2 Unix SMB/CIFS implementation.
3 Main SMB server routines
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Martin Pool 2002
6 Copyright (C) Jelmer Vernooij 2002-2003
7 Copyright (C) Volker Lendecke 1993-2007
8 Copyright (C) Jeremy Allison 1993-2007
10 This program is free software; you can redistribute it and/or modify
11 it under the terms of the GNU General Public License as published by
12 the Free Software Foundation; either version 3 of the License, or
13 (at your option) any later version.
15 This program is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 GNU General Public License for more details.
20 You should have received a copy of the GNU General Public License
21 along with this program. If not, see <http://www.gnu.org/licenses/>.
25 #include "system/filesys.h"
26 #include "lib/util/server_id.h"
27 #include "lib/util/close_low_fd.h"
28 #include "lib/cmdline/cmdline.h"
29 #include "locking/share_mode_lock.h"
30 #include "smbd/smbd.h"
31 #include "smbd/globals.h"
32 #include "smbd/smbXsrv_open.h"
33 #include "registry/reg_init_full.h"
34 #include "libcli/auth/schannel.h"
36 #include "../lib/util/memcache.h"
37 #include "ctdbd_conn.h"
38 #include "lib/util/util_process.h"
39 #include "util_cluster.h"
40 #include "printing/queue_process.h"
41 #include "rpc_server/rpc_config.h"
45 #include "messages_ctdb.h"
46 #include "smbprofile.h"
47 #include "lib/id_cache.h"
48 #include "lib/param/param.h"
49 #include "lib/background.h"
50 #include "../lib/util/pidfile.h"
51 #include "lib/smbd_shim.h"
52 #include "scavenger.h"
53 #include "locking/leases_db.h"
54 #include "smbd/notifyd/notifyd.h"
55 #include "smbd/smbd_cleanupd.h"
56 #include "lib/util/sys_rw.h"
57 #include "cleanupdb.h"
59 #include "lib/global_contexts.h"
60 #include "source3/lib/substitute.h"
62 #ifdef CLUSTER_SUPPORT
63 #include "ctdb_protocol.h"
66 struct smbd_open_socket;
67 struct smbd_child_pid;
69 struct smbd_parent_context {
72 struct tevent_context *ev_ctx;
73 struct messaging_context *msg_ctx;
75 /* the list of listening sockets */
76 struct smbd_open_socket *sockets;
78 /* the list of current child processes */
79 struct smbd_child_pid *children;
82 struct server_id cleanupd;
83 struct server_id notifyd;
85 struct tevent_timer *cleanup_te;
88 struct smbd_open_socket {
89 struct smbd_open_socket *prev, *next;
90 struct smbd_parent_context *parent;
92 struct tevent_fd *fde;
95 struct smbd_child_pid {
96 struct smbd_child_pid *prev, *next;
100 /*******************************************************************
101 What to do when smb.conf is updated.
102 ********************************************************************/
104 static NTSTATUS messaging_send_to_children(struct messaging_context *msg_ctx,
105 uint32_t msg_type, DATA_BLOB* data);
107 static void smbd_parent_conf_updated(struct messaging_context *msg,
110 struct server_id server_id,
115 DEBUG(10,("smbd_parent_conf_updated: Got message saying smb.conf was "
116 "updated. Reloading.\n"));
117 change_to_root_user();
118 reload_services(NULL, NULL, false);
120 ok = reinit_guest_session_info(NULL);
122 DBG_ERR("Failed to reinit guest info\n");
124 messaging_send_to_children(msg, MSG_SMB_CONF_UPDATED, NULL);
127 /****************************************************************************
128 Send a SIGTERM to our process group.
129 *****************************************************************************/
131 static void killkids(void)
133 if(am_parent) kill(0,SIGTERM);
136 static void msg_exit_server(struct messaging_context *msg,
139 struct server_id server_id,
142 DEBUG(3, ("got a SHUTDOWN message\n"));
143 exit_server_cleanly(NULL);
147 static void msg_inject_fault(struct messaging_context *msg,
150 struct server_id src,
154 struct server_id_buf tmp;
156 if (data->length != sizeof(sig)) {
157 DEBUG(0, ("Process %s sent bogus signal injection request\n",
158 server_id_str_buf(src, &tmp)));
162 sig = *(int *)data->data;
164 exit_server("internal error injected");
168 #ifdef HAVE_STRSIGNAL
169 DEBUG(0, ("Process %s requested injection of signal %d (%s)\n",
170 server_id_str_buf(src, &tmp), sig, strsignal(sig)));
172 DEBUG(0, ("Process %s requested injection of signal %d\n",
173 server_id_str_buf(src, &tmp), sig));
178 #endif /* DEVELOPER */
180 #if defined(DEVELOPER) || defined(ENABLE_SELFTEST)
182 * Sleep for the specified number of seconds.
184 static void msg_sleep(struct messaging_context *msg,
187 struct server_id src,
190 unsigned int seconds;
191 struct server_id_buf tmp;
193 if (data->length != sizeof(seconds)) {
194 DBG_ERR("Process %s sent bogus sleep request\n",
195 server_id_str_buf(src, &tmp));
199 seconds = *(unsigned int *)data->data;
200 DBG_ERR("Process %s request a sleep of %u seconds\n",
201 server_id_str_buf(src, &tmp),
204 DBG_ERR("Restarting after %u second sleep requested by process %s\n",
206 server_id_str_buf(src, &tmp));
208 #endif /* DEVELOPER */
210 static NTSTATUS messaging_send_to_children(struct messaging_context *msg_ctx,
211 uint32_t msg_type, DATA_BLOB* data)
214 struct smbd_parent_context *parent = am_parent;
215 struct smbd_child_pid *child;
217 if (parent == NULL) {
218 return NT_STATUS_INTERNAL_ERROR;
221 for (child = parent->children; child != NULL; child = child->next) {
222 status = messaging_send(parent->msg_ctx,
223 pid_to_procid(child->pid),
225 if (!NT_STATUS_IS_OK(status)) {
226 DBG_DEBUG("messaging_send(%d) failed: %s\n",
227 (int)child->pid, nt_errstr(status));
233 static void smb_parent_send_to_children(struct messaging_context *ctx,
236 struct server_id srv_id,
239 messaging_send_to_children(ctx, msg_type, msg_data);
243 * Parent smbd process sets its own debug level first and then
244 * sends a message to all the smbd children to adjust their debug
245 * level to that of the parent.
248 static void smbd_msg_debug(struct messaging_context *msg_ctx,
251 struct server_id server_id,
254 debug_message(msg_ctx, private_data, MSG_DEBUG, server_id, data);
256 messaging_send_to_children(msg_ctx, MSG_DEBUG, data);
259 static void smbd_parent_id_cache_kill(struct messaging_context *msg_ctx,
262 struct server_id server_id,
265 const char *msg = (data && data->data)
266 ? (const char *)data->data : "<NULL>";
267 struct id_cache_ref id;
269 if (!id_cache_ref_parse(msg, &id)) {
270 DEBUG(0, ("Invalid ?ID: %s\n", msg));
274 id_cache_delete_from_cache(&id);
276 messaging_send_to_children(msg_ctx, msg_type, data);
279 static void smbd_parent_id_cache_delete(struct messaging_context *ctx,
282 struct server_id srv_id,
285 id_cache_delete_message(ctx, data, msg_type, srv_id, msg_data);
287 messaging_send_to_children(ctx, msg_type, msg_data);
290 static void add_child_pid(struct smbd_parent_context *parent,
293 struct smbd_child_pid *child;
295 child = talloc_zero(parent, struct smbd_child_pid);
297 DEBUG(0, ("Could not add child struct -- malloc failed\n"));
301 DLIST_ADD(parent->children, child);
302 parent->num_children += 1;
305 static void smb_tell_num_children(struct messaging_context *ctx, void *data,
306 uint32_t msg_type, struct server_id srv_id,
309 uint8_t buf[sizeof(uint32_t)];
312 SIVAL(buf, 0, am_parent->num_children);
313 messaging_send_buf(ctx, srv_id, MSG_SMB_NUM_CHILDREN,
318 static void notifyd_stopped(struct tevent_req *req);
320 static struct tevent_req *notifyd_req(struct messaging_context *msg_ctx,
321 struct tevent_context *ev)
323 struct tevent_req *req;
324 sys_notify_watch_fn sys_notify_watch = NULL;
325 struct sys_notify_context *sys_notify_ctx = NULL;
326 struct ctdbd_connection *ctdbd_conn = NULL;
328 if (lp_kernel_change_notify()) {
331 if (lp_parm_bool(-1, "notify", "inotify", true)) {
332 sys_notify_watch = inotify_watch;
337 if (lp_parm_bool(-1, "notify", "fam",
338 (sys_notify_watch == NULL))) {
339 sys_notify_watch = fam_watch;
344 if (sys_notify_watch != NULL) {
345 sys_notify_ctx = sys_notify_context_create(msg_ctx, ev);
346 if (sys_notify_ctx == NULL) {
351 if (lp_clustering()) {
352 ctdbd_conn = messaging_ctdb_connection();
355 req = notifyd_send(msg_ctx, ev, msg_ctx, ctdbd_conn,
356 sys_notify_watch, sys_notify_ctx);
358 TALLOC_FREE(sys_notify_ctx);
361 tevent_req_set_callback(req, notifyd_stopped, msg_ctx);
366 static void notifyd_stopped(struct tevent_req *req)
370 ret = notifyd_recv(req);
372 DEBUG(1, ("notifyd stopped: %s\n", strerror(ret)));
375 static void notifyd_sig_hup_handler(struct tevent_context *ev,
376 struct tevent_signal *se,
382 DBG_NOTICE("notifyd: Reloading services after SIGHUP\n");
383 reload_services(NULL, NULL, false);
387 static bool smbd_notifyd_init(struct messaging_context *msg, bool interactive,
388 struct server_id *ppid)
390 struct tevent_context *ev = messaging_tevent_context(msg);
391 struct tevent_req *req;
392 struct tevent_signal *se = NULL;
398 req = notifyd_req(msg, ev);
399 return (req != NULL);
404 DEBUG(1, ("%s: fork failed: %s\n", __func__,
410 if (am_parent != NULL) {
411 add_child_pid(am_parent, pid);
413 *ppid = pid_to_procid(pid);
417 status = smbd_reinit_after_fork(msg, ev, true);
418 if (!NT_STATUS_IS_OK(status)) {
419 DEBUG(1, ("%s: reinit_after_fork failed: %s\n",
420 __func__, nt_errstr(status)));
424 process_set_title("smbd-notifyd", "notifyd");
428 /* Set up sighup handler for notifyd */
429 se = tevent_add_signal(ev,
432 notifyd_sig_hup_handler,
435 DEBUG(0, ("failed to setup notifyd SIGHUP handler\n"));
439 req = notifyd_req(msg, ev);
443 tevent_req_set_callback(req, notifyd_stopped, msg);
445 /* Block those signals that we are not handling */
446 BlockSignals(True, SIGUSR1);
448 messaging_send(msg, pid_to_procid(getppid()), MSG_SMB_NOTIFY_STARTED,
451 ok = tevent_req_poll(req, ev);
453 DBG_WARNING("tevent_req_poll returned %s\n", strerror(errno));
459 static void notifyd_init_trigger(struct tevent_req *req);
461 struct notifyd_init_state {
463 struct tevent_context *ev;
464 struct messaging_context *msg;
465 struct server_id *ppid;
468 static struct tevent_req *notifyd_init_send(struct tevent_context *ev,
470 struct messaging_context *msg,
471 struct server_id *ppid)
473 struct tevent_req *req = NULL;
474 struct tevent_req *subreq = NULL;
475 struct notifyd_init_state *state = NULL;
477 req = tevent_req_create(mem_ctx, &state, struct notifyd_init_state);
482 *state = (struct notifyd_init_state) {
488 subreq = tevent_wakeup_send(state, ev, tevent_timeval_current_ofs(1, 0));
489 if (tevent_req_nomem(subreq, req)) {
490 return tevent_req_post(req, ev);
493 tevent_req_set_callback(subreq, notifyd_init_trigger, req);
497 static void notifyd_init_trigger(struct tevent_req *subreq)
499 struct tevent_req *req = tevent_req_callback_data(
500 subreq, struct tevent_req);
501 struct notifyd_init_state *state = tevent_req_data(
502 req, struct notifyd_init_state);
505 DBG_NOTICE("Triggering notifyd startup\n");
507 ok = tevent_wakeup_recv(subreq);
510 tevent_req_error(req, ENOMEM);
514 state->ok = smbd_notifyd_init(state->msg, false, state->ppid);
516 DBG_WARNING("notifyd restarted\n");
517 tevent_req_done(req);
521 DBG_NOTICE("notifyd startup failed, rescheduling\n");
523 subreq = tevent_wakeup_send(state, state->ev,
524 tevent_timeval_current_ofs(1, 0));
525 if (tevent_req_nomem(subreq, req)) {
526 DBG_ERR("scheduling notifyd restart failed, giving up\n");
530 tevent_req_set_callback(subreq, notifyd_init_trigger, req);
534 static bool notifyd_init_recv(struct tevent_req *req)
536 struct notifyd_init_state *state = tevent_req_data(
537 req, struct notifyd_init_state);
542 static void notifyd_started(struct tevent_req *req)
546 ok = notifyd_init_recv(req);
549 DBG_ERR("Failed to restart notifyd, giving up\n");
554 static void cleanupd_sig_hup_handler(struct tevent_context *ev,
555 struct tevent_signal *se,
561 DBG_NOTICE("cleanupd: Reloading services after SIGHUP\n");
565 static void cleanupd_stopped(struct tevent_req *req);
567 static bool cleanupd_init(struct messaging_context *msg, bool interactive,
568 struct server_id *ppid)
570 struct tevent_context *ev = messaging_tevent_context(msg);
571 struct server_id parent_id = messaging_server_id(msg);
572 struct tevent_signal *se = NULL;
573 struct tevent_req *req;
583 req = smbd_cleanupd_send(msg, ev, msg, parent_id.pid);
584 *ppid = messaging_server_id(msg);
585 return (req != NULL);
590 DBG_WARNING("pipe failed: %s\n", strerror(errno));
596 DBG_WARNING("fork failed: %s\n", strerror(errno));
605 rwret = sys_read(up_pipe[0], &c, 1);
609 DBG_WARNING("sys_read failed: %s\n", strerror(errno));
613 DBG_WARNING("cleanupd could not start\n");
617 DBG_WARNING("cleanupd returned %d\n", (int)c);
621 DBG_DEBUG("Started cleanupd pid=%d\n", (int)pid);
623 if (am_parent != NULL) {
624 add_child_pid(am_parent, pid);
627 *ppid = pid_to_procid(pid);
633 status = smbd_reinit_after_fork(msg, ev, true);
634 if (!NT_STATUS_IS_OK(status)) {
635 DBG_WARNING("reinit_after_fork failed: %s\n",
638 sys_write(up_pipe[1], &c, 1);
643 process_set_title("smbd-cleanupd", "cleanupd");
645 se = tevent_add_signal(ev,
649 cleanupd_sig_hup_handler,
652 DBG_ERR("Could not add SIGHUP handler\n");
656 req = smbd_cleanupd_send(msg, ev, msg, parent_id.pid);
658 DBG_WARNING("smbd_cleanupd_send failed\n");
660 sys_write(up_pipe[1], &c, 1);
665 tevent_req_set_callback(req, cleanupd_stopped, msg);
668 rwret = sys_write(up_pipe[1], &c, 1);
672 DBG_WARNING("sys_write failed: %s\n", strerror(errno));
676 DBG_WARNING("sys_write could not write result\n");
680 ok = tevent_req_poll(req, ev);
682 DBG_WARNING("tevent_req_poll returned %s\n", strerror(errno));
687 static void cleanupd_stopped(struct tevent_req *req)
691 status = smbd_cleanupd_recv(req);
692 DBG_WARNING("cleanupd stopped: %s\n", nt_errstr(status));
695 static void cleanupd_init_trigger(struct tevent_req *req);
697 struct cleanup_init_state {
699 struct tevent_context *ev;
700 struct messaging_context *msg;
701 struct server_id *ppid;
704 static struct tevent_req *cleanupd_init_send(struct tevent_context *ev,
706 struct messaging_context *msg,
707 struct server_id *ppid)
709 struct tevent_req *req = NULL;
710 struct tevent_req *subreq = NULL;
711 struct cleanup_init_state *state = NULL;
713 req = tevent_req_create(mem_ctx, &state, struct cleanup_init_state);
718 *state = (struct cleanup_init_state) {
724 subreq = tevent_wakeup_send(state, ev, tevent_timeval_current_ofs(0, 0));
725 if (tevent_req_nomem(subreq, req)) {
726 return tevent_req_post(req, ev);
729 tevent_req_set_callback(subreq, cleanupd_init_trigger, req);
733 static void cleanupd_init_trigger(struct tevent_req *subreq)
735 struct tevent_req *req = tevent_req_callback_data(
736 subreq, struct tevent_req);
737 struct cleanup_init_state *state = tevent_req_data(
738 req, struct cleanup_init_state);
741 DBG_NOTICE("Triggering cleanupd startup\n");
743 ok = tevent_wakeup_recv(subreq);
746 tevent_req_error(req, ENOMEM);
750 state->ok = cleanupd_init(state->msg, false, state->ppid);
752 DBG_WARNING("cleanupd restarted\n");
753 tevent_req_done(req);
757 DBG_NOTICE("cleanupd startup failed, rescheduling\n");
759 subreq = tevent_wakeup_send(state, state->ev,
760 tevent_timeval_current_ofs(1, 0));
761 if (tevent_req_nomem(subreq, req)) {
762 DBG_ERR("scheduling cleanupd restart failed, giving up\n");
766 tevent_req_set_callback(subreq, cleanupd_init_trigger, req);
770 static bool cleanupd_init_recv(struct tevent_req *req)
772 struct cleanup_init_state *state = tevent_req_data(
773 req, struct cleanup_init_state);
778 static void cleanupd_started(struct tevent_req *req)
782 struct smbd_parent_context *parent = tevent_req_callback_data(
783 req, struct smbd_parent_context);
785 ok = cleanupd_init_recv(req);
788 DBG_ERR("Failed to restart cleanupd, giving up\n");
792 status = messaging_send(parent->msg_ctx,
794 MSG_SMB_NOTIFY_CLEANUP,
796 if (!NT_STATUS_IS_OK(status)) {
797 DBG_ERR("messaging_send returned %s\n",
802 static void remove_child_pid(struct smbd_parent_context *parent,
804 bool unclean_shutdown)
806 struct smbd_child_pid *child;
810 for (child = parent->children; child != NULL; child = child->next) {
811 if (child->pid == pid) {
812 struct smbd_child_pid *tmp = child;
813 DLIST_REMOVE(parent->children, child);
815 parent->num_children -= 1;
821 /* not all forked child processes are added to the children list */
822 DEBUG(2, ("Could not find child %d -- ignoring\n", (int)pid));
826 if (pid == procid_to_pid(&parent->cleanupd)) {
827 struct tevent_req *req;
829 server_id_set_disconnected(&parent->cleanupd);
831 DBG_WARNING("Restarting cleanupd\n");
832 req = cleanupd_init_send(messaging_tevent_context(parent->msg_ctx),
837 DBG_ERR("Failed to restart cleanupd\n");
840 tevent_req_set_callback(req, cleanupd_started, parent);
844 if (pid == procid_to_pid(&parent->notifyd)) {
845 struct tevent_req *req;
846 struct tevent_context *ev = messaging_tevent_context(
849 server_id_set_disconnected(&parent->notifyd);
851 DBG_WARNING("Restarting notifyd\n");
852 req = notifyd_init_send(ev,
857 DBG_ERR("Failed to restart notifyd\n");
860 tevent_req_set_callback(req, notifyd_started, parent);
864 ok = cleanupdb_store_child(pid, unclean_shutdown);
866 DBG_ERR("cleanupdb_store_child failed\n");
870 if (!server_id_is_disconnected(&parent->cleanupd)) {
871 status = messaging_send(parent->msg_ctx,
873 MSG_SMB_NOTIFY_CLEANUP,
875 if (!NT_STATUS_IS_OK(status)) {
876 DBG_ERR("messaging_send returned %s\n",
882 /****************************************************************************
883 Have we reached the process limit ?
884 ****************************************************************************/
886 static bool allowable_number_of_smbd_processes(struct smbd_parent_context *parent)
888 int max_processes = lp_max_smbd_processes();
893 return parent->num_children < max_processes;
896 static void smbd_sig_chld_handler(struct tevent_context *ev,
897 struct tevent_signal *se,
905 struct smbd_parent_context *parent =
906 talloc_get_type_abort(private_data,
907 struct smbd_parent_context);
909 while ((pid = waitpid(-1, &status, WNOHANG)) > 0) {
910 bool unclean_shutdown = False;
912 /* If the child terminated normally, assume
913 it was an unclean shutdown unless the
916 if (WIFEXITED(status)) {
917 unclean_shutdown = WEXITSTATUS(status);
919 /* If the child terminated due to a signal
920 we always assume it was unclean.
922 if (WIFSIGNALED(status)) {
923 unclean_shutdown = True;
925 remove_child_pid(parent, pid, unclean_shutdown);
929 static void smbd_setup_sig_chld_handler(struct smbd_parent_context *parent)
931 struct tevent_signal *se;
933 se = tevent_add_signal(parent->ev_ctx,
934 parent, /* mem_ctx */
936 smbd_sig_chld_handler,
939 exit_server("failed to setup SIGCHLD handler");
943 static void smbd_open_socket_close_fn(struct tevent_context *ev,
944 struct tevent_fd *fde,
948 /* this might be the socket_wrapper swrap_close() */
952 static void smbd_accept_connection(struct tevent_context *ev,
953 struct tevent_fd *fde,
957 struct smbd_open_socket *s = talloc_get_type_abort(private_data,
958 struct smbd_open_socket);
959 struct messaging_context *msg_ctx = s->parent->msg_ctx;
960 struct sockaddr_storage addr;
961 socklen_t in_addrlen = sizeof(addr);
965 fd = accept(s->fd, (struct sockaddr *)(void *)&addr,&in_addrlen);
966 if (fd == -1 && errno == EINTR)
970 DEBUG(0,("accept: %s\n",
974 smb_set_close_on_exec(fd);
976 if (s->parent->interactive) {
977 reinit_after_fork(msg_ctx, ev, true);
978 smbd_process(ev, msg_ctx, fd, true);
979 exit_server_cleanly("end of interactive mode");
983 if (!allowable_number_of_smbd_processes(s->parent)) {
990 char addrstr[INET6_ADDRSTRLEN];
991 NTSTATUS status = NT_STATUS_OK;
994 * Can't use TALLOC_FREE here. Nulling out the argument to it
995 * would overwrite memory we've just freed.
997 talloc_free(s->parent);
1000 /* Stop zombies, the parent explicitly handles
1001 * them, counting worker smbds. */
1004 status = smbd_reinit_after_fork(msg_ctx, ev, true);
1005 if (!NT_STATUS_IS_OK(status)) {
1006 if (NT_STATUS_EQUAL(status,
1007 NT_STATUS_TOO_MANY_OPENED_FILES)) {
1008 DEBUG(0,("child process cannot initialize "
1009 "because too many files are open\n"));
1012 if (lp_clustering() &&
1014 status, NT_STATUS_INTERNAL_DB_ERROR) ||
1016 status, NT_STATUS_CONNECTION_REFUSED))) {
1017 DEBUG(1, ("child process cannot initialize "
1018 "because connection to CTDB "
1020 nt_errstr(status)));
1024 DEBUG(0,("reinit_after_fork() failed\n"));
1025 smb_panic("reinit_after_fork() failed");
1028 print_sockaddr(addrstr, sizeof(addrstr), &addr);
1029 process_set_title("smbd[%s]", "client [%s]", addrstr);
1031 smbd_process(ev, msg_ctx, fd, false);
1033 exit_server_cleanly("end of child");
1038 DEBUG(0,("smbd_accept_connection: fork() failed: %s\n",
1042 /* The parent doesn't need this socket */
1045 /* Sun May 6 18:56:14 2001 ackley@cs.unm.edu:
1046 Clear the closed fd info out of server_fd --
1047 and more importantly, out of client_fd in
1048 util_sock.c, to avoid a possible
1049 getpeername failure if we reopen the logs
1050 and use %I in the filename.
1054 add_child_pid(s->parent, pid);
1057 /* Force parent to check log size after
1058 * spawning child. Fix from
1059 * klausr@ITAP.Physik.Uni-Stuttgart.De. The
1060 * parent smbd will log to logserver.smb. It
1061 * writes only two messages for each child
1062 * started/finished. But each child writes,
1063 * say, 50 messages also in logserver.smb,
1064 * beginning with the debug_count of the
1065 * parent, before the child opens its own log
1066 * file logserver.client. In a worst case
1067 * scenario the size of logserver.smb would be
1068 * checked after about 50*50=2500 messages
1071 force_check_log_size();
1074 static bool smbd_open_one_socket(struct smbd_parent_context *parent,
1075 struct tevent_context *ev_ctx,
1076 const struct sockaddr_storage *ifss,
1079 struct smbd_open_socket *s;
1081 s = talloc(parent, struct smbd_open_socket);
1088 s->fd = open_socket_in(SOCK_STREAM, ifss, port, true);
1091 DBG_ERR("open_socket_in failed: %s\n", strerror(err));
1094 * We ignore an error here, as we've done before
1099 /* ready to listen */
1100 set_socket_options(s->fd, "SO_KEEPALIVE");
1101 set_socket_options(s->fd, lp_socket_options());
1103 /* Set server socket to
1104 * non-blocking for the accept. */
1105 set_blocking(s->fd, False);
1107 if (listen(s->fd, SMBD_LISTEN_BACKLOG) == -1) {
1108 DEBUG(0,("smbd_open_one_socket: listen: "
1109 "%s\n", strerror(errno)));
1115 s->fde = tevent_add_fd(ev_ctx,
1117 s->fd, TEVENT_FD_READ,
1118 smbd_accept_connection,
1121 DEBUG(0,("smbd_open_one_socket: "
1122 "tevent_add_fd: %s\n",
1128 tevent_fd_set_close_fn(s->fde, smbd_open_socket_close_fn);
1130 DLIST_ADD_END(parent->sockets, s);
1135 /****************************************************************************
1136 Open the socket communication.
1137 ****************************************************************************/
1139 static bool open_sockets_smbd(struct smbd_parent_context *parent,
1140 struct tevent_context *ev_ctx,
1141 struct messaging_context *msg_ctx,
1142 const char *smb_ports)
1144 int num_interfaces = iface_count();
1147 unsigned dns_port = 0;
1154 smbd_setup_sig_chld_handler(parent);
1156 ports = lp_smb_ports();
1158 /* use a reasonable default set of ports - listing on 445 and 139 */
1161 l = str_list_make_v3(talloc_tos(), smb_ports, NULL);
1162 ports = discard_const_p(const char *, l);
1165 for (j = 0; ports && ports[j]; j++) {
1166 unsigned port = atoi(ports[j]);
1168 if (port == 0 || port > 0xffff) {
1169 exit_server_cleanly("Invalid port in the config or on "
1170 "the commandline specified!");
1174 if (lp_interfaces() && lp_bind_interfaces_only()) {
1175 /* We have been given an interfaces line, and been
1176 told to only bind to those interfaces. Create a
1177 socket per interface and bind to only these.
1180 /* Now open a listen socket for each of the
1182 for(i = 0; i < num_interfaces; i++) {
1183 const struct sockaddr_storage *ifss =
1184 iface_n_sockaddr_storage(i);
1186 DEBUG(0,("open_sockets_smbd: "
1187 "interface %d has NULL IP address !\n",
1192 for (j = 0; ports && ports[j]; j++) {
1193 unsigned port = atoi(ports[j]);
1195 /* Keep the first port for mDNS service
1198 if (dns_port == 0) {
1202 if (!smbd_open_one_socket(parent,
1211 /* Just bind to 0.0.0.0 - accept connections
1214 const char *sock_addr;
1216 const char *sock_ptr;
1219 sock_addr = "::,0.0.0.0";
1221 sock_addr = "0.0.0.0";
1224 for (sock_ptr=sock_addr;
1225 next_token_talloc(talloc_tos(), &sock_ptr, &sock_tok, " \t,"); ) {
1226 for (j = 0; ports && ports[j]; j++) {
1227 struct sockaddr_storage ss;
1228 unsigned port = atoi(ports[j]);
1230 /* Keep the first port for mDNS service
1233 if (dns_port == 0) {
1237 /* open an incoming socket */
1238 if (!interpret_string_addr(&ss, sock_tok,
1239 AI_NUMERICHOST|AI_PASSIVE)) {
1244 * If we fail to open any sockets
1245 * in this loop the parent-sockets == NULL
1246 * case below will prevent us from starting.
1249 (void)smbd_open_one_socket(parent,
1257 if (parent->sockets == NULL) {
1258 DEBUG(0,("open_sockets_smbd: No "
1259 "sockets available to bind to.\n"));
1263 /* Listen to messages */
1265 messaging_register(msg_ctx, NULL, MSG_SHUTDOWN, msg_exit_server);
1266 messaging_register(msg_ctx, ev_ctx, MSG_SMB_CONF_UPDATED,
1267 smbd_parent_conf_updated);
1268 messaging_register(msg_ctx, NULL, MSG_DEBUG, smbd_msg_debug);
1269 messaging_register(msg_ctx, NULL, MSG_SMB_FORCE_TDIS,
1270 smb_parent_send_to_children);
1271 messaging_register(msg_ctx, NULL, MSG_SMB_FORCE_TDIS_DENIED,
1272 smb_parent_send_to_children);
1273 messaging_register(msg_ctx, NULL, MSG_SMB_KILL_CLIENT_IP,
1274 smb_parent_send_to_children);
1275 messaging_register(msg_ctx, NULL, MSG_SMB_TELL_NUM_CHILDREN,
1276 smb_tell_num_children);
1278 messaging_register(msg_ctx, NULL,
1279 ID_CACHE_DELETE, smbd_parent_id_cache_delete);
1280 messaging_register(msg_ctx, NULL,
1281 ID_CACHE_KILL, smbd_parent_id_cache_kill);
1282 messaging_register(msg_ctx, NULL, MSG_SMB_NOTIFY_STARTED,
1283 smb_parent_send_to_children);
1286 messaging_register(msg_ctx, NULL, MSG_SMB_INJECT_FAULT,
1290 #if defined(DEVELOPER) || defined(ENABLE_SELFTEST)
1291 messaging_register(msg_ctx, NULL, MSG_SMB_SLEEP, msg_sleep);
1294 if (lp_multicast_dns_register() && (dns_port != 0)) {
1295 #ifdef WITH_DNSSD_SUPPORT
1296 smbd_setup_mdns_registration(ev_ctx,
1299 #ifdef WITH_AVAHI_SUPPORT
1302 avahi_conn = avahi_start_register(ev_ctx,
1305 if (avahi_conn == NULL) {
1306 DEBUG(10, ("avahi_start_register failed\n"));
1316 handle stdin becoming readable when we are in --foreground mode
1318 static void smbd_stdin_handler(struct tevent_context *ev,
1319 struct tevent_fd *fde,
1324 if (read(0, &c, 1) != 1) {
1325 /* we have reached EOF on stdin, which means the
1326 parent has exited. Shutdown the server */
1327 exit_server_cleanly("EOF on stdin");
1331 struct smbd_parent_tevent_trace_state {
1335 static void smbd_parent_tevent_trace_callback(enum tevent_trace_point point,
1338 struct smbd_parent_tevent_trace_state *state =
1339 (struct smbd_parent_tevent_trace_state *)private_data;
1342 case TEVENT_TRACE_BEFORE_WAIT:
1344 case TEVENT_TRACE_AFTER_WAIT:
1346 case TEVENT_TRACE_BEFORE_LOOP_ONCE:
1347 TALLOC_FREE(state->frame);
1348 state->frame = talloc_stackframe();
1350 case TEVENT_TRACE_AFTER_LOOP_ONCE:
1351 TALLOC_FREE(state->frame);
1358 static void smbd_parent_loop(struct tevent_context *ev_ctx,
1359 struct smbd_parent_context *parent)
1361 struct smbd_parent_tevent_trace_state trace_state = {
1366 tevent_set_trace_callback(ev_ctx, smbd_parent_tevent_trace_callback,
1369 /* now accept incoming connections - forking a new process
1370 for each incoming connection */
1371 DEBUG(2,("waiting for connections\n"));
1373 ret = tevent_loop_wait(ev_ctx);
1375 DEBUG(0, ("tevent_loop_wait failed: %d, %s, exiting\n",
1376 ret, strerror(errno)));
1379 TALLOC_FREE(trace_state.frame);
1381 /* NOTREACHED return True; */
1385 /****************************************************************************
1386 Initialise connect, service and file structs.
1387 ****************************************************************************/
1389 static bool init_structs(void )
1392 * Set the machine NETBIOS name if not already
1393 * set from the config file.
1396 if (!secrets_init())
1402 static void smbd_parent_sig_term_handler(struct tevent_context *ev,
1403 struct tevent_signal *se,
1409 exit_server_cleanly("termination signal");
1412 static void smbd_parent_sig_hup_handler(struct tevent_context *ev,
1413 struct tevent_signal *se,
1419 change_to_root_user();
1420 DEBUG(1,("parent: Reloading services after SIGHUP\n"));
1421 reload_services(NULL, NULL, false);
1424 struct smbd_claim_version_state {
1425 TALLOC_CTX *mem_ctx;
1429 static void smbd_claim_version_parser(struct server_id exclusive,
1431 const struct server_id *shared,
1432 const uint8_t *data,
1436 struct smbd_claim_version_state *state = private_data;
1439 state->version = NULL;
1442 if (data[datalen-1] != '\0') {
1443 DBG_WARNING("Invalid samba version\n");
1444 dump_data(DBGLVL_WARNING, data, datalen);
1445 state->version = NULL;
1448 state->version = talloc_strdup(state->mem_ctx, (const char *)data);
1451 static NTSTATUS smbd_claim_version(struct messaging_context *msg,
1452 const char *version)
1454 const char *name = "samba_version_string";
1455 const TDB_DATA key = string_term_tdb_data(name);
1456 struct smbd_claim_version_state state;
1457 struct g_lock_ctx *ctx;
1460 ctx = g_lock_ctx_init(msg, msg);
1462 DBG_WARNING("g_lock_ctx_init failed\n");
1463 return NT_STATUS_UNSUCCESSFUL;
1466 status = g_lock_lock(ctx,
1469 (struct timeval) { .tv_sec = 60 },
1472 if (!NT_STATUS_IS_OK(status)) {
1473 DBG_WARNING("g_lock_lock(G_LOCK_READ) failed: %s\n",
1479 state = (struct smbd_claim_version_state) { .mem_ctx = ctx };
1481 status = g_lock_dump(ctx, key, smbd_claim_version_parser, &state);
1482 if (!NT_STATUS_IS_OK(status) &&
1483 !NT_STATUS_EQUAL(status, NT_STATUS_NOT_FOUND)) {
1484 DBG_ERR("Could not read samba_version_string\n");
1485 g_lock_unlock(ctx, key);
1490 if ((state.version != NULL) && (strcmp(version, state.version) == 0)) {
1492 * Leave the read lock for us around. Someone else already
1493 * set the version correctly
1496 return NT_STATUS_OK;
1499 status = g_lock_lock(ctx,
1502 (struct timeval) { .tv_sec = 60 },
1505 if (!NT_STATUS_IS_OK(status)) {
1506 DBG_WARNING("g_lock_lock(G_LOCK_WRITE) failed: %s\n",
1508 DBG_ERR("smbd %s already running, refusing to start "
1509 "version %s\n", state.version, version);
1511 return NT_STATUS_SXS_VERSION_CONFLICT;
1514 status = g_lock_write_data(
1515 ctx, key, (const uint8_t *)version, strlen(version)+1);
1516 if (!NT_STATUS_IS_OK(status)) {
1517 DBG_WARNING("g_lock_write_data failed: %s\n",
1523 status = g_lock_lock(ctx,
1526 (struct timeval) { .tv_sec = 60 },
1529 if (!NT_STATUS_IS_OK(status)) {
1530 DBG_WARNING("g_lock_lock(G_LOCK_READ) failed: %s\n",
1537 * Leave "ctx" dangling so that g_lock.tdb keeps opened.
1539 return NT_STATUS_OK;
1542 /****************************************************************************
1544 ****************************************************************************/
1546 /* Declare prototype for build_options() to avoid having to run it through
1547 mkproto.h. Mixing $(builddir) and $(srcdir) source files in the current
1548 prototype generation system is too complicated. */
1550 extern void build_options(bool screen);
1552 int main(int argc,const char *argv[])
1554 /* shall I run as a daemon */
1555 struct samba_cmdline_daemon_cfg *cmdline_daemon_cfg = NULL;
1556 bool log_stdout = false;
1558 char *profile_level = NULL;
1561 struct server_id main_server_id = {0};
1562 struct poptOption long_options[] = {
1565 .longName = "build-options",
1567 .argInfo = POPT_ARG_NONE,
1570 .descrip = "Print build options" ,
1575 .argInfo = POPT_ARG_STRING,
1578 .descrip = "Listen on the specified ports",
1581 .longName = "profiling-level",
1583 .argInfo = POPT_ARG_STRING,
1584 .arg = &profile_level,
1586 .descrip = "Set profiling level","PROFILE_LEVEL",
1593 struct smbd_parent_context *parent = NULL;
1596 struct tevent_context *ev_ctx;
1597 struct messaging_context *msg_ctx;
1598 struct server_id server_id;
1599 struct tevent_signal *se;
1600 int profiling_level;
1601 char *np_dir = NULL;
1602 const struct loadparm_substitution *lp_sub =
1603 loadparm_s3_global_substitution();
1604 static const struct smbd_shim smbd_shim_fns =
1606 .change_to_root_user = smbd_change_to_root_user,
1607 .become_authenticated_pipe_user = smbd_become_authenticated_pipe_user,
1608 .unbecome_authenticated_pipe_user = smbd_unbecome_authenticated_pipe_user,
1610 .contend_level2_oplocks_begin = smbd_contend_level2_oplocks_begin,
1611 .contend_level2_oplocks_end = smbd_contend_level2_oplocks_end,
1613 .become_root = smbd_become_root,
1614 .unbecome_root = smbd_unbecome_root,
1616 .exit_server = smbd_exit_server,
1617 .exit_server_cleanly = smbd_exit_server_cleanly,
1621 setproctitle_init(argc, discard_const(argv), environ);
1624 * Do this before any other talloc operation
1626 talloc_enable_null_tracking();
1627 frame = talloc_stackframe();
1631 set_smbd_shim(&smbd_shim_fns);
1633 smbd_init_globals();
1637 #ifdef HAVE_SET_AUTH_PARAMETERS
1638 set_auth_parameters(argc,argv);
1641 ok = samba_cmdline_init(frame,
1642 SAMBA_CMDLINE_CONFIG_SERVER,
1643 true /* require_smbconf */);
1645 DBG_ERR("Failed to setup cmdline parser!\n");
1649 cmdline_daemon_cfg = samba_cmdline_get_daemon_cfg();
1651 pc = samba_popt_get_context(getprogname(),
1657 DBG_ERR("Failed to get popt context!\n");
1661 while((opt = poptGetNextOpt(pc)) != -1) {
1664 build_options(true); /* Display output to screen as well as debug */
1668 d_fprintf(stderr, "\nInvalid option %s: %s\n\n",
1669 poptBadOption(pc, 0), poptStrerror(opt));
1670 poptPrintUsage(pc, stderr, 0);
1674 poptFreeContext(pc);
1676 log_stdout = (debug_get_log_type() == DEBUG_STDOUT);
1678 if (cmdline_daemon_cfg->interactive) {
1683 /* needed for SecureWare on SCO */
1687 set_remote_machine_name("smbd", False);
1689 if (cmdline_daemon_cfg->interactive && (DEBUGLEVEL >= 9)) {
1690 talloc_enable_leak_report();
1693 if (log_stdout && cmdline_daemon_cfg->fork) {
1694 DEBUG(0,("ERROR: Can't log to stdout (-S) unless daemon is in foreground (-F) or interactive (-i)\n"));
1699 * We want to die early if we can't open /dev/urandom
1701 generate_random_buffer(NULL, 0);
1703 /* get initial effective uid and gid */
1706 /* make absolutely sure we run as root - to handle cases where people
1707 are crazy enough to have it setuid */
1708 gain_root_privilege();
1709 gain_root_group_privilege();
1711 dump_core_setup("smbd", lp_logfile(talloc_tos(), lp_sub));
1713 /* we are never interested in SIGPIPE */
1714 BlockSignals(True,SIGPIPE);
1717 /* we are never interested in SIGFPE */
1718 BlockSignals(True,SIGFPE);
1721 #if defined(SIGUSR2)
1722 /* We are no longer interested in USR2 */
1723 BlockSignals(True,SIGUSR2);
1727 * POSIX demands that signals are inherited. If the invoking
1728 * process has these signals masked, we will have problems, as
1729 * we won't receive them.
1731 BlockSignals(False, SIGHUP);
1732 BlockSignals(False, SIGUSR1);
1733 BlockSignals(False, SIGTERM);
1735 /* Ensure we leave no zombies until we
1736 * correctly set up child handling below. */
1740 /* we want total control over the permissions on created files,
1741 so set our umask to 0 */
1746 DBG_STARTUP_NOTICE("smbd version %s started.\n%s\n",
1747 samba_version_string(),
1748 samba_copyright_string());
1750 DEBUG(2,("uid=%d gid=%d euid=%d egid=%d\n",
1751 (int)getuid(),(int)getgid(),(int)geteuid(),(int)getegid()));
1753 /* Output the build options to the debug log */
1754 build_options(False);
1756 if (sizeof(uint16_t) < 2 || sizeof(uint32_t) < 4) {
1757 DEBUG(0,("ERROR: Samba is not configured correctly for the word size on your machine\n"));
1762 * This calls unshare(CLONE_FS); on linux
1763 * in order to check if the running kernel/container
1764 * environment supports it.
1766 per_thread_cwd_check();
1768 if (!cluster_probe_ok()) {
1772 /* Init the security context and global current_user */
1776 * Initialize the event context. The event context needs to be
1777 * initialized before the messaging context, cause the messaging
1778 * context holds an event context.
1780 ev_ctx = global_event_context();
1781 if (ev_ctx == NULL) {
1786 * Init the messaging context
1787 * FIXME: This should only call messaging_init()
1789 msg_ctx = global_messaging_context();
1790 if (msg_ctx == NULL) {
1795 * Reloading of the printers will not work here as we don't have a
1796 * server info and rpc services set up. It will be called later.
1798 if (!reload_services(NULL, NULL, false)) {
1802 if (lp_server_role() == ROLE_ACTIVE_DIRECTORY_DC) {
1803 if (!lp_parm_bool(-1, "server role check", "inhibit", false)) {
1804 DBG_ERR("server role = 'active directory domain controller' not compatible with running smbd standalone. \n");
1805 DEBUGADD(0, ("You should start 'samba' instead, and it will control starting smbd if required\n"));
1808 /* Main 'samba' daemon will notify */
1809 daemon_sd_notifications(false);
1812 /* ...NOTE... Log files are working from this point! */
1814 DEBUG(3,("loaded services\n"));
1818 if (!profile_setup(msg_ctx, False)) {
1819 DEBUG(0,("ERROR: failed to setup profiling\n"));
1823 if (profile_level != NULL) {
1824 profiling_level = atoi(profile_level);
1826 profiling_level = lp_smbd_profiling_level();
1828 main_server_id = messaging_server_id(msg_ctx);
1829 set_profile_level(profiling_level, &main_server_id);
1831 if (!cmdline_daemon_cfg->daemon && !is_a_socket(0)) {
1832 if (!cmdline_daemon_cfg->interactive) {
1833 DEBUG(3, ("Standard input is not a socket, "
1834 "assuming -D option\n"));
1838 * Setting "daemon" here prevents us from eventually calling
1839 * the open_sockets_inetd()
1842 cmdline_daemon_cfg->daemon = true;
1845 if (cmdline_daemon_cfg->daemon && !cmdline_daemon_cfg->interactive) {
1846 DEBUG(3, ("Becoming a daemon.\n"));
1847 become_daemon(cmdline_daemon_cfg->fork,
1848 cmdline_daemon_cfg->no_process_group,
1851 daemon_status("smbd", "Starting process ...");
1856 * If we're interactive we want to set our own process group for
1857 * signal management.
1859 if (cmdline_daemon_cfg->interactive &&
1860 !cmdline_daemon_cfg->no_process_group)
1862 setpgid( (pid_t)0, (pid_t)0);
1866 if (!directory_exist(lp_lock_directory()))
1867 mkdir(lp_lock_directory(), 0755);
1869 if (!directory_exist(lp_pid_directory()))
1870 mkdir(lp_pid_directory(), 0755);
1872 if (cmdline_daemon_cfg->daemon)
1873 pidfile_create(lp_pid_directory(), "smbd");
1875 status = reinit_after_fork(msg_ctx, ev_ctx, false);
1876 if (!NT_STATUS_IS_OK(status)) {
1877 exit_daemon("reinit_after_fork() failed", map_errno_from_nt_status(status));
1880 if (!cmdline_daemon_cfg->interactive) {
1882 * Do not initialize the parent-child-pipe before becoming a
1883 * daemon: this is used to detect a died parent in the child
1886 status = init_before_fork();
1887 if (!NT_STATUS_IS_OK(status)) {
1888 exit_daemon(nt_errstr(status), map_errno_from_nt_status(status));
1892 parent = talloc_zero(ev_ctx, struct smbd_parent_context);
1894 exit_server("talloc(struct smbd_parent_context) failed");
1896 parent->interactive = cmdline_daemon_cfg->interactive;
1897 parent->ev_ctx = ev_ctx;
1898 parent->msg_ctx = msg_ctx;
1901 se = tevent_add_signal(parent->ev_ctx,
1904 smbd_parent_sig_term_handler,
1907 exit_server("failed to setup SIGTERM handler");
1909 se = tevent_add_signal(parent->ev_ctx,
1912 smbd_parent_sig_hup_handler,
1915 exit_server("failed to setup SIGHUP handler");
1918 /* Setup all the TDB's - including CLEAR_IF_FIRST tdb's. */
1920 if (smbd_memcache() == NULL) {
1921 exit_daemon("no memcache available", EACCES);
1924 memcache_set_global(smbd_memcache());
1926 /* Initialise the password backed before the global_sam_sid
1927 to ensure that we fetch from ldap before we make a domain sid up */
1929 if(!initialize_password_db(false, ev_ctx))
1932 if (!secrets_init()) {
1933 exit_daemon("smbd can not open secrets.tdb", EACCES);
1936 if (lp_server_role() == ROLE_DOMAIN_BDC || lp_server_role() == ROLE_DOMAIN_PDC || lp_server_role() == ROLE_IPA_DC) {
1937 struct loadparm_context *lp_ctx = loadparm_init_s3(NULL, loadparm_s3_helpers());
1938 if (!open_schannel_session_store(NULL, lp_ctx)) {
1939 exit_daemon("ERROR: Samba cannot open schannel store for secured NETLOGON operations.", EACCES);
1941 TALLOC_FREE(lp_ctx);
1944 if(!get_global_sam_sid()) {
1945 exit_daemon("Samba cannot create a SAM SID", EACCES);
1948 server_id = messaging_server_id(msg_ctx);
1949 status = smbXsrv_version_global_init(&server_id);
1950 if (!NT_STATUS_IS_OK(status)) {
1951 exit_daemon("Samba cannot init server context", EACCES);
1954 status = smbXsrv_client_global_init();
1955 if (!NT_STATUS_IS_OK(status)) {
1956 exit_daemon("Samba cannot init clients context", EACCES);
1959 status = smbXsrv_session_global_init(msg_ctx);
1960 if (!NT_STATUS_IS_OK(status)) {
1961 exit_daemon("Samba cannot init session context", EACCES);
1964 status = smbXsrv_tcon_global_init();
1965 if (!NT_STATUS_IS_OK(status)) {
1966 exit_daemon("Samba cannot init tcon context", EACCES);
1969 if (!locking_init())
1970 exit_daemon("Samba cannot init locking", EACCES);
1972 if (!leases_db_init(false)) {
1973 exit_daemon("Samba cannot init leases", EACCES);
1976 if (!smbd_notifyd_init(
1978 cmdline_daemon_cfg->interactive,
1979 &parent->notifyd)) {
1980 exit_daemon("Samba cannot init notification", EACCES);
1985 cmdline_daemon_cfg->interactive,
1986 &parent->cleanupd)) {
1987 exit_daemon("Samba cannot init the cleanupd", EACCES);
1990 if (!messaging_parent_dgm_cleanup_init(msg_ctx)) {
1994 if (!smbd_scavenger_init(NULL, msg_ctx, ev_ctx)) {
1995 exit_daemon("Samba cannot init scavenging", EACCES);
1998 if (!W_ERROR_IS_OK(registry_init_full()))
1999 exit_daemon("Samba cannot init registry", EACCES);
2001 /* Open the share_info.tdb here, so we don't have to open
2002 after the fork on every single connection. This is a small
2003 performance improvement and reduces the total number of system
2005 status = share_info_db_init();
2006 if (!NT_STATUS_IS_OK(status)) {
2007 exit_daemon("ERROR: failed to load share info db.", EACCES);
2010 status = init_system_session_info(NULL);
2011 if (!NT_STATUS_IS_OK(status)) {
2012 DEBUG(1, ("ERROR: failed to setup system user info: %s.\n",
2013 nt_errstr(status)));
2017 if (!init_guest_session_info(NULL)) {
2018 DEBUG(0,("ERROR: failed to setup guest info.\n"));
2022 if (!file_init_global()) {
2023 DEBUG(0, ("ERROR: file_init_global() failed\n"));
2026 status = smbXsrv_open_global_init();
2027 if (!NT_STATUS_IS_OK(status)) {
2028 exit_daemon("Samba cannot init global open", map_errno_from_nt_status(status));
2031 if (lp_clustering() && !lp_allow_unsafe_cluster_upgrade()) {
2032 status = smbd_claim_version(msg_ctx, samba_version_string());
2033 if (!NT_STATUS_IS_OK(status)) {
2034 DBG_ERR("Could not claim version: %s\n",
2040 /* This MUST be done before start_epmd() because otherwise
2041 * start_epmd() forks and races against dcesrv_ep_setup() to
2042 * call directory_create_or_exist() */
2043 if (!directory_create_or_exist(lp_ncalrpc_dir(), 0755)) {
2044 DEBUG(0, ("Failed to create pipe directory %s - %s\n",
2045 lp_ncalrpc_dir(), strerror(errno)));
2049 np_dir = talloc_asprintf(talloc_tos(), "%s/np", lp_ncalrpc_dir());
2051 DEBUG(0, ("%s: Out of memory\n", __location__));
2055 if (!directory_create_or_exist_strict(np_dir, geteuid(), 0700)) {
2056 DEBUG(0, ("Failed to create pipe directory %s - %s\n",
2057 np_dir, strerror(errno)));
2061 if (!cmdline_daemon_cfg->interactive) {
2062 daemon_ready("smbd");
2065 if (!cmdline_daemon_cfg->daemon) {
2071 /* Started from inetd. fd 0 is the socket. */
2072 /* We will abort gracefully when the client or remote system
2076 /* close stdin, stdout (if not logging to it), but not stderr */
2077 ret = close_low_fd(0);
2079 DBG_ERR("close_low_fd(0) failed: %s\n", strerror(ret));
2082 if (!debug_get_output_is_stdout()) {
2083 ret = close_low_fd(1);
2085 DBG_ERR("close_low_fd(1) failed: %s\n",
2096 smbd_setup_sig_chld_handler(parent);
2098 smbd_process(ev_ctx, msg_ctx, sock, true);
2100 exit_server_cleanly(NULL);
2104 if (!open_sockets_smbd(parent, ev_ctx, msg_ctx, ports))
2105 exit_server("open_sockets_smbd() failed");
2108 /* make sure we always have a valid stackframe */
2109 frame = talloc_stackframe();
2111 if (!cmdline_daemon_cfg->fork) {
2112 /* if we are running in the foreground then look for
2113 EOF on stdin, and exit if it happens. This allows
2114 us to die if the parent process dies
2115 Only do this on a pipe or socket, no other device.
2118 if (fstat(0, &st) != 0) {
2121 if (S_ISFIFO(st.st_mode) || S_ISSOCK(st.st_mode)) {
2122 tevent_add_fd(ev_ctx,
2131 smbd_parent_loop(ev_ctx, parent);
2133 exit_server_cleanly(NULL);