2 Unix SMB/CIFS implementation.
3 Main SMB server routines
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Martin Pool 2002
6 Copyright (C) Jelmer Vernooij 2002-2003
7 Copyright (C) Volker Lendecke 1993-2007
8 Copyright (C) Jeremy Allison 1993-2007
10 This program is free software; you can redistribute it and/or modify
11 it under the terms of the GNU General Public License as published by
12 the Free Software Foundation; either version 3 of the License, or
13 (at your option) any later version.
15 This program is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 GNU General Public License for more details.
20 You should have received a copy of the GNU General Public License
21 along with this program. If not, see <http://www.gnu.org/licenses/>.
25 #include "system/filesys.h"
26 #include "lib/util/server_id.h"
27 #include "popt_common.h"
28 #include "smbd/smbd.h"
29 #include "smbd/globals.h"
30 #include "registry/reg_init_full.h"
31 #include "libcli/auth/schannel.h"
33 #include "../lib/util/memcache.h"
34 #include "ctdbd_conn.h"
35 #include "util_cluster.h"
36 #include "printing/queue_process.h"
37 #include "rpc_server/rpc_service_setup.h"
38 #include "rpc_server/rpc_config.h"
42 #include "messages_ctdb.h"
43 #include "smbprofile.h"
44 #include "lib/id_cache.h"
45 #include "lib/param/param.h"
46 #include "lib/background.h"
47 #include "lib/conn_tdb.h"
48 #include "../lib/util/pidfile.h"
49 #include "lib/smbd_shim.h"
50 #include "scavenger.h"
51 #include "locking/leases_db.h"
52 #include "smbd/notifyd/notifyd.h"
53 #include "smbd/smbd_cleanupd.h"
54 #include "lib/util/sys_rw.h"
55 #include "cleanupdb.h"
58 #ifdef CLUSTER_SUPPORT
59 #include "ctdb_protocol.h"
62 struct smbd_open_socket;
63 struct smbd_child_pid;
65 struct smbd_parent_context {
68 struct tevent_context *ev_ctx;
69 struct messaging_context *msg_ctx;
71 /* the list of listening sockets */
72 struct smbd_open_socket *sockets;
74 /* the list of current child processes */
75 struct smbd_child_pid *children;
78 struct server_id cleanupd;
79 struct server_id notifyd;
81 struct tevent_timer *cleanup_te;
84 struct smbd_open_socket {
85 struct smbd_open_socket *prev, *next;
86 struct smbd_parent_context *parent;
88 struct tevent_fd *fde;
91 struct smbd_child_pid {
92 struct smbd_child_pid *prev, *next;
96 extern void start_epmd(struct tevent_context *ev_ctx,
97 struct messaging_context *msg_ctx);
99 extern void start_lsasd(struct tevent_context *ev_ctx,
100 struct messaging_context *msg_ctx);
102 extern void start_fssd(struct tevent_context *ev_ctx,
103 struct messaging_context *msg_ctx);
105 extern void start_mdssd(struct tevent_context *ev_ctx,
106 struct messaging_context *msg_ctx);
108 /*******************************************************************
109 What to do when smb.conf is updated.
110 ********************************************************************/
112 static void smbd_parent_conf_updated(struct messaging_context *msg,
115 struct server_id server_id,
118 struct tevent_context *ev_ctx =
119 talloc_get_type_abort(private_data, struct tevent_context);
121 DEBUG(10,("smbd_parent_conf_updated: Got message saying smb.conf was "
122 "updated. Reloading.\n"));
123 change_to_root_user();
124 reload_services(NULL, NULL, false);
125 printing_subsystem_update(ev_ctx, msg, false);
128 /*******************************************************************
129 Delete a statcache entry.
130 ********************************************************************/
132 static void smb_stat_cache_delete(struct messaging_context *msg,
135 struct server_id server_id,
138 const char *name = (const char *)data->data;
139 DEBUG(10,("smb_stat_cache_delete: delete name %s\n", name));
140 stat_cache_delete(name);
143 /****************************************************************************
144 Send a SIGTERM to our process group.
145 *****************************************************************************/
147 static void killkids(void)
149 if(am_parent) kill(0,SIGTERM);
152 static void msg_exit_server(struct messaging_context *msg,
155 struct server_id server_id,
158 DEBUG(3, ("got a SHUTDOWN message\n"));
159 exit_server_cleanly(NULL);
163 static void msg_inject_fault(struct messaging_context *msg,
166 struct server_id src,
170 struct server_id_buf tmp;
172 if (data->length != sizeof(sig)) {
173 DEBUG(0, ("Process %s sent bogus signal injection request\n",
174 server_id_str_buf(src, &tmp)));
178 sig = *(int *)data->data;
180 exit_server("internal error injected");
184 #ifdef HAVE_STRSIGNAL
185 DEBUG(0, ("Process %s requested injection of signal %d (%s)\n",
186 server_id_str_buf(src, &tmp), sig, strsignal(sig)));
188 DEBUG(0, ("Process %s requested injection of signal %d\n",
189 server_id_str_buf(src, &tmp), sig));
194 #endif /* DEVELOPER */
196 #if defined(DEVELOPER) || defined(ENABLE_SELFTEST)
198 * Sleep for the specified number of seconds.
200 static void msg_sleep(struct messaging_context *msg,
203 struct server_id src,
206 unsigned int seconds;
207 struct server_id_buf tmp;
209 if (data->length != sizeof(seconds)) {
210 DBG_ERR("Process %s sent bogus sleep request\n",
211 server_id_str_buf(src, &tmp));
215 seconds = *(unsigned int *)data->data;
216 DBG_ERR("Process %s request a sleep of %u seconds\n",
217 server_id_str_buf(src, &tmp),
220 DBG_ERR("Restarting after %u second sleep requested by process %s\n",
222 server_id_str_buf(src, &tmp));
224 #endif /* DEVELOPER */
226 static NTSTATUS messaging_send_to_children(struct messaging_context *msg_ctx,
227 uint32_t msg_type, DATA_BLOB* data)
230 struct smbd_parent_context *parent = am_parent;
231 struct smbd_child_pid *child;
233 if (parent == NULL) {
234 return NT_STATUS_INTERNAL_ERROR;
237 for (child = parent->children; child != NULL; child = child->next) {
238 status = messaging_send(parent->msg_ctx,
239 pid_to_procid(child->pid),
241 if (!NT_STATUS_IS_OK(status)) {
242 DBG_DEBUG("messaging_send(%d) failed: %s\n",
243 (int)child->pid, nt_errstr(status));
249 static void smb_parent_send_to_children(struct messaging_context *ctx,
252 struct server_id srv_id,
255 messaging_send_to_children(ctx, msg_type, msg_data);
259 * Parent smbd process sets its own debug level first and then
260 * sends a message to all the smbd children to adjust their debug
261 * level to that of the parent.
264 static void smbd_msg_debug(struct messaging_context *msg_ctx,
267 struct server_id server_id,
270 debug_message(msg_ctx, private_data, MSG_DEBUG, server_id, data);
272 messaging_send_to_children(msg_ctx, MSG_DEBUG, data);
275 static void smbd_parent_id_cache_kill(struct messaging_context *msg_ctx,
278 struct server_id server_id,
281 const char *msg = (data && data->data)
282 ? (const char *)data->data : "<NULL>";
283 struct id_cache_ref id;
285 if (!id_cache_ref_parse(msg, &id)) {
286 DEBUG(0, ("Invalid ?ID: %s\n", msg));
290 id_cache_delete_from_cache(&id);
292 messaging_send_to_children(msg_ctx, msg_type, data);
295 static void smbd_parent_id_cache_delete(struct messaging_context *ctx,
298 struct server_id srv_id,
301 id_cache_delete_message(ctx, data, msg_type, srv_id, msg_data);
303 messaging_send_to_children(ctx, msg_type, msg_data);
306 #ifdef CLUSTER_SUPPORT
307 static int smbd_parent_ctdb_reconfigured(
308 struct tevent_context *ev,
309 uint32_t src_vnn, uint32_t dst_vnn, uint64_t dst_srvid,
310 const uint8_t *msg, size_t msglen, void *private_data)
312 struct messaging_context *msg_ctx = talloc_get_type_abort(
313 private_data, struct messaging_context);
315 DEBUG(10, ("Got %s message\n", (dst_srvid == CTDB_SRVID_RECONFIGURE)
316 ? "cluster reconfigure" : "SAMBA_NOTIFY"));
319 * Someone from the family died, validate our locks
323 messaging_send_buf(msg_ctx, am_parent->cleanupd,
324 MSG_SMB_BRL_VALIDATE, NULL, 0);
331 static void add_child_pid(struct smbd_parent_context *parent,
334 struct smbd_child_pid *child;
336 child = talloc_zero(parent, struct smbd_child_pid);
338 DEBUG(0, ("Could not add child struct -- malloc failed\n"));
342 DLIST_ADD(parent->children, child);
343 parent->num_children += 1;
346 static void smb_tell_num_children(struct messaging_context *ctx, void *data,
347 uint32_t msg_type, struct server_id srv_id,
350 uint8_t buf[sizeof(uint32_t)];
353 SIVAL(buf, 0, am_parent->num_children);
354 messaging_send_buf(ctx, srv_id, MSG_SMB_NUM_CHILDREN,
359 static void notifyd_stopped(struct tevent_req *req);
361 static struct tevent_req *notifyd_req(struct messaging_context *msg_ctx,
362 struct tevent_context *ev)
364 struct tevent_req *req;
365 sys_notify_watch_fn sys_notify_watch = NULL;
366 struct sys_notify_context *sys_notify_ctx = NULL;
367 struct ctdbd_connection *ctdbd_conn = NULL;
369 if (lp_kernel_change_notify()) {
372 if (lp_parm_bool(-1, "notify", "inotify", true)) {
373 sys_notify_watch = inotify_watch;
378 if (lp_parm_bool(-1, "notify", "fam",
379 (sys_notify_watch == NULL))) {
380 sys_notify_watch = fam_watch;
385 if (sys_notify_watch != NULL) {
386 sys_notify_ctx = sys_notify_context_create(msg_ctx, ev);
387 if (sys_notify_ctx == NULL) {
392 if (lp_clustering()) {
393 ctdbd_conn = messaging_ctdb_connection();
396 req = notifyd_send(msg_ctx, ev, msg_ctx, ctdbd_conn,
397 sys_notify_watch, sys_notify_ctx);
399 TALLOC_FREE(sys_notify_ctx);
402 tevent_req_set_callback(req, notifyd_stopped, msg_ctx);
407 static void notifyd_stopped(struct tevent_req *req)
411 ret = notifyd_recv(req);
413 DEBUG(1, ("notifyd stopped: %s\n", strerror(ret)));
416 static bool smbd_notifyd_init(struct messaging_context *msg, bool interactive,
417 struct server_id *ppid)
419 struct tevent_context *ev = messaging_tevent_context(msg);
420 struct tevent_req *req;
426 req = notifyd_req(msg, ev);
427 return (req != NULL);
432 DEBUG(1, ("%s: fork failed: %s\n", __func__,
438 if (am_parent != 0) {
439 add_child_pid(am_parent, pid);
441 *ppid = pid_to_procid(pid);
445 status = smbd_reinit_after_fork(msg, ev, true, "smbd-notifyd");
446 if (!NT_STATUS_IS_OK(status)) {
447 DEBUG(1, ("%s: reinit_after_fork failed: %s\n",
448 __func__, nt_errstr(status)));
452 req = notifyd_req(msg, ev);
456 tevent_req_set_callback(req, notifyd_stopped, msg);
458 /* Block those signals that we are not handling */
459 BlockSignals(True, SIGHUP);
460 BlockSignals(True, SIGUSR1);
462 messaging_send(msg, pid_to_procid(getppid()), MSG_SMB_NOTIFY_STARTED,
465 ok = tevent_req_poll(req, ev);
467 DBG_WARNING("tevent_req_poll returned %s\n", strerror(errno));
473 static void notifyd_init_trigger(struct tevent_req *req);
475 struct notifyd_init_state {
477 struct tevent_context *ev;
478 struct messaging_context *msg;
479 struct server_id *ppid;
482 static struct tevent_req *notifyd_init_send(struct tevent_context *ev,
484 struct messaging_context *msg,
485 struct server_id *ppid)
487 struct tevent_req *req = NULL;
488 struct tevent_req *subreq = NULL;
489 struct notifyd_init_state *state = NULL;
491 req = tevent_req_create(mem_ctx, &state, struct notifyd_init_state);
496 *state = (struct notifyd_init_state) {
502 subreq = tevent_wakeup_send(state, ev, tevent_timeval_current_ofs(1, 0));
503 if (tevent_req_nomem(subreq, req)) {
504 return tevent_req_post(req, ev);
507 tevent_req_set_callback(subreq, notifyd_init_trigger, req);
511 static void notifyd_init_trigger(struct tevent_req *subreq)
513 struct tevent_req *req = tevent_req_callback_data(
514 subreq, struct tevent_req);
515 struct notifyd_init_state *state = tevent_req_data(
516 req, struct notifyd_init_state);
519 DBG_NOTICE("Triggering notifyd startup\n");
521 ok = tevent_wakeup_recv(subreq);
524 tevent_req_error(req, ENOMEM);
528 state->ok = smbd_notifyd_init(state->msg, false, state->ppid);
530 DBG_WARNING("notifyd restarted\n");
531 tevent_req_done(req);
535 DBG_NOTICE("notifyd startup failed, rescheduling\n");
537 subreq = tevent_wakeup_send(state, state->ev,
538 tevent_timeval_current_ofs(1, 0));
539 if (tevent_req_nomem(subreq, req)) {
540 DBG_ERR("scheduling notifyd restart failed, giving up\n");
544 tevent_req_set_callback(subreq, notifyd_init_trigger, req);
548 static bool notifyd_init_recv(struct tevent_req *req)
550 struct notifyd_init_state *state = tevent_req_data(
551 req, struct notifyd_init_state);
556 static void notifyd_started(struct tevent_req *req)
560 ok = notifyd_init_recv(req);
563 DBG_ERR("Failed to restart notifyd, giving up\n");
568 static void cleanupd_stopped(struct tevent_req *req);
570 static bool cleanupd_init(struct messaging_context *msg, bool interactive,
571 struct server_id *ppid)
573 struct tevent_context *ev = messaging_tevent_context(msg);
574 struct server_id parent_id = messaging_server_id(msg);
575 struct tevent_req *req;
585 req = smbd_cleanupd_send(msg, ev, msg, parent_id.pid);
586 *ppid = messaging_server_id(msg);
587 return (req != NULL);
592 DBG_WARNING("pipe failed: %s\n", strerror(errno));
598 DBG_WARNING("fork failed: %s\n", strerror(errno));
607 rwret = sys_read(up_pipe[0], &c, 1);
611 DBG_WARNING("sys_read failed: %s\n", strerror(errno));
615 DBG_WARNING("cleanupd could not start\n");
619 DBG_WARNING("cleanupd returned %d\n", (int)c);
623 DBG_DEBUG("Started cleanupd pid=%d\n", (int)pid);
625 if (am_parent != NULL) {
626 add_child_pid(am_parent, pid);
629 *ppid = pid_to_procid(pid);
635 status = smbd_reinit_after_fork(msg, ev, true, "cleanupd");
636 if (!NT_STATUS_IS_OK(status)) {
637 DBG_WARNING("reinit_after_fork failed: %s\n",
640 sys_write(up_pipe[1], &c, 1);
645 req = smbd_cleanupd_send(msg, ev, msg, parent_id.pid);
647 DBG_WARNING("smbd_cleanupd_send failed\n");
649 sys_write(up_pipe[1], &c, 1);
654 tevent_req_set_callback(req, cleanupd_stopped, msg);
657 rwret = sys_write(up_pipe[1], &c, 1);
661 DBG_WARNING("sys_write failed: %s\n", strerror(errno));
665 DBG_WARNING("sys_write could not write result\n");
669 ok = tevent_req_poll(req, ev);
671 DBG_WARNING("tevent_req_poll returned %s\n", strerror(errno));
676 static void cleanupd_stopped(struct tevent_req *req)
680 status = smbd_cleanupd_recv(req);
681 DBG_WARNING("cleanupd stopped: %s\n", nt_errstr(status));
684 static void cleanupd_init_trigger(struct tevent_req *req);
686 struct cleanup_init_state {
688 struct tevent_context *ev;
689 struct messaging_context *msg;
690 struct server_id *ppid;
693 static struct tevent_req *cleanupd_init_send(struct tevent_context *ev,
695 struct messaging_context *msg,
696 struct server_id *ppid)
698 struct tevent_req *req = NULL;
699 struct tevent_req *subreq = NULL;
700 struct cleanup_init_state *state = NULL;
702 req = tevent_req_create(mem_ctx, &state, struct cleanup_init_state);
707 *state = (struct cleanup_init_state) {
713 subreq = tevent_wakeup_send(state, ev, tevent_timeval_current_ofs(0, 0));
714 if (tevent_req_nomem(subreq, req)) {
715 return tevent_req_post(req, ev);
718 tevent_req_set_callback(subreq, cleanupd_init_trigger, req);
722 static void cleanupd_init_trigger(struct tevent_req *subreq)
724 struct tevent_req *req = tevent_req_callback_data(
725 subreq, struct tevent_req);
726 struct cleanup_init_state *state = tevent_req_data(
727 req, struct cleanup_init_state);
730 DBG_NOTICE("Triggering cleanupd startup\n");
732 ok = tevent_wakeup_recv(subreq);
735 tevent_req_error(req, ENOMEM);
739 state->ok = cleanupd_init(state->msg, false, state->ppid);
741 DBG_WARNING("cleanupd restarted\n");
742 tevent_req_done(req);
746 DBG_NOTICE("cleanupd startup failed, rescheduling\n");
748 subreq = tevent_wakeup_send(state, state->ev,
749 tevent_timeval_current_ofs(1, 0));
750 if (tevent_req_nomem(subreq, req)) {
751 DBG_ERR("scheduling cleanupd restart failed, giving up\n");
755 tevent_req_set_callback(subreq, cleanupd_init_trigger, req);
759 static bool cleanupd_init_recv(struct tevent_req *req)
761 struct cleanup_init_state *state = tevent_req_data(
762 req, struct cleanup_init_state);
768 at most every smbd:cleanuptime seconds (default 20), we scan the BRL
769 and locking database for entries to cleanup. As a side effect this
770 also cleans up dead entries in the connections database (due to the
771 traversal in message_send_all()
773 Using a timer for this prevents a flood of traversals when a large
774 number of clients disconnect at the same time (perhaps due to a
778 static void cleanup_timeout_fn(struct tevent_context *event_ctx,
779 struct tevent_timer *te,
783 struct smbd_parent_context *parent =
784 talloc_get_type_abort(private_data,
785 struct smbd_parent_context);
787 parent->cleanup_te = NULL;
789 messaging_send_buf(parent->msg_ctx, parent->cleanupd,
790 MSG_SMB_BRL_VALIDATE, NULL, 0);
793 static void cleanupd_started(struct tevent_req *req)
797 struct smbd_parent_context *parent = tevent_req_callback_data(
798 req, struct smbd_parent_context);
800 ok = cleanupd_init_recv(req);
803 DBG_ERR("Failed to restart cleanupd, giving up\n");
807 status = messaging_send(parent->msg_ctx,
809 MSG_SMB_NOTIFY_CLEANUP,
811 if (!NT_STATUS_IS_OK(status)) {
812 DBG_ERR("messaging_send returned %s\n",
817 static void remove_child_pid(struct smbd_parent_context *parent,
819 bool unclean_shutdown)
821 struct smbd_child_pid *child;
825 for (child = parent->children; child != NULL; child = child->next) {
826 if (child->pid == pid) {
827 struct smbd_child_pid *tmp = child;
828 DLIST_REMOVE(parent->children, child);
830 parent->num_children -= 1;
836 /* not all forked child processes are added to the children list */
837 DEBUG(2, ("Could not find child %d -- ignoring\n", (int)pid));
841 if (pid == procid_to_pid(&parent->cleanupd)) {
842 struct tevent_req *req;
844 server_id_set_disconnected(&parent->cleanupd);
846 DBG_WARNING("Restarting cleanupd\n");
847 req = cleanupd_init_send(messaging_tevent_context(parent->msg_ctx),
852 DBG_ERR("Failed to restart cleanupd\n");
855 tevent_req_set_callback(req, cleanupd_started, parent);
859 if (pid == procid_to_pid(&parent->notifyd)) {
860 struct tevent_req *req;
861 struct tevent_context *ev = messaging_tevent_context(
864 server_id_set_disconnected(&parent->notifyd);
866 DBG_WARNING("Restarting notifyd\n");
867 req = notifyd_init_send(ev,
872 DBG_ERR("Failed to restart notifyd\n");
875 tevent_req_set_callback(req, notifyd_started, parent);
879 ok = cleanupdb_store_child(pid, unclean_shutdown);
881 DBG_ERR("cleanupdb_store_child failed\n");
885 if (!server_id_is_disconnected(&parent->cleanupd)) {
886 status = messaging_send(parent->msg_ctx,
888 MSG_SMB_NOTIFY_CLEANUP,
890 if (!NT_STATUS_IS_OK(status)) {
891 DBG_ERR("messaging_send returned %s\n",
896 if (unclean_shutdown) {
897 /* a child terminated uncleanly so tickle all
898 processes to see if they can grab any of the
901 DEBUG(3,(__location__ " Unclean shutdown of pid %u\n",
903 if (parent->cleanup_te == NULL) {
904 /* call the cleanup timer, but not too often */
905 int cleanup_time = lp_parm_int(-1, "smbd", "cleanuptime", 20);
906 parent->cleanup_te = tevent_add_timer(parent->ev_ctx,
908 timeval_current_ofs(cleanup_time, 0),
911 DEBUG(1,("Scheduled cleanup of brl and lock database after unclean shutdown\n"));
916 /****************************************************************************
917 Have we reached the process limit ?
918 ****************************************************************************/
920 static bool allowable_number_of_smbd_processes(struct smbd_parent_context *parent)
922 int max_processes = lp_max_smbd_processes();
927 return parent->num_children < max_processes;
930 static void smbd_sig_chld_handler(struct tevent_context *ev,
931 struct tevent_signal *se,
939 struct smbd_parent_context *parent =
940 talloc_get_type_abort(private_data,
941 struct smbd_parent_context);
943 while ((pid = waitpid(-1, &status, WNOHANG)) > 0) {
944 bool unclean_shutdown = False;
946 /* If the child terminated normally, assume
947 it was an unclean shutdown unless the
950 if (WIFEXITED(status)) {
951 unclean_shutdown = WEXITSTATUS(status);
953 /* If the child terminated due to a signal
954 we always assume it was unclean.
956 if (WIFSIGNALED(status)) {
957 unclean_shutdown = True;
959 remove_child_pid(parent, pid, unclean_shutdown);
963 static void smbd_setup_sig_chld_handler(struct smbd_parent_context *parent)
965 struct tevent_signal *se;
967 se = tevent_add_signal(parent->ev_ctx,
968 parent, /* mem_ctx */
970 smbd_sig_chld_handler,
973 exit_server("failed to setup SIGCHLD handler");
977 static void smbd_open_socket_close_fn(struct tevent_context *ev,
978 struct tevent_fd *fde,
982 /* this might be the socket_wrapper swrap_close() */
986 static void smbd_accept_connection(struct tevent_context *ev,
987 struct tevent_fd *fde,
991 struct smbd_open_socket *s = talloc_get_type_abort(private_data,
992 struct smbd_open_socket);
993 struct messaging_context *msg_ctx = s->parent->msg_ctx;
994 struct sockaddr_storage addr;
995 socklen_t in_addrlen = sizeof(addr);
999 fd = accept(s->fd, (struct sockaddr *)(void *)&addr,&in_addrlen);
1000 if (fd == -1 && errno == EINTR)
1004 DEBUG(0,("accept: %s\n",
1008 smb_set_close_on_exec(fd);
1010 if (s->parent->interactive) {
1011 reinit_after_fork(msg_ctx, ev, true, NULL);
1012 smbd_process(ev, msg_ctx, fd, true);
1013 exit_server_cleanly("end of interactive mode");
1017 if (!allowable_number_of_smbd_processes(s->parent)) {
1024 NTSTATUS status = NT_STATUS_OK;
1027 * Can't use TALLOC_FREE here. Nulling out the argument to it
1028 * would overwrite memory we've just freed.
1030 talloc_free(s->parent);
1033 /* Stop zombies, the parent explicitly handles
1034 * them, counting worker smbds. */
1037 status = smbd_reinit_after_fork(msg_ctx, ev, true, NULL);
1038 if (!NT_STATUS_IS_OK(status)) {
1039 if (NT_STATUS_EQUAL(status,
1040 NT_STATUS_TOO_MANY_OPENED_FILES)) {
1041 DEBUG(0,("child process cannot initialize "
1042 "because too many files are open\n"));
1045 if (lp_clustering() &&
1047 status, NT_STATUS_INTERNAL_DB_ERROR) ||
1049 status, NT_STATUS_CONNECTION_REFUSED))) {
1050 DEBUG(1, ("child process cannot initialize "
1051 "because connection to CTDB "
1053 nt_errstr(status)));
1057 DEBUG(0,("reinit_after_fork() failed\n"));
1058 smb_panic("reinit_after_fork() failed");
1061 smbd_process(ev, msg_ctx, fd, false);
1063 exit_server_cleanly("end of child");
1068 DEBUG(0,("smbd_accept_connection: fork() failed: %s\n",
1072 /* The parent doesn't need this socket */
1075 /* Sun May 6 18:56:14 2001 ackley@cs.unm.edu:
1076 Clear the closed fd info out of server_fd --
1077 and more importantly, out of client_fd in
1078 util_sock.c, to avoid a possible
1079 getpeername failure if we reopen the logs
1080 and use %I in the filename.
1084 add_child_pid(s->parent, pid);
1087 /* Force parent to check log size after
1088 * spawning child. Fix from
1089 * klausr@ITAP.Physik.Uni-Stuttgart.De. The
1090 * parent smbd will log to logserver.smb. It
1091 * writes only two messages for each child
1092 * started/finished. But each child writes,
1093 * say, 50 messages also in logserver.smb,
1094 * begining with the debug_count of the
1095 * parent, before the child opens its own log
1096 * file logserver.client. In a worst case
1097 * scenario the size of logserver.smb would be
1098 * checked after about 50*50=2500 messages
1101 force_check_log_size();
1104 static bool smbd_open_one_socket(struct smbd_parent_context *parent,
1105 struct tevent_context *ev_ctx,
1106 const struct sockaddr_storage *ifss,
1109 struct smbd_open_socket *s;
1111 s = talloc(parent, struct smbd_open_socket);
1117 s->fd = open_socket_in(SOCK_STREAM,
1119 parent->sockets == NULL ? 0 : 2,
1123 DEBUG(0,("smbd_open_one_socket: open_socket_in: "
1124 "%s\n", strerror(errno)));
1127 * We ignore an error here, as we've done before
1132 /* ready to listen */
1133 set_socket_options(s->fd, "SO_KEEPALIVE");
1134 set_socket_options(s->fd, lp_socket_options());
1136 /* Set server socket to
1137 * non-blocking for the accept. */
1138 set_blocking(s->fd, False);
1140 if (listen(s->fd, SMBD_LISTEN_BACKLOG) == -1) {
1141 DEBUG(0,("smbd_open_one_socket: listen: "
1142 "%s\n", strerror(errno)));
1148 s->fde = tevent_add_fd(ev_ctx,
1150 s->fd, TEVENT_FD_READ,
1151 smbd_accept_connection,
1154 DEBUG(0,("smbd_open_one_socket: "
1155 "tevent_add_fd: %s\n",
1161 tevent_fd_set_close_fn(s->fde, smbd_open_socket_close_fn);
1163 DLIST_ADD_END(parent->sockets, s);
1168 /****************************************************************************
1169 Open the socket communication.
1170 ****************************************************************************/
1172 static bool open_sockets_smbd(struct smbd_parent_context *parent,
1173 struct tevent_context *ev_ctx,
1174 struct messaging_context *msg_ctx,
1175 const char *smb_ports)
1177 int num_interfaces = iface_count();
1180 unsigned dns_port = 0;
1187 smbd_setup_sig_chld_handler(parent);
1189 ports = lp_smb_ports();
1191 /* use a reasonable default set of ports - listing on 445 and 139 */
1194 l = str_list_make_v3(talloc_tos(), smb_ports, NULL);
1195 ports = discard_const_p(const char *, l);
1198 for (j = 0; ports && ports[j]; j++) {
1199 unsigned port = atoi(ports[j]);
1201 if (port == 0 || port > 0xffff) {
1202 exit_server_cleanly("Invalid port in the config or on "
1203 "the commandline specified!");
1207 if (lp_interfaces() && lp_bind_interfaces_only()) {
1208 /* We have been given an interfaces line, and been
1209 told to only bind to those interfaces. Create a
1210 socket per interface and bind to only these.
1213 /* Now open a listen socket for each of the
1215 for(i = 0; i < num_interfaces; i++) {
1216 const struct sockaddr_storage *ifss =
1217 iface_n_sockaddr_storage(i);
1219 DEBUG(0,("open_sockets_smbd: "
1220 "interface %d has NULL IP address !\n",
1225 for (j = 0; ports && ports[j]; j++) {
1226 unsigned port = atoi(ports[j]);
1228 /* Keep the first port for mDNS service
1231 if (dns_port == 0) {
1235 if (!smbd_open_one_socket(parent,
1244 /* Just bind to 0.0.0.0 - accept connections
1247 const char *sock_addr;
1249 const char *sock_ptr;
1252 sock_addr = "::,0.0.0.0";
1254 sock_addr = "0.0.0.0";
1257 for (sock_ptr=sock_addr;
1258 next_token_talloc(talloc_tos(), &sock_ptr, &sock_tok, " \t,"); ) {
1259 for (j = 0; ports && ports[j]; j++) {
1260 struct sockaddr_storage ss;
1261 unsigned port = atoi(ports[j]);
1263 /* Keep the first port for mDNS service
1266 if (dns_port == 0) {
1270 /* open an incoming socket */
1271 if (!interpret_string_addr(&ss, sock_tok,
1272 AI_NUMERICHOST|AI_PASSIVE)) {
1277 * If we fail to open any sockets
1278 * in this loop the parent-sockets == NULL
1279 * case below will prevent us from starting.
1282 (void)smbd_open_one_socket(parent,
1290 if (parent->sockets == NULL) {
1291 DEBUG(0,("open_sockets_smbd: No "
1292 "sockets available to bind to.\n"));
1296 /* Listen to messages */
1298 messaging_register(msg_ctx, NULL, MSG_SHUTDOWN, msg_exit_server);
1299 messaging_register(msg_ctx, ev_ctx, MSG_SMB_CONF_UPDATED,
1300 smbd_parent_conf_updated);
1301 messaging_register(msg_ctx, NULL, MSG_SMB_STAT_CACHE_DELETE,
1302 smb_stat_cache_delete);
1303 messaging_register(msg_ctx, NULL, MSG_DEBUG, smbd_msg_debug);
1304 messaging_register(msg_ctx, NULL, MSG_SMB_FORCE_TDIS,
1305 smb_parent_send_to_children);
1306 messaging_register(msg_ctx, NULL, MSG_SMB_KILL_CLIENT_IP,
1307 smb_parent_send_to_children);
1308 messaging_register(msg_ctx, NULL, MSG_SMB_TELL_NUM_CHILDREN,
1309 smb_tell_num_children);
1311 messaging_register(msg_ctx, NULL,
1312 ID_CACHE_DELETE, smbd_parent_id_cache_delete);
1313 messaging_register(msg_ctx, NULL,
1314 ID_CACHE_KILL, smbd_parent_id_cache_kill);
1315 messaging_register(msg_ctx, NULL, MSG_SMB_NOTIFY_STARTED,
1316 smb_parent_send_to_children);
1318 #ifdef CLUSTER_SUPPORT
1319 if (lp_clustering()) {
1320 struct ctdbd_connection *conn = messaging_ctdb_connection();
1322 register_with_ctdbd(conn, CTDB_SRVID_RECONFIGURE,
1323 smbd_parent_ctdb_reconfigured, msg_ctx);
1324 register_with_ctdbd(conn, CTDB_SRVID_SAMBA_NOTIFY,
1325 smbd_parent_ctdb_reconfigured, msg_ctx);
1330 messaging_register(msg_ctx, NULL, MSG_SMB_INJECT_FAULT,
1334 #if defined(DEVELOPER) || defined(ENABLE_SELFTEST)
1335 messaging_register(msg_ctx, NULL, MSG_SMB_SLEEP, msg_sleep);
1338 if (lp_multicast_dns_register() && (dns_port != 0)) {
1339 #ifdef WITH_DNSSD_SUPPORT
1340 smbd_setup_mdns_registration(ev_ctx,
1343 #ifdef WITH_AVAHI_SUPPORT
1346 avahi_conn = avahi_start_register(ev_ctx,
1349 if (avahi_conn == NULL) {
1350 DEBUG(10, ("avahi_start_register failed\n"));
1360 handle stdin becoming readable when we are in --foreground mode
1362 static void smbd_stdin_handler(struct tevent_context *ev,
1363 struct tevent_fd *fde,
1368 if (read(0, &c, 1) != 1) {
1369 /* we have reached EOF on stdin, which means the
1370 parent has exited. Shutdown the server */
1371 exit_server_cleanly("EOF on stdin");
1375 struct smbd_parent_tevent_trace_state {
1379 static void smbd_parent_tevent_trace_callback(enum tevent_trace_point point,
1382 struct smbd_parent_tevent_trace_state *state =
1383 (struct smbd_parent_tevent_trace_state *)private_data;
1386 case TEVENT_TRACE_BEFORE_WAIT:
1388 case TEVENT_TRACE_AFTER_WAIT:
1390 case TEVENT_TRACE_BEFORE_LOOP_ONCE:
1391 TALLOC_FREE(state->frame);
1392 state->frame = talloc_stackframe();
1394 case TEVENT_TRACE_AFTER_LOOP_ONCE:
1395 TALLOC_FREE(state->frame);
1402 static void smbd_parent_loop(struct tevent_context *ev_ctx,
1403 struct smbd_parent_context *parent)
1405 struct smbd_parent_tevent_trace_state trace_state = {
1410 tevent_set_trace_callback(ev_ctx, smbd_parent_tevent_trace_callback,
1413 /* now accept incoming connections - forking a new process
1414 for each incoming connection */
1415 DEBUG(2,("waiting for connections\n"));
1417 ret = tevent_loop_wait(ev_ctx);
1419 DEBUG(0, ("tevent_loop_wait failed: %d, %s, exiting\n",
1420 ret, strerror(errno)));
1423 TALLOC_FREE(trace_state.frame);
1425 /* NOTREACHED return True; */
1429 /****************************************************************************
1430 Initialise connect, service and file structs.
1431 ****************************************************************************/
1433 static bool init_structs(void )
1436 * Set the machine NETBIOS name if not already
1437 * set from the config file.
1443 if (!secrets_init())
1449 static void smbd_parent_sig_term_handler(struct tevent_context *ev,
1450 struct tevent_signal *se,
1456 exit_server_cleanly("termination signal");
1459 static void smbd_parent_sig_hup_handler(struct tevent_context *ev,
1460 struct tevent_signal *se,
1466 struct smbd_parent_context *parent =
1467 talloc_get_type_abort(private_data,
1468 struct smbd_parent_context);
1470 change_to_root_user();
1471 DEBUG(1,("parent: Reloading services after SIGHUP\n"));
1472 reload_services(NULL, NULL, false);
1474 printing_subsystem_update(parent->ev_ctx, parent->msg_ctx, true);
1477 struct smbd_claim_version_state {
1478 TALLOC_CTX *mem_ctx;
1482 static void smbd_claim_version_parser(const struct g_lock_rec *locks,
1484 const uint8_t *data,
1488 struct smbd_claim_version_state *state = private_data;
1491 state->version = NULL;
1494 if (data[datalen-1] != '\0') {
1495 DBG_WARNING("Invalid samba version\n");
1496 dump_data(DBGLVL_WARNING, data, datalen);
1497 state->version = NULL;
1500 state->version = talloc_strdup(state->mem_ctx, (const char *)data);
1503 static NTSTATUS smbd_claim_version(struct messaging_context *msg,
1504 const char *version)
1506 const char *name = "samba_version_string";
1507 struct smbd_claim_version_state state;
1508 struct g_lock_ctx *ctx;
1511 ctx = g_lock_ctx_init(msg, msg);
1513 DBG_WARNING("g_lock_ctx_init failed\n");
1514 return NT_STATUS_UNSUCCESSFUL;
1517 status = g_lock_lock(ctx, string_term_tdb_data(name), G_LOCK_READ,
1518 (struct timeval) { .tv_sec = 60 });
1519 if (!NT_STATUS_IS_OK(status)) {
1520 DBG_WARNING("g_lock_lock(G_LOCK_READ) failed: %s\n",
1526 state = (struct smbd_claim_version_state) { .mem_ctx = ctx };
1528 status = g_lock_dump(ctx, string_term_tdb_data(name),
1529 smbd_claim_version_parser, &state);
1530 if (!NT_STATUS_IS_OK(status) &&
1531 !NT_STATUS_EQUAL(status, NT_STATUS_NOT_FOUND)) {
1532 DBG_ERR("Could not read samba_version_string\n");
1533 g_lock_unlock(ctx, string_term_tdb_data(name));
1538 if ((state.version != NULL) && (strcmp(version, state.version) == 0)) {
1540 * Leave the read lock for us around. Someone else already
1541 * set the version correctly
1544 return NT_STATUS_OK;
1547 status = g_lock_lock(ctx, string_term_tdb_data(name), G_LOCK_WRITE,
1548 (struct timeval) { .tv_sec = 60 });
1549 if (!NT_STATUS_IS_OK(status)) {
1550 DBG_WARNING("g_lock_lock(G_LOCK_WRITE) failed: %s\n",
1552 DBG_ERR("smbd %s already running, refusing to start "
1553 "version %s\n", state.version, version);
1555 return NT_STATUS_SXS_VERSION_CONFLICT;
1558 status = g_lock_write_data(ctx, string_term_tdb_data(name),
1559 (const uint8_t *)version,
1561 if (!NT_STATUS_IS_OK(status)) {
1562 DBG_WARNING("g_lock_write_data failed: %s\n",
1568 status = g_lock_lock(ctx, string_term_tdb_data(name), G_LOCK_READ,
1569 (struct timeval) { .tv_sec = 60 });
1570 if (!NT_STATUS_IS_OK(status)) {
1571 DBG_WARNING("g_lock_lock(G_LOCK_READ) failed: %s\n",
1578 * Leave "ctx" dangling so that g_lock.tdb keeps opened.
1580 return NT_STATUS_OK;
1583 /****************************************************************************
1585 ****************************************************************************/
1587 /* Declare prototype for build_options() to avoid having to run it through
1588 mkproto.h. Mixing $(builddir) and $(srcdir) source files in the current
1589 prototype generation system is too complicated. */
1591 extern void build_options(bool screen);
1593 int main(int argc,const char *argv[])
1595 /* shall I run as a daemon */
1596 bool is_daemon = false;
1597 bool interactive = false;
1599 bool no_process_group = false;
1600 bool log_stdout = false;
1602 char *profile_level = NULL;
1605 bool print_build_options = False;
1606 struct server_id main_server_id = {0};
1611 OPT_NO_PROCESS_GROUP,
1614 struct poptOption long_options[] = {
1616 {"daemon", 'D', POPT_ARG_NONE, NULL, OPT_DAEMON, "Become a daemon (default)" },
1617 {"interactive", 'i', POPT_ARG_NONE, NULL, OPT_INTERACTIVE, "Run interactive (not a daemon) and log to stdout"},
1618 {"foreground", 'F', POPT_ARG_NONE, NULL, OPT_FORK, "Run daemon in foreground (for daemontools, etc.)" },
1619 {"no-process-group", '\0', POPT_ARG_NONE, NULL, OPT_NO_PROCESS_GROUP, "Don't create a new process group" },
1620 {"log-stdout", 'S', POPT_ARG_NONE, NULL, OPT_LOG_STDOUT, "Log to stdout" },
1621 {"build-options", 'b', POPT_ARG_NONE, NULL, 'b', "Print build options" },
1622 {"port", 'p', POPT_ARG_STRING, &ports, 0, "Listen on the specified ports"},
1623 {"profiling-level", 'P', POPT_ARG_STRING, &profile_level, 0, "Set profiling level","PROFILE_LEVEL"},
1627 struct smbd_parent_context *parent = NULL;
1630 struct tevent_context *ev_ctx;
1631 struct messaging_context *msg_ctx;
1632 struct server_id server_id;
1633 struct tevent_signal *se;
1634 int profiling_level;
1635 char *np_dir = NULL;
1636 static const struct smbd_shim smbd_shim_fns =
1638 .cancel_pending_lock_requests_by_fid = smbd_cancel_pending_lock_requests_by_fid,
1639 .send_stat_cache_delete_message = smbd_send_stat_cache_delete_message,
1640 .change_to_root_user = smbd_change_to_root_user,
1641 .become_authenticated_pipe_user = smbd_become_authenticated_pipe_user,
1642 .unbecome_authenticated_pipe_user = smbd_unbecome_authenticated_pipe_user,
1644 .contend_level2_oplocks_begin = smbd_contend_level2_oplocks_begin,
1645 .contend_level2_oplocks_end = smbd_contend_level2_oplocks_end,
1647 .become_root = smbd_become_root,
1648 .unbecome_root = smbd_unbecome_root,
1650 .exit_server = smbd_exit_server,
1651 .exit_server_cleanly = smbd_exit_server_cleanly,
1655 * Do this before any other talloc operation
1657 talloc_enable_null_tracking();
1658 frame = talloc_stackframe();
1660 setup_logging(argv[0], DEBUG_DEFAULT_STDOUT);
1664 set_smbd_shim(&smbd_shim_fns);
1666 smbd_init_globals();
1670 #ifdef HAVE_SET_AUTH_PARAMETERS
1671 set_auth_parameters(argc,argv);
1674 pc = poptGetContext("smbd", argc, argv, long_options, 0);
1675 while((opt = poptGetNextOpt(pc)) != -1) {
1680 case OPT_INTERACTIVE:
1686 case OPT_NO_PROCESS_GROUP:
1687 no_process_group = true;
1689 case OPT_LOG_STDOUT:
1693 print_build_options = True;
1696 d_fprintf(stderr, "\nInvalid option %s: %s\n\n",
1697 poptBadOption(pc, 0), poptStrerror(opt));
1698 poptPrintUsage(pc, stderr, 0);
1702 poptFreeContext(pc);
1710 setup_logging(argv[0], DEBUG_STDOUT);
1712 setup_logging(argv[0], DEBUG_FILE);
1715 if (print_build_options) {
1716 build_options(True); /* Display output to screen as well as debug */
1721 /* needed for SecureWare on SCO */
1725 set_remote_machine_name("smbd", False);
1727 if (interactive && (DEBUGLEVEL >= 9)) {
1728 talloc_enable_leak_report();
1731 if (log_stdout && Fork) {
1732 DEBUG(0,("ERROR: Can't log to stdout (-S) unless daemon is in foreground (-F) or interactive (-i)\n"));
1737 * We want to die early if we can't open /dev/urandom
1739 generate_random_buffer(NULL, 0);
1741 /* get initial effective uid and gid */
1744 /* make absolutely sure we run as root - to handle cases where people
1745 are crazy enough to have it setuid */
1746 gain_root_privilege();
1747 gain_root_group_privilege();
1750 dump_core_setup("smbd", lp_logfile(talloc_tos()));
1752 /* we are never interested in SIGPIPE */
1753 BlockSignals(True,SIGPIPE);
1756 /* we are never interested in SIGFPE */
1757 BlockSignals(True,SIGFPE);
1760 #if defined(SIGUSR2)
1761 /* We are no longer interested in USR2 */
1762 BlockSignals(True,SIGUSR2);
1765 /* POSIX demands that signals are inherited. If the invoking process has
1766 * these signals masked, we will have problems, as we won't recieve them. */
1767 BlockSignals(False, SIGHUP);
1768 BlockSignals(False, SIGUSR1);
1769 BlockSignals(False, SIGTERM);
1771 /* Ensure we leave no zombies until we
1772 * correctly set up child handling below. */
1776 /* we want total control over the permissions on created files,
1777 so set our umask to 0 */
1782 DEBUG(0,("smbd version %s started.\n", samba_version_string()));
1783 DEBUGADD(0,("%s\n", COPYRIGHT_STARTUP_MESSAGE));
1785 DEBUG(2,("uid=%d gid=%d euid=%d egid=%d\n",
1786 (int)getuid(),(int)getgid(),(int)geteuid(),(int)getegid()));
1788 /* Output the build options to the debug log */
1789 build_options(False);
1791 if (sizeof(uint16_t) < 2 || sizeof(uint32_t) < 4) {
1792 DEBUG(0,("ERROR: Samba is not configured correctly for the word size on your machine\n"));
1796 if (!lp_load_initial_only(get_dyn_CONFIGFILE())) {
1797 DEBUG(0, ("error opening config file '%s'\n", get_dyn_CONFIGFILE()));
1801 if (!cluster_probe_ok()) {
1805 /* Init the security context and global current_user */
1809 * Initialize the event context. The event context needs to be
1810 * initialized before the messaging context, cause the messaging
1811 * context holds an event context.
1813 ev_ctx = global_event_context();
1814 if (ev_ctx == NULL) {
1819 * Init the messaging context
1820 * FIXME: This should only call messaging_init()
1822 msg_ctx = global_messaging_context();
1823 if (msg_ctx == NULL) {
1828 * Reloading of the printers will not work here as we don't have a
1829 * server info and rpc services set up. It will be called later.
1831 if (!reload_services(NULL, NULL, false)) {
1835 if (lp_server_role() == ROLE_ACTIVE_DIRECTORY_DC
1836 && !lp_parm_bool(-1, "server role check", "inhibit", false)) {
1837 DEBUG(0, ("server role = 'active directory domain controller' not compatible with running smbd standalone. \n"));
1838 DEBUGADD(0, ("You should start 'samba' instead, and it will control starting smbd if required\n"));
1842 /* ...NOTE... Log files are working from this point! */
1844 DEBUG(3,("loaded services\n"));
1848 if (!profile_setup(msg_ctx, False)) {
1849 DEBUG(0,("ERROR: failed to setup profiling\n"));
1853 if (profile_level != NULL) {
1854 profiling_level = atoi(profile_level);
1856 profiling_level = lp_smbd_profiling_level();
1858 main_server_id = messaging_server_id(msg_ctx);
1859 set_profile_level(profiling_level, &main_server_id);
1861 if (!is_daemon && !is_a_socket(0)) {
1863 DEBUG(3, ("Standard input is not a socket, "
1864 "assuming -D option\n"));
1868 * Setting is_daemon here prevents us from eventually calling
1869 * the open_sockets_inetd()
1875 if (is_daemon && !interactive) {
1876 DEBUG(3, ("Becoming a daemon.\n"));
1877 become_daemon(Fork, no_process_group, log_stdout);
1882 * If we're interactive we want to set our own process group for
1883 * signal management.
1885 if (interactive && !no_process_group)
1886 setpgid( (pid_t)0, (pid_t)0);
1889 if (!directory_exist(lp_lock_directory()))
1890 mkdir(lp_lock_directory(), 0755);
1892 if (!directory_exist(lp_pid_directory()))
1893 mkdir(lp_pid_directory(), 0755);
1896 pidfile_create(lp_pid_directory(), "smbd");
1898 status = reinit_after_fork(msg_ctx, ev_ctx, false, NULL);
1899 if (!NT_STATUS_IS_OK(status)) {
1900 exit_daemon("reinit_after_fork() failed", map_errno_from_nt_status(status));
1905 * Do not initialize the parent-child-pipe before becoming a
1906 * daemon: this is used to detect a died parent in the child
1909 status = init_before_fork();
1910 if (!NT_STATUS_IS_OK(status)) {
1911 exit_daemon(nt_errstr(status), map_errno_from_nt_status(status));
1915 parent = talloc_zero(ev_ctx, struct smbd_parent_context);
1917 exit_server("talloc(struct smbd_parent_context) failed");
1919 parent->interactive = interactive;
1920 parent->ev_ctx = ev_ctx;
1921 parent->msg_ctx = msg_ctx;
1924 se = tevent_add_signal(parent->ev_ctx,
1927 smbd_parent_sig_term_handler,
1930 exit_server("failed to setup SIGTERM handler");
1932 se = tevent_add_signal(parent->ev_ctx,
1935 smbd_parent_sig_hup_handler,
1938 exit_server("failed to setup SIGHUP handler");
1941 /* Setup all the TDB's - including CLEAR_IF_FIRST tdb's. */
1943 if (smbd_memcache() == NULL) {
1944 exit_daemon("no memcache available", EACCES);
1947 memcache_set_global(smbd_memcache());
1949 /* Initialise the password backed before the global_sam_sid
1950 to ensure that we fetch from ldap before we make a domain sid up */
1952 if(!initialize_password_db(false, ev_ctx))
1955 if (!secrets_init()) {
1956 exit_daemon("smbd can not open secrets.tdb", EACCES);
1959 if (lp_server_role() == ROLE_DOMAIN_BDC || lp_server_role() == ROLE_DOMAIN_PDC) {
1960 struct loadparm_context *lp_ctx = loadparm_init_s3(NULL, loadparm_s3_helpers());
1961 if (!open_schannel_session_store(NULL, lp_ctx)) {
1962 exit_daemon("ERROR: Samba cannot open schannel store for secured NETLOGON operations.", EACCES);
1964 TALLOC_FREE(lp_ctx);
1967 if(!get_global_sam_sid()) {
1968 exit_daemon("Samba cannot create a SAM SID", EACCES);
1971 server_id = messaging_server_id(msg_ctx);
1972 status = smbXsrv_version_global_init(&server_id);
1973 if (!NT_STATUS_IS_OK(status)) {
1974 exit_daemon("Samba cannot init server context", EACCES);
1977 status = smbXsrv_client_global_init();
1978 if (!NT_STATUS_IS_OK(status)) {
1979 exit_daemon("Samba cannot init clients context", EACCES);
1982 status = smbXsrv_session_global_init(msg_ctx);
1983 if (!NT_STATUS_IS_OK(status)) {
1984 exit_daemon("Samba cannot init session context", EACCES);
1987 status = smbXsrv_tcon_global_init();
1988 if (!NT_STATUS_IS_OK(status)) {
1989 exit_daemon("Samba cannot init tcon context", EACCES);
1992 if (!locking_init())
1993 exit_daemon("Samba cannot init locking", EACCES);
1995 if (!leases_db_init(false)) {
1996 exit_daemon("Samba cannot init leases", EACCES);
1999 if (!smbd_notifyd_init(msg_ctx, interactive, &parent->notifyd)) {
2000 exit_daemon("Samba cannot init notification", EACCES);
2003 if (!cleanupd_init(msg_ctx, interactive, &parent->cleanupd)) {
2004 exit_daemon("Samba cannot init the cleanupd", EACCES);
2007 if (!messaging_parent_dgm_cleanup_init(msg_ctx)) {
2011 if (!smbd_scavenger_init(NULL, msg_ctx, ev_ctx)) {
2012 exit_daemon("Samba cannot init scavenging", EACCES);
2015 if (!W_ERROR_IS_OK(registry_init_full()))
2016 exit_daemon("Samba cannot init registry", EACCES);
2018 /* Open the share_info.tdb here, so we don't have to open
2019 after the fork on every single connection. This is a small
2020 performance improvment and reduces the total number of system
2022 if (!share_info_db_init()) {
2023 exit_daemon("ERROR: failed to load share info db.", EACCES);
2026 status = init_system_session_info(NULL);
2027 if (!NT_STATUS_IS_OK(status)) {
2028 DEBUG(1, ("ERROR: failed to setup system user info: %s.\n",
2029 nt_errstr(status)));
2033 if (!init_guest_session_info(NULL)) {
2034 DEBUG(0,("ERROR: failed to setup guest info.\n"));
2038 if (!file_init_global()) {
2039 DEBUG(0, ("ERROR: file_init_global() failed\n"));
2042 status = smbXsrv_open_global_init();
2043 if (!NT_STATUS_IS_OK(status)) {
2044 exit_daemon("Samba cannot init global open", map_errno_from_nt_status(status));
2047 if (lp_clustering() && !lp_allow_unsafe_cluster_upgrade()) {
2048 status = smbd_claim_version(msg_ctx, samba_version_string());
2049 if (!NT_STATUS_IS_OK(status)) {
2050 DBG_WARNING("Could not claim version: %s\n",
2056 /* This MUST be done before start_epmd() because otherwise
2057 * start_epmd() forks and races against dcesrv_ep_setup() to
2058 * call directory_create_or_exist() */
2059 if (!directory_create_or_exist(lp_ncalrpc_dir(), 0755)) {
2060 DEBUG(0, ("Failed to create pipe directory %s - %s\n",
2061 lp_ncalrpc_dir(), strerror(errno)));
2065 np_dir = talloc_asprintf(talloc_tos(), "%s/np", lp_ncalrpc_dir());
2067 DEBUG(0, ("%s: Out of memory\n", __location__));
2071 if (!directory_create_or_exist_strict(np_dir, geteuid(), 0700)) {
2072 DEBUG(0, ("Failed to create pipe directory %s - %s\n",
2073 np_dir, strerror(errno)));
2077 if (is_daemon && !interactive) {
2078 if (rpc_epmapper_daemon() == RPC_DAEMON_FORK) {
2079 start_epmd(ev_ctx, msg_ctx);
2083 if (!dcesrv_ep_setup(ev_ctx, msg_ctx)) {
2084 exit_daemon("Samba cannot setup ep pipe", EACCES);
2087 if (is_daemon && !interactive) {
2088 daemon_ready("smbd");
2091 /* only start other daemons if we are running as a daemon
2092 * -- bad things will happen if smbd is launched via inetd
2093 * and we fork a copy of ourselves here */
2094 if (is_daemon && !interactive) {
2096 if (rpc_lsasd_daemon() == RPC_DAEMON_FORK) {
2097 start_lsasd(ev_ctx, msg_ctx);
2100 if (rpc_fss_daemon() == RPC_DAEMON_FORK) {
2101 start_fssd(ev_ctx, msg_ctx);
2104 if (!lp__disable_spoolss() &&
2105 (rpc_spoolss_daemon() != RPC_DAEMON_DISABLED)) {
2106 bool bgq = lp_parm_bool(-1, "smbd", "backgroundqueue", true);
2108 if (!printing_subsystem_init(ev_ctx, msg_ctx, true, bgq)) {
2109 exit_daemon("Samba failed to init printing subsystem", EACCES);
2113 #ifdef WITH_SPOTLIGHT
2114 if ((rpc_mdssvc_mode() == RPC_SERVICE_MODE_EXTERNAL) &&
2115 (rpc_mdssd_daemon() == RPC_DAEMON_FORK)) {
2116 start_mdssd(ev_ctx, msg_ctx);
2119 } else if (!lp__disable_spoolss() &&
2120 (rpc_spoolss_daemon() != RPC_DAEMON_DISABLED)) {
2121 if (!printing_subsystem_init(ev_ctx, msg_ctx, false, false)) {
2132 /* Started from inetd. fd 0 is the socket. */
2133 /* We will abort gracefully when the client or remote system
2137 /* close stdin, stdout (if not logging to it), but not stderr */
2138 close_low_fds(true, !debug_get_output_is_stdout(), false);
2145 smbd_setup_sig_chld_handler(parent);
2147 smbd_process(ev_ctx, msg_ctx, sock, true);
2149 exit_server_cleanly(NULL);
2153 if (!open_sockets_smbd(parent, ev_ctx, msg_ctx, ports))
2154 exit_server("open_sockets_smbd() failed");
2156 /* do a printer update now that all messaging has been set up,
2157 * before we allow clients to start connecting */
2158 if (!lp__disable_spoolss() &&
2159 (rpc_spoolss_daemon() != RPC_DAEMON_DISABLED)) {
2160 printing_subsystem_update(ev_ctx, msg_ctx, false);
2164 /* make sure we always have a valid stackframe */
2165 frame = talloc_stackframe();
2168 /* if we are running in the foreground then look for
2169 EOF on stdin, and exit if it happens. This allows
2170 us to die if the parent process dies
2171 Only do this on a pipe or socket, no other device.
2174 if (fstat(0, &st) != 0) {
2177 if (S_ISFIFO(st.st_mode) || S_ISSOCK(st.st_mode)) {
2178 tevent_add_fd(ev_ctx,
2187 smbd_parent_loop(ev_ctx, parent);
2189 exit_server_cleanly(NULL);
git.samba.org / samba.git / blob