2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
12 Copyright (C) Michael Adam 2008
14 This program is free software; you can redistribute it and/or modify
15 it under the terms of the GNU General Public License as published by
16 the Free Software Foundation; either version 3 of the License, or
17 (at your option) any later version.
19 This program is distributed in the hope that it will be useful,
20 but WITHOUT ANY WARRANTY; without even the implied warranty of
21 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22 GNU General Public License for more details.
24 You should have received a copy of the GNU General Public License
25 along with this program. If not, see <http://www.gnu.org/licenses/>.
31 * This module provides suitable callback functions for the params
32 * module. It builds the internal table of service details which is
33 * then used by the rest of the server.
37 * 1) add it to the global or service structure definition
38 * 2) add it to the parm_table
39 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
40 * 4) If it's a global then initialise it in init_globals. If a local
41 * (ie. service) parameter then initialise it in the sDefault structure
45 * The configuration file is processed sequentially for speed. It is NOT
46 * accessed randomly as happens in 'real' Windows. For this reason, there
47 * is a fair bit of sequence-dependent code here - ie., code which assumes
48 * that certain things happen before others. In particular, the code which
49 * happens at the boundary between sections is delicately poised, so be
55 #include "libnet/libnet.h"
57 bool in_client = False; /* Not in the client by default */
60 extern enum protocol_types Protocol;
61 extern userdom_struct current_user_info;
64 #define GLOBAL_NAME "global"
68 #define PRINTERS_NAME "printers"
72 #define HOMES_NAME "homes"
75 static uint64_t conf_last_seqnum = 0;
76 static struct libnet_conf_ctx *conf_ctx = NULL;
78 #define CONFIG_BACKEND_FILE 0
79 #define CONFIG_BACKEND_REGISTRY 1
81 static int config_backend = CONFIG_BACKEND_FILE;
83 /* some helpful bits */
84 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
85 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
87 #define USERSHARE_VALID 1
88 #define USERSHARE_PENDING_DELETE 2
90 extern int extra_time_offset;
92 static bool defaults_saved = False;
94 typedef struct _param_opt_struct param_opt_struct;
95 struct _param_opt_struct {
96 param_opt_struct *prev, *next;
103 * This structure describes global (ie., server-wide) parameters.
110 char *display_charset;
111 char *szPrintcapname;
112 char *szAddPortCommand;
113 char *szEnumPortsCommand;
114 char *szAddPrinterCommand;
115 char *szDeletePrinterCommand;
116 char *szOs2DriverMap;
120 char *szDefaultService;
124 char *szServerString;
125 char *szAutoServices;
126 char *szPasswdProgram;
130 char *szSMBPasswdFile;
132 char *szPassdbBackend;
133 char **szPreloadModules;
134 char *szPasswordServer;
135 char *szSocketOptions;
137 char *szAfsUsernameMap;
138 int iAfsTokenLifetime;
139 char *szLogNtTokenCommand;
145 char **szWINSservers;
147 char *szRemoteAnnounce;
148 char *szRemoteBrowseSync;
149 char *szSocketAddress;
150 char *szNISHomeMapName;
151 char *szAnnounceVersion; /* This is initialised in init_globals */
154 char **szNetbiosAliases;
155 char *szNetbiosScope;
156 char *szNameResolveOrder;
158 char *szAddUserScript;
159 char *szRenameUserScript;
160 char *szDelUserScript;
161 char *szAddGroupScript;
162 char *szDelGroupScript;
163 char *szAddUserToGroupScript;
164 char *szDelUserFromGroupScript;
165 char *szSetPrimaryGroupScript;
166 char *szAddMachineScript;
167 char *szShutdownScript;
168 char *szAbortShutdownScript;
169 char *szUsernameMapScript;
170 char *szCheckPasswordScript;
177 bool bPassdbExpandExplicit;
178 int AlgorithmicRidBase;
179 char *szTemplateHomedir;
180 char *szTemplateShell;
181 char *szWinbindSeparator;
182 bool bWinbindEnumUsers;
183 bool bWinbindEnumGroups;
184 bool bWinbindUseDefaultDomain;
185 bool bWinbindTrustedDomainsOnly;
186 bool bWinbindNestedGroups;
187 int winbind_expand_groups;
188 bool bWinbindRefreshTickets;
189 bool bWinbindOfflineLogon;
190 bool bWinbindNormalizeNames;
191 bool bWinbindRpcOnly;
192 char **szIdmapDomains;
193 char **szIdmapBackend; /* deprecated */
194 char *szIdmapAllocBackend;
195 char *szAddShareCommand;
196 char *szChangeShareCommand;
197 char *szDeleteShareCommand;
199 char *szGuestaccount;
200 char *szManglingMethod;
201 char **szServicesList;
202 char *szUsersharePath;
203 char *szUsershareTemplateShare;
204 char **szUsersharePrefixAllowList;
205 char **szUsersharePrefixDenyList;
212 int open_files_db_hash_size;
221 bool paranoid_server_security;
224 int iMaxSmbdProcesses;
225 bool bDisableSpoolss;
228 bool enhanced_browsing;
234 int announce_as; /* This is initialised in init_globals */
235 int machine_password_timeout;
237 int oplock_break_wait_time;
238 int winbind_cache_time;
239 int winbind_max_idle_children;
240 char **szWinbindNssInfo;
242 char *szLdapMachineSuffix;
243 char *szLdapUserSuffix;
244 char *szLdapIdmapSuffix;
245 char *szLdapGroupSuffix;
249 int ldap_debug_level;
250 int ldap_debug_threshold;
253 char *szIPrintServer;
255 char **szClusterAddresses;
257 int ldap_passwd_sync;
258 int ldap_replication_sleep;
259 int ldap_timeout; /* This is initialised in init_globals */
262 bool bMsAddPrinterWizard;
267 int iPreferredMaster;
270 bool bEncryptPasswords;
275 bool bObeyPamRestrictions;
277 int PrintcapCacheTime;
278 bool bLargeReadwrite;
285 bool bBindInterfacesOnly;
286 bool bPamPasswordChange;
287 bool bUnixPasswdSync;
288 bool bPasswdChatDebug;
289 int iPasswdChatTimeout;
293 bool bNTStatusSupport;
295 int iMaxStatCacheSize;
297 bool bAllowTrustedDomains;
301 bool bClientLanManAuth;
302 bool bClientNTLMv2Auth;
303 bool bClientPlaintextAuth;
304 bool bClientUseSpnego;
305 bool bDebugPrefixTimestamp;
306 bool bDebugHiresTimestamp;
310 bool bEnableCoreFiles;
313 bool bHostnameLookups;
314 bool bUnixExtensions;
315 bool bDisableNetbios;
316 bool bUseKerberosKeytab;
317 bool bDeferSharingViolations;
318 bool bEnablePrivileges;
320 bool bUsershareOwnerOnly;
321 bool bUsershareAllowGuests;
322 bool bRegistryShares;
323 int restrict_anonymous;
324 int name_cache_timeout;
327 int client_ldap_sasl_wrapping;
328 int iUsershareMaxShares;
330 int iIdmapNegativeCacheTime;
335 param_opt_struct *param_opt;
338 static global Globals;
341 * This structure describes a single service.
347 time_t usershare_last_mod;
351 char **szInvalidUsers;
359 char *szRootPostExec;
361 char *szPrintcommand;
364 char *szLppausecommand;
365 char *szLpresumecommand;
366 char *szQueuepausecommand;
367 char *szQueueresumecommand;
369 char *szPrintjobUsername;
377 char *szVetoOplockFiles;
383 char **printer_admin;
388 char *szAioWriteBehind;
392 int iMaxReportedPrintJobs;
395 int iCreate_force_mode;
397 int iSecurity_force_mode;
400 int iDir_Security_mask;
401 int iDir_Security_force_mode;
405 int iOplockContentionLimit;
410 bool bRootpreexecClose;
413 bool bShortCasePreserve;
415 bool bHideSpecialFiles;
416 bool bHideUnReadable;
417 bool bHideUnWriteableFiles;
428 bool bStoreDosAttributes;
441 bool bStrictAllocate;
444 struct bitmap *copymap;
445 bool bDeleteReadonly;
447 bool bDeleteVetoFiles;
450 bool bDosFiletimeResolution;
451 bool bFakeDirCreateTimes;
457 bool bUseClientDriver;
458 bool bDefaultDevmode;
459 bool bForcePrintername;
461 bool bForceUnknownAclUser;
464 bool bMap_acl_inherit;
467 bool bAclCheckPermissions;
468 bool bAclMapFullControl;
469 bool bAclGroupControl;
471 bool bKernelChangeNotify;
472 int iallocation_roundup_size;
476 int iDirectoryNameCacheSize;
478 param_opt_struct *param_opt;
480 char dummy[3]; /* for alignment */
484 /* This is a default service used to prime a services structure */
485 static service sDefault = {
487 False, /* not autoloaded */
488 0, /* not a usershare */
489 (time_t)0, /* No last mod time */
490 NULL, /* szService */
492 NULL, /* szUsername */
493 NULL, /* szInvalidUsers */
494 NULL, /* szValidUsers */
495 NULL, /* szAdminUsers */
497 NULL, /* szInclude */
498 NULL, /* szPreExec */
499 NULL, /* szPostExec */
500 NULL, /* szRootPreExec */
501 NULL, /* szRootPostExec */
502 NULL, /* szCupsOptions */
503 NULL, /* szPrintcommand */
504 NULL, /* szLpqcommand */
505 NULL, /* szLprmcommand */
506 NULL, /* szLppausecommand */
507 NULL, /* szLpresumecommand */
508 NULL, /* szQueuepausecommand */
509 NULL, /* szQueueresumecommand */
510 NULL, /* szPrintername */
511 NULL, /* szPrintjobUsername */
512 NULL, /* szDontdescend */
513 NULL, /* szHostsallow */
514 NULL, /* szHostsdeny */
515 NULL, /* szMagicScript */
516 NULL, /* szMagicOutput */
517 NULL, /* szVetoFiles */
518 NULL, /* szHideFiles */
519 NULL, /* szVetoOplockFiles */
521 NULL, /* force user */
522 NULL, /* force group */
524 NULL, /* writelist */
525 NULL, /* printer admin */
528 NULL, /* vfs objects */
529 NULL, /* szMSDfsProxy */
530 NULL, /* szAioWriteBehind */
532 0, /* iMinPrintSpace */
533 1000, /* iMaxPrintJobs */
534 0, /* iMaxReportedPrintJobs */
535 0, /* iWriteCacheSize */
536 0744, /* iCreate_mask */
537 0000, /* iCreate_force_mode */
538 0777, /* iSecurity_mask */
539 0, /* iSecurity_force_mode */
540 0755, /* iDir_mask */
541 0000, /* iDir_force_mode */
542 0777, /* iDir_Security_mask */
543 0, /* iDir_Security_force_mode */
544 0, /* iMaxConnections */
545 CASE_LOWER, /* iDefaultCase */
546 DEFAULT_PRINTING, /* iPrinting */
547 2, /* iOplockContentionLimit */
549 1024, /* iBlock_size */
550 0, /* iDfreeCacheTime */
551 False, /* bPreexecClose */
552 False, /* bRootpreexecClose */
553 Auto, /* case sensitive */
554 True, /* case preserve */
555 True, /* short case preserve */
556 True, /* bHideDotFiles */
557 False, /* bHideSpecialFiles */
558 False, /* bHideUnReadable */
559 False, /* bHideUnWriteableFiles */
560 True, /* bBrowseable */
561 True, /* bAvailable */
562 True, /* bRead_only */
563 True, /* bNo_set_dir */
564 False, /* bGuest_only */
565 False, /* bGuest_ok */
566 False, /* bPrint_ok */
567 False, /* bMap_system */
568 False, /* bMap_hidden */
569 True, /* bMap_archive */
570 False, /* bStoreDosAttributes */
571 False, /* bDmapiSupport */
573 Auto, /* iStrictLocking */
574 True, /* bPosixLocking */
575 True, /* bShareModes */
577 True, /* bLevel2OpLocks */
578 False, /* bOnlyUser */
579 True, /* bMangledNames */
580 True, /* bWidelinks */
581 True, /* bSymlinks */
582 False, /* bSyncAlways */
583 False, /* bStrictAllocate */
584 False, /* bStrictSync */
585 '~', /* magic char */
587 False, /* bDeleteReadonly */
588 False, /* bFakeOplocks */
589 False, /* bDeleteVetoFiles */
590 False, /* bDosFilemode */
591 True, /* bDosFiletimes */
592 False, /* bDosFiletimeResolution */
593 False, /* bFakeDirCreateTimes */
594 True, /* bBlockingLocks */
595 False, /* bInheritPerms */
596 False, /* bInheritACLS */
597 False, /* bInheritOwner */
598 False, /* bMSDfsRoot */
599 False, /* bUseClientDriver */
600 True, /* bDefaultDevmode */
601 False, /* bForcePrintername */
602 True, /* bNTAclSupport */
603 False, /* bForceUnknownAclUser */
604 False, /* bUseSendfile */
605 False, /* bProfileAcls */
606 False, /* bMap_acl_inherit */
607 False, /* bAfs_Share */
608 False, /* bEASupport */
609 True, /* bAclCheckPermissions */
610 True, /* bAclMapFullControl */
611 False, /* bAclGroupControl */
612 True, /* bChangeNotify */
613 True, /* bKernelChangeNotify */
614 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
615 0, /* iAioReadSize */
616 0, /* iAioWriteSize */
617 MAP_READONLY_YES, /* iMap_readonly */
618 #ifdef BROKEN_DIRECTORY_HANDLING
619 0, /* iDirectoryNameCacheSize */
621 100, /* iDirectoryNameCacheSize */
623 Auto, /* ismb_encrypt */
624 NULL, /* Parametric options */
629 /* local variables */
630 static service **ServicePtrs = NULL;
631 static int iNumServices = 0;
632 static int iServiceIndex = 0;
633 static struct db_context *ServiceHash;
634 static int *invalid_services = NULL;
635 static int num_invalid_services = 0;
636 static bool bInGlobalSection = True;
637 static bool bGlobalOnly = False;
638 static int server_role;
639 static int default_server_announce;
641 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
643 /* prototypes for the special type handlers */
644 static bool handle_include( int snum, const char *pszParmValue, char **ptr);
645 static bool handle_copy( int snum, const char *pszParmValue, char **ptr);
646 static bool handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
647 static bool handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
648 static bool handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
649 static bool handle_debug_list( int snum, const char *pszParmValue, char **ptr );
650 static bool handle_workgroup( int snum, const char *pszParmValue, char **ptr );
651 static bool handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
652 static bool handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
653 static bool handle_charset( int snum, const char *pszParmValue, char **ptr );
654 static bool handle_printing( int snum, const char *pszParmValue, char **ptr);
655 static bool handle_ldap_debug_level( int snum, const char *pszParmValue, char **ptr);
657 static void set_server_role(void);
658 static void set_default_server_announce_type(void);
659 static void set_allowed_client_auth(void);
661 static const struct enum_list enum_protocol[] = {
662 {PROTOCOL_NT1, "NT1"},
663 {PROTOCOL_LANMAN2, "LANMAN2"},
664 {PROTOCOL_LANMAN1, "LANMAN1"},
665 {PROTOCOL_CORE, "CORE"},
666 {PROTOCOL_COREPLUS, "COREPLUS"},
667 {PROTOCOL_COREPLUS, "CORE+"},
671 static const struct enum_list enum_security[] = {
672 {SEC_SHARE, "SHARE"},
674 {SEC_SERVER, "SERVER"},
675 {SEC_DOMAIN, "DOMAIN"},
682 static const struct enum_list enum_printing[] = {
683 {PRINT_SYSV, "sysv"},
685 {PRINT_HPUX, "hpux"},
689 {PRINT_LPRNG, "lprng"},
690 {PRINT_CUPS, "cups"},
691 {PRINT_IPRINT, "iprint"},
693 {PRINT_LPROS2, "os2"},
695 {PRINT_TEST, "test"},
697 #endif /* DEVELOPER */
701 static const struct enum_list enum_ldap_sasl_wrapping[] = {
703 {ADS_AUTH_SASL_SIGN, "sign"},
704 {ADS_AUTH_SASL_SEAL, "seal"},
708 static const struct enum_list enum_ldap_ssl[] = {
709 {LDAP_SSL_OFF, "no"},
710 {LDAP_SSL_OFF, "No"},
711 {LDAP_SSL_OFF, "off"},
712 {LDAP_SSL_OFF, "Off"},
713 {LDAP_SSL_START_TLS, "start tls"},
714 {LDAP_SSL_START_TLS, "Start_tls"},
718 static const struct enum_list enum_ldap_passwd_sync[] = {
719 {LDAP_PASSWD_SYNC_OFF, "no"},
720 {LDAP_PASSWD_SYNC_OFF, "No"},
721 {LDAP_PASSWD_SYNC_OFF, "off"},
722 {LDAP_PASSWD_SYNC_OFF, "Off"},
723 {LDAP_PASSWD_SYNC_ON, "Yes"},
724 {LDAP_PASSWD_SYNC_ON, "yes"},
725 {LDAP_PASSWD_SYNC_ON, "on"},
726 {LDAP_PASSWD_SYNC_ON, "On"},
727 {LDAP_PASSWD_SYNC_ONLY, "Only"},
728 {LDAP_PASSWD_SYNC_ONLY, "only"},
732 /* Types of machine we can announce as. */
733 #define ANNOUNCE_AS_NT_SERVER 1
734 #define ANNOUNCE_AS_WIN95 2
735 #define ANNOUNCE_AS_WFW 3
736 #define ANNOUNCE_AS_NT_WORKSTATION 4
738 static const struct enum_list enum_announce_as[] = {
739 {ANNOUNCE_AS_NT_SERVER, "NT"},
740 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
741 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
742 {ANNOUNCE_AS_WIN95, "win95"},
743 {ANNOUNCE_AS_WFW, "WfW"},
747 static const struct enum_list enum_map_readonly[] = {
748 {MAP_READONLY_NO, "no"},
749 {MAP_READONLY_NO, "false"},
750 {MAP_READONLY_NO, "0"},
751 {MAP_READONLY_YES, "yes"},
752 {MAP_READONLY_YES, "true"},
753 {MAP_READONLY_YES, "1"},
754 {MAP_READONLY_PERMISSIONS, "permissions"},
755 {MAP_READONLY_PERMISSIONS, "perms"},
759 static const struct enum_list enum_case[] = {
760 {CASE_LOWER, "lower"},
761 {CASE_UPPER, "upper"},
765 static const struct enum_list enum_bool_auto[] = {
776 /* Client-side offline caching policy types */
777 #define CSC_POLICY_MANUAL 0
778 #define CSC_POLICY_DOCUMENTS 1
779 #define CSC_POLICY_PROGRAMS 2
780 #define CSC_POLICY_DISABLE 3
782 static const struct enum_list enum_csc_policy[] = {
783 {CSC_POLICY_MANUAL, "manual"},
784 {CSC_POLICY_DOCUMENTS, "documents"},
785 {CSC_POLICY_PROGRAMS, "programs"},
786 {CSC_POLICY_DISABLE, "disable"},
790 /* SMB signing types. */
791 static const struct enum_list enum_smb_signing_vals[] = {
803 {Required, "required"},
804 {Required, "mandatory"},
806 {Required, "forced"},
807 {Required, "enforced"},
811 /* ACL compatibility options. */
812 static const struct enum_list enum_acl_compat_vals[] = {
813 { ACL_COMPAT_AUTO, "auto" },
814 { ACL_COMPAT_WINNT, "winnt" },
815 { ACL_COMPAT_WIN2K, "win2k" },
820 Do you want session setups at user level security with a invalid
821 password to be rejected or allowed in as guest? WinNT rejects them
822 but it can be a pain as it means "net view" needs to use a password
824 You have 3 choices in the setting of map_to_guest:
826 "Never" means session setups with an invalid password
827 are rejected. This is the default.
829 "Bad User" means session setups with an invalid password
830 are rejected, unless the username does not exist, in which case it
831 is treated as a guest login
833 "Bad Password" means session setups with an invalid password
834 are treated as a guest login
836 Note that map_to_guest only has an effect in user or server
840 static const struct enum_list enum_map_to_guest[] = {
841 {NEVER_MAP_TO_GUEST, "Never"},
842 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
843 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
844 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
848 /* Config backend options */
850 static const struct enum_list enum_config_backend[] = {
851 {CONFIG_BACKEND_FILE, "file"},
852 {CONFIG_BACKEND_REGISTRY, "registry"},
856 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
858 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
859 * screen in SWAT. This is used to exclude parameters as well as to squash all
860 * parameters that have been duplicated by pseudonyms.
862 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
863 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
864 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
867 * NOTE2: Handling of duplicated (synonym) paramters:
868 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
869 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
870 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
871 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
874 static struct parm_struct parm_table[] = {
875 {N_("Base Options"), P_SEP, P_SEPARATOR},
877 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
878 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
879 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
880 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
881 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
882 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
883 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
885 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
887 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
888 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
889 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
890 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
891 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
892 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
894 {"config backend", P_ENUM, P_GLOBAL, &Globals.ConfigBackend, NULL, enum_config_backend, FLAG_ADVANCED},
896 {N_("Security Options"), P_SEP, P_SEPARATOR},
898 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
899 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
900 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
901 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
902 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
903 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
904 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
905 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
906 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
907 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
908 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
909 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
910 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
911 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
912 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
913 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
914 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
915 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
916 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
917 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
919 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
920 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
921 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
922 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
923 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
924 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
925 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
926 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
927 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
928 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
929 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
930 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
931 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
932 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
933 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
934 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
936 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
937 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
938 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
940 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
941 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
942 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
943 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
944 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
945 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
946 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
947 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
948 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
950 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
951 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
952 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
953 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
955 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
956 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
957 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
958 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
959 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
960 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
961 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
962 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
963 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
964 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
965 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
966 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
967 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
968 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
969 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
970 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
971 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
972 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
973 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
975 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
976 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
978 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
979 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
980 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
981 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
982 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
983 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
984 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
986 {N_("Logging Options"), P_SEP, P_SEPARATOR},
988 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
989 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
990 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
991 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
992 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
994 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
995 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
996 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
997 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
998 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
999 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
1000 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
1001 {"debug class", P_BOOL, P_GLOBAL, &Globals.bDebugClass, NULL, NULL, FLAG_ADVANCED},
1002 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
1004 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
1006 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
1007 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
1008 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
1009 {"aio write behind", P_STRING, P_LOCAL, &sDefault.szAioWriteBehind, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1010 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
1011 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
1012 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1013 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1014 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1015 {"min receivefile size", P_INTEGER, P_GLOBAL, &Globals.iminreceivefile, NULL, NULL, FLAG_ADVANCED},
1016 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
1017 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
1018 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
1019 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
1021 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1022 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1023 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1024 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1025 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1026 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1027 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1029 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1030 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1031 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1032 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1033 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1034 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1036 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1037 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1038 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1039 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1040 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1041 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1042 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1043 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1044 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1045 {"smb encrypt", P_ENUM, P_LOCAL, &sDefault.ismb_encrypt, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1046 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1047 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1048 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1049 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1051 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1053 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1054 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1055 {"getwd cache", P_BOOL, P_GLOBAL, &Globals.getwd_cache, NULL, NULL, FLAG_ADVANCED},
1056 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1057 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1058 {"directory name cache size", P_INTEGER, P_LOCAL, &sDefault.iDirectoryNameCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1059 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1061 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1062 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1063 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1064 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1065 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1066 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1067 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1069 {"socket options", P_STRING, P_GLOBAL, &Globals.szSocketOptions, NULL, NULL, FLAG_ADVANCED},
1070 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1071 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1072 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1073 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1074 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1075 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1076 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1078 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1079 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1080 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1081 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1083 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1085 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1086 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1087 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1088 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1089 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1090 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1091 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1092 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1093 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1094 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1095 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1096 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1097 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1098 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1099 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1100 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1101 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1102 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1103 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1104 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1105 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1107 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1108 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1109 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1110 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1111 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1112 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1114 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1115 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1116 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1117 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1118 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1119 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1121 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1122 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1123 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1125 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1126 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1127 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1128 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1129 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1130 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1131 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1132 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1133 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1134 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1135 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1136 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1137 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1138 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1139 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1140 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1141 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1142 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1143 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1144 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1145 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1146 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1147 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1150 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1152 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1154 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1156 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1157 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1158 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1159 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1160 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1161 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1162 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1163 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1164 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1165 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1166 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1167 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1169 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1170 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1171 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1172 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1173 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1175 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1177 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1178 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1179 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1180 {"preferred master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1181 {"prefered master", P_ENUM, P_GLOBAL, &Globals.iPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1182 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1183 {"domain master", P_ENUM, P_GLOBAL, &Globals.iDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1184 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1185 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1186 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1187 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1189 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1191 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1192 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1194 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1195 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1196 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1198 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1200 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1201 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1202 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1203 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1204 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1205 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1207 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1208 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1209 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1210 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1211 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1212 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1213 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1215 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1217 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1218 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1219 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1220 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1221 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1222 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1223 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1224 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1225 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1226 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1227 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1228 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1229 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1231 {"ldap debug level", P_INTEGER, P_GLOBAL, &Globals.ldap_debug_level, handle_ldap_debug_level, NULL, FLAG_ADVANCED},
1232 {"ldap debug threshold", P_INTEGER, P_GLOBAL, &Globals.ldap_debug_threshold, NULL, NULL, FLAG_ADVANCED},
1235 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1236 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1238 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1239 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1240 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1241 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1243 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1244 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1245 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1246 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1247 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1248 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1250 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1251 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1252 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1255 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1256 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1257 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1258 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1259 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1260 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1261 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1262 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1263 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1264 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1265 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1266 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1267 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1268 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1269 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1270 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1271 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1273 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1274 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1275 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1276 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1278 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1279 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1280 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1281 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1282 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1283 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1284 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1285 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1286 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1287 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1288 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1289 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1290 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1291 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1292 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1293 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1294 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1295 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1296 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1297 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1298 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1299 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1300 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1301 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1302 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1303 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1305 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1306 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1308 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1310 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1311 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1314 {N_("MSDFS options"), P_SEP, P_SEPARATOR},
1316 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1317 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1318 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1320 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1322 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1323 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1324 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1325 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1326 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1327 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1328 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1329 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1330 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1331 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1332 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1333 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1334 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1335 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1336 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1337 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1338 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1339 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1340 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1341 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1342 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1343 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1344 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1345 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1346 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1348 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1351 /***************************************************************************
1352 Initialise the sDefault parameter structure for the printer values.
1353 ***************************************************************************/
1355 static void init_printer_values(service *pService)
1357 /* choose defaults depending on the type of printing */
1358 switch (pService->iPrinting) {
1363 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1364 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1365 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1370 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1371 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1372 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1373 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1374 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1375 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1376 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1382 /* set the lpq command to contain the destination printer
1383 name only. This is used by cups_queue_get() */
1384 string_set(&pService->szLpqcommand, "%p");
1385 string_set(&pService->szLprmcommand, "");
1386 string_set(&pService->szPrintcommand, "");
1387 string_set(&pService->szLppausecommand, "");
1388 string_set(&pService->szLpresumecommand, "");
1389 string_set(&pService->szQueuepausecommand, "");
1390 string_set(&pService->szQueueresumecommand, "");
1392 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1393 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1394 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1395 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1396 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1397 string_set(&pService->szQueuepausecommand, "disable '%p'");
1398 string_set(&pService->szQueueresumecommand, "enable '%p'");
1399 #endif /* HAVE_CUPS */
1404 string_set(&pService->szLpqcommand, "lpstat -o%p");
1405 string_set(&pService->szLprmcommand, "cancel %p-%j");
1406 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1407 string_set(&pService->szQueuepausecommand, "disable %p");
1408 string_set(&pService->szQueueresumecommand, "enable %p");
1410 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1411 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1416 string_set(&pService->szLpqcommand, "lpq -P%p");
1417 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1418 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1424 string_set(&pService->szPrintcommand, "vlp print %p %s");
1425 string_set(&pService->szLpqcommand, "vlp lpq %p");
1426 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1427 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1428 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1429 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1430 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1432 #endif /* DEVELOPER */
1437 /***************************************************************************
1438 Initialise the global parameter structure.
1439 ***************************************************************************/
1441 static void init_globals(bool first_time_only)
1443 static bool done_init = False;
1446 /* If requested to initialize only once and we've already done it... */
1447 if (first_time_only && done_init) {
1448 /* ... then we have nothing more to do */
1455 /* The logfile can be set before this is invoked. Free it if so. */
1456 if (Globals.szLogFile != NULL) {
1457 string_free(&Globals.szLogFile);
1458 Globals.szLogFile = NULL;
1461 memset((void *)&Globals, '\0', sizeof(Globals));
1463 for (i = 0; parm_table[i].label; i++)
1464 if ((parm_table[i].type == P_STRING ||
1465 parm_table[i].type == P_USTRING) &&
1467 string_set((char **)parm_table[i].ptr, "");
1469 string_set(&sDefault.fstype, FSTYPE_STRING);
1470 string_set(&sDefault.szPrintjobUsername, "%U");
1472 init_printer_values(&sDefault);
1478 DEBUG(3, ("Initialising global parameters\n"));
1480 string_set(&Globals.szSMBPasswdFile, get_dyn_SMB_PASSWD_FILE());
1481 string_set(&Globals.szPrivateDir, get_dyn_PRIVATE_DIR());
1483 /* use the new 'hash2' method by default, with a prefix of 1 */
1484 string_set(&Globals.szManglingMethod, "hash2");
1485 Globals.mangle_prefix = 1;
1487 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1489 /* using UTF8 by default allows us to support all chars */
1490 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1492 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1493 /* If the system supports nl_langinfo(), try to grab the value
1494 from the user's locale */
1495 string_set(&Globals.display_charset, "LOCALE");
1497 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1500 /* Use codepage 850 as a default for the dos character set */
1501 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1504 * Allow the default PASSWD_CHAT to be overridden in local.h.
1506 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1508 set_global_myname(myhostname());
1509 string_set(&Globals.szNetbiosName,global_myname());
1511 set_global_myworkgroup(WORKGROUP);
1512 string_set(&Globals.szWorkgroup, lp_workgroup());
1514 string_set(&Globals.szPasswdProgram, "");
1515 string_set(&Globals.szPidDir, get_dyn_PIDDIR());
1516 string_set(&Globals.szLockDir, get_dyn_LOCKDIR());
1517 string_set(&Globals.szSocketAddress, "0.0.0.0");
1519 if (asprintf(&s, "Samba %s", SAMBA_VERSION_STRING) < 0) {
1520 smb_panic("init_globals: ENOMEM");
1522 string_set(&Globals.szServerString, s);
1524 if (asprintf(&s, "%d.%d", DEFAULT_MAJOR_VERSION,
1525 DEFAULT_MINOR_VERSION) < 0) {
1526 smb_panic("init_globals: ENOMEM");
1528 string_set(&Globals.szAnnounceVersion, s);
1531 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1534 string_set(&Globals.szSocketOptions, DEFAULT_SOCKET_OPTIONS);
1536 string_set(&Globals.szLogonDrive, "");
1537 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1538 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1539 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1541 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1542 string_set(&Globals.szPasswordServer, "*");
1544 Globals.AlgorithmicRidBase = BASE_RID;
1546 Globals.bLoadPrinters = True;
1547 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1549 Globals.ConfigBackend = config_backend;
1551 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1552 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1553 Globals.max_xmit = 0x4104;
1554 Globals.max_mux = 50; /* This is *needed* for profile support. */
1555 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1556 Globals.bDisableSpoolss = False;
1557 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1558 Globals.pwordlevel = 0;
1559 Globals.unamelevel = 0;
1560 Globals.deadtime = 0;
1561 Globals.getwd_cache = true;
1562 Globals.bLargeReadwrite = True;
1563 Globals.max_log_size = 5000;
1564 Globals.max_open_files = MAX_OPEN_FILES;
1565 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1566 Globals.maxprotocol = PROTOCOL_NT1;
1567 Globals.minprotocol = PROTOCOL_CORE;
1568 Globals.security = SEC_USER;
1569 Globals.paranoid_server_security = True;
1570 Globals.bEncryptPasswords = True;
1571 Globals.bUpdateEncrypt = False;
1572 Globals.clientSchannel = Auto;
1573 Globals.serverSchannel = Auto;
1574 Globals.bReadRaw = True;
1575 Globals.bWriteRaw = True;
1576 Globals.bNullPasswords = False;
1577 Globals.bObeyPamRestrictions = False;
1579 Globals.bSyslogOnly = False;
1580 Globals.bTimestampLogs = True;
1581 string_set(&Globals.szLogLevel, "0");
1582 Globals.bDebugPrefixTimestamp = False;
1583 Globals.bDebugHiresTimestamp = False;
1584 Globals.bDebugPid = False;
1585 Globals.bDebugUid = False;
1586 Globals.bDebugClass = False;
1587 Globals.bEnableCoreFiles = True;
1588 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1589 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1590 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1591 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1592 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1593 Globals.lm_interval = 60;
1594 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1595 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1596 Globals.bNISHomeMap = False;
1597 #ifdef WITH_NISPLUS_HOME
1598 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1600 string_set(&Globals.szNISHomeMapName, "auto.home");
1603 Globals.bTimeServer = False;
1604 Globals.bBindInterfacesOnly = False;
1605 Globals.bUnixPasswdSync = False;
1606 Globals.bPamPasswordChange = False;
1607 Globals.bPasswdChatDebug = False;
1608 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1609 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1610 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1611 Globals.bStatCache = True; /* use stat cache by default */
1612 Globals.iMaxStatCacheSize = 256; /* 256k by default */
1613 Globals.restrict_anonymous = 0;
1614 Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
1615 Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
1616 Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
1617 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
1618 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1619 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1621 Globals.map_to_guest = 0; /* By Default, "Never" */
1622 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1623 Globals.enhanced_browsing = true;
1624 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1625 #ifdef MMAP_BLACKLIST
1626 Globals.bUseMmap = False;
1628 Globals.bUseMmap = True;
1630 Globals.bUnixExtensions = True;
1631 Globals.bResetOnZeroVC = False;
1633 /* hostname lookups can be very expensive and are broken on
1634 a large number of sites (tridge) */
1635 Globals.bHostnameLookups = False;
1637 string_set(&Globals.szPassdbBackend, "smbpasswd");
1638 string_set(&Globals.szLdapSuffix, "");
1639 string_set(&Globals.szLdapMachineSuffix, "");
1640 string_set(&Globals.szLdapUserSuffix, "");
1641 string_set(&Globals.szLdapGroupSuffix, "");
1642 string_set(&Globals.szLdapIdmapSuffix, "");
1644 string_set(&Globals.szLdapAdminDn, "");
1645 Globals.ldap_ssl = LDAP_SSL_ON;
1646 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1647 Globals.ldap_delete_dn = False;
1648 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1649 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1650 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1652 Globals.ldap_debug_level = 0;
1653 Globals.ldap_debug_threshold = 10;
1655 /* This is what we tell the afs client. in reality we set the token
1656 * to never expire, though, when this runs out the afs client will
1657 * forget the token. Set to 0 to get NEVERDATE.*/
1658 Globals.iAfsTokenLifetime = 604800;
1660 /* these parameters are set to defaults that are more appropriate
1661 for the increasing samba install base:
1663 as a member of the workgroup, that will possibly become a
1664 _local_ master browser (lm = True). this is opposed to a forced
1665 local master browser startup (pm = True).
1667 doesn't provide WINS server service by default (wsupp = False),
1668 and doesn't provide domain master browser services by default, either.
1672 Globals.bMsAddPrinterWizard = True;
1673 Globals.os_level = 20;
1674 Globals.bLocalMaster = True;
1675 Globals.iDomainMaster = Auto; /* depending on bDomainLogons */
1676 Globals.bDomainLogons = False;
1677 Globals.bBrowseList = True;
1678 Globals.bWINSsupport = False;
1679 Globals.bWINSproxy = False;
1681 Globals.bDNSproxy = True;
1683 /* this just means to use them if they exist */
1684 Globals.bKernelOplocks = True;
1686 Globals.bAllowTrustedDomains = True;
1688 string_set(&Globals.szTemplateShell, "/bin/false");
1689 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1690 string_set(&Globals.szWinbindSeparator, "\\");
1692 string_set(&Globals.szCupsServer, "");
1693 string_set(&Globals.szIPrintServer, "");
1695 string_set(&Globals.ctdbdSocket, "");
1696 Globals.szClusterAddresses = NULL;
1697 Globals.clustering = False;
1699 Globals.winbind_cache_time = 300; /* 5 minutes */
1700 Globals.bWinbindEnumUsers = False;
1701 Globals.bWinbindEnumGroups = False;
1702 Globals.bWinbindUseDefaultDomain = False;
1703 Globals.bWinbindTrustedDomainsOnly = False;
1704 Globals.bWinbindNestedGroups = True;
1705 Globals.winbind_expand_groups = 1;
1706 Globals.szWinbindNssInfo = str_list_make(NULL, "template", NULL);
1707 Globals.bWinbindRefreshTickets = False;
1708 Globals.bWinbindOfflineLogon = False;
1710 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1711 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1713 Globals.bPassdbExpandExplicit = False;
1715 Globals.name_cache_timeout = 660; /* In seconds */
1717 Globals.bUseSpnego = True;
1718 Globals.bClientUseSpnego = True;
1720 Globals.client_signing = Auto;
1721 Globals.server_signing = False;
1723 Globals.bDeferSharingViolations = True;
1724 string_set(&Globals.smb_ports, SMB_PORTS);
1726 Globals.bEnablePrivileges = True;
1727 Globals.bHostMSDfs = True;
1728 Globals.bASUSupport = False;
1730 /* User defined shares. */
1731 if (asprintf(&s, "%s/usershares", get_dyn_STATEDIR()) < 0) {
1732 smb_panic("init_globals: ENOMEM");
1734 string_set(&Globals.szUsersharePath, s);
1736 string_set(&Globals.szUsershareTemplateShare, "");
1737 Globals.iUsershareMaxShares = 0;
1738 /* By default disallow sharing of directories not owned by the sharer. */
1739 Globals.bUsershareOwnerOnly = True;
1740 /* By default disallow guest access to usershares. */
1741 Globals.bUsershareAllowGuests = False;
1743 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1745 /* By default no shares out of the registry */
1746 Globals.bRegistryShares = False;
1748 Globals.iminreceivefile = 0;
1751 /*******************************************************************
1752 Convenience routine to grab string parameters into temporary memory
1753 and run standard_sub_basic on them. The buffers can be written to by
1754 callers without affecting the source string.
1755 ********************************************************************/
1757 static char *lp_string(const char *s)
1760 TALLOC_CTX *ctx = talloc_tos();
1762 /* The follow debug is useful for tracking down memory problems
1763 especially if you have an inner loop that is calling a lp_*()
1764 function that returns a string. Perhaps this debug should be
1765 present all the time? */
1768 DEBUG(10, ("lp_string(%s)\n", s));
1771 ret = talloc_sub_basic(ctx,
1772 get_current_username(),
1773 current_user_info.domain,
1775 if (trim_char(ret, '\"', '\"')) {
1776 if (strchr(ret,'\"') != NULL) {
1778 ret = talloc_sub_basic(ctx,
1779 get_current_username(),
1780 current_user_info.domain,
1788 In this section all the functions that are used to access the
1789 parameters from the rest of the program are defined
1792 #define FN_GLOBAL_STRING(fn_name,ptr) \
1793 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1794 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1795 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1796 #define FN_GLOBAL_LIST(fn_name,ptr) \
1797 const char **fn_name(void) {return(*(const char ***)(ptr));}
1798 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1799 bool fn_name(void) {return(*(bool *)(ptr));}
1800 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1801 char fn_name(void) {return(*(char *)(ptr));}
1802 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1803 int fn_name(void) {return(*(int *)(ptr));}
1805 #define FN_LOCAL_STRING(fn_name,val) \
1806 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1807 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1808 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1809 #define FN_LOCAL_LIST(fn_name,val) \
1810 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1811 #define FN_LOCAL_BOOL(fn_name,val) \
1812 bool fn_name(int i) {return(bool)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1813 #define FN_LOCAL_INTEGER(fn_name,val) \
1814 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1816 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1817 bool fn_name(const struct share_params *p) {return(bool)(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1818 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1819 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1820 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1821 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1822 #define FN_LOCAL_CHAR(fn_name,val) \
1823 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1825 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1826 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1827 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1828 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1829 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1830 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1831 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1832 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1833 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1834 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1835 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1836 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1837 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1838 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1839 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1840 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1841 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1842 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1843 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1844 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1845 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1846 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1847 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1848 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1849 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1850 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1851 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1852 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1853 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1854 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1855 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1856 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1857 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1858 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1859 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1860 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1861 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1862 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1863 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1864 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1865 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1866 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1867 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1868 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1869 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1870 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1871 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1872 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1873 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1874 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1875 * lp_passdb_backend() should be replace by the this macro again after
1878 const char *lp_passdb_backend(void)
1880 char *delim, *quote;
1882 delim = strchr( Globals.szPassdbBackend, ' ');
1883 /* no space at all */
1884 if (delim == NULL) {
1888 quote = strchr(Globals.szPassdbBackend, '"');
1889 /* no quote char or non in the first part */
1890 if (quote == NULL || quote > delim) {
1895 quote = strchr(quote+1, '"');
1896 if (quote == NULL) {
1897 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1899 } else if (*(quote+1) == '\0') {
1900 /* space, fitting quote char, and one backend only */
1903 /* terminate string after the fitting quote char */
1908 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1909 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1910 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1911 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1914 return Globals.szPassdbBackend;
1916 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1917 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1918 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1919 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1920 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1922 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1923 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1924 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1925 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1926 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1927 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1929 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1931 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1932 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1933 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1935 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1937 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1938 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1939 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1940 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1941 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1942 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1943 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1944 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1945 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1946 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1947 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1948 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1949 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1950 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1951 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1953 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1954 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1955 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1956 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1957 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1958 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1959 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1961 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1962 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1963 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1964 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1965 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1966 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1967 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1968 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1969 FN_GLOBAL_INTEGER(lp_ldap_debug_level, &Globals.ldap_debug_level)
1970 FN_GLOBAL_INTEGER(lp_ldap_debug_threshold, &Globals.ldap_debug_threshold)
1971 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1972 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1973 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1974 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1975 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1976 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1978 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1980 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1981 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1982 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1983 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1984 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1985 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1986 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1987 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1988 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1989 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1990 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1991 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1992 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1993 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1994 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1995 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1996 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1997 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1998 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1999 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
2000 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
2001 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
2002 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
2003 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
2004 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
2005 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
2006 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
2007 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
2008 FN_GLOBAL_BOOL(lp_debug_class, &Globals.bDebugClass)
2009 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
2010 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
2011 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
2012 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
2013 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
2014 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
2015 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
2016 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
2017 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
2018 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
2019 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
2020 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
2021 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
2022 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
2023 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
2024 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
2025 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
2026 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
2027 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
2028 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
2029 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
2030 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
2031 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
2032 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
2033 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
2034 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
2035 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
2036 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
2037 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
2038 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
2039 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
2040 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2041 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2042 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2043 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2044 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2045 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2046 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2047 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2048 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2049 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2050 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2051 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2052 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2053 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2054 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2055 FN_GLOBAL_BOOL(lp_getwd_cache, &Globals.getwd_cache)
2056 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2057 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2058 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2059 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2060 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2061 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2062 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2063 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2064 FN_GLOBAL_BOOL(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2065 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2066 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2067 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2068 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2069 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2070 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2071 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2072 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2073 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2074 FN_GLOBAL_CONST_STRING(lp_socket_options, &Globals.szSocketOptions)
2075 FN_GLOBAL_INTEGER(lp_config_backend, &Globals.ConfigBackend);
2077 FN_LOCAL_STRING(lp_preexec, szPreExec)
2078 FN_LOCAL_STRING(lp_postexec, szPostExec)
2079 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2080 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2081 FN_LOCAL_STRING(lp_servicename, szService)
2082 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2083 FN_LOCAL_STRING(lp_pathname, szPath)
2084 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2085 FN_LOCAL_STRING(lp_username, szUsername)
2086 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2087 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2088 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2089 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2090 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2091 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2092 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2093 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2094 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2095 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2096 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2097 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2098 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2099 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2100 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2101 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2102 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2103 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2104 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2105 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2106 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2107 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2108 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2109 FN_LOCAL_STRING(lp_comment, comment)
2110 FN_LOCAL_STRING(lp_force_user, force_user)
2111 FN_LOCAL_STRING(lp_force_group, force_group)
2112 FN_LOCAL_LIST(lp_readlist, readlist)
2113 FN_LOCAL_LIST(lp_writelist, writelist)
2114 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2115 FN_LOCAL_STRING(lp_fstype, fstype)
2116 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2117 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2118 static FN_LOCAL_STRING(lp_volume, volume)
2119 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2120 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2121 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2122 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2123 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
2124 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2125 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2126 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2127 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2128 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2129 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2130 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2131 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2132 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2133 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2134 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2135 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2136 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2137 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2138 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2139 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2140 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2141 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2142 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2143 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2144 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2145 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2146 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2147 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2148 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2149 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2150 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2151 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2152 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2153 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2154 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2155 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2156 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2157 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2158 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2159 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2160 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2161 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2162 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2163 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2164 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2165 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2166 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2167 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2168 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2169 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2170 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2171 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2172 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2173 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2174 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2175 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2176 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2177 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2178 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2179 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2180 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2181 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2182 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2183 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2184 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2185 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2186 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2187 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2188 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2189 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2190 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2191 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2192 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2193 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2194 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2195 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2196 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2197 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2198 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2199 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2200 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2201 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2202 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2203 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2204 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2205 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
2206 FN_LOCAL_INTEGER(lp_smb_encrypt, ismb_encrypt)
2207 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2208 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2209 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2210 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2211 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2212 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2213 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2214 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2216 /* local prototypes */
2218 static int map_parameter(const char *pszParmName);
2219 static int map_parameter_canonical(const char *pszParmName, bool *inverse);
2220 static bool set_boolean(bool *pb, const char *pszParmValue);
2221 static const char *get_boolean(bool bool_value);
2222 static int getservicebyname(const char *pszServiceName,
2223 service * pserviceDest);
2224 static void copy_service(service * pserviceDest,
2225 service * pserviceSource,
2226 struct bitmap *pcopymapDest);
2227 static bool do_parameter(const char *pszParmName, const char *pszParmValue);
2228 static bool do_section(const char *pszSectionName);
2229 static void init_copymap(service * pservice);
2230 static bool hash_a_service(const char *name, int number);
2231 static void free_service_byindex(int iService);
2232 static char * canonicalize_servicename(const char *name);
2233 static void show_parameter(int parmIndex);
2234 static bool is_synonym_of(int parm1, int parm2, bool *inverse);
2236 /* This is a helper function for parametrical options support. */
2237 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2238 /* Actual parametrical functions are quite simple */
2239 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2241 bool global_section = False;
2243 param_opt_struct *data;
2245 if (snum >= iNumServices) return NULL;
2248 data = Globals.param_opt;
2249 global_section = True;
2251 data = ServicePtrs[snum]->param_opt;
2254 asprintf(¶m_key, "%s:%s", type, option);
2256 DEBUG(0,("asprintf failed!\n"));
2261 if (strcmp(data->key, param_key) == 0) {
2262 string_free(¶m_key);
2268 if (!global_section) {
2269 /* Try to fetch the same option but from globals */
2270 /* but only if we are not already working with Globals */
2271 data = Globals.param_opt;
2273 if (strcmp(data->key, param_key) == 0) {
2274 string_free(¶m_key);
2281 string_free(¶m_key);
2287 #define MISSING_PARAMETER(name) \
2288 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2290 /*******************************************************************
2291 convenience routine to return int parameters.
2292 ********************************************************************/
2293 static int lp_int(const char *s)
2297 MISSING_PARAMETER(lp_int);
2301 return (int)strtol(s, NULL, 0);
2304 /*******************************************************************
2305 convenience routine to return unsigned long parameters.
2306 ********************************************************************/
2307 static unsigned long lp_ulong(const char *s)
2311 MISSING_PARAMETER(lp_ulong);
2315 return strtoul(s, NULL, 0);
2318 /*******************************************************************
2319 convenience routine to return boolean parameters.
2320 ********************************************************************/
2321 static bool lp_bool(const char *s)
2326 MISSING_PARAMETER(lp_bool);
2330 if (!set_boolean(&ret,s)) {
2331 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2338 /*******************************************************************
2339 convenience routine to return enum parameters.
2340 ********************************************************************/
2341 static int lp_enum(const char *s,const struct enum_list *_enum)
2345 if (!s || !*s || !_enum) {
2346 MISSING_PARAMETER(lp_enum);
2350 for (i=0; _enum[i].name; i++) {
2351 if (strequal(_enum[i].name,s))
2352 return _enum[i].value;
2355 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2359 #undef MISSING_PARAMETER
2361 /* DO NOT USE lp_parm_string ANYMORE!!!!
2362 * use lp_parm_const_string or lp_parm_talloc_string
2364 * lp_parm_string is only used to let old modules find this symbol
2366 #undef lp_parm_string
2367 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2368 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2370 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2373 /* Return parametric option from a given service. Type is a part of option before ':' */
2374 /* Parametric option has following syntax: 'Type: option = value' */
2375 /* the returned value is talloced on the talloc_tos() */
2376 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2378 param_opt_struct *data = get_parametrics(snum, type, option);
2380 if (data == NULL||data->value==NULL) {
2382 return lp_string(def);
2388 return lp_string(data->value);
2391 /* Return parametric option from a given service. Type is a part of option before ':' */
2392 /* Parametric option has following syntax: 'Type: option = value' */
2393 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2395 param_opt_struct *data = get_parametrics(snum, type, option);
2397 if (data == NULL||data->value==NULL)
2403 /* Return parametric option from a given service. Type is a part of option before ':' */
2404 /* Parametric option has following syntax: 'Type: option = value' */
2406 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2408 param_opt_struct *data = get_parametrics(snum, type, option);
2410 if (data == NULL||data->value==NULL)
2411 return (const char **)def;
2413 if (data->list==NULL) {
2414 data->list = str_list_make(NULL, data->value, NULL);
2417 return (const char **)data->list;
2420 /* Return parametric option from a given service. Type is a part of option before ':' */
2421 /* Parametric option has following syntax: 'Type: option = value' */
2423 int lp_parm_int(int snum, const char *type, const char *option, int def)
2425 param_opt_struct *data = get_parametrics(snum, type, option);
2427 if (data && data->value && *data->value)
2428 return lp_int(data->value);
2433 /* Return parametric option from a given service. Type is a part of option before ':' */
2434 /* Parametric option has following syntax: 'Type: option = value' */
2436 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2438 param_opt_struct *data = get_parametrics(snum, type, option);
2440 if (data && data->value && *data->value)
2441 return lp_ulong(data->value);
2446 /* Return parametric option from a given service. Type is a part of option before ':' */
2447 /* Parametric option has following syntax: 'Type: option = value' */
2449 bool lp_parm_bool(int snum, const char *type, const char *option, bool def)
2451 param_opt_struct *data = get_parametrics(snum, type, option);
2453 if (data && data->value && *data->value)
2454 return lp_bool(data->value);
2459 /* Return parametric option from a given service. Type is a part of option before ':' */
2460 /* Parametric option has following syntax: 'Type: option = value' */
2462 int lp_parm_enum(int snum, const char *type, const char *option,
2463 const struct enum_list *_enum, int def)
2465 param_opt_struct *data = get_parametrics(snum, type, option);
2467 if (data && data->value && *data->value && _enum)
2468 return lp_enum(data->value, _enum);
2474 /***************************************************************************
2475 Initialise a service to the defaults.
2476 ***************************************************************************/
2478 static void init_service(service * pservice)
2480 memset((char *)pservice, '\0', sizeof(service));
2481 copy_service(pservice, &sDefault, NULL);
2484 /***************************************************************************
2485 Free the dynamically allocated parts of a service struct.
2486 ***************************************************************************/
2488 static void free_service(service *pservice)
2491 param_opt_struct *data, *pdata;
2495 if (pservice->szService)
2496 DEBUG(5, ("free_service: Freeing service %s\n",
2497 pservice->szService));
2499 string_free(&pservice->szService);
2500 bitmap_free(pservice->copymap);
2502 for (i = 0; parm_table[i].label; i++) {
2503 if ((parm_table[i].type == P_STRING ||
2504 parm_table[i].type == P_USTRING) &&
2505 parm_table[i].p_class == P_LOCAL)
2506 string_free((char **)
2507 (((char *)pservice) +
2508 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2509 else if (parm_table[i].type == P_LIST &&
2510 parm_table[i].p_class == P_LOCAL)
2511 TALLOC_FREE(*((char ***)
2512 (((char *)pservice) +
2513 PTR_DIFF(parm_table[i].ptr,
2517 data = pservice->param_opt;
2519 DEBUG(5,("Freeing parametrics:\n"));
2521 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2522 string_free(&data->key);
2523 string_free(&data->value);
2524 TALLOC_FREE(data->list);
2530 ZERO_STRUCTP(pservice);
2534 /***************************************************************************
2535 remove a service indexed in the ServicePtrs array from the ServiceHash
2536 and free the dynamically allocated parts
2537 ***************************************************************************/
2539 static void free_service_byindex(int idx)
2541 if ( !LP_SNUM_OK(idx) )
2544 ServicePtrs[idx]->valid = False;
2545 invalid_services[num_invalid_services++] = idx;
2547 /* we have to cleanup the hash record */
2549 if (ServicePtrs[idx]->szService) {
2550 char *canon_name = canonicalize_servicename(
2551 ServicePtrs[idx]->szService );
2553 dbwrap_delete_bystring(ServiceHash, canon_name );
2554 TALLOC_FREE(canon_name);
2557 free_service(ServicePtrs[idx]);
2560 /***************************************************************************
2561 Add a new service to the services array initialising it with the given
2563 ***************************************************************************/
2565 static int add_a_service(const service *pservice, const char *name)
2569 int num_to_alloc = iNumServices + 1;
2570 param_opt_struct *data, *pdata;
2572 tservice = *pservice;
2574 /* it might already exist */
2576 i = getservicebyname(name, NULL);
2578 /* Clean all parametric options for service */
2579 /* They will be added during parsing again */
2580 data = ServicePtrs[i]->param_opt;
2582 string_free(&data->key);
2583 string_free(&data->value);
2584 TALLOC_FREE(data->list);
2589 ServicePtrs[i]->param_opt = NULL;
2594 /* find an invalid one */
2596 if (num_invalid_services > 0) {
2597 i = invalid_services[--num_invalid_services];
2600 /* if not, then create one */
2601 if (i == iNumServices) {
2605 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2607 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2611 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2612 if (!ServicePtrs[iNumServices]) {
2613 DEBUG(0,("add_a_service: out of memory!\n"));
2618 /* enlarge invalid_services here for now... */
2619 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2621 if (tinvalid == NULL) {
2622 DEBUG(0,("add_a_service: failed to enlarge "
2623 "invalid_services!\n"));
2626 invalid_services = tinvalid;
2628 free_service_byindex(i);
2631 ServicePtrs[i]->valid = True;
2633 init_service(ServicePtrs[i]);
2634 copy_service(ServicePtrs[i], &tservice, NULL);
2636 string_set(&ServicePtrs[i]->szService, name);
2638 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2639 i, ServicePtrs[i]->szService));
2641 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2648 /***************************************************************************
2649 Convert a string to uppercase and remove whitespaces.
2650 ***************************************************************************/
2652 static char *canonicalize_servicename(const char *src)
2657 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2661 result = talloc_strdup(talloc_tos(), src);
2662 SMB_ASSERT(result != NULL);
2668 /***************************************************************************
2669 Add a name/index pair for the services array to the hash table.
2670 ***************************************************************************/
2672 static bool hash_a_service(const char *name, int idx)
2676 if ( !ServiceHash ) {
2677 DEBUG(10,("hash_a_service: creating servicehash\n"));
2678 ServiceHash = db_open_rbt(NULL);
2679 if ( !ServiceHash ) {
2680 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2685 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2688 canon_name = canonicalize_servicename( name );
2690 dbwrap_store_bystring(ServiceHash, canon_name,
2691 make_tdb_data((uint8 *)&idx, sizeof(idx)),
2694 TALLOC_FREE(canon_name);
2699 /***************************************************************************
2700 Add a new home service, with the specified home directory, defaults coming
2702 ***************************************************************************/
2704 bool lp_add_home(const char *pszHomename, int iDefaultService,
2705 const char *user, const char *pszHomedir)
2709 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2714 if (!(*(ServicePtrs[iDefaultService]->szPath))
2715 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2716 string_set(&ServicePtrs[i]->szPath, pszHomedir);
2719 if (!(*(ServicePtrs[i]->comment))) {
2720 char *comment = NULL;
2721 if (asprintf(&comment, "Home directory of %s", user) < 0) {
2724 string_set(&ServicePtrs[i]->comment, comment);
2728 /* set the browseable flag from the global default */
2730 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2732 ServicePtrs[i]->autoloaded = True;
2734 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2735 user, ServicePtrs[i]->szPath ));
2740 /***************************************************************************
2741 Add a new service, based on an old one.
2742 ***************************************************************************/
2744 int lp_add_service(const char *pszService, int iDefaultService)
2746 if (iDefaultService < 0) {
2747 return add_a_service(&sDefault, pszService);
2750 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2753 /***************************************************************************
2754 Add the IPC service.
2755 ***************************************************************************/
2757 static bool lp_add_ipc(const char *ipc_name, bool guest_ok)
2759 char *comment = NULL;
2760 int i = add_a_service(&sDefault, ipc_name);
2765 if (asprintf(&comment, "IPC Service (%s)",
2766 Globals.szServerString) < 0) {
2770 string_set(&ServicePtrs[i]->szPath, tmpdir());
2771 string_set(&ServicePtrs[i]->szUsername, "");
2772 string_set(&ServicePtrs[i]->comment, comment);
2773 string_set(&ServicePtrs[i]->fstype, "IPC");
2774 ServicePtrs[i]->iMaxConnections = 0;
2775 ServicePtrs[i]->bAvailable = True;
2776 ServicePtrs[i]->bRead_only = True;
2777 ServicePtrs[i]->bGuest_only = False;
2778 ServicePtrs[i]->bGuest_ok = guest_ok;
2779 ServicePtrs[i]->bPrint_ok = False;
2780 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2782 DEBUG(3, ("adding IPC service\n"));
2788 /***************************************************************************
2789 Add a new printer service, with defaults coming from service iFrom.
2790 ***************************************************************************/
2792 bool lp_add_printer(const char *pszPrintername, int iDefaultService)
2794 const char *comment = "From Printcap";
2795 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2800 /* note that we do NOT default the availability flag to True - */
2801 /* we take it from the default service passed. This allows all */
2802 /* dynamic printers to be disabled by disabling the [printers] */
2803 /* entry (if/when the 'available' keyword is implemented!). */
2805 /* the printer name is set to the service name. */
2806 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2807 string_set(&ServicePtrs[i]->comment, comment);
2809 /* set the browseable flag from the gloabl default */
2810 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2812 /* Printers cannot be read_only. */
2813 ServicePtrs[i]->bRead_only = False;
2814 /* No share modes on printer services. */
2815 ServicePtrs[i]->bShareModes = False;
2816 /* No oplocks on printer services. */
2817 ServicePtrs[i]->bOpLocks = False;
2818 /* Printer services must be printable. */
2819 ServicePtrs[i]->bPrint_ok = True;
2821 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2827 /***************************************************************************
2828 Check whether the given parameter name is valid.
2829 Parametric options (names containing a colon) are considered valid.
2830 ***************************************************************************/
2832 bool lp_parameter_is_valid(const char *pszParmName)
2834 return ((map_parameter(pszParmName) != -1) ||
2835 (strchr(pszParmName, ':') != NULL));
2838 /***************************************************************************
2839 Check whether the given name is the name of a global parameter.
2840 Returns True for strings belonging to parameters of class
2841 P_GLOBAL, False for all other strings, also for parametric options
2842 and strings not belonging to any option.
2843 ***************************************************************************/
2845 bool lp_parameter_is_global(const char *pszParmName)
2847 int num = map_parameter(pszParmName);
2850 return (parm_table[num].p_class == P_GLOBAL);
2856 /**************************************************************************
2857 Check whether the given name is the canonical name of a parameter.
2858 Returns False if it is not a valid parameter Name.
2859 For parametric options, True is returned.
2860 **************************************************************************/
2862 bool lp_parameter_is_canonical(const char *parm_name)
2864 if (!lp_parameter_is_valid(parm_name)) {
2868 return (map_parameter(parm_name) ==
2869 map_parameter_canonical(parm_name, NULL));
2872 /**************************************************************************
2873 Determine the canonical name for a parameter.
2874 Indicate when it is an inverse (boolean) synonym instead of a
2876 **************************************************************************/
2878 bool lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2883 if (!lp_parameter_is_valid(parm_name)) {
2888 num = map_parameter_canonical(parm_name, inverse);
2890 /* parametric option */
2891 *canon_parm = parm_name;
2893 *canon_parm = parm_table[num].label;
2900 /**************************************************************************
2901 Determine the canonical name for a parameter.
2902 Turn the value given into the inverse boolean expression when
2903 the synonym is an invers boolean synonym.
2905 Return True if parm_name is a valid parameter name and
2906 in case it is an invers boolean synonym, if the val string could
2907 successfully be converted to the reverse bool.
2908 Return false in all other cases.
2909 **************************************************************************/
2911 bool lp_canonicalize_parameter_with_value(const char *parm_name,
2913 const char **canon_parm,
2914 const char **canon_val)
2919 if (!lp_parameter_is_valid(parm_name)) {
2925 num = map_parameter_canonical(parm_name, &inverse);
2927 /* parametric option */
2928 *canon_parm = parm_name;
2931 *canon_parm = parm_table[num].label;
2933 if (!lp_invert_boolean(val, canon_val)) {
2945 /***************************************************************************
2946 Map a parameter's string representation to something we can use.
2947 Returns False if the parameter string is not recognised, else TRUE.
2948 ***************************************************************************/
2950 static int map_parameter(const char *pszParmName)
2954 if (*pszParmName == '-')
2957 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2958 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2961 /* Warn only if it isn't parametric option */
2962 if (strchr(pszParmName, ':') == NULL)
2963 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2964 /* We do return 'fail' for parametric options as well because they are
2965 stored in different storage
2970 /***************************************************************************
2971 Map a parameter's string representation to the index of the canonical
2972 form of the parameter (it might be a synonym).
2973 Returns -1 if the parameter string is not recognised.
2974 ***************************************************************************/
2976 static int map_parameter_canonical(const char *pszParmName, bool *inverse)
2978 int parm_num, canon_num;
2979 bool loc_inverse = False;
2981 parm_num = map_parameter(pszParmName);
2982 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2983 /* invalid, parametric or no canidate for synonyms ... */
2987 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2988 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2989 parm_num = canon_num;
2995 if (inverse != NULL) {
2996 *inverse = loc_inverse;
3001 /***************************************************************************
3002 return true if parameter number parm1 is a synonym of parameter
3003 number parm2 (parm2 being the principal name).
3004 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
3006 ***************************************************************************/
3008 static bool is_synonym_of(int parm1, int parm2, bool *inverse)
3010 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
3011 (parm_table[parm1].flags & FLAG_HIDE) &&
3012 !(parm_table[parm2].flags & FLAG_HIDE))
3014 if (inverse != NULL) {
3015 if ((parm_table[parm1].type == P_BOOLREV) &&
3016 (parm_table[parm2].type == P_BOOL))
3028 /***************************************************************************
3029 Show one parameter's name, type, [values,] and flags.
3030 (helper functions for show_parameter_list)
3031 ***************************************************************************/
3033 static void show_parameter(int parmIndex)
3035 int enumIndex, flagIndex;
3040 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
3041 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING",
3043 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
3044 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
3045 FLAG_HIDE, FLAG_DOS_STRING};
3046 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
3047 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
3048 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
3050 printf("%s=%s", parm_table[parmIndex].label,
3051 type[parm_table[parmIndex].type]);
3052 if (parm_table[parmIndex].type == P_ENUM) {
3055 parm_table[parmIndex].enum_list[enumIndex].name;
3059 enumIndex ? "|" : "",
3060 parm_table[parmIndex].enum_list[enumIndex].name);
3065 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3066 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3069 flag_names[flagIndex]);
3074 /* output synonyms */
3076 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3077 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3078 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3079 parm_table[parmIndex2].label);
3080 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3082 printf(" (synonyms: ");
3087 printf("%s%s", parm_table[parmIndex2].label,
3088 inverse ? "[i]" : "");
3098 /***************************************************************************
3099 Show all parameter's name, type, [values,] and flags.
3100 ***************************************************************************/
3102 void show_parameter_list(void)
3104 int classIndex, parmIndex;
3105 const char *section_names[] = { "local", "global", NULL};
3107 for (classIndex=0; section_names[classIndex]; classIndex++) {
3108 printf("[%s]\n", section_names[classIndex]);
3109 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3110 if (parm_table[parmIndex].p_class == classIndex) {
3111 show_parameter(parmIndex);
3117 /***************************************************************************
3118 Set a boolean variable from the text value stored in the passed string.
3119 Returns True in success, False if the passed string does not correctly
3120 represent a boolean.
3121 ***************************************************************************/
3123 static bool set_boolean(bool *pb, const char *pszParmValue)
3130 if (strwicmp(pszParmValue, "yes") == 0 ||
3131 strwicmp(pszParmValue, "true") == 0 ||
3132 strwicmp(pszParmValue, "1") == 0)
3134 else if (strwicmp(pszParmValue, "no") == 0 ||
3135 strwicmp(pszParmValue, "False") == 0 ||
3136 strwicmp(pszParmValue, "0") == 0)
3140 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3145 if ((pb != NULL) && (bRetval != False)) {
3153 /***************************************************************************
3154 Check if a given string correctly represents a boolean value.
3155 ***************************************************************************/
3157 bool lp_string_is_valid_boolean(const char *parm_value)
3159 return set_boolean(NULL, parm_value);
3162 /***************************************************************************
3163 Get the standard string representation of a boolean value ("yes" or "no")
3164 ***************************************************************************/
3166 static const char *get_boolean(bool bool_value)
3168 static const char *yes_str = "yes";
3169 static const char *no_str = "no";
3171 return (bool_value ? yes_str : no_str);
3174 /***************************************************************************
3175 Provide the string of the negated boolean value associated to the boolean
3176 given as a string. Returns False if the passed string does not correctly
3177 represent a boolean.
3178 ***************************************************************************/
3180 bool lp_invert_boolean(const char *str, const char **inverse_str)
3184 if (!set_boolean(&val, str)) {
3188 *inverse_str = get_boolean(!val);
3192 /***************************************************************************
3193 Provide the canonical string representation of a boolean value given
3194 as a string. Return True on success, False if the string given does
3195 not correctly represent a boolean.
3196 ***************************************************************************/
3198 bool lp_canonicalize_boolean(const char *str, const char**canon_str)
3202 if (!set_boolean(&val, str)) {
3206 *canon_str = get_boolean(val);
3210 /***************************************************************************
3211 Find a service by name. Otherwise works like get_service.
3212 ***************************************************************************/
3214 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3220 if (ServiceHash == NULL) {
3224 canon_name = canonicalize_servicename(pszServiceName);
3226 data = dbwrap_fetch_bystring(ServiceHash, canon_name, canon_name);
3228 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
3229 iService = *(int *)data.dptr;
3232 TALLOC_FREE(canon_name);
3234 if ((iService != -1) && (LP_SNUM_OK(iService))
3235 && (pserviceDest != NULL)) {
3236 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3242 /***************************************************************************
3243 Copy a service structure to another.
3244 If pcopymapDest is NULL then copy all fields
3245 ***************************************************************************/
3247 static void copy_service(service * pserviceDest, service * pserviceSource,
3248 struct bitmap *pcopymapDest)
3251 bool bcopyall = (pcopymapDest == NULL);
3252 param_opt_struct *data, *pdata, *paramo;
3255 for (i = 0; parm_table[i].label; i++)
3256 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3257 (bcopyall || bitmap_query(pcopymapDest,i))) {
3258 void *def_ptr = parm_table[i].ptr;
3260 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3263 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3266 switch (parm_table[i].type) {
3269 *(bool *)dest_ptr = *(bool *)src_ptr;
3275 *(int *)dest_ptr = *(int *)src_ptr;
3279 *(char *)dest_ptr = *(char *)src_ptr;
3283 string_set((char **)dest_ptr,
3288 string_set((char **)dest_ptr,
3290 strupper_m(*(char **)dest_ptr);
3293 TALLOC_FREE(*((char ***)dest_ptr));
3294 str_list_copy(NULL, (char ***)dest_ptr,
3295 *(const char ***)src_ptr);
3303 init_copymap(pserviceDest);
3304 if (pserviceSource->copymap)
3305 bitmap_copy(pserviceDest->copymap,
3306 pserviceSource->copymap);
3309 data = pserviceSource->param_opt;
3312 pdata = pserviceDest->param_opt;
3313 /* Traverse destination */
3315 /* If we already have same option, override it */
3316 if (strcmp(pdata->key, data->key) == 0) {
3317 string_free(&pdata->value);
3318 TALLOC_FREE(data->list);
3319 pdata->value = SMB_STRDUP(data->value);
3323 pdata = pdata->next;
3326 paramo = SMB_XMALLOC_P(param_opt_struct);
3327 paramo->key = SMB_STRDUP(data->key);
3328 paramo->value = SMB_STRDUP(data->value);
3329 paramo->list = NULL;
3330 DLIST_ADD(pserviceDest->param_opt, paramo);
3336 /***************************************************************************
3337 Check a service for consistency. Return False if the service is in any way
3338 incomplete or faulty, else True.
3339 ***************************************************************************/
3341 bool service_ok(int iService)
3346 if (ServicePtrs[iService]->szService[0] == '\0') {
3347 DEBUG(0, ("The following message indicates an internal error:\n"));
3348 DEBUG(0, ("No service name in service entry.\n"));
3352 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3353 /* I can't see why you'd want a non-printable printer service... */
3354 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3355 if (!ServicePtrs[iService]->bPrint_ok) {
3356 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3357 ServicePtrs[iService]->szService));
3358 ServicePtrs[iService]->bPrint_ok = True;
3360 /* [printers] service must also be non-browsable. */
3361 if (ServicePtrs[iService]->bBrowseable)
3362 ServicePtrs[iService]->bBrowseable = False;
3365 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3366 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3367 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3369 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3370 ServicePtrs[iService]->szService));
3371 ServicePtrs[iService]->bAvailable = False;
3374 /* If a service is flagged unavailable, log the fact at level 1. */
3375 if (!ServicePtrs[iService]->bAvailable)
3376 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3377 ServicePtrs[iService]->szService));
3383 * process_registry_globals
3385 static bool process_registry_globals(bool (*pfunc)(const char *, const char *))
3389 char **param_values;
3390 uint32_t num_params;
3392 TALLOC_CTX *mem_ctx = talloc_stackframe();
3395 if (conf_ctx == NULL) {
3397 werr = libnet_conf_open(NULL, &conf_ctx);
3398 if (!W_ERROR_IS_OK(werr)) {
3403 werr = libnet_conf_get_share(mem_ctx, conf_ctx, GLOBAL_NAME,
3404 &num_params, ¶m_names, ¶m_values);
3405 if (!W_ERROR_IS_OK(werr)) {
3409 for (count = 0; count < num_params; count++) {
3410 ret = pfunc(param_names[count], param_values[count]);
3416 ret = pfunc("registry shares", "yes");
3417 conf_last_seqnum = libnet_conf_get_seqnum(conf_ctx, NULL, NULL);
3420 TALLOC_FREE(mem_ctx);
3424 static struct file_lists {
3425 struct file_lists *next;
3429 } *file_lists = NULL;
3431 /*******************************************************************
3432 Keep a linked list of all config files so we know when one has changed
3433 it's date and needs to be reloaded.
3434 ********************************************************************/
3436 static void add_to_file_list(const char *fname, const char *subfname)
3438 struct file_lists *f = file_lists;
3441 if (f->name && !strcmp(f->name, fname))
3447 f = SMB_MALLOC_P(struct file_lists);
3450 f->next = file_lists;
3451 f->name = SMB_STRDUP(fname);
3456 f->subfname = SMB_STRDUP(subfname);
3462 f->modtime = file_modtime(subfname);
3464 time_t t = file_modtime(subfname);
3471 * Utility function for outsiders to check if we're running on registry.
3473 bool lp_config_backend_is_registry(void)
3475 return (lp_config_backend() == CONFIG_BACKEND_REGISTRY);
3478 /*******************************************************************
3479 Check if a config file has changed date.
3480 ********************************************************************/
3482 bool lp_file_list_changed(void)
3484 struct file_lists *f = file_lists;
3486 DEBUG(6, ("lp_file_list_changed()\n"));
3488 if (lp_config_backend() == CONFIG_BACKEND_REGISTRY) {
3489 if (conf_ctx == NULL) {
3491 werr = libnet_conf_open(NULL, &conf_ctx);
3492 if (!W_ERROR_IS_OK(werr)) {
3493 DEBUG(0, ("error opening configuration: %s\n",
3498 if (conf_last_seqnum !=
3499 libnet_conf_get_seqnum(conf_ctx, NULL, NULL))
3501 DEBUGADD(6, ("regdb seqnum changed: old = %lu, "
3502 "new = %lu\n", conf_last_seqnum,
3503 libnet_conf_get_seqnum(conf_ctx, NULL, NULL)));
3507 * Don't check files when config_backend is registry.
3508 * Remove this to obtain checking of files even with
3509 * registry config backend. That would enable switching
3510 * off registry configuration by changing smb.conf even
3511 * without restarting smbd.
3521 n2 = alloc_sub_basic(get_current_username(),
3522 current_user_info.domain,
3527 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3528 f->name, n2, ctime(&f->modtime)));
3530 mod_time = file_modtime(n2);
3532 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3534 ("file %s modified: %s\n", n2,
3536 f->modtime = mod_time;
3537 SAFE_FREE(f->subfname);
3538 f->subfname = n2; /* Passing ownership of
3539 return from alloc_sub_basic
3550 /***************************************************************************
3551 Run standard_sub_basic on netbios name... needed because global_myname
3552 is not accessed through any lp_ macro.
3553 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3554 ***************************************************************************/
3556 static bool handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3559 char *netbios_name = alloc_sub_basic(get_current_username(),
3560 current_user_info.domain,
3563 ret = set_global_myname(netbios_name);
3564 SAFE_FREE(netbios_name);
3565 string_set(&Globals.szNetbiosName,global_myname());
3567 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3573 static bool handle_charset(int snum, const char *pszParmValue, char **ptr)
3575 if (strcmp(*ptr, pszParmValue) != 0) {
3576 string_set(ptr, pszParmValue);
3584 static bool handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3588 ret = set_global_myworkgroup(pszParmValue);
3589 string_set(&Globals.szWorkgroup,lp_workgroup());
3594 static bool handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3598 ret = set_global_scope(pszParmValue);
3599 string_set(&Globals.szNetbiosScope,global_scope());
3604 static bool handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3606 TALLOC_FREE(Globals.szNetbiosAliases);
3607 Globals.szNetbiosAliases = str_list_make(NULL, pszParmValue, NULL);
3608 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3611 /***************************************************************************
3612 Handle the include operation.
3613 ***************************************************************************/
3615 static bool handle_include(int snum, const char *pszParmValue, char **ptr)
3619 fname = alloc_sub_basic(get_current_username(),
3620 current_user_info.domain,
3623 add_to_file_list(pszParmValue, fname);
3625 string_set(ptr, fname);
3627 if (file_exist(fname, NULL)) {
3628 bool ret = pm_process(fname, do_section, do_parameter);
3633 DEBUG(2, ("Can't find include file %s\n", fname));
3638 /***************************************************************************
3639 Handle the interpretation of the copy parameter.
3640 ***************************************************************************/
3642 static bool handle_copy(int snum, const char *pszParmValue, char **ptr)
3646 service serviceTemp;
3648 string_set(ptr, pszParmValue);
3650 init_service(&serviceTemp);
3654 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3656 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3657 if (iTemp == iServiceIndex) {
3658 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3660 copy_service(ServicePtrs[iServiceIndex],
3662 ServicePtrs[iServiceIndex]->copymap);
3666 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3670 free_service(&serviceTemp);
3674 static bool handle_ldap_debug_level(int snum, const char *pszParmValue, char **ptr)
3676 Globals.ldap_debug_level = lp_int(pszParmValue);
3677 init_ldap_debugging();
3681 /***************************************************************************
3682 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3687 idmap uid = 1000-1999
3690 We only do simple parsing checks here. The strings are parsed into useful
3691 structures in the idmap daemon code.
3693 ***************************************************************************/
3695 /* Some lp_ routines to return idmap [ug]id information */
3697 static uid_t idmap_uid_low, idmap_uid_high;
3698 static gid_t idmap_gid_low, idmap_gid_high;
3700 bool lp_idmap_uid(uid_t *low, uid_t *high)
3702 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3706 *low = idmap_uid_low;
3709 *high = idmap_uid_high;
3714 bool lp_idmap_gid(gid_t *low, gid_t *high)
3716 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3720 *low = idmap_gid_low;
3723 *high = idmap_gid_high;
3728 /* Do some simple checks on "idmap [ug]id" parameter values */
3730 static bool handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3734 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3739 string_set(ptr, pszParmValue);
3741 idmap_uid_low = low;
3742 idmap_uid_high = high;
3747 static bool handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3751 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3756 string_set(ptr, pszParmValue);
3758 idmap_gid_low = low;
3759 idmap_gid_high = high;
3764 /***************************************************************************
3765 Handle the DEBUG level list.
3766 ***************************************************************************/
3768 static bool handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3770 string_set(ptr, pszParmValueIn);
3771 return debug_parse_levels(pszParmValueIn);
3774 /***************************************************************************
3775 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3776 ***************************************************************************/
3778 static const char *append_ldap_suffix( const char *str )
3780 const char *suffix_string;
3783 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
3784 Globals.szLdapSuffix );
3785 if ( !suffix_string ) {
3786 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3790 return suffix_string;
3793 const char *lp_ldap_machine_suffix(void)
3795 if (Globals.szLdapMachineSuffix[0])
3796 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3798 return lp_string(Globals.szLdapSuffix);
3801 const char *lp_ldap_user_suffix(void)
3803 if (Globals.szLdapUserSuffix[0])
3804 return append_ldap_suffix(Globals.szLdapUserSuffix);
3806 return lp_string(Globals.szLdapSuffix);
3809 const char *lp_ldap_group_suffix(void)
3811 if (Globals.szLdapGroupSuffix[0])
3812 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3814 return lp_string(Globals.szLdapSuffix);
3817 const char *lp_ldap_idmap_suffix(void)
3819 if (Globals.szLdapIdmapSuffix[0])
3820 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3822 return lp_string(Globals.szLdapSuffix);
3825 /****************************************************************************
3826 set the value for a P_ENUM
3827 ***************************************************************************/
3829 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3834 for (i = 0; parm->enum_list[i].name; i++) {
3835 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3836 *ptr = parm->enum_list[i].value;
3842 /***************************************************************************
3843 ***************************************************************************/
3845 static bool handle_printing(int snum, const char *pszParmValue, char **ptr)
3847 static int parm_num = -1;
3850 if ( parm_num == -1 )
3851 parm_num = map_parameter( "printing" );
3853 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3858 s = ServicePtrs[snum];
3860 init_printer_values( s );
3866 /***************************************************************************
3867 Initialise a copymap.
3868 ***************************************************************************/
3870 static void init_copymap(service * pservice)
3873 if (pservice->copymap) {
3874 bitmap_free(pservice->copymap);
3876 pservice->copymap = bitmap_allocate(NUMPARAMETERS);
3877 if (!pservice->copymap)
3879 ("Couldn't allocate copymap!! (size %d)\n",
3880 (int)NUMPARAMETERS));
3882 for (i = 0; i < NUMPARAMETERS; i++)
3883 bitmap_set(pservice->copymap, i);
3886 /***************************************************************************
3887 Return the local pointer to a parameter given the service number and the
3888 pointer into the default structure.
3889 ***************************************************************************/
3891 void *lp_local_ptr(int snum, void *ptr)
3893 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
3896 /***************************************************************************
3897 Process a parameter for a particular service number. If snum < 0
3898 then assume we are in the globals.
3899 ***************************************************************************/
3901 bool lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
3903 int parmnum, i, slen;
3904 void *parm_ptr = NULL; /* where we are going to store the result */
3905 void *def_ptr = NULL;
3906 char *param_key = NULL;
3908 param_opt_struct *paramo, *data;
3911 parmnum = map_parameter(pszParmName);
3914 if ((sep=strchr(pszParmName, ':')) != NULL) {
3915 TALLOC_CTX *frame = talloc_stackframe();
3918 param_key = talloc_asprintf(frame, "%s:", pszParmName);
3923 slen = strlen(param_key);
3924 param_key = talloc_asprintf_append(param_key, sep+1);
3929 trim_char(param_key+slen, ' ', ' ');
3931 data = (snum < 0) ? Globals.param_opt :
3932 ServicePtrs[snum]->param_opt;
3933 /* Traverse destination */
3935 /* If we already have same option, override it */
3936 if (strcmp(data->key, param_key) == 0) {
3937 string_free(&data->value);
3938 TALLOC_FREE(data->list);
3939 data->value = SMB_STRDUP(pszParmValue);
3946 paramo = SMB_XMALLOC_P(param_opt_struct);
3947 paramo->key = SMB_STRDUP(param_key);
3948 paramo->value = SMB_STRDUP(pszParmValue);
3949 paramo->list = NULL;
3951 DLIST_ADD(Globals.param_opt, paramo);
3953 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
3961 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
3965 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
3966 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
3970 def_ptr = parm_table[parmnum].ptr;
3972 /* we might point at a service, the default service or a global */
3976 if (parm_table[parmnum].p_class == P_GLOBAL) {
3978 ("Global parameter %s found in service section!\n",
3983 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
3988 if (!ServicePtrs[snum]->copymap)
3989 init_copymap(ServicePtrs[snum]);
3991 /* this handles the aliases - set the copymap for other entries with
3992 the same data pointer */
3993 for (i = 0; parm_table[i].label; i++)
3994 if (parm_table[i].ptr == parm_table[parmnum].ptr)
3995 bitmap_clear(ServicePtrs[snum]->copymap, i);
3998 /* if it is a special case then go ahead */
3999 if (parm_table[parmnum].special) {
4000 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4004 /* now switch on the type of variable it is */
4005 switch (parm_table[parmnum].type)
4008 *(bool *)parm_ptr = lp_bool(pszParmValue);
4012 *(bool *)parm_ptr = !lp_bool(pszParmValue);
4016 *(int *)parm_ptr = lp_int(pszParmValue);
4020 *(char *)parm_ptr = *pszParmValue;
4024 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4026 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4031 TALLOC_FREE(*((char ***)parm_ptr));
4032 *(char ***)parm_ptr = str_list_make(
4033 NULL, pszParmValue, NULL);
4037 string_set((char **)parm_ptr, pszParmValue);
4041 string_set((char **)parm_ptr, pszParmValue);
4042 strupper_m(*(char **)parm_ptr);
4046 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4055 /***************************************************************************
4056 Process a parameter.
4057 ***************************************************************************/
4059 static bool do_parameter(const char *pszParmName, const char *pszParmValue)
4061 if (!bInGlobalSection && bGlobalOnly)
4064 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4066 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4067 pszParmName, pszParmValue));
4070 /***************************************************************************
4071 Print a parameter of the specified type.
4072 ***************************************************************************/
4074 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4080 for (i = 0; p->enum_list[i].name; i++) {
4081 if (*(int *)ptr == p->enum_list[i].value) {
4083 p->enum_list[i].name);
4090 fprintf(f, "%s", BOOLSTR(*(bool *)ptr));
4094 fprintf(f, "%s", BOOLSTR(!*(bool *)ptr));
4098 fprintf(f, "%d", *(int *)ptr);
4102 fprintf(f, "%c", *(char *)ptr);
4106 char *o = octal_string(*(int *)ptr);
4107 fprintf(f, "%s", o);
4113 if ((char ***)ptr && *(char ***)ptr) {
4114 char **list = *(char ***)ptr;
4115 for (; *list; list++) {
4116 /* surround strings with whitespace in double quotes */
4117 if ( strchr_m( *list, ' ' ) )
4118 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4120 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4127 if (*(char **)ptr) {
4128 fprintf(f, "%s", *(char **)ptr);
4136 /***************************************************************************
4137 Check if two parameters are equal.
4138 ***************************************************************************/
4140 static bool equal_parameter(parm_type type, void *ptr1, void *ptr2)
4145 return (*((bool *)ptr1) == *((bool *)ptr2));
4150 return (*((int *)ptr1) == *((int *)ptr2));
4153 return (*((char *)ptr1) == *((char *)ptr2));
4156 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4161 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4166 return (p1 == p2 || strequal(p1, p2));
4174 /***************************************************************************
4175 Initialize any local varients in the sDefault table.
4176 ***************************************************************************/
4178 void init_locals(void)
4183 /***************************************************************************
4184 Process a new section (service). At this stage all sections are services.
4185 Later we'll have special sections that permit server parameters to be set.
4186 Returns True on success, False on failure.
4187 ***************************************************************************/
4189 static bool do_section(const char *pszSectionName)
4192 bool isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4193 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4196 /* if we were in a global section then do the local inits */
4197 if (bInGlobalSection && !isglobal)
4200 /* if we've just struck a global section, note the fact. */
4201 bInGlobalSection = isglobal;
4203 /* check for multiple global sections */
4204 if (bInGlobalSection) {
4205 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4209 if (!bInGlobalSection && bGlobalOnly)
4212 /* if we have a current service, tidy it up before moving on */
4215 if (iServiceIndex >= 0)
4216 bRetval = service_ok(iServiceIndex);
4218 /* if all is still well, move to the next record in the services array */
4220 /* We put this here to avoid an odd message order if messages are */
4221 /* issued by the post-processing of a previous section. */
4222 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4224 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4226 DEBUG(0, ("Failed to add a new service\n"));
4235 /***************************************************************************
4236 Determine if a partcular base parameter is currentl set to the default value.
4237 ***************************************************************************/
4239 static bool is_default(int i)
4241 if (!defaults_saved)
4243 switch (parm_table[i].type) {
4245 return str_list_compare (parm_table[i].def.lvalue,
4246 *(char ***)parm_table[i].ptr);
4249 return strequal(parm_table[i].def.svalue,
4250 *(char **)parm_table[i].ptr);
4253 return parm_table[i].def.bvalue ==
4254 *(bool *)parm_table[i].ptr;
4256 return parm_table[i].def.cvalue ==
4257 *(char *)parm_table[i].ptr;
4261 return parm_table[i].def.ivalue ==
4262 *(int *)parm_table[i].ptr;
4269 /***************************************************************************
4270 Display the contents of the global structure.
4271 ***************************************************************************/
4273 static void dump_globals(FILE *f)
4276 param_opt_struct *data;
4278 fprintf(f, "[global]\n");
4280 for (i = 0; parm_table[i].label; i++)
4281 if (parm_table[i].p_class == P_GLOBAL &&
4282 parm_table[i].ptr &&
4283 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4284 if (defaults_saved && is_default(i))
4286 fprintf(f, "\t%s = ", parm_table[i].label);
4287 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4290 if (Globals.param_opt != NULL) {
4291 data = Globals.param_opt;
4293 fprintf(f, "\t%s = %s\n", data->key, data->value);
4300 /***************************************************************************
4301 Return True if a local parameter is currently set to the global default.
4302 ***************************************************************************/
4304 bool lp_is_default(int snum, struct parm_struct *parm)
4306 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4308 return equal_parameter(parm->type,
4309 ((char *)ServicePtrs[snum]) + pdiff,
4310 ((char *)&sDefault) + pdiff);
4313 /***************************************************************************
4314 Display the contents of a single services record.
4315 ***************************************************************************/
4317 static void dump_a_service(service * pService, FILE * f)
4320 param_opt_struct *data;
4322 if (pService != &sDefault)
4323 fprintf(f, "[%s]\n", pService->szService);
4325 for (i = 0; parm_table[i].label; i++) {
4327 if (parm_table[i].p_class == P_LOCAL &&
4328 parm_table[i].ptr &&
4329 (*parm_table[i].label != '-') &&
4330 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4333 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4335 if (pService == &sDefault) {
4336 if (defaults_saved && is_default(i))
4339 if (equal_parameter(parm_table[i].type,
4340 ((char *)pService) +
4342 ((char *)&sDefault) +
4347 fprintf(f, "\t%s = ", parm_table[i].label);
4348 print_parameter(&parm_table[i],
4349 ((char *)pService) + pdiff, f);
4354 if (pService->param_opt != NULL) {
4355 data = pService->param_opt;
4357 fprintf(f, "\t%s = %s\n", data->key, data->value);
4363 /***************************************************************************
4364 Display the contents of a parameter of a single services record.
4365 ***************************************************************************/
4367 bool dump_a_parameter(int snum, char *parm_name, FILE * f, bool isGlobal)
4370 bool result = False;
4373 fstring local_parm_name;
4375 const char *parm_opt_value;
4377 /* check for parametrical option */
4378 fstrcpy( local_parm_name, parm_name);
4379 parm_opt = strchr( local_parm_name, ':');
4384 if (strlen(parm_opt)) {
4385 parm_opt_value = lp_parm_const_string( snum,
4386 local_parm_name, parm_opt, NULL);
4387 if (parm_opt_value) {
4388 printf( "%s\n", parm_opt_value);
4395 /* check for a key and print the value */
4402 for (i = 0; parm_table[i].label; i++) {
4403 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4404 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4405 parm_table[i].ptr &&
4406 (*parm_table[i].label != '-') &&
4407 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4412 ptr = parm_table[i].ptr;
4414 service * pService = ServicePtrs[snum];
4415 ptr = ((char *)pService) +
4416 PTR_DIFF(parm_table[i].ptr, &sDefault);
4419 print_parameter(&parm_table[i],
4430 /***************************************************************************
4431 Return info about the requested parameter (given as a string).
4432 Return NULL when the string is not a valid parameter name.
4433 ***************************************************************************/
4435 struct parm_struct *lp_get_parameter(const char *param_name)
4437 int num = map_parameter(param_name);
4443 return &parm_table[num];
4446 /***************************************************************************
4447 Return info about the next parameter in a service.
4448 snum==GLOBAL_SECTION_SNUM gives the globals.
4449 Return NULL when out of parameters.
4450 ***************************************************************************/
4452 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4455 /* do the globals */
4456 for (; parm_table[*i].label; (*i)++) {
4457 if (parm_table[*i].p_class == P_SEPARATOR)
4458 return &parm_table[(*i)++];
4460 if (!parm_table[*i].ptr
4461 || (*parm_table[*i].label == '-'))
4465 && (parm_table[*i].ptr ==
4466 parm_table[(*i) - 1].ptr))
4469 if (is_default(*i) && !allparameters)
4472 return &parm_table[(*i)++];
4475 service *pService = ServicePtrs[snum];
4477 for (; parm_table[*i].label; (*i)++) {
4478 if (parm_table[*i].p_class == P_SEPARATOR)
4479 return &parm_table[(*i)++];
4481 if (parm_table[*i].p_class == P_LOCAL &&
4482 parm_table[*i].ptr &&
4483 (*parm_table[*i].label != '-') &&
4485 (parm_table[*i].ptr !=
4486 parm_table[(*i) - 1].ptr)))
4489 PTR_DIFF(parm_table[*i].ptr,
4492 if (allparameters ||
4493 !equal_parameter(parm_table[*i].type,
4494 ((char *)pService) +
4496 ((char *)&sDefault) +
4499 return &parm_table[(*i)++];
4510 /***************************************************************************
4511 Display the contents of a single copy structure.
4512 ***************************************************************************/
4513 static void dump_copy_map(bool *pcopymap)
4519 printf("\n\tNon-Copied parameters:\n");
4521 for (i = 0; parm_table[i].label; i++)
4522 if (parm_table[i].p_class == P_LOCAL &&
4523 parm_table[i].ptr && !pcopymap[i] &&
4524 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4526 printf("\t\t%s\n", parm_table[i].label);
4531 /***************************************************************************
4532 Return TRUE if the passed service number is within range.
4533 ***************************************************************************/
4535 bool lp_snum_ok(int iService)
4537 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4540 /***************************************************************************
4541 Auto-load some home services.
4542 ***************************************************************************/
4544 static void lp_add_auto_services(char *str)
4554 s = SMB_STRDUP(str);
4558 homes = lp_servicenumber(HOMES_NAME);
4560 for (p = strtok_r(s, LIST_SEP, &saveptr); p;
4561 p = strtok_r(NULL, LIST_SEP, &saveptr)) {
4564 if (lp_servicenumber(p) >= 0)
4567 home = get_user_home_dir(talloc_tos(), p);
4569 if (home && homes >= 0)
4570 lp_add_home(p, homes, p, home);
4577 /***************************************************************************
4578 Auto-load one printer.
4579 ***************************************************************************/
4581 void lp_add_one_printer(char *name, char *comment)
4583 int printers = lp_servicenumber(PRINTERS_NAME);
4586 if (lp_servicenumber(name) < 0) {
4587 lp_add_printer(name, printers);
4588 if ((i = lp_servicenumber(name)) >= 0) {
4589 string_set(&ServicePtrs[i]->comment, comment);
4590 ServicePtrs[i]->autoloaded = True;
4595 /***************************************************************************
4596 Have we loaded a services file yet?
4597 ***************************************************************************/
4599 bool lp_loaded(void)
4604 /***************************************************************************
4605 Unload unused services.
4606 ***************************************************************************/
4608 void lp_killunused(bool (*snumused) (int))
4611 for (i = 0; i < iNumServices; i++) {
4615 /* don't kill autoloaded or usershare services */
4616 if ( ServicePtrs[i]->autoloaded ||
4617 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4621 if (!snumused || !snumused(i)) {
4622 free_service_byindex(i);
4627 /***************************************************************************
4629 ***************************************************************************/
4631 void lp_killservice(int iServiceIn)
4633 if (VALID(iServiceIn)) {
4634 free_service_byindex(iServiceIn);
4638 /***************************************************************************
4639 Save the curent values of all global and sDefault parameters into the
4640 defaults union. This allows swat and testparm to show only the
4641 changed (ie. non-default) parameters.
4642 ***************************************************************************/
4644 static void lp_save_defaults(void)
4647 for (i = 0; parm_table[i].label; i++) {
4648 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4650 switch (parm_table[i].type) {
4653 NULL, &(parm_table[i].def.lvalue),
4654 *(const char ***)parm_table[i].ptr);
4658 if (parm_table[i].ptr) {
4659 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4661 parm_table[i].def.svalue = NULL;
4666 parm_table[i].def.bvalue =
4667 *(bool *)parm_table[i].ptr;
4670 parm_table[i].def.cvalue =
4671 *(char *)parm_table[i].ptr;
4676 parm_table[i].def.ivalue =
4677 *(int *)parm_table[i].ptr;
4683 defaults_saved = True;
4686 /*******************************************************************
4687 Set the server type we will announce as via nmbd.
4688 ********************************************************************/
4690 static const struct srv_role_tab {
4692 const char *role_str;
4693 } srv_role_tab [] = {
4694 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4695 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4696 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4697 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4701 const char* server_role_str(uint32 role)
4704 for (i=0; srv_role_tab[i].role_str; i++) {
4705 if (role == srv_role_tab[i].role) {
4706 return srv_role_tab[i].role_str;
4712 static void set_server_role(void)
4714 server_role = ROLE_STANDALONE;
4716 switch (lp_security()) {
4718 if (lp_domain_logons())
4719 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4722 if (lp_domain_logons())
4723 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4724 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4725 server_role = ROLE_STANDALONE;
4728 if (lp_domain_logons()) {
4729 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4730 server_role = ROLE_DOMAIN_BDC;
4733 server_role = ROLE_DOMAIN_MEMBER;
4736 if (lp_domain_logons()) {
4737 server_role = ROLE_DOMAIN_PDC;
4740 server_role = ROLE_DOMAIN_MEMBER;
4743 if (lp_domain_logons()) {
4745 if (Globals.iDomainMaster) /* auto or yes */
4746 server_role = ROLE_DOMAIN_PDC;
4748 server_role = ROLE_DOMAIN_BDC;
4752 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4756 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4759 /***********************************************************
4760 If we should send plaintext/LANMAN passwords in the clinet
4761 ************************************************************/
4763 static void set_allowed_client_auth(void)
4765 if (Globals.bClientNTLMv2Auth) {
4766 Globals.bClientLanManAuth = False;
4768 if (!Globals.bClientLanManAuth) {
4769 Globals.bClientPlaintextAuth = False;
4773 /***************************************************************************
4775 The following code allows smbd to read a user defined share file.
4776 Yes, this is my intent. Yes, I'm comfortable with that...
4778 THE FOLLOWING IS SECURITY CRITICAL CODE.
4780 It washes your clothes, it cleans your house, it guards you while you sleep...
4781 Do not f%^k with it....
4782 ***************************************************************************/
4784 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4786 /***************************************************************************
4787 Check allowed stat state of a usershare file.
4788 Ensure we print out who is dicking with us so the admin can
4789 get their sorry ass fired.
4790 ***************************************************************************/
4792 static bool check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4794 if (!S_ISREG(psbuf->st_mode)) {
4795 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4796 "not a regular file\n",
4797 fname, (unsigned int)psbuf->st_uid ));
4801 /* Ensure this doesn't have the other write bit set. */
4802 if (psbuf->st_mode & S_IWOTH) {
4803 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4804 "public write. Refusing to allow as a usershare file.\n",
4805 fname, (unsigned int)psbuf->st_uid ));
4809 /* Should be 10k or less. */
4810 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4811 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4812 "too large (%u) to be a user share file.\n",
4813 fname, (unsigned int)psbuf->st_uid,
4814 (unsigned int)psbuf->st_size ));
4821 /***************************************************************************
4822 Parse the contents of a usershare file.
4823 ***************************************************************************/
4825 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4826 SMB_STRUCT_STAT *psbuf,
4827 const char *servicename,
4831 char **pp_sharepath,
4836 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4837 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4840 SMB_STRUCT_STAT sbuf;
4841 char *sharepath = NULL;
4842 char *comment = NULL;
4844 *pp_sharepath = NULL;
4847 *pallow_guest = False;
4850 return USERSHARE_MALFORMED_FILE;
4853 if (strcmp(lines[0], "#VERSION 1") == 0) {
4855 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4858 return USERSHARE_MALFORMED_FILE;
4861 return USERSHARE_BAD_VERSION;
4864 if (strncmp(lines[1], "path=", 5) != 0) {
4865 return USERSHARE_MALFORMED_PATH;
4868 sharepath = talloc_strdup(ctx, &lines[1][5]);
4870 return USERSHARE_POSIX_ERR;
4872 trim_string(sharepath, " ", " ");
4874 if (strncmp(lines[2], "comment=", 8) != 0) {
4875 return USERSHARE_MALFORMED_COMMENT_DEF;
4878 comment = talloc_strdup(ctx, &lines[2][8]);
4880 return USERSHARE_POSIX_ERR;
4882 trim_string(comment, " ", " ");
4883 trim_char(comment, '"', '"');
4885 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
4886 return USERSHARE_MALFORMED_ACL_DEF;
4889 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
4890 return USERSHARE_ACL_ERR;
4894 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
4895 return USERSHARE_MALFORMED_ACL_DEF;
4897 if (lines[4][9] == 'y') {
4898 *pallow_guest = True;
4902 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
4903 /* Path didn't change, no checks needed. */
4904 *pp_sharepath = sharepath;
4905 *pp_comment = comment;
4906 return USERSHARE_OK;
4909 /* The path *must* be absolute. */
4910 if (sharepath[0] != '/') {
4911 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
4912 servicename, sharepath));
4913 return USERSHARE_PATH_NOT_ABSOLUTE;
4916 /* If there is a usershare prefix deny list ensure one of these paths
4917 doesn't match the start of the user given path. */
4918 if (prefixdenylist) {
4920 for ( i=0; prefixdenylist[i]; i++ ) {
4921 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
4922 servicename, i, prefixdenylist[i], sharepath ));
4923 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
4924 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
4925 "usershare prefix deny list entries.\n",
4926 servicename, sharepath));
4927 return USERSHARE_PATH_IS_DENIED;
4932 /* If there is a usershare prefix allow list ensure one of these paths
4933 does match the start of the user given path. */
4935 if (prefixallowlist) {
4937 for ( i=0; prefixallowlist[i]; i++ ) {
4938 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
4939 servicename, i, prefixallowlist[i], sharepath ));
4940 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
4944 if (prefixallowlist[i] == NULL) {
4945 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
4946 "usershare prefix allow list entries.\n",
4947 servicename, sharepath));
4948 return USERSHARE_PATH_NOT_ALLOWED;
4952 /* Ensure this is pointing to a directory. */
4953 dp = sys_opendir(sharepath);
4956 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
4957 servicename, sharepath));
4958 return USERSHARE_PATH_NOT_DIRECTORY;
4961 /* Ensure the owner of the usershare file has permission to share
4964 if (sys_stat(sharepath, &sbuf) == -1) {
4965 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
4966 servicename, sharepath, strerror(errno) ));
4968 return USERSHARE_POSIX_ERR;
4973 if (!S_ISDIR(sbuf.st_mode)) {
4974 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
4975 servicename, sharepath ));
4976 return USERSHARE_PATH_NOT_DIRECTORY;
4979 /* Check if sharing is restricted to owner-only. */
4980 /* psbuf is the stat of the usershare definition file,
4981 sbuf is the stat of the target directory to be shared. */
4983 if (lp_usershare_owner_only()) {
4984 /* root can share anything. */
4985 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
4986 return USERSHARE_PATH_NOT_ALLOWED;
4990 *pp_sharepath = sharepath;
4991 *pp_comment = comment;
4992 return USERSHARE_OK;
4995 /***************************************************************************
4996 Deal with a usershare file.
4999 -1 - Bad name, invalid contents.
5000 - service name already existed and not a usershare, problem
5001 with permissions to share directory etc.
5002 ***************************************************************************/
5004 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5006 SMB_STRUCT_STAT sbuf;
5007 SMB_STRUCT_STAT lsbuf;
5009 char *sharepath = NULL;
5010 char *comment = NULL;
5011 fstring service_name;
5012 char **lines = NULL;
5016 TALLOC_CTX *ctx = NULL;
5017 SEC_DESC *psd = NULL;
5018 bool guest_ok = False;
5020 /* Ensure share name doesn't contain invalid characters. */
5021 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5022 DEBUG(0,("process_usershare_file: share name %s contains "
5023 "invalid characters (any of %s)\n",
5024 file_name, INVALID_SHARENAME_CHARS ));
5028 fstrcpy(service_name, file_name);
5030 if (asprintf(&fname, "%s/%s", dir_name, file_name) < 0) {
5033 /* Minimize the race condition by doing an lstat before we
5034 open and fstat. Ensure this isn't a symlink link. */
5036 if (sys_lstat(fname, &lsbuf) != 0) {
5037 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5038 fname, strerror(errno) ));
5043 /* This must be a regular file, not a symlink, directory or
5044 other strange filetype. */
5045 if (!check_usershare_stat(fname, &lsbuf)) {
5051 char *canon_name = canonicalize_servicename(service_name);
5052 TDB_DATA data = dbwrap_fetch_bystring(
5053 ServiceHash, canon_name, canon_name);
5057 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
5058 iService = *(int *)data.dptr;
5060 TALLOC_FREE(canon_name);
5063 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5064 /* Nothing changed - Mark valid and return. */
5065 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5067 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5072 /* Try and open the file read only - no symlinks allowed. */
5074 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5076 fd = sys_open(fname, O_RDONLY, 0);
5080 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5081 fname, strerror(errno) ));
5086 /* Now fstat to be *SURE* it's a regular file. */
5087 if (sys_fstat(fd, &sbuf) != 0) {
5089 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5090 fname, strerror(errno) ));
5095 /* Is it the same dev/inode as was lstated ? */
5096 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5098 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5099 "Symlink spoofing going on ?\n", fname ));
5104 /* This must be a regular file, not a symlink, directory or
5105 other strange filetype. */
5106 if (!check_usershare_stat(fname, &sbuf)) {
5111 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5114 if (lines == NULL) {
5115 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5116 fname, (unsigned int)sbuf.st_uid ));
5123 /* Should we allow printers to be shared... ? */
5124 ctx = talloc_init("usershare_sd_xctx");
5126 file_lines_free(lines);
5130 if (parse_usershare_file(ctx, &sbuf, service_name,
5131 iService, lines, numlines, &sharepath,
5132 &comment, &psd, &guest_ok) != USERSHARE_OK) {
5133 talloc_destroy(ctx);
5134 file_lines_free(lines);
5138 file_lines_free(lines);
5140 /* Everything ok - add the service possibly using a template. */
5142 const service *sp = &sDefault;
5143 if (snum_template != -1) {
5144 sp = ServicePtrs[snum_template];
5147 if ((iService = add_a_service(sp, service_name)) < 0) {
5148 DEBUG(0, ("process_usershare_file: Failed to add "
5149 "new service %s\n", service_name));
5150 talloc_destroy(ctx);
5154 /* Read only is controlled by usershare ACL below. */
5155 ServicePtrs[iService]->bRead_only = False;
5158 /* Write the ACL of the new/modified share. */
5159 if (!set_share_security(service_name, psd)) {
5160 DEBUG(0, ("process_usershare_file: Failed to set share "
5161 "security for user share %s\n",
5163 lp_remove_service(iService);
5164 talloc_destroy(ctx);
5168 /* If from a template it may be marked invalid. */
5169 ServicePtrs[iService]->valid = True;
5171 /* Set the service as a valid usershare. */
5172 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5174 /* Set guest access. */
5175 if (lp_usershare_allow_guests()) {
5176 ServicePtrs[iService]->bGuest_ok = guest_ok;
5179 /* And note when it was loaded. */
5180 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5181 string_set(&ServicePtrs[iService]->szPath, sharepath);
5182 string_set(&ServicePtrs[iService]->comment, comment);
5184 talloc_destroy(ctx);
5189 /***************************************************************************
5190 Checks if a usershare entry has been modified since last load.
5191 ***************************************************************************/
5193 static bool usershare_exists(int iService, time_t *last_mod)
5195 SMB_STRUCT_STAT lsbuf;
5196 const char *usersharepath = Globals.szUsersharePath;
5199 if (asprintf(&fname, "%s/%s",
5201 ServicePtrs[iService]->szService) < 0) {
5205 if (sys_lstat(fname, &lsbuf) != 0) {
5210 if (!S_ISREG(lsbuf.st_mode)) {
5216 *last_mod = lsbuf.st_mtime;
5220 /***************************************************************************
5221 Load a usershare service by name. Returns a valid servicenumber or -1.
5222 ***************************************************************************/
5224 int load_usershare_service(const char *servicename)
5226 SMB_STRUCT_STAT sbuf;
5227 const char *usersharepath = Globals.szUsersharePath;
5228 int max_user_shares = Globals.iUsershareMaxShares;
5229 int snum_template = -1;
5231 if (*usersharepath == 0 || max_user_shares == 0) {
5235 if (sys_stat(usersharepath, &sbuf) != 0) {
5236 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5237 usersharepath, strerror(errno) ));
5241 if (!S_ISDIR(sbuf.st_mode)) {
5242 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5248 * This directory must be owned by root, and have the 't' bit set.
5249 * It also must not be writable by "other".
5253 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5255 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5257 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5258 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5263 /* Ensure the template share exists if it's set. */
5264 if (Globals.szUsershareTemplateShare[0]) {
5265 /* We can't use lp_servicenumber here as we are recommending that
5266 template shares have -valid=False set. */
5267 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5268 if (ServicePtrs[snum_template]->szService &&
5269 strequal(ServicePtrs[snum_template]->szService,
5270 Globals.szUsershareTemplateShare)) {
5275 if (snum_template == -1) {
5276 DEBUG(0,("load_usershare_service: usershare template share %s "
5277 "does not exist.\n",
5278 Globals.szUsershareTemplateShare ));
5283 return process_usershare_file(usersharepath, servicename, snum_template);
5286 /***************************************************************************
5287 Load all user defined shares from the user share directory.
5288 We only do this if we're enumerating the share list.
5289 This is the function that can delete usershares that have
5291 ***************************************************************************/
5293 int load_usershare_shares(void)
5296 SMB_STRUCT_STAT sbuf;
5297 SMB_STRUCT_DIRENT *de;
5298 int num_usershares = 0;
5299 int max_user_shares = Globals.iUsershareMaxShares;
5300 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5301 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5302 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5304 int snum_template = -1;
5305 const char *usersharepath = Globals.szUsersharePath;
5306 int ret = lp_numservices();
5308 if (max_user_shares == 0 || *usersharepath == '\0') {
5309 return lp_numservices();
5312 if (sys_stat(usersharepath, &sbuf) != 0) {
5313 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5314 usersharepath, strerror(errno) ));
5319 * This directory must be owned by root, and have the 't' bit set.
5320 * It also must not be writable by "other".
5324 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5326 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5328 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5329 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5334 /* Ensure the template share exists if it's set. */
5335 if (Globals.szUsershareTemplateShare[0]) {
5336 /* We can't use lp_servicenumber here as we are recommending that
5337 template shares have -valid=False set. */
5338 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5339 if (ServicePtrs[snum_template]->szService &&
5340 strequal(ServicePtrs[snum_template]->szService,
5341 Globals.szUsershareTemplateShare)) {
5346 if (snum_template == -1) {
5347 DEBUG(0,("load_usershare_shares: usershare template share %s "
5348 "does not exist.\n",
5349 Globals.szUsershareTemplateShare ));
5354 /* Mark all existing usershares as pending delete. */
5355 for (iService = iNumServices - 1; iService >= 0; iService--) {
5356 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5357 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5361 dp = sys_opendir(usersharepath);
5363 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5364 usersharepath, strerror(errno) ));
5368 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5369 (de = sys_readdir(dp));
5370 num_dir_entries++ ) {
5372 const char *n = de->d_name;
5374 /* Ignore . and .. */
5376 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5382 /* Temporary file used when creating a share. */
5383 num_tmp_dir_entries++;
5386 /* Allow 20% tmp entries. */
5387 if (num_tmp_dir_entries > allowed_tmp_entries) {
5388 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5389 "in directory %s\n",
5390 num_tmp_dir_entries, usersharepath));
5394 r = process_usershare_file(usersharepath, n, snum_template);
5396 /* Update the services count. */
5398 if (num_usershares >= max_user_shares) {
5399 DEBUG(0,("load_usershare_shares: max user shares reached "
5400 "on file %s in directory %s\n",
5401 n, usersharepath ));
5404 } else if (r == -1) {
5405 num_bad_dir_entries++;
5408 /* Allow 20% bad entries. */
5409 if (num_bad_dir_entries > allowed_bad_entries) {
5410 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5411 "in directory %s\n",
5412 num_bad_dir_entries, usersharepath));
5416 /* Allow 20% bad entries. */
5417 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5418 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5419 "in directory %s\n",
5420 num_dir_entries, usersharepath));
5427 /* Sweep through and delete any non-refreshed usershares that are
5428 not currently in use. */
5429 for (iService = iNumServices - 1; iService >= 0; iService--) {
5430 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5431 if (conn_snum_used(iService)) {
5434 /* Remove from the share ACL db. */
5435 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5436 lp_servicename(iService) ));
5437 delete_share_security(lp_servicename(iService));
5438 free_service_byindex(iService);
5442 return lp_numservices();
5445 /********************************************************
5446 Destroy global resources allocated in this file
5447 ********************************************************/
5449 void gfree_loadparm(void)
5451 struct file_lists *f;
5452 struct file_lists *next;
5455 /* Free the file lists */
5460 SAFE_FREE( f->name );
5461 SAFE_FREE( f->subfname );
5466 /* Free resources allocated to services */
5468 for ( i = 0; i < iNumServices; i++ ) {
5470 free_service_byindex(i);
5474 SAFE_FREE( ServicePtrs );
5477 /* Now release all resources allocated to global
5478 parameters and the default service */
5480 for (i = 0; parm_table[i].label; i++)
5482 if ( parm_table[i].type == P_STRING
5483 || parm_table[i].type == P_USTRING )
5485 string_free( (char**)parm_table[i].ptr );
5487 else if (parm_table[i].type == P_LIST) {
5488 TALLOC_FREE( *((char***)parm_table[i].ptr) );
5493 /***************************************************************************
5494 Load the services array from the services file. Return True on success,
5496 ***************************************************************************/
5498 bool lp_load(const char *pszFname,
5502 bool initialize_globals)
5506 param_opt_struct *data, *pdata;
5510 DEBUG(3, ("lp_load: refreshing parameters\n"));
5512 bInGlobalSection = True;
5513 bGlobalOnly = global_only;
5515 init_globals(! initialize_globals);
5518 if (save_defaults) {
5523 if (Globals.param_opt != NULL) {
5524 data = Globals.param_opt;
5526 string_free(&data->key);
5527 string_free(&data->value);
5528 TALLOC_FREE(data->list);
5533 Globals.param_opt = NULL;
5536 if (lp_config_backend() == CONFIG_BACKEND_FILE) {
5537 n2 = alloc_sub_basic(get_current_username(),
5538 current_user_info.domain,
5541 smb_panic("lp_load: out of memory");
5544 add_to_file_list(pszFname, n2);
5546 /* We get sections first, so have to start 'behind' to make up */
5548 bRetval = pm_process(n2, do_section, do_parameter);
5551 /* finish up the last section */
5552 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5554 if (iServiceIndex >= 0) {
5555 bRetval = service_ok(iServiceIndex);
5559 if (lp_config_backend() == CONFIG_BACKEND_REGISTRY) {
5561 * We need to use this extra global variable here to
5562 * survive restart: init_globals usese this as a default
5563 * for ConfigBackend. Otherwise, init_globals would
5564 * send us into an endless loop here.
5566 config_backend = CONFIG_BACKEND_REGISTRY;
5568 init_globals(false);
5569 return lp_load(pszFname, global_only, save_defaults,
5570 add_ipc, initialize_globals);
5572 } else if (lp_config_backend() == CONFIG_BACKEND_REGISTRY) {
5573 bRetval = process_registry_globals(do_parameter);
5575 DEBUG(0, ("Illegal config backend given: %d\n",
5576 lp_config_backend()));
5580 lp_add_auto_services(lp_auto_services());
5583 /* When 'restrict anonymous = 2' guest connections to ipc$
5585 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5586 if ( lp_enable_asu_support() ) {
5587 lp_add_ipc("ADMIN$", false);
5592 set_default_server_announce_type();
5593 set_allowed_client_auth();
5597 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5598 /* if bWINSsupport is true and we are in the client */
5599 if (in_client && Globals.bWINSsupport) {
5600 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5608 /***************************************************************************
5609 Reset the max number of services.
5610 ***************************************************************************/
5612 void lp_resetnumservices(void)
5617 /***************************************************************************
5618 Return the max number of services.
5619 ***************************************************************************/
5621 int lp_numservices(void)
5623 return (iNumServices);
5626 /***************************************************************************
5627 Display the contents of the services array in human-readable form.
5628 ***************************************************************************/
5630 void lp_dump(FILE *f, bool show_defaults, int maxtoprint)
5635 defaults_saved = False;
5639 dump_a_service(&sDefault, f);
5641 for (iService = 0; iService < maxtoprint; iService++) {
5643 lp_dump_one(f, show_defaults, iService);
5647 /***************************************************************************
5648 Display the contents of one service in human-readable form.
5649 ***************************************************************************/
5651 void lp_dump_one(FILE * f, bool show_defaults, int snum)
5654 if (ServicePtrs[snum]->szService[0] == '\0')
5656 dump_a_service(ServicePtrs[snum], f);
5660 /***************************************************************************
5661 Return the number of the service with the given name, or -1 if it doesn't
5662 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5663 getservicebyname()! This works ONLY if all services have been loaded, and
5664 does not copy the found service.
5665 ***************************************************************************/
5667 int lp_servicenumber(const char *pszServiceName)
5670 fstring serviceName;
5672 if (!pszServiceName) {
5673 return GLOBAL_SECTION_SNUM;
5676 for (iService = iNumServices - 1; iService >= 0; iService--) {
5677 if (VALID(iService) && ServicePtrs[iService]->szService) {
5679 * The substitution here is used to support %U is
5682 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5683 standard_sub_basic(get_current_username(),
5684 current_user_info.domain,
5685 serviceName,sizeof(serviceName));
5686 if (strequal(serviceName, pszServiceName)) {
5692 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5695 if (!usershare_exists(iService, &last_mod)) {
5696 /* Remove the share security tdb entry for it. */
5697 delete_share_security(lp_servicename(iService));
5698 /* Remove it from the array. */
5699 free_service_byindex(iService);
5700 /* Doesn't exist anymore. */
5701 return GLOBAL_SECTION_SNUM;
5704 /* Has it been modified ? If so delete and reload. */
5705 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5706 /* Remove it from the array. */
5707 free_service_byindex(iService);
5708 /* and now reload it. */
5709 iService = load_usershare_service(pszServiceName);
5714 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5715 return GLOBAL_SECTION_SNUM;
5721 bool share_defined(const char *service_name)
5723 return (lp_servicenumber(service_name) != -1);
5726 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5727 const char *sharename)
5729 struct share_params *result;
5733 if (!(sname = SMB_STRDUP(sharename))) {
5737 snum = find_service(sname);
5744 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5745 DEBUG(0, ("talloc failed\n"));
5749 result->service = snum;
5753 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5755 struct share_iterator *result;
5757 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5758 DEBUG(0, ("talloc failed\n"));
5762 result->next_id = 0;
5766 struct share_params *next_share(struct share_iterator *list)
5768 struct share_params *result;
5770 while (!lp_snum_ok(list->next_id) &&
5771 (list->next_id < lp_numservices())) {
5775 if (list->next_id >= lp_numservices()) {
5779 if (!(result = TALLOC_P(list, struct share_params))) {
5780 DEBUG(0, ("talloc failed\n"));
5784 result->service = list->next_id;
5789 struct share_params *next_printer(struct share_iterator *list)
5791 struct share_params *result;
5793 while ((result = next_share(list)) != NULL) {
5794 if (lp_print_ok(result->service)) {
5802 * This is a hack for a transition period until we transformed all code from
5803 * service numbers to struct share_params.
5806 struct share_params *snum2params_static(int snum)
5808 static struct share_params result;
5809 result.service = snum;
5813 /*******************************************************************
5814 A useful volume label function.
5815 ********************************************************************/
5817 const char *volume_label(int snum)
5820 const char *label = lp_volume(snum);
5822 label = lp_servicename(snum);
5825 /* This returns a 33 byte guarenteed null terminated string. */
5826 ret = talloc_strndup(talloc_tos(), label, 32);
5833 /*******************************************************************
5834 Set the server type we will announce as via nmbd.
5835 ********************************************************************/
5837 static void set_default_server_announce_type(void)
5839 default_server_announce = 0;
5840 default_server_announce |= SV_TYPE_WORKSTATION;
5841 default_server_announce |= SV_TYPE_SERVER;
5842 default_server_announce |= SV_TYPE_SERVER_UNIX;
5844 /* note that the flag should be set only if we have a
5845 printer service but nmbd doesn't actually load the
5846 services so we can't tell --jerry */
5848 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5850 switch (lp_announce_as()) {
5851 case ANNOUNCE_AS_NT_SERVER:
5852 default_server_announce |= SV_TYPE_SERVER_NT;
5853 /* fall through... */
5854 case ANNOUNCE_AS_NT_WORKSTATION:
5855 default_server_announce |= SV_TYPE_NT;
5857 case ANNOUNCE_AS_WIN95:
5858 default_server_announce |= SV_TYPE_WIN95_PLUS;
5860 case ANNOUNCE_AS_WFW:
5861 default_server_announce |= SV_TYPE_WFW;
5867 switch (lp_server_role()) {
5868 case ROLE_DOMAIN_MEMBER:
5869 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5871 case ROLE_DOMAIN_PDC:
5872 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5874 case ROLE_DOMAIN_BDC:
5875 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5877 case ROLE_STANDALONE:
5881 if (lp_time_server())
5882 default_server_announce |= SV_TYPE_TIME_SOURCE;
5884 if (lp_host_msdfs())
5885 default_server_announce |= SV_TYPE_DFS_SERVER;
5888 /***********************************************************
5889 returns role of Samba server
5890 ************************************************************/
5892 int lp_server_role(void)
5897 /***********************************************************
5898 If we are PDC then prefer us as DMB
5899 ************************************************************/
5901 bool lp_domain_master(void)
5903 if (Globals.iDomainMaster == Auto)
5904 return (lp_server_role() == ROLE_DOMAIN_PDC);
5906 return (bool)Globals.iDomainMaster;
5909 /***********************************************************
5910 If we are DMB then prefer us as LMB
5911 ************************************************************/
5913 bool lp_preferred_master(void)
5915 if (Globals.iPreferredMaster == Auto)
5916 return (lp_local_master() && lp_domain_master());
5918 return (bool)Globals.iPreferredMaster;
5921 /*******************************************************************
5923 ********************************************************************/
5925 void lp_remove_service(int snum)
5927 ServicePtrs[snum]->valid = False;
5928 invalid_services[num_invalid_services++] = snum;
5931 /*******************************************************************
5933 ********************************************************************/
5935 void lp_copy_service(int snum, const char *new_name)
5937 do_section(new_name);
5939 snum = lp_servicenumber(new_name);
5941 lp_do_parameter(snum, "copy", lp_servicename(snum));
5946 /*******************************************************************
5947 Get the default server type we will announce as via nmbd.
5948 ********************************************************************/
5950 int lp_default_server_announce(void)
5952 return default_server_announce;
5955 /*******************************************************************
5956 Split the announce version into major and minor numbers.
5957 ********************************************************************/
5959 int lp_major_announce_version(void)
5961 static bool got_major = False;
5962 static int major_version = DEFAULT_MAJOR_VERSION;
5967 return major_version;
5970 if ((vers = lp_announce_version()) == NULL)
5971 return major_version;
5973 if ((p = strchr_m(vers, '.')) == 0)
5974 return major_version;
5977 major_version = atoi(vers);
5978 return major_version;
5981 int lp_minor_announce_version(void)
5983 static bool got_minor = False;
5984 static int minor_version = DEFAULT_MINOR_VERSION;
5989 return minor_version;
5992 if ((vers = lp_announce_version()) == NULL)
5993 return minor_version;
5995 if ((p = strchr_m(vers, '.')) == 0)
5996 return minor_version;
5999 minor_version = atoi(p);
6000 return minor_version;
6003 /***********************************************************
6004 Set the global name resolution order (used in smbclient).
6005 ************************************************************/
6007 void lp_set_name_resolve_order(const char *new_order)
6009 string_set(&Globals.szNameResolveOrder, new_order);
6012 const char *lp_printername(int snum)
6014 const char *ret = _lp_printername(snum);
6015 if (ret == NULL || (ret != NULL && *ret == '\0'))
6016 ret = lp_const_servicename(snum);
6022 /***********************************************************
6023 Allow daemons such as winbindd to fix their logfile name.
6024 ************************************************************/
6026 void lp_set_logfile(const char *name)
6028 string_set(&Globals.szLogFile, name);
6029 debug_set_logfile(name);
6032 /*******************************************************************
6033 Return the max print jobs per queue.
6034 ********************************************************************/
6036 int lp_maxprintjobs(int snum)
6038 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6039 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6040 maxjobs = PRINT_MAX_JOBID - 1;
6045 const char *lp_printcapname(void)
6047 if ((Globals.szPrintcapname != NULL) &&
6048 (Globals.szPrintcapname[0] != '\0'))
6049 return Globals.szPrintcapname;
6051 if (sDefault.iPrinting == PRINT_CUPS) {
6059 if (sDefault.iPrinting == PRINT_BSD)
6060 return "/etc/printcap";
6062 return PRINTCAP_NAME;
6065 /*******************************************************************
6066 Ensure we don't use sendfile if server smb signing is active.
6067 ********************************************************************/
6069 static uint32 spoolss_state;
6071 bool lp_disable_spoolss( void )
6073 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6074 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6076 return spoolss_state == SVCCTL_STOPPED ? True : False;
6079 void lp_set_spoolss_state( uint32 state )
6081 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6083 spoolss_state = state;
6086 uint32 lp_get_spoolss_state( void )
6088 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6091 /*******************************************************************
6092 Ensure we don't use sendfile if server smb signing is active.
6093 ********************************************************************/
6095 bool lp_use_sendfile(int snum)
6097 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6098 if (Protocol < PROTOCOL_NT1) {
6101 return (_lp_use_sendfile(snum) &&
6102 (get_remote_arch() != RA_WIN95) &&
6103 !srv_is_signing_active());
6106 /*******************************************************************
6107 Turn off sendfile if we find the underlying OS doesn't support it.
6108 ********************************************************************/
6110 void set_use_sendfile(int snum, bool val)
6112 if (LP_SNUM_OK(snum))
6113 ServicePtrs[snum]->bUseSendfile = val;
6115 sDefault.bUseSendfile = val;
6118 /*******************************************************************
6119 Turn off storing DOS attributes if this share doesn't support it.
6120 ********************************************************************/
6122 void set_store_dos_attributes(int snum, bool val)
6124 if (!LP_SNUM_OK(snum))
6126 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6129 void lp_set_mangling_method(const char *new_method)
6131 string_set(&Globals.szManglingMethod, new_method);
6134 /*******************************************************************
6135 Global state for POSIX pathname processing.
6136 ********************************************************************/
6138 static bool posix_pathnames;
6140 bool lp_posix_pathnames(void)
6142 return posix_pathnames;
6145 /*******************************************************************
6146 Change everything needed to ensure POSIX pathname processing (currently
6148 ********************************************************************/
6150 void lp_set_posix_pathnames(void)
6152 posix_pathnames = True;
6155 /*******************************************************************
6156 Global state for POSIX lock processing - CIFS unix extensions.
6157 ********************************************************************/
6159 bool posix_default_lock_was_set;
6160 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6162 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6164 if (posix_default_lock_was_set) {
6165 return posix_cifsx_locktype;
6167 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6171 /*******************************************************************
6172 ********************************************************************/
6174 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6176 posix_default_lock_was_set = True;
6177 posix_cifsx_locktype = val;
6180 int lp_min_receive_file_size(void)
6182 if (Globals.iminreceivefile < 0) {
6185 return MIN(Globals.iminreceivefile, BUFFER_SIZE);
git.samba.org / ira / wip.git / blob