2 Unix SMB/CIFS implementation.
3 service (connection) opening and closing
4 Copyright (C) Andrew Tridgell 1992-1998
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 extern userdom_struct current_user_info;
24 static bool canonicalize_connect_path(connection_struct *conn)
26 #ifdef REALPATH_TAKES_NULL
28 char *resolved_name = SMB_VFS_REALPATH(conn,conn->connectpath,NULL);
32 ret = set_conn_connectpath(conn,resolved_name);
33 SAFE_FREE(resolved_name);
36 char resolved_name_buf[PATH_MAX+1];
37 char *resolved_name = SMB_VFS_REALPATH(conn,conn->connectpath,resolved_name_buf);
41 return set_conn_connectpath(conn,resolved_name);
42 #endif /* REALPATH_TAKES_NULL */
45 /****************************************************************************
46 Ensure when setting connectpath it is a canonicalized (no ./ // or ../)
47 absolute path stating in / and not ending in /.
48 Observent people will notice a similarity between this and check_path_syntax :-).
49 ****************************************************************************/
51 bool set_conn_connectpath(connection_struct *conn, const char *connectpath)
55 const char *s = connectpath;
56 bool start_of_name_component = true;
58 destname = SMB_STRDUP(connectpath);
64 *d++ = '/'; /* Always start with root. */
68 /* Eat multiple '/' */
72 if ((d > destname + 1) && (*s != '\0')) {
75 start_of_name_component = True;
79 if (start_of_name_component) {
80 if ((s[0] == '.') && (s[1] == '.') && (s[2] == '/' || s[2] == '\0')) {
81 /* Uh oh - "/../" or "/..\0" ! */
83 /* Go past the ../ or .. */
87 s += 2; /* Go past the .. */
90 /* If we just added a '/' - delete it */
91 if ((d > destname) && (*(d-1) == '/')) {
96 /* Are we at the start ? Can't go back further if so. */
98 *d++ = '/'; /* Can't delete root */
101 /* Go back one level... */
102 /* Decrement d first as d points to the *next* char to write into. */
103 for (d--; d > destname; d--) {
108 /* We're still at the start of a name component, just the previous one. */
110 } else if ((s[0] == '.') && ((s[1] == '\0') || s[1] == '/')) {
111 /* Component of pathname can't be "." only - skip the '.' . */
125 /* Get the size of the next MB character. */
126 next_codepoint(s,&siz);
147 start_of_name_component = false;
151 /* And must not end in '/' */
152 if (d > destname + 1 && (*(d-1) == '/')) {
156 DEBUG(10,("set_conn_connectpath: service %s, connectpath = %s\n",
157 lp_servicename(SNUM(conn)), destname ));
159 string_set(&conn->connectpath, destname);
164 /****************************************************************************
165 Load parameters specific to a connection/service.
166 ****************************************************************************/
168 bool set_current_service(connection_struct *conn, uint16 flags, bool do_chdir)
170 static connection_struct *last_conn;
171 static uint16 last_flags;
179 conn->lastused_count++;
184 vfs_ChDir(conn,conn->connectpath) != 0 &&
185 vfs_ChDir(conn,conn->origpath) != 0) {
186 DEBUG(0,("chdir (%s) failed\n",
191 if ((conn == last_conn) && (last_flags == flags)) {
198 /* Obey the client case sensitivity requests - only for clients that support it. */
199 switch (lp_casesensitive(snum)) {
202 /* We need this uglyness due to DOS/Win9x clients that lie about case insensitivity. */
203 enum remote_arch_types ra_type = get_remote_arch();
204 if ((ra_type != RA_SAMBA) && (ra_type != RA_CIFSFS)) {
205 /* Client can't support per-packet case sensitive pathnames. */
206 conn->case_sensitive = False;
208 conn->case_sensitive = !(flags & FLAG_CASELESS_PATHNAMES);
213 conn->case_sensitive = True;
216 conn->case_sensitive = False;
222 static int load_registry_service(const char *servicename)
224 struct registry_key *key;
230 struct registry_value *value;
234 if (!lp_registry_shares()) {
238 if (strequal(servicename, GLOBAL_NAME)) {
242 if (asprintf(&path, "%s\\%s", KEY_SMBCONF, servicename) == -1) {
246 err = reg_open_path(NULL, path, REG_KEY_READ, get_root_nt_token(),
250 if (!W_ERROR_IS_OK(err)) {
254 res = lp_add_service(servicename, -1);
260 W_ERROR_IS_OK(reg_enumvalue(key, key, i, &value_name, &value));
262 switch (value->type) {
265 if (asprintf(&tmp, "%d", value->v.dword) == -1) {
268 lp_do_parameter(res, value_name, tmp);
273 lp_do_parameter(res, value_name, value->v.sz.str);
277 /* Ignore all the rest */
281 TALLOC_FREE(value_name);
291 void load_registry_shares(void)
293 struct registry_key *key;
298 DEBUG(8, ("load_registry_shares()\n"));
299 if (!lp_registry_shares()) {
303 err = reg_open_path(NULL, KEY_SMBCONF, REG_KEY_READ,
304 get_root_nt_token(), &key);
305 if (!(W_ERROR_IS_OK(err))) {
309 for (i=0; W_ERROR_IS_OK(reg_enumkey(key, key, i, &name, NULL)); i++) {
310 load_registry_service(name);
318 /****************************************************************************
319 Add a home service. Returns the new service number or -1 if fail.
320 ****************************************************************************/
322 int add_home_service(const char *service, const char *username, const char *homedir)
326 if (!service || !homedir)
329 if ((iHomeService = lp_servicenumber(HOMES_NAME)) < 0) {
330 if ((iHomeService = load_registry_service(HOMES_NAME)) < 0) {
336 * If this is a winbindd provided username, remove
337 * the domain component before adding the service.
338 * Log a warning if the "path=" parameter does not
339 * include any macros.
343 const char *p = strchr(service,*lp_winbind_separator());
345 /* We only want the 'user' part of the string */
351 if (!lp_add_home(service, iHomeService, username, homedir)) {
355 return lp_servicenumber(service);
360 * Find a service entry.
362 * @param service is modified (to canonical form??)
365 int find_service(fstring service)
369 all_string_sub(service,"\\","/",0);
371 iService = lp_servicenumber(service);
373 /* now handle the special case of a home directory */
375 char *phome_dir = get_user_home_dir(talloc_tos(), service);
379 * Try mapping the servicename, it may
380 * be a Windows to unix mapped user name.
382 if(map_username(service))
383 phome_dir = get_user_home_dir(
384 talloc_tos(), service);
387 DEBUG(3,("checking for home directory %s gave %s\n",service,
388 phome_dir?phome_dir:"(NULL)"));
390 iService = add_home_service(service,service /* 'username' */, phome_dir);
393 /* If we still don't have a service, attempt to add it as a printer. */
397 if ((iPrinterService = lp_servicenumber(PRINTERS_NAME)) < 0) {
398 iPrinterService = load_registry_service(PRINTERS_NAME);
400 if (iPrinterService) {
401 DEBUG(3,("checking whether %s is a valid printer name...\n", service));
402 if (pcap_printername_ok(service)) {
403 DEBUG(3,("%s is a valid printer name\n", service));
404 DEBUG(3,("adding %s as a printer service\n", service));
405 lp_add_printer(service, iPrinterService);
406 iService = lp_servicenumber(service);
408 DEBUG(0,("failed to add %s as a printer service!\n", service));
411 DEBUG(3,("%s is not a valid printer name\n", service));
416 /* Check for default vfs service? Unsure whether to implement this */
421 iService = load_registry_service(service);
424 /* Is it a usershare service ? */
425 if (iService < 0 && *lp_usershare_path()) {
426 /* Ensure the name is canonicalized. */
428 iService = load_usershare_service(service);
431 /* just possibly it's a default service? */
433 char *pdefservice = lp_defaultservice();
434 if (pdefservice && *pdefservice && !strequal(pdefservice,service) && !strstr_m(service,"..")) {
436 * We need to do a local copy here as lp_defaultservice()
437 * returns one of the rotating lp_string buffers that
438 * could get overwritten by the recursive find_service() call
439 * below. Fix from Josef Hinteregger <joehtg@joehtg.co.at>.
441 char *defservice = SMB_STRDUP(pdefservice);
447 /* Disallow anything except explicit share names. */
448 if (strequal(defservice,HOMES_NAME) ||
449 strequal(defservice, PRINTERS_NAME) ||
450 strequal(defservice, "IPC$")) {
451 SAFE_FREE(defservice);
455 iService = find_service(defservice);
457 all_string_sub(service, "_","/",0);
458 iService = lp_add_service(service, iService);
460 SAFE_FREE(defservice);
465 if (!VALID_SNUM(iService)) {
466 DEBUG(0,("Invalid snum %d for %s\n",iService, service));
474 DEBUG(3,("find_service() failed to find service %s\n", service));
480 /****************************************************************************
481 do some basic sainity checks on the share.
482 This function modifies dev, ecode.
483 ****************************************************************************/
485 static NTSTATUS share_sanity_checks(int snum, fstring dev)
488 if (!lp_snum_ok(snum) ||
489 !check_access(smbd_server_fd(),
490 lp_hostsallow(snum), lp_hostsdeny(snum))) {
491 return NT_STATUS_ACCESS_DENIED;
494 if (dev[0] == '?' || !dev[0]) {
495 if (lp_print_ok(snum)) {
496 fstrcpy(dev,"LPT1:");
497 } else if (strequal(lp_fstype(snum), "IPC")) {
506 if (lp_print_ok(snum)) {
507 if (!strequal(dev, "LPT1:")) {
508 return NT_STATUS_BAD_DEVICE_TYPE;
510 } else if (strequal(lp_fstype(snum), "IPC")) {
511 if (!strequal(dev, "IPC")) {
512 return NT_STATUS_BAD_DEVICE_TYPE;
514 } else if (!strequal(dev, "A:")) {
515 return NT_STATUS_BAD_DEVICE_TYPE;
518 /* Behave as a printer if we are supposed to */
519 if (lp_print_ok(snum) && (strcmp(dev, "A:") == 0)) {
520 fstrcpy(dev, "LPT1:");
526 static NTSTATUS find_forced_user(connection_struct *conn, bool vuser_is_guest, fstring username)
528 int snum = conn->params->service;
529 char *fuser, *found_username;
532 if (!(fuser = talloc_string_sub(conn, lp_force_user(snum), "%S",
533 lp_servicename(snum)))) {
534 return NT_STATUS_NO_MEMORY;
537 result = create_token_from_username(conn, fuser, vuser_is_guest,
538 &conn->uid, &conn->gid, &found_username,
539 &conn->nt_user_token);
540 if (!NT_STATUS_IS_OK(result)) {
544 fstrcpy(username, found_username);
547 TALLOC_FREE(found_username);
552 * Go through lookup_name etc to find the force'd group.
554 * Create a new token from src_token, replacing the primary group sid with the
558 static NTSTATUS find_forced_group(bool force_user,
559 int snum, const char *username,
563 NTSTATUS result = NT_STATUS_NO_SUCH_GROUP;
566 enum lsa_SidType type;
568 bool user_must_be_member = False;
571 ZERO_STRUCTP(pgroup_sid);
574 mem_ctx = talloc_new(NULL);
575 if (mem_ctx == NULL) {
576 DEBUG(0, ("talloc_new failed\n"));
577 return NT_STATUS_NO_MEMORY;
580 groupname = talloc_strdup(mem_ctx, lp_force_group(snum));
581 if (groupname == NULL) {
582 DEBUG(1, ("talloc_strdup failed\n"));
583 result = NT_STATUS_NO_MEMORY;
587 if (groupname[0] == '+') {
588 user_must_be_member = True;
592 groupname = talloc_string_sub(mem_ctx, groupname,
593 "%S", lp_servicename(snum));
595 if (!lookup_name_smbconf(mem_ctx, groupname,
596 LOOKUP_NAME_ALL|LOOKUP_NAME_GROUP,
597 NULL, NULL, &group_sid, &type)) {
598 DEBUG(10, ("lookup_name_smbconf(%s) failed\n",
603 if ((type != SID_NAME_DOM_GRP) && (type != SID_NAME_ALIAS) &&
604 (type != SID_NAME_WKN_GRP)) {
605 DEBUG(10, ("%s is a %s, not a group\n", groupname,
606 sid_type_lookup(type)));
610 if (!sid_to_gid(&group_sid, &gid)) {
611 DEBUG(10, ("sid_to_gid(%s) for %s failed\n",
612 sid_string_dbg(&group_sid), groupname));
617 * If the user has been forced and the forced group starts with a '+',
618 * then we only set the group to be the forced group if the forced
619 * user is a member of that group. Otherwise, the meaning of the '+'
623 if (force_user && user_must_be_member) {
624 if (user_in_group_sid(username, &group_sid)) {
625 sid_copy(pgroup_sid, &group_sid);
627 DEBUG(3,("Forced group %s for member %s\n",
628 groupname, username));
630 DEBUG(0,("find_forced_group: forced user %s is not a member "
631 "of forced group %s. Disallowing access.\n",
632 username, groupname ));
633 result = NT_STATUS_MEMBER_NOT_IN_GROUP;
637 sid_copy(pgroup_sid, &group_sid);
639 DEBUG(3,("Forced group %s\n", groupname));
642 result = NT_STATUS_OK;
644 TALLOC_FREE(mem_ctx);
648 /****************************************************************************
649 Make a connection, given the snum to connect to, and the vuser of the
650 connecting user if appropriate.
651 ****************************************************************************/
653 static connection_struct *make_connection_snum(int snum, user_struct *vuser,
658 struct passwd *pass = NULL;
660 connection_struct *conn;
665 char addr[INET6_ADDRSTRLEN];
666 bool on_err_call_dis_hook = false;
670 SET_STAT_INVALID(st);
672 if (NT_STATUS_IS_ERR(*status = share_sanity_checks(snum, dev))) {
678 DEBUG(0,("Couldn't find free connection.\n"));
679 *status = NT_STATUS_INSUFFICIENT_RESOURCES;
683 conn->params->service = snum;
684 conn->nt_user_token = NULL;
686 if (lp_guest_only(snum)) {
687 const char *guestname = lp_guestaccount();
689 char *found_username = NULL;
692 pass = getpwnam_alloc(NULL, guestname);
694 DEBUG(0,("make_connection_snum: Invalid guest "
695 "account %s??\n",guestname));
697 *status = NT_STATUS_NO_SUCH_USER;
700 status2 = create_token_from_username(conn, pass->pw_name, True,
701 &conn->uid, &conn->gid,
703 &conn->nt_user_token);
704 if (!NT_STATUS_IS_OK(status2)) {
710 fstrcpy(user, found_username);
711 string_set(&conn->user,user);
712 conn->force_user = True;
713 TALLOC_FREE(found_username);
715 DEBUG(3,("Guest only user %s\n",user));
717 if (vuser->server_info->guest) {
718 if (!lp_guest_ok(snum)) {
719 DEBUG(2, ("guest user (from session setup) "
720 "not permitted to access this share "
721 "(%s)\n", lp_servicename(snum)));
723 *status = NT_STATUS_ACCESS_DENIED;
727 if (!user_ok_token(vuser->server_info->unix_name,
728 vuser->server_info->ptok, snum)) {
729 DEBUG(2, ("user '%s' (from session setup) not "
730 "permitted to access this share "
732 vuser->server_info->unix_name,
733 lp_servicename(snum)));
735 *status = NT_STATUS_ACCESS_DENIED;
739 conn->vuid = vuser->vuid;
740 conn->uid = vuser->server_info->uid;
741 conn->gid = vuser->server_info->gid;
742 string_set(&conn->user,vuser->server_info->unix_name);
743 fstrcpy(user,vuser->server_info->unix_name);
744 guest = vuser->server_info->guest;
745 } else if (lp_security() == SEC_SHARE) {
747 char *found_username = NULL;
749 /* add it as a possible user name if we
750 are in share mode security */
751 add_session_user(lp_servicename(snum));
752 /* shall we let them in? */
753 if (!authorise_login(snum,user,password,&guest)) {
754 DEBUG( 2, ( "Invalid username/password for [%s]\n",
755 lp_servicename(snum)) );
757 *status = NT_STATUS_WRONG_PASSWORD;
760 pass = Get_Pwnam_alloc(talloc_tos(), user);
761 status2 = create_token_from_username(conn, pass->pw_name, True,
762 &conn->uid, &conn->gid,
764 &conn->nt_user_token);
766 if (!NT_STATUS_IS_OK(status2)) {
771 fstrcpy(user, found_username);
772 string_set(&conn->user,user);
773 TALLOC_FREE(found_username);
774 conn->force_user = True;
776 DEBUG(0, ("invalid VUID (vuser) but not in security=share\n"));
778 *status = NT_STATUS_ACCESS_DENIED;
782 add_session_user(user);
784 safe_strcpy(conn->client_address,
785 client_addr(get_client_fd(),addr,sizeof(addr)),
786 sizeof(conn->client_address)-1);
787 conn->num_files_open = 0;
788 conn->lastused = conn->lastused_count = time(NULL);
790 conn->printer = (strncmp(dev,"LPT",3) == 0);
791 conn->ipc = ( (strncmp(dev,"IPC",3) == 0) ||
792 ( lp_enable_asu_support() && strequal(dev,"ADMIN$")) );
795 /* Case options for the share. */
796 if (lp_casesensitive(snum) == Auto) {
797 /* We will be setting this per packet. Set to be case
798 * insensitive for now. */
799 conn->case_sensitive = False;
801 conn->case_sensitive = (bool)lp_casesensitive(snum);
804 conn->case_preserve = lp_preservecase(snum);
805 conn->short_case_preserve = lp_shortpreservecase(snum);
807 conn->encrypt_level = lp_smb_encrypt(snum);
809 conn->veto_list = NULL;
810 conn->hide_list = NULL;
811 conn->veto_oplock_list = NULL;
812 conn->aio_write_behind_list = NULL;
813 string_set(&conn->dirpath,"");
814 string_set(&conn->user,user);
816 conn->read_only = lp_readonly(SNUM(conn));
817 conn->admin_user = False;
820 * If force user is true, then store the given userid and the gid of
821 * the user we're forcing.
822 * For auxiliary groups see below.
825 if (*lp_force_user(snum)) {
828 status2 = find_forced_user(conn,
829 (vuser != NULL) && vuser->server_info->guest,
831 if (!NT_STATUS_IS_OK(status2)) {
836 string_set(&conn->user,user);
837 conn->force_user = True;
838 DEBUG(3,("Forced user %s\n",user));
842 * If force group is true, then override
843 * any groupid stored for the connecting user.
846 if (*lp_force_group(snum)) {
850 status2 = find_forced_group(conn->force_user,
852 &group_sid, &conn->gid);
853 if (!NT_STATUS_IS_OK(status2)) {
859 if ((conn->nt_user_token == NULL) && (vuser != NULL)) {
861 /* Not force user and not security=share, but force
862 * group. vuser has a token to copy */
864 conn->nt_user_token = dup_nt_token(
865 NULL, vuser->server_info->ptok);
866 if (conn->nt_user_token == NULL) {
867 DEBUG(0, ("dup_nt_token failed\n"));
869 *status = NT_STATUS_NO_MEMORY;
874 /* If conn->nt_user_token is still NULL, we have
875 * security=share. This means ignore the SID, as we had no
876 * vuser to copy from */
878 if (conn->nt_user_token != NULL) {
879 /* Overwrite the primary group sid */
880 sid_copy(&conn->nt_user_token->user_sids[1],
884 conn->force_group = True;
887 if (conn->nt_user_token != NULL) {
890 /* We have a share-specific token from force [user|group].
891 * This means we have to create the list of unix groups from
892 * the list of sids. */
897 for (i=0; i<conn->nt_user_token->num_sids; i++) {
899 DOM_SID *sid = &conn->nt_user_token->user_sids[i];
901 if (!sid_to_gid(sid, &gid)) {
902 DEBUG(10, ("Could not convert SID %s to gid, "
904 sid_string_dbg(sid)));
907 if (!add_gid_to_array_unique(conn, gid, &conn->groups,
909 DEBUG(0, ("add_gid_to_array_unique failed\n"));
911 *status = NT_STATUS_NO_MEMORY;
918 char *s = talloc_sub_advanced(talloc_tos(),
919 lp_servicename(SNUM(conn)), conn->user,
920 conn->connectpath, conn->gid,
921 get_current_username(),
922 current_user_info.domain,
926 *status = NT_STATUS_NO_MEMORY;
930 if (!set_conn_connectpath(conn,s)) {
933 *status = NT_STATUS_NO_MEMORY;
936 DEBUG(3,("Connect path is '%s' for service [%s]\n",s,
937 lp_servicename(snum)));
942 * New code to check if there's a share security descripter
943 * added from NT server manager. This is done after the
944 * smb.conf checks are done as we need a uid and token. JRA.
949 bool can_write = False;
950 NT_USER_TOKEN *token = conn->nt_user_token ?
951 conn->nt_user_token :
952 (vuser ? vuser->server_info->ptok : NULL);
955 * I don't believe this can happen. But the
956 * logic above is convoluted enough to confuse
957 * automated checkers, so be sure. JRA.
961 DEBUG(0,("make_connection: connection to %s "
962 "denied due to missing "
964 lp_servicename(snum)));
966 *status = NT_STATUS_ACCESS_DENIED;
970 can_write = share_access_check(token,
971 lp_servicename(snum),
975 if (!share_access_check(token,
976 lp_servicename(snum),
978 /* No access, read or write. */
979 DEBUG(0,("make_connection: connection to %s "
980 "denied due to security "
982 lp_servicename(snum)));
984 *status = NT_STATUS_ACCESS_DENIED;
987 conn->read_only = True;
991 /* Initialise VFS function pointers */
993 if (!smbd_vfs_init(conn)) {
994 DEBUG(0, ("vfs_init failed for service %s\n",
995 lp_servicename(snum)));
997 *status = NT_STATUS_BAD_NETWORK_NAME;
1002 * If widelinks are disallowed we need to canonicalise the connect
1003 * path here to ensure we don't have any symlinks in the
1004 * connectpath. We will be checking all paths on this connection are
1005 * below this directory. We must do this after the VFS init as we
1006 * depend on the realpath() pointer in the vfs table. JRA.
1008 if (!lp_widelinks(snum)) {
1009 if (!canonicalize_connect_path(conn)) {
1010 DEBUG(0, ("canonicalize_connect_path failed "
1011 "for service %s, path %s\n",
1012 lp_servicename(snum),
1013 conn->connectpath));
1015 *status = NT_STATUS_BAD_NETWORK_NAME;
1020 if ((!conn->printer) && (!conn->ipc)) {
1021 conn->notify_ctx = notify_init(conn, server_id_self(),
1022 smbd_messaging_context(),
1023 smbd_event_context(),
1027 /* ROOT Activities: */
1029 * Enforce the max connections parameter.
1032 if ((lp_max_connections(snum) > 0)
1033 && (count_current_connections(lp_servicename(SNUM(conn)), True) >=
1034 lp_max_connections(snum))) {
1036 DEBUG(1, ("Max connections (%d) exceeded for %s\n",
1037 lp_max_connections(snum), lp_servicename(snum)));
1039 *status = NT_STATUS_INSUFFICIENT_RESOURCES;
1044 * Get us an entry in the connections db
1046 if (!claim_connection(conn, lp_servicename(snum), 0)) {
1047 DEBUG(1, ("Could not store connections entry\n"));
1049 *status = NT_STATUS_INTERNAL_DB_ERROR;
1053 /* Preexecs are done here as they might make the dir we are to ChDir
1055 /* execute any "root preexec = " line */
1056 if (*lp_rootpreexec(snum)) {
1057 char *cmd = talloc_sub_advanced(talloc_tos(),
1058 lp_servicename(SNUM(conn)), conn->user,
1059 conn->connectpath, conn->gid,
1060 get_current_username(),
1061 current_user_info.domain,
1062 lp_rootpreexec(snum));
1063 DEBUG(5,("cmd=%s\n",cmd));
1064 ret = smbrun(cmd,NULL);
1066 if (ret != 0 && lp_rootpreexec_close(snum)) {
1067 DEBUG(1,("root preexec gave %d - failing "
1068 "connection\n", ret));
1069 yield_connection(conn, lp_servicename(snum));
1071 *status = NT_STATUS_ACCESS_DENIED;
1076 /* USER Activites: */
1077 if (!change_to_user(conn, conn->vuid)) {
1078 /* No point continuing if they fail the basic checks */
1079 DEBUG(0,("Can't become connected user!\n"));
1080 yield_connection(conn, lp_servicename(snum));
1082 *status = NT_STATUS_LOGON_FAILURE;
1086 /* Remember that a different vuid can connect later without these
1089 /* Preexecs are done here as they might make the dir we are to ChDir
1092 /* execute any "preexec = " line */
1093 if (*lp_preexec(snum)) {
1094 char *cmd = talloc_sub_advanced(talloc_tos(),
1095 lp_servicename(SNUM(conn)), conn->user,
1096 conn->connectpath, conn->gid,
1097 get_current_username(),
1098 current_user_info.domain,
1100 ret = smbrun(cmd,NULL);
1102 if (ret != 0 && lp_preexec_close(snum)) {
1103 DEBUG(1,("preexec gave %d - failing connection\n",
1105 *status = NT_STATUS_ACCESS_DENIED;
1110 #ifdef WITH_FAKE_KASERVER
1111 if (lp_afs_share(snum)) {
1116 /* Add veto/hide lists */
1117 if (!IS_IPC(conn) && !IS_PRINT(conn)) {
1118 set_namearray( &conn->veto_list, lp_veto_files(snum));
1119 set_namearray( &conn->hide_list, lp_hide_files(snum));
1120 set_namearray( &conn->veto_oplock_list, lp_veto_oplocks(snum));
1123 /* Invoke VFS make connection hook - do this before the VFS_STAT call
1124 to allow any filesystems needing user credentials to initialize
1127 if (SMB_VFS_CONNECT(conn, lp_servicename(snum), user) < 0) {
1128 DEBUG(0,("make_connection: VFS make connection failed!\n"));
1129 *status = NT_STATUS_UNSUCCESSFUL;
1133 /* Any error exit after here needs to call the disconnect hook. */
1134 on_err_call_dis_hook = true;
1136 /* win2000 does not check the permissions on the directory
1137 during the tree connect, instead relying on permission
1138 check during individual operations. To match this behaviour
1139 I have disabled this chdir check (tridge) */
1140 /* the alternative is just to check the directory exists */
1141 if ((ret = SMB_VFS_STAT(conn, conn->connectpath, &st)) != 0 ||
1142 !S_ISDIR(st.st_mode)) {
1143 if (ret == 0 && !S_ISDIR(st.st_mode)) {
1144 DEBUG(0,("'%s' is not a directory, when connecting to "
1145 "[%s]\n", conn->connectpath,
1146 lp_servicename(snum)));
1148 DEBUG(0,("'%s' does not exist or permission denied "
1149 "when connecting to [%s] Error was %s\n",
1150 conn->connectpath, lp_servicename(snum),
1153 *status = NT_STATUS_BAD_NETWORK_NAME;
1157 string_set(&conn->origpath,conn->connectpath);
1159 #if SOFTLINK_OPTIMISATION
1160 /* resolve any soft links early if possible */
1161 if (vfs_ChDir(conn,conn->connectpath) == 0) {
1162 TALLOC_CTX *ctx = talloc_tos();
1163 char *s = vfs_GetWd(ctx,s);
1165 *status = map_nt_error_from_unix(errno);
1168 if (!set_conn_connectpath(conn,s)) {
1169 *status = NT_STATUS_NO_MEMORY;
1172 vfs_ChDir(conn,conn->connectpath);
1176 /* Figure out the characteristics of the underlying filesystem. This
1177 * assumes that all the filesystem mounted withing a share path have
1178 * the same characteristics, which is likely but not guaranteed.
1181 conn->fs_capabilities = SMB_VFS_FS_CAPABILITIES(conn);
1184 * Print out the 'connected as' stuff here as we need
1185 * to know the effective uid and gid we will be using
1186 * (at least initially).
1189 if( DEBUGLVL( IS_IPC(conn) ? 3 : 1 ) ) {
1190 dbgtext( "%s (%s) ", get_remote_machine_name(),
1191 conn->client_address );
1192 dbgtext( "%s", srv_is_signing_active() ? "signed " : "");
1193 dbgtext( "connect to service %s ", lp_servicename(snum) );
1194 dbgtext( "initially as user %s ", user );
1195 dbgtext( "(uid=%d, gid=%d) ", (int)geteuid(), (int)getegid() );
1196 dbgtext( "(pid %d)\n", (int)sys_getpid() );
1199 /* we've finished with the user stuff - go back to root */
1200 change_to_root_user();
1205 change_to_root_user();
1206 if (on_err_call_dis_hook) {
1207 /* Call VFS disconnect hook */
1208 SMB_VFS_DISCONNECT(conn);
1210 yield_connection(conn, lp_servicename(snum));
1215 /***************************************************************************************
1216 Simple wrapper function for make_connection() to include a call to
1218 **************************************************************************************/
1220 connection_struct *make_connection_with_chdir(const char *service_in,
1222 const char *dev, uint16 vuid,
1225 connection_struct *conn = NULL;
1227 conn = make_connection(service_in, password, dev, vuid, status);
1230 * make_connection() does not change the directory for us any more
1231 * so we have to do it as a separate step --jerry
1234 if ( conn && vfs_ChDir(conn,conn->connectpath) != 0 ) {
1235 DEBUG(0,("move_driver_to_download_area: Can't change "
1236 "directory to %s for [print$] (%s)\n",
1237 conn->connectpath,strerror(errno)));
1238 yield_connection(conn, lp_servicename(SNUM(conn)));
1240 *status = NT_STATUS_UNSUCCESSFUL;
1247 /****************************************************************************
1248 Make a connection to a service.
1251 ****************************************************************************/
1253 connection_struct *make_connection(const char *service_in, DATA_BLOB password,
1254 const char *pdev, uint16 vuid,
1258 user_struct *vuser = NULL;
1262 char addr[INET6_ADDRSTRLEN];
1266 /* This must ONLY BE CALLED AS ROOT. As it exits this function as
1268 if (!non_root_mode() && (euid = geteuid()) != 0) {
1269 DEBUG(0,("make_connection: PANIC ERROR. Called as nonroot "
1270 "(%u)\n", (unsigned int)euid ));
1271 smb_panic("make_connection: PANIC ERROR. Called as nonroot\n");
1274 if (conn_num_open() > 2047) {
1275 *status = NT_STATUS_INSUFF_SERVER_RESOURCES;
1279 if(lp_security() != SEC_SHARE) {
1280 vuser = get_valid_user_struct(vuid);
1282 DEBUG(1,("make_connection: refusing to connect with "
1283 "no session setup\n"));
1284 *status = NT_STATUS_ACCESS_DENIED;
1289 /* Logic to try and connect to the correct [homes] share, preferably
1290 without too many getpwnam() lookups. This is particulary nasty for
1291 winbind usernames, where the share name isn't the same as unix
1294 The snum of the homes share is stored on the vuser at session setup
1298 if (strequal(service_in,HOMES_NAME)) {
1299 if(lp_security() != SEC_SHARE) {
1300 DATA_BLOB no_pw = data_blob_null;
1301 if (vuser->homes_snum == -1) {
1302 DEBUG(2, ("[homes] share not available for "
1303 "this user because it was not found "
1304 "or created at session setup "
1306 *status = NT_STATUS_BAD_NETWORK_NAME;
1309 DEBUG(5, ("making a connection to [homes] service "
1310 "created at session setup time\n"));
1311 return make_connection_snum(vuser->homes_snum,
1315 /* Security = share. Try with
1316 * current_user_info.smb_name as the username. */
1317 if (*current_user_info.smb_name) {
1318 fstring unix_username;
1319 fstrcpy(unix_username,
1320 current_user_info.smb_name);
1321 map_username(unix_username);
1322 snum = find_service(unix_username);
1325 DEBUG(5, ("making a connection to 'homes' "
1326 "service %s based on "
1327 "security=share\n", service_in));
1328 return make_connection_snum(snum, NULL,
1333 } else if ((lp_security() != SEC_SHARE) && (vuser->homes_snum != -1)
1334 && strequal(service_in,
1335 lp_servicename(vuser->homes_snum))) {
1336 DATA_BLOB no_pw = data_blob_null;
1337 DEBUG(5, ("making a connection to 'homes' service [%s] "
1338 "created at session setup time\n", service_in));
1339 return make_connection_snum(vuser->homes_snum,
1344 fstrcpy(service, service_in);
1346 strlower_m(service);
1348 snum = find_service(service);
1351 if (strequal(service,"IPC$") ||
1352 (lp_enable_asu_support() && strequal(service,"ADMIN$"))) {
1353 DEBUG(3,("refusing IPC connection to %s\n", service));
1354 *status = NT_STATUS_ACCESS_DENIED;
1358 DEBUG(0,("%s (%s) couldn't find service %s\n",
1359 get_remote_machine_name(),
1360 client_addr(get_client_fd(),addr,sizeof(addr)),
1362 *status = NT_STATUS_BAD_NETWORK_NAME;
1366 /* Handle non-Dfs clients attempting connections to msdfs proxy */
1367 if (lp_host_msdfs() && (*lp_msdfs_proxy(snum) != '\0')) {
1368 DEBUG(3, ("refusing connection to dfs proxy share '%s' "
1369 "(pointing to %s)\n",
1370 service, lp_msdfs_proxy(snum)));
1371 *status = NT_STATUS_BAD_NETWORK_NAME;
1375 DEBUG(5, ("making a connection to 'normal' service %s\n", service));
1377 return make_connection_snum(snum, vuser,
1382 /****************************************************************************
1384 ****************************************************************************/
1386 void close_cnum(connection_struct *conn, uint16 vuid)
1389 pipe_close_conn(conn);
1391 file_close_conn(conn);
1392 dptr_closecnum(conn);
1395 change_to_root_user();
1397 DEBUG(IS_IPC(conn)?3:1, ("%s (%s) closed connection to service %s\n",
1398 get_remote_machine_name(),
1399 conn->client_address,
1400 lp_servicename(SNUM(conn))));
1402 /* Call VFS disconnect hook */
1403 SMB_VFS_DISCONNECT(conn);
1405 yield_connection(conn, lp_servicename(SNUM(conn)));
1407 /* make sure we leave the directory available for unmount */
1408 vfs_ChDir(conn, "/");
1410 /* execute any "postexec = " line */
1411 if (*lp_postexec(SNUM(conn)) &&
1412 change_to_user(conn, vuid)) {
1413 char *cmd = talloc_sub_advanced(talloc_tos(),
1414 lp_servicename(SNUM(conn)), conn->user,
1415 conn->connectpath, conn->gid,
1416 get_current_username(),
1417 current_user_info.domain,
1418 lp_postexec(SNUM(conn)));
1421 change_to_root_user();
1424 change_to_root_user();
1425 /* execute any "root postexec = " line */
1426 if (*lp_rootpostexec(SNUM(conn))) {
1427 char *cmd = talloc_sub_advanced(talloc_tos(),
1428 lp_servicename(SNUM(conn)), conn->user,
1429 conn->connectpath, conn->gid,
1430 get_current_username(),
1431 current_user_info.domain,
1432 lp_rootpostexec(SNUM(conn)));
git.samba.org / ira / wip.git / blob