2 Unix SMB/CIFS implementation.
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Jeremy Allison 1992-2007.
6 Copyright (C) Volker Lendecke 2005
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 #include "system/filesys.h"
24 #include "lib/util/server_id.h"
26 #include "smbd/smbd.h"
27 #include "smbd/globals.h"
28 #include "smbd/scavenger.h"
29 #include "fake_file.h"
30 #include "transfer_file.h"
33 #include "../librpc/gen_ndr/open_files.h"
34 #include "lib/util/tevent_ntstatus.h"
36 /****************************************************************************
37 Run a file if it is a magic script.
38 ****************************************************************************/
40 static NTSTATUS check_magic(struct files_struct *fsp)
43 const struct loadparm_substitution *lp_sub =
44 loadparm_s3_global_substitution();
45 const char *magic_output = NULL;
48 TALLOC_CTX *ctx = NULL;
50 struct connection_struct *conn = fsp->conn;
54 if (!*lp_magic_script(talloc_tos(), lp_sub, SNUM(conn))) {
58 DEBUG(5,("checking magic for %s\n", fsp_str_dbg(fsp)));
60 ctx = talloc_stackframe();
62 fname = fsp->fsp_name->base_name;
64 if (!(p = strrchr_m(fname,'/'))) {
70 if (!strequal(lp_magic_script(talloc_tos(), lp_sub, SNUM(conn)),p)) {
71 status = NT_STATUS_OK;
75 if (*lp_magic_output(talloc_tos(), lp_sub, SNUM(conn))) {
76 magic_output = lp_magic_output(talloc_tos(), lp_sub, SNUM(conn));
78 magic_output = talloc_asprintf(ctx,
83 status = NT_STATUS_NO_MEMORY;
87 /* Ensure we don't depend on user's PATH. */
88 p = talloc_asprintf(ctx, "./%s", fname);
90 status = NT_STATUS_NO_MEMORY;
94 if (chmod(fname, 0755) == -1) {
95 status = map_nt_error_from_unix(errno);
98 ret = smbrun(p, &tmp_fd, NULL);
99 DEBUG(3,("Invoking magic command %s gave %d\n",
103 if (ret != 0 || tmp_fd == -1) {
107 status = NT_STATUS_UNSUCCESSFUL;
110 outfd = open(magic_output, O_CREAT|O_EXCL|O_RDWR, 0600);
114 status = map_nt_error_from_unix(err);
118 if (sys_fstat(tmp_fd, &st, false) == -1) {
122 status = map_nt_error_from_unix(err);
126 if (transfer_file(tmp_fd,outfd,(off_t)st.st_ex_size) == (off_t)-1) {
130 status = map_nt_error_from_unix(err);
134 if (close(outfd) == -1) {
135 status = map_nt_error_from_unix(errno);
139 status = NT_STATUS_OK;
146 /****************************************************************************
148 ****************************************************************************/
150 NTSTATUS delete_all_streams(connection_struct *conn,
151 const struct smb_filename *smb_fname)
153 struct stream_struct *stream_info = NULL;
155 unsigned int num_streams = 0;
156 TALLOC_CTX *frame = talloc_stackframe();
159 status = vfs_streaminfo(conn, NULL, smb_fname, talloc_tos(),
160 &num_streams, &stream_info);
162 if (NT_STATUS_EQUAL(status, NT_STATUS_NOT_IMPLEMENTED)) {
163 DEBUG(10, ("no streams around\n"));
168 if (!NT_STATUS_IS_OK(status)) {
169 DEBUG(10, ("vfs_streaminfo failed: %s\n",
174 DEBUG(10, ("delete_all_streams found %d streams\n",
177 if (num_streams == 0) {
182 for (i=0; i<num_streams; i++) {
184 struct smb_filename *smb_fname_stream;
186 if (strequal(stream_info[i].name, "::$DATA")) {
190 smb_fname_stream = synthetic_smb_fname(talloc_tos(),
191 smb_fname->base_name,
195 ~SMB_FILENAME_POSIX_PATH));
197 if (smb_fname_stream == NULL) {
198 DEBUG(0, ("talloc_aprintf failed\n"));
199 status = NT_STATUS_NO_MEMORY;
203 res = SMB_VFS_UNLINKAT(conn,
209 status = map_nt_error_from_unix(errno);
210 DEBUG(10, ("Could not delete stream %s: %s\n",
211 smb_fname_str_dbg(smb_fname_stream),
213 TALLOC_FREE(smb_fname_stream);
216 TALLOC_FREE(smb_fname_stream);
224 struct has_other_nonposix_opens_state {
229 static bool has_other_nonposix_opens_fn(
230 struct share_mode_entry *e,
234 struct has_other_nonposix_opens_state *state = private_data;
235 struct files_struct *fsp = state->fsp;
237 if (e->name_hash != fsp->name_hash) {
240 if ((fsp->posix_flags & FSP_POSIX_FLAGS_OPEN) &&
241 (e->flags & SHARE_MODE_FLAG_POSIX_OPEN)) {
244 if (e->share_file_id == fsp->fh->gen_id) {
245 struct server_id self = messaging_server_id(
246 fsp->conn->sconn->msg_ctx);
247 if (server_id_equal(&self, &e->pid)) {
251 if (share_entry_stale_pid(e)) {
255 state->found_another = true;
259 bool has_other_nonposix_opens(struct share_mode_lock *lck,
260 struct files_struct *fsp)
262 struct has_other_nonposix_opens_state state = { .fsp = fsp };
265 ok = share_mode_forall_entries(
266 lck, has_other_nonposix_opens_fn, &state);
270 return state.found_another;
273 /****************************************************************************
274 Deal with removing a share mode on last close.
275 ****************************************************************************/
277 static NTSTATUS close_remove_share_mode(files_struct *fsp,
278 enum file_close_type close_type)
280 connection_struct *conn = fsp->conn;
281 bool delete_file = false;
282 bool changed_user = false;
283 struct share_mode_lock *lck = NULL;
284 NTSTATUS status = NT_STATUS_OK;
287 const struct security_unix_token *del_token = NULL;
288 const struct security_token *del_nt_token = NULL;
289 bool got_tokens = false;
293 /* Ensure any pending write time updates are done. */
294 if (fsp->update_write_time_event) {
295 fsp_flush_write_time_update(fsp);
299 * Lock the share entries, and determine if we should delete
300 * on close. If so delete whilst the lock is still in effect.
301 * This prevents race conditions with the file being created. JRA.
304 lck = get_existing_share_mode_lock(talloc_tos(), fsp->file_id);
306 DEBUG(0, ("close_remove_share_mode: Could not get share mode "
307 "lock for file %s\n", fsp_str_dbg(fsp)));
308 return NT_STATUS_INVALID_PARAMETER;
311 /* Remove the oplock before potentially deleting the file. */
312 if(fsp->oplock_type) {
316 if (fsp->fsp_flags.write_time_forced) {
319 DEBUG(10,("close_remove_share_mode: write time forced "
322 ts = nt_time_to_full_timespec(lck->data->changed_write_time);
323 set_close_write_time(fsp, ts);
324 } else if (fsp->fsp_flags.update_write_time_on_close) {
325 /* Someone had a pending write. */
326 if (is_omit_timespec(&fsp->close_write_time)) {
327 DEBUG(10,("close_remove_share_mode: update to current time "
330 /* Update to current time due to "normal" write. */
331 set_close_write_time(fsp, timespec_current());
333 DEBUG(10,("close_remove_share_mode: write time pending "
336 /* Update to time set on close call. */
337 set_close_write_time(fsp, fsp->close_write_time);
341 if (fsp->fsp_flags.initial_delete_on_close &&
342 !is_delete_on_close_set(lck, fsp->name_hash)) {
343 bool became_user = False;
345 /* Initial delete on close was set and no one else
346 * wrote a real delete on close. */
348 if (get_current_vuid(conn) != fsp->vuid) {
349 become_user_without_service(conn, fsp->vuid);
352 fsp->fsp_flags.delete_on_close = true;
353 set_delete_on_close_lck(fsp, lck,
354 get_current_nttok(conn),
355 get_current_utok(conn));
357 unbecome_user_without_service();
361 delete_file = is_delete_on_close_set(lck, fsp->name_hash) &&
362 !has_other_nonposix_opens(lck, fsp);
365 * NT can set delete_on_close of the last open
366 * reference to a file.
369 normal_close = (close_type == NORMAL_CLOSE || close_type == SHUTDOWN_CLOSE);
371 if (!normal_close || !delete_file) {
372 status = NT_STATUS_OK;
377 * Ok, we have to delete the file
380 DEBUG(5,("close_remove_share_mode: file %s. Delete on close was set "
381 "- deleting file.\n", fsp_str_dbg(fsp)));
384 * Don't try to update the write time when we delete the file
386 fsp->fsp_flags.update_write_time_on_close = false;
388 got_tokens = get_delete_on_close_token(lck, fsp->name_hash,
389 &del_nt_token, &del_token);
390 SMB_ASSERT(got_tokens);
392 if (!unix_token_equal(del_token, get_current_utok(conn))) {
393 /* Become the user who requested the delete. */
395 DEBUG(5,("close_remove_share_mode: file %s. "
396 "Change user to uid %u\n",
398 (unsigned int)del_token->uid));
400 if (!push_sec_ctx()) {
401 smb_panic("close_remove_share_mode: file %s. failed to push "
405 set_sec_ctx(del_token->uid,
414 /* We can only delete the file if the name we have is still valid and
415 hasn't been renamed. */
417 tmp_status = vfs_stat_fsp(fsp);
418 if (!NT_STATUS_IS_OK(tmp_status)) {
419 DEBUG(5,("close_remove_share_mode: file %s. Delete on close "
420 "was set and stat failed with error %s\n",
421 fsp_str_dbg(fsp), nt_errstr(tmp_status)));
423 * Don't save the errno here, we ignore this error
428 id = vfs_file_id_from_sbuf(conn, &fsp->fsp_name->st);
430 if (!file_id_equal(&fsp->file_id, &id)) {
431 struct file_id_buf ftmp1, ftmp2;
432 DEBUG(5,("close_remove_share_mode: file %s. Delete on close "
433 "was set and dev and/or inode does not match\n",
435 DEBUG(5,("close_remove_share_mode: file %s. stored file_id %s, "
438 file_id_str_buf(fsp->file_id, &ftmp1),
439 file_id_str_buf(id, &ftmp2)));
441 * Don't save the errno here, we ignore this error
446 if ((conn->fs_capabilities & FILE_NAMED_STREAMS)
447 && !is_ntfs_stream_smb_fname(fsp->fsp_name)) {
449 status = delete_all_streams(conn, fsp->fsp_name);
451 if (!NT_STATUS_IS_OK(status)) {
452 DEBUG(5, ("delete_all_streams failed: %s\n",
458 if (fsp->fsp_flags.kernel_share_modes_taken) {
462 * A file system sharemode could block the unlink;
463 * remove filesystem sharemodes first.
465 ret_flock = SMB_VFS_KERNEL_FLOCK(fsp, 0, 0);
466 if (ret_flock == -1) {
467 DBG_INFO("removing kernel flock for %s failed: %s\n",
468 fsp_str_dbg(fsp), strerror(errno));
471 fsp->fsp_flags.kernel_share_modes_taken = false;
475 ret = SMB_VFS_UNLINKAT(conn,
481 * This call can potentially fail as another smbd may
482 * have had the file open with delete on close set and
483 * deleted it when its last reference to this file
484 * went away. Hence we log this but not at debug level
488 DEBUG(5,("close_remove_share_mode: file %s. Delete on close "
489 "was set and unlink failed with error %s\n",
490 fsp_str_dbg(fsp), strerror(errno)));
492 status = map_nt_error_from_unix(errno);
495 /* As we now have POSIX opens which can unlink
496 * with other open files we may have taken
497 * this code path with more than one share mode
498 * entry - ensure we only delete once by resetting
499 * the delete on close flag. JRA.
502 fsp->fsp_flags.delete_on_close = false;
503 reset_delete_on_close_lck(fsp, lck);
512 if (fsp->fsp_flags.kernel_share_modes_taken) {
515 /* remove filesystem sharemodes */
516 ret_flock = SMB_VFS_KERNEL_FLOCK(fsp, 0, 0);
517 if (ret_flock == -1) {
518 DEBUG(2, ("close_remove_share_mode: removing kernel "
519 "flock for %s failed: %s\n",
520 fsp_str_dbg(fsp), strerror(errno)));
524 if (!del_share_mode(lck, fsp)) {
525 DEBUG(0, ("close_remove_share_mode: Could not delete share "
526 "entry for file %s\n", fsp_str_dbg(fsp)));
533 * Do the notification after we released the share
534 * mode lock. Inside notify_fname we take out another
535 * tdb lock. With ctdb also accessing our databases,
536 * this can lead to deadlocks. Putting this notify
537 * after the TALLOC_FREE(lck) above we avoid locking
538 * two records simultaneously. Notifies are async and
539 * informational only, so calling the notify_fname
540 * without holding the share mode lock should not do
543 notify_fname(conn, NOTIFY_ACTION_REMOVED,
544 FILE_NOTIFY_CHANGE_FILE_NAME,
545 fsp->fsp_name->base_name);
551 void set_close_write_time(struct files_struct *fsp, struct timespec ts)
553 DEBUG(6,("close_write_time: %s" , time_to_asc(convert_timespec_to_time_t(ts))));
555 if (is_omit_timespec(&ts)) {
558 fsp->fsp_flags.write_time_forced = false;
559 fsp->fsp_flags.update_write_time_on_close = true;
560 fsp->close_write_time = ts;
563 static NTSTATUS update_write_time_on_close(struct files_struct *fsp)
565 struct smb_file_time ft;
567 struct share_mode_lock *lck = NULL;
569 init_smb_file_time(&ft);
571 if (!(fsp->fsp_flags.update_write_time_on_close)) {
575 if (is_omit_timespec(&fsp->close_write_time)) {
576 fsp->close_write_time = timespec_current();
579 /* Ensure we have a valid stat struct for the source. */
580 status = vfs_stat_fsp(fsp);
581 if (!NT_STATUS_IS_OK(status)) {
585 if (!VALID_STAT(fsp->fsp_name->st)) {
586 /* if it doesn't seem to be a real file */
591 * get_existing_share_mode_lock() isn't really the right
592 * call here, as we're being called after
593 * close_remove_share_mode() inside close_normal_file()
594 * so it's quite normal to not have an existing share
595 * mode here. However, get_share_mode_lock() doesn't
596 * work because that will create a new share mode if
597 * one doesn't exist - so stick with this call (just
598 * ignore any error we get if the share mode doesn't
602 lck = get_existing_share_mode_lock(talloc_tos(), fsp->file_id);
604 /* On close if we're changing the real file time we
605 * must update it in the open file db too. */
606 (void)set_write_time(fsp->file_id, fsp->close_write_time);
608 /* Close write times overwrite sticky write times
609 so we must replace any sticky write time here. */
610 if (!null_nttime(lck->data->changed_write_time)) {
611 (void)set_sticky_write_time(fsp->file_id, fsp->close_write_time);
616 ft.mtime = fsp->close_write_time;
617 /* As this is a close based update, we are not directly changing the
618 file attributes from a client call, but indirectly from a write. */
619 status = smb_set_file_time(fsp->conn, fsp, fsp->fsp_name, &ft, false);
620 if (!NT_STATUS_IS_OK(status)) {
621 DEBUG(10,("update_write_time_on_close: smb_set_file_time "
622 "on file %s returned %s\n",
631 static NTSTATUS ntstatus_keeperror(NTSTATUS s1, NTSTATUS s2)
633 if (!NT_STATUS_IS_OK(s1)) {
639 static void assert_no_pending_aio(struct files_struct *fsp,
640 enum file_close_type close_type)
642 unsigned num_requests = fsp->num_aio_requests;
644 if (num_requests == 0) {
648 DBG_ERR("fsp->num_aio_requests=%u\n", num_requests);
649 smb_panic("can not close with outstanding aio requests");
653 /****************************************************************************
656 close_type can be NORMAL_CLOSE=0,SHUTDOWN_CLOSE,ERROR_CLOSE.
657 printing and magic scripts are only run on normal close.
658 delete on close is done on normal and shutdown close.
659 ****************************************************************************/
661 static NTSTATUS close_normal_file(struct smb_request *req, files_struct *fsp,
662 enum file_close_type close_type)
664 NTSTATUS status = NT_STATUS_OK;
666 connection_struct *conn = fsp->conn;
667 bool is_durable = false;
669 assert_no_pending_aio(fsp, close_type);
671 while (talloc_array_length(fsp->blocked_smb1_lock_reqs) != 0) {
672 smbd_smb1_brl_finish_by_req(
673 fsp->blocked_smb1_lock_reqs[0],
674 NT_STATUS_RANGE_NOT_LOCKED);
678 * If we're flushing on a close we can get a write
679 * error here, we must remember this.
682 if (NT_STATUS_IS_OK(status) && fsp->op != NULL) {
683 is_durable = fsp->op->global->durable;
686 if (close_type != SHUTDOWN_CLOSE) {
691 DATA_BLOB new_cookie = data_blob_null;
693 tmp = SMB_VFS_DURABLE_DISCONNECT(fsp,
694 fsp->op->global->backend_cookie,
697 if (NT_STATUS_IS_OK(tmp)) {
702 tv = req->request_time;
704 tv = timeval_current();
706 now = timeval_to_nttime(&tv);
708 data_blob_free(&fsp->op->global->backend_cookie);
709 fsp->op->global->backend_cookie = new_cookie;
711 fsp->op->compat = NULL;
712 tmp = smbXsrv_open_close(fsp->op, now);
713 if (!NT_STATUS_IS_OK(tmp)) {
714 DEBUG(1, ("Failed to update smbXsrv_open "
715 "record when disconnecting durable "
716 "handle for file %s: %s - "
717 "proceeding with normal close\n",
718 fsp_str_dbg(fsp), nt_errstr(tmp)));
720 scavenger_schedule_disconnected(fsp);
722 DEBUG(1, ("Failed to disconnect durable handle for "
723 "file %s: %s - proceeding with normal "
724 "close\n", fsp_str_dbg(fsp), nt_errstr(tmp)));
726 if (!NT_STATUS_IS_OK(tmp)) {
733 * This is the case where we successfully disconnected
734 * a durable handle and closed the underlying file.
735 * In all other cases, we proceed with a genuine close.
737 DEBUG(10, ("%s disconnected durable handle for file %s\n",
738 conn->session_info->unix_info->unix_name,
744 if (fsp->op != NULL) {
746 * Make sure the handle is not marked as durable anymore
748 fsp->op->global->durable = false;
751 if (fsp->print_file) {
752 /* FIXME: return spool errors */
753 print_spool_end(fsp, close_type);
758 /* If this is an old DOS or FCB open and we have multiple opens on
759 the same handle we only have one share mode. Ensure we only remove
760 the share mode on the last close. */
762 if (fsp->fh->ref_count == 1) {
763 /* Should we return on error here... ? */
764 tmp = close_remove_share_mode(fsp, close_type);
765 status = ntstatus_keeperror(status, tmp);
768 locking_close_file(fsp, close_type);
771 status = ntstatus_keeperror(status, tmp);
773 /* check for magic scripts */
774 if (close_type == NORMAL_CLOSE) {
775 tmp = check_magic(fsp);
776 status = ntstatus_keeperror(status, tmp);
780 * Ensure pending modtime is set after close.
783 tmp = update_write_time_on_close(fsp);
784 if (NT_STATUS_EQUAL(tmp, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
785 /* Someone renamed the file or a parent directory containing
786 * this file. We can't do anything about this, we don't have
787 * an "update timestamp by fd" call in POSIX. Eat the error. */
792 status = ntstatus_keeperror(status, tmp);
794 DEBUG(2,("%s closed file %s (numopen=%d) %s\n",
795 conn->session_info->unix_info->unix_name, fsp_str_dbg(fsp),
796 conn->num_files_open - 1,
797 nt_errstr(status) ));
802 /****************************************************************************
803 Function used by reply_rmdir to delete an entire directory
804 tree recursively. Return True on ok, False on fail.
805 ****************************************************************************/
807 bool recursive_rmdir(TALLOC_CTX *ctx,
808 connection_struct *conn,
809 struct smb_filename *smb_dname)
811 const char *dname = NULL;
812 char *talloced = NULL;
816 struct smb_Dir *dir_hnd;
819 SMB_ASSERT(!is_ntfs_stream_smb_fname(smb_dname));
821 dir_hnd = OpenDir(talloc_tos(), conn, smb_dname, NULL, 0);
825 while((dname = ReadDirName(dir_hnd, &offset, &st, &talloced))) {
826 struct smb_filename *smb_dname_full = NULL;
827 char *fullname = NULL;
828 bool do_break = true;
830 if (ISDOT(dname) || ISDOTDOT(dname)) {
831 TALLOC_FREE(talloced);
835 if (!is_visible_file(conn,
840 TALLOC_FREE(talloced);
844 /* Construct the full name. */
845 fullname = talloc_asprintf(ctx,
847 smb_dname->base_name,
854 smb_dname_full = synthetic_smb_fname(talloc_tos(),
859 if (smb_dname_full == NULL) {
864 if(SMB_VFS_LSTAT(conn, smb_dname_full) != 0) {
868 if(smb_dname_full->st.st_ex_mode & S_IFDIR) {
869 if(!recursive_rmdir(ctx, conn, smb_dname_full)) {
872 retval = SMB_VFS_UNLINKAT(conn,
880 retval = SMB_VFS_UNLINKAT(conn,
889 /* Successful iteration. */
893 TALLOC_FREE(smb_dname_full);
894 TALLOC_FREE(fullname);
895 TALLOC_FREE(talloced);
901 TALLOC_FREE(dir_hnd);
905 /****************************************************************************
906 The internals of the rmdir code - called elsewhere.
907 ****************************************************************************/
909 static NTSTATUS rmdir_internals(TALLOC_CTX *ctx, files_struct *fsp)
911 connection_struct *conn = fsp->conn;
912 struct smb_filename *smb_dname = fsp->fsp_name;
913 const struct loadparm_substitution *lp_sub =
914 loadparm_s3_global_substitution();
917 SMB_ASSERT(!is_ntfs_stream_smb_fname(smb_dname));
919 /* Might be a symlink. */
920 if(SMB_VFS_LSTAT(conn, smb_dname) != 0) {
921 return map_nt_error_from_unix(errno);
924 if (S_ISLNK(smb_dname->st.st_ex_mode)) {
925 /* Is what it points to a directory ? */
926 if(SMB_VFS_STAT(conn, smb_dname) != 0) {
927 return map_nt_error_from_unix(errno);
929 if (!(S_ISDIR(smb_dname->st.st_ex_mode))) {
930 return NT_STATUS_NOT_A_DIRECTORY;
932 ret = SMB_VFS_UNLINKAT(conn,
937 ret = SMB_VFS_UNLINKAT(conn,
943 notify_fname(conn, NOTIFY_ACTION_REMOVED,
944 FILE_NOTIFY_CHANGE_DIR_NAME,
945 smb_dname->base_name);
949 if(((errno == ENOTEMPTY)||(errno == EEXIST)) && *lp_veto_files(talloc_tos(), lp_sub, SNUM(conn))) {
951 * Check to see if the only thing in this directory are
952 * vetoed files/directories. If so then delete them and
953 * retry. If we fail to delete any of them (and we *don't*
954 * do a recursive delete) then fail the rmdir.
957 const char *dname = NULL;
958 char *talloced = NULL;
960 struct smb_Dir *dir_hnd = OpenDir(talloc_tos(), conn,
964 if(dir_hnd == NULL) {
969 while ((dname = ReadDirName(dir_hnd, &dirpos, &st,
970 &talloced)) != NULL) {
971 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0)) {
972 TALLOC_FREE(talloced);
975 if (!is_visible_file(conn,
980 TALLOC_FREE(talloced);
983 if(!IS_VETO_PATH(conn, dname)) {
984 TALLOC_FREE(dir_hnd);
985 TALLOC_FREE(talloced);
989 TALLOC_FREE(talloced);
992 /* We only have veto files/directories.
993 * Are we allowed to delete them ? */
995 if(!lp_delete_veto_files(SNUM(conn))) {
996 TALLOC_FREE(dir_hnd);
1001 /* Do a recursive delete. */
1002 RewindDir(dir_hnd,&dirpos);
1003 while ((dname = ReadDirName(dir_hnd, &dirpos, &st,
1004 &talloced)) != NULL) {
1005 struct smb_filename *smb_dname_full = NULL;
1006 char *fullname = NULL;
1007 bool do_break = true;
1009 if (ISDOT(dname) || ISDOTDOT(dname)) {
1010 TALLOC_FREE(talloced);
1013 if (!is_visible_file(conn,
1018 TALLOC_FREE(talloced);
1022 fullname = talloc_asprintf(ctx,
1024 smb_dname->base_name,
1032 smb_dname_full = synthetic_smb_fname(talloc_tos(),
1037 if (smb_dname_full == NULL) {
1042 if(SMB_VFS_LSTAT(conn, smb_dname_full) != 0) {
1045 if(smb_dname_full->st.st_ex_mode & S_IFDIR) {
1047 if(!recursive_rmdir(ctx, conn,
1051 retval = SMB_VFS_UNLINKAT(conn,
1059 int retval = SMB_VFS_UNLINKAT(conn,
1068 /* Successful iteration. */
1072 TALLOC_FREE(fullname);
1073 TALLOC_FREE(smb_dname_full);
1074 TALLOC_FREE(talloced);
1078 TALLOC_FREE(dir_hnd);
1079 /* Retry the rmdir */
1080 ret = SMB_VFS_UNLINKAT(conn,
1089 DEBUG(3,("rmdir_internals: couldn't remove directory %s : "
1090 "%s\n", smb_fname_str_dbg(smb_dname),
1092 return map_nt_error_from_unix(errno);
1095 notify_fname(conn, NOTIFY_ACTION_REMOVED,
1096 FILE_NOTIFY_CHANGE_DIR_NAME,
1097 smb_dname->base_name);
1099 return NT_STATUS_OK;
1102 /****************************************************************************
1103 Close a directory opened by an NT SMB call.
1104 ****************************************************************************/
1106 static NTSTATUS close_directory(struct smb_request *req, files_struct *fsp,
1107 enum file_close_type close_type)
1109 struct share_mode_lock *lck = NULL;
1110 bool delete_dir = False;
1111 NTSTATUS status = NT_STATUS_OK;
1112 NTSTATUS status1 = NT_STATUS_OK;
1113 const struct security_token *del_nt_token = NULL;
1114 const struct security_unix_token *del_token = NULL;
1115 NTSTATUS notify_status;
1117 if (fsp->conn->sconn->using_smb2) {
1118 notify_status = STATUS_NOTIFY_CLEANUP;
1120 notify_status = NT_STATUS_OK;
1123 assert_no_pending_aio(fsp, close_type);
1126 * NT can set delete_on_close of the last open
1127 * reference to a directory also.
1130 lck = get_existing_share_mode_lock(talloc_tos(), fsp->file_id);
1132 DEBUG(0, ("close_directory: Could not get share mode lock for "
1133 "%s\n", fsp_str_dbg(fsp)));
1134 file_free(req, fsp);
1135 return NT_STATUS_INVALID_PARAMETER;
1138 if (fsp->fsp_flags.initial_delete_on_close) {
1139 bool became_user = False;
1141 /* Initial delete on close was set - for
1142 * directories we don't care if anyone else
1143 * wrote a real delete on close. */
1145 if (get_current_vuid(fsp->conn) != fsp->vuid) {
1146 become_user_without_service(fsp->conn, fsp->vuid);
1149 send_stat_cache_delete_message(fsp->conn->sconn->msg_ctx,
1150 fsp->fsp_name->base_name);
1151 set_delete_on_close_lck(fsp, lck,
1152 get_current_nttok(fsp->conn),
1153 get_current_utok(fsp->conn));
1154 fsp->fsp_flags.delete_on_close = true;
1156 unbecome_user_without_service();
1160 delete_dir = get_delete_on_close_token(
1161 lck, fsp->name_hash, &del_nt_token, &del_token) &&
1162 !has_other_nonposix_opens(lck, fsp);
1164 if ((close_type == NORMAL_CLOSE || close_type == SHUTDOWN_CLOSE) &&
1167 /* Become the user who requested the delete. */
1169 if (!push_sec_ctx()) {
1170 smb_panic("close_directory: failed to push sec_ctx.\n");
1173 set_sec_ctx(del_token->uid,
1179 if (!del_share_mode(lck, fsp)) {
1180 DEBUG(0, ("close_directory: Could not delete share entry for "
1181 "%s\n", fsp_str_dbg(fsp)));
1186 if ((fsp->conn->fs_capabilities & FILE_NAMED_STREAMS)
1187 && !is_ntfs_stream_smb_fname(fsp->fsp_name)) {
1189 status = delete_all_streams(fsp->conn, fsp->fsp_name);
1190 if (!NT_STATUS_IS_OK(status)) {
1191 DEBUG(5, ("delete_all_streams failed: %s\n",
1192 nt_errstr(status)));
1193 file_free(req, fsp);
1198 status = rmdir_internals(talloc_tos(), fsp);
1200 DEBUG(5,("close_directory: %s. Delete on close was set - "
1201 "deleting directory returned %s.\n",
1202 fsp_str_dbg(fsp), nt_errstr(status)));
1204 /* unbecome user. */
1208 * Ensure we remove any change notify requests that would
1209 * now fail as the directory has been deleted.
1212 if (NT_STATUS_IS_OK(status)) {
1213 notify_status = NT_STATUS_DELETE_PENDING;
1216 if (!del_share_mode(lck, fsp)) {
1217 DEBUG(0, ("close_directory: Could not delete share entry for "
1218 "%s\n", fsp_str_dbg(fsp)));
1224 remove_pending_change_notify_requests_by_fid(fsp, notify_status);
1226 status1 = fd_close(fsp);
1228 if (!NT_STATUS_IS_OK(status1)) {
1229 DEBUG(0, ("Could not close dir! fname=%s, fd=%d, err=%d=%s\n",
1230 fsp_str_dbg(fsp), fsp->fh->fd, errno,
1235 * Do the code common to files and directories.
1237 file_free(req, fsp);
1239 if (NT_STATUS_IS_OK(status) && !NT_STATUS_IS_OK(status1)) {
1245 /****************************************************************************
1246 Close a files_struct.
1247 ****************************************************************************/
1249 NTSTATUS close_file(struct smb_request *req, files_struct *fsp,
1250 enum file_close_type close_type)
1253 struct files_struct *base_fsp = fsp->base_fsp;
1255 if (fsp->fsp_flags.is_directory) {
1256 status = close_directory(req, fsp, close_type);
1257 } else if (fsp->fake_file_handle != NULL) {
1258 status = close_fake_file(req, fsp);
1260 status = close_normal_file(req, fsp, close_type);
1263 if ((base_fsp != NULL) && (close_type != SHUTDOWN_CLOSE)) {
1266 * fsp was a stream, the base fsp can't be a stream as well
1268 * For SHUTDOWN_CLOSE this is not possible here, because
1269 * SHUTDOWN_CLOSE only happens from files.c which walks the
1270 * complete list of files. If we mess with more than one fsp
1271 * those loops will become confused.
1274 SMB_ASSERT(base_fsp->base_fsp == NULL);
1275 close_file(req, base_fsp, close_type);
1281 /****************************************************************************
1282 Deal with an (authorized) message to close a file given the share mode
1284 ****************************************************************************/
1286 void msg_close_file(struct messaging_context *msg_ctx,
1289 struct server_id server_id,
1292 files_struct *fsp = NULL;
1294 struct share_mode_entry e;
1295 struct smbd_server_connection *sconn =
1296 talloc_get_type_abort(private_data,
1297 struct smbd_server_connection);
1299 message_to_share_mode_entry(&id, &e, (char *)data->data);
1302 char *sm_str = share_mode_str(NULL, 0, &id, &e);
1304 smb_panic("talloc failed");
1306 DEBUG(10,("msg_close_file: got request to close share mode "
1307 "entry %s\n", sm_str));
1308 TALLOC_FREE(sm_str);
1311 fsp = file_find_dif(sconn, id, e.share_file_id);
1313 DEBUG(10,("msg_close_file: failed to find file.\n"));
1316 close_file(NULL, fsp, NORMAL_CLOSE);