2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 bool in_client = False; /* Not in the client by default */
58 extern pstring user_socket_options;
59 extern enum protocol_types Protocol;
60 extern userdom_struct current_user_info;
63 #define GLOBAL_NAME "global"
67 #define PRINTERS_NAME "printers"
71 #define HOMES_NAME "homes"
74 /* the special value for the include parameter
75 * to be interpreted not as a file name but to
76 * trigger loading of the global smb.conf options
78 #ifndef INCLUDE_REGISTRY_NAME
79 #define INCLUDE_REGISTRY_NAME "registry"
82 static int regdb_last_seqnum = 0;
83 static bool include_registry_globals = False;
85 /* some helpful bits */
86 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
87 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
89 #define USERSHARE_VALID 1
90 #define USERSHARE_PENDING_DELETE 2
92 bool use_getwd_cache = True;
94 extern int extra_time_offset;
96 static bool defaults_saved = False;
98 typedef struct _param_opt_struct param_opt_struct;
99 struct _param_opt_struct {
100 param_opt_struct *prev, *next;
107 * This structure describes global (ie., server-wide) parameters.
113 char *display_charset;
114 char *szPrintcapname;
115 char *szAddPortCommand;
116 char *szEnumPortsCommand;
117 char *szAddPrinterCommand;
118 char *szDeletePrinterCommand;
119 char *szOs2DriverMap;
123 char *szDefaultService;
127 char *szServerString;
128 char *szAutoServices;
129 char *szPasswdProgram;
133 char *szSMBPasswdFile;
135 char *szPassdbBackend;
136 char **szPreloadModules;
137 char *szPasswordServer;
138 char *szSocketOptions;
140 char *szAfsUsernameMap;
141 int iAfsTokenLifetime;
142 char *szLogNtTokenCommand;
148 char **szWINSservers;
150 char *szRemoteAnnounce;
151 char *szRemoteBrowseSync;
152 char *szSocketAddress;
153 char *szNISHomeMapName;
154 char *szAnnounceVersion; /* This is initialised in init_globals */
157 char **szNetbiosAliases;
158 char *szNetbiosScope;
159 char *szNameResolveOrder;
161 char *szAddUserScript;
162 char *szRenameUserScript;
163 char *szDelUserScript;
164 char *szAddGroupScript;
165 char *szDelGroupScript;
166 char *szAddUserToGroupScript;
167 char *szDelUserFromGroupScript;
168 char *szSetPrimaryGroupScript;
169 char *szAddMachineScript;
170 char *szShutdownScript;
171 char *szAbortShutdownScript;
172 char *szUsernameMapScript;
173 char *szCheckPasswordScript;
180 bool bPassdbExpandExplicit;
181 int AlgorithmicRidBase;
182 char *szTemplateHomedir;
183 char *szTemplateShell;
184 char *szWinbindSeparator;
185 bool bWinbindEnumUsers;
186 bool bWinbindEnumGroups;
187 bool bWinbindUseDefaultDomain;
188 bool bWinbindTrustedDomainsOnly;
189 bool bWinbindNestedGroups;
190 int winbind_expand_groups;
191 bool bWinbindRefreshTickets;
192 bool bWinbindOfflineLogon;
193 bool bWinbindNormalizeNames;
194 bool bWinbindRpcOnly;
195 char **szIdmapDomains;
196 char **szIdmapBackend; /* deprecated */
197 char *szIdmapAllocBackend;
198 char *szAddShareCommand;
199 char *szChangeShareCommand;
200 char *szDeleteShareCommand;
202 char *szGuestaccount;
203 char *szManglingMethod;
204 char **szServicesList;
205 char *szUsersharePath;
206 char *szUsershareTemplateShare;
207 char **szUsersharePrefixAllowList;
208 char **szUsersharePrefixDenyList;
215 int open_files_db_hash_size;
223 bool paranoid_server_security;
226 int iMaxSmbdProcesses;
227 bool bDisableSpoolss;
230 bool enhanced_browsing;
236 int announce_as; /* This is initialised in init_globals */
237 int machine_password_timeout;
239 int oplock_break_wait_time;
240 int winbind_cache_time;
241 int winbind_max_idle_children;
242 char **szWinbindNssInfo;
244 char *szLdapMachineSuffix;
245 char *szLdapUserSuffix;
246 char *szLdapIdmapSuffix;
247 char *szLdapGroupSuffix;
253 char *szIPrintServer;
255 char **szClusterAddresses;
257 int ldap_passwd_sync;
258 int ldap_replication_sleep;
259 int ldap_timeout; /* This is initialised in init_globals */
262 bool bMsAddPrinterWizard;
267 int iPreferredMaster;
270 bool bEncryptPasswords;
275 bool bObeyPamRestrictions;
277 int PrintcapCacheTime;
278 bool bLargeReadwrite;
285 bool bBindInterfacesOnly;
286 bool bPamPasswordChange;
287 bool bUnixPasswdSync;
288 bool bPasswdChatDebug;
289 int iPasswdChatTimeout;
293 bool bNTStatusSupport;
295 int iMaxStatCacheSize;
297 bool bAllowTrustedDomains;
301 bool bClientLanManAuth;
302 bool bClientNTLMv2Auth;
303 bool bClientPlaintextAuth;
304 bool bClientUseSpnego;
305 bool bDebugPrefixTimestamp;
306 bool bDebugHiresTimestamp;
310 bool bEnableCoreFiles;
313 bool bHostnameLookups;
314 bool bUnixExtensions;
315 bool bDisableNetbios;
316 bool bUseKerberosKeytab;
317 bool bDeferSharingViolations;
318 bool bEnablePrivileges;
320 bool bUsershareOwnerOnly;
321 bool bUsershareAllowGuests;
322 bool bRegistryShares;
323 int restrict_anonymous;
324 int name_cache_timeout;
327 int client_ldap_sasl_wrapping;
328 int iUsershareMaxShares;
330 int iIdmapNegativeCacheTime;
335 param_opt_struct *param_opt;
338 static global Globals;
341 * This structure describes a single service.
347 time_t usershare_last_mod;
351 char **szInvalidUsers;
359 char *szRootPostExec;
361 char *szPrintcommand;
364 char *szLppausecommand;
365 char *szLpresumecommand;
366 char *szQueuepausecommand;
367 char *szQueueresumecommand;
369 char *szPrintjobUsername;
377 char *szVetoOplockFiles;
383 char **printer_admin;
388 char *szAioWriteBehind;
392 int iMaxReportedPrintJobs;
395 int iCreate_force_mode;
397 int iSecurity_force_mode;
400 int iDir_Security_mask;
401 int iDir_Security_force_mode;
405 int iOplockContentionLimit;
410 bool bRootpreexecClose;
413 bool bShortCasePreserve;
415 bool bHideSpecialFiles;
416 bool bHideUnReadable;
417 bool bHideUnWriteableFiles;
428 bool bStoreDosAttributes;
441 bool bStrictAllocate;
444 struct bitmap *copymap;
445 bool bDeleteReadonly;
447 bool bDeleteVetoFiles;
450 bool bDosFiletimeResolution;
451 bool bFakeDirCreateTimes;
457 bool bUseClientDriver;
458 bool bDefaultDevmode;
459 bool bForcePrintername;
461 bool bForceUnknownAclUser;
464 bool bMap_acl_inherit;
467 bool bAclCheckPermissions;
468 bool bAclMapFullControl;
469 bool bAclGroupControl;
471 bool bKernelChangeNotify;
472 int iallocation_roundup_size;
476 int iDirectoryNameCacheSize;
477 param_opt_struct *param_opt;
479 char dummy[3]; /* for alignment */
483 /* This is a default service used to prime a services structure */
484 static service sDefault = {
486 False, /* not autoloaded */
487 0, /* not a usershare */
488 (time_t)0, /* No last mod time */
489 NULL, /* szService */
491 NULL, /* szUsername */
492 NULL, /* szInvalidUsers */
493 NULL, /* szValidUsers */
494 NULL, /* szAdminUsers */
496 NULL, /* szInclude */
497 NULL, /* szPreExec */
498 NULL, /* szPostExec */
499 NULL, /* szRootPreExec */
500 NULL, /* szRootPostExec */
501 NULL, /* szCupsOptions */
502 NULL, /* szPrintcommand */
503 NULL, /* szLpqcommand */
504 NULL, /* szLprmcommand */
505 NULL, /* szLppausecommand */
506 NULL, /* szLpresumecommand */
507 NULL, /* szQueuepausecommand */
508 NULL, /* szQueueresumecommand */
509 NULL, /* szPrintername */
510 NULL, /* szPrintjobUsername */
511 NULL, /* szDontdescend */
512 NULL, /* szHostsallow */
513 NULL, /* szHostsdeny */
514 NULL, /* szMagicScript */
515 NULL, /* szMagicOutput */
516 NULL, /* szVetoFiles */
517 NULL, /* szHideFiles */
518 NULL, /* szVetoOplockFiles */
520 NULL, /* force user */
521 NULL, /* force group */
523 NULL, /* writelist */
524 NULL, /* printer admin */
527 NULL, /* vfs objects */
528 NULL, /* szMSDfsProxy */
529 NULL, /* szAioWriteBehind */
531 0, /* iMinPrintSpace */
532 1000, /* iMaxPrintJobs */
533 0, /* iMaxReportedPrintJobs */
534 0, /* iWriteCacheSize */
535 0744, /* iCreate_mask */
536 0000, /* iCreate_force_mode */
537 0777, /* iSecurity_mask */
538 0, /* iSecurity_force_mode */
539 0755, /* iDir_mask */
540 0000, /* iDir_force_mode */
541 0777, /* iDir_Security_mask */
542 0, /* iDir_Security_force_mode */
543 0, /* iMaxConnections */
544 CASE_LOWER, /* iDefaultCase */
545 DEFAULT_PRINTING, /* iPrinting */
546 2, /* iOplockContentionLimit */
548 1024, /* iBlock_size */
549 0, /* iDfreeCacheTime */
550 False, /* bPreexecClose */
551 False, /* bRootpreexecClose */
552 Auto, /* case sensitive */
553 True, /* case preserve */
554 True, /* short case preserve */
555 True, /* bHideDotFiles */
556 False, /* bHideSpecialFiles */
557 False, /* bHideUnReadable */
558 False, /* bHideUnWriteableFiles */
559 True, /* bBrowseable */
560 True, /* bAvailable */
561 True, /* bRead_only */
562 True, /* bNo_set_dir */
563 False, /* bGuest_only */
564 False, /* bGuest_ok */
565 False, /* bPrint_ok */
566 False, /* bMap_system */
567 False, /* bMap_hidden */
568 True, /* bMap_archive */
569 False, /* bStoreDosAttributes */
570 False, /* bDmapiSupport */
572 Auto, /* iStrictLocking */
573 True, /* bPosixLocking */
574 True, /* bShareModes */
576 True, /* bLevel2OpLocks */
577 False, /* bOnlyUser */
578 True, /* bMangledNames */
579 True, /* bWidelinks */
580 True, /* bSymlinks */
581 False, /* bSyncAlways */
582 False, /* bStrictAllocate */
583 False, /* bStrictSync */
584 '~', /* magic char */
586 False, /* bDeleteReadonly */
587 False, /* bFakeOplocks */
588 False, /* bDeleteVetoFiles */
589 False, /* bDosFilemode */
590 True, /* bDosFiletimes */
591 False, /* bDosFiletimeResolution */
592 False, /* bFakeDirCreateTimes */
593 True, /* bBlockingLocks */
594 False, /* bInheritPerms */
595 False, /* bInheritACLS */
596 False, /* bInheritOwner */
597 False, /* bMSDfsRoot */
598 False, /* bUseClientDriver */
599 True, /* bDefaultDevmode */
600 False, /* bForcePrintername */
601 True, /* bNTAclSupport */
602 False, /* bForceUnknownAclUser */
603 False, /* bUseSendfile */
604 False, /* bProfileAcls */
605 False, /* bMap_acl_inherit */
606 False, /* bAfs_Share */
607 False, /* bEASupport */
608 True, /* bAclCheckPermissions */
609 True, /* bAclMapFullControl */
610 False, /* bAclGroupControl */
611 True, /* bChangeNotify */
612 True, /* bKernelChangeNotify */
613 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
614 0, /* iAioReadSize */
615 0, /* iAioWriteSize */
616 MAP_READONLY_YES, /* iMap_readonly */
617 #ifdef BROKEN_DIRECTORY_HANDLING
618 0, /* iDirectoryNameCacheSize */
620 100, /* iDirectoryNameCacheSize */
622 NULL, /* Parametric options */
627 /* local variables */
628 static service **ServicePtrs = NULL;
629 static int iNumServices = 0;
630 static int iServiceIndex = 0;
631 static TDB_CONTEXT *ServiceHash;
632 static int *invalid_services = NULL;
633 static int num_invalid_services = 0;
634 static bool bInGlobalSection = True;
635 static bool bGlobalOnly = False;
636 static int server_role;
637 static int default_server_announce;
639 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
641 /* prototypes for the special type handlers */
642 static bool handle_include( int snum, const char *pszParmValue, char **ptr);
643 static bool handle_copy( int snum, const char *pszParmValue, char **ptr);
644 static bool handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
645 static bool handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
646 static bool handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
647 static bool handle_debug_list( int snum, const char *pszParmValue, char **ptr );
648 static bool handle_workgroup( int snum, const char *pszParmValue, char **ptr );
649 static bool handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
650 static bool handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
651 static bool handle_charset( int snum, const char *pszParmValue, char **ptr );
652 static bool handle_printing( int snum, const char *pszParmValue, char **ptr);
654 static void set_server_role(void);
655 static void set_default_server_announce_type(void);
656 static void set_allowed_client_auth(void);
658 static const struct enum_list enum_protocol[] = {
659 {PROTOCOL_NT1, "NT1"},
660 {PROTOCOL_LANMAN2, "LANMAN2"},
661 {PROTOCOL_LANMAN1, "LANMAN1"},
662 {PROTOCOL_CORE, "CORE"},
663 {PROTOCOL_COREPLUS, "COREPLUS"},
664 {PROTOCOL_COREPLUS, "CORE+"},
668 static const struct enum_list enum_security[] = {
669 {SEC_SHARE, "SHARE"},
671 {SEC_SERVER, "SERVER"},
672 {SEC_DOMAIN, "DOMAIN"},
679 static const struct enum_list enum_printing[] = {
680 {PRINT_SYSV, "sysv"},
682 {PRINT_HPUX, "hpux"},
686 {PRINT_LPRNG, "lprng"},
687 {PRINT_CUPS, "cups"},
688 {PRINT_IPRINT, "iprint"},
690 {PRINT_LPROS2, "os2"},
692 {PRINT_TEST, "test"},
694 #endif /* DEVELOPER */
698 static const struct enum_list enum_ldap_sasl_wrapping[] = {
700 {ADS_AUTH_SASL_SIGN, "sign"},
701 {ADS_AUTH_SASL_SEAL, "seal"},
705 static const struct enum_list enum_ldap_ssl[] = {
706 {LDAP_SSL_OFF, "no"},
707 {LDAP_SSL_OFF, "No"},
708 {LDAP_SSL_OFF, "off"},
709 {LDAP_SSL_OFF, "Off"},
710 {LDAP_SSL_START_TLS, "start tls"},
711 {LDAP_SSL_START_TLS, "Start_tls"},
715 static const struct enum_list enum_ldap_passwd_sync[] = {
716 {LDAP_PASSWD_SYNC_OFF, "no"},
717 {LDAP_PASSWD_SYNC_OFF, "No"},
718 {LDAP_PASSWD_SYNC_OFF, "off"},
719 {LDAP_PASSWD_SYNC_OFF, "Off"},
720 {LDAP_PASSWD_SYNC_ON, "Yes"},
721 {LDAP_PASSWD_SYNC_ON, "yes"},
722 {LDAP_PASSWD_SYNC_ON, "on"},
723 {LDAP_PASSWD_SYNC_ON, "On"},
724 {LDAP_PASSWD_SYNC_ONLY, "Only"},
725 {LDAP_PASSWD_SYNC_ONLY, "only"},
729 /* Types of machine we can announce as. */
730 #define ANNOUNCE_AS_NT_SERVER 1
731 #define ANNOUNCE_AS_WIN95 2
732 #define ANNOUNCE_AS_WFW 3
733 #define ANNOUNCE_AS_NT_WORKSTATION 4
735 static const struct enum_list enum_announce_as[] = {
736 {ANNOUNCE_AS_NT_SERVER, "NT"},
737 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
738 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
739 {ANNOUNCE_AS_WIN95, "win95"},
740 {ANNOUNCE_AS_WFW, "WfW"},
744 static const struct enum_list enum_map_readonly[] = {
745 {MAP_READONLY_NO, "no"},
746 {MAP_READONLY_NO, "false"},
747 {MAP_READONLY_NO, "0"},
748 {MAP_READONLY_YES, "yes"},
749 {MAP_READONLY_YES, "true"},
750 {MAP_READONLY_YES, "1"},
751 {MAP_READONLY_PERMISSIONS, "permissions"},
752 {MAP_READONLY_PERMISSIONS, "perms"},
756 static const struct enum_list enum_case[] = {
757 {CASE_LOWER, "lower"},
758 {CASE_UPPER, "upper"},
762 static const struct enum_list enum_bool_auto[] = {
773 /* Client-side offline caching policy types */
774 #define CSC_POLICY_MANUAL 0
775 #define CSC_POLICY_DOCUMENTS 1
776 #define CSC_POLICY_PROGRAMS 2
777 #define CSC_POLICY_DISABLE 3
779 static const struct enum_list enum_csc_policy[] = {
780 {CSC_POLICY_MANUAL, "manual"},
781 {CSC_POLICY_DOCUMENTS, "documents"},
782 {CSC_POLICY_PROGRAMS, "programs"},
783 {CSC_POLICY_DISABLE, "disable"},
787 /* SMB signing types. */
788 static const struct enum_list enum_smb_signing_vals[] = {
800 {Required, "required"},
801 {Required, "mandatory"},
803 {Required, "forced"},
804 {Required, "enforced"},
808 /* ACL compatibility options. */
809 static const struct enum_list enum_acl_compat_vals[] = {
810 { ACL_COMPAT_AUTO, "auto" },
811 { ACL_COMPAT_WINNT, "winnt" },
812 { ACL_COMPAT_WIN2K, "win2k" },
817 Do you want session setups at user level security with a invalid
818 password to be rejected or allowed in as guest? WinNT rejects them
819 but it can be a pain as it means "net view" needs to use a password
821 You have 3 choices in the setting of map_to_guest:
823 "Never" means session setups with an invalid password
824 are rejected. This is the default.
826 "Bad User" means session setups with an invalid password
827 are rejected, unless the username does not exist, in which case it
828 is treated as a guest login
830 "Bad Password" means session setups with an invalid password
831 are treated as a guest login
833 Note that map_to_guest only has an effect in user or server
837 static const struct enum_list enum_map_to_guest[] = {
838 {NEVER_MAP_TO_GUEST, "Never"},
839 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
840 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
841 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
845 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
847 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
848 * screen in SWAT. This is used to exclude parameters as well as to squash all
849 * parameters that have been duplicated by pseudonyms.
851 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
852 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
853 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
856 * NOTE2: Handling of duplicated (synonym) paramters:
857 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
858 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
859 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
860 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
863 static struct parm_struct parm_table[] = {
864 {N_("Base Options"), P_SEP, P_SEPARATOR},
866 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
867 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
868 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
869 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
870 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
871 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
872 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
874 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
876 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
877 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
878 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
879 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
880 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
881 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
883 {N_("Security Options"), P_SEP, P_SEPARATOR},
885 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
886 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
887 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
888 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
889 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
890 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
891 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
892 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
893 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
894 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
895 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
896 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
897 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
898 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
899 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
900 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
901 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
902 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
903 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
904 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
906 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
907 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
908 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
909 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
910 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
911 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
912 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
913 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
914 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
915 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
916 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
917 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
918 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
919 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
920 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
921 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
923 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
924 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
925 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
927 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
928 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
929 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
930 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
931 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
932 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
933 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
934 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
935 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
937 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
938 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
939 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
940 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
942 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
943 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
944 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
945 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
946 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
947 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
948 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
950 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
951 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
952 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
953 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
954 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
955 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
956 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
957 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
958 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
959 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
960 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
962 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
963 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
965 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
966 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
967 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
968 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
969 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
970 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
971 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
973 {N_("Logging Options"), P_SEP, P_SEPARATOR},
975 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
976 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
977 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
978 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
979 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
981 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
982 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
983 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
984 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
985 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
986 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
987 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
988 {"debug class", P_BOOL, P_GLOBAL, &Globals.bDebugClass, NULL, NULL, FLAG_ADVANCED},
989 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
991 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
993 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
994 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
995 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
996 {"aio write behind", P_STRING, P_LOCAL, &sDefault.szAioWriteBehind, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
997 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
998 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
999 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1000 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1001 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1002 {"min receivefile size", P_INTEGER, P_GLOBAL, &Globals.iminreceivefile, NULL, NULL, FLAG_ADVANCED},
1003 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
1004 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
1005 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
1006 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
1008 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1009 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1010 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1011 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1012 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1013 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1014 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1016 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1017 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1018 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1019 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1020 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1021 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1023 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1024 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1025 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1026 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1027 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1028 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1029 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1030 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1031 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1032 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1033 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1034 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1035 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1037 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1039 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1040 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1041 {"getwd cache", P_BOOL, P_GLOBAL, &use_getwd_cache, NULL, NULL, FLAG_ADVANCED},
1042 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1043 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1044 {"directory name cache size", P_INTEGER, P_LOCAL, &sDefault.iDirectoryNameCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1045 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1047 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1048 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1049 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1050 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1051 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1052 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1053 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1055 {"socket options", P_GSTRING, P_GLOBAL, user_socket_options, NULL, NULL, FLAG_ADVANCED},
1056 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1057 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1058 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1059 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1060 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1061 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1062 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1064 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1065 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1066 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1067 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1069 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1071 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1072 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1073 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1074 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1075 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1076 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1077 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1078 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1079 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1080 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1081 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1083 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1084 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1085 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1086 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1087 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1088 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1089 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1090 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1091 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1093 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1094 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1095 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1096 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1097 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1098 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1100 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1101 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1102 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1103 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1104 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1105 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1107 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1108 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1109 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1111 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1112 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1113 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1114 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1115 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1116 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1117 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1118 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1120 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1121 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1122 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1123 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1124 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1125 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1126 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1127 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1128 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1129 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1130 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1131 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1132 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1133 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1136 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1138 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1140 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1142 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1143 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1144 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1145 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1146 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1147 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1148 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1149 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1150 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1151 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1152 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1153 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1155 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1156 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1157 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1158 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1159 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1161 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1163 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1164 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1165 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1166 {"preferred master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1167 {"prefered master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1168 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1169 {"domain master", P_ENUM, P_GLOBAL, &Globals.iDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1170 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1171 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1172 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1173 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1175 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1177 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1178 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1180 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1181 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1182 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1184 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1186 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1187 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1188 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1189 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1190 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1191 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1193 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1194 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1195 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1196 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1197 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1198 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1199 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1201 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1203 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1204 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1206 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1207 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1208 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1209 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1210 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1211 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1212 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1213 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1214 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1215 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1217 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1218 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1219 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1220 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1222 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1223 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1225 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1226 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1227 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1228 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1229 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1230 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1232 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1233 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1234 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1237 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1238 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1239 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1240 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1241 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1242 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1243 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1244 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1245 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1246 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1247 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1248 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1249 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1250 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1251 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1252 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1253 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1255 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1256 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1257 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1258 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1260 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1261 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1262 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1263 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1264 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1265 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1266 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1267 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1268 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1269 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1270 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1271 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1272 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1273 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1274 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1275 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1276 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1277 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1278 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1279 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1280 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1281 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1282 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1283 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1284 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1285 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1287 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1288 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1290 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1292 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1293 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1296 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1297 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1298 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1300 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1302 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1303 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1304 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1305 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1306 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1307 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1308 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1309 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1310 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1311 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1312 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1313 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1314 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1317 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1318 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1319 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1320 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1321 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1322 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1323 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1324 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1325 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1326 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1328 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1331 /***************************************************************************
1332 Initialise the sDefault parameter structure for the printer values.
1333 ***************************************************************************/
1335 static void init_printer_values(service *pService)
1337 /* choose defaults depending on the type of printing */
1338 switch (pService->iPrinting) {
1343 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1344 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1345 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1350 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1351 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1352 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1353 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1354 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1355 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1356 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1362 /* set the lpq command to contain the destination printer
1363 name only. This is used by cups_queue_get() */
1364 string_set(&pService->szLpqcommand, "%p");
1365 string_set(&pService->szLprmcommand, "");
1366 string_set(&pService->szPrintcommand, "");
1367 string_set(&pService->szLppausecommand, "");
1368 string_set(&pService->szLpresumecommand, "");
1369 string_set(&pService->szQueuepausecommand, "");
1370 string_set(&pService->szQueueresumecommand, "");
1372 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1373 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1374 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1375 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1376 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1377 string_set(&pService->szQueuepausecommand, "disable '%p'");
1378 string_set(&pService->szQueueresumecommand, "enable '%p'");
1379 #endif /* HAVE_CUPS */
1384 string_set(&pService->szLpqcommand, "lpstat -o%p");
1385 string_set(&pService->szLprmcommand, "cancel %p-%j");
1386 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1387 string_set(&pService->szQueuepausecommand, "disable %p");
1388 string_set(&pService->szQueueresumecommand, "enable %p");
1390 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1391 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1396 string_set(&pService->szLpqcommand, "lpq -P%p");
1397 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1398 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1404 string_set(&pService->szPrintcommand, "vlp print %p %s");
1405 string_set(&pService->szLpqcommand, "vlp lpq %p");
1406 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1407 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1408 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1409 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1410 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1412 #endif /* DEVELOPER */
1417 /***************************************************************************
1418 Initialise the global parameter structure.
1419 ***************************************************************************/
1421 static void init_globals(bool first_time_only)
1423 static bool done_init = False;
1426 /* If requested to initialize only once and we've already done it... */
1427 if (first_time_only && done_init) {
1428 /* ... then we have nothing more to do */
1435 /* The logfile can be set before this is invoked. Free it if so. */
1436 if (Globals.szLogFile != NULL) {
1437 string_free(&Globals.szLogFile);
1438 Globals.szLogFile = NULL;
1441 memset((void *)&Globals, '\0', sizeof(Globals));
1443 for (i = 0; parm_table[i].label; i++)
1444 if ((parm_table[i].type == P_STRING ||
1445 parm_table[i].type == P_USTRING) &&
1447 string_set((char **)parm_table[i].ptr, "");
1449 string_set(&sDefault.fstype, FSTYPE_STRING);
1450 string_set(&sDefault.szPrintjobUsername, "%U");
1452 init_printer_values(&sDefault);
1458 DEBUG(3, ("Initialising global parameters\n"));
1460 string_set(&Globals.szSMBPasswdFile, dyn_SMB_PASSWD_FILE);
1461 string_set(&Globals.szPrivateDir, dyn_PRIVATE_DIR);
1463 /* use the new 'hash2' method by default, with a prefix of 1 */
1464 string_set(&Globals.szManglingMethod, "hash2");
1465 Globals.mangle_prefix = 1;
1467 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1469 /* using UTF8 by default allows us to support all chars */
1470 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1472 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1473 /* If the system supports nl_langinfo(), try to grab the value
1474 from the user's locale */
1475 string_set(&Globals.display_charset, "LOCALE");
1477 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1480 /* Use codepage 850 as a default for the dos character set */
1481 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1484 * Allow the default PASSWD_CHAT to be overridden in local.h.
1486 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1488 set_global_myname(myhostname());
1489 string_set(&Globals.szNetbiosName,global_myname());
1491 set_global_myworkgroup(WORKGROUP);
1492 string_set(&Globals.szWorkgroup, lp_workgroup());
1494 string_set(&Globals.szPasswdProgram, "");
1495 string_set(&Globals.szPidDir, dyn_PIDDIR);
1496 string_set(&Globals.szLockDir, dyn_LOCKDIR);
1497 string_set(&Globals.szSocketAddress, "0.0.0.0");
1498 pstrcpy(s, "Samba ");
1499 pstrcat(s, SAMBA_VERSION_STRING);
1500 string_set(&Globals.szServerString, s);
1501 slprintf(s, sizeof(s) - 1, "%d.%d", DEFAULT_MAJOR_VERSION,
1502 DEFAULT_MINOR_VERSION);
1503 string_set(&Globals.szAnnounceVersion, s);
1505 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1508 pstrcpy(user_socket_options, DEFAULT_SOCKET_OPTIONS);
1510 string_set(&Globals.szLogonDrive, "");
1511 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1512 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1513 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1515 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1516 string_set(&Globals.szPasswordServer, "*");
1518 Globals.AlgorithmicRidBase = BASE_RID;
1520 Globals.bLoadPrinters = True;
1521 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1523 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1524 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1525 Globals.max_xmit = 0x4104;
1526 Globals.max_mux = 50; /* This is *needed* for profile support. */
1527 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1528 Globals.bDisableSpoolss = False;
1529 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1530 Globals.pwordlevel = 0;
1531 Globals.unamelevel = 0;
1532 Globals.deadtime = 0;
1533 Globals.bLargeReadwrite = True;
1534 Globals.max_log_size = 5000;
1535 Globals.max_open_files = MAX_OPEN_FILES;
1536 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1537 Globals.maxprotocol = PROTOCOL_NT1;
1538 Globals.minprotocol = PROTOCOL_CORE;
1539 Globals.security = SEC_USER;
1540 Globals.paranoid_server_security = True;
1541 Globals.bEncryptPasswords = True;
1542 Globals.bUpdateEncrypt = False;
1543 Globals.clientSchannel = Auto;
1544 Globals.serverSchannel = Auto;
1545 Globals.bReadRaw = True;
1546 Globals.bWriteRaw = True;
1547 Globals.bNullPasswords = False;
1548 Globals.bObeyPamRestrictions = False;
1550 Globals.bSyslogOnly = False;
1551 Globals.bTimestampLogs = True;
1552 string_set(&Globals.szLogLevel, "0");
1553 Globals.bDebugPrefixTimestamp = False;
1554 Globals.bDebugHiresTimestamp = False;
1555 Globals.bDebugPid = False;
1556 Globals.bDebugUid = False;
1557 Globals.bDebugClass = False;
1558 Globals.bEnableCoreFiles = True;
1559 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1560 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1561 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1562 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1563 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1564 Globals.lm_interval = 60;
1565 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1566 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1567 Globals.bNISHomeMap = False;
1568 #ifdef WITH_NISPLUS_HOME
1569 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1571 string_set(&Globals.szNISHomeMapName, "auto.home");
1574 Globals.bTimeServer = False;
1575 Globals.bBindInterfacesOnly = False;
1576 Globals.bUnixPasswdSync = False;
1577 Globals.bPamPasswordChange = False;
1578 Globals.bPasswdChatDebug = False;
1579 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1580 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1581 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1582 Globals.bStatCache = True; /* use stat cache by default */
1583 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1584 Globals.restrict_anonymous = 0;
1585 Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
1586 Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
1587 Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
1588 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
1589 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1590 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1592 Globals.map_to_guest = 0; /* By Default, "Never" */
1593 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1594 Globals.enhanced_browsing = true;
1595 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1596 #ifdef MMAP_BLACKLIST
1597 Globals.bUseMmap = False;
1599 Globals.bUseMmap = True;
1601 Globals.bUnixExtensions = True;
1602 Globals.bResetOnZeroVC = False;
1604 /* hostname lookups can be very expensive and are broken on
1605 a large number of sites (tridge) */
1606 Globals.bHostnameLookups = False;
1608 string_set(&Globals.szPassdbBackend, "smbpasswd");
1609 string_set(&Globals.szLdapSuffix, "");
1610 string_set(&Globals.szLdapMachineSuffix, "");
1611 string_set(&Globals.szLdapUserSuffix, "");
1612 string_set(&Globals.szLdapGroupSuffix, "");
1613 string_set(&Globals.szLdapIdmapSuffix, "");
1615 string_set(&Globals.szLdapAdminDn, "");
1616 Globals.ldap_ssl = LDAP_SSL_ON;
1617 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1618 Globals.ldap_delete_dn = False;
1619 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1620 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1621 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1623 /* This is what we tell the afs client. in reality we set the token
1624 * to never expire, though, when this runs out the afs client will
1625 * forget the token. Set to 0 to get NEVERDATE.*/
1626 Globals.iAfsTokenLifetime = 604800;
1628 /* these parameters are set to defaults that are more appropriate
1629 for the increasing samba install base:
1631 as a member of the workgroup, that will possibly become a
1632 _local_ master browser (lm = True). this is opposed to a forced
1633 local master browser startup (pm = True).
1635 doesn't provide WINS server service by default (wsupp = False),
1636 and doesn't provide domain master browser services by default, either.
1640 Globals.bMsAddPrinterWizard = True;
1641 Globals.os_level = 20;
1642 Globals.bLocalMaster = True;
1643 Globals.iDomainMaster = Auto; /* depending on bDomainLogons */
1644 Globals.bDomainLogons = False;
1645 Globals.bBrowseList = True;
1646 Globals.bWINSsupport = False;
1647 Globals.bWINSproxy = False;
1649 Globals.bDNSproxy = True;
1651 /* this just means to use them if they exist */
1652 Globals.bKernelOplocks = True;
1654 Globals.bAllowTrustedDomains = True;
1656 string_set(&Globals.szTemplateShell, "/bin/false");
1657 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1658 string_set(&Globals.szWinbindSeparator, "\\");
1660 string_set(&Globals.szCupsServer, "");
1661 string_set(&Globals.szIPrintServer, "");
1663 string_set(&Globals.ctdbdSocket, "");
1664 Globals.szClusterAddresses = NULL;
1665 Globals.clustering = False;
1667 Globals.winbind_cache_time = 300; /* 5 minutes */
1668 Globals.bWinbindEnumUsers = False;
1669 Globals.bWinbindEnumGroups = False;
1670 Globals.bWinbindUseDefaultDomain = False;
1671 Globals.bWinbindTrustedDomainsOnly = False;
1672 Globals.bWinbindNestedGroups = True;
1673 Globals.winbind_expand_groups = 1;
1674 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1675 Globals.bWinbindRefreshTickets = False;
1676 Globals.bWinbindOfflineLogon = False;
1678 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1679 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1681 Globals.bPassdbExpandExplicit = False;
1683 Globals.name_cache_timeout = 660; /* In seconds */
1685 Globals.bUseSpnego = True;
1686 Globals.bClientUseSpnego = True;
1688 Globals.client_signing = Auto;
1689 Globals.server_signing = False;
1691 Globals.bDeferSharingViolations = True;
1692 string_set(&Globals.smb_ports, SMB_PORTS);
1694 Globals.bEnablePrivileges = True;
1695 Globals.bHostMSDfs = True;
1696 Globals.bASUSupport = False;
1698 /* User defined shares. */
1699 pstrcpy(s, dyn_STATEDIR());
1700 pstrcat(s, "/usershares");
1701 string_set(&Globals.szUsersharePath, s);
1702 string_set(&Globals.szUsershareTemplateShare, "");
1703 Globals.iUsershareMaxShares = 0;
1704 /* By default disallow sharing of directories not owned by the sharer. */
1705 Globals.bUsershareOwnerOnly = True;
1706 /* By default disallow guest access to usershares. */
1707 Globals.bUsershareAllowGuests = False;
1709 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1711 /* By default no shares out of the registry */
1712 Globals.bRegistryShares = False;
1714 Globals.iminreceivefile = 0;
1717 /*******************************************************************
1718 Convenience routine to grab string parameters into temporary memory
1719 and run standard_sub_basic on them. The buffers can be written to by
1720 callers without affecting the source string.
1721 ********************************************************************/
1723 static char *lp_string(const char *s)
1727 /* The follow debug is useful for tracking down memory problems
1728 especially if you have an inner loop that is calling a lp_*()
1729 function that returns a string. Perhaps this debug should be
1730 present all the time? */
1733 DEBUG(10, ("lp_string(%s)\n", s));
1736 tmpstr = alloc_sub_basic(get_current_username(),
1737 current_user_info.domain, s);
1738 if (trim_char(tmpstr, '\"', '\"')) {
1739 if (strchr(tmpstr,'\"') != NULL) {
1741 tmpstr = alloc_sub_basic(get_current_username(),
1742 current_user_info.domain, s);
1745 ret = talloc_strdup(talloc_tos(), tmpstr);
1752 In this section all the functions that are used to access the
1753 parameters from the rest of the program are defined
1756 #define FN_GLOBAL_STRING(fn_name,ptr) \
1757 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1758 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1759 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1760 #define FN_GLOBAL_LIST(fn_name,ptr) \
1761 const char **fn_name(void) {return(*(const char ***)(ptr));}
1762 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1763 bool fn_name(void) {return(*(bool *)(ptr));}
1764 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1765 char fn_name(void) {return(*(char *)(ptr));}
1766 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1767 int fn_name(void) {return(*(int *)(ptr));}
1769 #define FN_LOCAL_STRING(fn_name,val) \
1770 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1771 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1772 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1773 #define FN_LOCAL_LIST(fn_name,val) \
1774 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1775 #define FN_LOCAL_BOOL(fn_name,val) \
1776 bool fn_name(int i) {return(bool)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1777 #define FN_LOCAL_INTEGER(fn_name,val) \
1778 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1780 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1781 bool fn_name(const struct share_params *p) {return(bool)(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1782 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1783 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1784 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1785 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1786 #define FN_LOCAL_CHAR(fn_name,val) \
1787 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1789 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1790 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1791 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1792 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1793 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1794 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1795 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1796 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1797 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1798 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1799 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1800 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1801 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1802 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1803 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1804 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1805 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1806 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1807 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1808 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1809 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1810 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1811 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1812 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1813 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1814 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1815 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1816 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1817 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1818 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1819 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1820 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1821 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1822 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1823 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1824 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1825 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1826 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1827 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1828 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1829 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1830 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1831 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1832 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1833 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1834 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1835 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1836 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1837 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1838 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1839 * lp_passdb_backend() should be replace by the this macro again after
1842 const char *lp_passdb_backend(void)
1844 char *delim, *quote;
1846 delim = strchr( Globals.szPassdbBackend, ' ');
1847 /* no space at all */
1848 if (delim == NULL) {
1852 quote = strchr(Globals.szPassdbBackend, '"');
1853 /* no quote char or non in the first part */
1854 if (quote == NULL || quote > delim) {
1859 quote = strchr(quote+1, '"');
1860 if (quote == NULL) {
1861 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1863 } else if (*(quote+1) == '\0') {
1864 /* space, fitting quote char, and one backend only */
1867 /* terminate string after the fitting quote char */
1872 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1873 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1874 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1875 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1878 return Globals.szPassdbBackend;
1880 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1881 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1882 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1883 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1884 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1886 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1887 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1888 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1889 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1890 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1891 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1893 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1895 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1896 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1897 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1899 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1901 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1902 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1903 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1904 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1905 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1906 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1907 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1908 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1909 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1910 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1911 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1912 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1913 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1914 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1915 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1917 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1918 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1919 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1920 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1921 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1922 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1923 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1925 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1926 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1927 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1928 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1929 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1930 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1931 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1932 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1933 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1934 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1935 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1936 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1937 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1938 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1940 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1942 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1943 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1944 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1945 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1946 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1947 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1948 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1949 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1950 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1951 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1952 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1953 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1954 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1955 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1956 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1957 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1958 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1959 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1960 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1961 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1962 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1963 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1964 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1965 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1966 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1967 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1968 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1969 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1970 FN_GLOBAL_BOOL(lp_debug_class, &Globals.bDebugClass)
1971 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1972 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1973 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1974 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1975 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1976 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1977 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1978 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1979 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1980 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1981 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1982 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
1983 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
1984 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
1985 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
1986 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
1987 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
1988 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
1989 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
1990 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
1991 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
1992 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
1993 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
1994 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
1995 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
1996 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
1997 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
1998 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
1999 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
2000 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
2001 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
2002 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2003 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2004 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2005 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2006 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2007 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2008 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2009 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2010 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2011 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2012 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2013 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2014 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2015 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2016 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2017 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2018 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2019 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2020 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2021 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2022 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2023 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2024 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2025 FN_GLOBAL_BOOL(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2026 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2027 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2028 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2029 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2030 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2031 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2032 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2033 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2034 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2036 FN_LOCAL_STRING(lp_preexec, szPreExec)
2037 FN_LOCAL_STRING(lp_postexec, szPostExec)
2038 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2039 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2040 FN_LOCAL_STRING(lp_servicename, szService)
2041 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2042 FN_LOCAL_STRING(lp_pathname, szPath)
2043 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2044 FN_LOCAL_STRING(lp_username, szUsername)
2045 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2046 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2047 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2048 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2049 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2050 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2051 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2052 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2053 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2054 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2055 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2056 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2057 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2058 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2059 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2060 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2061 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2062 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2063 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2064 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2065 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2066 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2067 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2068 FN_LOCAL_STRING(lp_comment, comment)
2069 FN_LOCAL_STRING(lp_force_user, force_user)
2070 FN_LOCAL_STRING(lp_force_group, force_group)
2071 FN_LOCAL_LIST(lp_readlist, readlist)
2072 FN_LOCAL_LIST(lp_writelist, writelist)
2073 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2074 FN_LOCAL_STRING(lp_fstype, fstype)
2075 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2076 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2077 static FN_LOCAL_STRING(lp_volume, volume)
2078 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2079 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2080 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2081 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2082 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
2083 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2084 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2085 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2086 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2087 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2088 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2089 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2090 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2091 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2092 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2093 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2094 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2095 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2096 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2097 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2098 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2099 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2100 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2101 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2102 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2103 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2104 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2105 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2106 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2107 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2108 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2109 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2110 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2111 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2112 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2113 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2114 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2115 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2116 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2117 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2118 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2119 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2120 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2121 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2122 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2123 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2124 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2125 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2126 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2127 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2128 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2129 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2130 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2131 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2132 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2133 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2134 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2135 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2136 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2137 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2138 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2139 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2140 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2141 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2142 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2143 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2144 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2145 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2146 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2147 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2148 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2149 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2150 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2151 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2152 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2153 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2154 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2155 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2156 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2157 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2158 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2159 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2160 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2161 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2162 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2163 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2164 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
2165 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2166 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2167 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2168 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2169 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2170 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2171 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2172 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2174 /* local prototypes */
2176 static int map_parameter(const char *pszParmName);
2177 static int map_parameter_canonical(const char *pszParmName, bool *inverse);
2178 static bool set_boolean(bool *pb, const char *pszParmValue);
2179 static const char *get_boolean(bool bool_value);
2180 static int getservicebyname(const char *pszServiceName,
2181 service * pserviceDest);
2182 static void copy_service(service * pserviceDest,
2183 service * pserviceSource,
2184 struct bitmap *pcopymapDest);
2185 static bool do_parameter(const char *pszParmName, const char *pszParmValue);
2186 static bool do_section(const char *pszSectionName);
2187 static void init_copymap(service * pservice);
2188 static bool hash_a_service(const char *name, int number);
2189 static void free_service_byindex(int iService);
2190 static char * canonicalize_servicename(const char *name);
2191 static void show_parameter(int parmIndex);
2192 static bool is_synonym_of(int parm1, int parm2, bool *inverse);
2194 /* This is a helper function for parametrical options support. */
2195 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2196 /* Actual parametrical functions are quite simple */
2197 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2199 bool global_section = False;
2201 param_opt_struct *data;
2203 if (snum >= iNumServices) return NULL;
2206 data = Globals.param_opt;
2207 global_section = True;
2209 data = ServicePtrs[snum]->param_opt;
2212 asprintf(¶m_key, "%s:%s", type, option);
2214 DEBUG(0,("asprintf failed!\n"));
2219 if (strcmp(data->key, param_key) == 0) {
2220 string_free(¶m_key);
2226 if (!global_section) {
2227 /* Try to fetch the same option but from globals */
2228 /* but only if we are not already working with Globals */
2229 data = Globals.param_opt;
2231 if (strcmp(data->key, param_key) == 0) {
2232 string_free(¶m_key);
2239 string_free(¶m_key);
2245 #define MISSING_PARAMETER(name) \
2246 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2248 /*******************************************************************
2249 convenience routine to return int parameters.
2250 ********************************************************************/
2251 static int lp_int(const char *s)
2255 MISSING_PARAMETER(lp_int);
2259 return (int)strtol(s, NULL, 0);
2262 /*******************************************************************
2263 convenience routine to return unsigned long parameters.
2264 ********************************************************************/
2265 static unsigned long lp_ulong(const char *s)
2269 MISSING_PARAMETER(lp_ulong);
2273 return strtoul(s, NULL, 0);
2276 /*******************************************************************
2277 convenience routine to return boolean parameters.
2278 ********************************************************************/
2279 static bool lp_bool(const char *s)
2284 MISSING_PARAMETER(lp_bool);
2288 if (!set_boolean(&ret,s)) {
2289 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2296 /*******************************************************************
2297 convenience routine to return enum parameters.
2298 ********************************************************************/
2299 static int lp_enum(const char *s,const struct enum_list *_enum)
2303 if (!s || !*s || !_enum) {
2304 MISSING_PARAMETER(lp_enum);
2308 for (i=0; _enum[i].name; i++) {
2309 if (strequal(_enum[i].name,s))
2310 return _enum[i].value;
2313 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2317 #undef MISSING_PARAMETER
2319 /* DO NOT USE lp_parm_string ANYMORE!!!!
2320 * use lp_parm_const_string or lp_parm_talloc_string
2322 * lp_parm_string is only used to let old modules find this symbol
2324 #undef lp_parm_string
2325 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2326 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2328 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2331 /* Return parametric option from a given service. Type is a part of option before ':' */
2332 /* Parametric option has following syntax: 'Type: option = value' */
2333 /* the returned value is talloced on the talloc_tos() */
2334 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2336 param_opt_struct *data = get_parametrics(snum, type, option);
2338 if (data == NULL||data->value==NULL) {
2340 return lp_string(def);
2346 return lp_string(data->value);
2349 /* Return parametric option from a given service. Type is a part of option before ':' */
2350 /* Parametric option has following syntax: 'Type: option = value' */
2351 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2353 param_opt_struct *data = get_parametrics(snum, type, option);
2355 if (data == NULL||data->value==NULL)
2361 /* Return parametric option from a given service. Type is a part of option before ':' */
2362 /* Parametric option has following syntax: 'Type: option = value' */
2364 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2366 param_opt_struct *data = get_parametrics(snum, type, option);
2368 if (data == NULL||data->value==NULL)
2369 return (const char **)def;
2371 if (data->list==NULL) {
2372 data->list = str_list_make(data->value, NULL);
2375 return (const char **)data->list;
2378 /* Return parametric option from a given service. Type is a part of option before ':' */
2379 /* Parametric option has following syntax: 'Type: option = value' */
2381 int lp_parm_int(int snum, const char *type, const char *option, int def)
2383 param_opt_struct *data = get_parametrics(snum, type, option);
2385 if (data && data->value && *data->value)
2386 return lp_int(data->value);
2391 /* Return parametric option from a given service. Type is a part of option before ':' */
2392 /* Parametric option has following syntax: 'Type: option = value' */
2394 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2396 param_opt_struct *data = get_parametrics(snum, type, option);
2398 if (data && data->value && *data->value)
2399 return lp_ulong(data->value);
2404 /* Return parametric option from a given service. Type is a part of option before ':' */
2405 /* Parametric option has following syntax: 'Type: option = value' */
2407 bool lp_parm_bool(int snum, const char *type, const char *option, bool def)
2409 param_opt_struct *data = get_parametrics(snum, type, option);
2411 if (data && data->value && *data->value)
2412 return lp_bool(data->value);
2417 /* Return parametric option from a given service. Type is a part of option before ':' */
2418 /* Parametric option has following syntax: 'Type: option = value' */
2420 int lp_parm_enum(int snum, const char *type, const char *option,
2421 const struct enum_list *_enum, int def)
2423 param_opt_struct *data = get_parametrics(snum, type, option);
2425 if (data && data->value && *data->value && _enum)
2426 return lp_enum(data->value, _enum);
2432 /***************************************************************************
2433 Initialise a service to the defaults.
2434 ***************************************************************************/
2436 static void init_service(service * pservice)
2438 memset((char *)pservice, '\0', sizeof(service));
2439 copy_service(pservice, &sDefault, NULL);
2442 /***************************************************************************
2443 Free the dynamically allocated parts of a service struct.
2444 ***************************************************************************/
2446 static void free_service(service *pservice)
2449 param_opt_struct *data, *pdata;
2453 if (pservice->szService)
2454 DEBUG(5, ("free_service: Freeing service %s\n",
2455 pservice->szService));
2457 string_free(&pservice->szService);
2458 bitmap_free(pservice->copymap);
2460 for (i = 0; parm_table[i].label; i++) {
2461 if ((parm_table[i].type == P_STRING ||
2462 parm_table[i].type == P_USTRING) &&
2463 parm_table[i].p_class == P_LOCAL)
2464 string_free((char **)
2465 (((char *)pservice) +
2466 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2467 else if (parm_table[i].type == P_LIST &&
2468 parm_table[i].p_class == P_LOCAL)
2469 str_list_free((char ***)
2470 (((char *)pservice) +
2471 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2474 data = pservice->param_opt;
2476 DEBUG(5,("Freeing parametrics:\n"));
2478 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2479 string_free(&data->key);
2480 string_free(&data->value);
2481 str_list_free(&data->list);
2487 ZERO_STRUCTP(pservice);
2491 /***************************************************************************
2492 remove a service indexed in the ServicePtrs array from the ServiceHash
2493 and free the dynamically allocated parts
2494 ***************************************************************************/
2496 static void free_service_byindex(int idx)
2498 if ( !LP_SNUM_OK(idx) )
2501 ServicePtrs[idx]->valid = False;
2502 invalid_services[num_invalid_services++] = idx;
2504 /* we have to cleanup the hash record */
2506 if (ServicePtrs[idx]->szService) {
2507 char *canon_name = canonicalize_servicename( ServicePtrs[idx]->szService );
2509 tdb_delete_bystring(ServiceHash, canon_name );
2512 free_service(ServicePtrs[idx]);
2515 /***************************************************************************
2516 Add a new service to the services array initialising it with the given
2518 ***************************************************************************/
2520 static int add_a_service(const service *pservice, const char *name)
2524 int num_to_alloc = iNumServices + 1;
2525 param_opt_struct *data, *pdata;
2527 tservice = *pservice;
2529 /* it might already exist */
2531 i = getservicebyname(name, NULL);
2533 /* Clean all parametric options for service */
2534 /* They will be added during parsing again */
2535 data = ServicePtrs[i]->param_opt;
2537 string_free(&data->key);
2538 string_free(&data->value);
2539 str_list_free(&data->list);
2544 ServicePtrs[i]->param_opt = NULL;
2549 /* find an invalid one */
2551 if (num_invalid_services > 0) {
2552 i = invalid_services[--num_invalid_services];
2555 /* if not, then create one */
2556 if (i == iNumServices) {
2560 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2562 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2566 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2567 if (!ServicePtrs[iNumServices]) {
2568 DEBUG(0,("add_a_service: out of memory!\n"));
2573 /* enlarge invalid_services here for now... */
2574 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2576 if (tinvalid == NULL) {
2577 DEBUG(0,("add_a_service: failed to enlarge "
2578 "invalid_services!\n"));
2581 invalid_services = tinvalid;
2583 free_service_byindex(i);
2586 ServicePtrs[i]->valid = True;
2588 init_service(ServicePtrs[i]);
2589 copy_service(ServicePtrs[i], &tservice, NULL);
2591 string_set(&ServicePtrs[i]->szService, name);
2593 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2594 i, ServicePtrs[i]->szService));
2596 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2603 /***************************************************************************
2604 Convert a string to uppercase and remove whitespaces.
2605 ***************************************************************************/
2607 static char *canonicalize_servicename(const char *src)
2609 static fstring canon; /* is fstring large enough? */
2612 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2616 fstrcpy( canon, src );
2617 strlower_m( canon );
2622 /***************************************************************************
2623 Add a name/index pair for the services array to the hash table.
2624 ***************************************************************************/
2626 static bool hash_a_service(const char *name, int idx)
2630 if ( !ServiceHash ) {
2631 DEBUG(10,("hash_a_service: creating tdb servicehash\n"));
2632 ServiceHash = tdb_open("servicehash", 1031, TDB_INTERNAL,
2633 (O_RDWR|O_CREAT), 0600);
2634 if ( !ServiceHash ) {
2635 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2640 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2643 if ( !(canon_name = canonicalize_servicename( name )) )
2646 tdb_store_int32(ServiceHash, canon_name, idx);
2651 /***************************************************************************
2652 Add a new home service, with the specified home directory, defaults coming
2654 ***************************************************************************/
2656 bool lp_add_home(const char *pszHomename, int iDefaultService,
2657 const char *user, const char *pszHomedir)
2662 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2667 if (!(*(ServicePtrs[iDefaultService]->szPath))
2668 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2669 pstrcpy(newHomedir, pszHomedir);
2670 string_set(&ServicePtrs[i]->szPath, newHomedir);
2673 if (!(*(ServicePtrs[i]->comment))) {
2675 slprintf(comment, sizeof(comment) - 1,
2676 "Home directory of %s", user);
2677 string_set(&ServicePtrs[i]->comment, comment);
2680 /* set the browseable flag from the global default */
2682 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2684 ServicePtrs[i]->autoloaded = True;
2686 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2687 user, ServicePtrs[i]->szPath ));
2692 /***************************************************************************
2693 Add a new service, based on an old one.
2694 ***************************************************************************/
2696 int lp_add_service(const char *pszService, int iDefaultService)
2698 if (iDefaultService < 0) {
2699 return add_a_service(&sDefault, pszService);
2702 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2705 /***************************************************************************
2706 Add the IPC service.
2707 ***************************************************************************/
2709 static bool lp_add_ipc(const char *ipc_name, bool guest_ok)
2712 int i = add_a_service(&sDefault, ipc_name);
2717 slprintf(comment, sizeof(comment) - 1,
2718 "IPC Service (%s)", Globals.szServerString);
2720 string_set(&ServicePtrs[i]->szPath, tmpdir());
2721 string_set(&ServicePtrs[i]->szUsername, "");
2722 string_set(&ServicePtrs[i]->comment, comment);
2723 string_set(&ServicePtrs[i]->fstype, "IPC");
2724 ServicePtrs[i]->iMaxConnections = 0;
2725 ServicePtrs[i]->bAvailable = True;
2726 ServicePtrs[i]->bRead_only = True;
2727 ServicePtrs[i]->bGuest_only = False;
2728 ServicePtrs[i]->bGuest_ok = guest_ok;
2729 ServicePtrs[i]->bPrint_ok = False;
2730 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2732 DEBUG(3, ("adding IPC service\n"));
2737 /***************************************************************************
2738 Add a new printer service, with defaults coming from service iFrom.
2739 ***************************************************************************/
2741 bool lp_add_printer(const char *pszPrintername, int iDefaultService)
2743 const char *comment = "From Printcap";
2744 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2749 /* note that we do NOT default the availability flag to True - */
2750 /* we take it from the default service passed. This allows all */
2751 /* dynamic printers to be disabled by disabling the [printers] */
2752 /* entry (if/when the 'available' keyword is implemented!). */
2754 /* the printer name is set to the service name. */
2755 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2756 string_set(&ServicePtrs[i]->comment, comment);
2758 /* set the browseable flag from the gloabl default */
2759 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2761 /* Printers cannot be read_only. */
2762 ServicePtrs[i]->bRead_only = False;
2763 /* No share modes on printer services. */
2764 ServicePtrs[i]->bShareModes = False;
2765 /* No oplocks on printer services. */
2766 ServicePtrs[i]->bOpLocks = False;
2767 /* Printer services must be printable. */
2768 ServicePtrs[i]->bPrint_ok = True;
2770 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2776 /***************************************************************************
2777 Check whether the given parameter name is valid.
2778 Parametric options (names containing a colon) are considered valid.
2779 ***************************************************************************/
2781 bool lp_parameter_is_valid(const char *pszParmName)
2783 return ((map_parameter(pszParmName) != -1) ||
2784 (strchr(pszParmName, ':') != NULL));
2787 /***************************************************************************
2788 Check whether the given name is the name of a global parameter.
2789 Returns True for strings belonging to parameters of class
2790 P_GLOBAL, False for all other strings, also for parametric options
2791 and strings not belonging to any option.
2792 ***************************************************************************/
2794 bool lp_parameter_is_global(const char *pszParmName)
2796 int num = map_parameter(pszParmName);
2799 return (parm_table[num].p_class == P_GLOBAL);
2805 /**************************************************************************
2806 Check whether the given name is the canonical name of a parameter.
2807 Returns False if it is not a valid parameter Name.
2808 For parametric options, True is returned.
2809 **************************************************************************/
2811 bool lp_parameter_is_canonical(const char *parm_name)
2813 if (!lp_parameter_is_valid(parm_name)) {
2817 return (map_parameter(parm_name) ==
2818 map_parameter_canonical(parm_name, NULL));
2821 /**************************************************************************
2822 Determine the canonical name for a parameter.
2823 Indicate when it is an inverse (boolean) synonym instead of a
2825 **************************************************************************/
2827 bool lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2832 if (!lp_parameter_is_valid(parm_name)) {
2837 num = map_parameter_canonical(parm_name, inverse);
2839 /* parametric option */
2840 *canon_parm = parm_name;
2842 *canon_parm = parm_table[num].label;
2849 /**************************************************************************
2850 Determine the canonical name for a parameter.
2851 Turn the value given into the inverse boolean expression when
2852 the synonym is an invers boolean synonym.
2854 Return True if parm_name is a valid parameter name and
2855 in case it is an invers boolean synonym, if the val string could
2856 successfully be converted to the reverse bool.
2857 Return false in all other cases.
2858 **************************************************************************/
2860 bool lp_canonicalize_parameter_with_value(const char *parm_name,
2862 const char **canon_parm,
2863 const char **canon_val)
2868 if (!lp_parameter_is_valid(parm_name)) {
2874 num = map_parameter_canonical(parm_name, &inverse);
2876 /* parametric option */
2877 *canon_parm = parm_name;
2880 *canon_parm = parm_table[num].label;
2882 if (!lp_invert_boolean(val, canon_val)) {
2894 /***************************************************************************
2895 Map a parameter's string representation to something we can use.
2896 Returns False if the parameter string is not recognised, else TRUE.
2897 ***************************************************************************/
2899 static int map_parameter(const char *pszParmName)
2903 if (*pszParmName == '-')
2906 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2907 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2910 /* Warn only if it isn't parametric option */
2911 if (strchr(pszParmName, ':') == NULL)
2912 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2913 /* We do return 'fail' for parametric options as well because they are
2914 stored in different storage
2919 /***************************************************************************
2920 Map a parameter's string representation to the index of the canonical
2921 form of the parameter (it might be a synonym).
2922 Returns -1 if the parameter string is not recognised.
2923 ***************************************************************************/
2925 static int map_parameter_canonical(const char *pszParmName, bool *inverse)
2927 int parm_num, canon_num;
2928 bool loc_inverse = False;
2930 parm_num = map_parameter(pszParmName);
2931 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2932 /* invalid, parametric or no canidate for synonyms ... */
2936 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2937 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2938 parm_num = canon_num;
2944 if (inverse != NULL) {
2945 *inverse = loc_inverse;
2950 /***************************************************************************
2951 return true if parameter number parm1 is a synonym of parameter
2952 number parm2 (parm2 being the principal name).
2953 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
2955 ***************************************************************************/
2957 static bool is_synonym_of(int parm1, int parm2, bool *inverse)
2959 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
2960 (parm_table[parm1].flags & FLAG_HIDE) &&
2961 !(parm_table[parm2].flags & FLAG_HIDE))
2963 if (inverse != NULL) {
2964 if ((parm_table[parm1].type == P_BOOLREV) &&
2965 (parm_table[parm2].type == P_BOOL))
2977 /***************************************************************************
2978 Show one parameter's name, type, [values,] and flags.
2979 (helper functions for show_parameter_list)
2980 ***************************************************************************/
2982 static void show_parameter(int parmIndex)
2984 int enumIndex, flagIndex;
2989 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
2990 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING", "P_GSTRING",
2991 "P_UGSTRING", "P_ENUM", "P_SEP"};
2992 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
2993 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
2994 FLAG_HIDE, FLAG_DOS_STRING};
2995 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
2996 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
2997 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
2999 printf("%s=%s", parm_table[parmIndex].label,
3000 type[parm_table[parmIndex].type]);
3001 if (parm_table[parmIndex].type == P_ENUM) {
3004 parm_table[parmIndex].enum_list[enumIndex].name;
3008 enumIndex ? "|" : "",
3009 parm_table[parmIndex].enum_list[enumIndex].name);
3014 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3015 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3018 flag_names[flagIndex]);
3023 /* output synonyms */
3025 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3026 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3027 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3028 parm_table[parmIndex2].label);
3029 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3031 printf(" (synonyms: ");
3036 printf("%s%s", parm_table[parmIndex2].label,
3037 inverse ? "[i]" : "");
3047 /***************************************************************************
3048 Show all parameter's name, type, [values,] and flags.
3049 ***************************************************************************/
3051 void show_parameter_list(void)
3053 int classIndex, parmIndex;
3054 const char *section_names[] = { "local", "global", NULL};
3056 for (classIndex=0; section_names[classIndex]; classIndex++) {
3057 printf("[%s]\n", section_names[classIndex]);
3058 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3059 if (parm_table[parmIndex].p_class == classIndex) {
3060 show_parameter(parmIndex);
3066 /***************************************************************************
3067 Set a boolean variable from the text value stored in the passed string.
3068 Returns True in success, False if the passed string does not correctly
3069 represent a boolean.
3070 ***************************************************************************/
3072 static bool set_boolean(bool *pb, const char *pszParmValue)
3079 if (strwicmp(pszParmValue, "yes") == 0 ||
3080 strwicmp(pszParmValue, "true") == 0 ||
3081 strwicmp(pszParmValue, "1") == 0)
3083 else if (strwicmp(pszParmValue, "no") == 0 ||
3084 strwicmp(pszParmValue, "False") == 0 ||
3085 strwicmp(pszParmValue, "0") == 0)
3089 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3094 if ((pb != NULL) && (bRetval != False)) {
3102 /***************************************************************************
3103 Check if a given string correctly represents a boolean value.
3104 ***************************************************************************/
3106 bool lp_string_is_valid_boolean(const char *parm_value)
3108 return set_boolean(NULL, parm_value);
3111 /***************************************************************************
3112 Get the standard string representation of a boolean value ("yes" or "no")
3113 ***************************************************************************/
3115 static const char *get_boolean(bool bool_value)
3117 static const char *yes_str = "yes";
3118 static const char *no_str = "no";
3120 return (bool_value ? yes_str : no_str);
3123 /***************************************************************************
3124 Provide the string of the negated boolean value associated to the boolean
3125 given as a string. Returns False if the passed string does not correctly
3126 represent a boolean.
3127 ***************************************************************************/
3129 bool lp_invert_boolean(const char *str, const char **inverse_str)
3133 if (!set_boolean(&val, str)) {
3137 *inverse_str = get_boolean(!val);
3141 /***************************************************************************
3142 Provide the canonical string representation of a boolean value given
3143 as a string. Return True on success, False if the string given does
3144 not correctly represent a boolean.
3145 ***************************************************************************/
3147 bool lp_canonicalize_boolean(const char *str, const char**canon_str)
3151 if (!set_boolean(&val, str)) {
3155 *canon_str = get_boolean(val);
3159 /***************************************************************************
3160 Find a service by name. Otherwise works like get_service.
3161 ***************************************************************************/
3163 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3168 if (ServiceHash != NULL) {
3169 if ( !(canon_name = canonicalize_servicename( pszServiceName )) )
3172 iService = tdb_fetch_int32(ServiceHash, canon_name );
3174 if (LP_SNUM_OK(iService)) {
3175 if (pserviceDest != NULL) {
3176 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3186 /***************************************************************************
3187 Copy a service structure to another.
3188 If pcopymapDest is NULL then copy all fields
3189 ***************************************************************************/
3191 static void copy_service(service * pserviceDest, service * pserviceSource,
3192 struct bitmap *pcopymapDest)
3195 bool bcopyall = (pcopymapDest == NULL);
3196 param_opt_struct *data, *pdata, *paramo;
3199 for (i = 0; parm_table[i].label; i++)
3200 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3201 (bcopyall || bitmap_query(pcopymapDest,i))) {
3202 void *def_ptr = parm_table[i].ptr;
3204 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3207 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3210 switch (parm_table[i].type) {
3213 *(bool *)dest_ptr = *(bool *)src_ptr;
3219 *(int *)dest_ptr = *(int *)src_ptr;
3223 *(char *)dest_ptr = *(char *)src_ptr;
3227 string_set((char **)dest_ptr,
3232 string_set((char **)dest_ptr,
3234 strupper_m(*(char **)dest_ptr);
3237 str_list_free((char ***)dest_ptr);
3238 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3246 init_copymap(pserviceDest);
3247 if (pserviceSource->copymap)
3248 bitmap_copy(pserviceDest->copymap,
3249 pserviceSource->copymap);
3252 data = pserviceSource->param_opt;
3255 pdata = pserviceDest->param_opt;
3256 /* Traverse destination */
3258 /* If we already have same option, override it */
3259 if (strcmp(pdata->key, data->key) == 0) {
3260 string_free(&pdata->value);
3261 str_list_free(&data->list);
3262 pdata->value = SMB_STRDUP(data->value);
3266 pdata = pdata->next;
3269 paramo = SMB_XMALLOC_P(param_opt_struct);
3270 paramo->key = SMB_STRDUP(data->key);
3271 paramo->value = SMB_STRDUP(data->value);
3272 paramo->list = NULL;
3273 DLIST_ADD(pserviceDest->param_opt, paramo);
3279 /***************************************************************************
3280 Check a service for consistency. Return False if the service is in any way
3281 incomplete or faulty, else True.
3282 ***************************************************************************/
3284 bool service_ok(int iService)
3289 if (ServicePtrs[iService]->szService[0] == '\0') {
3290 DEBUG(0, ("The following message indicates an internal error:\n"));
3291 DEBUG(0, ("No service name in service entry.\n"));
3295 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3296 /* I can't see why you'd want a non-printable printer service... */
3297 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3298 if (!ServicePtrs[iService]->bPrint_ok) {
3299 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3300 ServicePtrs[iService]->szService));
3301 ServicePtrs[iService]->bPrint_ok = True;
3303 /* [printers] service must also be non-browsable. */
3304 if (ServicePtrs[iService]->bBrowseable)
3305 ServicePtrs[iService]->bBrowseable = False;
3308 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3309 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3310 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3312 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3313 ServicePtrs[iService]->szService));
3314 ServicePtrs[iService]->bAvailable = False;
3317 /* If a service is flagged unavailable, log the fact at level 1. */
3318 if (!ServicePtrs[iService]->bAvailable)
3319 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3320 ServicePtrs[iService]->szService));
3326 * lp_regdb_open - regdb helper function
3328 * this should be considered an interim solution that becomes
3329 * superfluous once the registry code has been rewritten
3330 * do allow use of the tdb portion of the registry alone.
3332 * in the meanwhile this provides a lean access
3333 * to the registry globals.
3336 static struct tdb_wrap *lp_regdb_open(void)
3338 struct tdb_wrap *reg_tdb = NULL;
3339 const char *vstring = "INFO/version";
3343 reg_tdb = tdb_wrap_open(NULL, state_path("registry.tdb"), 0,
3344 REG_TDB_FLAGS, O_RDWR, 0600);
3347 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3348 state_path("registry.tdb"), strerror(errno)));
3352 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3355 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3356 if (vers_id != REGVER_V1) {
3357 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3358 "INFO/version (got %d, expected %d)\n",
3359 state_path("registry.tdb"), vers_id, REGVER_V1));
3360 /* this is apparently not implemented in the tdb */
3368 * process_registry_globals
3370 * this is the interim version of process_registry globals
3372 * until we can do it as we would like using the api and only
3373 * using the tdb portion of the registry (see below),
3374 * this just provides the needed functionality of regdb_fetch_values
3375 * and regdb_unpack_values, circumventing any fancy stuff, to
3376 * give us access to the registry globals.
3378 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3381 struct tdb_wrap *reg_tdb = NULL;
3385 /* vars for the tdb unpack loop */
3392 uint32 num_values = 0;
3396 struct registry_value *value = NULL;
3398 include_registry_globals = True;
3402 reg_tdb = lp_regdb_open();
3404 DEBUG(1, ("Error opening the registry!\n"));
3408 /* reg_tdb is from now on used as talloc ctx.
3409 * freeing it closes the tdb (if refcount is 0) */
3411 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3412 KEY_SMBCONF, GLOBAL_NAME);
3413 normalize_dbkey(keystr);
3415 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3418 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3425 buflen = data.dsize;
3427 /* unpack number of values */
3428 len = tdb_unpack(buf, buflen, "d", &num_values);
3429 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3432 /* unpack the values */
3433 for (i=0; i < num_values; i++) {
3437 len += tdb_unpack(buf+len, buflen-len, "fdB",
3442 if (registry_smbconf_valname_forbidden(valname)) {
3443 DEBUG(10, ("process_registry_globals: Ignoring "
3444 "parameter '%s' in registry.\n", valname));
3447 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3449 if (size && data_p) {
3450 err = registry_pull_value(reg_tdb,
3457 if (!W_ERROR_IS_OK(err)) {
3462 valstr = talloc_asprintf(reg_tdb, "%d",
3464 pfunc(valname, valstr);
3467 pfunc(valname, value->v.sz.str);
3470 /* ignore other types */
3476 ret = pfunc("registry shares", "yes");
3477 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3480 TALLOC_FREE(reg_tdb);
3481 SAFE_FREE(data.dptr);
3487 * this is process_registry_globals as it _should_ be (roughly)
3488 * using the reg_api functions...
3491 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3494 TALLOC_CTX *ctx = NULL;
3495 char *regpath = NULL;
3496 WERROR werr = WERR_OK;
3497 struct registry_key *key = NULL;
3498 struct registry_value *value = NULL;
3499 char *valname = NULL;
3500 char *valstr = NULL;
3502 NT_USER_TOKEN *token;
3504 ctx = talloc_init("process_registry_globals");
3506 smb_panic("Failed to create talloc context!");
3509 include_registry_globals = True;
3511 if (!registry_init_regdb()) {
3512 DEBUG(1, ("Error initializing the registry.\n"));
3516 if (!(token = registry_create_admin_token(ctx))) {
3517 DEBUG(1, ("Error creating admin token\n"));
3521 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3522 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3523 if (!W_ERROR_IS_OK(werr)) {
3524 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3525 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3526 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3531 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3535 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3536 switch(value->type) {
3538 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3539 pfunc(valname, valstr);
3540 TALLOC_FREE(valstr);
3543 pfunc(valname, value->v.sz.str);
3546 /* ignore other types */
3550 TALLOC_FREE(valstr);
3553 ret = pfunc("registry shares", "yes");
3555 regdb_last_seqnum = regdb_get_seqnum();
3558 talloc_destroy(ctx);
3563 static struct file_lists {
3564 struct file_lists *next;
3568 } *file_lists = NULL;
3570 /*******************************************************************
3571 Keep a linked list of all config files so we know when one has changed
3572 it's date and needs to be reloaded.
3573 ********************************************************************/
3575 static void add_to_file_list(const char *fname, const char *subfname)
3577 struct file_lists *f = file_lists;
3580 if (f->name && !strcmp(f->name, fname))
3586 f = SMB_MALLOC_P(struct file_lists);
3589 f->next = file_lists;
3590 f->name = SMB_STRDUP(fname);
3595 f->subfname = SMB_STRDUP(subfname);
3601 f->modtime = file_modtime(subfname);
3603 time_t t = file_modtime(subfname);
3609 /*******************************************************************
3610 Check if a config file has changed date.
3611 ********************************************************************/
3613 bool lp_file_list_changed(void)
3615 struct file_lists *f = file_lists;
3616 struct tdb_wrap *reg_tdb = NULL;
3618 DEBUG(6, ("lp_file_list_changed()\n"));
3620 if (include_registry_globals) {
3621 reg_tdb = lp_regdb_open();
3622 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3624 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3625 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3626 TALLOC_FREE(reg_tdb);
3635 pstrcpy(n2, f->name);
3636 standard_sub_basic( get_current_username(),
3637 current_user_info.domain,
3640 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3641 f->name, n2, ctime(&f->modtime)));
3643 mod_time = file_modtime(n2);
3645 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3647 ("file %s modified: %s\n", n2,
3649 f->modtime = mod_time;
3650 SAFE_FREE(f->subfname);
3651 f->subfname = SMB_STRDUP(n2);
3659 /***************************************************************************
3660 Run standard_sub_basic on netbios name... needed because global_myname
3661 is not accessed through any lp_ macro.
3662 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3663 ***************************************************************************/
3665 static bool handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3668 pstring netbios_name;
3670 pstrcpy(netbios_name, pszParmValue);
3672 standard_sub_basic(get_current_username(), current_user_info.domain,
3673 netbios_name, sizeof(netbios_name));
3675 ret = set_global_myname(netbios_name);
3676 string_set(&Globals.szNetbiosName,global_myname());
3678 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3684 static bool handle_charset(int snum, const char *pszParmValue, char **ptr)
3686 if (strcmp(*ptr, pszParmValue) != 0) {
3687 string_set(ptr, pszParmValue);
3695 static bool handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3699 ret = set_global_myworkgroup(pszParmValue);
3700 string_set(&Globals.szWorkgroup,lp_workgroup());
3705 static bool handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3709 ret = set_global_scope(pszParmValue);
3710 string_set(&Globals.szNetbiosScope,global_scope());
3715 static bool handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3717 str_list_free(&Globals.szNetbiosAliases);
3718 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3719 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3722 /***************************************************************************
3723 Handle the include operation.
3724 ***************************************************************************/
3726 static bool handle_include(int snum, const char *pszParmValue, char **ptr)
3729 pstrcpy(fname, pszParmValue);
3731 if (strequal(fname, INCLUDE_REGISTRY_NAME)) {
3732 if (bInGlobalSection) {
3733 return process_registry_globals(do_parameter);
3736 DEBUG(1, ("\"include = registry\" only effective "
3737 "in %s section\n", GLOBAL_NAME));
3742 standard_sub_basic(get_current_username(), current_user_info.domain,
3743 fname,sizeof(fname));
3745 add_to_file_list(pszParmValue, fname);
3747 string_set(ptr, fname);
3749 if (file_exist(fname, NULL))
3750 return (pm_process(fname, do_section, do_parameter));
3752 DEBUG(2, ("Can't find include file %s\n", fname));
3757 /***************************************************************************
3758 Handle the interpretation of the copy parameter.
3759 ***************************************************************************/
3761 static bool handle_copy(int snum, const char *pszParmValue, char **ptr)
3765 service serviceTemp;
3767 string_set(ptr, pszParmValue);
3769 init_service(&serviceTemp);
3773 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3775 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3776 if (iTemp == iServiceIndex) {
3777 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3779 copy_service(ServicePtrs[iServiceIndex],
3781 ServicePtrs[iServiceIndex]->copymap);
3785 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3789 free_service(&serviceTemp);
3793 /***************************************************************************
3794 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3799 idmap uid = 1000-1999
3802 We only do simple parsing checks here. The strings are parsed into useful
3803 structures in the idmap daemon code.
3805 ***************************************************************************/
3807 /* Some lp_ routines to return idmap [ug]id information */
3809 static uid_t idmap_uid_low, idmap_uid_high;
3810 static gid_t idmap_gid_low, idmap_gid_high;
3812 bool lp_idmap_uid(uid_t *low, uid_t *high)
3814 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3818 *low = idmap_uid_low;
3821 *high = idmap_uid_high;
3826 bool lp_idmap_gid(gid_t *low, gid_t *high)
3828 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3832 *low = idmap_gid_low;
3835 *high = idmap_gid_high;
3840 /* Do some simple checks on "idmap [ug]id" parameter values */
3842 static bool handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3846 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3851 string_set(ptr, pszParmValue);
3853 idmap_uid_low = low;
3854 idmap_uid_high = high;
3859 static bool handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3863 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3868 string_set(ptr, pszParmValue);
3870 idmap_gid_low = low;
3871 idmap_gid_high = high;
3876 /***************************************************************************
3877 Handle the DEBUG level list.
3878 ***************************************************************************/
3880 static bool handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3882 pstring pszParmValue;
3884 pstrcpy(pszParmValue, pszParmValueIn);
3885 string_set(ptr, pszParmValueIn);
3886 return debug_parse_levels( pszParmValue );
3889 /***************************************************************************
3890 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3891 ***************************************************************************/
3893 static const char *append_ldap_suffix( const char *str )
3895 const char *suffix_string;
3898 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
3899 Globals.szLdapSuffix );
3900 if ( !suffix_string ) {
3901 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3905 return suffix_string;
3908 const char *lp_ldap_machine_suffix(void)
3910 if (Globals.szLdapMachineSuffix[0])
3911 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3913 return lp_string(Globals.szLdapSuffix);
3916 const char *lp_ldap_user_suffix(void)
3918 if (Globals.szLdapUserSuffix[0])
3919 return append_ldap_suffix(Globals.szLdapUserSuffix);
3921 return lp_string(Globals.szLdapSuffix);
3924 const char *lp_ldap_group_suffix(void)
3926 if (Globals.szLdapGroupSuffix[0])
3927 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3929 return lp_string(Globals.szLdapSuffix);
3932 const char *lp_ldap_idmap_suffix(void)
3934 if (Globals.szLdapIdmapSuffix[0])
3935 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3937 return lp_string(Globals.szLdapSuffix);
3940 /****************************************************************************
3941 set the value for a P_ENUM
3942 ***************************************************************************/
3944 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3949 for (i = 0; parm->enum_list[i].name; i++) {
3950 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3951 *ptr = parm->enum_list[i].value;
3957 /***************************************************************************
3958 ***************************************************************************/
3960 static bool handle_printing(int snum, const char *pszParmValue, char **ptr)
3962 static int parm_num = -1;
3965 if ( parm_num == -1 )
3966 parm_num = map_parameter( "printing" );
3968 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3973 s = ServicePtrs[snum];
3975 init_printer_values( s );
3981 /***************************************************************************
3982 Initialise a copymap.
3983 ***************************************************************************/
3985 static void init_copymap(service * pservice)
3988 if (pservice->copymap) {
3989 bitmap_free(pservice->copymap);
3991 pservice->copymap = bitmap_allocate(NUMPARAMETERS);
3992 if (!pservice->copymap)
3994 ("Couldn't allocate copymap!! (size %d)\n",
3995 (int)NUMPARAMETERS));
3997 for (i = 0; i < NUMPARAMETERS; i++)
3998 bitmap_set(pservice->copymap, i);
4001 /***************************************************************************
4002 Return the local pointer to a parameter given the service number and the
4003 pointer into the default structure.
4004 ***************************************************************************/
4006 void *lp_local_ptr(int snum, void *ptr)
4008 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
4011 /***************************************************************************
4012 Process a parameter for a particular service number. If snum < 0
4013 then assume we are in the globals.
4014 ***************************************************************************/
4016 bool lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
4018 int parmnum, i, slen;
4019 void *parm_ptr = NULL; /* where we are going to store the result */
4020 void *def_ptr = NULL;
4023 param_opt_struct *paramo, *data;
4026 parmnum = map_parameter(pszParmName);
4029 if ((sep=strchr(pszParmName, ':')) != NULL) {
4031 ZERO_STRUCT(param_key);
4032 pstr_sprintf(param_key, "%s:", pszParmName);
4033 slen = strlen(param_key);
4034 pstrcat(param_key, sep+1);
4035 trim_char(param_key+slen, ' ', ' ');
4037 data = (snum < 0) ? Globals.param_opt :
4038 ServicePtrs[snum]->param_opt;
4039 /* Traverse destination */
4041 /* If we already have same option, override it */
4042 if (strcmp(data->key, param_key) == 0) {
4043 string_free(&data->value);
4044 str_list_free(&data->list);
4045 data->value = SMB_STRDUP(pszParmValue);
4052 paramo = SMB_XMALLOC_P(param_opt_struct);
4053 paramo->key = SMB_STRDUP(param_key);
4054 paramo->value = SMB_STRDUP(pszParmValue);
4055 paramo->list = NULL;
4057 DLIST_ADD(Globals.param_opt, paramo);
4059 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
4066 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
4070 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
4071 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
4075 def_ptr = parm_table[parmnum].ptr;
4077 /* we might point at a service, the default service or a global */
4081 if (parm_table[parmnum].p_class == P_GLOBAL) {
4083 ("Global parameter %s found in service section!\n",
4088 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
4093 if (!ServicePtrs[snum]->copymap)
4094 init_copymap(ServicePtrs[snum]);
4096 /* this handles the aliases - set the copymap for other entries with
4097 the same data pointer */
4098 for (i = 0; parm_table[i].label; i++)
4099 if (parm_table[i].ptr == parm_table[parmnum].ptr)
4100 bitmap_clear(ServicePtrs[snum]->copymap, i);
4103 /* if it is a special case then go ahead */
4104 if (parm_table[parmnum].special) {
4105 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4109 /* now switch on the type of variable it is */
4110 switch (parm_table[parmnum].type)
4113 *(bool *)parm_ptr = lp_bool(pszParmValue);
4117 *(bool *)parm_ptr = !lp_bool(pszParmValue);
4121 *(int *)parm_ptr = lp_int(pszParmValue);
4125 *(char *)parm_ptr = *pszParmValue;
4129 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4131 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4136 str_list_free((char ***)parm_ptr);
4137 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
4141 string_set((char **)parm_ptr, pszParmValue);
4145 string_set((char **)parm_ptr, pszParmValue);
4146 strupper_m(*(char **)parm_ptr);
4150 pstrcpy((char *)parm_ptr, pszParmValue);
4154 pstrcpy((char *)parm_ptr, pszParmValue);
4155 strupper_m((char *)parm_ptr);
4159 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4168 /***************************************************************************
4169 Process a parameter.
4170 ***************************************************************************/
4172 static bool do_parameter(const char *pszParmName, const char *pszParmValue)
4174 if (!bInGlobalSection && bGlobalOnly)
4177 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4179 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4180 pszParmName, pszParmValue));
4183 /***************************************************************************
4184 Print a parameter of the specified type.
4185 ***************************************************************************/
4187 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4193 for (i = 0; p->enum_list[i].name; i++) {
4194 if (*(int *)ptr == p->enum_list[i].value) {
4196 p->enum_list[i].name);
4203 fprintf(f, "%s", BOOLSTR(*(bool *)ptr));
4207 fprintf(f, "%s", BOOLSTR(!*(bool *)ptr));
4211 fprintf(f, "%d", *(int *)ptr);
4215 fprintf(f, "%c", *(char *)ptr);
4219 fprintf(f, "%s", octal_string(*(int *)ptr));
4223 if ((char ***)ptr && *(char ***)ptr) {
4224 char **list = *(char ***)ptr;
4226 for (; *list; list++) {
4227 /* surround strings with whitespace in double quotes */
4228 if ( strchr_m( *list, ' ' ) )
4229 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4231 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4239 fprintf(f, "%s", (char *)ptr);
4245 if (*(char **)ptr) {
4246 fprintf(f, "%s", *(char **)ptr);
4254 /***************************************************************************
4255 Check if two parameters are equal.
4256 ***************************************************************************/
4258 static bool equal_parameter(parm_type type, void *ptr1, void *ptr2)
4263 return (*((bool *)ptr1) == *((bool *)ptr2));
4268 return (*((int *)ptr1) == *((int *)ptr2));
4271 return (*((char *)ptr1) == *((char *)ptr2));
4274 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4279 char *p1 = (char *)ptr1, *p2 = (char *)ptr2;
4284 return (p1 == p2 || strequal(p1, p2));
4289 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4294 return (p1 == p2 || strequal(p1, p2));
4302 /***************************************************************************
4303 Initialize any local varients in the sDefault table.
4304 ***************************************************************************/
4306 void init_locals(void)
4311 /***************************************************************************
4312 Process a new section (service). At this stage all sections are services.
4313 Later we'll have special sections that permit server parameters to be set.
4314 Returns True on success, False on failure.
4315 ***************************************************************************/
4317 static bool do_section(const char *pszSectionName)
4320 bool isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4321 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4324 /* if we were in a global section then do the local inits */
4325 if (bInGlobalSection && !isglobal)
4328 /* if we've just struck a global section, note the fact. */
4329 bInGlobalSection = isglobal;
4331 /* check for multiple global sections */
4332 if (bInGlobalSection) {
4333 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4337 if (!bInGlobalSection && bGlobalOnly)
4340 /* if we have a current service, tidy it up before moving on */
4343 if (iServiceIndex >= 0)
4344 bRetval = service_ok(iServiceIndex);
4346 /* if all is still well, move to the next record in the services array */
4348 /* We put this here to avoid an odd message order if messages are */
4349 /* issued by the post-processing of a previous section. */
4350 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4352 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4354 DEBUG(0, ("Failed to add a new service\n"));
4363 /***************************************************************************
4364 Determine if a partcular base parameter is currentl set to the default value.
4365 ***************************************************************************/
4367 static bool is_default(int i)
4369 if (!defaults_saved)
4371 switch (parm_table[i].type) {
4373 return str_list_compare (parm_table[i].def.lvalue,
4374 *(char ***)parm_table[i].ptr);
4377 return strequal(parm_table[i].def.svalue,
4378 *(char **)parm_table[i].ptr);
4381 return strequal(parm_table[i].def.svalue,
4382 (char *)parm_table[i].ptr);
4385 return parm_table[i].def.bvalue ==
4386 *(bool *)parm_table[i].ptr;
4388 return parm_table[i].def.cvalue ==
4389 *(char *)parm_table[i].ptr;
4393 return parm_table[i].def.ivalue ==
4394 *(int *)parm_table[i].ptr;
4401 /***************************************************************************
4402 Display the contents of the global structure.
4403 ***************************************************************************/
4405 static void dump_globals(FILE *f)
4408 param_opt_struct *data;
4410 fprintf(f, "[global]\n");
4412 for (i = 0; parm_table[i].label; i++)
4413 if (parm_table[i].p_class == P_GLOBAL &&
4414 parm_table[i].ptr &&
4415 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4416 if (defaults_saved && is_default(i))
4418 fprintf(f, "\t%s = ", parm_table[i].label);
4419 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4422 if (Globals.param_opt != NULL) {
4423 data = Globals.param_opt;
4425 fprintf(f, "\t%s = %s\n", data->key, data->value);
4432 /***************************************************************************
4433 Return True if a local parameter is currently set to the global default.
4434 ***************************************************************************/
4436 bool lp_is_default(int snum, struct parm_struct *parm)
4438 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4440 return equal_parameter(parm->type,
4441 ((char *)ServicePtrs[snum]) + pdiff,
4442 ((char *)&sDefault) + pdiff);
4445 /***************************************************************************
4446 Display the contents of a single services record.
4447 ***************************************************************************/
4449 static void dump_a_service(service * pService, FILE * f)
4452 param_opt_struct *data;
4454 if (pService != &sDefault)
4455 fprintf(f, "[%s]\n", pService->szService);
4457 for (i = 0; parm_table[i].label; i++) {
4459 if (parm_table[i].p_class == P_LOCAL &&
4460 parm_table[i].ptr &&
4461 (*parm_table[i].label != '-') &&
4462 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4465 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4467 if (pService == &sDefault) {
4468 if (defaults_saved && is_default(i))
4471 if (equal_parameter(parm_table[i].type,
4472 ((char *)pService) +
4474 ((char *)&sDefault) +
4479 fprintf(f, "\t%s = ", parm_table[i].label);
4480 print_parameter(&parm_table[i],
4481 ((char *)pService) + pdiff, f);
4486 if (pService->param_opt != NULL) {
4487 data = pService->param_opt;
4489 fprintf(f, "\t%s = %s\n", data->key, data->value);
4495 /***************************************************************************
4496 Display the contents of a parameter of a single services record.
4497 ***************************************************************************/
4499 bool dump_a_parameter(int snum, char *parm_name, FILE * f, bool isGlobal)
4502 bool result = False;
4505 fstring local_parm_name;
4507 const char *parm_opt_value;
4509 /* check for parametrical option */
4510 fstrcpy( local_parm_name, parm_name);
4511 parm_opt = strchr( local_parm_name, ':');
4516 if (strlen(parm_opt)) {
4517 parm_opt_value = lp_parm_const_string( snum,
4518 local_parm_name, parm_opt, NULL);
4519 if (parm_opt_value) {
4520 printf( "%s\n", parm_opt_value);
4527 /* check for a key and print the value */
4534 for (i = 0; parm_table[i].label; i++) {
4535 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4536 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4537 parm_table[i].ptr &&
4538 (*parm_table[i].label != '-') &&
4539 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4544 ptr = parm_table[i].ptr;
4546 service * pService = ServicePtrs[snum];
4547 ptr = ((char *)pService) +
4548 PTR_DIFF(parm_table[i].ptr, &sDefault);
4551 print_parameter(&parm_table[i],
4562 /***************************************************************************
4563 Return info about the requested parameter (given as a string).
4564 Return NULL when the string is not a valid parameter name.
4565 ***************************************************************************/
4567 struct parm_struct *lp_get_parameter(const char *param_name)
4569 int num = map_parameter(param_name);
4575 return &parm_table[num];
4578 /***************************************************************************
4579 Return info about the next parameter in a service.
4580 snum==GLOBAL_SECTION_SNUM gives the globals.
4581 Return NULL when out of parameters.
4582 ***************************************************************************/
4584 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4587 /* do the globals */
4588 for (; parm_table[*i].label; (*i)++) {
4589 if (parm_table[*i].p_class == P_SEPARATOR)
4590 return &parm_table[(*i)++];
4592 if (!parm_table[*i].ptr
4593 || (*parm_table[*i].label == '-'))
4597 && (parm_table[*i].ptr ==
4598 parm_table[(*i) - 1].ptr))
4601 if (is_default(*i) && !allparameters)
4604 return &parm_table[(*i)++];
4607 service *pService = ServicePtrs[snum];
4609 for (; parm_table[*i].label; (*i)++) {
4610 if (parm_table[*i].p_class == P_SEPARATOR)
4611 return &parm_table[(*i)++];
4613 if (parm_table[*i].p_class == P_LOCAL &&
4614 parm_table[*i].ptr &&
4615 (*parm_table[*i].label != '-') &&
4617 (parm_table[*i].ptr !=
4618 parm_table[(*i) - 1].ptr)))
4621 PTR_DIFF(parm_table[*i].ptr,
4624 if (allparameters ||
4625 !equal_parameter(parm_table[*i].type,
4626 ((char *)pService) +
4628 ((char *)&sDefault) +
4631 return &parm_table[(*i)++];
4642 /***************************************************************************
4643 Display the contents of a single copy structure.
4644 ***************************************************************************/
4645 static void dump_copy_map(bool *pcopymap)
4651 printf("\n\tNon-Copied parameters:\n");
4653 for (i = 0; parm_table[i].label; i++)
4654 if (parm_table[i].p_class == P_LOCAL &&
4655 parm_table[i].ptr && !pcopymap[i] &&
4656 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4658 printf("\t\t%s\n", parm_table[i].label);
4663 /***************************************************************************
4664 Return TRUE if the passed service number is within range.
4665 ***************************************************************************/
4667 bool lp_snum_ok(int iService)
4669 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4672 /***************************************************************************
4673 Auto-load some home services.
4674 ***************************************************************************/
4676 static void lp_add_auto_services(char *str)
4685 s = SMB_STRDUP(str);
4689 homes = lp_servicenumber(HOMES_NAME);
4691 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4692 char *home = get_user_home_dir(p);
4694 if (lp_servicenumber(p) >= 0)
4697 if (home && homes >= 0)
4698 lp_add_home(p, homes, p, home);
4703 /***************************************************************************
4704 Auto-load one printer.
4705 ***************************************************************************/
4707 void lp_add_one_printer(char *name, char *comment)
4709 int printers = lp_servicenumber(PRINTERS_NAME);
4712 if (lp_servicenumber(name) < 0) {
4713 lp_add_printer(name, printers);
4714 if ((i = lp_servicenumber(name)) >= 0) {
4715 string_set(&ServicePtrs[i]->comment, comment);
4716 ServicePtrs[i]->autoloaded = True;
4721 /***************************************************************************
4722 Have we loaded a services file yet?
4723 ***************************************************************************/
4725 bool lp_loaded(void)
4730 /***************************************************************************
4731 Unload unused services.
4732 ***************************************************************************/
4734 void lp_killunused(bool (*snumused) (int))
4737 for (i = 0; i < iNumServices; i++) {
4741 /* don't kill autoloaded or usershare services */
4742 if ( ServicePtrs[i]->autoloaded ||
4743 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4747 if (!snumused || !snumused(i)) {
4748 free_service_byindex(i);
4753 /***************************************************************************
4755 ***************************************************************************/
4757 void lp_killservice(int iServiceIn)
4759 if (VALID(iServiceIn)) {
4760 free_service_byindex(iServiceIn);
4764 /***************************************************************************
4765 Save the curent values of all global and sDefault parameters into the
4766 defaults union. This allows swat and testparm to show only the
4767 changed (ie. non-default) parameters.
4768 ***************************************************************************/
4770 static void lp_save_defaults(void)
4773 for (i = 0; parm_table[i].label; i++) {
4774 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4776 switch (parm_table[i].type) {
4778 str_list_copy(&(parm_table[i].def.lvalue),
4779 *(const char ***)parm_table[i].ptr);
4783 if (parm_table[i].ptr) {
4784 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4786 parm_table[i].def.svalue = NULL;
4791 if (parm_table[i].ptr) {
4792 parm_table[i].def.svalue = SMB_STRDUP((char *)parm_table[i].ptr);
4794 parm_table[i].def.svalue = NULL;
4799 parm_table[i].def.bvalue =
4800 *(bool *)parm_table[i].ptr;
4803 parm_table[i].def.cvalue =
4804 *(char *)parm_table[i].ptr;
4809 parm_table[i].def.ivalue =
4810 *(int *)parm_table[i].ptr;
4816 defaults_saved = True;
4819 /*******************************************************************
4820 Set the server type we will announce as via nmbd.
4821 ********************************************************************/
4823 static const struct srv_role_tab {
4825 const char *role_str;
4826 } srv_role_tab [] = {
4827 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4828 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4829 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4830 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4834 const char* server_role_str(uint32 role)
4837 for (i=0; srv_role_tab[i].role_str; i++) {
4838 if (role == srv_role_tab[i].role) {
4839 return srv_role_tab[i].role_str;
4845 static void set_server_role(void)
4847 server_role = ROLE_STANDALONE;
4849 switch (lp_security()) {
4851 if (lp_domain_logons())
4852 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4855 if (lp_domain_logons())
4856 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4857 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4858 server_role = ROLE_STANDALONE;
4861 if (lp_domain_logons()) {
4862 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4863 server_role = ROLE_DOMAIN_BDC;
4866 server_role = ROLE_DOMAIN_MEMBER;
4869 if (lp_domain_logons()) {
4870 server_role = ROLE_DOMAIN_PDC;
4873 server_role = ROLE_DOMAIN_MEMBER;
4876 if (lp_domain_logons()) {
4878 if (Globals.iDomainMaster) /* auto or yes */
4879 server_role = ROLE_DOMAIN_PDC;
4881 server_role = ROLE_DOMAIN_BDC;
4885 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4889 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4892 /***********************************************************
4893 If we should send plaintext/LANMAN passwords in the clinet
4894 ************************************************************/
4896 static void set_allowed_client_auth(void)
4898 if (Globals.bClientNTLMv2Auth) {
4899 Globals.bClientLanManAuth = False;
4901 if (!Globals.bClientLanManAuth) {
4902 Globals.bClientPlaintextAuth = False;
4906 /***************************************************************************
4908 The following code allows smbd to read a user defined share file.
4909 Yes, this is my intent. Yes, I'm comfortable with that...
4911 THE FOLLOWING IS SECURITY CRITICAL CODE.
4913 It washes your clothes, it cleans your house, it guards you while you sleep...
4914 Do not f%^k with it....
4915 ***************************************************************************/
4917 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4919 /***************************************************************************
4920 Check allowed stat state of a usershare file.
4921 Ensure we print out who is dicking with us so the admin can
4922 get their sorry ass fired.
4923 ***************************************************************************/
4925 static bool check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4927 if (!S_ISREG(psbuf->st_mode)) {
4928 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4929 "not a regular file\n",
4930 fname, (unsigned int)psbuf->st_uid ));
4934 /* Ensure this doesn't have the other write bit set. */
4935 if (psbuf->st_mode & S_IWOTH) {
4936 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4937 "public write. Refusing to allow as a usershare file.\n",
4938 fname, (unsigned int)psbuf->st_uid ));
4942 /* Should be 10k or less. */
4943 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4944 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4945 "too large (%u) to be a user share file.\n",
4946 fname, (unsigned int)psbuf->st_uid,
4947 (unsigned int)psbuf->st_size ));
4954 /***************************************************************************
4955 Parse the contents of a usershare file.
4956 ***************************************************************************/
4958 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4959 SMB_STRUCT_STAT *psbuf,
4960 const char *servicename,
4969 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4970 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4973 SMB_STRUCT_STAT sbuf;
4975 *pallow_guest = False;
4978 return USERSHARE_MALFORMED_FILE;
4981 if (strcmp(lines[0], "#VERSION 1") == 0) {
4983 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4986 return USERSHARE_MALFORMED_FILE;
4989 return USERSHARE_BAD_VERSION;
4992 if (strncmp(lines[1], "path=", 5) != 0) {
4993 return USERSHARE_MALFORMED_PATH;
4996 pstrcpy(sharepath, &lines[1][5]);
4997 trim_string(sharepath, " ", " ");
4999 if (strncmp(lines[2], "comment=", 8) != 0) {
5000 return USERSHARE_MALFORMED_COMMENT_DEF;
5003 pstrcpy(comment, &lines[2][8]);
5004 trim_string(comment, " ", " ");
5005 trim_char(comment, '"', '"');
5007 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
5008 return USERSHARE_MALFORMED_ACL_DEF;
5011 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
5012 return USERSHARE_ACL_ERR;
5016 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
5017 return USERSHARE_MALFORMED_ACL_DEF;
5019 if (lines[4][9] == 'y') {
5020 *pallow_guest = True;
5024 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
5025 /* Path didn't change, no checks needed. */
5026 return USERSHARE_OK;
5029 /* The path *must* be absolute. */
5030 if (sharepath[0] != '/') {
5031 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
5032 servicename, sharepath));
5033 return USERSHARE_PATH_NOT_ABSOLUTE;
5036 /* If there is a usershare prefix deny list ensure one of these paths
5037 doesn't match the start of the user given path. */
5038 if (prefixdenylist) {
5040 for ( i=0; prefixdenylist[i]; i++ ) {
5041 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
5042 servicename, i, prefixdenylist[i], sharepath ));
5043 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
5044 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
5045 "usershare prefix deny list entries.\n",
5046 servicename, sharepath));
5047 return USERSHARE_PATH_IS_DENIED;
5052 /* If there is a usershare prefix allow list ensure one of these paths
5053 does match the start of the user given path. */
5055 if (prefixallowlist) {
5057 for ( i=0; prefixallowlist[i]; i++ ) {
5058 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
5059 servicename, i, prefixallowlist[i], sharepath ));
5060 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
5064 if (prefixallowlist[i] == NULL) {
5065 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
5066 "usershare prefix allow list entries.\n",
5067 servicename, sharepath));
5068 return USERSHARE_PATH_NOT_ALLOWED;
5072 /* Ensure this is pointing to a directory. */
5073 dp = sys_opendir(sharepath);
5076 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5077 servicename, sharepath));
5078 return USERSHARE_PATH_NOT_DIRECTORY;
5081 /* Ensure the owner of the usershare file has permission to share
5084 if (sys_stat(sharepath, &sbuf) == -1) {
5085 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
5086 servicename, sharepath, strerror(errno) ));
5088 return USERSHARE_POSIX_ERR;
5093 if (!S_ISDIR(sbuf.st_mode)) {
5094 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5095 servicename, sharepath ));
5096 return USERSHARE_PATH_NOT_DIRECTORY;
5099 /* Check if sharing is restricted to owner-only. */
5100 /* psbuf is the stat of the usershare definition file,
5101 sbuf is the stat of the target directory to be shared. */
5103 if (lp_usershare_owner_only()) {
5104 /* root can share anything. */
5105 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
5106 return USERSHARE_PATH_NOT_ALLOWED;
5110 return USERSHARE_OK;
5113 /***************************************************************************
5114 Deal with a usershare file.
5117 -1 - Bad name, invalid contents.
5118 - service name already existed and not a usershare, problem
5119 with permissions to share directory etc.
5120 ***************************************************************************/
5122 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5124 SMB_STRUCT_STAT sbuf;
5125 SMB_STRUCT_STAT lsbuf;
5129 fstring service_name;
5130 char **lines = NULL;
5134 TALLOC_CTX *ctx = NULL;
5135 SEC_DESC *psd = NULL;
5136 bool guest_ok = False;
5138 /* Ensure share name doesn't contain invalid characters. */
5139 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5140 DEBUG(0,("process_usershare_file: share name %s contains "
5141 "invalid characters (any of %s)\n",
5142 file_name, INVALID_SHARENAME_CHARS ));
5146 fstrcpy(service_name, file_name);
5148 pstrcpy(fname, dir_name);
5149 pstrcat(fname, "/");
5150 pstrcat(fname, file_name);
5152 /* Minimize the race condition by doing an lstat before we
5153 open and fstat. Ensure this isn't a symlink link. */
5155 if (sys_lstat(fname, &lsbuf) != 0) {
5156 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5157 fname, strerror(errno) ));
5161 /* This must be a regular file, not a symlink, directory or
5162 other strange filetype. */
5163 if (!check_usershare_stat(fname, &lsbuf)) {
5167 /* See if there is already a servicenum for this name. */
5168 /* tdb_fetch_int32 returns -1 if not found. */
5169 iService = (int)tdb_fetch_int32(ServiceHash, canonicalize_servicename(service_name) );
5171 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5172 /* Nothing changed - Mark valid and return. */
5173 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5175 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5179 /* Try and open the file read only - no symlinks allowed. */
5181 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5183 fd = sys_open(fname, O_RDONLY, 0);
5187 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5188 fname, strerror(errno) ));
5192 /* Now fstat to be *SURE* it's a regular file. */
5193 if (sys_fstat(fd, &sbuf) != 0) {
5195 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5196 fname, strerror(errno) ));
5200 /* Is it the same dev/inode as was lstated ? */
5201 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5203 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5204 "Symlink spoofing going on ?\n", fname ));
5208 /* This must be a regular file, not a symlink, directory or
5209 other strange filetype. */
5210 if (!check_usershare_stat(fname, &sbuf)) {
5214 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5217 if (lines == NULL) {
5218 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5219 fname, (unsigned int)sbuf.st_uid ));
5223 /* Should we allow printers to be shared... ? */
5224 ctx = talloc_init("usershare_sd_xctx");
5226 file_lines_free(lines);
5230 if (parse_usershare_file(ctx, &sbuf, service_name,
5231 iService, lines, numlines, sharepath,
5232 comment, &psd, &guest_ok) != USERSHARE_OK) {
5233 talloc_destroy(ctx);
5234 file_lines_free(lines);
5238 file_lines_free(lines);
5240 /* Everything ok - add the service possibly using a template. */
5242 const service *sp = &sDefault;
5243 if (snum_template != -1) {
5244 sp = ServicePtrs[snum_template];
5247 if ((iService = add_a_service(sp, service_name)) < 0) {
5248 DEBUG(0, ("process_usershare_file: Failed to add "
5249 "new service %s\n", service_name));
5250 talloc_destroy(ctx);
5254 /* Read only is controlled by usershare ACL below. */
5255 ServicePtrs[iService]->bRead_only = False;
5258 /* Write the ACL of the new/modified share. */
5259 if (!set_share_security(service_name, psd)) {
5260 DEBUG(0, ("process_usershare_file: Failed to set share "
5261 "security for user share %s\n",
5263 lp_remove_service(iService);
5264 talloc_destroy(ctx);
5268 talloc_destroy(ctx);
5270 /* If from a template it may be marked invalid. */
5271 ServicePtrs[iService]->valid = True;
5273 /* Set the service as a valid usershare. */
5274 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5276 /* Set guest access. */
5277 if (lp_usershare_allow_guests()) {
5278 ServicePtrs[iService]->bGuest_ok = guest_ok;
5281 /* And note when it was loaded. */
5282 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5283 string_set(&ServicePtrs[iService]->szPath, sharepath);
5284 string_set(&ServicePtrs[iService]->comment, comment);
5289 /***************************************************************************
5290 Checks if a usershare entry has been modified since last load.
5291 ***************************************************************************/
5293 static bool usershare_exists(int iService, time_t *last_mod)
5295 SMB_STRUCT_STAT lsbuf;
5296 const char *usersharepath = Globals.szUsersharePath;
5299 pstrcpy(fname, usersharepath);
5300 pstrcat(fname, "/");
5301 pstrcat(fname, ServicePtrs[iService]->szService);
5303 if (sys_lstat(fname, &lsbuf) != 0) {
5307 if (!S_ISREG(lsbuf.st_mode)) {
5311 *last_mod = lsbuf.st_mtime;
5315 /***************************************************************************
5316 Load a usershare service by name. Returns a valid servicenumber or -1.
5317 ***************************************************************************/
5319 int load_usershare_service(const char *servicename)
5321 SMB_STRUCT_STAT sbuf;
5322 const char *usersharepath = Globals.szUsersharePath;
5323 int max_user_shares = Globals.iUsershareMaxShares;
5324 int snum_template = -1;
5326 if (*usersharepath == 0 || max_user_shares == 0) {
5330 if (sys_stat(usersharepath, &sbuf) != 0) {
5331 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5332 usersharepath, strerror(errno) ));
5336 if (!S_ISDIR(sbuf.st_mode)) {
5337 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5343 * This directory must be owned by root, and have the 't' bit set.
5344 * It also must not be writable by "other".
5348 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5350 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5352 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5353 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5358 /* Ensure the template share exists if it's set. */
5359 if (Globals.szUsershareTemplateShare[0]) {
5360 /* We can't use lp_servicenumber here as we are recommending that
5361 template shares have -valid=False set. */
5362 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5363 if (ServicePtrs[snum_template]->szService &&
5364 strequal(ServicePtrs[snum_template]->szService,
5365 Globals.szUsershareTemplateShare)) {
5370 if (snum_template == -1) {
5371 DEBUG(0,("load_usershare_service: usershare template share %s "
5372 "does not exist.\n",
5373 Globals.szUsershareTemplateShare ));
5378 return process_usershare_file(usersharepath, servicename, snum_template);
5381 /***************************************************************************
5382 Load all user defined shares from the user share directory.
5383 We only do this if we're enumerating the share list.
5384 This is the function that can delete usershares that have
5386 ***************************************************************************/
5388 int load_usershare_shares(void)
5391 SMB_STRUCT_STAT sbuf;
5392 SMB_STRUCT_DIRENT *de;
5393 int num_usershares = 0;
5394 int max_user_shares = Globals.iUsershareMaxShares;
5395 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5396 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5397 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5399 int snum_template = -1;
5400 const char *usersharepath = Globals.szUsersharePath;
5401 int ret = lp_numservices();
5403 if (max_user_shares == 0 || *usersharepath == '\0') {
5404 return lp_numservices();
5407 if (sys_stat(usersharepath, &sbuf) != 0) {
5408 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5409 usersharepath, strerror(errno) ));
5414 * This directory must be owned by root, and have the 't' bit set.
5415 * It also must not be writable by "other".
5419 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5421 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5423 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5424 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5429 /* Ensure the template share exists if it's set. */
5430 if (Globals.szUsershareTemplateShare[0]) {
5431 /* We can't use lp_servicenumber here as we are recommending that
5432 template shares have -valid=False set. */
5433 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5434 if (ServicePtrs[snum_template]->szService &&
5435 strequal(ServicePtrs[snum_template]->szService,
5436 Globals.szUsershareTemplateShare)) {
5441 if (snum_template == -1) {
5442 DEBUG(0,("load_usershare_shares: usershare template share %s "
5443 "does not exist.\n",
5444 Globals.szUsershareTemplateShare ));
5449 /* Mark all existing usershares as pending delete. */
5450 for (iService = iNumServices - 1; iService >= 0; iService--) {
5451 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5452 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5456 dp = sys_opendir(usersharepath);
5458 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5459 usersharepath, strerror(errno) ));
5463 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5464 (de = sys_readdir(dp));
5465 num_dir_entries++ ) {
5467 const char *n = de->d_name;
5469 /* Ignore . and .. */
5471 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5477 /* Temporary file used when creating a share. */
5478 num_tmp_dir_entries++;
5481 /* Allow 20% tmp entries. */
5482 if (num_tmp_dir_entries > allowed_tmp_entries) {
5483 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5484 "in directory %s\n",
5485 num_tmp_dir_entries, usersharepath));
5489 r = process_usershare_file(usersharepath, n, snum_template);
5491 /* Update the services count. */
5493 if (num_usershares >= max_user_shares) {
5494 DEBUG(0,("load_usershare_shares: max user shares reached "
5495 "on file %s in directory %s\n",
5496 n, usersharepath ));
5499 } else if (r == -1) {
5500 num_bad_dir_entries++;
5503 /* Allow 20% bad entries. */
5504 if (num_bad_dir_entries > allowed_bad_entries) {
5505 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5506 "in directory %s\n",
5507 num_bad_dir_entries, usersharepath));
5511 /* Allow 20% bad entries. */
5512 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5513 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5514 "in directory %s\n",
5515 num_dir_entries, usersharepath));
5522 /* Sweep through and delete any non-refreshed usershares that are
5523 not currently in use. */
5524 for (iService = iNumServices - 1; iService >= 0; iService--) {
5525 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5526 if (conn_snum_used(iService)) {
5529 /* Remove from the share ACL db. */
5530 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5531 lp_servicename(iService) ));
5532 delete_share_security(lp_servicename(iService));
5533 free_service_byindex(iService);
5537 return lp_numservices();
5540 /********************************************************
5541 Destroy global resources allocated in this file
5542 ********************************************************/
5544 void gfree_loadparm(void)
5546 struct file_lists *f;
5547 struct file_lists *next;
5550 /* Free the file lists */
5555 SAFE_FREE( f->name );
5556 SAFE_FREE( f->subfname );
5561 /* Free resources allocated to services */
5563 for ( i = 0; i < iNumServices; i++ ) {
5565 free_service_byindex(i);
5569 SAFE_FREE( ServicePtrs );
5572 /* Now release all resources allocated to global
5573 parameters and the default service */
5575 for (i = 0; parm_table[i].label; i++)
5577 if ( parm_table[i].type == P_STRING
5578 || parm_table[i].type == P_USTRING )
5580 string_free( (char**)parm_table[i].ptr );
5582 else if (parm_table[i].type == P_LIST) {
5583 str_list_free( (char***)parm_table[i].ptr );
5588 /***************************************************************************
5589 Load the services array from the services file. Return True on success,
5591 ***************************************************************************/
5593 bool lp_load(const char *pszFname,
5597 bool initialize_globals)
5601 param_opt_struct *data, *pdata;
5603 pstrcpy(n2, pszFname);
5605 standard_sub_basic( get_current_username(), current_user_info.domain,
5608 add_to_file_list(pszFname, n2);
5612 DEBUG(3, ("lp_load: refreshing parameters\n"));
5614 bInGlobalSection = True;
5615 bGlobalOnly = global_only;
5617 init_globals(! initialize_globals);
5620 if (save_defaults) {
5625 if (Globals.param_opt != NULL) {
5626 data = Globals.param_opt;
5628 string_free(&data->key);
5629 string_free(&data->value);
5630 str_list_free(&data->list);
5635 Globals.param_opt = NULL;
5638 /* We get sections first, so have to start 'behind' to make up */
5640 bRetval = pm_process(n2, do_section, do_parameter);
5642 /* finish up the last section */
5643 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5645 if (iServiceIndex >= 0)
5646 bRetval = service_ok(iServiceIndex);
5648 lp_add_auto_services(lp_auto_services());
5651 /* When 'restrict anonymous = 2' guest connections to ipc$
5653 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5654 if ( lp_enable_asu_support() )
5655 lp_add_ipc("ADMIN$", False);
5659 set_default_server_announce_type();
5660 set_allowed_client_auth();
5664 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5665 /* if bWINSsupport is true and we are in the client */
5666 if (in_client && Globals.bWINSsupport) {
5667 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5675 /***************************************************************************
5676 Reset the max number of services.
5677 ***************************************************************************/
5679 void lp_resetnumservices(void)
5684 /***************************************************************************
5685 Return the max number of services.
5686 ***************************************************************************/
5688 int lp_numservices(void)
5690 return (iNumServices);
5693 /***************************************************************************
5694 Display the contents of the services array in human-readable form.
5695 ***************************************************************************/
5697 void lp_dump(FILE *f, bool show_defaults, int maxtoprint)
5702 defaults_saved = False;
5706 dump_a_service(&sDefault, f);
5708 for (iService = 0; iService < maxtoprint; iService++) {
5710 lp_dump_one(f, show_defaults, iService);
5714 /***************************************************************************
5715 Display the contents of one service in human-readable form.
5716 ***************************************************************************/
5718 void lp_dump_one(FILE * f, bool show_defaults, int snum)
5721 if (ServicePtrs[snum]->szService[0] == '\0')
5723 dump_a_service(ServicePtrs[snum], f);
5727 /***************************************************************************
5728 Return the number of the service with the given name, or -1 if it doesn't
5729 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5730 getservicebyname()! This works ONLY if all services have been loaded, and
5731 does not copy the found service.
5732 ***************************************************************************/
5734 int lp_servicenumber(const char *pszServiceName)
5737 fstring serviceName;
5739 if (!pszServiceName) {
5740 return GLOBAL_SECTION_SNUM;
5743 for (iService = iNumServices - 1; iService >= 0; iService--) {
5744 if (VALID(iService) && ServicePtrs[iService]->szService) {
5746 * The substitution here is used to support %U is
5749 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5750 standard_sub_basic(get_current_username(),
5751 current_user_info.domain,
5752 serviceName,sizeof(serviceName));
5753 if (strequal(serviceName, pszServiceName)) {
5759 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5762 if (!usershare_exists(iService, &last_mod)) {
5763 /* Remove the share security tdb entry for it. */
5764 delete_share_security(lp_servicename(iService));
5765 /* Remove it from the array. */
5766 free_service_byindex(iService);
5767 /* Doesn't exist anymore. */
5768 return GLOBAL_SECTION_SNUM;
5771 /* Has it been modified ? If so delete and reload. */
5772 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5773 /* Remove it from the array. */
5774 free_service_byindex(iService);
5775 /* and now reload it. */
5776 iService = load_usershare_service(pszServiceName);
5781 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5782 return GLOBAL_SECTION_SNUM;
5788 bool share_defined(const char *service_name)
5790 return (lp_servicenumber(service_name) != -1);
5793 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5794 const char *sharename)
5796 struct share_params *result;
5800 if (!(sname = SMB_STRDUP(sharename))) {
5804 snum = find_service(sname);
5811 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5812 DEBUG(0, ("talloc failed\n"));
5816 result->service = snum;
5820 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5822 struct share_iterator *result;
5824 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5825 DEBUG(0, ("talloc failed\n"));
5829 result->next_id = 0;
5833 struct share_params *next_share(struct share_iterator *list)
5835 struct share_params *result;
5837 while (!lp_snum_ok(list->next_id) &&
5838 (list->next_id < lp_numservices())) {
5842 if (list->next_id >= lp_numservices()) {
5846 if (!(result = TALLOC_P(list, struct share_params))) {
5847 DEBUG(0, ("talloc failed\n"));
5851 result->service = list->next_id;
5856 struct share_params *next_printer(struct share_iterator *list)
5858 struct share_params *result;
5860 while ((result = next_share(list)) != NULL) {
5861 if (lp_print_ok(result->service)) {
5869 * This is a hack for a transition period until we transformed all code from
5870 * service numbers to struct share_params.
5873 struct share_params *snum2params_static(int snum)
5875 static struct share_params result;
5876 result.service = snum;
5880 /*******************************************************************
5881 A useful volume label function.
5882 ********************************************************************/
5884 const char *volume_label(int snum)
5887 const char *label = lp_volume(snum);
5889 label = lp_servicename(snum);
5892 /* This returns a 33 byte guarenteed null terminated string. */
5893 ret = talloc_strndup(talloc_tos(), label, 32);
5900 /*******************************************************************
5901 Set the server type we will announce as via nmbd.
5902 ********************************************************************/
5904 static void set_default_server_announce_type(void)
5906 default_server_announce = 0;
5907 default_server_announce |= SV_TYPE_WORKSTATION;
5908 default_server_announce |= SV_TYPE_SERVER;
5909 default_server_announce |= SV_TYPE_SERVER_UNIX;
5911 /* note that the flag should be set only if we have a
5912 printer service but nmbd doesn't actually load the
5913 services so we can't tell --jerry */
5915 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5917 switch (lp_announce_as()) {
5918 case ANNOUNCE_AS_NT_SERVER:
5919 default_server_announce |= SV_TYPE_SERVER_NT;
5920 /* fall through... */
5921 case ANNOUNCE_AS_NT_WORKSTATION:
5922 default_server_announce |= SV_TYPE_NT;
5924 case ANNOUNCE_AS_WIN95:
5925 default_server_announce |= SV_TYPE_WIN95_PLUS;
5927 case ANNOUNCE_AS_WFW:
5928 default_server_announce |= SV_TYPE_WFW;
5934 switch (lp_server_role()) {
5935 case ROLE_DOMAIN_MEMBER:
5936 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5938 case ROLE_DOMAIN_PDC:
5939 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5941 case ROLE_DOMAIN_BDC:
5942 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5944 case ROLE_STANDALONE:
5948 if (lp_time_server())
5949 default_server_announce |= SV_TYPE_TIME_SOURCE;
5951 if (lp_host_msdfs())
5952 default_server_announce |= SV_TYPE_DFS_SERVER;
5955 /***********************************************************
5956 returns role of Samba server
5957 ************************************************************/
5959 int lp_server_role(void)
5964 /***********************************************************
5965 If we are PDC then prefer us as DMB
5966 ************************************************************/
5968 bool lp_domain_master(void)
5970 if (Globals.iDomainMaster == Auto)
5971 return (lp_server_role() == ROLE_DOMAIN_PDC);
5973 return (bool)Globals.iDomainMaster;
5976 /***********************************************************
5977 If we are DMB then prefer us as LMB
5978 ************************************************************/
5980 bool lp_preferred_master(void)
5982 if (Globals.iPreferredMaster == Auto)
5983 return (lp_local_master() && lp_domain_master());
5985 return (bool)Globals.iPreferredMaster;
5988 /*******************************************************************
5990 ********************************************************************/
5992 void lp_remove_service(int snum)
5994 ServicePtrs[snum]->valid = False;
5995 invalid_services[num_invalid_services++] = snum;
5998 /*******************************************************************
6000 ********************************************************************/
6002 void lp_copy_service(int snum, const char *new_name)
6004 do_section(new_name);
6006 snum = lp_servicenumber(new_name);
6008 lp_do_parameter(snum, "copy", lp_servicename(snum));
6013 /*******************************************************************
6014 Get the default server type we will announce as via nmbd.
6015 ********************************************************************/
6017 int lp_default_server_announce(void)
6019 return default_server_announce;
6022 /*******************************************************************
6023 Split the announce version into major and minor numbers.
6024 ********************************************************************/
6026 int lp_major_announce_version(void)
6028 static bool got_major = False;
6029 static int major_version = DEFAULT_MAJOR_VERSION;
6034 return major_version;
6037 if ((vers = lp_announce_version()) == NULL)
6038 return major_version;
6040 if ((p = strchr_m(vers, '.')) == 0)
6041 return major_version;
6044 major_version = atoi(vers);
6045 return major_version;
6048 int lp_minor_announce_version(void)
6050 static bool got_minor = False;
6051 static int minor_version = DEFAULT_MINOR_VERSION;
6056 return minor_version;
6059 if ((vers = lp_announce_version()) == NULL)
6060 return minor_version;
6062 if ((p = strchr_m(vers, '.')) == 0)
6063 return minor_version;
6066 minor_version = atoi(p);
6067 return minor_version;
6070 /***********************************************************
6071 Set the global name resolution order (used in smbclient).
6072 ************************************************************/
6074 void lp_set_name_resolve_order(const char *new_order)
6076 string_set(&Globals.szNameResolveOrder, new_order);
6079 const char *lp_printername(int snum)
6081 const char *ret = _lp_printername(snum);
6082 if (ret == NULL || (ret != NULL && *ret == '\0'))
6083 ret = lp_const_servicename(snum);
6089 /***********************************************************
6090 Allow daemons such as winbindd to fix their logfile name.
6091 ************************************************************/
6093 void lp_set_logfile(const char *name)
6095 string_set(&Globals.szLogFile, name);
6096 pstrcpy(debugf, name);
6099 /*******************************************************************
6100 Return the max print jobs per queue.
6101 ********************************************************************/
6103 int lp_maxprintjobs(int snum)
6105 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6106 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6107 maxjobs = PRINT_MAX_JOBID - 1;
6112 const char *lp_printcapname(void)
6114 if ((Globals.szPrintcapname != NULL) &&
6115 (Globals.szPrintcapname[0] != '\0'))
6116 return Globals.szPrintcapname;
6118 if (sDefault.iPrinting == PRINT_CUPS) {
6126 if (sDefault.iPrinting == PRINT_BSD)
6127 return "/etc/printcap";
6129 return PRINTCAP_NAME;
6132 /*******************************************************************
6133 Ensure we don't use sendfile if server smb signing is active.
6134 ********************************************************************/
6136 static uint32 spoolss_state;
6138 bool lp_disable_spoolss( void )
6140 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6141 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6143 return spoolss_state == SVCCTL_STOPPED ? True : False;
6146 void lp_set_spoolss_state( uint32 state )
6148 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6150 spoolss_state = state;
6153 uint32 lp_get_spoolss_state( void )
6155 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6158 /*******************************************************************
6159 Ensure we don't use sendfile if server smb signing is active.
6160 ********************************************************************/
6162 bool lp_use_sendfile(int snum)
6164 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6165 if (Protocol < PROTOCOL_NT1) {
6168 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
6171 /*******************************************************************
6172 Turn off sendfile if we find the underlying OS doesn't support it.
6173 ********************************************************************/
6175 void set_use_sendfile(int snum, bool val)
6177 if (LP_SNUM_OK(snum))
6178 ServicePtrs[snum]->bUseSendfile = val;
6180 sDefault.bUseSendfile = val;
6183 /*******************************************************************
6184 Turn off storing DOS attributes if this share doesn't support it.
6185 ********************************************************************/
6187 void set_store_dos_attributes(int snum, bool val)
6189 if (!LP_SNUM_OK(snum))
6191 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6194 void lp_set_mangling_method(const char *new_method)
6196 string_set(&Globals.szManglingMethod, new_method);
6199 /*******************************************************************
6200 Global state for POSIX pathname processing.
6201 ********************************************************************/
6203 static bool posix_pathnames;
6205 bool lp_posix_pathnames(void)
6207 return posix_pathnames;
6210 /*******************************************************************
6211 Change everything needed to ensure POSIX pathname processing (currently
6213 ********************************************************************/
6215 void lp_set_posix_pathnames(void)
6217 posix_pathnames = True;
6220 /*******************************************************************
6221 Global state for POSIX lock processing - CIFS unix extensions.
6222 ********************************************************************/
6224 bool posix_default_lock_was_set;
6225 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6227 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6229 if (posix_default_lock_was_set) {
6230 return posix_cifsx_locktype;
6232 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6236 /*******************************************************************
6237 ********************************************************************/
6239 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6241 posix_default_lock_was_set = True;
6242 posix_cifsx_locktype = val;
6245 int lp_min_receive_file_size(void)
6247 if (Globals.iminreceivefile < 0) {
6250 return MIN(Globals.iminreceivefile, BUFFER_SIZE);