2 Unix SMB/Netbios implementation.
4 Main SMB reply routines
5 Copyright (C) Andrew Tridgell 1992-1998
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 2 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program; if not, write to the Free Software
19 Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22 This file handles most of the reply_ calls that the server
23 makes to handle specific protocols
31 /* look in server.c for some explanation of these variables */
33 extern int DEBUGLEVEL;
36 extern char magic_char;
37 extern BOOL case_sensitive;
38 extern BOOL case_preserve;
39 extern BOOL short_case_preserve;
40 extern pstring sesssetup_user;
41 extern fstring global_myworkgroup;
43 extern int global_oplock_break;
44 uint32 global_client_caps = 0;
47 /****************************************************************************
48 report a possible attack via the password buffer overflow bug
49 ****************************************************************************/
50 static void overflow_attack(int len)
54 dbgtext( "ERROR: Invalid password length %d.\n", len );
55 dbgtext( "Your machine may be under attack by someone " );
56 dbgtext( "attempting to exploit an old bug.\n" );
57 dbgtext( "Attack was from IP = %s.\n", client_addr(Client) );
59 exit_server("possible attack");
63 /****************************************************************************
64 reply to an special message
65 ****************************************************************************/
66 int reply_special(char *inbuf,char *outbuf)
69 int msg_type = CVAL(inbuf,0);
70 int msg_flags = CVAL(inbuf,1);
72 extern fstring remote_machine;
73 extern fstring local_machine;
79 bzero(outbuf,smb_size);
84 case 0x81: /* session request */
85 CVAL(outbuf,0) = 0x82;
87 if (name_len(inbuf+4) > 50 ||
88 name_len(inbuf+4 + name_len(inbuf + 4)) > 50) {
89 DEBUG(0,("Invalid name length in session request\n"));
92 name_extract(inbuf,4,name1);
93 name_extract(inbuf,4 + name_len(inbuf + 4),name2);
94 DEBUG(2,("netbios connect: name1=%s name2=%s\n",
97 fstrcpy(remote_machine,name2);
98 remote_machine[15] = 0;
99 trim_string(remote_machine," "," ");
100 strlower(remote_machine);
102 fstrcpy(local_machine,name1);
103 len = strlen(local_machine);
105 name_type = local_machine[15];
106 local_machine[15] = 0;
108 trim_string(local_machine," "," ");
109 strlower(local_machine);
111 if (name_type == 'R') {
112 /* We are being asked for a pathworks session ---
114 CVAL(outbuf, 0) = 0x83;
118 add_session_user(remote_machine);
120 reload_services(True);
124 claim_connection(NULL,"STATUS.",MAXSTATUS,True);
129 case 0x89: /* session keepalive request
130 (some old clients produce this?) */
131 CVAL(outbuf,0) = 0x85;
135 case 0x82: /* positive session response */
136 case 0x83: /* negative session response */
137 case 0x84: /* retarget session response */
138 DEBUG(0,("Unexpected session response\n"));
141 case 0x85: /* session keepalive */
146 DEBUG(5,("init msg_type=0x%x msg_flags=0x%x\n",
147 msg_type, msg_flags));
153 /*******************************************************************
154 work out what error to give to a failed connection
155 ********************************************************************/
156 static int connection_error(char *inbuf,char *outbuf,int ecode)
158 if (ecode == ERRnoipc) {
159 return(ERROR(ERRDOS,ERRnoipc));
162 return(ERROR(ERRSRV,ecode));
167 /****************************************************************************
168 parse a share descriptor string
169 ****************************************************************************/
170 static void parse_connect(char *p,char *service,char *user,
171 char *password,int *pwlen,char *dev)
175 DEBUG(4,("parsing connect string %s\n",p));
177 p2 = strrchr(p,'\\');
181 fstrcpy(service,p2+1);
186 *pwlen = strlen(password);
193 p = strchr(service,'%');
204 /****************************************************************************
206 ****************************************************************************/
207 int reply_tcon(connection_struct *conn,
208 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
215 uint16 vuid = SVAL(inbuf,smb_uid);
219 *service = *user = *password = *dev = 0;
221 parse_connect(smb_buf(inbuf)+1,service,user,password,&pwlen,dev);
224 * Pass the user through the NT -> unix user mapping
228 (void)map_username(user);
231 * Do any UNIX username case mangling.
233 (void)Get_Pwnam( user, True);
235 conn = make_connection(service,user,password,pwlen,dev,vuid,&ecode);
238 return(connection_error(inbuf,outbuf,ecode));
241 outsize = set_message(outbuf,2,0,True);
242 SSVAL(outbuf,smb_vwv0,max_recv);
243 SSVAL(outbuf,smb_vwv1,conn->cnum);
244 SSVAL(outbuf,smb_tid,conn->cnum);
246 DEBUG(3,("tcon service=%s user=%s cnum=%d\n",
247 service, user, conn->cnum));
253 /****************************************************************************
254 reply to a tcon and X
255 ****************************************************************************/
256 int reply_tcon_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
263 uint16 vuid = SVAL(inbuf,smb_uid);
264 int passlen = SVAL(inbuf,smb_vwv3);
268 *service = *user = *password = *devicename = 0;
270 /* we might have to close an old one */
271 if ((SVAL(inbuf,smb_vwv2) & 0x1) && conn) {
272 close_cnum(conn,vuid);
275 if (passlen > MAX_PASS_LEN) {
276 overflow_attack(passlen);
279 memcpy(password,smb_buf(inbuf),passlen);
281 path = smb_buf(inbuf) + passlen;
284 if (strequal(password," "))
286 passlen = strlen(password);
289 fstrcpy(service,path+2);
290 p = strchr(service,'\\');
292 return(ERROR(ERRSRV,ERRinvnetname));
294 fstrcpy(service,p+1);
295 p = strchr(service,'%');
300 StrnCpy(devicename,path + strlen(path) + 1,6);
301 DEBUG(4,("Got device type %s\n",devicename));
304 * Pass the user through the NT -> unix user mapping
308 (void)map_username(user);
311 * Do any UNIX username case mangling.
313 (void)Get_Pwnam(user, True);
315 conn = make_connection(service,user,password,passlen,devicename,vuid,&ecode);
318 return(connection_error(inbuf,outbuf,ecode));
320 if (Protocol < PROTOCOL_NT1) {
321 set_message(outbuf,2,strlen(devicename)+1,True);
322 pstrcpy(smb_buf(outbuf),devicename);
324 char *fsname = lp_fstype(SNUM(conn));
326 set_message(outbuf,3,3,True);
329 pstrcpy(p,devicename); p = skip_string(p,1); /* device name */
330 pstrcpy(p,fsname); p = skip_string(p,1); /* filesystem type e.g NTFS */
332 set_message(outbuf,3,PTR_DIFF(p,smb_buf(outbuf)),False);
334 /* what does setting this bit do? It is set by NT4 and
335 may affect the ability to autorun mounted cdroms */
336 SSVAL(outbuf, smb_vwv2, SMB_SUPPORT_SEARCH_BITS);
339 DEBUG(3,("tconX service=%s user=%s\n",
342 /* set the incoming and outgoing tid to the just created one */
343 SSVAL(inbuf,smb_tid,conn->cnum);
344 SSVAL(outbuf,smb_tid,conn->cnum);
346 return chain_reply(inbuf,outbuf,length,bufsize);
350 /****************************************************************************
351 reply to an unknown type
352 ****************************************************************************/
353 int reply_unknown(char *inbuf,char *outbuf)
356 type = CVAL(inbuf,smb_com);
358 DEBUG(0,("unknown command type (%s): type=%d (0x%X)\n",
359 smb_fn_name(type), type, type));
361 return(ERROR(ERRSRV,ERRunknownsmb));
365 /****************************************************************************
367 ****************************************************************************/
368 int reply_ioctl(connection_struct *conn,
369 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
371 DEBUG(3,("ignoring ioctl\n"));
373 /* we just say it succeeds and hope its all OK.
374 some day it would be nice to interpret them individually */
375 return set_message(outbuf,1,0,True);
377 return(ERROR(ERRSRV,ERRnosupport));
381 /****************************************************************************
382 always return an error: it's just a matter of which one...
383 ****************************************************************************/
384 static int session_trust_account(connection_struct *conn, char *inbuf, char *outbuf, char *user,
385 char *smb_passwd, int smb_passlen,
386 char *smb_nt_passwd, int smb_nt_passlen)
388 struct smb_passwd *smb_trust_acct = NULL; /* check if trust account exists */
389 if (lp_security() == SEC_USER)
391 smb_trust_acct = getsmbpwnam(user);
395 DEBUG(0,("session_trust_account: Trust account %s only supported with security = user\n", user));
396 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
397 return(ERROR(0, 0xc0000000|NT_STATUS_LOGON_FAILURE));
400 if (smb_trust_acct == NULL)
402 /* lkclXXXX: workstation entry doesn't exist */
403 DEBUG(0,("session_trust_account: Trust account %s user doesn't exist\n",user));
404 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
405 return(ERROR(0, 0xc0000000|NT_STATUS_NO_SUCH_USER));
409 if ((smb_passlen != 24) || (smb_nt_passlen != 24))
411 DEBUG(0,("session_trust_account: Trust account %s - password length wrong.\n", user));
412 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
413 return(ERROR(0, 0xc0000000|NT_STATUS_LOGON_FAILURE));
416 if (!smb_password_ok(smb_trust_acct, (unsigned char *)smb_passwd, (unsigned char *)smb_nt_passwd))
418 DEBUG(0,("session_trust_account: Trust Account %s - password failed\n", user));
419 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
420 return(ERROR(0, 0xc0000000|NT_STATUS_LOGON_FAILURE));
423 if (IS_BITS_SET_ALL(smb_trust_acct->acct_ctrl, ACB_DOMTRUST))
425 DEBUG(0,("session_trust_account: Domain trust account %s denied by server\n",user));
426 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
427 return(ERROR(0, 0xc0000000|NT_STATUS_NOLOGON_INTERDOMAIN_TRUST_ACCOUNT));
430 if (IS_BITS_SET_ALL(smb_trust_acct->acct_ctrl, ACB_SVRTRUST))
432 DEBUG(0,("session_trust_account: Server trust account %s denied by server\n",user));
433 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
434 return(ERROR(0, 0xc0000000|NT_STATUS_NOLOGON_SERVER_TRUST_ACCOUNT));
437 if (IS_BITS_SET_ALL(smb_trust_acct->acct_ctrl, ACB_WSTRUST))
439 DEBUG(4,("session_trust_account: Wksta trust account %s denied by server\n", user));
440 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
441 return(ERROR(0, 0xc0000000|NT_STATUS_NOLOGON_WORKSTATION_TRUST_ACCOUNT));
445 /* don't know what to do: indicate logon failure */
446 SSVAL(outbuf, smb_flg2, FLAGS2_32_BIT_ERROR_CODES);
447 return(ERROR(0, 0xc0000000|NT_STATUS_LOGON_FAILURE));
451 /****************************************************************************
452 reply to a session setup command
453 ****************************************************************************/
454 int reply_sesssetup_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
460 int smb_apasslen = 0;
462 int smb_ntpasslen = 0;
463 pstring smb_ntpasswd;
464 BOOL valid_nt_password = False;
468 static BOOL done_sesssetup = False;
469 BOOL doencrypt = SMBENCRYPT();
475 smb_bufsize = SVAL(inbuf,smb_vwv2);
477 if (Protocol < PROTOCOL_NT1) {
478 smb_apasslen = SVAL(inbuf,smb_vwv7);
479 if (smb_apasslen > MAX_PASS_LEN)
481 overflow_attack(smb_apasslen);
484 memcpy(smb_apasswd,smb_buf(inbuf),smb_apasslen);
485 smb_apasswd[smb_apasslen] = 0;
486 pstrcpy(user,smb_buf(inbuf)+smb_apasslen);
488 if (!doencrypt && (lp_security() != SEC_SERVER)) {
489 smb_apasslen = strlen(smb_apasswd);
492 uint16 passlen1 = SVAL(inbuf,smb_vwv7);
493 uint16 passlen2 = SVAL(inbuf,smb_vwv8);
494 enum remote_arch_types ra_type = get_remote_arch();
495 char *p = smb_buf(inbuf);
497 global_client_caps = IVAL(inbuf,smb_vwv11);
499 /* client_caps is used as final determination if client is NT or Win95.
500 This is needed to return the correct error codes in some
504 if(ra_type == RA_WINNT || ra_type == RA_WIN95)
506 if(global_client_caps & (CAP_NT_SMBS | CAP_STATUS32))
507 set_remote_arch( RA_WINNT);
509 set_remote_arch( RA_WIN95);
512 if (passlen1 != 24 && passlen2 != 24)
515 if (passlen1 > MAX_PASS_LEN) {
516 overflow_attack(passlen1);
519 passlen1 = MIN(passlen1, MAX_PASS_LEN);
520 passlen2 = MIN(passlen2, MAX_PASS_LEN);
523 /* both Win95 and WinNT stuff up the password lengths for
524 non-encrypting systems. Uggh.
526 if passlen1==24 its a win95 system, and its setting the
527 password length incorrectly. Luckily it still works with the
528 default code because Win95 will null terminate the password
531 if passlen1>0 and passlen2>0 then maybe its a NT box and its
532 setting passlen2 to some random value which really stuffs
533 things up. we need to fix that one. */
535 if (passlen1 > 0 && passlen2 > 0 && passlen2 != 24 && passlen2 != 1)
539 if(doencrypt || ((lp_security() == SEC_SERVER) || (lp_security() == SEC_DOMAIN))) {
540 /* Save the lanman2 password and the NT md4 password. */
541 smb_apasslen = passlen1;
542 memcpy(smb_apasswd,p,smb_apasslen);
543 smb_apasswd[smb_apasslen] = 0;
544 smb_ntpasslen = passlen2;
545 memcpy(smb_ntpasswd,p+passlen1,smb_ntpasslen);
546 smb_ntpasswd[smb_ntpasslen] = 0;
548 /* we use the first password that they gave */
549 smb_apasslen = passlen1;
550 StrnCpy(smb_apasswd,p,smb_apasslen);
552 /* trim the password */
553 smb_apasslen = strlen(smb_apasswd);
555 /* wfwg sometimes uses a space instead of a null */
556 if (strequal(smb_apasswd," ")) {
562 p += passlen1 + passlen2;
563 fstrcpy(user,p); p = skip_string(p,1);
566 DEBUG(3,("Domain=[%s] NativeOS=[%s] NativeLanMan=[%s]\n",
567 domain,skip_string(p,1),skip_string(p,2)));
571 DEBUG(3,("sesssetupX:name=[%s]\n",user));
573 /* If name ends in $ then I think it's asking about whether a */
574 /* computer with that name (minus the $) has access. For now */
575 /* say yes to everything ending in $. */
576 if ((user[strlen(user) - 1] == '$') && (smb_apasslen == 24) && (smb_ntpasslen == 24))
578 return session_trust_account(conn, inbuf, outbuf, user,
579 smb_apasswd, smb_apasslen,
580 smb_ntpasswd, smb_ntpasslen);
583 /* If no username is sent use the guest account */
586 pstrcpy(user,lp_guestaccount(-1));
587 /* If no user and no password then set guest flag. */
588 if( *smb_apasswd == 0)
595 * In share level security, only overwrite sesssetup_use if
596 * it's a non null-session share. Helps keep %U and %G
600 if((lp_security() != SEC_SHARE) || *user)
601 pstrcpy(sesssetup_user,user);
603 reload_services(True);
606 * Save the username before mapping. We will use
607 * the original username sent to us for security=server
608 * and security=domain checking.
611 pstrcpy( orig_user, user);
614 * Pass the user through the NT -> unix user mapping
618 (void)map_username(user);
621 * Do any UNIX username case mangling.
623 (void)Get_Pwnam( user, True);
625 add_session_user(user);
628 * Check if the given username was the guest user with no password.
631 if(!guest && strequal(user,lp_guestaccount(-1)) && (*smb_apasswd == 0))
634 if (!guest && !(lp_security() == SEC_SERVER &&
635 /* Check with orig_user for security=server and
637 server_validate(orig_user, domain,
638 smb_apasswd, smb_apasslen,
639 smb_ntpasswd, smb_ntpasslen)) &&
640 !(lp_security() == SEC_DOMAIN &&
641 domain_client_validate(orig_user, domain,
642 smb_apasswd, smb_apasslen,
643 smb_ntpasswd, smb_ntpasslen)) &&
644 !check_hosts_equiv(user)
648 /* now check if it's a valid username/password */
649 /* If an NT password was supplied try and validate with that
650 first. This is superior as the passwords are mixed case
651 128 length unicode */
654 if(!password_ok(user,smb_ntpasswd,smb_ntpasslen,NULL))
655 DEBUG(0,("NT Password did not match ! Defaulting to Lanman\n"));
657 valid_nt_password = True;
659 if (!valid_nt_password && !password_ok(user,smb_apasswd,smb_apasslen,NULL))
661 if (lp_security() >= SEC_USER) {
662 #if (GUEST_SESSSETUP == 0)
663 return(ERROR(ERRSRV,ERRbadpw));
665 #if (GUEST_SESSSETUP == 1)
666 if (Get_Pwnam(user,True))
667 return(ERROR(ERRSRV,ERRbadpw));
670 if (*smb_apasswd || !Get_Pwnam(user,True))
671 pstrcpy(user,lp_guestaccount(-1));
672 DEBUG(3,("Registered username %s for guest access\n",user));
677 if (!Get_Pwnam(user,True)) {
678 DEBUG(3,("No such user %s - using guest account\n",user));
679 pstrcpy(user,lp_guestaccount(-1));
683 if (!strequal(user,lp_guestaccount(-1)) &&
684 lp_servicenumber(user) < 0)
686 int homes = lp_servicenumber(HOMES_NAME);
687 char *home = get_home_dir(user);
688 if (homes >= 0 && home)
689 lp_add_home(user,homes,home);
693 /* it's ok - setup a reply */
694 if (Protocol < PROTOCOL_NT1) {
695 set_message(outbuf,3,0,True);
698 set_message(outbuf,3,3,True);
700 pstrcpy(p,"Unix"); p = skip_string(p,1);
701 pstrcpy(p,"Samba "); pstrcat(p,VERSION); p = skip_string(p,1);
702 pstrcpy(p,global_myworkgroup); p = skip_string(p,1);
703 set_message(outbuf,3,PTR_DIFF(p,smb_buf(outbuf)),False);
704 /* perhaps grab OS version here?? */
707 /* Set the correct uid in the outgoing and incoming packets
708 We will use this on future requests to determine which
709 user we should become.
712 struct passwd *pw = Get_Pwnam(user,False);
714 DEBUG(1,("Username %s is invalid on this system\n",user));
715 return(ERROR(ERRSRV,ERRbadpw));
722 SSVAL(outbuf,smb_vwv2,1);
724 /* register the name and uid as being validated, so further connections
725 to a uid can get through without a password, on the same VC */
726 sess_vuid = register_vuid(uid,gid,user,sesssetup_user,guest);
728 SSVAL(outbuf,smb_uid,sess_vuid);
729 SSVAL(inbuf,smb_uid,sess_vuid);
732 max_send = MIN(max_send,smb_bufsize);
734 DEBUG(6,("Client requested max send size of %d\n", max_send));
736 done_sesssetup = True;
738 return chain_reply(inbuf,outbuf,length,bufsize);
742 /****************************************************************************
744 ****************************************************************************/
745 int reply_chkpth(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
751 BOOL bad_path = False;
754 pstrcpy(name,smb_buf(inbuf) + 1);
755 unix_convert(name,conn,0,&bad_path,&st);
757 mode = SVAL(inbuf,smb_vwv0);
759 if (check_name(name,conn)) {
761 ok = S_ISDIR(st.st_mode);
763 ok = directory_exist(name,NULL);
768 /* We special case this - as when a Windows machine
769 is parsing a path is steps through the components
770 one at a time - if a component fails it expects
771 ERRbadpath, not ERRbadfile.
775 unix_ERR_class = ERRDOS;
776 unix_ERR_code = ERRbadpath;
780 /* Ugly - NT specific hack - maybe not needed ? (JRA) */
781 if((errno == ENOTDIR) && (Protocol >= PROTOCOL_NT1) &&
782 (get_remote_arch() == RA_WINNT))
784 unix_ERR_class = ERRDOS;
785 unix_ERR_code = ERRbaddirectory;
789 return(UNIXERROR(ERRDOS,ERRbadpath));
792 outsize = set_message(outbuf,0,0,True);
794 DEBUG(3,("chkpth %s mode=%d\n", name, mode));
800 /****************************************************************************
802 ****************************************************************************/
803 int reply_getatr(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
807 SMB_STRUCT_STAT sbuf;
812 BOOL bad_path = False;
814 pstrcpy(fname,smb_buf(inbuf) + 1);
816 /* dos smetimes asks for a stat of "" - it returns a "hidden directory"
817 under WfWg - weird! */
820 mode = aHIDDEN | aDIR;
821 if (!CAN_WRITE(conn)) mode |= aRONLY;
828 unix_convert(fname,conn,0,&bad_path,&sbuf);
829 if (check_name(fname,conn))
831 if (VALID_STAT(sbuf) || dos_stat(fname,&sbuf) == 0)
833 mode = dos_mode(conn,fname,&sbuf);
835 mtime = sbuf.st_mtime;
841 DEBUG(3,("stat of %s failed (%s)\n",fname,strerror(errno)));
847 if((errno == ENOENT) && bad_path)
849 unix_ERR_class = ERRDOS;
850 unix_ERR_code = ERRbadpath;
853 return(UNIXERROR(ERRDOS,ERRbadfile));
856 outsize = set_message(outbuf,10,0,True);
858 SSVAL(outbuf,smb_vwv0,mode);
859 if(lp_dos_filetime_resolution(SNUM(conn)) )
860 put_dos_date3(outbuf,smb_vwv1,mtime & ~1);
862 put_dos_date3(outbuf,smb_vwv1,mtime);
863 SIVAL(outbuf,smb_vwv3,(uint32)size);
865 if (Protocol >= PROTOCOL_NT1) {
866 char *p = strrchr(fname,'/');
867 uint16 flg2 = SVAL(outbuf,smb_flg2);
869 if (!is_8_3(fname, True))
870 SSVAL(outbuf,smb_flg2,flg2 | 0x40); /* IS_LONG_NAME */
873 DEBUG( 3, ( "getatr name=%s mode=%d size=%d\n", fname, mode, (uint32)size ) );
879 /****************************************************************************
881 ****************************************************************************/
882 int reply_setatr(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
890 BOOL bad_path = False;
892 pstrcpy(fname,smb_buf(inbuf) + 1);
893 unix_convert(fname,conn,0,&bad_path,&st);
895 mode = SVAL(inbuf,smb_vwv0);
896 mtime = make_unix_date3(inbuf+smb_vwv1);
898 if (VALID_STAT_OF_DIR(st) || directory_exist(fname,NULL))
900 if (check_name(fname,conn))
901 ok = (file_chmod(conn,fname,mode,NULL) == 0);
903 ok = set_filetime(conn,fname,mtime);
907 if((errno == ENOENT) && bad_path)
909 unix_ERR_class = ERRDOS;
910 unix_ERR_code = ERRbadpath;
913 return(UNIXERROR(ERRDOS,ERRnoaccess));
916 outsize = set_message(outbuf,0,0,True);
918 DEBUG( 3, ( "setatr name=%s mode=%d\n", fname, mode ) );
924 /****************************************************************************
926 ****************************************************************************/
927 int reply_dskattr(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
930 SMB_BIG_UINT dfree,dsize,bsize;
932 sys_disk_free(".",&bsize,&dfree,&dsize);
934 outsize = set_message(outbuf,5,0,True);
936 SSVAL(outbuf,smb_vwv0,dsize);
937 SSVAL(outbuf,smb_vwv1,bsize/512);
938 SSVAL(outbuf,smb_vwv2,512);
939 SSVAL(outbuf,smb_vwv3,dfree);
941 DEBUG(3,("dskattr dfree=%d\n", (unsigned int)dfree));
947 /****************************************************************************
949 Can be called from SMBsearch, SMBffirst or SMBfunique.
950 ****************************************************************************/
951 int reply_search(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
962 BOOL finished = False;
971 BOOL check_descend = False;
972 BOOL expect_close = False;
973 BOOL can_open = True;
974 BOOL bad_path = False;
976 *mask = *directory = *fname = 0;
978 /* If we were called as SMBffirst then we must expect close. */
979 if(CVAL(inbuf,smb_com) == SMBffirst)
982 outsize = set_message(outbuf,1,3,True);
983 maxentries = SVAL(inbuf,smb_vwv0);
984 dirtype = SVAL(inbuf,smb_vwv1);
985 path = smb_buf(inbuf) + 1;
986 status_len = SVAL(smb_buf(inbuf),3 + strlen(path));
989 /* dirtype &= ~aDIR; */
991 DEBUG(5,("path=%s status_len=%d\n",path,status_len));
998 pstrcpy(directory,smb_buf(inbuf)+1);
999 pstrcpy(dir2,smb_buf(inbuf)+1);
1000 unix_convert(directory,conn,0,&bad_path,NULL);
1003 if (!check_name(directory,conn))
1006 p = strrchr(dir2,'/');
1018 p = strrchr(directory,'/');
1024 if (strlen(directory) == 0)
1025 pstrcpy(directory,"./");
1027 CVAL(status,0) = dirtype;
1031 memcpy(status,smb_buf(inbuf) + 1 + strlen(path) + 4,21);
1032 memcpy(mask,status+1,11);
1034 dirtype = CVAL(status,0) & 0x1F;
1035 conn->dirptr = dptr_fetch(status+12,&dptr_num);
1038 string_set(&conn->dirpath,dptr_path(dptr_num));
1039 if (!case_sensitive)
1043 /* turn strings of spaces into a . */
1045 trim_string(mask,NULL," ");
1046 if ((p = strrchr(mask,' ')))
1051 trim_string(mask,NULL," ");
1057 /* Convert the formatted mask. (This code lives in trans2.c) */
1065 if((skip = skip_multibyte_char( *p )) != 0 )
1071 if (*p != '?' && *p != '*' && !isdoschar(*p))
1073 DEBUG(5,("Invalid char [%c] in search mask?\n",*p));
1081 if (!strchr(mask,'.') && strlen(mask)>8)
1084 fstrcpy(tmp,&mask[8]);
1090 DEBUG(5,("mask=%s directory=%s\n",mask,directory));
1094 p = smb_buf(outbuf) + 3;
1098 if (status_len == 0)
1100 dptr_num = dptr_create(conn,directory,expect_close,SVAL(inbuf,smb_pid));
1105 if((errno == ENOENT) && bad_path)
1107 unix_ERR_class = ERRDOS;
1108 unix_ERR_code = ERRbadpath;
1110 return (UNIXERROR(ERRDOS,ERRnofids));
1112 return(ERROR(ERRDOS,ERRnofids));
1116 DEBUG(4,("dptr_num is %d\n",dptr_num));
1120 if ((dirtype&0x1F) == aVOLID)
1122 memcpy(p,status,21);
1123 make_dir_struct(p,"???????????",volume_label(SNUM(conn)),0,aVOLID,0);
1124 dptr_fill(p+12,dptr_num);
1125 if (dptr_zero(p+12) && (status_len==0))
1129 p += DIR_STRUCT_SIZE;
1133 DEBUG(8,("dirpath=<%s> dontdescend=<%s>\n",
1134 conn->dirpath,lp_dontdescend(SNUM(conn))));
1135 if (in_list(conn->dirpath,
1136 lp_dontdescend(SNUM(conn)),True))
1137 check_descend = True;
1139 for (i=numentries;(i<maxentries) && !finished;i++)
1142 !get_dir_entry(conn,mask,dirtype,fname,&size,&mode,&date,check_descend);
1145 memcpy(p,status,21);
1146 make_dir_struct(p,mask,fname,size,mode,date);
1147 dptr_fill(p+12,dptr_num);
1150 p += DIR_STRUCT_SIZE;
1159 if (numentries == 0 || !ok)
1161 CVAL(outbuf,smb_rcls) = ERRDOS;
1162 SSVAL(outbuf,smb_err,ERRnofiles);
1165 /* If we were called as SMBffirst with smb_search_id == NULL
1166 and no entries were found then return error and close dirptr
1169 if(ok && expect_close && numentries == 0 && status_len == 0)
1171 CVAL(outbuf,smb_rcls) = ERRDOS;
1172 SSVAL(outbuf,smb_err,ERRnofiles);
1173 /* Also close the dptr - we know it's gone */
1174 dptr_close(dptr_num);
1177 /* If we were called as SMBfunique, then we can close the dirptr now ! */
1178 if(dptr_num >= 0 && CVAL(inbuf,smb_com) == SMBfunique)
1179 dptr_close(dptr_num);
1181 SSVAL(outbuf,smb_vwv0,numentries);
1182 SSVAL(outbuf,smb_vwv1,3 + numentries * DIR_STRUCT_SIZE);
1183 CVAL(smb_buf(outbuf),0) = 5;
1184 SSVAL(smb_buf(outbuf),1,numentries*DIR_STRUCT_SIZE);
1186 if (Protocol >= PROTOCOL_NT1) {
1187 uint16 flg2 = SVAL(outbuf,smb_flg2);
1188 SSVAL(outbuf,smb_flg2,flg2 | 0x40); /* IS_LONG_NAME */
1191 outsize += DIR_STRUCT_SIZE*numentries;
1192 smb_setlen(outbuf,outsize - 4);
1194 if ((! *directory) && dptr_path(dptr_num))
1195 slprintf(directory, sizeof(directory)-1, "(%s)",dptr_path(dptr_num));
1197 DEBUG( 4, ( "%s mask=%s path=%s dtype=%d nument=%d of %d\n",
1198 smb_fn_name(CVAL(inbuf,smb_com)),
1199 mask, directory, dirtype, numentries, maxentries ) );
1205 /****************************************************************************
1206 reply to a fclose (stop directory search)
1207 ****************************************************************************/
1208 int reply_fclose(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1216 outsize = set_message(outbuf,1,0,True);
1217 path = smb_buf(inbuf) + 1;
1218 status_len = SVAL(smb_buf(inbuf),3 + strlen(path));
1221 if (status_len == 0)
1222 return(ERROR(ERRSRV,ERRsrverror));
1224 memcpy(status,smb_buf(inbuf) + 1 + strlen(path) + 4,21);
1226 if(dptr_fetch(status+12,&dptr_num)) {
1227 /* Close the dptr - we know it's gone */
1228 dptr_close(dptr_num);
1231 SSVAL(outbuf,smb_vwv0,0);
1233 DEBUG(3,("search close\n"));
1239 /****************************************************************************
1241 ****************************************************************************/
1242 int reply_open(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1252 SMB_STRUCT_STAT sbuf;
1253 BOOL bad_path = False;
1255 int oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1257 share_mode = SVAL(inbuf,smb_vwv0);
1259 pstrcpy(fname,smb_buf(inbuf)+1);
1260 unix_convert(fname,conn,0,&bad_path,NULL);
1264 return(ERROR(ERRSRV,ERRnofids));
1266 if (!check_name(fname,conn))
1268 if((errno == ENOENT) && bad_path)
1270 unix_ERR_class = ERRDOS;
1271 unix_ERR_code = ERRbadpath;
1274 return(UNIXERROR(ERRDOS,ERRnoaccess));
1277 unixmode = unix_mode(conn,aARCH);
1279 open_file_shared(fsp,conn,fname,share_mode,3,unixmode,
1280 oplock_request,&rmode,NULL);
1284 if((errno == ENOENT) && bad_path)
1286 unix_ERR_class = ERRDOS;
1287 unix_ERR_code = ERRbadpath;
1290 return(UNIXERROR(ERRDOS,ERRnoaccess));
1293 if (sys_fstat(fsp->fd_ptr->fd,&sbuf) != 0) {
1294 close_file(fsp,False);
1295 return(ERROR(ERRDOS,ERRnoaccess));
1298 size = sbuf.st_size;
1299 fmode = dos_mode(conn,fname,&sbuf);
1300 mtime = sbuf.st_mtime;
1303 DEBUG(3,("attempt to open a directory %s\n",fname));
1304 close_file(fsp,False);
1305 return(ERROR(ERRDOS,ERRnoaccess));
1308 outsize = set_message(outbuf,7,0,True);
1309 SSVAL(outbuf,smb_vwv0,fsp->fnum);
1310 SSVAL(outbuf,smb_vwv1,fmode);
1311 if(lp_dos_filetime_resolution(SNUM(conn)) )
1312 put_dos_date3(outbuf,smb_vwv2,mtime & ~1);
1314 put_dos_date3(outbuf,smb_vwv2,mtime);
1315 SIVAL(outbuf,smb_vwv4,(uint32)size);
1316 SSVAL(outbuf,smb_vwv6,rmode);
1318 if (oplock_request && lp_fake_oplocks(SNUM(conn))) {
1319 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1322 if(fsp->granted_oplock)
1323 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1328 /****************************************************************************
1329 reply to an open and X
1330 ****************************************************************************/
1331 int reply_open_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
1334 int smb_mode = SVAL(inbuf,smb_vwv3);
1335 int smb_attr = SVAL(inbuf,smb_vwv5);
1336 /* Breakout the oplock request bits so we can set the
1337 reply bits separately. */
1338 BOOL ex_oplock_request = EXTENDED_OPLOCK_REQUEST(inbuf);
1339 BOOL core_oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1340 BOOL oplock_request = ex_oplock_request | core_oplock_request;
1342 int open_flags = SVAL(inbuf,smb_vwv2);
1343 int smb_sattr = SVAL(inbuf,smb_vwv4);
1344 uint32 smb_time = make_unix_date3(inbuf+smb_vwv6);
1346 int smb_ofun = SVAL(inbuf,smb_vwv8);
1349 int fmode=0,mtime=0,rmode=0;
1350 SMB_STRUCT_STAT sbuf;
1352 BOOL bad_path = False;
1355 /* If it's an IPC, pass off the pipe handler. */
1357 return reply_open_pipe_and_X(conn, inbuf,outbuf,length,bufsize);
1359 /* XXXX we need to handle passed times, sattr and flags */
1361 pstrcpy(fname,smb_buf(inbuf));
1362 unix_convert(fname,conn,0,&bad_path,NULL);
1366 return(ERROR(ERRSRV,ERRnofids));
1368 if (!check_name(fname,conn))
1370 if((errno == ENOENT) && bad_path)
1372 unix_ERR_class = ERRDOS;
1373 unix_ERR_code = ERRbadpath;
1376 return(UNIXERROR(ERRDOS,ERRnoaccess));
1379 unixmode = unix_mode(conn,smb_attr | aARCH);
1381 open_file_shared(fsp,conn,fname,smb_mode,smb_ofun,unixmode,
1382 oplock_request, &rmode,&smb_action);
1386 if((errno == ENOENT) && bad_path)
1388 unix_ERR_class = ERRDOS;
1389 unix_ERR_code = ERRbadpath;
1392 return(UNIXERROR(ERRDOS,ERRnoaccess));
1395 if (sys_fstat(fsp->fd_ptr->fd,&sbuf) != 0) {
1396 close_file(fsp,False);
1397 return(ERROR(ERRDOS,ERRnoaccess));
1400 size = sbuf.st_size;
1401 fmode = dos_mode(conn,fname,&sbuf);
1402 mtime = sbuf.st_mtime;
1404 close_file(fsp,False);
1405 return(ERROR(ERRDOS,ERRnoaccess));
1408 /* If the caller set the extended oplock request bit
1409 and we granted one (by whatever means) - set the
1410 correct bit for extended oplock reply.
1413 if (ex_oplock_request && lp_fake_oplocks(SNUM(conn))) {
1414 smb_action |= EXTENDED_OPLOCK_GRANTED;
1417 if(ex_oplock_request && fsp->granted_oplock) {
1418 smb_action |= EXTENDED_OPLOCK_GRANTED;
1421 /* If the caller set the core oplock request bit
1422 and we granted one (by whatever means) - set the
1423 correct bit for core oplock reply.
1426 if (core_oplock_request && lp_fake_oplocks(SNUM(conn))) {
1427 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1430 if(core_oplock_request && fsp->granted_oplock) {
1431 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1434 set_message(outbuf,15,0,True);
1435 SSVAL(outbuf,smb_vwv2,fsp->fnum);
1436 SSVAL(outbuf,smb_vwv3,fmode);
1437 if(lp_dos_filetime_resolution(SNUM(conn)) )
1438 put_dos_date3(outbuf,smb_vwv4,mtime & ~1);
1440 put_dos_date3(outbuf,smb_vwv4,mtime);
1441 SIVAL(outbuf,smb_vwv6,(uint32)size);
1442 SSVAL(outbuf,smb_vwv8,rmode);
1443 SSVAL(outbuf,smb_vwv11,smb_action);
1445 return chain_reply(inbuf,outbuf,length,bufsize);
1449 /****************************************************************************
1450 reply to a SMBulogoffX
1451 ****************************************************************************/
1452 int reply_ulogoffX(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
1454 uint16 vuid = SVAL(inbuf,smb_uid);
1455 user_struct *vuser = get_valid_user_struct(vuid);
1458 DEBUG(3,("ulogoff, vuser id %d does not map to user.\n", vuid));
1461 /* in user level security we are supposed to close any files
1462 open by this user */
1463 if ((vuser != 0) && (lp_security() != SEC_SHARE)) {
1464 file_close_user(vuid);
1467 invalidate_vuid(vuid);
1469 set_message(outbuf,2,0,True);
1471 DEBUG( 3, ( "ulogoffX vuid=%d\n", vuid ) );
1473 return chain_reply(inbuf,outbuf,length,bufsize);
1477 /****************************************************************************
1478 reply to a mknew or a create
1479 ****************************************************************************/
1480 int reply_mknew(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1488 BOOL bad_path = False;
1490 int oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1492 com = SVAL(inbuf,smb_com);
1494 createmode = SVAL(inbuf,smb_vwv0);
1495 pstrcpy(fname,smb_buf(inbuf)+1);
1496 unix_convert(fname,conn,0,&bad_path,NULL);
1498 if (createmode & aVOLID)
1500 DEBUG(0,("Attempt to create file (%s) with volid set - please report this\n",fname));
1503 unixmode = unix_mode(conn,createmode);
1507 return(ERROR(ERRSRV,ERRnofids));
1509 if (!check_name(fname,conn))
1511 if((errno == ENOENT) && bad_path)
1513 unix_ERR_class = ERRDOS;
1514 unix_ERR_code = ERRbadpath;
1517 return(UNIXERROR(ERRDOS,ERRnoaccess));
1522 /* We should fail if file exists. */
1527 /* SMBcreate - Create if file doesn't exist, truncate if it does. */
1531 /* Open file in dos compatibility share mode. */
1532 open_file_shared(fsp,conn,fname,(DENY_FCB<<4)|0xF, ofun, unixmode,
1533 oplock_request, NULL, NULL);
1537 if((errno == ENOENT) && bad_path)
1539 unix_ERR_class = ERRDOS;
1540 unix_ERR_code = ERRbadpath;
1543 return(UNIXERROR(ERRDOS,ERRnoaccess));
1546 outsize = set_message(outbuf,1,0,True);
1547 SSVAL(outbuf,smb_vwv0,fsp->fnum);
1549 if (oplock_request && lp_fake_oplocks(SNUM(conn))) {
1550 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1553 if(fsp->granted_oplock)
1554 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1556 DEBUG( 2, ( "new file %s\n", fname ) );
1557 DEBUG( 3, ( "mknew %s fd=%d dmode=%d umode=%o\n",
1558 fname, fsp->fd_ptr->fd, createmode, (int)unixmode ) );
1564 /****************************************************************************
1565 reply to a create temporary file
1566 ****************************************************************************/
1567 int reply_ctemp(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1574 BOOL bad_path = False;
1576 int oplock_request = CORE_OPLOCK_REQUEST(inbuf);
1578 createmode = SVAL(inbuf,smb_vwv0);
1579 pstrcpy(fname,smb_buf(inbuf)+1);
1580 pstrcat(fname,"/TMXXXXXX");
1581 unix_convert(fname,conn,0,&bad_path,NULL);
1583 unixmode = unix_mode(conn,createmode);
1587 return(ERROR(ERRSRV,ERRnofids));
1589 if (!check_name(fname,conn))
1591 if((errno == ENOENT) && bad_path)
1593 unix_ERR_class = ERRDOS;
1594 unix_ERR_code = ERRbadpath;
1597 return(UNIXERROR(ERRDOS,ERRnoaccess));
1600 pstrcpy(fname2,(char *)mktemp(fname));
1602 /* Open file in dos compatibility share mode. */
1603 /* We should fail if file exists. */
1604 open_file_shared(fsp,conn,fname2,(DENY_FCB<<4)|0xF, 0x10, unixmode,
1605 oplock_request, NULL, NULL);
1609 if((errno == ENOENT) && bad_path)
1611 unix_ERR_class = ERRDOS;
1612 unix_ERR_code = ERRbadpath;
1615 return(UNIXERROR(ERRDOS,ERRnoaccess));
1618 outsize = set_message(outbuf,1,2 + strlen(fname2),True);
1619 SSVAL(outbuf,smb_vwv0,fsp->fnum);
1620 CVAL(smb_buf(outbuf),0) = 4;
1621 pstrcpy(smb_buf(outbuf) + 1,fname2);
1623 if (oplock_request && lp_fake_oplocks(SNUM(conn))) {
1624 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1627 if(fsp->granted_oplock)
1628 CVAL(outbuf,smb_flg) |= CORE_OPLOCK_GRANTED;
1630 DEBUG( 2, ( "created temp file %s\n", fname2 ) );
1631 DEBUG( 3, ( "ctemp %s fd=%d dmode=%d umode=%o\n",
1632 fname2, fsp->fd_ptr->fd, createmode, (int)unixmode ) );
1638 /*******************************************************************
1639 check if a user is allowed to delete a file
1640 ********************************************************************/
1641 static BOOL can_delete(char *fname,connection_struct *conn, int dirtype)
1643 SMB_STRUCT_STAT sbuf;
1646 if (!CAN_WRITE(conn)) return(False);
1648 if (dos_lstat(fname,&sbuf) != 0) return(False);
1649 fmode = dos_mode(conn,fname,&sbuf);
1650 if (fmode & aDIR) return(False);
1651 if (!lp_delete_readonly(SNUM(conn))) {
1652 if (fmode & aRONLY) return(False);
1654 if ((fmode & ~dirtype) & (aHIDDEN | aSYSTEM))
1656 if (!check_file_sharing(conn,fname,False)) return(False);
1660 /****************************************************************************
1662 ****************************************************************************/
1663 int reply_unlink(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1672 int error = ERRnoaccess;
1675 BOOL bad_path = False;
1677 *directory = *mask = 0;
1679 dirtype = SVAL(inbuf,smb_vwv0);
1681 pstrcpy(name,smb_buf(inbuf) + 1);
1683 DEBUG(3,("reply_unlink : %s\n",name));
1685 unix_convert(name,conn,0,&bad_path,NULL);
1687 p = strrchr(name,'/');
1689 pstrcpy(directory,"./");
1693 pstrcpy(directory,name);
1697 if (is_mangled(mask))
1698 check_mangled_cache( mask );
1700 has_wild = strchr(mask,'*') || strchr(mask,'?');
1703 pstrcat(directory,"/");
1704 pstrcat(directory,mask);
1705 if (can_delete(directory,conn,dirtype) && !dos_unlink(directory)) count++;
1706 if (!count) exists = file_exist(directory,NULL);
1708 void *dirptr = NULL;
1711 if (check_name(directory,conn))
1712 dirptr = OpenDir(conn, directory, True);
1714 /* XXXX the CIFS spec says that if bit0 of the flags2 field is set then
1715 the pattern matches against the long name, otherwise the short name
1716 We don't implement this yet XXXX
1723 if (strequal(mask,"????????.???"))
1726 while ((dname = ReadDirName(dirptr)))
1729 pstrcpy(fname,dname);
1731 if(!mask_match(fname, mask, case_sensitive, False)) continue;
1733 error = ERRnoaccess;
1734 slprintf(fname,sizeof(fname)-1, "%s/%s",directory,dname);
1735 if (!can_delete(fname,conn,dirtype)) continue;
1736 if (!dos_unlink(fname)) count++;
1737 DEBUG(3,("reply_unlink : doing unlink on %s\n",fname));
1745 return(ERROR(ERRDOS,error));
1748 if((errno == ENOENT) && bad_path)
1750 unix_ERR_class = ERRDOS;
1751 unix_ERR_code = ERRbadpath;
1753 return(UNIXERROR(ERRDOS,error));
1757 outsize = set_message(outbuf,0,0,True);
1763 /****************************************************************************
1764 reply to a readbraw (core+ protocol)
1765 ****************************************************************************/
1766 int reply_readbraw(connection_struct *conn, char *inbuf, char *outbuf, int dum_size, int dum_buffsize)
1768 size_t maxcount,mincount;
1771 char *header = outbuf;
1776 * Special check if an oplock break has been issued
1777 * and the readraw request croses on the wire, we must
1778 * return a zero length response here.
1781 if(global_oplock_break)
1783 _smb_setlen(header,0);
1784 transfer_file(0,Client,(SMB_OFF_T)0,header,4,0);
1785 DEBUG(5,("readbraw - oplock break finished\n"));
1789 fsp = file_fsp(inbuf,smb_vwv0);
1791 startpos = IVAL(inbuf,smb_vwv1);
1792 #ifdef LARGE_SMB_OFF_T
1793 if(CVAL(inbuf,smb_wct) == 10) {
1795 * This is a large offset (64 bit) read.
1797 startpos |= (((SMB_OFF_T)IVAL(inbuf,smb_vwv8)) << 32);
1799 DEBUG(0,("readbraw - negative 64 bit readraw offset (%.0f) !\n",
1800 (double)startpos ));
1801 _smb_setlen(header,0);
1802 transfer_file(0,Client,(SMB_OFF_T)0,header,4,0);
1806 #endif /* LARGE_SMB_OFF_T */
1807 maxcount = (SVAL(inbuf,smb_vwv3) & 0xFFFF);
1808 mincount = (SVAL(inbuf,smb_vwv4) & 0xFFFF);
1810 /* ensure we don't overrun the packet size */
1811 maxcount = MIN(65535,maxcount);
1812 maxcount = MAX(mincount,maxcount);
1814 if (!FNUM_OK(fsp,conn) || !fsp->can_read) {
1815 DEBUG(3,("fnum %d not open in readbraw - cache prime?\n",fsp->fnum));
1816 _smb_setlen(header,0);
1817 transfer_file(0,Client,(SMB_OFF_T)0,header,4,0);
1821 if (!is_locked(fsp,conn,maxcount,startpos, F_RDLCK))
1823 SMB_OFF_T size = fsp->size;
1824 SMB_OFF_T sizeneeded = startpos + maxcount;
1826 if (size < sizeneeded)
1829 if (sys_fstat(fsp->fd_ptr->fd,&st) == 0)
1831 if (!fsp->can_write)
1835 nread = MIN(maxcount,(size - startpos));
1838 if (nread < mincount)
1841 DEBUG( 3, ( "readbraw fnum=%d start=%.0f max=%d min=%d nread=%d\n",
1842 fsp->fnum, (double)startpos,
1843 maxcount, mincount, nread ) );
1848 _smb_setlen(header,nread);
1850 #if USE_READ_PREDICTION
1851 if (!fsp->can_write)
1852 predict = read_predict(fsp->fd_ptr->fd,startpos,header+4,NULL,nread);
1853 #endif /* USE_READ_PREDICTION */
1855 if ((nread-predict) > 0)
1856 seek_file(fsp,startpos + predict);
1858 ret = (ssize_t)transfer_file(fsp->fd_ptr->fd,Client,(SMB_OFF_T)(nread-predict),header,4+predict,
1863 DEBUG(0,("ERROR: file read failure on %s at %d for %d bytes (%d)\n",
1864 fsp->fsp_name,startpos,nread,ret));
1866 #else /* UNSAFE_READRAW */
1867 ret = read_file(fsp,header+4,startpos,nread);
1868 if (ret < mincount) ret = 0;
1870 _smb_setlen(header,ret);
1871 transfer_file(0,Client,0,header,4+ret,0);
1872 #endif /* UNSAFE_READRAW */
1874 DEBUG(5,("readbraw finished\n"));
1879 /****************************************************************************
1880 reply to a lockread (core+ protocol)
1881 ****************************************************************************/
1882 int reply_lockread(connection_struct *conn, char *inbuf,char *outbuf, int length, int dum_buffsiz)
1891 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
1893 CHECK_FSP(fsp,conn);
1897 numtoread = SVAL(inbuf,smb_vwv1);
1898 startpos = IVAL(inbuf,smb_vwv2);
1900 outsize = set_message(outbuf,5,3,True);
1901 numtoread = MIN(BUFFER_SIZE-outsize,numtoread);
1902 data = smb_buf(outbuf) + 3;
1904 if(!do_lock( fsp, conn, numtoread, startpos, F_RDLCK, &eclass, &ecode)) {
1905 if((ecode == ERRlock) && lp_blocking_locks(SNUM(conn))) {
1907 * A blocking lock was requested. Package up
1908 * this smb into a queued request and push it
1909 * onto the blocking lock queue.
1911 if(push_blocking_lock_request(inbuf, length, -1, 0))
1914 return (ERROR(eclass,ecode));
1917 nread = read_file(fsp,data,startpos,numtoread);
1920 return(UNIXERROR(ERRDOS,ERRnoaccess));
1923 SSVAL(outbuf,smb_vwv0,nread);
1924 SSVAL(outbuf,smb_vwv5,nread+3);
1925 SSVAL(smb_buf(outbuf),1,nread);
1927 DEBUG( 3, ( "lockread fnum=%d num=%d nread=%d\n",
1928 fsp->fnum, numtoread, nread ) );
1934 /****************************************************************************
1936 ****************************************************************************/
1937 int reply_read(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
1944 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
1946 CHECK_FSP(fsp,conn);
1950 numtoread = SVAL(inbuf,smb_vwv1);
1951 startpos = IVAL(inbuf,smb_vwv2);
1953 outsize = set_message(outbuf,5,3,True);
1954 numtoread = MIN(BUFFER_SIZE-outsize,numtoread);
1955 data = smb_buf(outbuf) + 3;
1957 if (is_locked(fsp,conn,numtoread,startpos, F_RDLCK))
1958 return(ERROR(ERRDOS,ERRlock));
1961 nread = read_file(fsp,data,startpos,numtoread);
1964 return(UNIXERROR(ERRDOS,ERRnoaccess));
1967 SSVAL(outbuf,smb_vwv0,nread);
1968 SSVAL(outbuf,smb_vwv5,nread+3);
1969 CVAL(smb_buf(outbuf),0) = 1;
1970 SSVAL(smb_buf(outbuf),1,nread);
1972 DEBUG( 3, ( "read fnum=%d num=%d nread=%d\n",
1973 fsp->fnum, numtoread, nread ) );
1979 /****************************************************************************
1980 reply to a read and X
1981 ****************************************************************************/
1982 int reply_read_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
1984 files_struct *fsp = file_fsp(inbuf,smb_vwv2);
1985 SMB_OFF_T startpos = IVAL(inbuf,smb_vwv3);
1986 size_t smb_maxcnt = SVAL(inbuf,smb_vwv5);
1987 size_t smb_mincnt = SVAL(inbuf,smb_vwv6);
1991 /* If it's an IPC, pass off the pipe handler. */
1993 return reply_pipe_read_and_X(inbuf,outbuf,length,bufsize);
1995 CHECK_FSP(fsp,conn);
1999 set_message(outbuf,12,0,True);
2000 data = smb_buf(outbuf);
2002 #ifdef LARGE_SMB_OFF_T
2003 if(CVAL(inbuf,smb_wct) == 12) {
2005 * This is a large offset (64 bit) read.
2007 startpos |= (((SMB_OFF_T)IVAL(inbuf,smb_vwv10)) << 32);
2009 #endif /* LARGE_SMB_OFF_T */
2011 if (is_locked(fsp,conn,smb_maxcnt,startpos, F_RDLCK))
2012 return(ERROR(ERRDOS,ERRlock));
2013 nread = read_file(fsp,data,startpos,smb_maxcnt);
2016 return(UNIXERROR(ERRDOS,ERRnoaccess));
2018 SSVAL(outbuf,smb_vwv5,nread);
2019 SSVAL(outbuf,smb_vwv6,smb_offset(data,outbuf));
2020 SSVAL(smb_buf(outbuf),-2,nread);
2022 DEBUG( 3, ( "readX fnum=%d min=%d max=%d nread=%d\n",
2023 fsp->fnum, smb_mincnt, smb_maxcnt, nread ) );
2025 return chain_reply(inbuf,outbuf,length,bufsize);
2028 /****************************************************************************
2029 reply to a writebraw (core+ or LANMAN1.0 protocol)
2030 ****************************************************************************/
2031 int reply_writebraw(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2034 ssize_t total_written=0;
2035 size_t numtowrite=0;
2040 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2043 CHECK_FSP(fsp,conn);
2047 tcount = IVAL(inbuf,smb_vwv1);
2048 startpos = IVAL(inbuf,smb_vwv3);
2049 write_through = BITSETW(inbuf+smb_vwv7,0);
2051 /* We have to deal with slightly different formats depending
2052 on whether we are using the core+ or lanman1.0 protocol */
2053 if(Protocol <= PROTOCOL_COREPLUS) {
2054 numtowrite = SVAL(smb_buf(inbuf),-2);
2055 data = smb_buf(inbuf);
2057 numtowrite = SVAL(inbuf,smb_vwv10);
2058 data = smb_base(inbuf) + SVAL(inbuf, smb_vwv11);
2061 /* force the error type */
2062 CVAL(inbuf,smb_com) = SMBwritec;
2063 CVAL(outbuf,smb_com) = SMBwritec;
2065 if (is_locked(fsp,conn,tcount,startpos, F_WRLCK))
2066 return(ERROR(ERRDOS,ERRlock));
2068 if (seek_file(fsp,startpos) != startpos)
2069 DEBUG(0,("couldn't seek to %.0f in writebraw\n",(double)startpos));
2072 nwritten = write_file(fsp,data,numtowrite);
2074 DEBUG(3,("writebraw1 fnum=%d start=%.0f num=%d wrote=%d sync=%d\n",
2075 fsp->fnum, (double)startpos, numtowrite, nwritten, write_through));
2077 if (nwritten < numtowrite)
2078 return(UNIXERROR(ERRHRD,ERRdiskfull));
2080 total_written = nwritten;
2082 /* Return a message to the redirector to tell it
2083 to send more bytes */
2084 CVAL(outbuf,smb_com) = SMBwritebraw;
2085 SSVALS(outbuf,smb_vwv0,-1);
2086 outsize = set_message(outbuf,Protocol>PROTOCOL_COREPLUS?1:0,0,True);
2087 send_smb(Client,outbuf);
2089 /* Now read the raw data into the buffer and write it */
2090 if (read_smb_length(Client,inbuf,SMB_SECONDARY_WAIT) == -1) {
2091 exit_server("secondary writebraw failed");
2094 /* Even though this is not an smb message, smb_len
2095 returns the generic length of an smb message */
2096 numtowrite = smb_len(inbuf);
2098 if (tcount > nwritten+numtowrite) {
2099 DEBUG(3,("Client overestimated the write %d %d %d\n",
2100 tcount,nwritten,numtowrite));
2103 nwritten = transfer_file(Client,fsp->fd_ptr->fd,(SMB_OFF_T)numtowrite,NULL,0,
2105 total_written += nwritten;
2107 /* Set up outbuf to return the correct return */
2108 outsize = set_message(outbuf,1,0,True);
2109 CVAL(outbuf,smb_com) = SMBwritec;
2110 SSVAL(outbuf,smb_vwv0,total_written);
2112 if (nwritten < (ssize_t)numtowrite) {
2113 CVAL(outbuf,smb_rcls) = ERRHRD;
2114 SSVAL(outbuf,smb_err,ERRdiskfull);
2117 if (lp_syncalways(SNUM(conn)) || write_through)
2118 sync_file(conn,fsp);
2120 DEBUG(3,("writebraw2 fnum=%d start=%.0f num=%d wrote=%d\n",
2121 fsp->fnum, (double)startpos, numtowrite, total_written));
2123 /* we won't return a status if write through is not selected - this
2124 follows what WfWg does */
2125 if (!write_through && total_written==tcount)
2131 /****************************************************************************
2132 reply to a writeunlock (core+)
2133 ****************************************************************************/
2134 int reply_writeunlock(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2136 ssize_t nwritten = -1;
2142 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2145 CHECK_FSP(fsp,conn);
2149 numtowrite = SVAL(inbuf,smb_vwv1);
2150 startpos = IVAL(inbuf,smb_vwv2);
2151 data = smb_buf(inbuf) + 3;
2153 if (is_locked(fsp,conn,numtowrite,startpos, F_WRLCK))
2154 return(ERROR(ERRDOS,ERRlock));
2156 seek_file(fsp,startpos);
2158 /* The special X/Open SMB protocol handling of
2159 zero length writes is *NOT* done for
2164 nwritten = write_file(fsp,data,numtowrite);
2166 if (lp_syncalways(SNUM(conn)))
2167 sync_file(conn,fsp);
2169 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0))
2170 return(UNIXERROR(ERRDOS,ERRnoaccess));
2172 if(!do_unlock(fsp, conn, numtowrite, startpos, &eclass, &ecode))
2173 return(ERROR(eclass,ecode));
2175 outsize = set_message(outbuf,1,0,True);
2177 SSVAL(outbuf,smb_vwv0,nwritten);
2179 DEBUG( 3, ( "writeunlock fnum=%d num=%d wrote=%d\n",
2180 fsp->fnum, numtowrite, nwritten ) );
2185 /****************************************************************************
2187 ****************************************************************************/
2188 int reply_write(connection_struct *conn, char *inbuf,char *outbuf,int dum_size,int dum_buffsize)
2191 ssize_t nwritten = -1;
2194 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2197 CHECK_FSP(fsp,conn);
2201 numtowrite = SVAL(inbuf,smb_vwv1);
2202 startpos = IVAL(inbuf,smb_vwv2);
2203 data = smb_buf(inbuf) + 3;
2205 if (is_locked(fsp,conn,numtowrite,startpos, F_WRLCK))
2206 return(ERROR(ERRDOS,ERRlock));
2208 seek_file(fsp,startpos);
2210 /* X/Open SMB protocol says that if smb_vwv1 is
2211 zero then the file size should be extended or
2212 truncated to the size given in smb_vwv[2-3] */
2214 nwritten = set_filelen(fsp->fd_ptr->fd, (SMB_OFF_T)startpos);
2216 nwritten = write_file(fsp,data,numtowrite);
2218 if (lp_syncalways(SNUM(conn)))
2219 sync_file(conn,fsp);
2221 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0))
2222 return(UNIXERROR(ERRDOS,ERRnoaccess));
2224 outsize = set_message(outbuf,1,0,True);
2226 SSVAL(outbuf,smb_vwv0,nwritten);
2228 if (nwritten < (ssize_t)numtowrite) {
2229 CVAL(outbuf,smb_rcls) = ERRHRD;
2230 SSVAL(outbuf,smb_err,ERRdiskfull);
2233 DEBUG(3,("write fnum=%d num=%d wrote=%d\n",
2234 fsp->fnum, numtowrite, nwritten));
2240 /****************************************************************************
2241 reply to a write and X
2242 ****************************************************************************/
2243 int reply_write_and_X(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
2245 files_struct *fsp = file_fsp(inbuf,smb_vwv2);
2246 SMB_OFF_T startpos = IVAL(inbuf,smb_vwv3);
2247 size_t numtowrite = SVAL(inbuf,smb_vwv10);
2248 BOOL write_through = BITSETW(inbuf+smb_vwv7,0);
2249 ssize_t nwritten = -1;
2250 int smb_doff = SVAL(inbuf,smb_vwv11);
2253 CHECK_FSP(fsp,conn);
2257 data = smb_base(inbuf) + smb_doff;
2259 #ifdef LARGE_SMB_OFF_T
2260 if(CVAL(inbuf,smb_wct) == 14) {
2262 * This is a large offset (64 bit) write.
2264 startpos |= (((SMB_OFF_T)IVAL(inbuf,smb_vwv12)) << 32);
2266 #endif /* LARGE_SMB_OFF_T */
2268 if (is_locked(fsp,conn,numtowrite,startpos, F_WRLCK))
2269 return(ERROR(ERRDOS,ERRlock));
2271 seek_file(fsp,startpos);
2273 /* X/Open SMB protocol says that, unlike SMBwrite
2274 if the length is zero then NO truncation is
2275 done, just a write of zero. To truncate a file,
2280 nwritten = write_file(fsp,data,numtowrite);
2282 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0))
2283 return(UNIXERROR(ERRDOS,ERRnoaccess));
2285 set_message(outbuf,6,0,True);
2287 SSVAL(outbuf,smb_vwv2,nwritten);
2289 if (nwritten < (ssize_t)numtowrite) {
2290 CVAL(outbuf,smb_rcls) = ERRHRD;
2291 SSVAL(outbuf,smb_err,ERRdiskfull);
2294 DEBUG(3,("writeX fnum=%d num=%d wrote=%d\n",
2295 fsp->fnum, numtowrite, nwritten));
2297 if (lp_syncalways(SNUM(conn)) || write_through)
2298 sync_file(conn,fsp);
2300 return chain_reply(inbuf,outbuf,length,bufsize);
2304 /****************************************************************************
2306 ****************************************************************************/
2307 int reply_lseek(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2313 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2315 CHECK_FSP(fsp,conn);
2318 mode = SVAL(inbuf,smb_vwv1) & 3;
2319 startpos = IVAL(inbuf,smb_vwv2);
2323 case 0: umode = SEEK_SET; break;
2324 case 1: umode = SEEK_CUR; break;
2325 case 2: umode = SEEK_END; break;
2327 umode = SEEK_SET; break;
2330 res = sys_lseek(fsp->fd_ptr->fd,startpos,umode);
2333 outsize = set_message(outbuf,2,0,True);
2334 SIVALS(outbuf,smb_vwv0,res);
2336 DEBUG(3,("lseek fnum=%d ofs=%.0f mode=%d\n",
2337 fsp->fnum, (double)startpos, mode));
2342 /****************************************************************************
2344 ****************************************************************************/
2345 int reply_flush(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2347 int outsize = set_message(outbuf,0,0,True);
2348 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2351 CHECK_FSP(fsp,conn);
2356 file_sync_all(conn);
2358 sync_file(conn,fsp);
2361 DEBUG(3,("flush\n"));
2366 /****************************************************************************
2368 ****************************************************************************/
2369 int reply_exit(connection_struct *conn,
2370 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2372 int outsize = set_message(outbuf,0,0,True);
2373 DEBUG(3,("exit\n"));
2379 /****************************************************************************
2380 Reply to a close - has to deal with closing a directory opened by NT SMB's.
2381 ****************************************************************************/
2382 int reply_close(connection_struct *conn,
2383 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2387 int32 eclass = 0, err = 0;
2388 files_struct *fsp = NULL;
2390 outsize = set_message(outbuf,0,0,True);
2392 /* If it's an IPC, pass off to the pipe handler. */
2394 return reply_pipe_close(conn, inbuf,outbuf);
2397 fsp = file_fsp(inbuf,smb_vwv0);
2400 * We can only use CHECK_FSP if we know it's not a directory.
2403 if(!fsp || !fsp->open || (fsp->conn != conn))
2404 return(ERROR(ERRDOS,ERRbadfid));
2406 if(HAS_CACHED_ERROR(fsp)) {
2407 eclass = fsp->wbmpx_ptr->wr_errclass;
2408 err = fsp->wbmpx_ptr->wr_error;
2411 if(fsp->is_directory) {
2413 * Special case - close NT SMB directory
2416 DEBUG(3,("close directory fnum=%d\n", fsp->fnum));
2417 close_directory(fsp);
2420 * Close ordinary file.
2422 mtime = make_unix_date3(inbuf+smb_vwv1);
2424 /* try and set the date */
2425 set_filetime(conn, fsp->fsp_name,mtime);
2427 DEBUG(3,("close fd=%d fnum=%d (numopen=%d)\n",
2428 fsp->fd_ptr->fd, fsp->fnum,
2429 conn->num_files_open));
2431 close_file(fsp,True);
2434 /* We have a cached error */
2436 return(ERROR(eclass,err));
2442 /****************************************************************************
2443 reply to a writeclose (Core+ protocol)
2444 ****************************************************************************/
2445 int reply_writeclose(connection_struct *conn,
2446 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2449 ssize_t nwritten = -1;
2454 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2456 CHECK_FSP(fsp,conn);
2460 numtowrite = SVAL(inbuf,smb_vwv1);
2461 startpos = IVAL(inbuf,smb_vwv2);
2462 mtime = make_unix_date3(inbuf+smb_vwv4);
2463 data = smb_buf(inbuf) + 1;
2465 if (is_locked(fsp,conn,numtowrite,startpos, F_WRLCK))
2466 return(ERROR(ERRDOS,ERRlock));
2468 seek_file(fsp,startpos);
2470 nwritten = write_file(fsp,data,numtowrite);
2472 set_filetime(conn, fsp->fsp_name,mtime);
2474 close_file(fsp,True);
2476 DEBUG(3,("writeclose fnum=%d num=%d wrote=%d (numopen=%d)\n",
2477 fsp->fnum, numtowrite, nwritten,
2478 conn->num_files_open));
2481 return(UNIXERROR(ERRDOS,ERRnoaccess));
2483 outsize = set_message(outbuf,1,0,True);
2485 SSVAL(outbuf,smb_vwv0,nwritten);
2490 /****************************************************************************
2492 ****************************************************************************/
2493 int reply_lock(connection_struct *conn,
2494 char *inbuf,char *outbuf, int length, int dum_buffsize)
2496 int outsize = set_message(outbuf,0,0,True);
2497 SMB_OFF_T count,offset;
2500 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2502 CHECK_FSP(fsp,conn);
2505 count = IVAL(inbuf,smb_vwv1);
2506 offset = IVAL(inbuf,smb_vwv3);
2508 DEBUG(3,("lock fd=%d fnum=%d offset=%.0f count=%.0f\n",
2509 fsp->fd_ptr->fd, fsp->fnum, (double)offset, (double)count));
2511 if (!do_lock(fsp, conn, count, offset, F_WRLCK, &eclass, &ecode)) {
2512 if((ecode == ERRlock) && lp_blocking_locks(SNUM(conn))) {
2514 * A blocking lock was requested. Package up
2515 * this smb into a queued request and push it
2516 * onto the blocking lock queue.
2518 if(push_blocking_lock_request(inbuf, length, -1, 0))
2521 return (ERROR(eclass,ecode));
2528 /****************************************************************************
2530 ****************************************************************************/
2531 int reply_unlock(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2533 int outsize = set_message(outbuf,0,0,True);
2534 SMB_OFF_T count,offset;
2537 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2539 CHECK_FSP(fsp,conn);
2542 count = IVAL(inbuf,smb_vwv1);
2543 offset = IVAL(inbuf,smb_vwv3);
2545 if(!do_unlock(fsp, conn, count, offset, &eclass, &ecode))
2546 return (ERROR(eclass,ecode));
2548 DEBUG( 3, ( "unlock fd=%d fnum=%d offset=%.0f count=%.0f\n",
2549 fsp->fd_ptr->fd, fsp->fnum, (double)offset, (double)count ) );
2555 /****************************************************************************
2557 ****************************************************************************/
2558 int reply_tdis(connection_struct *conn,
2559 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2561 int outsize = set_message(outbuf,0,0,True);
2564 vuid = SVAL(inbuf,smb_uid);
2567 DEBUG(4,("Invalid connection in tdis\n"));
2568 return(ERROR(ERRSRV,ERRinvnid));
2573 close_cnum(conn,vuid);
2580 /****************************************************************************
2582 ****************************************************************************/
2583 int reply_echo(connection_struct *conn,
2584 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2586 int smb_reverb = SVAL(inbuf,smb_vwv0);
2588 int data_len = smb_buflen(inbuf);
2589 int outsize = set_message(outbuf,1,data_len,True);
2591 /* copy any incoming data back out */
2593 memcpy(smb_buf(outbuf),smb_buf(inbuf),data_len);
2595 if (smb_reverb > 100) {
2596 DEBUG(0,("large reverb (%d)?? Setting to 100\n",smb_reverb));
2600 for (seq_num =1 ; seq_num <= smb_reverb ; seq_num++) {
2601 SSVAL(outbuf,smb_vwv0,seq_num);
2603 smb_setlen(outbuf,outsize - 4);
2605 send_smb(Client,outbuf);
2608 DEBUG(3,("echo %d times\n", smb_reverb));
2614 /****************************************************************************
2615 reply to a printopen
2616 ****************************************************************************/
2617 int reply_printopen(connection_struct *conn,
2618 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2625 *fname = *fname2 = 0;
2627 if (!CAN_PRINT(conn))
2628 return(ERROR(ERRDOS,ERRnoaccess));
2633 pstrcpy(s,smb_buf(inbuf)+1);
2636 if (!(isalnum((int)*p) || strchr("._-",*p)))
2641 if (strlen(s) > 10) s[10] = 0;
2643 slprintf(fname,sizeof(fname)-1, "%s.XXXXXX",s);
2648 return(ERROR(ERRSRV,ERRnofids));
2650 pstrcpy(fname2,(char *)mktemp(fname));
2652 if (!check_name(fname2,conn)) {
2654 return(ERROR(ERRDOS,ERRnoaccess));
2657 /* Open for exclusive use, write only. */
2658 open_file_shared(fsp,conn,fname2,
2659 (DENY_ALL<<4)|1, 0x12, unix_mode(conn,0),
2664 return(UNIXERROR(ERRDOS,ERRnoaccess));
2667 /* force it to be a print file */
2668 fsp->print_file = True;
2670 outsize = set_message(outbuf,1,0,True);
2671 SSVAL(outbuf,smb_vwv0,fsp->fnum);
2673 DEBUG(3,("openprint %s fd=%d fnum=%d\n",
2674 fname2, fsp->fd_ptr->fd, fsp->fnum));
2680 /****************************************************************************
2681 reply to a printclose
2682 ****************************************************************************/
2683 int reply_printclose(connection_struct *conn,
2684 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2686 int outsize = set_message(outbuf,0,0,True);
2687 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2689 CHECK_FSP(fsp,conn);
2692 if (!CAN_PRINT(conn))
2693 return(ERROR(ERRDOS,ERRnoaccess));
2695 DEBUG(3,("printclose fd=%d fnum=%d\n",
2696 fsp->fd_ptr->fd,fsp->fnum));
2698 close_file(fsp,True);
2704 /****************************************************************************
2705 reply to a printqueue
2706 ****************************************************************************/
2707 int reply_printqueue(connection_struct *conn,
2708 char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2710 int outsize = set_message(outbuf,2,3,True);
2711 int max_count = SVAL(inbuf,smb_vwv0);
2712 int start_index = SVAL(inbuf,smb_vwv1);
2714 /* we used to allow the client to get the cnum wrong, but that
2715 is really quite gross and only worked when there was only
2716 one printer - I think we should now only accept it if they
2717 get it right (tridge) */
2718 if (!CAN_PRINT(conn))
2719 return(ERROR(ERRDOS,ERRnoaccess));
2721 SSVAL(outbuf,smb_vwv0,0);
2722 SSVAL(outbuf,smb_vwv1,0);
2723 CVAL(smb_buf(outbuf),0) = 1;
2724 SSVAL(smb_buf(outbuf),1,0);
2726 DEBUG(3,("printqueue start_index=%d max_count=%d\n",
2727 start_index, max_count));
2730 print_queue_struct *queue = NULL;
2731 char *p = smb_buf(outbuf) + 3;
2732 int count = get_printqueue(SNUM(conn), conn,&queue,NULL);
2733 int num_to_get = ABS(max_count);
2734 int first = (max_count>0?start_index:start_index+max_count+1);
2740 num_to_get = MIN(num_to_get,count-first);
2743 for (i=first;i<first+num_to_get;i++) {
2744 put_dos_date2(p,0,queue[i].time);
2745 CVAL(p,4) = (queue[i].status==LPQ_PRINTING?2:3);
2746 SSVAL(p,5,printjob_encode(SNUM(conn),
2748 SIVAL(p,7,queue[i].size);
2750 StrnCpy(p+12,queue[i].user,16);
2755 outsize = set_message(outbuf,2,28*count+3,False);
2756 SSVAL(outbuf,smb_vwv0,count);
2757 SSVAL(outbuf,smb_vwv1,(max_count>0?first+count:first-1));
2758 CVAL(smb_buf(outbuf),0) = 1;
2759 SSVAL(smb_buf(outbuf),1,28*count);
2762 if (queue) free(queue);
2764 DEBUG(3,("%d entries returned in queue\n",count));
2771 /****************************************************************************
2772 reply to a printwrite
2773 ****************************************************************************/
2774 int reply_printwrite(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2777 int outsize = set_message(outbuf,0,0,True);
2779 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
2781 if (!CAN_PRINT(conn))
2782 return(ERROR(ERRDOS,ERRnoaccess));
2784 CHECK_FSP(fsp,conn);
2788 numtowrite = SVAL(smb_buf(inbuf),1);
2789 data = smb_buf(inbuf) + 3;
2791 if (write_file(fsp,data,numtowrite) != numtowrite)
2792 return(UNIXERROR(ERRDOS,ERRnoaccess));
2794 DEBUG( 3, ( "printwrite fnum=%d num=%d\n", fsp->fnum, numtowrite ) );
2800 /****************************************************************************
2802 ****************************************************************************/
2803 int reply_mkdir(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2806 int outsize,ret= -1;
2807 BOOL bad_path = False;
2809 pstrcpy(directory,smb_buf(inbuf) + 1);
2810 unix_convert(directory,conn,0,&bad_path,NULL);
2812 if (check_name(directory, conn))
2813 ret = dos_mkdir(directory,unix_mode(conn,aDIR));
2817 if((errno == ENOENT) && bad_path)
2819 unix_ERR_class = ERRDOS;
2820 unix_ERR_code = ERRbadpath;
2822 return(UNIXERROR(ERRDOS,ERRnoaccess));
2825 outsize = set_message(outbuf,0,0,True);
2827 DEBUG( 3, ( "mkdir %s ret=%d\n", directory, ret ) );
2832 /****************************************************************************
2833 Static function used by reply_rmdir to delete an entire directory
2835 ****************************************************************************/
2836 static BOOL recursive_rmdir(char *directory)
2840 void *dirptr = OpenDir(NULL, directory, False);
2845 while((dname = ReadDirName(dirptr)))
2850 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
2853 /* Construct the full name. */
2854 if(strlen(directory) + strlen(dname) + 1 >= sizeof(fullname))
2860 pstrcpy(fullname, directory);
2861 pstrcat(fullname, "/");
2862 pstrcat(fullname, dname);
2864 if(dos_lstat(fullname, &st) != 0)
2870 if(st.st_mode & S_IFDIR)
2872 if(recursive_rmdir(fullname)!=0)
2877 if(dos_rmdir(fullname) != 0)
2883 else if(dos_unlink(fullname) != 0)
2893 /****************************************************************************
2895 ****************************************************************************/
2896 int reply_rmdir(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
2901 BOOL bad_path = False;
2903 pstrcpy(directory,smb_buf(inbuf) + 1);
2904 unix_convert(directory,conn, NULL,&bad_path,NULL);
2906 if (check_name(directory,conn))
2909 dptr_closepath(directory,SVAL(inbuf,smb_pid));
2910 ok = (dos_rmdir(directory) == 0);
2911 if(!ok && (errno == ENOTEMPTY) && lp_veto_files(SNUM(conn)))
2913 /* Check to see if the only thing in this directory are
2914 vetoed files/directories. If so then delete them and
2915 retry. If we fail to delete any of them (and we *don't*
2916 do a recursive delete) then fail the rmdir. */
2917 BOOL all_veto_files = True;
2919 void *dirptr = OpenDir(conn, directory, False);
2923 int dirpos = TellDir(dirptr);
2924 while ((dname = ReadDirName(dirptr)))
2926 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
2928 if(!IS_VETO_PATH(conn, dname))
2930 all_veto_files = False;
2936 SeekDir(dirptr,dirpos);
2937 while ((dname = ReadDirName(dirptr)))
2942 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
2945 /* Construct the full name. */
2946 if(strlen(directory) + strlen(dname) + 1 >= sizeof(fullname))
2951 pstrcpy(fullname, directory);
2952 pstrcat(fullname, "/");
2953 pstrcat(fullname, dname);
2955 if(dos_lstat(fullname, &st) != 0)
2957 if(st.st_mode & S_IFDIR)
2959 if(lp_recursive_veto_delete(SNUM(conn)))
2961 if(recursive_rmdir(fullname) != 0)
2964 if(dos_rmdir(fullname) != 0)
2967 else if(dos_unlink(fullname) != 0)
2971 /* Retry the rmdir */
2972 ok = (dos_rmdir(directory) == 0);
2982 DEBUG(3,("couldn't remove directory %s : %s\n",
2983 directory,strerror(errno)));
2988 if((errno == ENOENT) && bad_path)
2990 unix_ERR_class = ERRDOS;
2991 unix_ERR_code = ERRbadpath;
2993 return(UNIXERROR(ERRDOS,ERRbadpath));
2996 outsize = set_message(outbuf,0,0,True);
2998 DEBUG( 3, ( "rmdir %s\n", directory ) );
3004 /*******************************************************************
3005 resolve wildcards in a filename rename
3006 ********************************************************************/
3007 static BOOL resolve_wildcards(char *name1,char *name2)
3009 fstring root1,root2;
3013 name1 = strrchr(name1,'/');
3014 name2 = strrchr(name2,'/');
3016 if (!name1 || !name2) return(False);
3018 fstrcpy(root1,name1);
3019 fstrcpy(root2,name2);
3020 p = strrchr(root1,'.');
3027 p = strrchr(root2,'.');
3059 pstrcpy(name2,root2);
3062 pstrcat(name2,ext2);
3068 /*******************************************************************
3069 check if a user is allowed to rename a file
3070 ********************************************************************/
3071 static BOOL can_rename(char *fname,connection_struct *conn)
3073 SMB_STRUCT_STAT sbuf;
3075 if (!CAN_WRITE(conn)) return(False);
3077 if (dos_lstat(fname,&sbuf) != 0) return(False);
3078 if (!check_file_sharing(conn,fname,True)) return(False);
3083 /****************************************************************************
3084 The guts of the rename command, split out so it may be called by the NT SMB
3086 ****************************************************************************/
3087 int rename_internals(connection_struct *conn,
3088 char *inbuf, char *outbuf, char *name,
3089 char *newname, BOOL replace_if_exists)
3093 pstring newname_last_component;
3096 BOOL bad_path1 = False;
3097 BOOL bad_path2 = False;
3099 int error = ERRnoaccess;
3102 *directory = *mask = 0;
3104 unix_convert(name,conn,0,&bad_path1,NULL);
3105 unix_convert(newname,conn,newname_last_component,&bad_path2,NULL);
3108 * Split the old name into directory and last component
3109 * strings. Note that unix_convert may have stripped off a
3110 * leading ./ from both name and newname if the rename is
3111 * at the root of the share. We need to make sure either both
3112 * name and newname contain a / character or neither of them do
3113 * as this is checked in resolve_wildcards().
3116 p = strrchr(name,'/');
3118 pstrcpy(directory,".");
3122 pstrcpy(directory,name);
3124 *p = '/'; /* Replace needed for exceptional test below. */
3127 if (is_mangled(mask))
3128 check_mangled_cache( mask );
3130 has_wild = strchr(mask,'*') || strchr(mask,'?');
3134 * No wildcards - just process the one file.
3136 BOOL is_short_name = is_8_3(name, True);
3138 /* Add a terminating '/' to the directory name. */
3139 pstrcat(directory,"/");
3140 pstrcat(directory,mask);
3142 /* Ensure newname contains a '/' also */
3143 if(strrchr(newname,'/') == 0) {
3146 pstrcpy(tmpstr, "./");
3147 pstrcat(tmpstr, newname);
3148 pstrcpy(newname, tmpstr);
3151 DEBUG(3,("rename_internals: case_sensitive = %d, case_preserve = %d, short case preserve = %d, directory = %s, newname = %s, newname_last_component = %s, is_8_3 = %d\n",
3152 case_sensitive, case_preserve, short_case_preserve, directory,
3153 newname, newname_last_component, is_short_name));
3156 * Check for special case with case preserving and not
3157 * case sensitive, if directory and newname are identical,
3158 * and the old last component differs from the original
3159 * last component only by case, then we should allow
3160 * the rename (user is trying to change the case of the
3163 if((case_sensitive == False) &&
3164 (((case_preserve == True) &&
3165 (is_short_name == False)) ||
3166 ((short_case_preserve == True) &&
3167 (is_short_name == True))) &&
3168 strcsequal(directory, newname)) {
3169 pstring newname_modified_last_component;
3172 * Get the last component of the modified name.
3173 * Note that we guarantee that newname contains a '/'
3176 p = strrchr(newname,'/');
3177 pstrcpy(newname_modified_last_component,p+1);
3179 if(strcsequal(newname_modified_last_component,
3180 newname_last_component) == False) {
3182 * Replace the modified last component with
3185 pstrcpy(p+1, newname_last_component);
3189 if(replace_if_exists) {
3191 * NT SMB specific flag - rename can overwrite
3192 * file with the same name so don't check for
3195 if(resolve_wildcards(directory,newname) &&
3196 can_rename(directory,conn) &&
3197 !dos_rename(directory,newname))
3200 if (resolve_wildcards(directory,newname) &&
3201 can_rename(directory,conn) &&
3202 !file_exist(newname,NULL) &&
3203 !dos_rename(directory,newname))
3207 DEBUG(3,("rename_internals: %s doing rename on %s -> %s\n",(count != 0) ? "succeeded" : "failed",
3208 directory,newname));
3210 if (!count) exists = file_exist(directory,NULL);
3211 if (!count && exists && file_exist(newname,NULL)) {
3217 * Wildcards - process each file that matches.
3219 void *dirptr = NULL;
3223 if (check_name(directory,conn))
3224 dirptr = OpenDir(conn, directory, True);
3229 if (strequal(mask,"????????.???"))
3232 while ((dname = ReadDirName(dirptr))) {
3234 pstrcpy(fname,dname);
3236 if(!mask_match(fname, mask, case_sensitive, False))
3239 error = ERRnoaccess;
3240 slprintf(fname,sizeof(fname)-1,"%s/%s",directory,dname);
3241 if (!can_rename(fname,conn)) {
3242 DEBUG(6,("rename %s refused\n", fname));
3245 pstrcpy(destname,newname);
3247 if (!resolve_wildcards(fname,destname)) {
3248 DEBUG(6,("resolve_wildcards %s %s failed\n", fname, destname));
3252 if (!replace_if_exists && file_exist(destname,NULL)) {
3253 DEBUG(6,("file_exist %s\n", destname));
3258 if (!dos_rename(fname,destname))
3260 DEBUG(3,("rename_internals: doing rename on %s -> %s\n",fname,destname));
3268 return(ERROR(ERRDOS,error));
3270 if((errno == ENOENT) && (bad_path1 || bad_path2)) {
3271 unix_ERR_class = ERRDOS;
3272 unix_ERR_code = ERRbadpath;
3274 return(UNIXERROR(ERRDOS,error));
3281 /****************************************************************************
3283 ****************************************************************************/
3285 int reply_mv(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3291 pstrcpy(name,smb_buf(inbuf) + 1);
3292 pstrcpy(newname,smb_buf(inbuf) + 3 + strlen(name));
3294 DEBUG(3,("reply_mv : %s -> %s\n",name,newname));
3296 outsize = rename_internals(conn, inbuf, outbuf, name, newname, False);
3298 outsize = set_message(outbuf,0,0,True);
3303 /*******************************************************************
3304 copy a file as part of a reply_copy
3305 ******************************************************************/
3306 static BOOL copy_file(char *src,char *dest1,connection_struct *conn, int ofun,
3307 int count,BOOL target_is_directory)
3312 files_struct *fsp1,*fsp2;
3315 pstrcpy(dest,dest1);
3316 if (target_is_directory) {
3317 char *p = strrchr(src,'/');
3326 if (!file_exist(src,&st)) return(False);
3329 if (!fsp1) return(False);
3330 open_file_shared(fsp1,conn,src,(DENY_NONE<<4),
3331 1,0,0,&Access,&action);
3338 if (!target_is_directory && count)
3343 close_file(fsp1,False);
3346 open_file_shared(fsp2,conn,dest,(DENY_NONE<<4)|1,
3347 ofun,st.st_mode,0,&Access,&action);
3350 close_file(fsp1,False);
3355 if ((ofun&3) == 1) {
3356 sys_lseek(fsp2->fd_ptr->fd,0,SEEK_END);
3360 ret = transfer_file(fsp1->fd_ptr->fd,
3361 fsp2->fd_ptr->fd,st.st_size,NULL,0,0);
3363 close_file(fsp1,False);
3364 close_file(fsp2,False);
3366 return(ret == st.st_size);
3371 /****************************************************************************
3372 reply to a file copy.
3373 ****************************************************************************/
3374 int reply_copy(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3379 pstring mask,newname;
3382 int error = ERRnoaccess;
3385 int tid2 = SVAL(inbuf,smb_vwv0);
3386 int ofun = SVAL(inbuf,smb_vwv1);
3387 int flags = SVAL(inbuf,smb_vwv2);
3388 BOOL target_is_directory=False;
3389 BOOL bad_path1 = False;
3390 BOOL bad_path2 = False;
3392 *directory = *mask = 0;
3394 pstrcpy(name,smb_buf(inbuf));
3395 pstrcpy(newname,smb_buf(inbuf) + 1 + strlen(name));
3397 DEBUG(3,("reply_copy : %s -> %s\n",name,newname));
3399 if (tid2 != conn->cnum) {
3400 /* can't currently handle inter share copies XXXX */
3401 DEBUG(3,("Rejecting inter-share copy\n"));
3402 return(ERROR(ERRSRV,ERRinvdevice));
3405 unix_convert(name,conn,0,&bad_path1,NULL);
3406 unix_convert(newname,conn,0,&bad_path2,NULL);
3408 target_is_directory = directory_exist(newname,NULL);
3410 if ((flags&1) && target_is_directory) {
3411 return(ERROR(ERRDOS,ERRbadfile));
3414 if ((flags&2) && !target_is_directory) {
3415 return(ERROR(ERRDOS,ERRbadpath));
3418 if ((flags&(1<<5)) && directory_exist(name,NULL)) {
3419 /* wants a tree copy! XXXX */
3420 DEBUG(3,("Rejecting tree copy\n"));
3421 return(ERROR(ERRSRV,ERRerror));
3424 p = strrchr(name,'/');
3426 pstrcpy(directory,"./");
3430 pstrcpy(directory,name);
3434 if (is_mangled(mask))
3435 check_mangled_cache( mask );
3437 has_wild = strchr(mask,'*') || strchr(mask,'?');
3440 pstrcat(directory,"/");
3441 pstrcat(directory,mask);
3442 if (resolve_wildcards(directory,newname) &&
3443 copy_file(directory,newname,conn,ofun,
3444 count,target_is_directory)) count++;
3445 if (!count) exists = file_exist(directory,NULL);
3447 void *dirptr = NULL;
3451 if (check_name(directory,conn))
3452 dirptr = OpenDir(conn, directory, True);
3458 if (strequal(mask,"????????.???"))
3461 while ((dname = ReadDirName(dirptr)))
3464 pstrcpy(fname,dname);
3466 if(!mask_match(fname, mask, case_sensitive, False)) continue;
3468 error = ERRnoaccess;
3469 slprintf(fname,sizeof(fname)-1, "%s/%s",directory,dname);
3470 pstrcpy(destname,newname);
3471 if (resolve_wildcards(fname,destname) &&
3472 copy_file(directory,newname,conn,ofun,
3473 count,target_is_directory)) count++;
3474 DEBUG(3,("reply_copy : doing copy on %s -> %s\n",fname,destname));
3482 return(ERROR(ERRDOS,error));
3485 if((errno == ENOENT) && (bad_path1 || bad_path2))
3487 unix_ERR_class = ERRDOS;
3488 unix_ERR_code = ERRbadpath;
3490 return(UNIXERROR(ERRDOS,error));
3494 outsize = set_message(outbuf,1,0,True);
3495 SSVAL(outbuf,smb_vwv0,count);
3500 /****************************************************************************
3502 ****************************************************************************/
3503 int reply_setdir(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3511 if (!CAN_SETDIR(snum))
3512 return(ERROR(ERRDOS,ERRnoaccess));
3514 pstrcpy(newdir,smb_buf(inbuf) + 1);
3517 if (strlen(newdir) == 0) {
3520 ok = directory_exist(newdir,NULL);
3522 string_set(&conn->connectpath,newdir);
3527 return(ERROR(ERRDOS,ERRbadpath));
3529 outsize = set_message(outbuf,0,0,True);
3530 CVAL(outbuf,smb_reh) = CVAL(inbuf,smb_reh);
3532 DEBUG(3,("setdir %s\n", newdir));
3537 /****************************************************************************
3538 reply to a lockingX request
3539 ****************************************************************************/
3540 int reply_lockingX(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
3542 files_struct *fsp = file_fsp(inbuf,smb_vwv2);
3543 unsigned char locktype = CVAL(inbuf,smb_vwv3);
3545 unsigned char oplocklevel = CVAL(inbuf,smb_vwv3+1);
3547 uint16 num_ulocks = SVAL(inbuf,smb_vwv6);
3548 uint16 num_locks = SVAL(inbuf,smb_vwv7);
3549 SMB_OFF_T count = 0, offset = 0;
3550 int32 lock_timeout = IVAL(inbuf,smb_vwv4);
3553 uint32 ecode=0, dummy2;
3554 int eclass=0, dummy1;
3555 BOOL large_file_format = (locktype & LOCKING_ANDX_LARGE_FILES);
3556 CHECK_FSP(fsp,conn);
3559 data = smb_buf(inbuf);
3561 /* Check if this is an oplock break on a file
3562 we have granted an oplock on.
3564 if ((locktype & LOCKING_ANDX_OPLOCK_RELEASE))
3567 SMB_DEV_T dev = fsp->fd_ptr->dev;
3568 SMB_INO_T inode = fsp->fd_ptr->inode;
3570 DEBUG(5,("reply_lockingX: oplock break reply from client for fnum = %d\n",
3573 * Make sure we have granted an oplock on this file.
3575 if(!fsp->granted_oplock)
3577 DEBUG(0,("reply_lockingX: Error : oplock break from client for fnum = %d and \
3578 no oplock granted on this file.\n", fsp->fnum));
3579 return ERROR(ERRDOS,ERRlock);
3582 /* Remove the oplock flag from the sharemode. */
3583 lock_share_entry(fsp->conn, dev, inode, &token);
3584 if(remove_share_oplock(fsp, token)==False) {
3586 DEBUG(0,("reply_lockingX: failed to remove share oplock for fnum %d, \
3587 dev = %x, inode = %.0f\n", fsp->fnum, (unsigned int)dev, (double)inode));
3589 unlock_share_entry(fsp->conn, dev, inode, token);
3591 unlock_share_entry(fsp->conn, dev, inode, token);
3593 /* Clear the granted flag and return. */
3594 fsp->granted_oplock = False;
3597 /* if this is a pure oplock break request then don't send a reply */
3598 if (num_locks == 0 && num_ulocks == 0)
3600 /* Sanity check - ensure a pure oplock break is not a
3602 if(CVAL(inbuf,smb_vwv0) != 0xff)
3603 DEBUG(0,("reply_lockingX: Error : pure oplock break is a chained %d request !\n",
3604 (unsigned int)CVAL(inbuf,smb_vwv0) ));
3609 /* Data now points at the beginning of the list
3610 of smb_unlkrng structs */
3611 for(i = 0; i < (int)num_ulocks; i++) {
3612 if(!large_file_format) {
3613 count = IVAL(data,SMB_LKLEN_OFFSET(i));
3614 offset = IVAL(data,SMB_LKOFF_OFFSET(i));
3616 #ifdef LARGE_SMB_OFF_T
3618 count = (((SMB_OFF_T) IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(i))) << 32) |
3619 ((SMB_OFF_T) IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(i)));
3620 offset = (((SMB_OFF_T) IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(i))) << 32) |
3621 ((SMB_OFF_T) IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(i)));
3623 #endif /* LARGE_SMB_OFF_T */
3625 DEBUG(10,("reply_lockingX: unlock start=%.0f, len=%.0f for file %s\n",
3626 (double)offset, (double)count, fsp->fsp_name ));
3628 if(!do_unlock(fsp,conn,count,offset,&eclass, &ecode))
3629 return ERROR(eclass,ecode);
3632 /* Setup the timeout in seconds. */
3633 lock_timeout = ((lock_timeout == -1) ? -1 : lock_timeout/1000);
3635 /* Now do any requested locks */
3636 data += ((large_file_format ? 20 : 10)*num_ulocks);
3638 /* Data now points at the beginning of the list
3639 of smb_lkrng structs */
3641 for(i = 0; i < (int)num_locks; i++) {
3642 if(!large_file_format) {
3643 count = IVAL(data,SMB_LKLEN_OFFSET(i));
3644 offset = IVAL(data,SMB_LKOFF_OFFSET(i));
3646 #ifdef LARGE_SMB_OFF_T
3648 count = (((SMB_OFF_T) IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(i))) << 32) |
3649 ((SMB_OFF_T) IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(i)));
3650 offset = (((SMB_OFF_T) IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(i))) << 32) |
3651 ((SMB_OFF_T) IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(i)));
3653 #endif /* LARGE_SMB_OFF_T */
3655 DEBUG(10,("reply_lockingX: lock start=%.0f, len=%.0f for file %s\n",
3656 (double)offset, (double)count, fsp->fsp_name ));
3658 if(!do_lock(fsp,conn,count,offset, ((locktype & 1) ? F_RDLCK : F_WRLCK),
3660 if((ecode == ERRlock) && (lock_timeout != 0) && lp_blocking_locks(SNUM(conn))) {
3662 * A blocking lock was requested. Package up
3663 * this smb into a queued request and push it
3664 * onto the blocking lock queue.
3666 if(push_blocking_lock_request(inbuf, length, lock_timeout, i))
3673 /* If any of the above locks failed, then we must unlock
3674 all of the previous locks (X/Open spec). */
3675 if(i != num_locks && num_locks != 0) {
3676 for(; i >= 0; i--) {
3677 if(!large_file_format) {
3678 count = IVAL(data,SMB_LKLEN_OFFSET(i));
3679 offset = IVAL(data,SMB_LKOFF_OFFSET(i));
3681 #ifdef LARGE_SMB_OFF_T
3683 count = (((SMB_OFF_T) IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(i))) << 32) |
3684 ((SMB_OFF_T) IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(i)));
3685 offset = (((SMB_OFF_T) IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(i))) << 32) |
3686 ((SMB_OFF_T) IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(i)));
3688 #endif /* LARGE_SMB_OFF_T */
3690 do_unlock(fsp,conn,count,offset,&dummy1,&dummy2);
3692 return ERROR(eclass,ecode);
3695 set_message(outbuf,2,0,True);
3697 DEBUG( 3, ( "lockingX fnum=%d type=%d num_locks=%d num_ulocks=%d\n",
3698 fsp->fnum, (unsigned int)locktype, num_locks, num_ulocks ) );
3700 return chain_reply(inbuf,outbuf,length,bufsize);
3704 /****************************************************************************
3705 reply to a SMBreadbmpx (read block multiplex) request
3706 ****************************************************************************/
3707 int reply_readbmpx(connection_struct *conn, char *inbuf,char *outbuf,int length,int bufsize)
3718 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
3720 /* this function doesn't seem to work - disable by default */
3722 return(ERROR(ERRSRV,ERRuseSTD));
3724 outsize = set_message(outbuf,8,0,True);
3726 CHECK_FSP(fsp,conn);
3730 startpos = IVAL(inbuf,smb_vwv1);
3731 maxcount = SVAL(inbuf,smb_vwv3);
3733 data = smb_buf(outbuf);
3734 pad = ((long)data)%4;
3735 if (pad) pad = 4 - pad;
3738 max_per_packet = bufsize-(outsize+pad);
3742 if (is_locked(fsp,conn,maxcount,startpos, F_RDLCK))
3743 return(ERROR(ERRDOS,ERRlock));
3747 size_t N = MIN(max_per_packet,tcount-total_read);
3749 nread = read_file(fsp,data,startpos,N);
3751 if (nread <= 0) nread = 0;
3753 if (nread < (ssize_t)N)
3754 tcount = total_read + nread;
3756 set_message(outbuf,8,nread,False);
3757 SIVAL(outbuf,smb_vwv0,startpos);
3758 SSVAL(outbuf,smb_vwv2,tcount);
3759 SSVAL(outbuf,smb_vwv6,nread);
3760 SSVAL(outbuf,smb_vwv7,smb_offset(data,outbuf));
3762 send_smb(Client,outbuf);
3764 total_read += nread;
3767 while (total_read < (ssize_t)tcount);
3772 /****************************************************************************
3773 reply to a SMBwritebmpx (write block multiplex primary) request
3774 ****************************************************************************/
3775 int reply_writebmpx(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3778 ssize_t nwritten = -1;
3785 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
3787 CHECK_FSP(fsp,conn);
3791 tcount = SVAL(inbuf,smb_vwv1);
3792 startpos = IVAL(inbuf,smb_vwv3);
3793 write_through = BITSETW(inbuf+smb_vwv7,0);
3794 numtowrite = SVAL(inbuf,smb_vwv10);
3795 smb_doff = SVAL(inbuf,smb_vwv11);
3797 data = smb_base(inbuf) + smb_doff;
3799 /* If this fails we need to send an SMBwriteC response,
3800 not an SMBwritebmpx - set this up now so we don't forget */
3801 CVAL(outbuf,smb_com) = SMBwritec;
3803 if (is_locked(fsp,conn,tcount,startpos,F_WRLCK))
3804 return(ERROR(ERRDOS,ERRlock));
3806 seek_file(fsp,startpos);
3807 nwritten = write_file(fsp,data,numtowrite);
3809 if(lp_syncalways(SNUM(conn)) || write_through)
3810 sync_file(conn,fsp);
3812 if(nwritten < (ssize_t)numtowrite)
3813 return(UNIXERROR(ERRHRD,ERRdiskfull));
3815 /* If the maximum to be written to this file
3816 is greater than what we just wrote then set
3817 up a secondary struct to be attached to this
3818 fd, we will use this to cache error messages etc. */
3819 if((ssize_t)tcount > nwritten)
3821 write_bmpx_struct *wbms;
3822 if(fsp->wbmpx_ptr != NULL)
3823 wbms = fsp->wbmpx_ptr; /* Use an existing struct */
3825 wbms = (write_bmpx_struct *)malloc(sizeof(write_bmpx_struct));
3828 DEBUG(0,("Out of memory in reply_readmpx\n"));
3829 return(ERROR(ERRSRV,ERRnoresource));
3831 wbms->wr_mode = write_through;
3832 wbms->wr_discard = False; /* No errors yet */
3833 wbms->wr_total_written = nwritten;
3834 wbms->wr_errclass = 0;
3836 fsp->wbmpx_ptr = wbms;
3839 /* We are returning successfully, set the message type back to
3841 CVAL(outbuf,smb_com) = SMBwriteBmpx;
3843 outsize = set_message(outbuf,1,0,True);
3845 SSVALS(outbuf,smb_vwv0,-1); /* We don't support smb_remaining */
3847 DEBUG( 3, ( "writebmpx fnum=%d num=%d wrote=%d\n",
3848 fsp->fnum, numtowrite, nwritten ) );
3850 if (write_through && tcount==nwritten) {
3851 /* we need to send both a primary and a secondary response */
3852 smb_setlen(outbuf,outsize - 4);
3853 send_smb(Client,outbuf);
3855 /* now the secondary */
3856 outsize = set_message(outbuf,1,0,True);
3857 CVAL(outbuf,smb_com) = SMBwritec;
3858 SSVAL(outbuf,smb_vwv0,nwritten);
3865 /****************************************************************************
3866 reply to a SMBwritebs (write block multiplex secondary) request
3867 ****************************************************************************/
3868 int reply_writebs(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3871 ssize_t nwritten = -1;
3878 write_bmpx_struct *wbms;
3879 BOOL send_response = False;
3880 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
3882 CHECK_FSP(fsp,conn);
3885 tcount = SVAL(inbuf,smb_vwv1);
3886 startpos = IVAL(inbuf,smb_vwv2);
3887 numtowrite = SVAL(inbuf,smb_vwv6);
3888 smb_doff = SVAL(inbuf,smb_vwv7);
3890 data = smb_base(inbuf) + smb_doff;
3892 /* We need to send an SMBwriteC response, not an SMBwritebs */
3893 CVAL(outbuf,smb_com) = SMBwritec;
3895 /* This fd should have an auxiliary struct attached,
3896 check that it does */
3897 wbms = fsp->wbmpx_ptr;
3898 if(!wbms) return(-1);
3900 /* If write through is set we can return errors, else we must
3902 write_through = wbms->wr_mode;
3904 /* Check for an earlier error */
3905 if(wbms->wr_discard)
3906 return -1; /* Just discard the packet */
3908 seek_file(fsp,startpos);
3909 nwritten = write_file(fsp,data,numtowrite);
3911 if(lp_syncalways(SNUM(conn)) || write_through)
3912 sync_file(conn,fsp);
3914 if (nwritten < (ssize_t)numtowrite)
3918 /* We are returning an error - we can delete the aux struct */
3919 if (wbms) free((char *)wbms);
3920 fsp->wbmpx_ptr = NULL;
3921 return(ERROR(ERRHRD,ERRdiskfull));
3923 return(CACHE_ERROR(wbms,ERRHRD,ERRdiskfull));
3926 /* Increment the total written, if this matches tcount
3927 we can discard the auxiliary struct (hurrah !) and return a writeC */
3928 wbms->wr_total_written += nwritten;
3929 if(wbms->wr_total_written >= tcount)
3933 outsize = set_message(outbuf,1,0,True);
3934 SSVAL(outbuf,smb_vwv0,wbms->wr_total_written);
3935 send_response = True;
3939 fsp->wbmpx_ptr = NULL;
3949 /****************************************************************************
3950 reply to a SMBsetattrE
3951 ****************************************************************************/
3952 int reply_setattrE(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
3954 struct utimbuf unix_times;
3956 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
3958 outsize = set_message(outbuf,0,0,True);
3960 CHECK_FSP(fsp,conn);
3963 /* Convert the DOS times into unix times. Ignore create
3964 time as UNIX can't set this.
3966 unix_times.actime = make_unix_date2(inbuf+smb_vwv3);
3967 unix_times.modtime = make_unix_date2(inbuf+smb_vwv5);
3970 * Patch from Ray Frush <frush@engr.colostate.edu>
3971 * Sometimes times are sent as zero - ignore them.
3974 if ((unix_times.actime == 0) && (unix_times.modtime == 0))
3976 /* Ignore request */
3979 dbgtext( "reply_setattrE fnum=%d ", fsp->fnum);
3980 dbgtext( "ignoring zero request - not setting timestamps of 0\n" );
3984 else if ((unix_times.actime != 0) && (unix_times.modtime == 0))
3986 /* set modify time = to access time if modify time was 0 */
3987 unix_times.modtime = unix_times.actime;
3990 /* Set the date on this file */
3991 if(file_utime(conn, fsp->fsp_name, &unix_times))
3992 return(ERROR(ERRDOS,ERRnoaccess));
3994 DEBUG( 3, ( "reply_setattrE fnum=%d actime=%d modtime=%d\n",
3995 fsp->fnum, (int)unix_times.actime, (int)unix_times.modtime ) );
4001 /****************************************************************************
4002 reply to a SMBgetattrE
4003 ****************************************************************************/
4004 int reply_getattrE(connection_struct *conn, char *inbuf,char *outbuf, int dum_size, int dum_buffsize)
4006 SMB_STRUCT_STAT sbuf;
4009 files_struct *fsp = file_fsp(inbuf,smb_vwv0);
4011 outsize = set_message(outbuf,11,0,True);
4013 CHECK_FSP(fsp,conn);
4016 /* Do an fstat on this file */
4017 if(sys_fstat(fsp->fd_ptr->fd, &sbuf))
4018 return(UNIXERROR(ERRDOS,ERRnoaccess));
4020 mode = dos_mode(conn,fsp->fsp_name,&sbuf);
4022 /* Convert the times into dos times. Set create
4023 date to be last modify date as UNIX doesn't save
4025 put_dos_date2(outbuf,smb_vwv0,get_create_time(&sbuf,lp_fake_dir_create_times(SNUM(conn))));
4026 put_dos_date2(outbuf,smb_vwv2,sbuf.st_atime);
4027 put_dos_date2(outbuf,smb_vwv4,sbuf.st_mtime);
4030 SIVAL(outbuf,smb_vwv6,0);
4031 SIVAL(outbuf,smb_vwv8,0);
4035 SIVAL(outbuf,smb_vwv6,(uint32)sbuf.st_size);
4036 SIVAL(outbuf,smb_vwv8,ROUNDUP(sbuf.st_size,1024));
4038 SSVAL(outbuf,smb_vwv10, mode);
4040 DEBUG( 3, ( "reply_getattrE fnum=%d\n", fsp->fnum));
git.samba.org / kai / samba.git / blob