2 Unix SMB/CIFS implementation.
3 Main SMB reply routines
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Andrew Bartlett 2001
6 Copyright (C) Jeremy Allison 1992-2004.
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 2 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program; if not, write to the Free Software
20 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
23 This file handles most of the reply_ calls that the server
24 makes to handle specific protocols
29 /* look in server.c for some explanation of these variables */
30 extern enum protocol_types Protocol;
33 extern char magic_char;
34 extern int global_oplock_break;
35 unsigned int smb_echo_count = 0;
36 extern uint32 global_client_caps;
38 extern BOOL global_encrypted_passwords_negotiated;
40 /****************************************************************************
41 Ensure we check the path in *exactly* the same way as W2K.
42 We're assuming here that '/' is not the second byte in any multibyte char
43 set (a safe assumption). '\\' *may* be the second byte in a multibyte char
45 ****************************************************************************/
47 NTSTATUS check_path_syntax(pstring destname, const pstring srcname, BOOL allow_wcard_names)
50 const char *s = srcname;
51 NTSTATUS ret = NT_STATUS_OK;
52 BOOL start_of_name_component = True;
53 unsigned int num_bad_components = 0;
56 if (IS_DIRECTORY_SEP(*s)) {
58 * Safe to assume is not the second part of a mb char as this is handled below.
60 /* Eat multiple '/' or '\\' */
61 while (IS_DIRECTORY_SEP(*s)) {
64 if ((d != destname) && (*s != '\0')) {
65 /* We only care about non-leading or trailing '/' or '\\' */
69 start_of_name_component = True;
73 if (start_of_name_component) {
74 if ((s[0] == '.') && (s[1] == '.') && (IS_DIRECTORY_SEP(s[2]) || s[2] == '\0')) {
75 /* Uh oh - "/../" or "\\..\\" or "/..\0" or "\\..\0" ! */
78 * No mb char starts with '.' so we're safe checking the directory separator here.
81 /* If we just added a '/' - delete it */
82 if ((d > destname) && (*(d-1) == '/')) {
87 /* Are we at the start ? Can't go back further if so. */
89 ret = NT_STATUS_OBJECT_PATH_SYNTAX_BAD;
92 /* Go back one level... */
93 /* We know this is safe as '/' cannot be part of a mb sequence. */
94 /* NOTE - if this assumption is invalid we are not in good shape... */
95 /* Decrement d first as d points to the *next* char to write into. */
96 for (d--; d > destname; d--) {
100 s += 2; /* Else go past the .. */
101 /* We're still at the start of a name component, just the previous one. */
103 if (num_bad_components) {
104 /* Hmmm. Should we only decrement the bad_components if
105 we're removing a bad component ? Need to check this. JRA. */
106 num_bad_components--;
111 } else if ((s[0] == '.') && ((s[1] == '\0') || IS_DIRECTORY_SEP(s[1]))) {
112 /* Component of pathname can't be "." only. */
113 ret = NT_STATUS_OBJECT_NAME_INVALID;
114 num_bad_components++;
121 if (allow_wcard_names) {
130 return NT_STATUS_OBJECT_NAME_INVALID;
137 switch(next_mb_char_size(s)) {
148 DEBUG(0,("check_path_syntax: character length assumptions invalid !\n"));
150 return NT_STATUS_INVALID_PARAMETER;
153 if (start_of_name_component && num_bad_components) {
154 num_bad_components++;
156 start_of_name_component = False;
159 if (NT_STATUS_EQUAL(ret, NT_STATUS_OBJECT_NAME_INVALID)) {
160 /* For some strange reason being called from findfirst changes
161 the num_components number to cause the error return to change. JRA. */
162 if (allow_wcard_names) {
163 if (num_bad_components > 2) {
164 ret = NT_STATUS_OBJECT_PATH_NOT_FOUND;
167 if (num_bad_components > 1) {
168 ret = NT_STATUS_OBJECT_PATH_NOT_FOUND;
177 /****************************************************************************
178 Pull a string and check the path - provide for error return.
179 ****************************************************************************/
181 size_t srvstr_get_path(char *inbuf, char *dest, const char *src, size_t dest_len, size_t src_len, int flags, NTSTATUS *err, BOOL allow_wcard_names)
184 char *tmppath_ptr = tmppath;
187 SMB_ASSERT(dest_len == sizeof(pstring));
191 ret = srvstr_pull_buf( inbuf, tmppath_ptr, src, dest_len, flags);
193 ret = srvstr_pull( inbuf, tmppath_ptr, src, dest_len, src_len, flags);
195 *err = check_path_syntax(dest, tmppath, allow_wcard_names);
199 /****************************************************************************
200 Reply to a special message.
201 ****************************************************************************/
203 int reply_special(char *inbuf,char *outbuf)
206 int msg_type = CVAL(inbuf,0);
207 int msg_flags = CVAL(inbuf,1);
211 static BOOL already_got_session = False;
215 memset(outbuf,'\0',smb_size);
217 smb_setlen(outbuf,0);
220 case 0x81: /* session request */
222 if (already_got_session) {
223 exit_server("multiple session request not permitted");
226 SCVAL(outbuf,0,0x82);
228 if (name_len(inbuf+4) > 50 ||
229 name_len(inbuf+4 + name_len(inbuf + 4)) > 50) {
230 DEBUG(0,("Invalid name length in session request\n"));
233 name_extract(inbuf,4,name1);
234 name_type = name_extract(inbuf,4 + name_len(inbuf + 4),name2);
235 DEBUG(2,("netbios connect: name1=%s name2=%s\n",
238 set_local_machine_name(name1, True);
239 set_remote_machine_name(name2, True);
241 DEBUG(2,("netbios connect: local=%s remote=%s, name type = %x\n",
242 get_local_machine_name(), get_remote_machine_name(),
245 if (name_type == 'R') {
246 /* We are being asked for a pathworks session ---
248 SCVAL(outbuf, 0,0x83);
252 /* only add the client's machine name to the list
253 of possibly valid usernames if we are operating
254 in share mode security */
255 if (lp_security() == SEC_SHARE) {
256 add_session_user(get_remote_machine_name());
259 reload_services(True);
262 already_got_session = True;
265 case 0x89: /* session keepalive request
266 (some old clients produce this?) */
267 SCVAL(outbuf,0,SMBkeepalive);
271 case 0x82: /* positive session response */
272 case 0x83: /* negative session response */
273 case 0x84: /* retarget session response */
274 DEBUG(0,("Unexpected session response\n"));
277 case SMBkeepalive: /* session keepalive */
282 DEBUG(5,("init msg_type=0x%x msg_flags=0x%x\n",
283 msg_type, msg_flags));
288 /****************************************************************************
290 ****************************************************************************/
292 int reply_tcon(connection_struct *conn,
293 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
300 uint16 vuid = SVAL(inbuf,smb_uid);
304 DATA_BLOB password_blob;
306 START_PROFILE(SMBtcon);
308 *service_buf = *password = *dev = 0;
310 p = smb_buf(inbuf)+1;
311 p += srvstr_pull_buf(inbuf, service_buf, p, sizeof(service_buf), STR_TERMINATE) + 1;
312 pwlen = srvstr_pull_buf(inbuf, password, p, sizeof(password), STR_TERMINATE) + 1;
314 p += srvstr_pull_buf(inbuf, dev, p, sizeof(dev), STR_TERMINATE) + 1;
316 p = strrchr_m(service_buf,'\\');
320 service = service_buf;
323 password_blob = data_blob(password, pwlen+1);
325 conn = make_connection(service,password_blob,dev,vuid,&nt_status);
327 data_blob_clear_free(&password_blob);
330 END_PROFILE(SMBtcon);
331 return ERROR_NT(nt_status);
334 outsize = set_message(outbuf,2,0,True);
335 SSVAL(outbuf,smb_vwv0,max_recv);
336 SSVAL(outbuf,smb_vwv1,conn->cnum);
337 SSVAL(outbuf,smb_tid,conn->cnum);
339 DEBUG(3,("tcon service=%s cnum=%d\n",
340 service, conn->cnum));
342 END_PROFILE(SMBtcon);
346 /****************************************************************************
347 Reply to a tcon and X.
348 ****************************************************************************/
350 int reply_tcon_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
355 /* what the cleint thinks the device is */
356 fstring client_devicetype;
357 /* what the server tells the client the share represents */
358 const char *server_devicetype;
360 uint16 vuid = SVAL(inbuf,smb_uid);
361 int passlen = SVAL(inbuf,smb_vwv3);
364 extern BOOL global_encrypted_passwords_negotiated;
366 START_PROFILE(SMBtconX);
368 *service = *client_devicetype = 0;
370 /* we might have to close an old one */
371 if ((SVAL(inbuf,smb_vwv2) & 0x1) && conn) {
372 close_cnum(conn,vuid);
375 if (passlen > MAX_PASS_LEN) {
376 return ERROR_DOS(ERRDOS,ERRbuftoosmall);
379 if (global_encrypted_passwords_negotiated) {
380 password = data_blob(smb_buf(inbuf),passlen);
382 password = data_blob(smb_buf(inbuf),passlen+1);
383 /* Ensure correct termination */
384 password.data[passlen]=0;
387 p = smb_buf(inbuf) + passlen;
388 p += srvstr_pull_buf(inbuf, path, p, sizeof(path), STR_TERMINATE);
391 * the service name can be either: \\server\share
392 * or share directly like on the DELL PowerVault 705
395 q = strchr_m(path+2,'\\');
397 END_PROFILE(SMBtconX);
398 return(ERROR_DOS(ERRDOS,ERRnosuchshare));
400 fstrcpy(service,q+1);
403 fstrcpy(service,path);
405 p += srvstr_pull(inbuf, client_devicetype, p, sizeof(client_devicetype), 6, STR_ASCII);
407 DEBUG(4,("Client requested device type [%s] for share [%s]\n", client_devicetype, service));
409 conn = make_connection(service,password,client_devicetype,vuid,&nt_status);
411 data_blob_clear_free(&password);
414 END_PROFILE(SMBtconX);
415 return ERROR_NT(nt_status);
419 server_devicetype = "IPC";
420 else if ( IS_PRINT(conn) )
421 server_devicetype = "LPT1:";
423 server_devicetype = "A:";
425 if (Protocol < PROTOCOL_NT1) {
426 set_message(outbuf,2,0,True);
428 p += srvstr_push(outbuf, p, server_devicetype, -1,
429 STR_TERMINATE|STR_ASCII);
430 set_message_end(outbuf,p);
432 /* NT sets the fstype of IPC$ to the null string */
433 const char *fstype = IS_IPC(conn) ? "" : lp_fstype(SNUM(conn));
435 set_message(outbuf,3,0,True);
438 p += srvstr_push(outbuf, p, server_devicetype, -1,
439 STR_TERMINATE|STR_ASCII);
440 p += srvstr_push(outbuf, p, fstype, -1,
443 set_message_end(outbuf,p);
445 /* what does setting this bit do? It is set by NT4 and
446 may affect the ability to autorun mounted cdroms */
447 SSVAL(outbuf, smb_vwv2, SMB_SUPPORT_SEARCH_BITS|
448 (lp_csc_policy(SNUM(conn)) << 2));
450 init_dfsroot(conn, inbuf, outbuf);
454 DEBUG(3,("tconX service=%s \n",
457 /* set the incoming and outgoing tid to the just created one */
458 SSVAL(inbuf,smb_tid,conn->cnum);
459 SSVAL(outbuf,smb_tid,conn->cnum);
461 END_PROFILE(SMBtconX);
462 return chain_reply(inbuf,outbuf,length,bufsize);
465 /****************************************************************************
466 Reply to an unknown type.
467 ****************************************************************************/
469 int reply_unknown(char *inbuf,char *outbuf)
472 type = CVAL(inbuf,smb_com);
474 DEBUG(0,("unknown command type (%s): type=%d (0x%X)\n",
475 smb_fn_name(type), type, type));
477 return(ERROR_DOS(ERRSRV,ERRunknownsmb));
480 /****************************************************************************
482 ****************************************************************************/
484 int reply_ioctl(connection_struct *conn,
485 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
487 uint16 device = SVAL(inbuf,smb_vwv1);
488 uint16 function = SVAL(inbuf,smb_vwv2);
489 uint32 ioctl_code = (device << 16) + function;
490 int replysize, outsize;
492 START_PROFILE(SMBioctl);
494 DEBUG(4, ("Received IOCTL (code 0x%x)\n", ioctl_code));
496 switch (ioctl_code) {
497 case IOCTL_QUERY_JOB_INFO:
501 END_PROFILE(SMBioctl);
502 return(ERROR_DOS(ERRSRV,ERRnosupport));
505 outsize = set_message(outbuf,8,replysize+1,True);
506 SSVAL(outbuf,smb_vwv1,replysize); /* Total data bytes returned */
507 SSVAL(outbuf,smb_vwv5,replysize); /* Data bytes this buffer */
508 SSVAL(outbuf,smb_vwv6,52); /* Offset to data */
509 p = smb_buf(outbuf) + 1; /* Allow for alignment */
511 switch (ioctl_code) {
512 case IOCTL_QUERY_JOB_INFO:
514 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
516 END_PROFILE(SMBioctl);
517 return(UNIXERROR(ERRDOS,ERRbadfid));
519 SSVAL(p,0,fsp->rap_print_jobid); /* Job number */
520 srvstr_push(outbuf, p+2, global_myname(), 15, STR_TERMINATE|STR_ASCII);
522 srvstr_push(outbuf, p+18, lp_servicename(SNUM(conn)), 13, STR_TERMINATE|STR_ASCII);
528 END_PROFILE(SMBioctl);
532 /****************************************************************************
534 ****************************************************************************/
536 int reply_chkpth(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
541 BOOL bad_path = False;
542 SMB_STRUCT_STAT sbuf;
545 START_PROFILE(SMBchkpth);
547 srvstr_get_path(inbuf, name, smb_buf(inbuf) + 1, sizeof(name), 0, STR_TERMINATE, &status, False);
548 if (!NT_STATUS_IS_OK(status)) {
549 END_PROFILE(SMBchkpth);
550 return ERROR_NT(status);
553 RESOLVE_DFSPATH(name, conn, inbuf, outbuf);
555 unix_convert(name,conn,0,&bad_path,&sbuf);
557 END_PROFILE(SMBchkpth);
558 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
561 if (check_name(name,conn)) {
562 if (VALID_STAT(sbuf) || SMB_VFS_STAT(conn,name,&sbuf) == 0)
563 if (!(ok = S_ISDIR(sbuf.st_mode))) {
564 END_PROFILE(SMBchkpth);
565 return ERROR_BOTH(NT_STATUS_NOT_A_DIRECTORY,ERRDOS,ERRbadpath);
570 /* We special case this - as when a Windows machine
571 is parsing a path is steps through the components
572 one at a time - if a component fails it expects
573 ERRbadpath, not ERRbadfile.
575 if(errno == ENOENT) {
577 * Windows returns different error codes if
578 * the parent directory is valid but not the
579 * last component - it returns NT_STATUS_OBJECT_NAME_NOT_FOUND
580 * for that case and NT_STATUS_OBJECT_PATH_NOT_FOUND
581 * if the path is invalid. This is different from set_bad_path_error()
582 * in the non-NT error case.
584 END_PROFILE(SMBchkpth);
585 return ERROR_BOTH(NT_STATUS_OBJECT_NAME_NOT_FOUND,ERRDOS,ERRbadpath);
588 END_PROFILE(SMBchkpth);
589 return(UNIXERROR(ERRDOS,ERRbadpath));
592 outsize = set_message(outbuf,0,0,True);
593 DEBUG(3,("chkpth %s mode=%d\n", name, (int)SVAL(inbuf,smb_vwv0)));
595 END_PROFILE(SMBchkpth);
599 /****************************************************************************
601 ****************************************************************************/
603 int reply_getatr(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
607 SMB_STRUCT_STAT sbuf;
612 BOOL bad_path = False;
616 START_PROFILE(SMBgetatr);
618 p = smb_buf(inbuf) + 1;
619 p += srvstr_get_path(inbuf, fname, p, sizeof(fname), 0, STR_TERMINATE, &status, False);
620 if (!NT_STATUS_IS_OK(status)) {
621 END_PROFILE(SMBgetatr);
622 return ERROR_NT(status);
625 RESOLVE_DFSPATH(fname, conn, inbuf, outbuf);
627 /* dos smetimes asks for a stat of "" - it returns a "hidden directory"
628 under WfWg - weird! */
630 mode = aHIDDEN | aDIR;
631 if (!CAN_WRITE(conn))
637 unix_convert(fname,conn,0,&bad_path,&sbuf);
639 END_PROFILE(SMBgetatr);
640 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
642 if (check_name(fname,conn)) {
643 if (VALID_STAT(sbuf) || SMB_VFS_STAT(conn,fname,&sbuf) == 0) {
644 mode = dos_mode(conn,fname,&sbuf);
646 mtime = sbuf.st_mtime;
651 DEBUG(3,("stat of %s failed (%s)\n",fname,strerror(errno)));
657 END_PROFILE(SMBgetatr);
658 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS,ERRbadfile);
661 outsize = set_message(outbuf,10,0,True);
663 SSVAL(outbuf,smb_vwv0,mode);
664 if(lp_dos_filetime_resolution(SNUM(conn)) )
665 put_dos_date3(outbuf,smb_vwv1,mtime & ~1);
667 put_dos_date3(outbuf,smb_vwv1,mtime);
668 SIVAL(outbuf,smb_vwv3,(uint32)size);
670 if (Protocol >= PROTOCOL_NT1)
671 SSVAL(outbuf,smb_flg2,SVAL(outbuf, smb_flg2) | FLAGS2_IS_LONG_NAME);
673 DEBUG( 3, ( "getatr name=%s mode=%d size=%d\n", fname, mode, (uint32)size ) );
675 END_PROFILE(SMBgetatr);
679 /****************************************************************************
681 ****************************************************************************/
683 int reply_setatr(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
690 SMB_STRUCT_STAT sbuf;
691 BOOL bad_path = False;
695 START_PROFILE(SMBsetatr);
697 p = smb_buf(inbuf) + 1;
698 p += srvstr_get_path(inbuf, fname, p, sizeof(fname), 0, STR_TERMINATE, &status, False);
699 if (!NT_STATUS_IS_OK(status)) {
700 END_PROFILE(SMBsetatr);
701 return ERROR_NT(status);
704 unix_convert(fname,conn,0,&bad_path,&sbuf);
706 END_PROFILE(SMBsetatr);
707 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
710 mode = SVAL(inbuf,smb_vwv0);
711 mtime = make_unix_date3(inbuf+smb_vwv1);
713 if (mode != FILE_ATTRIBUTE_NORMAL) {
714 if (VALID_STAT_OF_DIR(sbuf))
719 if (check_name(fname,conn)) {
720 ok = (file_set_dosmode(conn,fname,mode,&sbuf,False) == 0);
727 ok = set_filetime(conn,fname,mtime);
730 END_PROFILE(SMBsetatr);
731 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRnoaccess);
734 outsize = set_message(outbuf,0,0,True);
736 DEBUG( 3, ( "setatr name=%s mode=%d\n", fname, mode ) );
738 END_PROFILE(SMBsetatr);
742 /****************************************************************************
744 ****************************************************************************/
746 int reply_dskattr(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
749 SMB_BIG_UINT dfree,dsize,bsize;
750 START_PROFILE(SMBdskattr);
752 SMB_VFS_DISK_FREE(conn,".",True,&bsize,&dfree,&dsize);
754 outsize = set_message(outbuf,5,0,True);
756 if (Protocol <= PROTOCOL_LANMAN2) {
757 double total_space, free_space;
758 /* we need to scale this to a number that DOS6 can handle. We
759 use floating point so we can handle large drives on systems
760 that don't have 64 bit integers
762 we end up displaying a maximum of 2G to DOS systems
764 total_space = dsize * (double)bsize;
765 free_space = dfree * (double)bsize;
767 dsize = (total_space+63*512) / (64*512);
768 dfree = (free_space+63*512) / (64*512);
770 if (dsize > 0xFFFF) dsize = 0xFFFF;
771 if (dfree > 0xFFFF) dfree = 0xFFFF;
773 SSVAL(outbuf,smb_vwv0,dsize);
774 SSVAL(outbuf,smb_vwv1,64); /* this must be 64 for dos systems */
775 SSVAL(outbuf,smb_vwv2,512); /* and this must be 512 */
776 SSVAL(outbuf,smb_vwv3,dfree);
778 SSVAL(outbuf,smb_vwv0,dsize);
779 SSVAL(outbuf,smb_vwv1,bsize/512);
780 SSVAL(outbuf,smb_vwv2,512);
781 SSVAL(outbuf,smb_vwv3,dfree);
784 DEBUG(3,("dskattr dfree=%d\n", (unsigned int)dfree));
786 END_PROFILE(SMBdskattr);
790 /****************************************************************************
792 Can be called from SMBsearch, SMBffirst or SMBfunique.
793 ****************************************************************************/
795 int reply_search(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
805 unsigned int numentries = 0;
806 unsigned int maxentries = 0;
807 BOOL finished = False;
814 BOOL check_descend = False;
815 BOOL expect_close = False;
816 BOOL can_open = True;
817 BOOL bad_path = False;
819 START_PROFILE(SMBsearch);
821 *mask = *directory = *fname = 0;
823 /* If we were called as SMBffirst then we must expect close. */
824 if(CVAL(inbuf,smb_com) == SMBffirst)
827 outsize = set_message(outbuf,1,3,True);
828 maxentries = SVAL(inbuf,smb_vwv0);
829 dirtype = SVAL(inbuf,smb_vwv1);
830 p = smb_buf(inbuf) + 1;
831 p += srvstr_get_path(inbuf, path, p, sizeof(path), 0, STR_TERMINATE, &nt_status, True);
832 if (!NT_STATUS_IS_OK(nt_status)) {
833 END_PROFILE(SMBsearch);
834 return ERROR_NT(nt_status);
837 status_len = SVAL(p, 0);
840 /* dirtype &= ~aDIR; */
842 if (status_len == 0) {
843 SMB_STRUCT_STAT sbuf;
846 pstrcpy(directory,path);
848 unix_convert(directory,conn,0,&bad_path,&sbuf);
851 if (!check_name(directory,conn))
854 p = strrchr_m(dir2,'/');
863 p = strrchr_m(directory,'/');
869 if (strlen(directory) == 0)
870 pstrcpy(directory,".");
871 memset((char *)status,'\0',21);
872 SCVAL(status,0,(dirtype & 0x1F));
877 status_dirtype = CVAL(status,0) & 0x1F;
878 if (status_dirtype != (dirtype & 0x1F))
879 dirtype = status_dirtype;
881 conn->dirptr = dptr_fetch(status+12,&dptr_num);
884 string_set(&conn->dirpath,dptr_path(dptr_num));
885 pstrcpy(mask, dptr_wcard(dptr_num));
889 p = smb_buf(outbuf) + 3;
892 if (status_len == 0) {
893 dptr_num = dptr_create(conn,directory,True,expect_close,SVAL(inbuf,smb_pid));
896 END_PROFILE(SMBsearch);
897 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRnofids);
899 END_PROFILE(SMBsearch);
900 return ERROR_DOS(ERRDOS,ERRnofids);
902 dptr_set_wcard(dptr_num, SMB_STRDUP(mask));
903 dptr_set_attr(dptr_num, dirtype);
905 dirtype = dptr_attr(dptr_num);
908 DEBUG(4,("dptr_num is %d\n",dptr_num));
911 if ((dirtype&0x1F) == aVOLID) {
913 make_dir_struct(p,"???????????",volume_label(SNUM(conn)),0,aVOLID,0,conn->case_sensitive);
914 dptr_fill(p+12,dptr_num);
915 if (dptr_zero(p+12) && (status_len==0))
919 p += DIR_STRUCT_SIZE;
922 maxentries = MIN(maxentries, ((BUFFER_SIZE - (p - outbuf))/DIR_STRUCT_SIZE));
924 DEBUG(8,("dirpath=<%s> dontdescend=<%s>\n",
925 conn->dirpath,lp_dontdescend(SNUM(conn))));
926 if (in_list(conn->dirpath, lp_dontdescend(SNUM(conn)),True))
927 check_descend = True;
929 for (i=numentries;(i<maxentries) && !finished;i++) {
930 finished = !get_dir_entry(conn,mask,dirtype,fname,&size,&mode,&date,check_descend);
933 make_dir_struct(p,mask,fname,size,mode,date,conn->case_sensitive);
934 dptr_fill(p+12,dptr_num);
936 p += DIR_STRUCT_SIZE;
946 /* If we were called as SMBffirst with smb_search_id == NULL
947 and no entries were found then return error and close dirptr
950 if(ok && expect_close && numentries == 0 && status_len == 0) {
951 /* Close the dptr - we know it's gone */
952 dptr_close(&dptr_num);
953 return ERROR_BOTH(STATUS_NO_MORE_FILES,ERRDOS,ERRnofiles);
954 } else if (numentries == 0 || !ok) {
955 dptr_close(&dptr_num);
956 return ERROR_BOTH(STATUS_NO_MORE_FILES,ERRDOS,ERRnofiles);
959 /* If we were called as SMBfunique, then we can close the dirptr now ! */
960 if(dptr_num >= 0 && CVAL(inbuf,smb_com) == SMBfunique)
961 dptr_close(&dptr_num);
963 SSVAL(outbuf,smb_vwv0,numentries);
964 SSVAL(outbuf,smb_vwv1,3 + numentries * DIR_STRUCT_SIZE);
965 SCVAL(smb_buf(outbuf),0,5);
966 SSVAL(smb_buf(outbuf),1,numentries*DIR_STRUCT_SIZE);
968 if (Protocol >= PROTOCOL_NT1)
969 SSVAL(outbuf,smb_flg2,SVAL(outbuf, smb_flg2) | FLAGS2_IS_LONG_NAME);
971 outsize += DIR_STRUCT_SIZE*numentries;
972 smb_setlen(outbuf,outsize - 4);
974 if ((! *directory) && dptr_path(dptr_num))
975 slprintf(directory, sizeof(directory)-1, "(%s)",dptr_path(dptr_num));
977 DEBUG( 4, ( "%s mask=%s path=%s dtype=%d nument=%u of %u\n",
978 smb_fn_name(CVAL(inbuf,smb_com)),
979 mask, directory, dirtype, numentries, maxentries ) );
981 END_PROFILE(SMBsearch);
985 /****************************************************************************
986 Reply to a fclose (stop directory search).
987 ****************************************************************************/
989 int reply_fclose(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
999 START_PROFILE(SMBfclose);
1001 outsize = set_message(outbuf,1,0,True);
1002 p = smb_buf(inbuf) + 1;
1003 p += srvstr_get_path(inbuf, path, p, sizeof(path), 0, STR_TERMINATE, &err, True);
1004 if (!NT_STATUS_IS_OK(err)) {
1005 END_PROFILE(SMBfclose);
1006 return ERROR_NT(err);
1009 status_len = SVAL(p,0);
1012 if (status_len == 0) {
1013 END_PROFILE(SMBfclose);
1014 return ERROR_DOS(ERRSRV,ERRsrverror);
1017 memcpy(status,p,21);
1019 if(dptr_fetch(status+12,&dptr_num)) {
1020 /* Close the dptr - we know it's gone */
1021 dptr_close(&dptr_num);
1024 SSVAL(outbuf,smb_vwv0,0);
1026 DEBUG(3,("search close\n"));
1028 END_PROFILE(SMBfclose);
1032 /****************************************************************************
1034 ****************************************************************************/
1036 int reply_open(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1045 SMB_STRUCT_STAT sbuf;
1046 BOOL bad_path = False;
1048 int oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1049 uint16 dos_attr = SVAL(inbuf,smb_vwv1);
1051 START_PROFILE(SMBopen);
1053 share_mode = SVAL(inbuf,smb_vwv0);
1055 srvstr_get_path(inbuf, fname, smb_buf(inbuf)+1, sizeof(fname), 0, STR_TERMINATE, &status, False);
1056 if (!NT_STATUS_IS_OK(status)) {
1057 END_PROFILE(SMBopen);
1058 return ERROR_NT(status);
1061 RESOLVE_DFSPATH(fname, conn, inbuf, outbuf);
1063 unix_convert(fname,conn,0,&bad_path,&sbuf);
1065 END_PROFILE(SMBopen);
1066 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
1069 fsp = open_file_shared(conn,fname,&sbuf,share_mode,(FILE_FAIL_IF_NOT_EXIST|FILE_EXISTS_OPEN),
1070 (uint32)dos_attr, oplock_request,&rmode,NULL);
1073 END_PROFILE(SMBopen);
1074 if (open_was_deferred(SVAL(inbuf,smb_mid))) {
1075 /* We have re-scheduled this call. */
1076 clear_cached_errors();
1079 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRnoaccess);
1082 size = sbuf.st_size;
1083 fmode = dos_mode(conn,fname,&sbuf);
1084 mtime = sbuf.st_mtime;
1087 DEBUG(3,("attempt to open a directory %s\n",fname));
1088 close_file(fsp,False);
1089 END_PROFILE(SMBopen);
1090 return ERROR_DOS(ERRDOS,ERRnoaccess);
1093 outsize = set_message(outbuf,7,0,True);
1094 SSVAL(outbuf,smb_vwv0,fsp->fnum);
1095 SSVAL(outbuf,smb_vwv1,fmode);
1096 if(lp_dos_filetime_resolution(SNUM(conn)) )
1097 put_dos_date3(outbuf,smb_vwv2,mtime & ~1);
1099 put_dos_date3(outbuf,smb_vwv2,mtime);
1100 SIVAL(outbuf,smb_vwv4,(uint32)size);
1101 SSVAL(outbuf,smb_vwv6,rmode);
1103 if (oplock_request && lp_fake_oplocks(SNUM(conn)))
1104 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1106 if(EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type))
1107 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1108 END_PROFILE(SMBopen);
1112 /****************************************************************************
1113 Reply to an open and X.
1114 ****************************************************************************/
1116 int reply_open_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
1119 int smb_mode = SVAL(inbuf,smb_vwv3);
1120 int smb_attr = SVAL(inbuf,smb_vwv5);
1121 /* Breakout the oplock request bits so we can set the
1122 reply bits separately. */
1123 BOOL ex_oplock_request = EXTENDED_OPLOCK_REQUEST(inbuf);
1124 BOOL core_oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1125 BOOL oplock_request = ex_oplock_request | core_oplock_request;
1127 int open_flags = SVAL(inbuf,smb_vwv2);
1128 int smb_sattr = SVAL(inbuf,smb_vwv4);
1129 uint32 smb_time = make_unix_date3(inbuf+smb_vwv6);
1131 int smb_ofun = SVAL(inbuf,smb_vwv8);
1133 int fmode=0,mtime=0,rmode=0;
1134 SMB_STRUCT_STAT sbuf;
1136 BOOL bad_path = False;
1139 START_PROFILE(SMBopenX);
1141 /* If it's an IPC, pass off the pipe handler. */
1143 if (lp_nt_pipe_support()) {
1144 END_PROFILE(SMBopenX);
1145 return reply_open_pipe_and_X(conn, inbuf,outbuf,length,bufsize);
1147 END_PROFILE(SMBopenX);
1148 return ERROR_DOS(ERRSRV,ERRaccess);
1152 /* XXXX we need to handle passed times, sattr and flags */
1153 srvstr_get_path(inbuf, fname, smb_buf(inbuf), sizeof(fname), 0, STR_TERMINATE, &status, False);
1154 if (!NT_STATUS_IS_OK(status)) {
1155 END_PROFILE(SMBopenX);
1156 return ERROR_NT(status);
1159 RESOLVE_DFSPATH(fname, conn, inbuf, outbuf);
1161 unix_convert(fname,conn,0,&bad_path,&sbuf);
1163 END_PROFILE(SMBopenX);
1164 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
1167 fsp = open_file_shared(conn,fname,&sbuf,smb_mode,smb_ofun,(uint32)smb_attr,
1168 oplock_request, &rmode,&smb_action);
1171 END_PROFILE(SMBopenX);
1172 if (open_was_deferred(SVAL(inbuf,smb_mid))) {
1173 /* We have re-scheduled this call. */
1174 clear_cached_errors();
1177 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRnoaccess);
1180 size = sbuf.st_size;
1181 fmode = dos_mode(conn,fname,&sbuf);
1182 mtime = sbuf.st_mtime;
1184 close_file(fsp,False);
1185 END_PROFILE(SMBopenX);
1186 return ERROR_DOS(ERRDOS,ERRnoaccess);
1189 /* If the caller set the extended oplock request bit
1190 and we granted one (by whatever means) - set the
1191 correct bit for extended oplock reply.
1194 if (ex_oplock_request && lp_fake_oplocks(SNUM(conn)))
1195 smb_action |= EXTENDED_OPLOCK_GRANTED;
1197 if(ex_oplock_request && EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type))
1198 smb_action |= EXTENDED_OPLOCK_GRANTED;
1200 /* If the caller set the core oplock request bit
1201 and we granted one (by whatever means) - set the
1202 correct bit for core oplock reply.
1205 if (core_oplock_request && lp_fake_oplocks(SNUM(conn)))
1206 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1208 if(core_oplock_request && EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type))
1209 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1211 set_message(outbuf,15,0,True);
1212 SSVAL(outbuf,smb_vwv2,fsp->fnum);
1213 SSVAL(outbuf,smb_vwv3,fmode);
1214 if(lp_dos_filetime_resolution(SNUM(conn)) )
1215 put_dos_date3(outbuf,smb_vwv4,mtime & ~1);
1217 put_dos_date3(outbuf,smb_vwv4,mtime);
1218 SIVAL(outbuf,smb_vwv6,(uint32)size);
1219 SSVAL(outbuf,smb_vwv8,rmode);
1220 SSVAL(outbuf,smb_vwv11,smb_action);
1222 END_PROFILE(SMBopenX);
1223 return chain_reply(inbuf,outbuf,length,bufsize);
1226 /****************************************************************************
1227 Reply to a SMBulogoffX.
1228 ****************************************************************************/
1230 int reply_ulogoffX(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
1232 uint16 vuid = SVAL(inbuf,smb_uid);
1233 user_struct *vuser = get_valid_user_struct(vuid);
1234 START_PROFILE(SMBulogoffX);
1237 DEBUG(3,("ulogoff, vuser id %d does not map to user.\n", vuid));
1239 /* in user level security we are supposed to close any files
1240 open by this user */
1241 if ((vuser != 0) && (lp_security() != SEC_SHARE))
1242 file_close_user(vuid);
1244 invalidate_vuid(vuid);
1246 set_message(outbuf,2,0,True);
1248 DEBUG( 3, ( "ulogoffX vuid=%d\n", vuid ) );
1250 END_PROFILE(SMBulogoffX);
1251 return chain_reply(inbuf,outbuf,length,bufsize);
1254 /****************************************************************************
1255 Reply to a mknew or a create.
1256 ****************************************************************************/
1258 int reply_mknew(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1265 BOOL bad_path = False;
1267 int oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1268 SMB_STRUCT_STAT sbuf;
1270 START_PROFILE(SMBcreate);
1272 com = SVAL(inbuf,smb_com);
1274 createmode = SVAL(inbuf,smb_vwv0);
1275 srvstr_get_path(inbuf, fname, smb_buf(inbuf) + 1, sizeof(fname), 0, STR_TERMINATE, &status, False);
1276 if (!NT_STATUS_IS_OK(status)) {
1277 END_PROFILE(SMBcreate);
1278 return ERROR_NT(status);
1281 RESOLVE_DFSPATH(fname, conn, inbuf, outbuf);
1283 unix_convert(fname,conn,0,&bad_path,&sbuf);
1285 END_PROFILE(SMBcreate);
1286 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
1289 if (createmode & aVOLID)
1290 DEBUG(0,("Attempt to create file (%s) with volid set - please report this\n",fname));
1292 if(com == SMBmknew) {
1293 /* We should fail if file exists. */
1294 ofun = FILE_CREATE_IF_NOT_EXIST;
1296 /* SMBcreate - Create if file doesn't exist, truncate if it does. */
1297 ofun = FILE_CREATE_IF_NOT_EXIST|FILE_EXISTS_TRUNCATE;
1300 /* Open file in dos compatibility share mode. */
1301 fsp = open_file_shared(conn,fname,&sbuf,SET_DENY_MODE(DENY_FCB)|SET_OPEN_MODE(DOS_OPEN_FCB),
1302 ofun, (uint32)createmode, oplock_request, NULL, NULL);
1305 END_PROFILE(SMBcreate);
1306 if (open_was_deferred(SVAL(inbuf,smb_mid))) {
1307 /* We have re-scheduled this call. */
1308 clear_cached_errors();
1311 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRnoaccess);
1314 outsize = set_message(outbuf,1,0,True);
1315 SSVAL(outbuf,smb_vwv0,fsp->fnum);
1317 if (oplock_request && lp_fake_oplocks(SNUM(conn)))
1318 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1320 if(EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type))
1321 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1323 DEBUG( 2, ( "new file %s\n", fname ) );
1324 DEBUG( 3, ( "mknew %s fd=%d dmode=%d\n", fname, fsp->fd, createmode ) );
1326 END_PROFILE(SMBcreate);
1330 /****************************************************************************
1331 Reply to a create temporary file.
1332 ****************************************************************************/
1334 int reply_ctemp(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1339 BOOL bad_path = False;
1341 int oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1343 SMB_STRUCT_STAT sbuf;
1346 unsigned int namelen;
1348 START_PROFILE(SMBctemp);
1350 createattr = SVAL(inbuf,smb_vwv0);
1351 srvstr_get_path(inbuf, fname, smb_buf(inbuf)+1, sizeof(fname), 0, STR_TERMINATE, &status, False);
1352 if (!NT_STATUS_IS_OK(status)) {
1353 END_PROFILE(SMBctemp);
1354 return ERROR_NT(status);
1357 pstrcat(fname,"/TMXXXXXX");
1359 pstrcat(fname,"TMXXXXXX");
1362 RESOLVE_DFSPATH(fname, conn, inbuf, outbuf);
1364 unix_convert(fname,conn,0,&bad_path,&sbuf);
1366 END_PROFILE(SMBctemp);
1367 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
1370 tmpfd = smb_mkstemp(fname);
1372 END_PROFILE(SMBctemp);
1373 return(UNIXERROR(ERRDOS,ERRnoaccess));
1376 SMB_VFS_STAT(conn,fname,&sbuf);
1378 /* Open file in dos compatibility share mode. */
1379 /* We should fail if file does not exist. */
1380 fsp = open_file_shared(conn,fname,&sbuf,
1381 SET_DENY_MODE(DENY_FCB)|SET_OPEN_MODE(DOS_OPEN_FCB),
1382 FILE_EXISTS_OPEN|FILE_FAIL_IF_NOT_EXIST,
1383 (uint32)createattr, oplock_request, NULL, NULL);
1385 /* close fd from smb_mkstemp() */
1389 END_PROFILE(SMBctemp);
1390 if (open_was_deferred(SVAL(inbuf,smb_mid))) {
1391 /* We have re-scheduled this call. */
1392 clear_cached_errors();
1395 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRnoaccess);
1398 outsize = set_message(outbuf,1,0,True);
1399 SSVAL(outbuf,smb_vwv0,fsp->fnum);
1401 /* the returned filename is relative to the directory */
1402 s = strrchr_m(fname, '/');
1408 p = smb_buf(outbuf);
1410 /* Tested vs W2K3 - this doesn't seem to be here - null terminated filename is the only
1411 thing in the byte section. JRA */
1412 SSVALS(p, 0, -1); /* what is this? not in spec */
1414 namelen = srvstr_push(outbuf, p, s, -1, STR_ASCII|STR_TERMINATE);
1416 outsize = set_message_end(outbuf, p);
1418 if (oplock_request && lp_fake_oplocks(SNUM(conn)))
1419 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1421 if (EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type))
1422 SCVAL(outbuf,smb_flg,CVAL(outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1424 DEBUG( 2, ( "created temp file %s\n", fname ) );
1425 DEBUG( 3, ( "ctemp %s fd=%d umode=%o\n",
1426 fname, fsp->fd, sbuf.st_mode ) );
1428 END_PROFILE(SMBctemp);
1432 /*******************************************************************
1433 Check if a user is allowed to rename a file.
1434 ********************************************************************/
1436 static NTSTATUS can_rename(char *fname,connection_struct *conn, uint16 dirtype, SMB_STRUCT_STAT *pst)
1443 if (!CAN_WRITE(conn))
1444 return NT_STATUS_MEDIA_WRITE_PROTECTED;
1446 fmode = dos_mode(conn,fname,pst);
1447 if ((fmode & ~dirtype) & (aHIDDEN | aSYSTEM))
1448 return NT_STATUS_NO_SUCH_FILE;
1450 if (S_ISDIR(pst->st_mode))
1451 return NT_STATUS_OK;
1453 /* We need a better way to return NT status codes from open... */
1457 fsp = open_file_shared1(conn, fname, pst, DELETE_ACCESS, SET_DENY_MODE(DENY_ALL),
1458 (FILE_FAIL_IF_NOT_EXIST|FILE_EXISTS_OPEN), FILE_ATTRIBUTE_NORMAL, 0, &access_mode, &smb_action);
1461 NTSTATUS ret = NT_STATUS_ACCESS_DENIED;
1462 if (unix_ERR_class == ERRDOS && unix_ERR_code == ERRbadshare)
1463 ret = NT_STATUS_SHARING_VIOLATION;
1466 unix_ERR_ntstatus = NT_STATUS_OK;
1469 close_file(fsp,False);
1470 return NT_STATUS_OK;
1473 /*******************************************************************
1474 Check if a user is allowed to delete a file.
1475 ********************************************************************/
1477 static NTSTATUS can_delete(char *fname,connection_struct *conn, int dirtype, BOOL bad_path)
1479 SMB_STRUCT_STAT sbuf;
1485 DEBUG(10,("can_delete: %s, dirtype = %d\n",
1488 if (!CAN_WRITE(conn))
1489 return NT_STATUS_MEDIA_WRITE_PROTECTED;
1491 if (SMB_VFS_LSTAT(conn,fname,&sbuf) != 0) {
1492 if(errno == ENOENT) {
1494 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
1496 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
1498 return map_nt_error_from_unix(errno);
1501 fmode = dos_mode(conn,fname,&sbuf);
1503 /* Can't delete a directory. */
1505 return NT_STATUS_FILE_IS_A_DIRECTORY;
1507 else if (dirtype & aDIR) /* Asked for a directory and it isn't. */
1508 return NT_STATUS_OBJECT_NAME_INVALID;
1509 #endif /* JRATEST */
1511 if (!lp_delete_readonly(SNUM(conn))) {
1513 return NT_STATUS_CANNOT_DELETE;
1515 if ((fmode & ~dirtype) & (aHIDDEN | aSYSTEM))
1516 return NT_STATUS_NO_SUCH_FILE;
1518 /* We need a better way to return NT status codes from open... */
1522 fsp = open_file_shared1(conn, fname, &sbuf, DELETE_ACCESS, SET_DENY_MODE(DENY_ALL),
1523 (FILE_FAIL_IF_NOT_EXIST|FILE_EXISTS_OPEN), FILE_ATTRIBUTE_NORMAL, 0, &access_mode, &smb_action);
1526 NTSTATUS ret = NT_STATUS_ACCESS_DENIED;
1527 if (!NT_STATUS_IS_OK(unix_ERR_ntstatus))
1528 ret = unix_ERR_ntstatus;
1529 else if (unix_ERR_class == ERRDOS && unix_ERR_code == ERRbadshare)
1530 ret = NT_STATUS_SHARING_VIOLATION;
1533 unix_ERR_ntstatus = NT_STATUS_OK;
1536 close_file(fsp,False);
1537 return NT_STATUS_OK;
1540 /****************************************************************************
1541 The guts of the unlink command, split out so it may be called by the NT SMB
1543 ****************************************************************************/
1545 NTSTATUS unlink_internals(connection_struct *conn, int dirtype, char *name)
1551 NTSTATUS error = NT_STATUS_OK;
1553 BOOL bad_path = False;
1555 SMB_STRUCT_STAT sbuf;
1557 *directory = *mask = 0;
1559 /* We must check for wildcards in the name given
1560 * directly by the client - before any unmangling.
1561 * This prevents an unmangling of a UNIX name containing
1562 * a DOS wildcard like '*' or '?' from unmangling into
1563 * a wildcard delete which was not intended.
1564 * FIX for #226. JRA.
1567 has_wild = ms_has_wild(name);
1569 rc = unix_convert(name,conn,0,&bad_path,&sbuf);
1571 p = strrchr_m(name,'/');
1573 pstrcpy(directory,".");
1577 pstrcpy(directory,name);
1582 * We should only check the mangled cache
1583 * here if unix_convert failed. This means
1584 * that the path in 'mask' doesn't exist
1585 * on the file system and so we need to look
1586 * for a possible mangle. This patch from
1587 * Tine Smukavec <valentin.smukavec@hermes.si>.
1590 if (!rc && mangle_is_mangled(mask))
1591 mangle_check_cache( mask, sizeof(pstring)-1 );
1594 pstrcat(directory,"/");
1595 pstrcat(directory,mask);
1596 error = can_delete(directory,conn,dirtype,bad_path);
1597 if (!NT_STATUS_IS_OK(error))
1600 if (SMB_VFS_UNLINK(conn,directory) == 0) {
1604 void *dirptr = NULL;
1607 if (check_name(directory,conn))
1608 dirptr = OpenDir(conn, directory, True);
1610 /* XXXX the CIFS spec says that if bit0 of the flags2 field is set then
1611 the pattern matches against the long name, otherwise the short name
1612 We don't implement this yet XXXX
1616 error = NT_STATUS_NO_SUCH_FILE;
1618 if (strequal(mask,"????????.???"))
1621 while ((dname = ReadDirName(dirptr))) {
1623 BOOL sys_direntry = False;
1624 pstrcpy(fname,dname);
1626 /* Quick check for "." and ".." */
1627 if (fname[0] == '.') {
1628 if (!fname[1] || (fname[1] == '.' && !fname[2])) {
1629 if ((dirtype & FILE_ATTRIBUTE_DIRECTORY) && (dirtype & FILE_ATTRIBUTE_SYSTEM)) {
1630 sys_direntry = True;
1637 if(!mask_match(fname, mask, conn->case_sensitive))
1641 error = NT_STATUS_OBJECT_NAME_INVALID;
1642 DEBUG(3,("unlink_internals: system directory delete denied [%s] mask [%s]\n",
1647 slprintf(fname,sizeof(fname)-1, "%s/%s",directory,dname);
1648 error = can_delete(fname,conn,dirtype,bad_path);
1649 if (!NT_STATUS_IS_OK(error)) {
1652 if (SMB_VFS_UNLINK(conn,fname) == 0)
1654 DEBUG(3,("unlink_internals: succesful unlink [%s]\n",fname));
1660 if (count == 0 && NT_STATUS_IS_OK(error)) {
1661 error = map_nt_error_from_unix(errno);
1667 /****************************************************************************
1669 ****************************************************************************/
1671 int reply_unlink(connection_struct *conn, char *inbuf,char *outbuf, int dum_size,
1678 START_PROFILE(SMBunlink);
1680 dirtype = SVAL(inbuf,smb_vwv0);
1682 srvstr_get_path(inbuf, name, smb_buf(inbuf) + 1, sizeof(name), 0, STR_TERMINATE, &status, True);
1683 if (!NT_STATUS_IS_OK(status)) {
1684 END_PROFILE(SMBunlink);
1685 return ERROR_NT(status);
1688 RESOLVE_DFSPATH(name, conn, inbuf, outbuf);
1690 DEBUG(3,("reply_unlink : %s\n",name));
1692 status = unlink_internals(conn, dirtype, name);
1693 if (!NT_STATUS_IS_OK(status)) {
1694 if (open_was_deferred(SVAL(inbuf,smb_mid))) {
1695 /* We have re-scheduled this call. */
1696 clear_cached_errors();
1699 return ERROR_NT(status);
1703 * Win2k needs a changenotify request response before it will
1704 * update after a rename..
1706 process_pending_change_notify_queue((time_t)0);
1708 outsize = set_message(outbuf,0,0,True);
1710 END_PROFILE(SMBunlink);
1714 /****************************************************************************
1716 ****************************************************************************/
1718 static void fail_readraw(void)
1721 slprintf(errstr, sizeof(errstr)-1, "FAIL ! reply_readbraw: socket write fail (%s)",
1723 exit_server(errstr);
1726 #if defined(WITH_SENDFILE)
1727 /****************************************************************************
1728 Fake (read/write) sendfile. Returns -1 on read or write fail.
1729 ****************************************************************************/
1731 static ssize_t fake_sendfile(files_struct *fsp, SMB_OFF_T startpos, size_t nread, char *buf, int bufsize)
1735 /* Paranioa check... */
1736 if (nread > bufsize) {
1741 ret = read_file(fsp,buf,startpos,nread);
1747 /* If we had a short read, fill with zeros. */
1749 memset(buf, '\0', nread - ret);
1752 if (write_data(smbd_server_fd(),buf,nread) != nread) {
1756 return (ssize_t)nread;
1760 /****************************************************************************
1761 Use sendfile in readbraw.
1762 ****************************************************************************/
1764 void send_file_readbraw(connection_struct *conn, files_struct *fsp, SMB_OFF_T startpos, size_t nread,
1765 ssize_t mincount, char *outbuf, int out_buffsize)
1769 #if defined(WITH_SENDFILE)
1771 * We can only use sendfile on a non-chained packet
1772 * but we can use on a non-oplocked file. tridge proved this
1773 * on a train in Germany :-). JRA.
1774 * reply_readbraw has already checked the length.
1777 if (chain_size ==0 && (nread > 0) && (lp_write_cache_size(SNUM(conn)) == 0) && lp_use_sendfile(SNUM(conn)) ) {
1780 _smb_setlen(outbuf,nread);
1781 header.data = outbuf;
1785 if ( SMB_VFS_SENDFILE( smbd_server_fd(), fsp, fsp->fd, &header, startpos, nread) == -1) {
1787 * Special hack for broken Linux with no working sendfile. If we
1788 * return EINTR we sent the header but not the rest of the data.
1789 * Fake this up by doing read/write calls.
1791 if (errno == EINTR) {
1792 /* Ensure we don't do this again. */
1793 set_use_sendfile(SNUM(conn), False);
1794 DEBUG(0,("send_file_readbraw: sendfile not available. Faking..\n"));
1796 if (fake_sendfile(fsp, startpos, nread, outbuf + 4, out_buffsize - 4) == -1) {
1797 DEBUG(0,("send_file_readbraw: fake_sendfile failed for file %s (%s).\n",
1798 fsp->fsp_name, strerror(errno) ));
1799 exit_server("send_file_readbraw fake_sendfile failed");
1804 DEBUG(0,("send_file_readbraw: sendfile failed for file %s (%s). Terminating\n",
1805 fsp->fsp_name, strerror(errno) ));
1806 exit_server("send_file_readbraw sendfile failed");
1814 ret = read_file(fsp,outbuf+4,startpos,nread);
1815 #if 0 /* mincount appears to be ignored in a W2K server. JRA. */
1824 _smb_setlen(outbuf,ret);
1825 if (write_data(smbd_server_fd(),outbuf,4+ret) != 4+ret)
1829 /****************************************************************************
1830 Reply to a readbraw (core+ protocol).
1831 ****************************************************************************/
1833 int reply_readbraw(connection_struct *conn, char *inbuf, char *outbuf, int dum_size, int out_buffsize)
1835 extern struct current_user current_user;
1836 ssize_t maxcount,mincount;
1839 char *header = outbuf;
1841 START_PROFILE(SMBreadbraw);
1843 if (srv_is_signing_active()) {
1844 exit_server("reply_readbraw: SMB signing is active - raw reads/writes are disallowed.");
1848 * Special check if an oplock break has been issued
1849 * and the readraw request croses on the wire, we must
1850 * return a zero length response here.
1853 if(global_oplock_break) {
1854 _smb_setlen(header,0);
1855 if (write_data(smbd_server_fd(),header,4) != 4)
1857 DEBUG(5,("readbraw - oplock break finished\n"));
1858 END_PROFILE(SMBreadbraw);
1862 fsp = file_fsp(inbuf,smb_vwv0);
1864 if (!FNUM_OK(fsp,conn) || !fsp->can_read) {
1866 * fsp could be NULL here so use the value from the packet. JRA.
1868 DEBUG(3,("fnum %d not open in readbraw - cache prime?\n",(int)SVAL(inbuf,smb_vwv0)));
1869 _smb_setlen(header,0);
1870 if (write_data(smbd_server_fd(),header,4) != 4)
1872 END_PROFILE(SMBreadbraw);
1876 CHECK_FSP(fsp,conn);
1878 flush_write_cache(fsp, READRAW_FLUSH);
1880 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv1);
1881 if(CVAL(inbuf,smb_wct) == 10) {
1883 * This is a large offset (64 bit) read.
1885 #ifdef LARGE_SMB_OFF_T
1887 startpos |= (((SMB_OFF_T)IVAL(inbuf,smb_vwv8)) << 32);
1889 #else /* !LARGE_SMB_OFF_T */
1892 * Ensure we haven't been sent a >32 bit offset.
1895 if(IVAL(inbuf,smb_vwv8) != 0) {
1896 DEBUG(0,("readbraw - large offset (%x << 32) used and we don't support \
1897 64 bit offsets.\n", (unsigned int)IVAL(inbuf,smb_vwv8) ));
1898 _smb_setlen(header,0);
1899 if (write_data(smbd_server_fd(),header,4) != 4)
1901 END_PROFILE(SMBreadbraw);
1905 #endif /* LARGE_SMB_OFF_T */
1908 DEBUG(0,("readbraw - negative 64 bit readraw offset (%.0f) !\n", (double)startpos ));
1909 _smb_setlen(header,0);
1910 if (write_data(smbd_server_fd(),header,4) != 4)
1912 END_PROFILE(SMBreadbraw);
1916 maxcount = (SVAL(inbuf,smb_vwv3) & 0xFFFF);
1917 mincount = (SVAL(inbuf,smb_vwv4) & 0xFFFF);
1919 /* ensure we don't overrun the packet size */
1920 maxcount = MIN(65535,maxcount);
1922 if (!is_locked(fsp,conn,(SMB_BIG_UINT)maxcount,(SMB_BIG_UINT)startpos, READ_LOCK)) {
1923 SMB_OFF_T size = fsp->size;
1924 SMB_OFF_T sizeneeded = startpos + maxcount;
1926 if (size < sizeneeded) {
1928 if (SMB_VFS_FSTAT(fsp,fsp->fd,&st) == 0)
1930 if (!fsp->can_write)
1934 if (startpos >= size)
1937 nread = MIN(maxcount,(size - startpos));
1940 #if 0 /* mincount appears to be ignored in a W2K server. JRA. */
1941 if (nread < mincount)
1945 DEBUG( 3, ( "readbraw fnum=%d start=%.0f max=%d min=%d nread=%d\n", fsp->fnum, (double)startpos,
1946 (int)maxcount, (int)mincount, (int)nread ) );
1948 send_file_readbraw(conn, fsp, startpos, nread, mincount, outbuf, out_buffsize);
1950 DEBUG(5,("readbraw finished\n"));
1951 END_PROFILE(SMBreadbraw);
1955 /****************************************************************************
1956 Reply to a lockread (core+ protocol).
1957 ****************************************************************************/
1959 int reply_lockread(connection_struct *conn, char *inbuf,char *outbuf, int length, int dum_buffsiz)
1967 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
1968 BOOL my_lock_ctx = False;
1969 START_PROFILE(SMBlockread);
1971 CHECK_FSP(fsp,conn);
1974 release_level_2_oplocks_on_change(fsp);
1976 numtoread = SVAL(inbuf,smb_vwv1);
1977 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv2);
1979 outsize = set_message(outbuf,5,3,True);
1980 numtoread = MIN(BUFFER_SIZE-outsize,numtoread);
1981 data = smb_buf(outbuf) + 3;
1984 * NB. Discovered by Menny Hamburger at Mainsoft. This is a core+
1985 * protocol request that predates the read/write lock concept.
1986 * Thus instead of asking for a read lock here we need to ask
1987 * for a write lock. JRA.
1988 * Note that the requested lock size is unaffected by max_recv.
1991 status = do_lock_spin(fsp, conn, SVAL(inbuf,smb_pid),
1992 (SMB_BIG_UINT)numtoread, (SMB_BIG_UINT)startpos, WRITE_LOCK, &my_lock_ctx);
1994 if (NT_STATUS_V(status)) {
1997 * We used to make lockread a blocking lock. It turns out
1998 * that this isn't on W2k. Found by the Samba 4 RAW-READ torture
2002 if (lp_blocking_locks(SNUM(conn)) && !my_lock_ctx && ERROR_WAS_LOCK_DENIED(status)) {
2004 * A blocking lock was requested. Package up
2005 * this smb into a queued request and push it
2006 * onto the blocking lock queue.
2008 if(push_blocking_lock_request(inbuf, length, -1, 0, SVAL(inbuf,smb_pid), (SMB_BIG_UINT)startpos,
2009 (SMB_BIG_UINT)numtoread)) {
2010 END_PROFILE(SMBlockread);
2015 END_PROFILE(SMBlockread);
2016 return ERROR_NT(status);
2020 * However the requested READ size IS affected by max_recv. Insanity.... JRA.
2023 if (numtoread > max_recv) {
2024 DEBUG(0,("reply_lockread: requested read size (%u) is greater than maximum allowed (%u). \
2025 Returning short read of maximum allowed for compatibility with Windows 2000.\n",
2026 (unsigned int)numtoread, (unsigned int)max_recv ));
2027 numtoread = MIN(numtoread,max_recv);
2029 nread = read_file(fsp,data,startpos,numtoread);
2032 END_PROFILE(SMBlockread);
2033 return(UNIXERROR(ERRDOS,ERRnoaccess));
2037 SSVAL(outbuf,smb_vwv0,nread);
2038 SSVAL(outbuf,smb_vwv5,nread+3);
2039 SSVAL(smb_buf(outbuf),1,nread);
2041 DEBUG(3,("lockread fnum=%d num=%d nread=%d\n",
2042 fsp->fnum, (int)numtoread, (int)nread));
2044 END_PROFILE(SMBlockread);
2048 /****************************************************************************
2050 ****************************************************************************/
2052 int reply_read(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
2059 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2060 START_PROFILE(SMBread);
2062 CHECK_FSP(fsp,conn);
2065 numtoread = SVAL(inbuf,smb_vwv1);
2066 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv2);
2068 outsize = set_message(outbuf,5,3,True);
2069 numtoread = MIN(BUFFER_SIZE-outsize,numtoread);
2071 * The requested read size cannot be greater than max_recv. JRA.
2073 if (numtoread > max_recv) {
2074 DEBUG(0,("reply_read: requested read size (%u) is greater than maximum allowed (%u). \
2075 Returning short read of maximum allowed for compatibility with Windows 2000.\n",
2076 (unsigned int)numtoread, (unsigned int)max_recv ));
2077 numtoread = MIN(numtoread,max_recv);
2080 data = smb_buf(outbuf) + 3;
2082 if (is_locked(fsp,conn,(SMB_BIG_UINT)numtoread,(SMB_BIG_UINT)startpos, READ_LOCK)) {
2083 END_PROFILE(SMBread);
2084 return ERROR_DOS(ERRDOS,ERRlock);
2088 nread = read_file(fsp,data,startpos,numtoread);
2091 END_PROFILE(SMBread);
2092 return(UNIXERROR(ERRDOS,ERRnoaccess));
2096 SSVAL(outbuf,smb_vwv0,nread);
2097 SSVAL(outbuf,smb_vwv5,nread+3);
2098 SCVAL(smb_buf(outbuf),0,1);
2099 SSVAL(smb_buf(outbuf),1,nread);
2101 DEBUG( 3, ( "read fnum=%d num=%d nread=%d\n",
2102 fsp->fnum, (int)numtoread, (int)nread ) );
2104 END_PROFILE(SMBread);
2108 /****************************************************************************
2109 Reply to a read and X - possibly using sendfile.
2110 ****************************************************************************/
2112 int send_file_readX(connection_struct *conn, char *inbuf,char *outbuf,int length, int len_outbuf,
2113 files_struct *fsp, SMB_OFF_T startpos, size_t smb_maxcnt)
2116 char *data = smb_buf(outbuf);
2118 #if defined(WITH_SENDFILE)
2120 * We can only use sendfile on a non-chained packet
2121 * but we can use on a non-oplocked file. tridge proved this
2122 * on a train in Germany :-). JRA.
2125 if (chain_size ==0 && (CVAL(inbuf,smb_vwv0) == 0xFF) && lp_use_sendfile(SNUM(conn)) &&
2126 (lp_write_cache_size(SNUM(conn)) == 0) ) {
2127 SMB_STRUCT_STAT sbuf;
2130 if(SMB_VFS_FSTAT(fsp,fsp->fd, &sbuf) == -1)
2131 return(UNIXERROR(ERRDOS,ERRnoaccess));
2133 if (startpos > sbuf.st_size)
2136 if (smb_maxcnt > (sbuf.st_size - startpos))
2137 smb_maxcnt = (sbuf.st_size - startpos);
2139 if (smb_maxcnt == 0)
2143 * Set up the packet header before send. We
2144 * assume here the sendfile will work (get the
2145 * correct amount of data).
2148 SSVAL(outbuf,smb_vwv2,0xFFFF); /* Remaining - must be -1. */
2149 SSVAL(outbuf,smb_vwv5,smb_maxcnt);
2150 SSVAL(outbuf,smb_vwv6,smb_offset(data,outbuf));
2151 SSVAL(smb_buf(outbuf),-2,smb_maxcnt);
2152 SCVAL(outbuf,smb_vwv0,0xFF);
2153 set_message(outbuf,12,smb_maxcnt,False);
2154 header.data = outbuf;
2155 header.length = data - outbuf;
2158 if ( SMB_VFS_SENDFILE( smbd_server_fd(), fsp, fsp->fd, &header, startpos, smb_maxcnt) == -1) {
2160 * Special hack for broken Linux with no working sendfile. If we
2161 * return EINTR we sent the header but not the rest of the data.
2162 * Fake this up by doing read/write calls.
2164 if (errno == EINTR) {
2165 /* Ensure we don't do this again. */
2166 set_use_sendfile(SNUM(conn), False);
2167 DEBUG(0,("send_file_readX: sendfile not available. Faking..\n"));
2169 if ((nread = fake_sendfile(fsp, startpos, smb_maxcnt, data,
2170 len_outbuf - (data-outbuf))) == -1) {
2171 DEBUG(0,("send_file_readX: fake_sendfile failed for file %s (%s).\n",
2172 fsp->fsp_name, strerror(errno) ));
2173 exit_server("send_file_readX: fake_sendfile failed");
2178 DEBUG(0,("send_file_readX: sendfile failed for file %s (%s). Terminating\n",
2179 fsp->fsp_name, strerror(errno) ));
2180 exit_server("send_file_readX sendfile failed");
2183 DEBUG( 3, ( "send_file_readX: sendfile fnum=%d max=%d nread=%d\n",
2184 fsp->fnum, (int)smb_maxcnt, (int)nread ) );
2192 nread = read_file(fsp,data,startpos,smb_maxcnt);
2195 END_PROFILE(SMBreadX);
2196 return(UNIXERROR(ERRDOS,ERRnoaccess));
2199 SSVAL(outbuf,smb_vwv2,0xFFFF); /* Remaining - must be -1. */
2200 SSVAL(outbuf,smb_vwv5,nread);
2201 SSVAL(outbuf,smb_vwv6,smb_offset(data,outbuf));
2202 SSVAL(smb_buf(outbuf),-2,nread);
2204 DEBUG( 3, ( "send_file_readX fnum=%d max=%d nread=%d\n",
2205 fsp->fnum, (int)smb_maxcnt, (int)nread ) );
2210 /****************************************************************************
2211 Reply to a read and X.
2212 ****************************************************************************/
2214 int reply_read_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
2216 files_struct *fsp = file_fsp(inbuf,smb_vwv2);
2217 SMB_OFF_T startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv3);
2219 size_t smb_maxcnt = SVAL(inbuf,smb_vwv5);
2221 size_t smb_mincnt = SVAL(inbuf,smb_vwv6);
2224 START_PROFILE(SMBreadX);
2226 /* If it's an IPC, pass off the pipe handler. */
2228 END_PROFILE(SMBreadX);
2229 return reply_pipe_read_and_X(inbuf,outbuf,length,bufsize);
2232 CHECK_FSP(fsp,conn);
2235 set_message(outbuf,12,0,True);
2237 if (global_client_caps & CAP_LARGE_READX) {
2238 smb_maxcnt |= ((((size_t)SVAL(inbuf,smb_vwv7)) & 1 )<<16);
2239 if (smb_maxcnt > BUFFER_SIZE) {
2240 DEBUG(0,("reply_read_and_X - read too large (%u) for reply buffer %u\n",
2241 (unsigned int)smb_maxcnt, (unsigned int)BUFFER_SIZE));
2242 END_PROFILE(SMBreadX);
2243 return ERROR_NT(NT_STATUS_INVALID_PARAMETER);
2247 if(CVAL(inbuf,smb_wct) == 12) {
2248 #ifdef LARGE_SMB_OFF_T
2250 * This is a large offset (64 bit) read.
2252 startpos |= (((SMB_OFF_T)IVAL(inbuf,smb_vwv10)) << 32);
2254 #else /* !LARGE_SMB_OFF_T */
2257 * Ensure we haven't been sent a >32 bit offset.
2260 if(IVAL(inbuf,smb_vwv10) != 0) {
2261 DEBUG(0,("reply_read_and_X - large offset (%x << 32) used and we don't support \
2262 64 bit offsets.\n", (unsigned int)IVAL(inbuf,smb_vwv10) ));
2263 END_PROFILE(SMBreadX);
2264 return ERROR_DOS(ERRDOS,ERRbadaccess);
2267 #endif /* LARGE_SMB_OFF_T */
2271 if (is_locked(fsp,conn,(SMB_BIG_UINT)smb_maxcnt,(SMB_BIG_UINT)startpos, READ_LOCK)) {
2272 END_PROFILE(SMBreadX);
2273 return ERROR_DOS(ERRDOS,ERRlock);
2276 nread = send_file_readX(conn, inbuf, outbuf, length, bufsize, fsp, startpos, smb_maxcnt);
2278 nread = chain_reply(inbuf,outbuf,length,bufsize);
2280 END_PROFILE(SMBreadX);
2284 /****************************************************************************
2285 Reply to a writebraw (core+ or LANMAN1.0 protocol).
2286 ****************************************************************************/
2288 int reply_writebraw(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
2291 ssize_t total_written=0;
2292 size_t numtowrite=0;
2297 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2299 START_PROFILE(SMBwritebraw);
2301 if (srv_is_signing_active()) {
2302 exit_server("reply_writebraw: SMB signing is active - raw reads/writes are disallowed.");
2305 CHECK_FSP(fsp,conn);
2308 tcount = IVAL(inbuf,smb_vwv1);
2309 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv3);
2310 write_through = BITSETW(inbuf+smb_vwv7,0);
2312 /* We have to deal with slightly different formats depending
2313 on whether we are using the core+ or lanman1.0 protocol */
2315 if(Protocol <= PROTOCOL_COREPLUS) {
2316 numtowrite = SVAL(smb_buf(inbuf),-2);
2317 data = smb_buf(inbuf);
2319 numtowrite = SVAL(inbuf,smb_vwv10);
2320 data = smb_base(inbuf) + SVAL(inbuf, smb_vwv11);
2323 /* force the error type */
2324 SCVAL(inbuf,smb_com,SMBwritec);
2325 SCVAL(outbuf,smb_com,SMBwritec);
2327 if (is_locked(fsp,conn,(SMB_BIG_UINT)tcount,(SMB_BIG_UINT)startpos, WRITE_LOCK)) {
2328 END_PROFILE(SMBwritebraw);
2329 return(ERROR_DOS(ERRDOS,ERRlock));
2333 nwritten = write_file(fsp,data,startpos,numtowrite);
2335 DEBUG(3,("writebraw1 fnum=%d start=%.0f num=%d wrote=%d sync=%d\n",
2336 fsp->fnum, (double)startpos, (int)numtowrite, (int)nwritten, (int)write_through));
2338 if (nwritten < (ssize_t)numtowrite) {
2339 END_PROFILE(SMBwritebraw);
2340 return(UNIXERROR(ERRHRD,ERRdiskfull));
2343 total_written = nwritten;
2345 /* Return a message to the redirector to tell it to send more bytes */
2346 SCVAL(outbuf,smb_com,SMBwritebraw);
2347 SSVALS(outbuf,smb_vwv0,-1);
2348 outsize = set_message(outbuf,Protocol>PROTOCOL_COREPLUS?1:0,0,True);
2349 if (!send_smb(smbd_server_fd(),outbuf))
2350 exit_server("reply_writebraw: send_smb failed.");
2352 /* Now read the raw data into the buffer and write it */
2353 if (read_smb_length(smbd_server_fd(),inbuf,SMB_SECONDARY_WAIT) == -1) {
2354 exit_server("secondary writebraw failed");
2357 /* Even though this is not an smb message, smb_len returns the generic length of an smb message */
2358 numtowrite = smb_len(inbuf);
2360 /* Set up outbuf to return the correct return */
2361 outsize = set_message(outbuf,1,0,True);
2362 SCVAL(outbuf,smb_com,SMBwritec);
2363 SSVAL(outbuf,smb_vwv0,total_written);
2365 if (numtowrite != 0) {
2367 if (numtowrite > BUFFER_SIZE) {
2368 DEBUG(0,("reply_writebraw: Oversize secondary write raw requested (%u). Terminating\n",
2369 (unsigned int)numtowrite ));
2370 exit_server("secondary writebraw failed");
2373 if (tcount > nwritten+numtowrite) {
2374 DEBUG(3,("Client overestimated the write %d %d %d\n",
2375 (int)tcount,(int)nwritten,(int)numtowrite));
2378 if (read_data( smbd_server_fd(), inbuf+4, numtowrite) != numtowrite ) {
2379 DEBUG(0,("reply_writebraw: Oversize secondary write raw read failed (%s). Terminating\n",
2381 exit_server("secondary writebraw failed");
2384 nwritten = write_file(fsp,inbuf+4,startpos+nwritten,numtowrite);
2386 if (nwritten < (ssize_t)numtowrite) {
2387 SCVAL(outbuf,smb_rcls,ERRHRD);
2388 SSVAL(outbuf,smb_err,ERRdiskfull);
2392 total_written += nwritten;
2395 if ((lp_syncalways(SNUM(conn)) || write_through) && lp_strict_sync(SNUM(conn)))
2396 sync_file(conn,fsp);
2398 DEBUG(3,("writebraw2 fnum=%d start=%.0f num=%d wrote=%d\n",
2399 fsp->fnum, (double)startpos, (int)numtowrite,(int)total_written));
2401 /* we won't return a status if write through is not selected - this follows what WfWg does */
2402 END_PROFILE(SMBwritebraw);
2403 if (!write_through && total_written==tcount) {
2405 #if RABBIT_PELLET_FIX
2407 * Fix for "rabbit pellet" mode, trigger an early TCP ack by
2408 * sending a SMBkeepalive. Thanks to DaveCB at Sun for this. JRA.
2410 if (!send_keepalive(smbd_server_fd()))
2411 exit_server("reply_writebraw: send of keepalive failed");
2419 /****************************************************************************
2420 Reply to a writeunlock (core+).
2421 ****************************************************************************/
2423 int reply_writeunlock(connection_struct *conn, char *inbuf,char *outbuf,
2424 int size, int dum_buffsize)
2426 ssize_t nwritten = -1;
2430 NTSTATUS status = NT_STATUS_OK;
2431 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2433 START_PROFILE(SMBwriteunlock);
2435 CHECK_FSP(fsp,conn);
2438 numtowrite = SVAL(inbuf,smb_vwv1);
2439 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv2);
2440 data = smb_buf(inbuf) + 3;
2442 if (numtowrite && is_locked(fsp,conn,(SMB_BIG_UINT)numtowrite,(SMB_BIG_UINT)startpos, WRITE_LOCK)) {
2443 END_PROFILE(SMBwriteunlock);
2444 return ERROR_DOS(ERRDOS,ERRlock);
2447 /* The special X/Open SMB protocol handling of
2448 zero length writes is *NOT* done for
2453 nwritten = write_file(fsp,data,startpos,numtowrite);
2455 if (lp_syncalways(SNUM(conn)))
2456 sync_file(conn,fsp);
2458 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
2459 END_PROFILE(SMBwriteunlock);
2460 return(UNIXERROR(ERRHRD,ERRdiskfull));
2464 status = do_unlock(fsp, conn, SVAL(inbuf,smb_pid), (SMB_BIG_UINT)numtowrite,
2465 (SMB_BIG_UINT)startpos);
2466 if (NT_STATUS_V(status)) {
2467 END_PROFILE(SMBwriteunlock);
2468 return ERROR_NT(status);
2472 outsize = set_message(outbuf,1,0,True);
2474 SSVAL(outbuf,smb_vwv0,nwritten);
2476 DEBUG(3,("writeunlock fnum=%d num=%d wrote=%d\n",
2477 fsp->fnum, (int)numtowrite, (int)nwritten));
2479 END_PROFILE(SMBwriteunlock);
2483 /****************************************************************************
2485 ****************************************************************************/
2487 int reply_write(connection_struct *conn, char *inbuf,char *outbuf,int size,int dum_buffsize)
2490 ssize_t nwritten = -1;
2493 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2495 START_PROFILE(SMBwrite);
2497 /* If it's an IPC, pass off the pipe handler. */
2499 END_PROFILE(SMBwrite);
2500 return reply_pipe_write(inbuf,outbuf,size,dum_buffsize);
2503 CHECK_FSP(fsp,conn);
2506 numtowrite = SVAL(inbuf,smb_vwv1);
2507 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv2);
2508 data = smb_buf(inbuf) + 3;
2510 if (is_locked(fsp,conn,(SMB_BIG_UINT)numtowrite,(SMB_BIG_UINT)startpos, WRITE_LOCK)) {
2511 END_PROFILE(SMBwrite);
2512 return ERROR_DOS(ERRDOS,ERRlock);
2516 * X/Open SMB protocol says that if smb_vwv1 is
2517 * zero then the file size should be extended or
2518 * truncated to the size given in smb_vwv[2-3].
2521 if(numtowrite == 0) {
2523 * This is actually an allocate call, and set EOF. JRA.
2525 nwritten = vfs_allocate_file_space(fsp, (SMB_OFF_T)startpos);
2527 END_PROFILE(SMBwrite);
2528 return ERROR_NT(NT_STATUS_DISK_FULL);
2530 nwritten = vfs_set_filelen(fsp, (SMB_OFF_T)startpos);
2532 END_PROFILE(SMBwrite);
2533 return ERROR_NT(NT_STATUS_DISK_FULL);
2536 nwritten = write_file(fsp,data,startpos,numtowrite);
2538 if (lp_syncalways(SNUM(conn)))
2539 sync_file(conn,fsp);
2541 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
2542 END_PROFILE(SMBwrite);
2543 return(UNIXERROR(ERRHRD,ERRdiskfull));
2546 outsize = set_message(outbuf,1,0,True);
2548 SSVAL(outbuf,smb_vwv0,nwritten);
2550 if (nwritten < (ssize_t)numtowrite) {
2551 SCVAL(outbuf,smb_rcls,ERRHRD);
2552 SSVAL(outbuf,smb_err,ERRdiskfull);
2555 DEBUG(3,("write fnum=%d num=%d wrote=%d\n", fsp->fnum, (int)numtowrite, (int)nwritten));
2557 END_PROFILE(SMBwrite);
2561 /****************************************************************************
2562 Reply to a write and X.
2563 ****************************************************************************/
2565 int reply_write_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
2567 files_struct *fsp = file_fsp(inbuf,smb_vwv2);
2568 SMB_OFF_T startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv3);
2569 size_t numtowrite = SVAL(inbuf,smb_vwv10);
2570 BOOL write_through = BITSETW(inbuf+smb_vwv7,0);
2571 ssize_t nwritten = -1;
2572 unsigned int smb_doff = SVAL(inbuf,smb_vwv11);
2573 unsigned int smblen = smb_len(inbuf);
2575 BOOL large_writeX = ((CVAL(inbuf,smb_wct) == 14) && (smblen > 0xFFFF));
2576 START_PROFILE(SMBwriteX);
2578 /* If it's an IPC, pass off the pipe handler. */
2580 END_PROFILE(SMBwriteX);
2581 return reply_pipe_write_and_X(inbuf,outbuf,length,bufsize);
2584 CHECK_FSP(fsp,conn);
2587 /* Deal with possible LARGE_WRITEX */
2589 numtowrite |= ((((size_t)SVAL(inbuf,smb_vwv9)) & 1 )<<16);
2591 if(smb_doff > smblen || (smb_doff + numtowrite > smblen)) {
2592 END_PROFILE(SMBwriteX);
2593 return ERROR_DOS(ERRDOS,ERRbadmem);
2596 data = smb_base(inbuf) + smb_doff;
2598 if(CVAL(inbuf,smb_wct) == 14) {
2599 #ifdef LARGE_SMB_OFF_T
2601 * This is a large offset (64 bit) write.
2603 startpos |= (((SMB_OFF_T)IVAL(inbuf,smb_vwv12)) << 32);
2605 #else /* !LARGE_SMB_OFF_T */
2608 * Ensure we haven't been sent a >32 bit offset.
2611 if(IVAL(inbuf,smb_vwv12) != 0) {
2612 DEBUG(0,("reply_write_and_X - large offset (%x << 32) used and we don't support \
2613 64 bit offsets.\n", (unsigned int)IVAL(inbuf,smb_vwv12) ));
2614 END_PROFILE(SMBwriteX);
2615 return ERROR_DOS(ERRDOS,ERRbadaccess);
2618 #endif /* LARGE_SMB_OFF_T */
2621 if (is_locked(fsp,conn,(SMB_BIG_UINT)numtowrite,(SMB_BIG_UINT)startpos, WRITE_LOCK)) {
2622 END_PROFILE(SMBwriteX);
2623 return ERROR_DOS(ERRDOS,ERRlock);
2626 /* X/Open SMB protocol says that, unlike SMBwrite
2627 if the length is zero then NO truncation is
2628 done, just a write of zero. To truncate a file,
2634 nwritten = write_file(fsp,data,startpos,numtowrite);
2636 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
2637 END_PROFILE(SMBwriteX);
2638 return(UNIXERROR(ERRHRD,ERRdiskfull));
2641 set_message(outbuf,6,0,True);
2643 SSVAL(outbuf,smb_vwv2,nwritten);
2645 SSVAL(outbuf,smb_vwv4,(nwritten>>16)&1);
2647 if (nwritten < (ssize_t)numtowrite) {
2648 SCVAL(outbuf,smb_rcls,ERRHRD);
2649 SSVAL(outbuf,smb_err,ERRdiskfull);
2652 DEBUG(3,("writeX fnum=%d num=%d wrote=%d\n",
2653 fsp->fnum, (int)numtowrite, (int)nwritten));
2655 if (lp_syncalways(SNUM(conn)) || write_through)
2656 sync_file(conn,fsp);
2658 END_PROFILE(SMBwriteX);
2659 return chain_reply(inbuf,outbuf,length,bufsize);
2662 /****************************************************************************
2664 ****************************************************************************/
2666 int reply_lseek(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
2672 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2673 START_PROFILE(SMBlseek);
2675 CHECK_FSP(fsp,conn);
2677 flush_write_cache(fsp, SEEK_FLUSH);
2679 mode = SVAL(inbuf,smb_vwv1) & 3;
2680 /* NB. This doesn't use IVAL_TO_SMB_OFF_T as startpos can be signed in this case. */
2681 startpos = (SMB_OFF_T)IVALS(inbuf,smb_vwv2);
2690 res = fsp->pos + startpos;
2701 if (umode == SEEK_END) {
2702 if((res = SMB_VFS_LSEEK(fsp,fsp->fd,startpos,umode)) == -1) {
2703 if(errno == EINVAL) {
2704 SMB_OFF_T current_pos = startpos;
2705 SMB_STRUCT_STAT sbuf;
2707 if(SMB_VFS_FSTAT(fsp,fsp->fd, &sbuf) == -1) {
2708 END_PROFILE(SMBlseek);
2709 return(UNIXERROR(ERRDOS,ERRnoaccess));
2712 current_pos += sbuf.st_size;
2714 res = SMB_VFS_LSEEK(fsp,fsp->fd,0,SEEK_SET);
2719 END_PROFILE(SMBlseek);
2720 return(UNIXERROR(ERRDOS,ERRnoaccess));
2726 outsize = set_message(outbuf,2,0,True);
2727 SIVAL(outbuf,smb_vwv0,res);
2729 DEBUG(3,("lseek fnum=%d ofs=%.0f newpos = %.0f mode=%d\n",
2730 fsp->fnum, (double)startpos, (double)res, mode));
2732 END_PROFILE(SMBlseek);
2736 /****************************************************************************
2738 ****************************************************************************/
2740 int reply_flush(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
2742 int outsize = set_message(outbuf,0,0,True);
2743 uint16 fnum = SVAL(inbuf,smb_vwv0);
2744 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2745 START_PROFILE(SMBflush);
2748 CHECK_FSP(fsp,conn);
2751 file_sync_all(conn);
2753 sync_file(conn,fsp);
2756 DEBUG(3,("flush\n"));
2757 END_PROFILE(SMBflush);
2761 /****************************************************************************
2763 ****************************************************************************/
2765 int reply_exit(connection_struct *conn,
2766 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2769 START_PROFILE(SMBexit);
2771 file_close_pid(SVAL(inbuf,smb_pid));
2773 outsize = set_message(outbuf,0,0,True);
2775 DEBUG(3,("exit\n"));
2777 END_PROFILE(SMBexit);
2781 /****************************************************************************
2782 Reply to a close - has to deal with closing a directory opened by NT SMB's.
2783 ****************************************************************************/
2785 int reply_close(connection_struct *conn, char *inbuf,char *outbuf, int size,
2788 extern struct current_user current_user;
2791 int32 eclass = 0, err = 0;
2792 files_struct *fsp = NULL;
2793 START_PROFILE(SMBclose);
2795 outsize = set_message(outbuf,0,0,True);
2797 /* If it's an IPC, pass off to the pipe handler. */
2799 END_PROFILE(SMBclose);
2800 return reply_pipe_close(conn, inbuf,outbuf);
2803 fsp = file_fsp(inbuf,smb_vwv0);
2806 * We can only use CHECK_FSP if we know it's not a directory.
2809 if(!fsp || (fsp->conn != conn) || (fsp->vuid != current_user.vuid)) {
2810 END_PROFILE(SMBclose);
2811 return ERROR_DOS(ERRDOS,ERRbadfid);
2814 if(fsp->is_directory) {
2816 * Special case - close NT SMB directory handle.
2818 DEBUG(3,("close %s fnum=%d\n", fsp->is_directory ? "directory" : "stat file open", fsp->fnum));
2819 close_file(fsp,True);
2822 * Close ordinary file.
2827 /* Save the name for time set in close. */
2828 pstrcpy( file_name, fsp->fsp_name);
2830 DEBUG(3,("close fd=%d fnum=%d (numopen=%d)\n",
2832 conn->num_files_open));
2835 * close_file() returns the unix errno if an error
2836 * was detected on close - normally this is due to
2837 * a disk full error. If not then it was probably an I/O error.
2840 if((close_err = close_file(fsp,True)) != 0) {
2842 END_PROFILE(SMBclose);
2843 return (UNIXERROR(ERRHRD,ERRgeneral));
2847 * Now take care of any time sent in the close.
2850 mtime = make_unix_date3(inbuf+smb_vwv1);
2852 /* try and set the date */
2853 set_filetime(conn, file_name, mtime);
2857 /* We have a cached error */
2859 END_PROFILE(SMBclose);
2860 return ERROR_DOS(eclass,err);
2863 END_PROFILE(SMBclose);
2867 /****************************************************************************
2868 Reply to a writeclose (Core+ protocol).
2869 ****************************************************************************/
2871 int reply_writeclose(connection_struct *conn,
2872 char *inbuf,char *outbuf, int size, int dum_buffsize)
2875 ssize_t nwritten = -1;
2881 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2882 START_PROFILE(SMBwriteclose);
2884 CHECK_FSP(fsp,conn);
2887 numtowrite = SVAL(inbuf,smb_vwv1);
2888 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv2);
2889 mtime = make_unix_date3(inbuf+smb_vwv4);
2890 data = smb_buf(inbuf) + 1;
2892 if (numtowrite && is_locked(fsp,conn,(SMB_BIG_UINT)numtowrite,(SMB_BIG_UINT)startpos, WRITE_LOCK)) {
2893 END_PROFILE(SMBwriteclose);
2894 return ERROR_DOS(ERRDOS,ERRlock);
2897 nwritten = write_file(fsp,data,startpos,numtowrite);
2899 set_filetime(conn, fsp->fsp_name,mtime);
2902 * More insanity. W2K only closes the file if writelen > 0.
2907 DEBUG(3,("reply_writeclose: zero length write doesn't close file %s\n",
2909 close_err = close_file(fsp,True);
2912 DEBUG(3,("writeclose fnum=%d num=%d wrote=%d (numopen=%d)\n",
2913 fsp->fnum, (int)numtowrite, (int)nwritten,
2914 conn->num_files_open));
2916 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
2917 END_PROFILE(SMBwriteclose);
2918 return(UNIXERROR(ERRHRD,ERRdiskfull));
2921 if(close_err != 0) {
2923 END_PROFILE(SMBwriteclose);
2924 return(UNIXERROR(ERRHRD,ERRgeneral));
2927 outsize = set_message(outbuf,1,0,True);
2929 SSVAL(outbuf,smb_vwv0,nwritten);
2930 END_PROFILE(SMBwriteclose);
2934 /****************************************************************************
2936 ****************************************************************************/
2938 int reply_lock(connection_struct *conn,
2939 char *inbuf,char *outbuf, int length, int dum_buffsize)
2941 int outsize = set_message(outbuf,0,0,True);
2942 SMB_BIG_UINT count,offset;
2944 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2945 BOOL my_lock_ctx = False;
2947 START_PROFILE(SMBlock);
2949 CHECK_FSP(fsp,conn);
2951 release_level_2_oplocks_on_change(fsp);
2953 count = (SMB_BIG_UINT)IVAL(inbuf,smb_vwv1);
2954 offset = (SMB_BIG_UINT)IVAL(inbuf,smb_vwv3);
2956 DEBUG(3,("lock fd=%d fnum=%d offset=%.0f count=%.0f\n",
2957 fsp->fd, fsp->fnum, (double)offset, (double)count));
2959 status = do_lock_spin(fsp, conn, SVAL(inbuf,smb_pid), count, offset, WRITE_LOCK, &my_lock_ctx);
2960 if (NT_STATUS_V(status)) {
2962 /* Tests using Samba4 against W2K show this call never creates a blocking lock. */
2963 if (lp_blocking_locks(SNUM(conn)) && !my_lock_ctx && ERROR_WAS_LOCK_DENIED(status)) {
2965 * A blocking lock was requested. Package up
2966 * this smb into a queued request and push it
2967 * onto the blocking lock queue.
2969 if(push_blocking_lock_request(inbuf, length, -1, 0, SVAL(inbuf,smb_pid), offset, count)) {
2970 END_PROFILE(SMBlock);
2975 END_PROFILE(SMBlock);
2976 return ERROR_NT(status);
2979 END_PROFILE(SMBlock);
2983 /****************************************************************************
2985 ****************************************************************************/
2987 int reply_unlock(connection_struct *conn, char *inbuf,char *outbuf, int size,
2990 int outsize = set_message(outbuf,0,0,True);
2991 SMB_BIG_UINT count,offset;
2993 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2994 START_PROFILE(SMBunlock);
2996 CHECK_FSP(fsp,conn);
2998 count = (SMB_BIG_UINT)IVAL(inbuf,smb_vwv1);
2999 offset = (SMB_BIG_UINT)IVAL(inbuf,smb_vwv3);
3001 status = do_unlock(fsp, conn, SVAL(inbuf,smb_pid), count, offset);
3002 if (NT_STATUS_V(status)) {
3003 END_PROFILE(SMBunlock);
3004 return ERROR_NT(status);
3007 DEBUG( 3, ( "unlock fd=%d fnum=%d offset=%.0f count=%.0f\n",
3008 fsp->fd, fsp->fnum, (double)offset, (double)count ) );
3010 END_PROFILE(SMBunlock);
3014 /****************************************************************************
3016 ****************************************************************************/
3018 int reply_tdis(connection_struct *conn,
3019 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3021 int outsize = set_message(outbuf,0,0,True);
3023 START_PROFILE(SMBtdis);
3025 vuid = SVAL(inbuf,smb_uid);
3028 DEBUG(4,("Invalid connection in tdis\n"));
3029 END_PROFILE(SMBtdis);
3030 return ERROR_DOS(ERRSRV,ERRinvnid);
3035 close_cnum(conn,vuid);
3037 END_PROFILE(SMBtdis);
3041 /****************************************************************************
3043 ****************************************************************************/
3045 int reply_echo(connection_struct *conn,
3046 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3048 int smb_reverb = SVAL(inbuf,smb_vwv0);
3050 unsigned int data_len = smb_buflen(inbuf);
3051 int outsize = set_message(outbuf,1,data_len,True);
3052 START_PROFILE(SMBecho);
3054 if (data_len > BUFFER_SIZE) {
3055 DEBUG(0,("reply_echo: data_len too large.\n"));
3056 END_PROFILE(SMBecho);
3060 /* copy any incoming data back out */
3062 memcpy(smb_buf(outbuf),smb_buf(inbuf),data_len);
3064 if (smb_reverb > 100) {
3065 DEBUG(0,("large reverb (%d)?? Setting to 100\n",smb_reverb));
3069 for (seq_num =1 ; seq_num <= smb_reverb ; seq_num++) {
3070 SSVAL(outbuf,smb_vwv0,seq_num);
3072 smb_setlen(outbuf,outsize - 4);
3074 if (!send_smb(smbd_server_fd(),outbuf))
3075 exit_server("reply_echo: send_smb failed.");
3078 DEBUG(3,("echo %d times\n", smb_reverb));
3082 END_PROFILE(SMBecho);
3086 /****************************************************************************
3087 Reply to a printopen.
3088 ****************************************************************************/
3090 int reply_printopen(connection_struct *conn,
3091 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3095 START_PROFILE(SMBsplopen);
3097 if (!CAN_PRINT(conn)) {
3098 END_PROFILE(SMBsplopen);
3099 return ERROR_DOS(ERRDOS,ERRnoaccess);
3102 /* Open for exclusive use, write only. */
3103 fsp = print_fsp_open(conn, NULL);
3106 END_PROFILE(SMBsplopen);
3107 return(UNIXERROR(ERRDOS,ERRnoaccess));
3110 outsize = set_message(outbuf,1,0,True);
3111 SSVAL(outbuf,smb_vwv0,fsp->fnum);
3113 DEBUG(3,("openprint fd=%d fnum=%d\n",
3114 fsp->fd, fsp->fnum));
3116 END_PROFILE(SMBsplopen);
3120 /****************************************************************************
3121 Reply to a printclose.
3122 ****************************************************************************/
3124 int reply_printclose(connection_struct *conn,
3125 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3127 int outsize = set_message(outbuf,0,0,True);
3128 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
3130 START_PROFILE(SMBsplclose);
3132 CHECK_FSP(fsp,conn);
3134 if (!CAN_PRINT(conn)) {
3135 END_PROFILE(SMBsplclose);
3136 return ERROR_NT(NT_STATUS_UNSUCCESSFUL);
3139 DEBUG(3,("printclose fd=%d fnum=%d\n",
3140 fsp->fd,fsp->fnum));
3142 close_err = close_file(fsp,True);
3144 if(close_err != 0) {
3146 END_PROFILE(SMBsplclose);
3147 return(UNIXERROR(ERRHRD,ERRgeneral));
3150 END_PROFILE(SMBsplclose);
3154 /****************************************************************************
3155 Reply to a printqueue.
3156 ****************************************************************************/
3158 int reply_printqueue(connection_struct *conn,
3159 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3161 int outsize = set_message(outbuf,2,3,True);
3162 int max_count = SVAL(inbuf,smb_vwv0);
3163 int start_index = SVAL(inbuf,smb_vwv1);
3164 START_PROFILE(SMBsplretq);
3166 /* we used to allow the client to get the cnum wrong, but that
3167 is really quite gross and only worked when there was only
3168 one printer - I think we should now only accept it if they
3169 get it right (tridge) */
3170 if (!CAN_PRINT(conn)) {
3171 END_PROFILE(SMBsplretq);
3172 return ERROR_DOS(ERRDOS,ERRnoaccess);
3175 SSVAL(outbuf,smb_vwv0,0);
3176 SSVAL(outbuf,smb_vwv1,0);
3177 SCVAL(smb_buf(outbuf),0,1);
3178 SSVAL(smb_buf(outbuf),1,0);
3180 DEBUG(3,("printqueue start_index=%d max_count=%d\n",
3181 start_index, max_count));
3184 print_queue_struct *queue = NULL;
3185 print_status_struct status;
3186 char *p = smb_buf(outbuf) + 3;
3187 int count = print_queue_status(SNUM(conn), &queue, &status);
3188 int num_to_get = ABS(max_count);
3189 int first = (max_count>0?start_index:start_index+max_count+1);
3195 num_to_get = MIN(num_to_get,count-first);
3198 for (i=first;i<first+num_to_get;i++) {
3199 put_dos_date2(p,0,queue[i].time);
3200 SCVAL(p,4,(queue[i].status==LPQ_PRINTING?2:3));
3201 SSVAL(p,5, queue[i].job);
3202 SIVAL(p,7,queue[i].size);
3204 srvstr_push(outbuf, p+12, queue[i].fs_user, 16, STR_ASCII);
3209 outsize = set_message(outbuf,2,28*count+3,False);
3210 SSVAL(outbuf,smb_vwv0,count);
3211 SSVAL(outbuf,smb_vwv1,(max_count>0?first+count:first-1));
3212 SCVAL(smb_buf(outbuf),0,1);
3213 SSVAL(smb_buf(outbuf),1,28*count);
3218 DEBUG(3,("%d entries returned in queue\n",count));
3221 END_PROFILE(SMBsplretq);
3225 /****************************************************************************
3226 Reply to a printwrite.
3227 ****************************************************************************/
3229 int reply_printwrite(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3232 int outsize = set_message(outbuf,0,0,True);
3234 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
3236 START_PROFILE(SMBsplwr);
3238 if (!CAN_PRINT(conn)) {
3239 END_PROFILE(SMBsplwr);
3240 return ERROR_DOS(ERRDOS,ERRnoaccess);
3243 CHECK_FSP(fsp,conn);
3246 numtowrite = SVAL(smb_buf(inbuf),1);
3247 data = smb_buf(inbuf) + 3;
3249 if (write_file(fsp,data,-1,numtowrite) != numtowrite) {
3250 END_PROFILE(SMBsplwr);
3251 return(UNIXERROR(ERRHRD,ERRdiskfull));
3254 DEBUG( 3, ( "printwrite fnum=%d num=%d\n", fsp->fnum, numtowrite ) );
3256 END_PROFILE(SMBsplwr);
3260 /****************************************************************************
3261 The guts of the mkdir command, split out so it may be called by the NT SMB
3263 ****************************************************************************/
3265 NTSTATUS mkdir_internal(connection_struct *conn, pstring directory)
3267 BOOL bad_path = False;
3268 SMB_STRUCT_STAT sbuf;
3271 unix_convert(directory,conn,0,&bad_path,&sbuf);
3273 if( strchr_m(directory, ':')) {
3274 return NT_STATUS_NOT_A_DIRECTORY;
3277 if (ms_has_wild(directory)) {
3278 return NT_STATUS_OBJECT_NAME_INVALID;
3282 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
3285 if (check_name(directory, conn))
3286 ret = vfs_MkDir(conn,directory,unix_mode(conn,aDIR,directory,True));
3289 if(errno == ENOENT) {
3290 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
3292 return map_nt_error_from_unix(errno);
3295 return NT_STATUS_OK;
3298 /****************************************************************************
3300 ****************************************************************************/
3302 int reply_mkdir(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3307 START_PROFILE(SMBmkdir);
3309 srvstr_get_path(inbuf, directory, smb_buf(inbuf) + 1, sizeof(directory), 0, STR_TERMINATE, &status, False);
3310 if (!NT_STATUS_IS_OK(status)) {
3311 END_PROFILE(SMBmkdir);
3312 return ERROR_NT(status);
3315 RESOLVE_DFSPATH(directory, conn, inbuf, outbuf);
3317 status = mkdir_internal(conn, directory);
3318 if (!NT_STATUS_IS_OK(status)) {
3319 END_PROFILE(SMBmkdir);
3320 return ERROR_NT(status);
3323 outsize = set_message(outbuf,0,0,True);
3325 DEBUG( 3, ( "mkdir %s ret=%d\n", directory, outsize ) );
3327 END_PROFILE(SMBmkdir);
3331 /****************************************************************************
3332 Static function used by reply_rmdir to delete an entire directory
3333 tree recursively. Return False on ok, True on fail.
3334 ****************************************************************************/
3336 static BOOL recursive_rmdir(connection_struct *conn, char *directory)
3338 const char *dname = NULL;
3340 void *dirptr = OpenDir(conn, directory, False);
3345 while((dname = ReadDirName(dirptr))) {
3349 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
3352 /* Construct the full name. */
3353 if(strlen(directory) + strlen(dname) + 1 >= sizeof(fullname)) {
3359 pstrcpy(fullname, directory);
3360 pstrcat(fullname, "/");
3361 pstrcat(fullname, dname);
3363 if(SMB_VFS_LSTAT(conn,fullname, &st) != 0) {
3368 if(st.st_mode & S_IFDIR) {
3369 if(recursive_rmdir(conn, fullname)!=0) {
3373 if(SMB_VFS_RMDIR(conn,fullname) != 0) {
3377 } else if(SMB_VFS_UNLINK(conn,fullname) != 0) {
3386 /****************************************************************************
3387 The internals of the rmdir code - called elsewhere.
3388 ****************************************************************************/
3390 BOOL rmdir_internals(connection_struct *conn, char *directory)
3394 ok = (SMB_VFS_RMDIR(conn,directory) == 0);
3395 if(!ok && ((errno == ENOTEMPTY)||(errno == EEXIST)) && lp_veto_files(SNUM(conn))) {
3397 * Check to see if the only thing in this directory are
3398 * vetoed files/directories. If so then delete them and
3399 * retry. If we fail to delete any of them (and we *don't*
3400 * do a recursive delete) then fail the rmdir.
3402 BOOL all_veto_files = True;
3404 void *dirptr = OpenDir(conn, directory, False);
3406 if(dirptr != NULL) {
3407 int dirpos = TellDir(dirptr);
3408 while ((dname = ReadDirName(dirptr))) {
3409 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
3411 if(!IS_VETO_PATH(conn, dname)) {
3412 all_veto_files = False;
3417 if(all_veto_files) {
3418 SeekDir(dirptr,dirpos);
3419 while ((dname = ReadDirName(dirptr))) {
3423 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
3426 /* Construct the full name. */
3427 if(strlen(directory) + strlen(dname) + 1 >= sizeof(fullname)) {
3432 pstrcpy(fullname, directory);
3433 pstrcat(fullname, "/");
3434 pstrcat(fullname, dname);
3436 if(SMB_VFS_LSTAT(conn,fullname, &st) != 0)
3438 if(st.st_mode & S_IFDIR) {
3439 if(lp_recursive_veto_delete(SNUM(conn))) {
3440 if(recursive_rmdir(conn, fullname) != 0)
3443 if(SMB_VFS_RMDIR(conn,fullname) != 0)
3445 } else if(SMB_VFS_UNLINK(conn,fullname) != 0)
3449 /* Retry the rmdir */
3450 ok = (SMB_VFS_RMDIR(conn,directory) == 0);
3460 DEBUG(3,("rmdir_internals: couldn't remove directory %s : %s\n", directory,strerror(errno)));
3465 /****************************************************************************
3467 ****************************************************************************/
3469 int reply_rmdir(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3474 BOOL bad_path = False;
3475 SMB_STRUCT_STAT sbuf;
3477 START_PROFILE(SMBrmdir);
3479 srvstr_get_path(inbuf, directory, smb_buf(inbuf) + 1, sizeof(directory), 0, STR_TERMINATE, &status, False);
3480 if (!NT_STATUS_IS_OK(status)) {
3481 END_PROFILE(SMBrmdir);
3482 return ERROR_NT(status);
3485 RESOLVE_DFSPATH(directory, conn, inbuf, outbuf)
3487 unix_convert(directory,conn, NULL,&bad_path,&sbuf);
3489 END_PROFILE(SMBrmdir);
3490 return ERROR_NT(NT_STATUS_OBJECT_PATH_NOT_FOUND);
3493 if (check_name(directory,conn)) {
3494 dptr_closepath(directory,SVAL(inbuf,smb_pid));
3495 ok = rmdir_internals(conn, directory);
3499 END_PROFILE(SMBrmdir);
3500 return set_bad_path_error(errno, bad_path, outbuf, ERRDOS, ERRbadpath);
3503 outsize = set_message(outbuf,0,0,True);
3505 DEBUG( 3, ( "rmdir %s\n", directory ) );
3507 END_PROFILE(SMBrmdir);
3511 /*******************************************************************
3512 Resolve wildcards in a filename rename.
3513 Note that name is in UNIX charset and thus potentially can be more
3514 than fstring buffer (255 bytes) especially in default UTF-8 case.
3515 Therefore, we use pstring inside and all calls should ensure that
3516 name2 is at least pstring-long (they do already)
3517 ********************************************************************/
3519 static BOOL resolve_wildcards(const char *name1, char *name2)
3521 pstring root1,root2;
3523 char *p,*p2, *pname1, *pname2;
3524 int available_space, actual_space;
3527 pname1 = strrchr_m(name1,'/');
3528 pname2 = strrchr_m(name2,'/');
3530 if (!pname1 || !pname2)
3533 pstrcpy(root1,pname1);
3534 pstrcpy(root2,pname2);
3535 p = strrchr_m(root1,'.');
3542 p = strrchr_m(root2,'.');
3556 } else if (*p2 == '*') {
3572 } else if (*p2 == '*') {
3582 available_space = sizeof(pstring) - PTR_DIFF(pname2, name2);
3585 actual_space = snprintf(pname2, available_space - 1, "%s.%s", root2, ext2);
3586 if (actual_space >= available_space - 1) {
3587 DEBUG(1,("resolve_wildcards: can't fit resolved name into specified buffer (overrun by %d bytes)\n",
3588 actual_space - available_space));
3591 pstrcpy_base(pname2, root2, name2);
3597 /****************************************************************************
3598 Ensure open files have their names updates.
3599 ****************************************************************************/
3601 static void rename_open_files(connection_struct *conn, SMB_DEV_T dev, SMB_INO_T inode, char *newname)
3604 BOOL did_rename = False;
3606 for(fsp = file_find_di_first(dev, inode); fsp; fsp = file_find_di_next(fsp)) {
3607 DEBUG(10,("rename_open_files: renaming file fnum %d (dev = %x, inode = %.0f) from %s -> %s\n",
3608 fsp->fnum, (unsigned int)fsp->dev, (double)fsp->inode,
3609 fsp->fsp_name, newname ));
3610 string_set(&fsp->fsp_name, newname);
3615 DEBUG(10,("rename_open_files: no open files on dev %x, inode %.0f for %s\n",
3616 (unsigned int)dev, (double)inode, newname ));
3619 /****************************************************************************
3620 Rename an open file - given an fsp.
3621 ****************************************************************************/
3623 NTSTATUS rename_internals_fsp(connection_struct *conn, files_struct *fsp, char *newname, uint16 attrs, BOOL replace_if_exists)
3625 SMB_STRUCT_STAT sbuf;
3626 BOOL bad_path = False;
3627 pstring newname_last_component;
3628 NTSTATUS error = NT_STATUS_OK;
3633 rcdest = unix_convert(newname,conn,newname_last_component,&bad_path,&sbuf);
3635 /* Quick check for "." and ".." */
3636 if (!bad_path && newname_last_component[0] == '.') {
3637 if (!newname_last_component[1] || (newname_last_component[1] == '.' && !newname_last_component[2])) {
3638 return NT_STATUS_ACCESS_DENIED;
3641 if (!rcdest && bad_path) {
3642 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
3645 /* Ensure newname contains a '/' */
3646 if(strrchr_m(newname,'/') == 0) {
3649 pstrcpy(tmpstr, "./");
3650 pstrcat(tmpstr, newname);
3651 pstrcpy(newname, tmpstr);
3655 * Check for special case with case preserving and not
3656 * case sensitive. If the old last component differs from the original
3657 * last component only by case, then we should allow
3658 * the rename (user is trying to change the case of the
3662 if((conn->case_sensitive == False) && (conn->case_preserve == True) &&
3663 strequal(newname, fsp->fsp_name)) {
3665 pstring newname_modified_last_component;
3668 * Get the last component of the modified name.
3669 * Note that we guarantee that newname contains a '/'
3672 p = strrchr_m(newname,'/');
3673 pstrcpy(newname_modified_last_component,p+1);
3675 if(strcsequal(newname_modified_last_component,
3676 newname_last_component) == False) {
3678 * Replace the modified last component with
3681 pstrcpy(p+1, newname_last_component);
3686 * If the src and dest names are identical - including case,
3687 * don't do the rename, just return success.
3690 if (strcsequal(fsp->fsp_name, newname)) {
3691 DEBUG(3,("rename_internals_fsp: identical names in rename %s - returning success\n",
3693 return NT_STATUS_OK;
3696 dest_exists = vfs_object_exist(conn,newname,NULL);
3698 if(!replace_if_exists && dest_exists) {
3699 DEBUG(3,("rename_internals_fsp: dest exists doing rename %s -> %s\n",
3700 fsp->fsp_name,newname));
3701 return NT_STATUS_OBJECT_NAME_COLLISION;
3704 error = can_rename(newname,conn,attrs,&sbuf);
3706 if (dest_exists && !NT_STATUS_IS_OK(error)) {
3707 DEBUG(3,("rename_internals: Error %s rename %s -> %s\n",
3708 nt_errstr(error), fsp->fsp_name,newname));
3709 if (NT_STATUS_EQUAL(error,NT_STATUS_SHARING_VIOLATION))
3710 error = NT_STATUS_ACCESS_DENIED;
3714 if(SMB_VFS_RENAME(conn,fsp->fsp_name, newname) == 0) {
3715 DEBUG(3,("rename_internals_fsp: succeeded doing rename on %s -> %s\n",
3716 fsp->fsp_name,newname));
3717 rename_open_files(conn, fsp->dev, fsp->inode, newname);
3718 return NT_STATUS_OK;
3721 if (errno == ENOTDIR || errno == EISDIR)
3722 error = NT_STATUS_OBJECT_NAME_COLLISION;
3724 error = map_nt_error_from_unix(errno);
3726 DEBUG(3,("rename_internals_fsp: Error %s rename %s -> %s\n",
3727 nt_errstr(error), fsp->fsp_name,newname));
3732 /****************************************************************************
3733 The guts of the rename command, split out so it may be called by the NT SMB
3735 ****************************************************************************/
3737 NTSTATUS rename_internals(connection_struct *conn, char *name, char *newname, uint16 attrs, BOOL replace_if_exists)
3741 pstring last_component_src;
3742 pstring last_component_dest;
3745 BOOL bad_path_src = False;
3746 BOOL bad_path_dest = False;
3748 NTSTATUS error = NT_STATUS_OK;
3751 SMB_STRUCT_STAT sbuf1, sbuf2;
3753 *directory = *mask = 0;
3758 rc = unix_convert(name,conn,last_component_src,&bad_path_src,&sbuf1);
3759 if (!rc && bad_path_src) {
3760 if (ms_has_wild(last_component_src))
3761 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
3762 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
3765 /* Quick check for "." and ".." */
3766 if (last_component_src[0] == '.') {
3767 if (!last_component_src[1] || (last_component_src[1] == '.' && !last_component_src[2])) {
3768 return NT_STATUS_OBJECT_NAME_INVALID;
3772 rcdest = unix_convert(newname,conn,last_component_dest,&bad_path_dest,&sbuf2);
3774 /* Quick check for "." and ".." */
3775 if (last_component_dest[0] == '.') {
3776 if (!last_component_dest[1] || (last_component_dest[1] == '.' && !last_component_dest[2])) {
3777 return NT_STATUS_OBJECT_NAME_INVALID;
3782 * Split the old name into directory and last component
3783 * strings. Note that unix_convert may have stripped off a
3784 * leading ./ from both name and newname if the rename is
3785 * at the root of the share. We need to make sure either both
3786 * name and newname contain a / character or neither of them do
3787 * as this is checked in resolve_wildcards().
3790 p = strrchr_m(name,'/');
3792 pstrcpy(directory,".");
3796 pstrcpy(directory,name);
3798 *p = '/'; /* Replace needed for exceptional test below. */
3802 * We should only check the mangled cache
3803 * here if unix_convert failed. This means
3804 * that the path in 'mask' doesn't exist
3805 * on the file system and so we need to look
3806 * for a possible mangle. This patch from
3807 * Tine Smukavec <valentin.smukavec@hermes.si>.
3810 if (!rc && mangle_is_mangled(mask))
3811 mangle_check_cache( mask, sizeof(pstring)-1 );
3813 has_wild = ms_has_wild(mask);
3817 * No wildcards - just process the one file.
3819 BOOL is_short_name = mangle_is_8_3(name, True);
3821 /* Add a terminating '/' to the directory name. */
3822 pstrcat(directory,"/");
3823 pstrcat(directory,mask);
3825 /* Ensure newname contains a '/' also */
3826 if(strrchr_m(newname,'/') == 0) {
3829 pstrcpy(tmpstr, "./");
3830 pstrcat(tmpstr, newname);
3831 pstrcpy(newname, tmpstr);
3834 DEBUG(3,("rename_internals: case_sensitive = %d, case_preserve = %d, short case preserve = %d, \
3835 directory = %s, newname = %s, last_component_dest = %s, is_8_3 = %d\n",
3836 conn->case_sensitive, conn->case_preserve, conn->short_case_preserve, directory,
3837 newname, last_component_dest, is_short_name));
3840 * Check for special case with case preserving and not
3841 * case sensitive, if directory and newname are identical,
3842 * and the old last component differs from the original
3843 * last component only by case, then we should allow
3844 * the rename (user is trying to change the case of the
3847 if((conn->case_sensitive == False) &&
3848 (((conn->case_preserve == True) &&
3849 (is_short_name == False)) ||
3850 ((conn->short_case_preserve == True) &&
3851 (is_short_name == True))) &&
3852 strcsequal(directory, newname)) {
3853 pstring modified_last_component;
3856 * Get the last component of the modified name.
3857 * Note that we guarantee that newname contains a '/'
3860 p = strrchr_m(newname,'/');
3861 pstrcpy(modified_last_component,p+1);
3863 if(strcsequal(modified_last_component,
3864 last_component_dest) == False) {
3866 * Replace the modified last component with
3869 pstrcpy(p+1, last_component_dest);
3873 resolve_wildcards(directory,newname);
3876 * The source object must exist.
3879 if (!vfs_object_exist(conn, directory, &sbuf1)) {
3880 DEBUG(3,("rename_internals: source doesn't exist doing rename %s -> %s\n",
3881 directory,newname));
3883 if (errno == ENOTDIR || errno == EISDIR || errno == ENOENT) {
3885 * Must return different errors depending on whether the parent
3886 * directory existed or not.
3889 p = strrchr_m(directory, '/');
3891 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
3893 if (vfs_object_exist(conn, directory, NULL))
3894 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
3895 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
3897 error = map_nt_error_from_unix(errno);
3898 DEBUG(3,("rename_internals: Error %s rename %s -> %s\n",
3899 nt_errstr(error), directory,newname));
3904 if (!rcdest && bad_path_dest) {
3905 if (ms_has_wild(last_component_dest))
3906 return NT_STATUS_OBJECT_NAME_INVALID;
3907 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
3910 error = can_rename(directory,conn,attrs,&sbuf1);
3912 if (!NT_STATUS_IS_OK(error)) {
3913 DEBUG(3,("rename_internals: Error %s rename %s -> %s\n",
3914 nt_errstr(error), directory,newname));
3919 * If the src and dest names are identical - including case,
3920 * don't do the rename, just return success.
3923 if (strcsequal(directory, newname)) {
3924 rename_open_files(conn, sbuf1.st_dev, sbuf1.st_ino, newname);
3925 DEBUG(3,("rename_internals: identical names in rename %s - returning success\n", directory));
3926 return NT_STATUS_OK;
3929 if(!replace_if_exists && vfs_object_exist(conn,newname,NULL)) {
3930 DEBUG(3,("rename_internals: dest exists doing rename %s -> %s\n",
3931 directory,newname));
3932 return NT_STATUS_OBJECT_NAME_COLLISION;
3935 if(SMB_VFS_RENAME(conn,directory, newname) == 0) {
3936 DEBUG(3,("rename_internals: succeeded doing rename on %s -> %s\n",
3937 directory,newname));
3938 rename_open_files(conn, sbuf1.st_dev, sbuf1.st_ino, newname);
3939 return NT_STATUS_OK;
3942 if (errno == ENOTDIR || errno == EISDIR)
3943 error = NT_STATUS_OBJECT_NAME_COLLISION;
3945 error = map_nt_error_from_unix(errno);
3947 DEBUG(3,("rename_internals: Error %s rename %s -> %s\n",
3948 nt_errstr(error), directory,newname));
3953 * Wildcards - process each file that matches.
3955 void *dirptr = NULL;
3959 if (check_name(directory,conn))
3960 dirptr = OpenDir(conn, directory, True);
3963 error = NT_STATUS_NO_SUCH_FILE;
3964 /* Was error = NT_STATUS_OBJECT_NAME_NOT_FOUND; - gentest fix. JRA */
3966 if (strequal(mask,"????????.???"))
3969 while ((dname = ReadDirName(dirptr))) {
3971 BOOL sysdir_entry = False;
3973 pstrcpy(fname,dname);
3975 /* Quick check for "." and ".." */
3976 if (fname[0] == '.') {
3977 if (!fname[1] || (fname[1] == '.' && !fname[2])) {
3979 sysdir_entry = True;
3986 if(!mask_match(fname, mask, conn->case_sensitive))
3990 error = NT_STATUS_OBJECT_NAME_INVALID;
3994 error = NT_STATUS_ACCESS_DENIED;
3995 slprintf(fname,sizeof(fname)-1,"%s/%s",directory,dname);
3996 if (!vfs_object_exist(conn, fname, &sbuf1)) {
3997 error = NT_STATUS_OBJECT_NAME_NOT_FOUND;
3998 DEBUG(6,("rename %s failed. Error %s\n", fname, nt_errstr(error)));
4001 error = can_rename(fname,conn,attrs,&sbuf1);
4002 if (!NT_STATUS_IS_OK(error)) {
4003 DEBUG(6,("rename %s refused\n", fname));
4006 pstrcpy(destname,newname);
4008 if (!resolve_wildcards(fname,destname)) {
4009 DEBUG(6,("resolve_wildcards %s %s failed\n",
4014 if (strcsequal(fname,destname)) {
4015 rename_open_files(conn, sbuf1.st_dev, sbuf1.st_ino, newname);
4016 DEBUG(3,("rename_internals: identical names in wildcard rename %s - success\n", fname));
4018 error = NT_STATUS_OK;
4022 if (!replace_if_exists &&
4023 vfs_file_exist(conn,destname, NULL)) {
4024 DEBUG(6,("file_exist %s\n", destname));
4025 error = NT_STATUS_OBJECT_NAME_COLLISION;
4029 if (!SMB_VFS_RENAME(conn,fname,destname)) {
4030 rename_open_files(conn, sbuf1.st_dev, sbuf1.st_ino, newname);
4032 error = NT_STATUS_OK;
4034 DEBUG(3,("rename_internals: doing rename on %s -> %s\n",fname,destname));
4039 if (!NT_STATUS_EQUAL(error,NT_STATUS_NO_SUCH_FILE)) {
4040 if (!rcdest && bad_path_dest) {
4041 if (ms_has_wild(last_component_dest))
4042 return NT_STATUS_OBJECT_NAME_INVALID;
4043 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
4048 if (count == 0 && NT_STATUS_IS_OK(error)) {
4049 error = map_nt_error_from_unix(errno);
4055 /****************************************************************************
4057 ****************************************************************************/
4059 int reply_mv(connection_struct *conn, char *inbuf,char *outbuf, int dum_size,
4066 uint16 attrs = SVAL(inbuf,smb_vwv0);
4069 START_PROFILE(SMBmv);
4071 p = smb_buf(inbuf) + 1;
4072 p += srvstr_get_path(inbuf, name, p, sizeof(name), 0, STR_TERMINATE, &status, True);
4073 if (!NT_STATUS_IS_OK(status)) {
4075 return ERROR_NT(status);
4078 p += srvstr_get_path(inbuf, newname, p, sizeof(newname), 0, STR_TERMINATE, &status, True);
4079 if (!NT_STATUS_IS_OK(status)) {
4081 return ERROR_NT(status);
4084 RESOLVE_DFSPATH(name, conn, inbuf, outbuf);
4085 RESOLVE_DFSPATH(newname, conn, inbuf, outbuf);
4087 DEBUG(3,("reply_mv : %s -> %s\n",name,newname));
4089 status = rename_internals(conn, name, newname, attrs, False);
4090 if (!NT_STATUS_IS_OK(status)) {
4092 if (open_was_deferred(SVAL(inbuf,smb_mid))) {
4093 /* We have re-scheduled this call. */
4094 clear_cached_errors();
4097 return ERROR_NT(status);
4101 * Win2k needs a changenotify request response before it will
4102 * update after a rename..
4104 process_pending_change_notify_queue((time_t)0);
4105 outsize = set_message(outbuf,0,0,True);
4111 /*******************************************************************
4112 Copy a file as part of a reply_copy.
4113 ******************************************************************/
4115 static BOOL copy_file(char *src,char *dest1,connection_struct *conn, int ofun,
4116 int count,BOOL target_is_directory, int *err_ret)
4119 SMB_STRUCT_STAT src_sbuf, sbuf2;
4121 files_struct *fsp1,*fsp2;
4127 pstrcpy(dest,dest1);
4128 if (target_is_directory) {
4129 char *p = strrchr_m(src,'/');
4138 if (!vfs_file_exist(conn,src,&src_sbuf))
4141 fsp1 = open_file_shared(conn,src,&src_sbuf,SET_DENY_MODE(DENY_NONE)|SET_OPEN_MODE(DOS_OPEN_RDONLY),
4142 (FILE_FAIL_IF_NOT_EXIST|FILE_EXISTS_OPEN),FILE_ATTRIBUTE_NORMAL,INTERNAL_OPEN_ONLY,
4148 if (!target_is_directory && count)
4149 ofun = FILE_EXISTS_OPEN;
4151 dosattrs = dos_mode(conn, src, &src_sbuf);
4152 if (SMB_VFS_STAT(conn,dest,&sbuf2) == -1)
4153 ZERO_STRUCTP(&sbuf2);
4155 fsp2 = open_file_shared(conn,dest,&sbuf2,SET_DENY_MODE(DENY_NONE)|SET_OPEN_MODE(DOS_OPEN_WRONLY),
4156 ofun,dosattrs,INTERNAL_OPEN_ONLY,&Access,&action);
4159 close_file(fsp1,False);
4163 if ((ofun&3) == 1) {
4164 if(SMB_VFS_LSEEK(fsp2,fsp2->fd,0,SEEK_END) == -1) {
4165 DEBUG(0,("copy_file: error - vfs lseek returned error %s\n", strerror(errno) ));
4167 * Stop the copy from occurring.
4170 src_sbuf.st_size = 0;
4174 if (src_sbuf.st_size)
4175 ret = vfs_transfer_file(fsp1, fsp2, src_sbuf.st_size);
4177 close_file(fsp1,False);
4179 /* Ensure the modtime is set correctly on the destination file. */
4180 fsp2->pending_modtime = src_sbuf.st_mtime;
4183 * As we are opening fsp1 read-only we only expect
4184 * an error on close on fsp2 if we are out of space.
4185 * Thus we don't look at the error return from the
4188 *err_ret = close_file(fsp2,False);
4190 return(ret == (SMB_OFF_T)src_sbuf.st_size);
4193 /****************************************************************************
4194 Reply to a file copy.
4195 ****************************************************************************/
4197 int reply_copy(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
4202 pstring mask,newname;
4205 int error = ERRnoaccess;
4209 int tid2 = SVAL(inbuf,smb_vwv0);
4210 int ofun = SVAL(inbuf,smb_vwv1);
4211 int flags = SVAL(inbuf,smb_vwv2);
4212 BOOL target_is_directory=False;
4213 BOOL bad_path1 = False;
4214 BOOL bad_path2 = False;
4216 SMB_STRUCT_STAT sbuf1, sbuf2;
4219 START_PROFILE(SMBcopy);
4221 *directory = *mask = 0;
4224 p += srvstr_get_path(inbuf, name, p, sizeof(name), 0, STR_TERMINATE, &status, True);
4225 if (!NT_STATUS_IS_OK(status)) {
4226 END_PROFILE(SMBcopy);
4227 return ERROR_NT(status);
4229 p += srvstr_get_path(inbuf, newname, p, sizeof(newname), 0, STR_TERMINATE, &status, True);
4230 if (!NT_STATUS_IS_OK(status)) {
4231 END_PROFILE(SMBcopy);
4232 return ERROR_NT(status);
4235 DEBUG(3,("reply_copy : %s -> %s\n",name,newname));
4237 if (tid2 != conn->cnum) {
4238 /* can't currently handle inter share copies XXXX */
4239 DEBUG(3,("Rejecting inter-share copy\n"));
4240 END_PROFILE(SMBcopy);
4241 return ERROR_DOS(ERRSRV,ERRinvdevice);
4244 RESOLVE_DFSPATH(name, conn, inbuf, outbuf);
4245 RESOLVE_DFSPATH(newname, conn, inbuf, outbuf);
4247 rc = unix_convert(name,conn,0,&bad_path1,&sbuf1);
4248 unix_convert(newname,conn,0,&bad_path2,&sbuf2);
4250 target_is_directory = VALID_STAT_OF_DIR(sbuf2);
4252 if ((flags&1) && target_is_directory) {
4253 END_PROFILE(SMBcopy);
4254 return ERROR_DOS(ERRDOS,ERRbadfile);
4257 if ((flags&2) && !target_is_directory) {
4258 END_PROFILE(SMBcopy);
4259 return ERROR_DOS(ERRDOS,ERRbadpath);
4262 if ((flags&(1<<5)) && VALID_STAT_OF_DIR(sbuf1)) {
4263 /* wants a tree copy! XXXX */
4264 DEBUG(3,("Rejecting tree copy\n"));
4265 END_PROFILE(SMBcopy);
4266 return ERROR_DOS(ERRSRV,ERRerror);
4269 p = strrchr_m(name,'/');
4271 pstrcpy(directory,"./");
4275 pstrcpy(directory,name);
4280 * We should only check the mangled cache
4281 * here if unix_convert failed. This means
4282 * that the path in 'mask' doesn't exist
4283 * on the file system and so we need to look
4284 * for a possible mangle. This patch from
4285 * Tine Smukavec <valentin.smukavec@hermes.si>.
4288 if (!rc && mangle_is_mangled(mask))
4289 mangle_check_cache( mask, sizeof(pstring)-1 );
4291 has_wild = ms_has_wild(mask);
4294 pstrcat(directory,"/");
4295 pstrcat(directory,mask);
4296 if (resolve_wildcards(directory,newname) &&
4297 copy_file(directory,newname,conn,ofun, count,target_is_directory,&err))
4301 END_PROFILE(SMBcopy);
4302 return(UNIXERROR(ERRHRD,ERRgeneral));
4305 exists = vfs_file_exist(conn,directory,NULL);
4308 void *dirptr = NULL;
4312 if (check_name(directory,conn))
4313 dirptr = OpenDir(conn, directory, True);
4318 if (strequal(mask,"????????.???"))
4321 while ((dname = ReadDirName(dirptr))) {
4323 pstrcpy(fname,dname);
4325 if(!mask_match(fname, mask, conn->case_sensitive))
4328 error = ERRnoaccess;
4329 slprintf(fname,sizeof(fname)-1, "%s/%s",directory,dname);
4330 pstrcpy(destname,newname);
4331 if (resolve_wildcards(fname,destname) &&
4332 copy_file(fname,destname,conn,ofun,
4333 count,target_is_directory,&err))
4335 DEBUG(3,("reply_copy : doing copy on %s -> %s\n",fname,destname));
4343 /* Error on close... */
4345 END_PROFILE(SMBcopy);
4346 return(UNIXERROR(ERRHRD,ERRgeneral));
4350 END_PROFILE(SMBcopy);
4351 return ERROR_DOS(ERRDOS,error);
4353 if((errno == ENOENT) && (bad_path1 || bad_path2)) {
4354 unix_ERR_class = ERRDOS;
4355 unix_ERR_code = ERRbadpath;
4357 END_PROFILE(SMBcopy);
4358 return(UNIXERROR(ERRDOS,error));
4362 outsize = set_message(outbuf,1,0,True);
4363 SSVAL(outbuf,smb_vwv0,count);
4365 END_PROFILE(SMBcopy);
4369 /****************************************************************************
4371 ****************************************************************************/
4373 int reply_setdir(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
4381 START_PROFILE(pathworks_setdir);
4384 if (!CAN_SETDIR(snum)) {
4385 END_PROFILE(pathworks_setdir);
4386 return ERROR_DOS(ERRDOS,ERRnoaccess);
4389 srvstr_get_path(inbuf, newdir, smb_buf(inbuf) + 1, sizeof(newdir), 0, STR_TERMINATE, &status, False);
4390 if (!NT_STATUS_IS_OK(status)) {
4391 END_PROFILE(pathworks_setdir);
4392 return ERROR_NT(status);
4395 if (strlen(newdir) == 0) {
4398 ok = vfs_directory_exist(conn,newdir,NULL);
4400 string_set(&conn->connectpath,newdir);
4404 END_PROFILE(pathworks_setdir);
4405 return ERROR_DOS(ERRDOS,ERRbadpath);
4408 outsize = set_message(outbuf,0,0,True);
4409 SCVAL(outbuf,smb_reh,CVAL(inbuf,smb_reh));
4411 DEBUG(3,("setdir %s\n", newdir));
4413 END_PROFILE(pathworks_setdir);
4417 /****************************************************************************
4418 Get a lock pid, dealing with large count requests.
4419 ****************************************************************************/
4421 uint16 get_lock_pid( char *data, int data_offset, BOOL large_file_format)
4423 if(!large_file_format)
4424 return SVAL(data,SMB_LPID_OFFSET(data_offset));
4426 return SVAL(data,SMB_LARGE_LPID_OFFSET(data_offset));
4429 /****************************************************************************
4430 Get a lock count, dealing with large count requests.
4431 ****************************************************************************/
4433 SMB_BIG_UINT get_lock_count( char *data, int data_offset, BOOL large_file_format)
4435 SMB_BIG_UINT count = 0;
4437 if(!large_file_format) {
4438 count = (SMB_BIG_UINT)IVAL(data,SMB_LKLEN_OFFSET(data_offset));
4441 #if defined(HAVE_LONGLONG)
4442 count = (((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset))) << 32) |
4443 ((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(data_offset)));
4444 #else /* HAVE_LONGLONG */
4447 * NT4.x seems to be broken in that it sends large file (64 bit)
4448 * lockingX calls even if the CAP_LARGE_FILES was *not*
4449 * negotiated. For boxes without large unsigned ints truncate the
4450 * lock count by dropping the top 32 bits.
4453 if(IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset)) != 0) {
4454 DEBUG(3,("get_lock_count: truncating lock count (high)0x%x (low)0x%x to just low count.\n",
4455 (unsigned int)IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset)),
4456 (unsigned int)IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(data_offset)) ));
4457 SIVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset),0);
4460 count = (SMB_BIG_UINT)IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(data_offset));
4461 #endif /* HAVE_LONGLONG */
4467 #if !defined(HAVE_LONGLONG)
4468 /****************************************************************************
4469 Pathetically try and map a 64 bit lock offset into 31 bits. I hate Windows :-).
4470 ****************************************************************************/
4472 static uint32 map_lock_offset(uint32 high, uint32 low)
4476 uint32 highcopy = high;
4479 * Try and find out how many significant bits there are in high.
4482 for(i = 0; highcopy; i++)
4486 * We use 31 bits not 32 here as POSIX
4487 * lock offsets may not be negative.
4490 mask = (~0) << (31 - i);
4493 return 0; /* Fail. */
4499 #endif /* !defined(HAVE_LONGLONG) */
4501 /****************************************************************************
4502 Get a lock offset, dealing with large offset requests.
4503 ****************************************************************************/
4505 SMB_BIG_UINT get_lock_offset( char *data, int data_offset, BOOL large_file_format, BOOL *err)
4507 SMB_BIG_UINT offset = 0;
4511 if(!large_file_format) {
4512 offset = (SMB_BIG_UINT)IVAL(data,SMB_LKOFF_OFFSET(data_offset));
4515 #if defined(HAVE_LONGLONG)
4516 offset = (((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset))) << 32) |
4517 ((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset)));
4518 #else /* HAVE_LONGLONG */
4521 * NT4.x seems to be broken in that it sends large file (64 bit)
4522 * lockingX calls even if the CAP_LARGE_FILES was *not*
4523 * negotiated. For boxes without large unsigned ints mangle the
4524 * lock offset by mapping the top 32 bits onto the lower 32.
4527 if(IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset)) != 0) {
4528 uint32 low = IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset));
4529 uint32 high = IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset));
4532 if((new_low = map_lock_offset(high, low)) == 0) {
4534 return (SMB_BIG_UINT)-1;
4537 DEBUG(3,("get_lock_offset: truncating lock offset (high)0x%x (low)0x%x to offset 0x%x.\n",
4538 (unsigned int)high, (unsigned int)low, (unsigned int)new_low ));
4539 SIVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset),0);
4540 SIVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset),new_low);
4543 offset = (SMB_BIG_UINT)IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset));
4544 #endif /* HAVE_LONGLONG */
4550 /****************************************************************************
4551 Reply to a lockingX request.
4552 ****************************************************************************/
4554 int reply_lockingX(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
4556 files_struct *fsp = file_fsp(inbuf,smb_vwv2);
4557 unsigned char locktype = CVAL(inbuf,smb_vwv3);
4558 unsigned char oplocklevel = CVAL(inbuf,smb_vwv3+1);
4559 uint16 num_ulocks = SVAL(inbuf,smb_vwv6);
4560 uint16 num_locks = SVAL(inbuf,smb_vwv7);
4561 SMB_BIG_UINT count = 0, offset = 0;
4563 int32 lock_timeout = IVAL(inbuf,smb_vwv4);
4566 BOOL large_file_format = (locktype & LOCKING_ANDX_LARGE_FILES)?True:False;
4568 BOOL my_lock_ctx = False;
4571 START_PROFILE(SMBlockingX);
4573 CHECK_FSP(fsp,conn);
4575 data = smb_buf(inbuf);
4577 if (locktype & LOCKING_ANDX_CHANGE_LOCKTYPE) {
4578 /* we don't support these - and CANCEL_LOCK makes w2k
4579 and XP reboot so I don't really want to be
4580 compatible! (tridge) */
4581 return ERROR_NT(NT_STATUS_UNSUCCESSFUL);
4584 if (locktype & LOCKING_ANDX_CANCEL_LOCK) {
4585 /* Need to make this like a cancel.... JRA. */
4586 return ERROR_NT(NT_STATUS_UNSUCCESSFUL);
4589 /* Check if this is an oplock break on a file
4590 we have granted an oplock on.
4592 if ((locktype & LOCKING_ANDX_OPLOCK_RELEASE)) {
4593 /* Client can insist on breaking to none. */
4594 BOOL break_to_none = (oplocklevel == 0);
4596 DEBUG(5,("reply_lockingX: oplock break reply (%u) from client for fnum = %d\n",
4597 (unsigned int)oplocklevel, fsp->fnum ));
4600 * Make sure we have granted an exclusive or batch oplock on this file.
4603 if(!EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type)) {
4604 DEBUG(0,("reply_lockingX: Error : oplock break from client for fnum = %d and \
4605 no oplock granted on this file (%s).\n", fsp->fnum, fsp->fsp_name));
4607 /* if this is a pure oplock break request then don't send a reply */
4608 if (num_locks == 0 && num_ulocks == 0) {
4609 END_PROFILE(SMBlockingX);
4612 END_PROFILE(SMBlockingX);
4613 return ERROR_DOS(ERRDOS,ERRlock);
4617 if (remove_oplock(fsp, break_to_none) == False) {
4618 DEBUG(0,("reply_lockingX: error in removing oplock on file %s\n",
4622 /* if this is a pure oplock break request then don't send a reply */
4623 if (num_locks == 0 && num_ulocks == 0) {
4624 /* Sanity check - ensure a pure oplock break is not a
4626 if(CVAL(inbuf,smb_vwv0) != 0xff)
4627 DEBUG(0,("reply_lockingX: Error : pure oplock break is a chained %d request !\n",
4628 (unsigned int)CVAL(inbuf,smb_vwv0) ));
4629 END_PROFILE(SMBlockingX);
4635 * We do this check *after* we have checked this is not a oplock break
4636 * response message. JRA.
4639 release_level_2_oplocks_on_change(fsp);
4641 /* Data now points at the beginning of the list
4642 of smb_unlkrng structs */
4643 for(i = 0; i < (int)num_ulocks; i++) {
4644 lock_pid = get_lock_pid( data, i, large_file_format);
4645 count = get_lock_count( data, i, large_file_format);
4646 offset = get_lock_offset( data, i, large_file_format, &err);
4649 * There is no error code marked "stupid client bug".... :-).
4652 END_PROFILE(SMBlockingX);
4653 return ERROR_DOS(ERRDOS,ERRnoaccess);
4656 DEBUG(10,("reply_lockingX: unlock start=%.0f, len=%.0f for pid %u, file %s\n",
4657 (double)offset, (double)count, (unsigned int)lock_pid, fsp->fsp_name ));
4659 status = do_unlock(fsp,conn,lock_pid,count,offset);
4660 if (NT_STATUS_V(status)) {
4661 END_PROFILE(SMBlockingX);
4662 return ERROR_NT(status);
4666 /* Setup the timeout in seconds. */
4668 lock_timeout = ((lock_timeout == -1) ? -1 : (lock_timeout+999)/1000);
4670 /* Now do any requested locks */
4671 data += ((large_file_format ? 20 : 10)*num_ulocks);
4673 /* Data now points at the beginning of the list
4674 of smb_lkrng structs */
4676 for(i = 0; i < (int)num_locks; i++) {
4677 lock_pid = get_lock_pid( data, i, large_file_format);
4678 count = get_lock_count( data, i, large_file_format);
4679 offset = get_lock_offset( data, i, large_file_format, &err);
4682 * There is no error code marked "stupid client bug".... :-).
4685 END_PROFILE(SMBlockingX);
4686 return ERROR_DOS(ERRDOS,ERRnoaccess);
4689 DEBUG(10,("reply_lockingX: lock start=%.0f, len=%.0f for pid %u, file %s timeout = %d\n",
4690 (double)offset, (double)count, (unsigned int)lock_pid,
4691 fsp->fsp_name, (int)lock_timeout ));
4693 status = do_lock_spin(fsp,conn,lock_pid, count,offset,
4694 ((locktype & 1) ? READ_LOCK : WRITE_LOCK), &my_lock_ctx);
4695 if (NT_STATUS_V(status)) {
4697 * Interesting fact found by IFSTEST /t LockOverlappedTest...
4698 * Even if it's our own lock context, we need to wait here as
4699 * there may be an unlock on the way.
4700 * So I removed a "&& !my_lock_ctx" from the following
4701 * if statement. JRA.
4703 if ((lock_timeout != 0) && lp_blocking_locks(SNUM(conn)) && ERROR_WAS_LOCK_DENIED(status)) {
4705 * A blocking lock was requested. Package up
4706 * this smb into a queued request and push it
4707 * onto the blocking lock queue.
4709 if(push_blocking_lock_request(inbuf, length, lock_timeout, i, lock_pid, offset, count)) {
4710 END_PROFILE(SMBlockingX);
4718 /* If any of the above locks failed, then we must unlock
4719 all of the previous locks (X/Open spec). */
4720 if (i != num_locks && num_locks != 0) {
4722 * Ensure we don't do a remove on the lock that just failed,
4723 * as under POSIX rules, if we have a lock already there, we
4724 * will delete it (and we shouldn't) .....
4726 for(i--; i >= 0; i--) {
4727 lock_pid = get_lock_pid( data, i, large_file_format);
4728 count = get_lock_count( data, i, large_file_format);
4729 offset = get_lock_offset( data, i, large_file_format, &err);
4732 * There is no error code marked "stupid client bug".... :-).
4735 END_PROFILE(SMBlockingX);
4736 return ERROR_DOS(ERRDOS,ERRnoaccess);
4739 do_unlock(fsp,conn,lock_pid,count,offset);
4741 END_PROFILE(SMBlockingX);
4742 return ERROR_NT(status);
4745 set_message(outbuf,2,0,True);
4747 DEBUG( 3, ( "lockingX fnum=%d type=%d num_locks=%d num_ulocks=%d\n",
4748 fsp->fnum, (unsigned int)locktype, num_locks, num_ulocks ) );
4750 END_PROFILE(SMBlockingX);
4751 return chain_reply(inbuf,outbuf,length,bufsize);
4754 /****************************************************************************
4755 Reply to a SMBreadbmpx (read block multiplex) request.
4756 ****************************************************************************/
4758 int reply_readbmpx(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
4769 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
4770 START_PROFILE(SMBreadBmpx);
4772 /* this function doesn't seem to work - disable by default */
4773 if (!lp_readbmpx()) {
4774 END_PROFILE(SMBreadBmpx);
4775 return ERROR_DOS(ERRSRV,ERRuseSTD);
4778 outsize = set_message(outbuf,8,0,True);
4780 CHECK_FSP(fsp,conn);
4783 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv1);
4784 maxcount = SVAL(inbuf,smb_vwv3);
4786 data = smb_buf(outbuf);
4787 pad = ((long)data)%4;
4792 max_per_packet = bufsize-(outsize+pad);
4796 if (is_locked(fsp,conn,(SMB_BIG_UINT)maxcount,(SMB_BIG_UINT)startpos, READ_LOCK)) {
4797 END_PROFILE(SMBreadBmpx);
4798 return ERROR_DOS(ERRDOS,ERRlock);
4802 size_t N = MIN(max_per_packet,tcount-total_read);
4804 nread = read_file(fsp,data,startpos,N);
4809 if (nread < (ssize_t)N)
4810 tcount = total_read + nread;
4812 set_message(outbuf,8,nread,False);
4813 SIVAL(outbuf,smb_vwv0,startpos);
4814 SSVAL(outbuf,smb_vwv2,tcount);
4815 SSVAL(outbuf,smb_vwv6,nread);
4816 SSVAL(outbuf,smb_vwv7,smb_offset(data,outbuf));
4818 if (!send_smb(smbd_server_fd(),outbuf))
4819 exit_server("reply_readbmpx: send_smb failed.");
4821 total_read += nread;
4823 } while (total_read < (ssize_t)tcount);
4825 END_PROFILE(SMBreadBmpx);
4829 /****************************************************************************
4830 Reply to a SMBsetattrE.
4831 ****************************************************************************/
4833 int reply_setattrE(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
4835 struct utimbuf unix_times;
4837 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
4838 START_PROFILE(SMBsetattrE);
4840 outsize = set_message(outbuf,0,0,True);
4842 if(!fsp || (fsp->conn != conn)) {
4843 END_PROFILE(SMBgetattrE);
4844 return ERROR_DOS(ERRDOS,ERRbadfid);
4848 * Convert the DOS times into unix times. Ignore create
4849 * time as UNIX can't set this.
4852 unix_times.actime = make_unix_date2(inbuf+smb_vwv3);
4853 unix_times.modtime = make_unix_date2(inbuf+smb_vwv5);
4856 * Patch from Ray Frush <frush@engr.colostate.edu>
4857 * Sometimes times are sent as zero - ignore them.
4860 if ((unix_times.actime == 0) && (unix_times.modtime == 0)) {
4861 /* Ignore request */
4862 if( DEBUGLVL( 3 ) ) {
4863 dbgtext( "reply_setattrE fnum=%d ", fsp->fnum);
4864 dbgtext( "ignoring zero request - not setting timestamps of 0\n" );
4866 END_PROFILE(SMBsetattrE);
4868 } else if ((unix_times.actime != 0) && (unix_times.modtime == 0)) {
4869 /* set modify time = to access time if modify time was 0 */
4870 unix_times.modtime = unix_times.actime;
4873 /* Set the date on this file */
4874 if(file_utime(conn, fsp->fsp_name, &unix_times)) {
4875 END_PROFILE(SMBsetattrE);
4876 return ERROR_DOS(ERRDOS,ERRnoaccess);
4879 DEBUG( 3, ( "reply_setattrE fnum=%d actime=%d modtime=%d\n",
4880 fsp->fnum, (int)unix_times.actime, (int)unix_times.modtime ) );
4882 END_PROFILE(SMBsetattrE);
4887 /* Back from the dead for OS/2..... JRA. */
4889 /****************************************************************************
4890 Reply to a SMBwritebmpx (write block multiplex primary) request.
4891 ****************************************************************************/
4893 int reply_writebmpx(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
4896 ssize_t nwritten = -1;
4903 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
4904 START_PROFILE(SMBwriteBmpx);
4906 CHECK_FSP(fsp,conn);
4910 tcount = SVAL(inbuf,smb_vwv1);
4911 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv3);
4912 write_through = BITSETW(inbuf+smb_vwv7,0);
4913 numtowrite = SVAL(inbuf,smb_vwv10);
4914 smb_doff = SVAL(inbuf,smb_vwv11);
4916 data = smb_base(inbuf) + smb_doff;
4918 /* If this fails we need to send an SMBwriteC response,
4919 not an SMBwritebmpx - set this up now so we don't forget */
4920 SCVAL(outbuf,smb_com,SMBwritec);
4922 if (is_locked(fsp,conn,(SMB_BIG_UINT)tcount,(SMB_BIG_UINT)startpos,WRITE_LOCK)) {
4923 END_PROFILE(SMBwriteBmpx);
4924 return(ERROR_DOS(ERRDOS,ERRlock));
4927 nwritten = write_file(fsp,data,startpos,numtowrite);
4929 if(lp_syncalways(SNUM(conn)) || write_through)
4930 sync_file(conn,fsp);
4932 if(nwritten < (ssize_t)numtowrite) {
4933 END_PROFILE(SMBwriteBmpx);
4934 return(UNIXERROR(ERRHRD,ERRdiskfull));
4937 /* If the maximum to be written to this file
4938 is greater than what we just wrote then set
4939 up a secondary struct to be attached to this
4940 fd, we will use this to cache error messages etc. */
4942 if((ssize_t)tcount > nwritten) {
4943 write_bmpx_struct *wbms;
4944 if(fsp->wbmpx_ptr != NULL)
4945 wbms = fsp->wbmpx_ptr; /* Use an existing struct */
4947 wbms = SMB_MALLOC_P(write_bmpx_struct);
4949 DEBUG(0,("Out of memory in reply_readmpx\n"));
4950 END_PROFILE(SMBwriteBmpx);
4951 return(ERROR_DOS(ERRSRV,ERRnoresource));
4953 wbms->wr_mode = write_through;
4954 wbms->wr_discard = False; /* No errors yet */
4955 wbms->wr_total_written = nwritten;
4956 wbms->wr_errclass = 0;
4958 fsp->wbmpx_ptr = wbms;
4961 /* We are returning successfully, set the message type back to
4963 SCVAL(outbuf,smb_com,SMBwriteBmpx);
4965 outsize = set_message(outbuf,1,0,True);
4967 SSVALS(outbuf,smb_vwv0,-1); /* We don't support smb_remaining */
4969 DEBUG( 3, ( "writebmpx fnum=%d num=%d wrote=%d\n",
4970 fsp->fnum, (int)numtowrite, (int)nwritten ) );
4972 if (write_through && tcount==nwritten) {
4973 /* We need to send both a primary and a secondary response */
4974 smb_setlen(outbuf,outsize - 4);
4975 if (!send_smb(smbd_server_fd(),outbuf))
4976 exit_server("reply_writebmpx: send_smb failed.");
4978 /* Now the secondary */
4979 outsize = set_message(outbuf,1,0,True);
4980 SCVAL(outbuf,smb_com,SMBwritec);
4981 SSVAL(outbuf,smb_vwv0,nwritten);
4984 END_PROFILE(SMBwriteBmpx);
4988 /****************************************************************************
4989 Reply to a SMBwritebs (write block multiplex secondary) request.
4990 ****************************************************************************/
4992 int reply_writebs(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
4995 ssize_t nwritten = -1;
5002 write_bmpx_struct *wbms;
5003 BOOL send_response = False;
5004 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
5005 START_PROFILE(SMBwriteBs);
5007 CHECK_FSP(fsp,conn);
5010 tcount = SVAL(inbuf,smb_vwv1);
5011 startpos = IVAL_TO_SMB_OFF_T(inbuf,smb_vwv2);
5012 numtowrite = SVAL(inbuf,smb_vwv6);
5013 smb_doff = SVAL(inbuf,smb_vwv7);
5015 data = smb_base(inbuf) + smb_doff;
5017 /* We need to send an SMBwriteC response, not an SMBwritebs */
5018 SCVAL(outbuf,smb_com,SMBwritec);
5020 /* This fd should have an auxiliary struct attached,
5021 check that it does */
5022 wbms = fsp->wbmpx_ptr;
5024 END_PROFILE(SMBwriteBs);
5028 /* If write through is set we can return errors, else we must cache them */
5029 write_through = wbms->wr_mode;
5031 /* Check for an earlier error */
5032 if(wbms->wr_discard) {
5033 END_PROFILE(SMBwriteBs);
5034 return -1; /* Just discard the packet */
5037 nwritten = write_file(fsp,data,startpos,numtowrite);
5039 if(lp_syncalways(SNUM(conn)) || write_through)
5040 sync_file(conn,fsp);
5042 if (nwritten < (ssize_t)numtowrite) {
5044 /* We are returning an error - we can delete the aux struct */
5047 fsp->wbmpx_ptr = NULL;
5048 END_PROFILE(SMBwriteBs);
5049 return(ERROR_DOS(ERRHRD,ERRdiskfull));
5051 END_PROFILE(SMBwriteBs);
5052 return(CACHE_ERROR(wbms,ERRHRD,ERRdiskfull));
5055 /* Increment the total written, if this matches tcount
5056 we can discard the auxiliary struct (hurrah !) and return a writeC */
5057 wbms->wr_total_written += nwritten;
5058 if(wbms->wr_total_written >= tcount) {
5059 if (write_through) {
5060 outsize = set_message(outbuf,1,0,True);
5061 SSVAL(outbuf,smb_vwv0,wbms->wr_total_written);
5062 send_response = True;
5066 fsp->wbmpx_ptr = NULL;
5070 END_PROFILE(SMBwriteBs);
5074 END_PROFILE(SMBwriteBs);
5078 /****************************************************************************
5079 Reply to a SMBgetattrE.
5080 ****************************************************************************/
5082 int reply_getattrE(connection_struct *conn, char *inbuf,char *outbuf, int size, int dum_buffsize)
5084 SMB_STRUCT_STAT sbuf;
5087 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
5088 START_PROFILE(SMBgetattrE);
5090 outsize = set_message(outbuf,11,0,True);
5092 if(!fsp || (fsp->conn != conn)) {
5093 END_PROFILE(SMBgetattrE);
5094 return ERROR_DOS(ERRDOS,ERRbadfid);
5097 /* Do an fstat on this file */
5098 if(fsp_stat(fsp, &sbuf)) {
5099 END_PROFILE(SMBgetattrE);
5100 return(UNIXERROR(ERRDOS,ERRnoaccess));
5103 mode = dos_mode(conn,fsp->fsp_name,&sbuf);
5106 * Convert the times into dos times. Set create
5107 * date to be last modify date as UNIX doesn't save
5111 put_dos_date2(outbuf,smb_vwv0,get_create_time(&sbuf,lp_fake_dir_create_times(SNUM(conn))));
5112 put_dos_date2(outbuf,smb_vwv2,sbuf.st_atime);
5113 put_dos_date2(outbuf,smb_vwv4,sbuf.st_mtime);
5116 SIVAL(outbuf,smb_vwv6,0);
5117 SIVAL(outbuf,smb_vwv8,0);
5119 uint32 allocation_size = get_allocation_size(fsp, &sbuf);
5120 SIVAL(outbuf,smb_vwv6,(uint32)sbuf.st_size);
5121 SIVAL(outbuf,smb_vwv8,allocation_size);
5123 SSVAL(outbuf,smb_vwv10, mode);
5125 DEBUG( 3, ( "reply_getattrE fnum=%d\n", fsp->fnum));
5127 END_PROFILE(SMBgetattrE);
git.samba.org / ira / wip.git / blob