2 Unix SMB/CIFS implementation.
3 Directory handling routines
4 Copyright (C) Andrew Tridgell 1992-1998
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 This module implements directory related functions for Samba.
26 extern struct current_user current_user;
28 /* "Special" directory offsets. */
29 #define END_OF_DIRECTORY_OFFSET ((long)-1)
30 #define START_OF_DIRECTORY_OFFSET ((long)0)
31 #define DOT_DOT_DIRECTORY_OFFSET ((long)0x80000000)
33 /* Make directory handle internals available. */
35 #define NAME_CACHE_SIZE 100
37 struct name_cache_entry {
43 connection_struct *conn;
47 struct name_cache_entry *name_cache;
48 unsigned int name_cache_index;
49 unsigned int file_number;
53 struct dptr_struct *next, *prev;
56 struct connection_struct *conn;
57 struct smb_Dir *dir_hnd;
62 BOOL has_wild; /* Set to true if the wcard entry has MS wildcard characters in it. */
63 BOOL did_stat; /* Optimisation for non-wcard searches. */
66 static struct bitmap *dptr_bmap;
67 static struct dptr_struct *dirptrs;
68 static int dirhandles_open = 0;
70 #define INVALID_DPTR_KEY (-3)
72 /****************************************************************************
74 ****************************************************************************/
76 void make_dir_struct(char *buf, const char *mask, const char *fname,SMB_OFF_T size,uint32 mode,time_t date, BOOL uc)
83 if ((mode & aDIR) != 0)
87 if ((p = strchr_m(mask2,'.')) != NULL) {
89 push_ascii(buf+1,mask2,8, 0);
90 push_ascii(buf+9,p+1,3, 0);
93 push_ascii(buf+1,mask2,11, 0);
95 memset(buf+21,'\0',DIR_STRUCT_SIZE-21);
97 srv_put_dos_date(buf,22,date);
98 SSVAL(buf,26,size & 0xFFFF);
99 SSVAL(buf,28,(size >> 16)&0xFFFF);
100 /* We only uppercase if FLAGS2_LONG_PATH_COMPONENTS is zero in the input buf.
101 Strange, but verified on W2K3. Needed for OS/2. JRA. */
102 push_ascii(buf+30,fname,12, uc ? STR_UPPER : 0);
103 DEBUG(8,("put name [%s] from [%s] into dir struct\n",buf+30, fname));
106 /****************************************************************************
107 Initialise the dir bitmap.
108 ****************************************************************************/
110 void init_dptrs(void)
112 static BOOL dptrs_init=False;
117 dptr_bmap = bitmap_allocate(MAX_DIRECTORY_HANDLES);
120 exit_server("out of memory in init_dptrs");
125 /****************************************************************************
126 Idle a dptr - the directory is closed but the control info is kept.
127 ****************************************************************************/
129 static void dptr_idle(struct dptr_struct *dptr)
132 DEBUG(4,("Idling dptr dnum %d\n",dptr->dnum));
133 CloseDir(dptr->dir_hnd);
134 dptr->dir_hnd = NULL;
138 /****************************************************************************
139 Idle the oldest dptr.
140 ****************************************************************************/
142 static void dptr_idleoldest(void)
144 struct dptr_struct *dptr;
147 * Go to the end of the list.
149 for(dptr = dirptrs; dptr && dptr->next; dptr = dptr->next)
153 DEBUG(0,("No dptrs available to idle ?\n"));
158 * Idle the oldest pointer.
161 for(; dptr; dptr = dptr->prev) {
169 /****************************************************************************
170 Get the struct dptr_struct for a dir index.
171 ****************************************************************************/
173 static struct dptr_struct *dptr_get(int key, BOOL forclose)
175 struct dptr_struct *dptr;
177 for(dptr = dirptrs; dptr; dptr = dptr->next) {
178 if(dptr->dnum == key) {
179 if (!forclose && !dptr->dir_hnd) {
180 if (dirhandles_open >= MAX_OPEN_DIRECTORIES)
182 DEBUG(4,("dptr_get: Reopening dptr key %d\n",key));
183 if (!(dptr->dir_hnd = OpenDir(dptr->conn, dptr->path, dptr->wcard, dptr->attr))) {
184 DEBUG(4,("dptr_get: Failed to open %s (%s)\n",dptr->path,
189 DLIST_PROMOTE(dirptrs,dptr);
196 /****************************************************************************
197 Get the dir path for a dir index.
198 ****************************************************************************/
200 char *dptr_path(int key)
202 struct dptr_struct *dptr = dptr_get(key, False);
208 /****************************************************************************
209 Get the dir wcard for a dir index.
210 ****************************************************************************/
212 char *dptr_wcard(int key)
214 struct dptr_struct *dptr = dptr_get(key, False);
220 /****************************************************************************
221 Get the dir attrib for a dir index.
222 ****************************************************************************/
224 uint16 dptr_attr(int key)
226 struct dptr_struct *dptr = dptr_get(key, False);
232 /****************************************************************************
233 Close a dptr (internal func).
234 ****************************************************************************/
236 static void dptr_close_internal(struct dptr_struct *dptr)
238 DEBUG(4,("closing dptr key %d\n",dptr->dnum));
240 DLIST_REMOVE(dirptrs, dptr);
243 * Free the dnum in the bitmap. Remember the dnum value is always
244 * biased by one with respect to the bitmap.
247 if(bitmap_query( dptr_bmap, dptr->dnum - 1) != True) {
248 DEBUG(0,("dptr_close_internal : Error - closing dnum = %d and bitmap not set !\n",
252 bitmap_clear(dptr_bmap, dptr->dnum - 1);
255 CloseDir(dptr->dir_hnd);
258 /* Lanman 2 specific code */
259 SAFE_FREE(dptr->wcard);
260 string_set(&dptr->path,"");
264 /****************************************************************************
265 Close a dptr given a key.
266 ****************************************************************************/
268 void dptr_close(int *key)
270 struct dptr_struct *dptr;
272 if(*key == INVALID_DPTR_KEY)
275 /* OS/2 seems to use -1 to indicate "close all directories" */
277 struct dptr_struct *next;
278 for(dptr = dirptrs; dptr; dptr = next) {
280 dptr_close_internal(dptr);
282 *key = INVALID_DPTR_KEY;
286 dptr = dptr_get(*key, True);
289 DEBUG(0,("Invalid key %d given to dptr_close\n", *key));
293 dptr_close_internal(dptr);
295 *key = INVALID_DPTR_KEY;
298 /****************************************************************************
299 Close all dptrs for a cnum.
300 ****************************************************************************/
302 void dptr_closecnum(connection_struct *conn)
304 struct dptr_struct *dptr, *next;
305 for(dptr = dirptrs; dptr; dptr = next) {
307 if (dptr->conn == conn)
308 dptr_close_internal(dptr);
312 /****************************************************************************
313 Idle all dptrs for a cnum.
314 ****************************************************************************/
316 void dptr_idlecnum(connection_struct *conn)
318 struct dptr_struct *dptr;
319 for(dptr = dirptrs; dptr; dptr = dptr->next) {
320 if (dptr->conn == conn && dptr->dir_hnd)
325 /****************************************************************************
326 Close a dptr that matches a given path, only if it matches the spid also.
327 ****************************************************************************/
329 void dptr_closepath(char *path,uint16 spid)
331 struct dptr_struct *dptr, *next;
332 for(dptr = dirptrs; dptr; dptr = next) {
334 if (spid == dptr->spid && strequal(dptr->path,path))
335 dptr_close_internal(dptr);
339 /****************************************************************************
340 Try and close the oldest handle not marked for
341 expect close in the hope that the client has
342 finished with that one.
343 ****************************************************************************/
345 static void dptr_close_oldest(BOOL old)
347 struct dptr_struct *dptr;
350 * Go to the end of the list.
352 for(dptr = dirptrs; dptr && dptr->next; dptr = dptr->next)
356 DEBUG(0,("No old dptrs available to close oldest ?\n"));
361 * If 'old' is true, close the oldest oldhandle dnum (ie. 1 < dnum < 256) that
362 * does not have expect_close set. If 'old' is false, close
363 * one of the new dnum handles.
366 for(; dptr; dptr = dptr->prev) {
367 if ((old && (dptr->dnum < 256) && !dptr->expect_close) ||
368 (!old && (dptr->dnum > 255))) {
369 dptr_close_internal(dptr);
375 /****************************************************************************
376 Create a new dir ptr. If the flag old_handle is true then we must allocate
377 from the bitmap range 0 - 255 as old SMBsearch directory handles are only
378 one byte long. If old_handle is false we allocate from the range
379 256 - MAX_DIRECTORY_HANDLES. We bias the number we return by 1 to ensure
380 a directory handle is never zero.
381 wcard must not be zero.
382 ****************************************************************************/
384 NTSTATUS dptr_create(connection_struct *conn, pstring path, BOOL old_handle, BOOL expect_close,uint16 spid,
385 const char *wcard, BOOL wcard_has_wild, uint32 attr, struct dptr_struct **dptr_ret)
387 struct dptr_struct *dptr = NULL;
388 struct smb_Dir *dir_hnd;
392 DEBUG(5,("dptr_create dir=%s\n", path));
395 return NT_STATUS_INVALID_PARAMETER;
398 status = check_name(conn,path);
399 if (!NT_STATUS_IS_OK(status)) {
403 /* use a const pointer from here on */
408 dir_hnd = OpenDir(conn, dir2, wcard, attr);
410 return map_nt_error_from_unix(errno);
413 string_set(&conn->dirpath,dir2);
415 if (dirhandles_open >= MAX_OPEN_DIRECTORIES) {
419 dptr = SMB_MALLOC_P(struct dptr_struct);
421 DEBUG(0,("malloc fail in dptr_create.\n"));
423 return NT_STATUS_NO_MEMORY;
431 * This is an old-style SMBsearch request. Ensure the
432 * value we return will fit in the range 1-255.
435 dptr->dnum = bitmap_find(dptr_bmap, 0);
437 if(dptr->dnum == -1 || dptr->dnum > 254) {
440 * Try and close the oldest handle not marked for
441 * expect close in the hope that the client has
442 * finished with that one.
445 dptr_close_oldest(True);
447 /* Now try again... */
448 dptr->dnum = bitmap_find(dptr_bmap, 0);
449 if(dptr->dnum == -1 || dptr->dnum > 254) {
450 DEBUG(0,("dptr_create: returned %d: Error - all old dirptrs in use ?\n", dptr->dnum));
453 return NT_STATUS_TOO_MANY_OPENED_FILES;
459 * This is a new-style trans2 request. Allocate from
460 * a range that will return 256 - MAX_DIRECTORY_HANDLES.
463 dptr->dnum = bitmap_find(dptr_bmap, 255);
465 if(dptr->dnum == -1 || dptr->dnum < 255) {
468 * Try and close the oldest handle close in the hope that
469 * the client has finished with that one. This will only
470 * happen in the case of the Win98 client bug where it leaks
474 dptr_close_oldest(False);
476 /* Now try again... */
477 dptr->dnum = bitmap_find(dptr_bmap, 255);
479 if(dptr->dnum == -1 || dptr->dnum < 255) {
480 DEBUG(0,("dptr_create: returned %d: Error - all new dirptrs in use ?\n", dptr->dnum));
483 return NT_STATUS_TOO_MANY_OPENED_FILES;
488 bitmap_set(dptr_bmap, dptr->dnum);
490 dptr->dnum += 1; /* Always bias the dnum by one - no zero dnums allowed. */
492 string_set(&dptr->path,dir2);
494 dptr->dir_hnd = dir_hnd;
496 dptr->expect_close = expect_close;
497 dptr->wcard = SMB_STRDUP(wcard);
499 bitmap_clear(dptr_bmap, dptr->dnum - 1);
502 return NT_STATUS_NO_MEMORY;
504 if (lp_posix_pathnames() || (wcard[0] == '.' && wcard[1] == 0)) {
505 dptr->has_wild = True;
507 dptr->has_wild = wcard_has_wild;
512 DLIST_ADD(dirptrs, dptr);
514 DEBUG(3,("creating new dirptr %d for path %s, expect_close = %d\n",
515 dptr->dnum,path,expect_close));
523 /****************************************************************************
524 Wrapper functions to access the lower level directory handles.
525 ****************************************************************************/
527 int dptr_CloseDir(struct dptr_struct *dptr)
529 DLIST_REMOVE(dirptrs, dptr);
530 return CloseDir(dptr->dir_hnd);
533 void dptr_SeekDir(struct dptr_struct *dptr, long offset)
535 SeekDir(dptr->dir_hnd, offset);
538 long dptr_TellDir(struct dptr_struct *dptr)
540 return TellDir(dptr->dir_hnd);
543 BOOL dptr_has_wild(struct dptr_struct *dptr)
545 return dptr->has_wild;
548 int dptr_dnum(struct dptr_struct *dptr)
553 /****************************************************************************
554 Return the next visible file name, skipping veto'd and invisible files.
555 ****************************************************************************/
557 static const char *dptr_normal_ReadDirName(struct dptr_struct *dptr, long *poffset, SMB_STRUCT_STAT *pst)
559 /* Normal search for the next file. */
561 while ((name = ReadDirName(dptr->dir_hnd, poffset)) != NULL) {
562 if (is_visible_file(dptr->conn, dptr->path, name, pst, True)) {
569 /****************************************************************************
570 Return the next visible file name, skipping veto'd and invisible files.
571 ****************************************************************************/
573 const char *dptr_ReadDirName(struct dptr_struct *dptr, long *poffset, SMB_STRUCT_STAT *pst)
575 SET_STAT_INVALID(*pst);
577 if (dptr->has_wild) {
578 return dptr_normal_ReadDirName(dptr, poffset, pst);
581 /* If poffset is -1 then we know we returned this name before and we have
582 no wildcards. We're at the end of the directory. */
583 if (*poffset == END_OF_DIRECTORY_OFFSET) {
587 if (!dptr->did_stat) {
590 /* We know the stored wcard contains no wildcard characters. See if we can match
591 with a stat call. If we can't, then set did_stat to true to
592 ensure we only do this once and keep searching. */
594 dptr->did_stat = True;
596 /* First check if it should be visible. */
597 if (!is_visible_file(dptr->conn, dptr->path, dptr->wcard, pst, True)) {
598 /* This only returns False if the file was found, but
599 is explicitly not visible. Set us to end of directory,
600 but return NULL as we know we can't ever find it. */
601 dptr->dir_hnd->offset = *poffset = END_OF_DIRECTORY_OFFSET;
605 if (VALID_STAT(*pst)) {
606 /* We need to set the underlying dir_hnd offset to -1 also as
607 this function is usually called with the output from TellDir. */
608 dptr->dir_hnd->offset = *poffset = END_OF_DIRECTORY_OFFSET;
612 pstrcpy(pathreal,dptr->path);
613 pstrcat(pathreal,"/");
614 pstrcat(pathreal,dptr->wcard);
616 if (SMB_VFS_STAT(dptr->conn,pathreal,pst) == 0) {
617 /* We need to set the underlying dir_hnd offset to -1 also as
618 this function is usually called with the output from TellDir. */
619 dptr->dir_hnd->offset = *poffset = END_OF_DIRECTORY_OFFSET;
622 /* If we get any other error than ENOENT or ENOTDIR
623 then the file exists we just can't stat it. */
624 if (errno != ENOENT && errno != ENOTDIR) {
625 /* We need to set the underlying dir_hdn offset to -1 also as
626 this function is usually called with the output from TellDir. */
627 dptr->dir_hnd->offset = *poffset = END_OF_DIRECTORY_OFFSET;
632 /* In case sensitive mode we don't search - we know if it doesn't exist
633 with a stat we will fail. */
635 if (dptr->conn->case_sensitive) {
636 /* We need to set the underlying dir_hnd offset to -1 also as
637 this function is usually called with the output from TellDir. */
638 dptr->dir_hnd->offset = *poffset = END_OF_DIRECTORY_OFFSET;
642 return dptr_normal_ReadDirName(dptr, poffset, pst);
645 /****************************************************************************
646 Search for a file by name, skipping veto'ed and not visible files.
647 ****************************************************************************/
649 BOOL dptr_SearchDir(struct dptr_struct *dptr, const char *name, long *poffset, SMB_STRUCT_STAT *pst)
651 SET_STAT_INVALID(*pst);
653 if (!dptr->has_wild && (dptr->dir_hnd->offset == END_OF_DIRECTORY_OFFSET)) {
654 /* This is a singleton directory and we're already at the end. */
655 *poffset = END_OF_DIRECTORY_OFFSET;
659 return SearchDir(dptr->dir_hnd, name, poffset);
662 /****************************************************************************
663 Add the name we're returning into the underlying cache.
664 ****************************************************************************/
666 void dptr_DirCacheAdd(struct dptr_struct *dptr, const char *name, long offset)
668 DirCacheAdd(dptr->dir_hnd, name, offset);
671 /****************************************************************************
672 Fill the 5 byte server reserved dptr field.
673 ****************************************************************************/
675 BOOL dptr_fill(char *buf1,unsigned int key)
677 unsigned char *buf = (unsigned char *)buf1;
678 struct dptr_struct *dptr = dptr_get(key, False);
681 DEBUG(1,("filling null dirptr %d\n",key));
684 offset = (uint32)TellDir(dptr->dir_hnd);
685 DEBUG(6,("fill on key %u dirptr 0x%lx now at %d\n",key,
686 (long)dptr->dir_hnd,(int)offset));
692 /****************************************************************************
693 Fetch the dir ptr and seek it given the 5 byte server field.
694 ****************************************************************************/
696 struct dptr_struct *dptr_fetch(char *buf,int *num)
698 unsigned int key = *(unsigned char *)buf;
699 struct dptr_struct *dptr = dptr_get(key, False);
704 DEBUG(3,("fetched null dirptr %d\n",key));
708 offset = IVAL(buf,1);
709 if (offset == (uint32)-1) {
710 seekoff = END_OF_DIRECTORY_OFFSET;
712 seekoff = (long)offset;
714 SeekDir(dptr->dir_hnd,seekoff);
715 DEBUG(3,("fetching dirptr %d for path %s at offset %d\n",
716 key,dptr_path(key),(int)seekoff));
720 /****************************************************************************
722 ****************************************************************************/
724 struct dptr_struct *dptr_fetch_lanman2(int dptr_num)
726 struct dptr_struct *dptr = dptr_get(dptr_num, False);
729 DEBUG(3,("fetched null dirptr %d\n",dptr_num));
732 DEBUG(3,("fetching dirptr %d for path %s\n",dptr_num,dptr_path(dptr_num)));
736 /****************************************************************************
737 Check that a file matches a particular file type.
738 ****************************************************************************/
740 BOOL dir_check_ftype(connection_struct *conn, uint32 mode, uint32 dirtype)
744 /* Check the "may have" search bits. */
745 if (((mode & ~dirtype) & (aHIDDEN | aSYSTEM | aDIR)) != 0)
748 /* Check the "must have" bits, which are the may have bits shifted eight */
749 /* If must have bit is set, the file/dir can not be returned in search unless the matching
750 file attribute is set */
751 mask = ((dirtype >> 8) & (aDIR|aARCH|aRONLY|aHIDDEN|aSYSTEM)); /* & 0x37 */
753 if((mask & (mode & (aDIR|aARCH|aRONLY|aHIDDEN|aSYSTEM))) == mask) /* check if matching attribute present */
762 static BOOL mangle_mask_match(connection_struct *conn, fstring filename, char *mask)
764 mangle_map(filename,True,False,conn->params);
765 return mask_match_search(filename,mask,False);
768 /****************************************************************************
769 Get an 8.3 directory entry.
770 ****************************************************************************/
772 BOOL get_dir_entry(connection_struct *conn,char *mask,uint32 dirtype, pstring fname,
773 SMB_OFF_T *size,uint32 *mode,time_t *date,BOOL check_descend)
777 SMB_STRUCT_STAT sbuf;
783 *path = *pathreal = *filename = 0;
785 needslash = ( conn->dirpath[strlen(conn->dirpath) -1] != '/');
791 long curoff = dptr_TellDir(conn->dirptr);
792 dname = dptr_ReadDirName(conn->dirptr, &curoff, &sbuf);
794 DEBUG(6,("readdir on dirptr 0x%lx now at offset %ld\n",
795 (long)conn->dirptr,TellDir(conn->dirptr->dir_hnd)));
800 pstrcpy(filename,dname);
802 /* notice the special *.* handling. This appears to be the only difference
803 between the wildcard handling in this routine and in the trans2 routines.
804 see masktest for a demo
806 if ((strcmp(mask,"*.*") == 0) ||
807 mask_match_search(filename,mask,False) ||
808 mangle_mask_match(conn,filename,mask)) {
810 if (!mangle_is_8_3(filename, False, conn->params))
811 mangle_map(filename,True,False,
814 pstrcpy(fname,filename);
816 pstrcpy(path,conn->dirpath);
819 pstrcpy(pathreal,path);
821 pstrcat(pathreal,dname);
822 if (!VALID_STAT(sbuf) && (SMB_VFS_STAT(conn, pathreal, &sbuf)) != 0) {
823 DEBUG(5,("Couldn't stat 1 [%s]. Error = %s\n",path, strerror(errno) ));
827 *mode = dos_mode(conn,pathreal,&sbuf);
829 if (!dir_check_ftype(conn,*mode,dirtype)) {
830 DEBUG(5,("[%s] attribs 0x%x didn't match 0x%x\n",filename,(unsigned int)*mode,(unsigned int)dirtype));
834 *size = sbuf.st_size;
835 *date = sbuf.st_mtime;
837 DEBUG(3,("get_dir_entry mask=[%s] found %s fname=%s\n",mask, pathreal,fname));
841 DirCacheAdd(conn->dirptr->dir_hnd, dname, curoff);
848 /*******************************************************************
849 Check to see if a user can read a file. This is only approximate,
850 it is used as part of the "hide unreadable" option. Don't
851 use it for anything security sensitive.
852 ********************************************************************/
854 static BOOL user_can_read_file(connection_struct *conn, char *name, SMB_STRUCT_STAT *pst)
856 SEC_DESC *psd = NULL;
860 uint32 access_granted;
863 * If user is a member of the Admin group
864 * we never hide files from them.
867 if (conn->admin_user) {
871 /* If we can't stat it does not show it */
872 if (!VALID_STAT(*pst) && (SMB_VFS_STAT(conn, name, pst) != 0)) {
873 DEBUG(10,("user_can_read_file: SMB_VFS_STAT failed for file %s with error %s\n",
874 name, strerror(errno) ));
878 /* Pseudo-open the file (note - no fd's created). */
880 if(S_ISDIR(pst->st_mode)) {
881 status = open_directory(conn, NULL, name, pst,
883 FILE_SHARE_READ|FILE_SHARE_WRITE,
885 0, /* no create options. */
886 FILE_ATTRIBUTE_DIRECTORY,
889 status = open_file_stat(conn, NULL, name, pst, &fsp);
892 if (!NT_STATUS_IS_OK(status)) {
896 /* Get NT ACL -allocated in main loop talloc context. No free needed here. */
897 sd_size = SMB_VFS_FGET_NT_ACL(fsp, fsp->fh->fd,
898 (OWNER_SECURITY_INFORMATION|GROUP_SECURITY_INFORMATION|DACL_SECURITY_INFORMATION), &psd);
899 close_file(fsp, NORMAL_CLOSE);
901 /* No access if SD get failed. */
906 return se_access_check(psd, current_user.nt_user_token, FILE_READ_DATA,
907 &access_granted, &status);
910 /*******************************************************************
911 Check to see if a user can write a file (and only files, we do not
912 check dirs on this one). This is only approximate,
913 it is used as part of the "hide unwriteable" option. Don't
914 use it for anything security sensitive.
915 ********************************************************************/
917 static BOOL user_can_write_file(connection_struct *conn, char *name, SMB_STRUCT_STAT *pst)
919 SEC_DESC *psd = NULL;
924 uint32 access_granted;
927 * If user is a member of the Admin group
928 * we never hide files from them.
931 if (conn->admin_user) {
935 /* If we can't stat it does not show it */
936 if (!VALID_STAT(*pst) && (SMB_VFS_STAT(conn, name, pst) != 0)) {
940 /* Pseudo-open the file */
942 if(S_ISDIR(pst->st_mode)) {
945 status = open_file_ntcreate(conn, NULL, name, pst,
946 FILE_WRITE_ATTRIBUTES,
947 FILE_SHARE_READ|FILE_SHARE_WRITE,
950 FILE_ATTRIBUTE_NORMAL,
955 if (!NT_STATUS_IS_OK(status)) {
959 /* Get NT ACL -allocated in main loop talloc context. No free needed here. */
960 sd_size = SMB_VFS_FGET_NT_ACL(fsp, fsp->fh->fd,
961 (OWNER_SECURITY_INFORMATION|GROUP_SECURITY_INFORMATION|DACL_SECURITY_INFORMATION), &psd);
962 close_file(fsp, NORMAL_CLOSE);
964 /* No access if SD get failed. */
968 return se_access_check(psd, current_user.nt_user_token, FILE_WRITE_DATA,
969 &access_granted, &status);
972 /*******************************************************************
973 Is a file a "special" type ?
974 ********************************************************************/
976 static BOOL file_is_special(connection_struct *conn, char *name, SMB_STRUCT_STAT *pst)
979 * If user is a member of the Admin group
980 * we never hide files from them.
983 if (conn->admin_user)
986 /* If we can't stat it does not show it */
987 if (!VALID_STAT(*pst) && (SMB_VFS_STAT(conn, name, pst) != 0))
990 if (S_ISREG(pst->st_mode) || S_ISDIR(pst->st_mode) || S_ISLNK(pst->st_mode))
996 /*******************************************************************
997 Should the file be seen by the client ?
998 ********************************************************************/
1000 BOOL is_visible_file(connection_struct *conn, const char *dir_path, const char *name, SMB_STRUCT_STAT *pst, BOOL use_veto)
1002 BOOL hide_unreadable = lp_hideunreadable(SNUM(conn));
1003 BOOL hide_unwriteable = lp_hideunwriteable_files(SNUM(conn));
1004 BOOL hide_special = lp_hide_special_files(SNUM(conn));
1006 SET_STAT_INVALID(*pst);
1008 if ((strcmp(".",name) == 0) || (strcmp("..",name) == 0)) {
1009 return True; /* . and .. are always visible. */
1012 /* If it's a vetoed file, pretend it doesn't even exist */
1013 if (use_veto && IS_VETO_PATH(conn, name)) {
1014 DEBUG(10,("is_visible_file: file %s is vetoed.\n", name ));
1018 if (hide_unreadable || hide_unwriteable || hide_special) {
1019 pstring link_target;
1022 if (asprintf(&entry, "%s/%s", dir_path, name) == -1) {
1026 /* If it's a dfs symlink, ignore _hide xxxx_ options */
1027 if (lp_host_msdfs() &&
1028 lp_msdfs_root(SNUM(conn)) &&
1029 is_msdfs_link(conn, entry, link_target, NULL)) {
1034 /* Honour _hide unreadable_ option */
1035 if (hide_unreadable && !user_can_read_file(conn, entry, pst)) {
1036 DEBUG(10,("is_visible_file: file %s is unreadable.\n", entry ));
1040 /* Honour _hide unwriteable_ option */
1041 if (hide_unwriteable && !user_can_write_file(conn, entry, pst)) {
1042 DEBUG(10,("is_visible_file: file %s is unwritable.\n", entry ));
1046 /* Honour _hide_special_ option */
1047 if (hide_special && file_is_special(conn, entry, pst)) {
1048 DEBUG(10,("is_visible_file: file %s is special.\n", entry ));
1057 /*******************************************************************
1059 ********************************************************************/
1061 struct smb_Dir *OpenDir(connection_struct *conn, const char *name, const char *mask, uint32 attr)
1063 struct smb_Dir *dirp = SMB_MALLOC_P(struct smb_Dir);
1071 dirp->dir_path = SMB_STRDUP(name);
1072 if (!dirp->dir_path) {
1075 dirp->dir = SMB_VFS_OPENDIR(conn, dirp->dir_path, mask, attr);
1077 DEBUG(5,("OpenDir: Can't open %s. %s\n", dirp->dir_path, strerror(errno) ));
1081 dirp->name_cache = SMB_CALLOC_ARRAY(struct name_cache_entry, NAME_CACHE_SIZE);
1082 if (!dirp->name_cache) {
1093 SMB_VFS_CLOSEDIR(conn,dirp->dir);
1095 SAFE_FREE(dirp->dir_path);
1096 SAFE_FREE(dirp->name_cache);
1103 /*******************************************************************
1105 ********************************************************************/
1107 int CloseDir(struct smb_Dir *dirp)
1112 ret = SMB_VFS_CLOSEDIR(dirp->conn,dirp->dir);
1114 SAFE_FREE(dirp->dir_path);
1115 if (dirp->name_cache) {
1116 for (i = 0; i < NAME_CACHE_SIZE; i++) {
1117 SAFE_FREE(dirp->name_cache[i].name);
1120 SAFE_FREE(dirp->name_cache);
1126 /*******************************************************************
1127 Read from a directory. Also return current offset.
1128 Don't check for veto or invisible files.
1129 ********************************************************************/
1131 const char *ReadDirName(struct smb_Dir *dirp, long *poffset)
1134 connection_struct *conn = dirp->conn;
1136 /* Cheat to allow . and .. to be the first entries returned. */
1137 if (((*poffset == START_OF_DIRECTORY_OFFSET) || (*poffset == DOT_DOT_DIRECTORY_OFFSET)) && (dirp->file_number < 2)) {
1138 if (dirp->file_number == 0) {
1140 *poffset = dirp->offset = START_OF_DIRECTORY_OFFSET;
1142 *poffset = dirp->offset = DOT_DOT_DIRECTORY_OFFSET;
1145 dirp->file_number++;
1147 } else if (*poffset == END_OF_DIRECTORY_OFFSET) {
1148 *poffset = dirp->offset = END_OF_DIRECTORY_OFFSET;
1151 /* A real offset, seek to it. */
1152 SeekDir(dirp, *poffset);
1155 while ((n = vfs_readdirname(conn, dirp->dir))) {
1156 /* Ignore . and .. - we've already returned them. */
1158 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
1162 *poffset = dirp->offset = SMB_VFS_TELLDIR(conn, dirp->dir);
1163 dirp->file_number++;
1166 *poffset = dirp->offset = END_OF_DIRECTORY_OFFSET;
1170 /*******************************************************************
1171 Rewind to the start.
1172 ********************************************************************/
1174 void RewindDir(struct smb_Dir *dirp, long *poffset)
1176 SMB_VFS_REWINDDIR(dirp->conn, dirp->dir);
1177 dirp->file_number = 0;
1178 dirp->offset = START_OF_DIRECTORY_OFFSET;
1179 *poffset = START_OF_DIRECTORY_OFFSET;
1182 /*******************************************************************
1184 ********************************************************************/
1186 void SeekDir(struct smb_Dir *dirp, long offset)
1188 if (offset != dirp->offset) {
1189 if (offset == START_OF_DIRECTORY_OFFSET) {
1190 RewindDir(dirp, &offset);
1192 * Ok we should really set the file number here
1193 * to 1 to enable ".." to be returned next. Trouble
1194 * is I'm worried about callers using SeekDir(dirp,0)
1195 * as equivalent to RewindDir(). So leave this alone
1198 } else if (offset == DOT_DOT_DIRECTORY_OFFSET) {
1199 RewindDir(dirp, &offset);
1201 * Set the file number to 2 - we want to get the first
1202 * real file entry (the one we return after "..")
1203 * on the next ReadDir.
1205 dirp->file_number = 2;
1206 } else if (offset == END_OF_DIRECTORY_OFFSET) {
1207 ; /* Don't seek in this case. */
1209 SMB_VFS_SEEKDIR(dirp->conn, dirp->dir, offset);
1211 dirp->offset = offset;
1215 /*******************************************************************
1216 Tell a dir position.
1217 ********************************************************************/
1219 long TellDir(struct smb_Dir *dirp)
1221 return(dirp->offset);
1224 /*******************************************************************
1225 Add an entry into the dcache.
1226 ********************************************************************/
1228 void DirCacheAdd(struct smb_Dir *dirp, const char *name, long offset)
1230 struct name_cache_entry *e;
1232 dirp->name_cache_index = (dirp->name_cache_index+1) % NAME_CACHE_SIZE;
1233 e = &dirp->name_cache[dirp->name_cache_index];
1235 e->name = SMB_STRDUP(name);
1239 /*******************************************************************
1240 Find an entry by name. Leave us at the offset after it.
1241 Don't check for veto or invisible files.
1242 ********************************************************************/
1244 BOOL SearchDir(struct smb_Dir *dirp, const char *name, long *poffset)
1248 connection_struct *conn = dirp->conn;
1250 /* Search back in the name cache. */
1251 for (i = dirp->name_cache_index; i >= 0; i--) {
1252 struct name_cache_entry *e = &dirp->name_cache[i];
1253 if (e->name && (conn->case_sensitive ? (strcmp(e->name, name) == 0) : strequal(e->name, name))) {
1254 *poffset = e->offset;
1255 SeekDir(dirp, e->offset);
1259 for (i = NAME_CACHE_SIZE-1; i > dirp->name_cache_index; i--) {
1260 struct name_cache_entry *e = &dirp->name_cache[i];
1261 if (e->name && (conn->case_sensitive ? (strcmp(e->name, name) == 0) : strequal(e->name, name))) {
1262 *poffset = e->offset;
1263 SeekDir(dirp, e->offset);
1268 /* Not found in the name cache. Rewind directory and start from scratch. */
1269 SMB_VFS_REWINDDIR(conn, dirp->dir);
1270 dirp->file_number = 0;
1271 *poffset = START_OF_DIRECTORY_OFFSET;
1272 while ((entry = ReadDirName(dirp, poffset))) {
1273 if (conn->case_sensitive ? (strcmp(entry, name) == 0) : strequal(entry, name)) {
1280 /*****************************************************************
1281 Is this directory empty ?
1282 *****************************************************************/
1284 NTSTATUS can_delete_directory(struct connection_struct *conn,
1285 const char *dirname)
1287 NTSTATUS status = NT_STATUS_OK;
1290 struct smb_Dir *dir_hnd = OpenDir(conn, dirname, NULL, 0);
1293 return map_nt_error_from_unix(errno);
1296 while ((dname = ReadDirName(dir_hnd,&dirpos))) {
1299 /* Quick check for "." and ".." */
1300 if (dname[0] == '.') {
1301 if (!dname[1] || (dname[1] == '.' && !dname[2])) {
1306 if (!is_visible_file(conn, dirname, dname, &st, True)) {
1310 DEBUG(10,("can_delete_directory: got name %s - can't delete\n", dname ));
1311 status = NT_STATUS_DIRECTORY_NOT_EMPTY;
git.samba.org / tprouty / samba.git / blob