2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
12 Copyright (C) Michael Adam 2008
13 Copyright (C) Jelmer Vernooij <jelmer@samba.org> 2007
14 Copyright (C) Andrew Bartlett 2011
16 This program is free software; you can redistribute it and/or modify
17 it under the terms of the GNU General Public License as published by
18 the Free Software Foundation; either version 3 of the License, or
19 (at your option) any later version.
21 This program is distributed in the hope that it will be useful,
22 but WITHOUT ANY WARRANTY; without even the implied warranty of
23 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
24 GNU General Public License for more details.
26 You should have received a copy of the GNU General Public License
27 along with this program. If not, see <http://www.gnu.org/licenses/>.
33 * This module provides suitable callback functions for the params
34 * module. It builds the internal table of service details which is
35 * then used by the rest of the server.
39 * 1) add it to the global or service structure definition
40 * 2) add it to the parm_table
41 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
42 * 4) If it's a global then initialise it in init_globals. If a local
43 * (ie. service) parameter then initialise it in the sDefault structure
47 * The configuration file is processed sequentially for speed. It is NOT
48 * accessed randomly as happens in 'real' Windows. For this reason, there
49 * is a fair bit of sequence-dependent code here - ie., code which assumes
50 * that certain things happen before others. In particular, the code which
51 * happens at the boundary between sections is delicately poised, so be
57 #include "system/filesys.h"
60 #include "lib/smbconf/smbconf.h"
61 #include "lib/smbconf/smbconf_init.h"
62 #include "lib/param/loadparm.h"
65 #include "../librpc/gen_ndr/svcctl.h"
67 #include "../libcli/smb/smb_signing.h"
68 #include "dbwrap/dbwrap.h"
69 #include "dbwrap/dbwrap_rbt.h"
70 #include "../lib/util/bitmap.h"
71 #include "../source4/dns_server/dns_update.h"
73 #ifdef HAVE_SYS_SYSCTL_H
74 #include <sys/sysctl.h>
77 #ifdef HAVE_HTTPCONNECTENCRYPT
78 #include <cups/http.h>
83 extern userdom_struct current_user_info;
85 /* the special value for the include parameter
86 * to be interpreted not as a file name but to
87 * trigger loading of the global smb.conf options
89 #ifndef INCLUDE_REGISTRY_NAME
90 #define INCLUDE_REGISTRY_NAME "registry"
93 static bool in_client = false; /* Not in the client by default */
94 static struct smbconf_csn conf_last_csn;
96 #define CONFIG_BACKEND_FILE 0
97 #define CONFIG_BACKEND_REGISTRY 1
99 static int config_backend = CONFIG_BACKEND_FILE;
101 /* some helpful bits */
102 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
103 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
105 #define USERSHARE_VALID 1
106 #define USERSHARE_PENDING_DELETE 2
108 static bool defaults_saved = false;
110 #define LOADPARM_EXTRA_GLOBALS \
111 struct parmlist_entry *param_opt; \
114 int iminreceivefile; \
115 char *szPrintcapname; \
117 int iPreferredMaster; \
119 char *szLdapMachineSuffix; \
120 char *szLdapUserSuffix; \
121 char *szLdapIdmapSuffix; \
122 char *szLdapGroupSuffix; \
125 char *szSocketAddress; \
126 char *szUsershareTemplateShare; \
129 int winbindMaxDomainConnections; \
130 int ismb2_max_credits;
132 #include "param/param_global.h"
134 static struct loadparm_global Globals;
136 /* This is a default service used to prime a services structure */
137 static struct loadparm_service sDefault =
142 .usershare_last_mod = {0, 0},
146 .szInvalidUsers = NULL,
147 .szValidUsers = NULL,
148 .szAdminUsers = NULL,
153 .szRootPreExec = NULL,
154 .szRootPostExec = NULL,
155 .szCupsOptions = NULL,
156 .szPrintcommand = NULL,
157 .szLpqcommand = NULL,
158 .szLprmcommand = NULL,
159 .szLppausecommand = NULL,
160 .szLpresumecommand = NULL,
161 .szQueuepausecommand = NULL,
162 .szQueueresumecommand = NULL,
163 .szPrintername = NULL,
164 .szPrintjobUsername = NULL,
165 .szDontdescend = NULL,
166 .szHostsallow = NULL,
168 .szMagicScript = NULL,
169 .szMagicOutput = NULL,
172 .szVetoOplockFiles = NULL,
178 .printer_admin = NULL,
181 .szVfsObjects = NULL,
182 .szMSDfsProxy = NULL,
183 .szAioWriteBehind = NULL,
186 .iMaxPrintJobs = 1000,
187 .iMaxReportedPrintJobs = 0,
188 .iWriteCacheSize = 0,
189 .iCreate_mask = 0744,
190 .iCreate_force_mode = 0,
191 .iSecurity_mask = 0777,
192 .iSecurity_force_mode = 0,
194 .iDir_force_mode = 0,
195 .iDir_Security_mask = 0777,
196 .iDir_Security_force_mode = 0,
197 .iMaxConnections = 0,
198 .iDefaultCase = CASE_LOWER,
199 .iPrinting = DEFAULT_PRINTING,
200 .iOplockContentionLimit = 2,
203 .iDfreeCacheTime = 0,
204 .bPreexecClose = false,
205 .bRootpreexecClose = false,
206 .iCaseSensitive = Auto,
207 .bCasePreserve = true,
208 .bShortCasePreserve = true,
209 .bHideDotFiles = true,
210 .bHideSpecialFiles = false,
211 .bHideUnReadable = false,
212 .bHideUnWriteableFiles = false,
214 .bAccessBasedShareEnum = false,
218 .bGuest_only = false,
219 .bAdministrative_share = false,
222 .bPrintNotifyBackchannel = true,
223 .bMap_system = false,
224 .bMap_hidden = false,
225 .bMap_archive = true,
226 .bStoreDosAttributes = false,
227 .bDmapiSupport = false,
229 .iStrictLocking = Auto,
230 .bPosixLocking = true,
233 .bLevel2OpLocks = true,
235 .bMangledNames = true,
238 .bSyncAlways = false,
239 .bStrictAllocate = false,
240 .bStrictSync = false,
243 .bDeleteReadonly = false,
244 .bFakeOplocks = false,
245 .bDeleteVetoFiles = false,
246 .bDosFilemode = false,
247 .bDosFiletimes = true,
248 .bDosFiletimeResolution = false,
249 .bFakeDirCreateTimes = false,
250 .bBlockingLocks = true,
251 .bInheritPerms = false,
252 .bInheritACLS = false,
253 .bInheritOwner = false,
255 .bUseClientDriver = false,
256 .bDefaultDevmode = true,
257 .bForcePrintername = false,
258 .bNTAclSupport = true,
259 .bForceUnknownAclUser = false,
260 .bUseSendfile = false,
261 .bProfileAcls = false,
262 .bMap_acl_inherit = false,
265 .bAclCheckPermissions = true,
266 .bAclMapFullControl = true,
267 .bAclGroupControl = false,
268 .bChangeNotify = true,
269 .bKernelChangeNotify = true,
270 .iallocation_roundup_size = SMB_ROUNDUP_ALLOCATION_SIZE,
273 .iMap_readonly = MAP_READONLY_YES,
274 #ifdef BROKEN_DIRECTORY_HANDLING
275 .iDirectoryNameCacheSize = 0,
277 .iDirectoryNameCacheSize = 100,
279 .ismb_encrypt = Auto,
284 /* local variables */
285 static struct loadparm_service **ServicePtrs = NULL;
286 static int iNumServices = 0;
287 static int iServiceIndex = 0;
288 static struct db_context *ServiceHash;
289 static int *invalid_services = NULL;
290 static int num_invalid_services = 0;
291 static bool bInGlobalSection = true;
292 static bool bGlobalOnly = false;
294 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
296 /* prototypes for the special type handlers */
297 static bool handle_include(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
298 static bool handle_copy(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
299 static bool handle_idmap_backend(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
300 static bool handle_idmap_uid(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
301 static bool handle_idmap_gid(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
302 static bool handle_debug_list(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr );
303 static bool handle_realm(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr );
304 static bool handle_netbios_aliases(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr );
305 static bool handle_charset(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr );
306 static bool handle_dos_charset(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr );
307 static bool handle_printing(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
308 static bool handle_ldap_debug_level(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr);
310 static void set_allowed_client_auth(void);
312 static void add_to_file_list(const char *fname, const char *subfname);
313 static bool lp_set_cmdline_helper(const char *pszParmName, const char *pszParmValue, bool store_values);
314 static void free_param_opts(struct parmlist_entry **popts);
316 #include "lib/param/param_enums.c"
318 static const struct enum_list enum_printing[] = {
319 {PRINT_SYSV, "sysv"},
321 {PRINT_HPUX, "hpux"},
325 {PRINT_LPRNG, "lprng"},
326 {PRINT_CUPS, "cups"},
327 {PRINT_IPRINT, "iprint"},
329 {PRINT_LPROS2, "os2"},
330 #if defined(DEVELOPER) || defined(ENABLE_BUILD_FARM_HACKS)
331 {PRINT_TEST, "test"},
333 #endif /* DEVELOPER */
337 static const struct enum_list enum_ldap_sasl_wrapping[] = {
339 {ADS_AUTH_SASL_SIGN, "sign"},
340 {ADS_AUTH_SASL_SEAL, "seal"},
344 static const struct enum_list enum_ldap_ssl[] = {
345 {LDAP_SSL_OFF, "no"},
346 {LDAP_SSL_OFF, "off"},
347 {LDAP_SSL_START_TLS, "start tls"},
348 {LDAP_SSL_START_TLS, "start_tls"},
352 /* LDAP Dereferencing Alias types */
353 #define SAMBA_LDAP_DEREF_NEVER 0
354 #define SAMBA_LDAP_DEREF_SEARCHING 1
355 #define SAMBA_LDAP_DEREF_FINDING 2
356 #define SAMBA_LDAP_DEREF_ALWAYS 3
358 static const struct enum_list enum_ldap_deref[] = {
359 {SAMBA_LDAP_DEREF_NEVER, "never"},
360 {SAMBA_LDAP_DEREF_SEARCHING, "searching"},
361 {SAMBA_LDAP_DEREF_FINDING, "finding"},
362 {SAMBA_LDAP_DEREF_ALWAYS, "always"},
366 static const struct enum_list enum_ldap_passwd_sync[] = {
367 {LDAP_PASSWD_SYNC_OFF, "no"},
368 {LDAP_PASSWD_SYNC_OFF, "off"},
369 {LDAP_PASSWD_SYNC_ON, "yes"},
370 {LDAP_PASSWD_SYNC_ON, "on"},
371 {LDAP_PASSWD_SYNC_ONLY, "only"},
375 static const struct enum_list enum_map_readonly[] = {
376 {MAP_READONLY_NO, "no"},
377 {MAP_READONLY_NO, "false"},
378 {MAP_READONLY_NO, "0"},
379 {MAP_READONLY_YES, "yes"},
380 {MAP_READONLY_YES, "true"},
381 {MAP_READONLY_YES, "1"},
382 {MAP_READONLY_PERMISSIONS, "permissions"},
383 {MAP_READONLY_PERMISSIONS, "perms"},
387 static const struct enum_list enum_case[] = {
388 {CASE_LOWER, "lower"},
389 {CASE_UPPER, "upper"},
394 /* ACL compatibility options. */
395 static const struct enum_list enum_acl_compat_vals[] = {
396 { ACL_COMPAT_AUTO, "auto" },
397 { ACL_COMPAT_WINNT, "winnt" },
398 { ACL_COMPAT_WIN2K, "win2k" },
403 Do you want session setups at user level security with a invalid
404 password to be rejected or allowed in as guest? WinNT rejects them
405 but it can be a pain as it means "net view" needs to use a password
407 You have 3 choices in the setting of map_to_guest:
409 "Never" means session setups with an invalid password
410 are rejected. This is the default.
412 "Bad User" means session setups with an invalid password
413 are rejected, unless the username does not exist, in which case it
414 is treated as a guest login
416 "Bad Password" means session setups with an invalid password
417 are treated as a guest login
419 Note that map_to_guest only has an effect in user or server
423 static const struct enum_list enum_map_to_guest[] = {
424 {NEVER_MAP_TO_GUEST, "Never"},
425 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
426 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
427 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
431 /* Config backend options */
433 static const struct enum_list enum_config_backend[] = {
434 {CONFIG_BACKEND_FILE, "file"},
435 {CONFIG_BACKEND_REGISTRY, "registry"},
439 /* ADS kerberos ticket verification options */
441 static const struct enum_list enum_kerberos_method[] = {
442 {KERBEROS_VERIFY_SECRETS, "default"},
443 {KERBEROS_VERIFY_SECRETS, "secrets only"},
444 {KERBEROS_VERIFY_SYSTEM_KEYTAB, "system keytab"},
445 {KERBEROS_VERIFY_DEDICATED_KEYTAB, "dedicated keytab"},
446 {KERBEROS_VERIFY_SECRETS_AND_KEYTAB, "secrets and keytab"},
450 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
452 * The FLAG_HIDE is explicit. Parameters set this way do NOT appear in any edit
453 * screen in SWAT. This is used to exclude parameters as well as to squash all
454 * parameters that have been duplicated by pseudonyms.
456 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
457 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
458 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
461 * NOTE2: Handling of duplicated (synonym) parameters:
462 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
463 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
464 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
465 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
468 #define GLOBAL_VAR(name) offsetof(struct loadparm_global, name)
469 #define LOCAL_VAR(name) offsetof(struct loadparm_service, name)
471 static struct parm_struct parm_table[] = {
472 {N_("Base Options"), P_SEP, P_SEPARATOR},
475 .label = "dos charset",
478 .offset = GLOBAL_VAR(dos_charset),
479 .special = handle_dos_charset,
481 .flags = FLAG_ADVANCED
484 .label = "unix charset",
487 .offset = GLOBAL_VAR(unix_charset),
488 .special = handle_charset,
490 .flags = FLAG_ADVANCED
496 .offset = LOCAL_VAR(comment),
499 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT
505 .offset = LOCAL_VAR(szPath),
508 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
511 .label = "directory",
514 .offset = LOCAL_VAR(szPath),
520 .label = "workgroup",
523 .offset = GLOBAL_VAR(szWorkgroup),
526 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
532 .offset = GLOBAL_VAR(szRealm),
533 .special = handle_realm,
535 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
538 .label = "netbios name",
541 .offset = GLOBAL_VAR(szNetbiosName),
544 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
547 .label = "netbios aliases",
550 .offset = GLOBAL_VAR(szNetbiosAliases),
551 .special = handle_netbios_aliases,
553 .flags = FLAG_ADVANCED,
556 .label = "netbios scope",
559 .offset = GLOBAL_VAR(szNetbiosScope),
562 .flags = FLAG_ADVANCED,
565 .label = "server string",
568 .offset = GLOBAL_VAR(szServerString),
571 .flags = FLAG_BASIC | FLAG_ADVANCED,
574 .label = "interfaces",
577 .offset = GLOBAL_VAR(szInterfaces),
580 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
583 .label = "bind interfaces only",
586 .offset = GLOBAL_VAR(bBindInterfacesOnly),
589 .flags = FLAG_ADVANCED | FLAG_WIZARD,
592 .label = "config backend",
595 .offset = GLOBAL_VAR(ConfigBackend),
597 .enum_list = enum_config_backend,
598 .flags = FLAG_HIDE|FLAG_ADVANCED|FLAG_META,
601 .label = "server role",
604 .offset = GLOBAL_VAR(ServerRole),
606 .enum_list = enum_server_role,
607 .flags = FLAG_BASIC | FLAG_ADVANCED,
610 {N_("Security Options"), P_SEP, P_SEPARATOR},
616 .offset = GLOBAL_VAR(security),
618 .enum_list = enum_security,
619 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
622 .label = "auth methods",
625 .offset = GLOBAL_VAR(AuthMethods),
628 .flags = FLAG_ADVANCED,
631 .label = "encrypt passwords",
634 .offset = GLOBAL_VAR(bEncryptPasswords),
637 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
640 .label = "client schannel",
643 .offset = GLOBAL_VAR(clientSchannel),
645 .enum_list = enum_bool_auto,
646 .flags = FLAG_BASIC | FLAG_ADVANCED,
649 .label = "server schannel",
652 .offset = GLOBAL_VAR(serverSchannel),
654 .enum_list = enum_bool_auto,
655 .flags = FLAG_BASIC | FLAG_ADVANCED,
658 .label = "allow trusted domains",
661 .offset = GLOBAL_VAR(bAllowTrustedDomains),
664 .flags = FLAG_ADVANCED,
667 .label = "map to guest",
670 .offset = GLOBAL_VAR(map_to_guest),
672 .enum_list = enum_map_to_guest,
673 .flags = FLAG_ADVANCED,
676 .label = "null passwords",
679 .offset = GLOBAL_VAR(bNullPasswords),
682 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
685 .label = "obey pam restrictions",
688 .offset = GLOBAL_VAR(bObeyPamRestrictions),
691 .flags = FLAG_ADVANCED,
694 .label = "password server",
697 .offset = GLOBAL_VAR(szPasswordServer),
700 .flags = FLAG_ADVANCED | FLAG_WIZARD,
703 .label = "smb passwd file",
706 .offset = GLOBAL_VAR(szSMBPasswdFile),
709 .flags = FLAG_ADVANCED,
712 .label = "private dir",
715 .offset = GLOBAL_VAR(szPrivateDir),
718 .flags = FLAG_ADVANCED,
721 .label = "passdb backend",
724 .offset = GLOBAL_VAR(szPassdbBackend),
727 .flags = FLAG_ADVANCED | FLAG_WIZARD,
730 .label = "algorithmic rid base",
733 .offset = GLOBAL_VAR(AlgorithmicRidBase),
736 .flags = FLAG_ADVANCED,
739 .label = "root directory",
742 .offset = GLOBAL_VAR(szRootdir),
745 .flags = FLAG_ADVANCED,
751 .offset = GLOBAL_VAR(szRootdir),
760 .offset = GLOBAL_VAR(szRootdir),
766 .label = "guest account",
769 .offset = GLOBAL_VAR(szGuestaccount),
772 .flags = FLAG_BASIC | FLAG_ADVANCED,
775 .label = "enable privileges",
778 .offset = GLOBAL_VAR(bEnablePrivileges),
781 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
785 .label = "pam password change",
788 .offset = GLOBAL_VAR(bPamPasswordChange),
791 .flags = FLAG_ADVANCED,
794 .label = "passwd program",
797 .offset = GLOBAL_VAR(szPasswdProgram),
800 .flags = FLAG_ADVANCED,
803 .label = "passwd chat",
806 .offset = GLOBAL_VAR(szPasswdChat),
809 .flags = FLAG_ADVANCED,
812 .label = "passwd chat debug",
815 .offset = GLOBAL_VAR(bPasswdChatDebug),
818 .flags = FLAG_ADVANCED,
821 .label = "passwd chat timeout",
824 .offset = GLOBAL_VAR(iPasswdChatTimeout),
827 .flags = FLAG_ADVANCED,
830 .label = "check password script",
833 .offset = GLOBAL_VAR(szCheckPasswordScript),
836 .flags = FLAG_ADVANCED,
839 .label = "username map",
842 .offset = GLOBAL_VAR(szUsernameMap),
845 .flags = FLAG_ADVANCED,
848 .label = "password level",
851 .offset = GLOBAL_VAR(pwordlevel),
854 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
857 .label = "username level",
860 .offset = GLOBAL_VAR(unamelevel),
863 .flags = FLAG_ADVANCED,
866 .label = "unix password sync",
869 .offset = GLOBAL_VAR(bUnixPasswdSync),
872 .flags = FLAG_ADVANCED,
875 .label = "restrict anonymous",
878 .offset = GLOBAL_VAR(restrict_anonymous),
881 .flags = FLAG_ADVANCED,
884 .label = "lanman auth",
887 .offset = GLOBAL_VAR(bLanmanAuth),
890 .flags = FLAG_ADVANCED,
893 .label = "ntlm auth",
896 .offset = GLOBAL_VAR(bNTLMAuth),
899 .flags = FLAG_ADVANCED,
902 .label = "client NTLMv2 auth",
905 .offset = GLOBAL_VAR(bClientNTLMv2Auth),
908 .flags = FLAG_ADVANCED,
911 .label = "client lanman auth",
914 .offset = GLOBAL_VAR(bClientLanManAuth),
917 .flags = FLAG_ADVANCED,
920 .label = "client plaintext auth",
923 .offset = GLOBAL_VAR(bClientPlaintextAuth),
926 .flags = FLAG_ADVANCED,
929 .label = "client use spnego principal",
932 .offset = GLOBAL_VAR(client_use_spnego_principal),
935 .flags = FLAG_ADVANCED,
938 .label = "send spnego principal",
941 .offset = GLOBAL_VAR(send_spnego_principal),
944 .flags = FLAG_ADVANCED,
950 .offset = LOCAL_VAR(szUsername),
953 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED,
959 .offset = LOCAL_VAR(szUsername),
968 .offset = LOCAL_VAR(szUsername),
974 .label = "invalid users",
977 .offset = LOCAL_VAR(szInvalidUsers),
980 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
983 .label = "valid users",
986 .offset = LOCAL_VAR(szValidUsers),
989 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
992 .label = "admin users",
995 .offset = LOCAL_VAR(szAdminUsers),
998 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1001 .label = "read list",
1004 .offset = LOCAL_VAR(readlist),
1007 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1010 .label = "write list",
1013 .offset = LOCAL_VAR(writelist),
1016 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1019 .label = "printer admin",
1022 .offset = LOCAL_VAR(printer_admin),
1025 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED,
1028 .label = "force user",
1031 .offset = LOCAL_VAR(force_user),
1034 .flags = FLAG_ADVANCED | FLAG_SHARE,
1037 .label = "force group",
1040 .offset = LOCAL_VAR(force_group),
1043 .flags = FLAG_ADVANCED | FLAG_SHARE,
1049 .offset = LOCAL_VAR(force_group),
1052 .flags = FLAG_ADVANCED,
1055 .label = "read only",
1058 .offset = LOCAL_VAR(bRead_only),
1061 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE,
1064 .label = "write ok",
1067 .offset = LOCAL_VAR(bRead_only),
1073 .label = "writeable",
1076 .offset = LOCAL_VAR(bRead_only),
1082 .label = "writable",
1085 .offset = LOCAL_VAR(bRead_only),
1091 .label = "acl check permissions",
1094 .offset = LOCAL_VAR(bAclCheckPermissions),
1097 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED,
1100 .label = "acl group control",
1103 .offset = LOCAL_VAR(bAclGroupControl),
1106 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1109 .label = "acl map full control",
1112 .offset = LOCAL_VAR(bAclMapFullControl),
1115 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1118 .label = "create mask",
1121 .offset = LOCAL_VAR(iCreate_mask),
1124 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1127 .label = "create mode",
1130 .offset = LOCAL_VAR(iCreate_mask),
1136 .label = "force create mode",
1139 .offset = LOCAL_VAR(iCreate_force_mode),
1142 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1145 .label = "security mask",
1148 .offset = LOCAL_VAR(iSecurity_mask),
1151 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1154 .label = "force security mode",
1157 .offset = LOCAL_VAR(iSecurity_force_mode),
1160 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1163 .label = "directory mask",
1166 .offset = LOCAL_VAR(iDir_mask),
1169 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1172 .label = "directory mode",
1175 .offset = LOCAL_VAR(iDir_mask),
1178 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1181 .label = "force directory mode",
1184 .offset = LOCAL_VAR(iDir_force_mode),
1187 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1190 .label = "directory security mask",
1193 .offset = LOCAL_VAR(iDir_Security_mask),
1196 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1199 .label = "force directory security mode",
1202 .offset = LOCAL_VAR(iDir_Security_force_mode),
1205 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1208 .label = "force unknown acl user",
1211 .offset = LOCAL_VAR(bForceUnknownAclUser),
1214 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1217 .label = "inherit permissions",
1220 .offset = LOCAL_VAR(bInheritPerms),
1223 .flags = FLAG_ADVANCED | FLAG_SHARE,
1226 .label = "inherit acls",
1229 .offset = LOCAL_VAR(bInheritACLS),
1232 .flags = FLAG_ADVANCED | FLAG_SHARE,
1235 .label = "inherit owner",
1238 .offset = LOCAL_VAR(bInheritOwner),
1241 .flags = FLAG_ADVANCED | FLAG_SHARE,
1244 .label = "guest only",
1247 .offset = LOCAL_VAR(bGuest_only),
1250 .flags = FLAG_ADVANCED | FLAG_SHARE,
1253 .label = "only guest",
1256 .offset = LOCAL_VAR(bGuest_only),
1262 .label = "administrative share",
1265 .offset = LOCAL_VAR(bAdministrative_share),
1268 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1272 .label = "guest ok",
1275 .offset = LOCAL_VAR(bGuest_ok),
1278 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1284 .offset = LOCAL_VAR(bGuest_ok),
1290 .label = "only user",
1293 .offset = LOCAL_VAR(bOnlyUser),
1296 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED,
1299 .label = "hosts allow",
1302 .offset = LOCAL_VAR(szHostsallow),
1305 .flags = FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1308 .label = "allow hosts",
1311 .offset = LOCAL_VAR(szHostsallow),
1317 .label = "hosts deny",
1320 .offset = LOCAL_VAR(szHostsdeny),
1323 .flags = FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1326 .label = "deny hosts",
1329 .offset = LOCAL_VAR(szHostsdeny),
1335 .label = "preload modules",
1337 .p_class = P_GLOBAL,
1338 .offset = GLOBAL_VAR(szPreloadModules),
1341 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1344 .label = "dedicated keytab file",
1346 .p_class = P_GLOBAL,
1347 .offset = GLOBAL_VAR(szDedicatedKeytabFile),
1350 .flags = FLAG_ADVANCED,
1353 .label = "kerberos method",
1355 .p_class = P_GLOBAL,
1356 .offset = GLOBAL_VAR(iKerberosMethod),
1358 .enum_list = enum_kerberos_method,
1359 .flags = FLAG_ADVANCED,
1362 .label = "map untrusted to domain",
1364 .p_class = P_GLOBAL,
1365 .offset = GLOBAL_VAR(bMapUntrustedToDomain),
1368 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1372 {N_("Logging Options"), P_SEP, P_SEPARATOR},
1375 .label = "log level",
1377 .p_class = P_GLOBAL,
1378 .offset = GLOBAL_VAR(szLogLevel),
1379 .special = handle_debug_list,
1381 .flags = FLAG_ADVANCED,
1384 .label = "debuglevel",
1386 .p_class = P_GLOBAL,
1387 .offset = GLOBAL_VAR(szLogLevel),
1388 .special = handle_debug_list,
1395 .p_class = P_GLOBAL,
1396 .offset = GLOBAL_VAR(syslog),
1399 .flags = FLAG_ADVANCED,
1402 .label = "syslog only",
1404 .p_class = P_GLOBAL,
1405 .offset = GLOBAL_VAR(bSyslogOnly),
1408 .flags = FLAG_ADVANCED,
1411 .label = "log file",
1413 .p_class = P_GLOBAL,
1414 .offset = GLOBAL_VAR(szLogFile),
1417 .flags = FLAG_ADVANCED,
1420 .label = "max log size",
1422 .p_class = P_GLOBAL,
1423 .offset = GLOBAL_VAR(max_log_size),
1426 .flags = FLAG_ADVANCED,
1429 .label = "debug timestamp",
1431 .p_class = P_GLOBAL,
1432 .offset = GLOBAL_VAR(bTimestampLogs),
1435 .flags = FLAG_ADVANCED,
1438 .label = "timestamp logs",
1440 .p_class = P_GLOBAL,
1441 .offset = GLOBAL_VAR(bTimestampLogs),
1444 .flags = FLAG_ADVANCED,
1447 .label = "debug prefix timestamp",
1449 .p_class = P_GLOBAL,
1450 .offset = GLOBAL_VAR(bDebugPrefixTimestamp),
1453 .flags = FLAG_ADVANCED,
1456 .label = "debug hires timestamp",
1458 .p_class = P_GLOBAL,
1459 .offset = GLOBAL_VAR(bDebugHiresTimestamp),
1462 .flags = FLAG_ADVANCED,
1465 .label = "debug pid",
1467 .p_class = P_GLOBAL,
1468 .offset = GLOBAL_VAR(bDebugPid),
1471 .flags = FLAG_ADVANCED,
1474 .label = "debug uid",
1476 .p_class = P_GLOBAL,
1477 .offset = GLOBAL_VAR(bDebugUid),
1480 .flags = FLAG_ADVANCED,
1483 .label = "debug class",
1485 .p_class = P_GLOBAL,
1486 .offset = GLOBAL_VAR(bDebugClass),
1489 .flags = FLAG_ADVANCED,
1492 .label = "enable core files",
1494 .p_class = P_GLOBAL,
1495 .offset = GLOBAL_VAR(bEnableCoreFiles),
1498 .flags = FLAG_ADVANCED,
1501 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
1504 .label = "allocation roundup size",
1507 .offset = LOCAL_VAR(iallocation_roundup_size),
1510 .flags = FLAG_ADVANCED,
1513 .label = "aio read size",
1516 .offset = LOCAL_VAR(iAioReadSize),
1519 .flags = FLAG_ADVANCED,
1522 .label = "aio write size",
1525 .offset = LOCAL_VAR(iAioWriteSize),
1528 .flags = FLAG_ADVANCED,
1531 .label = "aio write behind",
1534 .offset = LOCAL_VAR(szAioWriteBehind),
1537 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1540 .label = "smb ports",
1542 .p_class = P_GLOBAL,
1543 .offset = GLOBAL_VAR(smb_ports),
1546 .flags = FLAG_ADVANCED,
1549 .label = "large readwrite",
1551 .p_class = P_GLOBAL,
1552 .offset = GLOBAL_VAR(bLargeReadwrite),
1555 .flags = FLAG_ADVANCED,
1558 .label = "max protocol",
1560 .p_class = P_GLOBAL,
1561 .offset = GLOBAL_VAR(maxprotocol),
1563 .enum_list = enum_protocol,
1564 .flags = FLAG_ADVANCED,
1567 .label = "protocol",
1569 .p_class = P_GLOBAL,
1570 .offset = GLOBAL_VAR(maxprotocol),
1572 .enum_list = enum_protocol,
1573 .flags = FLAG_ADVANCED,
1576 .label = "min protocol",
1578 .p_class = P_GLOBAL,
1579 .offset = GLOBAL_VAR(minprotocol),
1581 .enum_list = enum_protocol,
1582 .flags = FLAG_ADVANCED,
1585 .label = "min receivefile size",
1587 .p_class = P_GLOBAL,
1588 .offset = GLOBAL_VAR(iminreceivefile),
1591 .flags = FLAG_ADVANCED,
1594 .label = "read raw",
1596 .p_class = P_GLOBAL,
1597 .offset = GLOBAL_VAR(bReadRaw),
1600 .flags = FLAG_ADVANCED,
1603 .label = "write raw",
1605 .p_class = P_GLOBAL,
1606 .offset = GLOBAL_VAR(bWriteRaw),
1609 .flags = FLAG_ADVANCED,
1612 .label = "disable netbios",
1614 .p_class = P_GLOBAL,
1615 .offset = GLOBAL_VAR(bDisableNetbios),
1618 .flags = FLAG_ADVANCED,
1621 .label = "reset on zero vc",
1623 .p_class = P_GLOBAL,
1624 .offset = GLOBAL_VAR(bResetOnZeroVC),
1627 .flags = FLAG_ADVANCED,
1630 .label = "log writeable files on exit",
1632 .p_class = P_GLOBAL,
1633 .offset = GLOBAL_VAR(bLogWriteableFilesOnExit),
1636 .flags = FLAG_ADVANCED,
1639 .label = "acl compatibility",
1641 .p_class = P_GLOBAL,
1642 .offset = GLOBAL_VAR(iAclCompat),
1644 .enum_list = enum_acl_compat_vals,
1645 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1648 .label = "defer sharing violations",
1650 .p_class = P_GLOBAL,
1651 .offset = GLOBAL_VAR(bDeferSharingViolations),
1654 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1657 .label = "ea support",
1660 .offset = LOCAL_VAR(bEASupport),
1663 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1666 .label = "nt acl support",
1669 .offset = LOCAL_VAR(bNTAclSupport),
1672 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1675 .label = "nt pipe support",
1677 .p_class = P_GLOBAL,
1678 .offset = GLOBAL_VAR(bNTPipeSupport),
1681 .flags = FLAG_ADVANCED,
1684 .label = "nt status support",
1686 .p_class = P_GLOBAL,
1687 .offset = GLOBAL_VAR(bNTStatusSupport),
1690 .flags = FLAG_ADVANCED,
1693 .label = "profile acls",
1696 .offset = LOCAL_VAR(bProfileAcls),
1699 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1702 .label = "map acl inherit",
1705 .offset = LOCAL_VAR(bMap_acl_inherit),
1708 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1711 .label = "afs share",
1714 .offset = LOCAL_VAR(bAfs_Share),
1717 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1722 .p_class = P_GLOBAL,
1723 .offset = GLOBAL_VAR(max_mux),
1726 .flags = FLAG_ADVANCED,
1729 .label = "max xmit",
1731 .p_class = P_GLOBAL,
1732 .offset = GLOBAL_VAR(max_xmit),
1735 .flags = FLAG_ADVANCED,
1738 .label = "name resolve order",
1740 .p_class = P_GLOBAL,
1741 .offset = GLOBAL_VAR(szNameResolveOrder),
1744 .flags = FLAG_ADVANCED | FLAG_WIZARD,
1749 .p_class = P_GLOBAL,
1750 .offset = GLOBAL_VAR(max_ttl),
1753 .flags = FLAG_ADVANCED,
1756 .label = "max wins ttl",
1758 .p_class = P_GLOBAL,
1759 .offset = GLOBAL_VAR(max_wins_ttl),
1762 .flags = FLAG_ADVANCED,
1765 .label = "min wins ttl",
1767 .p_class = P_GLOBAL,
1768 .offset = GLOBAL_VAR(min_wins_ttl),
1771 .flags = FLAG_ADVANCED,
1774 .label = "time server",
1776 .p_class = P_GLOBAL,
1777 .offset = GLOBAL_VAR(bTimeServer),
1780 .flags = FLAG_ADVANCED,
1783 .label = "unix extensions",
1785 .p_class = P_GLOBAL,
1786 .offset = GLOBAL_VAR(bUnixExtensions),
1789 .flags = FLAG_ADVANCED,
1792 .label = "use spnego",
1794 .p_class = P_GLOBAL,
1795 .offset = GLOBAL_VAR(bUseSpnego),
1798 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
1801 .label = "client signing",
1803 .p_class = P_GLOBAL,
1804 .offset = GLOBAL_VAR(client_signing),
1806 .enum_list = enum_smb_signing_vals,
1807 .flags = FLAG_ADVANCED,
1810 .label = "server signing",
1812 .p_class = P_GLOBAL,
1813 .offset = GLOBAL_VAR(server_signing),
1815 .enum_list = enum_smb_signing_vals,
1816 .flags = FLAG_ADVANCED,
1819 .label = "smb encrypt",
1822 .offset = LOCAL_VAR(ismb_encrypt),
1824 .enum_list = enum_smb_signing_vals,
1825 .flags = FLAG_ADVANCED,
1828 .label = "client use spnego",
1830 .p_class = P_GLOBAL,
1831 .offset = GLOBAL_VAR(bClientUseSpnego),
1834 .flags = FLAG_ADVANCED,
1837 .label = "client ldap sasl wrapping",
1839 .p_class = P_GLOBAL,
1840 .offset = GLOBAL_VAR(client_ldap_sasl_wrapping),
1842 .enum_list = enum_ldap_sasl_wrapping,
1843 .flags = FLAG_ADVANCED,
1846 .label = "enable asu support",
1848 .p_class = P_GLOBAL,
1849 .offset = GLOBAL_VAR(bASUSupport),
1852 .flags = FLAG_ADVANCED,
1855 .label = "svcctl list",
1857 .p_class = P_GLOBAL,
1858 .offset = GLOBAL_VAR(szServicesList),
1861 .flags = FLAG_ADVANCED,
1864 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1867 .label = "block size",
1870 .offset = LOCAL_VAR(iBlock_size),
1873 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
1876 .label = "deadtime",
1878 .p_class = P_GLOBAL,
1879 .offset = GLOBAL_VAR(deadtime),
1882 .flags = FLAG_ADVANCED,
1885 .label = "getwd cache",
1887 .p_class = P_GLOBAL,
1888 .offset = GLOBAL_VAR(getwd_cache),
1891 .flags = FLAG_ADVANCED,
1894 .label = "keepalive",
1896 .p_class = P_GLOBAL,
1897 .offset = GLOBAL_VAR(iKeepalive),
1900 .flags = FLAG_ADVANCED,
1903 .label = "change notify",
1906 .offset = LOCAL_VAR(bChangeNotify),
1909 .flags = FLAG_ADVANCED | FLAG_SHARE,
1912 .label = "directory name cache size",
1915 .offset = LOCAL_VAR(iDirectoryNameCacheSize),
1918 .flags = FLAG_ADVANCED | FLAG_SHARE,
1921 .label = "kernel change notify",
1924 .offset = LOCAL_VAR(bKernelChangeNotify),
1927 .flags = FLAG_ADVANCED | FLAG_SHARE,
1930 .label = "lpq cache time",
1932 .p_class = P_GLOBAL,
1933 .offset = GLOBAL_VAR(lpqcachetime),
1936 .flags = FLAG_ADVANCED,
1939 .label = "max smbd processes",
1941 .p_class = P_GLOBAL,
1942 .offset = GLOBAL_VAR(iMaxSmbdProcesses),
1945 .flags = FLAG_ADVANCED,
1948 .label = "max connections",
1951 .offset = LOCAL_VAR(iMaxConnections),
1954 .flags = FLAG_ADVANCED | FLAG_SHARE,
1957 .label = "paranoid server security",
1959 .p_class = P_GLOBAL,
1960 .offset = GLOBAL_VAR(paranoid_server_security),
1963 .flags = FLAG_ADVANCED,
1966 .label = "max disk size",
1968 .p_class = P_GLOBAL,
1969 .offset = GLOBAL_VAR(maxdisksize),
1972 .flags = FLAG_ADVANCED,
1975 .label = "max open files",
1977 .p_class = P_GLOBAL,
1978 .offset = GLOBAL_VAR(max_open_files),
1981 .flags = FLAG_ADVANCED,
1984 .label = "min print space",
1987 .offset = LOCAL_VAR(iMinPrintSpace),
1990 .flags = FLAG_ADVANCED | FLAG_PRINT,
1993 .label = "socket options",
1995 .p_class = P_GLOBAL,
1996 .offset = GLOBAL_VAR(szSocketOptions),
1999 .flags = FLAG_ADVANCED,
2002 .label = "strict allocate",
2005 .offset = LOCAL_VAR(bStrictAllocate),
2008 .flags = FLAG_ADVANCED | FLAG_SHARE,
2011 .label = "strict sync",
2014 .offset = LOCAL_VAR(bStrictSync),
2017 .flags = FLAG_ADVANCED | FLAG_SHARE,
2020 .label = "sync always",
2023 .offset = LOCAL_VAR(bSyncAlways),
2026 .flags = FLAG_ADVANCED | FLAG_SHARE,
2029 .label = "use mmap",
2031 .p_class = P_GLOBAL,
2032 .offset = GLOBAL_VAR(bUseMmap),
2035 .flags = FLAG_ADVANCED,
2038 .label = "use sendfile",
2041 .offset = LOCAL_VAR(bUseSendfile),
2044 .flags = FLAG_ADVANCED | FLAG_SHARE,
2047 .label = "hostname lookups",
2049 .p_class = P_GLOBAL,
2050 .offset = GLOBAL_VAR(bHostnameLookups),
2053 .flags = FLAG_ADVANCED,
2056 .label = "write cache size",
2059 .offset = LOCAL_VAR(iWriteCacheSize),
2062 .flags = FLAG_ADVANCED | FLAG_SHARE,
2065 .label = "name cache timeout",
2067 .p_class = P_GLOBAL,
2068 .offset = GLOBAL_VAR(name_cache_timeout),
2071 .flags = FLAG_ADVANCED,
2074 .label = "ctdbd socket",
2076 .p_class = P_GLOBAL,
2077 .offset = GLOBAL_VAR(ctdbdSocket),
2080 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2083 .label = "cluster addresses",
2085 .p_class = P_GLOBAL,
2086 .offset = GLOBAL_VAR(szClusterAddresses),
2089 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2092 .label = "clustering",
2094 .p_class = P_GLOBAL,
2095 .offset = GLOBAL_VAR(clustering),
2098 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2101 .label = "ctdb timeout",
2103 .p_class = P_GLOBAL,
2104 .offset = GLOBAL_VAR(ctdb_timeout),
2107 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2110 .label = "ctdb locktime warn threshold",
2112 .p_class = P_GLOBAL,
2113 .offset = GLOBAL_VAR(ctdb_locktime_warn_threshold),
2116 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2119 .label = "smb2 max read",
2121 .p_class = P_GLOBAL,
2122 .offset = GLOBAL_VAR(ismb2_max_read),
2125 .flags = FLAG_ADVANCED,
2128 .label = "smb2 max write",
2130 .p_class = P_GLOBAL,
2131 .offset = GLOBAL_VAR(ismb2_max_write),
2134 .flags = FLAG_ADVANCED,
2137 .label = "smb2 max trans",
2139 .p_class = P_GLOBAL,
2140 .offset = GLOBAL_VAR(ismb2_max_trans),
2143 .flags = FLAG_ADVANCED,
2146 .label = "smb2 max credits",
2148 .p_class = P_GLOBAL,
2149 .offset = GLOBAL_VAR(ismb2_max_credits),
2152 .flags = FLAG_ADVANCED,
2155 {N_("Printing Options"), P_SEP, P_SEPARATOR},
2158 .label = "max reported print jobs",
2161 .offset = LOCAL_VAR(iMaxReportedPrintJobs),
2164 .flags = FLAG_ADVANCED | FLAG_PRINT,
2167 .label = "max print jobs",
2170 .offset = LOCAL_VAR(iMaxPrintJobs),
2173 .flags = FLAG_ADVANCED | FLAG_PRINT,
2176 .label = "load printers",
2178 .p_class = P_GLOBAL,
2179 .offset = GLOBAL_VAR(bLoadPrinters),
2182 .flags = FLAG_ADVANCED | FLAG_PRINT,
2185 .label = "printcap cache time",
2187 .p_class = P_GLOBAL,
2188 .offset = GLOBAL_VAR(PrintcapCacheTime),
2191 .flags = FLAG_ADVANCED | FLAG_PRINT,
2194 .label = "printcap name",
2196 .p_class = P_GLOBAL,
2197 .offset = GLOBAL_VAR(szPrintcapname),
2200 .flags = FLAG_ADVANCED | FLAG_PRINT,
2203 .label = "printcap",
2205 .p_class = P_GLOBAL,
2206 .offset = GLOBAL_VAR(szPrintcapname),
2212 .label = "printable",
2215 .offset = LOCAL_VAR(bPrint_ok),
2218 .flags = FLAG_ADVANCED | FLAG_PRINT,
2221 .label = "print notify backchannel",
2224 .offset = LOCAL_VAR(bPrintNotifyBackchannel),
2227 .flags = FLAG_ADVANCED,
2230 .label = "print ok",
2233 .offset = LOCAL_VAR(bPrint_ok),
2239 .label = "printing",
2242 .offset = LOCAL_VAR(iPrinting),
2243 .special = handle_printing,
2244 .enum_list = enum_printing,
2245 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2248 .label = "cups options",
2251 .offset = LOCAL_VAR(szCupsOptions),
2254 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2257 .label = "cups server",
2259 .p_class = P_GLOBAL,
2260 .offset = GLOBAL_VAR(szCupsServer),
2263 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2266 .label = "cups encrypt",
2268 .p_class = P_GLOBAL,
2269 .offset = GLOBAL_VAR(CupsEncrypt),
2271 .enum_list = enum_bool_auto,
2272 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2276 .label = "cups connection timeout",
2278 .p_class = P_GLOBAL,
2279 .offset = GLOBAL_VAR(cups_connection_timeout),
2282 .flags = FLAG_ADVANCED,
2285 .label = "iprint server",
2287 .p_class = P_GLOBAL,
2288 .offset = GLOBAL_VAR(szIPrintServer),
2291 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2294 .label = "print command",
2297 .offset = LOCAL_VAR(szPrintcommand),
2300 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2303 .label = "disable spoolss",
2305 .p_class = P_GLOBAL,
2306 .offset = GLOBAL_VAR(bDisableSpoolss),
2309 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2312 .label = "enable spoolss",
2314 .p_class = P_GLOBAL,
2315 .offset = GLOBAL_VAR(bDisableSpoolss),
2321 .label = "lpq command",
2324 .offset = LOCAL_VAR(szLpqcommand),
2327 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2330 .label = "lprm command",
2333 .offset = LOCAL_VAR(szLprmcommand),
2336 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2339 .label = "lppause command",
2342 .offset = LOCAL_VAR(szLppausecommand),
2345 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2348 .label = "lpresume command",
2351 .offset = LOCAL_VAR(szLpresumecommand),
2354 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2357 .label = "queuepause command",
2360 .offset = LOCAL_VAR(szQueuepausecommand),
2363 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2366 .label = "queueresume command",
2369 .offset = LOCAL_VAR(szQueueresumecommand),
2372 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2375 .label = "addport command",
2377 .p_class = P_GLOBAL,
2378 .offset = GLOBAL_VAR(szAddPortCommand),
2381 .flags = FLAG_ADVANCED,
2384 .label = "enumports command",
2386 .p_class = P_GLOBAL,
2387 .offset = GLOBAL_VAR(szEnumPortsCommand),
2390 .flags = FLAG_ADVANCED,
2393 .label = "addprinter command",
2395 .p_class = P_GLOBAL,
2396 .offset = GLOBAL_VAR(szAddPrinterCommand),
2399 .flags = FLAG_ADVANCED,
2402 .label = "deleteprinter command",
2404 .p_class = P_GLOBAL,
2405 .offset = GLOBAL_VAR(szDeletePrinterCommand),
2408 .flags = FLAG_ADVANCED,
2411 .label = "show add printer wizard",
2413 .p_class = P_GLOBAL,
2414 .offset = GLOBAL_VAR(bMsAddPrinterWizard),
2417 .flags = FLAG_ADVANCED,
2420 .label = "os2 driver map",
2422 .p_class = P_GLOBAL,
2423 .offset = GLOBAL_VAR(szOs2DriverMap),
2426 .flags = FLAG_ADVANCED,
2430 .label = "printer name",
2433 .offset = LOCAL_VAR(szPrintername),
2436 .flags = FLAG_ADVANCED | FLAG_PRINT,
2442 .offset = LOCAL_VAR(szPrintername),
2448 .label = "use client driver",
2451 .offset = LOCAL_VAR(bUseClientDriver),
2454 .flags = FLAG_ADVANCED | FLAG_PRINT,
2457 .label = "default devmode",
2460 .offset = LOCAL_VAR(bDefaultDevmode),
2463 .flags = FLAG_ADVANCED | FLAG_PRINT,
2466 .label = "force printername",
2469 .offset = LOCAL_VAR(bForcePrintername),
2472 .flags = FLAG_ADVANCED | FLAG_PRINT,
2475 .label = "printjob username",
2478 .offset = LOCAL_VAR(szPrintjobUsername),
2481 .flags = FLAG_ADVANCED | FLAG_PRINT,
2484 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
2487 .label = "mangling method",
2489 .p_class = P_GLOBAL,
2490 .offset = GLOBAL_VAR(szManglingMethod),
2493 .flags = FLAG_ADVANCED,
2496 .label = "mangle prefix",
2498 .p_class = P_GLOBAL,
2499 .offset = GLOBAL_VAR(mangle_prefix),
2502 .flags = FLAG_ADVANCED,
2506 .label = "default case",
2509 .offset = LOCAL_VAR(iDefaultCase),
2511 .enum_list = enum_case,
2512 .flags = FLAG_ADVANCED | FLAG_SHARE,
2515 .label = "case sensitive",
2518 .offset = LOCAL_VAR(iCaseSensitive),
2520 .enum_list = enum_bool_auto,
2521 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2524 .label = "casesignames",
2527 .offset = LOCAL_VAR(iCaseSensitive),
2529 .enum_list = enum_bool_auto,
2530 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE,
2533 .label = "preserve case",
2536 .offset = LOCAL_VAR(bCasePreserve),
2539 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2542 .label = "short preserve case",
2545 .offset = LOCAL_VAR(bShortCasePreserve),
2548 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2551 .label = "mangling char",
2554 .offset = LOCAL_VAR(magic_char),
2557 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2560 .label = "hide dot files",
2563 .offset = LOCAL_VAR(bHideDotFiles),
2566 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2569 .label = "hide special files",
2572 .offset = LOCAL_VAR(bHideSpecialFiles),
2575 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2578 .label = "hide unreadable",
2581 .offset = LOCAL_VAR(bHideUnReadable),
2584 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2587 .label = "hide unwriteable files",
2590 .offset = LOCAL_VAR(bHideUnWriteableFiles),
2593 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2596 .label = "delete veto files",
2599 .offset = LOCAL_VAR(bDeleteVetoFiles),
2602 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2605 .label = "veto files",
2608 .offset = LOCAL_VAR(szVetoFiles),
2611 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2614 .label = "hide files",
2617 .offset = LOCAL_VAR(szHideFiles),
2620 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2623 .label = "veto oplock files",
2626 .offset = LOCAL_VAR(szVetoOplockFiles),
2629 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2632 .label = "map archive",
2635 .offset = LOCAL_VAR(bMap_archive),
2638 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2641 .label = "map hidden",
2644 .offset = LOCAL_VAR(bMap_hidden),
2647 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2650 .label = "map system",
2653 .offset = LOCAL_VAR(bMap_system),
2656 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2659 .label = "map readonly",
2662 .offset = LOCAL_VAR(iMap_readonly),
2664 .enum_list = enum_map_readonly,
2665 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2668 .label = "mangled names",
2671 .offset = LOCAL_VAR(bMangledNames),
2674 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2677 .label = "max stat cache size",
2679 .p_class = P_GLOBAL,
2680 .offset = GLOBAL_VAR(iMaxStatCacheSize),
2683 .flags = FLAG_ADVANCED,
2686 .label = "stat cache",
2688 .p_class = P_GLOBAL,
2689 .offset = GLOBAL_VAR(bStatCache),
2692 .flags = FLAG_ADVANCED,
2695 .label = "store dos attributes",
2698 .offset = LOCAL_VAR(bStoreDosAttributes),
2701 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2704 .label = "dmapi support",
2707 .offset = LOCAL_VAR(bDmapiSupport),
2710 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2714 {N_("Domain Options"), P_SEP, P_SEPARATOR},
2717 .label = "machine password timeout",
2719 .p_class = P_GLOBAL,
2720 .offset = GLOBAL_VAR(machine_password_timeout),
2723 .flags = FLAG_ADVANCED | FLAG_WIZARD,
2726 {N_("Logon Options"), P_SEP, P_SEPARATOR},
2729 .label = "add user script",
2731 .p_class = P_GLOBAL,
2732 .offset = GLOBAL_VAR(szAddUserScript),
2735 .flags = FLAG_ADVANCED,
2738 .label = "rename user script",
2740 .p_class = P_GLOBAL,
2741 .offset = GLOBAL_VAR(szRenameUserScript),
2744 .flags = FLAG_ADVANCED,
2747 .label = "delete user script",
2749 .p_class = P_GLOBAL,
2750 .offset = GLOBAL_VAR(szDelUserScript),
2753 .flags = FLAG_ADVANCED,
2756 .label = "add group script",
2758 .p_class = P_GLOBAL,
2759 .offset = GLOBAL_VAR(szAddGroupScript),
2762 .flags = FLAG_ADVANCED,
2765 .label = "delete group script",
2767 .p_class = P_GLOBAL,
2768 .offset = GLOBAL_VAR(szDelGroupScript),
2771 .flags = FLAG_ADVANCED,
2774 .label = "add user to group script",
2776 .p_class = P_GLOBAL,
2777 .offset = GLOBAL_VAR(szAddUserToGroupScript),
2780 .flags = FLAG_ADVANCED,
2783 .label = "delete user from group script",
2785 .p_class = P_GLOBAL,
2786 .offset = GLOBAL_VAR(szDelUserFromGroupScript),
2789 .flags = FLAG_ADVANCED,
2792 .label = "set primary group script",
2794 .p_class = P_GLOBAL,
2795 .offset = GLOBAL_VAR(szSetPrimaryGroupScript),
2798 .flags = FLAG_ADVANCED,
2801 .label = "add machine script",
2803 .p_class = P_GLOBAL,
2804 .offset = GLOBAL_VAR(szAddMachineScript),
2807 .flags = FLAG_ADVANCED,
2810 .label = "shutdown script",
2812 .p_class = P_GLOBAL,
2813 .offset = GLOBAL_VAR(szShutdownScript),
2816 .flags = FLAG_ADVANCED,
2819 .label = "abort shutdown script",
2821 .p_class = P_GLOBAL,
2822 .offset = GLOBAL_VAR(szAbortShutdownScript),
2825 .flags = FLAG_ADVANCED,
2828 .label = "username map script",
2830 .p_class = P_GLOBAL,
2831 .offset = GLOBAL_VAR(szUsernameMapScript),
2834 .flags = FLAG_ADVANCED,
2837 .label = "username map cache time",
2839 .p_class = P_GLOBAL,
2840 .offset = GLOBAL_VAR(iUsernameMapCacheTime),
2843 .flags = FLAG_ADVANCED,
2846 .label = "logon script",
2848 .p_class = P_GLOBAL,
2849 .offset = GLOBAL_VAR(szLogonScript),
2852 .flags = FLAG_ADVANCED,
2855 .label = "logon path",
2857 .p_class = P_GLOBAL,
2858 .offset = GLOBAL_VAR(szLogonPath),
2861 .flags = FLAG_ADVANCED,
2864 .label = "logon drive",
2866 .p_class = P_GLOBAL,
2867 .offset = GLOBAL_VAR(szLogonDrive),
2870 .flags = FLAG_ADVANCED,
2873 .label = "logon home",
2875 .p_class = P_GLOBAL,
2876 .offset = GLOBAL_VAR(szLogonHome),
2879 .flags = FLAG_ADVANCED,
2882 .label = "domain logons",
2884 .p_class = P_GLOBAL,
2885 .offset = GLOBAL_VAR(bDomainLogons),
2888 .flags = FLAG_ADVANCED,
2892 .label = "init logon delayed hosts",
2894 .p_class = P_GLOBAL,
2895 .offset = GLOBAL_VAR(szInitLogonDelayedHosts),
2898 .flags = FLAG_ADVANCED,
2902 .label = "init logon delay",
2904 .p_class = P_GLOBAL,
2905 .offset = GLOBAL_VAR(InitLogonDelay),
2908 .flags = FLAG_ADVANCED,
2912 {N_("Browse Options"), P_SEP, P_SEPARATOR},
2915 .label = "os level",
2917 .p_class = P_GLOBAL,
2918 .offset = GLOBAL_VAR(os_level),
2921 .flags = FLAG_BASIC | FLAG_ADVANCED,
2924 .label = "lm announce",
2926 .p_class = P_GLOBAL,
2927 .offset = GLOBAL_VAR(lm_announce),
2929 .enum_list = enum_bool_auto,
2930 .flags = FLAG_ADVANCED,
2933 .label = "lm interval",
2935 .p_class = P_GLOBAL,
2936 .offset = GLOBAL_VAR(lm_interval),
2939 .flags = FLAG_ADVANCED,
2942 .label = "preferred master",
2944 .p_class = P_GLOBAL,
2945 .offset = GLOBAL_VAR(iPreferredMaster),
2947 .enum_list = enum_bool_auto,
2948 .flags = FLAG_BASIC | FLAG_ADVANCED,
2951 .label = "prefered master",
2953 .p_class = P_GLOBAL,
2954 .offset = GLOBAL_VAR(iPreferredMaster),
2956 .enum_list = enum_bool_auto,
2960 .label = "local master",
2962 .p_class = P_GLOBAL,
2963 .offset = GLOBAL_VAR(bLocalMaster),
2966 .flags = FLAG_BASIC | FLAG_ADVANCED,
2969 .label = "domain master",
2971 .p_class = P_GLOBAL,
2972 .offset = GLOBAL_VAR(iDomainMaster),
2974 .enum_list = enum_bool_auto,
2975 .flags = FLAG_BASIC | FLAG_ADVANCED,
2978 .label = "browse list",
2980 .p_class = P_GLOBAL,
2981 .offset = GLOBAL_VAR(bBrowseList),
2984 .flags = FLAG_ADVANCED,
2987 .label = "browseable",
2990 .offset = LOCAL_VAR(bBrowseable),
2993 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
2996 .label = "browsable",
2999 .offset = LOCAL_VAR(bBrowseable),
3005 .label = "access based share enum",
3008 .offset = LOCAL_VAR(bAccessBasedShareEnum),
3011 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE
3014 .label = "enhanced browsing",
3016 .p_class = P_GLOBAL,
3017 .offset = GLOBAL_VAR(enhanced_browsing),
3020 .flags = FLAG_ADVANCED,
3023 {N_("WINS Options"), P_SEP, P_SEPARATOR},
3026 .label = "dns proxy",
3028 .p_class = P_GLOBAL,
3029 .offset = GLOBAL_VAR(bDNSproxy),
3032 .flags = FLAG_ADVANCED,
3035 .label = "wins proxy",
3037 .p_class = P_GLOBAL,
3038 .offset = GLOBAL_VAR(bWINSproxy),
3041 .flags = FLAG_ADVANCED,
3044 .label = "wins server",
3046 .p_class = P_GLOBAL,
3047 .offset = GLOBAL_VAR(szWINSservers),
3050 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
3053 .label = "wins support",
3055 .p_class = P_GLOBAL,
3056 .offset = GLOBAL_VAR(bWINSsupport),
3059 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
3062 .label = "wins hook",
3064 .p_class = P_GLOBAL,
3065 .offset = GLOBAL_VAR(szWINSHook),
3068 .flags = FLAG_ADVANCED,
3071 {N_("Locking Options"), P_SEP, P_SEPARATOR},
3074 .label = "blocking locks",
3077 .offset = LOCAL_VAR(bBlockingLocks),
3080 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3083 .label = "csc policy",
3086 .offset = LOCAL_VAR(iCSCPolicy),
3088 .enum_list = enum_csc_policy,
3089 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3092 .label = "fake oplocks",
3095 .offset = LOCAL_VAR(bFakeOplocks),
3098 .flags = FLAG_ADVANCED | FLAG_SHARE,
3101 .label = "kernel oplocks",
3103 .p_class = P_GLOBAL,
3104 .offset = GLOBAL_VAR(bKernelOplocks),
3107 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3113 .offset = LOCAL_VAR(bLocking),
3116 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3119 .label = "lock spin time",
3121 .p_class = P_GLOBAL,
3122 .offset = GLOBAL_VAR(iLockSpinTime),
3125 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3131 .offset = LOCAL_VAR(bOpLocks),
3134 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3137 .label = "level2 oplocks",
3140 .offset = LOCAL_VAR(bLevel2OpLocks),
3143 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3146 .label = "oplock break wait time",
3148 .p_class = P_GLOBAL,
3149 .offset = GLOBAL_VAR(oplock_break_wait_time),
3152 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3155 .label = "oplock contention limit",
3158 .offset = LOCAL_VAR(iOplockContentionLimit),
3161 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3164 .label = "posix locking",
3167 .offset = LOCAL_VAR(bPosixLocking),
3170 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3173 .label = "strict locking",
3176 .offset = LOCAL_VAR(iStrictLocking),
3178 .enum_list = enum_bool_auto,
3179 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3182 .label = "share modes",
3185 .offset = LOCAL_VAR(bShareModes),
3188 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_DEPRECATED,
3191 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
3194 .label = "ldap admin dn",
3196 .p_class = P_GLOBAL,
3197 .offset = GLOBAL_VAR(szLdapAdminDn),
3200 .flags = FLAG_ADVANCED,
3203 .label = "ldap delete dn",
3205 .p_class = P_GLOBAL,
3206 .offset = GLOBAL_VAR(ldap_delete_dn),
3209 .flags = FLAG_ADVANCED,
3212 .label = "ldap group suffix",
3214 .p_class = P_GLOBAL,
3215 .offset = GLOBAL_VAR(szLdapGroupSuffix),
3218 .flags = FLAG_ADVANCED,
3221 .label = "ldap idmap suffix",
3223 .p_class = P_GLOBAL,
3224 .offset = GLOBAL_VAR(szLdapIdmapSuffix),
3227 .flags = FLAG_ADVANCED,
3230 .label = "ldap machine suffix",
3232 .p_class = P_GLOBAL,
3233 .offset = GLOBAL_VAR(szLdapMachineSuffix),
3236 .flags = FLAG_ADVANCED,
3239 .label = "ldap passwd sync",
3241 .p_class = P_GLOBAL,
3242 .offset = GLOBAL_VAR(ldap_passwd_sync),
3244 .enum_list = enum_ldap_passwd_sync,
3245 .flags = FLAG_ADVANCED,
3248 .label = "ldap password sync",
3250 .p_class = P_GLOBAL,
3251 .offset = GLOBAL_VAR(ldap_passwd_sync),
3253 .enum_list = enum_ldap_passwd_sync,
3257 .label = "ldap replication sleep",
3259 .p_class = P_GLOBAL,
3260 .offset = GLOBAL_VAR(ldap_replication_sleep),
3263 .flags = FLAG_ADVANCED,
3266 .label = "ldap suffix",
3268 .p_class = P_GLOBAL,
3269 .offset = GLOBAL_VAR(szLdapSuffix),
3272 .flags = FLAG_ADVANCED,
3275 .label = "ldap ssl",
3277 .p_class = P_GLOBAL,
3278 .offset = GLOBAL_VAR(ldap_ssl),
3280 .enum_list = enum_ldap_ssl,
3281 .flags = FLAG_ADVANCED,
3284 .label = "ldap ssl ads",
3286 .p_class = P_GLOBAL,
3287 .offset = GLOBAL_VAR(ldap_ssl_ads),
3290 .flags = FLAG_ADVANCED,
3293 .label = "ldap deref",
3295 .p_class = P_GLOBAL,
3296 .offset = GLOBAL_VAR(ldap_deref),
3298 .enum_list = enum_ldap_deref,
3299 .flags = FLAG_ADVANCED,
3302 .label = "ldap follow referral",
3304 .p_class = P_GLOBAL,
3305 .offset = GLOBAL_VAR(ldap_follow_referral),
3307 .enum_list = enum_bool_auto,
3308 .flags = FLAG_ADVANCED,
3311 .label = "ldap timeout",
3313 .p_class = P_GLOBAL,
3314 .offset = GLOBAL_VAR(ldap_timeout),
3317 .flags = FLAG_ADVANCED,
3320 .label = "ldap connection timeout",
3322 .p_class = P_GLOBAL,
3323 .offset = GLOBAL_VAR(ldap_connection_timeout),
3326 .flags = FLAG_ADVANCED,
3329 .label = "ldap page size",
3331 .p_class = P_GLOBAL,
3332 .offset = GLOBAL_VAR(ldap_page_size),
3335 .flags = FLAG_ADVANCED,
3338 .label = "ldap user suffix",
3340 .p_class = P_GLOBAL,
3341 .offset = GLOBAL_VAR(szLdapUserSuffix),
3344 .flags = FLAG_ADVANCED,
3347 .label = "ldap debug level",
3349 .p_class = P_GLOBAL,
3350 .offset = GLOBAL_VAR(ldap_debug_level),
3351 .special = handle_ldap_debug_level,
3353 .flags = FLAG_ADVANCED,
3356 .label = "ldap debug threshold",
3358 .p_class = P_GLOBAL,
3359 .offset = GLOBAL_VAR(ldap_debug_threshold),
3362 .flags = FLAG_ADVANCED,
3365 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
3368 .label = "eventlog list",
3370 .p_class = P_GLOBAL,
3371 .offset = GLOBAL_VAR(szEventLogs),
3374 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
3377 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
3380 .label = "add share command",
3382 .p_class = P_GLOBAL,
3383 .offset = GLOBAL_VAR(szAddShareCommand),
3386 .flags = FLAG_ADVANCED,
3389 .label = "change share command",
3391 .p_class = P_GLOBAL,
3392 .offset = GLOBAL_VAR(szChangeShareCommand),
3395 .flags = FLAG_ADVANCED,
3398 .label = "delete share command",
3400 .p_class = P_GLOBAL,
3401 .offset = GLOBAL_VAR(szDeleteShareCommand),
3404 .flags = FLAG_ADVANCED,
3407 .label = "config file",
3409 .p_class = P_GLOBAL,
3410 .offset = GLOBAL_VAR(szConfigFile),
3413 .flags = FLAG_HIDE|FLAG_META,
3418 .p_class = P_GLOBAL,
3419 .offset = GLOBAL_VAR(szAutoServices),
3422 .flags = FLAG_ADVANCED,
3425 .label = "auto services",
3427 .p_class = P_GLOBAL,
3428 .offset = GLOBAL_VAR(szAutoServices),
3431 .flags = FLAG_ADVANCED,
3434 .label = "lock directory",
3436 .p_class = P_GLOBAL,
3437 .offset = GLOBAL_VAR(szLockDir),
3440 .flags = FLAG_ADVANCED,
3443 .label = "lock dir",
3445 .p_class = P_GLOBAL,
3446 .offset = GLOBAL_VAR(szLockDir),
3452 .label = "state directory",
3454 .p_class = P_GLOBAL,
3455 .offset = GLOBAL_VAR(szStateDir),
3458 .flags = FLAG_ADVANCED,
3461 .label = "cache directory",
3463 .p_class = P_GLOBAL,
3464 .offset = GLOBAL_VAR(szCacheDir),
3467 .flags = FLAG_ADVANCED,
3470 .label = "pid directory",
3472 .p_class = P_GLOBAL,
3473 .offset = GLOBAL_VAR(szPidDir),
3476 .flags = FLAG_ADVANCED,
3480 .label = "utmp directory",
3482 .p_class = P_GLOBAL,
3483 .offset = GLOBAL_VAR(szUtmpDir),
3486 .flags = FLAG_ADVANCED,
3489 .label = "wtmp directory",
3491 .p_class = P_GLOBAL,
3492 .offset = GLOBAL_VAR(szWtmpDir),
3495 .flags = FLAG_ADVANCED,
3500 .p_class = P_GLOBAL,
3501 .offset = GLOBAL_VAR(bUtmp),
3504 .flags = FLAG_ADVANCED,
3508 .label = "default service",
3510 .p_class = P_GLOBAL,
3511 .offset = GLOBAL_VAR(szDefaultService),
3514 .flags = FLAG_ADVANCED,
3519 .p_class = P_GLOBAL,
3520 .offset = GLOBAL_VAR(szDefaultService),
3523 .flags = FLAG_ADVANCED,
3526 .label = "message command",
3528 .p_class = P_GLOBAL,
3529 .offset = GLOBAL_VAR(szMsgCommand),
3532 .flags = FLAG_ADVANCED,
3535 .label = "dfree cache time",
3538 .offset = LOCAL_VAR(iDfreeCacheTime),
3541 .flags = FLAG_ADVANCED,
3544 .label = "dfree command",
3547 .offset = LOCAL_VAR(szDfree),
3550 .flags = FLAG_ADVANCED,
3553 .label = "get quota command",
3555 .p_class = P_GLOBAL,
3556 .offset = GLOBAL_VAR(szGetQuota),
3559 .flags = FLAG_ADVANCED,
3562 .label = "set quota command",
3564 .p_class = P_GLOBAL,
3565 .offset = GLOBAL_VAR(szSetQuota),
3568 .flags = FLAG_ADVANCED,
3571 .label = "remote announce",
3573 .p_class = P_GLOBAL,
3574 .offset = GLOBAL_VAR(szRemoteAnnounce),
3577 .flags = FLAG_ADVANCED,
3580 .label = "remote browse sync",
3582 .p_class = P_GLOBAL,
3583 .offset = GLOBAL_VAR(szRemoteBrowseSync),
3586 .flags = FLAG_ADVANCED,
3589 .label = "socket address",
3591 .p_class = P_GLOBAL,
3592 .offset = GLOBAL_VAR(szSocketAddress),
3595 .flags = FLAG_ADVANCED,
3598 .label = "nmbd bind explicit broadcast",
3600 .p_class = P_GLOBAL,
3601 .offset = GLOBAL_VAR(bNmbdBindExplicitBroadcast),
3604 .flags = FLAG_ADVANCED,
3607 .label = "homedir map",
3609 .p_class = P_GLOBAL,
3610 .offset = GLOBAL_VAR(szNISHomeMapName),
3613 .flags = FLAG_ADVANCED,
3616 .label = "afs username map",
3618 .p_class = P_GLOBAL,
3619 .offset = GLOBAL_VAR(szAfsUsernameMap),
3622 .flags = FLAG_ADVANCED,
3625 .label = "afs token lifetime",
3627 .p_class = P_GLOBAL,
3628 .offset = GLOBAL_VAR(iAfsTokenLifetime),
3631 .flags = FLAG_ADVANCED,
3634 .label = "log nt token command",
3636 .p_class = P_GLOBAL,
3637 .offset = GLOBAL_VAR(szLogNtTokenCommand),
3640 .flags = FLAG_ADVANCED,
3643 .label = "NIS homedir",
3645 .p_class = P_GLOBAL,
3646 .offset = GLOBAL_VAR(bNISHomeMap),
3649 .flags = FLAG_ADVANCED,
3655 .offset = LOCAL_VAR(valid),
3664 .offset = LOCAL_VAR(szCopy),
3665 .special = handle_copy,
3673 .offset = LOCAL_VAR(szInclude),
3674 .special = handle_include,
3676 .flags = FLAG_HIDE|FLAG_META,
3682 .offset = LOCAL_VAR(szPreExec),
3685 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
3691 .offset = LOCAL_VAR(szPreExec),
3694 .flags = FLAG_ADVANCED,
3697 .label = "preexec close",
3700 .offset = LOCAL_VAR(bPreexecClose),
3703 .flags = FLAG_ADVANCED | FLAG_SHARE,
3706 .label = "postexec",
3709 .offset = LOCAL_VAR(szPostExec),
3712 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
3715 .label = "root preexec",
3718 .offset = LOCAL_VAR(szRootPreExec),
3721 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
3724 .label = "root preexec close",
3727 .offset = LOCAL_VAR(bRootpreexecClose),
3730 .flags = FLAG_ADVANCED | FLAG_SHARE,
3733 .label = "root postexec",
3736 .offset = LOCAL_VAR(szRootPostExec),
3739 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
3742 .label = "available",
3745 .offset = LOCAL_VAR(bAvailable),
3748 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
3751 .label = "registry shares",
3753 .p_class = P_GLOBAL,
3754 .offset = GLOBAL_VAR(bRegistryShares),
3757 .flags = FLAG_ADVANCED,
3760 .label = "usershare allow guests",
3762 .p_class = P_GLOBAL,
3763 .offset = GLOBAL_VAR(bUsershareAllowGuests),
3766 .flags = FLAG_ADVANCED,
3769 .label = "usershare max shares",
3771 .p_class = P_GLOBAL,
3772 .offset = GLOBAL_VAR(iUsershareMaxShares),
3775 .flags = FLAG_ADVANCED,
3778 .label = "usershare owner only",
3780 .p_class = P_GLOBAL,
3781 .offset = GLOBAL_VAR(bUsershareOwnerOnly),
3784 .flags = FLAG_ADVANCED,
3787 .label = "usershare path",
3789 .p_class = P_GLOBAL,
3790 .offset = GLOBAL_VAR(szUsersharePath),
3793 .flags = FLAG_ADVANCED,
3796 .label = "usershare prefix allow list",
3798 .p_class = P_GLOBAL,
3799 .offset = GLOBAL_VAR(szUsersharePrefixAllowList),
3802 .flags = FLAG_ADVANCED,
3805 .label = "usershare prefix deny list",
3807 .p_class = P_GLOBAL,
3808 .offset = GLOBAL_VAR(szUsersharePrefixDenyList),
3811 .flags = FLAG_ADVANCED,
3814 .label = "usershare template share",
3816 .p_class = P_GLOBAL,
3817 .offset = GLOBAL_VAR(szUsershareTemplateShare),
3820 .flags = FLAG_ADVANCED,
3826 .offset = LOCAL_VAR(volume),
3829 .flags = FLAG_ADVANCED | FLAG_SHARE,
3835 .offset = LOCAL_VAR(fstype),
3838 .flags = FLAG_ADVANCED | FLAG_SHARE,
3841 .label = "set directory",
3844 .offset = LOCAL_VAR(bNo_set_dir),
3847 .flags = FLAG_ADVANCED | FLAG_SHARE,
3850 .label = "allow insecure wide links",
3852 .p_class = P_GLOBAL,
3853 .offset = GLOBAL_VAR(bAllowInsecureWidelinks),
3856 .flags = FLAG_ADVANCED,
3859 .label = "wide links",
3862 .offset = LOCAL_VAR(bWidelinks),
3865 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3868 .label = "follow symlinks",
3871 .offset = LOCAL_VAR(bSymlinks),
3874 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3877 .label = "dont descend",
3880 .offset = LOCAL_VAR(szDontdescend),
3883 .flags = FLAG_ADVANCED | FLAG_SHARE,
3886 .label = "magic script",
3889 .offset = LOCAL_VAR(szMagicScript),
3892 .flags = FLAG_ADVANCED | FLAG_SHARE,
3895 .label = "magic output",
3898 .offset = LOCAL_VAR(szMagicOutput),
3901 .flags = FLAG_ADVANCED | FLAG_SHARE,
3904 .label = "delete readonly",
3907 .offset = LOCAL_VAR(bDeleteReadonly),
3910 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3913 .label = "dos filemode",
3916 .offset = LOCAL_VAR(bDosFilemode),
3919 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3922 .label = "dos filetimes",
3925 .offset = LOCAL_VAR(bDosFiletimes),
3928 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3931 .label = "dos filetime resolution",
3934 .offset = LOCAL_VAR(bDosFiletimeResolution),
3937 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3940 .label = "fake directory create times",
3943 .offset = LOCAL_VAR(bFakeDirCreateTimes),
3946 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3949 .label = "async smb echo handler",
3951 .p_class = P_GLOBAL,
3952 .offset = GLOBAL_VAR(bAsyncSMBEchoHandler),
3955 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3958 .label = "multicast dns register",
3960 .p_class = P_GLOBAL,
3961 .offset = GLOBAL_VAR(bMulticastDnsRegister),
3964 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3967 .label = "panic action",
3969 .p_class = P_GLOBAL,
3970 .offset = GLOBAL_VAR(szPanicAction),
3973 .flags = FLAG_ADVANCED,
3976 .label = "perfcount module",
3978 .p_class = P_GLOBAL,
3979 .offset = GLOBAL_VAR(szSMBPerfcountModule),
3982 .flags = FLAG_ADVANCED,
3985 {N_("VFS module options"), P_SEP, P_SEPARATOR},
3988 .label = "vfs objects",
3991 .offset = LOCAL_VAR(szVfsObjects),
3994 .flags = FLAG_ADVANCED | FLAG_SHARE,
3997 .label = "vfs object",
4000 .offset = LOCAL_VAR(szVfsObjects),
4007 {N_("MSDFS options"), P_SEP, P_SEPARATOR},
4010 .label = "msdfs root",
4013 .offset = LOCAL_VAR(bMSDfsRoot),
4016 .flags = FLAG_ADVANCED | FLAG_SHARE,
4019 .label = "msdfs proxy",
4022 .offset = LOCAL_VAR(szMSDfsProxy),
4025 .flags = FLAG_ADVANCED | FLAG_SHARE,
4028 .label = "host msdfs",
4030 .p_class = P_GLOBAL,
4031 .offset = GLOBAL_VAR(bHostMSDfs),
4034 .flags = FLAG_ADVANCED,
4037 {N_("Winbind options"), P_SEP, P_SEPARATOR},
4040 .label = "passdb expand explicit",
4042 .p_class = P_GLOBAL,
4043 .offset = GLOBAL_VAR(bPassdbExpandExplicit),
4046 .flags = FLAG_ADVANCED,
4049 .label = "idmap backend",
4051 .p_class = P_GLOBAL,
4052 .offset = GLOBAL_VAR(szIdmapBackend),
4053 .special = handle_idmap_backend,
4055 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
4058 .label = "idmap cache time",
4060 .p_class = P_GLOBAL,
4061 .offset = GLOBAL_VAR(iIdmapCacheTime),
4064 .flags = FLAG_ADVANCED,
4067 .label = "idmap negative cache time",
4069 .p_class = P_GLOBAL,
4070 .offset = GLOBAL_VAR(iIdmapNegativeCacheTime),
4073 .flags = FLAG_ADVANCED,
4076 .label = "idmap uid",
4078 .p_class = P_GLOBAL,
4079 .offset = GLOBAL_VAR(szIdmapUID),
4080 .special = handle_idmap_uid,
4082 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
4085 .label = "winbind uid",
4087 .p_class = P_GLOBAL,
4088 .offset = GLOBAL_VAR(szIdmapUID),
4089 .special = handle_idmap_uid,
4094 .label = "idmap gid",
4096 .p_class = P_GLOBAL,
4097 .offset = GLOBAL_VAR(szIdmapGID),
4098 .special = handle_idmap_gid,
4100 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
4103 .label = "winbind gid",
4105 .p_class = P_GLOBAL,
4106 .offset = GLOBAL_VAR(szIdmapGID),
4107 .special = handle_idmap_gid,
4112 .label = "template homedir",
4114 .p_class = P_GLOBAL,
4115 .offset = GLOBAL_VAR(szTemplateHomedir),
4118 .flags = FLAG_ADVANCED,
4121 .label = "template shell",
4123 .p_class = P_GLOBAL,
4124 .offset = GLOBAL_VAR(szTemplateShell),
4127 .flags = FLAG_ADVANCED,
4130 .label = "winbind separator",
4132 .p_class = P_GLOBAL,
4133 .offset = GLOBAL_VAR(szWinbindSeparator),
4136 .flags = FLAG_ADVANCED,
4139 .label = "winbind cache time",
4141 .p_class = P_GLOBAL,
4142 .offset = GLOBAL_VAR(winbind_cache_time),
4145 .flags = FLAG_ADVANCED,
4148 .label = "winbind reconnect delay",
4150 .p_class = P_GLOBAL,
4151 .offset = GLOBAL_VAR(winbind_reconnect_delay),
4154 .flags = FLAG_ADVANCED,
4157 .label = "winbind max clients",
4159 .p_class = P_GLOBAL,
4160 .offset = GLOBAL_VAR(winbind_max_clients),
4163 .flags = FLAG_ADVANCED,
4166 .label = "winbind enum users",
4168 .p_class = P_GLOBAL,
4169 .offset = GLOBAL_VAR(bWinbindEnumUsers),
4172 .flags = FLAG_ADVANCED,
4175 .label = "winbind enum groups",
4177 .p_class = P_GLOBAL,
4178 .offset = GLOBAL_VAR(bWinbindEnumGroups),
4181 .flags = FLAG_ADVANCED,
4184 .label = "winbind use default domain",
4186 .p_class = P_GLOBAL,
4187 .offset = GLOBAL_VAR(bWinbindUseDefaultDomain),
4190 .flags = FLAG_ADVANCED,
4193 .label = "winbind trusted domains only",
4195 .p_class = P_GLOBAL,
4196 .offset = GLOBAL_VAR(bWinbindTrustedDomainsOnly),
4199 .flags = FLAG_ADVANCED,
4202 .label = "winbind nested groups",
4204 .p_class = P_GLOBAL,
4205 .offset = GLOBAL_VAR(bWinbindNestedGroups),
4208 .flags = FLAG_ADVANCED,
4211 .label = "winbind expand groups",
4213 .p_class = P_GLOBAL,
4214 .offset = GLOBAL_VAR(winbind_expand_groups),
4217 .flags = FLAG_ADVANCED,
4220 .label = "winbind nss info",
4222 .p_class = P_GLOBAL,
4223 .offset = GLOBAL_VAR(szWinbindNssInfo),
4226 .flags = FLAG_ADVANCED,
4229 .label = "winbind refresh tickets",
4231 .p_class = P_GLOBAL,
4232 .offset = GLOBAL_VAR(bWinbindRefreshTickets),
4235 .flags = FLAG_ADVANCED,
4238 .label = "winbind offline logon",
4240 .p_class = P_GLOBAL,
4241 .offset = GLOBAL_VAR(bWinbindOfflineLogon),
4244 .flags = FLAG_ADVANCED,
4247 .label = "winbind normalize names",
4249 .p_class = P_GLOBAL,
4250 .offset = GLOBAL_VAR(bWinbindNormalizeNames),
4253 .flags = FLAG_ADVANCED,
4256 .label = "winbind rpc only",
4258 .p_class = P_GLOBAL,
4259 .offset = GLOBAL_VAR(bWinbindRpcOnly),
4262 .flags = FLAG_ADVANCED,
4265 .label = "create krb5 conf",
4267 .p_class = P_GLOBAL,
4268 .offset = GLOBAL_VAR(bCreateKrb5Conf),
4271 .flags = FLAG_ADVANCED,
4274 .label = "ncalrpc dir",
4276 .p_class = P_GLOBAL,
4277 .offset = GLOBAL_VAR(ncalrpc_dir),
4280 .flags = FLAG_ADVANCED,
4283 .label = "winbind max domain connections",
4285 .p_class = P_GLOBAL,
4286 .offset = GLOBAL_VAR(winbindMaxDomainConnections),
4289 .flags = FLAG_ADVANCED,
4292 {NULL, P_BOOL, P_NONE, 0, NULL, NULL, 0}
4295 /***************************************************************************
4296 Initialise the sDefault parameter structure for the printer values.
4297 ***************************************************************************/
4299 static void init_printer_values(struct loadparm_service *pService)
4301 /* choose defaults depending on the type of printing */
4302 switch (pService->iPrinting) {
4307 string_set(&pService->szLpqcommand, "lpq -P'%p'");
4308 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
4309 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
4314 string_set(&pService->szLpqcommand, "lpq -P'%p'");
4315 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
4316 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
4317 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
4318 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
4319 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
4320 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
4326 /* set the lpq command to contain the destination printer
4327 name only. This is used by cups_queue_get() */
4328 string_set(&pService->szLpqcommand, "%p");
4329 string_set(&pService->szLprmcommand, "");
4330 string_set(&pService->szPrintcommand, "");
4331 string_set(&pService->szLppausecommand, "");
4332 string_set(&pService->szLpresumecommand, "");
4333 string_set(&pService->szQueuepausecommand, "");
4334 string_set(&pService->szQueueresumecommand, "");
4336 string_set(&pService->szLpqcommand, "lpq -P'%p'");
4337 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
4338 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
4339 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
4340 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
4341 string_set(&pService->szQueuepausecommand, "disable '%p'");
4342 string_set(&pService->szQueueresumecommand, "enable '%p'");
4343 #endif /* HAVE_CUPS */
4348 string_set(&pService->szLpqcommand, "lpstat -o%p");
4349 string_set(&pService->szLprmcommand, "cancel %p-%j");
4350 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
4351 string_set(&pService->szQueuepausecommand, "disable %p");
4352 string_set(&pService->szQueueresumecommand, "enable %p");
4354 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
4355 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
4360 string_set(&pService->szLpqcommand, "lpq -P%p");
4361 string_set(&pService->szLprmcommand, "lprm -P%p %j");
4362 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
4365 #if defined(DEVELOPER) || defined(ENABLE_BUILD_FARM_HACKS)
4369 const char *tdbfile;
4372 tdbfile = talloc_asprintf(
4373 talloc_tos(), "tdbfile=%s",
4374 lp_parm_const_string(-1, "vlp", "tdbfile",
4376 if (tdbfile == NULL) {
4377 tdbfile="tdbfile=/tmp/vlp.tdb";
4380 tmp = talloc_asprintf(talloc_tos(), "vlp %s print %%p %%s",
4382 string_set(&pService->szPrintcommand,
4383 tmp ? tmp : "vlp print %p %s");
4386 tmp = talloc_asprintf(talloc_tos(), "vlp %s lpq %%p",
4388 string_set(&pService->szLpqcommand,
4389 tmp ? tmp : "vlp lpq %p");
4392 tmp = talloc_asprintf(talloc_tos(), "vlp %s lprm %%p %%j",
4394 string_set(&pService->szLprmcommand,
4395 tmp ? tmp : "vlp lprm %p %j");
4398 tmp = talloc_asprintf(talloc_tos(), "vlp %s lppause %%p %%j",
4400 string_set(&pService->szLppausecommand,
4401 tmp ? tmp : "vlp lppause %p %j");
4404 tmp = talloc_asprintf(talloc_tos(), "vlp %s lpresume %%p %%j",
4406 string_set(&pService->szLpresumecommand,
4407 tmp ? tmp : "vlp lpresume %p %j");
4410 tmp = talloc_asprintf(talloc_tos(), "vlp %s queuepause %%p",
4412 string_set(&pService->szQueuepausecommand,
4413 tmp ? tmp : "vlp queuepause %p");
4416 tmp = talloc_asprintf(talloc_tos(), "vlp %s queueresume %%p",
4418 string_set(&pService->szQueueresumecommand,
4419 tmp ? tmp : "vlp queueresume %p");
4424 #endif /* DEVELOPER */
4429 * Function to return the default value for the maximum number of open
4430 * file descriptors permitted. This function tries to consult the
4431 * kernel-level (sysctl) and ulimit (getrlimit()) values and goes
4432 * the smaller of those.
4434 static int max_open_files(void)
4436 int sysctl_max = MAX_OPEN_FILES;
4437 int rlimit_max = MAX_OPEN_FILES;
4439 #ifdef HAVE_SYSCTLBYNAME
4441 size_t size = sizeof(sysctl_max);
4442 sysctlbyname("kern.maxfilesperproc", &sysctl_max, &size, NULL,
4447 #if (defined(HAVE_GETRLIMIT) && defined(RLIMIT_NOFILE))
4453 if (getrlimit(RLIMIT_NOFILE, &rl) == 0)
4454 rlimit_max = rl.rlim_cur;
4456 #if defined(RLIM_INFINITY)
4457 if(rl.rlim_cur == RLIM_INFINITY)
4458 rlimit_max = MAX_OPEN_FILES;
4463 if (sysctl_max < MIN_OPEN_FILES_WINDOWS) {
4464 DEBUG(2,("max_open_files: increasing sysctl_max (%d) to "
4465 "minimum Windows limit (%d)\n",
4467 MIN_OPEN_FILES_WINDOWS));
4468 sysctl_max = MIN_OPEN_FILES_WINDOWS;
4471 if (rlimit_max < MIN_OPEN_FILES_WINDOWS) {
4472 DEBUG(2,("rlimit_max: increasing rlimit_max (%d) to "
4473 "minimum Windows limit (%d)\n",
4475 MIN_OPEN_FILES_WINDOWS));
4476 rlimit_max = MIN_OPEN_FILES_WINDOWS;
4479 return MIN(sysctl_max, rlimit_max);
4483 * Common part of freeing allocated data for one parameter.
4485 static void free_one_parameter_common(void *parm_ptr,
4486 struct parm_struct parm)
4488 if ((parm.type == P_STRING) ||
4489 (parm.type == P_USTRING))
4491 string_free((char**)parm_ptr);
4492 } else if (parm.type == P_LIST) {
4493 TALLOC_FREE(*((char***)parm_ptr));
4498 * Free the allocated data for one parameter for a share
4499 * given as a service struct.
4501 static void free_one_parameter(struct loadparm_service *service,
4502 struct parm_struct parm)
4506 if (parm.p_class != P_LOCAL) {
4510 parm_ptr = lp_parm_ptr(service, &parm);
4512 free_one_parameter_common(parm_ptr, parm);
4516 * Free the allocated parameter data of a share given
4517 * as a service struct.
4519 static void free_parameters(struct loadparm_service *service)
4523 for (i=0; parm_table[i].label; i++) {
4524 free_one_parameter(service, parm_table[i]);
4529 * Free the allocated data for one parameter for a given share
4530 * specified by an snum.
4532 static void free_one_parameter_by_snum(int snum, struct parm_struct parm)
4537 parm_ptr = lp_parm_ptr(NULL, &parm);
4538 } else if (parm.p_class != P_LOCAL) {
4541 parm_ptr = lp_local_ptr_by_snum(snum, &parm);
4544 free_one_parameter_common(parm_ptr, parm);
4548 * Free the allocated parameter data for a share specified
4551 static void free_parameters_by_snum(int snum)
4555 for (i=0; parm_table[i].label; i++) {
4556 free_one_parameter_by_snum(snum, parm_table[i]);
4561 * Free the allocated global parameters.
4563 static void free_global_parameters(void)
4565 free_param_opts(&Globals.param_opt);
4566 free_parameters_by_snum(GLOBAL_SECTION_SNUM);
4569 static int map_parameter(const char *pszParmName);
4571 struct lp_stored_option {
4572 struct lp_stored_option *prev, *next;
4577 static struct lp_stored_option *stored_options;
4580 save options set by lp_set_cmdline() into a list. This list is
4581 re-applied when we do a globals reset, so that cmdline set options
4582 are sticky across reloads of smb.conf
4584 static bool store_lp_set_cmdline(const char *pszParmName, const char *pszParmValue)
4586 struct lp_stored_option *entry, *entry_next;
4587 for (entry = stored_options; entry != NULL; entry = entry_next) {
4588 entry_next = entry->next;
4589 if (strcmp(pszParmName, entry->label) == 0) {
4590 DLIST_REMOVE(stored_options, entry);
4596 entry = talloc(NULL, struct lp_stored_option);
4601 entry->label = talloc_strdup(entry, pszParmName);
4602 if (!entry->label) {
4607 entry->value = talloc_strdup(entry, pszParmValue);
4608 if (!entry->value) {
4613 DLIST_ADD_END(stored_options, entry, struct lp_stored_option);
4618 static bool apply_lp_set_cmdline(void)
4620 struct lp_stored_option *entry = NULL;
4621 for (entry = stored_options; entry != NULL; entry = entry->next) {
4622 if (!lp_set_cmdline_helper(entry->label, entry->value, false)) {
4623 DEBUG(0, ("Failed to re-apply cmdline parameter %s = %s\n",
4624 entry->label, entry->value));
4631 /***************************************************************************
4632 Initialise the global parameter structure.
4633 ***************************************************************************/
4635 static void init_globals(bool reinit_globals)
4637 static bool done_init = false;
4641 /* If requested to initialize only once and we've already done it... */
4642 if (!reinit_globals && done_init) {
4643 /* ... then we have nothing more to do */
4648 /* The logfile can be set before this is invoked. Free it if so. */
4649 if (Globals.szLogFile != NULL) {
4650 string_free(&Globals.szLogFile);
4651 Globals.szLogFile = NULL;
4655 free_global_parameters();
4658 /* This memset and the free_global_parameters() above will
4659 * wipe out smb.conf options set with lp_set_cmdline(). The
4660 * apply_lp_set_cmdline() call puts these values back in the
4661 * table once the defaults are set */
4662 ZERO_STRUCT(Globals);
4664 for (i = 0; parm_table[i].label; i++) {
4665 if ((parm_table[i].type == P_STRING ||
4666 parm_table[i].type == P_USTRING))
4668 string_set((char **)lp_parm_ptr(NULL, &parm_table[i]), "");
4673 string_set(&sDefault.fstype, FSTYPE_STRING);
4674 string_set(&sDefault.szPrintjobUsername, "%U");
4676 init_printer_values(&sDefault);
4679 DEBUG(3, ("Initialising global parameters\n"));
4681 /* Must manually force to upper case here, as this does not go via the handler */
4682 string_set(&Globals.szNetbiosName, myhostname_upper());
4684 string_set(&Globals.szSMBPasswdFile, get_dyn_SMB_PASSWD_FILE());
4685 string_set(&Globals.szPrivateDir, get_dyn_PRIVATE_DIR());
4687 /* use the new 'hash2' method by default, with a prefix of 1 */
4688 string_set(&Globals.szManglingMethod, "hash2");
4689 Globals.mangle_prefix = 1;
4691 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
4693 /* using UTF8 by default allows us to support all chars */
4694 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
4696 /* Use codepage 850 as a default for the dos character set */
4697 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
4700 * Allow the default PASSWD_CHAT to be overridden in local.h.
4702 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
4704 string_set(&Globals.szWorkgroup, DEFAULT_WORKGROUP);
4706 string_set(&Globals.szPasswdProgram, "");
4707 string_set(&Globals.szLockDir, get_dyn_LOCKDIR());
4708 string_set(&Globals.szStateDir, get_dyn_STATEDIR());
4709 string_set(&Globals.szCacheDir, get_dyn_CACHEDIR());
4710 string_set(&Globals.szPidDir, get_dyn_PIDDIR());
4711 string_set(&Globals.szSocketAddress, "0.0.0.0");
4713 * By default support explicit binding to broadcast
4716 Globals.bNmbdBindExplicitBroadcast = true;
4718 if (asprintf(&s, "Samba %s", samba_version_string()) < 0) {
4719 smb_panic("init_globals: ENOMEM");
4721 string_set(&Globals.szServerString, s);
4724 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
4727 string_set(&Globals.szSocketOptions, DEFAULT_SOCKET_OPTIONS);
4729 string_set(&Globals.szLogonDrive, "");
4730 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
4731 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
4732 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
4734 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
4735 string_set(&Globals.szPasswordServer, "*");
4737 Globals.AlgorithmicRidBase = BASE_RID;
4739 Globals.bLoadPrinters = true;
4740 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
4742 Globals.ConfigBackend = config_backend;
4743 Globals.ServerRole = ROLE_AUTO;
4745 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
4746 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
4747 Globals.max_xmit = 0x4104;
4748 Globals.max_mux = 50; /* This is *needed* for profile support. */
4749 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
4750 Globals.bDisableSpoolss = false;
4751 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
4752 Globals.pwordlevel = 0;
4753 Globals.unamelevel = 0;
4754 Globals.deadtime = 0;
4755 Globals.getwd_cache = true;
4756 Globals.bLargeReadwrite = true;
4757 Globals.max_log_size = 5000;
4758 Globals.max_open_files = max_open_files();
4759 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
4760 Globals.maxprotocol = PROTOCOL_NT1;
4761 Globals.minprotocol = PROTOCOL_CORE;
4762 Globals.security = SEC_USER;
4763 Globals.paranoid_server_security = true;
4764 Globals.bEncryptPasswords = true;
4765 Globals.clientSchannel = Auto;
4766 Globals.serverSchannel = Auto;
4767 Globals.bReadRaw = true;
4768 Globals.bWriteRaw = true;
4769 Globals.bNullPasswords = false;
4770 Globals.bObeyPamRestrictions = false;
4772 Globals.bSyslogOnly = false;
4773 Globals.bTimestampLogs = true;
4774 string_set(&Globals.szLogLevel, "0");
4775 Globals.bDebugPrefixTimestamp = false;
4776 Globals.bDebugHiresTimestamp = true;
4777 Globals.bDebugPid = false;
4778 Globals.bDebugUid = false;
4779 Globals.bDebugClass = false;
4780 Globals.bEnableCoreFiles = true;
4781 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
4782 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
4783 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
4784 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
4785 Globals.lm_announce = Auto; /* = Auto: send only if LM clients found */
4786 Globals.lm_interval = 60;
4787 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
4788 Globals.bNISHomeMap = false;
4789 #ifdef WITH_NISPLUS_HOME
4790 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
4792 string_set(&Globals.szNISHomeMapName, "auto.home");
4795 Globals.bTimeServer = false;
4796 Globals.bBindInterfacesOnly = false;
4797 Globals.bUnixPasswdSync = false;
4798 Globals.bPamPasswordChange = false;
4799 Globals.bPasswdChatDebug = false;
4800 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
4801 Globals.bNTPipeSupport = true; /* Do NT pipes by default. */
4802 Globals.bNTStatusSupport = true; /* Use NT status by default. */
4803 Globals.bStatCache = true; /* use stat cache by default */
4804 Globals.iMaxStatCacheSize = 256; /* 256k by default */
4805 Globals.restrict_anonymous = 0;
4806 Globals.bClientLanManAuth = false; /* Do NOT use the LanMan hash if it is available */
4807 Globals.bClientPlaintextAuth = false; /* Do NOT use a plaintext password even if is requested by the server */
4808 Globals.bLanmanAuth = false; /* Do NOT use the LanMan hash, even if it is supplied */
4809 Globals.bNTLMAuth = true; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
4810 Globals.bClientNTLMv2Auth = true; /* Client should always use use NTLMv2, as we can't tell that the server supports it, but most modern servers do */
4811 /* Note, that we will also use NTLM2 session security (which is different), if it is available */
4813 Globals.map_to_guest = 0; /* By Default, "Never" */
4814 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
4815 Globals.enhanced_browsing = true;
4816 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
4817 #ifdef MMAP_BLACKLIST
4818 Globals.bUseMmap = false;
4820 Globals.bUseMmap = true;
4822 Globals.bUnixExtensions = true;
4823 Globals.bResetOnZeroVC = false;
4824 Globals.bLogWriteableFilesOnExit = false;
4825 Globals.bCreateKrb5Conf = true;
4826 Globals.winbindMaxDomainConnections = 1;
4828 /* hostname lookups can be very expensive and are broken on
4829 a large number of sites (tridge) */
4830 Globals.bHostnameLookups = false;
4832 string_set(&Globals.szPassdbBackend, "tdbsam");
4833 string_set(&Globals.szLdapSuffix, "");
4834 string_set(&Globals.szLdapMachineSuffix, "");
4835 string_set(&Globals.szLdapUserSuffix, "");
4836 string_set(&Globals.szLdapGroupSuffix, "");
4837 string_set(&Globals.szLdapIdmapSuffix, "");
4839 string_set(&Globals.szLdapAdminDn, "");
4840 Globals.ldap_ssl = LDAP_SSL_START_TLS;
4841 Globals.ldap_ssl_ads = false;
4842 Globals.ldap_deref = -1;
4843 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
4844 Globals.ldap_delete_dn = false;
4845 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
4846 Globals.ldap_follow_referral = Auto;
4847 Globals.ldap_timeout = LDAP_DEFAULT_TIMEOUT;
4848 Globals.ldap_connection_timeout = LDAP_CONNECTION_DEFAULT_TIMEOUT;
4849 Globals.ldap_page_size = LDAP_PAGE_SIZE;
4851 Globals.ldap_debug_level = 0;
4852 Globals.ldap_debug_threshold = 10;
4854 /* This is what we tell the afs client. in reality we set the token
4855 * to never expire, though, when this runs out the afs client will
4856 * forget the token. Set to 0 to get NEVERDATE.*/
4857 Globals.iAfsTokenLifetime = 604800;
4858 Globals.cups_connection_timeout = CUPS_DEFAULT_CONNECTION_TIMEOUT;
4860 /* these parameters are set to defaults that are more appropriate
4861 for the increasing samba install base:
4863 as a member of the workgroup, that will possibly become a
4864 _local_ master browser (lm = true). this is opposed to a forced
4865 local master browser startup (pm = true).
4867 doesn't provide WINS server service by default (wsupp = false),
4868 and doesn't provide domain master browser services by default, either.
4872 Globals.bMsAddPrinterWizard = true;
4873 Globals.os_level = 20;
4874 Globals.bLocalMaster = true;
4875 Globals.iDomainMaster = Auto; /* depending on bDomainLogons */
4876 Globals.bDomainLogons = false;
4877 Globals.bBrowseList = true;
4878 Globals.bWINSsupport = false;
4879 Globals.bWINSproxy = false;
4881 TALLOC_FREE(Globals.szInitLogonDelayedHosts);
4882 Globals.InitLogonDelay = 100; /* 100 ms default delay */
4884 Globals.bDNSproxy = true;
4886 /* this just means to use them if they exist */
4887 Globals.bKernelOplocks = true;
4889 Globals.bAllowTrustedDomains = true;
4890 string_set(&Globals.szIdmapBackend, "tdb");
4892 string_set(&Globals.szTemplateShell, "/bin/false");
4893 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
4894 string_set(&Globals.szWinbindSeparator, "\\");
4896 string_set(&Globals.szCupsServer, "");
4897 string_set(&Globals.szIPrintServer, "");
4899 string_set(&Globals.ctdbdSocket, "");
4900 Globals.szClusterAddresses = NULL;
4901 Globals.clustering = false;
4902 Globals.ctdb_timeout = 0;
4903 Globals.ctdb_locktime_warn_threshold = 0;
4905 Globals.winbind_cache_time = 300; /* 5 minutes */
4906 Globals.winbind_reconnect_delay = 30; /* 30 seconds */
4907 Globals.winbind_max_clients = 200;
4908 Globals.bWinbindEnumUsers = false;
4909 Globals.bWinbindEnumGroups = false;
4910 Globals.bWinbindUseDefaultDomain = false;
4911 Globals.bWinbindTrustedDomainsOnly = false;
4912 Globals.bWinbindNestedGroups = true;
4913 Globals.winbind_expand_groups = 1;
4914 Globals.szWinbindNssInfo = (const char **)str_list_make_v3(NULL, "template", NULL);
4915 Globals.bWinbindRefreshTickets = false;
4916 Globals.bWinbindOfflineLogon = false;
4918 Globals.iIdmapCacheTime = 86400 * 7; /* a week by default */
4919 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
4921 Globals.bPassdbExpandExplicit = false;
4923 Globals.name_cache_timeout = 660; /* In seconds */
4925 Globals.bUseSpnego = true;
4926 Globals.bClientUseSpnego = true;
4928 Globals.client_signing = SMB_SIGNING_DEFAULT;
4929 Globals.server_signing = SMB_SIGNING_DEFAULT;
4931 Globals.bDeferSharingViolations = true;
4932 string_set(&Globals.smb_ports, SMB_PORTS);
4934 Globals.bEnablePrivileges = true;
4935 Globals.bHostMSDfs = true;
4936 Globals.bASUSupport = false;
4938 /* User defined shares. */
4939 if (asprintf(&s, "%s/usershares", get_dyn_STATEDIR()) < 0) {
4940 smb_panic("init_globals: ENOMEM");
4942 string_set(&Globals.szUsersharePath, s);
4944 string_set(&Globals.szUsershareTemplateShare, "");
4945 Globals.iUsershareMaxShares = 0;
4946 /* By default disallow sharing of directories not owned by the sharer. */
4947 Globals.bUsershareOwnerOnly = true;
4948 /* By default disallow guest access to usershares. */
4949 Globals.bUsershareAllowGuests = false;
4951 Globals.iKeepalive = DEFAULT_KEEPALIVE;
4953 /* By default no shares out of the registry */
4954 Globals.bRegistryShares = false;
4956 Globals.iminreceivefile = 0;
4958 Globals.bMapUntrustedToDomain = false;
4959 Globals.bMulticastDnsRegister = true;
4961 Globals.ismb2_max_read = DEFAULT_SMB2_MAX_READ;
4962 Globals.ismb2_max_write = DEFAULT_SMB2_MAX_WRITE;
4963 Globals.ismb2_max_trans = DEFAULT_SMB2_MAX_TRANSACT;
4964 Globals.ismb2_max_credits = DEFAULT_SMB2_MAX_CREDITS;
4966 string_set(&Globals.ncalrpc_dir, get_dyn_NCALRPCDIR());
4968 /* Now put back the settings that were set with lp_set_cmdline() */
4969 apply_lp_set_cmdline();
4972 /*******************************************************************
4973 Convenience routine to grab string parameters into temporary memory
4974 and run standard_sub_basic on them. The buffers can be written to by
4975 callers without affecting the source string.
4976 ********************************************************************/
4978 static char *lp_string(const char *s)
4981 TALLOC_CTX *ctx = talloc_tos();
4983 /* The follow debug is useful for tracking down memory problems
4984 especially if you have an inner loop that is calling a lp_*()
4985 function that returns a string. Perhaps this debug should be
4986 present all the time? */
4989 DEBUG(10, ("lp_string(%s)\n", s));
4995 ret = talloc_sub_basic(ctx,
4996 get_current_username(),
4997 current_user_info.domain,
4999 if (trim_char(ret, '\"', '\"')) {
5000 if (strchr(ret,'\"') != NULL) {
5002 ret = talloc_sub_basic(ctx,
5003 get_current_username(),
5004 current_user_info.domain,
5012 In this section all the functions that are used to access the
5013 parameters from the rest of the program are defined
5016 #define FN_GLOBAL_STRING(fn_name,ptr) \
5017 char *fn_name(void) {return(lp_string(*(char **)(&Globals.ptr) ? *(char **)(&Globals.ptr) : ""));}
5018 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
5019 const char *fn_name(void) {return(*(const char **)(&Globals.ptr) ? *(const char **)(&Globals.ptr) : "");}
5020 #define FN_GLOBAL_LIST(fn_name,ptr) \
5021 const char **fn_name(void) {return(*(const char ***)(&Globals.ptr));}
5022 #define FN_GLOBAL_BOOL(fn_name,ptr) \
5023 bool fn_name(void) {return(*(bool *)(&Globals.ptr));}
5024 #define FN_GLOBAL_CHAR(fn_name,ptr) \
5025 char fn_name(void) {return(*(char *)(&Globals.ptr));}
5026 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
5027 int fn_name(void) {return(*(int *)(&Globals.ptr));}
5029 #define FN_LOCAL_STRING(fn_name,val) \
5030 char *lp_ ## fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
5031 #define FN_LOCAL_CONST_STRING(fn_name,val) \
5032 const char *lp_ ## fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
5033 #define FN_LOCAL_LIST(fn_name,val) \
5034 const char **lp_ ## fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
5035 #define FN_LOCAL_BOOL(fn_name,val) \
5036 bool lp_ ## fn_name(int i) {return(bool)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
5037 #define FN_LOCAL_INTEGER(fn_name,val) \
5038 int lp_ ## fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
5040 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
5041 bool lp_ ## fn_name(const struct share_params *p) {return(bool)(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
5042 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
5043 int lp_ ## fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
5044 #define FN_LOCAL_CHAR(fn_name,val) \
5045 char lp_ ## fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
5047 FN_GLOBAL_CONST_STRING(lp_smb_ports, smb_ports)
5048 FN_GLOBAL_CONST_STRING(lp_dos_charset, dos_charset)
5049 FN_GLOBAL_CONST_STRING(lp_unix_charset, unix_charset)
5050 FN_GLOBAL_STRING(lp_logfile, szLogFile)
5051 FN_GLOBAL_STRING(lp_configfile, szConfigFile)
5052 FN_GLOBAL_CONST_STRING(lp_smb_passwd_file, szSMBPasswdFile)
5053 FN_GLOBAL_CONST_STRING(lp_private_dir, szPrivateDir)
5054 FN_GLOBAL_STRING(lp_serverstring, szServerString)
5055 FN_GLOBAL_INTEGER(lp_printcap_cache_time, PrintcapCacheTime)
5056 FN_GLOBAL_STRING(lp_addport_cmd, szAddPortCommand)
5057 FN_GLOBAL_STRING(lp_enumports_cmd, szEnumPortsCommand)
5058 FN_GLOBAL_STRING(lp_addprinter_cmd, szAddPrinterCommand)
5059 FN_GLOBAL_STRING(lp_deleteprinter_cmd, szDeletePrinterCommand)
5060 FN_GLOBAL_STRING(lp_os2_driver_map, szOs2DriverMap)
5061 FN_GLOBAL_CONST_STRING(lp_lockdir, szLockDir)
5062 /* If lp_statedir() and lp_cachedir() are explicitely set during the
5063 * build process or in smb.conf, we use that value. Otherwise they
5064 * default to the value of lp_lockdir(). */
5065 const char *lp_statedir(void) {
5066 if ((strcmp(get_dyn_STATEDIR(), get_dyn_LOCKDIR()) != 0) ||
5067 (strcmp(get_dyn_STATEDIR(), Globals.szStateDir) != 0))
5068 return(*(char **)(&Globals.szStateDir) ?
5069 *(char **)(&Globals.szStateDir) : "");
5071 return(*(char **)(&Globals.szLockDir) ?
5072 *(char **)(&Globals.szLockDir) : "");
5074 const char *lp_cachedir(void) {
5075 if ((strcmp(get_dyn_CACHEDIR(), get_dyn_LOCKDIR()) != 0) ||
5076 (strcmp(get_dyn_CACHEDIR(), Globals.szCacheDir) != 0))
5077 return(*(char **)(&Globals.szCacheDir) ?
5078 *(char **)(&Globals.szCacheDir) : "");
5080 return(*(char **)(&Globals.szLockDir) ?
5081 *(char **)(&Globals.szLockDir) : "");
5083 FN_GLOBAL_CONST_STRING(lp_piddir, szPidDir)
5084 FN_GLOBAL_STRING(lp_mangling_method, szManglingMethod)
5085 FN_GLOBAL_INTEGER(lp_mangle_prefix, mangle_prefix)
5086 FN_GLOBAL_CONST_STRING(lp_utmpdir, szUtmpDir)
5087 FN_GLOBAL_CONST_STRING(lp_wtmpdir, szWtmpDir)
5088 FN_GLOBAL_BOOL(lp_utmp, bUtmp)
5089 FN_GLOBAL_STRING(lp_rootdir, szRootdir)
5090 FN_GLOBAL_STRING(lp_perfcount_module, szSMBPerfcountModule)
5091 FN_GLOBAL_STRING(lp_defaultservice, szDefaultService)
5092 FN_GLOBAL_STRING(lp_msg_command, szMsgCommand)
5093 FN_GLOBAL_STRING(lp_get_quota_command, szGetQuota)
5094 FN_GLOBAL_STRING(lp_set_quota_command, szSetQuota)
5095 FN_GLOBAL_STRING(lp_auto_services, szAutoServices)
5096 FN_GLOBAL_STRING(lp_passwd_program, szPasswdProgram)
5097 FN_GLOBAL_STRING(lp_passwd_chat, szPasswdChat)
5098 FN_GLOBAL_CONST_STRING(lp_passwordserver, szPasswordServer)
5099 FN_GLOBAL_CONST_STRING(lp_name_resolve_order, szNameResolveOrder)
5100 FN_GLOBAL_CONST_STRING(lp_workgroup, szWorkgroup)
5101 FN_GLOBAL_CONST_STRING(lp_netbios_name, szNetbiosName)
5102 FN_GLOBAL_CONST_STRING(lp_netbios_scope, szNetbiosScope)
5103 FN_GLOBAL_CONST_STRING(lp_realm, szRealmUpper)
5104 FN_GLOBAL_CONST_STRING(lp_dnsdomain, szDnsDomain)
5105 FN_GLOBAL_CONST_STRING(lp_afs_username_map, szAfsUsernameMap)
5106 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, iAfsTokenLifetime)
5107 FN_GLOBAL_STRING(lp_log_nt_token_command, szLogNtTokenCommand)
5108 FN_GLOBAL_STRING(lp_username_map, szUsernameMap)
5109 FN_GLOBAL_CONST_STRING(lp_logon_script, szLogonScript)
5110 FN_GLOBAL_CONST_STRING(lp_logon_path, szLogonPath)
5111 FN_GLOBAL_CONST_STRING(lp_logon_drive, szLogonDrive)
5112 FN_GLOBAL_CONST_STRING(lp_logon_home, szLogonHome)
5113 FN_GLOBAL_STRING(lp_remote_announce, szRemoteAnnounce)
5114 FN_GLOBAL_STRING(lp_remote_browse_sync, szRemoteBrowseSync)
5115 FN_GLOBAL_BOOL(lp_nmbd_bind_explicit_broadcast, bNmbdBindExplicitBroadcast)
5116 FN_GLOBAL_LIST(lp_wins_server_list, szWINSservers)
5117 FN_GLOBAL_LIST(lp_interfaces, szInterfaces)
5118 FN_GLOBAL_STRING(lp_nis_home_map_name, szNISHomeMapName)
5119 FN_GLOBAL_LIST(lp_netbios_aliases, szNetbiosAliases)
5120 FN_GLOBAL_CONST_STRING(lp_passdb_backend, szPassdbBackend)
5121 FN_GLOBAL_LIST(lp_preload_modules, szPreloadModules)
5122 FN_GLOBAL_STRING(lp_panic_action, szPanicAction)
5123 FN_GLOBAL_STRING(lp_adduser_script, szAddUserScript)
5124 FN_GLOBAL_STRING(lp_renameuser_script, szRenameUserScript)
5125 FN_GLOBAL_STRING(lp_deluser_script, szDelUserScript)
5127 FN_GLOBAL_CONST_STRING(lp_guestaccount, szGuestaccount)
5128 FN_GLOBAL_STRING(lp_addgroup_script, szAddGroupScript)
5129 FN_GLOBAL_STRING(lp_delgroup_script, szDelGroupScript)
5130 FN_GLOBAL_STRING(lp_addusertogroup_script, szAddUserToGroupScript)
5131 FN_GLOBAL_STRING(lp_deluserfromgroup_script, szDelUserFromGroupScript)
5132 FN_GLOBAL_STRING(lp_setprimarygroup_script, szSetPrimaryGroupScript)
5134 FN_GLOBAL_STRING(lp_addmachine_script, szAddMachineScript)
5136 FN_GLOBAL_STRING(lp_shutdown_script, szShutdownScript)
5137 FN_GLOBAL_STRING(lp_abort_shutdown_script, szAbortShutdownScript)
5138 FN_GLOBAL_STRING(lp_username_map_script, szUsernameMapScript)
5139 FN_GLOBAL_INTEGER(lp_username_map_cache_time, iUsernameMapCacheTime)
5141 FN_GLOBAL_STRING(lp_check_password_script, szCheckPasswordScript)
5143 FN_GLOBAL_STRING(lp_wins_hook, szWINSHook)
5144 FN_GLOBAL_CONST_STRING(lp_template_homedir, szTemplateHomedir)
5145 FN_GLOBAL_CONST_STRING(lp_template_shell, szTemplateShell)
5146 FN_GLOBAL_CONST_STRING(lp_winbind_separator, szWinbindSeparator)
5147 FN_GLOBAL_INTEGER(lp_acl_compatibility, iAclCompat)
5148 FN_GLOBAL_BOOL(lp_winbind_enum_users, bWinbindEnumUsers)
5149 FN_GLOBAL_BOOL(lp_winbind_enum_groups, bWinbindEnumGroups)
5150 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, bWinbindUseDefaultDomain)
5151 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, bWinbindTrustedDomainsOnly)
5152 FN_GLOBAL_BOOL(lp_winbind_nested_groups, bWinbindNestedGroups)
5153 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, winbind_expand_groups)
5154 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, bWinbindRefreshTickets)
5155 FN_GLOBAL_BOOL(lp_winbind_offline_logon, bWinbindOfflineLogon)
5156 FN_GLOBAL_BOOL(lp_winbind_normalize_names, bWinbindNormalizeNames)
5157 FN_GLOBAL_BOOL(lp_winbind_rpc_only, bWinbindRpcOnly)
5158 FN_GLOBAL_BOOL(lp_create_krb5_conf, bCreateKrb5Conf)
5159 static FN_GLOBAL_INTEGER(lp_winbind_max_domain_connections_int,
5160 winbindMaxDomainConnections)
5162 int lp_winbind_max_domain_connections(void)
5164 if (lp_winbind_offline_logon() &&
5165 lp_winbind_max_domain_connections_int() > 1) {
5166 DEBUG(1, ("offline logons active, restricting max domain "
5167 "connections to 1\n"));
5170 return MAX(1, lp_winbind_max_domain_connections_int());
5173 FN_GLOBAL_CONST_STRING(lp_idmap_backend, szIdmapBackend)
5174 FN_GLOBAL_INTEGER(lp_idmap_cache_time, iIdmapCacheTime)
5175 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, iIdmapNegativeCacheTime)
5176 FN_GLOBAL_INTEGER(lp_keepalive, iKeepalive)
5177 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, bPassdbExpandExplicit)
5179 FN_GLOBAL_STRING(lp_ldap_suffix, szLdapSuffix)
5180 FN_GLOBAL_STRING(lp_ldap_admin_dn, szLdapAdminDn)
5181 FN_GLOBAL_INTEGER(lp_ldap_ssl, ldap_ssl)
5182 FN_GLOBAL_BOOL(lp_ldap_ssl_ads, ldap_ssl_ads)
5183 FN_GLOBAL_INTEGER(lp_ldap_deref, ldap_deref)
5184 FN_GLOBAL_INTEGER(lp_ldap_follow_referral, ldap_follow_referral)
5185 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, ldap_passwd_sync)
5186 FN_GLOBAL_BOOL(lp_ldap_delete_dn, ldap_delete_dn)
5187 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, ldap_replication_sleep)
5188 FN_GLOBAL_INTEGER(lp_ldap_timeout, ldap_timeout)
5189 FN_GLOBAL_INTEGER(lp_ldap_connection_timeout, ldap_connection_timeout)
5190 FN_GLOBAL_INTEGER(lp_ldap_page_size, ldap_page_size)
5191 FN_GLOBAL_INTEGER(lp_ldap_debug_level, ldap_debug_level)
5192 FN_GLOBAL_INTEGER(lp_ldap_debug_threshold, ldap_debug_threshold)
5193 FN_GLOBAL_STRING(lp_add_share_cmd, szAddShareCommand)
5194 FN_GLOBAL_STRING(lp_change_share_cmd, szChangeShareCommand)
5195 FN_GLOBAL_STRING(lp_delete_share_cmd, szDeleteShareCommand)
5196 FN_GLOBAL_STRING(lp_usershare_path, szUsersharePath)
5197 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, szUsersharePrefixAllowList)
5198 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, szUsersharePrefixDenyList)
5200 FN_GLOBAL_LIST(lp_eventlog_list, szEventLogs)
5202 FN_GLOBAL_BOOL(lp_registry_shares, bRegistryShares)
5203 FN_GLOBAL_BOOL(lp_usershare_allow_guests, bUsershareAllowGuests)
5204 FN_GLOBAL_BOOL(lp_usershare_owner_only, bUsershareOwnerOnly)
5205 FN_GLOBAL_BOOL(lp_disable_netbios, bDisableNetbios)
5206 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, bResetOnZeroVC)
5207 FN_GLOBAL_BOOL(lp_log_writeable_files_on_exit, bLogWriteableFilesOnExit)
5208 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, bMsAddPrinterWizard)
5209 FN_GLOBAL_BOOL(lp_dns_proxy, bDNSproxy)
5210 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, bWINSsupport)
5211 FN_GLOBAL_BOOL(lp_wins_proxy, bWINSproxy)
5212 FN_GLOBAL_BOOL(lp_local_master, bLocalMaster)
5213 static FN_GLOBAL_BOOL(lp_domain_logons, bDomainLogons)
5214 FN_GLOBAL_LIST(lp_init_logon_delayed_hosts, szInitLogonDelayedHosts)
5215 FN_GLOBAL_INTEGER(lp_init_logon_delay, InitLogonDelay)
5216 FN_GLOBAL_BOOL(lp_load_printers, bLoadPrinters)
5217 FN_GLOBAL_BOOL(_lp_readraw, bReadRaw)
5218 FN_GLOBAL_BOOL(lp_large_readwrite, bLargeReadwrite)
5219 FN_GLOBAL_BOOL(_lp_writeraw, bWriteRaw)
5220 FN_GLOBAL_BOOL(lp_null_passwords, bNullPasswords)
5221 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, bObeyPamRestrictions)
5222 FN_GLOBAL_BOOL(lp_encrypted_passwords, bEncryptPasswords)
5223 FN_GLOBAL_INTEGER(lp_client_schannel, clientSchannel)
5224 FN_GLOBAL_INTEGER(lp_server_schannel, serverSchannel)
5225 FN_GLOBAL_BOOL(lp_syslog_only, bSyslogOnly)
5226 FN_GLOBAL_BOOL(lp_timestamp_logs, bTimestampLogs)
5227 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, bDebugPrefixTimestamp)
5228 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, bDebugHiresTimestamp)
5229 FN_GLOBAL_BOOL(lp_debug_pid, bDebugPid)
5230 FN_GLOBAL_BOOL(lp_debug_uid, bDebugUid)
5231 FN_GLOBAL_BOOL(lp_debug_class, bDebugClass)
5232 FN_GLOBAL_BOOL(lp_enable_core_files, bEnableCoreFiles)
5233 FN_GLOBAL_BOOL(lp_browse_list, bBrowseList)
5234 FN_GLOBAL_BOOL(lp_nis_home_map, bNISHomeMap)
5235 static FN_GLOBAL_BOOL(lp_time_server, bTimeServer)
5236 FN_GLOBAL_BOOL(lp_bind_interfaces_only, bBindInterfacesOnly)
5237 FN_GLOBAL_BOOL(lp_pam_password_change, bPamPasswordChange)
5238 FN_GLOBAL_BOOL(lp_unix_password_sync, bUnixPasswdSync)
5239 FN_GLOBAL_BOOL(lp_passwd_chat_debug, bPasswdChatDebug)
5240 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, iPasswdChatTimeout)
5241 FN_GLOBAL_BOOL(lp_nt_pipe_support, bNTPipeSupport)
5242 FN_GLOBAL_BOOL(lp_nt_status_support, bNTStatusSupport)
5243 FN_GLOBAL_BOOL(lp_stat_cache, bStatCache)
5244 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, iMaxStatCacheSize)
5245 FN_GLOBAL_BOOL(lp_allow_trusted_domains, bAllowTrustedDomains)
5246 FN_GLOBAL_BOOL(lp_map_untrusted_to_domain, bMapUntrustedToDomain)
5247 FN_GLOBAL_INTEGER(lp_restrict_anonymous, restrict_anonymous)
5248 FN_GLOBAL_BOOL(lp_lanman_auth, bLanmanAuth)
5249 FN_GLOBAL_BOOL(lp_ntlm_auth, bNTLMAuth)
5250 FN_GLOBAL_BOOL(lp_client_plaintext_auth, bClientPlaintextAuth)
5251 FN_GLOBAL_BOOL(lp_client_lanman_auth, bClientLanManAuth)
5252 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, bClientNTLMv2Auth)
5253 FN_GLOBAL_BOOL(lp_host_msdfs, bHostMSDfs)
5254 FN_GLOBAL_BOOL(lp_kernel_oplocks, bKernelOplocks)
5255 FN_GLOBAL_BOOL(lp_enhanced_browsing, enhanced_browsing)
5256 FN_GLOBAL_BOOL(lp_use_mmap, bUseMmap)
5257 FN_GLOBAL_BOOL(lp_unix_extensions, bUnixExtensions)
5258 FN_GLOBAL_BOOL(lp_use_spnego, bUseSpnego)
5259 FN_GLOBAL_BOOL(lp_client_use_spnego, bClientUseSpnego)
5260 FN_GLOBAL_BOOL(lp_client_use_spnego_principal, client_use_spnego_principal)
5261 FN_GLOBAL_BOOL(lp_send_spnego_principal, send_spnego_principal)
5262 FN_GLOBAL_BOOL(lp_hostname_lookups, bHostnameLookups)
5263 FN_GLOBAL_CONST_STRING(lp_dedicated_keytab_file, szDedicatedKeytabFile)
5264 FN_GLOBAL_INTEGER(lp_kerberos_method, iKerberosMethod)
5265 FN_GLOBAL_BOOL(lp_defer_sharing_violations, bDeferSharingViolations)
5266 FN_GLOBAL_BOOL(lp_enable_privileges, bEnablePrivileges)
5267 FN_GLOBAL_BOOL(lp_enable_asu_support, bASUSupport)
5268 FN_GLOBAL_INTEGER(lp_os_level, os_level)
5269 FN_GLOBAL_INTEGER(lp_max_ttl, max_ttl)
5270 FN_GLOBAL_INTEGER(lp_max_wins_ttl, max_wins_ttl)
5271 FN_GLOBAL_INTEGER(lp_min_wins_ttl, min_wins_ttl)
5272 FN_GLOBAL_INTEGER(lp_max_log_size, max_log_size)
5273 FN_GLOBAL_INTEGER(lp_max_open_files, max_open_files)
5274 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, open_files_db_hash_size)
5275 FN_GLOBAL_INTEGER(lp_maxxmit, max_xmit)
5276 FN_GLOBAL_INTEGER(lp_maxmux, max_mux)
5277 FN_GLOBAL_INTEGER(lp_passwordlevel, pwordlevel)
5278 FN_GLOBAL_INTEGER(lp_usernamelevel, unamelevel)
5279 FN_GLOBAL_INTEGER(lp_deadtime, deadtime)
5280 FN_GLOBAL_BOOL(lp_getwd_cache, getwd_cache)
5281 static FN_GLOBAL_INTEGER(_lp_maxprotocol, maxprotocol)
5282 int lp_maxprotocol(void)
5284 int ret = _lp_maxprotocol();
5285 if ((ret >= PROTOCOL_SMB2_02) && (lp_security() == SEC_SHARE)) {
5286 DEBUG(2,("WARNING!!: \"security = share\" is incompatible "
5287 "with the SMB2 protocol. Resetting to SMB1.\n" ));
5288 lp_do_parameter(-1, "max protocol", "NT1");
5289 return PROTOCOL_NT1;
5293 FN_GLOBAL_INTEGER(lp_minprotocol, minprotocol)
5294 FN_GLOBAL_INTEGER(lp_security, security)
5295 FN_GLOBAL_LIST(lp_auth_methods, AuthMethods)
5296 FN_GLOBAL_BOOL(lp_paranoid_server_security, paranoid_server_security)
5297 FN_GLOBAL_INTEGER(lp_maxdisksize, maxdisksize)
5298 FN_GLOBAL_INTEGER(lp_lpqcachetime, lpqcachetime)
5299 FN_GLOBAL_INTEGER(lp_max_smbd_processes, iMaxSmbdProcesses)
5300 FN_GLOBAL_BOOL(_lp_disable_spoolss, bDisableSpoolss)
5301 FN_GLOBAL_INTEGER(lp_syslog, syslog)
5302 FN_GLOBAL_INTEGER(lp_lm_announce, lm_announce)
5303 FN_GLOBAL_INTEGER(lp_lm_interval, lm_interval)
5304 FN_GLOBAL_INTEGER(lp_machine_password_timeout, machine_password_timeout)
5305 FN_GLOBAL_INTEGER(lp_map_to_guest, map_to_guest)
5306 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, oplock_break_wait_time)
5307 FN_GLOBAL_INTEGER(lp_lock_spin_time, iLockSpinTime)
5308 FN_GLOBAL_INTEGER(lp_usershare_max_shares, iUsershareMaxShares)
5309 FN_GLOBAL_CONST_STRING(lp_socket_options, szSocketOptions)
5310 FN_GLOBAL_INTEGER(lp_config_backend, ConfigBackend)
5311 static FN_GLOBAL_INTEGER(lp__server_role, ServerRole)
5312 FN_GLOBAL_INTEGER(lp_smb2_max_read, ismb2_max_read)
5313 FN_GLOBAL_INTEGER(lp_smb2_max_write, ismb2_max_write)
5314 FN_GLOBAL_INTEGER(lp_smb2_max_trans, ismb2_max_trans)
5315 int lp_smb2_max_credits(void)
5317 if (Globals.ismb2_max_credits == 0) {
5318 Globals.ismb2_max_credits = DEFAULT_SMB2_MAX_CREDITS;
5320 return Globals.ismb2_max_credits;
5322 FN_GLOBAL_LIST(lp_svcctl_list, szServicesList)
5323 FN_GLOBAL_STRING(lp_cups_server, szCupsServer)
5324 int lp_cups_encrypt(void)
5327 #ifdef HAVE_HTTPCONNECTENCRYPT
5328 switch (Globals.CupsEncrypt) {
5330 result = HTTP_ENCRYPT_REQUIRED;
5333 result = HTTP_ENCRYPT_ALWAYS;
5336 result = HTTP_ENCRYPT_NEVER;
5342 FN_GLOBAL_STRING(lp_iprint_server, szIPrintServer)
5343 FN_GLOBAL_INTEGER(lp_cups_connection_timeout, cups_connection_timeout)
5344 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, ctdbdSocket)
5345 FN_GLOBAL_LIST(lp_cluster_addresses, szClusterAddresses)
5346 FN_GLOBAL_BOOL(lp_clustering, clustering)
5347 FN_GLOBAL_INTEGER(lp_ctdb_timeout, ctdb_timeout)
5348 FN_GLOBAL_INTEGER(lp_ctdb_locktime_warn_threshold, ctdb_locktime_warn_threshold)
5349 FN_GLOBAL_BOOL(lp_async_smb_echo_handler, bAsyncSMBEchoHandler)
5350 FN_GLOBAL_BOOL(lp_multicast_dns_register, bMulticastDnsRegister)
5351 FN_GLOBAL_BOOL(lp_allow_insecure_widelinks, bAllowInsecureWidelinks)
5352 FN_GLOBAL_INTEGER(lp_winbind_cache_time, winbind_cache_time)
5353 FN_GLOBAL_INTEGER(lp_winbind_reconnect_delay, winbind_reconnect_delay)
5354 FN_GLOBAL_INTEGER(lp_winbind_max_clients, winbind_max_clients)
5355 FN_GLOBAL_LIST(lp_winbind_nss_info, szWinbindNssInfo)
5356 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, AlgorithmicRidBase)
5357 FN_GLOBAL_INTEGER(lp_name_cache_timeout, name_cache_timeout)
5358 FN_GLOBAL_INTEGER(lp_client_signing, client_signing)
5359 FN_GLOBAL_INTEGER(lp_server_signing, server_signing)
5360 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, client_ldap_sasl_wrapping)
5362 FN_GLOBAL_CONST_STRING(lp_ncalrpc_dir, ncalrpc_dir)
5364 #include "lib/param/param_functions.c"
5366 FN_LOCAL_STRING(servicename, szService)
5367 FN_LOCAL_CONST_STRING(const_servicename, szService)
5369 /* local prototypes */
5371 static int map_parameter_canonical(const char *pszParmName, bool *inverse);
5372 static const char *get_boolean(bool bool_value);
5373 static int getservicebyname(const char *pszServiceName,
5374 struct loadparm_service *pserviceDest);
5375 static void copy_service(struct loadparm_service *pserviceDest,
5376 struct loadparm_service *pserviceSource,
5377 struct bitmap *pcopymapDest);
5378 static bool do_parameter(const char *pszParmName, const char *pszParmValue,
5380 static bool do_section(const char *pszSectionName, void *userdata);
5381 static void init_copymap(struct loadparm_service *pservice);
5382 static bool hash_a_service(const char *name, int number);
5383 static void free_service_byindex(int iService);
5384 static void show_parameter(int parmIndex);
5385 static bool is_synonym_of(int parm1, int parm2, bool *inverse);
5388 * This is a helper function for parametrical options support. It returns a
5389 * pointer to parametrical option value if it exists or NULL otherwise. Actual
5390 * parametrical functions are quite simple
5392 static struct parmlist_entry *get_parametrics_by_service(struct loadparm_service *service, const char *type,
5395 bool global_section = false;
5397 struct parmlist_entry *data;
5399 if (service == NULL) {
5400 data = Globals.param_opt;
5401 global_section = true;
5403 data = service->param_opt;
5406 if (asprintf(¶m_key, "%s:%s", type, option) == -1) {
5407 DEBUG(0,("asprintf failed!\n"));
5412 if (strwicmp(data->key, param_key) == 0) {
5413 string_free(¶m_key);
5419 if (!global_section) {
5420 /* Try to fetch the same option but from globals */
5421 /* but only if we are not already working with Globals */
5422 data = Globals.param_opt;
5424 if (strwicmp(data->key, param_key) == 0) {
5425 string_free(¶m_key);
5432 string_free(¶m_key);
5438 * This is a helper function for parametrical options support. It returns a
5439 * pointer to parametrical option value if it exists or NULL otherwise. Actual
5440 * parametrical functions are quite simple
5442 static struct parmlist_entry *get_parametrics(int snum, const char *type,
5445 if (snum >= iNumServices) return NULL;
5448 return get_parametrics_by_service(NULL, type, option);
5450 return get_parametrics_by_service(ServicePtrs[snum], type, option);
5455 #define MISSING_PARAMETER(name) \
5456 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
5458 /*******************************************************************
5459 convenience routine to return int parameters.
5460 ********************************************************************/
5461 static int lp_int(const char *s)
5465 MISSING_PARAMETER(lp_int);
5469 return (int)strtol(s, NULL, 0);
5472 /*******************************************************************
5473 convenience routine to return unsigned long parameters.
5474 ********************************************************************/
5475 static unsigned long lp_ulong(const char *s)
5479 MISSING_PARAMETER(lp_ulong);
5483 return strtoul(s, NULL, 0);
5486 /*******************************************************************
5487 convenience routine to return boolean parameters.
5488 ********************************************************************/
5489 static bool lp_bool(const char *s)
5494 MISSING_PARAMETER(lp_bool);
5498 if (!set_boolean(s, &ret)) {
5499 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
5506 /*******************************************************************
5507 convenience routine to return enum parameters.
5508 ********************************************************************/
5509 static int lp_enum(const char *s,const struct enum_list *_enum)
5513 if (!s || !*s || !_enum) {
5514 MISSING_PARAMETER(lp_enum);
5518 for (i=0; _enum[i].name; i++) {
5519 if (strequal(_enum[i].name,s))
5520 return _enum[i].value;
5523 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
5527 #undef MISSING_PARAMETER
5529 /* Return parametric option from a given service. Type is a part of option before ':' */
5530 /* Parametric option has following syntax: 'Type: option = value' */
5531 /* the returned value is talloced on the talloc_tos() */
5532 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
5534 struct parmlist_entry *data = get_parametrics(snum, type, option);
5536 if (data == NULL||data->value==NULL) {
5538 return lp_string(def);
5544 return lp_string(data->value);
5547 /* Return parametric option from a given service. Type is a part of option before ':' */
5548 /* Parametric option has following syntax: 'Type: option = value' */
5549 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
5551 struct parmlist_entry *data = get_parametrics(snum, type, option);
5553 if (data == NULL||data->value==NULL)
5559 const char *lp_parm_const_string_service(struct loadparm_service *service, const char *type, const char *option)
5561 struct parmlist_entry *data = get_parametrics_by_service(service, type, option);
5563 if (data == NULL||data->value==NULL)
5570 /* Return parametric option from a given service. Type is a part of option before ':' */
5571 /* Parametric option has following syntax: 'Type: option = value' */
5573 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
5575 struct parmlist_entry *data = get_parametrics(snum, type, option);
5577 if (data == NULL||data->value==NULL)
5578 return (const char **)def;
5580 if (data->list==NULL) {
5581 data->list = str_list_make_v3(NULL, data->value, NULL);
5584 return (const char **)data->list;
5587 /* Return parametric option from a given service. Type is a part of option before ':' */
5588 /* Parametric option has following syntax: 'Type: option = value' */
5590 int lp_parm_int(int snum, const char *type, const char *option, int def)
5592 struct parmlist_entry *data = get_parametrics(snum, type, option);
5594 if (data && data->value && *data->value)
5595 return lp_int(data->value);
5600 /* Return parametric option from a given service. Type is a part of option before ':' */
5601 /* Parametric option has following syntax: 'Type: option = value' */
5603 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
5605 struct parmlist_entry *data = get_parametrics(snum, type, option);
5607 if (data && data->value && *data->value)
5608 return lp_ulong(data->value);
5613 /* Return parametric option from a given service. Type is a part of option before ':' */
5614 /* Parametric option has following syntax: 'Type: option = value' */
5616 bool lp_parm_bool(int snum, const char *type, const char *option, bool def)
5618 struct parmlist_entry *data = get_parametrics(snum, type, option);
5620 if (data && data->value && *data->value)
5621 return lp_bool(data->value);
5626 /* Return parametric option from a given service. Type is a part of option before ':' */
5627 /* Parametric option has following syntax: 'Type: option = value' */
5629 int lp_parm_enum(int snum, const char *type, const char *option,
5630 const struct enum_list *_enum, int def)
5632 struct parmlist_entry *data = get_parametrics(snum, type, option);
5634 if (data && data->value && *data->value && _enum)
5635 return lp_enum(data->value, _enum);
5641 /***************************************************************************
5642 Initialise a service to the defaults.
5643 ***************************************************************************/
5645 static void init_service(struct loadparm_service *pservice)
5647 memset((char *)pservice, '\0', sizeof(struct loadparm_service));
5648 copy_service(pservice, &sDefault, NULL);
5653 * free a param_opts structure.
5654 * param_opts handling should be moved to talloc;
5655 * then this whole functions reduces to a TALLOC_FREE().
5658 static void free_param_opts(struct parmlist_entry **popts)
5660 struct parmlist_entry *opt, *next_opt;
5662 if (popts == NULL) {
5666 if (*popts != NULL) {
5667 DEBUG(5, ("Freeing parametrics:\n"));
5670 while (opt != NULL) {
5671 string_free(&opt->key);
5672 string_free(&opt->value);
5673 TALLOC_FREE(opt->list);
5674 next_opt = opt->next;
5681 /***************************************************************************
5682 Free the dynamically allocated parts of a service struct.
5683 ***************************************************************************/
5685 static void free_service(struct loadparm_service *pservice)
5690 if (pservice->szService)
5691 DEBUG(5, ("free_service: Freeing service %s\n",
5692 pservice->szService));
5694 free_parameters(pservice);
5696 string_free(&pservice->szService);
5697 TALLOC_FREE(pservice->copymap);
5699 free_param_opts(&pservice->param_opt);
5701 ZERO_STRUCTP(pservice);
5705 /***************************************************************************
5706 remove a service indexed in the ServicePtrs array from the ServiceHash
5707 and free the dynamically allocated parts
5708 ***************************************************************************/
5710 static void free_service_byindex(int idx)
5712 if ( !LP_SNUM_OK(idx) )
5715 ServicePtrs[idx]->valid = false;
5716 invalid_services[num_invalid_services++] = idx;
5718 /* we have to cleanup the hash record */
5720 if (ServicePtrs[idx]->szService) {
5721 char *canon_name = canonicalize_servicename(
5723 ServicePtrs[idx]->szService );
5725 dbwrap_delete_bystring(ServiceHash, canon_name );
5726 TALLOC_FREE(canon_name);
5729 free_service(ServicePtrs[idx]);
5732 /***************************************************************************
5733 Add a new service to the services array initialising it with the given
5735 ***************************************************************************/
5737 static int add_a_service(const struct loadparm_service *pservice, const char *name)
5740 struct loadparm_service tservice;
5741 int num_to_alloc = iNumServices + 1;
5743 tservice = *pservice;
5745 /* it might already exist */
5747 i = getservicebyname(name, NULL);
5753 /* find an invalid one */
5755 if (num_invalid_services > 0) {
5756 i = invalid_services[--num_invalid_services];
5759 /* if not, then create one */
5760 if (i == iNumServices) {
5761 struct loadparm_service **tsp;
5764 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, struct loadparm_service *, num_to_alloc);
5766 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
5770 ServicePtrs[iNumServices] = SMB_MALLOC_P(struct loadparm_service);
5771 if (!ServicePtrs[iNumServices]) {
5772 DEBUG(0,("add_a_service: out of memory!\n"));
5777 /* enlarge invalid_services here for now... */
5778 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
5780 if (tinvalid == NULL) {
5781 DEBUG(0,("add_a_service: failed to enlarge "
5782 "invalid_services!\n"));
5785 invalid_services = tinvalid;
5787 free_service_byindex(i);
5790 ServicePtrs[i]->valid = true;
5792 init_service(ServicePtrs[i]);
5793 copy_service(ServicePtrs[i], &tservice, NULL);
5795 string_set(&ServicePtrs[i]->szService, name);
5797 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
5798 i, ServicePtrs[i]->szService));
5800 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
5807 /***************************************************************************
5808 Convert a string to uppercase and remove whitespaces.
5809 ***************************************************************************/
5811 char *canonicalize_servicename(TALLOC_CTX *ctx, const char *src)
5816 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
5820 result = talloc_strdup(ctx, src);
5821 SMB_ASSERT(result != NULL);
5827 /***************************************************************************
5828 Add a name/index pair for the services array to the hash table.
5829 ***************************************************************************/
5831 static bool hash_a_service(const char *name, int idx)
5835 if ( !ServiceHash ) {
5836 DEBUG(10,("hash_a_service: creating servicehash\n"));
5837 ServiceHash = db_open_rbt(NULL);
5838 if ( !ServiceHash ) {
5839 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
5844 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
5847 canon_name = canonicalize_servicename(talloc_tos(), name );
5849 dbwrap_store_bystring(ServiceHash, canon_name,
5850 make_tdb_data((uint8 *)&idx, sizeof(idx)),
5853 TALLOC_FREE(canon_name);
5858 /***************************************************************************
5859 Add a new home service, with the specified home directory, defaults coming
5861 ***************************************************************************/
5863 bool lp_add_home(const char *pszHomename, int iDefaultService,
5864 const char *user, const char *pszHomedir)
5868 if (pszHomename == NULL || user == NULL || pszHomedir == NULL ||
5869 pszHomedir[0] == '\0') {
5873 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
5878 if (!(*(ServicePtrs[iDefaultService]->szPath))
5879 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
5880 string_set(&ServicePtrs[i]->szPath, pszHomedir);
5883 if (!(*(ServicePtrs[i]->comment))) {
5884 char *comment = NULL;
5885 if (asprintf(&comment, "Home directory of %s", user) < 0) {
5888 string_set(&ServicePtrs[i]->comment, comment);
5892 /* set the browseable flag from the global default */
5894 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
5895 ServicePtrs[i]->bAccessBasedShareEnum = sDefault.bAccessBasedShareEnum;
5897 ServicePtrs[i]->autoloaded = true;
5899 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
5900 user, ServicePtrs[i]->szPath ));
5905 /***************************************************************************
5906 Add a new service, based on an old one.
5907 ***************************************************************************/
5909 int lp_add_service(const char *pszService, int iDefaultService)
5911 if (iDefaultService < 0) {
5912 return add_a_service(&sDefault, pszService);
5915 return (add_a_service(ServicePtrs[iDefaultService], pszService));
5918 /***************************************************************************
5919 Add the IPC service.
5920 ***************************************************************************/
5922 static bool lp_add_ipc(const char *ipc_name, bool guest_ok)
5924 char *comment = NULL;
5925 int i = add_a_service(&sDefault, ipc_name);
5930 if (asprintf(&comment, "IPC Service (%s)",
5931 Globals.szServerString) < 0) {
5935 string_set(&ServicePtrs[i]->szPath, tmpdir());
5936 string_set(&ServicePtrs[i]->szUsername, "");
5937 string_set(&ServicePtrs[i]->comment, comment);
5938 string_set(&ServicePtrs[i]->fstype, "IPC");
5939 ServicePtrs[i]->iMaxConnections = 0;
5940 ServicePtrs[i]->bAvailable = true;
5941 ServicePtrs[i]->bRead_only = true;
5942 ServicePtrs[i]->bGuest_only = false;
5943 ServicePtrs[i]->bAdministrative_share = true;
5944 ServicePtrs[i]->bGuest_ok = guest_ok;
5945 ServicePtrs[i]->bPrint_ok = false;
5946 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
5948 DEBUG(3, ("adding IPC service\n"));
5954 /***************************************************************************
5955 Add a new printer service, with defaults coming from service iFrom.
5956 ***************************************************************************/
5958 bool lp_add_printer(const char *pszPrintername, int iDefaultService)
5960 const char *comment = "From Printcap";
5961 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
5966 /* note that we do NOT default the availability flag to true - */
5967 /* we take it from the default service passed. This allows all */
5968 /* dynamic printers to be disabled by disabling the [printers] */
5969 /* entry (if/when the 'available' keyword is implemented!). */
5971 /* the printer name is set to the service name. */
5972 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
5973 string_set(&ServicePtrs[i]->comment, comment);
5975 /* set the browseable flag from the gloabl default */
5976 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
5978 /* Printers cannot be read_only. */
5979 ServicePtrs[i]->bRead_only = false;
5980 /* No share modes on printer services. */
5981 ServicePtrs[i]->bShareModes = false;
5982 /* No oplocks on printer services. */
5983 ServicePtrs[i]->bOpLocks = false;
5984 /* Printer services must be printable. */
5985 ServicePtrs[i]->bPrint_ok = true;
5987 DEBUG(3, ("adding printer service %s\n", pszPrintername));
5993 /***************************************************************************
5994 Check whether the given parameter name is valid.
5995 Parametric options (names containing a colon) are considered valid.
5996 ***************************************************************************/
5998 bool lp_parameter_is_valid(const char *pszParmName)
6000 return ((map_parameter(pszParmName) != -1) ||
6001 (strchr(pszParmName, ':') != NULL));
6004 /***************************************************************************
6005 Check whether the given name is the name of a global parameter.
6006 Returns true for strings belonging to parameters of class
6007 P_GLOBAL, false for all other strings, also for parametric options
6008 and strings not belonging to any option.
6009 ***************************************************************************/
6011 bool lp_parameter_is_global(const char *pszParmName)
6013 int num = map_parameter(pszParmName);
6016 return (parm_table[num].p_class == P_GLOBAL);
6022 /**************************************************************************
6023 Check whether the given name is the canonical name of a parameter.
6024 Returns false if it is not a valid parameter Name.
6025 For parametric options, true is returned.
6026 **************************************************************************/
6028 bool lp_parameter_is_canonical(const char *parm_name)
6030 if (!lp_parameter_is_valid(parm_name)) {
6034 return (map_parameter(parm_name) ==
6035 map_parameter_canonical(parm_name, NULL));
6038 /**************************************************************************
6039 Determine the canonical name for a parameter.
6040 Indicate when it is an inverse (boolean) synonym instead of a
6042 **************************************************************************/
6044 bool lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
6049 if (!lp_parameter_is_valid(parm_name)) {
6054 num = map_parameter_canonical(parm_name, inverse);
6056 /* parametric option */
6057 *canon_parm = parm_name;
6059 *canon_parm = parm_table[num].label;
6066 /**************************************************************************
6067 Determine the canonical name for a parameter.
6068 Turn the value given into the inverse boolean expression when
6069 the synonym is an invers boolean synonym.
6071 Return true if parm_name is a valid parameter name and
6072 in case it is an invers boolean synonym, if the val string could
6073 successfully be converted to the reverse bool.
6074 Return false in all other cases.
6075 **************************************************************************/
6077 bool lp_canonicalize_parameter_with_value(const char *parm_name,
6079 const char **canon_parm,
6080 const char **canon_val)
6085 if (!lp_parameter_is_valid(parm_name)) {
6091 num = map_parameter_canonical(parm_name, &inverse);
6093 /* parametric option */
6094 *canon_parm = parm_name;
6097 *canon_parm = parm_table[num].label;
6099 if (!lp_invert_boolean(val, canon_val)) {
6111 /***************************************************************************
6112 Map a parameter's string representation to something we can use.
6113 Returns false if the parameter string is not recognised, else TRUE.
6114 ***************************************************************************/
6116 static int map_parameter(const char *pszParmName)
6120 if (*pszParmName == '-' && !strequal(pszParmName, "-valid"))
6123 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
6124 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
6127 /* Warn only if it isn't parametric option */
6128 if (strchr(pszParmName, ':') == NULL)
6129 DEBUG(1, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
6130 /* We do return 'fail' for parametric options as well because they are
6131 stored in different storage
6136 /***************************************************************************
6137 Map a parameter's string representation to the index of the canonical
6138 form of the parameter (it might be a synonym).
6139 Returns -1 if the parameter string is not recognised.
6140 ***************************************************************************/
6142 static int map_parameter_canonical(const char *pszParmName, bool *inverse)
6144 int parm_num, canon_num;
6145 bool loc_inverse = false;
6147 parm_num = map_parameter(pszParmName);
6148 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
6149 /* invalid, parametric or no canidate for synonyms ... */
6153 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
6154 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
6155 parm_num = canon_num;
6161 if (inverse != NULL) {
6162 *inverse = loc_inverse;
6167 /***************************************************************************
6168 return true if parameter number parm1 is a synonym of parameter
6169 number parm2 (parm2 being the principal name).
6170 set inverse to true if parm1 is P_BOOLREV and parm2 is P_BOOL,
6172 ***************************************************************************/
6174 static bool is_synonym_of(int parm1, int parm2, bool *inverse)
6176 if ((parm_table[parm1].offset == parm_table[parm2].offset) &&
6177 (parm_table[parm1].p_class == parm_table[parm2].p_class) &&
6178 (parm_table[parm1].flags & FLAG_HIDE) &&
6179 !(parm_table[parm2].flags & FLAG_HIDE))
6181 if (inverse != NULL) {
6182 if ((parm_table[parm1].type == P_BOOLREV) &&
6183 (parm_table[parm2].type == P_BOOL))
6195 /***************************************************************************
6196 Show one parameter's name, type, [values,] and flags.
6197 (helper functions for show_parameter_list)
6198 ***************************************************************************/
6200 static void show_parameter(int parmIndex)
6202 int enumIndex, flagIndex;
6207 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
6208 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING",
6210 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
6211 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
6213 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
6214 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
6215 "FLAG_DEPRECATED", "FLAG_HIDE", NULL};
6217 printf("%s=%s", parm_table[parmIndex].label,
6218 type[parm_table[parmIndex].type]);
6219 if (parm_table[parmIndex].type == P_ENUM) {
6222 parm_table[parmIndex].enum_list[enumIndex].name;
6226 enumIndex ? "|" : "",
6227 parm_table[parmIndex].enum_list[enumIndex].name);
6232 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
6233 if (parm_table[parmIndex].flags & flags[flagIndex]) {
6236 flag_names[flagIndex]);
6241 /* output synonyms */
6243 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
6244 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
6245 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
6246 parm_table[parmIndex2].label);
6247 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
6249 printf(" (synonyms: ");
6254 printf("%s%s", parm_table[parmIndex2].label,
6255 inverse ? "[i]" : "");
6265 /***************************************************************************
6266 Show all parameter's name, type, [values,] and flags.
6267 ***************************************************************************/
6269 void show_parameter_list(void)
6271 int classIndex, parmIndex;
6272 const char *section_names[] = { "local", "global", NULL};
6274 for (classIndex=0; section_names[classIndex]; classIndex++) {
6275 printf("[%s]\n", section_names[classIndex]);
6276 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
6277 if (parm_table[parmIndex].p_class == classIndex) {
6278 show_parameter(parmIndex);
6284 /***************************************************************************
6285 Check if a given string correctly represents a boolean value.
6286 ***************************************************************************/
6288 bool lp_string_is_valid_boolean(const char *parm_value)
6290 return set_boolean(parm_value, NULL);
6293 /***************************************************************************
6294 Get the standard string representation of a boolean value ("yes" or "no")
6295 ***************************************************************************/
6297 static const char *get_boolean(bool bool_value)
6299 static const char *yes_str = "yes";
6300 static const char *no_str = "no";
6302 return (bool_value ? yes_str : no_str);
6305 /***************************************************************************
6306 Provide the string of the negated boolean value associated to the boolean
6307 given as a string. Returns false if the passed string does not correctly
6308 represent a boolean.
6309 ***************************************************************************/
6311 bool lp_invert_boolean(const char *str, const char **inverse_str)
6315 if (!set_boolean(str, &val)) {
6319 *inverse_str = get_boolean(!val);
6323 /***************************************************************************
6324 Provide the canonical string representation of a boolean value given
6325 as a string. Return true on success, false if the string given does
6326 not correctly represent a boolean.
6327 ***************************************************************************/
6329 bool lp_canonicalize_boolean(const char *str, const char**canon_str)
6333 if (!set_boolean(str, &val)) {
6337 *canon_str = get_boolean(val);
6341 /***************************************************************************
6342 Find a service by name. Otherwise works like get_service.
6343 ***************************************************************************/
6345 static int getservicebyname(const char *pszServiceName, struct loadparm_service *pserviceDest)
6352 if (ServiceHash == NULL) {
6356 canon_name = canonicalize_servicename(talloc_tos(), pszServiceName);
6358 status = dbwrap_fetch_bystring(ServiceHash, canon_name, canon_name,
6361 if (NT_STATUS_IS_OK(status) &&
6362 (data.dptr != NULL) &&
6363 (data.dsize == sizeof(iService)))
6365 iService = *(int *)data.dptr;
6368 TALLOC_FREE(canon_name);
6370 if ((iService != -1) && (LP_SNUM_OK(iService))
6371 && (pserviceDest != NULL)) {
6372 copy_service(pserviceDest, ServicePtrs[iService], NULL);
6378 /* Return a pointer to a service by name. Unlike getservicebyname, it does not copy the service */
6379 struct loadparm_service *lp_service(const char *pszServiceName)
6381 int iService = getservicebyname(pszServiceName, NULL);
6382 if (iService == -1 || !LP_SNUM_OK(iService)) {
6385 return ServicePtrs[iService];
6388 struct loadparm_service *lp_servicebynum(int snum)
6390 if ((snum == -1) || !LP_SNUM_OK(snum)) {
6393 return ServicePtrs[snum];
6396 struct loadparm_service *lp_default_loadparm_service()
6402 /***************************************************************************
6403 Copy a service structure to another.
6404 If pcopymapDest is NULL then copy all fields
6405 ***************************************************************************/
6408 * Add a parametric option to a parmlist_entry,
6409 * replacing old value, if already present.
6411 static void set_param_opt(struct parmlist_entry **opt_list,
6412 const char *opt_name,
6413 const char *opt_value,
6416 struct parmlist_entry *new_opt, *opt;
6419 if (opt_list == NULL) {
6426 /* Traverse destination */
6428 /* If we already have same option, override it */
6429 if (strwicmp(opt->key, opt_name) == 0) {
6430 if ((opt->priority & FLAG_CMDLINE) &&
6431 !(priority & FLAG_CMDLINE)) {
6432 /* it's been marked as not to be
6436 string_free(&opt->value);
6437 TALLOC_FREE(opt->list);
6438 opt->value = SMB_STRDUP(opt_value);
6439 opt->priority = priority;
6446 new_opt = SMB_XMALLOC_P(struct parmlist_entry);
6447 new_opt->key = SMB_STRDUP(opt_name);
6448 new_opt->value = SMB_STRDUP(opt_value);
6449 new_opt->list = NULL;
6450 new_opt->priority = priority;
6451 DLIST_ADD(*opt_list, new_opt);
6455 static void copy_service(struct loadparm_service *pserviceDest, struct loadparm_service *pserviceSource,
6456 struct bitmap *pcopymapDest)
6459 bool bcopyall = (pcopymapDest == NULL);
6460 struct parmlist_entry *data;
6462 for (i = 0; parm_table[i].label; i++)
6463 if (parm_table[i].p_class == P_LOCAL &&
6464 (bcopyall || bitmap_query(pcopymapDest,i))) {
6465 void *src_ptr = lp_parm_ptr(pserviceSource, &parm_table[i]);
6466 void *dest_ptr = lp_parm_ptr(pserviceDest, &parm_table[i]);
6468 switch (parm_table[i].type) {
6471 *(bool *)dest_ptr = *(bool *)src_ptr;
6478 *(int *)dest_ptr = *(int *)src_ptr;
6482 *(char *)dest_ptr = *(char *)src_ptr;
6486 string_set((char **)dest_ptr,
6492 char *upper_string = strupper_talloc(talloc_tos(),
6494 string_set((char **)dest_ptr,
6496 TALLOC_FREE(upper_string);
6500 TALLOC_FREE(*((char ***)dest_ptr));
6501 *((char ***)dest_ptr) = str_list_copy(NULL,
6502 *(const char ***)src_ptr);
6510 init_copymap(pserviceDest);
6511 if (pserviceSource->copymap)
6512 bitmap_copy(pserviceDest->copymap,
6513 pserviceSource->copymap);
6516 data = pserviceSource->param_opt;
6518 set_param_opt(&pserviceDest->param_opt, data->key, data->value, data->priority);
6523 /***************************************************************************
6524 Check a service for consistency. Return false if the service is in any way
6525 incomplete or faulty, else true.
6526 ***************************************************************************/
6528 bool service_ok(int iService)
6533 if (ServicePtrs[iService]->szService[0] == '\0') {
6534 DEBUG(0, ("The following message indicates an internal error:\n"));
6535 DEBUG(0, ("No service name in service entry.\n"));
6539 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
6540 /* I can't see why you'd want a non-printable printer service... */
6541 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
6542 if (!ServicePtrs[iService]->bPrint_ok) {
6543 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
6544 ServicePtrs[iService]->szService));
6545 ServicePtrs[iService]->bPrint_ok = true;
6547 /* [printers] service must also be non-browsable. */
6548 if (ServicePtrs[iService]->bBrowseable)
6549 ServicePtrs[iService]->bBrowseable = false;
6552 if (ServicePtrs[iService]->szPath[0] == '\0' &&
6553 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
6554 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
6556 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
6557 ServicePtrs[iService]->szService));
6558 ServicePtrs[iService]->bAvailable = false;
6561 /* If a service is flagged unavailable, log the fact at level 1. */
6562 if (!ServicePtrs[iService]->bAvailable)
6563 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
6564 ServicePtrs[iService]->szService));
6569 static struct smbconf_ctx *lp_smbconf_ctx(void)
6572 static struct smbconf_ctx *conf_ctx = NULL;
6574 if (conf_ctx == NULL) {
6575 err = smbconf_init(NULL, &conf_ctx, "registry:");
6576 if (!SBC_ERROR_IS_OK(err)) {
6577 DEBUG(1, ("error initializing registry configuration: "
6578 "%s\n", sbcErrorString(err)));
6586 static bool process_smbconf_service(struct smbconf_service *service)
6591 if (service == NULL) {
6595 ret = do_section(service->name, NULL);
6599 for (count = 0; count < service->num_params; count++) {
6600 ret = do_parameter(service->param_names[count],
6601 service->param_values[count],
6607 if (iServiceIndex >= 0) {
6608 return service_ok(iServiceIndex);
6614 * load a service from registry and activate it
6616 bool process_registry_service(const char *service_name)
6619 struct smbconf_service *service = NULL;
6620 TALLOC_CTX *mem_ctx = talloc_stackframe();
6621 struct smbconf_ctx *conf_ctx = lp_smbconf_ctx();
6624 if (conf_ctx == NULL) {
6628 DEBUG(5, ("process_registry_service: service name %s\n", service_name));
6630 if (!smbconf_share_exists(conf_ctx, service_name)) {
6632 * Registry does not contain data for this service (yet),
6633 * but make sure lp_load doesn't return false.
6639 err = smbconf_get_share(conf_ctx, mem_ctx, service_name, &service);
6640 if (!SBC_ERROR_IS_OK(err)) {
6644 ret = process_smbconf_service(service);
6650 smbconf_changed(conf_ctx, &conf_last_csn, NULL, NULL);
6653 TALLOC_FREE(mem_ctx);
6658 * process_registry_globals
6660 static bool process_registry_globals(void)
6664 add_to_file_list(INCLUDE_REGISTRY_NAME, INCLUDE_REGISTRY_NAME);
6666 ret = do_parameter("registry shares", "yes", NULL);
6671 return process_registry_service(GLOBAL_NAME);
6674 bool process_registry_shares(void)
6678 struct smbconf_service **service = NULL;
6679 uint32_t num_shares = 0;
6680 TALLOC_CTX *mem_ctx = talloc_stackframe();
6681 struct smbconf_ctx *conf_ctx = lp_smbconf_ctx();
6684 if (conf_ctx == NULL) {
6688 err = smbconf_get_config(conf_ctx, mem_ctx, &num_shares, &service);
6689 if (!SBC_ERROR_IS_OK(err)) {
6695 for (count = 0; count < num_shares; count++) {
6696 if (strequal(service[count]->name, GLOBAL_NAME)) {
6699 ret = process_smbconf_service(service[count]);
6706 smbconf_changed(conf_ctx, &conf_last_csn, NULL, NULL);
6709 TALLOC_FREE(mem_ctx);
6714 * reload those shares from registry that are already
6715 * activated in the services array.
6717 static bool reload_registry_shares(void)
6722 for (i = 0; i < iNumServices; i++) {
6727 if (ServicePtrs[i]->usershare == USERSHARE_VALID) {
6731 ret = process_registry_service(ServicePtrs[i]->szService);
6742 #define MAX_INCLUDE_DEPTH 100
6744 static uint8_t include_depth;
6746 static struct file_lists {
6747 struct file_lists *next;
6751 } *file_lists = NULL;
6753 /*******************************************************************
6754 Keep a linked list of all config files so we know when one has changed
6755 it's date and needs to be reloaded.
6756 ********************************************************************/
6758 static void add_to_file_list(const char *fname, const char *subfname)
6760 struct file_lists *f = file_lists;
6763 if (f->name && !strcmp(f->name, fname))
6769 f = SMB_MALLOC_P(struct file_lists);
6772 f->next = file_lists;
6773 f->name = SMB_STRDUP(fname);
6778 f->subfname = SMB_STRDUP(subfname);
6785 f->modtime = file_modtime(subfname);
6787 time_t t = file_modtime(subfname);
6795 * Free the file lists
6797 static void free_file_list(void)
6799 struct file_lists *f;
6800 struct file_lists *next;
6805 SAFE_FREE( f->name );
6806 SAFE_FREE( f->subfname );
6815 * Utility function for outsiders to check if we're running on registry.
6817 bool lp_config_backend_is_registry(void)
6819 return (lp_config_backend() == CONFIG_BACKEND_REGISTRY);
6823 * Utility function to check if the config backend is FILE.
6825 bool lp_config_backend_is_file(void)
6827 return (lp_config_backend() == CONFIG_BACKEND_FILE);
6830 /*******************************************************************
6831 Check if a config file has changed date.
6832 ********************************************************************/
6834 bool lp_file_list_changed(void)
6836 struct file_lists *f = file_lists;
6838 DEBUG(6, ("lp_file_list_changed()\n"));
6843 if (strequal(f->name, INCLUDE_REGISTRY_NAME)) {
6844 struct smbconf_ctx *conf_ctx = lp_smbconf_ctx();
6846 if (conf_ctx == NULL) {
6849 if (smbconf_changed(conf_ctx, &conf_last_csn, NULL,
6852 DEBUGADD(6, ("registry config changed\n"));
6857 n2 = talloc_sub_basic(talloc_tos(),
6858 get_current_username(),
6859 current_user_info.domain,
6864 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
6865 f->name, n2, ctime(&f->modtime)));
6867 mod_time = file_modtime(n2);
6870 ((f->modtime != mod_time) ||
6871 (f->subfname == NULL) ||
6872 (strcmp(n2, f->subfname) != 0)))
6875 ("file %s modified: %s\n", n2,
6877 f->modtime = mod_time;
6878 SAFE_FREE(f->subfname);
6879 f->subfname = SMB_STRDUP(n2);
6892 * Initialize iconv conversion descriptors.
6894 * This is called the first time it is needed, and also called again
6895 * every time the configuration is reloaded, because the charset or
6896 * codepage might have changed.
6898 static void init_iconv(void)
6900 global_iconv_handle = smb_iconv_handle_reinit(NULL, lp_dos_charset(),
6902 true, global_iconv_handle);
6905 static bool handle_charset(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
6907 if (strcmp(*ptr, pszParmValue) != 0) {
6908 string_set(ptr, pszParmValue);
6914 static bool handle_dos_charset(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
6916 bool is_utf8 = false;
6917 size_t len = strlen(pszParmValue);
6919 if (len == 4 || len == 5) {
6920 /* Don't use StrCaseCmp here as we don't want to
6921 initialize iconv. */
6922 if ((toupper_m(pszParmValue[0]) == 'U') &&
6923 (toupper_m(pszParmValue[1]) == 'T') &&
6924 (toupper_m(pszParmValue[2]) == 'F')) {
6926 if (pszParmValue[3] == '8') {
6930 if (pszParmValue[3] == '-' &&
6931 pszParmValue[4] == '8') {
6938 if (strcmp(*ptr, pszParmValue) != 0) {
6940 DEBUG(0,("ERROR: invalid DOS charset: 'dos charset' must not "
6941 "be UTF8, using (default value) %s instead.\n",
6942 DEFAULT_DOS_CHARSET));
6943 pszParmValue = DEFAULT_DOS_CHARSET;
6945 string_set(ptr, pszParmValue);
6951 static bool handle_realm(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
6954 char *realm = strupper_talloc(talloc_tos(), pszParmValue);
6955 char *dnsdomain = strlower_talloc(talloc_tos(), pszParmValue);
6957 ret &= string_set(&Globals.szRealm, pszParmValue);
6958 ret &= string_set(&Globals.szRealmUpper, realm);
6959 ret &= string_set(&Globals.szDnsDomain, dnsdomain);
6961 TALLOC_FREE(dnsdomain);
6966 static bool handle_netbios_aliases(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
6968 TALLOC_FREE(Globals.szNetbiosAliases);
6969 Globals.szNetbiosAliases = (const char **)str_list_make_v3(NULL, pszParmValue, NULL);
6970 return set_netbios_aliases(Globals.szNetbiosAliases);
6973 /***************************************************************************
6974 Handle the include operation.
6975 ***************************************************************************/
6976 static bool bAllowIncludeRegistry = true;
6978 static bool handle_include(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
6982 if (include_depth >= MAX_INCLUDE_DEPTH) {
6983 DEBUG(0, ("Error: Maximum include depth (%u) exceeded!\n",
6988 if (strequal(pszParmValue, INCLUDE_REGISTRY_NAME)) {
6989 if (!bAllowIncludeRegistry) {
6992 if (bInGlobalSection) {
6995 ret = process_registry_globals();
6999 DEBUG(1, ("\"include = registry\" only effective "
7000 "in %s section\n", GLOBAL_NAME));
7005 fname = talloc_sub_basic(talloc_tos(), get_current_username(),
7006 current_user_info.domain,
7009 add_to_file_list(pszParmValue, fname);
7011 string_set(ptr, fname);
7013 if (file_exist(fname)) {
7016 ret = pm_process(fname, do_section, do_parameter, NULL);
7022 DEBUG(2, ("Can't find include file %s\n", fname));
7027 /***************************************************************************
7028 Handle the interpretation of the copy parameter.
7029 ***************************************************************************/
7031 static bool handle_copy(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
7035 struct loadparm_service serviceTemp;
7037 string_set(ptr, pszParmValue);
7039 init_service(&serviceTemp);
7043 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
7045 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
7046 if (iTemp == iServiceIndex) {
7047 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
7049 copy_service(ServicePtrs[iServiceIndex],
7051 ServicePtrs[iServiceIndex]->copymap);
7055 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
7059 free_service(&serviceTemp);
7063 static bool handle_ldap_debug_level(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
7065 Globals.ldap_debug_level = lp_int(pszParmValue);
7066 init_ldap_debugging();
7070 /***************************************************************************
7071 Handle idmap/non unix account uid and gid allocation parameters. The format of these
7076 idmap uid = 1000-1999
7079 We only do simple parsing checks here. The strings are parsed into useful
7080 structures in the idmap daemon code.
7082 ***************************************************************************/
7084 /* Some lp_ routines to return idmap [ug]id information */
7086 static uid_t idmap_uid_low, idmap_uid_high;
7087 static gid_t idmap_gid_low, idmap_gid_high;
7089 bool lp_idmap_uid(uid_t *low, uid_t *high)
7091 if (idmap_uid_low == 0 || idmap_uid_high == 0)
7095 *low = idmap_uid_low;
7098 *high = idmap_uid_high;
7103 bool lp_idmap_gid(gid_t *low, gid_t *high)
7105 if (idmap_gid_low == 0 || idmap_gid_high == 0)
7109 *low = idmap_gid_low;
7112 *high = idmap_gid_high;
7117 static bool handle_idmap_backend(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
7119 lp_do_parameter(snum, "idmap config * : backend", pszParmValue);
7124 /* Do some simple checks on "idmap [ug]id" parameter values */
7126 static bool handle_idmap_uid(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
7128 lp_do_parameter(snum, "idmap config * : range", pszParmValue);
7133 static bool handle_idmap_gid(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
7135 lp_do_parameter(snum, "idmap config * : range", pszParmValue);
7140 /***************************************************************************
7141 Handle the DEBUG level list.
7142 ***************************************************************************/
7144 static bool handle_debug_list(struct loadparm_context *unused, int snum, const char *pszParmValueIn, char **ptr )
7146 string_set(ptr, pszParmValueIn);
7147 return debug_parse_levels(pszParmValueIn);
7150 /***************************************************************************
7151 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
7152 ***************************************************************************/
7154 static const char *append_ldap_suffix( const char *str )
7156 const char *suffix_string;
7159 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
7160 Globals.szLdapSuffix );
7161 if ( !suffix_string ) {
7162 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
7166 return suffix_string;
7169 const char *lp_ldap_machine_suffix(void)
7171 if (Globals.szLdapMachineSuffix[0])
7172 return append_ldap_suffix(Globals.szLdapMachineSuffix);
7174 return lp_string(Globals.szLdapSuffix);
7177 const char *lp_ldap_user_suffix(void)
7179 if (Globals.szLdapUserSuffix[0])
7180 return append_ldap_suffix(Globals.szLdapUserSuffix);
7182 return lp_string(Globals.szLdapSuffix);
7185 const char *lp_ldap_group_suffix(void)
7187 if (Globals.szLdapGroupSuffix[0])
7188 return append_ldap_suffix(Globals.szLdapGroupSuffix);
7190 return lp_string(Globals.szLdapSuffix);
7193 const char *lp_ldap_idmap_suffix(void)
7195 if (Globals.szLdapIdmapSuffix[0])
7196 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
7198 return lp_string(Globals.szLdapSuffix);
7201 /****************************************************************************
7202 set the value for a P_ENUM
7203 ***************************************************************************/
7205 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
7210 for (i = 0; parm->enum_list[i].name; i++) {
7211 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
7212 *ptr = parm->enum_list[i].value;
7216 DEBUG(0, ("WARNING: Ignoring invalid value '%s' for parameter '%s'\n",
7217 pszParmValue, parm->label));
7220 /***************************************************************************
7221 ***************************************************************************/
7223 static bool handle_printing(struct loadparm_context *unused, int snum, const char *pszParmValue, char **ptr)
7225 static int parm_num = -1;
7226 struct loadparm_service *s;
7228 if ( parm_num == -1 )
7229 parm_num = map_parameter( "printing" );
7231 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
7236 s = ServicePtrs[snum];
7238 init_printer_values( s );
7244 /***************************************************************************
7245 Initialise a copymap.
7246 ***************************************************************************/
7248 static void init_copymap(struct loadparm_service *pservice)
7252 TALLOC_FREE(pservice->copymap);
7254 pservice->copymap = bitmap_talloc(NULL, NUMPARAMETERS);
7255 if (!pservice->copymap)
7257 ("Couldn't allocate copymap!! (size %d)\n",
7258 (int)NUMPARAMETERS));
7260 for (i = 0; i < NUMPARAMETERS; i++)
7261 bitmap_set(pservice->copymap, i);
7265 return the parameter pointer for a parameter
7267 void *lp_parm_ptr(struct loadparm_service *service, struct parm_struct *parm)
7269 if (service == NULL) {
7270 if (parm->p_class == P_LOCAL)
7271 return (void *)(((char *)&sDefault)+parm->offset);
7272 else if (parm->p_class == P_GLOBAL)
7273 return (void *)(((char *)&Globals)+parm->offset);
7276 return (void *)(((char *)service) + parm->offset);
7280 /***************************************************************************
7281 Return the local pointer to a parameter given the service number and parameter
7282 ***************************************************************************/
7284 void *lp_local_ptr_by_snum(int snum, struct parm_struct *parm)
7286 return lp_parm_ptr(ServicePtrs[snum], parm);
7289 /***************************************************************************
7290 Process a parameter for a particular service number. If snum < 0
7291 then assume we are in the globals.
7292 ***************************************************************************/
7294 bool lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
7297 void *parm_ptr = NULL; /* where we are going to store the result */
7298 struct parmlist_entry **opt_list;
7300 parmnum = map_parameter(pszParmName);
7303 if (strchr(pszParmName, ':') == NULL) {
7304 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n",
7310 * We've got a parametric option
7313 opt_list = (snum < 0)
7314 ? &Globals.param_opt : &ServicePtrs[snum]->param_opt;
7315 set_param_opt(opt_list, pszParmName, pszParmValue, 0);
7320 /* if it's already been set by the command line, then we don't
7322 if (parm_table[parmnum].flags & FLAG_CMDLINE) {
7326 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
7327 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
7331 /* we might point at a service, the default service or a global */
7333 parm_ptr = lp_parm_ptr(NULL, &parm_table[parmnum]);
7335 if (parm_table[parmnum].p_class == P_GLOBAL) {
7337 ("Global parameter %s found in service section!\n",
7341 parm_ptr = lp_local_ptr_by_snum(snum, &parm_table[parmnum]);
7345 if (!ServicePtrs[snum]->copymap)
7346 init_copymap(ServicePtrs[snum]);
7348 /* this handles the aliases - set the copymap for other entries with
7349 the same data pointer */
7350 for (i = 0; parm_table[i].label; i++) {
7351 if ((parm_table[i].offset == parm_table[parmnum].offset)
7352 && (parm_table[i].p_class == parm_table[parmnum].p_class)) {
7353 bitmap_clear(ServicePtrs[snum]->copymap, i);
7358 /* if it is a special case then go ahead */
7359 if (parm_table[parmnum].special) {
7360 return parm_table[parmnum].special(NULL, snum, pszParmValue,
7364 /* now switch on the type of variable it is */
7365 switch (parm_table[parmnum].type)
7368 *(bool *)parm_ptr = lp_bool(pszParmValue);
7372 *(bool *)parm_ptr = !lp_bool(pszParmValue);
7376 *(int *)parm_ptr = lp_int(pszParmValue);
7380 *(char *)parm_ptr = *pszParmValue;
7384 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
7386 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
7393 if (conv_str_size_error(pszParmValue, &val)) {
7394 if (val <= INT_MAX) {
7395 *(int *)parm_ptr = (int)val;
7400 DEBUG(0,("lp_do_parameter(%s): value is not "
7401 "a valid size specifier!\n", pszParmValue));
7407 TALLOC_FREE(*((char ***)parm_ptr));
7408 *(char ***)parm_ptr = str_list_make_v3(
7409 NULL, pszParmValue, NULL);
7413 string_set((char **)parm_ptr, pszParmValue);
7418 char *upper_string = strupper_talloc(talloc_tos(),
7420 string_set((char **)parm_ptr, upper_string);
7421 TALLOC_FREE(upper_string);
7425 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
7434 /***************************************************************************
7435 set a parameter, marking it with FLAG_CMDLINE. Parameters marked as
7436 FLAG_CMDLINE won't be overridden by loads from smb.conf.
7437 ***************************************************************************/
7439 static bool lp_set_cmdline_helper(const char *pszParmName, const char *pszParmValue, bool store_values)
7442 parmnum = map_parameter(pszParmName);
7444 parm_table[parmnum].flags &= ~FLAG_CMDLINE;
7445 if (!lp_do_parameter(-1, pszParmName, pszParmValue)) {
7448 parm_table[parmnum].flags |= FLAG_CMDLINE;
7450 /* we have to also set FLAG_CMDLINE on aliases. Aliases must
7451 * be grouped in the table, so we don't have to search the
7454 i>=0 && parm_table[i].offset == parm_table[parmnum].offset
7455 && parm_table[i].p_class == parm_table[parmnum].p_class;
7457 parm_table[i].flags |= FLAG_CMDLINE;
7459 for (i=parmnum+1;i<NUMPARAMETERS && parm_table[i].offset == parm_table[parmnum].offset
7460 && parm_table[i].p_class == parm_table[parmnum].p_class;i++) {
7461 parm_table[i].flags |= FLAG_CMDLINE;
7465 store_lp_set_cmdline(pszParmName, pszParmValue);
7470 /* it might be parametric */
7471 if (strchr(pszParmName, ':') != NULL) {
7472 set_param_opt(&Globals.param_opt, pszParmName, pszParmValue, FLAG_CMDLINE);
7474 store_lp_set_cmdline(pszParmName, pszParmValue);
7479 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
7483 bool lp_set_cmdline(const char *pszParmName, const char *pszParmValue)
7485 return lp_set_cmdline_helper(pszParmName, pszParmValue, true);
7488 /***************************************************************************
7489 Process a parameter.
7490 ***************************************************************************/
7492 static bool do_parameter(const char *pszParmName, const char *pszParmValue,
7495 if (!bInGlobalSection && bGlobalOnly)
7498 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
7500 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
7501 pszParmName, pszParmValue));
7505 set a option from the commandline in 'a=b' format. Use to support --option
7507 bool lp_set_option(const char *option)
7512 s = talloc_strdup(NULL, option);
7525 /* skip white spaces after the = sign */
7528 } while (*p == ' ');
7530 ret = lp_set_cmdline(s, p);
7535 /**************************************************************************
7536 Print a parameter of the specified type.
7537 ***************************************************************************/
7539 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
7541 /* For the seperation of lists values that we print below */
7542 const char *list_sep = ", ";
7547 for (i = 0; p->enum_list[i].name; i++) {
7548 if (*(int *)ptr == p->enum_list[i].value) {
7550 p->enum_list[i].name);
7557 fprintf(f, "%s", BOOLSTR(*(bool *)ptr));
7561 fprintf(f, "%s", BOOLSTR(!*(bool *)ptr));
7566 fprintf(f, "%d", *(int *)ptr);
7570 fprintf(f, "%c", *(char *)ptr);
7574 int val = *(int *)ptr;
7578 fprintf(f, "0%o", val);
7587 if ((char ***)ptr && *(char ***)ptr) {
7588 char **list = *(char ***)ptr;
7589 for (; *list; list++) {
7590 /* surround strings with whitespace in double quotes */
7591 if (*(list+1) == NULL) {
7592 /* last item, no extra separator */
7595 if ( strchr_m( *list, ' ' ) ) {
7596 fprintf(f, "\"%s\"%s", *list, list_sep);
7598 fprintf(f, "%s%s", *list, list_sep);
7606 if (*(char **)ptr) {
7607 fprintf(f, "%s", *(char **)ptr);
7615 /***************************************************************************
7616 Check if two parameters are equal.
7617 ***************************************************************************/
7619 static bool equal_parameter(parm_type type, void *ptr1, void *ptr2)
7624 return (*((bool *)ptr1) == *((bool *)ptr2));
7630 return (*((int *)ptr1) == *((int *)ptr2));
7633 return (*((char *)ptr1) == *((char *)ptr2));
7637 return str_list_equal(*(const char ***)ptr1, *(const char ***)ptr2);
7642 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
7647 return (p1 == p2 || strequal(p1, p2));
7655 /***************************************************************************
7656 Initialize any local varients in the sDefault table.
7657 ***************************************************************************/
7659 void init_locals(void)
7664 /***************************************************************************
7665 Process a new section (service). At this stage all sections are services.
7666 Later we'll have special sections that permit server parameters to be set.
7667 Returns true on success, false on failure.
7668 ***************************************************************************/
7670 static bool do_section(const char *pszSectionName, void *userdata)
7673 bool isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
7674 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
7677 /* if we were in a global section then do the local inits */
7678 if (bInGlobalSection && !isglobal)
7681 /* if we've just struck a global section, note the fact. */
7682 bInGlobalSection = isglobal;
7684 /* check for multiple global sections */
7685 if (bInGlobalSection) {
7686 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
7690 if (!bInGlobalSection && bGlobalOnly)
7693 /* if we have a current service, tidy it up before moving on */
7696 if (iServiceIndex >= 0)
7697 bRetval = service_ok(iServiceIndex);
7699 /* if all is still well, move to the next record in the services array */
7701 /* We put this here to avoid an odd message order if messages are */
7702 /* issued by the post-processing of a previous section. */
7703 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
7705 iServiceIndex = add_a_service(&sDefault, pszSectionName);
7706 if (iServiceIndex < 0) {
7707 DEBUG(0, ("Failed to add a new service\n"));
7710 /* Clean all parametric options for service */
7711 /* They will be added during parsing again */
7712 free_param_opts(&ServicePtrs[iServiceIndex]->param_opt);
7719 /***************************************************************************
7720 Determine if a partcular base parameter is currentl set to the default value.
7721 ***************************************************************************/
7723 static bool is_default(int i)
7725 if (!defaults_saved)
7727 switch (parm_table[i].type) {
7730 return str_list_equal((const char **)parm_table[i].def.lvalue,
7731 *(const char ***)lp_parm_ptr(NULL,
7735 return strequal(parm_table[i].def.svalue,
7736 *(char **)lp_parm_ptr(NULL,
7740 return parm_table[i].def.bvalue ==
7741 *(bool *)lp_parm_ptr(NULL,
7744 return parm_table[i].def.cvalue ==
7745 *(char *)lp_parm_ptr(NULL,
7751 return parm_table[i].def.ivalue ==
7752 *(int *)lp_parm_ptr(NULL,
7760 /***************************************************************************
7761 Display the contents of the global structure.
7762 ***************************************************************************/
7764 static void dump_globals(FILE *f)
7767 struct parmlist_entry *data;
7769 fprintf(f, "[global]\n");
7771 for (i = 0; parm_table[i].label; i++)
7772 if (parm_table[i].p_class == P_GLOBAL &&
7773 !(parm_table[i].flags & FLAG_META) &&
7774 (i == 0 || (parm_table[i].offset != parm_table[i - 1].offset))) {
7775 if (defaults_saved && is_default(i))
7777 fprintf(f, "\t%s = ", parm_table[i].label);
7778 print_parameter(&parm_table[i], lp_parm_ptr(NULL,
7783 if (Globals.param_opt != NULL) {
7784 data = Globals.param_opt;
7786 fprintf(f, "\t%s = %s\n", data->key, data->value);
7793 /***************************************************************************
7794 Return true if a local parameter is currently set to the global default.
7795 ***************************************************************************/
7797 bool lp_is_default(int snum, struct parm_struct *parm)
7799 return equal_parameter(parm->type,
7800 lp_parm_ptr(ServicePtrs[snum], parm),
7801 lp_parm_ptr(NULL, parm));
7804 /***************************************************************************
7805 Display the contents of a single services record.
7806 ***************************************************************************/
7808 static void dump_a_service(struct loadparm_service *pService, FILE * f)
7811 struct parmlist_entry *data;
7813 if (pService != &sDefault)
7814 fprintf(f, "[%s]\n", pService->szService);
7816 for (i = 0; parm_table[i].label; i++) {
7818 if (parm_table[i].p_class == P_LOCAL &&
7819 !(parm_table[i].flags & FLAG_META) &&
7820 (*parm_table[i].label != '-') &&
7821 (i == 0 || (parm_table[i].offset != parm_table[i - 1].offset)))
7823 if (pService == &sDefault) {
7824 if (defaults_saved && is_default(i))
7827 if (equal_parameter(parm_table[i].type,
7828 lp_parm_ptr(pService, &parm_table[i]),
7829 lp_parm_ptr(NULL, &parm_table[i])))
7833 fprintf(f, "\t%s = ", parm_table[i].label);
7834 print_parameter(&parm_table[i],
7835 lp_parm_ptr(pService, &parm_table[i]),
7841 if (pService->param_opt != NULL) {
7842 data = pService->param_opt;
7844 fprintf(f, "\t%s = %s\n", data->key, data->value);
7850 /***************************************************************************
7851 Display the contents of a parameter of a single services record.
7852 ***************************************************************************/
7854 bool dump_a_parameter(int snum, char *parm_name, FILE * f, bool isGlobal)
7857 bool result = false;
7860 fstring local_parm_name;
7862 const char *parm_opt_value;
7864 /* check for parametrical option */
7865 fstrcpy( local_parm_name, parm_name);
7866 parm_opt = strchr( local_parm_name, ':');
7871 if (strlen(parm_opt)) {
7872 parm_opt_value = lp_parm_const_string( snum,
7873 local_parm_name, parm_opt, NULL);
7874 if (parm_opt_value) {
7875 printf( "%s\n", parm_opt_value);
7882 /* check for a key and print the value */
7889 for (i = 0; parm_table[i].label; i++) {
7890 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
7891 !(parm_table[i].flags & FLAG_META) &&
7892 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
7893 (*parm_table[i].label != '-') &&
7894 (i == 0 || (parm_table[i].offset != parm_table[i - 1].offset)))
7899 ptr = lp_parm_ptr(NULL,
7902 ptr = lp_parm_ptr(ServicePtrs[snum],
7906 print_parameter(&parm_table[i],
7917 /***************************************************************************
7918 Return info about the requested parameter (given as a string).
7919 Return NULL when the string is not a valid parameter name.
7920 ***************************************************************************/
7922 struct parm_struct *lp_get_parameter(const char *param_name)
7924 int num = map_parameter(param_name);
7930 return &parm_table[num];
7933 /***************************************************************************
7934 Return info about the next parameter in a service.
7935 snum==GLOBAL_SECTION_SNUM gives the globals.
7936 Return NULL when out of parameters.
7937 ***************************************************************************/
7939 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
7942 /* do the globals */
7943 for (; parm_table[*i].label; (*i)++) {
7944 if (parm_table[*i].p_class == P_SEPARATOR)
7945 return &parm_table[(*i)++];
7947 if ((*parm_table[*i].label == '-'))
7951 && (parm_table[*i].offset ==
7952 parm_table[(*i) - 1].offset)
7953 && (parm_table[*i].p_class ==
7954 parm_table[(*i) - 1].p_class))
7957 if (is_default(*i) && !allparameters)
7960 return &parm_table[(*i)++];
7963 struct loadparm_service *pService = ServicePtrs[snum];
7965 for (; parm_table[*i].label; (*i)++) {
7966 if (parm_table[*i].p_class == P_SEPARATOR)
7967 return &parm_table[(*i)++];
7969 if (parm_table[*i].p_class == P_LOCAL &&
7970 (*parm_table[*i].label != '-') &&
7972 (parm_table[*i].offset !=
7973 parm_table[(*i) - 1].offset)))
7975 if (allparameters ||
7976 !equal_parameter(parm_table[*i].type,
7977 lp_parm_ptr(pService,
7982 return &parm_table[(*i)++];
7993 /***************************************************************************
7994 Display the contents of a single copy structure.
7995 ***************************************************************************/
7996 static void dump_copy_map(bool *pcopymap)
8002 printf("\n\tNon-Copied parameters:\n");
8004 for (i = 0; parm_table[i].label; i++)
8005 if (parm_table[i].p_class == P_LOCAL &&
8006 parm_table[i].ptr && !pcopymap[i] &&
8007 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
8009 printf("\t\t%s\n", parm_table[i].label);
8014 /***************************************************************************
8015 Return TRUE if the passed service number is within range.
8016 ***************************************************************************/
8018 bool lp_snum_ok(int iService)
8020 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
8023 /***************************************************************************
8024 Auto-load some home services.
8025 ***************************************************************************/
8027 static void lp_add_auto_services(char *str)
8037 s = SMB_STRDUP(str);
8041 homes = lp_servicenumber(HOMES_NAME);
8043 for (p = strtok_r(s, LIST_SEP, &saveptr); p;
8044 p = strtok_r(NULL, LIST_SEP, &saveptr)) {
8047 if (lp_servicenumber(p) >= 0)
8050 home = get_user_home_dir(talloc_tos(), p);
8052 if (home && home[0] && homes >= 0)
8053 lp_add_home(p, homes, p, home);
8060 /***************************************************************************
8061 Auto-load one printer.
8062 ***************************************************************************/
8064 void lp_add_one_printer(const char *name, const char *comment,
8065 const char *location, void *pdata)
8067 int printers = lp_servicenumber(PRINTERS_NAME);
8070 if (lp_servicenumber(name) < 0) {
8071 lp_add_printer(name, printers);
8072 if ((i = lp_servicenumber(name)) >= 0) {
8073 string_set(&ServicePtrs[i]->comment, comment);
8074 ServicePtrs[i]->autoloaded = true;
8079 /***************************************************************************
8080 Have we loaded a services file yet?
8081 ***************************************************************************/
8083 bool lp_loaded(void)
8088 /***************************************************************************
8089 Unload unused services.
8090 ***************************************************************************/
8092 void lp_killunused(struct smbd_server_connection *sconn,
8093 bool (*snumused) (struct smbd_server_connection *, int))
8096 for (i = 0; i < iNumServices; i++) {
8100 /* don't kill autoloaded or usershare services */
8101 if ( ServicePtrs[i]->autoloaded ||
8102 ServicePtrs[i]->usershare == USERSHARE_VALID) {
8106 if (!snumused || !snumused(sconn, i)) {
8107 free_service_byindex(i);
8113 * Kill all except autoloaded and usershare services - convenience wrapper
8115 void lp_kill_all_services(void)
8117 lp_killunused(NULL, NULL);
8120 /***************************************************************************
8122 ***************************************************************************/
8124 void lp_killservice(int iServiceIn)
8126 if (VALID(iServiceIn)) {
8127 free_service_byindex(iServiceIn);
8131 /***************************************************************************
8132 Save the curent values of all global and sDefault parameters into the
8133 defaults union. This allows swat and testparm to show only the
8134 changed (ie. non-default) parameters.
8135 ***************************************************************************/
8137 static void lp_save_defaults(void)
8140 for (i = 0; parm_table[i].label; i++) {
8141 if (i > 0 && parm_table[i].offset == parm_table[i - 1].offset
8142 && parm_table[i].p_class == parm_table[i - 1].p_class)
8144 switch (parm_table[i].type) {
8147 parm_table[i].def.lvalue = str_list_copy(
8148 NULL, *(const char ***)lp_parm_ptr(NULL, &parm_table[i]));
8152 parm_table[i].def.svalue = SMB_STRDUP(*(char **)lp_parm_ptr(NULL, &parm_table[i]));
8156 parm_table[i].def.bvalue =
8157 *(bool *)lp_parm_ptr(NULL, &parm_table[i]);
8160 parm_table[i].def.cvalue =
8161 *(char *)lp_parm_ptr(NULL, &parm_table[i]);
8167 parm_table[i].def.ivalue =
8168 *(int *)lp_parm_ptr(NULL, &parm_table[i]);
8174 defaults_saved = true;
8177 /***********************************************************
8178 If we should send plaintext/LANMAN passwords in the clinet
8179 ************************************************************/
8181 static void set_allowed_client_auth(void)
8183 if (Globals.bClientNTLMv2Auth) {
8184 Globals.bClientLanManAuth = false;
8186 if (!Globals.bClientLanManAuth) {
8187 Globals.bClientPlaintextAuth = false;
8191 /***************************************************************************
8193 The following code allows smbd to read a user defined share file.
8194 Yes, this is my intent. Yes, I'm comfortable with that...
8196 THE FOLLOWING IS SECURITY CRITICAL CODE.
8198 It washes your clothes, it cleans your house, it guards you while you sleep...
8199 Do not f%^k with it....
8200 ***************************************************************************/
8202 #define MAX_USERSHARE_FILE_SIZE (10*1024)
8204 /***************************************************************************
8205 Check allowed stat state of a usershare file.
8206 Ensure we print out who is dicking with us so the admin can
8207 get their sorry ass fired.
8208 ***************************************************************************/
8210 static bool check_usershare_stat(const char *fname,
8211 const SMB_STRUCT_STAT *psbuf)
8213 if (!S_ISREG(psbuf->st_ex_mode)) {
8214 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
8215 "not a regular file\n",
8216 fname, (unsigned int)psbuf->st_ex_uid ));
8220 /* Ensure this doesn't have the other write bit set. */
8221 if (psbuf->st_ex_mode & S_IWOTH) {
8222 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
8223 "public write. Refusing to allow as a usershare file.\n",
8224 fname, (unsigned int)psbuf->st_ex_uid ));
8228 /* Should be 10k or less. */
8229 if (psbuf->st_ex_size > MAX_USERSHARE_FILE_SIZE) {
8230 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
8231 "too large (%u) to be a user share file.\n",
8232 fname, (unsigned int)psbuf->st_ex_uid,
8233 (unsigned int)psbuf->st_ex_size ));
8240 /***************************************************************************
8241 Parse the contents of a usershare file.
8242 ***************************************************************************/
8244 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
8245 SMB_STRUCT_STAT *psbuf,
8246 const char *servicename,
8250 char **pp_sharepath,
8252 char **pp_cp_servicename,
8253 struct security_descriptor **ppsd,
8256 const char **prefixallowlist = lp_usershare_prefix_allow_list();
8257 const char **prefixdenylist = lp_usershare_prefix_deny_list();
8260 SMB_STRUCT_STAT sbuf;
8261 char *sharepath = NULL;
8262 char *comment = NULL;
8264 *pp_sharepath = NULL;
8267 *pallow_guest = false;
8270 return USERSHARE_MALFORMED_FILE;
8273 if (strcmp(lines[0], "#VERSION 1") == 0) {
8275 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
8278 return USERSHARE_MALFORMED_FILE;
8281 return USERSHARE_BAD_VERSION;
8284 if (strncmp(lines[1], "path=", 5) != 0) {
8285 return USERSHARE_MALFORMED_PATH;
8288 sharepath = talloc_strdup(ctx, &lines[1][5]);
8290 return USERSHARE_POSIX_ERR;
8292 trim_string(sharepath, " ", " ");
8294 if (strncmp(lines[2], "comment=", 8) != 0) {
8295 return USERSHARE_MALFORMED_COMMENT_DEF;
8298 comment = talloc_strdup(ctx, &lines[2][8]);
8300 return USERSHARE_POSIX_ERR;
8302 trim_string(comment, " ", " ");
8303 trim_char(comment, '"', '"');
8305 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
8306 return USERSHARE_MALFORMED_ACL_DEF;
8309 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
8310 return USERSHARE_ACL_ERR;
8314 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
8315 return USERSHARE_MALFORMED_ACL_DEF;
8317 if (lines[4][9] == 'y') {
8318 *pallow_guest = true;
8321 /* Backwards compatible extension to file version #2. */
8323 if (strncmp(lines[5], "sharename=", 10) != 0) {
8324 return USERSHARE_MALFORMED_SHARENAME_DEF;
8326 if (!strequal(&lines[5][10], servicename)) {
8327 return USERSHARE_BAD_SHARENAME;
8329 *pp_cp_servicename = talloc_strdup(ctx, &lines[5][10]);
8330 if (!*pp_cp_servicename) {
8331 return USERSHARE_POSIX_ERR;
8336 if (*pp_cp_servicename == NULL) {
8337 *pp_cp_servicename = talloc_strdup(ctx, servicename);
8338 if (!*pp_cp_servicename) {
8339 return USERSHARE_POSIX_ERR;
8343 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
8344 /* Path didn't change, no checks needed. */
8345 *pp_sharepath = sharepath;
8346 *pp_comment = comment;
8347 return USERSHARE_OK;
8350 /* The path *must* be absolute. */
8351 if (sharepath[0] != '/') {
8352 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
8353 servicename, sharepath));
8354 return USERSHARE_PATH_NOT_ABSOLUTE;
8357 /* If there is a usershare prefix deny list ensure one of these paths
8358 doesn't match the start of the user given path. */
8359 if (prefixdenylist) {
8361 for ( i=0; prefixdenylist[i]; i++ ) {
8362 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
8363 servicename, i, prefixdenylist[i], sharepath ));
8364 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
8365 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
8366 "usershare prefix deny list entries.\n",
8367 servicename, sharepath));
8368 return USERSHARE_PATH_IS_DENIED;
8373 /* If there is a usershare prefix allow list ensure one of these paths
8374 does match the start of the user given path. */
8376 if (prefixallowlist) {
8378 for ( i=0; prefixallowlist[i]; i++ ) {
8379 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
8380 servicename, i, prefixallowlist[i], sharepath ));
8381 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
8385 if (prefixallowlist[i] == NULL) {
8386 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
8387 "usershare prefix allow list entries.\n",
8388 servicename, sharepath));
8389 return USERSHARE_PATH_NOT_ALLOWED;
8393 /* Ensure this is pointing to a directory. */
8394 dp = sys_opendir(sharepath);
8397 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
8398 servicename, sharepath));
8399 return USERSHARE_PATH_NOT_DIRECTORY;
8402 /* Ensure the owner of the usershare file has permission to share
8405 if (sys_stat(sharepath, &sbuf, false) == -1) {
8406 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
8407 servicename, sharepath, strerror(errno) ));
8409 return USERSHARE_POSIX_ERR;
8414 if (!S_ISDIR(sbuf.st_ex_mode)) {
8415 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
8416 servicename, sharepath ));
8417 return USERSHARE_PATH_NOT_DIRECTORY;
8420 /* Check if sharing is restricted to owner-only. */
8421 /* psbuf is the stat of the usershare definition file,
8422 sbuf is the stat of the target directory to be shared. */
8424 if (lp_usershare_owner_only()) {
8425 /* root can share anything. */
8426 if ((psbuf->st_ex_uid != 0) && (sbuf.st_ex_uid != psbuf->st_ex_uid)) {
8427 return USERSHARE_PATH_NOT_ALLOWED;
8431 *pp_sharepath = sharepath;
8432 *pp_comment = comment;
8433 return USERSHARE_OK;
8436 /***************************************************************************
8437 Deal with a usershare file.
8440 -1 - Bad name, invalid contents.
8441 - service name already existed and not a usershare, problem
8442 with permissions to share directory etc.
8443 ***************************************************************************/
8445 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
8447 SMB_STRUCT_STAT sbuf;
8448 SMB_STRUCT_STAT lsbuf;
8450 char *sharepath = NULL;
8451 char *comment = NULL;
8452 char *cp_service_name = NULL;
8453 char **lines = NULL;
8457 TALLOC_CTX *ctx = talloc_stackframe();
8458 struct security_descriptor *psd = NULL;
8459 bool guest_ok = false;
8460 char *canon_name = NULL;
8461 bool added_service = false;
8464 /* Ensure share name doesn't contain invalid characters. */
8465 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
8466 DEBUG(0,("process_usershare_file: share name %s contains "
8467 "invalid characters (any of %s)\n",
8468 file_name, INVALID_SHARENAME_CHARS ));
8472 canon_name = canonicalize_servicename(ctx, file_name);
8477 fname = talloc_asprintf(ctx, "%s/%s", dir_name, file_name);
8482 /* Minimize the race condition by doing an lstat before we
8483 open and fstat. Ensure this isn't a symlink link. */
8485 if (sys_lstat(fname, &lsbuf, false) != 0) {
8486 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
8487 fname, strerror(errno) ));
8491 /* This must be a regular file, not a symlink, directory or
8492 other strange filetype. */
8493 if (!check_usershare_stat(fname, &lsbuf)) {
8501 status = dbwrap_fetch_bystring(ServiceHash, canon_name,
8506 if (NT_STATUS_IS_OK(status) &&
8507 (data.dptr != NULL) &&
8508 (data.dsize == sizeof(iService))) {
8509 memcpy(&iService, data.dptr, sizeof(iService));
8513 if (iService != -1 &&
8514 timespec_compare(&ServicePtrs[iService]->usershare_last_mod,
8515 &lsbuf.st_ex_mtime) == 0) {
8516 /* Nothing changed - Mark valid and return. */
8517 DEBUG(10,("process_usershare_file: service %s not changed.\n",
8519 ServicePtrs[iService]->usershare = USERSHARE_VALID;
8524 /* Try and open the file read only - no symlinks allowed. */
8526 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
8528 fd = sys_open(fname, O_RDONLY, 0);
8532 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
8533 fname, strerror(errno) ));
8537 /* Now fstat to be *SURE* it's a regular file. */
8538 if (sys_fstat(fd, &sbuf, false) != 0) {
8540 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
8541 fname, strerror(errno) ));
8545 /* Is it the same dev/inode as was lstated ? */
8546 if (lsbuf.st_ex_dev != sbuf.st_ex_dev || lsbuf.st_ex_ino != sbuf.st_ex_ino) {
8548 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
8549 "Symlink spoofing going on ?\n", fname ));
8553 /* This must be a regular file, not a symlink, directory or
8554 other strange filetype. */
8555 if (!check_usershare_stat(fname, &sbuf)) {
8559 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE, NULL);
8562 if (lines == NULL) {
8563 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
8564 fname, (unsigned int)sbuf.st_ex_uid ));
8568 if (parse_usershare_file(ctx, &sbuf, file_name,
8569 iService, lines, numlines, &sharepath,
8570 &comment, &cp_service_name,
8571 &psd, &guest_ok) != USERSHARE_OK) {
8575 /* Everything ok - add the service possibly using a template. */
8577 const struct loadparm_service *sp = &sDefault;
8578 if (snum_template != -1) {
8579 sp = ServicePtrs[snum_template];
8582 if ((iService = add_a_service(sp, cp_service_name)) < 0) {
8583 DEBUG(0, ("process_usershare_file: Failed to add "
8584 "new service %s\n", cp_service_name));
8588 added_service = true;
8590 /* Read only is controlled by usershare ACL below. */
8591 ServicePtrs[iService]->bRead_only = false;
8594 /* Write the ACL of the new/modified share. */
8595 if (!set_share_security(canon_name, psd)) {
8596 DEBUG(0, ("process_usershare_file: Failed to set share "
8597 "security for user share %s\n",
8602 /* If from a template it may be marked invalid. */
8603 ServicePtrs[iService]->valid = true;
8605 /* Set the service as a valid usershare. */
8606 ServicePtrs[iService]->usershare = USERSHARE_VALID;
8608 /* Set guest access. */
8609 if (lp_usershare_allow_guests()) {
8610 ServicePtrs[iService]->bGuest_ok = guest_ok;
8613 /* And note when it was loaded. */
8614 ServicePtrs[iService]->usershare_last_mod = sbuf.st_ex_mtime;
8615 string_set(&ServicePtrs[iService]->szPath, sharepath);
8616 string_set(&ServicePtrs[iService]->comment, comment);
8622 if (ret == -1 && iService != -1 && added_service) {
8623 lp_remove_service(iService);
8631 /***************************************************************************
8632 Checks if a usershare entry has been modified since last load.
8633 ***************************************************************************/
8635 static bool usershare_exists(int iService, struct timespec *last_mod)
8637 SMB_STRUCT_STAT lsbuf;
8638 const char *usersharepath = Globals.szUsersharePath;
8641 if (asprintf(&fname, "%s/%s",
8643 ServicePtrs[iService]->szService) < 0) {
8647 if (sys_lstat(fname, &lsbuf, false) != 0) {
8652 if (!S_ISREG(lsbuf.st_ex_mode)) {
8658 *last_mod = lsbuf.st_ex_mtime;
8662 /***************************************************************************
8663 Load a usershare service by name. Returns a valid servicenumber or -1.
8664 ***************************************************************************/
8666 int load_usershare_service(const char *servicename)
8668 SMB_STRUCT_STAT sbuf;
8669 const char *usersharepath = Globals.szUsersharePath;
8670 int max_user_shares = Globals.iUsershareMaxShares;
8671 int snum_template = -1;
8673 if (*usersharepath == 0 || max_user_shares == 0) {
8677 if (sys_stat(usersharepath, &sbuf, false) != 0) {
8678 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
8679 usersharepath, strerror(errno) ));
8683 if (!S_ISDIR(sbuf.st_ex_mode)) {
8684 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
8690 * This directory must be owned by root, and have the 't' bit set.
8691 * It also must not be writable by "other".
8695 if (sbuf.st_ex_uid != 0 || !(sbuf.st_ex_mode & S_ISVTX) || (sbuf.st_ex_mode & S_IWOTH)) {
8697 if (sbuf.st_ex_uid != 0 || (sbuf.st_ex_mode & S_IWOTH)) {
8699 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
8700 "or does not have the sticky bit 't' set or is writable by anyone.\n",
8705 /* Ensure the template share exists if it's set. */
8706 if (Globals.szUsershareTemplateShare[0]) {
8707 /* We can't use lp_servicenumber here as we are recommending that
8708 template shares have -valid=false set. */
8709 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
8710 if (ServicePtrs[snum_template]->szService &&
8711 strequal(ServicePtrs[snum_template]->szService,
8712 Globals.szUsershareTemplateShare)) {
8717 if (snum_template == -1) {
8718 DEBUG(0,("load_usershare_service: usershare template share %s "
8719 "does not exist.\n",
8720 Globals.szUsershareTemplateShare ));
8725 return process_usershare_file(usersharepath, servicename, snum_template);
8728 /***************************************************************************
8729 Load all user defined shares from the user share directory.
8730 We only do this if we're enumerating the share list.
8731 This is the function that can delete usershares that have
8733 ***************************************************************************/
8735 int load_usershare_shares(struct smbd_server_connection *sconn,
8736 bool (*snumused) (struct smbd_server_connection *, int))
8739 SMB_STRUCT_STAT sbuf;
8740 SMB_STRUCT_DIRENT *de;
8741 int num_usershares = 0;
8742 int max_user_shares = Globals.iUsershareMaxShares;
8743 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
8744 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
8745 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
8747 int snum_template = -1;
8748 const char *usersharepath = Globals.szUsersharePath;
8749 int ret = lp_numservices();
8751 if (max_user_shares == 0 || *usersharepath == '\0') {
8752 return lp_numservices();
8755 if (sys_stat(usersharepath, &sbuf, false) != 0) {
8756 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
8757 usersharepath, strerror(errno) ));
8762 * This directory must be owned by root, and have the 't' bit set.
8763 * It also must not be writable by "other".
8767 if (sbuf.st_ex_uid != 0 || !(sbuf.st_ex_mode & S_ISVTX) || (sbuf.st_ex_mode & S_IWOTH)) {
8769 if (sbuf.st_ex_uid != 0 || (sbuf.st_ex_mode & S_IWOTH)) {
8771 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
8772 "or does not have the sticky bit 't' set or is writable by anyone.\n",
8777 /* Ensure the template share exists if it's set. */
8778 if (Globals.szUsershareTemplateShare[0]) {
8779 /* We can't use lp_servicenumber here as we are recommending that
8780 template shares have -valid=false set. */
8781 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
8782 if (ServicePtrs[snum_template]->szService &&
8783 strequal(ServicePtrs[snum_template]->szService,
8784 Globals.szUsershareTemplateShare)) {
8789 if (snum_template == -1) {
8790 DEBUG(0,("load_usershare_shares: usershare template share %s "
8791 "does not exist.\n",
8792 Globals.szUsershareTemplateShare ));
8797 /* Mark all existing usershares as pending delete. */
8798 for (iService = iNumServices - 1; iService >= 0; iService--) {
8799 if (VALID(iService) && ServicePtrs[iService]->usershare) {
8800 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
8804 dp = sys_opendir(usersharepath);
8806 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
8807 usersharepath, strerror(errno) ));
8811 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
8812 (de = sys_readdir(dp));
8813 num_dir_entries++ ) {
8815 const char *n = de->d_name;
8817 /* Ignore . and .. */
8819 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
8825 /* Temporary file used when creating a share. */
8826 num_tmp_dir_entries++;
8829 /* Allow 20% tmp entries. */
8830 if (num_tmp_dir_entries > allowed_tmp_entries) {
8831 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
8832 "in directory %s\n",
8833 num_tmp_dir_entries, usersharepath));
8837 r = process_usershare_file(usersharepath, n, snum_template);
8839 /* Update the services count. */
8841 if (num_usershares >= max_user_shares) {
8842 DEBUG(0,("load_usershare_shares: max user shares reached "
8843 "on file %s in directory %s\n",
8844 n, usersharepath ));
8847 } else if (r == -1) {
8848 num_bad_dir_entries++;
8851 /* Allow 20% bad entries. */
8852 if (num_bad_dir_entries > allowed_bad_entries) {
8853 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
8854 "in directory %s\n",
8855 num_bad_dir_entries, usersharepath));
8859 /* Allow 20% bad entries. */
8860 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
8861 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
8862 "in directory %s\n",
8863 num_dir_entries, usersharepath));
8870 /* Sweep through and delete any non-refreshed usershares that are
8871 not currently in use. */
8872 for (iService = iNumServices - 1; iService >= 0; iService--) {
8873 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
8874 if (snumused && snumused(sconn, iService)) {
8877 /* Remove from the share ACL db. */
8878 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
8879 lp_servicename(iService) ));
8880 delete_share_security(lp_servicename(iService));
8881 free_service_byindex(iService);
8885 return lp_numservices();
8888 /********************************************************
8889 Destroy global resources allocated in this file
8890 ********************************************************/
8892 void gfree_loadparm(void)
8898 /* Free resources allocated to services */
8900 for ( i = 0; i < iNumServices; i++ ) {
8902 free_service_byindex(i);
8906 SAFE_FREE( ServicePtrs );
8909 /* Now release all resources allocated to global
8910 parameters and the default service */
8912 free_global_parameters();
8916 /***************************************************************************
8917 Allow client apps to specify that they are a client
8918 ***************************************************************************/
8919 static void lp_set_in_client(bool b)
8925 /***************************************************************************
8926 Determine if we're running in a client app
8927 ***************************************************************************/
8928 static bool lp_is_in_client(void)
8933 /***************************************************************************
8934 Load the services array from the services file. Return true on success,
8936 ***************************************************************************/
8938 static bool lp_load_ex(const char *pszFname,
8942 bool initialize_globals,
8943 bool allow_include_registry,
8944 bool load_all_shares)
8951 DEBUG(3, ("lp_load_ex: refreshing parameters\n"));
8953 bInGlobalSection = true;
8954 bGlobalOnly = global_only;
8955 bAllowIncludeRegistry = allow_include_registry;
8957 init_globals(initialize_globals);
8961 if (save_defaults) {
8966 if (!initialize_globals) {
8967 free_param_opts(&Globals.param_opt);
8968 apply_lp_set_cmdline();
8971 lp_do_parameter(-1, "idmap config * : backend", Globals.szIdmapBackend);
8973 /* We get sections first, so have to start 'behind' to make up */
8976 if (lp_config_backend_is_file()) {
8977 n2 = talloc_sub_basic(talloc_tos(), get_current_username(),
8978 current_user_info.domain,
8981 smb_panic("lp_load_ex: out of memory");
8984 add_to_file_list(pszFname, n2);
8986 bRetval = pm_process(n2, do_section, do_parameter, NULL);
8989 /* finish up the last section */
8990 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
8992 if (iServiceIndex >= 0) {
8993 bRetval = service_ok(iServiceIndex);
8997 if (lp_config_backend_is_registry()) {
8998 /* config backend changed to registry in config file */
9000 * We need to use this extra global variable here to
9001 * survive restart: init_globals uses this as a default
9002 * for ConfigBackend. Otherwise, init_globals would
9003 * send us into an endless loop here.
9005 config_backend = CONFIG_BACKEND_REGISTRY;
9007 DEBUG(1, ("lp_load_ex: changing to config backend "
9010 lp_kill_all_services();
9011 return lp_load_ex(pszFname, global_only, save_defaults,
9012 add_ipc, initialize_globals,
9013 allow_include_registry,
9016 } else if (lp_config_backend_is_registry()) {
9017 bRetval = process_registry_globals();
9019 DEBUG(0, ("Illegal config backend given: %d\n",
9020 lp_config_backend()));
9024 if (bRetval && lp_registry_shares()) {
9025 if (load_all_shares) {
9026 bRetval = process_registry_shares();
9028 bRetval = reload_registry_shares();
9032 lp_add_auto_services(lp_auto_services());
9035 /* When 'restrict anonymous = 2' guest connections to ipc$
9037 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
9038 if ( lp_enable_asu_support() ) {
9039 lp_add_ipc("ADMIN$", false);
9043 set_allowed_client_auth();
9045 if (lp_security() == SEC_SHARE) {
9046 DEBUG(1, ("WARNING: The security=share option is deprecated\n"));
9047 } else if (lp_security() == SEC_SERVER) {
9048 DEBUG(1, ("WARNING: The security=server option is deprecated\n"));
9051 if (lp_security() == SEC_ADS && strchr(lp_passwordserver(), ':')) {
9052 DEBUG(1, ("WARNING: The optional ':port' in password server = %s is deprecated\n",
9053 lp_passwordserver()));
9058 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
9059 /* if bWINSsupport is true and we are in the client */
9060 if (lp_is_in_client() && Globals.bWINSsupport) {
9061 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
9066 fault_configure(smb_panic_s3);
9068 bAllowIncludeRegistry = true;
9073 bool lp_load(const char *pszFname,
9077 bool initialize_globals)
9079 return lp_load_ex(pszFname,
9084 true, /* allow_include_registry */
9085 false); /* load_all_shares*/
9088 bool lp_load_initial_only(const char *pszFname)
9090 return lp_load_ex(pszFname,
9091 true, /* global only */
9092 false, /* save_defaults */
9093 false, /* add_ipc */
9094 true, /* initialize_globals */
9095 false, /* allow_include_registry */
9096 false); /* load_all_shares*/
9100 * most common lp_load wrapper, loading only the globals
9102 bool lp_load_global(const char *file_name)
9104 return lp_load_ex(file_name,
9105 true, /* global_only */
9106 false, /* save_defaults */
9107 false, /* add_ipc */
9108 true, /* initialize_globals */
9109 true, /* allow_include_registry */
9110 false); /* load_all_shares*/
9114 * lp_load wrapper, especially for clients
9116 bool lp_load_client(const char *file_name)
9118 lp_set_in_client(true);
9120 return lp_load_global(file_name);
9124 * lp_load wrapper, loading only globals, but intended
9125 * for subsequent calls, not reinitializing the globals
9128 bool lp_load_global_no_reinit(const char *file_name)
9130 return lp_load_ex(file_name,
9131 true, /* global_only */
9132 false, /* save_defaults */
9133 false, /* add_ipc */
9134 false, /* initialize_globals */
9135 true, /* allow_include_registry */
9136 false); /* load_all_shares*/
9140 * lp_load wrapper, especially for clients, no reinitialization
9142 bool lp_load_client_no_reinit(const char *file_name)
9144 lp_set_in_client(true);
9146 return lp_load_global_no_reinit(file_name);
9149 bool lp_load_with_registry_shares(const char *pszFname,
9153 bool initialize_globals)
9155 return lp_load_ex(pszFname,
9160 true, /* allow_include_registry */
9161 true); /* load_all_shares*/
9164 /***************************************************************************
9165 Return the max number of services.
9166 ***************************************************************************/
9168 int lp_numservices(void)
9170 return (iNumServices);
9173 /***************************************************************************
9174 Display the contents of the services array in human-readable form.
9175 ***************************************************************************/
9177 void lp_dump(FILE *f, bool show_defaults, int maxtoprint)
9182 defaults_saved = false;
9186 dump_a_service(&sDefault, f);
9188 for (iService = 0; iService < maxtoprint; iService++) {
9190 lp_dump_one(f, show_defaults, iService);
9194 /***************************************************************************
9195 Display the contents of one service in human-readable form.
9196 ***************************************************************************/
9198 void lp_dump_one(FILE * f, bool show_defaults, int snum)
9201 if (ServicePtrs[snum]->szService[0] == '\0')
9203 dump_a_service(ServicePtrs[snum], f);
9207 /***************************************************************************
9208 Return the number of the service with the given name, or -1 if it doesn't
9209 exist. Note that this is a DIFFERENT ANIMAL from the internal function
9210 getservicebyname()! This works ONLY if all services have been loaded, and
9211 does not copy the found service.
9212 ***************************************************************************/
9214 int lp_servicenumber(const char *pszServiceName)
9217 fstring serviceName;
9219 if (!pszServiceName) {
9220 return GLOBAL_SECTION_SNUM;
9223 for (iService = iNumServices - 1; iService >= 0; iService--) {
9224 if (VALID(iService) && ServicePtrs[iService]->szService) {
9226 * The substitution here is used to support %U is
9229 fstrcpy(serviceName, ServicePtrs[iService]->szService);
9230 standard_sub_basic(get_current_username(),
9231 current_user_info.domain,
9232 serviceName,sizeof(serviceName));
9233 if (strequal(serviceName, pszServiceName)) {
9239 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
9240 struct timespec last_mod;
9242 if (!usershare_exists(iService, &last_mod)) {
9243 /* Remove the share security tdb entry for it. */
9244 delete_share_security(lp_servicename(iService));
9245 /* Remove it from the array. */
9246 free_service_byindex(iService);
9247 /* Doesn't exist anymore. */
9248 return GLOBAL_SECTION_SNUM;
9251 /* Has it been modified ? If so delete and reload. */
9252 if (timespec_compare(&ServicePtrs[iService]->usershare_last_mod,
9254 /* Remove it from the array. */
9255 free_service_byindex(iService);
9256 /* and now reload it. */
9257 iService = load_usershare_service(pszServiceName);
9262 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
9263 return GLOBAL_SECTION_SNUM;
9269 /*******************************************************************
9270 A useful volume label function.
9271 ********************************************************************/
9273 const char *volume_label(int snum)
9276 const char *label = lp_volume(snum);
9278 label = lp_servicename(snum);
9281 /* This returns a 33 byte guarenteed null terminated string. */
9282 ret = talloc_strndup(talloc_tos(), label, 32);
9289 /*******************************************************************
9290 Get the default server type we will announce as via nmbd.
9291 ********************************************************************/
9293 int lp_default_server_announce(void)
9295 int default_server_announce = 0;
9296 default_server_announce |= SV_TYPE_WORKSTATION;
9297 default_server_announce |= SV_TYPE_SERVER;
9298 default_server_announce |= SV_TYPE_SERVER_UNIX;
9300 /* note that the flag should be set only if we have a
9301 printer service but nmbd doesn't actually load the
9302 services so we can't tell --jerry */
9304 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
9306 default_server_announce |= SV_TYPE_SERVER_NT;
9307 default_server_announce |= SV_TYPE_NT;
9309 switch (lp_server_role()) {
9310 case ROLE_DOMAIN_MEMBER:
9311 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
9313 case ROLE_DOMAIN_PDC:
9314 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
9316 case ROLE_DOMAIN_BDC:
9317 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
9319 case ROLE_STANDALONE:
9323 if (lp_time_server())
9324 default_server_announce |= SV_TYPE_TIME_SOURCE;
9326 if (lp_host_msdfs())
9327 default_server_announce |= SV_TYPE_DFS_SERVER;
9329 return default_server_announce;
9332 /***********************************************************
9333 If we are PDC then prefer us as DMB
9334 ************************************************************/
9336 bool lp_domain_master(void)
9338 if (Globals.iDomainMaster == Auto)
9339 return (lp_server_role() == ROLE_DOMAIN_PDC);
9341 return (bool)Globals.iDomainMaster;
9344 /***********************************************************
9345 If we are PDC then prefer us as DMB
9346 ************************************************************/
9348 static bool lp_domain_master_true_or_auto(void)
9350 if (Globals.iDomainMaster) /* auto or yes */
9356 /***********************************************************
9357 If we are DMB then prefer us as LMB
9358 ************************************************************/
9360 bool lp_preferred_master(void)
9362 if (Globals.iPreferredMaster == Auto)
9363 return (lp_local_master() && lp_domain_master());
9365 return (bool)Globals.iPreferredMaster;
9368 /*******************************************************************
9370 ********************************************************************/
9372 void lp_remove_service(int snum)
9374 ServicePtrs[snum]->valid = false;
9375 invalid_services[num_invalid_services++] = snum;
9378 /*******************************************************************
9380 ********************************************************************/
9382 void lp_copy_service(int snum, const char *new_name)
9384 do_section(new_name, NULL);
9386 snum = lp_servicenumber(new_name);
9388 lp_do_parameter(snum, "copy", lp_servicename(snum));
9393 /***********************************************************
9394 Set the global name resolution order (used in smbclient).
9395 ************************************************************/
9397 void lp_set_name_resolve_order(const char *new_order)
9399 string_set(&Globals.szNameResolveOrder, new_order);
9402 const char *lp_printername(int snum)
9404 const char *ret = lp__printername(snum);
9405 if (ret == NULL || (ret != NULL && *ret == '\0'))
9406 ret = lp_const_servicename(snum);
9412 /***********************************************************
9413 Allow daemons such as winbindd to fix their logfile name.
9414 ************************************************************/
9416 void lp_set_logfile(const char *name)
9418 string_set(&Globals.szLogFile, name);
9419 debug_set_logfile(name);
9422 /*******************************************************************
9423 Return the max print jobs per queue.
9424 ********************************************************************/
9426 int lp_maxprintjobs(int snum)
9428 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
9429 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
9430 maxjobs = PRINT_MAX_JOBID - 1;
9435 const char *lp_printcapname(void)
9437 if ((Globals.szPrintcapname != NULL) &&
9438 (Globals.szPrintcapname[0] != '\0'))
9439 return Globals.szPrintcapname;
9441 if (sDefault.iPrinting == PRINT_CUPS) {
9449 if (sDefault.iPrinting == PRINT_BSD)
9450 return "/etc/printcap";
9452 return PRINTCAP_NAME;
9455 static uint32 spoolss_state;
9457 bool lp_disable_spoolss( void )
9459 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
9460 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
9462 return spoolss_state == SVCCTL_STOPPED ? true : false;
9465 void lp_set_spoolss_state( uint32 state )
9467 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
9469 spoolss_state = state;
9472 uint32 lp_get_spoolss_state( void )
9474 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
9477 /*******************************************************************
9478 Ensure we don't use sendfile if server smb signing is active.
9479 ********************************************************************/
9481 bool lp_use_sendfile(int snum, struct smb_signing_state *signing_state)
9483 bool sign_active = false;
9485 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
9486 if (get_Protocol() < PROTOCOL_NT1) {
9489 if (signing_state) {
9490 sign_active = smb_signing_is_active(signing_state);
9492 return (lp__use_sendfile(snum) &&
9493 (get_remote_arch() != RA_WIN95) &&
9497 /*******************************************************************
9498 Turn off sendfile if we find the underlying OS doesn't support it.
9499 ********************************************************************/
9501 void set_use_sendfile(int snum, bool val)
9503 if (LP_SNUM_OK(snum))
9504 ServicePtrs[snum]->bUseSendfile = val;
9506 sDefault.bUseSendfile = val;
9509 /*******************************************************************
9510 Turn off storing DOS attributes if this share doesn't support it.
9511 ********************************************************************/
9513 void set_store_dos_attributes(int snum, bool val)
9515 if (!LP_SNUM_OK(snum))
9517 ServicePtrs[(snum)]->bStoreDosAttributes = val;
9520 void lp_set_mangling_method(const char *new_method)
9522 string_set(&Globals.szManglingMethod, new_method);
9525 /*******************************************************************
9526 Global state for POSIX pathname processing.
9527 ********************************************************************/
9529 static bool posix_pathnames;
9531 bool lp_posix_pathnames(void)
9533 return posix_pathnames;
9536 /*******************************************************************
9537 Change everything needed to ensure POSIX pathname processing (currently
9539 ********************************************************************/
9541 void lp_set_posix_pathnames(void)
9543 posix_pathnames = true;
9546 /*******************************************************************
9547 Global state for POSIX lock processing - CIFS unix extensions.
9548 ********************************************************************/
9550 bool posix_default_lock_was_set;
9551 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
9553 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
9555 if (posix_default_lock_was_set) {
9556 return posix_cifsx_locktype;
9558 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
9562 /*******************************************************************
9563 ********************************************************************/
9565 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
9567 posix_default_lock_was_set = true;
9568 posix_cifsx_locktype = val;
9571 int lp_min_receive_file_size(void)
9573 if (Globals.iminreceivefile < 0) {
9576 return MIN(Globals.iminreceivefile, BUFFER_SIZE);
9579 /*******************************************************************
9580 If socket address is an empty character string, it is necessary to
9581 define it as "0.0.0.0".
9582 ********************************************************************/
9584 const char *lp_socket_address(void)
9586 char *sock_addr = Globals.szSocketAddress;
9588 if (sock_addr[0] == '\0'){
9589 string_set(&Globals.szSocketAddress, "0.0.0.0");
9591 return Globals.szSocketAddress;
9594 /*******************************************************************
9595 Safe wide links checks.
9596 This helper function always verify the validity of wide links,
9597 even after a configuration file reload.
9598 ********************************************************************/
9600 static bool lp_widelinks_internal(int snum)
9602 return (bool)(LP_SNUM_OK(snum)? ServicePtrs[(snum)]->bWidelinks :
9603 sDefault.bWidelinks);
9606 void widelinks_warning(int snum)
9608 if (lp_allow_insecure_widelinks()) {
9612 if (lp_unix_extensions() && lp_widelinks_internal(snum)) {
9613 DEBUG(0,("Share '%s' has wide links and unix extensions enabled. "
9614 "These parameters are incompatible. "
9615 "Wide links will be disabled for this share.\n",
9616 lp_servicename(snum) ));
9620 bool lp_widelinks(int snum)
9622 /* wide links is always incompatible with unix extensions */
9623 if (lp_unix_extensions()) {
9625 * Unless we have "allow insecure widelinks"
9628 if (!lp_allow_insecure_widelinks()) {
9633 return lp_widelinks_internal(snum);
9636 bool lp_writeraw(void)
9638 if (lp_async_smb_echo_handler()) {
9641 return _lp_writeraw();
9644 bool lp_readraw(void)
9646 if (lp_async_smb_echo_handler()) {
9649 return _lp_readraw();
9652 int lp_server_role(void)
9654 return lp_find_server_role(lp__server_role(),
9657 lp_domain_master_true_or_auto());