2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 2 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program; if not, write to the Free Software
25 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
31 * This module provides suitable callback functions for the params
32 * module. It builds the internal table of service details which is
33 * then used by the rest of the server.
37 * 1) add it to the global or service structure definition
38 * 2) add it to the parm_table
39 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
40 * 4) If it's a global then initialise it in init_globals. If a local
41 * (ie. service) parameter then initialise it in the sDefault structure
45 * The configuration file is processed sequentially for speed. It is NOT
46 * accessed randomly as happens in 'real' Windows. For this reason, there
47 * is a fair bit of sequence-dependent code here - ie., code which assumes
48 * that certain things happen before others. In particular, the code which
49 * happens at the boundary between sections is delicately poised, so be
56 BOOL in_client = False; /* Not in the client by default */
57 BOOL in_server = False; /* Not in the server by default */
60 extern userdom_struct current_user_info;
61 extern pstring user_socket_options;
62 extern enum protocol_types Protocol;
65 #define GLOBAL_NAME "global"
69 #define PRINTERS_NAME "printers"
73 #define HOMES_NAME "homes"
76 /* some helpful bits */
77 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
78 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
80 #define USERSHARE_VALID 1
81 #define USERSHARE_PENDING_DELETE 2
83 int keepalive = DEFAULT_KEEPALIVE;
84 BOOL use_getwd_cache = True;
86 extern int extra_time_offset;
88 static BOOL defaults_saved = False;
90 typedef struct _param_opt_struct param_opt_struct;
91 struct _param_opt_struct {
92 param_opt_struct *prev, *next;
99 * This structure describes global (ie., server-wide) parameters.
105 char *display_charset;
106 char *szPrintcapname;
107 char *szAddPortCommand;
108 char *szEnumPortsCommand;
109 char *szAddPrinterCommand;
110 char *szDeletePrinterCommand;
111 char *szOs2DriverMap;
115 char *szDefaultService;
120 char *szServerString;
121 char *szAutoServices;
122 char *szPasswdProgram;
126 char *szSMBPasswdFile;
128 char *szPassdbBackend;
129 char **szPreloadModules;
130 char *szPasswordServer;
131 char *szSocketOptions;
133 char *szAfsUsernameMap;
134 int iAfsTokenLifetime;
135 char *szLogNtTokenCommand;
141 char **szWINSservers;
143 char *szRemoteAnnounce;
144 char *szRemoteBrowseSync;
145 char *szSocketAddress;
146 char *szNISHomeMapName;
147 char *szAnnounceVersion; /* This is initialised in init_globals */
150 char **szNetbiosAliases;
151 char *szNetbiosScope;
152 char *szNameResolveOrder;
154 char *szAddUserScript;
155 char *szRenameUserScript;
156 char *szDelUserScript;
157 char *szAddGroupScript;
158 char *szDelGroupScript;
159 char *szAddUserToGroupScript;
160 char *szDelUserFromGroupScript;
161 char *szSetPrimaryGroupScript;
162 char *szAddMachineScript;
163 char *szShutdownScript;
164 char *szAbortShutdownScript;
165 char *szUsernameMapScript;
166 char *szCheckPasswordScript;
168 char *szWINSPartners;
174 BOOL bPassdbExpandExplicit;
175 int AlgorithmicRidBase;
176 char *szTemplateHomedir;
177 char *szTemplateShell;
178 char *szWinbindSeparator;
179 BOOL bWinbindEnumUsers;
180 BOOL bWinbindEnumGroups;
181 BOOL bWinbindUseDefaultDomain;
182 BOOL bWinbindTrustedDomainsOnly;
183 BOOL bWinbindNestedGroups;
184 BOOL bWinbindRefreshTickets;
185 BOOL bWinbindOfflineLogon;
186 char **szIdmapBackend;
187 char *szAddShareCommand;
188 char *szChangeShareCommand;
189 char *szDeleteShareCommand;
191 char *szGuestaccount;
192 char *szManglingMethod;
193 char **szServicesList;
194 char *szUsersharePath;
195 char *szUsershareTemplateShare;
196 char **szUsersharePrefixAllowList;
197 char **szUsersharePrefixDenyList;
211 BOOL paranoid_server_security;
214 int iMaxSmbdProcesses;
215 BOOL bDisableSpoolss;
218 int enhanced_browsing;
224 int announce_as; /* This is initialised in init_globals */
225 int machine_password_timeout;
226 int change_notify_timeout;
228 int oplock_break_wait_time;
229 int winbind_cache_time;
230 int winbind_max_idle_children;
231 char **szWinbindNssInfo;
234 char *szLdapMachineSuffix;
235 char *szLdapUserSuffix;
236 char *szLdapIdmapSuffix;
237 char *szLdapGroupSuffix;
238 #ifdef WITH_LDAP_SAMCONFIG
247 char *szIPrintServer;
248 int ldap_passwd_sync;
249 int ldap_replication_sleep;
250 int ldap_timeout; /* This is initialised in init_globals */
253 BOOL bMsAddPrinterWizard;
258 BOOL bPreferredMaster;
261 BOOL bEncryptPasswords;
266 BOOL bObeyPamRestrictions;
268 int PrintcapCacheTime;
269 BOOL bLargeReadwrite;
277 BOOL bBindInterfacesOnly;
278 BOOL bPamPasswordChange;
279 BOOL bUnixPasswdSync;
280 BOOL bPasswdChatDebug;
281 int iPasswdChatTimeout;
285 BOOL bNTStatusSupport;
287 int iMaxStatCacheSize;
289 BOOL bAllowTrustedDomains;
293 BOOL bClientLanManAuth;
294 BOOL bClientNTLMv2Auth;
295 BOOL bClientPlaintextAuth;
296 BOOL bClientUseSpnego;
297 BOOL bDebugHiresTimestamp;
302 BOOL bHostnameLookups;
303 BOOL bUnixExtensions;
304 BOOL bDisableNetbios;
305 BOOL bKernelChangeNotify;
306 BOOL bFamChangeNotify;
307 BOOL bUseKerberosKeytab;
308 BOOL bDeferSharingViolations;
309 BOOL bEnablePrivileges;
311 BOOL bUsershareOwnerOnly;
312 int restrict_anonymous;
313 int name_cache_timeout;
316 int iUsershareMaxShares;
319 param_opt_struct *param_opt;
322 static global Globals;
325 * This structure describes a single service.
331 time_t usershare_last_mod;
335 char **szInvalidUsers;
343 char *szRootPostExec;
345 char *szPrintcommand;
348 char *szLppausecommand;
349 char *szLpresumecommand;
350 char *szQueuepausecommand;
351 char *szQueueresumecommand;
361 char *szVetoOplockFiles;
367 char **printer_admin;
372 char *szAioWriteBehind;
376 int iMaxReportedPrintJobs;
379 int iCreate_force_mode;
381 int iSecurity_force_mode;
384 int iDir_Security_mask;
385 int iDir_Security_force_mode;
389 int iOplockContentionLimit;
394 BOOL bRootpreexecClose;
397 BOOL bShortCasePreserve;
399 BOOL bHideSpecialFiles;
400 BOOL bHideUnReadable;
401 BOOL bHideUnWriteableFiles;
412 BOOL bStoreDosAttributes;
424 BOOL bStrictAllocate;
428 BOOL bDeleteReadonly;
430 BOOL bDeleteVetoFiles;
433 BOOL bDosFiletimeResolution;
434 BOOL bFakeDirCreateTimes;
440 BOOL bUseClientDriver;
441 BOOL bDefaultDevmode;
442 BOOL bForcePrintername;
444 BOOL bForceUnknownAclUser;
447 BOOL bMap_acl_inherit;
450 BOOL bAclCheckPermissions;
451 BOOL bAclMapFullControl;
452 BOOL bAclGroupControl;
453 int iallocation_roundup_size;
457 param_opt_struct *param_opt;
459 char dummy[3]; /* for alignment */
463 /* This is a default service used to prime a services structure */
464 static service sDefault = {
466 False, /* not autoloaded */
467 0, /* not a usershare */
468 (time_t)0, /* No last mod time */
469 NULL, /* szService */
471 NULL, /* szUsername */
472 NULL, /* szInvalidUsers */
473 NULL, /* szValidUsers */
474 NULL, /* szAdminUsers */
476 NULL, /* szInclude */
477 NULL, /* szPreExec */
478 NULL, /* szPostExec */
479 NULL, /* szRootPreExec */
480 NULL, /* szRootPostExec */
481 NULL, /* szCupsOptions */
482 NULL, /* szPrintcommand */
483 NULL, /* szLpqcommand */
484 NULL, /* szLprmcommand */
485 NULL, /* szLppausecommand */
486 NULL, /* szLpresumecommand */
487 NULL, /* szQueuepausecommand */
488 NULL, /* szQueueresumecommand */
489 NULL, /* szPrintername */
490 NULL, /* szDontdescend */
491 NULL, /* szHostsallow */
492 NULL, /* szHostsdeny */
493 NULL, /* szMagicScript */
494 NULL, /* szMagicOutput */
495 NULL, /* szMangledMap */
496 NULL, /* szVetoFiles */
497 NULL, /* szHideFiles */
498 NULL, /* szVetoOplockFiles */
500 NULL, /* force user */
501 NULL, /* force group */
503 NULL, /* writelist */
504 NULL, /* printer admin */
507 NULL, /* vfs objects */
508 NULL, /* szMSDfsProxy */
509 NULL, /* szAioWriteBehind */
511 0, /* iMinPrintSpace */
512 1000, /* iMaxPrintJobs */
513 0, /* iMaxReportedPrintJobs */
514 0, /* iWriteCacheSize */
515 0744, /* iCreate_mask */
516 0000, /* iCreate_force_mode */
517 0777, /* iSecurity_mask */
518 0, /* iSecurity_force_mode */
519 0755, /* iDir_mask */
520 0000, /* iDir_force_mode */
521 0777, /* iDir_Security_mask */
522 0, /* iDir_Security_force_mode */
523 0, /* iMaxConnections */
524 CASE_LOWER, /* iDefaultCase */
525 DEFAULT_PRINTING, /* iPrinting */
526 2, /* iOplockContentionLimit */
528 1024, /* iBlock_size */
529 0, /* iDfreeCacheTime */
530 False, /* bPreexecClose */
531 False, /* bRootpreexecClose */
532 Auto, /* case sensitive */
533 True, /* case preserve */
534 True, /* short case preserve */
535 True, /* bHideDotFiles */
536 False, /* bHideSpecialFiles */
537 False, /* bHideUnReadable */
538 False, /* bHideUnWriteableFiles */
539 True, /* bBrowseable */
540 True, /* bAvailable */
541 True, /* bRead_only */
542 True, /* bNo_set_dir */
543 False, /* bGuest_only */
544 False, /* bGuest_ok */
545 False, /* bPrint_ok */
546 False, /* bMap_system */
547 False, /* bMap_hidden */
548 True, /* bMap_archive */
549 False, /* bStoreDosAttributes */
551 True, /* iStrictLocking */
552 True, /* bPosixLocking */
553 True, /* bShareModes */
555 True, /* bLevel2OpLocks */
556 False, /* bOnlyUser */
557 True, /* bMangledNames */
558 True, /* bWidelinks */
559 True, /* bSymlinks */
560 False, /* bSyncAlways */
561 False, /* bStrictAllocate */
562 False, /* bStrictSync */
563 '~', /* magic char */
565 False, /* bDeleteReadonly */
566 False, /* bFakeOplocks */
567 False, /* bDeleteVetoFiles */
568 False, /* bDosFilemode */
569 True, /* bDosFiletimes */
570 False, /* bDosFiletimeResolution */
571 False, /* bFakeDirCreateTimes */
572 True, /* bBlockingLocks */
573 False, /* bInheritPerms */
574 False, /* bInheritACLS */
575 False, /* bInheritOwner */
576 True, /* bMSDfsRoot */
577 False, /* bUseClientDriver */
578 True, /* bDefaultDevmode */
579 False, /* bForcePrintername */
580 True, /* bNTAclSupport */
581 False, /* bForceUnknownAclUser */
582 False, /* bUseSendfile */
583 False, /* bProfileAcls */
584 False, /* bMap_acl_inherit */
585 False, /* bAfs_Share */
586 False, /* bEASupport */
587 True, /* bAclCheckPermissions */
588 True, /* bAclMapFullControl */
589 False, /* bAclGroupControl */
590 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
591 0, /* iAioReadSize */
592 0, /* iAioWriteSize */
593 MAP_READONLY_YES, /* iMap_readonly */
595 NULL, /* Parametric options */
600 /* local variables */
601 static service **ServicePtrs = NULL;
602 static int iNumServices = 0;
603 static int iServiceIndex = 0;
604 static TDB_CONTEXT *ServiceHash;
605 static int *invalid_services = NULL;
606 static int num_invalid_services = 0;
607 static BOOL bInGlobalSection = True;
608 static BOOL bGlobalOnly = False;
609 static int server_role;
610 static int default_server_announce;
612 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
614 /* prototypes for the special type handlers */
615 static BOOL handle_include( int snum, const char *pszParmValue, char **ptr);
616 static BOOL handle_copy( int snum, const char *pszParmValue, char **ptr);
617 static BOOL handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
618 static BOOL handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
619 static BOOL handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
620 static BOOL handle_debug_list( int snum, const char *pszParmValue, char **ptr );
621 static BOOL handle_workgroup( int snum, const char *pszParmValue, char **ptr );
622 static BOOL handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
623 static BOOL handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
624 static BOOL handle_charset( int snum, const char *pszParmValue, char **ptr );
625 static BOOL handle_printing( int snum, const char *pszParmValue, char **ptr);
627 static void set_server_role(void);
628 static void set_default_server_announce_type(void);
629 static void set_allowed_client_auth(void);
631 static const struct enum_list enum_protocol[] = {
632 {PROTOCOL_NT1, "NT1"},
633 {PROTOCOL_LANMAN2, "LANMAN2"},
634 {PROTOCOL_LANMAN1, "LANMAN1"},
635 {PROTOCOL_CORE, "CORE"},
636 {PROTOCOL_COREPLUS, "COREPLUS"},
637 {PROTOCOL_COREPLUS, "CORE+"},
641 static const struct enum_list enum_security[] = {
642 {SEC_SHARE, "SHARE"},
644 {SEC_SERVER, "SERVER"},
645 {SEC_DOMAIN, "DOMAIN"},
652 static const struct enum_list enum_printing[] = {
653 {PRINT_SYSV, "sysv"},
655 {PRINT_HPUX, "hpux"},
659 {PRINT_LPRNG, "lprng"},
660 {PRINT_CUPS, "cups"},
661 {PRINT_IPRINT, "iprint"},
663 {PRINT_LPROS2, "os2"},
665 {PRINT_TEST, "test"},
667 #endif /* DEVELOPER */
671 static const struct enum_list enum_ldap_ssl[] = {
672 #ifdef WITH_LDAP_SAMCONFIG
673 {LDAP_SSL_ON, "Yes"},
674 {LDAP_SSL_ON, "yes"},
678 {LDAP_SSL_OFF, "no"},
679 {LDAP_SSL_OFF, "No"},
680 {LDAP_SSL_OFF, "off"},
681 {LDAP_SSL_OFF, "Off"},
682 {LDAP_SSL_START_TLS, "start tls"},
683 {LDAP_SSL_START_TLS, "Start_tls"},
687 static const struct enum_list enum_ldap_passwd_sync[] = {
688 {LDAP_PASSWD_SYNC_OFF, "no"},
689 {LDAP_PASSWD_SYNC_OFF, "No"},
690 {LDAP_PASSWD_SYNC_OFF, "off"},
691 {LDAP_PASSWD_SYNC_OFF, "Off"},
692 {LDAP_PASSWD_SYNC_ON, "Yes"},
693 {LDAP_PASSWD_SYNC_ON, "yes"},
694 {LDAP_PASSWD_SYNC_ON, "on"},
695 {LDAP_PASSWD_SYNC_ON, "On"},
696 {LDAP_PASSWD_SYNC_ONLY, "Only"},
697 {LDAP_PASSWD_SYNC_ONLY, "only"},
701 /* Types of machine we can announce as. */
702 #define ANNOUNCE_AS_NT_SERVER 1
703 #define ANNOUNCE_AS_WIN95 2
704 #define ANNOUNCE_AS_WFW 3
705 #define ANNOUNCE_AS_NT_WORKSTATION 4
707 static const struct enum_list enum_announce_as[] = {
708 {ANNOUNCE_AS_NT_SERVER, "NT"},
709 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
710 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
711 {ANNOUNCE_AS_WIN95, "win95"},
712 {ANNOUNCE_AS_WFW, "WfW"},
716 static const struct enum_list enum_map_readonly[] = {
717 {MAP_READONLY_NO, "no"},
718 {MAP_READONLY_NO, "false"},
719 {MAP_READONLY_NO, "0"},
720 {MAP_READONLY_YES, "yes"},
721 {MAP_READONLY_YES, "true"},
722 {MAP_READONLY_YES, "1"},
723 {MAP_READONLY_PERMISSIONS, "permissions"},
724 {MAP_READONLY_PERMISSIONS, "perms"},
728 static const struct enum_list enum_case[] = {
729 {CASE_LOWER, "lower"},
730 {CASE_UPPER, "upper"},
734 static const struct enum_list enum_bool_auto[] = {
745 /* Client-side offline caching policy types */
746 #define CSC_POLICY_MANUAL 0
747 #define CSC_POLICY_DOCUMENTS 1
748 #define CSC_POLICY_PROGRAMS 2
749 #define CSC_POLICY_DISABLE 3
751 static const struct enum_list enum_csc_policy[] = {
752 {CSC_POLICY_MANUAL, "manual"},
753 {CSC_POLICY_DOCUMENTS, "documents"},
754 {CSC_POLICY_PROGRAMS, "programs"},
755 {CSC_POLICY_DISABLE, "disable"},
759 /* SMB signing types. */
760 static const struct enum_list enum_smb_signing_vals[] = {
772 {Required, "required"},
773 {Required, "mandatory"},
775 {Required, "forced"},
776 {Required, "enforced"},
780 /* ACL compatibility options. */
781 static const struct enum_list enum_acl_compat_vals[] = {
782 { ACL_COMPAT_AUTO, "auto" },
783 { ACL_COMPAT_WINNT, "winnt" },
784 { ACL_COMPAT_WIN2K, "win2k" },
789 Do you want session setups at user level security with a invalid
790 password to be rejected or allowed in as guest? WinNT rejects them
791 but it can be a pain as it means "net view" needs to use a password
793 You have 3 choices in the setting of map_to_guest:
795 "Never" means session setups with an invalid password
796 are rejected. This is the default.
798 "Bad User" means session setups with an invalid password
799 are rejected, unless the username does not exist, in which case it
800 is treated as a guest login
802 "Bad Password" means session setups with an invalid password
803 are treated as a guest login
805 Note that map_to_guest only has an effect in user or server
809 static const struct enum_list enum_map_to_guest[] = {
810 {NEVER_MAP_TO_GUEST, "Never"},
811 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
812 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
813 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
817 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
819 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
820 * screen in SWAT. This is used to exclude parameters as well as to squash all
821 * parameters that have been duplicated by pseudonyms.
823 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
824 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
825 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
828 * NOTE2: Handling of duplicated (synonym) paramters:
829 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
830 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
831 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
832 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
835 static struct parm_struct parm_table[] = {
836 {N_("Base Options"), P_SEP, P_SEPARATOR},
838 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
839 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
840 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
841 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
842 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
843 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
844 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
846 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
848 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
849 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
850 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
851 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
852 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
853 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
855 {N_("Security Options"), P_SEP, P_SEPARATOR},
857 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
858 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
859 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
860 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
861 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
862 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
863 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
864 {"hosts equiv", P_STRING, P_GLOBAL, &Globals.szHostsEquiv, NULL, NULL, FLAG_ADVANCED},
865 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
866 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
867 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
868 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
869 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
870 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
871 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
872 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
873 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
874 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
875 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
876 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
877 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
879 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
880 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
881 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
882 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
883 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
884 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
885 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
886 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
887 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
888 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
889 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
890 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
891 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
892 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
893 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
894 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
896 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
897 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
898 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
900 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
901 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
902 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
903 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
904 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
905 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
906 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
907 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
908 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
910 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
911 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
912 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
913 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
915 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
916 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
917 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
918 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
919 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
920 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
921 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
922 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
923 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
924 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
925 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
926 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
927 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
928 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
929 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
930 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
931 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
932 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
933 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
935 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
936 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
938 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
939 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
940 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
941 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
942 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
943 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
944 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
946 {N_("Logging Options"), P_SEP, P_SEPARATOR},
948 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
949 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
950 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
951 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
952 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
954 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
955 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
956 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
957 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
958 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
959 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
961 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
963 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
964 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
965 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
966 {"aio write behind", P_STRING, P_LOCAL, &sDefault.szAioWriteBehind, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
967 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
968 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
969 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
970 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
971 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
972 {"read bmpx", P_BOOL, P_GLOBAL, &Globals.bReadbmpx, NULL, NULL, FLAG_ADVANCED},
973 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
974 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
975 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
976 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
978 {"acl compatibility", P_STRING, P_GLOBAL, &Globals.szAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
979 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
980 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
981 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
982 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
983 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
984 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
986 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
987 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
988 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
989 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
990 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
991 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
993 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
994 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
995 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
996 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
997 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
998 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
999 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1000 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1001 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1002 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1004 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1005 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1007 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1009 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1010 {"change notify timeout", P_INTEGER, P_GLOBAL, &Globals.change_notify_timeout, NULL, NULL, FLAG_ADVANCED},
1011 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1012 {"getwd cache", P_BOOL, P_GLOBAL, &use_getwd_cache, NULL, NULL, FLAG_ADVANCED},
1013 {"keepalive", P_INTEGER, P_GLOBAL, &keepalive, NULL, NULL, FLAG_ADVANCED},
1014 {"kernel change notify", P_BOOL, P_GLOBAL, &Globals.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED},
1015 {"fam change notify", P_BOOL, P_GLOBAL, &Globals.bFamChangeNotify, NULL, NULL, FLAG_ADVANCED},
1017 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1018 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1019 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1020 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1021 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1022 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1023 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1025 {"socket options", P_GSTRING, P_GLOBAL, user_socket_options, NULL, NULL, FLAG_ADVANCED},
1026 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1027 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1028 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1029 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1030 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1031 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1032 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1034 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1036 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1038 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1039 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1040 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1041 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1042 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1043 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1044 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1045 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1046 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1047 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1048 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1049 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1050 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1051 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1052 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1053 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1054 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1055 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1056 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1057 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1058 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1060 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1061 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1062 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1063 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1064 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1065 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1067 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1068 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1069 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1070 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1071 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1073 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1074 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1075 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1077 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1078 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1079 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1080 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1081 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1082 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1083 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1084 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1085 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1086 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1087 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1088 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1089 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1090 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1091 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1092 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1093 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1094 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1095 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1096 {"mangled map", P_STRING, P_LOCAL, &sDefault.szMangledMap, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_DEPRECATED },
1097 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1098 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1099 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1101 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1103 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1105 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1107 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1108 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1109 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1110 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1111 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1112 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1113 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1114 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1115 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1116 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1117 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1118 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1120 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1121 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1122 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1123 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1124 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1126 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1128 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1129 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1130 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1131 {"preferred master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1132 {"prefered master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1133 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1134 {"domain master", P_ENUM, P_GLOBAL, &Globals.bDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1135 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1136 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1137 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1138 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1140 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1142 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1143 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1145 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1146 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1147 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1148 {"wins partners", P_STRING, P_GLOBAL, &Globals.szWINSPartners, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1150 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1152 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1153 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1154 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1155 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1156 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1157 {"lock spin count", P_INTEGER, P_GLOBAL, &Globals.iLockSpinCount, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1158 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1160 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1161 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1162 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1163 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1164 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1165 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1166 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1168 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1170 #ifdef WITH_LDAP_SAMCONFIG
1171 {"ldap server", P_STRING, P_GLOBAL, &Globals.szLdapServer, NULL, NULL, FLAG_ADVANCED},
1172 {"ldap port", P_INTEGER, P_GLOBAL, &Globals.ldap_port, NULL, NULL, FLAG_ADVANCED},
1174 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1175 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1176 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1177 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1178 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1179 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1180 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1181 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1182 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1183 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1184 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1185 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1186 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1188 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1189 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1190 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1191 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1193 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1194 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1196 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1197 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1198 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1199 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1200 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1201 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1203 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1204 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1205 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1208 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1209 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1210 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1211 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1212 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1213 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1214 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1215 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1216 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1217 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1218 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1219 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1220 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1221 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1222 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1223 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1224 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1226 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1227 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1228 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1229 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1231 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1232 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1233 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1234 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1235 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1236 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1237 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1238 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1239 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1240 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1241 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1242 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1243 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1244 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1245 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1246 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1247 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1248 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1249 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1250 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1251 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1252 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1253 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1254 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1256 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1257 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1259 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1261 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1262 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1265 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1266 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1267 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1269 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1271 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1272 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED},
1273 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED},
1274 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE},
1275 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED},
1276 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE},
1277 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1278 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1279 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1280 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1281 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1282 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1283 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1284 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1285 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1286 {"winbind max idle children", P_INTEGER, P_GLOBAL, &Globals.winbind_max_idle_children, NULL, NULL, FLAG_ADVANCED},
1287 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1288 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1289 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1291 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1294 /***************************************************************************
1295 Initialise the sDefault parameter structure for the printer values.
1296 ***************************************************************************/
1298 static void init_printer_values(service *pService)
1300 /* choose defaults depending on the type of printing */
1301 switch (pService->iPrinting) {
1306 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1307 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1308 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1313 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1314 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1315 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1316 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1317 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1318 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1319 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1325 /* set the lpq command to contain the destination printer
1326 name only. This is used by cups_queue_get() */
1327 string_set(&pService->szLpqcommand, "%p");
1328 string_set(&pService->szLprmcommand, "");
1329 string_set(&pService->szPrintcommand, "");
1330 string_set(&pService->szLppausecommand, "");
1331 string_set(&pService->szLpresumecommand, "");
1332 string_set(&pService->szQueuepausecommand, "");
1333 string_set(&pService->szQueueresumecommand, "");
1335 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1336 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1337 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1338 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1339 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1340 string_set(&pService->szQueuepausecommand, "disable '%p'");
1341 string_set(&pService->szQueueresumecommand, "enable '%p'");
1342 #endif /* HAVE_CUPS */
1347 string_set(&pService->szLpqcommand, "lpstat -o%p");
1348 string_set(&pService->szLprmcommand, "cancel %p-%j");
1349 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1350 string_set(&pService->szQueuepausecommand, "disable %p");
1351 string_set(&pService->szQueueresumecommand, "enable %p");
1353 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1354 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1359 string_set(&pService->szLpqcommand, "lpq -P%p");
1360 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1361 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1367 string_set(&pService->szPrintcommand, "vlp print %p %s");
1368 string_set(&pService->szLpqcommand, "vlp lpq %p");
1369 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1370 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1371 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1372 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1373 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1375 #endif /* DEVELOPER */
1380 /***************************************************************************
1381 Initialise the global parameter structure.
1382 ***************************************************************************/
1384 static void init_globals(BOOL first_time_only)
1386 static BOOL done_init = False;
1389 /* If requested to initialize only once and we've already done it... */
1390 if (first_time_only && done_init) {
1391 /* ... then we have nothing more to do */
1398 /* The logfile can be set before this is invoked. Free it if so. */
1399 if (Globals.szLogFile != NULL) {
1400 string_free(&Globals.szLogFile);
1401 Globals.szLogFile = NULL;
1404 memset((void *)&Globals, '\0', sizeof(Globals));
1406 for (i = 0; parm_table[i].label; i++)
1407 if ((parm_table[i].type == P_STRING ||
1408 parm_table[i].type == P_USTRING) &&
1410 string_set((char **)parm_table[i].ptr, "");
1412 string_set(&sDefault.fstype, FSTYPE_STRING);
1414 init_printer_values(&sDefault);
1420 DEBUG(3, ("Initialising global parameters\n"));
1422 string_set(&Globals.szSMBPasswdFile, dyn_SMB_PASSWD_FILE);
1423 string_set(&Globals.szPrivateDir, dyn_PRIVATE_DIR);
1425 /* use the new 'hash2' method by default, with a prefix of 1 */
1426 string_set(&Globals.szManglingMethod, "hash2");
1427 Globals.mangle_prefix = 1;
1429 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1431 /* using UTF8 by default allows us to support all chars */
1432 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1434 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1435 /* If the system supports nl_langinfo(), try to grab the value
1436 from the user's locale */
1437 string_set(&Globals.display_charset, "LOCALE");
1439 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1442 /* Use codepage 850 as a default for the dos character set */
1443 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1446 * Allow the default PASSWD_CHAT to be overridden in local.h.
1448 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1450 set_global_myname(myhostname());
1451 string_set(&Globals.szNetbiosName,global_myname());
1453 set_global_myworkgroup(WORKGROUP);
1454 string_set(&Globals.szWorkgroup, lp_workgroup());
1456 string_set(&Globals.szPasswdProgram, "");
1457 string_set(&Globals.szPidDir, dyn_PIDDIR);
1458 string_set(&Globals.szLockDir, dyn_LOCKDIR);
1459 string_set(&Globals.szSocketAddress, "0.0.0.0");
1460 pstrcpy(s, "Samba ");
1461 pstrcat(s, SAMBA_VERSION_STRING);
1462 string_set(&Globals.szServerString, s);
1463 slprintf(s, sizeof(s) - 1, "%d.%d", DEFAULT_MAJOR_VERSION,
1464 DEFAULT_MINOR_VERSION);
1465 string_set(&Globals.szAnnounceVersion, s);
1467 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1470 pstrcpy(user_socket_options, DEFAULT_SOCKET_OPTIONS);
1472 string_set(&Globals.szLogonDrive, "");
1473 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1474 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1475 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1477 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1478 string_set(&Globals.szPasswordServer, "*");
1480 Globals.AlgorithmicRidBase = BASE_RID;
1482 Globals.bLoadPrinters = True;
1483 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1485 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1486 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1487 Globals.max_xmit = 0x4104;
1488 Globals.max_mux = 50; /* This is *needed* for profile support. */
1489 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1490 Globals.bDisableSpoolss = False;
1491 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1492 Globals.pwordlevel = 0;
1493 Globals.unamelevel = 0;
1494 Globals.deadtime = 0;
1495 Globals.bLargeReadwrite = True;
1496 Globals.max_log_size = 5000;
1497 Globals.max_open_files = MAX_OPEN_FILES;
1498 Globals.maxprotocol = PROTOCOL_NT1;
1499 Globals.minprotocol = PROTOCOL_CORE;
1500 Globals.security = SEC_USER;
1501 Globals.paranoid_server_security = True;
1502 Globals.bEncryptPasswords = True;
1503 Globals.bUpdateEncrypt = False;
1504 Globals.clientSchannel = Auto;
1505 Globals.serverSchannel = Auto;
1506 Globals.bReadRaw = True;
1507 Globals.bWriteRaw = True;
1508 Globals.bReadbmpx = False;
1509 Globals.bNullPasswords = False;
1510 Globals.bObeyPamRestrictions = False;
1512 Globals.bSyslogOnly = False;
1513 Globals.bTimestampLogs = True;
1514 string_set(&Globals.szLogLevel, "0");
1515 Globals.bDebugHiresTimestamp = False;
1516 Globals.bDebugPid = False;
1517 Globals.bDebugUid = False;
1518 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1519 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1520 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1521 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1522 Globals.change_notify_timeout = 60; /* 1 minute default. */
1523 Globals.bKernelChangeNotify = True; /* On if we have it. */
1524 Globals.bFamChangeNotify = True; /* On if we have it. */
1525 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1526 Globals.lm_interval = 60;
1527 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1528 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1529 Globals.bNISHomeMap = False;
1530 #ifdef WITH_NISPLUS_HOME
1531 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1533 string_set(&Globals.szNISHomeMapName, "auto.home");
1536 Globals.bTimeServer = False;
1537 Globals.bBindInterfacesOnly = False;
1538 Globals.bUnixPasswdSync = False;
1539 Globals.bPamPasswordChange = False;
1540 Globals.bPasswdChatDebug = False;
1541 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1542 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1543 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1544 Globals.bStatCache = True; /* use stat cache by default */
1545 Globals.iMaxStatCacheSize = 0; /* unlimited size in kb by default. */
1546 Globals.restrict_anonymous = 0;
1547 Globals.bClientLanManAuth = True; /* Do use the LanMan hash if it is available */
1548 Globals.bClientPlaintextAuth = True; /* Do use a plaintext password if is requested by the server */
1549 Globals.bLanmanAuth = True; /* Do use the LanMan hash if it is available */
1550 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is available (otherwise NTLMv2) */
1551 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1552 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1554 Globals.map_to_guest = 0; /* By Default, "Never" */
1555 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1556 Globals.enhanced_browsing = True;
1557 Globals.iLockSpinCount = 3; /* Try 3 times. */
1558 Globals.iLockSpinTime = 10; /* usec. */
1559 #ifdef MMAP_BLACKLIST
1560 Globals.bUseMmap = False;
1562 Globals.bUseMmap = True;
1564 Globals.bUnixExtensions = True;
1565 Globals.bResetOnZeroVC = False;
1567 /* hostname lookups can be very expensive and are broken on
1568 a large number of sites (tridge) */
1569 Globals.bHostnameLookups = False;
1571 #ifdef WITH_LDAP_SAMCONFIG
1572 string_set(&Globals.szLdapServer, "localhost");
1573 Globals.ldap_port = 636;
1574 string_set(&Globals.szPassdbBackend, "ldapsam_compat");
1576 string_set(&Globals.szPassdbBackend, "smbpasswd");
1577 #endif /* WITH_LDAP_SAMCONFIG */
1578 string_set(&Globals.szLdapSuffix, "");
1579 string_set(&Globals.szLdapMachineSuffix, "");
1580 string_set(&Globals.szLdapUserSuffix, "");
1581 string_set(&Globals.szLdapGroupSuffix, "");
1582 string_set(&Globals.szLdapIdmapSuffix, "");
1584 string_set(&Globals.szLdapAdminDn, "");
1585 Globals.ldap_ssl = LDAP_SSL_ON;
1586 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1587 Globals.ldap_delete_dn = False;
1588 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1589 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1590 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1592 /* This is what we tell the afs client. in reality we set the token
1593 * to never expire, though, when this runs out the afs client will
1594 * forget the token. Set to 0 to get NEVERDATE.*/
1595 Globals.iAfsTokenLifetime = 604800;
1597 /* these parameters are set to defaults that are more appropriate
1598 for the increasing samba install base:
1600 as a member of the workgroup, that will possibly become a
1601 _local_ master browser (lm = True). this is opposed to a forced
1602 local master browser startup (pm = True).
1604 doesn't provide WINS server service by default (wsupp = False),
1605 and doesn't provide domain master browser services by default, either.
1609 Globals.bMsAddPrinterWizard = True;
1610 Globals.bPreferredMaster = Auto; /* depending on bDomainMaster */
1611 Globals.os_level = 20;
1612 Globals.bLocalMaster = True;
1613 Globals.bDomainMaster = Auto; /* depending on bDomainLogons */
1614 Globals.bDomainLogons = False;
1615 Globals.bBrowseList = True;
1616 Globals.bWINSsupport = False;
1617 Globals.bWINSproxy = False;
1619 Globals.bDNSproxy = True;
1621 /* this just means to use them if they exist */
1622 Globals.bKernelOplocks = True;
1624 Globals.bAllowTrustedDomains = True;
1626 string_set(&Globals.szTemplateShell, "/bin/false");
1627 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1628 string_set(&Globals.szWinbindSeparator, "\\");
1629 string_set(&Globals.szAclCompat, "");
1630 string_set(&Globals.szCupsServer, "");
1631 string_set(&Globals.szIPrintServer, "");
1633 Globals.winbind_cache_time = 300; /* 5 minutes */
1634 Globals.bWinbindEnumUsers = False;
1635 Globals.bWinbindEnumGroups = False;
1636 Globals.bWinbindUseDefaultDomain = False;
1637 Globals.bWinbindTrustedDomainsOnly = False;
1638 Globals.bWinbindNestedGroups = True;
1639 Globals.winbind_max_idle_children = 3;
1640 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1641 Globals.bWinbindRefreshTickets = False;
1642 Globals.bWinbindOfflineLogon = False;
1644 Globals.bPassdbExpandExplicit = True;
1646 Globals.name_cache_timeout = 660; /* In seconds */
1648 Globals.bUseSpnego = True;
1649 Globals.bClientUseSpnego = True;
1651 Globals.client_signing = Auto;
1652 Globals.server_signing = False;
1654 Globals.bDeferSharingViolations = True;
1655 string_set(&Globals.smb_ports, SMB_PORTS);
1657 Globals.bEnablePrivileges = True;
1658 Globals.bHostMSDfs = True;
1659 Globals.bASUSupport = False;
1661 /* User defined shares. */
1662 pstrcpy(s, dyn_LOCKDIR);
1663 pstrcat(s, "/usershares");
1664 string_set(&Globals.szUsersharePath, s);
1665 string_set(&Globals.szUsershareTemplateShare, "");
1666 Globals.iUsershareMaxShares = 0;
1667 /* By default disallow sharing of directories not owned by the sharer. */
1668 Globals.bUsershareOwnerOnly = True;
1671 static TALLOC_CTX *lp_talloc;
1673 /******************************************************************* a
1674 Free up temporary memory - called from the main loop.
1675 ********************************************************************/
1677 void lp_TALLOC_FREE(void)
1681 TALLOC_FREE(lp_talloc);
1685 TALLOC_CTX *tmp_talloc_ctx(void)
1687 if (lp_talloc == NULL) {
1688 lp_talloc = talloc_init(NULL);
1691 if (lp_talloc == NULL) {
1692 smb_panic("Could not create temporary talloc context\n");
1698 /*******************************************************************
1699 Convenience routine to grab string parameters into temporary memory
1700 and run standard_sub_basic on them. The buffers can be written to by
1701 callers without affecting the source string.
1702 ********************************************************************/
1704 static char *lp_string(const char *s)
1708 /* The follow debug is useful for tracking down memory problems
1709 especially if you have an inner loop that is calling a lp_*()
1710 function that returns a string. Perhaps this debug should be
1711 present all the time? */
1714 DEBUG(10, ("lp_string(%s)\n", s));
1718 lp_talloc = talloc_init("lp_talloc");
1720 tmpstr = alloc_sub_basic(get_current_username(), s);
1721 if (trim_char(tmpstr, '\"', '\"')) {
1722 if (strchr(tmpstr,'\"') != NULL) {
1724 tmpstr = alloc_sub_basic(get_current_username(),s);
1727 ret = talloc_strdup(lp_talloc, tmpstr);
1734 In this section all the functions that are used to access the
1735 parameters from the rest of the program are defined
1738 #define FN_GLOBAL_STRING(fn_name,ptr) \
1739 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1740 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1741 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1742 #define FN_GLOBAL_LIST(fn_name,ptr) \
1743 const char **fn_name(void) {return(*(const char ***)(ptr));}
1744 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1745 BOOL fn_name(void) {return(*(BOOL *)(ptr));}
1746 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1747 char fn_name(void) {return(*(char *)(ptr));}
1748 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1749 int fn_name(void) {return(*(int *)(ptr));}
1751 #define FN_LOCAL_STRING(fn_name,val) \
1752 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1753 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1754 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1755 #define FN_LOCAL_LIST(fn_name,val) \
1756 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1757 #define FN_LOCAL_BOOL(fn_name,val) \
1758 BOOL fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1759 #define FN_LOCAL_CHAR(fn_name,val) \
1760 char fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1761 #define FN_LOCAL_INTEGER(fn_name,val) \
1762 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1764 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1765 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1766 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1767 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1768 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1769 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1770 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1771 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1772 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1773 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1774 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1775 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1776 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1777 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1778 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1779 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1780 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1781 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1782 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1783 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1784 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1785 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1786 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1787 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1788 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1789 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1790 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1791 FN_GLOBAL_STRING(lp_hosts_equiv, &Globals.szHostsEquiv)
1792 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1793 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1794 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1795 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1796 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1797 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1798 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1799 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1800 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1801 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1802 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1803 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1804 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1805 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1806 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1807 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1808 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1809 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1810 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1811 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1812 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1813 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1814 FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1815 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1816 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1817 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1818 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1819 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1821 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1822 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1823 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1824 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1825 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1826 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1828 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1830 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1831 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1832 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1834 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1836 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1837 FN_GLOBAL_STRING(lp_wins_partners, &Globals.szWINSPartners)
1838 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1839 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1840 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1841 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.szAclCompat)
1842 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1843 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1844 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1845 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1846 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1847 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1848 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1850 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend)
1851 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1853 #ifdef WITH_LDAP_SAMCONFIG
1854 FN_GLOBAL_STRING(lp_ldap_server, &Globals.szLdapServer)
1855 FN_GLOBAL_INTEGER(lp_ldap_port, &Globals.ldap_port)
1857 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1858 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1859 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1860 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1861 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1862 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1863 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1864 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1865 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1866 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1867 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1868 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1869 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1870 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1872 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1874 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1875 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1876 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1877 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1878 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1879 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1880 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1881 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1882 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1883 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1884 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1885 FN_GLOBAL_BOOL(lp_readbmpx, &Globals.bReadbmpx)
1886 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1887 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1888 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1889 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1890 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1891 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1892 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1893 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1894 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1895 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1896 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1897 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1898 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1899 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1900 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1901 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1902 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1903 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1904 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1905 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1906 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1907 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1908 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1909 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1910 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
1911 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
1912 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
1913 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
1914 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
1915 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
1916 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
1917 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
1918 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
1919 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
1920 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
1921 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
1922 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
1923 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
1924 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
1925 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
1926 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
1927 FN_GLOBAL_BOOL(lp_kernel_change_notify, &Globals.bKernelChangeNotify)
1928 FN_GLOBAL_BOOL(lp_fam_change_notify, &Globals.bFamChangeNotify)
1929 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
1930 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
1931 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
1932 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
1933 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
1934 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
1935 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
1936 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
1937 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
1938 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
1939 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
1940 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
1941 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
1942 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
1943 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
1944 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
1945 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
1946 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
1947 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
1948 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
1949 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
1950 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
1951 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
1952 FN_GLOBAL_INTEGER(_lp_disable_spoolss, &Globals.bDisableSpoolss)
1953 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
1954 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
1955 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
1956 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
1957 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
1958 FN_GLOBAL_INTEGER(lp_change_notify_timeout, &Globals.change_notify_timeout)
1959 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
1960 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
1961 FN_GLOBAL_INTEGER(lp_lock_spin_count, &Globals.iLockSpinCount)
1962 FN_GLOBAL_INTEGER(lp_lock_sleep_time, &Globals.iLockSpinTime)
1963 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
1965 FN_LOCAL_STRING(lp_preexec, szPreExec)
1966 FN_LOCAL_STRING(lp_postexec, szPostExec)
1967 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
1968 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
1969 FN_LOCAL_STRING(lp_servicename, szService)
1970 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
1971 FN_LOCAL_STRING(lp_pathname, szPath)
1972 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
1973 FN_LOCAL_STRING(lp_username, szUsername)
1974 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
1975 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
1976 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
1977 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
1978 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
1979 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
1980 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
1981 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
1982 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
1983 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
1984 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
1985 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
1986 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
1987 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
1988 static FN_LOCAL_STRING(_lp_printername, szPrintername)
1989 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
1990 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
1991 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
1992 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
1993 FN_LOCAL_STRING(lp_comment, comment)
1994 FN_LOCAL_STRING(lp_force_user, force_user)
1995 FN_LOCAL_STRING(lp_force_group, force_group)
1996 FN_LOCAL_LIST(lp_readlist, readlist)
1997 FN_LOCAL_LIST(lp_writelist, writelist)
1998 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
1999 FN_LOCAL_STRING(lp_fstype, fstype)
2000 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2001 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2002 static FN_LOCAL_STRING(lp_volume, volume)
2003 FN_LOCAL_STRING(lp_mangled_map, szMangledMap)
2004 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2005 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2006 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2007 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2008 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
2009 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2010 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2011 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2012 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2013 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2014 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2015 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2016 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2017 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2018 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2019 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2020 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2021 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2022 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2023 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2024 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2025 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2026 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2027 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2028 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2029 FN_LOCAL_BOOL(lp_locking, bLocking)
2030 FN_LOCAL_INTEGER(lp_strict_locking, iStrictLocking)
2031 FN_LOCAL_BOOL(lp_posix_locking, bPosixLocking)
2032 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2033 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2034 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2035 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2036 FN_LOCAL_BOOL(lp_manglednames, bMangledNames)
2037 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2038 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2039 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2040 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2041 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2042 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2043 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2044 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2045 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2046 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2047 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2048 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2049 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2050 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2051 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2052 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2053 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2054 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2055 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2056 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2057 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2058 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2059 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2060 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2061 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2062 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2063 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2064 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2065 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2066 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2067 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2068 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2069 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2070 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2071 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2072 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2073 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2074 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2075 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2076 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2077 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2078 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2079 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2080 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2081 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2082 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2083 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2084 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2085 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2086 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2087 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2088 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2089 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2090 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2091 FN_GLOBAL_INTEGER(lp_winbind_max_idle_children, &Globals.winbind_max_idle_children)
2092 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2093 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2094 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2095 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2096 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2098 /* local prototypes */
2100 static int map_parameter(const char *pszParmName);
2101 static BOOL set_boolean(BOOL *pb, const char *pszParmValue);
2102 static int getservicebyname(const char *pszServiceName,
2103 service * pserviceDest);
2104 static void copy_service(service * pserviceDest,
2105 service * pserviceSource, BOOL *pcopymapDest);
2106 static BOOL service_ok(int iService);
2107 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue);
2108 static BOOL do_section(const char *pszSectionName);
2109 static void init_copymap(service * pservice);
2110 static BOOL hash_a_service(const char *name, int number);
2111 static void free_service_byindex(int iService);
2112 static char * canonicalize_servicename(const char *name);
2114 /* This is a helper function for parametrical options support. */
2115 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2116 /* Actual parametrical functions are quite simple */
2117 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2119 BOOL global_section = False;
2121 param_opt_struct *data;
2123 if (snum >= iNumServices) return NULL;
2126 data = Globals.param_opt;
2127 global_section = True;
2129 data = ServicePtrs[snum]->param_opt;
2132 asprintf(¶m_key, "%s:%s", type, option);
2134 DEBUG(0,("asprintf failed!\n"));
2139 if (strcmp(data->key, param_key) == 0) {
2140 string_free(¶m_key);
2146 if (!global_section) {
2147 /* Try to fetch the same option but from globals */
2148 /* but only if we are not already working with Globals */
2149 data = Globals.param_opt;
2151 if (strcmp(data->key, param_key) == 0) {
2152 string_free(¶m_key);
2159 string_free(¶m_key);
2165 #define MISSING_PARAMETER(name) \
2166 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2168 /*******************************************************************
2169 convenience routine to return int parameters.
2170 ********************************************************************/
2171 static int lp_int(const char *s)
2175 MISSING_PARAMETER(lp_int);
2182 /*******************************************************************
2183 convenience routine to return unsigned long parameters.
2184 ********************************************************************/
2185 static unsigned long lp_ulong(const char *s)
2189 MISSING_PARAMETER(lp_ulong);
2193 return strtoul(s, NULL, 10);
2196 /*******************************************************************
2197 convenience routine to return boolean parameters.
2198 ********************************************************************/
2199 static BOOL lp_bool(const char *s)
2204 MISSING_PARAMETER(lp_bool);
2208 if (!set_boolean(&ret,s)) {
2209 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2216 /*******************************************************************
2217 convenience routine to return enum parameters.
2218 ********************************************************************/
2219 static int lp_enum(const char *s,const struct enum_list *_enum)
2223 if (!s || !*s || !_enum) {
2224 MISSING_PARAMETER(lp_enum);
2228 for (i=0; _enum[i].name; i++) {
2229 if (strequal(_enum[i].name,s))
2230 return _enum[i].value;
2233 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2237 #undef MISSING_PARAMETER
2239 /* DO NOT USE lp_parm_string ANYMORE!!!!
2240 * use lp_parm_const_string or lp_parm_talloc_string
2242 * lp_parm_string is only used to let old modules find this symbol
2244 #undef lp_parm_string
2245 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2247 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2250 /* Return parametric option from a given service. Type is a part of option before ':' */
2251 /* Parametric option has following syntax: 'Type: option = value' */
2252 /* the returned value is talloced in lp_talloc */
2253 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2255 param_opt_struct *data = get_parametrics(snum, type, option);
2257 if (data == NULL||data->value==NULL) {
2259 return lp_string(def);
2265 return lp_string(data->value);
2268 /* Return parametric option from a given service. Type is a part of option before ':' */
2269 /* Parametric option has following syntax: 'Type: option = value' */
2270 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2272 param_opt_struct *data = get_parametrics(snum, type, option);
2274 if (data == NULL||data->value==NULL)
2280 /* Return parametric option from a given service. Type is a part of option before ':' */
2281 /* Parametric option has following syntax: 'Type: option = value' */
2283 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2285 param_opt_struct *data = get_parametrics(snum, type, option);
2287 if (data == NULL||data->value==NULL)
2288 return (const char **)def;
2290 if (data->list==NULL) {
2291 data->list = str_list_make(data->value, NULL);
2294 return (const char **)data->list;
2297 /* Return parametric option from a given service. Type is a part of option before ':' */
2298 /* Parametric option has following syntax: 'Type: option = value' */
2300 int lp_parm_int(int snum, const char *type, const char *option, int def)
2302 param_opt_struct *data = get_parametrics(snum, type, option);
2304 if (data && data->value && *data->value)
2305 return lp_int(data->value);
2310 /* Return parametric option from a given service. Type is a part of option before ':' */
2311 /* Parametric option has following syntax: 'Type: option = value' */
2313 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2315 param_opt_struct *data = get_parametrics(snum, type, option);
2317 if (data && data->value && *data->value)
2318 return lp_ulong(data->value);
2323 /* Return parametric option from a given service. Type is a part of option before ':' */
2324 /* Parametric option has following syntax: 'Type: option = value' */
2326 BOOL lp_parm_bool(int snum, const char *type, const char *option, BOOL def)
2328 param_opt_struct *data = get_parametrics(snum, type, option);
2330 if (data && data->value && *data->value)
2331 return lp_bool(data->value);
2336 /* Return parametric option from a given service. Type is a part of option before ':' */
2337 /* Parametric option has following syntax: 'Type: option = value' */
2339 int lp_parm_enum(int snum, const char *type, const char *option,
2340 const struct enum_list *_enum, int def)
2342 param_opt_struct *data = get_parametrics(snum, type, option);
2344 if (data && data->value && *data->value && _enum)
2345 return lp_enum(data->value, _enum);
2351 /***************************************************************************
2352 Initialise a service to the defaults.
2353 ***************************************************************************/
2355 static void init_service(service * pservice)
2357 memset((char *)pservice, '\0', sizeof(service));
2358 copy_service(pservice, &sDefault, NULL);
2361 /***************************************************************************
2362 Free the dynamically allocated parts of a service struct.
2363 ***************************************************************************/
2365 static void free_service(service *pservice)
2368 param_opt_struct *data, *pdata;
2372 if (pservice->szService)
2373 DEBUG(5, ("free_service: Freeing service %s\n",
2374 pservice->szService));
2376 string_free(&pservice->szService);
2377 SAFE_FREE(pservice->copymap);
2379 for (i = 0; parm_table[i].label; i++) {
2380 if ((parm_table[i].type == P_STRING ||
2381 parm_table[i].type == P_USTRING) &&
2382 parm_table[i].p_class == P_LOCAL)
2383 string_free((char **)
2384 (((char *)pservice) +
2385 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2386 else if (parm_table[i].type == P_LIST &&
2387 parm_table[i].p_class == P_LOCAL)
2388 str_list_free((char ***)
2389 (((char *)pservice) +
2390 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2393 data = pservice->param_opt;
2395 DEBUG(5,("Freeing parametrics:\n"));
2397 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2398 string_free(&data->key);
2399 string_free(&data->value);
2400 str_list_free(&data->list);
2406 ZERO_STRUCTP(pservice);
2410 /***************************************************************************
2411 remove a service indexed in the ServicePtrs array from the ServiceHash
2412 and free the dynamically allocated parts
2413 ***************************************************************************/
2415 static void free_service_byindex(int idx)
2417 if ( !LP_SNUM_OK(idx) )
2420 ServicePtrs[idx]->valid = False;
2421 invalid_services[num_invalid_services++] = idx;
2423 /* we have to cleanup the hash record */
2425 if (ServicePtrs[idx]->szService) {
2426 char *canon_name = canonicalize_servicename( ServicePtrs[idx]->szService );
2428 tdb_delete_bystring(ServiceHash, canon_name );
2431 free_service(ServicePtrs[idx]);
2434 /***************************************************************************
2435 Add a new service to the services array initialising it with the given
2437 ***************************************************************************/
2439 static int add_a_service(const service *pservice, const char *name)
2443 int num_to_alloc = iNumServices + 1;
2444 param_opt_struct *data, *pdata;
2446 tservice = *pservice;
2448 /* it might already exist */
2450 i = getservicebyname(name, NULL);
2452 /* Clean all parametric options for service */
2453 /* They will be added during parsing again */
2454 data = ServicePtrs[i]->param_opt;
2456 string_free(&data->key);
2457 string_free(&data->value);
2458 str_list_free(&data->list);
2463 ServicePtrs[i]->param_opt = NULL;
2468 /* find an invalid one */
2470 if (num_invalid_services > 0) {
2471 i = invalid_services[--num_invalid_services];
2474 /* if not, then create one */
2475 if (i == iNumServices) {
2479 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2481 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2485 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2486 if (!ServicePtrs[iNumServices]) {
2487 DEBUG(0,("add_a_service: out of memory!\n"));
2492 /* enlarge invalid_services here for now... */
2493 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2495 if (tinvalid == NULL) {
2496 DEBUG(0,("add_a_service: failed to enlarge "
2497 "invalid_services!\n"));
2500 invalid_services = tinvalid;
2502 free_service_byindex(i);
2505 ServicePtrs[i]->valid = True;
2507 init_service(ServicePtrs[i]);
2508 copy_service(ServicePtrs[i], &tservice, NULL);
2510 string_set(&ServicePtrs[i]->szService, name);
2512 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2513 i, ServicePtrs[i]->szService));
2515 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2522 /***************************************************************************
2523 Convert a string to uppercase and remove whitespaces.
2524 ***************************************************************************/
2526 static char *canonicalize_servicename(const char *src)
2528 static fstring canon; /* is fstring large enough? */
2531 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2535 fstrcpy( canon, src );
2536 strlower_m( canon );
2541 /***************************************************************************
2542 Add a name/index pair for the services array to the hash table.
2543 ***************************************************************************/
2545 static BOOL hash_a_service(const char *name, int idx)
2549 if ( !ServiceHash ) {
2550 DEBUG(10,("hash_a_service: creating tdb servicehash\n"));
2551 ServiceHash = tdb_open("servicehash", 1031, TDB_INTERNAL,
2552 (O_RDWR|O_CREAT), 0600);
2553 if ( !ServiceHash ) {
2554 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2559 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2562 if ( !(canon_name = canonicalize_servicename( name )) )
2565 tdb_store_int32(ServiceHash, canon_name, idx);
2570 /***************************************************************************
2571 Add a new home service, with the specified home directory, defaults coming
2573 ***************************************************************************/
2575 BOOL lp_add_home(const char *pszHomename, int iDefaultService,
2576 const char *user, const char *pszHomedir)
2581 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2586 if (!(*(ServicePtrs[iDefaultService]->szPath))
2587 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2588 pstrcpy(newHomedir, pszHomedir);
2589 string_set(&ServicePtrs[i]->szPath, newHomedir);
2592 if (!(*(ServicePtrs[i]->comment))) {
2594 slprintf(comment, sizeof(comment) - 1,
2595 "Home directory of %s", user);
2596 string_set(&ServicePtrs[i]->comment, comment);
2599 /* set the browseable flag from the global default */
2601 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2603 ServicePtrs[i]->autoloaded = True;
2605 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2606 user, ServicePtrs[i]->szPath ));
2611 /***************************************************************************
2612 Add a new service, based on an old one.
2613 ***************************************************************************/
2615 int lp_add_service(const char *pszService, int iDefaultService)
2617 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2620 /***************************************************************************
2621 Add the IPC service.
2622 ***************************************************************************/
2624 static BOOL lp_add_ipc(const char *ipc_name, BOOL guest_ok)
2627 int i = add_a_service(&sDefault, ipc_name);
2632 slprintf(comment, sizeof(comment) - 1,
2633 "IPC Service (%s)", Globals.szServerString);
2635 string_set(&ServicePtrs[i]->szPath, tmpdir());
2636 string_set(&ServicePtrs[i]->szUsername, "");
2637 string_set(&ServicePtrs[i]->comment, comment);
2638 string_set(&ServicePtrs[i]->fstype, "IPC");
2639 ServicePtrs[i]->iMaxConnections = 0;
2640 ServicePtrs[i]->bAvailable = True;
2641 ServicePtrs[i]->bRead_only = True;
2642 ServicePtrs[i]->bGuest_only = False;
2643 ServicePtrs[i]->bGuest_ok = guest_ok;
2644 ServicePtrs[i]->bPrint_ok = False;
2645 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2647 DEBUG(3, ("adding IPC service\n"));
2652 /***************************************************************************
2653 Add a new printer service, with defaults coming from service iFrom.
2654 ***************************************************************************/
2656 BOOL lp_add_printer(const char *pszPrintername, int iDefaultService)
2658 const char *comment = "From Printcap";
2659 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2664 /* note that we do NOT default the availability flag to True - */
2665 /* we take it from the default service passed. This allows all */
2666 /* dynamic printers to be disabled by disabling the [printers] */
2667 /* entry (if/when the 'available' keyword is implemented!). */
2669 /* the printer name is set to the service name. */
2670 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2671 string_set(&ServicePtrs[i]->comment, comment);
2673 /* set the browseable flag from the gloabl default */
2674 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2676 /* Printers cannot be read_only. */
2677 ServicePtrs[i]->bRead_only = False;
2678 /* No share modes on printer services. */
2679 ServicePtrs[i]->bShareModes = False;
2680 /* No oplocks on printer services. */
2681 ServicePtrs[i]->bOpLocks = False;
2682 /* Printer services must be printable. */
2683 ServicePtrs[i]->bPrint_ok = True;
2685 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2690 /***************************************************************************
2691 Map a parameter's string representation to something we can use.
2692 Returns False if the parameter string is not recognised, else TRUE.
2693 ***************************************************************************/
2695 static int map_parameter(const char *pszParmName)
2699 if (*pszParmName == '-')
2702 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2703 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2706 /* Warn only if it isn't parametric option */
2707 if (strchr(pszParmName, ':') == NULL)
2708 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2709 /* We do return 'fail' for parametric options as well because they are
2710 stored in different storage
2715 /***************************************************************************
2716 Show all parameter's name, type, [values,] and flags.
2717 ***************************************************************************/
2719 void show_parameter_list(void)
2721 int classIndex, parmIndex, enumIndex, flagIndex;
2723 const char *section_names[] = { "local", "global", NULL};
2724 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
2725 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING", "P_GSTRING",
2726 "P_UGSTRING", "P_ENUM", "P_SEP"};
2727 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
2728 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
2729 FLAG_HIDE, FLAG_DOS_STRING};
2730 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
2731 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
2732 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
2734 for ( classIndex=0; section_names[classIndex]; classIndex++) {
2735 printf("[%s]\n", section_names[classIndex]);
2736 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
2737 if (parm_table[parmIndex].p_class == classIndex) {
2739 parm_table[parmIndex].label,
2740 type[parm_table[parmIndex].type]);
2741 switch (parm_table[parmIndex].type) {
2744 for (enumIndex=0; parm_table[parmIndex].enum_list[enumIndex].name; enumIndex++)
2746 enumIndex ? "|" : "",
2747 parm_table[parmIndex].enum_list[enumIndex].name);
2754 for ( flagIndex=0; flag_names[flagIndex]; flagIndex++ ) {
2755 if (parm_table[parmIndex].flags & flags[flagIndex]) {
2758 flag_names[flagIndex]);
2768 /***************************************************************************
2769 Set a boolean variable from the text value stored in the passed string.
2770 Returns True in success, False if the passed string does not correctly
2771 represent a boolean.
2772 ***************************************************************************/
2774 static BOOL set_boolean(BOOL *pb, const char *pszParmValue)
2779 if (strwicmp(pszParmValue, "yes") == 0 ||
2780 strwicmp(pszParmValue, "true") == 0 ||
2781 strwicmp(pszParmValue, "1") == 0)
2783 else if (strwicmp(pszParmValue, "no") == 0 ||
2784 strwicmp(pszParmValue, "False") == 0 ||
2785 strwicmp(pszParmValue, "0") == 0)
2789 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
2796 /***************************************************************************
2797 Find a service by name. Otherwise works like get_service.
2798 ***************************************************************************/
2800 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
2805 if (ServiceHash != NULL) {
2806 if ( !(canon_name = canonicalize_servicename( pszServiceName )) )
2809 iService = tdb_fetch_int32(ServiceHash, canon_name );
2811 if (LP_SNUM_OK(iService)) {
2812 if (pserviceDest != NULL) {
2813 copy_service(pserviceDest, ServicePtrs[iService], NULL);
2823 /***************************************************************************
2824 Copy a service structure to another.
2825 If pcopymapDest is NULL then copy all fields
2826 ***************************************************************************/
2828 static void copy_service(service * pserviceDest, service * pserviceSource, BOOL *pcopymapDest)
2831 BOOL bcopyall = (pcopymapDest == NULL);
2832 param_opt_struct *data, *pdata, *paramo;
2835 for (i = 0; parm_table[i].label; i++)
2836 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
2837 (bcopyall || pcopymapDest[i])) {
2838 void *def_ptr = parm_table[i].ptr;
2840 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
2843 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
2846 switch (parm_table[i].type) {
2849 *(BOOL *)dest_ptr = *(BOOL *)src_ptr;
2855 *(int *)dest_ptr = *(int *)src_ptr;
2859 *(char *)dest_ptr = *(char *)src_ptr;
2863 string_set((char **)dest_ptr,
2868 string_set((char **)dest_ptr,
2870 strupper_m(*(char **)dest_ptr);
2873 str_list_free((char ***)dest_ptr);
2874 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
2882 init_copymap(pserviceDest);
2883 if (pserviceSource->copymap)
2884 memcpy((void *)pserviceDest->copymap,
2885 (void *)pserviceSource->copymap,
2886 sizeof(BOOL) * NUMPARAMETERS);
2889 data = pserviceSource->param_opt;
2892 pdata = pserviceDest->param_opt;
2893 /* Traverse destination */
2895 /* If we already have same option, override it */
2896 if (strcmp(pdata->key, data->key) == 0) {
2897 string_free(&pdata->value);
2898 str_list_free(&data->list);
2899 pdata->value = SMB_STRDUP(data->value);
2903 pdata = pdata->next;
2906 paramo = SMB_XMALLOC_P(param_opt_struct);
2907 paramo->key = SMB_STRDUP(data->key);
2908 paramo->value = SMB_STRDUP(data->value);
2909 paramo->list = NULL;
2910 DLIST_ADD(pserviceDest->param_opt, paramo);
2916 /***************************************************************************
2917 Check a service for consistency. Return False if the service is in any way
2918 incomplete or faulty, else True.
2919 ***************************************************************************/
2921 static BOOL service_ok(int iService)
2926 if (ServicePtrs[iService]->szService[0] == '\0') {
2927 DEBUG(0, ("The following message indicates an internal error:\n"));
2928 DEBUG(0, ("No service name in service entry.\n"));
2932 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
2933 /* I can't see why you'd want a non-printable printer service... */
2934 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
2935 if (!ServicePtrs[iService]->bPrint_ok) {
2936 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
2937 ServicePtrs[iService]->szService));
2938 ServicePtrs[iService]->bPrint_ok = True;
2940 /* [printers] service must also be non-browsable. */
2941 if (ServicePtrs[iService]->bBrowseable)
2942 ServicePtrs[iService]->bBrowseable = False;
2945 if (ServicePtrs[iService]->szPath[0] == '\0' &&
2946 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
2947 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
2949 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
2950 ServicePtrs[iService]->szService));
2951 ServicePtrs[iService]->bAvailable = False;
2954 /* If a service is flagged unavailable, log the fact at level 0. */
2955 if (!ServicePtrs[iService]->bAvailable)
2956 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
2957 ServicePtrs[iService]->szService));
2962 static struct file_lists {
2963 struct file_lists *next;
2967 } *file_lists = NULL;
2969 /*******************************************************************
2970 Keep a linked list of all config files so we know when one has changed
2971 it's date and needs to be reloaded.
2972 ********************************************************************/
2974 static void add_to_file_list(const char *fname, const char *subfname)
2976 struct file_lists *f = file_lists;
2979 if (f->name && !strcmp(f->name, fname))
2985 f = SMB_MALLOC_P(struct file_lists);
2988 f->next = file_lists;
2989 f->name = SMB_STRDUP(fname);
2994 f->subfname = SMB_STRDUP(subfname);
3000 f->modtime = file_modtime(subfname);
3002 time_t t = file_modtime(subfname);
3008 /*******************************************************************
3009 Check if a config file has changed date.
3010 ********************************************************************/
3012 BOOL lp_file_list_changed(void)
3014 struct file_lists *f = file_lists;
3016 DEBUG(6, ("lp_file_list_changed()\n"));
3022 pstrcpy(n2, f->name);
3023 standard_sub_basic( get_current_username(), n2, sizeof(n2) );
3025 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3026 f->name, n2, ctime(&f->modtime)));
3028 mod_time = file_modtime(n2);
3030 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3032 ("file %s modified: %s\n", n2,
3034 f->modtime = mod_time;
3035 SAFE_FREE(f->subfname);
3036 f->subfname = SMB_STRDUP(n2);
3044 /***************************************************************************
3045 Run standard_sub_basic on netbios name... needed because global_myname
3046 is not accessed through any lp_ macro.
3047 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3048 ***************************************************************************/
3050 static BOOL handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3053 pstring netbios_name;
3055 pstrcpy(netbios_name, pszParmValue);
3057 standard_sub_basic(get_current_username(), netbios_name,sizeof(netbios_name));
3059 ret = set_global_myname(netbios_name);
3060 string_set(&Globals.szNetbiosName,global_myname());
3062 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3068 static BOOL handle_charset(int snum, const char *pszParmValue, char **ptr)
3070 if (strcmp(*ptr, pszParmValue) != 0) {
3071 string_set(ptr, pszParmValue);
3079 static BOOL handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3083 ret = set_global_myworkgroup(pszParmValue);
3084 string_set(&Globals.szWorkgroup,lp_workgroup());
3089 static BOOL handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3093 ret = set_global_scope(pszParmValue);
3094 string_set(&Globals.szNetbiosScope,global_scope());
3099 static BOOL handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3101 str_list_free(&Globals.szNetbiosAliases);
3102 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3103 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3106 /***************************************************************************
3107 Handle the include operation.
3108 ***************************************************************************/
3110 static BOOL handle_include(int snum, const char *pszParmValue, char **ptr)
3113 pstrcpy(fname, pszParmValue);
3115 standard_sub_basic(get_current_username(), fname,sizeof(fname));
3117 add_to_file_list(pszParmValue, fname);
3119 string_set(ptr, fname);
3121 if (file_exist(fname, NULL))
3122 return (pm_process(fname, do_section, do_parameter));
3124 DEBUG(2, ("Can't find include file %s\n", fname));
3129 /***************************************************************************
3130 Handle the interpretation of the copy parameter.
3131 ***************************************************************************/
3133 static BOOL handle_copy(int snum, const char *pszParmValue, char **ptr)
3137 service serviceTemp;
3139 string_set(ptr, pszParmValue);
3141 init_service(&serviceTemp);
3145 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3147 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3148 if (iTemp == iServiceIndex) {
3149 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3151 copy_service(ServicePtrs[iServiceIndex],
3153 ServicePtrs[iServiceIndex]->copymap);
3157 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3161 free_service(&serviceTemp);
3165 /***************************************************************************
3166 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3171 idmap uid = 1000-1999
3174 We only do simple parsing checks here. The strings are parsed into useful
3175 structures in the idmap daemon code.
3177 ***************************************************************************/
3179 /* Some lp_ routines to return idmap [ug]id information */
3181 static uid_t idmap_uid_low, idmap_uid_high;
3182 static gid_t idmap_gid_low, idmap_gid_high;
3184 BOOL lp_idmap_uid(uid_t *low, uid_t *high)
3186 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3190 *low = idmap_uid_low;
3193 *high = idmap_uid_high;
3198 BOOL lp_idmap_gid(gid_t *low, gid_t *high)
3200 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3204 *low = idmap_gid_low;
3207 *high = idmap_gid_high;
3212 /* Do some simple checks on "idmap [ug]id" parameter values */
3214 static BOOL handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3218 if (sscanf(pszParmValue, "%u-%u", &low, &high) != 2 || high < low)
3223 string_set(ptr, pszParmValue);
3225 idmap_uid_low = low;
3226 idmap_uid_high = high;
3231 static BOOL handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3235 if (sscanf(pszParmValue, "%u-%u", &low, &high) != 2 || high < low)
3240 string_set(ptr, pszParmValue);
3242 idmap_gid_low = low;
3243 idmap_gid_high = high;
3248 /***************************************************************************
3249 Handle the DEBUG level list.
3250 ***************************************************************************/
3252 static BOOL handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3254 pstring pszParmValue;
3256 pstrcpy(pszParmValue, pszParmValueIn);
3257 string_set(ptr, pszParmValueIn);
3258 return debug_parse_levels( pszParmValue );
3261 /***************************************************************************
3262 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3263 ***************************************************************************/
3265 static char* append_ldap_suffix( const char *str )
3267 char *suffix_string;
3271 lp_talloc = talloc_init("lp_talloc");
3273 suffix_string = talloc_asprintf( lp_talloc, "%s,%s", str, Globals.szLdapSuffix );
3274 if ( !suffix_string ) {
3275 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3279 return suffix_string;
3282 char *lp_ldap_machine_suffix(void)
3284 if (Globals.szLdapMachineSuffix[0])
3285 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3287 return lp_string(Globals.szLdapSuffix);
3290 char *lp_ldap_user_suffix(void)
3292 if (Globals.szLdapUserSuffix[0])
3293 return append_ldap_suffix(Globals.szLdapUserSuffix);
3295 return lp_string(Globals.szLdapSuffix);
3298 char *lp_ldap_group_suffix(void)
3300 if (Globals.szLdapGroupSuffix[0])
3301 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3303 return lp_string(Globals.szLdapSuffix);
3306 char *lp_ldap_idmap_suffix(void)
3308 if (Globals.szLdapIdmapSuffix[0])
3309 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3311 return lp_string(Globals.szLdapSuffix);
3314 /****************************************************************************
3315 set the value for a P_ENUM
3316 ***************************************************************************/
3318 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3323 for (i = 0; parm->enum_list[i].name; i++) {
3324 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3325 *ptr = parm->enum_list[i].value;
3331 /***************************************************************************
3332 ***************************************************************************/
3334 static BOOL handle_printing(int snum, const char *pszParmValue, char **ptr)
3336 static int parm_num = -1;
3339 if ( parm_num == -1 )
3340 parm_num = map_parameter( "printing" );
3342 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3347 s = ServicePtrs[snum];
3349 init_printer_values( s );
3355 /***************************************************************************
3356 Initialise a copymap.
3357 ***************************************************************************/
3359 static void init_copymap(service * pservice)
3362 SAFE_FREE(pservice->copymap);
3363 pservice->copymap = SMB_MALLOC_ARRAY(BOOL,NUMPARAMETERS);
3364 if (!pservice->copymap)
3366 ("Couldn't allocate copymap!! (size %d)\n",
3367 (int)NUMPARAMETERS));
3369 for (i = 0; i < NUMPARAMETERS; i++)
3370 pservice->copymap[i] = True;
3373 /***************************************************************************
3374 Return the local pointer to a parameter given the service number and the
3375 pointer into the default structure.
3376 ***************************************************************************/
3378 void *lp_local_ptr(int snum, void *ptr)
3380 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
3383 /***************************************************************************
3384 Process a parameter for a particular service number. If snum < 0
3385 then assume we are in the globals.
3386 ***************************************************************************/
3388 BOOL lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
3390 int parmnum, i, slen;
3391 void *parm_ptr = NULL; /* where we are going to store the result */
3392 void *def_ptr = NULL;
3395 param_opt_struct *paramo, *data;
3398 parmnum = map_parameter(pszParmName);
3401 if ((sep=strchr(pszParmName, ':')) != NULL) {
3403 ZERO_STRUCT(param_key);
3404 pstr_sprintf(param_key, "%s:", pszParmName);
3405 slen = strlen(param_key);
3406 pstrcat(param_key, sep+1);
3407 trim_char(param_key+slen, ' ', ' ');
3409 data = (snum < 0) ? Globals.param_opt :
3410 ServicePtrs[snum]->param_opt;
3411 /* Traverse destination */
3413 /* If we already have same option, override it */
3414 if (strcmp(data->key, param_key) == 0) {
3415 string_free(&data->value);
3416 str_list_free(&data->list);
3417 data->value = SMB_STRDUP(pszParmValue);
3424 paramo = SMB_XMALLOC_P(param_opt_struct);
3425 paramo->key = SMB_STRDUP(param_key);
3426 paramo->value = SMB_STRDUP(pszParmValue);
3427 paramo->list = NULL;
3429 DLIST_ADD(Globals.param_opt, paramo);
3431 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
3438 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
3442 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
3443 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
3447 def_ptr = parm_table[parmnum].ptr;
3449 /* we might point at a service, the default service or a global */
3453 if (parm_table[parmnum].p_class == P_GLOBAL) {
3455 ("Global parameter %s found in service section!\n",
3460 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
3465 if (!ServicePtrs[snum]->copymap)
3466 init_copymap(ServicePtrs[snum]);
3468 /* this handles the aliases - set the copymap for other entries with
3469 the same data pointer */
3470 for (i = 0; parm_table[i].label; i++)
3471 if (parm_table[i].ptr == parm_table[parmnum].ptr)
3472 ServicePtrs[snum]->copymap[i] = False;
3475 /* if it is a special case then go ahead */
3476 if (parm_table[parmnum].special) {
3477 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
3481 /* now switch on the type of variable it is */
3482 switch (parm_table[parmnum].type)
3485 *(BOOL *)parm_ptr = lp_bool(pszParmValue);
3489 *(BOOL *)parm_ptr = !lp_bool(pszParmValue);
3493 *(int *)parm_ptr = lp_int(pszParmValue);
3497 *(char *)parm_ptr = *pszParmValue;
3501 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
3503 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
3508 str_list_free((char ***)parm_ptr);
3509 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
3513 string_set((char **)parm_ptr, pszParmValue);
3517 string_set((char **)parm_ptr, pszParmValue);
3518 strupper_m(*(char **)parm_ptr);
3522 pstrcpy((char *)parm_ptr, pszParmValue);
3526 pstrcpy((char *)parm_ptr, pszParmValue);
3527 strupper_m((char *)parm_ptr);
3531 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
3540 /***************************************************************************
3541 Process a parameter.
3542 ***************************************************************************/
3544 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue)
3546 if (!bInGlobalSection && bGlobalOnly)
3549 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
3551 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
3552 pszParmName, pszParmValue));
3555 /***************************************************************************
3556 Print a parameter of the specified type.
3557 ***************************************************************************/
3559 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
3565 for (i = 0; p->enum_list[i].name; i++) {
3566 if (*(int *)ptr == p->enum_list[i].value) {
3568 p->enum_list[i].name);
3575 fprintf(f, "%s", BOOLSTR(*(BOOL *)ptr));
3579 fprintf(f, "%s", BOOLSTR(!*(BOOL *)ptr));
3583 fprintf(f, "%d", *(int *)ptr);
3587 fprintf(f, "%c", *(char *)ptr);
3591 fprintf(f, "%s", octal_string(*(int *)ptr));
3595 if ((char ***)ptr && *(char ***)ptr) {
3596 char **list = *(char ***)ptr;
3598 for (; *list; list++) {
3599 /* surround strings with whitespace in double quotes */
3600 if ( strchr_m( *list, ' ' ) )
3601 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
3603 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
3611 fprintf(f, "%s", (char *)ptr);
3617 if (*(char **)ptr) {
3618 fprintf(f, "%s", *(char **)ptr);
3626 /***************************************************************************
3627 Check if two parameters are equal.
3628 ***************************************************************************/
3630 static BOOL equal_parameter(parm_type type, void *ptr1, void *ptr2)
3635 return (*((BOOL *)ptr1) == *((BOOL *)ptr2));
3640 return (*((int *)ptr1) == *((int *)ptr2));
3643 return (*((char *)ptr1) == *((char *)ptr2));
3646 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
3651 char *p1 = (char *)ptr1, *p2 = (char *)ptr2;
3656 return (p1 == p2 || strequal(p1, p2));
3661 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
3666 return (p1 == p2 || strequal(p1, p2));
3674 /***************************************************************************
3675 Initialize any local varients in the sDefault table.
3676 ***************************************************************************/
3678 void init_locals(void)
3683 /***************************************************************************
3684 Process a new section (service). At this stage all sections are services.
3685 Later we'll have special sections that permit server parameters to be set.
3686 Returns True on success, False on failure.
3687 ***************************************************************************/
3689 static BOOL do_section(const char *pszSectionName)
3692 BOOL isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
3693 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
3696 /* if we were in a global section then do the local inits */
3697 if (bInGlobalSection && !isglobal)
3700 /* if we've just struck a global section, note the fact. */
3701 bInGlobalSection = isglobal;
3703 /* check for multiple global sections */
3704 if (bInGlobalSection) {
3705 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
3709 if (!bInGlobalSection && bGlobalOnly)
3712 /* if we have a current service, tidy it up before moving on */
3715 if (iServiceIndex >= 0)
3716 bRetval = service_ok(iServiceIndex);
3718 /* if all is still well, move to the next record in the services array */
3720 /* We put this here to avoid an odd message order if messages are */
3721 /* issued by the post-processing of a previous section. */
3722 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
3724 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
3726 DEBUG(0, ("Failed to add a new service\n"));
3735 /***************************************************************************
3736 Determine if a partcular base parameter is currentl set to the default value.
3737 ***************************************************************************/
3739 static BOOL is_default(int i)
3741 if (!defaults_saved)
3743 switch (parm_table[i].type) {
3745 return str_list_compare (parm_table[i].def.lvalue,
3746 *(char ***)parm_table[i].ptr);
3749 return strequal(parm_table[i].def.svalue,
3750 *(char **)parm_table[i].ptr);
3753 return strequal(parm_table[i].def.svalue,
3754 (char *)parm_table[i].ptr);
3757 return parm_table[i].def.bvalue ==
3758 *(BOOL *)parm_table[i].ptr;
3760 return parm_table[i].def.cvalue ==
3761 *(char *)parm_table[i].ptr;
3765 return parm_table[i].def.ivalue ==
3766 *(int *)parm_table[i].ptr;
3773 /***************************************************************************
3774 Display the contents of the global structure.
3775 ***************************************************************************/
3777 static void dump_globals(FILE *f)
3780 param_opt_struct *data;
3782 fprintf(f, "[global]\n");
3784 for (i = 0; parm_table[i].label; i++)
3785 if (parm_table[i].p_class == P_GLOBAL &&
3786 parm_table[i].ptr &&
3787 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
3788 if (defaults_saved && is_default(i))
3790 fprintf(f, "\t%s = ", parm_table[i].label);
3791 print_parameter(&parm_table[i], parm_table[i].ptr, f);
3794 if (Globals.param_opt != NULL) {
3795 data = Globals.param_opt;
3797 fprintf(f, "\t%s = %s\n", data->key, data->value);
3804 /***************************************************************************
3805 Return True if a local parameter is currently set to the global default.
3806 ***************************************************************************/
3808 BOOL lp_is_default(int snum, struct parm_struct *parm)
3810 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
3812 return equal_parameter(parm->type,
3813 ((char *)ServicePtrs[snum]) + pdiff,
3814 ((char *)&sDefault) + pdiff);
3817 /***************************************************************************
3818 Display the contents of a single services record.
3819 ***************************************************************************/
3821 static void dump_a_service(service * pService, FILE * f)
3824 param_opt_struct *data;
3826 if (pService != &sDefault)
3827 fprintf(f, "[%s]\n", pService->szService);
3829 for (i = 0; parm_table[i].label; i++) {
3831 if (parm_table[i].p_class == P_LOCAL &&
3832 parm_table[i].ptr &&
3833 (*parm_table[i].label != '-') &&
3834 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
3837 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
3839 if (pService == &sDefault) {
3840 if (defaults_saved && is_default(i))
3843 if (equal_parameter(parm_table[i].type,
3844 ((char *)pService) +
3846 ((char *)&sDefault) +
3851 fprintf(f, "\t%s = ", parm_table[i].label);
3852 print_parameter(&parm_table[i],
3853 ((char *)pService) + pdiff, f);
3858 if (pService->param_opt != NULL) {
3859 data = pService->param_opt;
3861 fprintf(f, "\t%s = %s\n", data->key, data->value);
3867 /***************************************************************************
3868 Display the contents of a parameter of a single services record.
3869 ***************************************************************************/
3871 BOOL dump_a_parameter(int snum, char *parm_name, FILE * f, BOOL isGlobal)
3873 service * pService = ServicePtrs[snum];
3874 int i, result = False;
3884 for (i = 0; parm_table[i].label; i++) {
3885 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
3886 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
3887 parm_table[i].ptr &&
3888 (*parm_table[i].label != '-') &&
3889 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
3894 ptr = parm_table[i].ptr;
3896 ptr = ((char *)pService) +
3897 PTR_DIFF(parm_table[i].ptr, &sDefault);
3899 print_parameter(&parm_table[i],
3910 /***************************************************************************
3911 Return info about the next service in a service. snum==GLOBAL_SECTION_SNUM gives the globals.
3912 Return NULL when out of parameters.
3913 ***************************************************************************/
3915 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
3918 /* do the globals */
3919 for (; parm_table[*i].label; (*i)++) {
3920 if (parm_table[*i].p_class == P_SEPARATOR)
3921 return &parm_table[(*i)++];
3923 if (!parm_table[*i].ptr
3924 || (*parm_table[*i].label == '-'))
3928 && (parm_table[*i].ptr ==
3929 parm_table[(*i) - 1].ptr))
3932 return &parm_table[(*i)++];
3935 service *pService = ServicePtrs[snum];
3937 for (; parm_table[*i].label; (*i)++) {
3938 if (parm_table[*i].p_class == P_SEPARATOR)
3939 return &parm_table[(*i)++];
3941 if (parm_table[*i].p_class == P_LOCAL &&
3942 parm_table[*i].ptr &&
3943 (*parm_table[*i].label != '-') &&
3945 (parm_table[*i].ptr !=
3946 parm_table[(*i) - 1].ptr)))
3949 PTR_DIFF(parm_table[*i].ptr,
3952 if (allparameters ||
3953 !equal_parameter(parm_table[*i].type,
3954 ((char *)pService) +
3956 ((char *)&sDefault) +
3959 return &parm_table[(*i)++];
3970 /***************************************************************************
3971 Display the contents of a single copy structure.
3972 ***************************************************************************/
3973 static void dump_copy_map(BOOL *pcopymap)
3979 printf("\n\tNon-Copied parameters:\n");
3981 for (i = 0; parm_table[i].label; i++)
3982 if (parm_table[i].p_class == P_LOCAL &&
3983 parm_table[i].ptr && !pcopymap[i] &&
3984 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
3986 printf("\t\t%s\n", parm_table[i].label);
3991 /***************************************************************************
3992 Return TRUE if the passed service number is within range.
3993 ***************************************************************************/
3995 BOOL lp_snum_ok(int iService)
3997 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4000 /***************************************************************************
4001 Auto-load some home services.
4002 ***************************************************************************/
4004 static void lp_add_auto_services(char *str)
4013 s = SMB_STRDUP(str);
4017 homes = lp_servicenumber(HOMES_NAME);
4019 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4020 char *home = get_user_home_dir(p);
4022 if (lp_servicenumber(p) >= 0)
4025 if (home && homes >= 0)
4026 lp_add_home(p, homes, p, home);
4031 /***************************************************************************
4032 Auto-load one printer.
4033 ***************************************************************************/
4035 void lp_add_one_printer(char *name, char *comment)
4037 int printers = lp_servicenumber(PRINTERS_NAME);
4040 if (lp_servicenumber(name) < 0) {
4041 lp_add_printer(name, printers);
4042 if ((i = lp_servicenumber(name)) >= 0) {
4043 string_set(&ServicePtrs[i]->comment, comment);
4044 ServicePtrs[i]->autoloaded = True;
4049 /***************************************************************************
4050 Have we loaded a services file yet?
4051 ***************************************************************************/
4053 BOOL lp_loaded(void)
4058 /***************************************************************************
4059 Unload unused services.
4060 ***************************************************************************/
4062 void lp_killunused(BOOL (*snumused) (int))
4065 for (i = 0; i < iNumServices; i++) {
4069 /* don't kill autoloaded or usershare services */
4070 if ( ServicePtrs[i]->autoloaded ||
4071 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4075 if (!snumused || !snumused(i)) {
4076 free_service_byindex(i);
4081 /***************************************************************************
4083 ***************************************************************************/
4085 void lp_killservice(int iServiceIn)
4087 if (VALID(iServiceIn)) {
4088 free_service_byindex(iServiceIn);
4092 /***************************************************************************
4093 Save the curent values of all global and sDefault parameters into the
4094 defaults union. This allows swat and testparm to show only the
4095 changed (ie. non-default) parameters.
4096 ***************************************************************************/
4098 static void lp_save_defaults(void)
4101 for (i = 0; parm_table[i].label; i++) {
4102 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4104 switch (parm_table[i].type) {
4106 str_list_copy(&(parm_table[i].def.lvalue),
4107 *(const char ***)parm_table[i].ptr);
4111 if (parm_table[i].ptr) {
4112 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4114 parm_table[i].def.svalue = NULL;
4119 if (parm_table[i].ptr) {
4120 parm_table[i].def.svalue = SMB_STRDUP((char *)parm_table[i].ptr);
4122 parm_table[i].def.svalue = NULL;
4127 parm_table[i].def.bvalue =
4128 *(BOOL *)parm_table[i].ptr;
4131 parm_table[i].def.cvalue =
4132 *(char *)parm_table[i].ptr;
4137 parm_table[i].def.ivalue =
4138 *(int *)parm_table[i].ptr;
4144 defaults_saved = True;
4147 /*******************************************************************
4148 Set the server type we will announce as via nmbd.
4149 ********************************************************************/
4151 static const struct srv_role_tab {
4153 const char *role_str;
4154 } srv_role_tab [] = {
4155 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4156 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4157 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4158 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4162 const char* server_role_str(uint32 role)
4165 for (i=0; srv_role_tab[i].role_str; i++) {
4166 if (role == srv_role_tab[i].role) {
4167 return srv_role_tab[i].role_str;
4173 static void set_server_role(void)
4175 server_role = ROLE_STANDALONE;
4177 switch (lp_security()) {
4179 if (lp_domain_logons())
4180 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4183 if (lp_domain_logons())
4184 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4185 server_role = ROLE_DOMAIN_MEMBER;
4188 if (lp_domain_logons()) {
4189 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4190 server_role = ROLE_DOMAIN_BDC;
4193 server_role = ROLE_DOMAIN_MEMBER;
4196 if (lp_domain_logons()) {
4197 server_role = ROLE_DOMAIN_PDC;
4200 server_role = ROLE_DOMAIN_MEMBER;
4203 if (lp_domain_logons()) {
4205 if (Globals.bDomainMaster) /* auto or yes */
4206 server_role = ROLE_DOMAIN_PDC;
4208 server_role = ROLE_DOMAIN_BDC;
4212 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4216 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4219 /***********************************************************
4220 If we should send plaintext/LANMAN passwords in the clinet
4221 ************************************************************/
4223 static void set_allowed_client_auth(void)
4225 if (Globals.bClientNTLMv2Auth) {
4226 Globals.bClientLanManAuth = False;
4228 if (!Globals.bClientLanManAuth) {
4229 Globals.bClientPlaintextAuth = False;
4233 /***************************************************************************
4235 The following code allows smbd to read a user defined share file.
4236 Yes, this is my intent. Yes, I'm comfortable with that...
4238 THE FOLLOWING IS SECURITY CRITICAL CODE.
4240 It washes your clothes, it cleans your house, it guards you while you sleep...
4241 Do not f%^k with it....
4242 ***************************************************************************/
4244 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4246 /***************************************************************************
4247 Check allowed stat state of a usershare file.
4248 Ensure we print out who is dicking with us so the admin can
4249 get their sorry ass fired.
4250 ***************************************************************************/
4252 static BOOL check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4254 if (!S_ISREG(psbuf->st_mode)) {
4255 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4256 "not a regular file\n",
4257 fname, (unsigned int)psbuf->st_uid ));
4261 /* Ensure this doesn't have the other write bit set. */
4262 if (psbuf->st_mode & S_IWOTH) {
4263 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4264 "public write. Refusing to allow as a usershare file.\n",
4265 fname, (unsigned int)psbuf->st_uid ));
4269 /* Should be 10k or less. */
4270 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4271 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4272 "too large (%u) to be a user share file.\n",
4273 fname, (unsigned int)psbuf->st_uid,
4274 (unsigned int)psbuf->st_size ));
4281 /***************************************************************************
4282 Parse the contents of a usershare file.
4283 ***************************************************************************/
4285 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4286 SMB_STRUCT_STAT *psbuf,
4287 const char *servicename,
4295 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4296 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4298 SMB_STRUCT_STAT sbuf;
4301 return USERSHARE_MALFORMED_FILE;
4304 if (!strequal(lines[0], "#VERSION 1")) {
4305 return USERSHARE_BAD_VERSION;
4308 if (!strnequal(lines[1], "path=", 5)) {
4309 return USERSHARE_MALFORMED_PATH;
4312 pstrcpy(sharepath, &lines[1][5]);
4313 trim_string(sharepath, " ", " ");
4315 if (!strnequal(lines[2], "comment=", 8)) {
4316 return USERSHARE_MALFORMED_COMMENT_DEF;
4319 pstrcpy(comment, &lines[2][8]);
4320 trim_string(comment, " ", " ");
4321 trim_char(comment, '"', '"');
4323 if (!strnequal(lines[3], "usershare_acl=", 14)) {
4324 return USERSHARE_MALFORMED_ACL_DEF;
4327 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
4328 return USERSHARE_ACL_ERR;
4331 if (snum != -1 && strequal(sharepath, ServicePtrs[snum]->szPath)) {
4332 /* Path didn't change, no checks needed. */
4333 return USERSHARE_OK;
4336 /* The path *must* be absolute. */
4337 if (sharepath[0] != '/') {
4338 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
4339 servicename, sharepath));
4340 return USERSHARE_PATH_NOT_ABSOLUTE;
4343 /* If there is a usershare prefix deny list ensure one of these paths
4344 doesn't match the start of the user given path. */
4345 if (prefixdenylist) {
4347 for ( i=0; prefixdenylist[i]; i++ ) {
4348 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
4349 servicename, i, prefixdenylist[i], sharepath ));
4350 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
4351 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
4352 "usershare prefix deny list entries.\n",
4353 servicename, sharepath));
4354 return USERSHARE_PATH_IS_DENIED;
4359 /* If there is a usershare prefix allow list ensure one of these paths
4360 does match the start of the user given path. */
4362 if (prefixallowlist) {
4364 for ( i=0; prefixallowlist[i]; i++ ) {
4365 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
4366 servicename, i, prefixallowlist[i], sharepath ));
4367 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
4371 if (prefixallowlist[i] == NULL) {
4372 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
4373 "usershare prefix allow list entries.\n",
4374 servicename, sharepath));
4375 return USERSHARE_PATH_NOT_ALLOWED;
4379 /* Ensure this is pointing to a directory. */
4380 dp = sys_opendir(sharepath);
4383 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
4384 servicename, sharepath));
4385 return USERSHARE_PATH_NOT_DIRECTORY;
4388 /* Ensure the owner of the usershare file has permission to share
4391 if (sys_stat(sharepath, &sbuf) == -1) {
4392 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
4393 servicename, sharepath, strerror(errno) ));
4395 return USERSHARE_POSIX_ERR;
4400 if (!S_ISDIR(sbuf.st_mode)) {
4401 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
4402 servicename, sharepath ));
4403 return USERSHARE_PATH_NOT_DIRECTORY;
4406 /* Check if sharing is restricted to owner-only. */
4407 /* psbuf is the stat of the usershare definition file,
4408 sbuf is the stat of the target directory to be shared. */
4410 if (lp_usershare_owner_only()) {
4411 /* root can share anything. */
4412 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
4413 return USERSHARE_PATH_NOT_ALLOWED;
4417 return USERSHARE_OK;
4420 /***************************************************************************
4421 Deal with a usershare file.
4424 -1 - Bad name, invalid contents.
4425 - service name already existed and not a usershare, problem
4426 with permissions to share directory etc.
4427 ***************************************************************************/
4429 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
4431 SMB_STRUCT_STAT sbuf;
4432 SMB_STRUCT_STAT lsbuf;
4436 fstring service_name;
4437 char **lines = NULL;
4441 TALLOC_CTX *ctx = NULL;
4442 SEC_DESC *psd = NULL;
4444 /* Ensure share name doesn't contain invalid characters. */
4445 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
4446 DEBUG(0,("process_usershare_file: share name %s contains "
4447 "invalid characters (any of %s)\n",
4448 file_name, INVALID_SHARENAME_CHARS ));
4452 fstrcpy(service_name, file_name);
4454 pstrcpy(fname, dir_name);
4455 pstrcat(fname, "/");
4456 pstrcat(fname, file_name);
4458 /* Minimize the race condition by doing an lstat before we
4459 open and fstat. Ensure this isn't a symlink link. */
4461 if (sys_lstat(fname, &lsbuf) != 0) {
4462 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
4463 fname, strerror(errno) ));
4467 /* This must be a regular file, not a symlink, directory or
4468 other strange filetype. */
4469 if (!check_usershare_stat(fname, &lsbuf)) {
4473 /* See if there is already a servicenum for this name. */
4474 /* tdb_fetch_int32 returns -1 if not found. */
4475 iService = (int)tdb_fetch_int32(ServiceHash, canonicalize_servicename(service_name) );
4477 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
4478 /* Nothing changed - Mark valid and return. */
4479 DEBUG(10,("process_usershare_file: service %s not changed.\n",
4481 ServicePtrs[iService]->usershare = USERSHARE_VALID;
4485 /* Try and open the file read only - no symlinks allowed. */
4487 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
4489 fd = sys_open(fname, O_RDONLY, 0);
4493 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
4494 fname, strerror(errno) ));
4498 /* Now fstat to be *SURE* it's a regular file. */
4499 if (sys_fstat(fd, &sbuf) != 0) {
4501 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
4502 fname, strerror(errno) ));
4506 /* Is it the same dev/inode as was lstated ? */
4507 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
4509 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
4510 "Symlink spoofing going on ?\n", fname ));
4514 /* This must be a regular file, not a symlink, directory or
4515 other strange filetype. */
4516 if (!check_usershare_stat(fname, &sbuf)) {
4520 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
4523 if (lines == NULL) {
4524 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
4525 fname, (unsigned int)sbuf.st_uid ));
4529 /* Should we allow printers to be shared... ? */
4530 ctx = talloc_init("usershare_sd_xctx");
4536 if (parse_usershare_file(ctx, &sbuf, service_name, iService, lines, numlines, sharepath, comment, &psd) != USERSHARE_OK) {
4537 talloc_destroy(ctx);
4544 /* Everything ok - add the service possibly using a template. */
4546 const service *sp = &sDefault;
4547 if (snum_template != -1) {
4548 sp = ServicePtrs[snum_template];
4551 if ((iService = add_a_service(sp, service_name)) < 0) {
4552 DEBUG(0, ("process_usershare_file: Failed to add "
4553 "new service %s\n", service_name));
4554 talloc_destroy(ctx);
4558 /* Read only is controlled by usershare ACL below. */
4559 ServicePtrs[iService]->bRead_only = False;
4562 /* Write the ACL of the new/modified share. */
4563 if (!set_share_security(ctx, service_name, psd)) {
4564 DEBUG(0, ("process_usershare_file: Failed to set share "
4565 "security for user share %s\n",
4567 lp_remove_service(iService);
4568 talloc_destroy(ctx);
4572 talloc_destroy(ctx);
4574 /* If from a template it may be marked invalid. */
4575 ServicePtrs[iService]->valid = True;
4577 /* Set the service as a valid usershare. */
4578 ServicePtrs[iService]->usershare = USERSHARE_VALID;
4580 /* And note when it was loaded. */
4581 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
4582 string_set(&ServicePtrs[iService]->szPath, sharepath);
4583 string_set(&ServicePtrs[iService]->comment, comment);
4588 /***************************************************************************
4589 Checks if a usershare entry has been modified since last load.
4590 ***************************************************************************/
4592 static BOOL usershare_exists(int iService, time_t *last_mod)
4594 SMB_STRUCT_STAT lsbuf;
4595 const char *usersharepath = Globals.szUsersharePath;
4598 pstrcpy(fname, usersharepath);
4599 pstrcat(fname, "/");
4600 pstrcat(fname, ServicePtrs[iService]->szService);
4602 if (sys_lstat(fname, &lsbuf) != 0) {
4606 if (!S_ISREG(lsbuf.st_mode)) {
4610 *last_mod = lsbuf.st_mtime;
4614 /***************************************************************************
4615 Load a usershare service by name. Returns a valid servicenumber or -1.
4616 ***************************************************************************/
4618 int load_usershare_service(const char *servicename)
4620 SMB_STRUCT_STAT sbuf;
4621 const char *usersharepath = Globals.szUsersharePath;
4622 int max_user_shares = Globals.iUsershareMaxShares;
4623 int snum_template = -1;
4625 if (*usersharepath == 0 || max_user_shares == 0) {
4629 if (sys_stat(usersharepath, &sbuf) != 0) {
4630 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
4631 usersharepath, strerror(errno) ));
4635 if (!S_ISDIR(sbuf.st_mode)) {
4636 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
4642 * This directory must be owned by root, and have the 't' bit set.
4643 * It also must not be writable by "other".
4647 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
4649 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
4651 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
4652 "or does not have the sticky bit 't' set or is writable by anyone.\n",
4657 /* Ensure the template share exists if it's set. */
4658 if (Globals.szUsershareTemplateShare[0]) {
4659 /* We can't use lp_servicenumber here as we are recommending that
4660 template shares have -valid=False set. */
4661 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
4662 if (ServicePtrs[snum_template]->szService &&
4663 strequal(ServicePtrs[snum_template]->szService,
4664 Globals.szUsershareTemplateShare)) {
4669 if (snum_template == -1) {
4670 DEBUG(0,("load_usershare_service: usershare template share %s "
4671 "does not exist.\n",
4672 Globals.szUsershareTemplateShare ));
4677 return process_usershare_file(usersharepath, servicename, snum_template);
4680 /***************************************************************************
4681 Load all user defined shares from the user share directory.
4682 We only do this if we're enumerating the share list.
4683 This is the function that can delete usershares that have
4685 ***************************************************************************/
4687 int load_usershare_shares(void)
4690 SMB_STRUCT_STAT sbuf;
4691 SMB_STRUCT_DIRENT *de;
4692 int num_usershares = 0;
4693 int max_user_shares = Globals.iUsershareMaxShares;
4694 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
4695 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
4696 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
4698 int snum_template = -1;
4699 const char *usersharepath = Globals.szUsersharePath;
4700 int ret = lp_numservices();
4702 if (max_user_shares == 0 || *usersharepath == '\0') {
4703 return lp_numservices();
4706 if (sys_stat(usersharepath, &sbuf) != 0) {
4707 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
4708 usersharepath, strerror(errno) ));
4713 * This directory must be owned by root, and have the 't' bit set.
4714 * It also must not be writable by "other".
4718 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
4720 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
4722 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
4723 "or does not have the sticky bit 't' set or is writable by anyone.\n",
4728 /* Ensure the template share exists if it's set. */
4729 if (Globals.szUsershareTemplateShare[0]) {
4730 /* We can't use lp_servicenumber here as we are recommending that
4731 template shares have -valid=False set. */
4732 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
4733 if (ServicePtrs[snum_template]->szService &&
4734 strequal(ServicePtrs[snum_template]->szService,
4735 Globals.szUsershareTemplateShare)) {
4740 if (snum_template == -1) {
4741 DEBUG(0,("load_usershare_shares: usershare template share %s "
4742 "does not exist.\n",
4743 Globals.szUsershareTemplateShare ));
4748 /* Mark all existing usershares as pending delete. */
4749 for (iService = iNumServices - 1; iService >= 0; iService--) {
4750 if (VALID(iService) && ServicePtrs[iService]->usershare) {
4751 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
4755 dp = sys_opendir(usersharepath);
4757 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
4758 usersharepath, strerror(errno) ));
4762 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
4763 (de = sys_readdir(dp));
4764 num_dir_entries++ ) {
4766 const char *n = de->d_name;
4768 /* Ignore . and .. */
4770 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
4776 /* Temporary file used when creating a share. */
4777 num_tmp_dir_entries++;
4780 /* Allow 20% tmp entries. */
4781 if (num_tmp_dir_entries > allowed_tmp_entries) {
4782 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
4783 "in directory %s\n",
4784 num_tmp_dir_entries, usersharepath));
4788 r = process_usershare_file(usersharepath, n, snum_template);
4790 /* Update the services count. */
4792 if (num_usershares >= max_user_shares) {
4793 DEBUG(0,("load_usershare_shares: max user shares reached "
4794 "on file %s in directory %s\n",
4795 n, usersharepath ));
4798 } else if (r == -1) {
4799 num_bad_dir_entries++;
4802 /* Allow 20% bad entries. */
4803 if (num_bad_dir_entries > allowed_bad_entries) {
4804 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
4805 "in directory %s\n",
4806 num_bad_dir_entries, usersharepath));
4810 /* Allow 20% bad entries. */
4811 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
4812 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
4813 "in directory %s\n",
4814 num_dir_entries, usersharepath));
4821 /* Sweep through and delete any non-refreshed usershares that are
4822 not currently in use. */
4823 for (iService = iNumServices - 1; iService >= 0; iService--) {
4824 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
4825 if (conn_snum_used(iService)) {
4828 /* Remove from the share ACL db. */
4829 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
4830 lp_servicename(iService) ));
4831 delete_share_security(iService);
4832 free_service_byindex(iService);
4836 return lp_numservices();
4839 /***************************************************************************
4840 Load the services array from the services file. Return True on success,
4842 ***************************************************************************/
4844 BOOL lp_load(const char *pszFname,
4848 BOOL initialize_globals)
4852 param_opt_struct *data, *pdata;
4854 pstrcpy(n2, pszFname);
4856 standard_sub_basic( get_current_username(), n2,sizeof(n2) );
4858 add_to_file_list(pszFname, n2);
4862 DEBUG(3, ("lp_load: refreshing parameters\n"));
4864 bInGlobalSection = True;
4865 bGlobalOnly = global_only;
4867 init_globals(! initialize_globals);
4870 if (save_defaults) {
4875 if (Globals.param_opt != NULL) {
4876 data = Globals.param_opt;
4878 string_free(&data->key);
4879 string_free(&data->value);
4880 str_list_free(&data->list);
4885 Globals.param_opt = NULL;
4888 /* We get sections first, so have to start 'behind' to make up */
4890 bRetval = pm_process(n2, do_section, do_parameter);
4892 /* finish up the last section */
4893 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
4895 if (iServiceIndex >= 0)
4896 bRetval = service_ok(iServiceIndex);
4898 lp_add_auto_services(lp_auto_services());
4901 /* When 'restrict anonymous = 2' guest connections to ipc$
4903 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
4904 if ( lp_enable_asu_support() )
4905 lp_add_ipc("ADMIN$", False);
4909 set_default_server_announce_type();
4910 set_allowed_client_auth();
4914 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
4915 /* if bWINSsupport is true and we are in the client */
4916 if (in_client && Globals.bWINSsupport) {
4917 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
4925 /***************************************************************************
4926 Reset the max number of services.
4927 ***************************************************************************/
4929 void lp_resetnumservices(void)
4934 /***************************************************************************
4935 Return the max number of services.
4936 ***************************************************************************/
4938 int lp_numservices(void)
4940 return (iNumServices);
4943 /***************************************************************************
4944 Display the contents of the services array in human-readable form.
4945 ***************************************************************************/
4947 void lp_dump(FILE *f, BOOL show_defaults, int maxtoprint)
4952 defaults_saved = False;
4956 dump_a_service(&sDefault, f);
4958 for (iService = 0; iService < maxtoprint; iService++) {
4960 lp_dump_one(f, show_defaults, iService);
4964 /***************************************************************************
4965 Display the contents of one service in human-readable form.
4966 ***************************************************************************/
4968 void lp_dump_one(FILE * f, BOOL show_defaults, int snum)
4971 if (ServicePtrs[snum]->szService[0] == '\0')
4973 dump_a_service(ServicePtrs[snum], f);
4977 /***************************************************************************
4978 Return the number of the service with the given name, or -1 if it doesn't
4979 exist. Note that this is a DIFFERENT ANIMAL from the internal function
4980 getservicebyname()! This works ONLY if all services have been loaded, and
4981 does not copy the found service.
4982 ***************************************************************************/
4984 int lp_servicenumber(const char *pszServiceName)
4987 fstring serviceName;
4989 if (!pszServiceName) {
4990 return GLOBAL_SECTION_SNUM;
4993 for (iService = iNumServices - 1; iService >= 0; iService--) {
4994 if (VALID(iService) && ServicePtrs[iService]->szService) {
4996 * The substitution here is used to support %U is
4999 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5000 standard_sub_basic(get_current_username(), serviceName,sizeof(serviceName));
5001 if (strequal(serviceName, pszServiceName)) {
5007 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5010 if (!usershare_exists(iService, &last_mod)) {
5011 /* Remove the share security tdb entry for it. */
5012 delete_share_security(iService);
5013 /* Remove it from the array. */
5014 free_service_byindex(iService);
5015 /* Doesn't exist anymore. */
5016 return GLOBAL_SECTION_SNUM;
5019 /* Has it been modified ? If so delete and reload. */
5020 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5021 /* Remove it from the array. */
5022 free_service_byindex(iService);
5023 /* and now reload it. */
5024 iService = load_usershare_service(pszServiceName);
5029 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5030 return GLOBAL_SECTION_SNUM;
5036 /*******************************************************************
5037 A useful volume label function.
5038 ********************************************************************/
5040 char *volume_label(int snum)
5042 char *ret = lp_volume(snum);
5044 return lp_servicename(snum);
5049 /*******************************************************************
5050 Set the server type we will announce as via nmbd.
5051 ********************************************************************/
5053 static void set_default_server_announce_type(void)
5055 default_server_announce = 0;
5056 default_server_announce |= SV_TYPE_WORKSTATION;
5057 default_server_announce |= SV_TYPE_SERVER;
5058 default_server_announce |= SV_TYPE_SERVER_UNIX;
5060 /* note that the flag should be set only if we have a
5061 printer service but nmbd doesn't actually load the
5062 services so we can't tell --jerry */
5064 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5066 switch (lp_announce_as()) {
5067 case ANNOUNCE_AS_NT_SERVER:
5068 default_server_announce |= SV_TYPE_SERVER_NT;
5069 /* fall through... */
5070 case ANNOUNCE_AS_NT_WORKSTATION:
5071 default_server_announce |= SV_TYPE_NT;
5073 case ANNOUNCE_AS_WIN95:
5074 default_server_announce |= SV_TYPE_WIN95_PLUS;
5076 case ANNOUNCE_AS_WFW:
5077 default_server_announce |= SV_TYPE_WFW;
5083 switch (lp_server_role()) {
5084 case ROLE_DOMAIN_MEMBER:
5085 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5087 case ROLE_DOMAIN_PDC:
5088 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5090 case ROLE_DOMAIN_BDC:
5091 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5093 case ROLE_STANDALONE:
5097 if (lp_time_server())
5098 default_server_announce |= SV_TYPE_TIME_SOURCE;
5100 if (lp_host_msdfs())
5101 default_server_announce |= SV_TYPE_DFS_SERVER;
5104 /***********************************************************
5105 returns role of Samba server
5106 ************************************************************/
5108 int lp_server_role(void)
5113 /***********************************************************
5114 If we are PDC then prefer us as DMB
5115 ************************************************************/
5117 BOOL lp_domain_master(void)
5119 if (Globals.bDomainMaster == Auto)
5120 return (lp_server_role() == ROLE_DOMAIN_PDC);
5122 return Globals.bDomainMaster;
5125 /***********************************************************
5126 If we are DMB then prefer us as LMB
5127 ************************************************************/
5129 BOOL lp_preferred_master(void)
5131 if (Globals.bPreferredMaster == Auto)
5132 return (lp_local_master() && lp_domain_master());
5134 return Globals.bPreferredMaster;
5137 /*******************************************************************
5139 ********************************************************************/
5141 void lp_remove_service(int snum)
5143 ServicePtrs[snum]->valid = False;
5144 invalid_services[num_invalid_services++] = snum;
5147 /*******************************************************************
5149 ********************************************************************/
5151 void lp_copy_service(int snum, const char *new_name)
5153 do_section(new_name);
5155 snum = lp_servicenumber(new_name);
5157 lp_do_parameter(snum, "copy", lp_servicename(snum));
5162 /*******************************************************************
5163 Get the default server type we will announce as via nmbd.
5164 ********************************************************************/
5166 int lp_default_server_announce(void)
5168 return default_server_announce;
5171 /*******************************************************************
5172 Split the announce version into major and minor numbers.
5173 ********************************************************************/
5175 int lp_major_announce_version(void)
5177 static BOOL got_major = False;
5178 static int major_version = DEFAULT_MAJOR_VERSION;
5183 return major_version;
5186 if ((vers = lp_announce_version()) == NULL)
5187 return major_version;
5189 if ((p = strchr_m(vers, '.')) == 0)
5190 return major_version;
5193 major_version = atoi(vers);
5194 return major_version;
5197 int lp_minor_announce_version(void)
5199 static BOOL got_minor = False;
5200 static int minor_version = DEFAULT_MINOR_VERSION;
5205 return minor_version;
5208 if ((vers = lp_announce_version()) == NULL)
5209 return minor_version;
5211 if ((p = strchr_m(vers, '.')) == 0)
5212 return minor_version;
5215 minor_version = atoi(p);
5216 return minor_version;
5219 /***********************************************************
5220 Set the global name resolution order (used in smbclient).
5221 ************************************************************/
5223 void lp_set_name_resolve_order(const char *new_order)
5225 string_set(&Globals.szNameResolveOrder, new_order);
5228 const char *lp_printername(int snum)
5230 const char *ret = _lp_printername(snum);
5231 if (ret == NULL || (ret != NULL && *ret == '\0'))
5232 ret = lp_const_servicename(snum);
5238 /***********************************************************
5239 Allow daemons such as winbindd to fix their logfile name.
5240 ************************************************************/
5242 void lp_set_logfile(const char *name)
5244 string_set(&Globals.szLogFile, name);
5245 pstrcpy(debugf, name);
5248 /*******************************************************************
5249 Return the max print jobs per queue.
5250 ********************************************************************/
5252 int lp_maxprintjobs(int snum)
5254 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
5255 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
5256 maxjobs = PRINT_MAX_JOBID - 1;
5261 const char *lp_printcapname(void)
5263 if ((Globals.szPrintcapname != NULL) &&
5264 (Globals.szPrintcapname[0] != '\0'))
5265 return Globals.szPrintcapname;
5267 if (sDefault.iPrinting == PRINT_CUPS) {
5275 if (sDefault.iPrinting == PRINT_BSD)
5276 return "/etc/printcap";
5278 return PRINTCAP_NAME;
5281 /*******************************************************************
5282 Ensure we don't use sendfile if server smb signing is active.
5283 ********************************************************************/
5285 static uint32 spoolss_state;
5287 BOOL lp_disable_spoolss( void )
5289 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
5290 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
5292 return spoolss_state == SVCCTL_STOPPED ? True : False;
5295 void lp_set_spoolss_state( uint32 state )
5297 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
5299 spoolss_state = state;
5302 uint32 lp_get_spoolss_state( void )
5304 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
5307 /*******************************************************************
5308 Ensure we don't use sendfile if server smb signing is active.
5309 ********************************************************************/
5311 BOOL lp_use_sendfile(int snum)
5313 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
5314 if (Protocol < PROTOCOL_NT1) {
5317 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
5320 /*******************************************************************
5321 Turn off sendfile if we find the underlying OS doesn't support it.
5322 ********************************************************************/
5324 void set_use_sendfile(int snum, BOOL val)
5326 if (LP_SNUM_OK(snum))
5327 ServicePtrs[snum]->bUseSendfile = val;
5329 sDefault.bUseSendfile = val;
5332 /*******************************************************************
5333 Turn off storing DOS attributes if this share doesn't support it.
5334 ********************************************************************/
5336 void set_store_dos_attributes(int snum, BOOL val)
5338 if (!LP_SNUM_OK(snum))
5340 ServicePtrs[(snum)]->bStoreDosAttributes = val;
5343 void lp_set_mangling_method(const char *new_method)
5345 string_set(&Globals.szManglingMethod, new_method);
5348 /*******************************************************************
5349 Global state for POSIX pathname processing.
5350 ********************************************************************/
5352 static BOOL posix_pathnames;
5354 BOOL lp_posix_pathnames(void)
5356 return posix_pathnames;
5359 /*******************************************************************
5360 Change everything needed to ensure POSIX pathname processing (currently
5362 ********************************************************************/
5364 void lp_set_posix_pathnames(void)
5366 posix_pathnames = True;