2 Unix SMB/CIFS implementation.
3 Samba utility functions
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Jeremy Allison 2001-2007
6 Copyright (C) Simo Sorce 2001
7 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
8 Copyright (C) James Peach 2006
10 This program is free software; you can redistribute it and/or modify
11 it under the terms of the GNU General Public License as published by
12 the Free Software Foundation; either version 3 of the License, or
13 (at your option) any later version.
15 This program is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 GNU General Public License for more details.
20 You should have received a copy of the GNU General Public License
21 along with this program. If not, see <http://www.gnu.org/licenses/>.
25 * @brief Small functions that don't fit anywhere else
30 #include "system/passwd.h"
31 #include "system/filesys.h"
32 #include "lib/util/server_id.h"
33 #include "lib/util/memcache.h"
35 #include "ctdbd_conn.h"
36 #include "../lib/util/util_pw.h"
38 #include "lib/messaging/messages_dgm.h"
39 #include "libcli/security/security.h"
41 #include "lib/util/sys_rw.h"
42 #include "lib/util/sys_rw_data.h"
43 #include "lib/util/util_process.h"
44 #include "lib/dbwrap/dbwrap_ctdb.h"
45 #include "lib/gencache.h"
46 #include "lib/util/string_wrappers.h"
48 #ifdef HAVE_SYS_PRCTL_H
49 #include <sys/prctl.h>
52 /* Max allowable allococation - 256mb - 0x10000000 */
53 #define MAX_ALLOC_SIZE (1024*1024*256)
55 static enum protocol_types Protocol = PROTOCOL_COREPLUS;
57 enum protocol_types get_Protocol(void)
62 void set_Protocol(enum protocol_types p)
67 static enum remote_arch_types ra_type = RA_UNKNOWN;
69 void gfree_all( void )
79 /*******************************************************************
80 Check if a file exists - call vfs_file_exist for samba files.
81 ********************************************************************/
83 bool file_exist_stat(const char *fname,SMB_STRUCT_STAT *sbuf,
84 bool fake_dir_create_times)
90 if (sys_stat(fname, sbuf, fake_dir_create_times) != 0)
93 return((S_ISREG(sbuf->st_ex_mode)) || (S_ISFIFO(sbuf->st_ex_mode)));
96 /*******************************************************************
97 Check if a unix domain socket exists - call vfs_file_exist for samba files.
98 ********************************************************************/
100 bool socket_exist(const char *fname)
103 if (sys_stat(fname, &st, false) != 0)
106 return S_ISSOCK(st.st_ex_mode);
109 /*******************************************************************
110 Returns the size in bytes of the named given the stat struct.
111 ********************************************************************/
113 uint64_t get_file_size_stat(const SMB_STRUCT_STAT *sbuf)
115 return sbuf->st_ex_size;
118 /****************************************************************************
119 Check two stats have identical dev and ino fields.
120 ****************************************************************************/
122 bool check_same_dev_ino(const SMB_STRUCT_STAT *sbuf1,
123 const SMB_STRUCT_STAT *sbuf2)
125 return ((sbuf1->st_ex_dev == sbuf2->st_ex_dev) &&
126 (sbuf1->st_ex_ino == sbuf2->st_ex_ino));
129 /****************************************************************************
130 Check if a stat struct is identical for use.
131 ****************************************************************************/
133 bool check_same_stat(const SMB_STRUCT_STAT *sbuf1,
134 const SMB_STRUCT_STAT *sbuf2)
136 return ((sbuf1->st_ex_uid == sbuf2->st_ex_uid) &&
137 (sbuf1->st_ex_gid == sbuf2->st_ex_gid) &&
138 check_same_dev_ino(sbuf1, sbuf2));
141 /*******************************************************************
142 Show a smb message structure.
143 ********************************************************************/
145 void show_msg(const char *buf)
153 DEBUG(5,("size=%d\nsmb_com=0x%x\nsmb_rcls=%d\nsmb_reh=%d\nsmb_err=%d\nsmb_flg=%d\nsmb_flg2=%d\n",
155 (int)CVAL(buf,smb_com),
156 (int)CVAL(buf,smb_rcls),
157 (int)CVAL(buf,smb_reh),
158 (int)SVAL(buf,smb_err),
159 (int)CVAL(buf,smb_flg),
160 (int)SVAL(buf,smb_flg2)));
161 DEBUGADD(5,("smb_tid=%d\nsmb_pid=%d\nsmb_uid=%d\nsmb_mid=%d\n",
162 (int)SVAL(buf,smb_tid),
163 (int)SVAL(buf,smb_pid),
164 (int)SVAL(buf,smb_uid),
165 (int)SVAL(buf,smb_mid)));
166 DEBUGADD(5,("smt_wct=%d\n",(int)CVAL(buf,smb_wct)));
168 for (i=0;i<(int)CVAL(buf,smb_wct);i++)
169 DEBUGADD(5,("smb_vwv[%2d]=%5d (0x%X)\n",i,
170 SVAL(buf,smb_vwv+2*i),SVAL(buf,smb_vwv+2*i)));
172 bcc = (int)SVAL(buf,smb_vwv+2*(CVAL(buf,smb_wct)));
174 DEBUGADD(5,("smb_bcc=%d\n",bcc));
182 dump_data(10, (const uint8_t *)smb_buf_const(buf), bcc);
185 /*******************************************************************
186 Setup only the byte count for a smb message.
187 ********************************************************************/
189 int set_message_bcc(char *buf,int num_bytes)
191 int num_words = CVAL(buf,smb_wct);
192 SSVAL(buf,smb_vwv + num_words*SIZEOFWORD,num_bytes);
193 _smb_setlen(buf,smb_size + num_words*2 + num_bytes - 4);
194 return (smb_size + num_words*2 + num_bytes);
197 /*******************************************************************
198 Add a data blob to the end of a smb_buf, adjusting bcc and smb_len.
199 Return the bytes added
200 ********************************************************************/
202 ssize_t message_push_blob(uint8_t **outbuf, DATA_BLOB blob)
204 size_t newlen = smb_len(*outbuf) + 4 + blob.length;
207 if (!(tmp = talloc_realloc(NULL, *outbuf, uint8_t, newlen))) {
208 DEBUG(0, ("talloc failed\n"));
213 memcpy(tmp + smb_len(tmp) + 4, blob.data, blob.length);
214 set_message_bcc((char *)tmp, smb_buflen(tmp) + blob.length);
218 /*******************************************************************
219 Reduce a file name, removing .. elements.
220 ********************************************************************/
222 static char *dos_clean_name(TALLOC_CTX *ctx, const char *s)
227 DEBUG(3,("dos_clean_name [%s]\n",s));
229 /* remove any double slashes */
230 str = talloc_all_string_sub(ctx, s, "\\\\", "\\");
235 /* Remove leading .\\ characters */
236 if(strncmp(str, ".\\", 2) == 0) {
237 trim_string(str, ".\\", NULL);
239 str = talloc_strdup(ctx, ".\\");
246 while ((p = strstr_m(str,"\\..\\")) != NULL) {
252 if ((p=strrchr_m(str,'\\')) != NULL) {
257 str = talloc_asprintf(ctx,
266 trim_string(str,NULL,"\\..");
267 return talloc_all_string_sub(ctx, str, "\\.\\", "\\");
270 /*******************************************************************
271 Reduce a file name, removing .. elements.
272 ********************************************************************/
274 char *unix_clean_name(TALLOC_CTX *ctx, const char *s)
279 DEBUG(3,("unix_clean_name [%s]\n",s));
281 /* remove any double slashes */
282 str = talloc_all_string_sub(ctx, s, "//","/");
287 /* Remove leading ./ characters */
288 if(strncmp(str, "./", 2) == 0) {
289 trim_string(str, "./", NULL);
291 str = talloc_strdup(ctx, "./");
298 while ((p = strstr_m(str,"/../")) != NULL) {
304 if ((p=strrchr_m(str,'/')) != NULL) {
309 str = talloc_asprintf(ctx,
318 trim_string(str,NULL,"/..");
319 return talloc_all_string_sub(ctx, str, "/./", "/");
322 char *clean_name(TALLOC_CTX *ctx, const char *s)
324 char *str = dos_clean_name(ctx, s);
328 return unix_clean_name(ctx, str);
331 /*******************************************************************
332 Write data into an fd at a given offset. Ignore seek errors.
333 ********************************************************************/
335 ssize_t write_data_at_offset(int fd, const char *buffer, size_t N, off_t pos)
340 if (pos == (off_t)-1) {
341 return write_data(fd, buffer, N);
343 #if defined(HAVE_PWRITE) || defined(HAVE_PRWITE64)
345 ret = sys_pwrite(fd,buffer + total,N - total, pos);
346 if (ret == -1 && errno == ESPIPE) {
347 return write_data(fd, buffer + total,N - total);
350 DEBUG(0,("write_data_at_offset: write failure. Error = %s\n", strerror(errno) ));
359 return (ssize_t)total;
361 /* Use lseek and write_data. */
362 if (lseek(fd, pos, SEEK_SET) == -1) {
363 if (errno != ESPIPE) {
367 return write_data(fd, buffer, N);
371 static int reinit_after_fork_pipe[2] = { -1, -1 };
373 NTSTATUS init_before_fork(void)
377 ret = pipe(reinit_after_fork_pipe);
381 status = map_nt_error_from_unix_common(errno);
383 DEBUG(0, ("Error creating child_pipe: %s\n",
393 * @brief Get a fd to watch for our parent process to exit
395 * Samba parent processes open a pipe that naturally closes when the
396 * parent exits. Child processes can watch the read end of the pipe
397 * for readability: Readability with 0 bytes to read means the parent
398 * has exited and the child process might also want to exit.
401 int parent_watch_fd(void)
403 return reinit_after_fork_pipe[0];
407 * Detect died parent by detecting EOF on the pipe
409 static void reinit_after_fork_pipe_handler(struct tevent_context *ev,
410 struct tevent_fd *fde,
416 if (sys_read(reinit_after_fork_pipe[0], &c, 1) != 1) {
418 * we have reached EOF on stdin, which means the
419 * parent has exited. Shutdown the server
422 (void)kill(getpid(), SIGTERM);
427 NTSTATUS reinit_after_fork(struct messaging_context *msg_ctx,
428 struct tevent_context *ev_ctx,
429 bool parent_longlived)
431 NTSTATUS status = NT_STATUS_OK;
435 * The main process thread should never
436 * allow per_thread_cwd_enable() to be
439 per_thread_cwd_disable();
441 if (reinit_after_fork_pipe[1] != -1) {
442 close(reinit_after_fork_pipe[1]);
443 reinit_after_fork_pipe[1] = -1;
446 /* tdb needs special fork handling */
447 if (tdb_reopen_all(parent_longlived ? 1 : 0) != 0) {
448 DEBUG(0,("tdb_reopen_all failed.\n"));
449 status = NT_STATUS_OPEN_FAILED;
453 if (ev_ctx != NULL) {
455 * The parent can have different private data for the callbacks,
456 * which are gone in the child. Reset the callbacks to be safe.
458 tevent_set_trace_callback(ev_ctx, NULL, NULL);
459 tevent_set_trace_fd_callback(ev_ctx, NULL, NULL);
460 tevent_set_trace_signal_callback(ev_ctx, NULL, NULL);
461 tevent_set_trace_timer_callback(ev_ctx, NULL, NULL);
462 tevent_set_trace_immediate_callback(ev_ctx, NULL, NULL);
463 tevent_set_trace_queue_callback(ev_ctx, NULL, NULL);
464 if (tevent_re_initialise(ev_ctx) != 0) {
465 smb_panic(__location__ ": Failed to re-initialise event context");
469 if (reinit_after_fork_pipe[0] != -1) {
470 struct tevent_fd *fde;
472 fde = tevent_add_fd(ev_ctx, ev_ctx /* TALLOC_CTX */,
473 reinit_after_fork_pipe[0], TEVENT_FD_READ,
474 reinit_after_fork_pipe_handler, NULL);
476 smb_panic(__location__ ": Failed to add reinit_after_fork pipe event");
482 * For clustering, we need to re-init our ctdbd connection after the
485 status = messaging_reinit(msg_ctx);
486 if (!NT_STATUS_IS_OK(status)) {
487 DEBUG(0,("messaging_reinit() failed: %s\n",
491 if (lp_clustering()) {
492 ret = ctdb_async_ctx_reinit(
493 NULL, messaging_tevent_context(msg_ctx));
495 DBG_ERR("db_ctdb_async_ctx_reinit failed: %s\n",
497 return map_nt_error_from_unix(ret);
506 /****************************************************************************
507 (Hopefully) efficient array append.
508 ****************************************************************************/
510 void add_to_large_array(TALLOC_CTX *mem_ctx, size_t element_size,
511 void *element, void *_array, uint32_t *num_elements,
514 void **array = (void **)_array;
516 if (*array_size < 0) {
520 if (*array == NULL) {
521 if (*array_size == 0) {
525 if (*array_size >= MAX_ALLOC_SIZE/element_size) {
529 *array = TALLOC(mem_ctx, element_size * (*array_size));
530 if (*array == NULL) {
535 if (*num_elements == *array_size) {
538 if (*array_size >= MAX_ALLOC_SIZE/element_size) {
542 *array = TALLOC_REALLOC(mem_ctx, *array,
543 element_size * (*array_size));
545 if (*array == NULL) {
550 memcpy((char *)(*array) + element_size*(*num_elements),
551 element, element_size);
561 /****************************************************************************
562 Get my own domain name, or "" if we have none.
563 ****************************************************************************/
565 char *get_mydnsdomname(TALLOC_CTX *ctx)
570 domname = get_mydnsfullname();
575 p = strchr_m(domname, '.');
578 return talloc_strdup(ctx, p);
580 return talloc_strdup(ctx, "");
584 bool process_exists(const struct server_id pid)
586 return serverid_exists(&pid);
589 /*******************************************************************
590 Convert a uid into a user name.
591 ********************************************************************/
593 const char *uidtoname(uid_t uid)
595 TALLOC_CTX *ctx = talloc_tos();
597 struct passwd *pass = NULL;
599 pass = getpwuid_alloc(ctx,uid);
601 name = talloc_strdup(ctx,pass->pw_name);
604 name = talloc_asprintf(ctx,
611 /*******************************************************************
612 Convert a gid into a group name.
613 ********************************************************************/
615 char *gidtoname(gid_t gid)
621 return talloc_strdup(talloc_tos(), grp->gr_name);
624 return talloc_asprintf(talloc_tos(),
630 /*******************************************************************
631 Convert a user name into a uid.
632 ********************************************************************/
634 uid_t nametouid(const char *name)
640 pass = Get_Pwnam_alloc(talloc_tos(), name);
647 u = (uid_t)strtol(name, &p, 0);
648 if ((p != name) && (*p == '\0'))
654 /*******************************************************************
655 Convert a name to a gid_t if possible. Return -1 if not a group.
656 ********************************************************************/
658 gid_t nametogid(const char *name)
664 g = (gid_t)strtol(name, &p, 0);
665 if ((p != name) && (*p == '\0'))
668 grp = getgrnam(name);
674 /*******************************************************************
675 Something really nasty happened - panic !
676 ********************************************************************/
678 static void call_panic_action(const char *why, bool as_root)
680 const struct loadparm_substitution *lp_sub =
681 loadparm_s3_global_substitution();
685 cmd = lp_panic_action(talloc_tos(), lp_sub);
686 if (cmd == NULL || cmd[0] == '\0') {
690 DBG_ERR("Calling panic action [%s]\n", cmd);
692 #if defined(HAVE_PRCTL) && defined(PR_SET_PTRACER)
694 * Make sure all children can attach a debugger.
696 prctl(PR_SET_PTRACER, getpid(), 0, 0, 0);
703 result = system(cmd);
710 DBG_ERR("fork failed in panic action: %s\n",
713 DBG_ERR("action returned status %d\n",
714 WEXITSTATUS(result));
717 void smb_panic_s3(const char *why)
719 call_panic_action(why, false);
723 /*******************************************************************
724 A readdir wrapper which just returns the file name.
725 ********************************************************************/
727 const char *readdirname(DIR *p)
735 ptr = (struct dirent *)readdir(p);
741 return talloc_strdup(talloc_tos(), dname);
744 /*******************************************************************
745 Utility function used to decide if the last component
746 of a path matches a (possibly wildcarded) entry in a namelist.
747 ********************************************************************/
749 bool is_in_path(const char *name, name_compare_entry *namelist, bool case_sensitive)
751 const char *last_component;
753 /* if we have no list it's obviously not in the path */
754 if ((namelist == NULL) || (namelist[0].name == NULL)) {
758 /* Do not reject path components if namelist is set to '.*' */
759 if (ISDOT(name) || ISDOTDOT(name)) {
763 DEBUG(8, ("is_in_path: %s\n", name));
765 /* Get the last component of the unix name. */
766 last_component = strrchr_m(name, '/');
767 if (!last_component) {
768 last_component = name;
770 last_component++; /* Go past '/' */
773 for(; namelist->name != NULL; namelist++) {
774 if(namelist->is_wild) {
775 if (mask_match(last_component, namelist->name, case_sensitive)) {
776 DEBUG(8,("is_in_path: mask match succeeded\n"));
780 if((case_sensitive && (strcmp(last_component, namelist->name) == 0))||
781 (!case_sensitive && (strcasecmp_m(last_component, namelist->name) == 0))) {
782 DEBUG(8,("is_in_path: match succeeded\n"));
787 DEBUG(8,("is_in_path: match not found\n"));
791 /*******************************************************************
792 Strip a '/' separated list into an array of
793 name_compare_enties structures suitable for
794 passing to is_in_path(). We do this for
795 speed so we can pre-parse all the names in the list
796 and don't do it for each call to is_in_path().
797 We also check if the entry contains a wildcard to
798 remove a potentially expensive call to mask_match
800 ********************************************************************/
802 void set_namearray(name_compare_entry **ppname_array, const char *namelist_in)
811 (*ppname_array) = NULL;
813 if((namelist_in == NULL ) || ((namelist_in != NULL) && (*namelist_in == '\0')))
816 namelist = talloc_strdup(talloc_tos(), namelist_in);
817 if (namelist == NULL) {
818 DEBUG(0,("set_namearray: talloc fail\n"));
823 namelist_end = &namelist[strlen(namelist)];
825 /* We need to make two passes over the string. The
826 first to count the number of elements, the second
830 while(nameptr <= namelist_end) {
831 if ( *nameptr == '/' ) {
832 /* cope with multiple (useless) /s) */
837 if ( *nameptr == '\0' )
840 /* find the next '/' or consume remaining */
841 name_end = strchr_m(nameptr, '/');
842 if (name_end == NULL) {
843 /* Point nameptr at the terminating '\0' */
844 nameptr += strlen(nameptr);
846 /* next segment please */
847 nameptr = name_end + 1;
852 if(num_entries == 0) {
853 talloc_free(namelist);
857 if(( (*ppname_array) = SMB_MALLOC_ARRAY(name_compare_entry, num_entries + 1)) == NULL) {
858 DEBUG(0,("set_namearray: malloc fail\n"));
859 talloc_free(namelist);
863 /* Now copy out the names */
866 while(nameptr <= namelist_end) {
867 if ( *nameptr == '/' ) {
868 /* cope with multiple (useless) /s) */
873 if ( *nameptr == '\0' )
876 /* find the next '/' or consume remaining */
877 name_end = strchr_m(nameptr, '/');
878 if (name_end != NULL) {
882 (*ppname_array)[i].is_wild = ms_has_wild(nameptr);
883 if(((*ppname_array)[i].name = SMB_STRDUP(nameptr)) == NULL) {
884 DEBUG(0,("set_namearray: malloc fail (1)\n"));
885 talloc_free(namelist);
889 if (name_end == NULL) {
890 /* Point nameptr at the terminating '\0' */
891 nameptr += strlen(nameptr);
893 /* next segment please */
894 nameptr = name_end + 1;
899 (*ppname_array)[i].name = NULL;
901 talloc_free(namelist);
906 #define DBGC_CLASS DBGC_LOCKING
908 /****************************************************************************
909 Simple routine to query existing file locks. Cruft in NFS and 64->32 bit mapping
910 is dealt with in posix.c
911 Returns True if we have information regarding this lock region (and returns
912 F_UNLCK in *ptype if the region is unlocked). False if the call failed.
913 ****************************************************************************/
915 bool fcntl_getlock(int fd, int op, off_t *poffset, off_t *pcount, int *ptype, pid_t *ppid)
920 DEBUG(8,("fcntl_getlock fd=%d op=%d offset=%.0f count=%.0f type=%d\n",
921 fd,op,(double)*poffset,(double)*pcount,*ptype));
923 lock.l_type = *ptype;
924 lock.l_whence = SEEK_SET;
925 lock.l_start = *poffset;
926 lock.l_len = *pcount;
929 ret = sys_fcntl_ptr(fd,op,&lock);
932 int saved_errno = errno;
933 DEBUG(3,("fcntl_getlock: lock request failed at offset %.0f count %.0f type %d (%s)\n",
934 (double)*poffset,(double)*pcount,*ptype,strerror(errno)));
939 *ptype = lock.l_type;
940 *poffset = lock.l_start;
941 *pcount = lock.l_len;
944 DEBUG(3,("fcntl_getlock: fd %d is returned info %d pid %u\n",
945 fd, (int)lock.l_type, (unsigned int)lock.l_pid));
949 #if defined(HAVE_OFD_LOCKS)
950 int map_process_lock_to_ofd_lock(int op)
970 #else /* HAVE_OFD_LOCKS */
971 int map_process_lock_to_ofd_lock(int op)
975 #endif /* HAVE_OFD_LOCKS */
978 #define DBGC_CLASS DBGC_ALL
980 /*******************************************************************
981 Is the name specified one of my netbios names.
982 Returns true if it is equal, false otherwise.
983 ********************************************************************/
985 static bool nb_name_equal(const char *s1, const char *s2)
987 int cmp = strncasecmp_m(s1, s2, MAX_NETBIOSNAME_LEN-1);
991 bool is_myname(const char *s)
993 const char **aliases = NULL;
996 ok = nb_name_equal(lp_netbios_name(), s);
1001 aliases = lp_netbios_aliases();
1002 if (aliases == NULL) {
1006 while (*aliases != NULL) {
1007 ok = nb_name_equal(*aliases, s);
1015 DBG_DEBUG("is_myname(\"%s\") returns %d\n", s, (int)ok);
1019 /*******************************************************************
1020 we distinguish between 2K and XP by the "Native Lan Manager" string
1021 WinXP => "Windows 2002 5.1"
1022 WinXP 64bit => "Windows XP 5.2"
1023 Win2k => "Windows 2000 5.0"
1024 NT4 => "Windows NT 4.0"
1025 Win9x => "Windows 4.0"
1026 Windows 2003 doesn't set the native lan manager string but
1027 they do set the domain to "Windows 2003 5.2" (probably a bug).
1028 ********************************************************************/
1030 void ra_lanman_string( const char *native_lanman )
1032 if ( strcmp( native_lanman, "Windows 2002 5.1" ) == 0 )
1033 set_remote_arch( RA_WINXP );
1034 else if ( strcmp( native_lanman, "Windows XP 5.2" ) == 0 )
1035 set_remote_arch( RA_WINXP64 );
1036 else if ( strcmp( native_lanman, "Windows Server 2003 5.2" ) == 0 )
1037 set_remote_arch( RA_WIN2K3 );
1040 static const char *remote_arch_strings[] = {
1041 [RA_UNKNOWN] = "UNKNOWN",
1044 [RA_WIN95] = "Win95",
1045 [RA_WINNT] = "WinNT",
1046 [RA_WIN2K] = "Win2K",
1047 [RA_WINXP] = "WinXP",
1048 [RA_WIN2K3] = "Win2K3",
1049 [RA_VISTA] = "Vista",
1050 [RA_SAMBA] = "Samba",
1051 [RA_CIFSFS] = "CIFSFS",
1052 [RA_WINXP64] = "WinXP64",
1056 const char *get_remote_arch_str(void)
1058 if (ra_type >= ARRAY_SIZE(remote_arch_strings)) {
1060 * set_remote_arch() already checks this so ra_type
1061 * should be in the allowed range, but anyway, let's
1062 * do another bound check here.
1064 DBG_ERR("Remote arch info out of sync [%d] missing\n", ra_type);
1065 ra_type = RA_UNKNOWN;
1067 return remote_arch_strings[ra_type];
1070 enum remote_arch_types get_remote_arch_from_str(const char *remote_arch_string)
1074 for (i = 0; i < ARRAY_SIZE(remote_arch_strings); i++) {
1075 if (strcmp(remote_arch_string, remote_arch_strings[i]) == 0) {
1082 /*******************************************************************
1083 Set the horrid remote_arch string based on an enum.
1084 ********************************************************************/
1086 void set_remote_arch(enum remote_arch_types type)
1088 if (ra_type >= ARRAY_SIZE(remote_arch_strings)) {
1090 * This protects against someone adding values to enum
1091 * remote_arch_types without updating
1092 * remote_arch_strings array.
1094 DBG_ERR("Remote arch info out of sync [%d] missing\n", ra_type);
1095 ra_type = RA_UNKNOWN;
1100 DEBUG(10,("set_remote_arch: Client arch is \'%s\'\n",
1101 get_remote_arch_str()));
1104 /*******************************************************************
1105 Get the remote_arch type.
1106 ********************************************************************/
1108 enum remote_arch_types get_remote_arch(void)
1113 #define RA_CACHE_TTL 7*24*3600
1115 static bool remote_arch_cache_key(const struct GUID *client_guid,
1118 struct GUID_txt_buf guid_buf;
1119 const char *guid_string = NULL;
1121 guid_string = GUID_buf_string(client_guid, &guid_buf);
1122 if (guid_string == NULL) {
1126 fstr_sprintf(key, "RA/%s", guid_string);
1130 struct ra_parser_state {
1132 enum remote_arch_types ra;
1135 static void ra_parser(const struct gencache_timeout *t,
1139 struct ra_parser_state *state = (struct ra_parser_state *)priv_data;
1140 const char *ra_str = NULL;
1142 if (gencache_timeout_expired(t)) {
1146 if ((blob.length == 0) || (blob.data[blob.length-1] != '\0')) {
1147 DBG_ERR("Remote arch cache key not a string\n");
1151 ra_str = (const char *)blob.data;
1152 DBG_INFO("Got remote arch [%s] from cache\n", ra_str);
1154 state->ra = get_remote_arch_from_str(ra_str);
1155 state->found = true;
1159 static bool remote_arch_cache_get(const struct GUID *client_guid)
1163 struct ra_parser_state state = (struct ra_parser_state) {
1168 ok = remote_arch_cache_key(client_guid, ra_key);
1173 ok = gencache_parse(ra_key, ra_parser, &state);
1174 if (!ok || !state.found) {
1178 if (state.ra == RA_UNKNOWN) {
1182 set_remote_arch(state.ra);
1186 static bool remote_arch_cache_set(const struct GUID *client_guid)
1190 const char *ra_str = NULL;
1192 if (get_remote_arch() == RA_UNKNOWN) {
1196 ok = remote_arch_cache_key(client_guid, ra_key);
1201 ra_str = get_remote_arch_str();
1202 if (ra_str == NULL) {
1206 ok = gencache_set(ra_key, ra_str, time(NULL) + RA_CACHE_TTL);
1214 bool remote_arch_cache_update(const struct GUID *client_guid)
1218 if (get_remote_arch() == RA_UNKNOWN) {
1221 ok = remote_arch_cache_get(client_guid);
1228 ok = remote_arch_cache_set(client_guid);
1234 bool remote_arch_cache_delete(const struct GUID *client_guid)
1239 ok = remote_arch_cache_key(client_guid, ra_key);
1245 ok = gencache_del(ra_key);
1256 /*****************************************************************************
1257 Provide a checksum on a string
1259 Input: s - the null-terminated character string for which the checksum
1262 Output: The checksum value calculated for s.
1263 *****************************************************************************/
1265 int str_checksum(const char *s)
1271 key = (TDB_DATA) { .dptr = discard_const_p(uint8_t, s),
1272 .dsize = strlen(s) };
1274 return tdb_jenkins_hash(&key);
1277 /*****************************************************************
1278 Zero a memory area then free it. Used to catch bugs faster.
1279 *****************************************************************/
1281 void zero_free(void *p, size_t size)
1287 /*****************************************************************
1288 Set our open file limit to a requested max and return the limit.
1289 *****************************************************************/
1291 int set_maxfiles(int requested_max)
1293 #if (defined(HAVE_GETRLIMIT) && defined(RLIMIT_NOFILE))
1295 int saved_current_limit;
1297 if(getrlimit(RLIMIT_NOFILE, &rlp)) {
1298 DEBUG(0,("set_maxfiles: getrlimit (1) for RLIMIT_NOFILE failed with error %s\n",
1301 return requested_max;
1305 * Set the fd limit to be real_max_open_files + MAX_OPEN_FUDGEFACTOR to
1306 * account for the extra fd we need
1307 * as well as the log files and standard
1308 * handles etc. Save the limit we want to set in case
1309 * we are running on an OS that doesn't support this limit (AIX)
1310 * which always returns RLIM_INFINITY for rlp.rlim_max.
1313 /* Try raising the hard (max) limit to the requested amount. */
1315 #if defined(RLIM_INFINITY)
1316 if (rlp.rlim_max != RLIM_INFINITY) {
1317 int orig_max = rlp.rlim_max;
1319 if ( rlp.rlim_max < requested_max )
1320 rlp.rlim_max = requested_max;
1322 /* This failing is not an error - many systems (Linux) don't
1323 support our default request of 10,000 open files. JRA. */
1325 if(setrlimit(RLIMIT_NOFILE, &rlp)) {
1326 DEBUG(3,("set_maxfiles: setrlimit for RLIMIT_NOFILE for %d max files failed with error %s\n",
1327 (int)rlp.rlim_max, strerror(errno) ));
1329 /* Set failed - restore original value from get. */
1330 rlp.rlim_max = orig_max;
1335 /* Now try setting the soft (current) limit. */
1337 saved_current_limit = rlp.rlim_cur = MIN(requested_max,rlp.rlim_max);
1339 if(setrlimit(RLIMIT_NOFILE, &rlp)) {
1340 DEBUG(0,("set_maxfiles: setrlimit for RLIMIT_NOFILE for %d files failed with error %s\n",
1341 (int)rlp.rlim_cur, strerror(errno) ));
1343 return saved_current_limit;
1346 if(getrlimit(RLIMIT_NOFILE, &rlp)) {
1347 DEBUG(0,("set_maxfiles: getrlimit (2) for RLIMIT_NOFILE failed with error %s\n",
1350 return saved_current_limit;
1353 #if defined(RLIM_INFINITY)
1354 if(rlp.rlim_cur == RLIM_INFINITY)
1355 return saved_current_limit;
1358 if((int)rlp.rlim_cur > saved_current_limit)
1359 return saved_current_limit;
1361 return rlp.rlim_cur;
1362 #else /* !defined(HAVE_GETRLIMIT) || !defined(RLIMIT_NOFILE) */
1364 * No way to know - just guess...
1366 return requested_max;
1370 /*****************************************************************
1371 malloc that aborts with smb_panic on fail or zero size.
1372 *****************************************************************/
1374 void *smb_xmalloc_array(size_t size, unsigned int count)
1378 smb_panic("smb_xmalloc_array: called with zero size");
1380 if (count >= MAX_ALLOC_SIZE/size) {
1381 smb_panic("smb_xmalloc_array: alloc size too large");
1383 if ((p = SMB_MALLOC(size*count)) == NULL) {
1384 DEBUG(0, ("smb_xmalloc_array failed to allocate %lu * %lu bytes\n",
1385 (unsigned long)size, (unsigned long)count));
1386 smb_panic("smb_xmalloc_array: malloc failed");
1391 /*****************************************************************
1392 Get local hostname and cache result.
1393 *****************************************************************/
1395 char *myhostname(void)
1399 ret = get_myname(NULL);
1404 /*****************************************************************
1405 Get local hostname and cache result.
1406 *****************************************************************/
1408 char *myhostname_upper(void)
1412 char *name = get_myname(NULL);
1416 ret = strupper_talloc(NULL, name);
1422 /*******************************************************************
1423 Given a filename - get its directory name
1424 ********************************************************************/
1426 bool parent_dirname(TALLOC_CTX *mem_ctx, const char *dir, char **parent,
1432 p = strrchr_m(dir, '/'); /* Find final '/', if any */
1435 if (!(*parent = talloc_strdup(mem_ctx, "."))) {
1446 *parent = talloc_strndup(mem_ctx, dir, len);
1447 if (*parent == NULL) {
1457 /*******************************************************************
1458 Determine if a pattern contains any Microsoft wildcard characters.
1459 *******************************************************************/
1461 bool ms_has_wild(const char *s)
1463 const char *found = strpbrk(s, "*?<>\"");
1464 return (found != NULL);
1467 bool ms_has_wild_w(const smb_ucs2_t *s)
1470 if (!s) return False;
1471 while ((c = *s++)) {
1473 case UCS2_CHAR('*'):
1474 case UCS2_CHAR('?'):
1475 case UCS2_CHAR('<'):
1476 case UCS2_CHAR('>'):
1477 case UCS2_CHAR('"'):
1484 /*******************************************************************
1485 A wrapper that handles case sensitivity and the special handling
1487 *******************************************************************/
1489 bool mask_match(const char *string, const char *pattern, bool is_case_sensitive)
1491 if (ISDOTDOT(string))
1496 return ms_fnmatch_protocol(pattern, string, Protocol, is_case_sensitive) == 0;
1499 /*******************************************************************
1500 A wrapper that handles a list of patterns and calls mask_match()
1501 on each. Returns True if any of the patterns match.
1502 *******************************************************************/
1504 bool mask_match_list(const char *string, char **list, int listLen, bool is_case_sensitive)
1506 while (listLen-- > 0) {
1507 if (mask_match(string, *list++, is_case_sensitive))
1513 /**********************************************************************
1514 Converts a name to a fully qualified domain name.
1515 Returns true if lookup succeeded, false if not (then fqdn is set to name)
1516 Uses getaddrinfo() with AI_CANONNAME flag to obtain the official
1517 canonical name of the host. getaddrinfo() may use a variety of sources
1518 including /etc/hosts to obtain the domainname. It expects aliases in
1519 /etc/hosts to NOT be the FQDN. The FQDN should come first.
1520 ************************************************************************/
1522 bool name_to_fqdn(fstring fqdn, const char *name)
1525 struct addrinfo hints;
1526 struct addrinfo *result;
1529 /* Configure hints to obtain canonical name */
1531 memset(&hints, 0, sizeof(struct addrinfo));
1532 hints.ai_family = AF_UNSPEC; /* Allow IPv4 or IPv6 */
1533 hints.ai_socktype = SOCK_DGRAM; /* Datagram socket */
1534 hints.ai_flags = AI_CANONNAME; /* Get host's FQDN */
1535 hints.ai_protocol = 0; /* Any protocol */
1537 s = getaddrinfo(name, NULL, &hints, &result);
1539 DBG_WARNING("getaddrinfo lookup for %s failed: %s\n",
1542 fstrcpy(fqdn, name);
1545 full = result->ai_canonname;
1547 /* Find out if the FQDN is returned as an alias
1548 * to cope with /etc/hosts files where the first
1549 * name is not the FQDN but the short name.
1550 * getaddrinfo provides no easy way of handling aliases
1551 * in /etc/hosts. Users should make sure the FQDN
1552 * comes first in /etc/hosts. */
1553 if (full && (! strchr_m(full, '.'))) {
1554 DEBUG(1, ("WARNING: your /etc/hosts file may be broken!\n"));
1555 DEBUGADD(1, (" Full qualified domain names (FQDNs) should not be specified\n"));
1556 DEBUGADD(1, (" as an alias in /etc/hosts. FQDN should be the first name\n"));
1557 DEBUGADD(1, (" prior to any aliases.\n"));
1559 if (full && (strcasecmp_m(full, "localhost.localdomain") == 0)) {
1560 DEBUG(1, ("WARNING: your /etc/hosts file may be broken!\n"));
1561 DEBUGADD(1, (" Specifying the machine hostname for address 127.0.0.1 may lead\n"));
1562 DEBUGADD(1, (" to Kerberos authentication problems as localhost.localdomain\n"));
1563 DEBUGADD(1, (" may end up being used instead of the real machine FQDN.\n"));
1566 DEBUG(10,("name_to_fqdn: lookup for %s -> %s.\n", name, full));
1567 fstrcpy(fqdn, full);
1568 freeaddrinfo(result); /* No longer needed */
1572 struct server_id interpret_pid(const char *pid_string)
1574 return server_id_from_string(get_my_vnn(), pid_string);
1577 /****************************************************************
1578 Check if an offset into a buffer is safe.
1579 If this returns True it's safe to indirect into the byte at
1581 ****************************************************************/
1583 bool is_offset_safe(const char *buf_base, size_t buf_len, char *ptr, size_t off)
1585 const char *end_base = buf_base + buf_len;
1586 char *end_ptr = ptr + off;
1588 if (!buf_base || !ptr) {
1592 if (end_base < buf_base || end_ptr < ptr) {
1593 return False; /* wrap. */
1596 if (end_ptr < end_base) {
1602 /****************************************************************
1603 Return a safe pointer into a string within a buffer, or NULL.
1604 ****************************************************************/
1606 char *get_safe_str_ptr(const char *buf_base, size_t buf_len, char *ptr, size_t off)
1608 if (!is_offset_safe(buf_base, buf_len, ptr, off)) {
1611 /* Check if a valid string exists at this offset. */
1612 if (skip_string(buf_base,buf_len, ptr + off) == NULL) {
1619 /****************************************************************
1620 Split DOM\user into DOM and user. Do not mix with winbind variants of that
1621 call (they take care of winbind separator and other winbind specific settings).
1622 ****************************************************************/
1624 bool split_domain_user(TALLOC_CTX *mem_ctx,
1625 const char *full_name,
1629 const char *p = NULL;
1631 p = strchr_m(full_name, '\\');
1634 *domain = talloc_strndup(mem_ctx, full_name,
1635 PTR_DIFF(p, full_name));
1636 if (*domain == NULL) {
1639 *user = talloc_strdup(mem_ctx, p+1);
1640 if (*user == NULL) {
1641 TALLOC_FREE(*domain);
1646 *user = talloc_strdup(mem_ctx, full_name);
1647 if (*user == NULL) {
1655 /****************************************************************
1656 strip off leading '\\' from a hostname
1657 ****************************************************************/
1659 const char *strip_hostname(const char *s)
1665 if (strlen_m(s) < 3) {
1669 if (s[0] == '\\') s++;
1670 if (s[0] == '\\') s++;
1675 bool any_nt_status_not_ok(NTSTATUS err1, NTSTATUS err2, NTSTATUS *result)
1677 if (!NT_STATUS_IS_OK(err1)) {
1681 if (!NT_STATUS_IS_OK(err2)) {
1688 int timeval_to_msec(struct timeval t)
1690 return t.tv_sec * 1000 + (t.tv_usec+999) / 1000;
1693 /*******************************************************************
1694 Check a given DOS pathname is valid for a share.
1695 ********************************************************************/
1697 char *valid_share_pathname(TALLOC_CTX *ctx, const char *dos_pathname)
1701 if (!dos_pathname) {
1705 ptr = talloc_strdup(ctx, dos_pathname);
1709 /* Convert any '\' paths to '/' */
1711 ptr = unix_clean_name(ctx, ptr);
1716 /* NT is braindead - it wants a C: prefix to a pathname ! So strip it. */
1717 if (strlen(ptr) > 2 && ptr[1] == ':' && ptr[0] != '/')
1720 /* Only absolute paths allowed. */
1727 /*******************************************************************
1728 Return True if the filename is one of the special executable types.
1729 ********************************************************************/
1731 bool is_executable(const char *fname)
1733 if ((fname = strrchr_m(fname,'.'))) {
1734 if (strequal(fname,".com") ||
1735 strequal(fname,".dll") ||
1736 strequal(fname,".exe") ||
1737 strequal(fname,".sym")) {
1744 /****************************************************************************
1745 Open a file with a share mode - old openX method - map into NTCreate.
1746 ****************************************************************************/
1748 bool map_open_params_to_ntcreate(const char *smb_base_fname,
1749 int deny_mode, int open_func,
1750 uint32_t *paccess_mask,
1751 uint32_t *pshare_mode,
1752 uint32_t *pcreate_disposition,
1753 uint32_t *pcreate_options,
1754 uint32_t *pprivate_flags)
1756 uint32_t access_mask;
1757 uint32_t share_mode;
1758 uint32_t create_disposition;
1759 uint32_t create_options = FILE_NON_DIRECTORY_FILE;
1760 uint32_t private_flags = 0;
1762 DEBUG(10,("map_open_params_to_ntcreate: fname = %s, deny_mode = 0x%x, "
1763 "open_func = 0x%x\n",
1764 smb_base_fname, (unsigned int)deny_mode,
1765 (unsigned int)open_func ));
1767 /* Create the NT compatible access_mask. */
1768 switch (GET_OPENX_MODE(deny_mode)) {
1769 case DOS_OPEN_EXEC: /* Implies read-only - used to be FILE_READ_DATA */
1770 case DOS_OPEN_RDONLY:
1771 access_mask = FILE_GENERIC_READ;
1773 case DOS_OPEN_WRONLY:
1774 access_mask = FILE_GENERIC_WRITE;
1778 access_mask = FILE_GENERIC_READ|FILE_GENERIC_WRITE;
1781 DEBUG(10,("map_open_params_to_ntcreate: bad open mode = 0x%x\n",
1782 (unsigned int)GET_OPENX_MODE(deny_mode)));
1786 /* Create the NT compatible create_disposition. */
1787 switch (open_func) {
1788 case OPENX_FILE_EXISTS_FAIL|OPENX_FILE_CREATE_IF_NOT_EXIST:
1789 create_disposition = FILE_CREATE;
1792 case OPENX_FILE_EXISTS_OPEN:
1793 create_disposition = FILE_OPEN;
1796 case OPENX_FILE_EXISTS_OPEN|OPENX_FILE_CREATE_IF_NOT_EXIST:
1797 create_disposition = FILE_OPEN_IF;
1800 case OPENX_FILE_EXISTS_TRUNCATE:
1801 create_disposition = FILE_OVERWRITE;
1804 case OPENX_FILE_EXISTS_TRUNCATE|OPENX_FILE_CREATE_IF_NOT_EXIST:
1805 create_disposition = FILE_OVERWRITE_IF;
1809 /* From samba4 - to be confirmed. */
1810 if (GET_OPENX_MODE(deny_mode) == DOS_OPEN_EXEC) {
1811 create_disposition = FILE_CREATE;
1814 DEBUG(10,("map_open_params_to_ntcreate: bad "
1815 "open_func 0x%x\n", (unsigned int)open_func));
1819 /* Create the NT compatible share modes. */
1820 switch (GET_DENY_MODE(deny_mode)) {
1822 share_mode = FILE_SHARE_NONE;
1826 share_mode = FILE_SHARE_READ;
1830 share_mode = FILE_SHARE_WRITE;
1834 share_mode = FILE_SHARE_READ|FILE_SHARE_WRITE;
1838 private_flags |= NTCREATEX_FLAG_DENY_DOS;
1839 if (is_executable(smb_base_fname)) {
1840 share_mode = FILE_SHARE_READ|FILE_SHARE_WRITE;
1842 if (GET_OPENX_MODE(deny_mode) == DOS_OPEN_RDONLY) {
1843 share_mode = FILE_SHARE_READ;
1845 share_mode = FILE_SHARE_NONE;
1851 private_flags |= NTCREATEX_FLAG_DENY_FCB;
1852 share_mode = FILE_SHARE_NONE;
1856 DEBUG(10,("map_open_params_to_ntcreate: bad deny_mode 0x%x\n",
1857 (unsigned int)GET_DENY_MODE(deny_mode) ));
1861 DEBUG(10,("map_open_params_to_ntcreate: file %s, access_mask = 0x%x, "
1862 "share_mode = 0x%x, create_disposition = 0x%x, "
1863 "create_options = 0x%x private_flags = 0x%x\n",
1865 (unsigned int)access_mask,
1866 (unsigned int)share_mode,
1867 (unsigned int)create_disposition,
1868 (unsigned int)create_options,
1869 (unsigned int)private_flags));
1872 *paccess_mask = access_mask;
1875 *pshare_mode = share_mode;
1877 if (pcreate_disposition) {
1878 *pcreate_disposition = create_disposition;
1880 if (pcreate_options) {
1881 *pcreate_options = create_options;
1883 if (pprivate_flags) {
1884 *pprivate_flags = private_flags;
1891 /*************************************************************************
1892 Return a talloced copy of a struct security_unix_token. NULL on fail.
1893 *************************************************************************/
1895 struct security_unix_token *copy_unix_token(TALLOC_CTX *ctx, const struct security_unix_token *tok)
1897 struct security_unix_token *cpy;
1899 cpy = talloc(ctx, struct security_unix_token);
1904 cpy->uid = tok->uid;
1905 cpy->gid = tok->gid;
1906 cpy->ngroups = tok->ngroups;
1908 /* Make this a talloc child of cpy. */
1909 cpy->groups = (gid_t *)talloc_memdup(
1910 cpy, tok->groups, tok->ngroups * sizeof(gid_t));
1921 /****************************************************************************
1923 ****************************************************************************/
1925 struct security_unix_token *root_unix_token(TALLOC_CTX *mem_ctx)
1927 struct security_unix_token *t = NULL;
1929 t = talloc_zero(mem_ctx, struct security_unix_token);
1935 * This is not needed, but lets make it explicit, not implicit.
1937 *t = (struct security_unix_token) {
1947 char *utok_string(TALLOC_CTX *mem_ctx, const struct security_unix_token *tok)
1952 str = talloc_asprintf(
1954 "uid=%ju, gid=%ju, %"PRIu32" groups:",
1955 (uintmax_t)(tok->uid),
1956 (uintmax_t)(tok->gid),
1959 for (i=0; i<tok->ngroups; i++) {
1960 talloc_asprintf_addbuf(
1961 &str, " %ju", (uintmax_t)tok->groups[i]);
1967 /****************************************************************************
1968 Check that a file matches a particular file type.
1969 ****************************************************************************/
1971 bool dir_check_ftype(uint32_t mode, uint32_t dirtype)
1975 /* Check the "may have" search bits. */
1976 if (((mode & ~dirtype) &
1977 (FILE_ATTRIBUTE_HIDDEN |
1978 FILE_ATTRIBUTE_SYSTEM |
1979 FILE_ATTRIBUTE_DIRECTORY)) != 0) {
1983 /* Check the "must have" bits,
1984 which are the may have bits shifted eight */
1985 /* If must have bit is set, the file/dir can
1986 not be returned in search unless the matching
1987 file attribute is set */
1988 mask = ((dirtype >> 8) & (FILE_ATTRIBUTE_DIRECTORY|
1989 FILE_ATTRIBUTE_ARCHIVE|
1990 FILE_ATTRIBUTE_READONLY|
1991 FILE_ATTRIBUTE_HIDDEN|
1992 FILE_ATTRIBUTE_SYSTEM)); /* & 0x37 */
1994 if((mask & (mode & (FILE_ATTRIBUTE_DIRECTORY|
1995 FILE_ATTRIBUTE_ARCHIVE|
1996 FILE_ATTRIBUTE_READONLY|
1997 FILE_ATTRIBUTE_HIDDEN|
1998 FILE_ATTRIBUTE_SYSTEM))) == mask) {
1999 /* check if matching attribute present */