search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Auth2, not also Auth3 sends us flags back, although all the callers
[Samba/wip.git] / source3 / smbd / process.c
blobde1bea493fa484419146364e98bb20eb32e59683
1 /*
2 Unix SMB/CIFS implementation.
3 process incoming packets - main loop
4 Copyright (C) Andrew Tridgell 1992-1998
5
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 2 of the License, or
9 (at your option) any later version.
10
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
15
16 You should have received a copy of the GNU General Public License
17 along with this program; if not, write to the Free Software
18 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
19 */
20
21 #include "includes.h"
22
23 struct timeval smb_last_time;
24
25 static char *InBuffer = NULL;
26 char *OutBuffer = NULL;
27 char *last_inbuf = NULL;
28
29 /*
30 * Size of data we can send to client. Set
31 * by the client for all protocols above CORE.
32 * Set by us for CORE protocol.
33 */
34 int max_send = BUFFER_SIZE;
35 /*
36 * Size of the data we can receive. Set by us.
37 * Can be modified by the max xmit parameter.
38 */
39 int max_recv = BUFFER_SIZE;
40
41 extern int last_message;
42 extern int global_oplock_break;
43 extern userdom_struct current_user_info;
44 extern int smb_read_error;
45 SIG_ATOMIC_T reload_after_sighup = 0;
46 SIG_ATOMIC_T got_sig_term = 0;
47 BOOL global_machine_password_needs_changing = False;
48 extern int max_send;
49
50 /****************************************************************************
51 structure to hold a linked list of queued messages.
52 for processing.
53 ****************************************************************************/
54
55 typedef struct {
56 ubi_slNode msg_next;
57 char *msg_buf;
58 int msg_len;
59 } pending_message_list;
60
61 static ubi_slList smb_oplock_queue = { NULL, (ubi_slNodePtr)&smb_oplock_queue, 0};
62
63 /****************************************************************************
64 Function to push a message onto the tail of a linked list of smb messages ready
65 for processing.
66 ****************************************************************************/
67
68 static BOOL push_message(ubi_slList *list_head, char *buf, int msg_len)
69 {
70 pending_message_list *msg = (pending_message_list *)
71 malloc(sizeof(pending_message_list));
72
73 if(msg == NULL)
74 {
75 DEBUG(0,("push_message: malloc fail (1)\n"));
76 return False;
77 }
78
79 msg->msg_buf = (char *)malloc(msg_len);
80 if(msg->msg_buf == NULL)
81 {
82 DEBUG(0,("push_message: malloc fail (2)\n"));
83 SAFE_FREE(msg);
84 return False;
85 }
86
87 memcpy(msg->msg_buf, buf, msg_len);
88 msg->msg_len = msg_len;
89
90 ubi_slAddTail( list_head, msg);
91
92 return True;
93 }
94
95 /****************************************************************************
96 Function to push a smb message onto a linked list of local smb messages ready
97 for processing.
98 ****************************************************************************/
99
100 BOOL push_oplock_pending_smb_message(char *buf, int msg_len)
101 {
102 return push_message(&smb_oplock_queue, buf, msg_len);
103 }
104
105 /****************************************************************************
106 Do all async processing in here. This includes UDB oplock messages, kernel
107 oplock messages, change notify events etc.
108 ****************************************************************************/
109
110 static void async_processing(char *buffer, int buffer_len)
111 {
112 DEBUG(10,("async_processing: Doing async processing.\n"));
113
114 /* check for oplock messages (both UDP and kernel) */
115 if (receive_local_message(buffer, buffer_len, 1)) {
116 process_local_message(buffer, buffer_len);
117 }
118
119 if (got_sig_term) {
120 exit_server("Caught TERM signal");
121 }
122
123 /* check for async change notify events */
124 process_pending_change_notify_queue(0);
125
126 /* check for sighup processing */
127 if (reload_after_sighup) {
128 change_to_root_user();
129 DEBUG(1,("Reloading services after SIGHUP\n"));
130 reload_services(False);
131 reload_after_sighup = 0;
132 }
133 }
134
135 /****************************************************************************
136 Do a select on an two fd's - with timeout.
137
138 If a local udp message has been pushed onto the
139 queue (this can only happen during oplock break
140 processing) call async_processing()
141
142 If a pending smb message has been pushed onto the
143 queue (this can only happen during oplock break
144 processing) return this next.
145
146 If the first smbfd is ready then read an smb from it.
147 if the second (loopback UDP) fd is ready then read a message
148 from it and setup the buffer header to identify the length
149 and from address.
150 Returns False on timeout or error.
151 Else returns True.
152
153 The timeout is in milliseconds
154 ****************************************************************************/
155
156 static BOOL receive_message_or_smb(char *buffer, int buffer_len, int timeout)
157 {
158 fd_set fds;
159 int selrtn;
160 struct timeval to;
161 int maxfd;
162
163 smb_read_error = 0;
164
165 again:
166
167 /*
168 * Note that this call must be before processing any SMB
169 * messages as we need to synchronously process any messages
170 * we may have sent to ourselves from the previous SMB.
171 */
172 message_dispatch();
173
174 /*
175 * Check to see if we already have a message on the smb queue.
176 * If so - copy and return it.
177 */
178 if(ubi_slCount(&smb_oplock_queue) != 0) {
179 pending_message_list *msg = (pending_message_list *)ubi_slRemHead(&smb_oplock_queue);
180 memcpy(buffer, msg->msg_buf, MIN(buffer_len, msg->msg_len));
181
182 /* Free the message we just copied. */
183 SAFE_FREE(msg->msg_buf);
184 SAFE_FREE(msg);
185
186 DEBUG(5,("receive_message_or_smb: returning queued smb message.\n"));
187 return True;
188 }
189
190
191 /*
192 * Setup the select read fd set.
193 */
194
195 FD_ZERO(&fds);
196
197 /*
198 * Ensure we process oplock break messages by preference.
199 * We have to do this before the select, after the select
200 * and if the select returns EINTR. This is due to the fact
201 * that the selects called from async_processing can eat an EINTR
202 * caused by a signal (we can't take the break message there).
203 * This is hideously complex - *MUST* be simplified for 3.0 ! JRA.
204 */
205
206 if (oplock_message_waiting(&fds)) {
207 DEBUG(10,("receive_message_or_smb: oplock_message is waiting.\n"));
208 async_processing(buffer, buffer_len);
209 /*
210 * After async processing we must go and do the select again, as
211 * the state of the flag in fds for the server file descriptor is
212 * indeterminate - we may have done I/O on it in the oplock processing. JRA.
213 */
214 goto again;
215 }
216
217 FD_SET(smbd_server_fd(),&fds);
218 maxfd = setup_oplock_select_set(&fds);
219
220 to.tv_sec = timeout / 1000;
221 to.tv_usec = (timeout % 1000) * 1000;
222
223 selrtn = sys_select(MAX(maxfd,smbd_server_fd())+1,&fds,NULL,NULL,timeout>0?&to:NULL);
224
225 /* if we get EINTR then maybe we have received an oplock
226 signal - treat this as select returning 1. This is ugly, but
227 is the best we can do until the oplock code knows more about
228 signals */
229 if (selrtn == -1 && errno == EINTR) {
230 async_processing(buffer, buffer_len);
231 /*
232 * After async processing we must go and do the select again, as
233 * the state of the flag in fds for the server file descriptor is
234 * indeterminate - we may have done I/O on it in the oplock processing. JRA.
235 */
236 goto again;
237 }
238
239 /* Check if error */
240 if (selrtn == -1) {
241 /* something is wrong. Maybe the socket is dead? */
242 smb_read_error = READ_ERROR;
243 return False;
244 }
245
246 /* Did we timeout ? */
247 if (selrtn == 0) {
248 smb_read_error = READ_TIMEOUT;
249 return False;
250 }
251
252 /*
253 * Ensure we process oplock break messages by preference.
254 * This is IMPORTANT ! Otherwise we can starve other processes
255 * sending us an oplock break message. JRA.
256 */
257
258 if (oplock_message_waiting(&fds)) {
259 async_processing(buffer, buffer_len);
260 /*
261 * After async processing we must go and do the select again, as
262 * the state of the flag in fds for the server file descriptor is
263 * indeterminate - we may have done I/O on it in the oplock processing. JRA.
264 */
265 goto again;
266 }
267
268 return receive_smb(smbd_server_fd(), buffer, 0);
269 }
270
271 /****************************************************************************
272 Get the next SMB packet, doing the local message processing automatically.
273 ****************************************************************************/
274
275 BOOL receive_next_smb(char *inbuf, int bufsize, int timeout)
276 {
277 BOOL got_keepalive;
278 BOOL ret;
279
280 do {
281 ret = receive_message_or_smb(inbuf,bufsize,timeout);
282
283 got_keepalive = (ret && (CVAL(inbuf,0) == SMBkeepalive));
284 } while (ret && got_keepalive);
285
286 return ret;
287 }
288
289 /****************************************************************************
290 We're terminating and have closed all our files/connections etc.
291 If there are any pending local messages we need to respond to them
292 before termination so that other smbds don't think we just died whilst
293 holding oplocks.
294 ****************************************************************************/
295
296 void respond_to_all_remaining_local_messages(void)
297 {
298 char buffer[1024];
299
300 /*
301 * Assert we have no exclusive open oplocks.
302 */
303
304 if(get_number_of_exclusive_open_oplocks()) {
305 DEBUG(0,("respond_to_all_remaining_local_messages: PANIC : we have %d exclusive oplocks.\n",
306 get_number_of_exclusive_open_oplocks() ));
307 return;
308 }
309
310 /*
311 * Keep doing receive_local_message with a 1 ms timeout until
312 * we have no more messages.
313 */
314 while(receive_local_message(buffer, sizeof(buffer), 1)) {
315 /* Deal with oplock break requests from other smbd's. */
316 process_local_message(buffer, sizeof(buffer));
317 }
318
319 return;
320 }
321
322
323 /*
324 These flags determine some of the permissions required to do an operation
325
326 Note that I don't set NEED_WRITE on some write operations because they
327 are used by some brain-dead clients when printing, and I don't want to
328 force write permissions on print services.
329 */
330 #define AS_USER (1<<0)
331 #define NEED_WRITE (1<<1)
332 #define TIME_INIT (1<<2)
333 #define CAN_IPC (1<<3)
334 #define AS_GUEST (1<<5)
335 #define QUEUE_IN_OPLOCK (1<<6)
336
337 /*
338 define a list of possible SMB messages and their corresponding
339 functions. Any message that has a NULL function is unimplemented -
340 please feel free to contribute implementations!
341 */
342 static const struct smb_message_struct
343 {
344 const char *name;
345 int (*fn)(connection_struct *conn, char *, char *, int, int);
346 int flags;
347 }
348 smb_messages[256] = {
349
350 /* 0x00 */ { "SMBmkdir",reply_mkdir,AS_USER | NEED_WRITE},
351 /* 0x01 */ { "SMBrmdir",reply_rmdir,AS_USER | NEED_WRITE},
352 /* 0x02 */ { "SMBopen",reply_open,AS_USER | QUEUE_IN_OPLOCK },
353 /* 0x03 */ { "SMBcreate",reply_mknew,AS_USER},
354 /* 0x04 */ { "SMBclose",reply_close,AS_USER | CAN_IPC },
355 /* 0x05 */ { "SMBflush",reply_flush,AS_USER},
356 /* 0x06 */ { "SMBunlink",reply_unlink,AS_USER | NEED_WRITE | QUEUE_IN_OPLOCK},
357 /* 0x07 */ { "SMBmv",reply_mv,AS_USER | NEED_WRITE | QUEUE_IN_OPLOCK},
358 /* 0x08 */ { "SMBgetatr",reply_getatr,AS_USER},
359 /* 0x09 */ { "SMBsetatr",reply_setatr,AS_USER | NEED_WRITE},
360 /* 0x0a */ { "SMBread",reply_read,AS_USER},
361 /* 0x0b */ { "SMBwrite",reply_write,AS_USER | CAN_IPC },
362 /* 0x0c */ { "SMBlock",reply_lock,AS_USER},
363 /* 0x0d */ { "SMBunlock",reply_unlock,AS_USER},
364 /* 0x0e */ { "SMBctemp",reply_ctemp,AS_USER | QUEUE_IN_OPLOCK },
365 /* 0x0f */ { "SMBmknew",reply_mknew,AS_USER},
366 /* 0x10 */ { "SMBchkpth",reply_chkpth,AS_USER},
367 /* 0x11 */ { "SMBexit",reply_exit,0},
368 /* 0x12 */ { "SMBlseek",reply_lseek,AS_USER},
369 /* 0x13 */ { "SMBlockread",reply_lockread,AS_USER},
370 /* 0x14 */ { "SMBwriteunlock",reply_writeunlock,AS_USER},
371 /* 0x15 */ { NULL, NULL, 0 },
372 /* 0x16 */ { NULL, NULL, 0 },
373 /* 0x17 */ { NULL, NULL, 0 },
374 /* 0x18 */ { NULL, NULL, 0 },
375 /* 0x19 */ { NULL, NULL, 0 },
376 /* 0x1a */ { "SMBreadbraw",reply_readbraw,AS_USER},
377 /* 0x1b */ { "SMBreadBmpx",reply_readbmpx,AS_USER},
378 /* 0x1c */ { "SMBreadBs",NULL,0 },
379 /* 0x1d */ { "SMBwritebraw",reply_writebraw,AS_USER},
380 /* 0x1e */ { "SMBwriteBmpx",reply_writebmpx,AS_USER},
381 /* 0x1f */ { "SMBwriteBs",reply_writebs,AS_USER},
382 /* 0x20 */ { "SMBwritec",NULL,0},
383 /* 0x21 */ { NULL, NULL, 0 },
384 /* 0x22 */ { "SMBsetattrE",reply_setattrE,AS_USER | NEED_WRITE },
385 /* 0x23 */ { "SMBgetattrE",reply_getattrE,AS_USER },
386 /* 0x24 */ { "SMBlockingX",reply_lockingX,AS_USER },
387 /* 0x25 */ { "SMBtrans",reply_trans,AS_USER | CAN_IPC },
388 /* 0x26 */ { "SMBtranss",NULL,AS_USER | CAN_IPC},
389 /* 0x27 */ { "SMBioctl",reply_ioctl,0},
390 /* 0x28 */ { "SMBioctls",NULL,AS_USER},
391 /* 0x29 */ { "SMBcopy",reply_copy,AS_USER | NEED_WRITE | QUEUE_IN_OPLOCK },
392 /* 0x2a */ { "SMBmove",NULL,AS_USER | NEED_WRITE | QUEUE_IN_OPLOCK },
393 /* 0x2b */ { "SMBecho",reply_echo,0},
394 /* 0x2c */ { "SMBwriteclose",reply_writeclose,AS_USER},
395 /* 0x2d */ { "SMBopenX",reply_open_and_X,AS_USER | CAN_IPC | QUEUE_IN_OPLOCK },
396 /* 0x2e */ { "SMBreadX",reply_read_and_X,AS_USER | CAN_IPC },
397 /* 0x2f */ { "SMBwriteX",reply_write_and_X,AS_USER | CAN_IPC },
398 /* 0x30 */ { NULL, NULL, 0 },
399 /* 0x31 */ { NULL, NULL, 0 },
400 /* 0x32 */ { "SMBtrans2", reply_trans2, AS_USER | CAN_IPC },
401 /* 0x33 */ { "SMBtranss2", reply_transs2, AS_USER},
402 /* 0x34 */ { "SMBfindclose", reply_findclose,AS_USER},
403 /* 0x35 */ { "SMBfindnclose", reply_findnclose, AS_USER},
404 /* 0x36 */ { NULL, NULL, 0 },
405 /* 0x37 */ { NULL, NULL, 0 },
406 /* 0x38 */ { NULL, NULL, 0 },
407 /* 0x39 */ { NULL, NULL, 0 },
408 /* 0x3a */ { NULL, NULL, 0 },
409 /* 0x3b */ { NULL, NULL, 0 },
410 /* 0x3c */ { NULL, NULL, 0 },
411 /* 0x3d */ { NULL, NULL, 0 },
412 /* 0x3e */ { NULL, NULL, 0 },
413 /* 0x3f */ { NULL, NULL, 0 },
414 /* 0x40 */ { NULL, NULL, 0 },
415 /* 0x41 */ { NULL, NULL, 0 },
416 /* 0x42 */ { NULL, NULL, 0 },
417 /* 0x43 */ { NULL, NULL, 0 },
418 /* 0x44 */ { NULL, NULL, 0 },
419 /* 0x45 */ { NULL, NULL, 0 },
420 /* 0x46 */ { NULL, NULL, 0 },
421 /* 0x47 */ { NULL, NULL, 0 },
422 /* 0x48 */ { NULL, NULL, 0 },
423 /* 0x49 */ { NULL, NULL, 0 },
424 /* 0x4a */ { NULL, NULL, 0 },
425 /* 0x4b */ { NULL, NULL, 0 },
426 /* 0x4c */ { NULL, NULL, 0 },
427 /* 0x4d */ { NULL, NULL, 0 },
428 /* 0x4e */ { NULL, NULL, 0 },
429 /* 0x4f */ { NULL, NULL, 0 },
430 /* 0x50 */ { NULL, NULL, 0 },
431 /* 0x51 */ { NULL, NULL, 0 },
432 /* 0x52 */ { NULL, NULL, 0 },
433 /* 0x53 */ { NULL, NULL, 0 },
434 /* 0x54 */ { NULL, NULL, 0 },
435 /* 0x55 */ { NULL, NULL, 0 },
436 /* 0x56 */ { NULL, NULL, 0 },
437 /* 0x57 */ { NULL, NULL, 0 },
438 /* 0x58 */ { NULL, NULL, 0 },
439 /* 0x59 */ { NULL, NULL, 0 },
440 /* 0x5a */ { NULL, NULL, 0 },
441 /* 0x5b */ { NULL, NULL, 0 },
442 /* 0x5c */ { NULL, NULL, 0 },
443 /* 0x5d */ { NULL, NULL, 0 },
444 /* 0x5e */ { NULL, NULL, 0 },
445 /* 0x5f */ { NULL, NULL, 0 },
446 /* 0x60 */ { NULL, NULL, 0 },
447 /* 0x61 */ { NULL, NULL, 0 },
448 /* 0x62 */ { NULL, NULL, 0 },
449 /* 0x63 */ { NULL, NULL, 0 },
450 /* 0x64 */ { NULL, NULL, 0 },
451 /* 0x65 */ { NULL, NULL, 0 },
452 /* 0x66 */ { NULL, NULL, 0 },
453 /* 0x67 */ { NULL, NULL, 0 },
454 /* 0x68 */ { NULL, NULL, 0 },
455 /* 0x69 */ { NULL, NULL, 0 },
456 /* 0x6a */ { NULL, NULL, 0 },
457 /* 0x6b */ { NULL, NULL, 0 },
458 /* 0x6c */ { NULL, NULL, 0 },
459 /* 0x6d */ { NULL, NULL, 0 },
460 /* 0x6e */ { NULL, NULL, 0 },
461 /* 0x6f */ { NULL, NULL, 0 },
462 /* 0x70 */ { "SMBtcon",reply_tcon,0},
463 /* 0x71 */ { "SMBtdis",reply_tdis,0},
464 /* 0x72 */ { "SMBnegprot",reply_negprot,0},
465 /* 0x73 */ { "SMBsesssetupX",reply_sesssetup_and_X,0},
466 /* 0x74 */ { "SMBulogoffX", reply_ulogoffX, 0}, /* ulogoff doesn't give a valid TID */
467 /* 0x75 */ { "SMBtconX",reply_tcon_and_X,0},
468 /* 0x76 */ { NULL, NULL, 0 },
469 /* 0x77 */ { NULL, NULL, 0 },
470 /* 0x78 */ { NULL, NULL, 0 },
471 /* 0x79 */ { NULL, NULL, 0 },
472 /* 0x7a */ { NULL, NULL, 0 },
473 /* 0x7b */ { NULL, NULL, 0 },
474 /* 0x7c */ { NULL, NULL, 0 },
475 /* 0x7d */ { NULL, NULL, 0 },
476 /* 0x7e */ { NULL, NULL, 0 },
477 /* 0x7f */ { NULL, NULL, 0 },
478 /* 0x80 */ { "SMBdskattr",reply_dskattr,AS_USER},
479 /* 0x81 */ { "SMBsearch",reply_search,AS_USER},
480 /* 0x82 */ { "SMBffirst",reply_search,AS_USER},
481 /* 0x83 */ { "SMBfunique",reply_search,AS_USER},
482 /* 0x84 */ { "SMBfclose",reply_fclose,AS_USER},
483 /* 0x85 */ { NULL, NULL, 0 },
484 /* 0x86 */ { NULL, NULL, 0 },
485 /* 0x87 */ { NULL, NULL, 0 },
486 /* 0x88 */ { NULL, NULL, 0 },
487 /* 0x89 */ { NULL, NULL, 0 },
488 /* 0x8a */ { NULL, NULL, 0 },
489 /* 0x8b */ { NULL, NULL, 0 },
490 /* 0x8c */ { NULL, NULL, 0 },
491 /* 0x8d */ { NULL, NULL, 0 },
492 /* 0x8e */ { NULL, NULL, 0 },
493 /* 0x8f */ { NULL, NULL, 0 },
494 /* 0x90 */ { NULL, NULL, 0 },
495 /* 0x91 */ { NULL, NULL, 0 },
496 /* 0x92 */ { NULL, NULL, 0 },
497 /* 0x93 */ { NULL, NULL, 0 },
498 /* 0x94 */ { NULL, NULL, 0 },
499 /* 0x95 */ { NULL, NULL, 0 },
500 /* 0x96 */ { NULL, NULL, 0 },
501 /* 0x97 */ { NULL, NULL, 0 },
502 /* 0x98 */ { NULL, NULL, 0 },
503 /* 0x99 */ { NULL, NULL, 0 },
504 /* 0x9a */ { NULL, NULL, 0 },
505 /* 0x9b */ { NULL, NULL, 0 },
506 /* 0x9c */ { NULL, NULL, 0 },
507 /* 0x9d */ { NULL, NULL, 0 },
508 /* 0x9e */ { NULL, NULL, 0 },
509 /* 0x9f */ { NULL, NULL, 0 },
510 /* 0xa0 */ { "SMBnttrans", reply_nttrans, AS_USER | CAN_IPC | QUEUE_IN_OPLOCK},
511 /* 0xa1 */ { "SMBnttranss", reply_nttranss, AS_USER | CAN_IPC },
512 /* 0xa2 */ { "SMBntcreateX", reply_ntcreate_and_X, AS_USER | CAN_IPC | QUEUE_IN_OPLOCK },
513 /* 0xa3 */ { NULL, NULL, 0 },
514 /* 0xa4 */ { "SMBntcancel", reply_ntcancel, 0 },
515 /* 0xa5 */ { NULL, NULL, 0 },
516 /* 0xa6 */ { NULL, NULL, 0 },
517 /* 0xa7 */ { NULL, NULL, 0 },
518 /* 0xa8 */ { NULL, NULL, 0 },
519 /* 0xa9 */ { NULL, NULL, 0 },
520 /* 0xaa */ { NULL, NULL, 0 },
521 /* 0xab */ { NULL, NULL, 0 },
522 /* 0xac */ { NULL, NULL, 0 },
523 /* 0xad */ { NULL, NULL, 0 },
524 /* 0xae */ { NULL, NULL, 0 },
525 /* 0xaf */ { NULL, NULL, 0 },
526 /* 0xb0 */ { NULL, NULL, 0 },
527 /* 0xb1 */ { NULL, NULL, 0 },
528 /* 0xb2 */ { NULL, NULL, 0 },
529 /* 0xb3 */ { NULL, NULL, 0 },
530 /* 0xb4 */ { NULL, NULL, 0 },
531 /* 0xb5 */ { NULL, NULL, 0 },
532 /* 0xb6 */ { NULL, NULL, 0 },
533 /* 0xb7 */ { NULL, NULL, 0 },
534 /* 0xb8 */ { NULL, NULL, 0 },
535 /* 0xb9 */ { NULL, NULL, 0 },
536 /* 0xba */ { NULL, NULL, 0 },
537 /* 0xbb */ { NULL, NULL, 0 },
538 /* 0xbc */ { NULL, NULL, 0 },
539 /* 0xbd */ { NULL, NULL, 0 },
540 /* 0xbe */ { NULL, NULL, 0 },
541 /* 0xbf */ { NULL, NULL, 0 },
542 /* 0xc0 */ { "SMBsplopen",reply_printopen,AS_USER | QUEUE_IN_OPLOCK },
543 /* 0xc1 */ { "SMBsplwr",reply_printwrite,AS_USER},
544 /* 0xc2 */ { "SMBsplclose",reply_printclose,AS_USER},
545 /* 0xc3 */ { "SMBsplretq",reply_printqueue,AS_USER},
546 /* 0xc4 */ { NULL, NULL, 0 },
547 /* 0xc5 */ { NULL, NULL, 0 },
548 /* 0xc6 */ { NULL, NULL, 0 },
549 /* 0xc7 */ { NULL, NULL, 0 },
550 /* 0xc8 */ { NULL, NULL, 0 },
551 /* 0xc9 */ { NULL, NULL, 0 },
552 /* 0xca */ { NULL, NULL, 0 },
553 /* 0xcb */ { NULL, NULL, 0 },
554 /* 0xcc */ { NULL, NULL, 0 },
555 /* 0xcd */ { NULL, NULL, 0 },
556 /* 0xce */ { NULL, NULL, 0 },
557 /* 0xcf */ { NULL, NULL, 0 },
558 /* 0xd0 */ { "SMBsends",reply_sends,AS_GUEST},
559 /* 0xd1 */ { "SMBsendb",NULL,AS_GUEST},
560 /* 0xd2 */ { "SMBfwdname",NULL,AS_GUEST},
561 /* 0xd3 */ { "SMBcancelf",NULL,AS_GUEST},
562 /* 0xd4 */ { "SMBgetmac",NULL,AS_GUEST},
563 /* 0xd5 */ { "SMBsendstrt",reply_sendstrt,AS_GUEST},
564 /* 0xd6 */ { "SMBsendend",reply_sendend,AS_GUEST},
565 /* 0xd7 */ { "SMBsendtxt",reply_sendtxt,AS_GUEST},
566 /* 0xd8 */ { NULL, NULL, 0 },
567 /* 0xd9 */ { NULL, NULL, 0 },
568 /* 0xda */ { NULL, NULL, 0 },
569 /* 0xdb */ { NULL, NULL, 0 },
570 /* 0xdc */ { NULL, NULL, 0 },
571 /* 0xdd */ { NULL, NULL, 0 },
572 /* 0xde */ { NULL, NULL, 0 },
573 /* 0xdf */ { NULL, NULL, 0 },
574 /* 0xe0 */ { NULL, NULL, 0 },
575 /* 0xe1 */ { NULL, NULL, 0 },
576 /* 0xe2 */ { NULL, NULL, 0 },
577 /* 0xe3 */ { NULL, NULL, 0 },
578 /* 0xe4 */ { NULL, NULL, 0 },
579 /* 0xe5 */ { NULL, NULL, 0 },
580 /* 0xe6 */ { NULL, NULL, 0 },
581 /* 0xe7 */ { NULL, NULL, 0 },
582 /* 0xe8 */ { NULL, NULL, 0 },
583 /* 0xe9 */ { NULL, NULL, 0 },
584 /* 0xea */ { NULL, NULL, 0 },
585 /* 0xeb */ { NULL, NULL, 0 },
586 /* 0xec */ { NULL, NULL, 0 },
587 /* 0xed */ { NULL, NULL, 0 },
588 /* 0xee */ { NULL, NULL, 0 },
589 /* 0xef */ { NULL, NULL, 0 },
590 /* 0xf0 */ { NULL, NULL, 0 },
591 /* 0xf1 */ { NULL, NULL, 0 },
592 /* 0xf2 */ { NULL, NULL, 0 },
593 /* 0xf3 */ { NULL, NULL, 0 },
594 /* 0xf4 */ { NULL, NULL, 0 },
595 /* 0xf5 */ { NULL, NULL, 0 },
596 /* 0xf6 */ { NULL, NULL, 0 },
597 /* 0xf7 */ { NULL, NULL, 0 },
598 /* 0xf8 */ { NULL, NULL, 0 },
599 /* 0xf9 */ { NULL, NULL, 0 },
600 /* 0xfa */ { NULL, NULL, 0 },
601 /* 0xfb */ { NULL, NULL, 0 },
602 /* 0xfc */ { NULL, NULL, 0 },
603 /* 0xfd */ { NULL, NULL, 0 },
604 /* 0xfe */ { NULL, NULL, 0 },
605 /* 0xff */ { NULL, NULL, 0 }
606
607 };
608
609 /*******************************************************************
610 Dump a packet to a file.
611 ********************************************************************/
612
613 static void smb_dump(const char *name, int type, char *data, ssize_t len)
614 {
615 int fd, i;
616 pstring fname;
617 if (DEBUGLEVEL < 50) return;
618
619 if (len < 4) len = smb_len(data)+4;
620 for (i=1;i<100;i++) {
621 slprintf(fname,sizeof(fname)-1, "/tmp/%s.%d.%s", name, i,
622 type ? "req" : "resp");
623 fd = open(fname, O_WRONLY|O_CREAT|O_EXCL, 0644);
624 if (fd != -1 || errno != EEXIST) break;
625 }
626 if (fd != -1) {
627 ssize_t ret = write(fd, data, len);
628 if (ret != len)
629 DEBUG(0,("smb_dump: problem: write returned %d\n", (int)ret ));
630 close(fd);
631 DEBUG(0,("created %s len %d\n", fname, len));
632 }
633 }
634
635
636 /****************************************************************************
637 Do a switch on the message type, and return the response size
638 ****************************************************************************/
639
640 static int switch_message(int type,char *inbuf,char *outbuf,int size,int bufsize)
641 {
642 static pid_t pid= (pid_t)-1;
643 int outsize = 0;
644 extern uint16 global_smbpid;
645
646 type &= 0xff;
647
648 if (pid == (pid_t)-1)
649 pid = sys_getpid();
650
651 errno = 0;
652 last_message = type;
653
654 /* Make sure this is an SMB packet. smb_size contains NetBIOS header so subtract 4 from it. */
655 if ((strncmp(smb_base(inbuf),"\377SMB",4) != 0) || (size < (smb_size - 4))) {
656 DEBUG(2,("Non-SMB packet of length %d. Terminating server\n",smb_len(inbuf)));
657 exit_server("Non-SMB packet");
658 return(-1);
659 }
660
661 /* yuck! this is an interim measure before we get rid of our
662 current inbuf/outbuf system */
663 global_smbpid = SVAL(inbuf,smb_pid);
664
665 if (smb_messages[type].fn == NULL) {
666 DEBUG(0,("Unknown message type %d!\n",type));
667 smb_dump("Unknown", 1, inbuf, size);
668 outsize = reply_unknown(inbuf,outbuf);
669 } else {
670 int flags = smb_messages[type].flags;
671 static uint16 last_session_tag = UID_FIELD_INVALID;
672 /* In share mode security we must ignore the vuid. */
673 uint16 session_tag = (lp_security() == SEC_SHARE) ? UID_FIELD_INVALID : SVAL(inbuf,smb_uid);
674 connection_struct *conn = conn_find(SVAL(inbuf,smb_tid));
675
676 DEBUG(3,("switch message %s (pid %d)\n",smb_fn_name(type),(int)pid));
677
678 smb_dump(smb_fn_name(type), 1, inbuf, size);
679 if(global_oplock_break) {
680 if(flags & QUEUE_IN_OPLOCK) {
681 /*
682 * Queue this message as we are the process of an oplock break.
683 */
684
685 DEBUG( 2, ( "switch_message: queueing message due to being in " ) );
686 DEBUGADD( 2, ( "oplock break state.\n" ) );
687
688 push_oplock_pending_smb_message( inbuf, size );
689 return -1;
690 }
691 }
692
693 /* Ensure this value is replaced in the incoming packet. */
694 SSVAL(inbuf,smb_uid,session_tag);
695
696 /*
697 * Ensure the correct username is in current_user_info.
698 * This is a really ugly bugfix for problems with
699 * multiple session_setup_and_X's being done and
700 * allowing %U and %G substitutions to work correctly.
701 * There is a reason this code is done here, don't
702 * move it unless you know what you're doing... :-).
703 * JRA.
704 */
705
706 if (session_tag != last_session_tag) {
707 user_struct *vuser = NULL;
708
709 last_session_tag = session_tag;
710 if(session_tag != UID_FIELD_INVALID)
711 vuser = get_valid_user_struct(session_tag);
712 if(vuser != NULL)
713 current_user_info = vuser->user;
714 }
715
716 /* does this protocol need to be run as root? */
717 if (!(flags & AS_USER))
718 change_to_root_user();
719
720 /* does this protocol need a valid tree connection? */
721 if ((flags & AS_USER) && !conn)
722 return ERROR_DOS(ERRSRV, ERRinvnid);
723
724
725 /* does this protocol need to be run as the connected user? */
726 if ((flags & AS_USER) && !change_to_user(conn,session_tag)) {
727 if (flags & AS_GUEST)
728 flags &= ~AS_USER;
729 else
730 return(ERROR_DOS(ERRSRV,ERRaccess));
731 }
732
733 /* this code is to work around a bug is MS client 3 without
734 introducing a security hole - it needs to be able to do
735 print queue checks as guest if it isn't logged in properly */
736 if (flags & AS_USER)
737 flags &= ~AS_GUEST;
738
739 /* does it need write permission? */
740 if ((flags & NEED_WRITE) && !CAN_WRITE(conn))
741 return(ERROR_DOS(ERRSRV,ERRaccess));
742
743 /* ipc services are limited */
744 if (IS_IPC(conn) && (flags & AS_USER) && !(flags & CAN_IPC))
745 return(ERROR_DOS(ERRSRV,ERRaccess));
746
747 /* load service specific parameters */
748 if (conn && !set_current_service(conn,(flags & AS_USER)?True:False))
749 return(ERROR_DOS(ERRSRV,ERRaccess));
750
751 /* does this protocol need to be run as guest? */
752 if ((flags & AS_GUEST) && (!change_to_guest() ||
753 !check_access(smbd_server_fd(), lp_hostsallow(-1), lp_hostsdeny(-1))))
754 return(ERROR_DOS(ERRSRV,ERRaccess));
755
756 last_inbuf = inbuf;
757
758 outsize = smb_messages[type].fn(conn, inbuf,outbuf,size,bufsize);
759 }
760
761 smb_dump(smb_fn_name(type), 0, outbuf, outsize);
762
763 return(outsize);
764 }
765
766
767 /****************************************************************************
768 Construct a reply to the incoming packet.
769 ****************************************************************************/
770
771 static int construct_reply(char *inbuf,char *outbuf,int size,int bufsize)
772 {
773 int type = CVAL(inbuf,smb_com);
774 int outsize = 0;
775 int msg_type = CVAL(inbuf,0);
776
777 GetTimeOfDay(&smb_last_time);
778
779 chain_size = 0;
780 file_chain_reset();
781 reset_chain_p();
782
783 if (msg_type != 0)
784 return(reply_special(inbuf,outbuf));
785
786 construct_reply_common(inbuf, outbuf);
787
788 outsize = switch_message(type,inbuf,outbuf,size,bufsize);
789
790 outsize += chain_size;
791
792 if(outsize > 4)
793 smb_setlen(outbuf,outsize - 4);
794 return(outsize);
795 }
796
797 /****************************************************************************
798 Keep track of the number of running smbd's. This functionality is used to
799 'hard' limit Samba overhead on resource constrained systems.
800 ****************************************************************************/
801
802 static BOOL process_count_update_successful = False;
803
804 static int32 increment_smbd_process_count(void)
805 {
806 int32 total_smbds;
807
808 if (lp_max_smbd_processes()) {
809 total_smbds = 0;
810 if (tdb_change_int32_atomic(conn_tdb_ctx(), "INFO/total_smbds", &total_smbds, 1) == -1)
811 return 1;
812 process_count_update_successful = True;
813 return total_smbds + 1;
814 }
815 return 1;
816 }
817
818 void decrement_smbd_process_count(void)
819 {
820 int32 total_smbds;
821
822 if (lp_max_smbd_processes() && process_count_update_successful) {
823 total_smbds = 1;
824 tdb_change_int32_atomic(conn_tdb_ctx(), "INFO/total_smbds", &total_smbds, -1);
825 }
826 }
827
828 static BOOL smbd_process_limit(void)
829 {
830 int32 total_smbds;
831
832 if (lp_max_smbd_processes()) {
833
834 /* Always add one to the smbd process count, as exit_server() always
835 * subtracts one.
836 */
837
838 if (!conn_tdb_ctx()) {
839 DEBUG(0,("smbd_process_limit: max smbd processes parameter set with status parameter not \
840 set. Ignoring max smbd restriction.\n"));
841 return False;
842 }
843
844 total_smbds = increment_smbd_process_count();
845 return total_smbds > lp_max_smbd_processes();
846 }
847 else
848 return False;
849 }
850
851 /****************************************************************************
852 process an smb from the client - split out from the smbd_process() code so
853 it can be used by the oplock break code.
854 ****************************************************************************/
855 void process_smb(char *inbuf, char *outbuf)
856 {
857 static int trans_num;
858 int msg_type = CVAL(inbuf,0);
859 int32 len = smb_len(inbuf);
860 int nread = len + 4;
861
862 DO_PROFILE_INC(smb_count);
863
864 if (trans_num == 0) {
865 /* on the first packet, check the global hosts allow/ hosts
866 deny parameters before doing any parsing of the packet
867 passed to us by the client. This prevents attacks on our
868 parsing code from hosts not in the hosts allow list */
869 if (smbd_process_limit() ||
870 !check_access(smbd_server_fd(), lp_hostsallow(-1), lp_hostsdeny(-1))) {
871 /* send a negative session response "not listening on calling
872 name" */
873 static unsigned char buf[5] = {0x83, 0, 0, 1, 0x81};
874 DEBUG( 1, ( "Connection denied from %s\n",
875 client_addr() ) );
876 (void)send_smb(smbd_server_fd(),(char *)buf);
877 exit_server("connection denied");
878 }
879 }
880
881 DEBUG( 6, ( "got message type 0x%x of len 0x%x\n", msg_type, len ) );
882 DEBUG( 3, ( "Transaction %d of length %d\n", trans_num, nread ) );
883
884 if (msg_type == 0)
885 show_msg(inbuf);
886 else if(msg_type == SMBkeepalive)
887 return; /* Keepalive packet. */
888
889 nread = construct_reply(inbuf,outbuf,nread,max_send);
890
891 if(nread > 0)
892 {
893 if (CVAL(outbuf,0) == 0)
894 show_msg(outbuf);
895
896 if (nread != smb_len(outbuf) + 4)
897 {
898 DEBUG(0,("ERROR: Invalid message response size! %d %d\n",
899 nread, smb_len(outbuf)));
900 }
901 else
902 if (!send_smb(smbd_server_fd(),outbuf))
903 exit_server("process_smb: send_smb failed.");
904 }
905 trans_num++;
906 }
907
908
909
910 /****************************************************************************
911 return a string containing the function name of a SMB command
912 ****************************************************************************/
913 const char *smb_fn_name(int type)
914 {
915 const char *unknown_name = "SMBunknown";
916
917 if (smb_messages[type].name == NULL)
918 return(unknown_name);
919
920 return(smb_messages[type].name);
921 }
922
923
924 /****************************************************************************
925 Helper function for contruct_reply.
926 ****************************************************************************/
927
928 void construct_reply_common(char *inbuf,char *outbuf)
929 {
930 memset(outbuf,'\0',smb_size);
931
932 set_message(outbuf,0,0,True);
933 SCVAL(outbuf,smb_com,CVAL(inbuf,smb_com));
934
935 memcpy(outbuf+4,inbuf+4,4);
936 SCVAL(outbuf,smb_rcls,SMB_SUCCESS);
937 SCVAL(outbuf,smb_reh,0);
938 SCVAL(outbuf,smb_flg, FLAG_REPLY | (CVAL(inbuf,smb_flg) & FLAG_CASELESS_PATHNAMES));
939 SSVAL(outbuf,smb_flg2,
940 (SVAL(inbuf,smb_flg2) & FLAGS2_UNICODE_STRINGS) |
941 FLAGS2_LONG_PATH_COMPONENTS |
942 FLAGS2_32_BIT_ERROR_CODES | FLAGS2_EXTENDED_SECURITY);
943
944 SSVAL(outbuf,smb_err,SMB_SUCCESS);
945 SSVAL(outbuf,smb_tid,SVAL(inbuf,smb_tid));
946 SSVAL(outbuf,smb_pid,SVAL(inbuf,smb_pid));
947 SSVAL(outbuf,smb_uid,SVAL(inbuf,smb_uid));
948 SSVAL(outbuf,smb_mid,SVAL(inbuf,smb_mid));
949 }
950
951 /****************************************************************************
952 construct a chained reply and add it to the already made reply
953 **************************************************************************/
954 int chain_reply(char *inbuf,char *outbuf,int size,int bufsize)
955 {
956 static char *orig_inbuf;
957 static char *orig_outbuf;
958 int smb_com1, smb_com2 = CVAL(inbuf,smb_vwv0);
959 unsigned smb_off2 = SVAL(inbuf,smb_vwv1);
960 char *inbuf2, *outbuf2;
961 int outsize2;
962 char inbuf_saved[smb_wct];
963 char outbuf_saved[smb_wct];
964 int wct = CVAL(outbuf,smb_wct);
965 int outsize = smb_size + 2*wct + SVAL(outbuf,smb_vwv0+2*wct);
966
967 /* maybe its not chained */
968 if (smb_com2 == 0xFF) {
969 SCVAL(outbuf,smb_vwv0,0xFF);
970 return outsize;
971 }
972
973 if (chain_size == 0) {
974 /* this is the first part of the chain */
975 orig_inbuf = inbuf;
976 orig_outbuf = outbuf;
977 }
978
979 /*
980 * The original Win95 redirector dies on a reply to
981 * a lockingX and read chain unless the chain reply is
982 * 4 byte aligned. JRA.
983 */
984
985 outsize = (outsize + 3) & ~3;
986
987 /* we need to tell the client where the next part of the reply will be */
988 SSVAL(outbuf,smb_vwv1,smb_offset(outbuf+outsize,outbuf));
989 SCVAL(outbuf,smb_vwv0,smb_com2);
990
991 /* remember how much the caller added to the chain, only counting stuff
992 after the parameter words */
993 chain_size += outsize - smb_wct;
994
995 /* work out pointers into the original packets. The
996 headers on these need to be filled in */
997 inbuf2 = orig_inbuf + smb_off2 + 4 - smb_wct;
998 outbuf2 = orig_outbuf + SVAL(outbuf,smb_vwv1) + 4 - smb_wct;
999
1000 /* remember the original command type */
1001 smb_com1 = CVAL(orig_inbuf,smb_com);
1002
1003 /* save the data which will be overwritten by the new headers */
1004 memcpy(inbuf_saved,inbuf2,smb_wct);
1005 memcpy(outbuf_saved,outbuf2,smb_wct);
1006
1007 /* give the new packet the same header as the last part of the SMB */
1008 memmove(inbuf2,inbuf,smb_wct);
1009
1010 /* create the in buffer */
1011 SCVAL(inbuf2,smb_com,smb_com2);
1012
1013 /* create the out buffer */
1014 construct_reply_common(inbuf2, outbuf2);
1015
1016 DEBUG(3,("Chained message\n"));
1017 show_msg(inbuf2);
1018
1019 /* process the request */
1020 outsize2 = switch_message(smb_com2,inbuf2,outbuf2,size-chain_size,
1021 bufsize-chain_size);
1022
1023 /* copy the new reply and request headers over the old ones, but
1024 preserve the smb_com field */
1025 memmove(orig_outbuf,outbuf2,smb_wct);
1026 SCVAL(orig_outbuf,smb_com,smb_com1);
1027
1028 /* restore the saved data, being careful not to overwrite any
1029 data from the reply header */
1030 memcpy(inbuf2,inbuf_saved,smb_wct);
1031 {
1032 int ofs = smb_wct - PTR_DIFF(outbuf2,orig_outbuf);
1033 if (ofs < 0) ofs = 0;
1034 memmove(outbuf2+ofs,outbuf_saved+ofs,smb_wct-ofs);
1035 }
1036
1037 return outsize2;
1038 }
1039
1040 /****************************************************************************
1041 Setup the needed select timeout.
1042 ****************************************************************************/
1043
1044 static int setup_select_timeout(void)
1045 {
1046 int select_timeout;
1047 int t;
1048
1049 select_timeout = blocking_locks_timeout(SMBD_SELECT_TIMEOUT);
1050 select_timeout *= 1000;
1051
1052 t = change_notify_timeout();
1053 if (t != -1)
1054 select_timeout = MIN(select_timeout, t*1000);
1055
1056 if (print_notify_messages_pending())
1057 select_timeout = MIN(select_timeout, 1000);
1058
1059 return select_timeout;
1060 }
1061
1062 /****************************************************************************
1063 Check if services need reloading.
1064 ****************************************************************************/
1065
1066 void check_reload(int t)
1067 {
1068 static time_t last_smb_conf_reload_time = 0;
1069
1070 if(last_smb_conf_reload_time == 0)
1071 last_smb_conf_reload_time = t;
1072
1073 if (reload_after_sighup || (t >= last_smb_conf_reload_time+SMBD_RELOAD_CHECK))
1074 {
1075 reload_services(True);
1076 reload_after_sighup = False;
1077 last_smb_conf_reload_time = t;
1078 }
1079 }
1080
1081 /****************************************************************************
1082 Process any timeout housekeeping. Return False if the caller should exit.
1083 ****************************************************************************/
1084
1085 static BOOL timeout_processing(int deadtime, int *select_timeout, time_t *last_timeout_processing_time)
1086 {
1087 static time_t last_keepalive_sent_time = 0;
1088 static time_t last_idle_closed_check = 0;
1089 time_t t;
1090 BOOL allidle = True;
1091 extern int keepalive;
1092
1093 if (smb_read_error == READ_EOF)
1094 {
1095 DEBUG(3,("end of file from client\n"));
1096 return False;
1097 }
1098
1099 if (smb_read_error == READ_ERROR)
1100 {
1101 DEBUG(3,("receive_smb error (%s) exiting\n",
1102 strerror(errno)));
1103 return False;
1104 }
1105
1106 *last_timeout_processing_time = t = time(NULL);
1107
1108 if(last_keepalive_sent_time == 0)
1109 last_keepalive_sent_time = t;
1110
1111 if(last_idle_closed_check == 0)
1112 last_idle_closed_check = t;
1113
1114 /* become root again if waiting */
1115 change_to_root_user();
1116
1117 /* check if we need to reload services */
1118 check_reload(t);
1119
1120 /* automatic timeout if all connections are closed */
1121 if (conn_num_open()==0 && (t - last_idle_closed_check) >= IDLE_CLOSED_TIMEOUT)
1122 {
1123 DEBUG( 2, ( "Closing idle connection\n" ) );
1124 return False;
1125 }
1126 else
1127 last_idle_closed_check = t;
1128
1129 if (keepalive && (t - last_keepalive_sent_time)>keepalive)
1130 {
1131 extern struct auth_context *negprot_global_auth_context;
1132 if (!send_keepalive(smbd_server_fd())) {
1133 DEBUG( 2, ( "Keepalive failed - exiting.\n" ) );
1134 return False;
1135 }
1136
1137 /* send a keepalive for a password server or the like.
1138 This is attached to the auth_info created in the
1139 negprot */
1140 if (negprot_global_auth_context
1141 && negprot_global_auth_context->challenge_set_method
1142 && negprot_global_auth_context->challenge_set_method->send_keepalive) {
1143 negprot_global_auth_context->challenge_set_method->send_keepalive
1144 (&negprot_global_auth_context->challenge_set_method->private_data);
1145 }
1146
1147 last_keepalive_sent_time = t;
1148 }
1149
1150 /* check for connection timeouts */
1151 allidle = conn_idle_all(t, deadtime);
1152
1153 if (allidle && conn_num_open()>0) {
1154 DEBUG(2,("Closing idle connection 2.\n"));
1155 return False;
1156 }
1157
1158 if(global_machine_password_needs_changing &&
1159 /* for ADS we need to do a regular ADS password change, not a domain
1160 password change */
1161 lp_security() == SEC_DOMAIN)
1162 {
1163 unsigned char trust_passwd_hash[16];
1164 time_t lct;
1165
1166 /*
1167 * We're in domain level security, and the code that
1168 * read the machine password flagged that the machine
1169 * password needs changing.
1170 */
1171
1172 /*
1173 * First, open the machine password file with an exclusive lock.
1174 */
1175
1176 if (secrets_lock_trust_account_password(lp_workgroup(), True) == False) {
1177 DEBUG(0,("process: unable to lock the machine account password for \
1178 machine %s in domain %s.\n", global_myname(), lp_workgroup() ));
1179 return True;
1180 }
1181
1182 if(!secrets_fetch_trust_account_password(lp_workgroup(), trust_passwd_hash, &lct)) {
1183 DEBUG(0,("process: unable to read the machine account password for \
1184 machine %s in domain %s.\n", global_myname(), lp_workgroup() ));
1185 secrets_lock_trust_account_password(lp_workgroup(), False);
1186 return True;
1187 }
1188
1189 /*
1190 * Make sure someone else hasn't already done this.
1191 */
1192
1193 if(t < lct + lp_machine_password_timeout()) {
1194 global_machine_password_needs_changing = False;
1195 secrets_lock_trust_account_password(lp_workgroup(), False);
1196 return True;
1197 }
1198
1199 /* always just contact the PDC here */
1200
1201 change_trust_account_password( lp_workgroup(), NULL);
1202 global_machine_password_needs_changing = False;
1203 secrets_lock_trust_account_password(lp_workgroup(), False);
1204 }
1205
1206 /*
1207 * Check to see if we have any blocking locks
1208 * outstanding on the queue.
1209 */
1210 process_blocking_lock_queue(t);
1211
1212 /* update printer queue caches if necessary */
1213
1214 update_monitored_printq_cache();
1215
1216 /*
1217 * Check to see if we have any change notifies
1218 * outstanding on the queue.
1219 */
1220 process_pending_change_notify_queue(t);
1221
1222 /*
1223 * Now we are root, check if the log files need pruning.
1224 * Force a log file check.
1225 */
1226 force_check_log_size();
1227 check_log_size();
1228
1229 /* Send any queued printer notify message to interested smbd's. */
1230
1231 print_notify_send_messages(0);
1232
1233 /*
1234 * Modify the select timeout depending upon
1235 * what we have remaining in our queues.
1236 */
1237
1238 *select_timeout = setup_select_timeout();
1239
1240 return True;
1241 }
1242
1243 /****************************************************************************
1244 process commands from the client
1245 ****************************************************************************/
1246
1247 void smbd_process(void)
1248 {
1249 extern int smb_echo_count;
1250 time_t last_timeout_processing_time = time(NULL);
1251 unsigned int num_smbs = 0;
1252 const size_t total_buffer_size = BUFFER_SIZE + LARGE_WRITEX_HDR_SIZE + SAFETY_MARGIN;
1253
1254 InBuffer = (char *)malloc(total_buffer_size);
1255 OutBuffer = (char *)malloc(total_buffer_size);
1256 if ((InBuffer == NULL) || (OutBuffer == NULL))
1257 return;
1258
1259 clobber_region(SAFE_STRING_FUNCTION_NAME, SAFE_STRING_LINE, InBuffer, total_buffer_size);
1260 clobber_region(SAFE_STRING_FUNCTION_NAME, SAFE_STRING_LINE, OutBuffer, total_buffer_size);
1261
1262 max_recv = MIN(lp_maxxmit(),BUFFER_SIZE);
1263
1264 while (True) {
1265 int deadtime = lp_deadtime()*60;
1266 int select_timeout = setup_select_timeout();
1267 int num_echos;
1268
1269 if (deadtime <= 0)
1270 deadtime = DEFAULT_SMBD_TIMEOUT;
1271
1272 errno = 0;
1273
1274 /* free up temporary memory */
1275 lp_talloc_free();
1276 main_loop_talloc_free();
1277
1278 /* Did someone ask for immediate checks on things like blocking locks ? */
1279 if (select_timeout == 0) {
1280 if(!timeout_processing( deadtime, &select_timeout, &last_timeout_processing_time))
1281 return;
1282 num_smbs = 0; /* Reset smb counter. */
1283 }
1284
1285 clobber_region(SAFE_STRING_FUNCTION_NAME, SAFE_STRING_LINE, InBuffer, total_buffer_size);
1286
1287 while (!receive_message_or_smb(InBuffer,BUFFER_SIZE+LARGE_WRITEX_HDR_SIZE,select_timeout)) {
1288 if(!timeout_processing( deadtime, &select_timeout, &last_timeout_processing_time))
1289 return;
1290 num_smbs = 0; /* Reset smb counter. */
1291 }
1292
1293 /*
1294 * Ensure we do timeout processing if the SMB we just got was
1295 * only an echo request. This allows us to set the select
1296 * timeout in 'receive_message_or_smb()' to any value we like
1297 * without worrying that the client will send echo requests
1298 * faster than the select timeout, thus starving out the
1299 * essential processing (change notify, blocking locks) that
1300 * the timeout code does. JRA.
1301 */
1302 num_echos = smb_echo_count;
1303
1304 clobber_region(SAFE_STRING_FUNCTION_NAME, SAFE_STRING_LINE, OutBuffer, total_buffer_size);
1305
1306 process_smb(InBuffer, OutBuffer);
1307
1308 if (smb_echo_count != num_echos) {
1309 if(!timeout_processing( deadtime, &select_timeout, &last_timeout_processing_time))
1310 return;
1311 num_smbs = 0; /* Reset smb counter. */
1312 }
1313
1314 num_smbs++;
1315
1316 /*
1317 * If we are getting smb requests in a constant stream
1318 * with no echos, make sure we attempt timeout processing
1319 * every select_timeout milliseconds - but only check for this
1320 * every 200 smb requests.
1321 */
1322
1323 if ((num_smbs % 200) == 0) {
1324 time_t new_check_time = time(NULL);
1325 if(new_check_time - last_timeout_processing_time >= (select_timeout/1000)) {
1326 if(!timeout_processing( deadtime, &select_timeout, &last_timeout_processing_time))
1327 return;
1328 num_smbs = 0; /* Reset smb counter. */
1329 last_timeout_processing_time = new_check_time; /* Reset time. */
1330 }
1331 }
1332
1333 /* The timeout_processing function isn't run nearly
1334 often enough to implement 'max log size' without
1335 overrunning the size of the file by many megabytes.
1336 This is especially true if we are running at debug
1337 level 10. Checking every 50 SMBs is a nice
1338 tradeoff of performance vs log file size overrun. */
1339
1340 if ((num_smbs % 50) == 0 && need_to_check_log_size()) {
1341 change_to_root_user();
1342 check_log_size();
1343 }
1344 }
1345 }
Anubhav's Work In Progress branches