2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
12 Copyright (C) Michael Adam 2008
14 This program is free software; you can redistribute it and/or modify
15 it under the terms of the GNU General Public License as published by
16 the Free Software Foundation; either version 3 of the License, or
17 (at your option) any later version.
19 This program is distributed in the hope that it will be useful,
20 but WITHOUT ANY WARRANTY; without even the implied warranty of
21 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22 GNU General Public License for more details.
24 You should have received a copy of the GNU General Public License
25 along with this program. If not, see <http://www.gnu.org/licenses/>.
31 * This module provides suitable callback functions for the params
32 * module. It builds the internal table of service details which is
33 * then used by the rest of the server.
37 * 1) add it to the global or service structure definition
38 * 2) add it to the parm_table
39 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
40 * 4) If it's a global then initialise it in init_globals. If a local
41 * (ie. service) parameter then initialise it in the sDefault structure
45 * The configuration file is processed sequentially for speed. It is NOT
46 * accessed randomly as happens in 'real' Windows. For this reason, there
47 * is a fair bit of sequence-dependent code here - ie., code which assumes
48 * that certain things happen before others. In particular, the code which
49 * happens at the boundary between sections is delicately poised, so be
55 #include "system/filesys.h"
58 #include "lib/smbconf/smbconf.h"
59 #include "lib/smbconf/smbconf_init.h"
62 #include "../librpc/gen_ndr/svcctl.h"
64 #include "smb_signing.h"
68 #ifdef HAVE_SYS_SYSCTL_H
69 #include <sys/sysctl.h>
72 #ifdef HAVE_HTTPCONNECTENCRYPT
73 #include <cups/http.h>
78 extern userdom_struct current_user_info;
81 #define GLOBAL_NAME "global"
85 #define PRINTERS_NAME "printers"
89 #define HOMES_NAME "homes"
92 /* the special value for the include parameter
93 * to be interpreted not as a file name but to
94 * trigger loading of the global smb.conf options
96 #ifndef INCLUDE_REGISTRY_NAME
97 #define INCLUDE_REGISTRY_NAME "registry"
100 static bool in_client = False; /* Not in the client by default */
101 static struct smbconf_csn conf_last_csn;
103 #define CONFIG_BACKEND_FILE 0
104 #define CONFIG_BACKEND_REGISTRY 1
106 static int config_backend = CONFIG_BACKEND_FILE;
108 /* some helpful bits */
109 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
110 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
112 #define USERSHARE_VALID 1
113 #define USERSHARE_PENDING_DELETE 2
115 static bool defaults_saved = False;
117 struct param_opt_struct {
118 struct param_opt_struct *prev, *next;
126 * This structure describes global (ie., server-wide) parameters.
133 char *display_charset;
134 char *szPrintcapname;
135 char *szAddPortCommand;
136 char *szEnumPortsCommand;
137 char *szAddPrinterCommand;
138 char *szDeletePrinterCommand;
139 char *szOs2DriverMap;
145 char *szDefaultService;
149 char *szServerString;
150 char *szAutoServices;
151 char *szPasswdProgram;
155 char *szSMBPasswdFile;
157 char *szPassdbBackend;
158 char **szPreloadModules;
159 char *szPasswordServer;
160 char *szSocketOptions;
164 char *szAfsUsernameMap;
165 int iAfsTokenLifetime;
166 char *szLogNtTokenCommand;
172 char **szWINSservers;
174 char *szRemoteAnnounce;
175 char *szRemoteBrowseSync;
176 char *szSocketAddress;
177 bool bNmbdBindExplicitBroadcast;
178 char *szNISHomeMapName;
179 char *szAnnounceVersion; /* This is initialised in init_globals */
182 char **szNetbiosAliases;
183 char *szNetbiosScope;
184 char *szNameResolveOrder;
186 char *szAddUserScript;
187 char *szRenameUserScript;
188 char *szDelUserScript;
189 char *szAddGroupScript;
190 char *szDelGroupScript;
191 char *szAddUserToGroupScript;
192 char *szDelUserFromGroupScript;
193 char *szSetPrimaryGroupScript;
194 char *szAddMachineScript;
195 char *szShutdownScript;
196 char *szAbortShutdownScript;
197 char *szUsernameMapScript;
198 int iUsernameMapCacheTime;
199 char *szCheckPasswordScript;
206 bool bPassdbExpandExplicit;
207 int AlgorithmicRidBase;
208 char *szTemplateHomedir;
209 char *szTemplateShell;
210 char *szWinbindSeparator;
211 bool bWinbindEnumUsers;
212 bool bWinbindEnumGroups;
213 bool bWinbindUseDefaultDomain;
214 bool bWinbindTrustedDomainsOnly;
215 bool bWinbindNestedGroups;
216 int winbind_expand_groups;
217 bool bWinbindRefreshTickets;
218 bool bWinbindOfflineLogon;
219 bool bWinbindNormalizeNames;
220 bool bWinbindRpcOnly;
221 bool bCreateKrb5Conf;
222 int winbindMaxDomainConnections;
223 char *szIdmapBackend;
225 char *szAddShareCommand;
226 char *szChangeShareCommand;
227 char *szDeleteShareCommand;
229 char *szGuestaccount;
230 char *szManglingMethod;
231 char **szServicesList;
232 char *szUsersharePath;
233 char *szUsershareTemplateShare;
234 char **szUsersharePrefixAllowList;
235 char **szUsersharePrefixDenyList;
242 int open_files_db_hash_size;
251 bool paranoid_server_security;
254 int iMaxSmbdProcesses;
255 bool bDisableSpoolss;
258 bool enhanced_browsing;
264 int announce_as; /* This is initialised in init_globals */
265 int machine_password_timeout;
267 int oplock_break_wait_time;
268 int winbind_cache_time;
269 int winbind_reconnect_delay;
270 int winbind_max_clients;
271 char **szWinbindNssInfo;
273 char *szLdapMachineSuffix;
274 char *szLdapUserSuffix;
275 char *szLdapIdmapSuffix;
276 char *szLdapGroupSuffix;
280 int ldap_follow_referral;
283 int ldap_debug_level;
284 int ldap_debug_threshold;
288 char *szIPrintServer;
290 char **szClusterAddresses;
293 int ctdb_locktime_warn_threshold;
294 int ldap_passwd_sync;
295 int ldap_replication_sleep;
296 int ldap_timeout; /* This is initialised in init_globals */
297 int ldap_connection_timeout;
300 bool bMsAddPrinterWizard;
305 int iPreferredMaster;
308 char **szInitLogonDelayedHosts;
310 bool bEncryptPasswords;
315 bool bObeyPamRestrictions;
317 int PrintcapCacheTime;
318 bool bLargeReadwrite;
325 bool bBindInterfacesOnly;
326 bool bPamPasswordChange;
327 bool bUnixPasswdSync;
328 bool bPasswdChatDebug;
329 int iPasswdChatTimeout;
333 bool bNTStatusSupport;
335 int iMaxStatCacheSize;
337 bool bAllowTrustedDomains;
341 bool bClientLanManAuth;
342 bool bClientNTLMv2Auth;
343 bool bClientPlaintextAuth;
344 bool bClientUseSpnego;
345 bool client_use_spnego_principal;
346 bool send_spnego_principal;
347 bool bDebugPrefixTimestamp;
348 bool bDebugHiresTimestamp;
352 bool bEnableCoreFiles;
355 bool bHostnameLookups;
356 bool bUnixExtensions;
357 bool bDisableNetbios;
358 char * szDedicatedKeytabFile;
360 bool bDeferSharingViolations;
361 bool bEnablePrivileges;
363 bool bUsershareOwnerOnly;
364 bool bUsershareAllowGuests;
365 bool bRegistryShares;
366 int restrict_anonymous;
367 int name_cache_timeout;
370 int client_ldap_sasl_wrapping;
371 int iUsershareMaxShares;
373 int iIdmapNegativeCacheTime;
375 bool bLogWriteableFilesOnExit;
378 struct param_opt_struct *param_opt;
379 int cups_connection_timeout;
380 char *szSMBPerfcountModule;
381 bool bMapUntrustedToDomain;
382 bool bAsyncSMBEchoHandler;
383 bool bMulticastDnsRegister;
387 int ismb2_max_credits;
391 static struct global Globals;
394 * This structure describes a single service.
400 struct timespec usershare_last_mod;
404 char **szInvalidUsers;
412 char *szRootPostExec;
414 char *szPrintcommand;
417 char *szLppausecommand;
418 char *szLpresumecommand;
419 char *szQueuepausecommand;
420 char *szQueueresumecommand;
422 char *szPrintjobUsername;
430 char *szVetoOplockFiles;
436 char **printer_admin;
441 char *szAioWriteBehind;
445 int iMaxReportedPrintJobs;
448 int iCreate_force_mode;
450 int iSecurity_force_mode;
453 int iDir_Security_mask;
454 int iDir_Security_force_mode;
458 int iOplockContentionLimit;
463 bool bRootpreexecClose;
466 bool bShortCasePreserve;
468 bool bHideSpecialFiles;
469 bool bHideUnReadable;
470 bool bHideUnWriteableFiles;
472 bool bAccessBasedShareEnum;
477 bool bAdministrative_share;
480 bool bPrintNotifyBackchannel;
484 bool bStoreDosAttributes;
497 bool bStrictAllocate;
500 struct bitmap *copymap;
501 bool bDeleteReadonly;
503 bool bDeleteVetoFiles;
506 bool bDosFiletimeResolution;
507 bool bFakeDirCreateTimes;
513 bool bUseClientDriver;
514 bool bDefaultDevmode;
515 bool bForcePrintername;
517 bool bForceUnknownAclUser;
520 bool bMap_acl_inherit;
523 bool bAclCheckPermissions;
524 bool bAclMapFullControl;
525 bool bAclGroupControl;
527 bool bKernelChangeNotify;
528 int iallocation_roundup_size;
532 int iDirectoryNameCacheSize;
534 struct param_opt_struct *param_opt;
536 char dummy[3]; /* for alignment */
540 /* This is a default service used to prime a services structure */
541 static struct service sDefault = {
543 False, /* not autoloaded */
544 0, /* not a usershare */
545 {0, }, /* No last mod time */
546 NULL, /* szService */
548 NULL, /* szUsername */
549 NULL, /* szInvalidUsers */
550 NULL, /* szValidUsers */
551 NULL, /* szAdminUsers */
553 NULL, /* szInclude */
554 NULL, /* szPreExec */
555 NULL, /* szPostExec */
556 NULL, /* szRootPreExec */
557 NULL, /* szRootPostExec */
558 NULL, /* szCupsOptions */
559 NULL, /* szPrintcommand */
560 NULL, /* szLpqcommand */
561 NULL, /* szLprmcommand */
562 NULL, /* szLppausecommand */
563 NULL, /* szLpresumecommand */
564 NULL, /* szQueuepausecommand */
565 NULL, /* szQueueresumecommand */
566 NULL, /* szPrintername */
567 NULL, /* szPrintjobUsername */
568 NULL, /* szDontdescend */
569 NULL, /* szHostsallow */
570 NULL, /* szHostsdeny */
571 NULL, /* szMagicScript */
572 NULL, /* szMagicOutput */
573 NULL, /* szVetoFiles */
574 NULL, /* szHideFiles */
575 NULL, /* szVetoOplockFiles */
577 NULL, /* force user */
578 NULL, /* force group */
580 NULL, /* writelist */
581 NULL, /* printer admin */
584 NULL, /* vfs objects */
585 NULL, /* szMSDfsProxy */
586 NULL, /* szAioWriteBehind */
588 0, /* iMinPrintSpace */
589 1000, /* iMaxPrintJobs */
590 0, /* iMaxReportedPrintJobs */
591 0, /* iWriteCacheSize */
592 0744, /* iCreate_mask */
593 0000, /* iCreate_force_mode */
594 0777, /* iSecurity_mask */
595 0, /* iSecurity_force_mode */
596 0755, /* iDir_mask */
597 0000, /* iDir_force_mode */
598 0777, /* iDir_Security_mask */
599 0, /* iDir_Security_force_mode */
600 0, /* iMaxConnections */
601 CASE_LOWER, /* iDefaultCase */
602 DEFAULT_PRINTING, /* iPrinting */
603 2, /* iOplockContentionLimit */
605 1024, /* iBlock_size */
606 0, /* iDfreeCacheTime */
607 False, /* bPreexecClose */
608 False, /* bRootpreexecClose */
609 Auto, /* case sensitive */
610 True, /* case preserve */
611 True, /* short case preserve */
612 True, /* bHideDotFiles */
613 False, /* bHideSpecialFiles */
614 False, /* bHideUnReadable */
615 False, /* bHideUnWriteableFiles */
616 True, /* bBrowseable */
617 False, /* bAccessBasedShareEnum */
618 True, /* bAvailable */
619 True, /* bRead_only */
620 True, /* bNo_set_dir */
621 False, /* bGuest_only */
622 False, /* bAdministrative_share */
623 False, /* bGuest_ok */
624 False, /* bPrint_ok */
625 True, /* bPrintNotifyBackchannel */
626 False, /* bMap_system */
627 False, /* bMap_hidden */
628 True, /* bMap_archive */
629 False, /* bStoreDosAttributes */
630 False, /* bDmapiSupport */
632 Auto, /* iStrictLocking */
633 True, /* bPosixLocking */
634 True, /* bShareModes */
636 True, /* bLevel2OpLocks */
637 False, /* bOnlyUser */
638 True, /* bMangledNames */
639 false, /* bWidelinks */
640 True, /* bSymlinks */
641 False, /* bSyncAlways */
642 False, /* bStrictAllocate */
643 False, /* bStrictSync */
644 '~', /* magic char */
646 False, /* bDeleteReadonly */
647 False, /* bFakeOplocks */
648 False, /* bDeleteVetoFiles */
649 False, /* bDosFilemode */
650 True, /* bDosFiletimes */
651 False, /* bDosFiletimeResolution */
652 False, /* bFakeDirCreateTimes */
653 True, /* bBlockingLocks */
654 False, /* bInheritPerms */
655 False, /* bInheritACLS */
656 False, /* bInheritOwner */
657 False, /* bMSDfsRoot */
658 False, /* bUseClientDriver */
659 True, /* bDefaultDevmode */
660 False, /* bForcePrintername */
661 True, /* bNTAclSupport */
662 False, /* bForceUnknownAclUser */
663 False, /* bUseSendfile */
664 False, /* bProfileAcls */
665 False, /* bMap_acl_inherit */
666 False, /* bAfs_Share */
667 False, /* bEASupport */
668 True, /* bAclCheckPermissions */
669 True, /* bAclMapFullControl */
670 False, /* bAclGroupControl */
671 True, /* bChangeNotify */
672 True, /* bKernelChangeNotify */
673 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
674 0, /* iAioReadSize */
675 0, /* iAioWriteSize */
676 MAP_READONLY_YES, /* iMap_readonly */
677 #ifdef BROKEN_DIRECTORY_HANDLING
678 0, /* iDirectoryNameCacheSize */
680 100, /* iDirectoryNameCacheSize */
682 Auto, /* ismb_encrypt */
683 NULL, /* Parametric options */
688 /* local variables */
689 static struct service **ServicePtrs = NULL;
690 static int iNumServices = 0;
691 static int iServiceIndex = 0;
692 static struct db_context *ServiceHash;
693 static int *invalid_services = NULL;
694 static int num_invalid_services = 0;
695 static bool bInGlobalSection = True;
696 static bool bGlobalOnly = False;
697 static int default_server_announce;
699 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
701 /* prototypes for the special type handlers */
702 static bool handle_include( int snum, const char *pszParmValue, char **ptr);
703 static bool handle_copy( int snum, const char *pszParmValue, char **ptr);
704 static bool handle_idmap_backend(int snum, const char *pszParmValue, char **ptr);
705 static bool handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
706 static bool handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
707 static bool handle_debug_list( int snum, const char *pszParmValue, char **ptr );
708 static bool handle_realm( int snum, const char *pszParmValue, char **ptr );
709 static bool handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
710 static bool handle_charset( int snum, const char *pszParmValue, char **ptr );
711 static bool handle_dos_charset( int snum, const char *pszParmValue, char **ptr );
712 static bool handle_printing( int snum, const char *pszParmValue, char **ptr);
713 static bool handle_ldap_debug_level( int snum, const char *pszParmValue, char **ptr);
715 static void set_default_server_announce_type(void);
716 static void set_allowed_client_auth(void);
718 static void *lp_local_ptr(struct service *service, void *ptr);
720 static void add_to_file_list(const char *fname, const char *subfname);
721 static bool lp_set_cmdline_helper(const char *pszParmName, const char *pszParmValue, bool store_values);
723 static const struct enum_list enum_protocol[] = {
724 {PROTOCOL_SMB2, "SMB2"},
725 {PROTOCOL_NT1, "NT1"},
726 {PROTOCOL_LANMAN2, "LANMAN2"},
727 {PROTOCOL_LANMAN1, "LANMAN1"},
728 {PROTOCOL_CORE, "CORE"},
729 {PROTOCOL_COREPLUS, "COREPLUS"},
730 {PROTOCOL_COREPLUS, "CORE+"},
734 static const struct enum_list enum_security[] = {
735 {SEC_SHARE, "SHARE"},
737 {SEC_SERVER, "SERVER"},
738 {SEC_DOMAIN, "DOMAIN"},
745 static const struct enum_list enum_printing[] = {
746 {PRINT_SYSV, "sysv"},
748 {PRINT_HPUX, "hpux"},
752 {PRINT_LPRNG, "lprng"},
753 {PRINT_CUPS, "cups"},
754 {PRINT_IPRINT, "iprint"},
756 {PRINT_LPROS2, "os2"},
757 #if defined(DEVELOPER) || defined(ENABLE_BUILD_FARM_HACKS)
758 {PRINT_TEST, "test"},
760 #endif /* DEVELOPER */
764 static const struct enum_list enum_ldap_sasl_wrapping[] = {
766 {ADS_AUTH_SASL_SIGN, "sign"},
767 {ADS_AUTH_SASL_SEAL, "seal"},
771 static const struct enum_list enum_ldap_ssl[] = {
772 {LDAP_SSL_OFF, "no"},
773 {LDAP_SSL_OFF, "off"},
774 {LDAP_SSL_START_TLS, "start tls"},
775 {LDAP_SSL_START_TLS, "start_tls"},
779 /* LDAP Dereferencing Alias types */
780 #define SAMBA_LDAP_DEREF_NEVER 0
781 #define SAMBA_LDAP_DEREF_SEARCHING 1
782 #define SAMBA_LDAP_DEREF_FINDING 2
783 #define SAMBA_LDAP_DEREF_ALWAYS 3
785 static const struct enum_list enum_ldap_deref[] = {
786 {SAMBA_LDAP_DEREF_NEVER, "never"},
787 {SAMBA_LDAP_DEREF_SEARCHING, "searching"},
788 {SAMBA_LDAP_DEREF_FINDING, "finding"},
789 {SAMBA_LDAP_DEREF_ALWAYS, "always"},
793 static const struct enum_list enum_ldap_passwd_sync[] = {
794 {LDAP_PASSWD_SYNC_OFF, "no"},
795 {LDAP_PASSWD_SYNC_OFF, "off"},
796 {LDAP_PASSWD_SYNC_ON, "yes"},
797 {LDAP_PASSWD_SYNC_ON, "on"},
798 {LDAP_PASSWD_SYNC_ONLY, "only"},
802 /* Types of machine we can announce as. */
803 #define ANNOUNCE_AS_NT_SERVER 1
804 #define ANNOUNCE_AS_WIN95 2
805 #define ANNOUNCE_AS_WFW 3
806 #define ANNOUNCE_AS_NT_WORKSTATION 4
808 static const struct enum_list enum_announce_as[] = {
809 {ANNOUNCE_AS_NT_SERVER, "NT"},
810 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
811 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
812 {ANNOUNCE_AS_WIN95, "win95"},
813 {ANNOUNCE_AS_WFW, "WfW"},
817 static const struct enum_list enum_map_readonly[] = {
818 {MAP_READONLY_NO, "no"},
819 {MAP_READONLY_NO, "false"},
820 {MAP_READONLY_NO, "0"},
821 {MAP_READONLY_YES, "yes"},
822 {MAP_READONLY_YES, "true"},
823 {MAP_READONLY_YES, "1"},
824 {MAP_READONLY_PERMISSIONS, "permissions"},
825 {MAP_READONLY_PERMISSIONS, "perms"},
829 static const struct enum_list enum_case[] = {
830 {CASE_LOWER, "lower"},
831 {CASE_UPPER, "upper"},
837 static const struct enum_list enum_bool_auto[] = {
848 static const struct enum_list enum_csc_policy[] = {
849 {CSC_POLICY_MANUAL, "manual"},
850 {CSC_POLICY_DOCUMENTS, "documents"},
851 {CSC_POLICY_PROGRAMS, "programs"},
852 {CSC_POLICY_DISABLE, "disable"},
856 /* SMB signing types. */
857 static const struct enum_list enum_smb_signing_vals[] = {
869 {Required, "required"},
870 {Required, "mandatory"},
872 {Required, "forced"},
873 {Required, "enforced"},
877 /* ACL compatibility options. */
878 static const struct enum_list enum_acl_compat_vals[] = {
879 { ACL_COMPAT_AUTO, "auto" },
880 { ACL_COMPAT_WINNT, "winnt" },
881 { ACL_COMPAT_WIN2K, "win2k" },
886 Do you want session setups at user level security with a invalid
887 password to be rejected or allowed in as guest? WinNT rejects them
888 but it can be a pain as it means "net view" needs to use a password
890 You have 3 choices in the setting of map_to_guest:
892 "Never" means session setups with an invalid password
893 are rejected. This is the default.
895 "Bad User" means session setups with an invalid password
896 are rejected, unless the username does not exist, in which case it
897 is treated as a guest login
899 "Bad Password" means session setups with an invalid password
900 are treated as a guest login
902 Note that map_to_guest only has an effect in user or server
906 static const struct enum_list enum_map_to_guest[] = {
907 {NEVER_MAP_TO_GUEST, "Never"},
908 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
909 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
910 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
914 /* Config backend options */
916 static const struct enum_list enum_config_backend[] = {
917 {CONFIG_BACKEND_FILE, "file"},
918 {CONFIG_BACKEND_REGISTRY, "registry"},
922 /* ADS kerberos ticket verification options */
924 static const struct enum_list enum_kerberos_method[] = {
925 {KERBEROS_VERIFY_SECRETS, "default"},
926 {KERBEROS_VERIFY_SECRETS, "secrets only"},
927 {KERBEROS_VERIFY_SYSTEM_KEYTAB, "system keytab"},
928 {KERBEROS_VERIFY_DEDICATED_KEYTAB, "dedicated keytab"},
929 {KERBEROS_VERIFY_SECRETS_AND_KEYTAB, "secrets and keytab"},
933 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
935 * The FLAG_HIDE is explicit. Parameters set this way do NOT appear in any edit
936 * screen in SWAT. This is used to exclude parameters as well as to squash all
937 * parameters that have been duplicated by pseudonyms.
939 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
940 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
941 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
944 * NOTE2: Handling of duplicated (synonym) parameters:
945 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
946 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
947 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
948 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
951 static struct parm_struct parm_table[] = {
952 {N_("Base Options"), P_SEP, P_SEPARATOR},
955 .label = "dos charset",
958 .ptr = &Globals.dos_charset,
959 .special = handle_dos_charset,
961 .flags = FLAG_ADVANCED
964 .label = "unix charset",
967 .ptr = &Globals.unix_charset,
968 .special = handle_charset,
970 .flags = FLAG_ADVANCED
973 .label = "display charset",
976 .ptr = &Globals.display_charset,
977 .special = handle_charset,
979 .flags = FLAG_ADVANCED
985 .ptr = &sDefault.comment,
988 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT
994 .ptr = &sDefault.szPath,
997 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1000 .label = "directory",
1003 .ptr = &sDefault.szPath,
1009 .label = "workgroup",
1011 .p_class = P_GLOBAL,
1012 .ptr = &Globals.szWorkgroup,
1015 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
1020 .p_class = P_GLOBAL,
1021 .ptr = &Globals.szRealm,
1022 .special = handle_realm,
1024 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
1027 .label = "netbios name",
1029 .p_class = P_GLOBAL,
1030 .ptr = &Globals.szNetbiosName,
1033 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
1036 .label = "netbios aliases",
1038 .p_class = P_GLOBAL,
1039 .ptr = &Globals.szNetbiosAliases,
1040 .special = handle_netbios_aliases,
1042 .flags = FLAG_ADVANCED,
1045 .label = "netbios scope",
1047 .p_class = P_GLOBAL,
1048 .ptr = &Globals.szNetbiosScope,
1051 .flags = FLAG_ADVANCED,
1054 .label = "server string",
1056 .p_class = P_GLOBAL,
1057 .ptr = &Globals.szServerString,
1060 .flags = FLAG_BASIC | FLAG_ADVANCED,
1063 .label = "interfaces",
1065 .p_class = P_GLOBAL,
1066 .ptr = &Globals.szInterfaces,
1069 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
1072 .label = "bind interfaces only",
1074 .p_class = P_GLOBAL,
1075 .ptr = &Globals.bBindInterfacesOnly,
1078 .flags = FLAG_ADVANCED | FLAG_WIZARD,
1081 .label = "config backend",
1083 .p_class = P_GLOBAL,
1084 .ptr = &Globals.ConfigBackend,
1086 .enum_list = enum_config_backend,
1087 .flags = FLAG_HIDE|FLAG_ADVANCED|FLAG_META,
1090 {N_("Security Options"), P_SEP, P_SEPARATOR},
1093 .label = "security",
1095 .p_class = P_GLOBAL,
1096 .ptr = &Globals.security,
1098 .enum_list = enum_security,
1099 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
1102 .label = "auth methods",
1104 .p_class = P_GLOBAL,
1105 .ptr = &Globals.AuthMethods,
1108 .flags = FLAG_ADVANCED,
1111 .label = "encrypt passwords",
1113 .p_class = P_GLOBAL,
1114 .ptr = &Globals.bEncryptPasswords,
1117 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
1120 .label = "client schannel",
1122 .p_class = P_GLOBAL,
1123 .ptr = &Globals.clientSchannel,
1125 .enum_list = enum_bool_auto,
1126 .flags = FLAG_BASIC | FLAG_ADVANCED,
1129 .label = "server schannel",
1131 .p_class = P_GLOBAL,
1132 .ptr = &Globals.serverSchannel,
1134 .enum_list = enum_bool_auto,
1135 .flags = FLAG_BASIC | FLAG_ADVANCED,
1138 .label = "allow trusted domains",
1140 .p_class = P_GLOBAL,
1141 .ptr = &Globals.bAllowTrustedDomains,
1144 .flags = FLAG_ADVANCED,
1147 .label = "map to guest",
1149 .p_class = P_GLOBAL,
1150 .ptr = &Globals.map_to_guest,
1152 .enum_list = enum_map_to_guest,
1153 .flags = FLAG_ADVANCED,
1156 .label = "null passwords",
1158 .p_class = P_GLOBAL,
1159 .ptr = &Globals.bNullPasswords,
1162 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
1165 .label = "obey pam restrictions",
1167 .p_class = P_GLOBAL,
1168 .ptr = &Globals.bObeyPamRestrictions,
1171 .flags = FLAG_ADVANCED,
1174 .label = "password server",
1176 .p_class = P_GLOBAL,
1177 .ptr = &Globals.szPasswordServer,
1180 .flags = FLAG_ADVANCED | FLAG_WIZARD,
1183 .label = "smb passwd file",
1185 .p_class = P_GLOBAL,
1186 .ptr = &Globals.szSMBPasswdFile,
1189 .flags = FLAG_ADVANCED,
1192 .label = "private dir",
1194 .p_class = P_GLOBAL,
1195 .ptr = &Globals.szPrivateDir,
1198 .flags = FLAG_ADVANCED,
1201 .label = "passdb backend",
1203 .p_class = P_GLOBAL,
1204 .ptr = &Globals.szPassdbBackend,
1207 .flags = FLAG_ADVANCED | FLAG_WIZARD,
1210 .label = "algorithmic rid base",
1212 .p_class = P_GLOBAL,
1213 .ptr = &Globals.AlgorithmicRidBase,
1216 .flags = FLAG_ADVANCED,
1219 .label = "root directory",
1221 .p_class = P_GLOBAL,
1222 .ptr = &Globals.szRootdir,
1225 .flags = FLAG_ADVANCED,
1228 .label = "root dir",
1230 .p_class = P_GLOBAL,
1231 .ptr = &Globals.szRootdir,
1239 .p_class = P_GLOBAL,
1240 .ptr = &Globals.szRootdir,
1246 .label = "guest account",
1248 .p_class = P_GLOBAL,
1249 .ptr = &Globals.szGuestaccount,
1252 .flags = FLAG_BASIC | FLAG_ADVANCED,
1255 .label = "enable privileges",
1257 .p_class = P_GLOBAL,
1258 .ptr = &Globals.bEnablePrivileges,
1261 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
1265 .label = "pam password change",
1267 .p_class = P_GLOBAL,
1268 .ptr = &Globals.bPamPasswordChange,
1271 .flags = FLAG_ADVANCED,
1274 .label = "passwd program",
1276 .p_class = P_GLOBAL,
1277 .ptr = &Globals.szPasswdProgram,
1280 .flags = FLAG_ADVANCED,
1283 .label = "passwd chat",
1285 .p_class = P_GLOBAL,
1286 .ptr = &Globals.szPasswdChat,
1289 .flags = FLAG_ADVANCED,
1292 .label = "passwd chat debug",
1294 .p_class = P_GLOBAL,
1295 .ptr = &Globals.bPasswdChatDebug,
1298 .flags = FLAG_ADVANCED,
1301 .label = "passwd chat timeout",
1303 .p_class = P_GLOBAL,
1304 .ptr = &Globals.iPasswdChatTimeout,
1307 .flags = FLAG_ADVANCED,
1310 .label = "check password script",
1312 .p_class = P_GLOBAL,
1313 .ptr = &Globals.szCheckPasswordScript,
1316 .flags = FLAG_ADVANCED,
1319 .label = "username map",
1321 .p_class = P_GLOBAL,
1322 .ptr = &Globals.szUsernameMap,
1325 .flags = FLAG_ADVANCED,
1328 .label = "password level",
1330 .p_class = P_GLOBAL,
1331 .ptr = &Globals.pwordlevel,
1334 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
1337 .label = "username level",
1339 .p_class = P_GLOBAL,
1340 .ptr = &Globals.unamelevel,
1343 .flags = FLAG_ADVANCED,
1346 .label = "unix password sync",
1348 .p_class = P_GLOBAL,
1349 .ptr = &Globals.bUnixPasswdSync,
1352 .flags = FLAG_ADVANCED,
1355 .label = "restrict anonymous",
1357 .p_class = P_GLOBAL,
1358 .ptr = &Globals.restrict_anonymous,
1361 .flags = FLAG_ADVANCED,
1364 .label = "lanman auth",
1366 .p_class = P_GLOBAL,
1367 .ptr = &Globals.bLanmanAuth,
1370 .flags = FLAG_ADVANCED,
1373 .label = "ntlm auth",
1375 .p_class = P_GLOBAL,
1376 .ptr = &Globals.bNTLMAuth,
1379 .flags = FLAG_ADVANCED,
1382 .label = "client NTLMv2 auth",
1384 .p_class = P_GLOBAL,
1385 .ptr = &Globals.bClientNTLMv2Auth,
1388 .flags = FLAG_ADVANCED,
1391 .label = "client lanman auth",
1393 .p_class = P_GLOBAL,
1394 .ptr = &Globals.bClientLanManAuth,
1397 .flags = FLAG_ADVANCED,
1400 .label = "client plaintext auth",
1402 .p_class = P_GLOBAL,
1403 .ptr = &Globals.bClientPlaintextAuth,
1406 .flags = FLAG_ADVANCED,
1409 .label = "client use spnego principal",
1411 .p_class = P_GLOBAL,
1412 .ptr = &Globals.client_use_spnego_principal,
1415 .flags = FLAG_ADVANCED,
1418 .label = "send spnego principal",
1420 .p_class = P_GLOBAL,
1421 .ptr = &Globals.send_spnego_principal,
1424 .flags = FLAG_ADVANCED,
1427 .label = "username",
1430 .ptr = &sDefault.szUsername,
1433 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED,
1439 .ptr = &sDefault.szUsername,
1448 .ptr = &sDefault.szUsername,
1454 .label = "invalid users",
1457 .ptr = &sDefault.szInvalidUsers,
1460 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1463 .label = "valid users",
1466 .ptr = &sDefault.szValidUsers,
1469 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1472 .label = "admin users",
1475 .ptr = &sDefault.szAdminUsers,
1478 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1481 .label = "read list",
1484 .ptr = &sDefault.readlist,
1487 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1490 .label = "write list",
1493 .ptr = &sDefault.writelist,
1496 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1499 .label = "printer admin",
1502 .ptr = &sDefault.printer_admin,
1505 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED,
1508 .label = "force user",
1511 .ptr = &sDefault.force_user,
1514 .flags = FLAG_ADVANCED | FLAG_SHARE,
1517 .label = "force group",
1520 .ptr = &sDefault.force_group,
1523 .flags = FLAG_ADVANCED | FLAG_SHARE,
1529 .ptr = &sDefault.force_group,
1532 .flags = FLAG_ADVANCED,
1535 .label = "read only",
1538 .ptr = &sDefault.bRead_only,
1541 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE,
1544 .label = "write ok",
1547 .ptr = &sDefault.bRead_only,
1553 .label = "writeable",
1556 .ptr = &sDefault.bRead_only,
1562 .label = "writable",
1565 .ptr = &sDefault.bRead_only,
1571 .label = "acl check permissions",
1574 .ptr = &sDefault.bAclCheckPermissions,
1577 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1580 .label = "acl group control",
1583 .ptr = &sDefault.bAclGroupControl,
1586 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1589 .label = "acl map full control",
1592 .ptr = &sDefault.bAclMapFullControl,
1595 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1598 .label = "create mask",
1601 .ptr = &sDefault.iCreate_mask,
1604 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1607 .label = "create mode",
1610 .ptr = &sDefault.iCreate_mask,
1616 .label = "force create mode",
1619 .ptr = &sDefault.iCreate_force_mode,
1622 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1625 .label = "security mask",
1628 .ptr = &sDefault.iSecurity_mask,
1631 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1634 .label = "force security mode",
1637 .ptr = &sDefault.iSecurity_force_mode,
1640 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1643 .label = "directory mask",
1646 .ptr = &sDefault.iDir_mask,
1649 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1652 .label = "directory mode",
1655 .ptr = &sDefault.iDir_mask,
1658 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1661 .label = "force directory mode",
1664 .ptr = &sDefault.iDir_force_mode,
1667 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1670 .label = "directory security mask",
1673 .ptr = &sDefault.iDir_Security_mask,
1676 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1679 .label = "force directory security mode",
1682 .ptr = &sDefault.iDir_Security_force_mode,
1685 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1688 .label = "force unknown acl user",
1691 .ptr = &sDefault.bForceUnknownAclUser,
1694 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
1697 .label = "inherit permissions",
1700 .ptr = &sDefault.bInheritPerms,
1703 .flags = FLAG_ADVANCED | FLAG_SHARE,
1706 .label = "inherit acls",
1709 .ptr = &sDefault.bInheritACLS,
1712 .flags = FLAG_ADVANCED | FLAG_SHARE,
1715 .label = "inherit owner",
1718 .ptr = &sDefault.bInheritOwner,
1721 .flags = FLAG_ADVANCED | FLAG_SHARE,
1724 .label = "guest only",
1727 .ptr = &sDefault.bGuest_only,
1730 .flags = FLAG_ADVANCED | FLAG_SHARE,
1733 .label = "only guest",
1736 .ptr = &sDefault.bGuest_only,
1742 .label = "administrative share",
1745 .ptr = &sDefault.bAdministrative_share,
1748 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1752 .label = "guest ok",
1755 .ptr = &sDefault.bGuest_ok,
1758 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1764 .ptr = &sDefault.bGuest_ok,
1770 .label = "only user",
1773 .ptr = &sDefault.bOnlyUser,
1776 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED,
1779 .label = "hosts allow",
1782 .ptr = &sDefault.szHostsallow,
1785 .flags = FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1788 .label = "allow hosts",
1791 .ptr = &sDefault.szHostsallow,
1797 .label = "hosts deny",
1800 .ptr = &sDefault.szHostsdeny,
1803 .flags = FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
1806 .label = "deny hosts",
1809 .ptr = &sDefault.szHostsdeny,
1815 .label = "preload modules",
1817 .p_class = P_GLOBAL,
1818 .ptr = &Globals.szPreloadModules,
1821 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1824 .label = "dedicated keytab file",
1826 .p_class = P_GLOBAL,
1827 .ptr = &Globals.szDedicatedKeytabFile,
1830 .flags = FLAG_ADVANCED,
1833 .label = "kerberos method",
1835 .p_class = P_GLOBAL,
1836 .ptr = &Globals.iKerberosMethod,
1838 .enum_list = enum_kerberos_method,
1839 .flags = FLAG_ADVANCED,
1842 .label = "map untrusted to domain",
1844 .p_class = P_GLOBAL,
1845 .ptr = &Globals.bMapUntrustedToDomain,
1848 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
1852 {N_("Logging Options"), P_SEP, P_SEPARATOR},
1855 .label = "log level",
1857 .p_class = P_GLOBAL,
1858 .ptr = &Globals.szLogLevel,
1859 .special = handle_debug_list,
1861 .flags = FLAG_ADVANCED,
1864 .label = "debuglevel",
1866 .p_class = P_GLOBAL,
1867 .ptr = &Globals.szLogLevel,
1868 .special = handle_debug_list,
1875 .p_class = P_GLOBAL,
1876 .ptr = &Globals.syslog,
1879 .flags = FLAG_ADVANCED,
1882 .label = "syslog only",
1884 .p_class = P_GLOBAL,
1885 .ptr = &Globals.bSyslogOnly,
1888 .flags = FLAG_ADVANCED,
1891 .label = "log file",
1893 .p_class = P_GLOBAL,
1894 .ptr = &Globals.szLogFile,
1897 .flags = FLAG_ADVANCED,
1900 .label = "max log size",
1902 .p_class = P_GLOBAL,
1903 .ptr = &Globals.max_log_size,
1906 .flags = FLAG_ADVANCED,
1909 .label = "debug timestamp",
1911 .p_class = P_GLOBAL,
1912 .ptr = &Globals.bTimestampLogs,
1915 .flags = FLAG_ADVANCED,
1918 .label = "timestamp logs",
1920 .p_class = P_GLOBAL,
1921 .ptr = &Globals.bTimestampLogs,
1924 .flags = FLAG_ADVANCED,
1927 .label = "debug prefix timestamp",
1929 .p_class = P_GLOBAL,
1930 .ptr = &Globals.bDebugPrefixTimestamp,
1933 .flags = FLAG_ADVANCED,
1936 .label = "debug hires timestamp",
1938 .p_class = P_GLOBAL,
1939 .ptr = &Globals.bDebugHiresTimestamp,
1942 .flags = FLAG_ADVANCED,
1945 .label = "debug pid",
1947 .p_class = P_GLOBAL,
1948 .ptr = &Globals.bDebugPid,
1951 .flags = FLAG_ADVANCED,
1954 .label = "debug uid",
1956 .p_class = P_GLOBAL,
1957 .ptr = &Globals.bDebugUid,
1960 .flags = FLAG_ADVANCED,
1963 .label = "debug class",
1965 .p_class = P_GLOBAL,
1966 .ptr = &Globals.bDebugClass,
1969 .flags = FLAG_ADVANCED,
1972 .label = "enable core files",
1974 .p_class = P_GLOBAL,
1975 .ptr = &Globals.bEnableCoreFiles,
1978 .flags = FLAG_ADVANCED,
1981 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
1984 .label = "allocation roundup size",
1987 .ptr = &sDefault.iallocation_roundup_size,
1990 .flags = FLAG_ADVANCED,
1993 .label = "aio read size",
1996 .ptr = &sDefault.iAioReadSize,
1999 .flags = FLAG_ADVANCED,
2002 .label = "aio write size",
2005 .ptr = &sDefault.iAioWriteSize,
2008 .flags = FLAG_ADVANCED,
2011 .label = "aio write behind",
2014 .ptr = &sDefault.szAioWriteBehind,
2017 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2020 .label = "smb ports",
2022 .p_class = P_GLOBAL,
2023 .ptr = &Globals.smb_ports,
2026 .flags = FLAG_ADVANCED,
2029 .label = "large readwrite",
2031 .p_class = P_GLOBAL,
2032 .ptr = &Globals.bLargeReadwrite,
2035 .flags = FLAG_ADVANCED,
2038 .label = "max protocol",
2040 .p_class = P_GLOBAL,
2041 .ptr = &Globals.maxprotocol,
2043 .enum_list = enum_protocol,
2044 .flags = FLAG_ADVANCED,
2047 .label = "protocol",
2049 .p_class = P_GLOBAL,
2050 .ptr = &Globals.maxprotocol,
2052 .enum_list = enum_protocol,
2053 .flags = FLAG_ADVANCED,
2056 .label = "min protocol",
2058 .p_class = P_GLOBAL,
2059 .ptr = &Globals.minprotocol,
2061 .enum_list = enum_protocol,
2062 .flags = FLAG_ADVANCED,
2065 .label = "min receivefile size",
2067 .p_class = P_GLOBAL,
2068 .ptr = &Globals.iminreceivefile,
2071 .flags = FLAG_ADVANCED,
2074 .label = "read raw",
2076 .p_class = P_GLOBAL,
2077 .ptr = &Globals.bReadRaw,
2080 .flags = FLAG_ADVANCED,
2083 .label = "write raw",
2085 .p_class = P_GLOBAL,
2086 .ptr = &Globals.bWriteRaw,
2089 .flags = FLAG_ADVANCED,
2092 .label = "disable netbios",
2094 .p_class = P_GLOBAL,
2095 .ptr = &Globals.bDisableNetbios,
2098 .flags = FLAG_ADVANCED,
2101 .label = "reset on zero vc",
2103 .p_class = P_GLOBAL,
2104 .ptr = &Globals.bResetOnZeroVC,
2107 .flags = FLAG_ADVANCED,
2110 .label = "log writeable files on exit",
2112 .p_class = P_GLOBAL,
2113 .ptr = &Globals.bLogWriteableFilesOnExit,
2116 .flags = FLAG_ADVANCED,
2119 .label = "acl compatibility",
2121 .p_class = P_GLOBAL,
2122 .ptr = &Globals.iAclCompat,
2124 .enum_list = enum_acl_compat_vals,
2125 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2128 .label = "defer sharing violations",
2130 .p_class = P_GLOBAL,
2131 .ptr = &Globals.bDeferSharingViolations,
2134 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2137 .label = "ea support",
2140 .ptr = &sDefault.bEASupport,
2143 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2146 .label = "nt acl support",
2149 .ptr = &sDefault.bNTAclSupport,
2152 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2155 .label = "nt pipe support",
2157 .p_class = P_GLOBAL,
2158 .ptr = &Globals.bNTPipeSupport,
2161 .flags = FLAG_ADVANCED,
2164 .label = "nt status support",
2166 .p_class = P_GLOBAL,
2167 .ptr = &Globals.bNTStatusSupport,
2170 .flags = FLAG_ADVANCED,
2173 .label = "profile acls",
2176 .ptr = &sDefault.bProfileAcls,
2179 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
2182 .label = "announce version",
2184 .p_class = P_GLOBAL,
2185 .ptr = &Globals.szAnnounceVersion,
2188 .flags = FLAG_ADVANCED,
2191 .label = "announce as",
2193 .p_class = P_GLOBAL,
2194 .ptr = &Globals.announce_as,
2196 .enum_list = enum_announce_as,
2197 .flags = FLAG_ADVANCED,
2200 .label = "map acl inherit",
2203 .ptr = &sDefault.bMap_acl_inherit,
2206 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2209 .label = "afs share",
2212 .ptr = &sDefault.bAfs_Share,
2215 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2220 .p_class = P_GLOBAL,
2221 .ptr = &Globals.max_mux,
2224 .flags = FLAG_ADVANCED,
2227 .label = "max xmit",
2229 .p_class = P_GLOBAL,
2230 .ptr = &Globals.max_xmit,
2233 .flags = FLAG_ADVANCED,
2236 .label = "name resolve order",
2238 .p_class = P_GLOBAL,
2239 .ptr = &Globals.szNameResolveOrder,
2242 .flags = FLAG_ADVANCED | FLAG_WIZARD,
2247 .p_class = P_GLOBAL,
2248 .ptr = &Globals.max_ttl,
2251 .flags = FLAG_ADVANCED,
2254 .label = "max wins ttl",
2256 .p_class = P_GLOBAL,
2257 .ptr = &Globals.max_wins_ttl,
2260 .flags = FLAG_ADVANCED,
2263 .label = "min wins ttl",
2265 .p_class = P_GLOBAL,
2266 .ptr = &Globals.min_wins_ttl,
2269 .flags = FLAG_ADVANCED,
2272 .label = "time server",
2274 .p_class = P_GLOBAL,
2275 .ptr = &Globals.bTimeServer,
2278 .flags = FLAG_ADVANCED,
2281 .label = "unix extensions",
2283 .p_class = P_GLOBAL,
2284 .ptr = &Globals.bUnixExtensions,
2287 .flags = FLAG_ADVANCED,
2290 .label = "use spnego",
2292 .p_class = P_GLOBAL,
2293 .ptr = &Globals.bUseSpnego,
2296 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
2299 .label = "client signing",
2301 .p_class = P_GLOBAL,
2302 .ptr = &Globals.client_signing,
2304 .enum_list = enum_smb_signing_vals,
2305 .flags = FLAG_ADVANCED,
2308 .label = "server signing",
2310 .p_class = P_GLOBAL,
2311 .ptr = &Globals.server_signing,
2313 .enum_list = enum_smb_signing_vals,
2314 .flags = FLAG_ADVANCED,
2317 .label = "smb encrypt",
2320 .ptr = &sDefault.ismb_encrypt,
2322 .enum_list = enum_smb_signing_vals,
2323 .flags = FLAG_ADVANCED,
2326 .label = "client use spnego",
2328 .p_class = P_GLOBAL,
2329 .ptr = &Globals.bClientUseSpnego,
2332 .flags = FLAG_ADVANCED,
2335 .label = "client ldap sasl wrapping",
2337 .p_class = P_GLOBAL,
2338 .ptr = &Globals.client_ldap_sasl_wrapping,
2340 .enum_list = enum_ldap_sasl_wrapping,
2341 .flags = FLAG_ADVANCED,
2344 .label = "enable asu support",
2346 .p_class = P_GLOBAL,
2347 .ptr = &Globals.bASUSupport,
2350 .flags = FLAG_ADVANCED,
2353 .label = "svcctl list",
2355 .p_class = P_GLOBAL,
2356 .ptr = &Globals.szServicesList,
2359 .flags = FLAG_ADVANCED,
2362 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
2365 .label = "block size",
2368 .ptr = &sDefault.iBlock_size,
2371 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
2374 .label = "deadtime",
2376 .p_class = P_GLOBAL,
2377 .ptr = &Globals.deadtime,
2380 .flags = FLAG_ADVANCED,
2383 .label = "getwd cache",
2385 .p_class = P_GLOBAL,
2386 .ptr = &Globals.getwd_cache,
2389 .flags = FLAG_ADVANCED,
2392 .label = "keepalive",
2394 .p_class = P_GLOBAL,
2395 .ptr = &Globals.iKeepalive,
2398 .flags = FLAG_ADVANCED,
2401 .label = "change notify",
2404 .ptr = &sDefault.bChangeNotify,
2407 .flags = FLAG_ADVANCED | FLAG_SHARE,
2410 .label = "directory name cache size",
2413 .ptr = &sDefault.iDirectoryNameCacheSize,
2416 .flags = FLAG_ADVANCED | FLAG_SHARE,
2419 .label = "kernel change notify",
2422 .ptr = &sDefault.bKernelChangeNotify,
2425 .flags = FLAG_ADVANCED | FLAG_SHARE,
2428 .label = "lpq cache time",
2430 .p_class = P_GLOBAL,
2431 .ptr = &Globals.lpqcachetime,
2434 .flags = FLAG_ADVANCED,
2437 .label = "max smbd processes",
2439 .p_class = P_GLOBAL,
2440 .ptr = &Globals.iMaxSmbdProcesses,
2443 .flags = FLAG_ADVANCED,
2446 .label = "max connections",
2449 .ptr = &sDefault.iMaxConnections,
2452 .flags = FLAG_ADVANCED | FLAG_SHARE,
2455 .label = "paranoid server security",
2457 .p_class = P_GLOBAL,
2458 .ptr = &Globals.paranoid_server_security,
2461 .flags = FLAG_ADVANCED,
2464 .label = "max disk size",
2466 .p_class = P_GLOBAL,
2467 .ptr = &Globals.maxdisksize,
2470 .flags = FLAG_ADVANCED,
2473 .label = "max open files",
2475 .p_class = P_GLOBAL,
2476 .ptr = &Globals.max_open_files,
2479 .flags = FLAG_ADVANCED,
2482 .label = "min print space",
2485 .ptr = &sDefault.iMinPrintSpace,
2488 .flags = FLAG_ADVANCED | FLAG_PRINT,
2491 .label = "socket options",
2493 .p_class = P_GLOBAL,
2494 .ptr = &Globals.szSocketOptions,
2497 .flags = FLAG_ADVANCED,
2500 .label = "strict allocate",
2503 .ptr = &sDefault.bStrictAllocate,
2506 .flags = FLAG_ADVANCED | FLAG_SHARE,
2509 .label = "strict sync",
2512 .ptr = &sDefault.bStrictSync,
2515 .flags = FLAG_ADVANCED | FLAG_SHARE,
2518 .label = "sync always",
2521 .ptr = &sDefault.bSyncAlways,
2524 .flags = FLAG_ADVANCED | FLAG_SHARE,
2527 .label = "use mmap",
2529 .p_class = P_GLOBAL,
2530 .ptr = &Globals.bUseMmap,
2533 .flags = FLAG_ADVANCED,
2536 .label = "use sendfile",
2539 .ptr = &sDefault.bUseSendfile,
2542 .flags = FLAG_ADVANCED | FLAG_SHARE,
2545 .label = "hostname lookups",
2547 .p_class = P_GLOBAL,
2548 .ptr = &Globals.bHostnameLookups,
2551 .flags = FLAG_ADVANCED,
2554 .label = "write cache size",
2557 .ptr = &sDefault.iWriteCacheSize,
2560 .flags = FLAG_ADVANCED | FLAG_SHARE,
2563 .label = "name cache timeout",
2565 .p_class = P_GLOBAL,
2566 .ptr = &Globals.name_cache_timeout,
2569 .flags = FLAG_ADVANCED,
2572 .label = "ctdbd socket",
2574 .p_class = P_GLOBAL,
2575 .ptr = &Globals.ctdbdSocket,
2578 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2581 .label = "cluster addresses",
2583 .p_class = P_GLOBAL,
2584 .ptr = &Globals.szClusterAddresses,
2587 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2590 .label = "clustering",
2592 .p_class = P_GLOBAL,
2593 .ptr = &Globals.clustering,
2596 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2599 .label = "ctdb timeout",
2601 .p_class = P_GLOBAL,
2602 .ptr = &Globals.ctdb_timeout,
2605 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2608 .label = "ctdb locktime warn threshold",
2610 .p_class = P_GLOBAL,
2611 .ptr = &Globals.ctdb_locktime_warn_threshold,
2614 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
2617 .label = "smb2 max read",
2619 .p_class = P_GLOBAL,
2620 .ptr = &Globals.ismb2_max_read,
2623 .flags = FLAG_ADVANCED,
2626 .label = "smb2 max write",
2628 .p_class = P_GLOBAL,
2629 .ptr = &Globals.ismb2_max_write,
2632 .flags = FLAG_ADVANCED,
2635 .label = "smb2 max trans",
2637 .p_class = P_GLOBAL,
2638 .ptr = &Globals.ismb2_max_trans,
2641 .flags = FLAG_ADVANCED,
2644 .label = "smb2 max credits",
2646 .p_class = P_GLOBAL,
2647 .ptr = &Globals.ismb2_max_credits,
2650 .flags = FLAG_ADVANCED,
2653 {N_("Printing Options"), P_SEP, P_SEPARATOR},
2656 .label = "max reported print jobs",
2659 .ptr = &sDefault.iMaxReportedPrintJobs,
2662 .flags = FLAG_ADVANCED | FLAG_PRINT,
2665 .label = "max print jobs",
2668 .ptr = &sDefault.iMaxPrintJobs,
2671 .flags = FLAG_ADVANCED | FLAG_PRINT,
2674 .label = "load printers",
2676 .p_class = P_GLOBAL,
2677 .ptr = &Globals.bLoadPrinters,
2680 .flags = FLAG_ADVANCED | FLAG_PRINT,
2683 .label = "printcap cache time",
2685 .p_class = P_GLOBAL,
2686 .ptr = &Globals.PrintcapCacheTime,
2689 .flags = FLAG_ADVANCED | FLAG_PRINT,
2692 .label = "printcap name",
2694 .p_class = P_GLOBAL,
2695 .ptr = &Globals.szPrintcapname,
2698 .flags = FLAG_ADVANCED | FLAG_PRINT,
2701 .label = "printcap",
2703 .p_class = P_GLOBAL,
2704 .ptr = &Globals.szPrintcapname,
2710 .label = "printable",
2713 .ptr = &sDefault.bPrint_ok,
2716 .flags = FLAG_ADVANCED | FLAG_PRINT,
2719 .label = "print notify backchannel",
2722 .ptr = &sDefault.bPrintNotifyBackchannel,
2725 .flags = FLAG_ADVANCED,
2728 .label = "print ok",
2731 .ptr = &sDefault.bPrint_ok,
2737 .label = "printing",
2740 .ptr = &sDefault.iPrinting,
2741 .special = handle_printing,
2742 .enum_list = enum_printing,
2743 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2746 .label = "cups options",
2749 .ptr = &sDefault.szCupsOptions,
2752 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2755 .label = "cups server",
2757 .p_class = P_GLOBAL,
2758 .ptr = &Globals.szCupsServer,
2761 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2764 .label = "cups encrypt",
2766 .p_class = P_GLOBAL,
2767 .ptr = &Globals.CupsEncrypt,
2769 .enum_list = enum_bool_auto,
2770 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2774 .label = "cups connection timeout",
2776 .p_class = P_GLOBAL,
2777 .ptr = &Globals.cups_connection_timeout,
2780 .flags = FLAG_ADVANCED,
2783 .label = "iprint server",
2785 .p_class = P_GLOBAL,
2786 .ptr = &Globals.szIPrintServer,
2789 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2792 .label = "print command",
2795 .ptr = &sDefault.szPrintcommand,
2798 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2801 .label = "disable spoolss",
2803 .p_class = P_GLOBAL,
2804 .ptr = &Globals.bDisableSpoolss,
2807 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2810 .label = "enable spoolss",
2812 .p_class = P_GLOBAL,
2813 .ptr = &Globals.bDisableSpoolss,
2819 .label = "lpq command",
2822 .ptr = &sDefault.szLpqcommand,
2825 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2828 .label = "lprm command",
2831 .ptr = &sDefault.szLprmcommand,
2834 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2837 .label = "lppause command",
2840 .ptr = &sDefault.szLppausecommand,
2843 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2846 .label = "lpresume command",
2849 .ptr = &sDefault.szLpresumecommand,
2852 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2855 .label = "queuepause command",
2858 .ptr = &sDefault.szQueuepausecommand,
2861 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2864 .label = "queueresume command",
2867 .ptr = &sDefault.szQueueresumecommand,
2870 .flags = FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL,
2873 .label = "addport command",
2875 .p_class = P_GLOBAL,
2876 .ptr = &Globals.szAddPortCommand,
2879 .flags = FLAG_ADVANCED,
2882 .label = "enumports command",
2884 .p_class = P_GLOBAL,
2885 .ptr = &Globals.szEnumPortsCommand,
2888 .flags = FLAG_ADVANCED,
2891 .label = "addprinter command",
2893 .p_class = P_GLOBAL,
2894 .ptr = &Globals.szAddPrinterCommand,
2897 .flags = FLAG_ADVANCED,
2900 .label = "deleteprinter command",
2902 .p_class = P_GLOBAL,
2903 .ptr = &Globals.szDeletePrinterCommand,
2906 .flags = FLAG_ADVANCED,
2909 .label = "show add printer wizard",
2911 .p_class = P_GLOBAL,
2912 .ptr = &Globals.bMsAddPrinterWizard,
2915 .flags = FLAG_ADVANCED,
2918 .label = "os2 driver map",
2920 .p_class = P_GLOBAL,
2921 .ptr = &Globals.szOs2DriverMap,
2924 .flags = FLAG_ADVANCED,
2928 .label = "printer name",
2931 .ptr = &sDefault.szPrintername,
2934 .flags = FLAG_ADVANCED | FLAG_PRINT,
2940 .ptr = &sDefault.szPrintername,
2946 .label = "use client driver",
2949 .ptr = &sDefault.bUseClientDriver,
2952 .flags = FLAG_ADVANCED | FLAG_PRINT,
2955 .label = "default devmode",
2958 .ptr = &sDefault.bDefaultDevmode,
2961 .flags = FLAG_ADVANCED | FLAG_PRINT,
2964 .label = "force printername",
2967 .ptr = &sDefault.bForcePrintername,
2970 .flags = FLAG_ADVANCED | FLAG_PRINT,
2973 .label = "printjob username",
2976 .ptr = &sDefault.szPrintjobUsername,
2979 .flags = FLAG_ADVANCED | FLAG_PRINT,
2982 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
2985 .label = "mangling method",
2987 .p_class = P_GLOBAL,
2988 .ptr = &Globals.szManglingMethod,
2991 .flags = FLAG_ADVANCED,
2994 .label = "mangle prefix",
2996 .p_class = P_GLOBAL,
2997 .ptr = &Globals.mangle_prefix,
3000 .flags = FLAG_ADVANCED,
3004 .label = "default case",
3007 .ptr = &sDefault.iDefaultCase,
3009 .enum_list = enum_case,
3010 .flags = FLAG_ADVANCED | FLAG_SHARE,
3013 .label = "case sensitive",
3016 .ptr = &sDefault.iCaseSensitive,
3018 .enum_list = enum_bool_auto,
3019 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3022 .label = "casesignames",
3025 .ptr = &sDefault.iCaseSensitive,
3027 .enum_list = enum_bool_auto,
3028 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE,
3031 .label = "preserve case",
3034 .ptr = &sDefault.bCasePreserve,
3037 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3040 .label = "short preserve case",
3043 .ptr = &sDefault.bShortCasePreserve,
3046 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3049 .label = "mangling char",
3052 .ptr = &sDefault.magic_char,
3055 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3058 .label = "hide dot files",
3061 .ptr = &sDefault.bHideDotFiles,
3064 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3067 .label = "hide special files",
3070 .ptr = &sDefault.bHideSpecialFiles,
3073 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3076 .label = "hide unreadable",
3079 .ptr = &sDefault.bHideUnReadable,
3082 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3085 .label = "hide unwriteable files",
3088 .ptr = &sDefault.bHideUnWriteableFiles,
3091 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3094 .label = "delete veto files",
3097 .ptr = &sDefault.bDeleteVetoFiles,
3100 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3103 .label = "veto files",
3106 .ptr = &sDefault.szVetoFiles,
3109 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3112 .label = "hide files",
3115 .ptr = &sDefault.szHideFiles,
3118 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3121 .label = "veto oplock files",
3124 .ptr = &sDefault.szVetoOplockFiles,
3127 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3130 .label = "map archive",
3133 .ptr = &sDefault.bMap_archive,
3136 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3139 .label = "map hidden",
3142 .ptr = &sDefault.bMap_hidden,
3145 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3148 .label = "map system",
3151 .ptr = &sDefault.bMap_system,
3154 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3157 .label = "map readonly",
3160 .ptr = &sDefault.iMap_readonly,
3162 .enum_list = enum_map_readonly,
3163 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3166 .label = "mangled names",
3169 .ptr = &sDefault.bMangledNames,
3172 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3175 .label = "max stat cache size",
3177 .p_class = P_GLOBAL,
3178 .ptr = &Globals.iMaxStatCacheSize,
3181 .flags = FLAG_ADVANCED,
3184 .label = "stat cache",
3186 .p_class = P_GLOBAL,
3187 .ptr = &Globals.bStatCache,
3190 .flags = FLAG_ADVANCED,
3193 .label = "store dos attributes",
3196 .ptr = &sDefault.bStoreDosAttributes,
3199 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3202 .label = "dmapi support",
3205 .ptr = &sDefault.bDmapiSupport,
3208 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3212 {N_("Domain Options"), P_SEP, P_SEPARATOR},
3215 .label = "machine password timeout",
3217 .p_class = P_GLOBAL,
3218 .ptr = &Globals.machine_password_timeout,
3221 .flags = FLAG_ADVANCED | FLAG_WIZARD,
3224 {N_("Logon Options"), P_SEP, P_SEPARATOR},
3227 .label = "add user script",
3229 .p_class = P_GLOBAL,
3230 .ptr = &Globals.szAddUserScript,
3233 .flags = FLAG_ADVANCED,
3236 .label = "rename user script",
3238 .p_class = P_GLOBAL,
3239 .ptr = &Globals.szRenameUserScript,
3242 .flags = FLAG_ADVANCED,
3245 .label = "delete user script",
3247 .p_class = P_GLOBAL,
3248 .ptr = &Globals.szDelUserScript,
3251 .flags = FLAG_ADVANCED,
3254 .label = "add group script",
3256 .p_class = P_GLOBAL,
3257 .ptr = &Globals.szAddGroupScript,
3260 .flags = FLAG_ADVANCED,
3263 .label = "delete group script",
3265 .p_class = P_GLOBAL,
3266 .ptr = &Globals.szDelGroupScript,
3269 .flags = FLAG_ADVANCED,
3272 .label = "add user to group script",
3274 .p_class = P_GLOBAL,
3275 .ptr = &Globals.szAddUserToGroupScript,
3278 .flags = FLAG_ADVANCED,
3281 .label = "delete user from group script",
3283 .p_class = P_GLOBAL,
3284 .ptr = &Globals.szDelUserFromGroupScript,
3287 .flags = FLAG_ADVANCED,
3290 .label = "set primary group script",
3292 .p_class = P_GLOBAL,
3293 .ptr = &Globals.szSetPrimaryGroupScript,
3296 .flags = FLAG_ADVANCED,
3299 .label = "add machine script",
3301 .p_class = P_GLOBAL,
3302 .ptr = &Globals.szAddMachineScript,
3305 .flags = FLAG_ADVANCED,
3308 .label = "shutdown script",
3310 .p_class = P_GLOBAL,
3311 .ptr = &Globals.szShutdownScript,
3314 .flags = FLAG_ADVANCED,
3317 .label = "abort shutdown script",
3319 .p_class = P_GLOBAL,
3320 .ptr = &Globals.szAbortShutdownScript,
3323 .flags = FLAG_ADVANCED,
3326 .label = "username map script",
3328 .p_class = P_GLOBAL,
3329 .ptr = &Globals.szUsernameMapScript,
3332 .flags = FLAG_ADVANCED,
3335 .label = "username map cache time",
3337 .p_class = P_GLOBAL,
3338 .ptr = &Globals.iUsernameMapCacheTime,
3341 .flags = FLAG_ADVANCED,
3344 .label = "logon script",
3346 .p_class = P_GLOBAL,
3347 .ptr = &Globals.szLogonScript,
3350 .flags = FLAG_ADVANCED,
3353 .label = "logon path",
3355 .p_class = P_GLOBAL,
3356 .ptr = &Globals.szLogonPath,
3359 .flags = FLAG_ADVANCED,
3362 .label = "logon drive",
3364 .p_class = P_GLOBAL,
3365 .ptr = &Globals.szLogonDrive,
3368 .flags = FLAG_ADVANCED,
3371 .label = "logon home",
3373 .p_class = P_GLOBAL,
3374 .ptr = &Globals.szLogonHome,
3377 .flags = FLAG_ADVANCED,
3380 .label = "domain logons",
3382 .p_class = P_GLOBAL,
3383 .ptr = &Globals.bDomainLogons,
3386 .flags = FLAG_ADVANCED,
3390 .label = "init logon delayed hosts",
3392 .p_class = P_GLOBAL,
3393 .ptr = &Globals.szInitLogonDelayedHosts,
3396 .flags = FLAG_ADVANCED,
3400 .label = "init logon delay",
3402 .p_class = P_GLOBAL,
3403 .ptr = &Globals.InitLogonDelay,
3406 .flags = FLAG_ADVANCED,
3410 {N_("Browse Options"), P_SEP, P_SEPARATOR},
3413 .label = "os level",
3415 .p_class = P_GLOBAL,
3416 .ptr = &Globals.os_level,
3419 .flags = FLAG_BASIC | FLAG_ADVANCED,
3422 .label = "lm announce",
3424 .p_class = P_GLOBAL,
3425 .ptr = &Globals.lm_announce,
3427 .enum_list = enum_bool_auto,
3428 .flags = FLAG_ADVANCED,
3431 .label = "lm interval",
3433 .p_class = P_GLOBAL,
3434 .ptr = &Globals.lm_interval,
3437 .flags = FLAG_ADVANCED,
3440 .label = "preferred master",
3442 .p_class = P_GLOBAL,
3443 .ptr = &Globals.iPreferredMaster,
3445 .enum_list = enum_bool_auto,
3446 .flags = FLAG_BASIC | FLAG_ADVANCED,
3449 .label = "prefered master",
3451 .p_class = P_GLOBAL,
3452 .ptr = &Globals.iPreferredMaster,
3454 .enum_list = enum_bool_auto,
3458 .label = "local master",
3460 .p_class = P_GLOBAL,
3461 .ptr = &Globals.bLocalMaster,
3464 .flags = FLAG_BASIC | FLAG_ADVANCED,
3467 .label = "domain master",
3469 .p_class = P_GLOBAL,
3470 .ptr = &Globals.iDomainMaster,
3472 .enum_list = enum_bool_auto,
3473 .flags = FLAG_BASIC | FLAG_ADVANCED,
3476 .label = "browse list",
3478 .p_class = P_GLOBAL,
3479 .ptr = &Globals.bBrowseList,
3482 .flags = FLAG_ADVANCED,
3485 .label = "browseable",
3488 .ptr = &sDefault.bBrowseable,
3491 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
3494 .label = "browsable",
3497 .ptr = &sDefault.bBrowseable,
3503 .label = "access based share enum",
3506 .ptr = &sDefault.bAccessBasedShareEnum,
3509 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE
3512 .label = "enhanced browsing",
3514 .p_class = P_GLOBAL,
3515 .ptr = &Globals.enhanced_browsing,
3518 .flags = FLAG_ADVANCED,
3521 {N_("WINS Options"), P_SEP, P_SEPARATOR},
3524 .label = "dns proxy",
3526 .p_class = P_GLOBAL,
3527 .ptr = &Globals.bDNSproxy,
3530 .flags = FLAG_ADVANCED,
3533 .label = "wins proxy",
3535 .p_class = P_GLOBAL,
3536 .ptr = &Globals.bWINSproxy,
3539 .flags = FLAG_ADVANCED,
3542 .label = "wins server",
3544 .p_class = P_GLOBAL,
3545 .ptr = &Globals.szWINSservers,
3548 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
3551 .label = "wins support",
3553 .p_class = P_GLOBAL,
3554 .ptr = &Globals.bWINSsupport,
3557 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD,
3560 .label = "wins hook",
3562 .p_class = P_GLOBAL,
3563 .ptr = &Globals.szWINSHook,
3566 .flags = FLAG_ADVANCED,
3569 {N_("Locking Options"), P_SEP, P_SEPARATOR},
3572 .label = "blocking locks",
3575 .ptr = &sDefault.bBlockingLocks,
3578 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3581 .label = "csc policy",
3584 .ptr = &sDefault.iCSCPolicy,
3586 .enum_list = enum_csc_policy,
3587 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3590 .label = "fake oplocks",
3593 .ptr = &sDefault.bFakeOplocks,
3596 .flags = FLAG_ADVANCED | FLAG_SHARE,
3599 .label = "kernel oplocks",
3601 .p_class = P_GLOBAL,
3602 .ptr = &Globals.bKernelOplocks,
3605 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3611 .ptr = &sDefault.bLocking,
3614 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3617 .label = "lock spin time",
3619 .p_class = P_GLOBAL,
3620 .ptr = &Globals.iLockSpinTime,
3623 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3629 .ptr = &sDefault.bOpLocks,
3632 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3635 .label = "level2 oplocks",
3638 .ptr = &sDefault.bLevel2OpLocks,
3641 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3644 .label = "oplock break wait time",
3646 .p_class = P_GLOBAL,
3647 .ptr = &Globals.oplock_break_wait_time,
3650 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
3653 .label = "oplock contention limit",
3656 .ptr = &sDefault.iOplockContentionLimit,
3659 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3662 .label = "posix locking",
3665 .ptr = &sDefault.bPosixLocking,
3668 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3671 .label = "strict locking",
3674 .ptr = &sDefault.iStrictLocking,
3676 .enum_list = enum_bool_auto,
3677 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
3680 .label = "share modes",
3683 .ptr = &sDefault.bShareModes,
3686 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_DEPRECATED,
3689 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
3692 .label = "ldap admin dn",
3694 .p_class = P_GLOBAL,
3695 .ptr = &Globals.szLdapAdminDn,
3698 .flags = FLAG_ADVANCED,
3701 .label = "ldap delete dn",
3703 .p_class = P_GLOBAL,
3704 .ptr = &Globals.ldap_delete_dn,
3707 .flags = FLAG_ADVANCED,
3710 .label = "ldap group suffix",
3712 .p_class = P_GLOBAL,
3713 .ptr = &Globals.szLdapGroupSuffix,
3716 .flags = FLAG_ADVANCED,
3719 .label = "ldap idmap suffix",
3721 .p_class = P_GLOBAL,
3722 .ptr = &Globals.szLdapIdmapSuffix,
3725 .flags = FLAG_ADVANCED,
3728 .label = "ldap machine suffix",
3730 .p_class = P_GLOBAL,
3731 .ptr = &Globals.szLdapMachineSuffix,
3734 .flags = FLAG_ADVANCED,
3737 .label = "ldap passwd sync",
3739 .p_class = P_GLOBAL,
3740 .ptr = &Globals.ldap_passwd_sync,
3742 .enum_list = enum_ldap_passwd_sync,
3743 .flags = FLAG_ADVANCED,
3746 .label = "ldap password sync",
3748 .p_class = P_GLOBAL,
3749 .ptr = &Globals.ldap_passwd_sync,
3751 .enum_list = enum_ldap_passwd_sync,
3755 .label = "ldap replication sleep",
3757 .p_class = P_GLOBAL,
3758 .ptr = &Globals.ldap_replication_sleep,
3761 .flags = FLAG_ADVANCED,
3764 .label = "ldap suffix",
3766 .p_class = P_GLOBAL,
3767 .ptr = &Globals.szLdapSuffix,
3770 .flags = FLAG_ADVANCED,
3773 .label = "ldap ssl",
3775 .p_class = P_GLOBAL,
3776 .ptr = &Globals.ldap_ssl,
3778 .enum_list = enum_ldap_ssl,
3779 .flags = FLAG_ADVANCED,
3782 .label = "ldap ssl ads",
3784 .p_class = P_GLOBAL,
3785 .ptr = &Globals.ldap_ssl_ads,
3788 .flags = FLAG_ADVANCED,
3791 .label = "ldap deref",
3793 .p_class = P_GLOBAL,
3794 .ptr = &Globals.ldap_deref,
3796 .enum_list = enum_ldap_deref,
3797 .flags = FLAG_ADVANCED,
3800 .label = "ldap follow referral",
3802 .p_class = P_GLOBAL,
3803 .ptr = &Globals.ldap_follow_referral,
3805 .enum_list = enum_bool_auto,
3806 .flags = FLAG_ADVANCED,
3809 .label = "ldap timeout",
3811 .p_class = P_GLOBAL,
3812 .ptr = &Globals.ldap_timeout,
3815 .flags = FLAG_ADVANCED,
3818 .label = "ldap connection timeout",
3820 .p_class = P_GLOBAL,
3821 .ptr = &Globals.ldap_connection_timeout,
3824 .flags = FLAG_ADVANCED,
3827 .label = "ldap page size",
3829 .p_class = P_GLOBAL,
3830 .ptr = &Globals.ldap_page_size,
3833 .flags = FLAG_ADVANCED,
3836 .label = "ldap user suffix",
3838 .p_class = P_GLOBAL,
3839 .ptr = &Globals.szLdapUserSuffix,
3842 .flags = FLAG_ADVANCED,
3845 .label = "ldap debug level",
3847 .p_class = P_GLOBAL,
3848 .ptr = &Globals.ldap_debug_level,
3849 .special = handle_ldap_debug_level,
3851 .flags = FLAG_ADVANCED,
3854 .label = "ldap debug threshold",
3856 .p_class = P_GLOBAL,
3857 .ptr = &Globals.ldap_debug_threshold,
3860 .flags = FLAG_ADVANCED,
3863 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
3866 .label = "eventlog list",
3868 .p_class = P_GLOBAL,
3869 .ptr = &Globals.szEventLogs,
3872 .flags = FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE,
3875 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
3878 .label = "add share command",
3880 .p_class = P_GLOBAL,
3881 .ptr = &Globals.szAddShareCommand,
3884 .flags = FLAG_ADVANCED,
3887 .label = "change share command",
3889 .p_class = P_GLOBAL,
3890 .ptr = &Globals.szChangeShareCommand,
3893 .flags = FLAG_ADVANCED,
3896 .label = "delete share command",
3898 .p_class = P_GLOBAL,
3899 .ptr = &Globals.szDeleteShareCommand,
3902 .flags = FLAG_ADVANCED,
3905 .label = "config file",
3907 .p_class = P_GLOBAL,
3908 .ptr = &Globals.szConfigFile,
3911 .flags = FLAG_HIDE|FLAG_META,
3916 .p_class = P_GLOBAL,
3917 .ptr = &Globals.szAutoServices,
3920 .flags = FLAG_ADVANCED,
3923 .label = "auto services",
3925 .p_class = P_GLOBAL,
3926 .ptr = &Globals.szAutoServices,
3929 .flags = FLAG_ADVANCED,
3932 .label = "lock directory",
3934 .p_class = P_GLOBAL,
3935 .ptr = &Globals.szLockDir,
3938 .flags = FLAG_ADVANCED,
3941 .label = "lock dir",
3943 .p_class = P_GLOBAL,
3944 .ptr = &Globals.szLockDir,
3950 .label = "state directory",
3952 .p_class = P_GLOBAL,
3953 .ptr = &Globals.szStateDir,
3956 .flags = FLAG_ADVANCED,
3959 .label = "cache directory",
3961 .p_class = P_GLOBAL,
3962 .ptr = &Globals.szCacheDir,
3965 .flags = FLAG_ADVANCED,
3968 .label = "pid directory",
3970 .p_class = P_GLOBAL,
3971 .ptr = &Globals.szPidDir,
3974 .flags = FLAG_ADVANCED,
3978 .label = "utmp directory",
3980 .p_class = P_GLOBAL,
3981 .ptr = &Globals.szUtmpDir,
3984 .flags = FLAG_ADVANCED,
3987 .label = "wtmp directory",
3989 .p_class = P_GLOBAL,
3990 .ptr = &Globals.szWtmpDir,
3993 .flags = FLAG_ADVANCED,
3998 .p_class = P_GLOBAL,
3999 .ptr = &Globals.bUtmp,
4002 .flags = FLAG_ADVANCED,
4006 .label = "default service",
4008 .p_class = P_GLOBAL,
4009 .ptr = &Globals.szDefaultService,
4012 .flags = FLAG_ADVANCED,
4017 .p_class = P_GLOBAL,
4018 .ptr = &Globals.szDefaultService,
4021 .flags = FLAG_ADVANCED,
4024 .label = "message command",
4026 .p_class = P_GLOBAL,
4027 .ptr = &Globals.szMsgCommand,
4030 .flags = FLAG_ADVANCED,
4033 .label = "dfree cache time",
4036 .ptr = &sDefault.iDfreeCacheTime,
4039 .flags = FLAG_ADVANCED,
4042 .label = "dfree command",
4045 .ptr = &sDefault.szDfree,
4048 .flags = FLAG_ADVANCED,
4051 .label = "get quota command",
4053 .p_class = P_GLOBAL,
4054 .ptr = &Globals.szGetQuota,
4057 .flags = FLAG_ADVANCED,
4060 .label = "set quota command",
4062 .p_class = P_GLOBAL,
4063 .ptr = &Globals.szSetQuota,
4066 .flags = FLAG_ADVANCED,
4069 .label = "remote announce",
4071 .p_class = P_GLOBAL,
4072 .ptr = &Globals.szRemoteAnnounce,
4075 .flags = FLAG_ADVANCED,
4078 .label = "remote browse sync",
4080 .p_class = P_GLOBAL,
4081 .ptr = &Globals.szRemoteBrowseSync,
4084 .flags = FLAG_ADVANCED,
4087 .label = "socket address",
4089 .p_class = P_GLOBAL,
4090 .ptr = &Globals.szSocketAddress,
4093 .flags = FLAG_ADVANCED,
4096 .label = "nmbd bind explicit broadcast",
4098 .p_class = P_GLOBAL,
4099 .ptr = &Globals.bNmbdBindExplicitBroadcast,
4102 .flags = FLAG_ADVANCED,
4105 .label = "homedir map",
4107 .p_class = P_GLOBAL,
4108 .ptr = &Globals.szNISHomeMapName,
4111 .flags = FLAG_ADVANCED,
4114 .label = "afs username map",
4116 .p_class = P_GLOBAL,
4117 .ptr = &Globals.szAfsUsernameMap,
4120 .flags = FLAG_ADVANCED,
4123 .label = "afs token lifetime",
4125 .p_class = P_GLOBAL,
4126 .ptr = &Globals.iAfsTokenLifetime,
4129 .flags = FLAG_ADVANCED,
4132 .label = "log nt token command",
4134 .p_class = P_GLOBAL,
4135 .ptr = &Globals.szLogNtTokenCommand,
4138 .flags = FLAG_ADVANCED,
4141 .label = "time offset",
4143 .p_class = P_GLOBAL,
4144 .ptr = &extra_time_offset,
4147 .flags = FLAG_ADVANCED,
4150 .label = "NIS homedir",
4152 .p_class = P_GLOBAL,
4153 .ptr = &Globals.bNISHomeMap,
4156 .flags = FLAG_ADVANCED,
4162 .ptr = &sDefault.valid,
4171 .ptr = &sDefault.szCopy,
4172 .special = handle_copy,
4180 .ptr = &sDefault.szInclude,
4181 .special = handle_include,
4183 .flags = FLAG_HIDE|FLAG_META,
4189 .ptr = &sDefault.szPreExec,
4192 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
4198 .ptr = &sDefault.szPreExec,
4201 .flags = FLAG_ADVANCED,
4204 .label = "preexec close",
4207 .ptr = &sDefault.bPreexecClose,
4210 .flags = FLAG_ADVANCED | FLAG_SHARE,
4213 .label = "postexec",
4216 .ptr = &sDefault.szPostExec,
4219 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
4222 .label = "root preexec",
4225 .ptr = &sDefault.szRootPreExec,
4228 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
4231 .label = "root preexec close",
4234 .ptr = &sDefault.bRootpreexecClose,
4237 .flags = FLAG_ADVANCED | FLAG_SHARE,
4240 .label = "root postexec",
4243 .ptr = &sDefault.szRootPostExec,
4246 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
4249 .label = "available",
4252 .ptr = &sDefault.bAvailable,
4255 .flags = FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT,
4258 .label = "registry shares",
4260 .p_class = P_GLOBAL,
4261 .ptr = &Globals.bRegistryShares,
4264 .flags = FLAG_ADVANCED,
4267 .label = "usershare allow guests",
4269 .p_class = P_GLOBAL,
4270 .ptr = &Globals.bUsershareAllowGuests,
4273 .flags = FLAG_ADVANCED,
4276 .label = "usershare max shares",
4278 .p_class = P_GLOBAL,
4279 .ptr = &Globals.iUsershareMaxShares,
4282 .flags = FLAG_ADVANCED,
4285 .label = "usershare owner only",
4287 .p_class = P_GLOBAL,
4288 .ptr = &Globals.bUsershareOwnerOnly,
4291 .flags = FLAG_ADVANCED,
4294 .label = "usershare path",
4296 .p_class = P_GLOBAL,
4297 .ptr = &Globals.szUsersharePath,
4300 .flags = FLAG_ADVANCED,
4303 .label = "usershare prefix allow list",
4305 .p_class = P_GLOBAL,
4306 .ptr = &Globals.szUsersharePrefixAllowList,
4309 .flags = FLAG_ADVANCED,
4312 .label = "usershare prefix deny list",
4314 .p_class = P_GLOBAL,
4315 .ptr = &Globals.szUsersharePrefixDenyList,
4318 .flags = FLAG_ADVANCED,
4321 .label = "usershare template share",
4323 .p_class = P_GLOBAL,
4324 .ptr = &Globals.szUsershareTemplateShare,
4327 .flags = FLAG_ADVANCED,
4333 .ptr = &sDefault.volume,
4336 .flags = FLAG_ADVANCED | FLAG_SHARE,
4342 .ptr = &sDefault.fstype,
4345 .flags = FLAG_ADVANCED | FLAG_SHARE,
4348 .label = "set directory",
4351 .ptr = &sDefault.bNo_set_dir,
4354 .flags = FLAG_ADVANCED | FLAG_SHARE,
4357 .label = "wide links",
4360 .ptr = &sDefault.bWidelinks,
4363 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
4366 .label = "follow symlinks",
4369 .ptr = &sDefault.bSymlinks,
4372 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
4375 .label = "dont descend",
4378 .ptr = &sDefault.szDontdescend,
4381 .flags = FLAG_ADVANCED | FLAG_SHARE,
4384 .label = "magic script",
4387 .ptr = &sDefault.szMagicScript,
4390 .flags = FLAG_ADVANCED | FLAG_SHARE,
4393 .label = "magic output",
4396 .ptr = &sDefault.szMagicOutput,
4399 .flags = FLAG_ADVANCED | FLAG_SHARE,
4402 .label = "delete readonly",
4405 .ptr = &sDefault.bDeleteReadonly,
4408 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
4411 .label = "dos filemode",
4414 .ptr = &sDefault.bDosFilemode,
4417 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
4420 .label = "dos filetimes",
4423 .ptr = &sDefault.bDosFiletimes,
4426 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
4429 .label = "dos filetime resolution",
4432 .ptr = &sDefault.bDosFiletimeResolution,
4435 .flags = FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL,
4438 .label = "fake directory create times",
4441 .ptr = &sDefault.bFakeDirCreateTimes,
4444 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
4447 .label = "async smb echo handler",
4449 .p_class = P_GLOBAL,
4450 .ptr = &Globals.bAsyncSMBEchoHandler,
4453 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
4456 .label = "multicast dns register",
4458 .p_class = P_GLOBAL,
4459 .ptr = &Globals.bMulticastDnsRegister,
4462 .flags = FLAG_ADVANCED | FLAG_GLOBAL,
4465 .label = "panic action",
4467 .p_class = P_GLOBAL,
4468 .ptr = &Globals.szPanicAction,
4471 .flags = FLAG_ADVANCED,
4474 .label = "perfcount module",
4476 .p_class = P_GLOBAL,
4477 .ptr = &Globals.szSMBPerfcountModule,
4480 .flags = FLAG_ADVANCED,
4483 {N_("VFS module options"), P_SEP, P_SEPARATOR},
4486 .label = "vfs objects",
4489 .ptr = &sDefault.szVfsObjects,
4492 .flags = FLAG_ADVANCED | FLAG_SHARE,
4495 .label = "vfs object",
4498 .ptr = &sDefault.szVfsObjects,
4505 {N_("MSDFS options"), P_SEP, P_SEPARATOR},
4508 .label = "msdfs root",
4511 .ptr = &sDefault.bMSDfsRoot,
4514 .flags = FLAG_ADVANCED | FLAG_SHARE,
4517 .label = "msdfs proxy",
4520 .ptr = &sDefault.szMSDfsProxy,
4523 .flags = FLAG_ADVANCED | FLAG_SHARE,
4526 .label = "host msdfs",
4528 .p_class = P_GLOBAL,
4529 .ptr = &Globals.bHostMSDfs,
4532 .flags = FLAG_ADVANCED,
4535 {N_("Winbind options"), P_SEP, P_SEPARATOR},
4538 .label = "passdb expand explicit",
4540 .p_class = P_GLOBAL,
4541 .ptr = &Globals.bPassdbExpandExplicit,
4544 .flags = FLAG_ADVANCED,
4547 .label = "idmap backend",
4549 .p_class = P_GLOBAL,
4550 .ptr = &Globals.szIdmapBackend,
4551 .special = handle_idmap_backend,
4553 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
4556 .label = "idmap cache time",
4558 .p_class = P_GLOBAL,
4559 .ptr = &Globals.iIdmapCacheTime,
4562 .flags = FLAG_ADVANCED,
4565 .label = "idmap negative cache time",
4567 .p_class = P_GLOBAL,
4568 .ptr = &Globals.iIdmapNegativeCacheTime,
4571 .flags = FLAG_ADVANCED,
4574 .label = "idmap uid",
4576 .p_class = P_GLOBAL,
4577 .ptr = &Globals.szIdmapUID,
4578 .special = handle_idmap_uid,
4580 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
4583 .label = "winbind uid",
4585 .p_class = P_GLOBAL,
4586 .ptr = &Globals.szIdmapUID,
4587 .special = handle_idmap_uid,
4592 .label = "idmap gid",
4594 .p_class = P_GLOBAL,
4595 .ptr = &Globals.szIdmapGID,
4596 .special = handle_idmap_gid,
4598 .flags = FLAG_ADVANCED | FLAG_DEPRECATED,
4601 .label = "winbind gid",
4603 .p_class = P_GLOBAL,
4604 .ptr = &Globals.szIdmapGID,
4605 .special = handle_idmap_gid,
4610 .label = "template homedir",
4612 .p_class = P_GLOBAL,
4613 .ptr = &Globals.szTemplateHomedir,
4616 .flags = FLAG_ADVANCED,
4619 .label = "template shell",
4621 .p_class = P_GLOBAL,
4622 .ptr = &Globals.szTemplateShell,
4625 .flags = FLAG_ADVANCED,
4628 .label = "winbind separator",
4630 .p_class = P_GLOBAL,
4631 .ptr = &Globals.szWinbindSeparator,
4634 .flags = FLAG_ADVANCED,
4637 .label = "winbind cache time",
4639 .p_class = P_GLOBAL,
4640 .ptr = &Globals.winbind_cache_time,
4643 .flags = FLAG_ADVANCED,
4646 .label = "winbind reconnect delay",
4648 .p_class = P_GLOBAL,
4649 .ptr = &Globals.winbind_reconnect_delay,
4652 .flags = FLAG_ADVANCED,
4655 .label = "winbind max clients",
4657 .p_class = P_GLOBAL,
4658 .ptr = &Globals.winbind_max_clients,
4661 .flags = FLAG_ADVANCED,
4664 .label = "winbind enum users",
4666 .p_class = P_GLOBAL,
4667 .ptr = &Globals.bWinbindEnumUsers,
4670 .flags = FLAG_ADVANCED,
4673 .label = "winbind enum groups",
4675 .p_class = P_GLOBAL,
4676 .ptr = &Globals.bWinbindEnumGroups,
4679 .flags = FLAG_ADVANCED,
4682 .label = "winbind use default domain",
4684 .p_class = P_GLOBAL,
4685 .ptr = &Globals.bWinbindUseDefaultDomain,
4688 .flags = FLAG_ADVANCED,
4691 .label = "winbind trusted domains only",
4693 .p_class = P_GLOBAL,
4694 .ptr = &Globals.bWinbindTrustedDomainsOnly,
4697 .flags = FLAG_ADVANCED,
4700 .label = "winbind nested groups",
4702 .p_class = P_GLOBAL,
4703 .ptr = &Globals.bWinbindNestedGroups,
4706 .flags = FLAG_ADVANCED,
4709 .label = "winbind expand groups",
4711 .p_class = P_GLOBAL,
4712 .ptr = &Globals.winbind_expand_groups,
4715 .flags = FLAG_ADVANCED,
4718 .label = "winbind nss info",
4720 .p_class = P_GLOBAL,
4721 .ptr = &Globals.szWinbindNssInfo,
4724 .flags = FLAG_ADVANCED,
4727 .label = "winbind refresh tickets",
4729 .p_class = P_GLOBAL,
4730 .ptr = &Globals.bWinbindRefreshTickets,
4733 .flags = FLAG_ADVANCED,
4736 .label = "winbind offline logon",
4738 .p_class = P_GLOBAL,
4739 .ptr = &Globals.bWinbindOfflineLogon,
4742 .flags = FLAG_ADVANCED,
4745 .label = "winbind normalize names",
4747 .p_class = P_GLOBAL,
4748 .ptr = &Globals.bWinbindNormalizeNames,
4751 .flags = FLAG_ADVANCED,
4754 .label = "winbind rpc only",
4756 .p_class = P_GLOBAL,
4757 .ptr = &Globals.bWinbindRpcOnly,
4760 .flags = FLAG_ADVANCED,
4763 .label = "create krb5 conf",
4765 .p_class = P_GLOBAL,
4766 .ptr = &Globals.bCreateKrb5Conf,
4769 .flags = FLAG_ADVANCED,
4772 .label = "ncalrpc dir",
4774 .p_class = P_GLOBAL,
4775 .ptr = &Globals.ncalrpc_dir,
4778 .flags = FLAG_ADVANCED,
4781 .label = "winbind max domain connections",
4783 .p_class = P_GLOBAL,
4784 .ptr = &Globals.winbindMaxDomainConnections,
4787 .flags = FLAG_ADVANCED,
4790 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
4793 /***************************************************************************
4794 Initialise the sDefault parameter structure for the printer values.
4795 ***************************************************************************/
4797 static void init_printer_values(struct service *pService)
4799 /* choose defaults depending on the type of printing */
4800 switch (pService->iPrinting) {
4805 string_set(&pService->szLpqcommand, "lpq -P'%p'");
4806 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
4807 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
4812 string_set(&pService->szLpqcommand, "lpq -P'%p'");
4813 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
4814 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
4815 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
4816 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
4817 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
4818 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
4824 /* set the lpq command to contain the destination printer
4825 name only. This is used by cups_queue_get() */
4826 string_set(&pService->szLpqcommand, "%p");
4827 string_set(&pService->szLprmcommand, "");
4828 string_set(&pService->szPrintcommand, "");
4829 string_set(&pService->szLppausecommand, "");
4830 string_set(&pService->szLpresumecommand, "");
4831 string_set(&pService->szQueuepausecommand, "");
4832 string_set(&pService->szQueueresumecommand, "");
4834 string_set(&pService->szLpqcommand, "lpq -P'%p'");
4835 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
4836 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
4837 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
4838 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
4839 string_set(&pService->szQueuepausecommand, "disable '%p'");
4840 string_set(&pService->szQueueresumecommand, "enable '%p'");
4841 #endif /* HAVE_CUPS */
4846 string_set(&pService->szLpqcommand, "lpstat -o%p");
4847 string_set(&pService->szLprmcommand, "cancel %p-%j");
4848 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
4849 string_set(&pService->szQueuepausecommand, "disable %p");
4850 string_set(&pService->szQueueresumecommand, "enable %p");
4852 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
4853 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
4858 string_set(&pService->szLpqcommand, "lpq -P%p");
4859 string_set(&pService->szLprmcommand, "lprm -P%p %j");
4860 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
4863 #if defined(DEVELOPER) || defined(ENABLE_BUILD_FARM_HACKS)
4867 const char *tdbfile;
4870 tdbfile = talloc_asprintf(
4871 talloc_tos(), "tdbfile=%s",
4872 lp_parm_const_string(-1, "vlp", "tdbfile",
4874 if (tdbfile == NULL) {
4875 tdbfile="tdbfile=/tmp/vlp.tdb";
4878 tmp = talloc_asprintf(talloc_tos(), "vlp %s print %%p %%s",
4880 string_set(&pService->szPrintcommand,
4881 tmp ? tmp : "vlp print %p %s");
4884 tmp = talloc_asprintf(talloc_tos(), "vlp %s lpq %%p",
4886 string_set(&pService->szLpqcommand,
4887 tmp ? tmp : "vlp lpq %p");
4890 tmp = talloc_asprintf(talloc_tos(), "vlp %s lprm %%p %%j",
4892 string_set(&pService->szLprmcommand,
4893 tmp ? tmp : "vlp lprm %p %j");
4896 tmp = talloc_asprintf(talloc_tos(), "vlp %s lppause %%p %%j",
4898 string_set(&pService->szLppausecommand,
4899 tmp ? tmp : "vlp lppause %p %j");
4902 tmp = talloc_asprintf(talloc_tos(), "vlp %s lpresume %%p %%j",
4904 string_set(&pService->szLpresumecommand,
4905 tmp ? tmp : "vlp lpresume %p %j");
4908 tmp = talloc_asprintf(talloc_tos(), "vlp %s queuepause %%p",
4910 string_set(&pService->szQueuepausecommand,
4911 tmp ? tmp : "vlp queuepause %p");
4914 tmp = talloc_asprintf(talloc_tos(), "vlp %s queueresume %%p",
4916 string_set(&pService->szQueueresumecommand,
4917 tmp ? tmp : "vlp queueresume %p");
4922 #endif /* DEVELOPER */
4927 * Function to return the default value for the maximum number of open
4928 * file descriptors permitted. This function tries to consult the
4929 * kernel-level (sysctl) and ulimit (getrlimit()) values and goes
4930 * the smaller of those.
4932 static int max_open_files(void)
4934 int sysctl_max = MAX_OPEN_FILES;
4935 int rlimit_max = MAX_OPEN_FILES;
4937 #ifdef HAVE_SYSCTLBYNAME
4939 size_t size = sizeof(sysctl_max);
4940 sysctlbyname("kern.maxfilesperproc", &sysctl_max, &size, NULL,
4945 #if (defined(HAVE_GETRLIMIT) && defined(RLIMIT_NOFILE))
4951 if (getrlimit(RLIMIT_NOFILE, &rl) == 0)
4952 rlimit_max = rl.rlim_cur;
4954 #if defined(RLIM_INFINITY)
4955 if(rl.rlim_cur == RLIM_INFINITY)
4956 rlimit_max = MAX_OPEN_FILES;
4961 if (sysctl_max < MIN_OPEN_FILES_WINDOWS) {
4962 DEBUG(2,("max_open_files: increasing sysctl_max (%d) to "
4963 "minimum Windows limit (%d)\n",
4965 MIN_OPEN_FILES_WINDOWS));
4966 sysctl_max = MIN_OPEN_FILES_WINDOWS;
4969 if (rlimit_max < MIN_OPEN_FILES_WINDOWS) {
4970 DEBUG(2,("rlimit_max: increasing rlimit_max (%d) to "
4971 "minimum Windows limit (%d)\n",
4973 MIN_OPEN_FILES_WINDOWS));
4974 rlimit_max = MIN_OPEN_FILES_WINDOWS;
4977 return MIN(sysctl_max, rlimit_max);
4981 * Common part of freeing allocated data for one parameter.
4983 static void free_one_parameter_common(void *parm_ptr,
4984 struct parm_struct parm)
4986 if ((parm.type == P_STRING) ||
4987 (parm.type == P_USTRING))
4989 string_free((char**)parm_ptr);
4990 } else if (parm.type == P_LIST) {
4991 TALLOC_FREE(*((char***)parm_ptr));
4996 * Free the allocated data for one parameter for a share
4997 * given as a service struct.
4999 static void free_one_parameter(struct service *service,
5000 struct parm_struct parm)
5004 if (parm.p_class != P_LOCAL) {
5008 parm_ptr = lp_local_ptr(service, parm.ptr);
5010 free_one_parameter_common(parm_ptr, parm);
5014 * Free the allocated parameter data of a share given
5015 * as a service struct.
5017 static void free_parameters(struct service *service)
5021 for (i=0; parm_table[i].label; i++) {
5022 free_one_parameter(service, parm_table[i]);
5027 * Free the allocated data for one parameter for a given share
5028 * specified by an snum.
5030 static void free_one_parameter_by_snum(int snum, struct parm_struct parm)
5034 if (parm.ptr == NULL) {
5039 parm_ptr = parm.ptr;
5040 } else if (parm.p_class != P_LOCAL) {
5043 parm_ptr = lp_local_ptr_by_snum(snum, parm.ptr);
5046 free_one_parameter_common(parm_ptr, parm);
5050 * Free the allocated parameter data for a share specified
5053 static void free_parameters_by_snum(int snum)
5057 for (i=0; parm_table[i].label; i++) {
5058 free_one_parameter_by_snum(snum, parm_table[i]);
5063 * Free the allocated global parameters.
5065 static void free_global_parameters(void)
5067 free_parameters_by_snum(GLOBAL_SECTION_SNUM);
5070 static int map_parameter(const char *pszParmName);
5072 struct lp_stored_option {
5073 struct lp_stored_option *prev, *next;
5078 static struct lp_stored_option *stored_options;
5081 save options set by lp_set_cmdline() into a list. This list is
5082 re-applied when we do a globals reset, so that cmdline set options
5083 are sticky across reloads of smb.conf
5085 static bool store_lp_set_cmdline(const char *pszParmName, const char *pszParmValue)
5087 struct lp_stored_option *entry, *entry_next;
5088 for (entry = stored_options; entry != NULL; entry = entry_next) {
5089 entry_next = entry->next;
5090 if (strcmp(pszParmName, entry->label) == 0) {
5091 DLIST_REMOVE(stored_options, entry);
5097 entry = talloc(NULL, struct lp_stored_option);
5102 entry->label = talloc_strdup(entry, pszParmName);
5103 if (!entry->label) {
5108 entry->value = talloc_strdup(entry, pszParmValue);
5109 if (!entry->value) {
5114 DLIST_ADD_END(stored_options, entry, struct lp_stored_option);
5119 static bool apply_lp_set_cmdline(void)
5121 struct lp_stored_option *entry = NULL;
5122 for (entry = stored_options; entry != NULL; entry = entry->next) {
5123 if (!lp_set_cmdline_helper(entry->label, entry->value, false)) {
5124 DEBUG(0, ("Failed to re-apply cmdline parameter %s = %s\n",
5125 entry->label, entry->value));
5132 /***************************************************************************
5133 Initialise the global parameter structure.
5134 ***************************************************************************/
5136 static void init_globals(bool reinit_globals)
5138 static bool done_init = False;
5142 /* If requested to initialize only once and we've already done it... */
5143 if (!reinit_globals && done_init) {
5144 /* ... then we have nothing more to do */
5149 /* The logfile can be set before this is invoked. Free it if so. */
5150 if (Globals.szLogFile != NULL) {
5151 string_free(&Globals.szLogFile);
5152 Globals.szLogFile = NULL;
5156 free_global_parameters();
5159 /* This memset and the free_global_parameters() above will
5160 * wipe out smb.conf options set with lp_set_cmdline(). The
5161 * apply_lp_set_cmdline() call puts these values back in the
5162 * table once the defaults are set */
5163 memset((void *)&Globals, '\0', sizeof(Globals));
5165 for (i = 0; parm_table[i].label; i++) {
5166 if ((parm_table[i].type == P_STRING ||
5167 parm_table[i].type == P_USTRING) &&
5170 string_set((char **)parm_table[i].ptr, "");
5175 string_set(&sDefault.fstype, FSTYPE_STRING);
5176 string_set(&sDefault.szPrintjobUsername, "%U");
5178 init_printer_values(&sDefault);
5181 DEBUG(3, ("Initialising global parameters\n"));
5183 /* Must manually force to upper case here, as this does not go via the handler */
5184 string_set(&Globals.szNetbiosName, myhostname_upper());
5186 string_set(&Globals.szSMBPasswdFile, get_dyn_SMB_PASSWD_FILE());
5187 string_set(&Globals.szPrivateDir, get_dyn_PRIVATE_DIR());
5189 /* use the new 'hash2' method by default, with a prefix of 1 */
5190 string_set(&Globals.szManglingMethod, "hash2");
5191 Globals.mangle_prefix = 1;
5193 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
5195 /* using UTF8 by default allows us to support all chars */
5196 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
5198 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
5199 /* If the system supports nl_langinfo(), try to grab the value
5200 from the user's locale */
5201 string_set(&Globals.display_charset, "LOCALE");
5203 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
5206 /* Use codepage 850 as a default for the dos character set */
5207 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
5210 * Allow the default PASSWD_CHAT to be overridden in local.h.
5212 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
5214 string_set(&Globals.szWorkgroup, WORKGROUP);
5216 string_set(&Globals.szPasswdProgram, "");
5217 string_set(&Globals.szLockDir, get_dyn_LOCKDIR());
5218 string_set(&Globals.szStateDir, get_dyn_STATEDIR());
5219 string_set(&Globals.szCacheDir, get_dyn_CACHEDIR());
5220 string_set(&Globals.szPidDir, get_dyn_PIDDIR());
5221 string_set(&Globals.szSocketAddress, "0.0.0.0");
5223 * By default support explicit binding to broadcast
5226 Globals.bNmbdBindExplicitBroadcast = true;
5228 if (asprintf(&s, "Samba %s", samba_version_string()) < 0) {
5229 smb_panic("init_globals: ENOMEM");
5231 string_set(&Globals.szServerString, s);
5233 if (asprintf(&s, "%d.%d", DEFAULT_MAJOR_VERSION,
5234 DEFAULT_MINOR_VERSION) < 0) {
5235 smb_panic("init_globals: ENOMEM");
5237 string_set(&Globals.szAnnounceVersion, s);
5240 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
5243 string_set(&Globals.szSocketOptions, DEFAULT_SOCKET_OPTIONS);
5245 string_set(&Globals.szLogonDrive, "");
5246 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
5247 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
5248 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
5250 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
5251 string_set(&Globals.szPasswordServer, "*");
5253 Globals.AlgorithmicRidBase = BASE_RID;
5255 Globals.bLoadPrinters = True;
5256 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
5258 Globals.ConfigBackend = config_backend;
5260 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
5261 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
5262 Globals.max_xmit = 0x4104;
5263 Globals.max_mux = 50; /* This is *needed* for profile support. */
5264 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
5265 Globals.bDisableSpoolss = False;
5266 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
5267 Globals.pwordlevel = 0;
5268 Globals.unamelevel = 0;
5269 Globals.deadtime = 0;
5270 Globals.getwd_cache = true;
5271 Globals.bLargeReadwrite = True;
5272 Globals.max_log_size = 5000;
5273 Globals.max_open_files = max_open_files();
5274 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
5275 Globals.maxprotocol = PROTOCOL_NT1;
5276 Globals.minprotocol = PROTOCOL_CORE;
5277 Globals.security = SEC_USER;
5278 Globals.paranoid_server_security = True;
5279 Globals.bEncryptPasswords = True;
5280 Globals.bUpdateEncrypt = False;
5281 Globals.clientSchannel = Auto;
5282 Globals.serverSchannel = Auto;
5283 Globals.bReadRaw = True;
5284 Globals.bWriteRaw = True;
5285 Globals.bNullPasswords = False;
5286 Globals.bObeyPamRestrictions = False;
5288 Globals.bSyslogOnly = False;
5289 Globals.bTimestampLogs = True;
5290 string_set(&Globals.szLogLevel, "0");
5291 Globals.bDebugPrefixTimestamp = False;
5292 Globals.bDebugHiresTimestamp = true;
5293 Globals.bDebugPid = False;
5294 Globals.bDebugUid = False;
5295 Globals.bDebugClass = False;
5296 Globals.bEnableCoreFiles = True;
5297 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
5298 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
5299 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
5300 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
5301 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
5302 Globals.lm_interval = 60;
5303 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
5304 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
5305 Globals.bNISHomeMap = False;
5306 #ifdef WITH_NISPLUS_HOME
5307 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
5309 string_set(&Globals.szNISHomeMapName, "auto.home");
5312 Globals.bTimeServer = False;
5313 Globals.bBindInterfacesOnly = False;
5314 Globals.bUnixPasswdSync = False;
5315 Globals.bPamPasswordChange = False;
5316 Globals.bPasswdChatDebug = False;
5317 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
5318 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
5319 Globals.bNTStatusSupport = True; /* Use NT status by default. */
5320 Globals.bStatCache = True; /* use stat cache by default */
5321 Globals.iMaxStatCacheSize = 256; /* 256k by default */
5322 Globals.restrict_anonymous = 0;
5323 Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
5324 Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
5325 Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
5326 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
5327 Globals.bClientNTLMv2Auth = True; /* Client should always use use NTLMv2, as we can't tell that the server supports it, but most modern servers do */
5328 /* Note, that we will also use NTLM2 session security (which is different), if it is available */
5330 Globals.map_to_guest = 0; /* By Default, "Never" */
5331 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
5332 Globals.enhanced_browsing = true;
5333 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
5334 #ifdef MMAP_BLACKLIST
5335 Globals.bUseMmap = False;
5337 Globals.bUseMmap = True;
5339 Globals.bUnixExtensions = True;
5340 Globals.bResetOnZeroVC = False;
5341 Globals.bLogWriteableFilesOnExit = False;
5342 Globals.bCreateKrb5Conf = true;
5343 Globals.winbindMaxDomainConnections = 1;
5345 /* hostname lookups can be very expensive and are broken on
5346 a large number of sites (tridge) */
5347 Globals.bHostnameLookups = False;
5349 string_set(&Globals.szPassdbBackend, "tdbsam");
5350 string_set(&Globals.szLdapSuffix, "");
5351 string_set(&Globals.szLdapMachineSuffix, "");
5352 string_set(&Globals.szLdapUserSuffix, "");
5353 string_set(&Globals.szLdapGroupSuffix, "");
5354 string_set(&Globals.szLdapIdmapSuffix, "");
5356 string_set(&Globals.szLdapAdminDn, "");
5357 Globals.ldap_ssl = LDAP_SSL_START_TLS;
5358 Globals.ldap_ssl_ads = False;
5359 Globals.ldap_deref = -1;
5360 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
5361 Globals.ldap_delete_dn = False;
5362 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
5363 Globals.ldap_follow_referral = Auto;
5364 Globals.ldap_timeout = LDAP_DEFAULT_TIMEOUT;
5365 Globals.ldap_connection_timeout = LDAP_CONNECTION_DEFAULT_TIMEOUT;
5366 Globals.ldap_page_size = LDAP_PAGE_SIZE;
5368 Globals.ldap_debug_level = 0;
5369 Globals.ldap_debug_threshold = 10;
5371 /* This is what we tell the afs client. in reality we set the token
5372 * to never expire, though, when this runs out the afs client will
5373 * forget the token. Set to 0 to get NEVERDATE.*/
5374 Globals.iAfsTokenLifetime = 604800;
5375 Globals.cups_connection_timeout = CUPS_DEFAULT_CONNECTION_TIMEOUT;
5377 /* these parameters are set to defaults that are more appropriate
5378 for the increasing samba install base:
5380 as a member of the workgroup, that will possibly become a
5381 _local_ master browser (lm = True). this is opposed to a forced
5382 local master browser startup (pm = True).
5384 doesn't provide WINS server service by default (wsupp = False),
5385 and doesn't provide domain master browser services by default, either.
5389 Globals.bMsAddPrinterWizard = True;
5390 Globals.os_level = 20;
5391 Globals.bLocalMaster = True;
5392 Globals.iDomainMaster = Auto; /* depending on bDomainLogons */
5393 Globals.bDomainLogons = False;
5394 Globals.bBrowseList = True;
5395 Globals.bWINSsupport = False;
5396 Globals.bWINSproxy = False;
5398 TALLOC_FREE(Globals.szInitLogonDelayedHosts);
5399 Globals.InitLogonDelay = 100; /* 100 ms default delay */
5401 Globals.bDNSproxy = True;
5403 /* this just means to use them if they exist */
5404 Globals.bKernelOplocks = True;
5406 Globals.bAllowTrustedDomains = True;
5407 string_set(&Globals.szIdmapBackend, "tdb");
5408 Globals.bIdmapReadOnly = false;
5410 string_set(&Globals.szTemplateShell, "/bin/false");
5411 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
5412 string_set(&Globals.szWinbindSeparator, "\\");
5414 string_set(&Globals.szCupsServer, "");
5415 string_set(&Globals.szIPrintServer, "");
5417 string_set(&Globals.ctdbdSocket, "");
5418 Globals.szClusterAddresses = NULL;
5419 Globals.clustering = False;
5420 Globals.ctdb_timeout = 0;
5421 Globals.ctdb_locktime_warn_threshold = 0;
5423 Globals.winbind_cache_time = 300; /* 5 minutes */
5424 Globals.winbind_reconnect_delay = 30; /* 30 seconds */
5425 Globals.winbind_max_clients = 200;
5426 Globals.bWinbindEnumUsers = False;
5427 Globals.bWinbindEnumGroups = False;
5428 Globals.bWinbindUseDefaultDomain = False;
5429 Globals.bWinbindTrustedDomainsOnly = False;
5430 Globals.bWinbindNestedGroups = True;
5431 Globals.winbind_expand_groups = 1;
5432 Globals.szWinbindNssInfo = str_list_make_v3(NULL, "template", NULL);
5433 Globals.bWinbindRefreshTickets = False;
5434 Globals.bWinbindOfflineLogon = False;
5436 Globals.iIdmapCacheTime = 86400 * 7; /* a week by default */
5437 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
5439 Globals.bPassdbExpandExplicit = False;
5441 Globals.name_cache_timeout = 660; /* In seconds */
5443 Globals.bUseSpnego = True;
5444 Globals.bClientUseSpnego = True;
5446 Globals.client_signing = Auto;
5447 Globals.server_signing = False;
5449 Globals.bDeferSharingViolations = True;
5450 string_set(&Globals.smb_ports, SMB_PORTS);
5452 Globals.bEnablePrivileges = True;
5453 Globals.bHostMSDfs = True;
5454 Globals.bASUSupport = False;
5456 /* User defined shares. */
5457 if (asprintf(&s, "%s/usershares", get_dyn_STATEDIR()) < 0) {
5458 smb_panic("init_globals: ENOMEM");
5460 string_set(&Globals.szUsersharePath, s);
5462 string_set(&Globals.szUsershareTemplateShare, "");
5463 Globals.iUsershareMaxShares = 0;
5464 /* By default disallow sharing of directories not owned by the sharer. */
5465 Globals.bUsershareOwnerOnly = True;
5466 /* By default disallow guest access to usershares. */
5467 Globals.bUsershareAllowGuests = False;
5469 Globals.iKeepalive = DEFAULT_KEEPALIVE;
5471 /* By default no shares out of the registry */
5472 Globals.bRegistryShares = False;
5474 Globals.iminreceivefile = 0;
5476 Globals.bMapUntrustedToDomain = false;
5477 Globals.bMulticastDnsRegister = true;
5479 Globals.ismb2_max_read = DEFAULT_SMB2_MAX_READ;
5480 Globals.ismb2_max_write = DEFAULT_SMB2_MAX_WRITE;
5481 Globals.ismb2_max_trans = DEFAULT_SMB2_MAX_TRANSACT;
5482 Globals.ismb2_max_credits = DEFAULT_SMB2_MAX_CREDITS;
5484 string_set(&Globals.ncalrpc_dir, get_dyn_NCALRPCDIR());
5486 /* Now put back the settings that were set with lp_set_cmdline() */
5487 apply_lp_set_cmdline();
5490 /*******************************************************************
5491 Convenience routine to grab string parameters into temporary memory
5492 and run standard_sub_basic on them. The buffers can be written to by
5493 callers without affecting the source string.
5494 ********************************************************************/
5496 static char *lp_string(const char *s)
5499 TALLOC_CTX *ctx = talloc_tos();
5501 /* The follow debug is useful for tracking down memory problems
5502 especially if you have an inner loop that is calling a lp_*()
5503 function that returns a string. Perhaps this debug should be
5504 present all the time? */
5507 DEBUG(10, ("lp_string(%s)\n", s));
5513 ret = talloc_sub_basic(ctx,
5514 get_current_username(),
5515 current_user_info.domain,
5517 if (trim_char(ret, '\"', '\"')) {
5518 if (strchr(ret,'\"') != NULL) {
5520 ret = talloc_sub_basic(ctx,
5521 get_current_username(),
5522 current_user_info.domain,
5530 In this section all the functions that are used to access the
5531 parameters from the rest of the program are defined
5534 #define FN_GLOBAL_STRING(fn_name,ptr) \
5535 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
5536 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
5537 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
5538 #define FN_GLOBAL_LIST(fn_name,ptr) \
5539 const char **fn_name(void) {return(*(const char ***)(ptr));}
5540 #define FN_GLOBAL_BOOL(fn_name,ptr) \
5541 bool fn_name(void) {return(*(bool *)(ptr));}
5542 #define FN_GLOBAL_CHAR(fn_name,ptr) \
5543 char fn_name(void) {return(*(char *)(ptr));}
5544 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
5545 int fn_name(void) {return(*(int *)(ptr));}
5547 #define FN_LOCAL_STRING(fn_name,val) \
5548 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
5549 #define FN_LOCAL_CONST_STRING(fn_name,val) \
5550 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
5551 #define FN_LOCAL_LIST(fn_name,val) \
5552 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
5553 #define FN_LOCAL_BOOL(fn_name,val) \
5554 bool fn_name(int i) {return(bool)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
5555 #define FN_LOCAL_INTEGER(fn_name,val) \
5556 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
5558 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
5559 bool fn_name(const struct share_params *p) {return(bool)(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
5560 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
5561 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
5562 #define FN_LOCAL_CHAR(fn_name,val) \
5563 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
5565 FN_GLOBAL_CONST_STRING(lp_smb_ports, &Globals.smb_ports)
5566 FN_GLOBAL_CONST_STRING(lp_dos_charset, &Globals.dos_charset)
5567 FN_GLOBAL_CONST_STRING(lp_unix_charset, &Globals.unix_charset)
5568 FN_GLOBAL_CONST_STRING(lp_display_charset, &Globals.display_charset)
5569 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
5570 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
5571 FN_GLOBAL_CONST_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
5572 FN_GLOBAL_CONST_STRING(lp_private_dir, &Globals.szPrivateDir)
5573 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
5574 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
5575 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
5576 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
5577 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
5578 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
5579 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
5580 FN_GLOBAL_CONST_STRING(lp_lockdir, &Globals.szLockDir)
5581 /* If lp_statedir() and lp_cachedir() are explicitely set during the
5582 * build process or in smb.conf, we use that value. Otherwise they
5583 * default to the value of lp_lockdir(). */
5584 const char *lp_statedir(void) {
5585 if ((strcmp(get_dyn_STATEDIR(), get_dyn_LOCKDIR()) != 0) ||
5586 (strcmp(get_dyn_STATEDIR(), Globals.szStateDir) != 0))
5587 return(*(char **)(&Globals.szStateDir) ?
5588 *(char **)(&Globals.szStateDir) : "");
5590 return(*(char **)(&Globals.szLockDir) ?
5591 *(char **)(&Globals.szLockDir) : "");
5593 const char *lp_cachedir(void) {
5594 if ((strcmp(get_dyn_CACHEDIR(), get_dyn_LOCKDIR()) != 0) ||
5595 (strcmp(get_dyn_CACHEDIR(), Globals.szCacheDir) != 0))
5596 return(*(char **)(&Globals.szCacheDir) ?
5597 *(char **)(&Globals.szCacheDir) : "");
5599 return(*(char **)(&Globals.szLockDir) ?
5600 *(char **)(&Globals.szLockDir) : "");
5602 FN_GLOBAL_CONST_STRING(lp_piddir, &Globals.szPidDir)
5603 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
5604 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
5605 FN_GLOBAL_CONST_STRING(lp_utmpdir, &Globals.szUtmpDir)
5606 FN_GLOBAL_CONST_STRING(lp_wtmpdir, &Globals.szWtmpDir)
5607 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
5608 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
5609 FN_GLOBAL_STRING(lp_perfcount_module, &Globals.szSMBPerfcountModule)
5610 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
5611 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
5612 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
5613 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
5614 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
5615 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
5616 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
5617 FN_GLOBAL_CONST_STRING(lp_passwordserver, &Globals.szPasswordServer)
5618 FN_GLOBAL_CONST_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
5619 FN_GLOBAL_CONST_STRING(lp_workgroup, &Globals.szWorkgroup)
5620 FN_GLOBAL_CONST_STRING(lp_netbios_name, &Globals.szNetbiosName)
5621 FN_GLOBAL_CONST_STRING(lp_netbios_scope, &Globals.szNetbiosScope)
5622 FN_GLOBAL_CONST_STRING(lp_realm, &Globals.szRealmUpper)
5623 FN_GLOBAL_CONST_STRING(lp_dnsdomain, &Globals.szDnsDomain)
5624 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
5625 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
5626 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
5627 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
5628 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
5629 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
5630 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
5631 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
5632 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
5633 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
5634 FN_GLOBAL_BOOL(lp_nmbd_bind_explicit_broadcast, &Globals.bNmbdBindExplicitBroadcast)
5635 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
5636 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
5637 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
5638 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
5639 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
5640 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
5641 * lp_passdb_backend() should be replace by the this macro again after
5644 const char *lp_passdb_backend(void)
5646 char *delim, *quote;
5648 delim = strchr( Globals.szPassdbBackend, ' ');
5649 /* no space at all */
5650 if (delim == NULL) {
5654 quote = strchr(Globals.szPassdbBackend, '"');
5655 /* no quote char or non in the first part */
5656 if (quote == NULL || quote > delim) {
5661 quote = strchr(quote+1, '"');
5662 if (quote == NULL) {
5663 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
5665 } else if (*(quote+1) == '\0') {
5666 /* space, fitting quote char, and one backend only */
5669 /* terminate string after the fitting quote char */
5674 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
5675 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
5676 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
5677 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
5680 return Globals.szPassdbBackend;
5682 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
5683 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
5684 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
5685 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
5686 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
5688 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
5689 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
5690 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
5691 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
5692 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
5693 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
5695 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
5697 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
5698 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
5699 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
5700 FN_GLOBAL_INTEGER(lp_username_map_cache_time, &Globals.iUsernameMapCacheTime)
5702 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
5704 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
5705 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
5706 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
5707 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
5708 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
5709 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
5710 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
5711 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
5712 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
5713 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
5714 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
5715 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
5716 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
5717 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
5718 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
5719 FN_GLOBAL_BOOL(lp_create_krb5_conf, &Globals.bCreateKrb5Conf)
5720 static FN_GLOBAL_INTEGER(lp_winbind_max_domain_connections_int,
5721 &Globals.winbindMaxDomainConnections)
5723 int lp_winbind_max_domain_connections(void)
5725 if (lp_winbind_offline_logon() &&
5726 lp_winbind_max_domain_connections_int() > 1) {
5727 DEBUG(1, ("offline logons active, restricting max domain "
5728 "connections to 1\n"));
5731 return MAX(1, lp_winbind_max_domain_connections_int());
5734 FN_GLOBAL_CONST_STRING(lp_idmap_backend, &Globals.szIdmapBackend)
5735 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
5736 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
5737 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
5738 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
5740 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
5741 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
5742 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
5743 FN_GLOBAL_BOOL(lp_ldap_ssl_ads, &Globals.ldap_ssl_ads)
5744 FN_GLOBAL_INTEGER(lp_ldap_deref, &Globals.ldap_deref)
5745 FN_GLOBAL_INTEGER(lp_ldap_follow_referral, &Globals.ldap_follow_referral)
5746 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
5747 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
5748 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
5749 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
5750 FN_GLOBAL_INTEGER(lp_ldap_connection_timeout, &Globals.ldap_connection_timeout)
5751 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
5752 FN_GLOBAL_INTEGER(lp_ldap_debug_level, &Globals.ldap_debug_level)
5753 FN_GLOBAL_INTEGER(lp_ldap_debug_threshold, &Globals.ldap_debug_threshold)
5754 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
5755 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
5756 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
5757 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
5758 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
5759 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
5761 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
5763 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
5764 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
5765 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
5766 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
5767 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
5768 FN_GLOBAL_BOOL(lp_log_writeable_files_on_exit,
5769 &Globals.bLogWriteableFilesOnExit)
5770 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
5771 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
5772 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
5773 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
5774 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
5775 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
5776 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
5777 FN_GLOBAL_LIST(lp_init_logon_delayed_hosts, &Globals.szInitLogonDelayedHosts)
5778 FN_GLOBAL_INTEGER(lp_init_logon_delay, &Globals.InitLogonDelay)
5779 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
5780 FN_GLOBAL_BOOL(_lp_readraw, &Globals.bReadRaw)
5781 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
5782 FN_GLOBAL_BOOL(_lp_writeraw, &Globals.bWriteRaw)
5783 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
5784 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
5785 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
5786 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
5787 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
5788 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
5789 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
5790 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
5791 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
5792 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
5793 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
5794 FN_GLOBAL_BOOL(lp_debug_class, &Globals.bDebugClass)
5795 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
5796 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
5797 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
5798 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
5799 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
5800 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
5801 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
5802 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
5803 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
5804 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
5805 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
5806 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
5807 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
5808 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
5809 FN_GLOBAL_BOOL(lp_map_untrusted_to_domain, &Globals.bMapUntrustedToDomain)
5810 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
5811 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
5812 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
5813 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
5814 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
5815 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
5816 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
5817 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
5818 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
5819 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
5820 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
5821 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
5822 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
5823 FN_GLOBAL_BOOL(lp_client_use_spnego_principal, &Globals.client_use_spnego_principal)
5824 FN_GLOBAL_BOOL(lp_send_spnego_principal, &Globals.send_spnego_principal)
5825 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
5826 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
5827 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
5828 FN_GLOBAL_CONST_STRING(lp_dedicated_keytab_file, &Globals.szDedicatedKeytabFile)
5829 FN_GLOBAL_INTEGER(lp_kerberos_method, &Globals.iKerberosMethod)
5830 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
5831 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
5832 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
5833 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
5834 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
5835 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
5836 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
5837 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
5838 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
5839 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
5840 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
5841 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
5842 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
5843 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
5844 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
5845 FN_GLOBAL_BOOL(lp_getwd_cache, &Globals.getwd_cache)
5846 static FN_GLOBAL_INTEGER(_lp_maxprotocol, &Globals.maxprotocol)
5847 int lp_maxprotocol(void)
5849 int ret = _lp_maxprotocol();
5850 if ((ret == PROTOCOL_SMB2) && (lp_security() == SEC_SHARE)) {
5851 DEBUG(2,("WARNING!!: \"security = share\" is incompatible "
5852 "with the SMB2 protocol. Resetting to SMB1.\n" ));
5853 lp_do_parameter(-1, "max protocol", "NT1");
5854 return PROTOCOL_NT1;
5858 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
5859 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
5860 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
5861 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
5862 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
5863 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
5864 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
5865 FN_GLOBAL_BOOL(_lp_disable_spoolss, &Globals.bDisableSpoolss)
5866 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
5867 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
5868 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
5869 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
5870 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
5871 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
5872 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
5873 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
5874 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
5875 FN_GLOBAL_CONST_STRING(lp_socket_options, &Globals.szSocketOptions)
5876 FN_GLOBAL_INTEGER(lp_config_backend, &Globals.ConfigBackend)
5877 FN_GLOBAL_INTEGER(lp_smb2_max_read, &Globals.ismb2_max_read)
5878 FN_GLOBAL_INTEGER(lp_smb2_max_write, &Globals.ismb2_max_write)
5879 FN_GLOBAL_INTEGER(lp_smb2_max_trans, &Globals.ismb2_max_trans)
5880 int lp_smb2_max_credits(void)
5882 if (Globals.ismb2_max_credits == 0) {
5883 Globals.ismb2_max_credits = DEFAULT_SMB2_MAX_CREDITS;
5885 return Globals.ismb2_max_credits;
5887 FN_LOCAL_STRING(lp_preexec, szPreExec)
5888 FN_LOCAL_STRING(lp_postexec, szPostExec)
5889 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
5890 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
5891 FN_LOCAL_STRING(lp_servicename, szService)
5892 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
5893 FN_LOCAL_STRING(lp_pathname, szPath)
5894 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
5895 FN_LOCAL_STRING(lp_username, szUsername)
5896 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
5897 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
5898 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
5899 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
5900 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
5901 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
5902 int lp_cups_encrypt(void)
5905 #ifdef HAVE_HTTPCONNECTENCRYPT
5906 switch (Globals.CupsEncrypt) {
5908 result = HTTP_ENCRYPT_REQUIRED;
5911 result = HTTP_ENCRYPT_ALWAYS;
5914 result = HTTP_ENCRYPT_NEVER;
5920 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
5921 FN_GLOBAL_INTEGER(lp_cups_connection_timeout, &Globals.cups_connection_timeout)
5922 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
5923 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
5924 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering)
5925 FN_GLOBAL_INTEGER(lp_ctdb_timeout, &Globals.ctdb_timeout)
5926 FN_GLOBAL_INTEGER(lp_ctdb_locktime_warn_threshold, &Globals.ctdb_locktime_warn_threshold)
5927 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
5928 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
5929 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
5930 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
5931 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
5932 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
5933 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
5934 static FN_LOCAL_STRING(_lp_printername, szPrintername)
5935 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
5936 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
5937 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
5938 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
5939 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
5940 FN_LOCAL_STRING(lp_comment, comment)
5941 FN_LOCAL_STRING(lp_force_user, force_user)
5942 FN_LOCAL_STRING(lp_force_group, force_group)
5943 FN_LOCAL_LIST(lp_readlist, readlist)
5944 FN_LOCAL_LIST(lp_writelist, writelist)
5945 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
5946 FN_LOCAL_STRING(lp_fstype, fstype)
5947 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
5948 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
5949 static FN_LOCAL_STRING(lp_volume, volume)
5950 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
5951 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
5952 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
5953 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
5954 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
5955 FN_LOCAL_STRING(lp_dfree_command, szDfree)
5956 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
5957 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
5958 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
5959 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
5960 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
5961 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
5962 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
5963 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
5964 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
5965 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
5966 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
5967 FN_LOCAL_BOOL(lp_access_based_share_enum, bAccessBasedShareEnum)
5968 FN_LOCAL_BOOL(lp_readonly, bRead_only)
5969 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
5970 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
5971 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
5972 FN_LOCAL_BOOL(lp_administrative_share, bAdministrative_share)
5973 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
5974 FN_LOCAL_BOOL(lp_print_notify_backchannel, bPrintNotifyBackchannel)
5975 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
5976 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
5977 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
5978 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
5979 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
5980 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
5981 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
5982 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
5983 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
5984 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
5985 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
5986 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
5987 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
5988 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
5989 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
5990 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
5991 FN_LOCAL_BOOL(lp_map_system, bMap_system)
5992 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
5993 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
5994 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
5995 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
5996 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
5997 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
5998 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
5999 FN_GLOBAL_BOOL(lp_async_smb_echo_handler, &Globals.bAsyncSMBEchoHandler)
6000 FN_GLOBAL_BOOL(lp_multicast_dns_register, &Globals.bMulticastDnsRegister)
6001 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
6002 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
6003 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
6004 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
6005 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
6006 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
6007 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
6008 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
6009 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
6010 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
6011 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
6012 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
6013 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
6014 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
6015 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
6016 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
6017 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
6018 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
6019 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
6020 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
6021 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
6022 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
6023 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
6024 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
6025 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
6026 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
6027 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
6028 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
6029 FN_LOCAL_INTEGER(lp_printing, iPrinting)
6030 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
6031 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
6032 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
6033 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
6034 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
6035 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
6036 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
6037 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
6038 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
6039 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
6040 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
6041 FN_LOCAL_INTEGER(lp_smb_encrypt, ismb_encrypt)
6042 FN_LOCAL_CHAR(lp_magicchar, magic_char)
6043 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
6044 FN_GLOBAL_INTEGER(lp_winbind_reconnect_delay, &Globals.winbind_reconnect_delay)
6045 FN_GLOBAL_INTEGER(lp_winbind_max_clients, &Globals.winbind_max_clients)
6046 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
6047 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
6048 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
6049 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
6050 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
6051 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
6053 FN_GLOBAL_CONST_STRING(lp_ncalrpc_dir, &Globals.ncalrpc_dir)
6055 /* local prototypes */
6057 static int map_parameter_canonical(const char *pszParmName, bool *inverse);
6058 static const char *get_boolean(bool bool_value);
6059 static int getservicebyname(const char *pszServiceName,
6060 struct service *pserviceDest);
6061 static void copy_service(struct service *pserviceDest,
6062 struct service *pserviceSource,
6063 struct bitmap *pcopymapDest);
6064 static bool do_parameter(const char *pszParmName, const char *pszParmValue,
6066 static bool do_section(const char *pszSectionName, void *userdata);
6067 static void init_copymap(struct service *pservice);
6068 static bool hash_a_service(const char *name, int number);
6069 static void free_service_byindex(int iService);
6070 static void free_param_opts(struct param_opt_struct **popts);
6071 static void show_parameter(int parmIndex);
6072 static bool is_synonym_of(int parm1, int parm2, bool *inverse);
6075 * This is a helper function for parametrical options support. It returns a
6076 * pointer to parametrical option value if it exists or NULL otherwise. Actual
6077 * parametrical functions are quite simple
6079 static struct param_opt_struct *get_parametrics(int snum, const char *type,
6082 bool global_section = False;
6084 struct param_opt_struct *data;
6086 if (snum >= iNumServices) return NULL;
6089 data = Globals.param_opt;
6090 global_section = True;
6092 data = ServicePtrs[snum]->param_opt;
6095 if (asprintf(¶m_key, "%s:%s", type, option) == -1) {
6096 DEBUG(0,("asprintf failed!\n"));
6101 if (strwicmp(data->key, param_key) == 0) {
6102 string_free(¶m_key);
6108 if (!global_section) {
6109 /* Try to fetch the same option but from globals */
6110 /* but only if we are not already working with Globals */
6111 data = Globals.param_opt;
6113 if (strwicmp(data->key, param_key) == 0) {
6114 string_free(¶m_key);
6121 string_free(¶m_key);
6127 #define MISSING_PARAMETER(name) \
6128 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
6130 /*******************************************************************
6131 convenience routine to return int parameters.
6132 ********************************************************************/
6133 static int lp_int(const char *s)
6137 MISSING_PARAMETER(lp_int);
6141 return (int)strtol(s, NULL, 0);
6144 /*******************************************************************
6145 convenience routine to return unsigned long parameters.
6146 ********************************************************************/
6147 static unsigned long lp_ulong(const char *s)
6151 MISSING_PARAMETER(lp_ulong);
6155 return strtoul(s, NULL, 0);
6158 /*******************************************************************
6159 convenience routine to return boolean parameters.
6160 ********************************************************************/
6161 static bool lp_bool(const char *s)
6166 MISSING_PARAMETER(lp_bool);
6170 if (!set_boolean(s, &ret)) {
6171 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
6178 /*******************************************************************
6179 convenience routine to return enum parameters.
6180 ********************************************************************/
6181 static int lp_enum(const char *s,const struct enum_list *_enum)
6185 if (!s || !*s || !_enum) {
6186 MISSING_PARAMETER(lp_enum);
6190 for (i=0; _enum[i].name; i++) {
6191 if (strequal(_enum[i].name,s))
6192 return _enum[i].value;
6195 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
6199 #undef MISSING_PARAMETER
6201 /* DO NOT USE lp_parm_string ANYMORE!!!!
6202 * use lp_parm_const_string or lp_parm_talloc_string
6204 * lp_parm_string is only used to let old modules find this symbol
6206 #undef lp_parm_string
6207 char *lp_parm_string(const char *servicename, const char *type, const char *option);
6208 char *lp_parm_string(const char *servicename, const char *type, const char *option)
6210 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
6213 /* Return parametric option from a given service. Type is a part of option before ':' */
6214 /* Parametric option has following syntax: 'Type: option = value' */
6215 /* the returned value is talloced on the talloc_tos() */
6216 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
6218 struct param_opt_struct *data = get_parametrics(snum, type, option);
6220 if (data == NULL||data->value==NULL) {
6222 return lp_string(def);
6228 return lp_string(data->value);
6231 /* Return parametric option from a given service. Type is a part of option before ':' */
6232 /* Parametric option has following syntax: 'Type: option = value' */
6233 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
6235 struct param_opt_struct *data = get_parametrics(snum, type, option);
6237 if (data == NULL||data->value==NULL)
6243 /* Return parametric option from a given service. Type is a part of option before ':' */
6244 /* Parametric option has following syntax: 'Type: option = value' */
6246 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
6248 struct param_opt_struct *data = get_parametrics(snum, type, option);
6250 if (data == NULL||data->value==NULL)
6251 return (const char **)def;
6253 if (data->list==NULL) {
6254 data->list = str_list_make_v3(NULL, data->value, NULL);
6257 return (const char **)data->list;
6260 /* Return parametric option from a given service. Type is a part of option before ':' */
6261 /* Parametric option has following syntax: 'Type: option = value' */
6263 int lp_parm_int(int snum, const char *type, const char *option, int def)
6265 struct param_opt_struct *data = get_parametrics(snum, type, option);
6267 if (data && data->value && *data->value)
6268 return lp_int(data->value);
6273 /* Return parametric option from a given service. Type is a part of option before ':' */
6274 /* Parametric option has following syntax: 'Type: option = value' */
6276 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
6278 struct param_opt_struct *data = get_parametrics(snum, type, option);
6280 if (data && data->value && *data->value)
6281 return lp_ulong(data->value);
6286 /* Return parametric option from a given service. Type is a part of option before ':' */
6287 /* Parametric option has following syntax: 'Type: option = value' */
6289 bool lp_parm_bool(int snum, const char *type, const char *option, bool def)
6291 struct param_opt_struct *data = get_parametrics(snum, type, option);
6293 if (data && data->value && *data->value)
6294 return lp_bool(data->value);
6299 /* Return parametric option from a given service. Type is a part of option before ':' */
6300 /* Parametric option has following syntax: 'Type: option = value' */
6302 int lp_parm_enum(int snum, const char *type, const char *option,
6303 const struct enum_list *_enum, int def)
6305 struct param_opt_struct *data = get_parametrics(snum, type, option);
6307 if (data && data->value && *data->value && _enum)
6308 return lp_enum(data->value, _enum);
6314 /***************************************************************************
6315 Initialise a service to the defaults.
6316 ***************************************************************************/
6318 static void init_service(struct service *pservice)
6320 memset((char *)pservice, '\0', sizeof(struct service));
6321 copy_service(pservice, &sDefault, NULL);
6326 * free a param_opts structure.
6327 * param_opts handling should be moved to talloc;
6328 * then this whole functions reduces to a TALLOC_FREE().
6331 static void free_param_opts(struct param_opt_struct **popts)
6333 struct param_opt_struct *opt, *next_opt;
6335 if (popts == NULL) {
6339 if (*popts != NULL) {
6340 DEBUG(5, ("Freeing parametrics:\n"));
6343 while (opt != NULL) {
6344 string_free(&opt->key);
6345 string_free(&opt->value);
6346 TALLOC_FREE(opt->list);
6347 next_opt = opt->next;
6354 /***************************************************************************
6355 Free the dynamically allocated parts of a service struct.
6356 ***************************************************************************/
6358 static void free_service(struct service *pservice)
6363 if (pservice->szService)
6364 DEBUG(5, ("free_service: Freeing service %s\n",
6365 pservice->szService));
6367 free_parameters(pservice);
6369 string_free(&pservice->szService);
6370 TALLOC_FREE(pservice->copymap);
6372 free_param_opts(&pservice->param_opt);
6374 ZERO_STRUCTP(pservice);
6378 /***************************************************************************
6379 remove a service indexed in the ServicePtrs array from the ServiceHash
6380 and free the dynamically allocated parts
6381 ***************************************************************************/
6383 static void free_service_byindex(int idx)
6385 if ( !LP_SNUM_OK(idx) )
6388 ServicePtrs[idx]->valid = False;
6389 invalid_services[num_invalid_services++] = idx;
6391 /* we have to cleanup the hash record */
6393 if (ServicePtrs[idx]->szService) {
6394 char *canon_name = canonicalize_servicename(
6396 ServicePtrs[idx]->szService );
6398 dbwrap_delete_bystring(ServiceHash, canon_name );
6399 TALLOC_FREE(canon_name);
6402 free_service(ServicePtrs[idx]);
6405 /***************************************************************************
6406 Add a new service to the services array initialising it with the given
6408 ***************************************************************************/
6410 static int add_a_service(const struct service *pservice, const char *name)
6413 struct service tservice;
6414 int num_to_alloc = iNumServices + 1;
6416 tservice = *pservice;
6418 /* it might already exist */
6420 i = getservicebyname(name, NULL);
6426 /* find an invalid one */
6428 if (num_invalid_services > 0) {
6429 i = invalid_services[--num_invalid_services];
6432 /* if not, then create one */
6433 if (i == iNumServices) {
6434 struct service **tsp;
6437 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, struct service *, num_to_alloc);
6439 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
6443 ServicePtrs[iNumServices] = SMB_MALLOC_P(struct service);
6444 if (!ServicePtrs[iNumServices]) {
6445 DEBUG(0,("add_a_service: out of memory!\n"));
6450 /* enlarge invalid_services here for now... */
6451 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
6453 if (tinvalid == NULL) {
6454 DEBUG(0,("add_a_service: failed to enlarge "
6455 "invalid_services!\n"));
6458 invalid_services = tinvalid;
6460 free_service_byindex(i);
6463 ServicePtrs[i]->valid = True;
6465 init_service(ServicePtrs[i]);
6466 copy_service(ServicePtrs[i], &tservice, NULL);
6468 string_set(&ServicePtrs[i]->szService, name);
6470 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
6471 i, ServicePtrs[i]->szService));
6473 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
6480 /***************************************************************************
6481 Convert a string to uppercase and remove whitespaces.
6482 ***************************************************************************/
6484 char *canonicalize_servicename(TALLOC_CTX *ctx, const char *src)
6489 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
6493 result = talloc_strdup(ctx, src);
6494 SMB_ASSERT(result != NULL);
6500 /***************************************************************************
6501 Add a name/index pair for the services array to the hash table.
6502 ***************************************************************************/
6504 static bool hash_a_service(const char *name, int idx)
6508 if ( !ServiceHash ) {
6509 DEBUG(10,("hash_a_service: creating servicehash\n"));
6510 ServiceHash = db_open_rbt(NULL);
6511 if ( !ServiceHash ) {
6512 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
6517 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
6520 canon_name = canonicalize_servicename(talloc_tos(), name );
6522 dbwrap_store_bystring(ServiceHash, canon_name,
6523 make_tdb_data((uint8 *)&idx, sizeof(idx)),
6526 TALLOC_FREE(canon_name);
6531 /***************************************************************************
6532 Add a new home service, with the specified home directory, defaults coming
6534 ***************************************************************************/
6536 bool lp_add_home(const char *pszHomename, int iDefaultService,
6537 const char *user, const char *pszHomedir)
6541 if (pszHomename == NULL || user == NULL || pszHomedir == NULL ||
6542 pszHomedir[0] == '\0') {
6546 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
6551 if (!(*(ServicePtrs[iDefaultService]->szPath))
6552 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
6553 string_set(&ServicePtrs[i]->szPath, pszHomedir);
6556 if (!(*(ServicePtrs[i]->comment))) {
6557 char *comment = NULL;
6558 if (asprintf(&comment, "Home directory of %s", user) < 0) {
6561 string_set(&ServicePtrs[i]->comment, comment);
6565 /* set the browseable flag from the global default */
6567 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
6568 ServicePtrs[i]->bAccessBasedShareEnum = sDefault.bAccessBasedShareEnum;
6570 ServicePtrs[i]->autoloaded = True;
6572 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
6573 user, ServicePtrs[i]->szPath ));
6578 /***************************************************************************
6579 Add a new service, based on an old one.
6580 ***************************************************************************/
6582 int lp_add_service(const char *pszService, int iDefaultService)
6584 if (iDefaultService < 0) {
6585 return add_a_service(&sDefault, pszService);
6588 return (add_a_service(ServicePtrs[iDefaultService], pszService));
6591 /***************************************************************************
6592 Add the IPC service.
6593 ***************************************************************************/
6595 static bool lp_add_ipc(const char *ipc_name, bool guest_ok)
6597 char *comment = NULL;
6598 int i = add_a_service(&sDefault, ipc_name);
6603 if (asprintf(&comment, "IPC Service (%s)",
6604 Globals.szServerString) < 0) {
6608 string_set(&ServicePtrs[i]->szPath, tmpdir());
6609 string_set(&ServicePtrs[i]->szUsername, "");
6610 string_set(&ServicePtrs[i]->comment, comment);
6611 string_set(&ServicePtrs[i]->fstype, "IPC");
6612 ServicePtrs[i]->iMaxConnections = 0;
6613 ServicePtrs[i]->bAvailable = True;
6614 ServicePtrs[i]->bRead_only = True;
6615 ServicePtrs[i]->bGuest_only = False;
6616 ServicePtrs[i]->bAdministrative_share = True;
6617 ServicePtrs[i]->bGuest_ok = guest_ok;
6618 ServicePtrs[i]->bPrint_ok = False;
6619 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
6621 DEBUG(3, ("adding IPC service\n"));
6627 /***************************************************************************
6628 Add a new printer service, with defaults coming from service iFrom.
6629 ***************************************************************************/
6631 bool lp_add_printer(const char *pszPrintername, int iDefaultService)
6633 const char *comment = "From Printcap";
6634 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
6639 /* note that we do NOT default the availability flag to True - */
6640 /* we take it from the default service passed. This allows all */
6641 /* dynamic printers to be disabled by disabling the [printers] */
6642 /* entry (if/when the 'available' keyword is implemented!). */
6644 /* the printer name is set to the service name. */
6645 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
6646 string_set(&ServicePtrs[i]->comment, comment);
6648 /* set the browseable flag from the gloabl default */
6649 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
6651 /* Printers cannot be read_only. */
6652 ServicePtrs[i]->bRead_only = False;
6653 /* No share modes on printer services. */
6654 ServicePtrs[i]->bShareModes = False;
6655 /* No oplocks on printer services. */
6656 ServicePtrs[i]->bOpLocks = False;
6657 /* Printer services must be printable. */
6658 ServicePtrs[i]->bPrint_ok = True;
6660 DEBUG(3, ("adding printer service %s\n", pszPrintername));
6666 /***************************************************************************
6667 Check whether the given parameter name is valid.
6668 Parametric options (names containing a colon) are considered valid.
6669 ***************************************************************************/
6671 bool lp_parameter_is_valid(const char *pszParmName)
6673 return ((map_parameter(pszParmName) != -1) ||
6674 (strchr(pszParmName, ':') != NULL));
6677 /***************************************************************************
6678 Check whether the given name is the name of a global parameter.
6679 Returns True for strings belonging to parameters of class
6680 P_GLOBAL, False for all other strings, also for parametric options
6681 and strings not belonging to any option.
6682 ***************************************************************************/
6684 bool lp_parameter_is_global(const char *pszParmName)
6686 int num = map_parameter(pszParmName);
6689 return (parm_table[num].p_class == P_GLOBAL);
6695 /**************************************************************************
6696 Check whether the given name is the canonical name of a parameter.
6697 Returns False if it is not a valid parameter Name.
6698 For parametric options, True is returned.
6699 **************************************************************************/
6701 bool lp_parameter_is_canonical(const char *parm_name)
6703 if (!lp_parameter_is_valid(parm_name)) {
6707 return (map_parameter(parm_name) ==
6708 map_parameter_canonical(parm_name, NULL));
6711 /**************************************************************************
6712 Determine the canonical name for a parameter.
6713 Indicate when it is an inverse (boolean) synonym instead of a
6715 **************************************************************************/
6717 bool lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
6722 if (!lp_parameter_is_valid(parm_name)) {
6727 num = map_parameter_canonical(parm_name, inverse);
6729 /* parametric option */
6730 *canon_parm = parm_name;
6732 *canon_parm = parm_table[num].label;
6739 /**************************************************************************
6740 Determine the canonical name for a parameter.
6741 Turn the value given into the inverse boolean expression when
6742 the synonym is an invers boolean synonym.
6744 Return True if parm_name is a valid parameter name and
6745 in case it is an invers boolean synonym, if the val string could
6746 successfully be converted to the reverse bool.
6747 Return false in all other cases.
6748 **************************************************************************/
6750 bool lp_canonicalize_parameter_with_value(const char *parm_name,
6752 const char **canon_parm,
6753 const char **canon_val)
6758 if (!lp_parameter_is_valid(parm_name)) {
6764 num = map_parameter_canonical(parm_name, &inverse);
6766 /* parametric option */
6767 *canon_parm = parm_name;
6770 *canon_parm = parm_table[num].label;
6772 if (!lp_invert_boolean(val, canon_val)) {
6784 /***************************************************************************
6785 Map a parameter's string representation to something we can use.
6786 Returns False if the parameter string is not recognised, else TRUE.
6787 ***************************************************************************/
6789 static int map_parameter(const char *pszParmName)
6793 if (*pszParmName == '-' && !strequal(pszParmName, "-valid"))
6796 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
6797 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
6800 /* Warn only if it isn't parametric option */
6801 if (strchr(pszParmName, ':') == NULL)
6802 DEBUG(1, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
6803 /* We do return 'fail' for parametric options as well because they are
6804 stored in different storage
6809 /***************************************************************************
6810 Map a parameter's string representation to the index of the canonical
6811 form of the parameter (it might be a synonym).
6812 Returns -1 if the parameter string is not recognised.
6813 ***************************************************************************/
6815 static int map_parameter_canonical(const char *pszParmName, bool *inverse)
6817 int parm_num, canon_num;
6818 bool loc_inverse = False;
6820 parm_num = map_parameter(pszParmName);
6821 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
6822 /* invalid, parametric or no canidate for synonyms ... */
6826 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
6827 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
6828 parm_num = canon_num;
6834 if (inverse != NULL) {
6835 *inverse = loc_inverse;
6840 /***************************************************************************
6841 return true if parameter number parm1 is a synonym of parameter
6842 number parm2 (parm2 being the principal name).
6843 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
6845 ***************************************************************************/
6847 static bool is_synonym_of(int parm1, int parm2, bool *inverse)
6849 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
6850 (parm_table[parm1].flags & FLAG_HIDE) &&
6851 !(parm_table[parm2].flags & FLAG_HIDE))
6853 if (inverse != NULL) {
6854 if ((parm_table[parm1].type == P_BOOLREV) &&
6855 (parm_table[parm2].type == P_BOOL))
6867 /***************************************************************************
6868 Show one parameter's name, type, [values,] and flags.
6869 (helper functions for show_parameter_list)
6870 ***************************************************************************/
6872 static void show_parameter(int parmIndex)
6874 int enumIndex, flagIndex;
6879 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
6880 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING",
6882 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
6883 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
6884 FLAG_HIDE, FLAG_DOS_STRING};
6885 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
6886 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
6887 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
6889 printf("%s=%s", parm_table[parmIndex].label,
6890 type[parm_table[parmIndex].type]);
6891 if (parm_table[parmIndex].type == P_ENUM) {
6894 parm_table[parmIndex].enum_list[enumIndex].name;
6898 enumIndex ? "|" : "",
6899 parm_table[parmIndex].enum_list[enumIndex].name);
6904 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
6905 if (parm_table[parmIndex].flags & flags[flagIndex]) {
6908 flag_names[flagIndex]);
6913 /* output synonyms */
6915 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
6916 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
6917 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
6918 parm_table[parmIndex2].label);
6919 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
6921 printf(" (synonyms: ");
6926 printf("%s%s", parm_table[parmIndex2].label,
6927 inverse ? "[i]" : "");
6937 /***************************************************************************
6938 Show all parameter's name, type, [values,] and flags.
6939 ***************************************************************************/
6941 void show_parameter_list(void)
6943 int classIndex, parmIndex;
6944 const char *section_names[] = { "local", "global", NULL};
6946 for (classIndex=0; section_names[classIndex]; classIndex++) {
6947 printf("[%s]\n", section_names[classIndex]);
6948 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
6949 if (parm_table[parmIndex].p_class == classIndex) {
6950 show_parameter(parmIndex);
6956 /***************************************************************************
6957 Check if a given string correctly represents a boolean value.
6958 ***************************************************************************/
6960 bool lp_string_is_valid_boolean(const char *parm_value)
6962 return set_boolean(parm_value, NULL);
6965 /***************************************************************************
6966 Get the standard string representation of a boolean value ("yes" or "no")
6967 ***************************************************************************/
6969 static const char *get_boolean(bool bool_value)
6971 static const char *yes_str = "yes";
6972 static const char *no_str = "no";
6974 return (bool_value ? yes_str : no_str);
6977 /***************************************************************************
6978 Provide the string of the negated boolean value associated to the boolean
6979 given as a string. Returns False if the passed string does not correctly
6980 represent a boolean.
6981 ***************************************************************************/
6983 bool lp_invert_boolean(const char *str, const char **inverse_str)
6987 if (!set_boolean(str, &val)) {
6991 *inverse_str = get_boolean(!val);
6995 /***************************************************************************
6996 Provide the canonical string representation of a boolean value given
6997 as a string. Return True on success, False if the string given does
6998 not correctly represent a boolean.
6999 ***************************************************************************/
7001 bool lp_canonicalize_boolean(const char *str, const char**canon_str)
7005 if (!set_boolean(str, &val)) {
7009 *canon_str = get_boolean(val);
7013 /***************************************************************************
7014 Find a service by name. Otherwise works like get_service.
7015 ***************************************************************************/
7017 static int getservicebyname(const char *pszServiceName, struct service *pserviceDest)
7023 if (ServiceHash == NULL) {
7027 canon_name = canonicalize_servicename(talloc_tos(), pszServiceName);
7029 data = dbwrap_fetch_bystring(ServiceHash, canon_name, canon_name);
7031 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
7032 iService = *(int *)data.dptr;
7035 TALLOC_FREE(canon_name);
7037 if ((iService != -1) && (LP_SNUM_OK(iService))
7038 && (pserviceDest != NULL)) {
7039 copy_service(pserviceDest, ServicePtrs[iService], NULL);
7045 /***************************************************************************
7046 Copy a service structure to another.
7047 If pcopymapDest is NULL then copy all fields
7048 ***************************************************************************/
7051 * Add a parametric option to a param_opt_struct,
7052 * replacing old value, if already present.
7054 static void set_param_opt(struct param_opt_struct **opt_list,
7055 const char *opt_name,
7056 const char *opt_value,
7059 struct param_opt_struct *new_opt, *opt;
7062 if (opt_list == NULL) {
7069 /* Traverse destination */
7071 /* If we already have same option, override it */
7072 if (strwicmp(opt->key, opt_name) == 0) {
7073 if ((opt->flags & FLAG_CMDLINE) &&
7074 !(flags & FLAG_CMDLINE)) {
7075 /* it's been marked as not to be
7079 string_free(&opt->value);
7080 TALLOC_FREE(opt->list);
7081 opt->value = SMB_STRDUP(opt_value);
7089 new_opt = SMB_XMALLOC_P(struct param_opt_struct);
7090 new_opt->key = SMB_STRDUP(opt_name);
7091 new_opt->value = SMB_STRDUP(opt_value);
7092 new_opt->list = NULL;
7093 new_opt->flags = flags;
7094 DLIST_ADD(*opt_list, new_opt);
7098 static void copy_service(struct service *pserviceDest, struct service *pserviceSource,
7099 struct bitmap *pcopymapDest)
7102 bool bcopyall = (pcopymapDest == NULL);
7103 struct param_opt_struct *data;
7105 for (i = 0; parm_table[i].label; i++)
7106 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
7107 (bcopyall || bitmap_query(pcopymapDest,i))) {
7108 void *def_ptr = parm_table[i].ptr;
7110 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
7113 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
7116 switch (parm_table[i].type) {
7119 *(bool *)dest_ptr = *(bool *)src_ptr;
7125 *(int *)dest_ptr = *(int *)src_ptr;
7129 *(char *)dest_ptr = *(char *)src_ptr;
7133 string_set((char **)dest_ptr,
7138 string_set((char **)dest_ptr,
7140 strupper_m(*(char **)dest_ptr);
7143 TALLOC_FREE(*((char ***)dest_ptr));
7144 *((char ***)dest_ptr) = str_list_copy(NULL,
7145 *(const char ***)src_ptr);
7153 init_copymap(pserviceDest);
7154 if (pserviceSource->copymap)
7155 bitmap_copy(pserviceDest->copymap,
7156 pserviceSource->copymap);
7159 data = pserviceSource->param_opt;
7161 set_param_opt(&pserviceDest->param_opt, data->key, data->value, data->flags);
7166 /***************************************************************************
7167 Check a service for consistency. Return False if the service is in any way
7168 incomplete or faulty, else True.
7169 ***************************************************************************/
7171 bool service_ok(int iService)
7176 if (ServicePtrs[iService]->szService[0] == '\0') {
7177 DEBUG(0, ("The following message indicates an internal error:\n"));
7178 DEBUG(0, ("No service name in service entry.\n"));
7182 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
7183 /* I can't see why you'd want a non-printable printer service... */
7184 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
7185 if (!ServicePtrs[iService]->bPrint_ok) {
7186 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
7187 ServicePtrs[iService]->szService));
7188 ServicePtrs[iService]->bPrint_ok = True;
7190 /* [printers] service must also be non-browsable. */
7191 if (ServicePtrs[iService]->bBrowseable)
7192 ServicePtrs[iService]->bBrowseable = False;
7195 if (ServicePtrs[iService]->szPath[0] == '\0' &&
7196 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
7197 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
7199 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
7200 ServicePtrs[iService]->szService));
7201 ServicePtrs[iService]->bAvailable = False;
7204 /* If a service is flagged unavailable, log the fact at level 1. */
7205 if (!ServicePtrs[iService]->bAvailable)
7206 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
7207 ServicePtrs[iService]->szService));
7212 static struct smbconf_ctx *lp_smbconf_ctx(void)
7215 static struct smbconf_ctx *conf_ctx = NULL;
7217 if (conf_ctx == NULL) {
7218 err = smbconf_init(NULL, &conf_ctx, "registry:");
7219 if (!SBC_ERROR_IS_OK(err)) {
7220 DEBUG(1, ("error initializing registry configuration: "
7221 "%s\n", sbcErrorString(err)));
7229 static bool process_smbconf_service(struct smbconf_service *service)
7234 if (service == NULL) {
7238 ret = do_section(service->name, NULL);
7242 for (count = 0; count < service->num_params; count++) {
7243 ret = do_parameter(service->param_names[count],
7244 service->param_values[count],
7250 if (iServiceIndex >= 0) {
7251 return service_ok(iServiceIndex);
7257 * load a service from registry and activate it
7259 bool process_registry_service(const char *service_name)
7262 struct smbconf_service *service = NULL;
7263 TALLOC_CTX *mem_ctx = talloc_stackframe();
7264 struct smbconf_ctx *conf_ctx = lp_smbconf_ctx();
7267 if (conf_ctx == NULL) {
7271 DEBUG(5, ("process_registry_service: service name %s\n", service_name));
7273 if (!smbconf_share_exists(conf_ctx, service_name)) {
7275 * Registry does not contain data for this service (yet),
7276 * but make sure lp_load doesn't return false.
7282 err = smbconf_get_share(conf_ctx, mem_ctx, service_name, &service);
7283 if (!SBC_ERROR_IS_OK(err)) {
7287 ret = process_smbconf_service(service);
7293 smbconf_changed(conf_ctx, &conf_last_csn, NULL, NULL);
7296 TALLOC_FREE(mem_ctx);
7301 * process_registry_globals
7303 static bool process_registry_globals(void)
7307 add_to_file_list(INCLUDE_REGISTRY_NAME, INCLUDE_REGISTRY_NAME);
7309 ret = do_parameter("registry shares", "yes", NULL);
7314 return process_registry_service(GLOBAL_NAME);
7317 bool process_registry_shares(void)
7321 struct smbconf_service **service = NULL;
7322 uint32_t num_shares = 0;
7323 TALLOC_CTX *mem_ctx = talloc_stackframe();
7324 struct smbconf_ctx *conf_ctx = lp_smbconf_ctx();
7327 if (conf_ctx == NULL) {
7331 err = smbconf_get_config(conf_ctx, mem_ctx, &num_shares, &service);
7332 if (!SBC_ERROR_IS_OK(err)) {
7338 for (count = 0; count < num_shares; count++) {
7339 if (strequal(service[count]->name, GLOBAL_NAME)) {
7342 ret = process_smbconf_service(service[count]);
7349 smbconf_changed(conf_ctx, &conf_last_csn, NULL, NULL);
7352 TALLOC_FREE(mem_ctx);
7356 #define MAX_INCLUDE_DEPTH 100
7358 static uint8_t include_depth;
7360 static struct file_lists {
7361 struct file_lists *next;
7365 } *file_lists = NULL;
7367 /*******************************************************************
7368 Keep a linked list of all config files so we know when one has changed
7369 it's date and needs to be reloaded.
7370 ********************************************************************/
7372 static void add_to_file_list(const char *fname, const char *subfname)
7374 struct file_lists *f = file_lists;
7377 if (f->name && !strcmp(f->name, fname))
7383 f = SMB_MALLOC_P(struct file_lists);
7386 f->next = file_lists;
7387 f->name = SMB_STRDUP(fname);
7392 f->subfname = SMB_STRDUP(subfname);
7399 f->modtime = file_modtime(subfname);
7401 time_t t = file_modtime(subfname);
7409 * Free the file lists
7411 static void free_file_list(void)
7413 struct file_lists *f;
7414 struct file_lists *next;
7419 SAFE_FREE( f->name );
7420 SAFE_FREE( f->subfname );
7429 * Utility function for outsiders to check if we're running on registry.
7431 bool lp_config_backend_is_registry(void)
7433 return (lp_config_backend() == CONFIG_BACKEND_REGISTRY);
7437 * Utility function to check if the config backend is FILE.
7439 bool lp_config_backend_is_file(void)
7441 return (lp_config_backend() == CONFIG_BACKEND_FILE);
7444 /*******************************************************************
7445 Check if a config file has changed date.
7446 ********************************************************************/
7448 bool lp_file_list_changed(void)
7450 struct file_lists *f = file_lists;
7452 DEBUG(6, ("lp_file_list_changed()\n"));
7457 if (strequal(f->name, INCLUDE_REGISTRY_NAME)) {
7458 struct smbconf_ctx *conf_ctx = lp_smbconf_ctx();
7460 if (conf_ctx == NULL) {
7463 if (smbconf_changed(conf_ctx, &conf_last_csn, NULL,
7466 DEBUGADD(6, ("registry config changed\n"));
7471 n2 = talloc_sub_basic(talloc_tos(),
7472 get_current_username(),
7473 current_user_info.domain,
7478 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
7479 f->name, n2, ctime(&f->modtime)));
7481 mod_time = file_modtime(n2);
7484 ((f->modtime != mod_time) ||
7485 (f->subfname == NULL) ||
7486 (strcmp(n2, f->subfname) != 0)))
7489 ("file %s modified: %s\n", n2,
7491 f->modtime = mod_time;
7492 SAFE_FREE(f->subfname);
7493 f->subfname = SMB_STRDUP(n2);
7506 * Initialize iconv conversion descriptors.
7508 * This is called the first time it is needed, and also called again
7509 * every time the configuration is reloaded, because the charset or
7510 * codepage might have changed.
7512 static void init_iconv(void)
7514 global_iconv_handle = smb_iconv_handle_reinit(NULL, lp_dos_charset(),
7515 lp_unix_charset(), lp_display_charset(),
7516 true, global_iconv_handle);
7519 static bool handle_charset(int snum, const char *pszParmValue, char **ptr)
7521 if (strcmp(*ptr, pszParmValue) != 0) {
7522 string_set(ptr, pszParmValue);
7528 static bool handle_dos_charset(int snum, const char *pszParmValue, char **ptr)
7530 bool is_utf8 = false;
7531 size_t len = strlen(pszParmValue);
7533 if (len == 4 || len == 5) {
7534 /* Don't use StrCaseCmp here as we don't want to
7535 initialize iconv. */
7536 if ((toupper_ascii(pszParmValue[0]) == 'U') &&
7537 (toupper_ascii(pszParmValue[1]) == 'T') &&
7538 (toupper_ascii(pszParmValue[2]) == 'F')) {
7540 if (pszParmValue[3] == '8') {
7544 if (pszParmValue[3] == '-' &&
7545 pszParmValue[4] == '8') {
7552 if (strcmp(*ptr, pszParmValue) != 0) {
7554 DEBUG(0,("ERROR: invalid DOS charset: 'dos charset' must not "
7555 "be UTF8, using (default value) %s instead.\n",
7556 DEFAULT_DOS_CHARSET));
7557 pszParmValue = DEFAULT_DOS_CHARSET;
7559 string_set(ptr, pszParmValue);
7565 static bool handle_realm(int snum, const char *pszParmValue, char **ptr)
7568 char *realm = strupper_talloc(talloc_tos(), pszParmValue);
7569 char *dnsdomain = strlower_talloc(talloc_tos(), pszParmValue);
7571 ret &= string_set(&Globals.szRealm, pszParmValue);
7572 ret &= string_set(&Globals.szRealmUpper, realm);
7573 ret &= string_set(&Globals.szDnsDomain, dnsdomain);
7575 TALLOC_FREE(dnsdomain);
7580 static bool handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
7582 TALLOC_FREE(Globals.szNetbiosAliases);
7583 Globals.szNetbiosAliases = str_list_make_v3(NULL, pszParmValue, NULL);
7584 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
7587 /***************************************************************************
7588 Handle the include operation.
7589 ***************************************************************************/
7590 static bool bAllowIncludeRegistry = true;
7592 static bool handle_include(int snum, const char *pszParmValue, char **ptr)
7596 if (include_depth >= MAX_INCLUDE_DEPTH) {
7597 DEBUG(0, ("Error: Maximum include depth (%u) exceeded!\n",
7602 if (strequal(pszParmValue, INCLUDE_REGISTRY_NAME)) {
7603 if (!bAllowIncludeRegistry) {
7606 if (bInGlobalSection) {
7609 ret = process_registry_globals();
7613 DEBUG(1, ("\"include = registry\" only effective "
7614 "in %s section\n", GLOBAL_NAME));
7619 fname = talloc_sub_basic(talloc_tos(), get_current_username(),
7620 current_user_info.domain,
7623 add_to_file_list(pszParmValue, fname);
7625 string_set(ptr, fname);
7627 if (file_exist(fname)) {
7630 ret = pm_process(fname, do_section, do_parameter, NULL);
7636 DEBUG(2, ("Can't find include file %s\n", fname));
7641 /***************************************************************************
7642 Handle the interpretation of the copy parameter.
7643 ***************************************************************************/
7645 static bool handle_copy(int snum, const char *pszParmValue, char **ptr)
7649 struct service serviceTemp;
7651 string_set(ptr, pszParmValue);
7653 init_service(&serviceTemp);
7657 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
7659 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
7660 if (iTemp == iServiceIndex) {
7661 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
7663 copy_service(ServicePtrs[iServiceIndex],
7665 ServicePtrs[iServiceIndex]->copymap);
7669 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
7673 free_service(&serviceTemp);
7677 static bool handle_ldap_debug_level(int snum, const char *pszParmValue, char **ptr)
7679 Globals.ldap_debug_level = lp_int(pszParmValue);
7680 init_ldap_debugging();
7684 /***************************************************************************
7685 Handle idmap/non unix account uid and gid allocation parameters. The format of these
7690 idmap uid = 1000-1999
7693 We only do simple parsing checks here. The strings are parsed into useful
7694 structures in the idmap daemon code.
7696 ***************************************************************************/
7698 /* Some lp_ routines to return idmap [ug]id information */
7700 static uid_t idmap_uid_low, idmap_uid_high;
7701 static gid_t idmap_gid_low, idmap_gid_high;
7703 bool lp_idmap_uid(uid_t *low, uid_t *high)
7705 if (idmap_uid_low == 0 || idmap_uid_high == 0)
7709 *low = idmap_uid_low;
7712 *high = idmap_uid_high;
7717 bool lp_idmap_gid(gid_t *low, gid_t *high)
7719 if (idmap_gid_low == 0 || idmap_gid_high == 0)
7723 *low = idmap_gid_low;
7726 *high = idmap_gid_high;
7731 static bool handle_idmap_backend(int snum, const char *pszParmValue, char **ptr)
7733 lp_do_parameter(snum, "idmap config * : backend", pszParmValue);
7738 /* Do some simple checks on "idmap [ug]id" parameter values */
7740 static bool handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
7742 lp_do_parameter(snum, "idmap config * : range", pszParmValue);
7747 static bool handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
7749 lp_do_parameter(snum, "idmap config * : range", pszParmValue);
7754 /***************************************************************************
7755 Handle the DEBUG level list.
7756 ***************************************************************************/
7758 static bool handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
7760 string_set(ptr, pszParmValueIn);
7761 return debug_parse_levels(pszParmValueIn);
7764 /***************************************************************************
7765 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
7766 ***************************************************************************/
7768 static const char *append_ldap_suffix( const char *str )
7770 const char *suffix_string;
7773 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
7774 Globals.szLdapSuffix );
7775 if ( !suffix_string ) {
7776 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
7780 return suffix_string;
7783 const char *lp_ldap_machine_suffix(void)
7785 if (Globals.szLdapMachineSuffix[0])
7786 return append_ldap_suffix(Globals.szLdapMachineSuffix);
7788 return lp_string(Globals.szLdapSuffix);
7791 const char *lp_ldap_user_suffix(void)
7793 if (Globals.szLdapUserSuffix[0])
7794 return append_ldap_suffix(Globals.szLdapUserSuffix);
7796 return lp_string(Globals.szLdapSuffix);
7799 const char *lp_ldap_group_suffix(void)
7801 if (Globals.szLdapGroupSuffix[0])
7802 return append_ldap_suffix(Globals.szLdapGroupSuffix);
7804 return lp_string(Globals.szLdapSuffix);
7807 const char *lp_ldap_idmap_suffix(void)
7809 if (Globals.szLdapIdmapSuffix[0])
7810 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
7812 return lp_string(Globals.szLdapSuffix);
7815 /****************************************************************************
7816 set the value for a P_ENUM
7817 ***************************************************************************/
7819 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
7824 for (i = 0; parm->enum_list[i].name; i++) {
7825 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
7826 *ptr = parm->enum_list[i].value;
7830 DEBUG(0, ("WARNING: Ignoring invalid value '%s' for parameter '%s'\n",
7831 pszParmValue, parm->label));
7834 /***************************************************************************
7835 ***************************************************************************/
7837 static bool handle_printing(int snum, const char *pszParmValue, char **ptr)
7839 static int parm_num = -1;
7842 if ( parm_num == -1 )
7843 parm_num = map_parameter( "printing" );
7845 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
7850 s = ServicePtrs[snum];
7852 init_printer_values( s );
7858 /***************************************************************************
7859 Initialise a copymap.
7860 ***************************************************************************/
7862 static void init_copymap(struct service *pservice)
7866 TALLOC_FREE(pservice->copymap);
7868 pservice->copymap = bitmap_talloc(NULL, NUMPARAMETERS);
7869 if (!pservice->copymap)
7871 ("Couldn't allocate copymap!! (size %d)\n",
7872 (int)NUMPARAMETERS));
7874 for (i = 0; i < NUMPARAMETERS; i++)
7875 bitmap_set(pservice->copymap, i);
7878 /***************************************************************************
7879 Return the local pointer to a parameter given a service struct and the
7880 pointer into the default structure.
7881 ***************************************************************************/
7883 static void *lp_local_ptr(struct service *service, void *ptr)
7885 return (void *)(((char *)service) + PTR_DIFF(ptr, &sDefault));
7888 /***************************************************************************
7889 Return the local pointer to a parameter given the service number and the
7890 pointer into the default structure.
7891 ***************************************************************************/
7893 void *lp_local_ptr_by_snum(int snum, void *ptr)
7895 return lp_local_ptr(ServicePtrs[snum], ptr);
7898 /***************************************************************************
7899 Process a parameter for a particular service number. If snum < 0
7900 then assume we are in the globals.
7901 ***************************************************************************/
7903 bool lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
7906 void *parm_ptr = NULL; /* where we are going to store the result */
7907 void *def_ptr = NULL;
7908 struct param_opt_struct **opt_list;
7910 parmnum = map_parameter(pszParmName);
7913 if (strchr(pszParmName, ':') == NULL) {
7914 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n",
7920 * We've got a parametric option
7923 opt_list = (snum < 0)
7924 ? &Globals.param_opt : &ServicePtrs[snum]->param_opt;
7925 set_param_opt(opt_list, pszParmName, pszParmValue, 0);
7930 /* if it's already been set by the command line, then we don't
7932 if (parm_table[parmnum].flags & FLAG_CMDLINE) {
7936 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
7937 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
7941 def_ptr = parm_table[parmnum].ptr;
7943 /* we might point at a service, the default service or a global */
7947 if (parm_table[parmnum].p_class == P_GLOBAL) {
7949 ("Global parameter %s found in service section!\n",
7953 parm_ptr = lp_local_ptr_by_snum(snum, def_ptr);
7957 if (!ServicePtrs[snum]->copymap)
7958 init_copymap(ServicePtrs[snum]);
7960 /* this handles the aliases - set the copymap for other entries with
7961 the same data pointer */
7962 for (i = 0; parm_table[i].label; i++)
7963 if (parm_table[i].ptr == parm_table[parmnum].ptr)
7964 bitmap_clear(ServicePtrs[snum]->copymap, i);
7967 /* if it is a special case then go ahead */
7968 if (parm_table[parmnum].special) {
7969 return parm_table[parmnum].special(snum, pszParmValue,
7973 /* now switch on the type of variable it is */
7974 switch (parm_table[parmnum].type)
7977 *(bool *)parm_ptr = lp_bool(pszParmValue);
7981 *(bool *)parm_ptr = !lp_bool(pszParmValue);
7985 *(int *)parm_ptr = lp_int(pszParmValue);
7989 *(char *)parm_ptr = *pszParmValue;
7993 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
7995 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
8000 TALLOC_FREE(*((char ***)parm_ptr));
8001 *(char ***)parm_ptr = str_list_make_v3(
8002 NULL, pszParmValue, NULL);
8006 string_set((char **)parm_ptr, pszParmValue);
8010 string_set((char **)parm_ptr, pszParmValue);
8011 strupper_m(*(char **)parm_ptr);
8015 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
8024 /***************************************************************************
8025 set a parameter, marking it with FLAG_CMDLINE. Parameters marked as
8026 FLAG_CMDLINE won't be overridden by loads from smb.conf.
8027 ***************************************************************************/
8029 static bool lp_set_cmdline_helper(const char *pszParmName, const char *pszParmValue, bool store_values)
8032 parmnum = map_parameter(pszParmName);
8034 parm_table[parmnum].flags &= ~FLAG_CMDLINE;
8035 if (!lp_do_parameter(-1, pszParmName, pszParmValue)) {
8038 parm_table[parmnum].flags |= FLAG_CMDLINE;
8040 /* we have to also set FLAG_CMDLINE on aliases. Aliases must
8041 * be grouped in the table, so we don't have to search the
8043 for (i=parmnum-1;i>=0 && parm_table[i].ptr == parm_table[parmnum].ptr;i--) {
8044 parm_table[i].flags |= FLAG_CMDLINE;
8046 for (i=parmnum+1;i<NUMPARAMETERS && parm_table[i].ptr == parm_table[parmnum].ptr;i++) {
8047 parm_table[i].flags |= FLAG_CMDLINE;
8051 store_lp_set_cmdline(pszParmName, pszParmValue);
8056 /* it might be parametric */
8057 if (strchr(pszParmName, ':') != NULL) {
8058 set_param_opt(&Globals.param_opt, pszParmName, pszParmValue, FLAG_CMDLINE);
8060 store_lp_set_cmdline(pszParmName, pszParmValue);
8065 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
8069 bool lp_set_cmdline(const char *pszParmName, const char *pszParmValue)
8071 return lp_set_cmdline_helper(pszParmName, pszParmValue, true);
8074 /***************************************************************************
8075 Process a parameter.
8076 ***************************************************************************/
8078 static bool do_parameter(const char *pszParmName, const char *pszParmValue,
8081 if (!bInGlobalSection && bGlobalOnly)
8084 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
8086 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
8087 pszParmName, pszParmValue));
8091 set a option from the commandline in 'a=b' format. Use to support --option
8093 bool lp_set_option(const char *option)
8098 s = talloc_strdup(NULL, option);
8111 /* skip white spaces after the = sign */
8114 } while (*p == ' ');
8116 ret = lp_set_cmdline(s, p);
8121 /**************************************************************************
8122 Print a parameter of the specified type.
8123 ***************************************************************************/
8125 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
8131 for (i = 0; p->enum_list[i].name; i++) {
8132 if (*(int *)ptr == p->enum_list[i].value) {
8134 p->enum_list[i].name);
8141 fprintf(f, "%s", BOOLSTR(*(bool *)ptr));
8145 fprintf(f, "%s", BOOLSTR(!*(bool *)ptr));
8149 fprintf(f, "%d", *(int *)ptr);
8153 fprintf(f, "%c", *(char *)ptr);
8157 char *o = octal_string(*(int *)ptr);
8158 fprintf(f, "%s", o);
8164 if ((char ***)ptr && *(char ***)ptr) {
8165 char **list = *(char ***)ptr;
8166 for (; *list; list++) {
8167 /* surround strings with whitespace in double quotes */
8168 if ( strchr_m( *list, ' ' ) )
8169 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
8171 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
8178 if (*(char **)ptr) {
8179 fprintf(f, "%s", *(char **)ptr);
8187 /***************************************************************************
8188 Check if two parameters are equal.
8189 ***************************************************************************/
8191 static bool equal_parameter(parm_type type, void *ptr1, void *ptr2)
8196 return (*((bool *)ptr1) == *((bool *)ptr2));
8201 return (*((int *)ptr1) == *((int *)ptr2));
8204 return (*((char *)ptr1) == *((char *)ptr2));
8207 return str_list_equal(*(const char ***)ptr1, *(const char ***)ptr2);
8212 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
8217 return (p1 == p2 || strequal(p1, p2));
8225 /***************************************************************************
8226 Initialize any local varients in the sDefault table.
8227 ***************************************************************************/
8229 void init_locals(void)
8234 /***************************************************************************
8235 Process a new section (service). At this stage all sections are services.
8236 Later we'll have special sections that permit server parameters to be set.
8237 Returns True on success, False on failure.
8238 ***************************************************************************/
8240 static bool do_section(const char *pszSectionName, void *userdata)
8243 bool isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
8244 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
8247 /* if we were in a global section then do the local inits */
8248 if (bInGlobalSection && !isglobal)
8251 /* if we've just struck a global section, note the fact. */
8252 bInGlobalSection = isglobal;
8254 /* check for multiple global sections */
8255 if (bInGlobalSection) {
8256 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
8260 if (!bInGlobalSection && bGlobalOnly)
8263 /* if we have a current service, tidy it up before moving on */
8266 if (iServiceIndex >= 0)
8267 bRetval = service_ok(iServiceIndex);
8269 /* if all is still well, move to the next record in the services array */
8271 /* We put this here to avoid an odd message order if messages are */
8272 /* issued by the post-processing of a previous section. */
8273 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
8275 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
8277 DEBUG(0, ("Failed to add a new service\n"));
8280 /* Clean all parametric options for service */
8281 /* They will be added during parsing again */
8282 free_param_opts(&ServicePtrs[iServiceIndex]->param_opt);
8289 /***************************************************************************
8290 Determine if a partcular base parameter is currentl set to the default value.
8291 ***************************************************************************/
8293 static bool is_default(int i)
8295 if (!defaults_saved)
8297 switch (parm_table[i].type) {
8299 return str_list_equal((const char **)parm_table[i].def.lvalue,
8300 *(const char ***)parm_table[i].ptr);
8303 return strequal(parm_table[i].def.svalue,
8304 *(char **)parm_table[i].ptr);
8307 return parm_table[i].def.bvalue ==
8308 *(bool *)parm_table[i].ptr;
8310 return parm_table[i].def.cvalue ==
8311 *(char *)parm_table[i].ptr;
8315 return parm_table[i].def.ivalue ==
8316 *(int *)parm_table[i].ptr;
8323 /***************************************************************************
8324 Display the contents of the global structure.
8325 ***************************************************************************/
8327 static void dump_globals(FILE *f)
8330 struct param_opt_struct *data;
8332 fprintf(f, "[global]\n");
8334 for (i = 0; parm_table[i].label; i++)
8335 if (parm_table[i].p_class == P_GLOBAL &&
8336 !(parm_table[i].flags & FLAG_META) &&
8337 parm_table[i].ptr &&
8338 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
8339 if (defaults_saved && is_default(i))
8341 fprintf(f, "\t%s = ", parm_table[i].label);
8342 print_parameter(&parm_table[i], parm_table[i].ptr, f);
8345 if (Globals.param_opt != NULL) {
8346 data = Globals.param_opt;
8348 fprintf(f, "\t%s = %s\n", data->key, data->value);
8355 /***************************************************************************
8356 Return True if a local parameter is currently set to the global default.
8357 ***************************************************************************/
8359 bool lp_is_default(int snum, struct parm_struct *parm)
8361 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
8363 return equal_parameter(parm->type,
8364 ((char *)ServicePtrs[snum]) + pdiff,
8365 ((char *)&sDefault) + pdiff);
8368 /***************************************************************************
8369 Display the contents of a single services record.
8370 ***************************************************************************/
8372 static void dump_a_service(struct service *pService, FILE * f)
8375 struct param_opt_struct *data;
8377 if (pService != &sDefault)
8378 fprintf(f, "[%s]\n", pService->szService);
8380 for (i = 0; parm_table[i].label; i++) {
8382 if (parm_table[i].p_class == P_LOCAL &&
8383 !(parm_table[i].flags & FLAG_META) &&
8384 parm_table[i].ptr &&
8385 (*parm_table[i].label != '-') &&
8386 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
8388 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
8390 if (pService == &sDefault) {
8391 if (defaults_saved && is_default(i))
8394 if (equal_parameter(parm_table[i].type,
8395 ((char *)pService) +
8397 ((char *)&sDefault) +
8402 fprintf(f, "\t%s = ", parm_table[i].label);
8403 print_parameter(&parm_table[i],
8404 ((char *)pService) + pdiff, f);
8409 if (pService->param_opt != NULL) {
8410 data = pService->param_opt;
8412 fprintf(f, "\t%s = %s\n", data->key, data->value);
8418 /***************************************************************************
8419 Display the contents of a parameter of a single services record.
8420 ***************************************************************************/
8422 bool dump_a_parameter(int snum, char *parm_name, FILE * f, bool isGlobal)
8425 bool result = False;
8428 fstring local_parm_name;
8430 const char *parm_opt_value;
8432 /* check for parametrical option */
8433 fstrcpy( local_parm_name, parm_name);
8434 parm_opt = strchr( local_parm_name, ':');
8439 if (strlen(parm_opt)) {
8440 parm_opt_value = lp_parm_const_string( snum,
8441 local_parm_name, parm_opt, NULL);
8442 if (parm_opt_value) {
8443 printf( "%s\n", parm_opt_value);
8450 /* check for a key and print the value */
8457 for (i = 0; parm_table[i].label; i++) {
8458 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
8459 !(parm_table[i].flags & FLAG_META) &&
8460 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
8461 parm_table[i].ptr &&
8462 (*parm_table[i].label != '-') &&
8463 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
8468 ptr = parm_table[i].ptr;
8470 struct service *pService = ServicePtrs[snum];
8471 ptr = ((char *)pService) +
8472 PTR_DIFF(parm_table[i].ptr, &sDefault);
8475 print_parameter(&parm_table[i],
8486 /***************************************************************************
8487 Return info about the requested parameter (given as a string).
8488 Return NULL when the string is not a valid parameter name.
8489 ***************************************************************************/
8491 struct parm_struct *lp_get_parameter(const char *param_name)
8493 int num = map_parameter(param_name);
8499 return &parm_table[num];
8502 /***************************************************************************
8503 Return info about the next parameter in a service.
8504 snum==GLOBAL_SECTION_SNUM gives the globals.
8505 Return NULL when out of parameters.
8506 ***************************************************************************/
8508 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
8511 /* do the globals */
8512 for (; parm_table[*i].label; (*i)++) {
8513 if (parm_table[*i].p_class == P_SEPARATOR)
8514 return &parm_table[(*i)++];
8516 if (!parm_table[*i].ptr
8517 || (*parm_table[*i].label == '-'))
8521 && (parm_table[*i].ptr ==
8522 parm_table[(*i) - 1].ptr))
8525 if (is_default(*i) && !allparameters)
8528 return &parm_table[(*i)++];
8531 struct service *pService = ServicePtrs[snum];
8533 for (; parm_table[*i].label; (*i)++) {
8534 if (parm_table[*i].p_class == P_SEPARATOR)
8535 return &parm_table[(*i)++];
8537 if (parm_table[*i].p_class == P_LOCAL &&
8538 parm_table[*i].ptr &&
8539 (*parm_table[*i].label != '-') &&
8541 (parm_table[*i].ptr !=
8542 parm_table[(*i) - 1].ptr)))
8545 PTR_DIFF(parm_table[*i].ptr,
8548 if (allparameters ||
8549 !equal_parameter(parm_table[*i].type,
8550 ((char *)pService) +
8552 ((char *)&sDefault) +
8555 return &parm_table[(*i)++];
8566 /***************************************************************************
8567 Display the contents of a single copy structure.
8568 ***************************************************************************/
8569 static void dump_copy_map(bool *pcopymap)
8575 printf("\n\tNon-Copied parameters:\n");
8577 for (i = 0; parm_table[i].label; i++)
8578 if (parm_table[i].p_class == P_LOCAL &&
8579 parm_table[i].ptr && !pcopymap[i] &&
8580 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
8582 printf("\t\t%s\n", parm_table[i].label);
8587 /***************************************************************************
8588 Return TRUE if the passed service number is within range.
8589 ***************************************************************************/
8591 bool lp_snum_ok(int iService)
8593 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
8596 /***************************************************************************
8597 Auto-load some home services.
8598 ***************************************************************************/
8600 static void lp_add_auto_services(char *str)
8610 s = SMB_STRDUP(str);
8614 homes = lp_servicenumber(HOMES_NAME);
8616 for (p = strtok_r(s, LIST_SEP, &saveptr); p;
8617 p = strtok_r(NULL, LIST_SEP, &saveptr)) {
8620 if (lp_servicenumber(p) >= 0)
8623 home = get_user_home_dir(talloc_tos(), p);
8625 if (home && home[0] && homes >= 0)
8626 lp_add_home(p, homes, p, home);
8633 /***************************************************************************
8634 Auto-load one printer.
8635 ***************************************************************************/
8637 void lp_add_one_printer(const char *name, const char *comment,
8638 const char *location, void *pdata)
8640 int printers = lp_servicenumber(PRINTERS_NAME);
8643 if (lp_servicenumber(name) < 0) {
8644 lp_add_printer(name, printers);
8645 if ((i = lp_servicenumber(name)) >= 0) {
8646 string_set(&ServicePtrs[i]->comment, comment);
8647 ServicePtrs[i]->autoloaded = True;
8652 /***************************************************************************
8653 Have we loaded a services file yet?
8654 ***************************************************************************/
8656 bool lp_loaded(void)
8661 /***************************************************************************
8662 Unload unused services.
8663 ***************************************************************************/
8665 void lp_killunused(struct smbd_server_connection *sconn,
8666 bool (*snumused) (struct smbd_server_connection *, int))
8669 for (i = 0; i < iNumServices; i++) {
8673 /* don't kill autoloaded or usershare services */
8674 if ( ServicePtrs[i]->autoloaded ||
8675 ServicePtrs[i]->usershare == USERSHARE_VALID) {
8679 if (!snumused || !snumused(sconn, i)) {
8680 free_service_byindex(i);
8686 * Kill all except autoloaded and usershare services - convenience wrapper
8688 void lp_kill_all_services(void)
8690 lp_killunused(NULL, NULL);
8693 /***************************************************************************
8695 ***************************************************************************/
8697 void lp_killservice(int iServiceIn)
8699 if (VALID(iServiceIn)) {
8700 free_service_byindex(iServiceIn);
8704 /***************************************************************************
8705 Save the curent values of all global and sDefault parameters into the
8706 defaults union. This allows swat and testparm to show only the
8707 changed (ie. non-default) parameters.
8708 ***************************************************************************/
8710 static void lp_save_defaults(void)
8713 for (i = 0; parm_table[i].label; i++) {
8714 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
8716 switch (parm_table[i].type) {
8718 parm_table[i].def.lvalue = str_list_copy(
8719 NULL, *(const char ***)parm_table[i].ptr);
8723 if (parm_table[i].ptr) {
8724 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
8726 parm_table[i].def.svalue = NULL;
8731 parm_table[i].def.bvalue =
8732 *(bool *)parm_table[i].ptr;
8735 parm_table[i].def.cvalue =
8736 *(char *)parm_table[i].ptr;
8741 parm_table[i].def.ivalue =
8742 *(int *)parm_table[i].ptr;
8748 defaults_saved = True;
8751 /***********************************************************
8752 If we should send plaintext/LANMAN passwords in the clinet
8753 ************************************************************/
8755 static void set_allowed_client_auth(void)
8757 if (Globals.bClientNTLMv2Auth) {
8758 Globals.bClientLanManAuth = False;
8760 if (!Globals.bClientLanManAuth) {
8761 Globals.bClientPlaintextAuth = False;
8765 /***************************************************************************
8767 The following code allows smbd to read a user defined share file.
8768 Yes, this is my intent. Yes, I'm comfortable with that...
8770 THE FOLLOWING IS SECURITY CRITICAL CODE.
8772 It washes your clothes, it cleans your house, it guards you while you sleep...
8773 Do not f%^k with it....
8774 ***************************************************************************/
8776 #define MAX_USERSHARE_FILE_SIZE (10*1024)
8778 /***************************************************************************
8779 Check allowed stat state of a usershare file.
8780 Ensure we print out who is dicking with us so the admin can
8781 get their sorry ass fired.
8782 ***************************************************************************/
8784 static bool check_usershare_stat(const char *fname,
8785 const SMB_STRUCT_STAT *psbuf)
8787 if (!S_ISREG(psbuf->st_ex_mode)) {
8788 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
8789 "not a regular file\n",
8790 fname, (unsigned int)psbuf->st_ex_uid ));
8794 /* Ensure this doesn't have the other write bit set. */
8795 if (psbuf->st_ex_mode & S_IWOTH) {
8796 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
8797 "public write. Refusing to allow as a usershare file.\n",
8798 fname, (unsigned int)psbuf->st_ex_uid ));
8802 /* Should be 10k or less. */
8803 if (psbuf->st_ex_size > MAX_USERSHARE_FILE_SIZE) {
8804 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
8805 "too large (%u) to be a user share file.\n",
8806 fname, (unsigned int)psbuf->st_ex_uid,
8807 (unsigned int)psbuf->st_ex_size ));
8814 /***************************************************************************
8815 Parse the contents of a usershare file.
8816 ***************************************************************************/
8818 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
8819 SMB_STRUCT_STAT *psbuf,
8820 const char *servicename,
8824 char **pp_sharepath,
8826 char **pp_cp_servicename,
8827 struct security_descriptor **ppsd,
8830 const char **prefixallowlist = lp_usershare_prefix_allow_list();
8831 const char **prefixdenylist = lp_usershare_prefix_deny_list();
8834 SMB_STRUCT_STAT sbuf;
8835 char *sharepath = NULL;
8836 char *comment = NULL;
8838 *pp_sharepath = NULL;
8841 *pallow_guest = False;
8844 return USERSHARE_MALFORMED_FILE;
8847 if (strcmp(lines[0], "#VERSION 1") == 0) {
8849 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
8852 return USERSHARE_MALFORMED_FILE;
8855 return USERSHARE_BAD_VERSION;
8858 if (strncmp(lines[1], "path=", 5) != 0) {
8859 return USERSHARE_MALFORMED_PATH;
8862 sharepath = talloc_strdup(ctx, &lines[1][5]);
8864 return USERSHARE_POSIX_ERR;
8866 trim_string(sharepath, " ", " ");
8868 if (strncmp(lines[2], "comment=", 8) != 0) {
8869 return USERSHARE_MALFORMED_COMMENT_DEF;
8872 comment = talloc_strdup(ctx, &lines[2][8]);
8874 return USERSHARE_POSIX_ERR;
8876 trim_string(comment, " ", " ");
8877 trim_char(comment, '"', '"');
8879 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
8880 return USERSHARE_MALFORMED_ACL_DEF;
8883 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
8884 return USERSHARE_ACL_ERR;
8888 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
8889 return USERSHARE_MALFORMED_ACL_DEF;
8891 if (lines[4][9] == 'y') {
8892 *pallow_guest = True;
8895 /* Backwards compatible extension to file version #2. */
8897 if (strncmp(lines[5], "sharename=", 10) != 0) {
8898 return USERSHARE_MALFORMED_SHARENAME_DEF;
8900 if (!strequal(&lines[5][10], servicename)) {
8901 return USERSHARE_BAD_SHARENAME;
8903 *pp_cp_servicename = talloc_strdup(ctx, &lines[5][10]);
8904 if (!*pp_cp_servicename) {
8905 return USERSHARE_POSIX_ERR;
8910 if (*pp_cp_servicename == NULL) {
8911 *pp_cp_servicename = talloc_strdup(ctx, servicename);
8912 if (!*pp_cp_servicename) {
8913 return USERSHARE_POSIX_ERR;
8917 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
8918 /* Path didn't change, no checks needed. */
8919 *pp_sharepath = sharepath;
8920 *pp_comment = comment;
8921 return USERSHARE_OK;
8924 /* The path *must* be absolute. */
8925 if (sharepath[0] != '/') {
8926 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
8927 servicename, sharepath));
8928 return USERSHARE_PATH_NOT_ABSOLUTE;
8931 /* If there is a usershare prefix deny list ensure one of these paths
8932 doesn't match the start of the user given path. */
8933 if (prefixdenylist) {
8935 for ( i=0; prefixdenylist[i]; i++ ) {
8936 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
8937 servicename, i, prefixdenylist[i], sharepath ));
8938 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
8939 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
8940 "usershare prefix deny list entries.\n",
8941 servicename, sharepath));
8942 return USERSHARE_PATH_IS_DENIED;
8947 /* If there is a usershare prefix allow list ensure one of these paths
8948 does match the start of the user given path. */
8950 if (prefixallowlist) {
8952 for ( i=0; prefixallowlist[i]; i++ ) {
8953 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
8954 servicename, i, prefixallowlist[i], sharepath ));
8955 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
8959 if (prefixallowlist[i] == NULL) {
8960 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
8961 "usershare prefix allow list entries.\n",
8962 servicename, sharepath));
8963 return USERSHARE_PATH_NOT_ALLOWED;
8967 /* Ensure this is pointing to a directory. */
8968 dp = sys_opendir(sharepath);
8971 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
8972 servicename, sharepath));
8973 return USERSHARE_PATH_NOT_DIRECTORY;
8976 /* Ensure the owner of the usershare file has permission to share
8979 if (sys_stat(sharepath, &sbuf, false) == -1) {
8980 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
8981 servicename, sharepath, strerror(errno) ));
8983 return USERSHARE_POSIX_ERR;
8988 if (!S_ISDIR(sbuf.st_ex_mode)) {
8989 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
8990 servicename, sharepath ));
8991 return USERSHARE_PATH_NOT_DIRECTORY;
8994 /* Check if sharing is restricted to owner-only. */
8995 /* psbuf is the stat of the usershare definition file,
8996 sbuf is the stat of the target directory to be shared. */
8998 if (lp_usershare_owner_only()) {
8999 /* root can share anything. */
9000 if ((psbuf->st_ex_uid != 0) && (sbuf.st_ex_uid != psbuf->st_ex_uid)) {
9001 return USERSHARE_PATH_NOT_ALLOWED;
9005 *pp_sharepath = sharepath;
9006 *pp_comment = comment;
9007 return USERSHARE_OK;
9010 /***************************************************************************
9011 Deal with a usershare file.
9014 -1 - Bad name, invalid contents.
9015 - service name already existed and not a usershare, problem
9016 with permissions to share directory etc.
9017 ***************************************************************************/
9019 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
9021 SMB_STRUCT_STAT sbuf;
9022 SMB_STRUCT_STAT lsbuf;
9024 char *sharepath = NULL;
9025 char *comment = NULL;
9026 char *cp_service_name = NULL;
9027 char **lines = NULL;
9031 TALLOC_CTX *ctx = talloc_stackframe();
9032 struct security_descriptor *psd = NULL;
9033 bool guest_ok = False;
9034 char *canon_name = NULL;
9035 bool added_service = false;
9038 /* Ensure share name doesn't contain invalid characters. */
9039 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
9040 DEBUG(0,("process_usershare_file: share name %s contains "
9041 "invalid characters (any of %s)\n",
9042 file_name, INVALID_SHARENAME_CHARS ));
9046 canon_name = canonicalize_servicename(ctx, file_name);
9051 fname = talloc_asprintf(ctx, "%s/%s", dir_name, file_name);
9056 /* Minimize the race condition by doing an lstat before we
9057 open and fstat. Ensure this isn't a symlink link. */
9059 if (sys_lstat(fname, &lsbuf, false) != 0) {
9060 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
9061 fname, strerror(errno) ));
9065 /* This must be a regular file, not a symlink, directory or
9066 other strange filetype. */
9067 if (!check_usershare_stat(fname, &lsbuf)) {
9072 TDB_DATA data = dbwrap_fetch_bystring(
9073 ServiceHash, canon_name, canon_name);
9077 if ((data.dptr != NULL) && (data.dsize == sizeof(iService))) {
9078 iService = *(int *)data.dptr;
9082 if (iService != -1 &&
9083 timespec_compare(&ServicePtrs[iService]->usershare_last_mod,
9084 &lsbuf.st_ex_mtime) == 0) {
9085 /* Nothing changed - Mark valid and return. */
9086 DEBUG(10,("process_usershare_file: service %s not changed.\n",
9088 ServicePtrs[iService]->usershare = USERSHARE_VALID;
9093 /* Try and open the file read only - no symlinks allowed. */
9095 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
9097 fd = sys_open(fname, O_RDONLY, 0);
9101 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
9102 fname, strerror(errno) ));
9106 /* Now fstat to be *SURE* it's a regular file. */
9107 if (sys_fstat(fd, &sbuf, false) != 0) {
9109 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
9110 fname, strerror(errno) ));
9114 /* Is it the same dev/inode as was lstated ? */
9115 if (lsbuf.st_ex_dev != sbuf.st_ex_dev || lsbuf.st_ex_ino != sbuf.st_ex_ino) {
9117 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
9118 "Symlink spoofing going on ?\n", fname ));
9122 /* This must be a regular file, not a symlink, directory or
9123 other strange filetype. */
9124 if (!check_usershare_stat(fname, &sbuf)) {
9128 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE, NULL);
9131 if (lines == NULL) {
9132 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
9133 fname, (unsigned int)sbuf.st_ex_uid ));
9137 if (parse_usershare_file(ctx, &sbuf, file_name,
9138 iService, lines, numlines, &sharepath,
9139 &comment, &cp_service_name,
9140 &psd, &guest_ok) != USERSHARE_OK) {
9144 /* Everything ok - add the service possibly using a template. */
9146 const struct service *sp = &sDefault;
9147 if (snum_template != -1) {
9148 sp = ServicePtrs[snum_template];
9151 if ((iService = add_a_service(sp, cp_service_name)) < 0) {
9152 DEBUG(0, ("process_usershare_file: Failed to add "
9153 "new service %s\n", cp_service_name));
9157 added_service = true;
9159 /* Read only is controlled by usershare ACL below. */
9160 ServicePtrs[iService]->bRead_only = False;
9163 /* Write the ACL of the new/modified share. */
9164 if (!set_share_security(canon_name, psd)) {
9165 DEBUG(0, ("process_usershare_file: Failed to set share "
9166 "security for user share %s\n",
9171 /* If from a template it may be marked invalid. */
9172 ServicePtrs[iService]->valid = True;
9174 /* Set the service as a valid usershare. */
9175 ServicePtrs[iService]->usershare = USERSHARE_VALID;
9177 /* Set guest access. */
9178 if (lp_usershare_allow_guests()) {
9179 ServicePtrs[iService]->bGuest_ok = guest_ok;
9182 /* And note when it was loaded. */
9183 ServicePtrs[iService]->usershare_last_mod = sbuf.st_ex_mtime;
9184 string_set(&ServicePtrs[iService]->szPath, sharepath);
9185 string_set(&ServicePtrs[iService]->comment, comment);
9191 if (ret == -1 && iService != -1 && added_service) {
9192 lp_remove_service(iService);
9200 /***************************************************************************
9201 Checks if a usershare entry has been modified since last load.
9202 ***************************************************************************/
9204 static bool usershare_exists(int iService, struct timespec *last_mod)
9206 SMB_STRUCT_STAT lsbuf;
9207 const char *usersharepath = Globals.szUsersharePath;
9210 if (asprintf(&fname, "%s/%s",
9212 ServicePtrs[iService]->szService) < 0) {
9216 if (sys_lstat(fname, &lsbuf, false) != 0) {
9221 if (!S_ISREG(lsbuf.st_ex_mode)) {
9227 *last_mod = lsbuf.st_ex_mtime;
9231 /***************************************************************************
9232 Load a usershare service by name. Returns a valid servicenumber or -1.
9233 ***************************************************************************/
9235 int load_usershare_service(const char *servicename)
9237 SMB_STRUCT_STAT sbuf;
9238 const char *usersharepath = Globals.szUsersharePath;
9239 int max_user_shares = Globals.iUsershareMaxShares;
9240 int snum_template = -1;
9242 if (*usersharepath == 0 || max_user_shares == 0) {
9246 if (sys_stat(usersharepath, &sbuf, false) != 0) {
9247 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
9248 usersharepath, strerror(errno) ));
9252 if (!S_ISDIR(sbuf.st_ex_mode)) {
9253 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
9259 * This directory must be owned by root, and have the 't' bit set.
9260 * It also must not be writable by "other".
9264 if (sbuf.st_ex_uid != 0 || !(sbuf.st_ex_mode & S_ISVTX) || (sbuf.st_ex_mode & S_IWOTH)) {
9266 if (sbuf.st_ex_uid != 0 || (sbuf.st_ex_mode & S_IWOTH)) {
9268 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
9269 "or does not have the sticky bit 't' set or is writable by anyone.\n",
9274 /* Ensure the template share exists if it's set. */
9275 if (Globals.szUsershareTemplateShare[0]) {
9276 /* We can't use lp_servicenumber here as we are recommending that
9277 template shares have -valid=False set. */
9278 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
9279 if (ServicePtrs[snum_template]->szService &&
9280 strequal(ServicePtrs[snum_template]->szService,
9281 Globals.szUsershareTemplateShare)) {
9286 if (snum_template == -1) {
9287 DEBUG(0,("load_usershare_service: usershare template share %s "
9288 "does not exist.\n",
9289 Globals.szUsershareTemplateShare ));
9294 return process_usershare_file(usersharepath, servicename, snum_template);
9297 /***************************************************************************
9298 Load all user defined shares from the user share directory.
9299 We only do this if we're enumerating the share list.
9300 This is the function that can delete usershares that have
9302 ***************************************************************************/
9304 int load_usershare_shares(struct smbd_server_connection *sconn)
9307 SMB_STRUCT_STAT sbuf;
9308 SMB_STRUCT_DIRENT *de;
9309 int num_usershares = 0;
9310 int max_user_shares = Globals.iUsershareMaxShares;
9311 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
9312 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
9313 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
9315 int snum_template = -1;
9316 const char *usersharepath = Globals.szUsersharePath;
9317 int ret = lp_numservices();
9319 if (max_user_shares == 0 || *usersharepath == '\0') {
9320 return lp_numservices();
9323 if (sys_stat(usersharepath, &sbuf, false) != 0) {
9324 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
9325 usersharepath, strerror(errno) ));
9330 * This directory must be owned by root, and have the 't' bit set.
9331 * It also must not be writable by "other".
9335 if (sbuf.st_ex_uid != 0 || !(sbuf.st_ex_mode & S_ISVTX) || (sbuf.st_ex_mode & S_IWOTH)) {
9337 if (sbuf.st_ex_uid != 0 || (sbuf.st_ex_mode & S_IWOTH)) {
9339 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
9340 "or does not have the sticky bit 't' set or is writable by anyone.\n",
9345 /* Ensure the template share exists if it's set. */
9346 if (Globals.szUsershareTemplateShare[0]) {
9347 /* We can't use lp_servicenumber here as we are recommending that
9348 template shares have -valid=False set. */
9349 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
9350 if (ServicePtrs[snum_template]->szService &&
9351 strequal(ServicePtrs[snum_template]->szService,
9352 Globals.szUsershareTemplateShare)) {
9357 if (snum_template == -1) {
9358 DEBUG(0,("load_usershare_shares: usershare template share %s "
9359 "does not exist.\n",
9360 Globals.szUsershareTemplateShare ));
9365 /* Mark all existing usershares as pending delete. */
9366 for (iService = iNumServices - 1; iService >= 0; iService--) {
9367 if (VALID(iService) && ServicePtrs[iService]->usershare) {
9368 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
9372 dp = sys_opendir(usersharepath);
9374 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
9375 usersharepath, strerror(errno) ));
9379 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
9380 (de = sys_readdir(dp));
9381 num_dir_entries++ ) {
9383 const char *n = de->d_name;
9385 /* Ignore . and .. */
9387 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
9393 /* Temporary file used when creating a share. */
9394 num_tmp_dir_entries++;
9397 /* Allow 20% tmp entries. */
9398 if (num_tmp_dir_entries > allowed_tmp_entries) {
9399 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
9400 "in directory %s\n",
9401 num_tmp_dir_entries, usersharepath));
9405 r = process_usershare_file(usersharepath, n, snum_template);
9407 /* Update the services count. */
9409 if (num_usershares >= max_user_shares) {
9410 DEBUG(0,("load_usershare_shares: max user shares reached "
9411 "on file %s in directory %s\n",
9412 n, usersharepath ));
9415 } else if (r == -1) {
9416 num_bad_dir_entries++;
9419 /* Allow 20% bad entries. */
9420 if (num_bad_dir_entries > allowed_bad_entries) {
9421 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
9422 "in directory %s\n",
9423 num_bad_dir_entries, usersharepath));
9427 /* Allow 20% bad entries. */
9428 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
9429 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
9430 "in directory %s\n",
9431 num_dir_entries, usersharepath));
9438 /* Sweep through and delete any non-refreshed usershares that are
9439 not currently in use. */
9440 for (iService = iNumServices - 1; iService >= 0; iService--) {
9441 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
9442 if (conn_snum_used(sconn, iService)) {
9445 /* Remove from the share ACL db. */
9446 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
9447 lp_servicename(iService) ));
9448 delete_share_security(lp_servicename(iService));
9449 free_service_byindex(iService);
9453 return lp_numservices();
9456 /********************************************************
9457 Destroy global resources allocated in this file
9458 ********************************************************/
9460 void gfree_loadparm(void)
9466 /* Free resources allocated to services */
9468 for ( i = 0; i < iNumServices; i++ ) {
9470 free_service_byindex(i);
9474 SAFE_FREE( ServicePtrs );
9477 /* Now release all resources allocated to global
9478 parameters and the default service */
9480 free_global_parameters();
9484 /***************************************************************************
9485 Allow client apps to specify that they are a client
9486 ***************************************************************************/
9487 void lp_set_in_client(bool b)
9493 /***************************************************************************
9494 Determine if we're running in a client app
9495 ***************************************************************************/
9496 bool lp_is_in_client(void)
9501 /***************************************************************************
9502 Load the services array from the services file. Return True on success,
9504 ***************************************************************************/
9506 static bool lp_load_ex(const char *pszFname,
9510 bool initialize_globals,
9511 bool allow_include_registry,
9512 bool allow_registry_shares)
9519 DEBUG(3, ("lp_load_ex: refreshing parameters\n"));
9521 bInGlobalSection = True;
9522 bGlobalOnly = global_only;
9523 bAllowIncludeRegistry = allow_include_registry;
9525 init_globals(initialize_globals);
9529 if (save_defaults) {
9534 free_param_opts(&Globals.param_opt);
9536 lp_do_parameter(-1, "idmap config * : backend", Globals.szIdmapBackend);
9538 /* We get sections first, so have to start 'behind' to make up */
9541 if (lp_config_backend_is_file()) {
9542 n2 = talloc_sub_basic(talloc_tos(), get_current_username(),
9543 current_user_info.domain,
9546 smb_panic("lp_load_ex: out of memory");
9549 add_to_file_list(pszFname, n2);
9551 bRetval = pm_process(n2, do_section, do_parameter, NULL);
9554 /* finish up the last section */
9555 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
9557 if (iServiceIndex >= 0) {
9558 bRetval = service_ok(iServiceIndex);
9562 if (lp_config_backend_is_registry()) {
9563 /* config backend changed to registry in config file */
9565 * We need to use this extra global variable here to
9566 * survive restart: init_globals uses this as a default
9567 * for ConfigBackend. Otherwise, init_globals would
9568 * send us into an endless loop here.
9570 config_backend = CONFIG_BACKEND_REGISTRY;
9572 DEBUG(1, ("lp_load_ex: changing to config backend "
9575 lp_kill_all_services();
9576 return lp_load_ex(pszFname, global_only, save_defaults,
9577 add_ipc, initialize_globals,
9578 allow_include_registry,
9579 allow_registry_shares);
9581 } else if (lp_config_backend_is_registry()) {
9582 bRetval = process_registry_globals();
9584 DEBUG(0, ("Illegal config backend given: %d\n",
9585 lp_config_backend()));
9589 if (bRetval && lp_registry_shares() && allow_registry_shares) {
9590 bRetval = process_registry_shares();
9593 lp_add_auto_services(lp_auto_services());
9596 /* When 'restrict anonymous = 2' guest connections to ipc$
9598 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
9599 if ( lp_enable_asu_support() ) {
9600 lp_add_ipc("ADMIN$", false);
9605 set_default_server_announce_type();
9606 set_allowed_client_auth();
9608 if (lp_security() == SEC_SHARE) {
9609 DEBUG(1, ("WARNING: The security=share option is deprecated\n"));
9610 } else if (lp_security() == SEC_SERVER) {
9611 DEBUG(1, ("WARNING: The security=server option is deprecated\n"));
9614 if (lp_security() == SEC_ADS && strchr(lp_passwordserver(), ':')) {
9615 DEBUG(1, ("WARNING: The optional ':port' in password server = %s is deprecated\n",
9616 lp_passwordserver()));
9621 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
9622 /* if bWINSsupport is true and we are in the client */
9623 if (lp_is_in_client() && Globals.bWINSsupport) {
9624 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
9629 fault_configure(smb_panic_s3);
9631 bAllowIncludeRegistry = true;
9636 bool lp_load(const char *pszFname,
9640 bool initialize_globals)
9642 return lp_load_ex(pszFname,
9647 true, /* allow_include_registry */
9648 false); /* allow_registry_shares*/
9651 bool lp_load_initial_only(const char *pszFname)
9653 return lp_load_ex(pszFname,
9654 true, /* global only */
9655 false, /* save_defaults */
9656 false, /* add_ipc */
9657 true, /* initialize_globals */
9658 false, /* allow_include_registry */
9659 false); /* allow_registry_shares*/
9662 bool lp_load_with_registry_shares(const char *pszFname,
9666 bool initialize_globals)
9668 return lp_load_ex(pszFname,
9673 true, /* allow_include_registry */
9674 true); /* allow_registry_shares*/
9677 /***************************************************************************
9678 Return the max number of services.
9679 ***************************************************************************/
9681 int lp_numservices(void)
9683 return (iNumServices);
9686 /***************************************************************************
9687 Display the contents of the services array in human-readable form.
9688 ***************************************************************************/
9690 void lp_dump(FILE *f, bool show_defaults, int maxtoprint)
9695 defaults_saved = False;
9699 dump_a_service(&sDefault, f);
9701 for (iService = 0; iService < maxtoprint; iService++) {
9703 lp_dump_one(f, show_defaults, iService);
9707 /***************************************************************************
9708 Display the contents of one service in human-readable form.
9709 ***************************************************************************/
9711 void lp_dump_one(FILE * f, bool show_defaults, int snum)
9714 if (ServicePtrs[snum]->szService[0] == '\0')
9716 dump_a_service(ServicePtrs[snum], f);
9720 /***************************************************************************
9721 Return the number of the service with the given name, or -1 if it doesn't
9722 exist. Note that this is a DIFFERENT ANIMAL from the internal function
9723 getservicebyname()! This works ONLY if all services have been loaded, and
9724 does not copy the found service.
9725 ***************************************************************************/
9727 int lp_servicenumber(const char *pszServiceName)
9730 fstring serviceName;
9732 if (!pszServiceName) {
9733 return GLOBAL_SECTION_SNUM;
9736 for (iService = iNumServices - 1; iService >= 0; iService--) {
9737 if (VALID(iService) && ServicePtrs[iService]->szService) {
9739 * The substitution here is used to support %U is
9742 fstrcpy(serviceName, ServicePtrs[iService]->szService);
9743 standard_sub_basic(get_current_username(),
9744 current_user_info.domain,
9745 serviceName,sizeof(serviceName));
9746 if (strequal(serviceName, pszServiceName)) {
9752 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
9753 struct timespec last_mod;
9755 if (!usershare_exists(iService, &last_mod)) {
9756 /* Remove the share security tdb entry for it. */
9757 delete_share_security(lp_servicename(iService));
9758 /* Remove it from the array. */
9759 free_service_byindex(iService);
9760 /* Doesn't exist anymore. */
9761 return GLOBAL_SECTION_SNUM;
9764 /* Has it been modified ? If so delete and reload. */
9765 if (timespec_compare(&ServicePtrs[iService]->usershare_last_mod,
9767 /* Remove it from the array. */
9768 free_service_byindex(iService);
9769 /* and now reload it. */
9770 iService = load_usershare_service(pszServiceName);
9775 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
9776 return GLOBAL_SECTION_SNUM;
9782 bool share_defined(const char *service_name)
9784 return (lp_servicenumber(service_name) != -1);
9787 /*******************************************************************
9788 A useful volume label function.
9789 ********************************************************************/
9791 const char *volume_label(int snum)
9794 const char *label = lp_volume(snum);
9796 label = lp_servicename(snum);
9799 /* This returns a 33 byte guarenteed null terminated string. */
9800 ret = talloc_strndup(talloc_tos(), label, 32);
9807 /*******************************************************************
9808 Set the server type we will announce as via nmbd.
9809 ********************************************************************/
9811 static void set_default_server_announce_type(void)
9813 default_server_announce = 0;
9814 default_server_announce |= SV_TYPE_WORKSTATION;
9815 default_server_announce |= SV_TYPE_SERVER;
9816 default_server_announce |= SV_TYPE_SERVER_UNIX;
9818 /* note that the flag should be set only if we have a
9819 printer service but nmbd doesn't actually load the
9820 services so we can't tell --jerry */
9822 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
9824 switch (lp_announce_as()) {
9825 case ANNOUNCE_AS_NT_SERVER:
9826 default_server_announce |= SV_TYPE_SERVER_NT;
9827 /* fall through... */
9828 case ANNOUNCE_AS_NT_WORKSTATION:
9829 default_server_announce |= SV_TYPE_NT;
9831 case ANNOUNCE_AS_WIN95:
9832 default_server_announce |= SV_TYPE_WIN95_PLUS;
9834 case ANNOUNCE_AS_WFW:
9835 default_server_announce |= SV_TYPE_WFW;
9841 switch (lp_server_role()) {
9842 case ROLE_DOMAIN_MEMBER:
9843 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
9845 case ROLE_DOMAIN_PDC:
9846 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
9848 case ROLE_DOMAIN_BDC:
9849 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
9851 case ROLE_STANDALONE:
9855 if (lp_time_server())
9856 default_server_announce |= SV_TYPE_TIME_SOURCE;
9858 if (lp_host_msdfs())
9859 default_server_announce |= SV_TYPE_DFS_SERVER;
9862 /***********************************************************
9863 If we are PDC then prefer us as DMB
9864 ************************************************************/
9866 bool lp_domain_master(void)
9868 if (Globals.iDomainMaster == Auto)
9869 return (lp_server_role() == ROLE_DOMAIN_PDC);
9871 return (bool)Globals.iDomainMaster;
9874 /***********************************************************
9875 If we are PDC then prefer us as DMB
9876 ************************************************************/
9878 bool lp_domain_master_true_or_auto(void)
9880 if (Globals.iDomainMaster) /* auto or yes */
9886 /***********************************************************
9887 If we are DMB then prefer us as LMB
9888 ************************************************************/
9890 bool lp_preferred_master(void)
9892 if (Globals.iPreferredMaster == Auto)
9893 return (lp_local_master() && lp_domain_master());
9895 return (bool)Globals.iPreferredMaster;
9898 /*******************************************************************
9900 ********************************************************************/
9902 void lp_remove_service(int snum)
9904 ServicePtrs[snum]->valid = False;
9905 invalid_services[num_invalid_services++] = snum;
9908 /*******************************************************************
9910 ********************************************************************/
9912 void lp_copy_service(int snum, const char *new_name)
9914 do_section(new_name, NULL);
9916 snum = lp_servicenumber(new_name);
9918 lp_do_parameter(snum, "copy", lp_servicename(snum));
9923 /*******************************************************************
9924 Get the default server type we will announce as via nmbd.
9925 ********************************************************************/
9927 int lp_default_server_announce(void)
9929 return default_server_announce;
9932 /*******************************************************************
9933 Split the announce version into major and minor numbers.
9934 ********************************************************************/
9936 int lp_major_announce_version(void)
9938 static bool got_major = False;
9939 static int major_version = DEFAULT_MAJOR_VERSION;
9944 return major_version;
9947 if ((vers = lp_announce_version()) == NULL)
9948 return major_version;
9950 if ((p = strchr_m(vers, '.')) == 0)
9951 return major_version;
9954 major_version = atoi(vers);
9955 return major_version;
9958 int lp_minor_announce_version(void)
9960 static bool got_minor = False;
9961 static int minor_version = DEFAULT_MINOR_VERSION;
9966 return minor_version;
9969 if ((vers = lp_announce_version()) == NULL)
9970 return minor_version;
9972 if ((p = strchr_m(vers, '.')) == 0)
9973 return minor_version;
9976 minor_version = atoi(p);
9977 return minor_version;
9980 /***********************************************************
9981 Set the global name resolution order (used in smbclient).
9982 ************************************************************/
9984 void lp_set_name_resolve_order(const char *new_order)
9986 string_set(&Globals.szNameResolveOrder, new_order);
9989 const char *lp_printername(int snum)
9991 const char *ret = _lp_printername(snum);
9992 if (ret == NULL || (ret != NULL && *ret == '\0'))
9993 ret = lp_const_servicename(snum);
9999 /***********************************************************
10000 Allow daemons such as winbindd to fix their logfile name.
10001 ************************************************************/
10003 void lp_set_logfile(const char *name)
10005 string_set(&Globals.szLogFile, name);
10006 debug_set_logfile(name);
10009 /*******************************************************************
10010 Return the max print jobs per queue.
10011 ********************************************************************/
10013 int lp_maxprintjobs(int snum)
10015 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
10016 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
10017 maxjobs = PRINT_MAX_JOBID - 1;
10022 const char *lp_printcapname(void)
10024 if ((Globals.szPrintcapname != NULL) &&
10025 (Globals.szPrintcapname[0] != '\0'))
10026 return Globals.szPrintcapname;
10028 if (sDefault.iPrinting == PRINT_CUPS) {
10036 if (sDefault.iPrinting == PRINT_BSD)
10037 return "/etc/printcap";
10039 return PRINTCAP_NAME;
10042 static uint32 spoolss_state;
10044 bool lp_disable_spoolss( void )
10046 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
10047 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
10049 return spoolss_state == SVCCTL_STOPPED ? True : False;
10052 void lp_set_spoolss_state( uint32 state )
10054 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
10056 spoolss_state = state;
10059 uint32 lp_get_spoolss_state( void )
10061 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
10064 /*******************************************************************
10065 Ensure we don't use sendfile if server smb signing is active.
10066 ********************************************************************/
10068 bool lp_use_sendfile(int snum, struct smb_signing_state *signing_state)
10070 bool sign_active = false;
10072 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
10073 if (get_Protocol() < PROTOCOL_NT1) {
10076 if (signing_state) {
10077 sign_active = smb_signing_is_active(signing_state);
10079 return (_lp_use_sendfile(snum) &&
10080 (get_remote_arch() != RA_WIN95) &&
10084 /*******************************************************************
10085 Turn off sendfile if we find the underlying OS doesn't support it.
10086 ********************************************************************/
10088 void set_use_sendfile(int snum, bool val)
10090 if (LP_SNUM_OK(snum))
10091 ServicePtrs[snum]->bUseSendfile = val;
10093 sDefault.bUseSendfile = val;
10096 /*******************************************************************
10097 Turn off storing DOS attributes if this share doesn't support it.
10098 ********************************************************************/
10100 void set_store_dos_attributes(int snum, bool val)
10102 if (!LP_SNUM_OK(snum))
10104 ServicePtrs[(snum)]->bStoreDosAttributes = val;
10107 void lp_set_mangling_method(const char *new_method)
10109 string_set(&Globals.szManglingMethod, new_method);
10112 /*******************************************************************
10113 Global state for POSIX pathname processing.
10114 ********************************************************************/
10116 static bool posix_pathnames;
10118 bool lp_posix_pathnames(void)
10120 return posix_pathnames;
10123 /*******************************************************************
10124 Change everything needed to ensure POSIX pathname processing (currently
10126 ********************************************************************/
10128 void lp_set_posix_pathnames(void)
10130 posix_pathnames = True;
10133 /*******************************************************************
10134 Global state for POSIX lock processing - CIFS unix extensions.
10135 ********************************************************************/
10137 bool posix_default_lock_was_set;
10138 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
10140 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
10142 if (posix_default_lock_was_set) {
10143 return posix_cifsx_locktype;
10145 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
10149 /*******************************************************************
10150 ********************************************************************/
10152 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
10154 posix_default_lock_was_set = True;
10155 posix_cifsx_locktype = val;
10158 int lp_min_receive_file_size(void)
10160 if (Globals.iminreceivefile < 0) {
10163 return MIN(Globals.iminreceivefile, BUFFER_SIZE);
10166 /*******************************************************************
10167 If socket address is an empty character string, it is necessary to
10168 define it as "0.0.0.0".
10169 ********************************************************************/
10171 const char *lp_socket_address(void)
10173 char *sock_addr = Globals.szSocketAddress;
10175 if (sock_addr[0] == '\0'){
10176 string_set(&Globals.szSocketAddress, "0.0.0.0");
10178 return Globals.szSocketAddress;
10181 void lp_set_passdb_backend(const char *backend)
10183 string_set(&Globals.szPassdbBackend, backend);
10186 /*******************************************************************
10187 Safe wide links checks.
10188 This helper function always verify the validity of wide links,
10189 even after a configuration file reload.
10190 ********************************************************************/
10192 static bool lp_widelinks_internal(int snum)
10194 return (bool)(LP_SNUM_OK(snum)? ServicePtrs[(snum)]->bWidelinks :
10195 sDefault.bWidelinks);
10198 void widelinks_warning(int snum)
10200 if (lp_unix_extensions() && lp_widelinks_internal(snum)) {
10201 DEBUG(0,("Share '%s' has wide links and unix extensions enabled. "
10202 "These parameters are incompatible. "
10203 "Wide links will be disabled for this share.\n",
10204 lp_servicename(snum) ));
10208 bool lp_widelinks(int snum)
10210 /* wide links is always incompatible with unix extensions */
10211 if (lp_unix_extensions()) {
10215 return lp_widelinks_internal(snum);
10218 bool lp_writeraw(void)
10220 if (lp_async_smb_echo_handler()) {
10223 return _lp_writeraw();
10226 bool lp_readraw(void)
10228 if (lp_async_smb_echo_handler()) {
10231 return _lp_readraw();