2 Unix SMB/CIFS implementation.
5 Copyright (C) Tim Potter 2001,2002
6 Copyright (C) Jelmer Vernooij 2002,2003
7 Copyright (C) James Peach 2006
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
25 /* Handle command line options:
36 extern bool AllowDebugChange;
37 extern bool override_logfile;
39 static void set_logfile(poptContext con, const char * arg)
45 /* Find out basename of current program */
46 pname = strrchr_m(poptGetInvocationName(con),'/');
49 pname = poptGetInvocationName(con);
53 if (asprintf(&logfile, "%s/log.%s", arg, pname) < 0) {
56 lp_set_logfile(logfile);
60 static bool PrintSambaVersionString;
62 static void popt_common_callback(poptContext con,
63 enum poptCallbackReason reason,
64 const struct poptOption *opt,
65 const char *arg, const void *data)
68 if (reason == POPT_CALLBACK_REASON_PRE) {
69 set_logfile(con, get_dyn_LOGFILEBASE());
73 if (reason == POPT_CALLBACK_REASON_POST) {
75 if (PrintSambaVersionString) {
76 printf( "Version %s\n", SAMBA_VERSION_STRING);
80 if (is_default_dyn_CONFIGFILE()) {
81 if(getenv("SMB_CONF_PATH")) {
82 set_dyn_CONFIGFILE(getenv("SMB_CONF_PATH"));
86 /* Further 'every Samba program must do this' hooks here. */
93 debug_parse_levels(arg);
94 AllowDebugChange = False;
99 PrintSambaVersionString = True;
104 lp_do_parameter(-1, "socket options", arg);
110 set_dyn_CONFIGFILE(arg);
116 set_global_myname(arg);
122 set_logfile(con, arg);
123 override_logfile = True;
124 set_dyn_LOGFILEBASE(arg);
130 set_global_scope(arg);
136 set_global_myworkgroup(arg);
142 struct poptOption popt_common_connection[] = {
143 { NULL, 0, POPT_ARG_CALLBACK, (void *)popt_common_callback },
144 { "socket-options", 'O', POPT_ARG_STRING, NULL, 'O', "socket options to use",
146 { "netbiosname", 'n', POPT_ARG_STRING, NULL, 'n', "Primary netbios name", "NETBIOSNAME" },
147 { "workgroup", 'W', POPT_ARG_STRING, NULL, 'W', "Set the workgroup name", "WORKGROUP" },
148 { "scope", 'i', POPT_ARG_STRING, NULL, 'i', "Use this Netbios scope", "SCOPE" },
153 struct poptOption popt_common_samba[] = {
154 { NULL, 0, POPT_ARG_CALLBACK|POPT_CBFLAG_PRE|POPT_CBFLAG_POST, (void *)popt_common_callback },
155 { "debuglevel", 'd', POPT_ARG_STRING, NULL, 'd', "Set debug level", "DEBUGLEVEL" },
156 { "configfile", 's', POPT_ARG_STRING, NULL, 's', "Use alternate configuration file", "CONFIGFILE" },
157 { "log-basename", 'l', POPT_ARG_STRING, NULL, 'l', "Base name for log files", "LOGFILEBASE" },
158 { "version", 'V', POPT_ARG_NONE, NULL, 'V', "Print version" },
162 struct poptOption popt_common_configfile[] = {
163 { NULL, 0, POPT_ARG_CALLBACK|POPT_CBFLAG_PRE|POPT_CBFLAG_POST, (void *)popt_common_callback },
164 { "configfile", 0, POPT_ARG_STRING, NULL, 's', "Use alternate configuration file", "CONFIGFILE" },
168 struct poptOption popt_common_version[] = {
169 { NULL, 0, POPT_ARG_CALLBACK, (void *)popt_common_callback },
170 { "version", 'V', POPT_ARG_NONE, NULL, 'V', "Print version" },
175 /* Handle command line options:
202 static void popt_dynconfig_callback(poptContext con,
203 enum poptCallbackReason reason,
204 const struct poptOption *opt,
205 const char *arg, const void *data)
211 set_dyn_SBINDIR(arg);
223 set_dyn_SWATDIR(arg);
227 case DYN_LMHOSTSFILE:
229 set_dyn_LMHOSTSFILE(arg);
241 set_dyn_SHLIBEXT(arg);
247 set_dyn_LOCKDIR(arg);
257 case DYN_SMB_PASSWD_FILE:
259 set_dyn_SMB_PASSWD_FILE(arg);
263 case DYN_PRIVATE_DIR:
265 set_dyn_PRIVATE_DIR(arg);
272 const struct poptOption popt_common_dynconfig[] = {
274 { NULL, '\0', POPT_ARG_CALLBACK, (void *)popt_dynconfig_callback },
276 { "sbindir", '\0' , POPT_ARG_STRING, NULL, DYN_SBINDIR,
277 "Path to sbin directory", "SBINDIR" },
278 { "bindir", '\0' , POPT_ARG_STRING, NULL, DYN_BINDIR,
279 "Path to bin directory", "BINDIR" },
280 { "swatdir", '\0' , POPT_ARG_STRING, NULL, DYN_SWATDIR,
281 "Path to SWAT installation directory", "SWATDIR" },
282 { "lmhostsfile", '\0' , POPT_ARG_STRING, NULL, DYN_LMHOSTSFILE,
283 "Path to lmhosts file", "LMHOSTSFILE" },
284 { "libdir", '\0' , POPT_ARG_STRING, NULL, DYN_LIBDIR,
285 "Path to shared library directory", "LIBDIR" },
286 { "shlibext", '\0' , POPT_ARG_STRING, NULL, DYN_SHLIBEXT,
287 "Shared library extension", "SHLIBEXT" },
288 { "lockdir", '\0' , POPT_ARG_STRING, NULL, DYN_LOCKDIR,
289 "Path to lock file directory", "LOCKDIR" },
290 { "piddir", '\0' , POPT_ARG_STRING, NULL, DYN_PIDDIR,
291 "Path to PID file directory", "PIDDIR" },
292 { "smb-passwd-file", '\0' , POPT_ARG_STRING, NULL, DYN_SMB_PASSWD_FILE,
293 "Path to smbpasswd file", "SMB_PASSWD_FILE" },
294 { "private-dir", '\0' , POPT_ARG_STRING, NULL, DYN_PRIVATE_DIR,
295 "Path to private data directory", "PRIVATE_DIR" },
300 /****************************************************************************
301 * get a password from a a file or file descriptor
303 * ****************************************************************************/
305 static void get_password_file(void)
309 bool close_it = False;
313 if ((p = getenv("PASSWD_FD")) != NULL) {
314 if (asprintf(&spec, "descriptor %s", p) < 0) {
317 sscanf(p, "%d", &fd);
319 } else if ((p = getenv("PASSWD_FILE")) != NULL) {
320 fd = sys_open(p, O_RDONLY, 0);
321 spec = SMB_STRDUP(p);
323 fprintf(stderr, "Error opening PASSWD_FILE %s: %s\n",
324 spec, strerror(errno));
330 for(p = pass, *p = '\0'; /* ensure that pass is null-terminated */
331 p && p - pass < sizeof(pass);) {
332 switch (read(fd, p, 1)) {
334 if (*p != '\n' && *p != '\0') {
335 *++p = '\0'; /* advance p, and null-terminate pass */
340 *p = '\0'; /* null-terminate it, just in case... */
341 p = NULL; /* then force the loop condition to become false */
344 fprintf(stderr, "Error reading password from file %s: %s\n",
345 spec, "empty password\n");
351 fprintf(stderr, "Error reading password from file %s: %s\n",
352 spec, strerror(errno));
359 set_cmdline_auth_info_password(pass);
365 static void get_credentials_file(const char *file)
370 char *ptr, *val, *param;
372 if ((auth=x_fopen(file, O_RDONLY, 0)) == NULL)
374 /* fail if we can't open the credentials file */
375 d_printf("ERROR: Unable to open credentials file!\n");
379 while (!x_feof(auth))
381 /* get a line from the file */
382 if (!x_fgets(buf, sizeof(buf), auth))
386 if ((len) && (buf[len-1]=='\n'))
394 /* break up the line into parameter & value.
395 * will need to eat a little whitespace possibly */
397 if (!(ptr = strchr_m (buf, '=')))
403 /* eat leading white space */
404 while ((*val!='\0') && ((*val==' ') || (*val=='\t')))
407 if (strwicmp("password", param) == 0) {
408 set_cmdline_auth_info_password(val);
409 } else if (strwicmp("username", param) == 0) {
410 set_cmdline_auth_info_username(val);
411 } else if (strwicmp("domain", param) == 0) {
412 set_global_myworkgroup(val);
414 memset(buf, 0, sizeof(buf));
419 /* Handle command line options:
421 * -A,--authentication-file
430 static void popt_common_credentials_callback(poptContext con,
431 enum poptCallbackReason reason,
432 const struct poptOption *opt,
433 const char *arg, const void *data)
437 if (reason == POPT_CALLBACK_REASON_PRE) {
438 set_cmdline_auth_info_username("GUEST");
440 if (getenv("LOGNAME")) {
441 set_cmdline_auth_info_username(getenv("LOGNAME"));
444 if (getenv("USER")) {
445 char *puser = SMB_STRDUP(getenv("USER"));
449 set_cmdline_auth_info_username(puser);
451 if ((p = strchr_m(puser,'%'))) {
455 set_cmdline_auth_info_password(p+1);
456 memset(strchr_m(getenv("USER"),'%')+1,'X',len);
461 if (getenv("PASSWD")) {
462 set_cmdline_auth_info_password(getenv("PASSWD"));
465 if (getenv("PASSWD_FD") || getenv("PASSWD_FILE")) {
476 char *puser = SMB_STRDUP(arg);
478 if ((lp=strchr_m(puser,'%'))) {
481 set_cmdline_auth_info_username(puser);
482 set_cmdline_auth_info_password(lp+1);
484 memset(strchr_m(arg,'%')+1,'X',len);
486 set_cmdline_auth_info_username(puser);
493 get_credentials_file(arg);
498 d_printf("No kerberos support compiled in\n");
501 set_cmdline_auth_info_use_krb5_ticket();
506 if (!set_cmdline_auth_info_signing_state(arg)) {
507 fprintf(stderr, "Unknown signing option %s\n", arg );
513 char *opt_password = NULL;
516 /* it is very useful to be able to make ads queries as the
517 machine account for testing purposes and for domain leave */
519 if (!secrets_init()) {
520 d_printf("ERROR: Unable to open secrets database\n");
524 opt_password = secrets_fetch_machine_password(lp_workgroup(), NULL, NULL);
527 d_printf("ERROR: Unable to fetch machine password\n");
530 if (asprintf(&pwd, "%s$", global_myname()) < 0) {
533 set_cmdline_auth_info_username(pwd);
534 set_cmdline_auth_info_password(opt_password);
536 SAFE_FREE(opt_password);
538 /* machine accounts only work with kerberos */
539 set_cmdline_auth_info_use_krb5_ticket();
543 set_cmdline_auth_info_password("");
546 set_cmdline_auth_info_smb_encrypt();
552 struct poptOption popt_common_credentials[] = {
553 { NULL, 0, POPT_ARG_CALLBACK|POPT_CBFLAG_PRE, (void *)popt_common_credentials_callback },
554 { "user", 'U', POPT_ARG_STRING, NULL, 'U', "Set the network username", "USERNAME" },
555 { "no-pass", 'N', POPT_ARG_NONE, NULL, 'N', "Don't ask for a password" },
556 { "kerberos", 'k', POPT_ARG_NONE, NULL, 'k', "Use kerberos (active directory) authentication" },
557 { "authentication-file", 'A', POPT_ARG_STRING, NULL, 'A', "Get the credentials from a file", "FILE" },
558 { "signing", 'S', POPT_ARG_STRING, NULL, 'S', "Set the client signing state", "on|off|required" },
559 {"machine-pass", 'P', POPT_ARG_NONE, NULL, 'P', "Use stored machine account password" },
560 {"encrypt", 'e', POPT_ARG_NONE, NULL, 'e', "Encrypt SMB transport (UNIX extended servers only)" },
git.samba.org / samba.git / blob