2 Unix SMB/Netbios implementation.
4 Main SMB server routines
5 Copyright (C) Andrew Tridgell 1992-1998
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
25 pstring servicesf = CONFIGFILE;
26 extern pstring debugf;
27 extern pstring sesssetup_user;
28 extern fstring myworkgroup;
30 char *InBuffer = NULL;
31 char *OutBuffer = NULL;
32 char *last_inbuf = NULL;
37 /* the last message the was processed */
38 int last_message = -1;
40 /* a useful macro to debug the last message processed */
41 #define LAST_MESSAGE() smb_fn_name(last_message)
44 extern int DEBUGLEVEL;
45 extern int case_default;
46 extern BOOL case_sensitive;
47 extern BOOL case_preserve;
48 extern BOOL use_mangled_map;
49 extern BOOL short_case_preserve;
50 extern BOOL case_mangle;
51 time_t smb_last_time=(time_t)0;
53 extern int smb_read_error;
55 extern pstring user_socket_options;
57 connection_struct Connections[MAX_CONNECTIONS];
58 files_struct Files[MAX_OPEN_FILES];
61 * Indirection for file fd's. Needed as POSIX locking
62 * is based on file/process, not fd/process.
64 file_fd_struct FileFd[MAX_OPEN_FILES];
65 int max_file_fd_used = 0;
70 * Size of data we can send to client. Set
71 * by the client for all protocols above CORE.
72 * Set by us for CORE protocol.
74 int max_send = BUFFER_SIZE;
76 * Size of the data we can receive. Set by us.
77 * Can be modified by the max xmit parameter.
79 int max_recv = BUFFER_SIZE;
81 /* a fnum to use when chaining */
84 /* number of open connections */
85 static int num_connections_open = 0;
87 /* Oplock ipc UDP socket. */
89 uint16 oplock_port = 0;
90 /* Current number of oplocks we have outstanding. */
91 int32 global_oplocks_open = 0;
93 BOOL global_oplock_break = False;
95 extern fstring remote_machine;
97 extern pstring OriginalDir;
99 /* these can be set by some functions to override the error codes */
100 int unix_ERR_class=SUCCESS;
104 extern int extra_time_offset;
106 extern pstring myhostname;
108 static int find_free_connection(int hash);
110 /* for readability... */
111 #define IS_DOS_READONLY(test_mode) (((test_mode) & aRONLY) != 0)
112 #define IS_DOS_DIR(test_mode) (((test_mode) & aDIR) != 0)
113 #define IS_DOS_ARCHIVE(test_mode) (((test_mode) & aARCH) != 0)
114 #define IS_DOS_SYSTEM(test_mode) (((test_mode) & aSYSTEM) != 0)
115 #define IS_DOS_HIDDEN(test_mode) (((test_mode) & aHIDDEN) != 0)
117 /****************************************************************************
118 when exiting, take the whole family
119 ****************************************************************************/
122 exit_server("caught signal");
123 return 0; /* Keep -Wall happy :-) */
125 /****************************************************************************
126 Send a SIGTERM to our process group.
127 *****************************************************************************/
130 if(am_parent) kill(0,SIGTERM);
133 /****************************************************************************
134 change a dos mode to a unix mode
135 base permission for files:
136 everybody gets read bit set
137 dos readonly is represented in unix by removing everyone's write bit
138 dos archive is represented in unix by the user's execute bit
139 dos system is represented in unix by the group's execute bit
140 dos hidden is represented in unix by the other's execute bit
141 Then apply create mask,
143 base permission for directories:
144 dos directory is represented in unix by unix's dir bit and the exec bit
145 Then apply create mask,
147 ****************************************************************************/
148 mode_t unix_mode(int cnum,int dosmode)
150 mode_t result = (S_IRUSR | S_IRGRP | S_IROTH);
152 if ( !IS_DOS_READONLY(dosmode) )
153 result |= (S_IWUSR | S_IWGRP | S_IWOTH);
155 if (IS_DOS_DIR(dosmode)) {
156 /* We never make directories read only for the owner as under DOS a user
157 can always create a file in a read-only directory. */
158 result |= (S_IFDIR | S_IXUSR | S_IXGRP | S_IXOTH | S_IWUSR);
159 /* Apply directory mask */
160 result &= lp_dir_mode(SNUM(cnum));
161 /* Add in force bits */
162 result |= lp_force_dir_mode(SNUM(cnum));
164 if (MAP_ARCHIVE(cnum) && IS_DOS_ARCHIVE(dosmode))
167 if (MAP_SYSTEM(cnum) && IS_DOS_SYSTEM(dosmode))
170 if (MAP_HIDDEN(cnum) && IS_DOS_HIDDEN(dosmode))
173 /* Apply mode mask */
174 result &= lp_create_mode(SNUM(cnum));
175 /* Add in force bits */
176 result |= lp_force_create_mode(SNUM(cnum));
182 /****************************************************************************
183 change a unix mode to a dos mode
184 ****************************************************************************/
185 int dos_mode(int cnum,char *path,struct stat *sbuf)
188 extern struct current_user current_user;
190 DEBUG(8,("dos_mode: %d %s\n", cnum, path));
192 if (CAN_WRITE(cnum) && !lp_alternate_permissions(SNUM(cnum))) {
193 if (!((sbuf->st_mode & S_IWOTH) ||
194 Connections[cnum].admin_user ||
195 ((sbuf->st_mode & S_IWUSR) && current_user.uid==sbuf->st_uid) ||
196 ((sbuf->st_mode & S_IWGRP) &&
197 in_group(sbuf->st_gid,current_user.gid,
198 current_user.ngroups,current_user.igroups))))
201 if ((sbuf->st_mode & S_IWUSR) == 0)
205 if (MAP_ARCHIVE(cnum) && ((sbuf->st_mode & S_IXUSR) != 0))
208 if (MAP_SYSTEM(cnum) && ((sbuf->st_mode & S_IXGRP) != 0))
211 if (MAP_HIDDEN(cnum) && ((sbuf->st_mode & S_IXOTH) != 0))
214 if (S_ISDIR(sbuf->st_mode))
215 result = aDIR | (result & aRONLY);
219 if (S_ISLNK(sbuf->st_mode) && S_ISDIR(sbuf->st_mode))
224 /* hide files with a name starting with a . */
225 if (lp_hide_dot_files(SNUM(cnum)))
227 char *p = strrchr(path,'/');
233 if (p[0] == '.' && p[1] != '.' && p[1] != 0)
237 /* Optimization : Only call is_hidden_path if it's not already
239 if (!(result & aHIDDEN) && IS_HIDDEN_PATH(cnum,path))
244 DEBUG(8,("dos_mode returning "));
246 if (result & aHIDDEN) DEBUG(8, ("h"));
247 if (result & aRONLY ) DEBUG(8, ("r"));
248 if (result & aSYSTEM) DEBUG(8, ("s"));
249 if (result & aDIR ) DEBUG(8, ("d"));
250 if (result & aARCH ) DEBUG(8, ("a"));
257 /*******************************************************************
258 chmod a file - but preserve some bits
259 ********************************************************************/
260 int dos_chmod(int cnum,char *fname,int dosmode,struct stat *st)
269 if (sys_stat(fname,st)) return(-1);
272 if (S_ISDIR(st->st_mode)) dosmode |= aDIR;
274 if (dos_mode(cnum,fname,st) == dosmode) return(0);
276 unixmode = unix_mode(cnum,dosmode);
278 /* preserve the s bits */
279 mask |= (S_ISUID | S_ISGID);
281 /* preserve the t bit */
286 /* possibly preserve the x bits */
287 if (!MAP_ARCHIVE(cnum)) mask |= S_IXUSR;
288 if (!MAP_SYSTEM(cnum)) mask |= S_IXGRP;
289 if (!MAP_HIDDEN(cnum)) mask |= S_IXOTH;
291 unixmode |= (st->st_mode & mask);
293 /* if we previously had any r bits set then leave them alone */
294 if ((tmp = st->st_mode & (S_IRUSR|S_IRGRP|S_IROTH))) {
295 unixmode &= ~(S_IRUSR|S_IRGRP|S_IROTH);
299 /* if we previously had any w bits set then leave them alone
300 if the new mode is not rdonly */
301 if (!IS_DOS_READONLY(dosmode) &&
302 (tmp = st->st_mode & (S_IWUSR|S_IWGRP|S_IWOTH))) {
303 unixmode &= ~(S_IWUSR|S_IWGRP|S_IWOTH);
307 return(sys_chmod(fname,unixmode));
310 /*******************************************************************
311 Wrapper around sys_utime that possibly allows DOS semantics rather
313 *******************************************************************/
315 int file_utime(int cnum, char *fname, struct utimbuf *times)
317 extern struct current_user current_user;
323 if(sys_utime(fname, times) == 0)
326 if((errno != EPERM) && (errno != EACCES))
329 if(!lp_dos_filetimes(SNUM(cnum)))
332 /* We have permission (given by the Samba admin) to
333 break POSIX semantics and allow a user to change
334 the time on a file they don't own but can write to
338 if(sys_stat(fname,&sb) != 0)
341 /* Check if we have write access. */
342 if (CAN_WRITE(cnum)) {
343 if (((sb.st_mode & S_IWOTH) ||
344 Connections[cnum].admin_user ||
345 ((sb.st_mode & S_IWUSR) && current_user.uid==sb.st_uid) ||
346 ((sb.st_mode & S_IWGRP) &&
347 in_group(sb.st_gid,current_user.gid,
348 current_user.ngroups,current_user.igroups)))) {
349 /* We are allowed to become root and change the filetime. */
351 ret = sys_utime(fname, times);
352 unbecome_root(False);
359 /*******************************************************************
360 Change a filetime - possibly allowing DOS semantics.
361 *******************************************************************/
363 BOOL set_filetime(int cnum, char *fname, time_t mtime)
365 struct utimbuf times;
367 if (null_mtime(mtime)) return(True);
369 times.modtime = times.actime = mtime;
371 if (file_utime(cnum, fname, ×)) {
372 DEBUG(4,("set_filetime(%s) failed: %s\n",fname,strerror(errno)));
378 /****************************************************************************
379 check if two filenames are equal
381 this needs to be careful about whether we are case sensitive
382 ****************************************************************************/
383 static BOOL fname_equal(char *name1, char *name2)
385 int l1 = strlen(name1);
386 int l2 = strlen(name2);
388 /* handle filenames ending in a single dot */
389 if (l1-l2 == 1 && name1[l1-1] == '.' && lp_strip_dot())
393 ret = fname_equal(name1,name2);
398 if (l2-l1 == 1 && name2[l2-1] == '.' && lp_strip_dot())
402 ret = fname_equal(name1,name2);
407 /* now normal filename handling */
409 return(strcmp(name1,name2) == 0);
411 return(strequal(name1,name2));
415 /****************************************************************************
416 mangle the 2nd name and check if it is then equal to the first name
417 ****************************************************************************/
418 static BOOL mangled_equal(char *name1, char *name2)
422 if (is_8_3(name2, True))
425 strcpy(tmpname,name2);
426 mangle_name_83(tmpname);
428 return(strequal(name1,tmpname));
432 /****************************************************************************
433 scan a directory to find a filename, matching without case sensitivity
435 If the name looks like a mangled name then try via the mangling functions
436 ****************************************************************************/
437 static BOOL scan_directory(char *path, char *name,int cnum,BOOL docache)
444 mangled = is_mangled(name);
446 /* handle null paths */
450 if (docache && (dname = DirCacheCheck(path,name,SNUM(cnum)))) {
457 * This code I believe is incorrect - and commenting it out
458 * is the correct fix for the bug mentioned below in the
459 * comment 'name2 here was changed to dname - since 1.9.16p2 - not sure of reason (jra)'.
460 * The incoming name can be mangled, and if we de-mangle it
461 * here it will not compare correctly against the filename (name2)
462 * read from the directory and then mangled by the name_map_mangle()
463 * call. We need to mangle both names or neither.
467 check_mangled_stack(name);
470 /* open the directory */
471 if (!(cur_dir = OpenDir(cnum, path, True)))
473 DEBUG(3,("scan dir didn't open dir [%s]\n",path));
477 /* now scan for matching names */
478 while ((dname = ReadDirName(cur_dir)))
481 (strequal(dname,".") || strequal(dname,"..")))
484 pstrcpy(name2,dname);
485 if (!name_map_mangle(name2,False,SNUM(cnum))) continue;
487 if ((mangled && mangled_equal(name,name2))
488 || fname_equal(name, name2)) /* name2 here was changed to dname - since 1.9.16p2 - not sure of reason (jra) */
490 /* we've found the file, change it's name and return */
491 if (docache) DirCacheAdd(path,name,dname,SNUM(cnum));
502 /****************************************************************************
503 This routine is called to convert names from the dos namespace to unix
504 namespace. It needs to handle any case conversions, mangling, format
507 We assume that we have already done a chdir() to the right "root" directory
510 The function will return False if some part of the name except for the last
511 part cannot be resolved
513 If the saved_last_component != 0, then the unmodified last component
514 of the pathname is returned there. This is used in an exceptional
515 case in reply_mv (so far). If saved_last_component == 0 then nothing
518 The bad_path arg is set to True if the filename walk failed. This is
519 used to pick the correct error code to return between ENOENT and ENOTDIR
520 as Windows applications depend on ERRbadpath being returned if a component
521 of a pathname does not exist.
522 ****************************************************************************/
523 BOOL unix_convert(char *name,int cnum,pstring saved_last_component, BOOL *bad_path)
533 if(saved_last_component)
534 *saved_last_component = 0;
536 /* convert to basic unix format - removing \ chars and cleaning it up */
538 unix_clean_name(name);
540 /* names must be relative to the root of the service - trim any leading /.
541 also trim trailing /'s */
542 trim_string(name,"/","/");
545 * Ensure saved_last_component is valid even if file exists.
547 if(saved_last_component) {
548 end = strrchr(name, '/');
550 strcpy(saved_last_component, end + 1);
552 strcpy(saved_last_component, name);
555 if (!case_sensitive &&
556 (!case_preserve || (is_8_3(name, False) && !short_case_preserve)))
559 /* check if it's a printer file */
560 if (Connections[cnum].printer)
562 if ((! *name) || strchr(name,'/') || !is_8_3(name, True))
566 sprintf(name2,"%.6s.XXXXXX",remote_machine);
567 /* sanitise the name */
568 for (s=name2 ; *s ; s++)
569 if (!issafe(*s)) *s = '_';
570 strcpy(name,(char *)mktemp(name2));
575 /* stat the name - if it exists then we are all done! */
576 if (sys_stat(name,&st) == 0)
581 DEBUG(5,("unix_convert(%s,%d)\n",name,cnum));
583 /* a special case - if we don't have any mangling chars and are case
584 sensitive then searching won't help */
585 if (case_sensitive && !is_mangled(name) &&
586 !lp_strip_dot() && !use_mangled_map && (saved_errno != ENOENT))
589 /* now we need to recursively match the name against the real
590 directory structure */
593 while (strncmp(start,"./",2) == 0)
596 /* now match each part of the path name separately, trying the names
597 as is first, then trying to scan the directory for matching names */
598 for (;start;start = (end?end+1:(char *)NULL))
600 /* pinpoint the end of this section of the filename */
601 end = strchr(start, '/');
603 /* chop the name at this point */
606 if(saved_last_component != 0)
607 strcpy(saved_last_component, end ? end + 1 : start);
609 /* check if the name exists up to this point */
610 if (sys_stat(name, &st) == 0)
612 /* it exists. it must either be a directory or this must be
613 the last part of the path for it to be OK */
614 if (end && !(st.st_mode & S_IFDIR))
616 /* an intermediate part of the name isn't a directory */
617 DEBUG(5,("Not a dir %s\n",start));
628 /* remember the rest of the pathname so it can be restored
630 if (end) pstrcpy(rest,end+1);
632 /* try to find this part of the path in the directory */
633 if (strchr(start,'?') || strchr(start,'*') ||
634 !scan_directory(dirpath, start, cnum, end?True:False))
638 /* an intermediate part of the name can't be found */
639 DEBUG(5,("Intermediate not found %s\n",start));
641 /* We need to return the fact that the intermediate
642 name resolution failed. This is used to return an
643 error of ERRbadpath rather than ERRbadfile. Some
644 Windows applications depend on the difference between
651 /* just the last part of the name doesn't exist */
652 /* we may need to strupper() or strlower() it in case
653 this conversion is being used for file creation
655 /* if the filename is of mixed case then don't normalise it */
656 if (!case_preserve &&
657 (!strhasupper(start) || !strhaslower(start)))
660 /* check on the mangled stack to see if we can recover the
661 base of the filename */
662 if (is_mangled(start))
663 check_mangled_stack(start);
665 DEBUG(5,("New file %s\n",start));
669 /* restore the rest of the string */
672 strcpy(start+strlen(start)+1,rest);
673 end = start + strlen(start);
677 /* add to the dirpath that we have resolved so far */
678 if (*dirpath) strcat(dirpath,"/");
679 strcat(dirpath,start);
681 /* restore the / that we wiped out earlier */
685 /* the name has been resolved */
686 DEBUG(5,("conversion finished %s\n",name));
691 /****************************************************************************
692 normalise for DOS usage
693 ****************************************************************************/
694 static void disk_norm(int *bsize,int *dfree,int *dsize)
696 /* check if the disk is beyond the max disk size */
697 int maxdisksize = lp_maxdisksize();
699 /* convert to blocks - and don't overflow */
700 maxdisksize = ((maxdisksize*1024)/(*bsize))*1024;
701 if (*dsize > maxdisksize) *dsize = maxdisksize;
702 if (*dfree > maxdisksize) *dfree = maxdisksize-1; /* the -1 should stop
707 while (*dfree > WORDMAX || *dsize > WORDMAX || *bsize < 512)
712 if (*bsize > WORDMAX )
715 if (*dsize > WORDMAX)
717 if (*dfree > WORDMAX)
724 /****************************************************************************
725 return number of 1K blocks available on a path and total number
726 ****************************************************************************/
727 int disk_free(char *path,int *bsize,int *dfree,int *dsize)
729 char *df_command = lp_dfree_command();
750 /* possibly use system() to get the result */
751 if (df_command && *df_command)
757 sprintf(outfile,"%s/dfree.smb.%d",tmpdir(),(int)getpid());
758 sprintf(syscmd,"%s %s",df_command,path);
759 standard_sub_basic(syscmd);
761 ret = smbrun(syscmd,outfile,False);
762 DEBUG(3,("Running the command `%s' gave %d\n",syscmd,ret));
765 FILE *f = fopen(outfile,"r");
771 fscanf(f,"%d %d %d",dsize,dfree,bsize);
775 DEBUG(0,("Can't open %s\n",outfile));
779 disk_norm(bsize,dfree,dsize);
780 dfree_retval = ((*bsize)/1024)*(*dfree);
782 /* Ensure we return the min value between the users quota and
783 what's free on the disk. Thanks to Albrecht Gebhardt
784 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
786 if (disk_quotas(path, &bsizeq, &dfreeq, &dsizeq))
788 disk_norm(&bsizeq, &dfreeq, &dsizeq);
789 dfreeq_retval = ((bsizeq)/1024)*(dfreeq);
790 dfree_retval = ( dfree_retval < dfreeq_retval ) ?
791 dfree_retval : dfreeq_retval ;
792 /* maybe dfree and dfreeq are calculated using different bsizes
793 so convert dfree from bsize into bsizeq */
794 /* avoid overflows due to multiplication, so do not:
795 *dfree = ((*dfree) * (*bsize)) / (bsizeq);
796 bsize and bsizeq are powers of 2 so its better to
797 to divide them getting a multiplication or division factor
798 for dfree. Rene Nieuwenhuizen (07-10-1997) */
799 if (*bsize >= bsizeq)
800 *dfree = *dfree * (*bsize / bsizeq);
802 *dfree = *dfree / (bsizeq / *bsize);
803 *dfree = ( *dfree < dfreeq ) ? *dfree : dfreeq ;
808 return(dfree_retval);
812 DEBUG(1,("Warning - no statfs function\n"));
816 if (statfs(path,&fs,sizeof(fs),0) != 0)
819 if (statvfs(path, &fs))
822 if (statfs(path,&fs,sizeof(fs)) == -1)
824 if (statfs(path,&fs) == -1)
826 #endif /* USE_STATVFS */
829 DEBUG(3,("dfree call failed code errno=%d\n",errno));
833 return(((*bsize)/1024)*(*dfree));
838 *dfree = fs.fd_req.bfree;
839 *dsize = fs.fd_req.btot;
842 *bsize = fs.f_frsize;
845 /* eg: osf1 has f_fsize = fundamental filesystem block size,
846 f_bsize = optimal transfer block size (MX: 94-04-19) */
851 #endif /* USE_STATVFS */
856 *dfree = fs.f_bavail;
858 *dsize = fs.f_blocks;
861 #if defined(SCO) || defined(ISC) || defined(MIPS)
865 /* handle rediculous bsize values - some OSes are broken */
866 if ((*bsize) < 512 || (*bsize)>0xFFFF) *bsize = 1024;
868 disk_norm(bsize,dfree,dsize);
874 DEBUG(0,("dfree seems to be broken on your system\n"));
875 *dsize = 20*1024*1024/(*bsize);
876 *dfree = MAX(1,*dfree);
878 dfree_retval = ((*bsize)/1024)*(*dfree);
880 /* Ensure we return the min value between the users quota and
881 what's free on the disk. Thanks to Albrecht Gebhardt
882 <albrecht.gebhardt@uni-klu.ac.at> for this fix.
884 if (disk_quotas(path, &bsizeq, &dfreeq, &dsizeq))
886 disk_norm(&bsizeq, &dfreeq, &dsizeq);
887 dfreeq_retval = ((bsizeq)/1024)*(dfreeq);
888 dfree_retval = ( dfree_retval < dfreeq_retval ) ?
889 dfree_retval : dfreeq_retval ;
890 /* maybe dfree and dfreeq are calculated using different bsizes
891 so convert dfree from bsize into bsizeq */
892 /* avoid overflows due to multiplication, so do not:
893 *dfree = ((*dfree) * (*bsize)) / (bsizeq);
894 bsize and bsizeq are powers of 2 so its better to
895 to divide them getting a multiplication or division factor
896 for dfree. Rene Nieuwenhuizen (07-10-1997) */
897 if (*bsize >= bsizeq)
898 *dfree = *dfree * (*bsize / bsizeq);
900 *dfree = *dfree / (bsizeq / *bsize);
901 *dfree = ( *dfree < dfreeq ) ? *dfree : dfreeq ;
906 return(dfree_retval);
911 /****************************************************************************
912 wrap it to get filenames right
913 ****************************************************************************/
914 int sys_disk_free(char *path,int *bsize,int *dfree,int *dsize)
916 return(disk_free(dos_to_unix(path,False),bsize,dfree,dsize));
921 /****************************************************************************
922 check a filename - possibly caling reducename
924 This is called by every routine before it allows an operation on a filename.
925 It does any final confirmation necessary to ensure that the filename is
926 a valid one for the user to access.
927 ****************************************************************************/
928 BOOL check_name(char *name,int cnum)
934 if( IS_VETO_PATH(cnum, name))
936 DEBUG(5,("file path name %s vetoed\n",name));
940 ret = reduce_name(name,Connections[cnum].connectpath,lp_widelinks(SNUM(cnum)));
942 /* Check if we are allowing users to follow symlinks */
943 /* Patch from David Clerc <David.Clerc@cui.unige.ch>
944 University of Geneva */
947 if (!lp_symlinks(SNUM(cnum)))
950 if ( (sys_lstat(name,&statbuf) != -1) &&
951 (S_ISLNK(statbuf.st_mode)) )
953 DEBUG(3,("check_name: denied: file path name %s is a symlink\n",name));
960 DEBUG(5,("check_name on %s failed\n",name));
965 /****************************************************************************
966 check a filename - possibly caling reducename
967 ****************************************************************************/
968 static void check_for_pipe(char *fname)
970 /* special case of pipe opens */
974 if (strstr(s,"pipe/"))
976 DEBUG(3,("Rejecting named pipe open for %s\n",fname));
977 unix_ERR_class = ERRSRV;
978 unix_ERR_code = ERRaccess;
982 /****************************************************************************
983 fd support routines - attempt to do a sys_open
984 ****************************************************************************/
985 static int fd_attempt_open(char *fname, int flags, int mode)
987 int fd = sys_open(fname,flags,mode);
989 /* Fix for files ending in '.' */
990 if((fd == -1) && (errno == ENOENT) &&
991 (strchr(fname,'.')==NULL))
994 fd = sys_open(fname,flags,mode);
997 #if (defined(ENAMETOOLONG) && defined(HAVE_PATHCONF))
998 if ((fd == -1) && (errno == ENAMETOOLONG))
1001 char *p = strrchr(fname, '/');
1003 if (p == fname) /* name is "/xxx" */
1005 max_len = pathconf("/", _PC_NAME_MAX);
1008 else if ((p == NULL) || (p == fname))
1011 max_len = pathconf(".", _PC_NAME_MAX);
1016 max_len = pathconf(fname, _PC_NAME_MAX);
1020 if (strlen(p) > max_len)
1022 char tmp = p[max_len];
1025 if ((fd = sys_open(fname,flags,mode)) == -1)
1033 /****************************************************************************
1034 fd support routines - attempt to find an already open file by dev
1035 and inode - increments the ref_count of the returned file_fd_struct *.
1036 ****************************************************************************/
1037 static file_fd_struct *fd_get_already_open(struct stat *sbuf)
1040 file_fd_struct *fd_ptr;
1045 for(i = 0; i <= max_file_fd_used; i++) {
1046 fd_ptr = &FileFd[i];
1047 if((fd_ptr->ref_count > 0) &&
1048 (((uint32)sbuf->st_dev) == fd_ptr->dev) &&
1049 (((uint32)sbuf->st_ino) == fd_ptr->inode)) {
1050 fd_ptr->ref_count++;
1052 ("Re-used file_fd_struct %d, dev = %x, inode = %x, ref_count = %d\n",
1053 i, fd_ptr->dev, fd_ptr->inode, fd_ptr->ref_count));
1060 /****************************************************************************
1061 fd support routines - attempt to find a empty slot in the FileFd array.
1062 Increments the ref_count of the returned entry.
1063 ****************************************************************************/
1064 static file_fd_struct *fd_get_new()
1067 file_fd_struct *fd_ptr;
1069 for(i = 0; i < MAX_OPEN_FILES; i++) {
1070 fd_ptr = &FileFd[i];
1071 if(fd_ptr->ref_count == 0) {
1072 fd_ptr->dev = (uint32)-1;
1073 fd_ptr->inode = (uint32)-1;
1075 fd_ptr->fd_readonly = -1;
1076 fd_ptr->fd_writeonly = -1;
1077 fd_ptr->real_open_flags = -1;
1078 fd_ptr->ref_count++;
1079 /* Increment max used counter if neccessary, cuts down
1080 on search time when re-using */
1081 if(i > max_file_fd_used)
1082 max_file_fd_used = i;
1083 DEBUG(3,("Allocated new file_fd_struct %d, dev = %x, inode = %x\n",
1084 i, fd_ptr->dev, fd_ptr->inode));
1088 DEBUG(1,("ERROR! Out of file_fd structures - perhaps increase MAX_OPEN_FILES?\
1093 /****************************************************************************
1094 fd support routines - attempt to re-open an already open fd as O_RDWR.
1095 Save the already open fd (we cannot close due to POSIX file locking braindamage.
1096 ****************************************************************************/
1097 static void fd_attempt_reopen(char *fname, int mode, file_fd_struct *fd_ptr)
1099 int fd = sys_open( fname, O_RDWR, mode);
1104 if(fd_ptr->real_open_flags == O_RDONLY)
1105 fd_ptr->fd_readonly = fd_ptr->fd;
1106 if(fd_ptr->real_open_flags == O_WRONLY)
1107 fd_ptr->fd_writeonly = fd_ptr->fd;
1110 fd_ptr->real_open_flags = O_RDWR;
1113 /****************************************************************************
1114 fd support routines - attempt to close the file referenced by this fd.
1115 Decrements the ref_count and returns it.
1116 ****************************************************************************/
1117 static int fd_attempt_close(file_fd_struct *fd_ptr)
1119 DEBUG(3,("fd_attempt_close on file_fd_struct %d, fd = %d, dev = %x, inode = %x, open_flags = %d, ref_count = %d.\n",
1120 fd_ptr - &FileFd[0],
1121 fd_ptr->fd, fd_ptr->dev, fd_ptr->inode,
1122 fd_ptr->real_open_flags,
1123 fd_ptr->ref_count));
1124 if(fd_ptr->ref_count > 0) {
1125 fd_ptr->ref_count--;
1126 if(fd_ptr->ref_count == 0) {
1127 if(fd_ptr->fd != -1)
1129 if(fd_ptr->fd_readonly != -1)
1130 close(fd_ptr->fd_readonly);
1131 if(fd_ptr->fd_writeonly != -1)
1132 close(fd_ptr->fd_writeonly);
1134 fd_ptr->fd_readonly = -1;
1135 fd_ptr->fd_writeonly = -1;
1136 fd_ptr->real_open_flags = -1;
1137 fd_ptr->dev = (uint32)-1;
1138 fd_ptr->inode = (uint32)-1;
1141 return fd_ptr->ref_count;
1144 /****************************************************************************
1146 ****************************************************************************/
1147 static void open_file(int fnum,int cnum,char *fname1,int flags,int mode, struct stat *sbuf)
1149 extern struct current_user current_user;
1151 struct stat statbuf;
1152 file_fd_struct *fd_ptr;
1153 files_struct *fsp = &Files[fnum];
1154 int accmode = (flags & (O_RDONLY | O_WRONLY | O_RDWR));
1158 fsp->granted_oplock = False;
1161 pstrcpy(fname,fname1);
1163 /* check permissions */
1166 * This code was changed after seeing a client open request
1167 * containing the open mode of (DENY_WRITE/read-only) with
1168 * the 'create if not exist' bit set. The previous code
1169 * would fail to open the file read only on a read-only share
1170 * as it was checking the flags parameter directly against O_RDONLY,
1171 * this was failing as the flags parameter was set to O_RDONLY|O_CREAT.
1175 if (!CAN_WRITE(cnum) && !Connections[cnum].printer) {
1176 /* It's a read-only share - fail if we wanted to write. */
1177 if(accmode != O_RDONLY) {
1178 DEBUG(3,("Permission denied opening %s\n",fname));
1179 check_for_pipe(fname);
1182 else if(flags & O_CREAT) {
1183 /* We don't want to write - but we must make sure that O_CREAT
1184 doesn't create the file if we have write access into the
1191 /* this handles a bug in Win95 - it doesn't say to create the file when it
1193 if (Connections[cnum].printer)
1197 if (flags == O_WRONLY)
1198 DEBUG(3,("Bug in client? Set O_WRONLY without O_CREAT\n"));
1202 * Ensure we have a valid struct stat so we can search the
1206 if(stat(fname, &statbuf) < 0) {
1207 if(errno != ENOENT) {
1208 DEBUG(3,("Error doing stat on file %s (%s)\n",
1209 fname,strerror(errno)));
1211 check_for_pipe(fname);
1221 * Check to see if we have this file already
1222 * open. If we do, just use the already open fd and increment the
1223 * reference count (fd_get_already_open increments the ref_count).
1225 if((fd_ptr = fd_get_already_open(sbuf))!= 0) {
1227 /* File was already open. */
1228 if((flags & O_CREAT) && (flags & O_EXCL)) {
1229 fd_ptr->ref_count--;
1235 * If not opened O_RDWR try
1236 * and do that here - a chmod may have been done
1237 * between the last open and now.
1239 if(fd_ptr->real_open_flags != O_RDWR)
1240 fd_attempt_reopen(fname, mode, fd_ptr);
1243 * Ensure that if we wanted write access
1244 * it has been opened for write, and if we wanted read it
1245 * was open for read.
1247 if(((accmode == O_WRONLY) && (fd_ptr->real_open_flags == O_RDONLY)) ||
1248 ((accmode == O_RDONLY) && (fd_ptr->real_open_flags == O_WRONLY)) ||
1249 ((accmode == O_RDWR) && (fd_ptr->real_open_flags != O_RDWR))) {
1250 DEBUG(3,("Error opening (already open for flags=%d) file %s (%s) (flags=%d)\n",
1251 fd_ptr->real_open_flags, fname,strerror(EACCES),flags));
1252 check_for_pipe(fname);
1253 fd_ptr->ref_count--;
1259 /* We need to allocate a new file_fd_struct (this increments the
1261 if((fd_ptr = fd_get_new()) == 0)
1264 * Whatever the requested flags, attempt read/write access,
1265 * as we don't know what flags future file opens may require.
1266 * If this fails, try again with the required flags.
1267 * Even if we open read/write when only read access was
1268 * requested the setting of the can_write flag in
1269 * the file_struct will protect us from errant
1270 * write requests. We never need to worry about O_APPEND
1271 * as this is not set anywhere in Samba.
1273 fd_ptr->real_open_flags = O_RDWR;
1274 /* Set the flags as needed without the read/write modes. */
1275 open_flags = flags & ~(O_RDWR|O_WRONLY|O_RDONLY);
1276 fd_ptr->fd = fd_attempt_open(fname, open_flags|O_RDWR, mode);
1278 * On some systems opening a file for R/W access on a read only
1279 * filesystems sets errno to EROFS.
1282 if((fd_ptr->fd == -1) && ((errno == EACCES) || (errno == EROFS))) {
1283 #else /* No EROFS */
1284 if((fd_ptr->fd == -1) && (errno == EACCES)) {
1286 if(flags & O_WRONLY) {
1287 fd_ptr->fd = fd_attempt_open(fname, open_flags|O_WRONLY, mode);
1288 fd_ptr->real_open_flags = O_WRONLY;
1290 fd_ptr->fd = fd_attempt_open(fname, open_flags|O_RDONLY, mode);
1291 fd_ptr->real_open_flags = O_RDONLY;
1296 if ((fd_ptr->fd >=0) &&
1297 Connections[cnum].printer && lp_minprintspace(SNUM(cnum))) {
1301 pstrcpy(dname,fname);
1302 p = strrchr(dname,'/');
1304 if (sys_disk_free(dname,&dum1,&dum2,&dum3) <
1305 lp_minprintspace(SNUM(cnum))) {
1306 fd_attempt_close(fd_ptr);
1308 if(fd_ptr->ref_count == 0)
1317 DEBUG(3,("Error opening file %s (%s) (flags=%d)\n",
1318 fname,strerror(errno),flags));
1319 /* Ensure the ref_count is decremented. */
1320 fd_attempt_close(fd_ptr);
1321 check_for_pipe(fname);
1325 if (fd_ptr->fd >= 0)
1329 if(fstat(fd_ptr->fd, &statbuf) == -1) {
1330 /* Error - backout !! */
1331 DEBUG(3,("Error doing fstat on fd %d, file %s (%s)\n",
1332 fd_ptr->fd, fname,strerror(errno)));
1333 /* Ensure the ref_count is decremented. */
1334 fd_attempt_close(fd_ptr);
1339 /* Set the correct entries in fd_ptr. */
1340 fd_ptr->dev = (uint32)sbuf->st_dev;
1341 fd_ptr->inode = (uint32)sbuf->st_ino;
1343 fsp->fd_ptr = fd_ptr;
1344 Connections[cnum].num_files_open++;
1345 fsp->mode = sbuf->st_mode;
1346 GetTimeOfDay(&fsp->open_time);
1347 fsp->vuid = current_user.vuid;
1351 fsp->mmap_ptr = NULL;
1353 fsp->can_lock = True;
1354 fsp->can_read = ((flags & O_WRONLY)==0);
1355 fsp->can_write = ((flags & (O_WRONLY|O_RDWR))!=0);
1356 fsp->share_mode = 0;
1357 fsp->print_file = Connections[cnum].printer;
1358 fsp->modified = False;
1359 fsp->granted_oplock = False;
1360 fsp->sent_oplock_break = False;
1362 string_set(&fsp->name,dos_to_unix(fname,False));
1363 fsp->wbmpx_ptr = NULL;
1366 * If the printer is marked as postscript output a leading
1367 * file identifier to ensure the file is treated as a raw
1369 * This has a similar effect as CtrlD=0 in WIN.INI file.
1370 * tim@fsg.com 09/06/94
1372 if (fsp->print_file && POSTSCRIPT(cnum) &&
1375 DEBUG(3,("Writing postscript line\n"));
1376 write_file(fnum,"%!\n",3);
1379 DEBUG(2,("%s %s opened file %s read=%s write=%s (numopen=%d fnum=%d)\n",
1380 timestring(),Connections[cnum].user,fname,
1381 BOOLSTR(fsp->can_read),BOOLSTR(fsp->can_write),
1382 Connections[cnum].num_files_open,fnum));
1387 /* mmap it if read-only */
1388 if (!fsp->can_write)
1390 fsp->mmap_size = file_size(fname);
1391 fsp->mmap_ptr = (char *)mmap(NULL,fsp->mmap_size,
1392 PROT_READ,MAP_SHARED,fsp->fd_ptr->fd,0);
1394 if (fsp->mmap_ptr == (char *)-1 || !fsp->mmap_ptr)
1396 DEBUG(3,("Failed to mmap() %s - %s\n",fname,strerror(errno)));
1397 fsp->mmap_ptr = NULL;
1403 /*******************************************************************
1405 ********************************************************************/
1406 void sync_file(int fnum)
1409 fsync(Files[fnum].fd_ptr->fd);
1413 /****************************************************************************
1414 run a file if it is a magic script
1415 ****************************************************************************/
1416 static void check_magic(int fnum,int cnum)
1418 if (!*lp_magicscript(SNUM(cnum)))
1421 DEBUG(5,("checking magic for %s\n",Files[fnum].name));
1425 if (!(p = strrchr(Files[fnum].name,'/')))
1426 p = Files[fnum].name;
1430 if (!strequal(lp_magicscript(SNUM(cnum)),p))
1436 pstring magic_output;
1438 pstrcpy(fname,Files[fnum].name);
1440 if (*lp_magicoutput(SNUM(cnum)))
1441 pstrcpy(magic_output,lp_magicoutput(SNUM(cnum)));
1443 sprintf(magic_output,"%s.out",fname);
1446 ret = smbrun(fname,magic_output,False);
1447 DEBUG(3,("Invoking magic command %s gave %d\n",fname,ret));
1453 /****************************************************************************
1454 close a file - possibly invalidating the read prediction
1456 If normal_close is 1 then this came from a normal SMBclose (or equivalent)
1457 operation otherwise it came as the result of some other operation such as
1458 the closing of the connection. In the latter case printing and
1459 magic scripts are not run
1460 ****************************************************************************/
1461 void close_file(int fnum, BOOL normal_close)
1463 files_struct *fs_p = &Files[fnum];
1464 int cnum = fs_p->cnum;
1465 uint32 dev = fs_p->fd_ptr->dev;
1466 uint32 inode = fs_p->fd_ptr->inode;
1469 Files[fnum].reserved = False;
1471 #if USE_READ_PREDICTION
1472 invalidate_read_prediction(fs_p->fd_ptr->fd);
1476 Connections[cnum].num_files_open--;
1479 free((char *)fs_p->wbmpx_ptr);
1480 fs_p->wbmpx_ptr = NULL;
1486 munmap(fs_p->mmap_ptr,fs_p->mmap_size);
1487 fs_p->mmap_ptr = NULL;
1491 if (lp_share_modes(SNUM(cnum)))
1493 lock_share_entry( cnum, dev, inode, &token);
1494 del_share_mode(token, fnum);
1497 fd_attempt_close(fs_p->fd_ptr);
1499 if (lp_share_modes(SNUM(cnum)))
1500 unlock_share_entry( cnum, dev, inode, token);
1502 /* NT uses smbclose to start a print - weird */
1503 if (normal_close && fs_p->print_file)
1506 /* check for magic scripts */
1508 check_magic(fnum,cnum);
1510 if(fs_p->granted_oplock == True)
1511 global_oplocks_open--;
1513 fs_p->sent_oplock_break = False;
1515 DEBUG(2,("%s %s closed file %s (numopen=%d)\n",
1516 timestring(),Connections[cnum].user,fs_p->name,
1517 Connections[cnum].num_files_open));
1520 enum {AFAIL,AREAD,AWRITE,AALL};
1522 /*******************************************************************
1523 reproduce the share mode access table
1524 ********************************************************************/
1525 static int access_table(int new_deny,int old_deny,int old_mode,
1526 int share_pid,char *fname)
1528 if (new_deny == DENY_ALL || old_deny == DENY_ALL) return(AFAIL);
1530 if (new_deny == DENY_DOS || old_deny == DENY_DOS) {
1532 if (old_deny == new_deny && share_pid == pid)
1535 if (old_mode == 0) return(AREAD);
1537 /* the new smbpub.zip spec says that if the file extension is
1538 .com, .dll, .exe or .sym then allow the open. I will force
1539 it to read-only as this seems sensible although the spec is
1540 a little unclear on this. */
1541 if ((fname = strrchr(fname,'.'))) {
1542 if (strequal(fname,".com") ||
1543 strequal(fname,".dll") ||
1544 strequal(fname,".exe") ||
1545 strequal(fname,".sym"))
1555 if (old_deny==DENY_WRITE && old_mode==0) return(AREAD);
1556 if (old_deny==DENY_READ && old_mode==0) return(AWRITE);
1557 if (old_deny==DENY_NONE && old_mode==0) return(AALL);
1560 if (old_deny==DENY_WRITE && old_mode==1) return(AREAD);
1561 if (old_deny==DENY_READ && old_mode==1) return(AWRITE);
1562 if (old_deny==DENY_NONE && old_mode==1) return(AALL);
1565 if (old_deny==DENY_WRITE) return(AREAD);
1566 if (old_deny==DENY_READ) return(AWRITE);
1567 if (old_deny==DENY_NONE) return(AALL);
1573 /*******************************************************************
1574 check if the share mode on a file allows it to be deleted or unlinked
1575 return True if sharing doesn't prevent the operation
1576 ********************************************************************/
1577 BOOL check_file_sharing(int cnum,char *fname, BOOL rename_op)
1581 share_mode_entry *old_shares = 0;
1582 int num_share_modes;
1588 if(!lp_share_modes(SNUM(cnum)))
1591 if (stat(fname,&sbuf) == -1) return(True);
1593 dev = (uint32)sbuf.st_dev;
1594 inode = (uint32)sbuf.st_ino;
1596 lock_share_entry(cnum, dev, inode, &token);
1597 num_share_modes = get_share_modes(cnum, token, dev, inode, &old_shares);
1600 * Check if the share modes will give us access.
1603 if(num_share_modes != 0)
1610 broke_oplock = False;
1611 for(i = 0; i < num_share_modes; i++)
1613 share_mode_entry *share_entry = &old_shares[i];
1616 * Break oplocks before checking share modes. See comment in
1617 * open_file_shared for details.
1618 * Check if someone has an oplock on this file. If so we must
1619 * break it before continuing.
1621 if(share_entry->op_type & BATCH_OPLOCK)
1625 * It appears that the NT redirector may have a bug, in that
1626 * it tries to do an SMBmv on a file that it has open with a
1627 * batch oplock, and then fails to respond to the oplock break
1628 * request. This only seems to occur when the client is doing an
1629 * SMBmv to the smbd it is using - thus we try and detect this
1630 * condition by checking if the file being moved is open and oplocked by
1631 * this smbd process, and then not sending the oplock break in this
1632 * special case. If the file was open with a deny mode that
1633 * prevents the move the SMBmv will fail anyway with a share
1634 * violation error. JRA.
1636 if(rename_op && (share_entry->pid == pid))
1638 DEBUG(0,("check_file_sharing: NT redirector workaround - rename attempted on \
1639 batch oplocked file %s, dev = %x, inode = %x\n", fname, dev, inode));
1641 * This next line is a test that allows the deny-mode
1642 * processing to be skipped. This seems to be needed as
1643 * NT insists on the rename succeeding (in Office 9x no less !).
1644 * This should be removed as soon as (a) MS fix the redirector
1645 * bug or (b) NT SMB support in Samba makes NT not issue the
1646 * call (as is my fervent hope). JRA.
1652 DEBUG(5,("check_file_sharing: breaking oplock (%x) on file %s, \
1653 dev = %x, inode = %x\n", share_entry->op_type, fname, dev, inode));
1655 /* Oplock break.... */
1656 unlock_share_entry(cnum, dev, inode, token);
1657 if(request_oplock_break(share_entry, dev, inode) == False)
1659 free((char *)old_shares);
1660 DEBUG(0,("check_file_sharing: FAILED when breaking oplock (%x) on file %s, \
1661 dev = %x, inode = %x\n", old_shares[i].op_type, fname, dev, inode));
1664 lock_share_entry(cnum, dev, inode, &token);
1665 broke_oplock = True;
1670 /* someone else has a share lock on it, check to see
1672 if ((share_entry->share_mode != DENY_DOS) || (share_entry->pid != pid))
1679 free((char *)old_shares);
1680 num_share_modes = get_share_modes(cnum, token, dev, inode, &old_shares);
1682 } while(broke_oplock);
1685 /* XXXX exactly what share mode combinations should be allowed for
1686 deleting/renaming? */
1687 /* If we got here then either there were no share modes or
1688 all share modes were DENY_DOS and the pid == getpid() */
1693 unlock_share_entry(cnum, dev, inode, token);
1694 if(old_shares != NULL)
1695 free((char *)old_shares);
1699 /****************************************************************************
1701 Helper for open_file_shared.
1702 Truncate a file after checking locking; close file if locked.
1703 **************************************************************************/
1704 static void truncate_unless_locked(int fnum, int cnum, int token,
1707 if (Files[fnum].can_write){
1708 if (is_locked(fnum,cnum,0x3FFFFFFF,0)){
1709 /* If share modes are in force for this connection we
1710 have the share entry locked. Unlock it before closing. */
1711 if (*share_locked && lp_share_modes(SNUM(cnum)))
1712 unlock_share_entry( cnum, Files[fnum].fd_ptr->dev,
1713 Files[fnum].fd_ptr->inode, token);
1714 close_file(fnum,False);
1715 /* Share mode no longer locked. */
1716 *share_locked = False;
1718 unix_ERR_class = ERRDOS;
1719 unix_ERR_code = ERRlock;
1722 ftruncate(Files[fnum].fd_ptr->fd,0);
1726 /****************************************************************************
1727 check if we can open a file with a share mode
1728 ****************************************************************************/
1729 int check_share_mode( share_mode_entry *share, int deny_mode, char *fname,
1730 BOOL fcbopen, int *flags)
1732 int old_open_mode = share->share_mode &0xF;
1733 int old_deny_mode = (share->share_mode >>4)&7;
1735 if (old_deny_mode > 4 || old_open_mode > 2)
1737 DEBUG(0,("Invalid share mode found (%d,%d,%d) on file %s\n",
1738 deny_mode,old_deny_mode,old_open_mode,fname));
1743 int access_allowed = access_table(deny_mode,old_deny_mode,old_open_mode,
1746 if ((access_allowed == AFAIL) ||
1747 (!fcbopen && (access_allowed == AREAD && *flags == O_RDWR)) ||
1748 (access_allowed == AREAD && *flags == O_WRONLY) ||
1749 (access_allowed == AWRITE && *flags == O_RDONLY))
1751 DEBUG(2,("Share violation on file (%d,%d,%d,%d,%s,fcbopen = %d, flags = %d) = %d\n",
1752 deny_mode,old_deny_mode,old_open_mode,
1753 share->pid,fname, fcbopen, *flags, access_allowed));
1757 if (access_allowed == AREAD)
1760 if (access_allowed == AWRITE)
1767 /****************************************************************************
1768 open a file with a share mode
1769 ****************************************************************************/
1770 void open_file_shared(int fnum,int cnum,char *fname,int share_mode,int ofun,
1771 int mode,int oplock_request, int *Access,int *action)
1773 files_struct *fs_p = &Files[fnum];
1776 int deny_mode = (share_mode>>4)&7;
1778 BOOL file_existed = file_exist(fname,&sbuf);
1779 BOOL share_locked = False;
1780 BOOL fcbopen = False;
1784 int num_share_modes = 0;
1789 /* this is for OS/2 EAs - try and say we don't support them */
1790 if (strstr(fname,".+,;=[]."))
1792 unix_ERR_class = ERRDOS;
1793 /* OS/2 Workplace shell fix may be main code stream in a later release. */
1795 unix_ERR_code = ERRcannotopen;
1796 #else /* OS2_WPS_FIX */
1797 unix_ERR_code = ERROR_EAS_NOT_SUPPORTED;
1798 #endif /* OS2_WPS_FIX */
1803 if ((ofun & 0x3) == 0 && file_existed)
1811 if ((ofun & 0x3) == 2)
1814 /* note that we ignore the append flag as
1815 append does not mean the same thing under dos and unix */
1817 switch (share_mode&0xF)
1834 if (flags != O_RDONLY && file_existed &&
1835 (!CAN_WRITE(cnum) || IS_DOS_READONLY(dos_mode(cnum,fname,&sbuf))))
1845 if (deny_mode > DENY_NONE && deny_mode!=DENY_FCB)
1847 DEBUG(2,("Invalid deny mode %d on file %s\n",deny_mode,fname));
1852 if (deny_mode == DENY_FCB) deny_mode = DENY_DOS;
1854 if (lp_share_modes(SNUM(cnum)))
1857 share_mode_entry *old_shares = 0;
1861 dev = (uint32)sbuf.st_dev;
1862 inode = (uint32)sbuf.st_ino;
1863 lock_share_entry(cnum, dev, inode, &token);
1864 share_locked = True;
1865 num_share_modes = get_share_modes(cnum, token, dev, inode, &old_shares);
1869 * Check if the share modes will give us access.
1872 if(share_locked && (num_share_modes != 0))
1879 broke_oplock = False;
1880 for(i = 0; i < num_share_modes; i++)
1882 share_mode_entry *share_entry = &old_shares[i];
1885 * By observation of NetBench, oplocks are broken *before* share
1886 * modes are checked. This allows a file to be closed by the client
1887 * if the share mode would deny access and the client has an oplock.
1888 * Check if someone has an oplock on this file. If so we must break
1889 * it before continuing.
1891 if(share_entry->op_type & (EXCLUSIVE_OPLOCK|BATCH_OPLOCK))
1894 DEBUG(5,("open_file_shared: breaking oplock (%x) on file %s, \
1895 dev = %x, inode = %x\n", share_entry->op_type, fname, dev, inode));
1897 /* Oplock break.... */
1898 unlock_share_entry(cnum, dev, inode, token);
1899 if(request_oplock_break(share_entry, dev, inode) == False)
1901 free((char *)old_shares);
1902 DEBUG(0,("open_file_shared: FAILED when breaking oplock (%x) on file %s, \
1903 dev = %x, inode = %x\n", old_shares[i].op_type, fname, dev, inode));
1905 unix_ERR_class = ERRDOS;
1906 unix_ERR_code = ERRbadshare;
1909 lock_share_entry(cnum, dev, inode, &token);
1910 broke_oplock = True;
1914 /* someone else has a share lock on it, check to see
1916 if(check_share_mode(share_entry, deny_mode, fname, fcbopen, &flags) == False)
1918 free((char *)old_shares);
1919 unlock_share_entry(cnum, dev, inode, token);
1921 unix_ERR_class = ERRDOS;
1922 unix_ERR_code = ERRbadshare;
1930 free((char *)old_shares);
1931 num_share_modes = get_share_modes(cnum, token, dev, inode, &old_shares);
1933 } while(broke_oplock);
1937 free((char *)old_shares);
1940 DEBUG(4,("calling open_file with flags=0x%X flags2=0x%X mode=0%o\n",
1941 flags,flags2,mode));
1943 open_file(fnum,cnum,fname,flags|(flags2&~(O_TRUNC)),mode,file_existed ? &sbuf : 0);
1944 if (!fs_p->open && flags==O_RDWR && errno!=ENOENT && fcbopen)
1947 open_file(fnum,cnum,fname,flags,mode,file_existed ? &sbuf : 0 );
1954 if((share_locked == False) && lp_share_modes(SNUM(cnum)))
1956 /* We created the file - thus we must now lock the share entry before creating it. */
1957 dev = fs_p->fd_ptr->dev;
1958 inode = fs_p->fd_ptr->inode;
1959 lock_share_entry(cnum, dev, inode, &token);
1960 share_locked = True;
1976 fs_p->share_mode = (deny_mode<<4) | open_mode;
1979 (*Access) = open_mode;
1983 if (file_existed && !(flags2 & O_TRUNC)) *action = 1;
1984 if (!file_existed) *action = 2;
1985 if (file_existed && (flags2 & O_TRUNC)) *action = 3;
1987 /* We must create the share mode entry before truncate as
1988 truncate can fail due to locking and have to close the
1989 file (which expects the share_mode_entry to be there).
1991 if (lp_share_modes(SNUM(cnum)))
1994 /* JRA. Currently this only services Exlcusive and batch
1995 oplocks (no other opens on this file). This needs to
1996 be extended to level II oplocks (multiple reader
1999 if(oplock_request && (num_share_modes == 0) && lp_oplocks(SNUM(cnum)) &&
2000 !IS_VETO_OPLOCK_PATH(cnum,fname))
2002 fs_p->granted_oplock = True;
2003 fs_p->sent_oplock_break = False;
2004 global_oplocks_open++;
2007 DEBUG(5,("open_file_shared: granted oplock (%x) on file %s, \
2008 dev = %x, inode = %x\n", oplock_request, fname, dev, inode));
2016 set_share_mode(token, fnum, port, oplock_request);
2019 if ((flags2&O_TRUNC) && file_existed)
2020 truncate_unless_locked(fnum,cnum,token,&share_locked);
2023 if (share_locked && lp_share_modes(SNUM(cnum)))
2024 unlock_share_entry( cnum, dev, inode, token);
2027 /****************************************************************************
2028 seek a file. Try to avoid the seek if possible
2029 ****************************************************************************/
2030 int seek_file(int fnum,uint32 pos)
2033 if (Files[fnum].print_file && POSTSCRIPT(Files[fnum].cnum))
2036 Files[fnum].pos = (int)(lseek(Files[fnum].fd_ptr->fd,pos+offset,SEEK_SET)
2038 return(Files[fnum].pos);
2041 /****************************************************************************
2043 ****************************************************************************/
2044 int read_file(int fnum,char *data,uint32 pos,int n)
2048 #if USE_READ_PREDICTION
2049 if (!Files[fnum].can_write)
2051 ret = read_predict(Files[fnum].fd_ptr->fd,pos,data,NULL,n);
2060 if (Files[fnum].mmap_ptr)
2062 int num = MIN(n,(int)(Files[fnum].mmap_size-pos));
2065 memcpy(data,Files[fnum].mmap_ptr+pos,num);
2077 if (seek_file(fnum,pos) != pos)
2079 DEBUG(3,("Failed to seek to %d\n",pos));
2084 readret = read(Files[fnum].fd_ptr->fd,data,n);
2085 if (readret > 0) ret += readret;
2092 /****************************************************************************
2094 ****************************************************************************/
2095 int write_file(int fnum,char *data,int n)
2097 if (!Files[fnum].can_write) {
2102 if (!Files[fnum].modified) {
2104 Files[fnum].modified = True;
2105 if (fstat(Files[fnum].fd_ptr->fd,&st) == 0) {
2106 int dosmode = dos_mode(Files[fnum].cnum,Files[fnum].name,&st);
2107 if (MAP_ARCHIVE(Files[fnum].cnum) && !IS_DOS_ARCHIVE(dosmode)) {
2108 dos_chmod(Files[fnum].cnum,Files[fnum].name,dosmode | aARCH,&st);
2113 return(write_data(Files[fnum].fd_ptr->fd,data,n));
2117 /****************************************************************************
2118 load parameters specific to a connection/service
2119 ****************************************************************************/
2120 BOOL become_service(int cnum,BOOL do_chdir)
2122 extern char magic_char;
2123 static int last_cnum = -1;
2126 if (!OPEN_CNUM(cnum))
2132 Connections[cnum].lastused = smb_last_time;
2137 ChDir(Connections[cnum].connectpath) != 0 &&
2138 ChDir(Connections[cnum].origpath) != 0)
2140 DEBUG(0,("%s chdir (%s) failed cnum=%d\n",timestring(),
2141 Connections[cnum].connectpath,cnum));
2145 if (cnum == last_cnum)
2150 case_default = lp_defaultcase(snum);
2151 case_preserve = lp_preservecase(snum);
2152 short_case_preserve = lp_shortpreservecase(snum);
2153 case_mangle = lp_casemangle(snum);
2154 case_sensitive = lp_casesensitive(snum);
2155 magic_char = lp_magicchar(snum);
2156 use_mangled_map = (*lp_mangled_map(snum) ? True:False);
2161 /****************************************************************************
2162 find a service entry
2163 ****************************************************************************/
2164 int find_service(char *service)
2168 string_sub(service,"\\","/");
2170 iService = lp_servicenumber(service);
2172 /* now handle the special case of a home directory */
2175 char *phome_dir = get_home_dir(service);
2176 DEBUG(3,("checking for home directory %s gave %s\n",service,
2177 phome_dir?phome_dir:"(NULL)"));
2181 if ((iHomeService = lp_servicenumber(HOMES_NAME)) >= 0)
2183 lp_add_home(service,iHomeService,phome_dir);
2184 iService = lp_servicenumber(service);
2189 /* If we still don't have a service, attempt to add it as a printer. */
2192 int iPrinterService;
2194 if ((iPrinterService = lp_servicenumber(PRINTERS_NAME)) >= 0)
2198 DEBUG(3,("checking whether %s is a valid printer name...\n", service));
2200 if ((pszTemp != NULL) && pcap_printername_ok(service, pszTemp))
2202 DEBUG(3,("%s is a valid printer name\n", service));
2203 DEBUG(3,("adding %s as a printer service\n", service));
2204 lp_add_printer(service,iPrinterService);
2205 iService = lp_servicenumber(service);
2207 DEBUG(0,("failed to add %s as a printer service!\n", service));
2210 DEBUG(3,("%s is not a valid printer name\n", service));
2214 /* just possibly it's a default service? */
2217 char *defservice = lp_defaultservice();
2218 if (defservice && *defservice && !strequal(defservice,service)) {
2219 iService = find_service(defservice);
2220 if (iService >= 0) {
2221 string_sub(service,"_","/");
2222 iService = lp_add_service(service,iService);
2228 if (!VALID_SNUM(iService))
2230 DEBUG(0,("Invalid snum %d for %s\n",iService,service));
2235 DEBUG(3,("find_service() failed to find service %s\n", service));
2241 /****************************************************************************
2242 create an error packet from a cached error.
2243 ****************************************************************************/
2244 int cached_error_packet(char *inbuf,char *outbuf,int fnum,int line)
2246 write_bmpx_struct *wbmpx = Files[fnum].wbmpx_ptr;
2248 int32 eclass = wbmpx->wr_errclass;
2249 int32 err = wbmpx->wr_error;
2251 /* We can now delete the auxiliary struct */
2252 free((char *)wbmpx);
2253 Files[fnum].wbmpx_ptr = NULL;
2254 return error_packet(inbuf,outbuf,eclass,err,line);
2263 } unix_smb_errmap[] =
2265 {EPERM,ERRDOS,ERRnoaccess},
2266 {EACCES,ERRDOS,ERRnoaccess},
2267 {ENOENT,ERRDOS,ERRbadfile},
2268 {ENOTDIR,ERRDOS,ERRbadpath},
2269 {EIO,ERRHRD,ERRgeneral},
2270 {EBADF,ERRSRV,ERRsrverror},
2271 {EINVAL,ERRSRV,ERRsrverror},
2272 {EEXIST,ERRDOS,ERRfilexists},
2273 {ENFILE,ERRDOS,ERRnofids},
2274 {EMFILE,ERRDOS,ERRnofids},
2275 {ENOSPC,ERRHRD,ERRdiskfull},
2277 {EDQUOT,ERRHRD,ERRdiskfull},
2280 {ENOTEMPTY,ERRDOS,ERRnoaccess},
2283 {EXDEV,ERRDOS,ERRdiffdevice},
2285 {EROFS,ERRHRD,ERRnowrite},
2289 /****************************************************************************
2290 create an error packet from errno
2291 ****************************************************************************/
2292 int unix_error_packet(char *inbuf,char *outbuf,int def_class,uint32 def_code,int line)
2294 int eclass=def_class;
2298 if (unix_ERR_class != SUCCESS)
2300 eclass = unix_ERR_class;
2301 ecode = unix_ERR_code;
2302 unix_ERR_class = SUCCESS;
2307 while (unix_smb_errmap[i].smbclass != 0)
2309 if (unix_smb_errmap[i].unixerror == errno)
2311 eclass = unix_smb_errmap[i].smbclass;
2312 ecode = unix_smb_errmap[i].smbcode;
2319 return(error_packet(inbuf,outbuf,eclass,ecode,line));
2323 /****************************************************************************
2324 create an error packet. Normally called using the ERROR() macro
2325 ****************************************************************************/
2326 int error_packet(char *inbuf,char *outbuf,int error_class,uint32 error_code,int line)
2328 int outsize = set_message(outbuf,0,0,True);
2330 cmd = CVAL(inbuf,smb_com);
2332 CVAL(outbuf,smb_rcls) = error_class;
2333 SSVAL(outbuf,smb_err,error_code);
2335 DEBUG(3,("%s error packet at line %d cmd=%d (%s) eclass=%d ecode=%d\n",
2338 (int)CVAL(inbuf,smb_com),
2339 smb_fn_name(CVAL(inbuf,smb_com)),
2344 DEBUG(3,("error string = %s\n",strerror(errno)));
2350 #ifndef SIGCLD_IGNORE
2351 /****************************************************************************
2352 this prevents zombie child processes
2353 ****************************************************************************/
2354 static int sig_cld()
2356 static int depth = 0;
2359 DEBUG(0,("ERROR: Recursion in sig_cld? Perhaps you need `#define USE_WAITPID'?\n"));
2365 BlockSignals(True,SIGCLD);
2366 DEBUG(5,("got SIGCLD\n"));
2369 while (sys_waitpid((pid_t)-1,(int *)NULL, WNOHANG) > 0);
2373 /* Stevens, Adv. Unix Prog. says that on system V you must call
2374 wait before reinstalling the signal handler, because the kernel
2375 calls the handler from within the signal-call when there is a
2376 child that has exited. This would lead to an infinite recursion
2377 if done vice versa. */
2379 #ifndef DONT_REINSTALL_SIG
2380 #ifdef SIGCLD_IGNORE
2381 signal(SIGCLD, SIG_IGN);
2383 signal(SIGCLD, SIGNAL_CAST sig_cld);
2388 while (wait3(WAIT3_CAST1 NULL, WNOHANG, WAIT3_CAST2 NULL) > 0);
2391 BlockSignals(False,SIGCLD);
2396 /****************************************************************************
2397 this is called when the client exits abruptly
2398 **************************************************************************/
2399 static int sig_pipe()
2401 struct cli_state *cli;
2402 BlockSignals(True,SIGPIPE);
2404 if ((cli = server_client()) && cli->initialised) {
2405 DEBUG(3,("lost connection to password server\n"));
2407 #ifndef DONT_REINSTALL_SIG
2408 signal(SIGPIPE, SIGNAL_CAST sig_pipe);
2410 BlockSignals(False,SIGPIPE);
2414 exit_server("Got sigpipe\n");
2418 /****************************************************************************
2419 open the socket communication
2420 ****************************************************************************/
2421 static BOOL open_sockets(BOOL is_daemon,int port)
2427 int num_interfaces = iface_count();
2428 int fd_listenset[FD_SETSIZE];
2434 #ifdef SIGCLD_IGNORE
2435 signal(SIGCLD, SIG_IGN);
2437 signal(SIGCLD, SIGNAL_CAST sig_cld);
2443 FD_ZERO(&listen_set);
2445 if(lp_interfaces() && lp_bind_interfaces_only())
2447 /* We have been given an interfaces line, and been
2448 told to only bind to those interfaces. Create a
2449 socket per interface and bind to only these.
2452 if(num_interfaces > FD_SETSIZE)
2454 DEBUG(0,("open_sockets: Too many interfaces specified to bind to. Number was %d \
2455 max can be %d\n", num_interfaces, FD_SETSIZE));
2459 /* Now open a listen socket for each of the interfaces. */
2460 for(i = 0; i < num_interfaces; i++)
2462 struct in_addr *ifip = iface_n_ip(i);
2466 DEBUG(0,("open_sockets: interface %d has NULL IP address !\n", i));
2469 s = fd_listenset[i] = open_socket_in(SOCK_STREAM, port, 0, ifip->s_addr);
2472 /* ready to listen */
2473 if (listen(s, 5) == -1)
2475 DEBUG(0,("listen: %s\n",strerror(errno)));
2479 FD_SET(s,&listen_set);
2484 /* Just bind to 0.0.0.0 - accept connections from anywhere. */
2487 /* open an incoming socket */
2488 s = open_socket_in(SOCK_STREAM, port, 0,interpret_addr(lp_socket_address()));
2492 /* ready to listen */
2493 if (listen(s, 5) == -1)
2495 DEBUG(0,("open_sockets: listen: %s\n",strerror(errno)));
2500 fd_listenset[0] = s;
2501 FD_SET(s,&listen_set);
2504 /* now accept incoming connections - forking a new process
2505 for each incoming connection */
2506 DEBUG(2,("waiting for a connection\n"));
2512 memcpy((char *)&lfds, (char *)&listen_set, sizeof(listen_set));
2514 num = sys_select(&lfds,NULL);
2516 if (num == -1 && errno == EINTR)
2519 /* Find the sockets that are read-ready - accept on these. */
2520 for( ; num > 0; num--)
2522 struct sockaddr addr;
2523 int in_addrlen = sizeof(addr);
2526 for(i = 0; i < num_interfaces; i++)
2528 if(FD_ISSET(fd_listenset[i],&lfds))
2530 s = fd_listenset[i];
2531 /* Clear this so we don't look at it again. */
2532 FD_CLR(fd_listenset[i],&lfds);
2537 Client = accept(s,&addr,&in_addrlen);
2539 if (Client == -1 && errno == EINTR)
2544 DEBUG(0,("open_sockets: accept: %s\n",strerror(errno)));
2548 #ifdef NO_FORK_DEBUG
2549 #ifndef NO_SIGNAL_TEST
2550 signal(SIGPIPE, SIGNAL_CAST sig_pipe);
2551 signal(SIGCLD, SIGNAL_CAST SIG_DFL);
2552 #endif /* NO_SIGNAL_TEST */
2554 #else /* NO_FORK_DEBUG */
2555 if (Client != -1 && fork()==0)
2557 /* Child code ... */
2559 #ifndef NO_SIGNAL_TEST
2560 signal(SIGPIPE, SIGNAL_CAST sig_pipe);
2561 signal(SIGCLD, SIGNAL_CAST SIG_DFL);
2562 #endif /* NO_SIGNAL_TEST */
2563 /* close the listening socket(s) */
2564 for(i = 0; i < num_interfaces; i++)
2565 close(fd_listenset[i]);
2567 /* close our standard file descriptors */
2571 set_socket_options(Client,"SO_KEEPALIVE");
2572 set_socket_options(Client,user_socket_options);
2574 /* Reset global variables in util.c so that
2575 client substitutions will be done correctly
2578 reset_globals_after_fork();
2581 close(Client); /* The parent doesn't need this socket */
2582 #endif /* NO_FORK_DEBUG */
2585 } /* end if is_daemon */
2588 /* Started from inetd. fd 0 is the socket. */
2589 /* We will abort gracefully when the client or remote system
2591 #ifndef NO_SIGNAL_TEST
2592 signal(SIGPIPE, SIGNAL_CAST sig_pipe);
2596 /* close our standard file descriptors */
2599 set_socket_options(Client,"SO_KEEPALIVE");
2600 set_socket_options(Client,user_socket_options);
2606 /****************************************************************************
2607 process an smb from the client - split out from the process() code so
2608 it can be used by the oplock break code.
2609 ****************************************************************************/
2611 static void process_smb(char *inbuf, char *outbuf)
2614 static int trans_num;
2615 int msg_type = CVAL(inbuf,0);
2616 int32 len = smb_len(inbuf);
2617 int nread = len + 4;
2619 if (trans_num == 0) {
2620 /* on the first packet, check the global hosts allow/ hosts
2621 deny parameters before doing any parsing of the packet
2622 passed to us by the client. This prevents attacks on our
2623 parsing code from hosts not in the hosts allow list */
2624 if (!check_access(-1)) {
2625 /* send a negative session response "not listining on calling
2627 static unsigned char buf[5] = {0x83, 0, 0, 1, 0x81};
2628 DEBUG(1,("%s Connection denied from %s\n",
2629 timestring(),client_addr()));
2630 send_smb(Client,(char *)buf);
2631 exit_server("connection denied");
2635 DEBUG(6,("got message type 0x%x of len 0x%x\n",msg_type,len));
2636 DEBUG(3,("%s Transaction %d of length %d\n",timestring(),trans_num,nread));
2639 if(trans_num == 1 && VT_Check(inbuf))
2648 else if(msg_type == 0x85)
2649 return; /* Keepalive packet. */
2651 nread = construct_reply(inbuf,outbuf,nread,max_send);
2655 if (CVAL(outbuf,0) == 0)
2658 if (nread != smb_len(outbuf) + 4)
2660 DEBUG(0,("ERROR: Invalid message response size! %d %d\n",
2661 nread, smb_len(outbuf)));
2664 send_smb(Client,outbuf);
2669 /****************************************************************************
2670 open the oplock IPC socket communication
2671 ****************************************************************************/
2672 static BOOL open_oplock_ipc()
2674 struct sockaddr_in sock_name;
2675 int len = sizeof(sock_name);
2677 DEBUG(3,("open_oplock_ipc: opening loopback UDP socket.\n"));
2679 /* Open a lookback UDP socket on a random port. */
2680 oplock_sock = open_socket_in(SOCK_DGRAM, 0, 0, htonl(INADDR_LOOPBACK));
2681 if (oplock_sock == -1)
2683 DEBUG(0,("open_oplock_ipc: Failed to get local UDP socket for \
2684 address %x. Error was %s\n", htonl(INADDR_LOOPBACK), strerror(errno)));
2689 /* Find out the transient UDP port we have been allocated. */
2690 if(getsockname(oplock_sock, (struct sockaddr *)&sock_name, &len)<0)
2692 DEBUG(0,("open_oplock_ipc: Failed to get local UDP port. Error was %s\n",
2699 oplock_port = ntohs(sock_name.sin_port);
2701 DEBUG(3,("open_oplock ipc: pid = %d, oplock_port = %u\n",
2702 getpid(), oplock_port));
2707 /****************************************************************************
2708 process an oplock break message.
2709 ****************************************************************************/
2710 static BOOL process_local_message(int sock, char *buffer, int buf_size)
2716 msg_len = IVAL(buffer,UDP_CMD_LEN_OFFSET);
2717 from_port = SVAL(buffer,UDP_CMD_PORT_OFFSET);
2719 msg_start = &buffer[UDP_CMD_HEADER_LEN];
2721 DEBUG(5,("process_local_message: Got a message of length %d from port (%d)\n",
2722 msg_len, from_port));
2724 /* Switch on message command - currently OPLOCK_BREAK_CMD is the
2725 only valid request. */
2727 switch(SVAL(msg_start,UDP_MESSAGE_CMD_OFFSET))
2729 case OPLOCK_BREAK_CMD:
2730 /* Ensure that the msg length is correct. */
2731 if(msg_len != OPLOCK_BREAK_MSG_LEN)
2733 DEBUG(0,("process_local_message: incorrect length for OPLOCK_BREAK_CMD (was %d, \
2734 should be %d).\n", msg_len, OPLOCK_BREAK_MSG_LEN));
2738 uint32 remotepid = IVAL(msg_start,OPLOCK_BREAK_PID_OFFSET);
2739 uint32 dev = IVAL(msg_start,OPLOCK_BREAK_DEV_OFFSET);
2740 uint32 inode = IVAL(msg_start, OPLOCK_BREAK_INODE_OFFSET);
2741 struct timeval tval;
2742 struct sockaddr_in toaddr;
2744 tval.tv_sec = IVAL(msg_start, OPLOCK_BREAK_SEC_OFFSET);
2745 tval.tv_usec = IVAL(msg_start, OPLOCK_BREAK_USEC_OFFSET);
2747 DEBUG(5,("process_local_message: oplock break request from \
2748 pid %d, port %d, dev = %x, inode = %x\n", remotepid, from_port, dev, inode));
2751 * If we have no record of any currently open oplocks,
2752 * it's not an error, as a close command may have
2753 * just been issued on the file that was oplocked.
2754 * Just return success in this case.
2757 if(global_oplocks_open != 0)
2759 if(oplock_break(dev, inode, &tval) == False)
2761 DEBUG(0,("process_local_message: oplock break failed - \
2762 not returning udp message.\n"));
2768 DEBUG(3,("process_local_message: oplock break requested with no outstanding \
2769 oplocks. Returning success.\n"));
2772 /* Send the message back after OR'ing in the 'REPLY' bit. */
2773 SSVAL(msg_start,UDP_MESSAGE_CMD_OFFSET,OPLOCK_BREAK_CMD | CMD_REPLY);
2775 bzero((char *)&toaddr,sizeof(toaddr));
2776 toaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
2777 toaddr.sin_port = htons(from_port);
2778 toaddr.sin_family = AF_INET;
2780 if(sendto( sock, msg_start, OPLOCK_BREAK_MSG_LEN, 0,
2781 (struct sockaddr *)&toaddr, sizeof(toaddr)) < 0)
2783 DEBUG(0,("process_local_message: sendto process %d failed. Errno was %s\n",
2784 remotepid, strerror(errno)));
2788 DEBUG(5,("process_local_message: oplock break reply sent to \
2789 pid %d, port %d, for file dev = %x, inode = %x\n", remotepid,
2790 from_port, dev, inode));
2795 * Keep this as a debug case - eventually we can remove it.
2798 DEBUG(0,("process_local_message: Received unsolicited break \
2799 reply - dumping info.\n"));
2801 if(msg_len != OPLOCK_BREAK_MSG_LEN)
2803 DEBUG(0,("process_local_message: ubr: incorrect length for reply \
2804 (was %d, should be %d).\n", msg_len, OPLOCK_BREAK_MSG_LEN));
2809 uint32 remotepid = IVAL(msg_start,OPLOCK_BREAK_PID_OFFSET);
2810 uint32 dev = IVAL(msg_start,OPLOCK_BREAK_DEV_OFFSET);
2811 uint32 inode = IVAL(msg_start, OPLOCK_BREAK_INODE_OFFSET);
2813 DEBUG(0,("process_local_message: unsolicited oplock break reply from \
2814 pid %d, port %d, dev = %x, inode = %x\n", remotepid, from_port, dev, inode));
2820 DEBUG(0,("process_local_message: unknown UDP message command code (%x) - ignoring.\n",
2821 (unsigned int)SVAL(msg_start,0)));
2827 /****************************************************************************
2828 Process an oplock break directly.
2829 ****************************************************************************/
2830 BOOL oplock_break(uint32 dev, uint32 inode, struct timeval *tval)
2834 char *outbuf = NULL;
2835 files_struct *fsp = NULL;
2838 BOOL shutdown_server = False;
2840 DEBUG(3,("%s oplock_break: called for dev = %x, inode = %x. Current \
2841 global_oplocks_open = %d\n", timestring(), dev, inode, global_oplocks_open));
2843 /* We need to search the file open table for the
2844 entry containing this dev and inode, and ensure
2845 we have an oplock on it. */
2846 for( fnum = 0; fnum < MAX_OPEN_FILES; fnum++)
2850 if((Files[fnum].fd_ptr->dev == dev) && (Files[fnum].fd_ptr->inode == inode) &&
2851 (Files[fnum].open_time.tv_sec == tval->tv_sec) &&
2852 (Files[fnum].open_time.tv_usec == tval->tv_usec)) {
2861 /* The file could have been closed in the meantime - return success. */
2862 DEBUG(0,("%s oplock_break: cannot find open file with dev = %x, inode = %x (fnum = %d) \
2863 allowing break to succeed.\n", timestring(), dev, inode, fnum));
2867 /* Ensure we have an oplock on the file */
2869 /* There is a potential race condition in that an oplock could
2870 have been broken due to another udp request, and yet there are
2871 still oplock break messages being sent in the udp message
2872 queue for this file. So return true if we don't have an oplock,
2873 as we may have just freed it.
2876 if(!fsp->granted_oplock)
2878 DEBUG(0,("%s oplock_break: file %s (fnum = %d, dev = %x, inode = %x) has no oplock. Allowing break to succeed regardless.\n", timestring(), fsp->name, fnum, dev, inode));
2882 /* mark the oplock break as sent - we don't want to send twice! */
2883 if (fsp->sent_oplock_break)
2885 DEBUG(0,("%s oplock_break: ERROR: oplock_break already sent for file %s (fnum = %d, dev = %x, inode = %x)\n", timestring(), fsp->name, fnum, dev, inode));
2887 /* We have to fail the open here as we cannot send another oplock break on this
2888 file whilst we are awaiting a response from the client - neither can we
2889 allow another open to succeed while we are waiting for the client. */
2893 /* Now comes the horrid part. We must send an oplock break to the client,
2894 and then process incoming messages until we get a close or oplock release.
2895 At this point we know we need a new inbuf/outbuf buffer pair.
2896 We cannot use these staticaly as we may recurse into here due to
2897 messages crossing on the wire.
2900 if((inbuf = (char *)malloc(BUFFER_SIZE + SAFETY_MARGIN))==NULL)
2902 DEBUG(0,("oplock_break: malloc fail for input buffer.\n"));
2906 if((outbuf = (char *)malloc(BUFFER_SIZE + SAFETY_MARGIN))==NULL)
2908 DEBUG(0,("oplock_break: malloc fail for output buffer.\n"));
2914 /* Prepare the SMBlockingX message. */
2915 bzero(outbuf,smb_size);
2916 set_message(outbuf,8,0,True);
2918 SCVAL(outbuf,smb_com,SMBlockingX);
2919 SSVAL(outbuf,smb_tid,fsp->cnum);
2920 SSVAL(outbuf,smb_pid,0xFFFF);
2921 SSVAL(outbuf,smb_uid,0);
2922 SSVAL(outbuf,smb_mid,0xFFFF);
2923 SCVAL(outbuf,smb_vwv0,0xFF);
2924 SSVAL(outbuf,smb_vwv2,fnum);
2925 SCVAL(outbuf,smb_vwv3,LOCKING_ANDX_OPLOCK_RELEASE);
2926 /* Change this when we have level II oplocks. */
2927 SCVAL(outbuf,smb_vwv3+1,OPLOCKLEVEL_NONE);
2929 send_smb(Client, outbuf);
2931 /* Remember we just sent an oplock break on this file. */
2932 fsp->sent_oplock_break = True;
2934 /* We need this in case a readraw crosses on the wire. */
2935 global_oplock_break = True;
2937 /* Process incoming messages. */
2939 /* JRA - If we don't get a break from the client in OPLOCK_BREAK_TIMEOUT
2940 seconds we should just die.... */
2942 start_time = time(NULL);
2944 while(OPEN_FNUM(fnum) && fsp->granted_oplock)
2946 if(receive_smb(Client,inbuf,OPLOCK_BREAK_TIMEOUT * 1000) == False)
2949 * Die if we got an error.
2952 if (smb_read_error == READ_EOF)
2953 DEBUG(0,("%s oplock_break: end of file from client\n", timestring()));
2955 if (smb_read_error == READ_ERROR)
2956 DEBUG(0,("%s oplock_break: receive_smb error (%s)\n",
2957 timestring(), strerror(errno)));
2959 if (smb_read_error == READ_TIMEOUT)
2960 DEBUG(0,("%s oplock_break: receive_smb timed out after %d seconds.\n",
2961 timestring(), OPLOCK_BREAK_TIMEOUT));
2963 DEBUG(0,("%s oplock_break failed for file %s (fnum = %d, dev = %x, \
2964 inode = %x).\n", timestring(), fsp->name, fnum, dev, inode));
2965 shutdown_server = True;
2970 * There are certain SMB requests that we shouldn't allow
2971 * to recurse. opens, renames and deletes are the obvious
2972 * ones. This is handled in the switch_message() function.
2973 * If global_oplock_break is set they will push the packet onto
2974 * the pending smb queue and return -1 (no reply).
2978 process_smb(inbuf, outbuf);
2981 * Die if we go over the time limit.
2984 if((time(NULL) - start_time) > OPLOCK_BREAK_TIMEOUT)
2986 DEBUG(0,("%s oplock_break: no break received from client within \
2987 %d seconds.\n", timestring(), OPLOCK_BREAK_TIMEOUT));
2988 DEBUG(0,("%s oplock_break failed for file %s (fnum = %d, dev = %x, \
2989 inode = %x).\n", timestring(), fsp->name, fnum, dev, inode));
2990 shutdown_server = True;
2995 /* Free the buffers we've been using to recurse. */
2999 /* We need this in case a readraw crossed on the wire. */
3000 if(global_oplock_break)
3001 global_oplock_break = False;
3004 * If the client did not respond we must die.
3009 DEBUG(0,("%s oplock_break: client failure in break - shutting down this smbd.\n",
3013 exit_server("oplock break failure");
3018 /* The lockingX reply will have removed the oplock flag
3019 from the sharemode. */
3021 fsp->granted_oplock = False;
3022 fsp->sent_oplock_break = False;
3023 global_oplocks_open--;
3026 /* Santity check - remove this later. JRA */
3027 if(global_oplocks_open < 0)
3029 DEBUG(0,("oplock_break: global_oplocks_open < 0 (%d). PANIC ERROR\n",
3030 global_oplocks_open));
3031 exit_server("oplock_break: global_oplocks_open < 0");
3034 DEBUG(3,("%s oplock_break: returning success for fnum = %d, dev = %x, inode = %x. Current \
3035 global_oplocks_open = %d\n", timestring(), fnum, dev, inode, global_oplocks_open));
3040 /****************************************************************************
3041 Send an oplock break message to another smbd process. If the oplock is held
3042 by the local smbd then call the oplock break function directly.
3043 ****************************************************************************/
3045 BOOL request_oplock_break(share_mode_entry *share_entry,
3046 uint32 dev, uint32 inode)
3048 char op_break_msg[OPLOCK_BREAK_MSG_LEN];
3049 struct sockaddr_in addr_out;
3054 if(pid == share_entry->pid)
3056 /* We are breaking our own oplock, make sure it's us. */
3057 if(share_entry->op_port != oplock_port)
3059 DEBUG(0,("request_oplock_break: corrupt share mode entry - pid = %d, port = %d \
3060 should be %d\n", pid, share_entry->op_port, oplock_port));
3064 DEBUG(5,("request_oplock_break: breaking our own oplock\n"));
3066 /* Call oplock break direct. */
3067 return oplock_break(dev, inode, &share_entry->time);
3070 /* We need to send a OPLOCK_BREAK_CMD message to the
3071 port in the share mode entry. */
3073 SSVAL(op_break_msg,UDP_MESSAGE_CMD_OFFSET,OPLOCK_BREAK_CMD);
3074 SIVAL(op_break_msg,OPLOCK_BREAK_PID_OFFSET,pid);
3075 SIVAL(op_break_msg,OPLOCK_BREAK_DEV_OFFSET,dev);
3076 SIVAL(op_break_msg,OPLOCK_BREAK_INODE_OFFSET,inode);
3077 SIVAL(op_break_msg,OPLOCK_BREAK_SEC_OFFSET,(uint32)share_entry->time.tv_sec);
3078 SIVAL(op_break_msg,OPLOCK_BREAK_USEC_OFFSET,(uint32)share_entry->time.tv_usec);
3080 /* set the address and port */
3081 bzero((char *)&addr_out,sizeof(addr_out));
3082 addr_out.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
3083 addr_out.sin_port = htons( share_entry->op_port );
3084 addr_out.sin_family = AF_INET;
3086 DEBUG(3,("%s request_oplock_break: sending a oplock break message to pid %d on port %d \
3087 for dev = %x, inode = %x\n", timestring(), share_entry->pid, share_entry->op_port, dev, inode));
3089 if(sendto(oplock_sock,op_break_msg,OPLOCK_BREAK_MSG_LEN,0,
3090 (struct sockaddr *)&addr_out,sizeof(addr_out)) < 0)
3092 DEBUG(0,("%s request_oplock_break: failed when sending a oplock break message \
3093 to pid %d on port %d for dev = %x, inode = %x. Error was %s\n",
3094 timestring(), share_entry->pid, share_entry->op_port, dev, inode,
3100 * Now we must await the oplock broken message coming back
3101 * from the target smbd process. Timeout if it fails to
3102 * return in (OPLOCK_BREAK_TIMEOUT + OPLOCK_BREAK_TIMEOUT_FUDGEFACTOR) seconds.
3103 * While we get messages that aren't ours, loop.
3106 start_time = time(NULL);
3107 time_left = OPLOCK_BREAK_TIMEOUT+OPLOCK_BREAK_TIMEOUT_FUDGEFACTOR;
3109 while(time_left >= 0)
3111 char op_break_reply[UDP_CMD_HEADER_LEN+OPLOCK_BREAK_MSG_LEN];
3112 int32 reply_msg_len;
3113 uint16 reply_from_port;
3114 char *reply_msg_start;
3116 if(receive_local_message(oplock_sock, op_break_reply, sizeof(op_break_reply),
3117 time_left ? time_left * 1000 : 1) == False)
3119 if(smb_read_error == READ_TIMEOUT)
3121 DEBUG(0,("%s request_oplock_break: no response received to oplock break request to \
3122 pid %d on port %d for dev = %x, inode = %x\n", timestring(), share_entry->pid,
3123 share_entry->op_port, dev, inode));
3125 * This is a hack to make handling of failing clients more robust.
3126 * If a oplock break response message is not received in the timeout
3127 * period we may assume that the smbd servicing that client holding
3128 * the oplock has died and the client changes were lost anyway, so
3129 * we should continue to try and open the file.
3134 DEBUG(0,("%s request_oplock_break: error in response received to oplock break request to \
3135 pid %d on port %d for dev = %x, inode = %x. Error was (%s).\n", timestring, share_entry->pid,
3136 share_entry->op_port, dev, inode, strerror(errno)));
3140 reply_msg_len = IVAL(op_break_reply,UDP_CMD_LEN_OFFSET);
3141 reply_from_port = SVAL(op_break_reply,UDP_CMD_PORT_OFFSET);
3143 reply_msg_start = &op_break_reply[UDP_CMD_HEADER_LEN];
3145 if(reply_msg_len != OPLOCK_BREAK_MSG_LEN)
3148 DEBUG(0,("%s request_oplock_break: invalid message length received. Ignoring\n",
3154 * Test to see if this is the reply we are awaiting.
3157 if((SVAL(reply_msg_start,UDP_MESSAGE_CMD_OFFSET) & CMD_REPLY) &&
3158 (reply_from_port == share_entry->op_port) &&
3159 (memcmp(&reply_msg_start[OPLOCK_BREAK_PID_OFFSET],
3160 &op_break_msg[OPLOCK_BREAK_PID_OFFSET],
3161 OPLOCK_BREAK_MSG_LEN - OPLOCK_BREAK_PID_OFFSET) == 0))
3164 * This is the reply we've been waiting for.
3171 * This is another message - probably a break request.
3172 * Process it to prevent potential deadlock.
3173 * Note that the code in switch_message() prevents
3174 * us from recursing into here as any SMB requests
3175 * we might process that would cause another oplock
3176 * break request to be made will be queued.
3180 process_local_message(oplock_sock, op_break_reply, sizeof(op_break_reply));
3183 time_left -= (time(NULL) - start_time);
3186 DEBUG(3,("%s request_oplock_break: broke oplock.\n", timestring()));
3191 /****************************************************************************
3192 Get the next SMB packet, doing the local message processing automatically.
3193 ****************************************************************************/
3195 BOOL receive_next_smb(int smbfd, int oplockfd, char *inbuf, int bufsize, int timeout)
3197 BOOL got_smb = False;
3202 ret = receive_message_or_smb(smbfd,oplockfd,inbuf,bufsize,
3207 /* Deal with oplock break requests from other smbd's. */
3208 process_local_message(oplock_sock, inbuf, bufsize);
3212 if(ret && (CVAL(inbuf,0) == 0x85))
3214 /* Keepalive packet. */
3219 while(ret && !got_smb);
3224 /****************************************************************************
3225 check if a snum is in use
3226 ****************************************************************************/
3227 BOOL snum_used(int snum)
3230 for (i=0;i<MAX_CONNECTIONS;i++)
3231 if (OPEN_CNUM(i) && (SNUM(i) == snum))
3236 /****************************************************************************
3237 reload the services file
3238 **************************************************************************/
3239 BOOL reload_services(BOOL test)
3246 pstrcpy(fname,lp_configfile());
3247 if (file_exist(fname,NULL) && !strcsequal(fname,servicesf))
3249 pstrcpy(servicesf,fname);
3256 if (test && !lp_file_list_changed())
3259 lp_killunused(snum_used);
3261 ret = lp_load(servicesf,False);
3263 /* perhaps the config filename is now set */
3265 reload_services(True);
3274 set_socket_options(Client,"SO_KEEPALIVE");
3275 set_socket_options(Client,user_socket_options);
3279 reset_mangled_stack( lp_mangledstack() );
3281 /* this forces service parameters to be flushed */
3282 become_service(-1,True);
3289 /****************************************************************************
3290 this prevents zombie child processes
3291 ****************************************************************************/
3292 static int sig_hup()
3294 BlockSignals(True,SIGHUP);
3295 DEBUG(0,("Got SIGHUP\n"));
3296 reload_services(False);
3297 #ifndef DONT_REINSTALL_SIG
3298 signal(SIGHUP,SIGNAL_CAST sig_hup);
3300 BlockSignals(False,SIGHUP);
3304 /****************************************************************************
3305 Setup the groups a user belongs to.
3306 ****************************************************************************/
3307 int setup_groups(char *user, int uid, int gid, int *p_ngroups,
3308 int **p_igroups, gid_t **p_groups,
3311 if (-1 == initgroups(user,gid))
3315 DEBUG(0,("Unable to initgroups!\n"));
3316 if (gid < 0 || gid > 16000 || uid < 0 || uid > 16000)
3317 DEBUG(0,("This is probably a problem with the account %s\n",user));
3326 ngroups = getgroups(0,&grp);
3329 igroups = (int *)malloc(sizeof(int)*ngroups);
3330 attrs = (int *)malloc(sizeof(int)*ngroups);
3331 for (i=0;i<ngroups;i++)
3333 attrs [i] = 0x7; /* XXXX don't know what NT user attributes are yet! */
3334 igroups[i] = 0x42424242;
3336 ngroups = getgroups(ngroups,(gid_t *)igroups);
3338 if (igroups[0] == 0x42424242)
3341 *p_ngroups = ngroups;
3344 /* The following bit of code is very strange. It is due to the
3345 fact that some OSes use int* and some use gid_t* for
3346 getgroups, and some (like SunOS) use both, one in prototypes,
3347 and one in man pages and the actual code. Thus we detect it
3348 dynamically using some very ugly code */
3351 /* does getgroups return ints or gid_t ?? */
3352 static BOOL groups_use_ints = True;
3354 if (groups_use_ints &&
3356 SVAL(igroups,2) == 0x4242)
3357 groups_use_ints = False;
3359 for (i=0;groups_use_ints && i<ngroups;i++)
3360 if (igroups[i] == 0x42424242)
3361 groups_use_ints = False;
3363 if (groups_use_ints)
3365 *p_igroups = igroups;
3366 *p_groups = (gid_t *)igroups;
3370 gid_t *groups = (gid_t *)igroups;
3371 igroups = (int *)malloc(sizeof(int)*ngroups);
3372 for (i=0;i<ngroups;i++)
3374 igroups[i] = groups[i];
3376 *p_igroups = igroups;
3377 *p_groups = (gid_t *)groups;
3380 DEBUG(3,("%s is in %d groups\n",user,ngroups));
3381 for (i=0;i<ngroups;i++)
3382 DEBUG(3,("%d ",igroups[i]));
3388 /****************************************************************************
3389 make a connection to a service
3390 ****************************************************************************/
3391 int make_connection(char *service,char *user,char *password, int pwlen, char *dev,uint16 vuid)
3395 struct passwd *pass = NULL;
3396 connection_struct *pcon;
3399 static BOOL first_connection = True;
3403 snum = find_service(service);
3406 if (strequal(service,"IPC$"))
3408 DEBUG(3,("%s refusing IPC connection\n",timestring()));
3412 DEBUG(0,("%s couldn't find service %s\n",timestring(),service));
3416 if (strequal(service,HOMES_NAME))
3418 if (*user && Get_Pwnam(user,True))
3419 return(make_connection(user,user,password,pwlen,dev,vuid));
3421 if (validated_username(vuid))
3423 strcpy(user,validated_username(vuid));
3424 return(make_connection(user,user,password,pwlen,dev,vuid));
3428 if (!lp_snum_ok(snum) || !check_access(snum)) {
3432 /* you can only connect to the IPC$ service as an ipc device */
3433 if (strequal(service,"IPC$"))
3436 if (*dev == '?' || !*dev)
3438 if (lp_print_ok(snum))
3439 strcpy(dev,"LPT1:");
3444 /* if the request is as a printer and you can't print then refuse */
3446 if (!lp_print_ok(snum) && (strncmp(dev,"LPT",3) == 0)) {
3447 DEBUG(1,("Attempt to connect to non-printer as a printer\n"));
3451 /* lowercase the user name */
3454 /* add it as a possible user name */
3455 add_session_user(service);
3457 /* shall we let them in? */
3458 if (!authorise_login(snum,user,password,pwlen,&guest,&force,vuid))
3460 DEBUG(2,("%s invalid username/password for %s\n",timestring(),service));
3464 cnum = find_free_connection(str_checksum(service) + str_checksum(user));
3467 DEBUG(0,("%s couldn't find free connection\n",timestring()));
3471 pcon = &Connections[cnum];
3472 bzero((char *)pcon,sizeof(*pcon));
3474 /* find out some info about the user */
3475 pass = Get_Pwnam(user,True);
3479 DEBUG(0,("%s couldn't find account %s\n",timestring(),user));
3483 pcon->read_only = lp_readonly(snum);
3487 StrnCpy(list,lp_readlist(snum),sizeof(pstring)-1);
3488 string_sub(list,"%S",service);
3490 if (user_in_list(user,list))
3491 pcon->read_only = True;
3493 StrnCpy(list,lp_writelist(snum),sizeof(pstring)-1);
3494 string_sub(list,"%S",service);
3496 if (user_in_list(user,list))
3497 pcon->read_only = False;
3500 /* admin user check */
3502 /* JRA - original code denied admin user if the share was
3503 marked read_only. Changed as I don't think this is needed,
3504 but old code left in case there is a problem here.
3506 if (user_in_list(user,lp_admin_users(snum))
3508 && !pcon->read_only)
3513 pcon->admin_user = True;
3514 DEBUG(0,("%s logged in as admin user (root privileges)\n",user));
3517 pcon->admin_user = False;
3519 pcon->force_user = force;
3521 pcon->uid = pass->pw_uid;
3522 pcon->gid = pass->pw_gid;
3523 pcon->num_files_open = 0;
3524 pcon->lastused = time(NULL);
3525 pcon->service = snum;
3527 pcon->printer = (strncmp(dev,"LPT",3) == 0);
3528 pcon->ipc = (strncmp(dev,"IPC",3) == 0);
3529 pcon->dirptr = NULL;
3530 pcon->veto_list = NULL;
3531 pcon->hide_list = NULL;
3532 pcon->veto_oplock_list = NULL;
3533 string_set(&pcon->dirpath,"");
3534 string_set(&pcon->user,user);
3537 if (*lp_force_group(snum))
3542 StrnCpy(gname,lp_force_group(snum),sizeof(pstring)-1);
3543 /* default service may be a group name */
3544 string_sub(gname,"%S",service);
3545 gptr = (struct group *)getgrnam(gname);
3549 pcon->gid = gptr->gr_gid;
3550 DEBUG(3,("Forced group %s\n",gname));
3553 DEBUG(1,("Couldn't find group %s\n",gname));
3557 if (*lp_force_user(snum))
3559 struct passwd *pass2;
3561 fstrcpy(fuser,lp_force_user(snum));
3562 pass2 = (struct passwd *)Get_Pwnam(fuser,True);
3565 pcon->uid = pass2->pw_uid;
3566 string_set(&pcon->user,fuser);
3567 fstrcpy(user,fuser);
3568 pcon->force_user = True;
3569 DEBUG(3,("Forced user %s\n",fuser));
3572 DEBUG(1,("Couldn't find user %s\n",fuser));
3577 pstrcpy(s,lp_pathname(snum));
3578 standard_sub(cnum,s);
3579 string_set(&pcon->connectpath,s);
3580 DEBUG(3,("Connect path is %s\n",s));
3583 /* groups stuff added by ih */
3585 pcon->igroups = NULL;
3586 pcon->groups = NULL;
3591 /* Find all the groups this uid is in and store them. Used by become_user() */
3592 setup_groups(pcon->user,pcon->uid,pcon->gid,
3593 &pcon->ngroups,&pcon->igroups,&pcon->groups,&pcon->attrs);
3595 /* check number of connections */
3596 if (!claim_connection(cnum,
3597 lp_servicename(SNUM(cnum)),
3598 lp_max_connections(SNUM(cnum)),False))
3600 DEBUG(1,("too many connections - rejected\n"));
3604 if (lp_status(SNUM(cnum)))
3605 claim_connection(cnum,"STATUS.",MAXSTATUS,first_connection);
3607 first_connection = False;
3612 /* execute any "root preexec = " line */
3613 if (*lp_rootpreexec(SNUM(cnum)))
3616 pstrcpy(cmd,lp_rootpreexec(SNUM(cnum)));
3617 standard_sub(cnum,cmd);
3618 DEBUG(5,("cmd=%s\n",cmd));
3619 smbrun(cmd,NULL,False);
3622 if (!become_user(&Connections[cnum], cnum,pcon->vuid))
3624 DEBUG(0,("Can't become connected user!\n"));
3626 if (!IS_IPC(cnum)) {
3627 yield_connection(cnum,
3628 lp_servicename(SNUM(cnum)),
3629 lp_max_connections(SNUM(cnum)));
3630 if (lp_status(SNUM(cnum))) yield_connection(cnum,"STATUS.",MAXSTATUS);
3635 if (ChDir(pcon->connectpath) != 0)
3637 DEBUG(0,("Can't change directory to %s (%s)\n",
3638 pcon->connectpath,strerror(errno)));
3641 if (!IS_IPC(cnum)) {
3642 yield_connection(cnum,
3643 lp_servicename(SNUM(cnum)),
3644 lp_max_connections(SNUM(cnum)));
3645 if (lp_status(SNUM(cnum))) yield_connection(cnum,"STATUS.",MAXSTATUS);
3650 string_set(&pcon->origpath,pcon->connectpath);
3652 #if SOFTLINK_OPTIMISATION
3653 /* resolve any soft links early */
3656 pstrcpy(s,pcon->connectpath);
3658 string_set(&pcon->connectpath,s);
3659 ChDir(pcon->connectpath);
3663 num_connections_open++;
3664 add_session_user(user);
3666 /* execute any "preexec = " line */
3667 if (*lp_preexec(SNUM(cnum)))
3670 pstrcpy(cmd,lp_preexec(SNUM(cnum)));
3671 standard_sub(cnum,cmd);
3672 smbrun(cmd,NULL,False);
3675 /* we've finished with the sensitive stuff */
3678 /* Add veto/hide lists */
3679 if (!IS_IPC(cnum) && !IS_PRINT(cnum))
3681 set_namearray( &pcon->veto_list, lp_veto_files(SNUM(cnum)));
3682 set_namearray( &pcon->hide_list, lp_hide_files(SNUM(cnum)));
3683 set_namearray( &pcon->veto_oplock_list, lp_veto_oplocks(SNUM(cnum)));
3687 DEBUG(IS_IPC(cnum)?3:1,("%s %s (%s) connect to service %s as user %s (uid=%d,gid=%d) (pid %d)\n",
3691 lp_servicename(SNUM(cnum)),user,
3700 /****************************************************************************
3701 Attempt to break an oplock on a file (if oplocked).
3702 Returns True if the file was closed as a result of
3703 the oplock break, False otherwise.
3704 Used as a last ditch attempt to free a space in the
3705 file table when we have run out.
3706 ****************************************************************************/
3708 static BOOL attempt_close_oplocked_file(files_struct *fp)
3711 DEBUG(5,("attempt_close_oplocked_file: checking file %s.\n", fp->name));
3713 if (fp->open && fp->granted_oplock && !fp->sent_oplock_break) {
3715 /* Try and break the oplock. */
3716 file_fd_struct *fsp = fp->fd_ptr;
3717 if(oplock_break( fsp->dev, fsp->inode, &fp->open_time)) {
3718 if(!fp->open) /* Did the oplock break close the file ? */
3726 /****************************************************************************
3727 find first available file slot
3728 ****************************************************************************/
3729 int find_free_file(void )
3732 static int first_file;
3734 /* we want to give out file handles differently on each new
3735 connection because of a common bug in MS clients where they try to
3736 reuse a file descriptor from an earlier smb connection. This code
3737 increases the chance that the errant client will get an error rather
3738 than causing corruption */
3739 if (first_file == 0) {
3740 first_file = (getpid() ^ (int)time(NULL)) % MAX_OPEN_FILES;
3741 if (first_file == 0) first_file = 1;
3744 if (first_file >= MAX_OPEN_FILES)
3747 for (i=first_file;i<MAX_OPEN_FILES;i++)
3748 if (!Files[i].open && !Files[i].reserved) {
3749 memset(&Files[i], 0, sizeof(Files[i]));
3751 Files[i].reserved = True;
3755 /* returning a file handle of 0 is a bad idea - so we start at 1 */
3756 for (i=1;i<first_file;i++)
3757 if (!Files[i].open && !Files[i].reserved) {
3758 memset(&Files[i], 0, sizeof(Files[i]));
3760 Files[i].reserved = True;
3765 * Before we give up, go through the open files
3766 * and see if there are any files opened with a
3767 * batch oplock. If so break the oplock and then
3768 * re-use that entry (if it becomes closed).
3769 * This may help as NT/95 clients tend to keep
3770 * files batch oplocked for quite a long time
3771 * after they have finished with them.
3773 for (i=first_file;i<MAX_OPEN_FILES;i++) {
3774 if(attempt_close_oplocked_file( &Files[i])) {
3775 memset(&Files[i], 0, sizeof(Files[i]));
3777 Files[i].reserved = True;
3782 for (i=1;i<MAX_OPEN_FILES;i++) {
3783 if(attempt_close_oplocked_file( &Files[i])) {
3784 memset(&Files[i], 0, sizeof(Files[i]));
3786 Files[i].reserved = True;
3791 DEBUG(1,("ERROR! Out of file structures - perhaps increase MAX_OPEN_FILES?\n"));
3795 /****************************************************************************
3796 find first available connection slot, starting from a random position.
3797 The randomisation stops problems with the server dieing and clients
3798 thinking the server is still available.
3799 ****************************************************************************/
3800 static int find_free_connection(int hash )
3804 hash = (hash % (MAX_CONNECTIONS-2))+1;
3808 for (i=hash+1;i!=hash;)
3810 if (!Connections[i].open && Connections[i].used == used)
3812 DEBUG(3,("found free connection number %d\n",i));
3816 if (i == MAX_CONNECTIONS)
3826 DEBUG(1,("ERROR! Out of connection structures\n"));
3831 /****************************************************************************
3832 reply for the core protocol
3833 ****************************************************************************/
3834 int reply_corep(char *outbuf)
3836 int outsize = set_message(outbuf,1,0,True);
3838 Protocol = PROTOCOL_CORE;
3844 /****************************************************************************
3845 reply for the coreplus protocol
3846 ****************************************************************************/
3847 int reply_coreplus(char *outbuf)
3849 int raw = (lp_readraw()?1:0) | (lp_writeraw()?2:0);
3850 int outsize = set_message(outbuf,13,0,True);
3851 SSVAL(outbuf,smb_vwv5,raw); /* tell redirector we support
3852 readbraw and writebraw (possibly) */
3853 CVAL(outbuf,smb_flg) = 0x81; /* Reply, SMBlockread, SMBwritelock supported */
3854 SSVAL(outbuf,smb_vwv1,0x1); /* user level security, don't encrypt */
3856 Protocol = PROTOCOL_COREPLUS;
3862 /****************************************************************************
3863 reply for the lanman 1.0 protocol
3864 ****************************************************************************/
3865 int reply_lanman1(char *outbuf)
3867 int raw = (lp_readraw()?1:0) | (lp_writeraw()?2:0);
3869 BOOL doencrypt = SMBENCRYPT();
3870 time_t t = time(NULL);
3872 if (lp_security()>=SEC_USER) secword |= 1;
3873 if (doencrypt) secword |= 2;
3875 set_message(outbuf,13,doencrypt?8:0,True);
3876 SSVAL(outbuf,smb_vwv1,secword);
3877 /* Create a token value and add it to the outgoing packet. */
3879 generate_next_challenge(smb_buf(outbuf));
3881 Protocol = PROTOCOL_LANMAN1;
3883 CVAL(outbuf,smb_flg) = 0x81; /* Reply, SMBlockread, SMBwritelock supported */
3884 SSVAL(outbuf,smb_vwv2,max_recv);
3885 SSVAL(outbuf,smb_vwv3,lp_maxmux()); /* maxmux */
3886 SSVAL(outbuf,smb_vwv4,1);
3887 SSVAL(outbuf,smb_vwv5,raw); /* tell redirector we support
3888 readbraw writebraw (possibly) */
3889 SIVAL(outbuf,smb_vwv6,getpid());
3890 SSVAL(outbuf,smb_vwv10, TimeDiff(t)/60);
3892 put_dos_date(outbuf,smb_vwv8,t);
3894 return (smb_len(outbuf)+4);
git.samba.org / samba.git / blob