2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 bool in_client = False; /* Not in the client by default */
58 extern enum protocol_types Protocol;
59 extern userdom_struct current_user_info;
62 #define GLOBAL_NAME "global"
66 #define PRINTERS_NAME "printers"
70 #define HOMES_NAME "homes"
73 /* the special value for the include parameter
74 * to be interpreted not as a file name but to
75 * trigger loading of the global smb.conf options
77 #ifndef INCLUDE_REGISTRY_NAME
78 #define INCLUDE_REGISTRY_NAME "registry"
81 static int regdb_last_seqnum = 0;
82 static bool include_registry_globals = False;
84 /* some helpful bits */
85 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
86 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
88 #define USERSHARE_VALID 1
89 #define USERSHARE_PENDING_DELETE 2
91 extern int extra_time_offset;
93 static bool defaults_saved = False;
95 typedef struct _param_opt_struct param_opt_struct;
96 struct _param_opt_struct {
97 param_opt_struct *prev, *next;
104 * This structure describes global (ie., server-wide) parameters.
110 char *display_charset;
111 char *szPrintcapname;
112 char *szAddPortCommand;
113 char *szEnumPortsCommand;
114 char *szAddPrinterCommand;
115 char *szDeletePrinterCommand;
116 char *szOs2DriverMap;
120 char *szDefaultService;
124 char *szServerString;
125 char *szAutoServices;
126 char *szPasswdProgram;
130 char *szSMBPasswdFile;
132 char *szPassdbBackend;
133 char **szPreloadModules;
134 char *szPasswordServer;
135 char *szSocketOptions;
137 char *szAfsUsernameMap;
138 int iAfsTokenLifetime;
139 char *szLogNtTokenCommand;
145 char **szWINSservers;
147 char *szRemoteAnnounce;
148 char *szRemoteBrowseSync;
149 char *szSocketAddress;
150 char *szNISHomeMapName;
151 char *szAnnounceVersion; /* This is initialised in init_globals */
154 char **szNetbiosAliases;
155 char *szNetbiosScope;
156 char *szNameResolveOrder;
158 char *szAddUserScript;
159 char *szRenameUserScript;
160 char *szDelUserScript;
161 char *szAddGroupScript;
162 char *szDelGroupScript;
163 char *szAddUserToGroupScript;
164 char *szDelUserFromGroupScript;
165 char *szSetPrimaryGroupScript;
166 char *szAddMachineScript;
167 char *szShutdownScript;
168 char *szAbortShutdownScript;
169 char *szUsernameMapScript;
170 char *szCheckPasswordScript;
177 bool bPassdbExpandExplicit;
178 int AlgorithmicRidBase;
179 char *szTemplateHomedir;
180 char *szTemplateShell;
181 char *szWinbindSeparator;
182 bool bWinbindEnumUsers;
183 bool bWinbindEnumGroups;
184 bool bWinbindUseDefaultDomain;
185 bool bWinbindTrustedDomainsOnly;
186 bool bWinbindNestedGroups;
187 int winbind_expand_groups;
188 bool bWinbindRefreshTickets;
189 bool bWinbindOfflineLogon;
190 bool bWinbindNormalizeNames;
191 bool bWinbindRpcOnly;
192 char **szIdmapDomains;
193 char **szIdmapBackend; /* deprecated */
194 char *szIdmapAllocBackend;
195 char *szAddShareCommand;
196 char *szChangeShareCommand;
197 char *szDeleteShareCommand;
199 char *szGuestaccount;
200 char *szManglingMethod;
201 char **szServicesList;
202 char *szUsersharePath;
203 char *szUsershareTemplateShare;
204 char **szUsersharePrefixAllowList;
205 char **szUsersharePrefixDenyList;
212 int open_files_db_hash_size;
221 bool paranoid_server_security;
224 int iMaxSmbdProcesses;
225 bool bDisableSpoolss;
228 bool enhanced_browsing;
234 int announce_as; /* This is initialised in init_globals */
235 int machine_password_timeout;
237 int oplock_break_wait_time;
238 int winbind_cache_time;
239 int winbind_max_idle_children;
240 char **szWinbindNssInfo;
242 char *szLdapMachineSuffix;
243 char *szLdapUserSuffix;
244 char *szLdapIdmapSuffix;
245 char *szLdapGroupSuffix;
251 char *szIPrintServer;
253 char **szClusterAddresses;
255 int ldap_passwd_sync;
256 int ldap_replication_sleep;
257 int ldap_timeout; /* This is initialised in init_globals */
260 bool bMsAddPrinterWizard;
265 int iPreferredMaster;
268 bool bEncryptPasswords;
273 bool bObeyPamRestrictions;
275 int PrintcapCacheTime;
276 bool bLargeReadwrite;
283 bool bBindInterfacesOnly;
284 bool bPamPasswordChange;
285 bool bUnixPasswdSync;
286 bool bPasswdChatDebug;
287 int iPasswdChatTimeout;
291 bool bNTStatusSupport;
293 int iMaxStatCacheSize;
295 bool bAllowTrustedDomains;
299 bool bClientLanManAuth;
300 bool bClientNTLMv2Auth;
301 bool bClientPlaintextAuth;
302 bool bClientUseSpnego;
303 bool bDebugPrefixTimestamp;
304 bool bDebugHiresTimestamp;
308 bool bEnableCoreFiles;
311 bool bHostnameLookups;
312 bool bUnixExtensions;
313 bool bDisableNetbios;
314 bool bUseKerberosKeytab;
315 bool bDeferSharingViolations;
316 bool bEnablePrivileges;
318 bool bUsershareOwnerOnly;
319 bool bUsershareAllowGuests;
320 bool bRegistryShares;
321 int restrict_anonymous;
322 int name_cache_timeout;
325 int client_ldap_sasl_wrapping;
326 int iUsershareMaxShares;
328 int iIdmapNegativeCacheTime;
333 param_opt_struct *param_opt;
336 static global Globals;
339 * This structure describes a single service.
345 time_t usershare_last_mod;
349 char **szInvalidUsers;
357 char *szRootPostExec;
359 char *szPrintcommand;
362 char *szLppausecommand;
363 char *szLpresumecommand;
364 char *szQueuepausecommand;
365 char *szQueueresumecommand;
367 char *szPrintjobUsername;
375 char *szVetoOplockFiles;
381 char **printer_admin;
386 char *szAioWriteBehind;
390 int iMaxReportedPrintJobs;
393 int iCreate_force_mode;
395 int iSecurity_force_mode;
398 int iDir_Security_mask;
399 int iDir_Security_force_mode;
403 int iOplockContentionLimit;
408 bool bRootpreexecClose;
411 bool bShortCasePreserve;
413 bool bHideSpecialFiles;
414 bool bHideUnReadable;
415 bool bHideUnWriteableFiles;
426 bool bStoreDosAttributes;
439 bool bStrictAllocate;
442 struct bitmap *copymap;
443 bool bDeleteReadonly;
445 bool bDeleteVetoFiles;
448 bool bDosFiletimeResolution;
449 bool bFakeDirCreateTimes;
455 bool bUseClientDriver;
456 bool bDefaultDevmode;
457 bool bForcePrintername;
459 bool bForceUnknownAclUser;
462 bool bMap_acl_inherit;
465 bool bAclCheckPermissions;
466 bool bAclMapFullControl;
467 bool bAclGroupControl;
469 bool bKernelChangeNotify;
470 int iallocation_roundup_size;
474 int iDirectoryNameCacheSize;
476 param_opt_struct *param_opt;
478 char dummy[3]; /* for alignment */
482 /* This is a default service used to prime a services structure */
483 static service sDefault = {
485 False, /* not autoloaded */
486 0, /* not a usershare */
487 (time_t)0, /* No last mod time */
488 NULL, /* szService */
490 NULL, /* szUsername */
491 NULL, /* szInvalidUsers */
492 NULL, /* szValidUsers */
493 NULL, /* szAdminUsers */
495 NULL, /* szInclude */
496 NULL, /* szPreExec */
497 NULL, /* szPostExec */
498 NULL, /* szRootPreExec */
499 NULL, /* szRootPostExec */
500 NULL, /* szCupsOptions */
501 NULL, /* szPrintcommand */
502 NULL, /* szLpqcommand */
503 NULL, /* szLprmcommand */
504 NULL, /* szLppausecommand */
505 NULL, /* szLpresumecommand */
506 NULL, /* szQueuepausecommand */
507 NULL, /* szQueueresumecommand */
508 NULL, /* szPrintername */
509 NULL, /* szPrintjobUsername */
510 NULL, /* szDontdescend */
511 NULL, /* szHostsallow */
512 NULL, /* szHostsdeny */
513 NULL, /* szMagicScript */
514 NULL, /* szMagicOutput */
515 NULL, /* szVetoFiles */
516 NULL, /* szHideFiles */
517 NULL, /* szVetoOplockFiles */
519 NULL, /* force user */
520 NULL, /* force group */
522 NULL, /* writelist */
523 NULL, /* printer admin */
526 NULL, /* vfs objects */
527 NULL, /* szMSDfsProxy */
528 NULL, /* szAioWriteBehind */
530 0, /* iMinPrintSpace */
531 1000, /* iMaxPrintJobs */
532 0, /* iMaxReportedPrintJobs */
533 0, /* iWriteCacheSize */
534 0744, /* iCreate_mask */
535 0000, /* iCreate_force_mode */
536 0777, /* iSecurity_mask */
537 0, /* iSecurity_force_mode */
538 0755, /* iDir_mask */
539 0000, /* iDir_force_mode */
540 0777, /* iDir_Security_mask */
541 0, /* iDir_Security_force_mode */
542 0, /* iMaxConnections */
543 CASE_LOWER, /* iDefaultCase */
544 DEFAULT_PRINTING, /* iPrinting */
545 2, /* iOplockContentionLimit */
547 1024, /* iBlock_size */
548 0, /* iDfreeCacheTime */
549 False, /* bPreexecClose */
550 False, /* bRootpreexecClose */
551 Auto, /* case sensitive */
552 True, /* case preserve */
553 True, /* short case preserve */
554 True, /* bHideDotFiles */
555 False, /* bHideSpecialFiles */
556 False, /* bHideUnReadable */
557 False, /* bHideUnWriteableFiles */
558 True, /* bBrowseable */
559 True, /* bAvailable */
560 True, /* bRead_only */
561 True, /* bNo_set_dir */
562 False, /* bGuest_only */
563 False, /* bGuest_ok */
564 False, /* bPrint_ok */
565 False, /* bMap_system */
566 False, /* bMap_hidden */
567 True, /* bMap_archive */
568 False, /* bStoreDosAttributes */
569 False, /* bDmapiSupport */
571 Auto, /* iStrictLocking */
572 True, /* bPosixLocking */
573 True, /* bShareModes */
575 True, /* bLevel2OpLocks */
576 False, /* bOnlyUser */
577 True, /* bMangledNames */
578 True, /* bWidelinks */
579 True, /* bSymlinks */
580 False, /* bSyncAlways */
581 False, /* bStrictAllocate */
582 False, /* bStrictSync */
583 '~', /* magic char */
585 False, /* bDeleteReadonly */
586 False, /* bFakeOplocks */
587 False, /* bDeleteVetoFiles */
588 False, /* bDosFilemode */
589 True, /* bDosFiletimes */
590 False, /* bDosFiletimeResolution */
591 False, /* bFakeDirCreateTimes */
592 True, /* bBlockingLocks */
593 False, /* bInheritPerms */
594 False, /* bInheritACLS */
595 False, /* bInheritOwner */
596 False, /* bMSDfsRoot */
597 False, /* bUseClientDriver */
598 True, /* bDefaultDevmode */
599 False, /* bForcePrintername */
600 True, /* bNTAclSupport */
601 False, /* bForceUnknownAclUser */
602 False, /* bUseSendfile */
603 False, /* bProfileAcls */
604 False, /* bMap_acl_inherit */
605 False, /* bAfs_Share */
606 False, /* bEASupport */
607 True, /* bAclCheckPermissions */
608 True, /* bAclMapFullControl */
609 False, /* bAclGroupControl */
610 True, /* bChangeNotify */
611 True, /* bKernelChangeNotify */
612 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
613 0, /* iAioReadSize */
614 0, /* iAioWriteSize */
615 MAP_READONLY_YES, /* iMap_readonly */
616 #ifdef BROKEN_DIRECTORY_HANDLING
617 0, /* iDirectoryNameCacheSize */
619 100, /* iDirectoryNameCacheSize */
621 Auto, /* ismb_encrypt */
622 NULL, /* Parametric options */
627 /* local variables */
628 static service **ServicePtrs = NULL;
629 static int iNumServices = 0;
630 static int iServiceIndex = 0;
631 static struct db_context *ServiceHash;
632 static int *invalid_services = NULL;
633 static int num_invalid_services = 0;
634 static bool bInGlobalSection = True;
635 static bool bGlobalOnly = False;
636 static int server_role;
637 static int default_server_announce;
639 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
641 /* prototypes for the special type handlers */
642 static bool handle_include( int snum, const char *pszParmValue, char **ptr);
643 static bool handle_copy( int snum, const char *pszParmValue, char **ptr);
644 static bool handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
645 static bool handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
646 static bool handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
647 static bool handle_debug_list( int snum, const char *pszParmValue, char **ptr );
648 static bool handle_workgroup( int snum, const char *pszParmValue, char **ptr );
649 static bool handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
650 static bool handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
651 static bool handle_charset( int snum, const char *pszParmValue, char **ptr );
652 static bool handle_printing( int snum, const char *pszParmValue, char **ptr);
654 static void set_server_role(void);
655 static void set_default_server_announce_type(void);
656 static void set_allowed_client_auth(void);
658 static const struct enum_list enum_protocol[] = {
659 {PROTOCOL_NT1, "NT1"},
660 {PROTOCOL_LANMAN2, "LANMAN2"},
661 {PROTOCOL_LANMAN1, "LANMAN1"},
662 {PROTOCOL_CORE, "CORE"},
663 {PROTOCOL_COREPLUS, "COREPLUS"},
664 {PROTOCOL_COREPLUS, "CORE+"},
668 static const struct enum_list enum_security[] = {
669 {SEC_SHARE, "SHARE"},
671 {SEC_SERVER, "SERVER"},
672 {SEC_DOMAIN, "DOMAIN"},
679 static const struct enum_list enum_printing[] = {
680 {PRINT_SYSV, "sysv"},
682 {PRINT_HPUX, "hpux"},
686 {PRINT_LPRNG, "lprng"},
687 {PRINT_CUPS, "cups"},
688 {PRINT_IPRINT, "iprint"},
690 {PRINT_LPROS2, "os2"},
692 {PRINT_TEST, "test"},
694 #endif /* DEVELOPER */
698 static const struct enum_list enum_ldap_sasl_wrapping[] = {
700 {ADS_AUTH_SASL_SIGN, "sign"},
701 {ADS_AUTH_SASL_SEAL, "seal"},
705 static const struct enum_list enum_ldap_ssl[] = {
706 {LDAP_SSL_OFF, "no"},
707 {LDAP_SSL_OFF, "No"},
708 {LDAP_SSL_OFF, "off"},
709 {LDAP_SSL_OFF, "Off"},
710 {LDAP_SSL_START_TLS, "start tls"},
711 {LDAP_SSL_START_TLS, "Start_tls"},
715 static const struct enum_list enum_ldap_passwd_sync[] = {
716 {LDAP_PASSWD_SYNC_OFF, "no"},
717 {LDAP_PASSWD_SYNC_OFF, "No"},
718 {LDAP_PASSWD_SYNC_OFF, "off"},
719 {LDAP_PASSWD_SYNC_OFF, "Off"},
720 {LDAP_PASSWD_SYNC_ON, "Yes"},
721 {LDAP_PASSWD_SYNC_ON, "yes"},
722 {LDAP_PASSWD_SYNC_ON, "on"},
723 {LDAP_PASSWD_SYNC_ON, "On"},
724 {LDAP_PASSWD_SYNC_ONLY, "Only"},
725 {LDAP_PASSWD_SYNC_ONLY, "only"},
729 /* Types of machine we can announce as. */
730 #define ANNOUNCE_AS_NT_SERVER 1
731 #define ANNOUNCE_AS_WIN95 2
732 #define ANNOUNCE_AS_WFW 3
733 #define ANNOUNCE_AS_NT_WORKSTATION 4
735 static const struct enum_list enum_announce_as[] = {
736 {ANNOUNCE_AS_NT_SERVER, "NT"},
737 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
738 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
739 {ANNOUNCE_AS_WIN95, "win95"},
740 {ANNOUNCE_AS_WFW, "WfW"},
744 static const struct enum_list enum_map_readonly[] = {
745 {MAP_READONLY_NO, "no"},
746 {MAP_READONLY_NO, "false"},
747 {MAP_READONLY_NO, "0"},
748 {MAP_READONLY_YES, "yes"},
749 {MAP_READONLY_YES, "true"},
750 {MAP_READONLY_YES, "1"},
751 {MAP_READONLY_PERMISSIONS, "permissions"},
752 {MAP_READONLY_PERMISSIONS, "perms"},
756 static const struct enum_list enum_case[] = {
757 {CASE_LOWER, "lower"},
758 {CASE_UPPER, "upper"},
762 static const struct enum_list enum_bool_auto[] = {
773 /* Client-side offline caching policy types */
774 #define CSC_POLICY_MANUAL 0
775 #define CSC_POLICY_DOCUMENTS 1
776 #define CSC_POLICY_PROGRAMS 2
777 #define CSC_POLICY_DISABLE 3
779 static const struct enum_list enum_csc_policy[] = {
780 {CSC_POLICY_MANUAL, "manual"},
781 {CSC_POLICY_DOCUMENTS, "documents"},
782 {CSC_POLICY_PROGRAMS, "programs"},
783 {CSC_POLICY_DISABLE, "disable"},
787 /* SMB signing types. */
788 static const struct enum_list enum_smb_signing_vals[] = {
800 {Required, "required"},
801 {Required, "mandatory"},
803 {Required, "forced"},
804 {Required, "enforced"},
808 /* ACL compatibility options. */
809 static const struct enum_list enum_acl_compat_vals[] = {
810 { ACL_COMPAT_AUTO, "auto" },
811 { ACL_COMPAT_WINNT, "winnt" },
812 { ACL_COMPAT_WIN2K, "win2k" },
817 Do you want session setups at user level security with a invalid
818 password to be rejected or allowed in as guest? WinNT rejects them
819 but it can be a pain as it means "net view" needs to use a password
821 You have 3 choices in the setting of map_to_guest:
823 "Never" means session setups with an invalid password
824 are rejected. This is the default.
826 "Bad User" means session setups with an invalid password
827 are rejected, unless the username does not exist, in which case it
828 is treated as a guest login
830 "Bad Password" means session setups with an invalid password
831 are treated as a guest login
833 Note that map_to_guest only has an effect in user or server
837 static const struct enum_list enum_map_to_guest[] = {
838 {NEVER_MAP_TO_GUEST, "Never"},
839 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
840 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
841 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
845 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
847 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
848 * screen in SWAT. This is used to exclude parameters as well as to squash all
849 * parameters that have been duplicated by pseudonyms.
851 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
852 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
853 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
856 * NOTE2: Handling of duplicated (synonym) paramters:
857 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
858 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
859 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
860 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
863 static struct parm_struct parm_table[] = {
864 {N_("Base Options"), P_SEP, P_SEPARATOR},
866 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
867 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
868 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
869 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
870 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
871 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
872 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
874 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
876 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
877 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
878 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
879 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
880 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
881 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
883 {N_("Security Options"), P_SEP, P_SEPARATOR},
885 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
886 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
887 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
888 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
889 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
890 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
891 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
892 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
893 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
894 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
895 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
896 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
897 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
898 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
899 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
900 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
901 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
902 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
903 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
904 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
906 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
907 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
908 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
909 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
910 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
911 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
912 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
913 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
914 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
915 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
916 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
917 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
918 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
919 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
920 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
921 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
923 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
924 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
925 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
927 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
928 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
929 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
930 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
931 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
932 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
933 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
934 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
935 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
937 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
938 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
939 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
940 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
942 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
943 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
944 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
945 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
946 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
947 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
948 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
950 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
951 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
952 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
953 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
954 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
955 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
956 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
957 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
958 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
959 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
960 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
962 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
963 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
965 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
966 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
967 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
968 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
969 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
970 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
971 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
973 {N_("Logging Options"), P_SEP, P_SEPARATOR},
975 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
976 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
977 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
978 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
979 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
981 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
982 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
983 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
984 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
985 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
986 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
987 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
988 {"debug class", P_BOOL, P_GLOBAL, &Globals.bDebugClass, NULL, NULL, FLAG_ADVANCED},
989 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
991 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
993 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
994 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
995 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
996 {"aio write behind", P_STRING, P_LOCAL, &sDefault.szAioWriteBehind, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
997 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
998 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
999 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1000 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1001 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1002 {"min receivefile size", P_INTEGER, P_GLOBAL, &Globals.iminreceivefile, NULL, NULL, FLAG_ADVANCED},
1003 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
1004 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
1005 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
1006 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
1008 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1009 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1010 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1011 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1012 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1013 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1014 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1016 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1017 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1018 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1019 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1020 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1021 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1023 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1024 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1025 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1026 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1027 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1028 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1029 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1030 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1031 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1032 {"smb encrypt", P_ENUM, P_LOCAL, &sDefault.ismb_encrypt, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1033 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1034 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1035 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1036 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1038 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1040 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1041 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1042 {"getwd cache", P_BOOL, P_GLOBAL, &Globals.getwd_cache, NULL, NULL, FLAG_ADVANCED},
1043 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1044 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1045 {"directory name cache size", P_INTEGER, P_LOCAL, &sDefault.iDirectoryNameCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1046 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1048 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1049 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1050 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1051 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1052 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1053 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1054 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1056 {"socket options", P_STRING, P_GLOBAL, &Globals.szSocketOptions, NULL, NULL, FLAG_ADVANCED},
1057 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1058 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1059 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1060 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1061 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1062 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1063 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1065 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1066 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1067 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1068 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1070 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1072 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1073 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1074 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1075 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1076 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1077 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1078 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1079 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1080 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1081 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1083 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1084 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1085 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1086 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1087 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1088 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1089 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1090 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1091 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1092 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1094 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1095 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1096 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1097 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1098 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1099 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1101 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1102 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1103 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1104 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1105 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1106 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1108 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1109 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1110 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1112 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1113 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1114 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1115 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1116 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1117 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1118 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1120 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1121 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1122 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1123 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1124 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1125 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1126 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1127 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1128 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1129 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1130 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1131 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1132 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1133 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1134 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1137 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1139 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1141 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1143 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1144 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1145 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1146 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1147 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1148 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1149 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1150 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1151 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1152 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1153 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1154 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1156 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1157 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1158 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1159 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1160 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1162 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1164 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1165 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1166 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1167 {"preferred master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1168 {"prefered master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1169 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1170 {"domain master", P_ENUM, P_GLOBAL, &Globals.iDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1171 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1172 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1173 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1174 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1176 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1178 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1179 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1181 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1182 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1183 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1185 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1187 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1188 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1189 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1190 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1191 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1192 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1194 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1195 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1196 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1197 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1198 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1199 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1200 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1202 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1204 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1206 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1207 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1208 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1209 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1210 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1211 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1212 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1213 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1214 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1215 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1216 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1218 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1219 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1220 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1221 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1223 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1224 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1226 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1227 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1228 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1229 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1230 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1231 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1233 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1234 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1235 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1238 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1239 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1240 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1241 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1242 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1243 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1244 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1245 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1246 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1247 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1248 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1249 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1250 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1251 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1252 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1253 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1254 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1256 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1257 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1258 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1259 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1261 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1262 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1263 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1264 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1265 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1266 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1267 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1268 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1269 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1270 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1271 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1272 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1273 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1274 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1275 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1276 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1277 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1278 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1279 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1280 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1281 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1282 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1283 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1284 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1285 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1286 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1288 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1289 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1291 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1293 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1294 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1297 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1298 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1299 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1301 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1303 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1304 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1305 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1306 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1307 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1308 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1309 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1310 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1311 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1312 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1313 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1314 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1317 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1318 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1319 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1320 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1321 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1322 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1323 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1324 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1325 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1326 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1327 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1329 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1332 /***************************************************************************
1333 Initialise the sDefault parameter structure for the printer values.
1334 ***************************************************************************/
1336 static void init_printer_values(service *pService)
1338 /* choose defaults depending on the type of printing */
1339 switch (pService->iPrinting) {
1344 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1345 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1346 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1351 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1352 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1353 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1354 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1355 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1356 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1357 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1363 /* set the lpq command to contain the destination printer
1364 name only. This is used by cups_queue_get() */
1365 string_set(&pService->szLpqcommand, "%p");
1366 string_set(&pService->szLprmcommand, "");
1367 string_set(&pService->szPrintcommand, "");
1368 string_set(&pService->szLppausecommand, "");
1369 string_set(&pService->szLpresumecommand, "");
1370 string_set(&pService->szQueuepausecommand, "");
1371 string_set(&pService->szQueueresumecommand, "");
1373 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1374 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1375 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1376 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1377 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1378 string_set(&pService->szQueuepausecommand, "disable '%p'");
1379 string_set(&pService->szQueueresumecommand, "enable '%p'");
1380 #endif /* HAVE_CUPS */
1385 string_set(&pService->szLpqcommand, "lpstat -o%p");
1386 string_set(&pService->szLprmcommand, "cancel %p-%j");
1387 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1388 string_set(&pService->szQueuepausecommand, "disable %p");
1389 string_set(&pService->szQueueresumecommand, "enable %p");
1391 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1392 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1397 string_set(&pService->szLpqcommand, "lpq -P%p");
1398 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1399 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1405 string_set(&pService->szPrintcommand, "vlp print %p %s");
1406 string_set(&pService->szLpqcommand, "vlp lpq %p");
1407 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1408 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1409 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1410 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1411 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1413 #endif /* DEVELOPER */
1418 /***************************************************************************
1419 Initialise the global parameter structure.
1420 ***************************************************************************/
1422 static void init_globals(bool first_time_only)
1424 static bool done_init = False;
1427 /* If requested to initialize only once and we've already done it... */
1428 if (first_time_only && done_init) {
1429 /* ... then we have nothing more to do */
1436 /* The logfile can be set before this is invoked. Free it if so. */
1437 if (Globals.szLogFile != NULL) {
1438 string_free(&Globals.szLogFile);
1439 Globals.szLogFile = NULL;
1442 memset((void *)&Globals, '\0', sizeof(Globals));
1444 for (i = 0; parm_table[i].label; i++)
1445 if ((parm_table[i].type == P_STRING ||
1446 parm_table[i].type == P_USTRING) &&
1448 string_set((char **)parm_table[i].ptr, "");
1450 string_set(&sDefault.fstype, FSTYPE_STRING);
1451 string_set(&sDefault.szPrintjobUsername, "%U");
1453 init_printer_values(&sDefault);
1459 DEBUG(3, ("Initialising global parameters\n"));
1461 string_set(&Globals.szSMBPasswdFile, get_dyn_SMB_PASSWD_FILE());
1462 string_set(&Globals.szPrivateDir, get_dyn_PRIVATE_DIR());
1464 /* use the new 'hash2' method by default, with a prefix of 1 */
1465 string_set(&Globals.szManglingMethod, "hash2");
1466 Globals.mangle_prefix = 1;
1468 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1470 /* using UTF8 by default allows us to support all chars */
1471 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1473 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1474 /* If the system supports nl_langinfo(), try to grab the value
1475 from the user's locale */
1476 string_set(&Globals.display_charset, "LOCALE");
1478 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1481 /* Use codepage 850 as a default for the dos character set */
1482 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1485 * Allow the default PASSWD_CHAT to be overridden in local.h.
1487 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1489 set_global_myname(myhostname());
1490 string_set(&Globals.szNetbiosName,global_myname());
1492 set_global_myworkgroup(WORKGROUP);
1493 string_set(&Globals.szWorkgroup, lp_workgroup());
1495 string_set(&Globals.szPasswdProgram, "");
1496 string_set(&Globals.szPidDir, get_dyn_PIDDIR());
1497 string_set(&Globals.szLockDir, get_dyn_LOCKDIR());
1498 string_set(&Globals.szSocketAddress, "0.0.0.0");
1500 if (asprintf(&s, "Samba %s", SAMBA_VERSION_STRING) < 0) {
1501 smb_panic("init_globals: ENOMEM");
1503 string_set(&Globals.szServerString, s);
1505 if (asprintf(&s, "%d.%d", DEFAULT_MAJOR_VERSION,
1506 DEFAULT_MINOR_VERSION) < 0) {
1507 smb_panic("init_globals: ENOMEM");
1509 string_set(&Globals.szAnnounceVersion, s);
1512 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1515 string_set(&Globals.szSocketOptions, DEFAULT_SOCKET_OPTIONS);
1517 string_set(&Globals.szLogonDrive, "");
1518 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1519 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1520 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1522 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1523 string_set(&Globals.szPasswordServer, "*");
1525 Globals.AlgorithmicRidBase = BASE_RID;
1527 Globals.bLoadPrinters = True;
1528 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1530 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1531 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1532 Globals.max_xmit = 0x4104;
1533 Globals.max_mux = 50; /* This is *needed* for profile support. */
1534 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1535 Globals.bDisableSpoolss = False;
1536 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1537 Globals.pwordlevel = 0;
1538 Globals.unamelevel = 0;
1539 Globals.deadtime = 0;
1540 Globals.getwd_cache = true;
1541 Globals.bLargeReadwrite = True;
1542 Globals.max_log_size = 5000;
1543 Globals.max_open_files = MAX_OPEN_FILES;
1544 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1545 Globals.maxprotocol = PROTOCOL_NT1;
1546 Globals.minprotocol = PROTOCOL_CORE;
1547 Globals.security = SEC_USER;
1548 Globals.paranoid_server_security = True;
1549 Globals.bEncryptPasswords = True;
1550 Globals.bUpdateEncrypt = False;
1551 Globals.clientSchannel = Auto;
1552 Globals.serverSchannel = Auto;
1553 Globals.bReadRaw = True;
1554 Globals.bWriteRaw = True;
1555 Globals.bNullPasswords = False;
1556 Globals.bObeyPamRestrictions = False;
1558 Globals.bSyslogOnly = False;
1559 Globals.bTimestampLogs = True;
1560 string_set(&Globals.szLogLevel, "0");
1561 Globals.bDebugPrefixTimestamp = False;
1562 Globals.bDebugHiresTimestamp = False;
1563 Globals.bDebugPid = False;
1564 Globals.bDebugUid = False;
1565 Globals.bDebugClass = False;
1566 Globals.bEnableCoreFiles = True;
1567 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1568 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1569 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1570 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1571 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1572 Globals.lm_interval = 60;
1573 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1574 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1575 Globals.bNISHomeMap = False;
1576 #ifdef WITH_NISPLUS_HOME
1577 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1579 string_set(&Globals.szNISHomeMapName, "auto.home");
1582 Globals.bTimeServer = False;
1583 Globals.bBindInterfacesOnly = False;
1584 Globals.bUnixPasswdSync = False;
1585 Globals.bPamPasswordChange = False;
1586 Globals.bPasswdChatDebug = False;
1587 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1588 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1589 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1590 Globals.bStatCache = True; /* use stat cache by default */
1591 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1592 Globals.restrict_anonymous = 0;
1593 Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
1594 Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
1595 Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
1596 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
1597 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1598 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1600 Globals.map_to_guest = 0; /* By Default, "Never" */
1601 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1602 Globals.enhanced_browsing = true;
1603 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1604 #ifdef MMAP_BLACKLIST
1605 Globals.bUseMmap = False;
1607 Globals.bUseMmap = True;
1609 Globals.bUnixExtensions = True;
1610 Globals.bResetOnZeroVC = False;
1612 /* hostname lookups can be very expensive and are broken on
1613 a large number of sites (tridge) */
1614 Globals.bHostnameLookups = False;
1616 string_set(&Globals.szPassdbBackend, "smbpasswd");
1617 string_set(&Globals.szLdapSuffix, "");
1618 string_set(&Globals.szLdapMachineSuffix, "");
1619 string_set(&Globals.szLdapUserSuffix, "");
1620 string_set(&Globals.szLdapGroupSuffix, "");
1621 string_set(&Globals.szLdapIdmapSuffix, "");
1623 string_set(&Globals.szLdapAdminDn, "");
1624 Globals.ldap_ssl = LDAP_SSL_ON;
1625 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1626 Globals.ldap_delete_dn = False;
1627 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1628 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1629 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1631 /* This is what we tell the afs client. in reality we set the token
1632 * to never expire, though, when this runs out the afs client will
1633 * forget the token. Set to 0 to get NEVERDATE.*/
1634 Globals.iAfsTokenLifetime = 604800;
1636 /* these parameters are set to defaults that are more appropriate
1637 for the increasing samba install base:
1639 as a member of the workgroup, that will possibly become a
1640 _local_ master browser (lm = True). this is opposed to a forced
1641 local master browser startup (pm = True).
1643 doesn't provide WINS server service by default (wsupp = False),
1644 and doesn't provide domain master browser services by default, either.
1648 Globals.bMsAddPrinterWizard = True;
1649 Globals.os_level = 20;
1650 Globals.bLocalMaster = True;
1651 Globals.iDomainMaster = Auto; /* depending on bDomainLogons */
1652 Globals.bDomainLogons = False;
1653 Globals.bBrowseList = True;
1654 Globals.bWINSsupport = False;
1655 Globals.bWINSproxy = False;
1657 Globals.bDNSproxy = True;
1659 /* this just means to use them if they exist */
1660 Globals.bKernelOplocks = True;
1662 Globals.bAllowTrustedDomains = True;
1664 string_set(&Globals.szTemplateShell, "/bin/false");
1665 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1666 string_set(&Globals.szWinbindSeparator, "\\");
1668 string_set(&Globals.szCupsServer, "");
1669 string_set(&Globals.szIPrintServer, "");
1671 string_set(&Globals.ctdbdSocket, "");
1672 Globals.szClusterAddresses = NULL;
1673 Globals.clustering = False;
1675 Globals.winbind_cache_time = 300; /* 5 minutes */
1676 Globals.bWinbindEnumUsers = False;
1677 Globals.bWinbindEnumGroups = False;
1678 Globals.bWinbindUseDefaultDomain = False;
1679 Globals.bWinbindTrustedDomainsOnly = False;
1680 Globals.bWinbindNestedGroups = True;
1681 Globals.winbind_expand_groups = 1;
1682 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1683 Globals.bWinbindRefreshTickets = False;
1684 Globals.bWinbindOfflineLogon = False;
1686 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1687 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1689 Globals.bPassdbExpandExplicit = False;
1691 Globals.name_cache_timeout = 660; /* In seconds */
1693 Globals.bUseSpnego = True;
1694 Globals.bClientUseSpnego = True;
1696 Globals.client_signing = Auto;
1697 Globals.server_signing = False;
1699 Globals.bDeferSharingViolations = True;
1700 string_set(&Globals.smb_ports, SMB_PORTS);
1702 Globals.bEnablePrivileges = True;
1703 Globals.bHostMSDfs = True;
1704 Globals.bASUSupport = False;
1706 /* User defined shares. */
1707 if (asprintf(&s, "%s/usershares", get_dyn_STATEDIR()) < 0) {
1708 smb_panic("init_globals: ENOMEM");
1710 string_set(&Globals.szUsersharePath, s);
1712 string_set(&Globals.szUsershareTemplateShare, "");
1713 Globals.iUsershareMaxShares = 0;
1714 /* By default disallow sharing of directories not owned by the sharer. */
1715 Globals.bUsershareOwnerOnly = True;
1716 /* By default disallow guest access to usershares. */
1717 Globals.bUsershareAllowGuests = False;
1719 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1721 /* By default no shares out of the registry */
1722 Globals.bRegistryShares = False;
1724 Globals.iminreceivefile = 0;
1727 /*******************************************************************
1728 Convenience routine to grab string parameters into temporary memory
1729 and run standard_sub_basic on them. The buffers can be written to by
1730 callers without affecting the source string.
1731 ********************************************************************/
1733 static char *lp_string(const char *s)
1736 TALLOC_CTX *ctx = talloc_tos();
1738 /* The follow debug is useful for tracking down memory problems
1739 especially if you have an inner loop that is calling a lp_*()
1740 function that returns a string. Perhaps this debug should be
1741 present all the time? */
1744 DEBUG(10, ("lp_string(%s)\n", s));
1747 ret = talloc_sub_basic(ctx,
1748 get_current_username(),
1749 current_user_info.domain,
1751 if (trim_char(ret, '\"', '\"')) {
1752 if (strchr(ret,'\"') != NULL) {
1754 ret = talloc_sub_basic(ctx,
1755 get_current_username(),
1756 current_user_info.domain,
1764 In this section all the functions that are used to access the
1765 parameters from the rest of the program are defined
1768 #define FN_GLOBAL_STRING(fn_name,ptr) \
1769 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1770 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1771 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1772 #define FN_GLOBAL_LIST(fn_name,ptr) \
1773 const char **fn_name(void) {return(*(const char ***)(ptr));}
1774 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1775 bool fn_name(void) {return(*(bool *)(ptr));}
1776 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1777 char fn_name(void) {return(*(char *)(ptr));}
1778 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1779 int fn_name(void) {return(*(int *)(ptr));}
1781 #define FN_LOCAL_STRING(fn_name,val) \
1782 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1783 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1784 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1785 #define FN_LOCAL_LIST(fn_name,val) \
1786 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1787 #define FN_LOCAL_BOOL(fn_name,val) \
1788 bool fn_name(int i) {return(bool)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1789 #define FN_LOCAL_INTEGER(fn_name,val) \
1790 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1792 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1793 bool fn_name(const struct share_params *p) {return(bool)(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1794 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1795 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1796 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1797 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1798 #define FN_LOCAL_CHAR(fn_name,val) \
1799 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1801 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1802 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1803 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1804 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1805 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1806 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1807 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1808 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1809 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1810 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1811 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1812 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1813 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1814 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1815 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1816 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1817 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1818 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1819 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1820 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1821 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1822 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1823 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1824 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1825 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1826 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1827 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1828 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1829 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1830 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1831 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1832 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1833 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1834 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1835 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1836 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1837 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1838 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1839 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1840 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1841 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1842 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1843 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1844 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1845 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1846 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1847 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1848 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1849 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1850 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1851 * lp_passdb_backend() should be replace by the this macro again after
1854 const char *lp_passdb_backend(void)
1856 char *delim, *quote;
1858 delim = strchr( Globals.szPassdbBackend, ' ');
1859 /* no space at all */
1860 if (delim == NULL) {
1864 quote = strchr(Globals.szPassdbBackend, '"');
1865 /* no quote char or non in the first part */
1866 if (quote == NULL || quote > delim) {
1871 quote = strchr(quote+1, '"');
1872 if (quote == NULL) {
1873 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1875 } else if (*(quote+1) == '\0') {
1876 /* space, fitting quote char, and one backend only */
1879 /* terminate string after the fitting quote char */
1884 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1885 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1886 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1887 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1890 return Globals.szPassdbBackend;
1892 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1893 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1894 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1895 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1896 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1898 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1899 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1900 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1901 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1902 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1903 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1905 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1907 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1908 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1909 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1911 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1913 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1914 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1915 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1916 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1917 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1918 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1919 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1920 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1921 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1922 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1923 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1924 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1925 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1926 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1927 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1929 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1930 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1931 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1932 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1933 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1934 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1935 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1937 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1938 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1939 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1940 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1941 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1942 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1943 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1944 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1945 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1946 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1947 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1948 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1949 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1950 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1952 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1954 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1955 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1956 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1957 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1958 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1959 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1960 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1961 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1962 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1963 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1964 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1965 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1966 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1967 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1968 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1969 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1970 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1971 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1972 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1973 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1974 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1975 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1976 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1977 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1978 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1979 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1980 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1981 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1982 FN_GLOBAL_BOOL(lp_debug_class, &Globals.bDebugClass)
1983 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1984 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1985 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1986 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1987 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1988 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1989 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1990 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1991 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1992 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1993 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1994 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
1995 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
1996 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
1997 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
1998 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
1999 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
2000 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
2001 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
2002 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
2003 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
2004 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
2005 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
2006 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
2007 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
2008 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
2009 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
2010 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
2011 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
2012 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
2013 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
2014 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2015 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2016 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2017 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2018 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2019 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2020 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2021 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2022 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2023 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2024 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2025 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2026 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2027 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2028 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2029 FN_GLOBAL_BOOL(lp_getwd_cache, &Globals.getwd_cache)
2030 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2031 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2032 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2033 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2034 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2035 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2036 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2037 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2038 FN_GLOBAL_BOOL(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2039 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2040 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2041 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2042 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2043 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2044 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2045 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2046 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2047 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2048 FN_GLOBAL_CONST_STRING(lp_socket_options, &Globals.szSocketOptions)
2050 FN_LOCAL_STRING(lp_preexec, szPreExec)
2051 FN_LOCAL_STRING(lp_postexec, szPostExec)
2052 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2053 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2054 FN_LOCAL_STRING(lp_servicename, szService)
2055 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2056 FN_LOCAL_STRING(lp_pathname, szPath)
2057 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2058 FN_LOCAL_STRING(lp_username, szUsername)
2059 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2060 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2061 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2062 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2063 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2064 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2065 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2066 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2067 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2068 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2069 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2070 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2071 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2072 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2073 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2074 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2075 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2076 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2077 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2078 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2079 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2080 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2081 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2082 FN_LOCAL_STRING(lp_comment, comment)
2083 FN_LOCAL_STRING(lp_force_user, force_user)
2084 FN_LOCAL_STRING(lp_force_group, force_group)
2085 FN_LOCAL_LIST(lp_readlist, readlist)
2086 FN_LOCAL_LIST(lp_writelist, writelist)
2087 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2088 FN_LOCAL_STRING(lp_fstype, fstype)
2089 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2090 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2091 static FN_LOCAL_STRING(lp_volume, volume)
2092 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2093 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2094 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2095 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2096 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
2097 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2098 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2099 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2100 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2101 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2102 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2103 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2104 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2105 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2106 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2107 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2108 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2109 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2110 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2111 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2112 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2113 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2114 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2115 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2116 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2117 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2118 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2119 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2120 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2121 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2122 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2123 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2124 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2125 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2126 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2127 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2128 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2129 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2130 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2131 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2132 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2133 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2134 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2135 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2136 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2137 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2138 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2139 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2140 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2141 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2142 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2143 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2144 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2145 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2146 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2147 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2148 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2149 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2150 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2151 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2152 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2153 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2154 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2155 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2156 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2157 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2158 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2159 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2160 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2161 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2162 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2163 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2164 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2165 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2166 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2167 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2168 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2169 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2170 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2171 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2172 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2173 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2174 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2175 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2176 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2177 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2178 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
2179 FN_LOCAL_INTEGER(lp_smb_encrypt, ismb_encrypt)
2180 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2181 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2182 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2183 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2184 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2185 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2186 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2187 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2189 /* local prototypes */
2191 static int map_parameter(const char *pszParmName);
2192 static int map_parameter_canonical(const char *pszParmName, bool *inverse);
2193 static bool set_boolean(bool *pb, const char *pszParmValue);
2194 static const char *get_boolean(bool bool_value);
2195 static int getservicebyname(const char *pszServiceName,
2196 service * pserviceDest);
2197 static void copy_service(service * pserviceDest,
2198 service * pserviceSource,
2199 struct bitmap *pcopymapDest);
2200 static bool do_parameter(const char *pszParmName, const char *pszParmValue);
2201 static bool do_section(const char *pszSectionName);
2202 static void init_copymap(service * pservice);
2203 static bool hash_a_service(const char *name, int number);
2204 static void free_service_byindex(int iService);
2205 static char * canonicalize_servicename(const char *name);
2206 static void show_parameter(int parmIndex);
2207 static bool is_synonym_of(int parm1, int parm2, bool *inverse);
2209 /* This is a helper function for parametrical options support. */
2210 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2211 /* Actual parametrical functions are quite simple */
2212 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2214 bool global_section = False;
2216 param_opt_struct *data;
2218 if (snum >= iNumServices) return NULL;
2221 data = Globals.param_opt;
2222 global_section = True;
2224 data = ServicePtrs[snum]->param_opt;
2227 asprintf(¶m_key, "%s:%s", type, option);
2229 DEBUG(0,("asprintf failed!\n"));
2234 if (strcmp(data->key, param_key) == 0) {
2235 string_free(¶m_key);
2241 if (!global_section) {
2242 /* Try to fetch the same option but from globals */
2243 /* but only if we are not already working with Globals */
2244 data = Globals.param_opt;
2246 if (strcmp(data->key, param_key) == 0) {
2247 string_free(¶m_key);
2254 string_free(¶m_key);
2260 #define MISSING_PARAMETER(name) \
2261 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2263 /*******************************************************************
2264 convenience routine to return int parameters.
2265 ********************************************************************/
2266 static int lp_int(const char *s)
2270 MISSING_PARAMETER(lp_int);
2274 return (int)strtol(s, NULL, 0);
2277 /*******************************************************************
2278 convenience routine to return unsigned long parameters.
2279 ********************************************************************/
2280 static unsigned long lp_ulong(const char *s)
2284 MISSING_PARAMETER(lp_ulong);
2288 return strtoul(s, NULL, 0);
2291 /*******************************************************************
2292 convenience routine to return boolean parameters.
2293 ********************************************************************/
2294 static bool lp_bool(const char *s)
2299 MISSING_PARAMETER(lp_bool);
2303 if (!set_boolean(&ret,s)) {
2304 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2311 /*******************************************************************
2312 convenience routine to return enum parameters.
2313 ********************************************************************/
2314 static int lp_enum(const char *s,const struct enum_list *_enum)
2318 if (!s || !*s || !_enum) {
2319 MISSING_PARAMETER(lp_enum);
2323 for (i=0; _enum[i].name; i++) {
2324 if (strequal(_enum[i].name,s))
2325 return _enum[i].value;
2328 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2332 #undef MISSING_PARAMETER
2334 /* DO NOT USE lp_parm_string ANYMORE!!!!
2335 * use lp_parm_const_string or lp_parm_talloc_string
2337 * lp_parm_string is only used to let old modules find this symbol
2339 #undef lp_parm_string
2340 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2341 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2343 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2346 /* Return parametric option from a given service. Type is a part of option before ':' */
2347 /* Parametric option has following syntax: 'Type: option = value' */
2348 /* the returned value is talloced on the talloc_tos() */
2349 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2351 param_opt_struct *data = get_parametrics(snum, type, option);
2353 if (data == NULL||data->value==NULL) {
2355 return lp_string(def);
2361 return lp_string(data->value);
2364 /* Return parametric option from a given service. Type is a part of option before ':' */
2365 /* Parametric option has following syntax: 'Type: option = value' */
2366 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2368 param_opt_struct *data = get_parametrics(snum, type, option);
2370 if (data == NULL||data->value==NULL)
2376 /* Return parametric option from a given service. Type is a part of option before ':' */
2377 /* Parametric option has following syntax: 'Type: option = value' */
2379 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2381 param_opt_struct *data = get_parametrics(snum, type, option);
2383 if (data == NULL||data->value==NULL)
2384 return (const char **)def;
2386 if (data->list==NULL) {
2387 data->list = str_list_make(data->value, NULL);
2390 return (const char **)data->list;
2393 /* Return parametric option from a given service. Type is a part of option before ':' */
2394 /* Parametric option has following syntax: 'Type: option = value' */
2396 int lp_parm_int(int snum, const char *type, const char *option, int def)
2398 param_opt_struct *data = get_parametrics(snum, type, option);
2400 if (data && data->value && *data->value)
2401 return lp_int(data->value);
2406 /* Return parametric option from a given service. Type is a part of option before ':' */
2407 /* Parametric option has following syntax: 'Type: option = value' */
2409 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2411 param_opt_struct *data = get_parametrics(snum, type, option);
2413 if (data && data->value && *data->value)
2414 return lp_ulong(data->value);
2419 /* Return parametric option from a given service. Type is a part of option before ':' */
2420 /* Parametric option has following syntax: 'Type: option = value' */
2422 bool lp_parm_bool(int snum, const char *type, const char *option, bool def)
2424 param_opt_struct *data = get_parametrics(snum, type, option);
2426 if (data && data->value && *data->value)
2427 return lp_bool(data->value);
2432 /* Return parametric option from a given service. Type is a part of option before ':' */
2433 /* Parametric option has following syntax: 'Type: option = value' */
2435 int lp_parm_enum(int snum, const char *type, const char *option,
2436 const struct enum_list *_enum, int def)
2438 param_opt_struct *data = get_parametrics(snum, type, option);
2440 if (data && data->value && *data->value && _enum)
2441 return lp_enum(data->value, _enum);
2447 /***************************************************************************
2448 Initialise a service to the defaults.
2449 ***************************************************************************/
2451 static void init_service(service * pservice)
2453 memset((char *)pservice, '\0', sizeof(service));
2454 copy_service(pservice, &sDefault, NULL);
2457 /***************************************************************************
2458 Free the dynamically allocated parts of a service struct.
2459 ***************************************************************************/
2461 static void free_service(service *pservice)
2464 param_opt_struct *data, *pdata;
2468 if (pservice->szService)
2469 DEBUG(5, ("free_service: Freeing service %s\n",
2470 pservice->szService));
2472 string_free(&pservice->szService);
2473 bitmap_free(pservice->copymap);
2475 for (i = 0; parm_table[i].label; i++) {
2476 if ((parm_table[i].type == P_STRING ||
2477 parm_table[i].type == P_USTRING) &&
2478 parm_table[i].p_class == P_LOCAL)
2479 string_free((char **)
2480 (((char *)pservice) +
2481 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2482 else if (parm_table[i].type == P_LIST &&
2483 parm_table[i].p_class == P_LOCAL)
2484 str_list_free((char ***)
2485 (((char *)pservice) +
2486 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2489 data = pservice->param_opt;
2491 DEBUG(5,("Freeing parametrics:\n"));
2493 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2494 string_free(&data->key);
2495 string_free(&data->value);
2496 str_list_free(&data->list);
2502 ZERO_STRUCTP(pservice);
2506 /***************************************************************************
2507 remove a service indexed in the ServicePtrs array from the ServiceHash
2508 and free the dynamically allocated parts
2509 ***************************************************************************/
2511 static void free_service_byindex(int idx)
2513 if ( !LP_SNUM_OK(idx) )
2516 ServicePtrs[idx]->valid = False;
2517 invalid_services[num_invalid_services++] = idx;
2519 /* we have to cleanup the hash record */
2521 if (ServicePtrs[idx]->szService) {
2522 char *canon_name = canonicalize_servicename(
2523 ServicePtrs[idx]->szService );
2525 dbwrap_delete_bystring(ServiceHash, canon_name );
2526 TALLOC_FREE(canon_name);
2529 free_service(ServicePtrs[idx]);
2532 /***************************************************************************
2533 Add a new service to the services array initialising it with the given
2535 ***************************************************************************/
2537 static int add_a_service(const service *pservice, const char *name)
2541 int num_to_alloc = iNumServices + 1;
2542 param_opt_struct *data, *pdata;
2544 tservice = *pservice;
2546 /* it might already exist */
2548 i = getservicebyname(name, NULL);
2550 /* Clean all parametric options for service */
2551 /* They will be added during parsing again */
2552 data = ServicePtrs[i]->param_opt;
2554 string_free(&data->key);
2555 string_free(&data->value);
2556 str_list_free(&data->list);
2561 ServicePtrs[i]->param_opt = NULL;
2566 /* find an invalid one */
2568 if (num_invalid_services > 0) {
2569 i = invalid_services[--num_invalid_services];
2572 /* if not, then create one */
2573 if (i == iNumServices) {
2577 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2579 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2583 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2584 if (!ServicePtrs[iNumServices]) {
2585 DEBUG(0,("add_a_service: out of memory!\n"));
2590 /* enlarge invalid_services here for now... */
2591 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2593 if (tinvalid == NULL) {
2594 DEBUG(0,("add_a_service: failed to enlarge "
2595 "invalid_services!\n"));
2598 invalid_services = tinvalid;
2600 free_service_byindex(i);
2603 ServicePtrs[i]->valid = True;
2605 init_service(ServicePtrs[i]);
2606 copy_service(ServicePtrs[i], &tservice, NULL);
2608 string_set(&ServicePtrs[i]->szService, name);
2610 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2611 i, ServicePtrs[i]->szService));
2613 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2620 /***************************************************************************
2621 Convert a string to uppercase and remove whitespaces.
2622 ***************************************************************************/
2624 static char *canonicalize_servicename(const char *src)
2629 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2633 result = talloc_strdup(talloc_tos(), src);
2634 SMB_ASSERT(result != NULL);
2640 /***************************************************************************
2641 Add a name/index pair for the services array to the hash table.
2642 ***************************************************************************/
2644 static bool hash_a_service(const char *name, int idx)
2648 if ( !ServiceHash ) {
2649 DEBUG(10,("hash_a_service: creating servicehash\n"));
2650 ServiceHash = db_open_rbt(NULL);
2651 if ( !ServiceHash ) {
2652 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2657 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2660 canon_name = canonicalize_servicename( name );
2662 dbwrap_store_bystring(ServiceHash, canon_name,
2663 make_tdb_data((uint8 *)&idx, sizeof(idx)),
2666 TALLOC_FREE(canon_name);
2671 /***************************************************************************
2672 Add a new home service, with the specified home directory, defaults coming
2674 ***************************************************************************/
2676 bool lp_add_home(const char *pszHomename, int iDefaultService,
2677 const char *user, const char *pszHomedir)
2681 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2686 if (!(*(ServicePtrs[iDefaultService]->szPath))
2687 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2688 string_set(&ServicePtrs[i]->szPath, pszHomedir);
2691 if (!(*(ServicePtrs[i]->comment))) {
2692 char *comment = NULL;
2693 if (asprintf(&comment, "Home directory of %s", user) < 0) {
2696 string_set(&ServicePtrs[i]->comment, comment);
2700 /* set the browseable flag from the global default */
2702 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2704 ServicePtrs[i]->autoloaded = True;
2706 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2707 user, ServicePtrs[i]->szPath ));
2712 /***************************************************************************
2713 Add a new service, based on an old one.
2714 ***************************************************************************/
2716 int lp_add_service(const char *pszService, int iDefaultService)
2718 if (iDefaultService < 0) {
2719 return add_a_service(&sDefault, pszService);
2722 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2725 /***************************************************************************
2726 Add the IPC service.
2727 ***************************************************************************/
2729 static bool lp_add_ipc(const char *ipc_name, bool guest_ok)
2731 char *comment = NULL;
2732 int i = add_a_service(&sDefault, ipc_name);
2737 if (asprintf(&comment, "IPC Service (%s)",
2738 Globals.szServerString) < 0) {
2742 string_set(&ServicePtrs[i]->szPath, tmpdir());
2743 string_set(&ServicePtrs[i]->szUsername, "");
2744 string_set(&ServicePtrs[i]->comment, comment);
2745 string_set(&ServicePtrs[i]->fstype, "IPC");
2746 ServicePtrs[i]->iMaxConnections = 0;
2747 ServicePtrs[i]->bAvailable = True;
2748 ServicePtrs[i]->bRead_only = True;
2749 ServicePtrs[i]->bGuest_only = False;
2750 ServicePtrs[i]->bGuest_ok = guest_ok;
2751 ServicePtrs[i]->bPrint_ok = False;
2752 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2754 DEBUG(3, ("adding IPC service\n"));
2760 /***************************************************************************
2761 Add a new printer service, with defaults coming from service iFrom.
2762 ***************************************************************************/
2764 bool lp_add_printer(const char *pszPrintername, int iDefaultService)
2766 const char *comment = "From Printcap";
2767 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2772 /* note that we do NOT default the availability flag to True - */
2773 /* we take it from the default service passed. This allows all */
2774 /* dynamic printers to be disabled by disabling the [printers] */
2775 /* entry (if/when the 'available' keyword is implemented!). */
2777 /* the printer name is set to the service name. */
2778 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2779 string_set(&ServicePtrs[i]->comment, comment);
2781 /* set the browseable flag from the gloabl default */
2782 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2784 /* Printers cannot be read_only. */
2785 ServicePtrs[i]->bRead_only = False;
2786 /* No share modes on printer services. */
2787 ServicePtrs[i]->bShareModes = False;
2788 /* No oplocks on printer services. */
2789 ServicePtrs[i]->bOpLocks = False;
2790 /* Printer services must be printable. */
2791 ServicePtrs[i]->bPrint_ok = True;
2793 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2799 /***************************************************************************
2800 Check whether the given parameter name is valid.
2801 Parametric options (names containing a colon) are considered valid.
2802 ***************************************************************************/
2804 bool lp_parameter_is_valid(const char *pszParmName)
2806 return ((map_parameter(pszParmName) != -1) ||
2807 (strchr(pszParmName, ':') != NULL));
2810 /***************************************************************************
2811 Check whether the given name is the name of a global parameter.
2812 Returns True for strings belonging to parameters of class
2813 P_GLOBAL, False for all other strings, also for parametric options
2814 and strings not belonging to any option.
2815 ***************************************************************************/
2817 bool lp_parameter_is_global(const char *pszParmName)
2819 int num = map_parameter(pszParmName);
2822 return (parm_table[num].p_class == P_GLOBAL);
2828 /**************************************************************************
2829 Check whether the given name is the canonical name of a parameter.
2830 Returns False if it is not a valid parameter Name.
2831 For parametric options, True is returned.
2832 **************************************************************************/
2834 bool lp_parameter_is_canonical(const char *parm_name)
2836 if (!lp_parameter_is_valid(parm_name)) {
2840 return (map_parameter(parm_name) ==
2841 map_parameter_canonical(parm_name, NULL));
2844 /**************************************************************************
2845 Determine the canonical name for a parameter.
2846 Indicate when it is an inverse (boolean) synonym instead of a
2848 **************************************************************************/
2850 bool lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2855 if (!lp_parameter_is_valid(parm_name)) {
2860 num = map_parameter_canonical(parm_name, inverse);
2862 /* parametric option */
2863 *canon_parm = parm_name;
2865 *canon_parm = parm_table[num].label;
2872 /**************************************************************************
2873 Determine the canonical name for a parameter.
2874 Turn the value given into the inverse boolean expression when
2875 the synonym is an invers boolean synonym.
2877 Return True if parm_name is a valid parameter name and
2878 in case it is an invers boolean synonym, if the val string could
2879 successfully be converted to the reverse bool.
2880 Return false in all other cases.
2881 **************************************************************************/
2883 bool lp_canonicalize_parameter_with_value(const char *parm_name,
2885 const char **canon_parm,
2886 const char **canon_val)
2891 if (!lp_parameter_is_valid(parm_name)) {
2897 num = map_parameter_canonical(parm_name, &inverse);
2899 /* parametric option */
2900 *canon_parm = parm_name;
2903 *canon_parm = parm_table[num].label;
2905 if (!lp_invert_boolean(val, canon_val)) {
2917 /***************************************************************************
2918 Map a parameter's string representation to something we can use.
2919 Returns False if the parameter string is not recognised, else TRUE.
2920 ***************************************************************************/
2922 static int map_parameter(const char *pszParmName)
2926 if (*pszParmName == '-')
2929 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2930 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2933 /* Warn only if it isn't parametric option */
2934 if (strchr(pszParmName, ':') == NULL)
2935 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2936 /* We do return 'fail' for parametric options as well because they are
2937 stored in different storage
2942 /***************************************************************************
2943 Map a parameter's string representation to the index of the canonical
2944 form of the parameter (it might be a synonym).
2945 Returns -1 if the parameter string is not recognised.
2946 ***************************************************************************/
2948 static int map_parameter_canonical(const char *pszParmName, bool *inverse)
2950 int parm_num, canon_num;
2951 bool loc_inverse = False;
2953 parm_num = map_parameter(pszParmName);
2954 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2955 /* invalid, parametric or no canidate for synonyms ... */
2959 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2960 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2961 parm_num = canon_num;
2967 if (inverse != NULL) {
2968 *inverse = loc_inverse;
2973 /***************************************************************************
2974 return true if parameter number parm1 is a synonym of parameter
2975 number parm2 (parm2 being the principal name).
2976 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
2978 ***************************************************************************/
2980 static bool is_synonym_of(int parm1, int parm2, bool *inverse)
2982 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
2983 (parm_table[parm1].flags & FLAG_HIDE) &&
2984 !(parm_table[parm2].flags & FLAG_HIDE))
2986 if (inverse != NULL) {
2987 if ((parm_table[parm1].type == P_BOOLREV) &&
2988 (parm_table[parm2].type == P_BOOL))
3000 /***************************************************************************
3001 Show one parameter's name, type, [values,] and flags.
3002 (helper functions for show_parameter_list)
3003 ***************************************************************************/
3005 static void show_parameter(int parmIndex)
3007 int enumIndex, flagIndex;
3012 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
3013 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING",
3015 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
3016 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
3017 FLAG_HIDE, FLAG_DOS_STRING};
3018 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
3019 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
3020 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
3022 printf("%s=%s", parm_table[parmIndex].label,
3023 type[parm_table[parmIndex].type]);
3024 if (parm_table[parmIndex].type == P_ENUM) {
3027 parm_table[parmIndex].enum_list[enumIndex].name;
3031 enumIndex ? "|" : "",
3032 parm_table[parmIndex].enum_list[enumIndex].name);
3037 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3038 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3041 flag_names[flagIndex]);
3046 /* output synonyms */
3048 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3049 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3050 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3051 parm_table[parmIndex2].label);
3052 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3054 printf(" (synonyms: ");
3059 printf("%s%s", parm_table[parmIndex2].label,
3060 inverse ? "[i]" : "");
3070 /***************************************************************************
3071 Show all parameter's name, type, [values,] and flags.
3072 ***************************************************************************/
3074 void show_parameter_list(void)
3076 int classIndex, parmIndex;
3077 const char *section_names[] = { "local", "global", NULL};
3079 for (classIndex=0; section_names[classIndex]; classIndex++) {
3080 printf("[%s]\n", section_names[classIndex]);
3081 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3082 if (parm_table[parmIndex].p_class == classIndex) {
3083 show_parameter(parmIndex);
3089 /***************************************************************************
3090 Set a boolean variable from the text value stored in the passed string.
3091 Returns True in success, False if the passed string does not correctly
3092 represent a boolean.
3093 ***************************************************************************/
3095 static bool set_boolean(bool *pb, const char *pszParmValue)
3102 if (strwicmp(pszParmValue, "yes") == 0 ||
3103 strwicmp(pszParmValue, "true") == 0 ||
3104 strwicmp(pszParmValue, "1") == 0)
3106 else if (strwicmp(pszParmValue, "no") == 0 ||
3107 strwicmp(pszParmValue, "False") == 0 ||
3108 strwicmp(pszParmValue, "0") == 0)
3112 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3117 if ((pb != NULL) && (bRetval != False)) {
3125 /***************************************************************************
3126 Check if a given string correctly represents a boolean value.
3127 ***************************************************************************/
3129 bool lp_string_is_valid_boolean(const char *parm_value)
3131 return set_boolean(NULL, parm_value);
3134 /***************************************************************************
3135 Get the standard string representation of a boolean value ("yes" or "no")
3136 ***************************************************************************/
3138 static const char *get_boolean(bool bool_value)
3140 static const char *yes_str = "yes";
3141 static const char *no_str = "no";
3143 return (bool_value ? yes_str : no_str);
3146 /***************************************************************************
3147 Provide the string of the negated boolean value associated to the boolean
3148 given as a string. Returns False if the passed string does not correctly
3149 represent a boolean.
3150 ***************************************************************************/
3152 bool lp_invert_boolean(const char *str, const char **inverse_str)
3156 if (!set_boolean(&val, str)) {
3160 *inverse_str = get_boolean(!val);
3164 /***************************************************************************
3165 Provide the canonical string representation of a boolean value given
3166 as a string. Return True on success, False if the string given does
3167 not correctly represent a boolean.
3168 ***************************************************************************/
3170 bool lp_canonicalize_boolean(const char *str, const char**canon_str)
3174 if (!set_boolean(&val, str)) {
3178 *canon_str = get_boolean(val);
3182 /***************************************************************************
3183 Find a service by name. Otherwise works like get_service.
3184 ***************************************************************************/
3186 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3192 if (ServiceHash == NULL) {
3196 canon_name = canonicalize_servicename(pszServiceName);
3198 data = dbwrap_fetch_bystring(ServiceHash, canon_name, canon_name);
3200 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
3201 iService = *(int *)data.dptr;
3204 TALLOC_FREE(canon_name);
3206 if ((iService != -1) && (LP_SNUM_OK(iService))
3207 && (pserviceDest != NULL)) {
3208 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3214 /***************************************************************************
3215 Copy a service structure to another.
3216 If pcopymapDest is NULL then copy all fields
3217 ***************************************************************************/
3219 static void copy_service(service * pserviceDest, service * pserviceSource,
3220 struct bitmap *pcopymapDest)
3223 bool bcopyall = (pcopymapDest == NULL);
3224 param_opt_struct *data, *pdata, *paramo;
3227 for (i = 0; parm_table[i].label; i++)
3228 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3229 (bcopyall || bitmap_query(pcopymapDest,i))) {
3230 void *def_ptr = parm_table[i].ptr;
3232 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3235 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3238 switch (parm_table[i].type) {
3241 *(bool *)dest_ptr = *(bool *)src_ptr;
3247 *(int *)dest_ptr = *(int *)src_ptr;
3251 *(char *)dest_ptr = *(char *)src_ptr;
3255 string_set((char **)dest_ptr,
3260 string_set((char **)dest_ptr,
3262 strupper_m(*(char **)dest_ptr);
3265 str_list_free((char ***)dest_ptr);
3266 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3274 init_copymap(pserviceDest);
3275 if (pserviceSource->copymap)
3276 bitmap_copy(pserviceDest->copymap,
3277 pserviceSource->copymap);
3280 data = pserviceSource->param_opt;
3283 pdata = pserviceDest->param_opt;
3284 /* Traverse destination */
3286 /* If we already have same option, override it */
3287 if (strcmp(pdata->key, data->key) == 0) {
3288 string_free(&pdata->value);
3289 str_list_free(&data->list);
3290 pdata->value = SMB_STRDUP(data->value);
3294 pdata = pdata->next;
3297 paramo = SMB_XMALLOC_P(param_opt_struct);
3298 paramo->key = SMB_STRDUP(data->key);
3299 paramo->value = SMB_STRDUP(data->value);
3300 paramo->list = NULL;
3301 DLIST_ADD(pserviceDest->param_opt, paramo);
3307 /***************************************************************************
3308 Check a service for consistency. Return False if the service is in any way
3309 incomplete or faulty, else True.
3310 ***************************************************************************/
3312 bool service_ok(int iService)
3317 if (ServicePtrs[iService]->szService[0] == '\0') {
3318 DEBUG(0, ("The following message indicates an internal error:\n"));
3319 DEBUG(0, ("No service name in service entry.\n"));
3323 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3324 /* I can't see why you'd want a non-printable printer service... */
3325 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3326 if (!ServicePtrs[iService]->bPrint_ok) {
3327 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3328 ServicePtrs[iService]->szService));
3329 ServicePtrs[iService]->bPrint_ok = True;
3331 /* [printers] service must also be non-browsable. */
3332 if (ServicePtrs[iService]->bBrowseable)
3333 ServicePtrs[iService]->bBrowseable = False;
3336 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3337 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3338 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3340 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3341 ServicePtrs[iService]->szService));
3342 ServicePtrs[iService]->bAvailable = False;
3345 /* If a service is flagged unavailable, log the fact at level 1. */
3346 if (!ServicePtrs[iService]->bAvailable)
3347 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3348 ServicePtrs[iService]->szService));
3354 * lp_regdb_open - regdb helper function
3356 * this should be considered an interim solution that becomes
3357 * superfluous once the registry code has been rewritten
3358 * do allow use of the tdb portion of the registry alone.
3360 * in the meanwhile this provides a lean access
3361 * to the registry globals.
3364 static struct tdb_wrap *lp_regdb_open(void)
3366 struct tdb_wrap *reg_tdb = NULL;
3367 const char *vstring = "INFO/version";
3371 reg_tdb = tdb_wrap_open(NULL, state_path("registry.tdb"), 0,
3372 REG_TDB_FLAGS, O_RDWR, 0600);
3375 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3376 state_path("registry.tdb"), strerror(errno)));
3380 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3383 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3384 if (vers_id != REGVER_V1) {
3385 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3386 "INFO/version (got %d, expected %d)\n",
3387 state_path("registry.tdb"), vers_id, REGVER_V1));
3388 /* this is apparently not implemented in the tdb */
3396 * process_registry_globals
3398 * this is the interim version of process_registry globals
3400 * until we can do it as we would like using the api and only
3401 * using the tdb portion of the registry (see below),
3402 * this just provides the needed functionality of regdb_fetch_values
3403 * and regdb_unpack_values, circumventing any fancy stuff, to
3404 * give us access to the registry globals.
3406 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3409 struct tdb_wrap *reg_tdb = NULL;
3413 /* vars for the tdb unpack loop */
3420 uint32 num_values = 0;
3423 struct registry_value *value = NULL;
3425 include_registry_globals = True;
3429 reg_tdb = lp_regdb_open();
3431 DEBUG(1, ("Error opening the registry!\n"));
3435 /* reg_tdb is from now on used as talloc ctx.
3436 * freeing it closes the tdb (if refcount is 0) */
3438 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3439 KEY_SMBCONF, GLOBAL_NAME);
3440 normalize_dbkey(keystr);
3442 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3445 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3452 buflen = data.dsize;
3454 /* unpack number of values */
3455 len = tdb_unpack(buf, buflen, "d", &num_values);
3456 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3459 /* unpack the values */
3460 for (i=0; i < num_values; i++) {
3465 len += tdb_unpack(buf+len, buflen-len, "fdB",
3470 if (registry_smbconf_valname_forbidden(valname)) {
3471 DEBUG(10, ("process_registry_globals: Ignoring "
3472 "parameter '%s' in registry.\n", valname));
3475 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3477 if (size && data_p) {
3478 err = registry_pull_value(reg_tdb,
3480 (enum winreg_Type)type,
3485 if (!W_ERROR_IS_OK(err)) {
3490 valstr = talloc_asprintf(reg_tdb, "%d",
3492 pfunc(valname, valstr);
3495 pfunc(valname, value->v.sz.str);
3498 /* ignore other types */
3504 ret = pfunc("registry shares", "yes");
3505 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3508 TALLOC_FREE(reg_tdb);
3509 SAFE_FREE(data.dptr);
3515 * this is process_registry_globals as it _should_ be (roughly)
3516 * using the reg_api functions...
3518 * We are *not* currently doing it like this due to the large
3519 * linker dependecies of the registry code (see above).
3521 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3524 TALLOC_CTX *ctx = NULL;
3525 char *regpath = NULL;
3526 WERROR werr = WERR_OK;
3527 struct registry_key *key = NULL;
3528 struct registry_value *value = NULL;
3529 char *valname = NULL;
3530 char *valstr = NULL;
3532 NT_USER_TOKEN *token;
3534 ctx = talloc_init("process_registry_globals");
3536 smb_panic("Failed to create talloc context!");
3539 include_registry_globals = True;
3541 if (!registry_init_regdb()) {
3542 DEBUG(1, ("Error initializing the registry.\n"));
3546 if (!(token = registry_create_admin_token(ctx))) {
3547 DEBUG(1, ("Error creating admin token\n"));
3551 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3552 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3553 if (!W_ERROR_IS_OK(werr)) {
3554 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3555 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3556 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3561 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3565 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3566 switch(value->type) {
3568 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3569 pfunc(valname, valstr);
3570 TALLOC_FREE(valstr);
3573 pfunc(valname, value->v.sz.str);
3576 /* ignore other types */
3580 TALLOC_FREE(valstr);
3583 ret = pfunc("registry shares", "yes");
3585 regdb_last_seqnum = regdb_get_seqnum();
3588 talloc_destroy(ctx);
3593 static struct file_lists {
3594 struct file_lists *next;
3598 } *file_lists = NULL;
3600 /*******************************************************************
3601 Keep a linked list of all config files so we know when one has changed
3602 it's date and needs to be reloaded.
3603 ********************************************************************/
3605 static void add_to_file_list(const char *fname, const char *subfname)
3607 struct file_lists *f = file_lists;
3610 if (f->name && !strcmp(f->name, fname))
3616 f = SMB_MALLOC_P(struct file_lists);
3619 f->next = file_lists;
3620 f->name = SMB_STRDUP(fname);
3625 f->subfname = SMB_STRDUP(subfname);
3631 f->modtime = file_modtime(subfname);
3633 time_t t = file_modtime(subfname);
3639 bool lp_include_registry_globals(void)
3641 return include_registry_globals;
3644 /*******************************************************************
3645 Check if a config file has changed date.
3646 ********************************************************************/
3648 bool lp_file_list_changed(void)
3650 struct file_lists *f = file_lists;
3651 struct tdb_wrap *reg_tdb = NULL;
3653 DEBUG(6, ("lp_file_list_changed()\n"));
3655 if (include_registry_globals) {
3656 reg_tdb = lp_regdb_open();
3657 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3659 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3660 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3661 TALLOC_FREE(reg_tdb);
3670 n2 = alloc_sub_basic(get_current_username(),
3671 current_user_info.domain,
3676 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3677 f->name, n2, ctime(&f->modtime)));
3679 mod_time = file_modtime(n2);
3681 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3683 ("file %s modified: %s\n", n2,
3685 f->modtime = mod_time;
3686 SAFE_FREE(f->subfname);
3687 f->subfname = n2; /* Passing ownership of
3688 return from alloc_sub_basic
3698 /***************************************************************************
3699 Run standard_sub_basic on netbios name... needed because global_myname
3700 is not accessed through any lp_ macro.
3701 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3702 ***************************************************************************/
3704 static bool handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3707 char *netbios_name = alloc_sub_basic(get_current_username(),
3708 current_user_info.domain,
3711 ret = set_global_myname(netbios_name);
3712 SAFE_FREE(netbios_name);
3713 string_set(&Globals.szNetbiosName,global_myname());
3715 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3721 static bool handle_charset(int snum, const char *pszParmValue, char **ptr)
3723 if (strcmp(*ptr, pszParmValue) != 0) {
3724 string_set(ptr, pszParmValue);
3732 static bool handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3736 ret = set_global_myworkgroup(pszParmValue);
3737 string_set(&Globals.szWorkgroup,lp_workgroup());
3742 static bool handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3746 ret = set_global_scope(pszParmValue);
3747 string_set(&Globals.szNetbiosScope,global_scope());
3752 static bool handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3754 str_list_free(&Globals.szNetbiosAliases);
3755 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3756 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3759 /***************************************************************************
3760 Handle the include operation.
3761 ***************************************************************************/
3763 static bool handle_include(int snum, const char *pszParmValue, char **ptr)
3767 if (strequal(pszParmValue, INCLUDE_REGISTRY_NAME)) {
3768 if (bInGlobalSection) {
3769 return process_registry_globals(do_parameter);
3772 DEBUG(1, ("\"include = registry\" only effective "
3773 "in %s section\n", GLOBAL_NAME));
3778 fname = alloc_sub_basic(get_current_username(),
3779 current_user_info.domain,
3782 add_to_file_list(pszParmValue, fname);
3784 string_set(ptr, fname);
3786 if (file_exist(fname, NULL)) {
3787 bool ret = pm_process(fname, do_section, do_parameter);
3792 DEBUG(2, ("Can't find include file %s\n", fname));
3797 /***************************************************************************
3798 Handle the interpretation of the copy parameter.
3799 ***************************************************************************/
3801 static bool handle_copy(int snum, const char *pszParmValue, char **ptr)
3805 service serviceTemp;
3807 string_set(ptr, pszParmValue);
3809 init_service(&serviceTemp);
3813 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3815 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3816 if (iTemp == iServiceIndex) {
3817 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3819 copy_service(ServicePtrs[iServiceIndex],
3821 ServicePtrs[iServiceIndex]->copymap);
3825 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3829 free_service(&serviceTemp);
3833 /***************************************************************************
3834 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3839 idmap uid = 1000-1999
3842 We only do simple parsing checks here. The strings are parsed into useful
3843 structures in the idmap daemon code.
3845 ***************************************************************************/
3847 /* Some lp_ routines to return idmap [ug]id information */
3849 static uid_t idmap_uid_low, idmap_uid_high;
3850 static gid_t idmap_gid_low, idmap_gid_high;
3852 bool lp_idmap_uid(uid_t *low, uid_t *high)
3854 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3858 *low = idmap_uid_low;
3861 *high = idmap_uid_high;
3866 bool lp_idmap_gid(gid_t *low, gid_t *high)
3868 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3872 *low = idmap_gid_low;
3875 *high = idmap_gid_high;
3880 /* Do some simple checks on "idmap [ug]id" parameter values */
3882 static bool handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3886 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3891 string_set(ptr, pszParmValue);
3893 idmap_uid_low = low;
3894 idmap_uid_high = high;
3899 static bool handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3903 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3908 string_set(ptr, pszParmValue);
3910 idmap_gid_low = low;
3911 idmap_gid_high = high;
3916 /***************************************************************************
3917 Handle the DEBUG level list.
3918 ***************************************************************************/
3920 static bool handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3922 string_set(ptr, pszParmValueIn);
3923 return debug_parse_levels(pszParmValueIn);
3926 /***************************************************************************
3927 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3928 ***************************************************************************/
3930 static const char *append_ldap_suffix( const char *str )
3932 const char *suffix_string;
3935 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
3936 Globals.szLdapSuffix );
3937 if ( !suffix_string ) {
3938 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3942 return suffix_string;
3945 const char *lp_ldap_machine_suffix(void)
3947 if (Globals.szLdapMachineSuffix[0])
3948 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3950 return lp_string(Globals.szLdapSuffix);
3953 const char *lp_ldap_user_suffix(void)
3955 if (Globals.szLdapUserSuffix[0])
3956 return append_ldap_suffix(Globals.szLdapUserSuffix);
3958 return lp_string(Globals.szLdapSuffix);
3961 const char *lp_ldap_group_suffix(void)
3963 if (Globals.szLdapGroupSuffix[0])
3964 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3966 return lp_string(Globals.szLdapSuffix);
3969 const char *lp_ldap_idmap_suffix(void)
3971 if (Globals.szLdapIdmapSuffix[0])
3972 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3974 return lp_string(Globals.szLdapSuffix);
3977 /****************************************************************************
3978 set the value for a P_ENUM
3979 ***************************************************************************/
3981 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3986 for (i = 0; parm->enum_list[i].name; i++) {
3987 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3988 *ptr = parm->enum_list[i].value;
3994 /***************************************************************************
3995 ***************************************************************************/
3997 static bool handle_printing(int snum, const char *pszParmValue, char **ptr)
3999 static int parm_num = -1;
4002 if ( parm_num == -1 )
4003 parm_num = map_parameter( "printing" );
4005 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
4010 s = ServicePtrs[snum];
4012 init_printer_values( s );
4018 /***************************************************************************
4019 Initialise a copymap.
4020 ***************************************************************************/
4022 static void init_copymap(service * pservice)
4025 if (pservice->copymap) {
4026 bitmap_free(pservice->copymap);
4028 pservice->copymap = bitmap_allocate(NUMPARAMETERS);
4029 if (!pservice->copymap)
4031 ("Couldn't allocate copymap!! (size %d)\n",
4032 (int)NUMPARAMETERS));
4034 for (i = 0; i < NUMPARAMETERS; i++)
4035 bitmap_set(pservice->copymap, i);
4038 /***************************************************************************
4039 Return the local pointer to a parameter given the service number and the
4040 pointer into the default structure.
4041 ***************************************************************************/
4043 void *lp_local_ptr(int snum, void *ptr)
4045 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
4048 /***************************************************************************
4049 Process a parameter for a particular service number. If snum < 0
4050 then assume we are in the globals.
4051 ***************************************************************************/
4053 bool lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
4055 int parmnum, i, slen;
4056 void *parm_ptr = NULL; /* where we are going to store the result */
4057 void *def_ptr = NULL;
4058 char *param_key = NULL;
4060 param_opt_struct *paramo, *data;
4063 parmnum = map_parameter(pszParmName);
4066 if ((sep=strchr(pszParmName, ':')) != NULL) {
4067 TALLOC_CTX *frame = talloc_stackframe();
4070 param_key = talloc_asprintf(frame, "%s:", pszParmName);
4075 slen = strlen(param_key);
4076 param_key = talloc_asprintf_append(param_key, sep+1);
4081 trim_char(param_key+slen, ' ', ' ');
4083 data = (snum < 0) ? Globals.param_opt :
4084 ServicePtrs[snum]->param_opt;
4085 /* Traverse destination */
4087 /* If we already have same option, override it */
4088 if (strcmp(data->key, param_key) == 0) {
4089 string_free(&data->value);
4090 str_list_free(&data->list);
4091 data->value = SMB_STRDUP(pszParmValue);
4098 paramo = SMB_XMALLOC_P(param_opt_struct);
4099 paramo->key = SMB_STRDUP(param_key);
4100 paramo->value = SMB_STRDUP(pszParmValue);
4101 paramo->list = NULL;
4103 DLIST_ADD(Globals.param_opt, paramo);
4105 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
4113 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
4117 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
4118 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
4122 def_ptr = parm_table[parmnum].ptr;
4124 /* we might point at a service, the default service or a global */
4128 if (parm_table[parmnum].p_class == P_GLOBAL) {
4130 ("Global parameter %s found in service section!\n",
4135 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
4140 if (!ServicePtrs[snum]->copymap)
4141 init_copymap(ServicePtrs[snum]);
4143 /* this handles the aliases - set the copymap for other entries with
4144 the same data pointer */
4145 for (i = 0; parm_table[i].label; i++)
4146 if (parm_table[i].ptr == parm_table[parmnum].ptr)
4147 bitmap_clear(ServicePtrs[snum]->copymap, i);
4150 /* if it is a special case then go ahead */
4151 if (parm_table[parmnum].special) {
4152 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4156 /* now switch on the type of variable it is */
4157 switch (parm_table[parmnum].type)
4160 *(bool *)parm_ptr = lp_bool(pszParmValue);
4164 *(bool *)parm_ptr = !lp_bool(pszParmValue);
4168 *(int *)parm_ptr = lp_int(pszParmValue);
4172 *(char *)parm_ptr = *pszParmValue;
4176 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4178 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4183 str_list_free((char ***)parm_ptr);
4184 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
4188 string_set((char **)parm_ptr, pszParmValue);
4192 string_set((char **)parm_ptr, pszParmValue);
4193 strupper_m(*(char **)parm_ptr);
4197 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4206 /***************************************************************************
4207 Process a parameter.
4208 ***************************************************************************/
4210 static bool do_parameter(const char *pszParmName, const char *pszParmValue)
4212 if (!bInGlobalSection && bGlobalOnly)
4215 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4217 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4218 pszParmName, pszParmValue));
4221 /***************************************************************************
4222 Print a parameter of the specified type.
4223 ***************************************************************************/
4225 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4231 for (i = 0; p->enum_list[i].name; i++) {
4232 if (*(int *)ptr == p->enum_list[i].value) {
4234 p->enum_list[i].name);
4241 fprintf(f, "%s", BOOLSTR(*(bool *)ptr));
4245 fprintf(f, "%s", BOOLSTR(!*(bool *)ptr));
4249 fprintf(f, "%d", *(int *)ptr);
4253 fprintf(f, "%c", *(char *)ptr);
4257 char *o = octal_string(*(int *)ptr);
4258 fprintf(f, "%s", o);
4264 if ((char ***)ptr && *(char ***)ptr) {
4265 char **list = *(char ***)ptr;
4266 for (; *list; list++) {
4267 /* surround strings with whitespace in double quotes */
4268 if ( strchr_m( *list, ' ' ) )
4269 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4271 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4278 if (*(char **)ptr) {
4279 fprintf(f, "%s", *(char **)ptr);
4287 /***************************************************************************
4288 Check if two parameters are equal.
4289 ***************************************************************************/
4291 static bool equal_parameter(parm_type type, void *ptr1, void *ptr2)
4296 return (*((bool *)ptr1) == *((bool *)ptr2));
4301 return (*((int *)ptr1) == *((int *)ptr2));
4304 return (*((char *)ptr1) == *((char *)ptr2));
4307 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4312 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4317 return (p1 == p2 || strequal(p1, p2));
4325 /***************************************************************************
4326 Initialize any local varients in the sDefault table.
4327 ***************************************************************************/
4329 void init_locals(void)
4334 /***************************************************************************
4335 Process a new section (service). At this stage all sections are services.
4336 Later we'll have special sections that permit server parameters to be set.
4337 Returns True on success, False on failure.
4338 ***************************************************************************/
4340 static bool do_section(const char *pszSectionName)
4343 bool isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4344 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4347 /* if we were in a global section then do the local inits */
4348 if (bInGlobalSection && !isglobal)
4351 /* if we've just struck a global section, note the fact. */
4352 bInGlobalSection = isglobal;
4354 /* check for multiple global sections */
4355 if (bInGlobalSection) {
4356 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4360 if (!bInGlobalSection && bGlobalOnly)
4363 /* if we have a current service, tidy it up before moving on */
4366 if (iServiceIndex >= 0)
4367 bRetval = service_ok(iServiceIndex);
4369 /* if all is still well, move to the next record in the services array */
4371 /* We put this here to avoid an odd message order if messages are */
4372 /* issued by the post-processing of a previous section. */
4373 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4375 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4377 DEBUG(0, ("Failed to add a new service\n"));
4386 /***************************************************************************
4387 Determine if a partcular base parameter is currentl set to the default value.
4388 ***************************************************************************/
4390 static bool is_default(int i)
4392 if (!defaults_saved)
4394 switch (parm_table[i].type) {
4396 return str_list_compare (parm_table[i].def.lvalue,
4397 *(char ***)parm_table[i].ptr);
4400 return strequal(parm_table[i].def.svalue,
4401 *(char **)parm_table[i].ptr);
4404 return parm_table[i].def.bvalue ==
4405 *(bool *)parm_table[i].ptr;
4407 return parm_table[i].def.cvalue ==
4408 *(char *)parm_table[i].ptr;
4412 return parm_table[i].def.ivalue ==
4413 *(int *)parm_table[i].ptr;
4420 /***************************************************************************
4421 Display the contents of the global structure.
4422 ***************************************************************************/
4424 static void dump_globals(FILE *f)
4427 param_opt_struct *data;
4429 fprintf(f, "[global]\n");
4431 for (i = 0; parm_table[i].label; i++)
4432 if (parm_table[i].p_class == P_GLOBAL &&
4433 parm_table[i].ptr &&
4434 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4435 if (defaults_saved && is_default(i))
4437 fprintf(f, "\t%s = ", parm_table[i].label);
4438 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4441 if (Globals.param_opt != NULL) {
4442 data = Globals.param_opt;
4444 fprintf(f, "\t%s = %s\n", data->key, data->value);
4451 /***************************************************************************
4452 Return True if a local parameter is currently set to the global default.
4453 ***************************************************************************/
4455 bool lp_is_default(int snum, struct parm_struct *parm)
4457 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4459 return equal_parameter(parm->type,
4460 ((char *)ServicePtrs[snum]) + pdiff,
4461 ((char *)&sDefault) + pdiff);
4464 /***************************************************************************
4465 Display the contents of a single services record.
4466 ***************************************************************************/
4468 static void dump_a_service(service * pService, FILE * f)
4471 param_opt_struct *data;
4473 if (pService != &sDefault)
4474 fprintf(f, "[%s]\n", pService->szService);
4476 for (i = 0; parm_table[i].label; i++) {
4478 if (parm_table[i].p_class == P_LOCAL &&
4479 parm_table[i].ptr &&
4480 (*parm_table[i].label != '-') &&
4481 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4484 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4486 if (pService == &sDefault) {
4487 if (defaults_saved && is_default(i))
4490 if (equal_parameter(parm_table[i].type,
4491 ((char *)pService) +
4493 ((char *)&sDefault) +
4498 fprintf(f, "\t%s = ", parm_table[i].label);
4499 print_parameter(&parm_table[i],
4500 ((char *)pService) + pdiff, f);
4505 if (pService->param_opt != NULL) {
4506 data = pService->param_opt;
4508 fprintf(f, "\t%s = %s\n", data->key, data->value);
4514 /***************************************************************************
4515 Display the contents of a parameter of a single services record.
4516 ***************************************************************************/
4518 bool dump_a_parameter(int snum, char *parm_name, FILE * f, bool isGlobal)
4521 bool result = False;
4524 fstring local_parm_name;
4526 const char *parm_opt_value;
4528 /* check for parametrical option */
4529 fstrcpy( local_parm_name, parm_name);
4530 parm_opt = strchr( local_parm_name, ':');
4535 if (strlen(parm_opt)) {
4536 parm_opt_value = lp_parm_const_string( snum,
4537 local_parm_name, parm_opt, NULL);
4538 if (parm_opt_value) {
4539 printf( "%s\n", parm_opt_value);
4546 /* check for a key and print the value */
4553 for (i = 0; parm_table[i].label; i++) {
4554 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4555 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4556 parm_table[i].ptr &&
4557 (*parm_table[i].label != '-') &&
4558 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4563 ptr = parm_table[i].ptr;
4565 service * pService = ServicePtrs[snum];
4566 ptr = ((char *)pService) +
4567 PTR_DIFF(parm_table[i].ptr, &sDefault);
4570 print_parameter(&parm_table[i],
4581 /***************************************************************************
4582 Return info about the requested parameter (given as a string).
4583 Return NULL when the string is not a valid parameter name.
4584 ***************************************************************************/
4586 struct parm_struct *lp_get_parameter(const char *param_name)
4588 int num = map_parameter(param_name);
4594 return &parm_table[num];
4597 /***************************************************************************
4598 Return info about the next parameter in a service.
4599 snum==GLOBAL_SECTION_SNUM gives the globals.
4600 Return NULL when out of parameters.
4601 ***************************************************************************/
4603 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4606 /* do the globals */
4607 for (; parm_table[*i].label; (*i)++) {
4608 if (parm_table[*i].p_class == P_SEPARATOR)
4609 return &parm_table[(*i)++];
4611 if (!parm_table[*i].ptr
4612 || (*parm_table[*i].label == '-'))
4616 && (parm_table[*i].ptr ==
4617 parm_table[(*i) - 1].ptr))
4620 if (is_default(*i) && !allparameters)
4623 return &parm_table[(*i)++];
4626 service *pService = ServicePtrs[snum];
4628 for (; parm_table[*i].label; (*i)++) {
4629 if (parm_table[*i].p_class == P_SEPARATOR)
4630 return &parm_table[(*i)++];
4632 if (parm_table[*i].p_class == P_LOCAL &&
4633 parm_table[*i].ptr &&
4634 (*parm_table[*i].label != '-') &&
4636 (parm_table[*i].ptr !=
4637 parm_table[(*i) - 1].ptr)))
4640 PTR_DIFF(parm_table[*i].ptr,
4643 if (allparameters ||
4644 !equal_parameter(parm_table[*i].type,
4645 ((char *)pService) +
4647 ((char *)&sDefault) +
4650 return &parm_table[(*i)++];
4661 /***************************************************************************
4662 Display the contents of a single copy structure.
4663 ***************************************************************************/
4664 static void dump_copy_map(bool *pcopymap)
4670 printf("\n\tNon-Copied parameters:\n");
4672 for (i = 0; parm_table[i].label; i++)
4673 if (parm_table[i].p_class == P_LOCAL &&
4674 parm_table[i].ptr && !pcopymap[i] &&
4675 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4677 printf("\t\t%s\n", parm_table[i].label);
4682 /***************************************************************************
4683 Return TRUE if the passed service number is within range.
4684 ***************************************************************************/
4686 bool lp_snum_ok(int iService)
4688 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4691 /***************************************************************************
4692 Auto-load some home services.
4693 ***************************************************************************/
4695 static void lp_add_auto_services(char *str)
4704 s = SMB_STRDUP(str);
4708 homes = lp_servicenumber(HOMES_NAME);
4710 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4713 if (lp_servicenumber(p) >= 0)
4716 home = get_user_home_dir(talloc_tos(), p);
4718 if (home && homes >= 0)
4719 lp_add_home(p, homes, p, home);
4726 /***************************************************************************
4727 Auto-load one printer.
4728 ***************************************************************************/
4730 void lp_add_one_printer(char *name, char *comment)
4732 int printers = lp_servicenumber(PRINTERS_NAME);
4735 if (lp_servicenumber(name) < 0) {
4736 lp_add_printer(name, printers);
4737 if ((i = lp_servicenumber(name)) >= 0) {
4738 string_set(&ServicePtrs[i]->comment, comment);
4739 ServicePtrs[i]->autoloaded = True;
4744 /***************************************************************************
4745 Have we loaded a services file yet?
4746 ***************************************************************************/
4748 bool lp_loaded(void)
4753 /***************************************************************************
4754 Unload unused services.
4755 ***************************************************************************/
4757 void lp_killunused(bool (*snumused) (int))
4760 for (i = 0; i < iNumServices; i++) {
4764 /* don't kill autoloaded or usershare services */
4765 if ( ServicePtrs[i]->autoloaded ||
4766 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4770 if (!snumused || !snumused(i)) {
4771 free_service_byindex(i);
4776 /***************************************************************************
4778 ***************************************************************************/
4780 void lp_killservice(int iServiceIn)
4782 if (VALID(iServiceIn)) {
4783 free_service_byindex(iServiceIn);
4787 /***************************************************************************
4788 Save the curent values of all global and sDefault parameters into the
4789 defaults union. This allows swat and testparm to show only the
4790 changed (ie. non-default) parameters.
4791 ***************************************************************************/
4793 static void lp_save_defaults(void)
4796 for (i = 0; parm_table[i].label; i++) {
4797 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4799 switch (parm_table[i].type) {
4801 str_list_copy(&(parm_table[i].def.lvalue),
4802 *(const char ***)parm_table[i].ptr);
4806 if (parm_table[i].ptr) {
4807 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4809 parm_table[i].def.svalue = NULL;
4814 parm_table[i].def.bvalue =
4815 *(bool *)parm_table[i].ptr;
4818 parm_table[i].def.cvalue =
4819 *(char *)parm_table[i].ptr;
4824 parm_table[i].def.ivalue =
4825 *(int *)parm_table[i].ptr;
4831 defaults_saved = True;
4834 /*******************************************************************
4835 Set the server type we will announce as via nmbd.
4836 ********************************************************************/
4838 static const struct srv_role_tab {
4840 const char *role_str;
4841 } srv_role_tab [] = {
4842 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4843 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4844 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4845 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4849 const char* server_role_str(uint32 role)
4852 for (i=0; srv_role_tab[i].role_str; i++) {
4853 if (role == srv_role_tab[i].role) {
4854 return srv_role_tab[i].role_str;
4860 static void set_server_role(void)
4862 server_role = ROLE_STANDALONE;
4864 switch (lp_security()) {
4866 if (lp_domain_logons())
4867 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4870 if (lp_domain_logons())
4871 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4872 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4873 server_role = ROLE_STANDALONE;
4876 if (lp_domain_logons()) {
4877 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4878 server_role = ROLE_DOMAIN_BDC;
4881 server_role = ROLE_DOMAIN_MEMBER;
4884 if (lp_domain_logons()) {
4885 server_role = ROLE_DOMAIN_PDC;
4888 server_role = ROLE_DOMAIN_MEMBER;
4891 if (lp_domain_logons()) {
4893 if (Globals.iDomainMaster) /* auto or yes */
4894 server_role = ROLE_DOMAIN_PDC;
4896 server_role = ROLE_DOMAIN_BDC;
4900 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4904 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4907 /***********************************************************
4908 If we should send plaintext/LANMAN passwords in the clinet
4909 ************************************************************/
4911 static void set_allowed_client_auth(void)
4913 if (Globals.bClientNTLMv2Auth) {
4914 Globals.bClientLanManAuth = False;
4916 if (!Globals.bClientLanManAuth) {
4917 Globals.bClientPlaintextAuth = False;
4921 /***************************************************************************
4923 The following code allows smbd to read a user defined share file.
4924 Yes, this is my intent. Yes, I'm comfortable with that...
4926 THE FOLLOWING IS SECURITY CRITICAL CODE.
4928 It washes your clothes, it cleans your house, it guards you while you sleep...
4929 Do not f%^k with it....
4930 ***************************************************************************/
4932 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4934 /***************************************************************************
4935 Check allowed stat state of a usershare file.
4936 Ensure we print out who is dicking with us so the admin can
4937 get their sorry ass fired.
4938 ***************************************************************************/
4940 static bool check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4942 if (!S_ISREG(psbuf->st_mode)) {
4943 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4944 "not a regular file\n",
4945 fname, (unsigned int)psbuf->st_uid ));
4949 /* Ensure this doesn't have the other write bit set. */
4950 if (psbuf->st_mode & S_IWOTH) {
4951 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4952 "public write. Refusing to allow as a usershare file.\n",
4953 fname, (unsigned int)psbuf->st_uid ));
4957 /* Should be 10k or less. */
4958 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4959 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4960 "too large (%u) to be a user share file.\n",
4961 fname, (unsigned int)psbuf->st_uid,
4962 (unsigned int)psbuf->st_size ));
4969 /***************************************************************************
4970 Parse the contents of a usershare file.
4971 ***************************************************************************/
4973 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4974 SMB_STRUCT_STAT *psbuf,
4975 const char *servicename,
4979 char **pp_sharepath,
4984 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4985 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4988 SMB_STRUCT_STAT sbuf;
4989 char *sharepath = NULL;
4990 char *comment = NULL;
4992 *pp_sharepath = NULL;
4995 *pallow_guest = False;
4998 return USERSHARE_MALFORMED_FILE;
5001 if (strcmp(lines[0], "#VERSION 1") == 0) {
5003 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
5006 return USERSHARE_MALFORMED_FILE;
5009 return USERSHARE_BAD_VERSION;
5012 if (strncmp(lines[1], "path=", 5) != 0) {
5013 return USERSHARE_MALFORMED_PATH;
5016 sharepath = talloc_strdup(ctx, &lines[1][5]);
5018 return USERSHARE_POSIX_ERR;
5020 trim_string(sharepath, " ", " ");
5022 if (strncmp(lines[2], "comment=", 8) != 0) {
5023 return USERSHARE_MALFORMED_COMMENT_DEF;
5026 comment = talloc_strdup(ctx, &lines[2][8]);
5028 return USERSHARE_POSIX_ERR;
5030 trim_string(comment, " ", " ");
5031 trim_char(comment, '"', '"');
5033 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
5034 return USERSHARE_MALFORMED_ACL_DEF;
5037 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
5038 return USERSHARE_ACL_ERR;
5042 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
5043 return USERSHARE_MALFORMED_ACL_DEF;
5045 if (lines[4][9] == 'y') {
5046 *pallow_guest = True;
5050 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
5051 /* Path didn't change, no checks needed. */
5052 *pp_sharepath = sharepath;
5053 *pp_comment = comment;
5054 return USERSHARE_OK;
5057 /* The path *must* be absolute. */
5058 if (sharepath[0] != '/') {
5059 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
5060 servicename, sharepath));
5061 return USERSHARE_PATH_NOT_ABSOLUTE;
5064 /* If there is a usershare prefix deny list ensure one of these paths
5065 doesn't match the start of the user given path. */
5066 if (prefixdenylist) {
5068 for ( i=0; prefixdenylist[i]; i++ ) {
5069 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
5070 servicename, i, prefixdenylist[i], sharepath ));
5071 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
5072 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
5073 "usershare prefix deny list entries.\n",
5074 servicename, sharepath));
5075 return USERSHARE_PATH_IS_DENIED;
5080 /* If there is a usershare prefix allow list ensure one of these paths
5081 does match the start of the user given path. */
5083 if (prefixallowlist) {
5085 for ( i=0; prefixallowlist[i]; i++ ) {
5086 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
5087 servicename, i, prefixallowlist[i], sharepath ));
5088 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
5092 if (prefixallowlist[i] == NULL) {
5093 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
5094 "usershare prefix allow list entries.\n",
5095 servicename, sharepath));
5096 return USERSHARE_PATH_NOT_ALLOWED;
5100 /* Ensure this is pointing to a directory. */
5101 dp = sys_opendir(sharepath);
5104 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5105 servicename, sharepath));
5106 return USERSHARE_PATH_NOT_DIRECTORY;
5109 /* Ensure the owner of the usershare file has permission to share
5112 if (sys_stat(sharepath, &sbuf) == -1) {
5113 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
5114 servicename, sharepath, strerror(errno) ));
5116 return USERSHARE_POSIX_ERR;
5121 if (!S_ISDIR(sbuf.st_mode)) {
5122 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5123 servicename, sharepath ));
5124 return USERSHARE_PATH_NOT_DIRECTORY;
5127 /* Check if sharing is restricted to owner-only. */
5128 /* psbuf is the stat of the usershare definition file,
5129 sbuf is the stat of the target directory to be shared. */
5131 if (lp_usershare_owner_only()) {
5132 /* root can share anything. */
5133 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
5134 return USERSHARE_PATH_NOT_ALLOWED;
5138 *pp_sharepath = sharepath;
5139 *pp_comment = comment;
5140 return USERSHARE_OK;
5143 /***************************************************************************
5144 Deal with a usershare file.
5147 -1 - Bad name, invalid contents.
5148 - service name already existed and not a usershare, problem
5149 with permissions to share directory etc.
5150 ***************************************************************************/
5152 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5154 SMB_STRUCT_STAT sbuf;
5155 SMB_STRUCT_STAT lsbuf;
5157 char *sharepath = NULL;
5158 char *comment = NULL;
5159 fstring service_name;
5160 char **lines = NULL;
5164 TALLOC_CTX *ctx = NULL;
5165 SEC_DESC *psd = NULL;
5166 bool guest_ok = False;
5168 /* Ensure share name doesn't contain invalid characters. */
5169 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5170 DEBUG(0,("process_usershare_file: share name %s contains "
5171 "invalid characters (any of %s)\n",
5172 file_name, INVALID_SHARENAME_CHARS ));
5176 fstrcpy(service_name, file_name);
5178 if (asprintf(&fname, "%s/%s", dir_name, file_name) < 0) {
5181 /* Minimize the race condition by doing an lstat before we
5182 open and fstat. Ensure this isn't a symlink link. */
5184 if (sys_lstat(fname, &lsbuf) != 0) {
5185 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5186 fname, strerror(errno) ));
5191 /* This must be a regular file, not a symlink, directory or
5192 other strange filetype. */
5193 if (!check_usershare_stat(fname, &lsbuf)) {
5199 char *canon_name = canonicalize_servicename(service_name);
5200 TDB_DATA data = dbwrap_fetch_bystring(
5201 ServiceHash, canon_name, canon_name);
5205 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
5206 iService = *(int *)data.dptr;
5208 TALLOC_FREE(canon_name);
5211 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5212 /* Nothing changed - Mark valid and return. */
5213 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5215 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5220 /* Try and open the file read only - no symlinks allowed. */
5222 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5224 fd = sys_open(fname, O_RDONLY, 0);
5228 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5229 fname, strerror(errno) ));
5234 /* Now fstat to be *SURE* it's a regular file. */
5235 if (sys_fstat(fd, &sbuf) != 0) {
5237 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5238 fname, strerror(errno) ));
5243 /* Is it the same dev/inode as was lstated ? */
5244 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5246 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5247 "Symlink spoofing going on ?\n", fname ));
5252 /* This must be a regular file, not a symlink, directory or
5253 other strange filetype. */
5254 if (!check_usershare_stat(fname, &sbuf)) {
5259 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5262 if (lines == NULL) {
5263 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5264 fname, (unsigned int)sbuf.st_uid ));
5271 /* Should we allow printers to be shared... ? */
5272 ctx = talloc_init("usershare_sd_xctx");
5274 file_lines_free(lines);
5278 if (parse_usershare_file(ctx, &sbuf, service_name,
5279 iService, lines, numlines, &sharepath,
5280 &comment, &psd, &guest_ok) != USERSHARE_OK) {
5281 talloc_destroy(ctx);
5282 file_lines_free(lines);
5286 file_lines_free(lines);
5288 /* Everything ok - add the service possibly using a template. */
5290 const service *sp = &sDefault;
5291 if (snum_template != -1) {
5292 sp = ServicePtrs[snum_template];
5295 if ((iService = add_a_service(sp, service_name)) < 0) {
5296 DEBUG(0, ("process_usershare_file: Failed to add "
5297 "new service %s\n", service_name));
5298 talloc_destroy(ctx);
5302 /* Read only is controlled by usershare ACL below. */
5303 ServicePtrs[iService]->bRead_only = False;
5306 /* Write the ACL of the new/modified share. */
5307 if (!set_share_security(service_name, psd)) {
5308 DEBUG(0, ("process_usershare_file: Failed to set share "
5309 "security for user share %s\n",
5311 lp_remove_service(iService);
5312 talloc_destroy(ctx);
5316 /* If from a template it may be marked invalid. */
5317 ServicePtrs[iService]->valid = True;
5319 /* Set the service as a valid usershare. */
5320 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5322 /* Set guest access. */
5323 if (lp_usershare_allow_guests()) {
5324 ServicePtrs[iService]->bGuest_ok = guest_ok;
5327 /* And note when it was loaded. */
5328 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5329 string_set(&ServicePtrs[iService]->szPath, sharepath);
5330 string_set(&ServicePtrs[iService]->comment, comment);
5332 talloc_destroy(ctx);
5337 /***************************************************************************
5338 Checks if a usershare entry has been modified since last load.
5339 ***************************************************************************/
5341 static bool usershare_exists(int iService, time_t *last_mod)
5343 SMB_STRUCT_STAT lsbuf;
5344 const char *usersharepath = Globals.szUsersharePath;
5347 if (asprintf(&fname, "%s/%s",
5349 ServicePtrs[iService]->szService) < 0) {
5353 if (sys_lstat(fname, &lsbuf) != 0) {
5358 if (!S_ISREG(lsbuf.st_mode)) {
5364 *last_mod = lsbuf.st_mtime;
5368 /***************************************************************************
5369 Load a usershare service by name. Returns a valid servicenumber or -1.
5370 ***************************************************************************/
5372 int load_usershare_service(const char *servicename)
5374 SMB_STRUCT_STAT sbuf;
5375 const char *usersharepath = Globals.szUsersharePath;
5376 int max_user_shares = Globals.iUsershareMaxShares;
5377 int snum_template = -1;
5379 if (*usersharepath == 0 || max_user_shares == 0) {
5383 if (sys_stat(usersharepath, &sbuf) != 0) {
5384 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5385 usersharepath, strerror(errno) ));
5389 if (!S_ISDIR(sbuf.st_mode)) {
5390 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5396 * This directory must be owned by root, and have the 't' bit set.
5397 * It also must not be writable by "other".
5401 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5403 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5405 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5406 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5411 /* Ensure the template share exists if it's set. */
5412 if (Globals.szUsershareTemplateShare[0]) {
5413 /* We can't use lp_servicenumber here as we are recommending that
5414 template shares have -valid=False set. */
5415 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5416 if (ServicePtrs[snum_template]->szService &&
5417 strequal(ServicePtrs[snum_template]->szService,
5418 Globals.szUsershareTemplateShare)) {
5423 if (snum_template == -1) {
5424 DEBUG(0,("load_usershare_service: usershare template share %s "
5425 "does not exist.\n",
5426 Globals.szUsershareTemplateShare ));
5431 return process_usershare_file(usersharepath, servicename, snum_template);
5434 /***************************************************************************
5435 Load all user defined shares from the user share directory.
5436 We only do this if we're enumerating the share list.
5437 This is the function that can delete usershares that have
5439 ***************************************************************************/
5441 int load_usershare_shares(void)
5444 SMB_STRUCT_STAT sbuf;
5445 SMB_STRUCT_DIRENT *de;
5446 int num_usershares = 0;
5447 int max_user_shares = Globals.iUsershareMaxShares;
5448 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5449 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5450 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5452 int snum_template = -1;
5453 const char *usersharepath = Globals.szUsersharePath;
5454 int ret = lp_numservices();
5456 if (max_user_shares == 0 || *usersharepath == '\0') {
5457 return lp_numservices();
5460 if (sys_stat(usersharepath, &sbuf) != 0) {
5461 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5462 usersharepath, strerror(errno) ));
5467 * This directory must be owned by root, and have the 't' bit set.
5468 * It also must not be writable by "other".
5472 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5474 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5476 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5477 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5482 /* Ensure the template share exists if it's set. */
5483 if (Globals.szUsershareTemplateShare[0]) {
5484 /* We can't use lp_servicenumber here as we are recommending that
5485 template shares have -valid=False set. */
5486 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5487 if (ServicePtrs[snum_template]->szService &&
5488 strequal(ServicePtrs[snum_template]->szService,
5489 Globals.szUsershareTemplateShare)) {
5494 if (snum_template == -1) {
5495 DEBUG(0,("load_usershare_shares: usershare template share %s "
5496 "does not exist.\n",
5497 Globals.szUsershareTemplateShare ));
5502 /* Mark all existing usershares as pending delete. */
5503 for (iService = iNumServices - 1; iService >= 0; iService--) {
5504 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5505 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5509 dp = sys_opendir(usersharepath);
5511 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5512 usersharepath, strerror(errno) ));
5516 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5517 (de = sys_readdir(dp));
5518 num_dir_entries++ ) {
5520 const char *n = de->d_name;
5522 /* Ignore . and .. */
5524 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5530 /* Temporary file used when creating a share. */
5531 num_tmp_dir_entries++;
5534 /* Allow 20% tmp entries. */
5535 if (num_tmp_dir_entries > allowed_tmp_entries) {
5536 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5537 "in directory %s\n",
5538 num_tmp_dir_entries, usersharepath));
5542 r = process_usershare_file(usersharepath, n, snum_template);
5544 /* Update the services count. */
5546 if (num_usershares >= max_user_shares) {
5547 DEBUG(0,("load_usershare_shares: max user shares reached "
5548 "on file %s in directory %s\n",
5549 n, usersharepath ));
5552 } else if (r == -1) {
5553 num_bad_dir_entries++;
5556 /* Allow 20% bad entries. */
5557 if (num_bad_dir_entries > allowed_bad_entries) {
5558 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5559 "in directory %s\n",
5560 num_bad_dir_entries, usersharepath));
5564 /* Allow 20% bad entries. */
5565 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5566 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5567 "in directory %s\n",
5568 num_dir_entries, usersharepath));
5575 /* Sweep through and delete any non-refreshed usershares that are
5576 not currently in use. */
5577 for (iService = iNumServices - 1; iService >= 0; iService--) {
5578 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5579 if (conn_snum_used(iService)) {
5582 /* Remove from the share ACL db. */
5583 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5584 lp_servicename(iService) ));
5585 delete_share_security(lp_servicename(iService));
5586 free_service_byindex(iService);
5590 return lp_numservices();
5593 /********************************************************
5594 Destroy global resources allocated in this file
5595 ********************************************************/
5597 void gfree_loadparm(void)
5599 struct file_lists *f;
5600 struct file_lists *next;
5603 /* Free the file lists */
5608 SAFE_FREE( f->name );
5609 SAFE_FREE( f->subfname );
5614 /* Free resources allocated to services */
5616 for ( i = 0; i < iNumServices; i++ ) {
5618 free_service_byindex(i);
5622 SAFE_FREE( ServicePtrs );
5625 /* Now release all resources allocated to global
5626 parameters and the default service */
5628 for (i = 0; parm_table[i].label; i++)
5630 if ( parm_table[i].type == P_STRING
5631 || parm_table[i].type == P_USTRING )
5633 string_free( (char**)parm_table[i].ptr );
5635 else if (parm_table[i].type == P_LIST) {
5636 str_list_free( (char***)parm_table[i].ptr );
5641 /***************************************************************************
5642 Load the services array from the services file. Return True on success,
5644 ***************************************************************************/
5646 bool lp_load(const char *pszFname,
5650 bool initialize_globals)
5654 param_opt_struct *data, *pdata;
5656 n2 = alloc_sub_basic(get_current_username(),
5657 current_user_info.domain,
5660 smb_panic("lp_load: out of memory");
5663 add_to_file_list(pszFname, n2);
5667 DEBUG(3, ("lp_load: refreshing parameters\n"));
5669 bInGlobalSection = True;
5670 bGlobalOnly = global_only;
5672 init_globals(! initialize_globals);
5675 if (save_defaults) {
5680 if (Globals.param_opt != NULL) {
5681 data = Globals.param_opt;
5683 string_free(&data->key);
5684 string_free(&data->value);
5685 str_list_free(&data->list);
5690 Globals.param_opt = NULL;
5693 /* We get sections first, so have to start 'behind' to make up */
5695 bRetval = pm_process(n2, do_section, do_parameter);
5698 /* finish up the last section */
5699 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5701 if (iServiceIndex >= 0) {
5702 bRetval = service_ok(iServiceIndex);
5706 lp_add_auto_services(lp_auto_services());
5709 /* When 'restrict anonymous = 2' guest connections to ipc$
5711 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5712 if ( lp_enable_asu_support() ) {
5713 lp_add_ipc("ADMIN$", false);
5718 set_default_server_announce_type();
5719 set_allowed_client_auth();
5723 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5724 /* if bWINSsupport is true and we are in the client */
5725 if (in_client && Globals.bWINSsupport) {
5726 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5734 /***************************************************************************
5735 Reset the max number of services.
5736 ***************************************************************************/
5738 void lp_resetnumservices(void)
5743 /***************************************************************************
5744 Return the max number of services.
5745 ***************************************************************************/
5747 int lp_numservices(void)
5749 return (iNumServices);
5752 /***************************************************************************
5753 Display the contents of the services array in human-readable form.
5754 ***************************************************************************/
5756 void lp_dump(FILE *f, bool show_defaults, int maxtoprint)
5761 defaults_saved = False;
5765 dump_a_service(&sDefault, f);
5767 for (iService = 0; iService < maxtoprint; iService++) {
5769 lp_dump_one(f, show_defaults, iService);
5773 /***************************************************************************
5774 Display the contents of one service in human-readable form.
5775 ***************************************************************************/
5777 void lp_dump_one(FILE * f, bool show_defaults, int snum)
5780 if (ServicePtrs[snum]->szService[0] == '\0')
5782 dump_a_service(ServicePtrs[snum], f);
5786 /***************************************************************************
5787 Return the number of the service with the given name, or -1 if it doesn't
5788 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5789 getservicebyname()! This works ONLY if all services have been loaded, and
5790 does not copy the found service.
5791 ***************************************************************************/
5793 int lp_servicenumber(const char *pszServiceName)
5796 fstring serviceName;
5798 if (!pszServiceName) {
5799 return GLOBAL_SECTION_SNUM;
5802 for (iService = iNumServices - 1; iService >= 0; iService--) {
5803 if (VALID(iService) && ServicePtrs[iService]->szService) {
5805 * The substitution here is used to support %U is
5808 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5809 standard_sub_basic(get_current_username(),
5810 current_user_info.domain,
5811 serviceName,sizeof(serviceName));
5812 if (strequal(serviceName, pszServiceName)) {
5818 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5821 if (!usershare_exists(iService, &last_mod)) {
5822 /* Remove the share security tdb entry for it. */
5823 delete_share_security(lp_servicename(iService));
5824 /* Remove it from the array. */
5825 free_service_byindex(iService);
5826 /* Doesn't exist anymore. */
5827 return GLOBAL_SECTION_SNUM;
5830 /* Has it been modified ? If so delete and reload. */
5831 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5832 /* Remove it from the array. */
5833 free_service_byindex(iService);
5834 /* and now reload it. */
5835 iService = load_usershare_service(pszServiceName);
5840 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5841 return GLOBAL_SECTION_SNUM;
5847 bool share_defined(const char *service_name)
5849 return (lp_servicenumber(service_name) != -1);
5852 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5853 const char *sharename)
5855 struct share_params *result;
5859 if (!(sname = SMB_STRDUP(sharename))) {
5863 snum = find_service(sname);
5870 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5871 DEBUG(0, ("talloc failed\n"));
5875 result->service = snum;
5879 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5881 struct share_iterator *result;
5883 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5884 DEBUG(0, ("talloc failed\n"));
5888 result->next_id = 0;
5892 struct share_params *next_share(struct share_iterator *list)
5894 struct share_params *result;
5896 while (!lp_snum_ok(list->next_id) &&
5897 (list->next_id < lp_numservices())) {
5901 if (list->next_id >= lp_numservices()) {
5905 if (!(result = TALLOC_P(list, struct share_params))) {
5906 DEBUG(0, ("talloc failed\n"));
5910 result->service = list->next_id;
5915 struct share_params *next_printer(struct share_iterator *list)
5917 struct share_params *result;
5919 while ((result = next_share(list)) != NULL) {
5920 if (lp_print_ok(result->service)) {
5928 * This is a hack for a transition period until we transformed all code from
5929 * service numbers to struct share_params.
5932 struct share_params *snum2params_static(int snum)
5934 static struct share_params result;
5935 result.service = snum;
5939 /*******************************************************************
5940 A useful volume label function.
5941 ********************************************************************/
5943 const char *volume_label(int snum)
5946 const char *label = lp_volume(snum);
5948 label = lp_servicename(snum);
5951 /* This returns a 33 byte guarenteed null terminated string. */
5952 ret = talloc_strndup(talloc_tos(), label, 32);
5959 /*******************************************************************
5960 Set the server type we will announce as via nmbd.
5961 ********************************************************************/
5963 static void set_default_server_announce_type(void)
5965 default_server_announce = 0;
5966 default_server_announce |= SV_TYPE_WORKSTATION;
5967 default_server_announce |= SV_TYPE_SERVER;
5968 default_server_announce |= SV_TYPE_SERVER_UNIX;
5970 /* note that the flag should be set only if we have a
5971 printer service but nmbd doesn't actually load the
5972 services so we can't tell --jerry */
5974 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5976 switch (lp_announce_as()) {
5977 case ANNOUNCE_AS_NT_SERVER:
5978 default_server_announce |= SV_TYPE_SERVER_NT;
5979 /* fall through... */
5980 case ANNOUNCE_AS_NT_WORKSTATION:
5981 default_server_announce |= SV_TYPE_NT;
5983 case ANNOUNCE_AS_WIN95:
5984 default_server_announce |= SV_TYPE_WIN95_PLUS;
5986 case ANNOUNCE_AS_WFW:
5987 default_server_announce |= SV_TYPE_WFW;
5993 switch (lp_server_role()) {
5994 case ROLE_DOMAIN_MEMBER:
5995 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5997 case ROLE_DOMAIN_PDC:
5998 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
6000 case ROLE_DOMAIN_BDC:
6001 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
6003 case ROLE_STANDALONE:
6007 if (lp_time_server())
6008 default_server_announce |= SV_TYPE_TIME_SOURCE;
6010 if (lp_host_msdfs())
6011 default_server_announce |= SV_TYPE_DFS_SERVER;
6014 /***********************************************************
6015 returns role of Samba server
6016 ************************************************************/
6018 int lp_server_role(void)
6023 /***********************************************************
6024 If we are PDC then prefer us as DMB
6025 ************************************************************/
6027 bool lp_domain_master(void)
6029 if (Globals.iDomainMaster == Auto)
6030 return (lp_server_role() == ROLE_DOMAIN_PDC);
6032 return (bool)Globals.iDomainMaster;
6035 /***********************************************************
6036 If we are DMB then prefer us as LMB
6037 ************************************************************/
6039 bool lp_preferred_master(void)
6041 if (Globals.iPreferredMaster == Auto)
6042 return (lp_local_master() && lp_domain_master());
6044 return (bool)Globals.iPreferredMaster;
6047 /*******************************************************************
6049 ********************************************************************/
6051 void lp_remove_service(int snum)
6053 ServicePtrs[snum]->valid = False;
6054 invalid_services[num_invalid_services++] = snum;
6057 /*******************************************************************
6059 ********************************************************************/
6061 void lp_copy_service(int snum, const char *new_name)
6063 do_section(new_name);
6065 snum = lp_servicenumber(new_name);
6067 lp_do_parameter(snum, "copy", lp_servicename(snum));
6072 /*******************************************************************
6073 Get the default server type we will announce as via nmbd.
6074 ********************************************************************/
6076 int lp_default_server_announce(void)
6078 return default_server_announce;
6081 /*******************************************************************
6082 Split the announce version into major and minor numbers.
6083 ********************************************************************/
6085 int lp_major_announce_version(void)
6087 static bool got_major = False;
6088 static int major_version = DEFAULT_MAJOR_VERSION;
6093 return major_version;
6096 if ((vers = lp_announce_version()) == NULL)
6097 return major_version;
6099 if ((p = strchr_m(vers, '.')) == 0)
6100 return major_version;
6103 major_version = atoi(vers);
6104 return major_version;
6107 int lp_minor_announce_version(void)
6109 static bool got_minor = False;
6110 static int minor_version = DEFAULT_MINOR_VERSION;
6115 return minor_version;
6118 if ((vers = lp_announce_version()) == NULL)
6119 return minor_version;
6121 if ((p = strchr_m(vers, '.')) == 0)
6122 return minor_version;
6125 minor_version = atoi(p);
6126 return minor_version;
6129 /***********************************************************
6130 Set the global name resolution order (used in smbclient).
6131 ************************************************************/
6133 void lp_set_name_resolve_order(const char *new_order)
6135 string_set(&Globals.szNameResolveOrder, new_order);
6138 const char *lp_printername(int snum)
6140 const char *ret = _lp_printername(snum);
6141 if (ret == NULL || (ret != NULL && *ret == '\0'))
6142 ret = lp_const_servicename(snum);
6148 /***********************************************************
6149 Allow daemons such as winbindd to fix their logfile name.
6150 ************************************************************/
6152 void lp_set_logfile(const char *name)
6154 string_set(&Globals.szLogFile, name);
6155 debug_set_logfile(name);
6158 /*******************************************************************
6159 Return the max print jobs per queue.
6160 ********************************************************************/
6162 int lp_maxprintjobs(int snum)
6164 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6165 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6166 maxjobs = PRINT_MAX_JOBID - 1;
6171 const char *lp_printcapname(void)
6173 if ((Globals.szPrintcapname != NULL) &&
6174 (Globals.szPrintcapname[0] != '\0'))
6175 return Globals.szPrintcapname;
6177 if (sDefault.iPrinting == PRINT_CUPS) {
6185 if (sDefault.iPrinting == PRINT_BSD)
6186 return "/etc/printcap";
6188 return PRINTCAP_NAME;
6191 /*******************************************************************
6192 Ensure we don't use sendfile if server smb signing is active.
6193 ********************************************************************/
6195 static uint32 spoolss_state;
6197 bool lp_disable_spoolss( void )
6199 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6200 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6202 return spoolss_state == SVCCTL_STOPPED ? True : False;
6205 void lp_set_spoolss_state( uint32 state )
6207 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6209 spoolss_state = state;
6212 uint32 lp_get_spoolss_state( void )
6214 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6217 /*******************************************************************
6218 Ensure we don't use sendfile if server smb signing is active.
6219 ********************************************************************/
6221 bool lp_use_sendfile(int snum)
6223 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6224 if (Protocol < PROTOCOL_NT1) {
6227 return (_lp_use_sendfile(snum) &&
6228 (get_remote_arch() != RA_WIN95) &&
6229 !srv_is_signing_active());
6232 /*******************************************************************
6233 Turn off sendfile if we find the underlying OS doesn't support it.
6234 ********************************************************************/
6236 void set_use_sendfile(int snum, bool val)
6238 if (LP_SNUM_OK(snum))
6239 ServicePtrs[snum]->bUseSendfile = val;
6241 sDefault.bUseSendfile = val;
6244 /*******************************************************************
6245 Turn off storing DOS attributes if this share doesn't support it.
6246 ********************************************************************/
6248 void set_store_dos_attributes(int snum, bool val)
6250 if (!LP_SNUM_OK(snum))
6252 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6255 void lp_set_mangling_method(const char *new_method)
6257 string_set(&Globals.szManglingMethod, new_method);
6260 /*******************************************************************
6261 Global state for POSIX pathname processing.
6262 ********************************************************************/
6264 static bool posix_pathnames;
6266 bool lp_posix_pathnames(void)
6268 return posix_pathnames;
6271 /*******************************************************************
6272 Change everything needed to ensure POSIX pathname processing (currently
6274 ********************************************************************/
6276 void lp_set_posix_pathnames(void)
6278 posix_pathnames = True;
6281 /*******************************************************************
6282 Global state for POSIX lock processing - CIFS unix extensions.
6283 ********************************************************************/
6285 bool posix_default_lock_was_set;
6286 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6288 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6290 if (posix_default_lock_was_set) {
6291 return posix_cifsx_locktype;
6293 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6297 /*******************************************************************
6298 ********************************************************************/
6300 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6302 posix_default_lock_was_set = True;
6303 posix_cifsx_locktype = val;
6306 int lp_min_receive_file_size(void)
6308 if (Globals.iminreceivefile < 0) {
6311 return MIN(Globals.iminreceivefile, BUFFER_SIZE);