2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 bool in_client = False; /* Not in the client by default */
58 extern enum protocol_types Protocol;
59 extern userdom_struct current_user_info;
62 #define GLOBAL_NAME "global"
66 #define PRINTERS_NAME "printers"
70 #define HOMES_NAME "homes"
73 /* the special value for the include parameter
74 * to be interpreted not as a file name but to
75 * trigger loading of the global smb.conf options
77 #ifndef INCLUDE_REGISTRY_NAME
78 #define INCLUDE_REGISTRY_NAME "registry"
81 static int regdb_last_seqnum = 0;
82 static bool include_registry_globals = False;
84 /* some helpful bits */
85 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
86 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
88 #define USERSHARE_VALID 1
89 #define USERSHARE_PENDING_DELETE 2
91 extern int extra_time_offset;
93 static bool defaults_saved = False;
95 typedef struct _param_opt_struct param_opt_struct;
96 struct _param_opt_struct {
97 param_opt_struct *prev, *next;
104 * This structure describes global (ie., server-wide) parameters.
110 char *display_charset;
111 char *szPrintcapname;
112 char *szAddPortCommand;
113 char *szEnumPortsCommand;
114 char *szAddPrinterCommand;
115 char *szDeletePrinterCommand;
116 char *szOs2DriverMap;
120 char *szDefaultService;
124 char *szServerString;
125 char *szAutoServices;
126 char *szPasswdProgram;
130 char *szSMBPasswdFile;
132 char *szPassdbBackend;
133 char **szPreloadModules;
134 char *szPasswordServer;
135 char *szSocketOptions;
137 char *szAfsUsernameMap;
138 int iAfsTokenLifetime;
139 char *szLogNtTokenCommand;
145 char **szWINSservers;
147 char *szRemoteAnnounce;
148 char *szRemoteBrowseSync;
149 char *szSocketAddress;
150 char *szNISHomeMapName;
151 char *szAnnounceVersion; /* This is initialised in init_globals */
154 char **szNetbiosAliases;
155 char *szNetbiosScope;
156 char *szNameResolveOrder;
158 char *szAddUserScript;
159 char *szRenameUserScript;
160 char *szDelUserScript;
161 char *szAddGroupScript;
162 char *szDelGroupScript;
163 char *szAddUserToGroupScript;
164 char *szDelUserFromGroupScript;
165 char *szSetPrimaryGroupScript;
166 char *szAddMachineScript;
167 char *szShutdownScript;
168 char *szAbortShutdownScript;
169 char *szUsernameMapScript;
170 char *szCheckPasswordScript;
177 bool bPassdbExpandExplicit;
178 int AlgorithmicRidBase;
179 char *szTemplateHomedir;
180 char *szTemplateShell;
181 char *szWinbindSeparator;
182 bool bWinbindEnumUsers;
183 bool bWinbindEnumGroups;
184 bool bWinbindUseDefaultDomain;
185 bool bWinbindTrustedDomainsOnly;
186 bool bWinbindNestedGroups;
187 int winbind_expand_groups;
188 bool bWinbindRefreshTickets;
189 bool bWinbindOfflineLogon;
190 bool bWinbindNormalizeNames;
191 bool bWinbindRpcOnly;
192 char **szIdmapDomains;
193 char **szIdmapBackend; /* deprecated */
194 char *szIdmapAllocBackend;
195 char *szAddShareCommand;
196 char *szChangeShareCommand;
197 char *szDeleteShareCommand;
199 char *szGuestaccount;
200 char *szManglingMethod;
201 char **szServicesList;
202 char *szUsersharePath;
203 char *szUsershareTemplateShare;
204 char **szUsersharePrefixAllowList;
205 char **szUsersharePrefixDenyList;
212 int open_files_db_hash_size;
221 bool paranoid_server_security;
224 int iMaxSmbdProcesses;
225 bool bDisableSpoolss;
228 bool enhanced_browsing;
234 int announce_as; /* This is initialised in init_globals */
235 int machine_password_timeout;
237 int oplock_break_wait_time;
238 int winbind_cache_time;
239 int winbind_max_idle_children;
240 char **szWinbindNssInfo;
242 char *szLdapMachineSuffix;
243 char *szLdapUserSuffix;
244 char *szLdapIdmapSuffix;
245 char *szLdapGroupSuffix;
251 char *szIPrintServer;
253 char **szClusterAddresses;
255 int ldap_passwd_sync;
256 int ldap_replication_sleep;
257 int ldap_timeout; /* This is initialised in init_globals */
260 bool bMsAddPrinterWizard;
265 int iPreferredMaster;
268 bool bEncryptPasswords;
273 bool bObeyPamRestrictions;
275 int PrintcapCacheTime;
276 bool bLargeReadwrite;
283 bool bBindInterfacesOnly;
284 bool bPamPasswordChange;
285 bool bUnixPasswdSync;
286 bool bPasswdChatDebug;
287 int iPasswdChatTimeout;
291 bool bNTStatusSupport;
293 int iMaxStatCacheSize;
295 bool bAllowTrustedDomains;
299 bool bClientLanManAuth;
300 bool bClientNTLMv2Auth;
301 bool bClientPlaintextAuth;
302 bool bClientUseSpnego;
303 bool bDebugPrefixTimestamp;
304 bool bDebugHiresTimestamp;
308 bool bEnableCoreFiles;
311 bool bHostnameLookups;
312 bool bUnixExtensions;
313 bool bDisableNetbios;
314 bool bUseKerberosKeytab;
315 bool bDeferSharingViolations;
316 bool bEnablePrivileges;
318 bool bUsershareOwnerOnly;
319 bool bUsershareAllowGuests;
320 bool bRegistryShares;
321 int restrict_anonymous;
322 int name_cache_timeout;
325 int client_ldap_sasl_wrapping;
326 int iUsershareMaxShares;
328 int iIdmapNegativeCacheTime;
333 param_opt_struct *param_opt;
336 static global Globals;
339 * This structure describes a single service.
345 time_t usershare_last_mod;
349 char **szInvalidUsers;
357 char *szRootPostExec;
359 char *szPrintcommand;
362 char *szLppausecommand;
363 char *szLpresumecommand;
364 char *szQueuepausecommand;
365 char *szQueueresumecommand;
367 char *szPrintjobUsername;
375 char *szVetoOplockFiles;
381 char **printer_admin;
386 char *szAioWriteBehind;
390 int iMaxReportedPrintJobs;
393 int iCreate_force_mode;
395 int iSecurity_force_mode;
398 int iDir_Security_mask;
399 int iDir_Security_force_mode;
403 int iOplockContentionLimit;
408 bool bRootpreexecClose;
411 bool bShortCasePreserve;
413 bool bHideSpecialFiles;
414 bool bHideUnReadable;
415 bool bHideUnWriteableFiles;
426 bool bStoreDosAttributes;
439 bool bStrictAllocate;
442 struct bitmap *copymap;
443 bool bDeleteReadonly;
445 bool bDeleteVetoFiles;
448 bool bDosFiletimeResolution;
449 bool bFakeDirCreateTimes;
455 bool bUseClientDriver;
456 bool bDefaultDevmode;
457 bool bForcePrintername;
459 bool bForceUnknownAclUser;
462 bool bMap_acl_inherit;
465 bool bAclCheckPermissions;
466 bool bAclMapFullControl;
467 bool bAclGroupControl;
469 bool bKernelChangeNotify;
470 int iallocation_roundup_size;
474 int iDirectoryNameCacheSize;
475 param_opt_struct *param_opt;
477 char dummy[3]; /* for alignment */
481 /* This is a default service used to prime a services structure */
482 static service sDefault = {
484 False, /* not autoloaded */
485 0, /* not a usershare */
486 (time_t)0, /* No last mod time */
487 NULL, /* szService */
489 NULL, /* szUsername */
490 NULL, /* szInvalidUsers */
491 NULL, /* szValidUsers */
492 NULL, /* szAdminUsers */
494 NULL, /* szInclude */
495 NULL, /* szPreExec */
496 NULL, /* szPostExec */
497 NULL, /* szRootPreExec */
498 NULL, /* szRootPostExec */
499 NULL, /* szCupsOptions */
500 NULL, /* szPrintcommand */
501 NULL, /* szLpqcommand */
502 NULL, /* szLprmcommand */
503 NULL, /* szLppausecommand */
504 NULL, /* szLpresumecommand */
505 NULL, /* szQueuepausecommand */
506 NULL, /* szQueueresumecommand */
507 NULL, /* szPrintername */
508 NULL, /* szPrintjobUsername */
509 NULL, /* szDontdescend */
510 NULL, /* szHostsallow */
511 NULL, /* szHostsdeny */
512 NULL, /* szMagicScript */
513 NULL, /* szMagicOutput */
514 NULL, /* szVetoFiles */
515 NULL, /* szHideFiles */
516 NULL, /* szVetoOplockFiles */
518 NULL, /* force user */
519 NULL, /* force group */
521 NULL, /* writelist */
522 NULL, /* printer admin */
525 NULL, /* vfs objects */
526 NULL, /* szMSDfsProxy */
527 NULL, /* szAioWriteBehind */
529 0, /* iMinPrintSpace */
530 1000, /* iMaxPrintJobs */
531 0, /* iMaxReportedPrintJobs */
532 0, /* iWriteCacheSize */
533 0744, /* iCreate_mask */
534 0000, /* iCreate_force_mode */
535 0777, /* iSecurity_mask */
536 0, /* iSecurity_force_mode */
537 0755, /* iDir_mask */
538 0000, /* iDir_force_mode */
539 0777, /* iDir_Security_mask */
540 0, /* iDir_Security_force_mode */
541 0, /* iMaxConnections */
542 CASE_LOWER, /* iDefaultCase */
543 DEFAULT_PRINTING, /* iPrinting */
544 2, /* iOplockContentionLimit */
546 1024, /* iBlock_size */
547 0, /* iDfreeCacheTime */
548 False, /* bPreexecClose */
549 False, /* bRootpreexecClose */
550 Auto, /* case sensitive */
551 True, /* case preserve */
552 True, /* short case preserve */
553 True, /* bHideDotFiles */
554 False, /* bHideSpecialFiles */
555 False, /* bHideUnReadable */
556 False, /* bHideUnWriteableFiles */
557 True, /* bBrowseable */
558 True, /* bAvailable */
559 True, /* bRead_only */
560 True, /* bNo_set_dir */
561 False, /* bGuest_only */
562 False, /* bGuest_ok */
563 False, /* bPrint_ok */
564 False, /* bMap_system */
565 False, /* bMap_hidden */
566 True, /* bMap_archive */
567 False, /* bStoreDosAttributes */
568 False, /* bDmapiSupport */
570 Auto, /* iStrictLocking */
571 True, /* bPosixLocking */
572 True, /* bShareModes */
574 True, /* bLevel2OpLocks */
575 False, /* bOnlyUser */
576 True, /* bMangledNames */
577 True, /* bWidelinks */
578 True, /* bSymlinks */
579 False, /* bSyncAlways */
580 False, /* bStrictAllocate */
581 False, /* bStrictSync */
582 '~', /* magic char */
584 False, /* bDeleteReadonly */
585 False, /* bFakeOplocks */
586 False, /* bDeleteVetoFiles */
587 False, /* bDosFilemode */
588 True, /* bDosFiletimes */
589 False, /* bDosFiletimeResolution */
590 False, /* bFakeDirCreateTimes */
591 True, /* bBlockingLocks */
592 False, /* bInheritPerms */
593 False, /* bInheritACLS */
594 False, /* bInheritOwner */
595 False, /* bMSDfsRoot */
596 False, /* bUseClientDriver */
597 True, /* bDefaultDevmode */
598 False, /* bForcePrintername */
599 True, /* bNTAclSupport */
600 False, /* bForceUnknownAclUser */
601 False, /* bUseSendfile */
602 False, /* bProfileAcls */
603 False, /* bMap_acl_inherit */
604 False, /* bAfs_Share */
605 False, /* bEASupport */
606 True, /* bAclCheckPermissions */
607 True, /* bAclMapFullControl */
608 False, /* bAclGroupControl */
609 True, /* bChangeNotify */
610 True, /* bKernelChangeNotify */
611 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
612 0, /* iAioReadSize */
613 0, /* iAioWriteSize */
614 MAP_READONLY_YES, /* iMap_readonly */
615 #ifdef BROKEN_DIRECTORY_HANDLING
616 0, /* iDirectoryNameCacheSize */
618 100, /* iDirectoryNameCacheSize */
620 NULL, /* Parametric options */
625 /* local variables */
626 static service **ServicePtrs = NULL;
627 static int iNumServices = 0;
628 static int iServiceIndex = 0;
629 static struct db_context *ServiceHash;
630 static int *invalid_services = NULL;
631 static int num_invalid_services = 0;
632 static bool bInGlobalSection = True;
633 static bool bGlobalOnly = False;
634 static int server_role;
635 static int default_server_announce;
637 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
639 /* prototypes for the special type handlers */
640 static bool handle_include( int snum, const char *pszParmValue, char **ptr);
641 static bool handle_copy( int snum, const char *pszParmValue, char **ptr);
642 static bool handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
643 static bool handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
644 static bool handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
645 static bool handle_debug_list( int snum, const char *pszParmValue, char **ptr );
646 static bool handle_workgroup( int snum, const char *pszParmValue, char **ptr );
647 static bool handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
648 static bool handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
649 static bool handle_charset( int snum, const char *pszParmValue, char **ptr );
650 static bool handle_printing( int snum, const char *pszParmValue, char **ptr);
652 static void set_server_role(void);
653 static void set_default_server_announce_type(void);
654 static void set_allowed_client_auth(void);
656 static const struct enum_list enum_protocol[] = {
657 {PROTOCOL_NT1, "NT1"},
658 {PROTOCOL_LANMAN2, "LANMAN2"},
659 {PROTOCOL_LANMAN1, "LANMAN1"},
660 {PROTOCOL_CORE, "CORE"},
661 {PROTOCOL_COREPLUS, "COREPLUS"},
662 {PROTOCOL_COREPLUS, "CORE+"},
666 static const struct enum_list enum_security[] = {
667 {SEC_SHARE, "SHARE"},
669 {SEC_SERVER, "SERVER"},
670 {SEC_DOMAIN, "DOMAIN"},
677 static const struct enum_list enum_printing[] = {
678 {PRINT_SYSV, "sysv"},
680 {PRINT_HPUX, "hpux"},
684 {PRINT_LPRNG, "lprng"},
685 {PRINT_CUPS, "cups"},
686 {PRINT_IPRINT, "iprint"},
688 {PRINT_LPROS2, "os2"},
690 {PRINT_TEST, "test"},
692 #endif /* DEVELOPER */
696 static const struct enum_list enum_ldap_sasl_wrapping[] = {
698 {ADS_AUTH_SASL_SIGN, "sign"},
699 {ADS_AUTH_SASL_SEAL, "seal"},
703 static const struct enum_list enum_ldap_ssl[] = {
704 {LDAP_SSL_OFF, "no"},
705 {LDAP_SSL_OFF, "No"},
706 {LDAP_SSL_OFF, "off"},
707 {LDAP_SSL_OFF, "Off"},
708 {LDAP_SSL_START_TLS, "start tls"},
709 {LDAP_SSL_START_TLS, "Start_tls"},
713 static const struct enum_list enum_ldap_passwd_sync[] = {
714 {LDAP_PASSWD_SYNC_OFF, "no"},
715 {LDAP_PASSWD_SYNC_OFF, "No"},
716 {LDAP_PASSWD_SYNC_OFF, "off"},
717 {LDAP_PASSWD_SYNC_OFF, "Off"},
718 {LDAP_PASSWD_SYNC_ON, "Yes"},
719 {LDAP_PASSWD_SYNC_ON, "yes"},
720 {LDAP_PASSWD_SYNC_ON, "on"},
721 {LDAP_PASSWD_SYNC_ON, "On"},
722 {LDAP_PASSWD_SYNC_ONLY, "Only"},
723 {LDAP_PASSWD_SYNC_ONLY, "only"},
727 /* Types of machine we can announce as. */
728 #define ANNOUNCE_AS_NT_SERVER 1
729 #define ANNOUNCE_AS_WIN95 2
730 #define ANNOUNCE_AS_WFW 3
731 #define ANNOUNCE_AS_NT_WORKSTATION 4
733 static const struct enum_list enum_announce_as[] = {
734 {ANNOUNCE_AS_NT_SERVER, "NT"},
735 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
736 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
737 {ANNOUNCE_AS_WIN95, "win95"},
738 {ANNOUNCE_AS_WFW, "WfW"},
742 static const struct enum_list enum_map_readonly[] = {
743 {MAP_READONLY_NO, "no"},
744 {MAP_READONLY_NO, "false"},
745 {MAP_READONLY_NO, "0"},
746 {MAP_READONLY_YES, "yes"},
747 {MAP_READONLY_YES, "true"},
748 {MAP_READONLY_YES, "1"},
749 {MAP_READONLY_PERMISSIONS, "permissions"},
750 {MAP_READONLY_PERMISSIONS, "perms"},
754 static const struct enum_list enum_case[] = {
755 {CASE_LOWER, "lower"},
756 {CASE_UPPER, "upper"},
760 static const struct enum_list enum_bool_auto[] = {
771 /* Client-side offline caching policy types */
772 #define CSC_POLICY_MANUAL 0
773 #define CSC_POLICY_DOCUMENTS 1
774 #define CSC_POLICY_PROGRAMS 2
775 #define CSC_POLICY_DISABLE 3
777 static const struct enum_list enum_csc_policy[] = {
778 {CSC_POLICY_MANUAL, "manual"},
779 {CSC_POLICY_DOCUMENTS, "documents"},
780 {CSC_POLICY_PROGRAMS, "programs"},
781 {CSC_POLICY_DISABLE, "disable"},
785 /* SMB signing types. */
786 static const struct enum_list enum_smb_signing_vals[] = {
798 {Required, "required"},
799 {Required, "mandatory"},
801 {Required, "forced"},
802 {Required, "enforced"},
806 /* ACL compatibility options. */
807 static const struct enum_list enum_acl_compat_vals[] = {
808 { ACL_COMPAT_AUTO, "auto" },
809 { ACL_COMPAT_WINNT, "winnt" },
810 { ACL_COMPAT_WIN2K, "win2k" },
815 Do you want session setups at user level security with a invalid
816 password to be rejected or allowed in as guest? WinNT rejects them
817 but it can be a pain as it means "net view" needs to use a password
819 You have 3 choices in the setting of map_to_guest:
821 "Never" means session setups with an invalid password
822 are rejected. This is the default.
824 "Bad User" means session setups with an invalid password
825 are rejected, unless the username does not exist, in which case it
826 is treated as a guest login
828 "Bad Password" means session setups with an invalid password
829 are treated as a guest login
831 Note that map_to_guest only has an effect in user or server
835 static const struct enum_list enum_map_to_guest[] = {
836 {NEVER_MAP_TO_GUEST, "Never"},
837 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
838 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
839 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
843 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
845 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
846 * screen in SWAT. This is used to exclude parameters as well as to squash all
847 * parameters that have been duplicated by pseudonyms.
849 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
850 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
851 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
854 * NOTE2: Handling of duplicated (synonym) paramters:
855 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
856 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
857 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
858 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
861 static struct parm_struct parm_table[] = {
862 {N_("Base Options"), P_SEP, P_SEPARATOR},
864 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
865 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
866 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
867 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
868 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
869 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
870 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
872 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
874 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
875 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
876 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
877 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
878 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
879 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
881 {N_("Security Options"), P_SEP, P_SEPARATOR},
883 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
884 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
885 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
886 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
887 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
888 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
889 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
890 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
891 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
892 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
893 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
894 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
895 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
896 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
897 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
898 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
899 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
900 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
901 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
902 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
904 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
905 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
906 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
907 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
908 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
909 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
910 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
911 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
912 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
913 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
914 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
915 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
916 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
917 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
918 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
919 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
921 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
922 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
923 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
925 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
926 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
927 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
928 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
929 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
930 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
931 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
932 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
933 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
935 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
936 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
937 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
938 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
940 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
941 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
942 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
943 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
944 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
945 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
946 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
947 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
948 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
950 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
951 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
952 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
953 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
954 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
955 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
956 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
957 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
958 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
960 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
961 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
963 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
964 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
965 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
966 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
967 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
968 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
969 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
971 {N_("Logging Options"), P_SEP, P_SEPARATOR},
973 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
974 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
975 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
976 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
977 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
979 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
980 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
981 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
982 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
983 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
984 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
985 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
986 {"debug class", P_BOOL, P_GLOBAL, &Globals.bDebugClass, NULL, NULL, FLAG_ADVANCED},
987 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
989 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
991 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
992 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
993 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
994 {"aio write behind", P_STRING, P_LOCAL, &sDefault.szAioWriteBehind, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
995 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
996 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
997 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
998 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
999 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1000 {"min receivefile size", P_INTEGER, P_GLOBAL, &Globals.iminreceivefile, NULL, NULL, FLAG_ADVANCED},
1001 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
1002 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
1003 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
1004 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
1006 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1007 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1008 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1009 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1010 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1011 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1012 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1014 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1015 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1016 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1017 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1018 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1019 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1021 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1022 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1023 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1024 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1025 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1026 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1027 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1028 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1029 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1030 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1031 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1032 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1033 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1035 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1037 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1038 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1039 {"getwd cache", P_BOOL, P_GLOBAL, &Globals.getwd_cache, NULL, NULL, FLAG_ADVANCED},
1040 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1041 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1042 {"directory name cache size", P_INTEGER, P_LOCAL, &sDefault.iDirectoryNameCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1043 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1045 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1046 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1047 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1048 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1049 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1050 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1051 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1053 {"socket options", P_STRING, P_GLOBAL, &Globals.szSocketOptions, NULL, NULL, FLAG_ADVANCED},
1054 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1055 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1056 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1057 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1058 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1059 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1060 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1062 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1063 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1064 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1065 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1067 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1069 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1070 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1071 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1072 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1073 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1074 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1075 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1076 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1077 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1078 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1079 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1080 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1081 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1083 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1084 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1085 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1086 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1087 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1088 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1089 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1091 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1092 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1093 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1094 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1095 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1096 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1098 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1099 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1100 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1101 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1102 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1103 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1105 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1106 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1107 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1109 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1110 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1111 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1112 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1113 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1114 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1115 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1116 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1117 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1118 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1120 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1121 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1122 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1123 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1124 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1125 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1126 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1127 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1128 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1129 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1130 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1131 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1134 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1136 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1138 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1140 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1141 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1142 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1143 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1144 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1145 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1146 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1147 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1148 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1149 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1150 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1151 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1153 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1154 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1155 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1156 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1157 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1159 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1161 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1162 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1163 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1164 {"preferred master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1165 {"prefered master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1166 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1167 {"domain master", P_ENUM, P_GLOBAL, &Globals.iDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1168 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1169 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1170 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1171 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1173 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1175 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1176 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1178 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1179 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1180 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1182 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1184 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1185 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1186 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1187 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1188 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1189 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1191 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1192 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1193 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1194 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1195 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1196 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1197 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1199 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1201 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1202 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1203 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1204 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1206 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1207 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1208 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1209 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1210 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1211 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1212 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1213 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1215 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1216 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1217 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1218 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1220 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1221 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1223 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1224 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1225 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1226 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1227 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1228 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1230 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1231 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1232 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1235 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1236 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1237 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1238 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1239 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1240 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1241 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1242 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1243 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1244 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1245 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1246 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1247 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1248 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1249 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1250 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1251 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1253 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1254 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1255 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1256 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1258 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1259 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1260 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1261 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1262 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1263 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1264 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1265 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1266 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1267 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1268 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1269 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1270 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1271 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1272 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1273 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1274 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1275 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1276 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1277 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1278 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1279 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1280 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1281 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1282 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1283 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1285 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1286 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1288 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1290 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1291 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1294 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1295 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1296 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1298 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1300 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1301 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1302 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1303 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1304 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1305 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1306 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1307 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1308 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1309 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1310 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1311 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1312 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1313 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1314 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1317 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1318 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1319 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1320 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1321 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1322 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1323 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1324 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1326 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1329 /***************************************************************************
1330 Initialise the sDefault parameter structure for the printer values.
1331 ***************************************************************************/
1333 static void init_printer_values(service *pService)
1335 /* choose defaults depending on the type of printing */
1336 switch (pService->iPrinting) {
1341 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1342 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1343 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1348 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1349 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1350 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1351 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1352 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1353 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1354 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1360 /* set the lpq command to contain the destination printer
1361 name only. This is used by cups_queue_get() */
1362 string_set(&pService->szLpqcommand, "%p");
1363 string_set(&pService->szLprmcommand, "");
1364 string_set(&pService->szPrintcommand, "");
1365 string_set(&pService->szLppausecommand, "");
1366 string_set(&pService->szLpresumecommand, "");
1367 string_set(&pService->szQueuepausecommand, "");
1368 string_set(&pService->szQueueresumecommand, "");
1370 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1371 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1372 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1373 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1374 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1375 string_set(&pService->szQueuepausecommand, "disable '%p'");
1376 string_set(&pService->szQueueresumecommand, "enable '%p'");
1377 #endif /* HAVE_CUPS */
1382 string_set(&pService->szLpqcommand, "lpstat -o%p");
1383 string_set(&pService->szLprmcommand, "cancel %p-%j");
1384 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1385 string_set(&pService->szQueuepausecommand, "disable %p");
1386 string_set(&pService->szQueueresumecommand, "enable %p");
1388 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1389 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1394 string_set(&pService->szLpqcommand, "lpq -P%p");
1395 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1396 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1402 string_set(&pService->szPrintcommand, "vlp print %p %s");
1403 string_set(&pService->szLpqcommand, "vlp lpq %p");
1404 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1405 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1406 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1407 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1408 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1410 #endif /* DEVELOPER */
1415 /***************************************************************************
1416 Initialise the global parameter structure.
1417 ***************************************************************************/
1419 static void init_globals(bool first_time_only)
1421 static bool done_init = False;
1424 /* If requested to initialize only once and we've already done it... */
1425 if (first_time_only && done_init) {
1426 /* ... then we have nothing more to do */
1433 /* The logfile can be set before this is invoked. Free it if so. */
1434 if (Globals.szLogFile != NULL) {
1435 string_free(&Globals.szLogFile);
1436 Globals.szLogFile = NULL;
1439 memset((void *)&Globals, '\0', sizeof(Globals));
1441 for (i = 0; parm_table[i].label; i++)
1442 if ((parm_table[i].type == P_STRING ||
1443 parm_table[i].type == P_USTRING) &&
1445 string_set((char **)parm_table[i].ptr, "");
1447 string_set(&sDefault.fstype, FSTYPE_STRING);
1448 string_set(&sDefault.szPrintjobUsername, "%U");
1450 init_printer_values(&sDefault);
1456 DEBUG(3, ("Initialising global parameters\n"));
1458 string_set(&Globals.szSMBPasswdFile, get_dyn_SMB_PASSWD_FILE());
1459 string_set(&Globals.szPrivateDir, get_dyn_PRIVATE_DIR());
1461 /* use the new 'hash2' method by default, with a prefix of 1 */
1462 string_set(&Globals.szManglingMethod, "hash2");
1463 Globals.mangle_prefix = 1;
1465 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1467 /* using UTF8 by default allows us to support all chars */
1468 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1470 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1471 /* If the system supports nl_langinfo(), try to grab the value
1472 from the user's locale */
1473 string_set(&Globals.display_charset, "LOCALE");
1475 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1478 /* Use codepage 850 as a default for the dos character set */
1479 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1482 * Allow the default PASSWD_CHAT to be overridden in local.h.
1484 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1486 set_global_myname(myhostname());
1487 string_set(&Globals.szNetbiosName,global_myname());
1489 set_global_myworkgroup(WORKGROUP);
1490 string_set(&Globals.szWorkgroup, lp_workgroup());
1492 string_set(&Globals.szPasswdProgram, "");
1493 string_set(&Globals.szPidDir, get_dyn_PIDDIR());
1494 string_set(&Globals.szLockDir, get_dyn_LOCKDIR());
1495 string_set(&Globals.szSocketAddress, "0.0.0.0");
1497 if (asprintf(&s, "Samba %s", SAMBA_VERSION_STRING) < 0) {
1498 smb_panic("init_globals: ENOMEM");
1500 string_set(&Globals.szServerString, s);
1502 if (asprintf(&s, "%d.%d", DEFAULT_MAJOR_VERSION,
1503 DEFAULT_MINOR_VERSION) < 0) {
1504 smb_panic("init_globals: ENOMEM");
1506 string_set(&Globals.szAnnounceVersion, s);
1509 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1512 string_set(&Globals.szSocketOptions, DEFAULT_SOCKET_OPTIONS);
1514 string_set(&Globals.szLogonDrive, "");
1515 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1516 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1517 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1519 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1520 string_set(&Globals.szPasswordServer, "*");
1522 Globals.AlgorithmicRidBase = BASE_RID;
1524 Globals.bLoadPrinters = True;
1525 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1527 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1528 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1529 Globals.max_xmit = 0x4104;
1530 Globals.max_mux = 50; /* This is *needed* for profile support. */
1531 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1532 Globals.bDisableSpoolss = False;
1533 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1534 Globals.pwordlevel = 0;
1535 Globals.unamelevel = 0;
1536 Globals.deadtime = 0;
1537 Globals.getwd_cache = true;
1538 Globals.bLargeReadwrite = True;
1539 Globals.max_log_size = 5000;
1540 Globals.max_open_files = MAX_OPEN_FILES;
1541 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1542 Globals.maxprotocol = PROTOCOL_NT1;
1543 Globals.minprotocol = PROTOCOL_CORE;
1544 Globals.security = SEC_USER;
1545 Globals.paranoid_server_security = True;
1546 Globals.bEncryptPasswords = True;
1547 Globals.bUpdateEncrypt = False;
1548 Globals.clientSchannel = Auto;
1549 Globals.serverSchannel = Auto;
1550 Globals.bReadRaw = True;
1551 Globals.bWriteRaw = True;
1552 Globals.bNullPasswords = False;
1553 Globals.bObeyPamRestrictions = False;
1555 Globals.bSyslogOnly = False;
1556 Globals.bTimestampLogs = True;
1557 string_set(&Globals.szLogLevel, "0");
1558 Globals.bDebugPrefixTimestamp = False;
1559 Globals.bDebugHiresTimestamp = False;
1560 Globals.bDebugPid = False;
1561 Globals.bDebugUid = False;
1562 Globals.bDebugClass = False;
1563 Globals.bEnableCoreFiles = True;
1564 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1565 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1566 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1567 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1568 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1569 Globals.lm_interval = 60;
1570 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1571 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1572 Globals.bNISHomeMap = False;
1573 #ifdef WITH_NISPLUS_HOME
1574 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1576 string_set(&Globals.szNISHomeMapName, "auto.home");
1579 Globals.bTimeServer = False;
1580 Globals.bBindInterfacesOnly = False;
1581 Globals.bUnixPasswdSync = False;
1582 Globals.bPamPasswordChange = False;
1583 Globals.bPasswdChatDebug = False;
1584 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1585 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1586 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1587 Globals.bStatCache = True; /* use stat cache by default */
1588 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1589 Globals.restrict_anonymous = 0;
1590 Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
1591 Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
1592 Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
1593 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
1594 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1595 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1597 Globals.map_to_guest = 0; /* By Default, "Never" */
1598 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1599 Globals.enhanced_browsing = true;
1600 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1601 #ifdef MMAP_BLACKLIST
1602 Globals.bUseMmap = False;
1604 Globals.bUseMmap = True;
1606 Globals.bUnixExtensions = True;
1607 Globals.bResetOnZeroVC = False;
1609 /* hostname lookups can be very expensive and are broken on
1610 a large number of sites (tridge) */
1611 Globals.bHostnameLookups = False;
1613 string_set(&Globals.szPassdbBackend, "smbpasswd");
1614 string_set(&Globals.szLdapSuffix, "");
1615 string_set(&Globals.szLdapMachineSuffix, "");
1616 string_set(&Globals.szLdapUserSuffix, "");
1617 string_set(&Globals.szLdapGroupSuffix, "");
1618 string_set(&Globals.szLdapIdmapSuffix, "");
1620 string_set(&Globals.szLdapAdminDn, "");
1621 Globals.ldap_ssl = LDAP_SSL_ON;
1622 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1623 Globals.ldap_delete_dn = False;
1624 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1625 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1626 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1628 /* This is what we tell the afs client. in reality we set the token
1629 * to never expire, though, when this runs out the afs client will
1630 * forget the token. Set to 0 to get NEVERDATE.*/
1631 Globals.iAfsTokenLifetime = 604800;
1633 /* these parameters are set to defaults that are more appropriate
1634 for the increasing samba install base:
1636 as a member of the workgroup, that will possibly become a
1637 _local_ master browser (lm = True). this is opposed to a forced
1638 local master browser startup (pm = True).
1640 doesn't provide WINS server service by default (wsupp = False),
1641 and doesn't provide domain master browser services by default, either.
1645 Globals.bMsAddPrinterWizard = True;
1646 Globals.os_level = 20;
1647 Globals.bLocalMaster = True;
1648 Globals.iDomainMaster = Auto; /* depending on bDomainLogons */
1649 Globals.bDomainLogons = False;
1650 Globals.bBrowseList = True;
1651 Globals.bWINSsupport = False;
1652 Globals.bWINSproxy = False;
1654 Globals.bDNSproxy = True;
1656 /* this just means to use them if they exist */
1657 Globals.bKernelOplocks = True;
1659 Globals.bAllowTrustedDomains = True;
1661 string_set(&Globals.szTemplateShell, "/bin/false");
1662 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1663 string_set(&Globals.szWinbindSeparator, "\\");
1665 string_set(&Globals.szCupsServer, "");
1666 string_set(&Globals.szIPrintServer, "");
1668 string_set(&Globals.ctdbdSocket, "");
1669 Globals.szClusterAddresses = NULL;
1670 Globals.clustering = False;
1672 Globals.winbind_cache_time = 300; /* 5 minutes */
1673 Globals.bWinbindEnumUsers = False;
1674 Globals.bWinbindEnumGroups = False;
1675 Globals.bWinbindUseDefaultDomain = False;
1676 Globals.bWinbindTrustedDomainsOnly = False;
1677 Globals.bWinbindNestedGroups = True;
1678 Globals.winbind_expand_groups = 1;
1679 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1680 Globals.bWinbindRefreshTickets = False;
1681 Globals.bWinbindOfflineLogon = False;
1683 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1684 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1686 Globals.bPassdbExpandExplicit = False;
1688 Globals.name_cache_timeout = 660; /* In seconds */
1690 Globals.bUseSpnego = True;
1691 Globals.bClientUseSpnego = True;
1693 Globals.client_signing = Auto;
1694 Globals.server_signing = False;
1696 Globals.bDeferSharingViolations = True;
1697 string_set(&Globals.smb_ports, SMB_PORTS);
1699 Globals.bEnablePrivileges = True;
1700 Globals.bHostMSDfs = True;
1701 Globals.bASUSupport = False;
1703 /* User defined shares. */
1704 if (asprintf(&s, "%s/usershares", get_dyn_STATEDIR()) < 0) {
1705 smb_panic("init_globals: ENOMEM");
1707 string_set(&Globals.szUsersharePath, s);
1709 string_set(&Globals.szUsershareTemplateShare, "");
1710 Globals.iUsershareMaxShares = 0;
1711 /* By default disallow sharing of directories not owned by the sharer. */
1712 Globals.bUsershareOwnerOnly = True;
1713 /* By default disallow guest access to usershares. */
1714 Globals.bUsershareAllowGuests = False;
1716 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1718 /* By default no shares out of the registry */
1719 Globals.bRegistryShares = False;
1721 Globals.iminreceivefile = 0;
1724 /*******************************************************************
1725 Convenience routine to grab string parameters into temporary memory
1726 and run standard_sub_basic on them. The buffers can be written to by
1727 callers without affecting the source string.
1728 ********************************************************************/
1730 static char *lp_string(const char *s)
1733 TALLOC_CTX *ctx = talloc_tos();
1735 /* The follow debug is useful for tracking down memory problems
1736 especially if you have an inner loop that is calling a lp_*()
1737 function that returns a string. Perhaps this debug should be
1738 present all the time? */
1741 DEBUG(10, ("lp_string(%s)\n", s));
1744 ret = talloc_sub_basic(ctx,
1745 get_current_username(),
1746 current_user_info.domain,
1748 if (trim_char(ret, '\"', '\"')) {
1749 if (strchr(ret,'\"') != NULL) {
1751 ret = talloc_sub_basic(ctx,
1752 get_current_username(),
1753 current_user_info.domain,
1761 In this section all the functions that are used to access the
1762 parameters from the rest of the program are defined
1765 #define FN_GLOBAL_STRING(fn_name,ptr) \
1766 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1767 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1768 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1769 #define FN_GLOBAL_LIST(fn_name,ptr) \
1770 const char **fn_name(void) {return(*(const char ***)(ptr));}
1771 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1772 bool fn_name(void) {return(*(bool *)(ptr));}
1773 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1774 char fn_name(void) {return(*(char *)(ptr));}
1775 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1776 int fn_name(void) {return(*(int *)(ptr));}
1778 #define FN_LOCAL_STRING(fn_name,val) \
1779 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1780 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1781 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1782 #define FN_LOCAL_LIST(fn_name,val) \
1783 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1784 #define FN_LOCAL_BOOL(fn_name,val) \
1785 bool fn_name(int i) {return(bool)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1786 #define FN_LOCAL_INTEGER(fn_name,val) \
1787 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1789 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1790 bool fn_name(const struct share_params *p) {return(bool)(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1791 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1792 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1793 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1794 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1795 #define FN_LOCAL_CHAR(fn_name,val) \
1796 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1798 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1799 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1800 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1801 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1802 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1803 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1804 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1805 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1806 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1807 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1808 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1809 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1810 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1811 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1812 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1813 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1814 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1815 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1816 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1817 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1818 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1819 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1820 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1821 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1822 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1823 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1824 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1825 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1826 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1827 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1828 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1829 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1830 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1831 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1832 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1833 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1834 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1835 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1836 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1837 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1838 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1839 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1840 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1841 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1842 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1843 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1844 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1845 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1846 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1847 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1848 * lp_passdb_backend() should be replace by the this macro again after
1851 const char *lp_passdb_backend(void)
1853 char *delim, *quote;
1855 delim = strchr( Globals.szPassdbBackend, ' ');
1856 /* no space at all */
1857 if (delim == NULL) {
1861 quote = strchr(Globals.szPassdbBackend, '"');
1862 /* no quote char or non in the first part */
1863 if (quote == NULL || quote > delim) {
1868 quote = strchr(quote+1, '"');
1869 if (quote == NULL) {
1870 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1872 } else if (*(quote+1) == '\0') {
1873 /* space, fitting quote char, and one backend only */
1876 /* terminate string after the fitting quote char */
1881 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1882 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1883 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1884 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1887 return Globals.szPassdbBackend;
1889 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1890 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1891 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1892 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1893 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1895 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1896 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1897 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1898 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1899 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1900 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1902 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1904 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1905 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1906 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1908 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1910 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1911 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1912 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1913 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1914 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1915 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1916 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1917 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1918 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1919 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1920 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1921 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1922 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1923 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1924 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1926 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1927 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1928 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1929 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1930 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1931 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1932 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1934 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1935 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1936 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1937 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1938 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1939 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1940 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1941 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1942 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1943 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1944 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1945 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1946 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1947 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1949 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1951 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1952 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1953 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1954 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1955 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1956 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1957 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1958 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1959 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1960 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1961 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1962 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1963 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1964 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1965 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1966 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1967 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1968 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1969 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1970 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1971 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1972 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1973 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1974 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1975 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1976 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1977 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1978 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1979 FN_GLOBAL_BOOL(lp_debug_class, &Globals.bDebugClass)
1980 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1981 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1982 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1983 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1984 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1985 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1986 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1987 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1988 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1989 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1990 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1991 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
1992 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
1993 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
1994 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
1995 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
1996 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
1997 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
1998 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
1999 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
2000 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
2001 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
2002 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
2003 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
2004 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
2005 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
2006 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
2007 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
2008 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
2009 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
2010 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
2011 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2012 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2013 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2014 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2015 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2016 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2017 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2018 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2019 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2020 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2021 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2022 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2023 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2024 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2025 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2026 FN_GLOBAL_BOOL(lp_getwd_cache, &Globals.getwd_cache)
2027 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2028 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2029 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2030 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2031 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2032 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2033 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2034 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2035 FN_GLOBAL_BOOL(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2036 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2037 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2038 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2039 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2040 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2041 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2042 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2043 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2044 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2045 FN_GLOBAL_CONST_STRING(lp_socket_options, &Globals.szSocketOptions)
2047 FN_LOCAL_STRING(lp_preexec, szPreExec)
2048 FN_LOCAL_STRING(lp_postexec, szPostExec)
2049 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2050 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2051 FN_LOCAL_STRING(lp_servicename, szService)
2052 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2053 FN_LOCAL_STRING(lp_pathname, szPath)
2054 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2055 FN_LOCAL_STRING(lp_username, szUsername)
2056 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2057 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2058 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2059 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2060 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2061 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2062 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2063 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2064 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2065 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2066 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2067 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2068 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2069 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2070 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2071 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2072 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2073 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2074 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2075 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2076 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2077 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2078 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2079 FN_LOCAL_STRING(lp_comment, comment)
2080 FN_LOCAL_STRING(lp_force_user, force_user)
2081 FN_LOCAL_STRING(lp_force_group, force_group)
2082 FN_LOCAL_LIST(lp_readlist, readlist)
2083 FN_LOCAL_LIST(lp_writelist, writelist)
2084 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2085 FN_LOCAL_STRING(lp_fstype, fstype)
2086 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2087 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2088 static FN_LOCAL_STRING(lp_volume, volume)
2089 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2090 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2091 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2092 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2093 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
2094 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2095 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2096 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2097 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2098 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2099 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2100 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2101 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2102 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2103 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2104 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2105 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2106 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2107 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2108 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2109 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2110 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2111 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2112 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2113 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2114 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2115 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2116 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2117 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2118 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2119 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2120 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2121 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2122 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2123 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2124 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2125 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2126 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2127 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2128 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2129 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2130 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2131 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2132 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2133 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2134 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2135 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2136 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2137 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2138 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2139 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2140 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2141 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2142 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2143 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2144 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2145 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2146 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2147 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2148 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2149 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2150 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2151 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2152 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2153 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2154 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2155 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2156 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2157 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2158 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2159 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2160 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2161 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2162 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2163 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2164 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2165 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2166 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2167 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2168 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2169 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2170 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2171 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2172 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2173 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2174 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2175 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
2176 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2177 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2178 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2179 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2180 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2181 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2182 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2183 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2185 /* local prototypes */
2187 static int map_parameter(const char *pszParmName);
2188 static int map_parameter_canonical(const char *pszParmName, bool *inverse);
2189 static bool set_boolean(bool *pb, const char *pszParmValue);
2190 static const char *get_boolean(bool bool_value);
2191 static int getservicebyname(const char *pszServiceName,
2192 service * pserviceDest);
2193 static void copy_service(service * pserviceDest,
2194 service * pserviceSource,
2195 struct bitmap *pcopymapDest);
2196 static bool do_parameter(const char *pszParmName, const char *pszParmValue);
2197 static bool do_section(const char *pszSectionName);
2198 static void init_copymap(service * pservice);
2199 static bool hash_a_service(const char *name, int number);
2200 static void free_service_byindex(int iService);
2201 static char * canonicalize_servicename(const char *name);
2202 static void show_parameter(int parmIndex);
2203 static bool is_synonym_of(int parm1, int parm2, bool *inverse);
2205 /* This is a helper function for parametrical options support. */
2206 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2207 /* Actual parametrical functions are quite simple */
2208 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2210 bool global_section = False;
2212 param_opt_struct *data;
2214 if (snum >= iNumServices) return NULL;
2217 data = Globals.param_opt;
2218 global_section = True;
2220 data = ServicePtrs[snum]->param_opt;
2223 asprintf(¶m_key, "%s:%s", type, option);
2225 DEBUG(0,("asprintf failed!\n"));
2230 if (strcmp(data->key, param_key) == 0) {
2231 string_free(¶m_key);
2237 if (!global_section) {
2238 /* Try to fetch the same option but from globals */
2239 /* but only if we are not already working with Globals */
2240 data = Globals.param_opt;
2242 if (strcmp(data->key, param_key) == 0) {
2243 string_free(¶m_key);
2250 string_free(¶m_key);
2256 #define MISSING_PARAMETER(name) \
2257 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2259 /*******************************************************************
2260 convenience routine to return int parameters.
2261 ********************************************************************/
2262 static int lp_int(const char *s)
2266 MISSING_PARAMETER(lp_int);
2270 return (int)strtol(s, NULL, 0);
2273 /*******************************************************************
2274 convenience routine to return unsigned long parameters.
2275 ********************************************************************/
2276 static unsigned long lp_ulong(const char *s)
2280 MISSING_PARAMETER(lp_ulong);
2284 return strtoul(s, NULL, 0);
2287 /*******************************************************************
2288 convenience routine to return boolean parameters.
2289 ********************************************************************/
2290 static bool lp_bool(const char *s)
2295 MISSING_PARAMETER(lp_bool);
2299 if (!set_boolean(&ret,s)) {
2300 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2307 /*******************************************************************
2308 convenience routine to return enum parameters.
2309 ********************************************************************/
2310 static int lp_enum(const char *s,const struct enum_list *_enum)
2314 if (!s || !*s || !_enum) {
2315 MISSING_PARAMETER(lp_enum);
2319 for (i=0; _enum[i].name; i++) {
2320 if (strequal(_enum[i].name,s))
2321 return _enum[i].value;
2324 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2328 #undef MISSING_PARAMETER
2330 /* DO NOT USE lp_parm_string ANYMORE!!!!
2331 * use lp_parm_const_string or lp_parm_talloc_string
2333 * lp_parm_string is only used to let old modules find this symbol
2335 #undef lp_parm_string
2336 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2337 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2339 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2342 /* Return parametric option from a given service. Type is a part of option before ':' */
2343 /* Parametric option has following syntax: 'Type: option = value' */
2344 /* the returned value is talloced on the talloc_tos() */
2345 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2347 param_opt_struct *data = get_parametrics(snum, type, option);
2349 if (data == NULL||data->value==NULL) {
2351 return lp_string(def);
2357 return lp_string(data->value);
2360 /* Return parametric option from a given service. Type is a part of option before ':' */
2361 /* Parametric option has following syntax: 'Type: option = value' */
2362 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2364 param_opt_struct *data = get_parametrics(snum, type, option);
2366 if (data == NULL||data->value==NULL)
2372 /* Return parametric option from a given service. Type is a part of option before ':' */
2373 /* Parametric option has following syntax: 'Type: option = value' */
2375 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2377 param_opt_struct *data = get_parametrics(snum, type, option);
2379 if (data == NULL||data->value==NULL)
2380 return (const char **)def;
2382 if (data->list==NULL) {
2383 data->list = str_list_make(data->value, NULL);
2386 return (const char **)data->list;
2389 /* Return parametric option from a given service. Type is a part of option before ':' */
2390 /* Parametric option has following syntax: 'Type: option = value' */
2392 int lp_parm_int(int snum, const char *type, const char *option, int def)
2394 param_opt_struct *data = get_parametrics(snum, type, option);
2396 if (data && data->value && *data->value)
2397 return lp_int(data->value);
2402 /* Return parametric option from a given service. Type is a part of option before ':' */
2403 /* Parametric option has following syntax: 'Type: option = value' */
2405 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2407 param_opt_struct *data = get_parametrics(snum, type, option);
2409 if (data && data->value && *data->value)
2410 return lp_ulong(data->value);
2415 /* Return parametric option from a given service. Type is a part of option before ':' */
2416 /* Parametric option has following syntax: 'Type: option = value' */
2418 bool lp_parm_bool(int snum, const char *type, const char *option, bool def)
2420 param_opt_struct *data = get_parametrics(snum, type, option);
2422 if (data && data->value && *data->value)
2423 return lp_bool(data->value);
2428 /* Return parametric option from a given service. Type is a part of option before ':' */
2429 /* Parametric option has following syntax: 'Type: option = value' */
2431 int lp_parm_enum(int snum, const char *type, const char *option,
2432 const struct enum_list *_enum, int def)
2434 param_opt_struct *data = get_parametrics(snum, type, option);
2436 if (data && data->value && *data->value && _enum)
2437 return lp_enum(data->value, _enum);
2443 /***************************************************************************
2444 Initialise a service to the defaults.
2445 ***************************************************************************/
2447 static void init_service(service * pservice)
2449 memset((char *)pservice, '\0', sizeof(service));
2450 copy_service(pservice, &sDefault, NULL);
2453 /***************************************************************************
2454 Free the dynamically allocated parts of a service struct.
2455 ***************************************************************************/
2457 static void free_service(service *pservice)
2460 param_opt_struct *data, *pdata;
2464 if (pservice->szService)
2465 DEBUG(5, ("free_service: Freeing service %s\n",
2466 pservice->szService));
2468 string_free(&pservice->szService);
2469 bitmap_free(pservice->copymap);
2471 for (i = 0; parm_table[i].label; i++) {
2472 if ((parm_table[i].type == P_STRING ||
2473 parm_table[i].type == P_USTRING) &&
2474 parm_table[i].p_class == P_LOCAL)
2475 string_free((char **)
2476 (((char *)pservice) +
2477 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2478 else if (parm_table[i].type == P_LIST &&
2479 parm_table[i].p_class == P_LOCAL)
2480 str_list_free((char ***)
2481 (((char *)pservice) +
2482 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2485 data = pservice->param_opt;
2487 DEBUG(5,("Freeing parametrics:\n"));
2489 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2490 string_free(&data->key);
2491 string_free(&data->value);
2492 str_list_free(&data->list);
2498 ZERO_STRUCTP(pservice);
2502 /***************************************************************************
2503 remove a service indexed in the ServicePtrs array from the ServiceHash
2504 and free the dynamically allocated parts
2505 ***************************************************************************/
2507 static void free_service_byindex(int idx)
2509 if ( !LP_SNUM_OK(idx) )
2512 ServicePtrs[idx]->valid = False;
2513 invalid_services[num_invalid_services++] = idx;
2515 /* we have to cleanup the hash record */
2517 if (ServicePtrs[idx]->szService) {
2518 char *canon_name = canonicalize_servicename(
2519 ServicePtrs[idx]->szService );
2521 dbwrap_delete_bystring(ServiceHash, canon_name );
2522 TALLOC_FREE(canon_name);
2525 free_service(ServicePtrs[idx]);
2528 /***************************************************************************
2529 Add a new service to the services array initialising it with the given
2531 ***************************************************************************/
2533 static int add_a_service(const service *pservice, const char *name)
2537 int num_to_alloc = iNumServices + 1;
2538 param_opt_struct *data, *pdata;
2540 tservice = *pservice;
2542 /* it might already exist */
2544 i = getservicebyname(name, NULL);
2546 /* Clean all parametric options for service */
2547 /* They will be added during parsing again */
2548 data = ServicePtrs[i]->param_opt;
2550 string_free(&data->key);
2551 string_free(&data->value);
2552 str_list_free(&data->list);
2557 ServicePtrs[i]->param_opt = NULL;
2562 /* find an invalid one */
2564 if (num_invalid_services > 0) {
2565 i = invalid_services[--num_invalid_services];
2568 /* if not, then create one */
2569 if (i == iNumServices) {
2573 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2575 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2579 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2580 if (!ServicePtrs[iNumServices]) {
2581 DEBUG(0,("add_a_service: out of memory!\n"));
2586 /* enlarge invalid_services here for now... */
2587 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2589 if (tinvalid == NULL) {
2590 DEBUG(0,("add_a_service: failed to enlarge "
2591 "invalid_services!\n"));
2594 invalid_services = tinvalid;
2596 free_service_byindex(i);
2599 ServicePtrs[i]->valid = True;
2601 init_service(ServicePtrs[i]);
2602 copy_service(ServicePtrs[i], &tservice, NULL);
2604 string_set(&ServicePtrs[i]->szService, name);
2606 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2607 i, ServicePtrs[i]->szService));
2609 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2616 /***************************************************************************
2617 Convert a string to uppercase and remove whitespaces.
2618 ***************************************************************************/
2620 static char *canonicalize_servicename(const char *src)
2625 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2629 result = talloc_strdup(talloc_tos(), src);
2630 SMB_ASSERT(result != NULL);
2636 /***************************************************************************
2637 Add a name/index pair for the services array to the hash table.
2638 ***************************************************************************/
2640 static bool hash_a_service(const char *name, int idx)
2644 if ( !ServiceHash ) {
2645 DEBUG(10,("hash_a_service: creating servicehash\n"));
2646 ServiceHash = db_open_rbt(NULL);
2647 if ( !ServiceHash ) {
2648 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2653 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2656 canon_name = canonicalize_servicename( name );
2658 dbwrap_store_bystring(ServiceHash, canon_name,
2659 make_tdb_data((uint8 *)&idx, sizeof(idx)),
2662 TALLOC_FREE(canon_name);
2667 /***************************************************************************
2668 Add a new home service, with the specified home directory, defaults coming
2670 ***************************************************************************/
2672 bool lp_add_home(const char *pszHomename, int iDefaultService,
2673 const char *user, const char *pszHomedir)
2677 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2682 if (!(*(ServicePtrs[iDefaultService]->szPath))
2683 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2684 string_set(&ServicePtrs[i]->szPath, pszHomedir);
2687 if (!(*(ServicePtrs[i]->comment))) {
2688 char *comment = NULL;
2689 if (asprintf(&comment, "Home directory of %s", user) < 0) {
2692 string_set(&ServicePtrs[i]->comment, comment);
2696 /* set the browseable flag from the global default */
2698 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2700 ServicePtrs[i]->autoloaded = True;
2702 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2703 user, ServicePtrs[i]->szPath ));
2708 /***************************************************************************
2709 Add a new service, based on an old one.
2710 ***************************************************************************/
2712 int lp_add_service(const char *pszService, int iDefaultService)
2714 if (iDefaultService < 0) {
2715 return add_a_service(&sDefault, pszService);
2718 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2721 /***************************************************************************
2722 Add the IPC service.
2723 ***************************************************************************/
2725 static bool lp_add_ipc(const char *ipc_name, bool guest_ok)
2727 char *comment = NULL;
2728 int i = add_a_service(&sDefault, ipc_name);
2733 if (asprintf(&comment, "IPC Service (%s)",
2734 Globals.szServerString) < 0) {
2738 string_set(&ServicePtrs[i]->szPath, tmpdir());
2739 string_set(&ServicePtrs[i]->szUsername, "");
2740 string_set(&ServicePtrs[i]->comment, comment);
2741 string_set(&ServicePtrs[i]->fstype, "IPC");
2742 ServicePtrs[i]->iMaxConnections = 0;
2743 ServicePtrs[i]->bAvailable = True;
2744 ServicePtrs[i]->bRead_only = True;
2745 ServicePtrs[i]->bGuest_only = False;
2746 ServicePtrs[i]->bGuest_ok = guest_ok;
2747 ServicePtrs[i]->bPrint_ok = False;
2748 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2750 DEBUG(3, ("adding IPC service\n"));
2756 /***************************************************************************
2757 Add a new printer service, with defaults coming from service iFrom.
2758 ***************************************************************************/
2760 bool lp_add_printer(const char *pszPrintername, int iDefaultService)
2762 const char *comment = "From Printcap";
2763 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2768 /* note that we do NOT default the availability flag to True - */
2769 /* we take it from the default service passed. This allows all */
2770 /* dynamic printers to be disabled by disabling the [printers] */
2771 /* entry (if/when the 'available' keyword is implemented!). */
2773 /* the printer name is set to the service name. */
2774 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2775 string_set(&ServicePtrs[i]->comment, comment);
2777 /* set the browseable flag from the gloabl default */
2778 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2780 /* Printers cannot be read_only. */
2781 ServicePtrs[i]->bRead_only = False;
2782 /* No share modes on printer services. */
2783 ServicePtrs[i]->bShareModes = False;
2784 /* No oplocks on printer services. */
2785 ServicePtrs[i]->bOpLocks = False;
2786 /* Printer services must be printable. */
2787 ServicePtrs[i]->bPrint_ok = True;
2789 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2795 /***************************************************************************
2796 Check whether the given parameter name is valid.
2797 Parametric options (names containing a colon) are considered valid.
2798 ***************************************************************************/
2800 bool lp_parameter_is_valid(const char *pszParmName)
2802 return ((map_parameter(pszParmName) != -1) ||
2803 (strchr(pszParmName, ':') != NULL));
2806 /***************************************************************************
2807 Check whether the given name is the name of a global parameter.
2808 Returns True for strings belonging to parameters of class
2809 P_GLOBAL, False for all other strings, also for parametric options
2810 and strings not belonging to any option.
2811 ***************************************************************************/
2813 bool lp_parameter_is_global(const char *pszParmName)
2815 int num = map_parameter(pszParmName);
2818 return (parm_table[num].p_class == P_GLOBAL);
2824 /**************************************************************************
2825 Check whether the given name is the canonical name of a parameter.
2826 Returns False if it is not a valid parameter Name.
2827 For parametric options, True is returned.
2828 **************************************************************************/
2830 bool lp_parameter_is_canonical(const char *parm_name)
2832 if (!lp_parameter_is_valid(parm_name)) {
2836 return (map_parameter(parm_name) ==
2837 map_parameter_canonical(parm_name, NULL));
2840 /**************************************************************************
2841 Determine the canonical name for a parameter.
2842 Indicate when it is an inverse (boolean) synonym instead of a
2844 **************************************************************************/
2846 bool lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2851 if (!lp_parameter_is_valid(parm_name)) {
2856 num = map_parameter_canonical(parm_name, inverse);
2858 /* parametric option */
2859 *canon_parm = parm_name;
2861 *canon_parm = parm_table[num].label;
2868 /**************************************************************************
2869 Determine the canonical name for a parameter.
2870 Turn the value given into the inverse boolean expression when
2871 the synonym is an invers boolean synonym.
2873 Return True if parm_name is a valid parameter name and
2874 in case it is an invers boolean synonym, if the val string could
2875 successfully be converted to the reverse bool.
2876 Return false in all other cases.
2877 **************************************************************************/
2879 bool lp_canonicalize_parameter_with_value(const char *parm_name,
2881 const char **canon_parm,
2882 const char **canon_val)
2887 if (!lp_parameter_is_valid(parm_name)) {
2893 num = map_parameter_canonical(parm_name, &inverse);
2895 /* parametric option */
2896 *canon_parm = parm_name;
2899 *canon_parm = parm_table[num].label;
2901 if (!lp_invert_boolean(val, canon_val)) {
2913 /***************************************************************************
2914 Map a parameter's string representation to something we can use.
2915 Returns False if the parameter string is not recognised, else TRUE.
2916 ***************************************************************************/
2918 static int map_parameter(const char *pszParmName)
2922 if (*pszParmName == '-')
2925 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2926 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2929 /* Warn only if it isn't parametric option */
2930 if (strchr(pszParmName, ':') == NULL)
2931 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2932 /* We do return 'fail' for parametric options as well because they are
2933 stored in different storage
2938 /***************************************************************************
2939 Map a parameter's string representation to the index of the canonical
2940 form of the parameter (it might be a synonym).
2941 Returns -1 if the parameter string is not recognised.
2942 ***************************************************************************/
2944 static int map_parameter_canonical(const char *pszParmName, bool *inverse)
2946 int parm_num, canon_num;
2947 bool loc_inverse = False;
2949 parm_num = map_parameter(pszParmName);
2950 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2951 /* invalid, parametric or no canidate for synonyms ... */
2955 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2956 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2957 parm_num = canon_num;
2963 if (inverse != NULL) {
2964 *inverse = loc_inverse;
2969 /***************************************************************************
2970 return true if parameter number parm1 is a synonym of parameter
2971 number parm2 (parm2 being the principal name).
2972 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
2974 ***************************************************************************/
2976 static bool is_synonym_of(int parm1, int parm2, bool *inverse)
2978 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
2979 (parm_table[parm1].flags & FLAG_HIDE) &&
2980 !(parm_table[parm2].flags & FLAG_HIDE))
2982 if (inverse != NULL) {
2983 if ((parm_table[parm1].type == P_BOOLREV) &&
2984 (parm_table[parm2].type == P_BOOL))
2996 /***************************************************************************
2997 Show one parameter's name, type, [values,] and flags.
2998 (helper functions for show_parameter_list)
2999 ***************************************************************************/
3001 static void show_parameter(int parmIndex)
3003 int enumIndex, flagIndex;
3008 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
3009 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING",
3011 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
3012 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
3013 FLAG_HIDE, FLAG_DOS_STRING};
3014 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
3015 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
3016 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
3018 printf("%s=%s", parm_table[parmIndex].label,
3019 type[parm_table[parmIndex].type]);
3020 if (parm_table[parmIndex].type == P_ENUM) {
3023 parm_table[parmIndex].enum_list[enumIndex].name;
3027 enumIndex ? "|" : "",
3028 parm_table[parmIndex].enum_list[enumIndex].name);
3033 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3034 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3037 flag_names[flagIndex]);
3042 /* output synonyms */
3044 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3045 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3046 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3047 parm_table[parmIndex2].label);
3048 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3050 printf(" (synonyms: ");
3055 printf("%s%s", parm_table[parmIndex2].label,
3056 inverse ? "[i]" : "");
3066 /***************************************************************************
3067 Show all parameter's name, type, [values,] and flags.
3068 ***************************************************************************/
3070 void show_parameter_list(void)
3072 int classIndex, parmIndex;
3073 const char *section_names[] = { "local", "global", NULL};
3075 for (classIndex=0; section_names[classIndex]; classIndex++) {
3076 printf("[%s]\n", section_names[classIndex]);
3077 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3078 if (parm_table[parmIndex].p_class == classIndex) {
3079 show_parameter(parmIndex);
3085 /***************************************************************************
3086 Set a boolean variable from the text value stored in the passed string.
3087 Returns True in success, False if the passed string does not correctly
3088 represent a boolean.
3089 ***************************************************************************/
3091 static bool set_boolean(bool *pb, const char *pszParmValue)
3098 if (strwicmp(pszParmValue, "yes") == 0 ||
3099 strwicmp(pszParmValue, "true") == 0 ||
3100 strwicmp(pszParmValue, "1") == 0)
3102 else if (strwicmp(pszParmValue, "no") == 0 ||
3103 strwicmp(pszParmValue, "False") == 0 ||
3104 strwicmp(pszParmValue, "0") == 0)
3108 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3113 if ((pb != NULL) && (bRetval != False)) {
3121 /***************************************************************************
3122 Check if a given string correctly represents a boolean value.
3123 ***************************************************************************/
3125 bool lp_string_is_valid_boolean(const char *parm_value)
3127 return set_boolean(NULL, parm_value);
3130 /***************************************************************************
3131 Get the standard string representation of a boolean value ("yes" or "no")
3132 ***************************************************************************/
3134 static const char *get_boolean(bool bool_value)
3136 static const char *yes_str = "yes";
3137 static const char *no_str = "no";
3139 return (bool_value ? yes_str : no_str);
3142 /***************************************************************************
3143 Provide the string of the negated boolean value associated to the boolean
3144 given as a string. Returns False if the passed string does not correctly
3145 represent a boolean.
3146 ***************************************************************************/
3148 bool lp_invert_boolean(const char *str, const char **inverse_str)
3152 if (!set_boolean(&val, str)) {
3156 *inverse_str = get_boolean(!val);
3160 /***************************************************************************
3161 Provide the canonical string representation of a boolean value given
3162 as a string. Return True on success, False if the string given does
3163 not correctly represent a boolean.
3164 ***************************************************************************/
3166 bool lp_canonicalize_boolean(const char *str, const char**canon_str)
3170 if (!set_boolean(&val, str)) {
3174 *canon_str = get_boolean(val);
3178 /***************************************************************************
3179 Find a service by name. Otherwise works like get_service.
3180 ***************************************************************************/
3182 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3188 if (ServiceHash == NULL) {
3192 canon_name = canonicalize_servicename(pszServiceName);
3194 data = dbwrap_fetch_bystring(ServiceHash, canon_name, canon_name);
3196 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
3197 iService = *(int *)data.dptr;
3200 TALLOC_FREE(canon_name);
3202 if ((iService != -1) && (LP_SNUM_OK(iService))
3203 && (pserviceDest != NULL)) {
3204 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3210 /***************************************************************************
3211 Copy a service structure to another.
3212 If pcopymapDest is NULL then copy all fields
3213 ***************************************************************************/
3215 static void copy_service(service * pserviceDest, service * pserviceSource,
3216 struct bitmap *pcopymapDest)
3219 bool bcopyall = (pcopymapDest == NULL);
3220 param_opt_struct *data, *pdata, *paramo;
3223 for (i = 0; parm_table[i].label; i++)
3224 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3225 (bcopyall || bitmap_query(pcopymapDest,i))) {
3226 void *def_ptr = parm_table[i].ptr;
3228 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3231 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3234 switch (parm_table[i].type) {
3237 *(bool *)dest_ptr = *(bool *)src_ptr;
3243 *(int *)dest_ptr = *(int *)src_ptr;
3247 *(char *)dest_ptr = *(char *)src_ptr;
3251 string_set((char **)dest_ptr,
3256 string_set((char **)dest_ptr,
3258 strupper_m(*(char **)dest_ptr);
3261 str_list_free((char ***)dest_ptr);
3262 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3270 init_copymap(pserviceDest);
3271 if (pserviceSource->copymap)
3272 bitmap_copy(pserviceDest->copymap,
3273 pserviceSource->copymap);
3276 data = pserviceSource->param_opt;
3279 pdata = pserviceDest->param_opt;
3280 /* Traverse destination */
3282 /* If we already have same option, override it */
3283 if (strcmp(pdata->key, data->key) == 0) {
3284 string_free(&pdata->value);
3285 str_list_free(&data->list);
3286 pdata->value = SMB_STRDUP(data->value);
3290 pdata = pdata->next;
3293 paramo = SMB_XMALLOC_P(param_opt_struct);
3294 paramo->key = SMB_STRDUP(data->key);
3295 paramo->value = SMB_STRDUP(data->value);
3296 paramo->list = NULL;
3297 DLIST_ADD(pserviceDest->param_opt, paramo);
3303 /***************************************************************************
3304 Check a service for consistency. Return False if the service is in any way
3305 incomplete or faulty, else True.
3306 ***************************************************************************/
3308 bool service_ok(int iService)
3313 if (ServicePtrs[iService]->szService[0] == '\0') {
3314 DEBUG(0, ("The following message indicates an internal error:\n"));
3315 DEBUG(0, ("No service name in service entry.\n"));
3319 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3320 /* I can't see why you'd want a non-printable printer service... */
3321 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3322 if (!ServicePtrs[iService]->bPrint_ok) {
3323 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3324 ServicePtrs[iService]->szService));
3325 ServicePtrs[iService]->bPrint_ok = True;
3327 /* [printers] service must also be non-browsable. */
3328 if (ServicePtrs[iService]->bBrowseable)
3329 ServicePtrs[iService]->bBrowseable = False;
3332 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3333 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3334 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3336 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3337 ServicePtrs[iService]->szService));
3338 ServicePtrs[iService]->bAvailable = False;
3341 /* If a service is flagged unavailable, log the fact at level 1. */
3342 if (!ServicePtrs[iService]->bAvailable)
3343 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3344 ServicePtrs[iService]->szService));
3350 * lp_regdb_open - regdb helper function
3352 * this should be considered an interim solution that becomes
3353 * superfluous once the registry code has been rewritten
3354 * do allow use of the tdb portion of the registry alone.
3356 * in the meanwhile this provides a lean access
3357 * to the registry globals.
3360 static struct tdb_wrap *lp_regdb_open(void)
3362 struct tdb_wrap *reg_tdb = NULL;
3363 const char *vstring = "INFO/version";
3367 reg_tdb = tdb_wrap_open(NULL, state_path("registry.tdb"), 0,
3368 REG_TDB_FLAGS, O_RDWR, 0600);
3371 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3372 state_path("registry.tdb"), strerror(errno)));
3376 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3379 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3380 if (vers_id != REGVER_V1) {
3381 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3382 "INFO/version (got %d, expected %d)\n",
3383 state_path("registry.tdb"), vers_id, REGVER_V1));
3384 /* this is apparently not implemented in the tdb */
3392 * process_registry_globals
3394 * this is the interim version of process_registry globals
3396 * until we can do it as we would like using the api and only
3397 * using the tdb portion of the registry (see below),
3398 * this just provides the needed functionality of regdb_fetch_values
3399 * and regdb_unpack_values, circumventing any fancy stuff, to
3400 * give us access to the registry globals.
3402 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3405 struct tdb_wrap *reg_tdb = NULL;
3409 /* vars for the tdb unpack loop */
3416 uint32 num_values = 0;
3419 struct registry_value *value = NULL;
3421 include_registry_globals = True;
3425 reg_tdb = lp_regdb_open();
3427 DEBUG(1, ("Error opening the registry!\n"));
3431 /* reg_tdb is from now on used as talloc ctx.
3432 * freeing it closes the tdb (if refcount is 0) */
3434 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3435 KEY_SMBCONF, GLOBAL_NAME);
3436 normalize_dbkey(keystr);
3438 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3441 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3448 buflen = data.dsize;
3450 /* unpack number of values */
3451 len = tdb_unpack(buf, buflen, "d", &num_values);
3452 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3455 /* unpack the values */
3456 for (i=0; i < num_values; i++) {
3461 len += tdb_unpack(buf+len, buflen-len, "fdB",
3466 if (registry_smbconf_valname_forbidden(valname)) {
3467 DEBUG(10, ("process_registry_globals: Ignoring "
3468 "parameter '%s' in registry.\n", valname));
3471 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3473 if (size && data_p) {
3474 err = registry_pull_value(reg_tdb,
3481 if (!W_ERROR_IS_OK(err)) {
3486 valstr = talloc_asprintf(reg_tdb, "%d",
3488 pfunc(valname, valstr);
3491 pfunc(valname, value->v.sz.str);
3494 /* ignore other types */
3500 ret = pfunc("registry shares", "yes");
3501 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3504 TALLOC_FREE(reg_tdb);
3505 SAFE_FREE(data.dptr);
3511 * this is process_registry_globals as it _should_ be (roughly)
3512 * using the reg_api functions...
3515 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3518 TALLOC_CTX *ctx = NULL;
3519 char *regpath = NULL;
3520 WERROR werr = WERR_OK;
3521 struct registry_key *key = NULL;
3522 struct registry_value *value = NULL;
3523 char *valname = NULL;
3524 char *valstr = NULL;
3526 NT_USER_TOKEN *token;
3528 ctx = talloc_init("process_registry_globals");
3530 smb_panic("Failed to create talloc context!");
3533 include_registry_globals = True;
3535 if (!registry_init_regdb()) {
3536 DEBUG(1, ("Error initializing the registry.\n"));
3540 if (!(token = registry_create_admin_token(ctx))) {
3541 DEBUG(1, ("Error creating admin token\n"));
3545 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3546 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3547 if (!W_ERROR_IS_OK(werr)) {
3548 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3549 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3550 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3555 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3559 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3560 switch(value->type) {
3562 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3563 pfunc(valname, valstr);
3564 TALLOC_FREE(valstr);
3567 pfunc(valname, value->v.sz.str);
3570 /* ignore other types */
3574 TALLOC_FREE(valstr);
3577 ret = pfunc("registry shares", "yes");
3579 regdb_last_seqnum = regdb_get_seqnum();
3582 talloc_destroy(ctx);
3587 static struct file_lists {
3588 struct file_lists *next;
3592 } *file_lists = NULL;
3594 /*******************************************************************
3595 Keep a linked list of all config files so we know when one has changed
3596 it's date and needs to be reloaded.
3597 ********************************************************************/
3599 static void add_to_file_list(const char *fname, const char *subfname)
3601 struct file_lists *f = file_lists;
3604 if (f->name && !strcmp(f->name, fname))
3610 f = SMB_MALLOC_P(struct file_lists);
3613 f->next = file_lists;
3614 f->name = SMB_STRDUP(fname);
3619 f->subfname = SMB_STRDUP(subfname);
3625 f->modtime = file_modtime(subfname);
3627 time_t t = file_modtime(subfname);
3633 bool lp_include_registry_globals(void)
3635 return include_registry_globals;
3638 /*******************************************************************
3639 Check if a config file has changed date.
3640 ********************************************************************/
3642 bool lp_file_list_changed(void)
3644 struct file_lists *f = file_lists;
3645 struct tdb_wrap *reg_tdb = NULL;
3647 DEBUG(6, ("lp_file_list_changed()\n"));
3649 if (include_registry_globals) {
3650 reg_tdb = lp_regdb_open();
3651 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3653 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3654 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3655 TALLOC_FREE(reg_tdb);
3664 n2 = alloc_sub_basic(get_current_username(),
3665 current_user_info.domain,
3670 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3671 f->name, n2, ctime(&f->modtime)));
3673 mod_time = file_modtime(n2);
3675 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3677 ("file %s modified: %s\n", n2,
3679 f->modtime = mod_time;
3680 SAFE_FREE(f->subfname);
3681 f->subfname = n2; /* Passing ownership of
3682 return from alloc_sub_basic
3692 /***************************************************************************
3693 Run standard_sub_basic on netbios name... needed because global_myname
3694 is not accessed through any lp_ macro.
3695 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3696 ***************************************************************************/
3698 static bool handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3701 char *netbios_name = alloc_sub_basic(get_current_username(),
3702 current_user_info.domain,
3705 ret = set_global_myname(netbios_name);
3706 SAFE_FREE(netbios_name);
3707 string_set(&Globals.szNetbiosName,global_myname());
3709 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3715 static bool handle_charset(int snum, const char *pszParmValue, char **ptr)
3717 if (strcmp(*ptr, pszParmValue) != 0) {
3718 string_set(ptr, pszParmValue);
3726 static bool handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3730 ret = set_global_myworkgroup(pszParmValue);
3731 string_set(&Globals.szWorkgroup,lp_workgroup());
3736 static bool handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3740 ret = set_global_scope(pszParmValue);
3741 string_set(&Globals.szNetbiosScope,global_scope());
3746 static bool handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3748 str_list_free(&Globals.szNetbiosAliases);
3749 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3750 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3753 /***************************************************************************
3754 Handle the include operation.
3755 ***************************************************************************/
3757 static bool handle_include(int snum, const char *pszParmValue, char **ptr)
3761 if (strequal(pszParmValue, INCLUDE_REGISTRY_NAME)) {
3762 if (bInGlobalSection) {
3763 return process_registry_globals(do_parameter);
3766 DEBUG(1, ("\"include = registry\" only effective "
3767 "in %s section\n", GLOBAL_NAME));
3772 fname = alloc_sub_basic(get_current_username(),
3773 current_user_info.domain,
3776 add_to_file_list(pszParmValue, fname);
3778 string_set(ptr, fname);
3780 if (file_exist(fname, NULL)) {
3781 bool ret = pm_process(fname, do_section, do_parameter);
3786 DEBUG(2, ("Can't find include file %s\n", fname));
3791 /***************************************************************************
3792 Handle the interpretation of the copy parameter.
3793 ***************************************************************************/
3795 static bool handle_copy(int snum, const char *pszParmValue, char **ptr)
3799 service serviceTemp;
3801 string_set(ptr, pszParmValue);
3803 init_service(&serviceTemp);
3807 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3809 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3810 if (iTemp == iServiceIndex) {
3811 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3813 copy_service(ServicePtrs[iServiceIndex],
3815 ServicePtrs[iServiceIndex]->copymap);
3819 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3823 free_service(&serviceTemp);
3827 /***************************************************************************
3828 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3833 idmap uid = 1000-1999
3836 We only do simple parsing checks here. The strings are parsed into useful
3837 structures in the idmap daemon code.
3839 ***************************************************************************/
3841 /* Some lp_ routines to return idmap [ug]id information */
3843 static uid_t idmap_uid_low, idmap_uid_high;
3844 static gid_t idmap_gid_low, idmap_gid_high;
3846 bool lp_idmap_uid(uid_t *low, uid_t *high)
3848 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3852 *low = idmap_uid_low;
3855 *high = idmap_uid_high;
3860 bool lp_idmap_gid(gid_t *low, gid_t *high)
3862 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3866 *low = idmap_gid_low;
3869 *high = idmap_gid_high;
3874 /* Do some simple checks on "idmap [ug]id" parameter values */
3876 static bool handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3880 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3885 string_set(ptr, pszParmValue);
3887 idmap_uid_low = low;
3888 idmap_uid_high = high;
3893 static bool handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3897 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3902 string_set(ptr, pszParmValue);
3904 idmap_gid_low = low;
3905 idmap_gid_high = high;
3910 /***************************************************************************
3911 Handle the DEBUG level list.
3912 ***************************************************************************/
3914 static bool handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3916 string_set(ptr, pszParmValueIn);
3917 return debug_parse_levels(pszParmValueIn);
3920 /***************************************************************************
3921 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3922 ***************************************************************************/
3924 static const char *append_ldap_suffix( const char *str )
3926 const char *suffix_string;
3929 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
3930 Globals.szLdapSuffix );
3931 if ( !suffix_string ) {
3932 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3936 return suffix_string;
3939 const char *lp_ldap_machine_suffix(void)
3941 if (Globals.szLdapMachineSuffix[0])
3942 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3944 return lp_string(Globals.szLdapSuffix);
3947 const char *lp_ldap_user_suffix(void)
3949 if (Globals.szLdapUserSuffix[0])
3950 return append_ldap_suffix(Globals.szLdapUserSuffix);
3952 return lp_string(Globals.szLdapSuffix);
3955 const char *lp_ldap_group_suffix(void)
3957 if (Globals.szLdapGroupSuffix[0])
3958 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3960 return lp_string(Globals.szLdapSuffix);
3963 const char *lp_ldap_idmap_suffix(void)
3965 if (Globals.szLdapIdmapSuffix[0])
3966 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3968 return lp_string(Globals.szLdapSuffix);
3971 /****************************************************************************
3972 set the value for a P_ENUM
3973 ***************************************************************************/
3975 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3980 for (i = 0; parm->enum_list[i].name; i++) {
3981 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3982 *ptr = parm->enum_list[i].value;
3988 /***************************************************************************
3989 ***************************************************************************/
3991 static bool handle_printing(int snum, const char *pszParmValue, char **ptr)
3993 static int parm_num = -1;
3996 if ( parm_num == -1 )
3997 parm_num = map_parameter( "printing" );
3999 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
4004 s = ServicePtrs[snum];
4006 init_printer_values( s );
4012 /***************************************************************************
4013 Initialise a copymap.
4014 ***************************************************************************/
4016 static void init_copymap(service * pservice)
4019 if (pservice->copymap) {
4020 bitmap_free(pservice->copymap);
4022 pservice->copymap = bitmap_allocate(NUMPARAMETERS);
4023 if (!pservice->copymap)
4025 ("Couldn't allocate copymap!! (size %d)\n",
4026 (int)NUMPARAMETERS));
4028 for (i = 0; i < NUMPARAMETERS; i++)
4029 bitmap_set(pservice->copymap, i);
4032 /***************************************************************************
4033 Return the local pointer to a parameter given the service number and the
4034 pointer into the default structure.
4035 ***************************************************************************/
4037 void *lp_local_ptr(int snum, void *ptr)
4039 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
4042 /***************************************************************************
4043 Process a parameter for a particular service number. If snum < 0
4044 then assume we are in the globals.
4045 ***************************************************************************/
4047 bool lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
4049 int parmnum, i, slen;
4050 void *parm_ptr = NULL; /* where we are going to store the result */
4051 void *def_ptr = NULL;
4052 char *param_key = NULL;
4054 param_opt_struct *paramo, *data;
4057 parmnum = map_parameter(pszParmName);
4060 if ((sep=strchr(pszParmName, ':')) != NULL) {
4061 TALLOC_CTX *frame = talloc_stackframe();
4064 param_key = talloc_asprintf(frame, "%s:", pszParmName);
4069 slen = strlen(param_key);
4070 param_key = talloc_asprintf_append(param_key, sep+1);
4075 trim_char(param_key+slen, ' ', ' ');
4077 data = (snum < 0) ? Globals.param_opt :
4078 ServicePtrs[snum]->param_opt;
4079 /* Traverse destination */
4081 /* If we already have same option, override it */
4082 if (strcmp(data->key, param_key) == 0) {
4083 string_free(&data->value);
4084 str_list_free(&data->list);
4085 data->value = SMB_STRDUP(pszParmValue);
4092 paramo = SMB_XMALLOC_P(param_opt_struct);
4093 paramo->key = SMB_STRDUP(param_key);
4094 paramo->value = SMB_STRDUP(pszParmValue);
4095 paramo->list = NULL;
4097 DLIST_ADD(Globals.param_opt, paramo);
4099 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
4107 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
4111 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
4112 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
4116 def_ptr = parm_table[parmnum].ptr;
4118 /* we might point at a service, the default service or a global */
4122 if (parm_table[parmnum].p_class == P_GLOBAL) {
4124 ("Global parameter %s found in service section!\n",
4129 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
4134 if (!ServicePtrs[snum]->copymap)
4135 init_copymap(ServicePtrs[snum]);
4137 /* this handles the aliases - set the copymap for other entries with
4138 the same data pointer */
4139 for (i = 0; parm_table[i].label; i++)
4140 if (parm_table[i].ptr == parm_table[parmnum].ptr)
4141 bitmap_clear(ServicePtrs[snum]->copymap, i);
4144 /* if it is a special case then go ahead */
4145 if (parm_table[parmnum].special) {
4146 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4150 /* now switch on the type of variable it is */
4151 switch (parm_table[parmnum].type)
4154 *(bool *)parm_ptr = lp_bool(pszParmValue);
4158 *(bool *)parm_ptr = !lp_bool(pszParmValue);
4162 *(int *)parm_ptr = lp_int(pszParmValue);
4166 *(char *)parm_ptr = *pszParmValue;
4170 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4172 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4177 str_list_free((char ***)parm_ptr);
4178 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
4182 string_set((char **)parm_ptr, pszParmValue);
4186 string_set((char **)parm_ptr, pszParmValue);
4187 strupper_m(*(char **)parm_ptr);
4191 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4200 /***************************************************************************
4201 Process a parameter.
4202 ***************************************************************************/
4204 static bool do_parameter(const char *pszParmName, const char *pszParmValue)
4206 if (!bInGlobalSection && bGlobalOnly)
4209 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4211 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4212 pszParmName, pszParmValue));
4215 /***************************************************************************
4216 Print a parameter of the specified type.
4217 ***************************************************************************/
4219 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4225 for (i = 0; p->enum_list[i].name; i++) {
4226 if (*(int *)ptr == p->enum_list[i].value) {
4228 p->enum_list[i].name);
4235 fprintf(f, "%s", BOOLSTR(*(bool *)ptr));
4239 fprintf(f, "%s", BOOLSTR(!*(bool *)ptr));
4243 fprintf(f, "%d", *(int *)ptr);
4247 fprintf(f, "%c", *(char *)ptr);
4251 char *o = octal_string(*(int *)ptr);
4252 fprintf(f, "%s", o);
4258 if ((char ***)ptr && *(char ***)ptr) {
4259 char **list = *(char ***)ptr;
4260 for (; *list; list++) {
4261 /* surround strings with whitespace in double quotes */
4262 if ( strchr_m( *list, ' ' ) )
4263 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4265 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4272 if (*(char **)ptr) {
4273 fprintf(f, "%s", *(char **)ptr);
4281 /***************************************************************************
4282 Check if two parameters are equal.
4283 ***************************************************************************/
4285 static bool equal_parameter(parm_type type, void *ptr1, void *ptr2)
4290 return (*((bool *)ptr1) == *((bool *)ptr2));
4295 return (*((int *)ptr1) == *((int *)ptr2));
4298 return (*((char *)ptr1) == *((char *)ptr2));
4301 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4306 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4311 return (p1 == p2 || strequal(p1, p2));
4319 /***************************************************************************
4320 Initialize any local varients in the sDefault table.
4321 ***************************************************************************/
4323 void init_locals(void)
4328 /***************************************************************************
4329 Process a new section (service). At this stage all sections are services.
4330 Later we'll have special sections that permit server parameters to be set.
4331 Returns True on success, False on failure.
4332 ***************************************************************************/
4334 static bool do_section(const char *pszSectionName)
4337 bool isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4338 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4341 /* if we were in a global section then do the local inits */
4342 if (bInGlobalSection && !isglobal)
4345 /* if we've just struck a global section, note the fact. */
4346 bInGlobalSection = isglobal;
4348 /* check for multiple global sections */
4349 if (bInGlobalSection) {
4350 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4354 if (!bInGlobalSection && bGlobalOnly)
4357 /* if we have a current service, tidy it up before moving on */
4360 if (iServiceIndex >= 0)
4361 bRetval = service_ok(iServiceIndex);
4363 /* if all is still well, move to the next record in the services array */
4365 /* We put this here to avoid an odd message order if messages are */
4366 /* issued by the post-processing of a previous section. */
4367 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4369 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4371 DEBUG(0, ("Failed to add a new service\n"));
4380 /***************************************************************************
4381 Determine if a partcular base parameter is currentl set to the default value.
4382 ***************************************************************************/
4384 static bool is_default(int i)
4386 if (!defaults_saved)
4388 switch (parm_table[i].type) {
4390 return str_list_compare (parm_table[i].def.lvalue,
4391 *(char ***)parm_table[i].ptr);
4394 return strequal(parm_table[i].def.svalue,
4395 *(char **)parm_table[i].ptr);
4398 return parm_table[i].def.bvalue ==
4399 *(bool *)parm_table[i].ptr;
4401 return parm_table[i].def.cvalue ==
4402 *(char *)parm_table[i].ptr;
4406 return parm_table[i].def.ivalue ==
4407 *(int *)parm_table[i].ptr;
4414 /***************************************************************************
4415 Display the contents of the global structure.
4416 ***************************************************************************/
4418 static void dump_globals(FILE *f)
4421 param_opt_struct *data;
4423 fprintf(f, "[global]\n");
4425 for (i = 0; parm_table[i].label; i++)
4426 if (parm_table[i].p_class == P_GLOBAL &&
4427 parm_table[i].ptr &&
4428 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4429 if (defaults_saved && is_default(i))
4431 fprintf(f, "\t%s = ", parm_table[i].label);
4432 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4435 if (Globals.param_opt != NULL) {
4436 data = Globals.param_opt;
4438 fprintf(f, "\t%s = %s\n", data->key, data->value);
4445 /***************************************************************************
4446 Return True if a local parameter is currently set to the global default.
4447 ***************************************************************************/
4449 bool lp_is_default(int snum, struct parm_struct *parm)
4451 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4453 return equal_parameter(parm->type,
4454 ((char *)ServicePtrs[snum]) + pdiff,
4455 ((char *)&sDefault) + pdiff);
4458 /***************************************************************************
4459 Display the contents of a single services record.
4460 ***************************************************************************/
4462 static void dump_a_service(service * pService, FILE * f)
4465 param_opt_struct *data;
4467 if (pService != &sDefault)
4468 fprintf(f, "[%s]\n", pService->szService);
4470 for (i = 0; parm_table[i].label; i++) {
4472 if (parm_table[i].p_class == P_LOCAL &&
4473 parm_table[i].ptr &&
4474 (*parm_table[i].label != '-') &&
4475 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4478 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4480 if (pService == &sDefault) {
4481 if (defaults_saved && is_default(i))
4484 if (equal_parameter(parm_table[i].type,
4485 ((char *)pService) +
4487 ((char *)&sDefault) +
4492 fprintf(f, "\t%s = ", parm_table[i].label);
4493 print_parameter(&parm_table[i],
4494 ((char *)pService) + pdiff, f);
4499 if (pService->param_opt != NULL) {
4500 data = pService->param_opt;
4502 fprintf(f, "\t%s = %s\n", data->key, data->value);
4508 /***************************************************************************
4509 Display the contents of a parameter of a single services record.
4510 ***************************************************************************/
4512 bool dump_a_parameter(int snum, char *parm_name, FILE * f, bool isGlobal)
4515 bool result = False;
4518 fstring local_parm_name;
4520 const char *parm_opt_value;
4522 /* check for parametrical option */
4523 fstrcpy( local_parm_name, parm_name);
4524 parm_opt = strchr( local_parm_name, ':');
4529 if (strlen(parm_opt)) {
4530 parm_opt_value = lp_parm_const_string( snum,
4531 local_parm_name, parm_opt, NULL);
4532 if (parm_opt_value) {
4533 printf( "%s\n", parm_opt_value);
4540 /* check for a key and print the value */
4547 for (i = 0; parm_table[i].label; i++) {
4548 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4549 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4550 parm_table[i].ptr &&
4551 (*parm_table[i].label != '-') &&
4552 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4557 ptr = parm_table[i].ptr;
4559 service * pService = ServicePtrs[snum];
4560 ptr = ((char *)pService) +
4561 PTR_DIFF(parm_table[i].ptr, &sDefault);
4564 print_parameter(&parm_table[i],
4575 /***************************************************************************
4576 Return info about the requested parameter (given as a string).
4577 Return NULL when the string is not a valid parameter name.
4578 ***************************************************************************/
4580 struct parm_struct *lp_get_parameter(const char *param_name)
4582 int num = map_parameter(param_name);
4588 return &parm_table[num];
4591 /***************************************************************************
4592 Return info about the next parameter in a service.
4593 snum==GLOBAL_SECTION_SNUM gives the globals.
4594 Return NULL when out of parameters.
4595 ***************************************************************************/
4597 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4600 /* do the globals */
4601 for (; parm_table[*i].label; (*i)++) {
4602 if (parm_table[*i].p_class == P_SEPARATOR)
4603 return &parm_table[(*i)++];
4605 if (!parm_table[*i].ptr
4606 || (*parm_table[*i].label == '-'))
4610 && (parm_table[*i].ptr ==
4611 parm_table[(*i) - 1].ptr))
4614 if (is_default(*i) && !allparameters)
4617 return &parm_table[(*i)++];
4620 service *pService = ServicePtrs[snum];
4622 for (; parm_table[*i].label; (*i)++) {
4623 if (parm_table[*i].p_class == P_SEPARATOR)
4624 return &parm_table[(*i)++];
4626 if (parm_table[*i].p_class == P_LOCAL &&
4627 parm_table[*i].ptr &&
4628 (*parm_table[*i].label != '-') &&
4630 (parm_table[*i].ptr !=
4631 parm_table[(*i) - 1].ptr)))
4634 PTR_DIFF(parm_table[*i].ptr,
4637 if (allparameters ||
4638 !equal_parameter(parm_table[*i].type,
4639 ((char *)pService) +
4641 ((char *)&sDefault) +
4644 return &parm_table[(*i)++];
4655 /***************************************************************************
4656 Display the contents of a single copy structure.
4657 ***************************************************************************/
4658 static void dump_copy_map(bool *pcopymap)
4664 printf("\n\tNon-Copied parameters:\n");
4666 for (i = 0; parm_table[i].label; i++)
4667 if (parm_table[i].p_class == P_LOCAL &&
4668 parm_table[i].ptr && !pcopymap[i] &&
4669 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4671 printf("\t\t%s\n", parm_table[i].label);
4676 /***************************************************************************
4677 Return TRUE if the passed service number is within range.
4678 ***************************************************************************/
4680 bool lp_snum_ok(int iService)
4682 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4685 /***************************************************************************
4686 Auto-load some home services.
4687 ***************************************************************************/
4689 static void lp_add_auto_services(char *str)
4698 s = SMB_STRDUP(str);
4702 homes = lp_servicenumber(HOMES_NAME);
4704 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4705 char *home = get_user_home_dir(p);
4707 if (lp_servicenumber(p) >= 0)
4710 if (home && homes >= 0)
4711 lp_add_home(p, homes, p, home);
4716 /***************************************************************************
4717 Auto-load one printer.
4718 ***************************************************************************/
4720 void lp_add_one_printer(char *name, char *comment)
4722 int printers = lp_servicenumber(PRINTERS_NAME);
4725 if (lp_servicenumber(name) < 0) {
4726 lp_add_printer(name, printers);
4727 if ((i = lp_servicenumber(name)) >= 0) {
4728 string_set(&ServicePtrs[i]->comment, comment);
4729 ServicePtrs[i]->autoloaded = True;
4734 /***************************************************************************
4735 Have we loaded a services file yet?
4736 ***************************************************************************/
4738 bool lp_loaded(void)
4743 /***************************************************************************
4744 Unload unused services.
4745 ***************************************************************************/
4747 void lp_killunused(bool (*snumused) (int))
4750 for (i = 0; i < iNumServices; i++) {
4754 /* don't kill autoloaded or usershare services */
4755 if ( ServicePtrs[i]->autoloaded ||
4756 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4760 if (!snumused || !snumused(i)) {
4761 free_service_byindex(i);
4766 /***************************************************************************
4768 ***************************************************************************/
4770 void lp_killservice(int iServiceIn)
4772 if (VALID(iServiceIn)) {
4773 free_service_byindex(iServiceIn);
4777 /***************************************************************************
4778 Save the curent values of all global and sDefault parameters into the
4779 defaults union. This allows swat and testparm to show only the
4780 changed (ie. non-default) parameters.
4781 ***************************************************************************/
4783 static void lp_save_defaults(void)
4786 for (i = 0; parm_table[i].label; i++) {
4787 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4789 switch (parm_table[i].type) {
4791 str_list_copy(&(parm_table[i].def.lvalue),
4792 *(const char ***)parm_table[i].ptr);
4796 if (parm_table[i].ptr) {
4797 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4799 parm_table[i].def.svalue = NULL;
4804 parm_table[i].def.bvalue =
4805 *(bool *)parm_table[i].ptr;
4808 parm_table[i].def.cvalue =
4809 *(char *)parm_table[i].ptr;
4814 parm_table[i].def.ivalue =
4815 *(int *)parm_table[i].ptr;
4821 defaults_saved = True;
4824 /*******************************************************************
4825 Set the server type we will announce as via nmbd.
4826 ********************************************************************/
4828 static const struct srv_role_tab {
4830 const char *role_str;
4831 } srv_role_tab [] = {
4832 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4833 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4834 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4835 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4839 const char* server_role_str(uint32 role)
4842 for (i=0; srv_role_tab[i].role_str; i++) {
4843 if (role == srv_role_tab[i].role) {
4844 return srv_role_tab[i].role_str;
4850 static void set_server_role(void)
4852 server_role = ROLE_STANDALONE;
4854 switch (lp_security()) {
4856 if (lp_domain_logons())
4857 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4860 if (lp_domain_logons())
4861 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4862 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4863 server_role = ROLE_STANDALONE;
4866 if (lp_domain_logons()) {
4867 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4868 server_role = ROLE_DOMAIN_BDC;
4871 server_role = ROLE_DOMAIN_MEMBER;
4874 if (lp_domain_logons()) {
4875 server_role = ROLE_DOMAIN_PDC;
4878 server_role = ROLE_DOMAIN_MEMBER;
4881 if (lp_domain_logons()) {
4883 if (Globals.iDomainMaster) /* auto or yes */
4884 server_role = ROLE_DOMAIN_PDC;
4886 server_role = ROLE_DOMAIN_BDC;
4890 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4894 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4897 /***********************************************************
4898 If we should send plaintext/LANMAN passwords in the clinet
4899 ************************************************************/
4901 static void set_allowed_client_auth(void)
4903 if (Globals.bClientNTLMv2Auth) {
4904 Globals.bClientLanManAuth = False;
4906 if (!Globals.bClientLanManAuth) {
4907 Globals.bClientPlaintextAuth = False;
4911 /***************************************************************************
4913 The following code allows smbd to read a user defined share file.
4914 Yes, this is my intent. Yes, I'm comfortable with that...
4916 THE FOLLOWING IS SECURITY CRITICAL CODE.
4918 It washes your clothes, it cleans your house, it guards you while you sleep...
4919 Do not f%^k with it....
4920 ***************************************************************************/
4922 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4924 /***************************************************************************
4925 Check allowed stat state of a usershare file.
4926 Ensure we print out who is dicking with us so the admin can
4927 get their sorry ass fired.
4928 ***************************************************************************/
4930 static bool check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4932 if (!S_ISREG(psbuf->st_mode)) {
4933 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4934 "not a regular file\n",
4935 fname, (unsigned int)psbuf->st_uid ));
4939 /* Ensure this doesn't have the other write bit set. */
4940 if (psbuf->st_mode & S_IWOTH) {
4941 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4942 "public write. Refusing to allow as a usershare file.\n",
4943 fname, (unsigned int)psbuf->st_uid ));
4947 /* Should be 10k or less. */
4948 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4949 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4950 "too large (%u) to be a user share file.\n",
4951 fname, (unsigned int)psbuf->st_uid,
4952 (unsigned int)psbuf->st_size ));
4959 /***************************************************************************
4960 Parse the contents of a usershare file.
4961 ***************************************************************************/
4963 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4964 SMB_STRUCT_STAT *psbuf,
4965 const char *servicename,
4969 char **pp_sharepath,
4974 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4975 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4978 SMB_STRUCT_STAT sbuf;
4979 char *sharepath = NULL;
4980 char *comment = NULL;
4982 *pp_sharepath = NULL;
4985 *pallow_guest = False;
4988 return USERSHARE_MALFORMED_FILE;
4991 if (strcmp(lines[0], "#VERSION 1") == 0) {
4993 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4996 return USERSHARE_MALFORMED_FILE;
4999 return USERSHARE_BAD_VERSION;
5002 if (strncmp(lines[1], "path=", 5) != 0) {
5003 return USERSHARE_MALFORMED_PATH;
5006 sharepath = talloc_strdup(ctx, &lines[1][5]);
5008 return USERSHARE_POSIX_ERR;
5010 trim_string(sharepath, " ", " ");
5012 if (strncmp(lines[2], "comment=", 8) != 0) {
5013 return USERSHARE_MALFORMED_COMMENT_DEF;
5016 comment = talloc_strdup(ctx, &lines[2][8]);
5018 return USERSHARE_POSIX_ERR;
5020 trim_string(comment, " ", " ");
5021 trim_char(comment, '"', '"');
5023 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
5024 return USERSHARE_MALFORMED_ACL_DEF;
5027 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
5028 return USERSHARE_ACL_ERR;
5032 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
5033 return USERSHARE_MALFORMED_ACL_DEF;
5035 if (lines[4][9] == 'y') {
5036 *pallow_guest = True;
5040 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
5041 /* Path didn't change, no checks needed. */
5042 *pp_sharepath = sharepath;
5043 *pp_comment = comment;
5044 return USERSHARE_OK;
5047 /* The path *must* be absolute. */
5048 if (sharepath[0] != '/') {
5049 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
5050 servicename, sharepath));
5051 return USERSHARE_PATH_NOT_ABSOLUTE;
5054 /* If there is a usershare prefix deny list ensure one of these paths
5055 doesn't match the start of the user given path. */
5056 if (prefixdenylist) {
5058 for ( i=0; prefixdenylist[i]; i++ ) {
5059 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
5060 servicename, i, prefixdenylist[i], sharepath ));
5061 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
5062 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
5063 "usershare prefix deny list entries.\n",
5064 servicename, sharepath));
5065 return USERSHARE_PATH_IS_DENIED;
5070 /* If there is a usershare prefix allow list ensure one of these paths
5071 does match the start of the user given path. */
5073 if (prefixallowlist) {
5075 for ( i=0; prefixallowlist[i]; i++ ) {
5076 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
5077 servicename, i, prefixallowlist[i], sharepath ));
5078 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
5082 if (prefixallowlist[i] == NULL) {
5083 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
5084 "usershare prefix allow list entries.\n",
5085 servicename, sharepath));
5086 return USERSHARE_PATH_NOT_ALLOWED;
5090 /* Ensure this is pointing to a directory. */
5091 dp = sys_opendir(sharepath);
5094 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5095 servicename, sharepath));
5096 return USERSHARE_PATH_NOT_DIRECTORY;
5099 /* Ensure the owner of the usershare file has permission to share
5102 if (sys_stat(sharepath, &sbuf) == -1) {
5103 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
5104 servicename, sharepath, strerror(errno) ));
5106 return USERSHARE_POSIX_ERR;
5111 if (!S_ISDIR(sbuf.st_mode)) {
5112 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5113 servicename, sharepath ));
5114 return USERSHARE_PATH_NOT_DIRECTORY;
5117 /* Check if sharing is restricted to owner-only. */
5118 /* psbuf is the stat of the usershare definition file,
5119 sbuf is the stat of the target directory to be shared. */
5121 if (lp_usershare_owner_only()) {
5122 /* root can share anything. */
5123 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
5124 return USERSHARE_PATH_NOT_ALLOWED;
5128 *pp_sharepath = sharepath;
5129 *pp_comment = comment;
5130 return USERSHARE_OK;
5133 /***************************************************************************
5134 Deal with a usershare file.
5137 -1 - Bad name, invalid contents.
5138 - service name already existed and not a usershare, problem
5139 with permissions to share directory etc.
5140 ***************************************************************************/
5142 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5144 SMB_STRUCT_STAT sbuf;
5145 SMB_STRUCT_STAT lsbuf;
5147 char *sharepath = NULL;
5148 char *comment = NULL;
5149 fstring service_name;
5150 char **lines = NULL;
5154 TALLOC_CTX *ctx = NULL;
5155 SEC_DESC *psd = NULL;
5156 bool guest_ok = False;
5158 /* Ensure share name doesn't contain invalid characters. */
5159 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5160 DEBUG(0,("process_usershare_file: share name %s contains "
5161 "invalid characters (any of %s)\n",
5162 file_name, INVALID_SHARENAME_CHARS ));
5166 fstrcpy(service_name, file_name);
5168 if (asprintf(&fname, "%s/%s", dir_name, file_name) < 0) {
5171 /* Minimize the race condition by doing an lstat before we
5172 open and fstat. Ensure this isn't a symlink link. */
5174 if (sys_lstat(fname, &lsbuf) != 0) {
5175 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5176 fname, strerror(errno) ));
5181 /* This must be a regular file, not a symlink, directory or
5182 other strange filetype. */
5183 if (!check_usershare_stat(fname, &lsbuf)) {
5189 char *canon_name = canonicalize_servicename(service_name);
5190 TDB_DATA data = dbwrap_fetch_bystring(
5191 ServiceHash, canon_name, canon_name);
5195 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
5196 iService = *(int *)data.dptr;
5198 TALLOC_FREE(canon_name);
5201 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5202 /* Nothing changed - Mark valid and return. */
5203 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5205 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5210 /* Try and open the file read only - no symlinks allowed. */
5212 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5214 fd = sys_open(fname, O_RDONLY, 0);
5218 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5219 fname, strerror(errno) ));
5224 /* Now fstat to be *SURE* it's a regular file. */
5225 if (sys_fstat(fd, &sbuf) != 0) {
5227 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5228 fname, strerror(errno) ));
5233 /* Is it the same dev/inode as was lstated ? */
5234 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5236 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5237 "Symlink spoofing going on ?\n", fname ));
5242 /* This must be a regular file, not a symlink, directory or
5243 other strange filetype. */
5244 if (!check_usershare_stat(fname, &sbuf)) {
5249 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5252 if (lines == NULL) {
5253 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5254 fname, (unsigned int)sbuf.st_uid ));
5261 /* Should we allow printers to be shared... ? */
5262 ctx = talloc_init("usershare_sd_xctx");
5264 file_lines_free(lines);
5268 if (parse_usershare_file(ctx, &sbuf, service_name,
5269 iService, lines, numlines, &sharepath,
5270 &comment, &psd, &guest_ok) != USERSHARE_OK) {
5271 talloc_destroy(ctx);
5272 file_lines_free(lines);
5276 file_lines_free(lines);
5278 /* Everything ok - add the service possibly using a template. */
5280 const service *sp = &sDefault;
5281 if (snum_template != -1) {
5282 sp = ServicePtrs[snum_template];
5285 if ((iService = add_a_service(sp, service_name)) < 0) {
5286 DEBUG(0, ("process_usershare_file: Failed to add "
5287 "new service %s\n", service_name));
5288 talloc_destroy(ctx);
5292 /* Read only is controlled by usershare ACL below. */
5293 ServicePtrs[iService]->bRead_only = False;
5296 /* Write the ACL of the new/modified share. */
5297 if (!set_share_security(service_name, psd)) {
5298 DEBUG(0, ("process_usershare_file: Failed to set share "
5299 "security for user share %s\n",
5301 lp_remove_service(iService);
5302 talloc_destroy(ctx);
5306 /* If from a template it may be marked invalid. */
5307 ServicePtrs[iService]->valid = True;
5309 /* Set the service as a valid usershare. */
5310 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5312 /* Set guest access. */
5313 if (lp_usershare_allow_guests()) {
5314 ServicePtrs[iService]->bGuest_ok = guest_ok;
5317 /* And note when it was loaded. */
5318 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5319 string_set(&ServicePtrs[iService]->szPath, sharepath);
5320 string_set(&ServicePtrs[iService]->comment, comment);
5322 talloc_destroy(ctx);
5327 /***************************************************************************
5328 Checks if a usershare entry has been modified since last load.
5329 ***************************************************************************/
5331 static bool usershare_exists(int iService, time_t *last_mod)
5333 SMB_STRUCT_STAT lsbuf;
5334 const char *usersharepath = Globals.szUsersharePath;
5337 if (asprintf(&fname, "%s/%s",
5339 ServicePtrs[iService]->szService) < 0) {
5343 if (sys_lstat(fname, &lsbuf) != 0) {
5348 if (!S_ISREG(lsbuf.st_mode)) {
5354 *last_mod = lsbuf.st_mtime;
5358 /***************************************************************************
5359 Load a usershare service by name. Returns a valid servicenumber or -1.
5360 ***************************************************************************/
5362 int load_usershare_service(const char *servicename)
5364 SMB_STRUCT_STAT sbuf;
5365 const char *usersharepath = Globals.szUsersharePath;
5366 int max_user_shares = Globals.iUsershareMaxShares;
5367 int snum_template = -1;
5369 if (*usersharepath == 0 || max_user_shares == 0) {
5373 if (sys_stat(usersharepath, &sbuf) != 0) {
5374 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5375 usersharepath, strerror(errno) ));
5379 if (!S_ISDIR(sbuf.st_mode)) {
5380 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5386 * This directory must be owned by root, and have the 't' bit set.
5387 * It also must not be writable by "other".
5391 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5393 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5395 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5396 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5401 /* Ensure the template share exists if it's set. */
5402 if (Globals.szUsershareTemplateShare[0]) {
5403 /* We can't use lp_servicenumber here as we are recommending that
5404 template shares have -valid=False set. */
5405 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5406 if (ServicePtrs[snum_template]->szService &&
5407 strequal(ServicePtrs[snum_template]->szService,
5408 Globals.szUsershareTemplateShare)) {
5413 if (snum_template == -1) {
5414 DEBUG(0,("load_usershare_service: usershare template share %s "
5415 "does not exist.\n",
5416 Globals.szUsershareTemplateShare ));
5421 return process_usershare_file(usersharepath, servicename, snum_template);
5424 /***************************************************************************
5425 Load all user defined shares from the user share directory.
5426 We only do this if we're enumerating the share list.
5427 This is the function that can delete usershares that have
5429 ***************************************************************************/
5431 int load_usershare_shares(void)
5434 SMB_STRUCT_STAT sbuf;
5435 SMB_STRUCT_DIRENT *de;
5436 int num_usershares = 0;
5437 int max_user_shares = Globals.iUsershareMaxShares;
5438 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5439 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5440 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5442 int snum_template = -1;
5443 const char *usersharepath = Globals.szUsersharePath;
5444 int ret = lp_numservices();
5446 if (max_user_shares == 0 || *usersharepath == '\0') {
5447 return lp_numservices();
5450 if (sys_stat(usersharepath, &sbuf) != 0) {
5451 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5452 usersharepath, strerror(errno) ));
5457 * This directory must be owned by root, and have the 't' bit set.
5458 * It also must not be writable by "other".
5462 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5464 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5466 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5467 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5472 /* Ensure the template share exists if it's set. */
5473 if (Globals.szUsershareTemplateShare[0]) {
5474 /* We can't use lp_servicenumber here as we are recommending that
5475 template shares have -valid=False set. */
5476 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5477 if (ServicePtrs[snum_template]->szService &&
5478 strequal(ServicePtrs[snum_template]->szService,
5479 Globals.szUsershareTemplateShare)) {
5484 if (snum_template == -1) {
5485 DEBUG(0,("load_usershare_shares: usershare template share %s "
5486 "does not exist.\n",
5487 Globals.szUsershareTemplateShare ));
5492 /* Mark all existing usershares as pending delete. */
5493 for (iService = iNumServices - 1; iService >= 0; iService--) {
5494 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5495 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5499 dp = sys_opendir(usersharepath);
5501 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5502 usersharepath, strerror(errno) ));
5506 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5507 (de = sys_readdir(dp));
5508 num_dir_entries++ ) {
5510 const char *n = de->d_name;
5512 /* Ignore . and .. */
5514 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5520 /* Temporary file used when creating a share. */
5521 num_tmp_dir_entries++;
5524 /* Allow 20% tmp entries. */
5525 if (num_tmp_dir_entries > allowed_tmp_entries) {
5526 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5527 "in directory %s\n",
5528 num_tmp_dir_entries, usersharepath));
5532 r = process_usershare_file(usersharepath, n, snum_template);
5534 /* Update the services count. */
5536 if (num_usershares >= max_user_shares) {
5537 DEBUG(0,("load_usershare_shares: max user shares reached "
5538 "on file %s in directory %s\n",
5539 n, usersharepath ));
5542 } else if (r == -1) {
5543 num_bad_dir_entries++;
5546 /* Allow 20% bad entries. */
5547 if (num_bad_dir_entries > allowed_bad_entries) {
5548 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5549 "in directory %s\n",
5550 num_bad_dir_entries, usersharepath));
5554 /* Allow 20% bad entries. */
5555 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5556 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5557 "in directory %s\n",
5558 num_dir_entries, usersharepath));
5565 /* Sweep through and delete any non-refreshed usershares that are
5566 not currently in use. */
5567 for (iService = iNumServices - 1; iService >= 0; iService--) {
5568 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5569 if (conn_snum_used(iService)) {
5572 /* Remove from the share ACL db. */
5573 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5574 lp_servicename(iService) ));
5575 delete_share_security(lp_servicename(iService));
5576 free_service_byindex(iService);
5580 return lp_numservices();
5583 /********************************************************
5584 Destroy global resources allocated in this file
5585 ********************************************************/
5587 void gfree_loadparm(void)
5589 struct file_lists *f;
5590 struct file_lists *next;
5593 /* Free the file lists */
5598 SAFE_FREE( f->name );
5599 SAFE_FREE( f->subfname );
5604 /* Free resources allocated to services */
5606 for ( i = 0; i < iNumServices; i++ ) {
5608 free_service_byindex(i);
5612 SAFE_FREE( ServicePtrs );
5615 /* Now release all resources allocated to global
5616 parameters and the default service */
5618 for (i = 0; parm_table[i].label; i++)
5620 if ( parm_table[i].type == P_STRING
5621 || parm_table[i].type == P_USTRING )
5623 string_free( (char**)parm_table[i].ptr );
5625 else if (parm_table[i].type == P_LIST) {
5626 str_list_free( (char***)parm_table[i].ptr );
5631 /***************************************************************************
5632 Load the services array from the services file. Return True on success,
5634 ***************************************************************************/
5636 bool lp_load(const char *pszFname,
5640 bool initialize_globals)
5644 param_opt_struct *data, *pdata;
5646 n2 = alloc_sub_basic(get_current_username(),
5647 current_user_info.domain,
5650 smb_panic("lp_load: out of memory");
5653 add_to_file_list(pszFname, n2);
5657 DEBUG(3, ("lp_load: refreshing parameters\n"));
5659 bInGlobalSection = True;
5660 bGlobalOnly = global_only;
5662 init_globals(! initialize_globals);
5665 if (save_defaults) {
5670 if (Globals.param_opt != NULL) {
5671 data = Globals.param_opt;
5673 string_free(&data->key);
5674 string_free(&data->value);
5675 str_list_free(&data->list);
5680 Globals.param_opt = NULL;
5683 /* We get sections first, so have to start 'behind' to make up */
5685 bRetval = pm_process(n2, do_section, do_parameter);
5688 /* finish up the last section */
5689 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5691 if (iServiceIndex >= 0) {
5692 bRetval = service_ok(iServiceIndex);
5696 lp_add_auto_services(lp_auto_services());
5699 /* When 'restrict anonymous = 2' guest connections to ipc$
5701 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5702 if ( lp_enable_asu_support() ) {
5703 lp_add_ipc("ADMIN$", false);
5708 set_default_server_announce_type();
5709 set_allowed_client_auth();
5713 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5714 /* if bWINSsupport is true and we are in the client */
5715 if (in_client && Globals.bWINSsupport) {
5716 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5724 /***************************************************************************
5725 Reset the max number of services.
5726 ***************************************************************************/
5728 void lp_resetnumservices(void)
5733 /***************************************************************************
5734 Return the max number of services.
5735 ***************************************************************************/
5737 int lp_numservices(void)
5739 return (iNumServices);
5742 /***************************************************************************
5743 Display the contents of the services array in human-readable form.
5744 ***************************************************************************/
5746 void lp_dump(FILE *f, bool show_defaults, int maxtoprint)
5751 defaults_saved = False;
5755 dump_a_service(&sDefault, f);
5757 for (iService = 0; iService < maxtoprint; iService++) {
5759 lp_dump_one(f, show_defaults, iService);
5763 /***************************************************************************
5764 Display the contents of one service in human-readable form.
5765 ***************************************************************************/
5767 void lp_dump_one(FILE * f, bool show_defaults, int snum)
5770 if (ServicePtrs[snum]->szService[0] == '\0')
5772 dump_a_service(ServicePtrs[snum], f);
5776 /***************************************************************************
5777 Return the number of the service with the given name, or -1 if it doesn't
5778 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5779 getservicebyname()! This works ONLY if all services have been loaded, and
5780 does not copy the found service.
5781 ***************************************************************************/
5783 int lp_servicenumber(const char *pszServiceName)
5786 fstring serviceName;
5788 if (!pszServiceName) {
5789 return GLOBAL_SECTION_SNUM;
5792 for (iService = iNumServices - 1; iService >= 0; iService--) {
5793 if (VALID(iService) && ServicePtrs[iService]->szService) {
5795 * The substitution here is used to support %U is
5798 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5799 standard_sub_basic(get_current_username(),
5800 current_user_info.domain,
5801 serviceName,sizeof(serviceName));
5802 if (strequal(serviceName, pszServiceName)) {
5808 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5811 if (!usershare_exists(iService, &last_mod)) {
5812 /* Remove the share security tdb entry for it. */
5813 delete_share_security(lp_servicename(iService));
5814 /* Remove it from the array. */
5815 free_service_byindex(iService);
5816 /* Doesn't exist anymore. */
5817 return GLOBAL_SECTION_SNUM;
5820 /* Has it been modified ? If so delete and reload. */
5821 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5822 /* Remove it from the array. */
5823 free_service_byindex(iService);
5824 /* and now reload it. */
5825 iService = load_usershare_service(pszServiceName);
5830 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5831 return GLOBAL_SECTION_SNUM;
5837 bool share_defined(const char *service_name)
5839 return (lp_servicenumber(service_name) != -1);
5842 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5843 const char *sharename)
5845 struct share_params *result;
5849 if (!(sname = SMB_STRDUP(sharename))) {
5853 snum = find_service(sname);
5860 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5861 DEBUG(0, ("talloc failed\n"));
5865 result->service = snum;
5869 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5871 struct share_iterator *result;
5873 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5874 DEBUG(0, ("talloc failed\n"));
5878 result->next_id = 0;
5882 struct share_params *next_share(struct share_iterator *list)
5884 struct share_params *result;
5886 while (!lp_snum_ok(list->next_id) &&
5887 (list->next_id < lp_numservices())) {
5891 if (list->next_id >= lp_numservices()) {
5895 if (!(result = TALLOC_P(list, struct share_params))) {
5896 DEBUG(0, ("talloc failed\n"));
5900 result->service = list->next_id;
5905 struct share_params *next_printer(struct share_iterator *list)
5907 struct share_params *result;
5909 while ((result = next_share(list)) != NULL) {
5910 if (lp_print_ok(result->service)) {
5918 * This is a hack for a transition period until we transformed all code from
5919 * service numbers to struct share_params.
5922 struct share_params *snum2params_static(int snum)
5924 static struct share_params result;
5925 result.service = snum;
5929 /*******************************************************************
5930 A useful volume label function.
5931 ********************************************************************/
5933 const char *volume_label(int snum)
5936 const char *label = lp_volume(snum);
5938 label = lp_servicename(snum);
5941 /* This returns a 33 byte guarenteed null terminated string. */
5942 ret = talloc_strndup(talloc_tos(), label, 32);
5949 /*******************************************************************
5950 Set the server type we will announce as via nmbd.
5951 ********************************************************************/
5953 static void set_default_server_announce_type(void)
5955 default_server_announce = 0;
5956 default_server_announce |= SV_TYPE_WORKSTATION;
5957 default_server_announce |= SV_TYPE_SERVER;
5958 default_server_announce |= SV_TYPE_SERVER_UNIX;
5960 /* note that the flag should be set only if we have a
5961 printer service but nmbd doesn't actually load the
5962 services so we can't tell --jerry */
5964 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5966 switch (lp_announce_as()) {
5967 case ANNOUNCE_AS_NT_SERVER:
5968 default_server_announce |= SV_TYPE_SERVER_NT;
5969 /* fall through... */
5970 case ANNOUNCE_AS_NT_WORKSTATION:
5971 default_server_announce |= SV_TYPE_NT;
5973 case ANNOUNCE_AS_WIN95:
5974 default_server_announce |= SV_TYPE_WIN95_PLUS;
5976 case ANNOUNCE_AS_WFW:
5977 default_server_announce |= SV_TYPE_WFW;
5983 switch (lp_server_role()) {
5984 case ROLE_DOMAIN_MEMBER:
5985 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5987 case ROLE_DOMAIN_PDC:
5988 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5990 case ROLE_DOMAIN_BDC:
5991 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5993 case ROLE_STANDALONE:
5997 if (lp_time_server())
5998 default_server_announce |= SV_TYPE_TIME_SOURCE;
6000 if (lp_host_msdfs())
6001 default_server_announce |= SV_TYPE_DFS_SERVER;
6004 /***********************************************************
6005 returns role of Samba server
6006 ************************************************************/
6008 int lp_server_role(void)
6013 /***********************************************************
6014 If we are PDC then prefer us as DMB
6015 ************************************************************/
6017 bool lp_domain_master(void)
6019 if (Globals.iDomainMaster == Auto)
6020 return (lp_server_role() == ROLE_DOMAIN_PDC);
6022 return (bool)Globals.iDomainMaster;
6025 /***********************************************************
6026 If we are DMB then prefer us as LMB
6027 ************************************************************/
6029 bool lp_preferred_master(void)
6031 if (Globals.iPreferredMaster == Auto)
6032 return (lp_local_master() && lp_domain_master());
6034 return (bool)Globals.iPreferredMaster;
6037 /*******************************************************************
6039 ********************************************************************/
6041 void lp_remove_service(int snum)
6043 ServicePtrs[snum]->valid = False;
6044 invalid_services[num_invalid_services++] = snum;
6047 /*******************************************************************
6049 ********************************************************************/
6051 void lp_copy_service(int snum, const char *new_name)
6053 do_section(new_name);
6055 snum = lp_servicenumber(new_name);
6057 lp_do_parameter(snum, "copy", lp_servicename(snum));
6062 /*******************************************************************
6063 Get the default server type we will announce as via nmbd.
6064 ********************************************************************/
6066 int lp_default_server_announce(void)
6068 return default_server_announce;
6071 /*******************************************************************
6072 Split the announce version into major and minor numbers.
6073 ********************************************************************/
6075 int lp_major_announce_version(void)
6077 static bool got_major = False;
6078 static int major_version = DEFAULT_MAJOR_VERSION;
6083 return major_version;
6086 if ((vers = lp_announce_version()) == NULL)
6087 return major_version;
6089 if ((p = strchr_m(vers, '.')) == 0)
6090 return major_version;
6093 major_version = atoi(vers);
6094 return major_version;
6097 int lp_minor_announce_version(void)
6099 static bool got_minor = False;
6100 static int minor_version = DEFAULT_MINOR_VERSION;
6105 return minor_version;
6108 if ((vers = lp_announce_version()) == NULL)
6109 return minor_version;
6111 if ((p = strchr_m(vers, '.')) == 0)
6112 return minor_version;
6115 minor_version = atoi(p);
6116 return minor_version;
6119 /***********************************************************
6120 Set the global name resolution order (used in smbclient).
6121 ************************************************************/
6123 void lp_set_name_resolve_order(const char *new_order)
6125 string_set(&Globals.szNameResolveOrder, new_order);
6128 const char *lp_printername(int snum)
6130 const char *ret = _lp_printername(snum);
6131 if (ret == NULL || (ret != NULL && *ret == '\0'))
6132 ret = lp_const_servicename(snum);
6138 /***********************************************************
6139 Allow daemons such as winbindd to fix their logfile name.
6140 ************************************************************/
6142 void lp_set_logfile(const char *name)
6144 string_set(&Globals.szLogFile, name);
6145 debug_set_logfile(name);
6148 /*******************************************************************
6149 Return the max print jobs per queue.
6150 ********************************************************************/
6152 int lp_maxprintjobs(int snum)
6154 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6155 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6156 maxjobs = PRINT_MAX_JOBID - 1;
6161 const char *lp_printcapname(void)
6163 if ((Globals.szPrintcapname != NULL) &&
6164 (Globals.szPrintcapname[0] != '\0'))
6165 return Globals.szPrintcapname;
6167 if (sDefault.iPrinting == PRINT_CUPS) {
6175 if (sDefault.iPrinting == PRINT_BSD)
6176 return "/etc/printcap";
6178 return PRINTCAP_NAME;
6181 /*******************************************************************
6182 Ensure we don't use sendfile if server smb signing is active.
6183 ********************************************************************/
6185 static uint32 spoolss_state;
6187 bool lp_disable_spoolss( void )
6189 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6190 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6192 return spoolss_state == SVCCTL_STOPPED ? True : False;
6195 void lp_set_spoolss_state( uint32 state )
6197 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6199 spoolss_state = state;
6202 uint32 lp_get_spoolss_state( void )
6204 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6207 /*******************************************************************
6208 Ensure we don't use sendfile if server smb signing is active.
6209 ********************************************************************/
6211 bool lp_use_sendfile(int snum)
6213 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6214 if (Protocol < PROTOCOL_NT1) {
6217 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
6220 /*******************************************************************
6221 Turn off sendfile if we find the underlying OS doesn't support it.
6222 ********************************************************************/
6224 void set_use_sendfile(int snum, bool val)
6226 if (LP_SNUM_OK(snum))
6227 ServicePtrs[snum]->bUseSendfile = val;
6229 sDefault.bUseSendfile = val;
6232 /*******************************************************************
6233 Turn off storing DOS attributes if this share doesn't support it.
6234 ********************************************************************/
6236 void set_store_dos_attributes(int snum, bool val)
6238 if (!LP_SNUM_OK(snum))
6240 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6243 void lp_set_mangling_method(const char *new_method)
6245 string_set(&Globals.szManglingMethod, new_method);
6248 /*******************************************************************
6249 Global state for POSIX pathname processing.
6250 ********************************************************************/
6252 static bool posix_pathnames;
6254 bool lp_posix_pathnames(void)
6256 return posix_pathnames;
6259 /*******************************************************************
6260 Change everything needed to ensure POSIX pathname processing (currently
6262 ********************************************************************/
6264 void lp_set_posix_pathnames(void)
6266 posix_pathnames = True;
6269 /*******************************************************************
6270 Global state for POSIX lock processing - CIFS unix extensions.
6271 ********************************************************************/
6273 bool posix_default_lock_was_set;
6274 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6276 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6278 if (posix_default_lock_was_set) {
6279 return posix_cifsx_locktype;
6281 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6285 /*******************************************************************
6286 ********************************************************************/
6288 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6290 posix_default_lock_was_set = True;
6291 posix_cifsx_locktype = val;
6294 int lp_min_receive_file_size(void)
6296 if (Globals.iminreceivefile < 0) {
6299 return MIN(Globals.iminreceivefile, BUFFER_SIZE);