2 Unix SMB/CIFS implementation.
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Jeremy Allison 1992-2007.
6 Copyright (C) Volker Lendecke 2005
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 #include "system/filesys.h"
24 #include "lib/util/server_id.h"
26 #include "smbd/smbd.h"
27 #include "smbd/globals.h"
28 #include "smbd/scavenger.h"
29 #include "fake_file.h"
30 #include "transfer_file.h"
33 #include "../librpc/gen_ndr/open_files.h"
34 #include "lib/util/tevent_ntstatus.h"
36 /****************************************************************************
37 Run a file if it is a magic script.
38 ****************************************************************************/
40 static NTSTATUS check_magic(struct files_struct *fsp)
43 const struct loadparm_substitution *lp_sub =
44 loadparm_s3_global_substitution();
45 const char *magic_output = NULL;
48 TALLOC_CTX *ctx = NULL;
50 struct connection_struct *conn = fsp->conn;
54 if (!*lp_magic_script(talloc_tos(), lp_sub, SNUM(conn))) {
58 DEBUG(5,("checking magic for %s\n", fsp_str_dbg(fsp)));
60 ctx = talloc_stackframe();
62 fname = fsp->fsp_name->base_name;
64 if (!(p = strrchr_m(fname,'/'))) {
70 if (!strequal(lp_magic_script(talloc_tos(), lp_sub, SNUM(conn)),p)) {
71 status = NT_STATUS_OK;
75 if (*lp_magic_output(talloc_tos(), lp_sub, SNUM(conn))) {
76 magic_output = lp_magic_output(talloc_tos(), lp_sub, SNUM(conn));
78 magic_output = talloc_asprintf(ctx,
83 status = NT_STATUS_NO_MEMORY;
87 /* Ensure we don't depend on user's PATH. */
88 p = talloc_asprintf(ctx, "./%s", fname);
90 status = NT_STATUS_NO_MEMORY;
94 if (chmod(fname, 0755) == -1) {
95 status = map_nt_error_from_unix(errno);
98 ret = smbrun(p, &tmp_fd, NULL);
99 DEBUG(3,("Invoking magic command %s gave %d\n",
103 if (ret != 0 || tmp_fd == -1) {
107 status = NT_STATUS_UNSUCCESSFUL;
110 outfd = open(magic_output, O_CREAT|O_EXCL|O_RDWR, 0600);
114 status = map_nt_error_from_unix(err);
118 if (sys_fstat(tmp_fd, &st, false) == -1) {
122 status = map_nt_error_from_unix(err);
126 if (transfer_file(tmp_fd,outfd,(off_t)st.st_ex_size) == (off_t)-1) {
130 status = map_nt_error_from_unix(err);
134 if (close(outfd) == -1) {
135 status = map_nt_error_from_unix(errno);
139 status = NT_STATUS_OK;
146 /****************************************************************************
148 ****************************************************************************/
150 NTSTATUS delete_all_streams(connection_struct *conn,
151 const struct smb_filename *smb_fname)
153 struct stream_struct *stream_info = NULL;
155 unsigned int num_streams = 0;
156 TALLOC_CTX *frame = talloc_stackframe();
159 status = vfs_streaminfo(conn, NULL, smb_fname, talloc_tos(),
160 &num_streams, &stream_info);
162 if (NT_STATUS_EQUAL(status, NT_STATUS_NOT_IMPLEMENTED)) {
163 DEBUG(10, ("no streams around\n"));
168 if (!NT_STATUS_IS_OK(status)) {
169 DEBUG(10, ("vfs_streaminfo failed: %s\n",
174 DEBUG(10, ("delete_all_streams found %d streams\n",
177 if (num_streams == 0) {
182 for (i=0; i<num_streams; i++) {
184 struct smb_filename *smb_fname_stream;
186 if (strequal(stream_info[i].name, "::$DATA")) {
190 smb_fname_stream = synthetic_smb_fname(talloc_tos(),
191 smb_fname->base_name,
196 ~SMB_FILENAME_POSIX_PATH));
198 if (smb_fname_stream == NULL) {
199 DEBUG(0, ("talloc_aprintf failed\n"));
200 status = NT_STATUS_NO_MEMORY;
204 res = SMB_VFS_UNLINKAT(conn,
210 status = map_nt_error_from_unix(errno);
211 DEBUG(10, ("Could not delete stream %s: %s\n",
212 smb_fname_str_dbg(smb_fname_stream),
214 TALLOC_FREE(smb_fname_stream);
217 TALLOC_FREE(smb_fname_stream);
225 struct has_other_nonposix_opens_state {
230 static bool has_other_nonposix_opens_fn(
231 struct share_mode_entry *e,
235 struct has_other_nonposix_opens_state *state = private_data;
236 struct files_struct *fsp = state->fsp;
238 if (e->name_hash != fsp->name_hash) {
241 if ((fsp->posix_flags & FSP_POSIX_FLAGS_OPEN) &&
242 (e->flags & SHARE_MODE_FLAG_POSIX_OPEN)) {
245 if (e->share_file_id == fsp->fh->gen_id) {
246 struct server_id self = messaging_server_id(
247 fsp->conn->sconn->msg_ctx);
248 if (server_id_equal(&self, &e->pid)) {
252 if (share_entry_stale_pid(e)) {
256 state->found_another = true;
260 bool has_other_nonposix_opens(struct share_mode_lock *lck,
261 struct files_struct *fsp)
263 struct has_other_nonposix_opens_state state = { .fsp = fsp };
266 ok = share_mode_forall_entries(
267 lck, has_other_nonposix_opens_fn, &state);
271 return state.found_another;
274 /****************************************************************************
275 Deal with removing a share mode on last close.
276 ****************************************************************************/
278 static NTSTATUS close_remove_share_mode(files_struct *fsp,
279 enum file_close_type close_type)
281 connection_struct *conn = fsp->conn;
282 bool delete_file = false;
283 bool changed_user = false;
284 struct share_mode_lock *lck = NULL;
285 NTSTATUS status = NT_STATUS_OK;
288 const struct security_unix_token *del_token = NULL;
289 const struct security_token *del_nt_token = NULL;
290 bool got_tokens = false;
294 /* Ensure any pending write time updates are done. */
295 if (fsp->update_write_time_event) {
296 fsp_flush_write_time_update(fsp);
300 * Lock the share entries, and determine if we should delete
301 * on close. If so delete whilst the lock is still in effect.
302 * This prevents race conditions with the file being created. JRA.
305 lck = get_existing_share_mode_lock(talloc_tos(), fsp->file_id);
307 DEBUG(0, ("close_remove_share_mode: Could not get share mode "
308 "lock for file %s\n", fsp_str_dbg(fsp)));
309 return NT_STATUS_INVALID_PARAMETER;
312 /* Remove the oplock before potentially deleting the file. */
313 if(fsp->oplock_type) {
317 if (fsp->fsp_flags.write_time_forced) {
320 DEBUG(10,("close_remove_share_mode: write time forced "
323 ts = nt_time_to_full_timespec(lck->data->changed_write_time);
324 set_close_write_time(fsp, ts);
325 } else if (fsp->fsp_flags.update_write_time_on_close) {
326 /* Someone had a pending write. */
327 if (is_omit_timespec(&fsp->close_write_time)) {
328 DEBUG(10,("close_remove_share_mode: update to current time "
331 /* Update to current time due to "normal" write. */
332 set_close_write_time(fsp, timespec_current());
334 DEBUG(10,("close_remove_share_mode: write time pending "
337 /* Update to time set on close call. */
338 set_close_write_time(fsp, fsp->close_write_time);
342 if (fsp->fsp_flags.initial_delete_on_close &&
343 !is_delete_on_close_set(lck, fsp->name_hash)) {
344 struct auth_session_info *session_info = NULL;
346 /* Initial delete on close was set and no one else
347 * wrote a real delete on close. */
349 status = smbXsrv_session_info_lookup(conn->sconn->client,
352 if (!NT_STATUS_IS_OK(status)) {
353 return NT_STATUS_INTERNAL_ERROR;
355 fsp->fsp_flags.delete_on_close = true;
356 set_delete_on_close_lck(fsp, lck,
357 session_info->security_token,
358 session_info->unix_token);
361 delete_file = is_delete_on_close_set(lck, fsp->name_hash) &&
362 !has_other_nonposix_opens(lck, fsp);
365 * NT can set delete_on_close of the last open
366 * reference to a file.
369 normal_close = (close_type == NORMAL_CLOSE || close_type == SHUTDOWN_CLOSE);
371 if (!normal_close || !delete_file) {
372 status = NT_STATUS_OK;
377 * Ok, we have to delete the file
380 DEBUG(5,("close_remove_share_mode: file %s. Delete on close was set "
381 "- deleting file.\n", fsp_str_dbg(fsp)));
384 * Don't try to update the write time when we delete the file
386 fsp->fsp_flags.update_write_time_on_close = false;
388 got_tokens = get_delete_on_close_token(lck, fsp->name_hash,
389 &del_nt_token, &del_token);
390 SMB_ASSERT(got_tokens);
392 if (!unix_token_equal(del_token, get_current_utok(conn))) {
393 /* Become the user who requested the delete. */
395 DEBUG(5,("close_remove_share_mode: file %s. "
396 "Change user to uid %u\n",
398 (unsigned int)del_token->uid));
400 if (!push_sec_ctx()) {
401 smb_panic("close_remove_share_mode: file %s. failed to push "
405 set_sec_ctx(del_token->uid,
414 /* We can only delete the file if the name we have is still valid and
415 hasn't been renamed. */
417 tmp_status = vfs_stat_fsp(fsp);
418 if (!NT_STATUS_IS_OK(tmp_status)) {
419 DEBUG(5,("close_remove_share_mode: file %s. Delete on close "
420 "was set and stat failed with error %s\n",
421 fsp_str_dbg(fsp), nt_errstr(tmp_status)));
423 * Don't save the errno here, we ignore this error
428 id = vfs_file_id_from_sbuf(conn, &fsp->fsp_name->st);
430 if (!file_id_equal(&fsp->file_id, &id)) {
431 struct file_id_buf ftmp1, ftmp2;
432 DEBUG(5,("close_remove_share_mode: file %s. Delete on close "
433 "was set and dev and/or inode does not match\n",
435 DEBUG(5,("close_remove_share_mode: file %s. stored file_id %s, "
438 file_id_str_buf(fsp->file_id, &ftmp1),
439 file_id_str_buf(id, &ftmp2)));
441 * Don't save the errno here, we ignore this error
446 if ((conn->fs_capabilities & FILE_NAMED_STREAMS)
447 && !is_ntfs_stream_smb_fname(fsp->fsp_name)) {
449 status = delete_all_streams(conn, fsp->fsp_name);
451 if (!NT_STATUS_IS_OK(status)) {
452 DEBUG(5, ("delete_all_streams failed: %s\n",
458 if (fsp->fsp_flags.kernel_share_modes_taken) {
462 * A file system sharemode could block the unlink;
463 * remove filesystem sharemodes first.
465 ret_flock = SMB_VFS_KERNEL_FLOCK(fsp, 0, 0);
466 if (ret_flock == -1) {
467 DBG_INFO("removing kernel flock for %s failed: %s\n",
468 fsp_str_dbg(fsp), strerror(errno));
471 fsp->fsp_flags.kernel_share_modes_taken = false;
475 ret = SMB_VFS_UNLINKAT(conn,
481 * This call can potentially fail as another smbd may
482 * have had the file open with delete on close set and
483 * deleted it when its last reference to this file
484 * went away. Hence we log this but not at debug level
488 DEBUG(5,("close_remove_share_mode: file %s. Delete on close "
489 "was set and unlink failed with error %s\n",
490 fsp_str_dbg(fsp), strerror(errno)));
492 status = map_nt_error_from_unix(errno);
495 /* As we now have POSIX opens which can unlink
496 * with other open files we may have taken
497 * this code path with more than one share mode
498 * entry - ensure we only delete once by resetting
499 * the delete on close flag. JRA.
502 fsp->fsp_flags.delete_on_close = false;
503 reset_delete_on_close_lck(fsp, lck);
512 if (fsp->fsp_flags.kernel_share_modes_taken) {
515 /* remove filesystem sharemodes */
516 ret_flock = SMB_VFS_KERNEL_FLOCK(fsp, 0, 0);
517 if (ret_flock == -1) {
518 DEBUG(2, ("close_remove_share_mode: removing kernel "
519 "flock for %s failed: %s\n",
520 fsp_str_dbg(fsp), strerror(errno)));
524 if (!del_share_mode(lck, fsp)) {
525 DEBUG(0, ("close_remove_share_mode: Could not delete share "
526 "entry for file %s\n", fsp_str_dbg(fsp)));
533 * Do the notification after we released the share
534 * mode lock. Inside notify_fname we take out another
535 * tdb lock. With ctdb also accessing our databases,
536 * this can lead to deadlocks. Putting this notify
537 * after the TALLOC_FREE(lck) above we avoid locking
538 * two records simultaneously. Notifies are async and
539 * informational only, so calling the notify_fname
540 * without holding the share mode lock should not do
543 notify_fname(conn, NOTIFY_ACTION_REMOVED,
544 FILE_NOTIFY_CHANGE_FILE_NAME,
545 fsp->fsp_name->base_name);
551 void set_close_write_time(struct files_struct *fsp, struct timespec ts)
553 DEBUG(6,("close_write_time: %s" , time_to_asc(convert_timespec_to_time_t(ts))));
555 if (is_omit_timespec(&ts)) {
558 fsp->fsp_flags.write_time_forced = false;
559 fsp->fsp_flags.update_write_time_on_close = true;
560 fsp->close_write_time = ts;
563 static NTSTATUS update_write_time_on_close(struct files_struct *fsp)
565 struct smb_file_time ft;
567 struct share_mode_lock *lck = NULL;
569 init_smb_file_time(&ft);
571 if (!(fsp->fsp_flags.update_write_time_on_close)) {
575 if (is_omit_timespec(&fsp->close_write_time)) {
576 fsp->close_write_time = timespec_current();
579 /* Ensure we have a valid stat struct for the source. */
580 status = vfs_stat_fsp(fsp);
581 if (!NT_STATUS_IS_OK(status)) {
585 if (!VALID_STAT(fsp->fsp_name->st)) {
586 /* if it doesn't seem to be a real file */
591 * get_existing_share_mode_lock() isn't really the right
592 * call here, as we're being called after
593 * close_remove_share_mode() inside close_normal_file()
594 * so it's quite normal to not have an existing share
595 * mode here. However, get_share_mode_lock() doesn't
596 * work because that will create a new share mode if
597 * one doesn't exist - so stick with this call (just
598 * ignore any error we get if the share mode doesn't
602 lck = get_existing_share_mode_lock(talloc_tos(), fsp->file_id);
604 /* On close if we're changing the real file time we
605 * must update it in the open file db too. */
606 (void)set_write_time(fsp->file_id, fsp->close_write_time);
608 /* Close write times overwrite sticky write times
609 so we must replace any sticky write time here. */
610 if (!null_nttime(lck->data->changed_write_time)) {
611 (void)set_sticky_write_time(fsp->file_id, fsp->close_write_time);
616 ft.mtime = fsp->close_write_time;
617 /* As this is a close based update, we are not directly changing the
618 file attributes from a client call, but indirectly from a write. */
619 status = smb_set_file_time(fsp->conn, fsp, fsp->fsp_name, &ft, false);
620 if (!NT_STATUS_IS_OK(status)) {
621 DEBUG(10,("update_write_time_on_close: smb_set_file_time "
622 "on file %s returned %s\n",
631 static NTSTATUS ntstatus_keeperror(NTSTATUS s1, NTSTATUS s2)
633 if (!NT_STATUS_IS_OK(s1)) {
639 static void assert_no_pending_aio(struct files_struct *fsp,
640 enum file_close_type close_type)
642 struct smbXsrv_client *client = global_smbXsrv_client;
643 size_t num_connections_alive;
644 unsigned num_requests = fsp->num_aio_requests;
646 if (num_requests == 0) {
650 num_connections_alive = smbXsrv_client_valid_connections(client);
652 if (close_type == SHUTDOWN_CLOSE && num_connections_alive == 0) {
654 * fsp->aio_requests and the contents (fsp->aio_requests[x])
655 * are both independently owned by fsp and are not in a
656 * talloc heirarchy. This allows the fsp->aio_requests array to
657 * be reallocated independently of the array contents so it can
660 * This means we must ensure order of deallocation
661 * on a SHUTDOWN_CLOSE by deallocating the fsp->aio_requests[x]
662 * contents first, as their destructors access the
663 * fsp->aio_request array. If we don't deallocate them
664 * first, when fsp is deallocated fsp->aio_requests
665 * could have been deallocated *before* its contents
666 * fsp->aio_requests[x], causing a crash.
668 while (fsp->num_aio_requests != 0) {
671 * talloc_free(fsp->aio_requests[0]),
672 * and *NOT* TALLOC_FREE() here, as
673 * TALLOC_FREE(fsp->aio_requests[0])
674 * will overwrite any new contents of
675 * fsp->aio_requests[0] that were
676 * copied into it via the destructor
677 * aio_del_req_from_fsp().
679 * BUG: https://bugzilla.samba.org/show_bug.cgi?id=14515
681 talloc_free(fsp->aio_requests[0]);
686 DBG_ERR("fsp->num_aio_requests=%u\n", num_requests);
687 smb_panic("can not close with outstanding aio requests");
691 /****************************************************************************
694 close_type can be NORMAL_CLOSE=0,SHUTDOWN_CLOSE,ERROR_CLOSE.
695 printing and magic scripts are only run on normal close.
696 delete on close is done on normal and shutdown close.
697 ****************************************************************************/
699 static NTSTATUS close_normal_file(struct smb_request *req, files_struct *fsp,
700 enum file_close_type close_type)
702 NTSTATUS status = NT_STATUS_OK;
704 connection_struct *conn = fsp->conn;
705 bool is_durable = false;
707 assert_no_pending_aio(fsp, close_type);
709 while (talloc_array_length(fsp->blocked_smb1_lock_reqs) != 0) {
710 smbd_smb1_brl_finish_by_req(
711 fsp->blocked_smb1_lock_reqs[0],
712 NT_STATUS_RANGE_NOT_LOCKED);
716 * If we're flushing on a close we can get a write
717 * error here, we must remember this.
720 if (NT_STATUS_IS_OK(status) && fsp->op != NULL) {
721 is_durable = fsp->op->global->durable;
724 if (close_type != SHUTDOWN_CLOSE) {
729 DATA_BLOB new_cookie = data_blob_null;
731 tmp = SMB_VFS_DURABLE_DISCONNECT(fsp,
732 fsp->op->global->backend_cookie,
735 if (NT_STATUS_IS_OK(tmp)) {
740 tv = req->request_time;
742 tv = timeval_current();
744 now = timeval_to_nttime(&tv);
746 data_blob_free(&fsp->op->global->backend_cookie);
747 fsp->op->global->backend_cookie = new_cookie;
749 fsp->op->compat = NULL;
750 tmp = smbXsrv_open_close(fsp->op, now);
751 if (!NT_STATUS_IS_OK(tmp)) {
752 DEBUG(1, ("Failed to update smbXsrv_open "
753 "record when disconnecting durable "
754 "handle for file %s: %s - "
755 "proceeding with normal close\n",
756 fsp_str_dbg(fsp), nt_errstr(tmp)));
758 scavenger_schedule_disconnected(fsp);
760 DEBUG(1, ("Failed to disconnect durable handle for "
761 "file %s: %s - proceeding with normal "
762 "close\n", fsp_str_dbg(fsp), nt_errstr(tmp)));
764 if (!NT_STATUS_IS_OK(tmp)) {
771 * This is the case where we successfully disconnected
772 * a durable handle and closed the underlying file.
773 * In all other cases, we proceed with a genuine close.
775 DEBUG(10, ("%s disconnected durable handle for file %s\n",
776 conn->session_info->unix_info->unix_name,
782 if (fsp->op != NULL) {
784 * Make sure the handle is not marked as durable anymore
786 fsp->op->global->durable = false;
789 if (fsp->print_file) {
790 /* FIXME: return spool errors */
791 print_spool_end(fsp, close_type);
796 /* If this is an old DOS or FCB open and we have multiple opens on
797 the same handle we only have one share mode. Ensure we only remove
798 the share mode on the last close. */
800 if (fsp->fh->ref_count == 1) {
801 /* Should we return on error here... ? */
802 tmp = close_remove_share_mode(fsp, close_type);
803 status = ntstatus_keeperror(status, tmp);
806 locking_close_file(fsp, close_type);
809 status = ntstatus_keeperror(status, tmp);
811 /* check for magic scripts */
812 if (close_type == NORMAL_CLOSE) {
813 tmp = check_magic(fsp);
814 status = ntstatus_keeperror(status, tmp);
818 * Ensure pending modtime is set after close.
821 tmp = update_write_time_on_close(fsp);
822 if (NT_STATUS_EQUAL(tmp, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
823 /* Someone renamed the file or a parent directory containing
824 * this file. We can't do anything about this, we don't have
825 * an "update timestamp by fd" call in POSIX. Eat the error. */
830 status = ntstatus_keeperror(status, tmp);
832 DEBUG(2,("%s closed file %s (numopen=%d) %s\n",
833 conn->session_info->unix_info->unix_name, fsp_str_dbg(fsp),
834 conn->num_files_open - 1,
835 nt_errstr(status) ));
840 /****************************************************************************
841 Function used by reply_rmdir to delete an entire directory
842 tree recursively. Return True on ok, False on fail.
843 ****************************************************************************/
845 bool recursive_rmdir(TALLOC_CTX *ctx,
846 connection_struct *conn,
847 struct smb_filename *smb_dname)
849 const char *dname = NULL;
850 char *talloced = NULL;
854 struct smb_Dir *dir_hnd;
857 SMB_ASSERT(!is_ntfs_stream_smb_fname(smb_dname));
859 dir_hnd = OpenDir(talloc_tos(), conn, smb_dname, NULL, 0);
863 while((dname = ReadDirName(dir_hnd, &offset, &st, &talloced))) {
864 struct smb_filename *smb_dname_full = NULL;
865 char *fullname = NULL;
866 bool do_break = true;
868 if (ISDOT(dname) || ISDOTDOT(dname)) {
869 TALLOC_FREE(talloced);
873 if (!is_visible_file(conn,
878 TALLOC_FREE(talloced);
882 /* Construct the full name. */
883 fullname = talloc_asprintf(ctx,
885 smb_dname->base_name,
892 smb_dname_full = synthetic_smb_fname(talloc_tos(),
898 if (smb_dname_full == NULL) {
903 if(SMB_VFS_LSTAT(conn, smb_dname_full) != 0) {
907 if(smb_dname_full->st.st_ex_mode & S_IFDIR) {
908 if(!recursive_rmdir(ctx, conn, smb_dname_full)) {
911 retval = SMB_VFS_UNLINKAT(conn,
919 retval = SMB_VFS_UNLINKAT(conn,
928 /* Successful iteration. */
932 TALLOC_FREE(smb_dname_full);
933 TALLOC_FREE(fullname);
934 TALLOC_FREE(talloced);
940 TALLOC_FREE(dir_hnd);
944 /****************************************************************************
945 The internals of the rmdir code - called elsewhere.
946 ****************************************************************************/
948 static NTSTATUS rmdir_internals(TALLOC_CTX *ctx, files_struct *fsp)
950 connection_struct *conn = fsp->conn;
951 struct smb_filename *smb_dname = fsp->fsp_name;
952 const struct loadparm_substitution *lp_sub =
953 loadparm_s3_global_substitution();
956 SMB_ASSERT(!is_ntfs_stream_smb_fname(smb_dname));
958 /* Might be a symlink. */
959 if(SMB_VFS_LSTAT(conn, smb_dname) != 0) {
960 return map_nt_error_from_unix(errno);
963 if (S_ISLNK(smb_dname->st.st_ex_mode)) {
964 /* Is what it points to a directory ? */
965 if(SMB_VFS_STAT(conn, smb_dname) != 0) {
966 return map_nt_error_from_unix(errno);
968 if (!(S_ISDIR(smb_dname->st.st_ex_mode))) {
969 return NT_STATUS_NOT_A_DIRECTORY;
971 ret = SMB_VFS_UNLINKAT(conn,
976 ret = SMB_VFS_UNLINKAT(conn,
982 notify_fname(conn, NOTIFY_ACTION_REMOVED,
983 FILE_NOTIFY_CHANGE_DIR_NAME,
984 smb_dname->base_name);
988 if(((errno == ENOTEMPTY)||(errno == EEXIST)) && *lp_veto_files(talloc_tos(), lp_sub, SNUM(conn))) {
990 * Check to see if the only thing in this directory are
991 * vetoed files/directories. If so then delete them and
992 * retry. If we fail to delete any of them (and we *don't*
993 * do a recursive delete) then fail the rmdir.
996 const char *dname = NULL;
997 char *talloced = NULL;
999 struct smb_Dir *dir_hnd = OpenDir(talloc_tos(), conn,
1003 if(dir_hnd == NULL) {
1008 while ((dname = ReadDirName(dir_hnd, &dirpos, &st,
1009 &talloced)) != NULL) {
1010 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0)) {
1011 TALLOC_FREE(talloced);
1014 if (!is_visible_file(conn,
1019 TALLOC_FREE(talloced);
1022 if(!IS_VETO_PATH(conn, dname)) {
1023 TALLOC_FREE(dir_hnd);
1024 TALLOC_FREE(talloced);
1028 TALLOC_FREE(talloced);
1031 /* We only have veto files/directories.
1032 * Are we allowed to delete them ? */
1034 if(!lp_delete_veto_files(SNUM(conn))) {
1035 TALLOC_FREE(dir_hnd);
1040 /* Do a recursive delete. */
1041 RewindDir(dir_hnd,&dirpos);
1042 while ((dname = ReadDirName(dir_hnd, &dirpos, &st,
1043 &talloced)) != NULL) {
1044 struct smb_filename *smb_dname_full = NULL;
1045 char *fullname = NULL;
1046 bool do_break = true;
1048 if (ISDOT(dname) || ISDOTDOT(dname)) {
1049 TALLOC_FREE(talloced);
1052 if (!is_visible_file(conn,
1057 TALLOC_FREE(talloced);
1061 fullname = talloc_asprintf(ctx,
1063 smb_dname->base_name,
1071 smb_dname_full = synthetic_smb_fname(talloc_tos(),
1077 if (smb_dname_full == NULL) {
1082 if(SMB_VFS_LSTAT(conn, smb_dname_full) != 0) {
1085 if(smb_dname_full->st.st_ex_mode & S_IFDIR) {
1087 if(!recursive_rmdir(ctx, conn,
1091 retval = SMB_VFS_UNLINKAT(conn,
1099 int retval = SMB_VFS_UNLINKAT(conn,
1108 /* Successful iteration. */
1112 TALLOC_FREE(fullname);
1113 TALLOC_FREE(smb_dname_full);
1114 TALLOC_FREE(talloced);
1118 TALLOC_FREE(dir_hnd);
1119 /* Retry the rmdir */
1120 ret = SMB_VFS_UNLINKAT(conn,
1129 DEBUG(3,("rmdir_internals: couldn't remove directory %s : "
1130 "%s\n", smb_fname_str_dbg(smb_dname),
1132 return map_nt_error_from_unix(errno);
1135 notify_fname(conn, NOTIFY_ACTION_REMOVED,
1136 FILE_NOTIFY_CHANGE_DIR_NAME,
1137 smb_dname->base_name);
1139 return NT_STATUS_OK;
1142 /****************************************************************************
1143 Close a directory opened by an NT SMB call.
1144 ****************************************************************************/
1146 static NTSTATUS close_directory(struct smb_request *req, files_struct *fsp,
1147 enum file_close_type close_type)
1149 struct share_mode_lock *lck = NULL;
1150 bool delete_dir = False;
1151 NTSTATUS status = NT_STATUS_OK;
1152 NTSTATUS status1 = NT_STATUS_OK;
1153 const struct security_token *del_nt_token = NULL;
1154 const struct security_unix_token *del_token = NULL;
1155 NTSTATUS notify_status;
1157 if (fsp->conn->sconn->using_smb2) {
1158 notify_status = NT_STATUS_NOTIFY_CLEANUP;
1160 notify_status = NT_STATUS_OK;
1163 assert_no_pending_aio(fsp, close_type);
1166 * NT can set delete_on_close of the last open
1167 * reference to a directory also.
1170 lck = get_existing_share_mode_lock(talloc_tos(), fsp->file_id);
1172 DEBUG(0, ("close_directory: Could not get share mode lock for "
1173 "%s\n", fsp_str_dbg(fsp)));
1174 file_free(req, fsp);
1175 return NT_STATUS_INVALID_PARAMETER;
1178 if (fsp->fsp_flags.initial_delete_on_close) {
1179 struct auth_session_info *session_info = NULL;
1181 /* Initial delete on close was set - for
1182 * directories we don't care if anyone else
1183 * wrote a real delete on close. */
1185 status = smbXsrv_session_info_lookup(fsp->conn->sconn->client,
1188 if (!NT_STATUS_IS_OK(status)) {
1189 return NT_STATUS_INTERNAL_ERROR;
1192 send_stat_cache_delete_message(fsp->conn->sconn->msg_ctx,
1193 fsp->fsp_name->base_name);
1194 set_delete_on_close_lck(fsp, lck,
1195 session_info->security_token,
1196 session_info->unix_token);
1197 fsp->fsp_flags.delete_on_close = true;
1200 delete_dir = get_delete_on_close_token(
1201 lck, fsp->name_hash, &del_nt_token, &del_token) &&
1202 !has_other_nonposix_opens(lck, fsp);
1204 if ((close_type == NORMAL_CLOSE || close_type == SHUTDOWN_CLOSE) &&
1207 /* Become the user who requested the delete. */
1209 if (!push_sec_ctx()) {
1210 smb_panic("close_directory: failed to push sec_ctx.\n");
1213 set_sec_ctx(del_token->uid,
1219 if (!del_share_mode(lck, fsp)) {
1220 DEBUG(0, ("close_directory: Could not delete share entry for "
1221 "%s\n", fsp_str_dbg(fsp)));
1226 if ((fsp->conn->fs_capabilities & FILE_NAMED_STREAMS)
1227 && !is_ntfs_stream_smb_fname(fsp->fsp_name)) {
1229 status = delete_all_streams(fsp->conn, fsp->fsp_name);
1230 if (!NT_STATUS_IS_OK(status)) {
1231 DEBUG(5, ("delete_all_streams failed: %s\n",
1232 nt_errstr(status)));
1233 file_free(req, fsp);
1238 status = rmdir_internals(talloc_tos(), fsp);
1240 DEBUG(5,("close_directory: %s. Delete on close was set - "
1241 "deleting directory returned %s.\n",
1242 fsp_str_dbg(fsp), nt_errstr(status)));
1244 /* unbecome user. */
1248 * Ensure we remove any change notify requests that would
1249 * now fail as the directory has been deleted.
1252 if (NT_STATUS_IS_OK(status)) {
1253 notify_status = NT_STATUS_DELETE_PENDING;
1256 if (!del_share_mode(lck, fsp)) {
1257 DEBUG(0, ("close_directory: Could not delete share entry for "
1258 "%s\n", fsp_str_dbg(fsp)));
1264 remove_pending_change_notify_requests_by_fid(fsp, notify_status);
1266 status1 = fd_close(fsp);
1268 if (!NT_STATUS_IS_OK(status1)) {
1269 DEBUG(0, ("Could not close dir! fname=%s, fd=%d, err=%d=%s\n",
1270 fsp_str_dbg(fsp), fsp->fh->fd, errno,
1275 * Do the code common to files and directories.
1277 file_free(req, fsp);
1279 if (NT_STATUS_IS_OK(status) && !NT_STATUS_IS_OK(status1)) {
1285 /****************************************************************************
1286 Close a files_struct.
1287 ****************************************************************************/
1289 NTSTATUS close_file(struct smb_request *req, files_struct *fsp,
1290 enum file_close_type close_type)
1293 struct files_struct *base_fsp = fsp->base_fsp;
1295 if (fsp->fsp_flags.is_dirfsp) {
1297 * The typical way to get here is via file_close_[conn|user]()
1298 * and this is taken care of below.
1300 return NT_STATUS_OK;
1303 if (fsp->fsp_flags.is_directory) {
1304 status = close_directory(req, fsp, close_type);
1305 } else if (fsp->fake_file_handle != NULL) {
1306 status = close_fake_file(req, fsp);
1308 status = close_normal_file(req, fsp, close_type);
1311 if ((base_fsp != NULL) && (close_type != SHUTDOWN_CLOSE)) {
1314 * fsp was a stream, the base fsp can't be a stream as well
1316 * For SHUTDOWN_CLOSE this is not possible here, because
1317 * SHUTDOWN_CLOSE only happens from files.c which walks the
1318 * complete list of files. If we mess with more than one fsp
1319 * those loops will become confused.
1322 SMB_ASSERT(base_fsp->base_fsp == NULL);
1323 close_file(req, base_fsp, close_type);
1329 /****************************************************************************
1330 Deal with an (authorized) message to close a file given the share mode
1332 ****************************************************************************/
1334 void msg_close_file(struct messaging_context *msg_ctx,
1337 struct server_id server_id,
1340 files_struct *fsp = NULL;
1342 struct share_mode_entry e;
1343 struct smbd_server_connection *sconn =
1344 talloc_get_type_abort(private_data,
1345 struct smbd_server_connection);
1347 message_to_share_mode_entry(&id, &e, (char *)data->data);
1350 char *sm_str = share_mode_str(NULL, 0, &id, &e);
1352 smb_panic("talloc failed");
1354 DEBUG(10,("msg_close_file: got request to close share mode "
1355 "entry %s\n", sm_str));
1356 TALLOC_FREE(sm_str);
1359 fsp = file_find_dif(sconn, id, e.share_file_id);
1361 DEBUG(10,("msg_close_file: failed to find file.\n"));
1364 close_file(NULL, fsp, NORMAL_CLOSE);