SIGHUP);
147 BlockSignals(false, SIGTERM);
148
149 CatchSignal(SIGHUP, sig_hup);
150 CatchSignal(SIGTERM, sig_term);
151 }
152
153 /*
154 handle io on stdin
155 */
156 static void server_stdin_handler(struct tevent_context *event_ctx, struct tevent_fd *fde,
157 uint16_t flags, void *private_data)
158 {
159 const char *binary_name = (const char *)private_data;
160 uint8_t c;
161 if (read(0, &c, 1) == 0) {
162 DEBUG(0,("%s: EOF on stdin - terminating\n", binary_name));
163 #if HAVE_GETPGRP
164 if (getpgrp() == getpid()) {
165 DEBUG(0,("Sending SIGTERM from pid %d\n", (int)getpid()));
166 kill(-getpgrp(), SIGTERM);
167 }
168 #endif
169 exit(0);
170 }
171 }
172
173 /*
174 die if the user selected maximum runtime is exceeded
175 */
176 _NORETURN_ static void max_runtime_handler(struct tevent_context *ev,
177 struct tevent_timer *te,
178 struct timeval t, void *private_data)
179 {
180 const char *binary_name = (const char *)private_data;
181 DEBUG(0,("%s: maximum runtime exceeded - terminating, current ts: %llu\n",
182 binary_name, (unsigned long long) time(NULL)));
183 exit(0);
184 }
185
186 /*
187 pre-open the key databases. This saves a lot of time in child
188 processes
189 */
190 static void prime_ldb_databases(struct tevent_context *event_ctx)
191 {
192 TALLOC_CTX *db_context;
193 db_context = talloc_new(event_ctx);
194
195 samdb_connect(db_context, event_ctx, cmdline_lp_ctx, system_session(cmdline_lp_ctx), 0);
196 privilege_connect(db_context, cmdline_lp_ctx);
197
198 /* we deliberately leave these open, which allows them to be
199 * re-used in ldb_wrap_connect() */
200 }
201
202
203 /*
204 called when a fatal condition occurs in a child task
205 */
206 static NTSTATUS samba_terminate(struct irpc_message *msg,
207 struct samba_terminate *r)
208 {
209 DEBUG(0,("samba_terminate: %s\n", r->in.reason));
210 exit(1);
211 }
212
213 /*
214 setup messaging for the top level samba (parent) task
215 */
216 static NTSTATUS setup_parent_messaging(struct tevent_context *event_ctx,
217 struct loadparm_context *lp_ctx)
218 {
219 struct imessaging_context *msg;
220 NTSTATUS status;
221
222 msg = imessaging_init(talloc_autofree_context(),
223 lpcfg_imessaging_path(event_ctx, lp_ctx),
224 cluster_id(0, SAMBA_PARENT_TASKID), event_ctx, false);
225 NT_STATUS_HAVE_NO_MEMORY(msg);
226
227 irpc_add_name(msg, "samba");
228
229 status = IRPC_REGISTER(msg, irpc, SAMBA_TERMINATE,
230 samba_terminate, NULL);
231
232 return status;
233 }
234
235
236 /*
237 show build info
238 */
239 static void show_build(void)
240 {
241 #define CONFIG_OPTION(n) { #n, dyn_ ## n }
242 struct {
243 const char *name;
244 const char *value;
245 } config_options[] = {
246 CONFIG_OPTION(BINDIR),
247 CONFIG_OPTION(SBINDIR),
248 CONFIG_OPTION(CONFIGFILE),
249 CONFIG_OPTION(NCALRPCDIR),
250 CONFIG_OPTION(LOGFILEBASE),
251 CONFIG_OPTION(LMHOSTSFILE),
252 CONFIG_OPTION(DATADIR),
253 CONFIG_OPTION(MODULESDIR),
254 CONFIG_OPTION(LOCKDIR),
255 CONFIG_OPTION(STATEDIR),
256 CONFIG_OPTION(CACHEDIR),
257 CONFIG_OPTION(PIDDIR),
258 CONFIG_OPTION(PRIVATE_DIR),
259 CONFIG_OPTION(SWATDIR),
260 CONFIG_OPTION(CODEPAGEDIR),
261 CONFIG_OPTION(SETUPDIR),
262 CONFIG_OPTION(WINBINDD_SOCKET_DIR),
263 CONFIG_OPTION(WINBINDD_PRIVILEGED_SOCKET_DIR),
264 CONFIG_OPTION(NTP_SIGND_SOCKET_DIR),
265 { NULL, NULL}
266 };
267 int i;
268
269 printf("Samba version: %s\n", SAMBA_VERSION_STRING);
270 printf("Build environment:\n");
271 #ifdef BUILD_SYSTEM
272 printf(" Build host: %s\n", BUILD_SYSTEM);
273 #endif
274
275 printf("Paths:\n");
276 for (i=0; config_options[i].name; i++) {
277 printf(" %s: %s\n", config_options[i].name, config_options[i].value);
278 }
279
280 exit(0);
281 }
282
283 /*
284 main server.
285 */
286 static int binary_smbd_main(const char *binary_name, int argc, const char *argv[])
287 {
288 bool opt_daemon = false;
289 bool opt_interactive = false;
290 int opt;
291 poptContext pc;
292 #define _MODULE_PROTO(init) extern NTSTATUS init(void);
293 STATIC_service_MODULES_PROTO;
294 init_module_fn static_init[] = { STATIC_service_MODULES };
295 init_module_fn *shared_init;
296 struct tevent_context *event_ctx;
297 uint16_t stdin_event_flags;
298 NTSTATUS status;
299 const char *model = "standard";
300 int max_runtime = 0;
301 enum {
302 OPT_DAEMON = 1000,
303 OPT_INTERACTIVE,
304 OPT_PROCESS_MODEL,
305 OPT_SHOW_BUILD
306 };
307 struct poptOption long_options[] = {
308 POPT_AUTOHELP
309 {"daemon", 'D', POPT_ARG_NONE, NULL, OPT_DAEMON,
310 "Become a daemon (default)", NULL },
311 {"interactive", 'i', POPT_ARG_NONE, NULL, OPT_INTERACTIVE,
312 "Run interactive (not a daemon)", NULL},
313 {"model", 'M', POPT_ARG_STRING, NULL, OPT_PROCESS_MODEL,
314 "Select process model", "MODEL"},
315 {"maximum-runtime",0, POPT_ARG_INT, &max_runtime, 0,
316 "set maximum runtime of the server process, till autotermination", "seconds"},
317 {"show-build", 'b', POPT_ARG_NONE, NULL, OPT_SHOW_BUILD, "show build info", NULL },
318 POPT_COMMON_SAMBA
319 POPT_COMMON_VERSION
320 { NULL }
321 };
322
323 pc = poptGetContext(binary_name, argc, argv, long_options, 0);
324 while((opt = poptGetNextOpt(pc)) != -1) {
325 switch(opt) {
326 case OPT_DAEMON:
327 opt_daemon = true;
328 break;
329 case OPT_INTERACTIVE:
330 opt_interactive = true;
331 break;
332 case OPT_PROCESS_MODEL:
333 model = poptGetOptArg(pc);
334 break;
335 case OPT_SHOW_BUILD:
336 show_build();
337 break;
338 default:
339 fprintf(stderr, "\nInvalid option %s: %s\n\n",
340 poptBadOption(pc, 0), poptStrerror(opt));
341 poptPrintUsage(pc, stderr, 0);
342 return 1;
343 }
344 }
345
346 if (opt_daemon && opt_interactive) {
347 fprintf(stderr,"\nERROR: "
348 "Option -i|--interactive is not allowed together with -D|--daemon\n\n");
349 poptPrintUsage(pc, stderr, 0);
350 return 1;
351 } else if (!opt_interactive) {
352 /* default is --daemon */
353 opt_daemon = true;
354 }
355
356 poptFreeContext(pc);
357
358 setup_logging(binary_name, opt_interactive?DEBUG_STDOUT:DEBUG_FILE);
359 setup_signals();
360
361 /* we want total control over the permissions on created files,
362 so set our umask to 0 */
363 umask(0);
364
365 DEBUG(0,("%s version %s started.\n", binary_name, SAMBA_VERSION_STRING));
366 DEBUGADD(0,("Copyright Andrew Tridgell and the Samba Team 1992-2011\n"));
367
368 if (sizeof(uint16_t) < 2 || sizeof(uint32_t) < 4 || sizeof(uint64_t) < 8) {
369 DEBUG(0,("ERROR: Samba is not configured correctly for the word size on your machine\n"));
370 DEBUGADD(0,("sizeof(uint16_t) = %u, sizeof(uint32_t) %u, sizeof(uint64_t) = %u\n",
371 (unsigned int)sizeof(uint16_t), (unsigned int)sizeof(uint32_t), (unsigned int)sizeof(uint64_t)));
372 return 1;
373 }
374
375 if (opt_daemon) {
376 DEBUG(3,("Becoming a daemon.\n"));
377 become_daemon(true, false, false);
378 }
379
380 cleanup_tmp_files(cmdline_lp_ctx);
381
382 if (!directory_exist(lpcfg_lockdir(cmdline_lp_ctx))) {
383 mkdir(lpcfg_lockdir(cmdline_lp_ctx), 0755);
384 }
385
386 pidfile_create(lpcfg_piddir(cmdline_lp_ctx), binary_name);
387
388 /* Set up a database to hold a random seed, in case we don't
389 * have /dev/urandom */
390 if (!randseed_init(talloc_autofree_context(), cmdline_lp_ctx)) {
391 return 1;
392 }
393
394 if (lpcfg_server_role(cmdline_lp_ctx) == ROLE_DOMAIN_CONTROLLER) {
395 if (!open_schannel_session_store(talloc_autofree_context(), lpcfg_private_dir(cmdline_lp_ctx))) {
396 DEBUG(0,("ERROR: Samba cannot open schannel store for secured NETLOGON operations.\n"));
397 exit(1);
398 }
399 }
400
401 gensec_init(); /* FIXME: */
402
403 ntptr_init(); /* FIXME: maybe run this in the initialization function
404 of the spoolss RPC server instead? */
405
406 ntvfs_init(cmdline_lp_ctx); /* FIXME: maybe run this in the initialization functions
407 of the SMB[,2] server instead? */
408
409 process_model_init(cmdline_lp_ctx);
410
411 shared_init = load_samba_modules(NULL, "service");
412
413 run_init_functions(static_init);
414 run_init_functions(shared_init);
415
416 talloc_free(shared_init);
417
418 /* the event context is the top level structure in smbd. Everything else
419 should hang off that */
420 event_ctx = s4_event_context_init(talloc_autofree_context());
421
422 if (event_ctx == NULL) {
423 DEBUG(0,("Initializing event context failed\n"));
424 return 1;
425 }
426
427 if (opt_interactive) {
428 /* terminate when stdin goes away */
429 stdin_event_flags = TEVENT_FD_READ;
430 } else {
431 /* stay alive forever */
432 stdin_event_flags = 0;
433 }
434
435 /* catch EOF on stdin */
436 #ifdef SIGTTIN
437 signal(SIGTTIN, SIG_IGN);
438 #endif
439 tevent_add_fd(event_ctx, event_ctx, 0, stdin_event_flags,
440 server_stdin_handler,
441 discard_const(binary_name));
442
443 if (max_runtime) {
444 DEBUG(0,("Called with maxruntime %d - current ts %llu\n",
445 max_runtime, (unsigned long long) time(NULL)));
446 tevent_add_timer(event_ctx, event_ctx,
447 timeval_current_ofs(max_runtime, 0),
448 max_runtime_handler,
449 discard_const(binary_name));
450 }
451
452 prime_ldb_databases(event_ctx);
453
454 status = setup_parent_messaging(event_ctx, cmdline_lp_ctx);
455 if (!NT_STATUS_IS_OK(status)) {
456 DEBUG(0,("Failed to setup parent messaging - %s\n", nt_errstr(status)));
457 return 1;
458 }
459
460 DEBUG(0,("%s: using '%s' process model\n", binary_name, model));
461
462 status = server_service_startup(event_ctx, cmdline_lp_ctx, model,
463 lpcfg_server_services(cmdline_lp_ctx));
464 if (!NT_STATUS_IS_OK(status)) {
465 DEBUG(0,("Starting Services failed - %s\n", nt_errstr(status)));
466 return 1;
467 }
468
469 /* wait for events - this is where smbd sits for most of its
470 life */
471 tevent_loop_wait(event_ctx);
472
473 /* as everything hangs off this event context, freeing it
474 should initiate a clean shutdown of all services */
475 talloc_free(event_ctx);
476
477 return 0;
478 }
479
480 int main(int argc, const char *argv[])
481 {
482 return binary_smbd_main("samba", argc, argv);
483 }
reg import