2 Unix SMB/CIFS implementation.
3 service (connection) opening and closing
4 Copyright (C) Andrew Tridgell 1992-1998
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 extern userdom_struct current_user_info;
24 static bool canonicalize_connect_path(connection_struct *conn)
26 #ifdef REALPATH_TAKES_NULL
28 char *resolved_name = SMB_VFS_REALPATH(conn,conn->connectpath,NULL);
32 ret = set_conn_connectpath(conn,resolved_name);
33 SAFE_FREE(resolved_name);
36 char resolved_name_buf[PATH_MAX+1];
37 char *resolved_name = SMB_VFS_REALPATH(conn,conn->connectpath,resolved_name_buf);
41 return set_conn_connectpath(conn,resolved_name);
42 #endif /* REALPATH_TAKES_NULL */
45 /****************************************************************************
46 Ensure when setting connectpath it is a canonicalized (no ./ // or ../)
47 absolute path stating in / and not ending in /.
48 Observent people will notice a similarity between this and check_path_syntax :-).
49 ****************************************************************************/
51 bool set_conn_connectpath(connection_struct *conn, const char *connectpath)
55 const char *s = connectpath;
56 bool start_of_name_component = true;
58 destname = SMB_STRDUP(connectpath);
64 *d++ = '/'; /* Always start with root. */
68 /* Eat multiple '/' */
72 if ((d > destname + 1) && (*s != '\0')) {
75 start_of_name_component = True;
79 if (start_of_name_component) {
80 if ((s[0] == '.') && (s[1] == '.') && (s[2] == '/' || s[2] == '\0')) {
81 /* Uh oh - "/../" or "/..\0" ! */
83 /* Go past the ../ or .. */
87 s += 2; /* Go past the .. */
90 /* If we just added a '/' - delete it */
91 if ((d > destname) && (*(d-1) == '/')) {
96 /* Are we at the start ? Can't go back further if so. */
98 *d++ = '/'; /* Can't delete root */
101 /* Go back one level... */
102 /* Decrement d first as d points to the *next* char to write into. */
103 for (d--; d > destname; d--) {
108 /* We're still at the start of a name component, just the previous one. */
110 } else if ((s[0] == '.') && ((s[1] == '\0') || s[1] == '/')) {
111 /* Component of pathname can't be "." only - skip the '.' . */
125 /* Get the size of the next MB character. */
126 next_codepoint(s,&siz);
147 start_of_name_component = false;
151 /* And must not end in '/' */
152 if (d > destname + 1 && (*(d-1) == '/')) {
156 DEBUG(10,("set_conn_connectpath: service %s, connectpath = %s\n",
157 lp_servicename(SNUM(conn)), destname ));
159 string_set(&conn->connectpath, destname);
164 /****************************************************************************
165 Load parameters specific to a connection/service.
166 ****************************************************************************/
168 bool set_current_service(connection_struct *conn, uint16 flags, bool do_chdir)
170 static connection_struct *last_conn;
171 static uint16 last_flags;
179 conn->lastused_count++;
184 vfs_ChDir(conn,conn->connectpath) != 0 &&
185 vfs_ChDir(conn,conn->origpath) != 0) {
186 DEBUG(0,("chdir (%s) failed\n",
191 if ((conn == last_conn) && (last_flags == flags)) {
198 /* Obey the client case sensitivity requests - only for clients that support it. */
199 switch (lp_casesensitive(snum)) {
202 /* We need this uglyness due to DOS/Win9x clients that lie about case insensitivity. */
203 enum remote_arch_types ra_type = get_remote_arch();
204 if ((ra_type != RA_SAMBA) && (ra_type != RA_CIFSFS)) {
205 /* Client can't support per-packet case sensitive pathnames. */
206 conn->case_sensitive = False;
208 conn->case_sensitive = !(flags & FLAG_CASELESS_PATHNAMES);
213 conn->case_sensitive = True;
216 conn->case_sensitive = False;
222 /****************************************************************************
223 Add a home service. Returns the new service number or -1 if fail.
224 ****************************************************************************/
226 int add_home_service(const char *service, const char *username, const char *homedir)
230 if (!service || !homedir)
233 if ((iHomeService = lp_servicenumber(HOMES_NAME)) < 0)
237 * If this is a winbindd provided username, remove
238 * the domain component before adding the service.
239 * Log a warning if the "path=" parameter does not
240 * include any macros.
244 const char *p = strchr(service,*lp_winbind_separator());
246 /* We only want the 'user' part of the string */
252 if (!lp_add_home(service, iHomeService, username, homedir)) {
256 return lp_servicenumber(service);
260 static int load_registry_service(const char *servicename)
262 struct registry_key *key;
268 struct registry_value *value;
272 if (!lp_registry_shares()) {
276 if (asprintf(&path, "%s\\%s", KEY_SMBCONF, servicename) == -1) {
280 err = reg_open_path(NULL, path, REG_KEY_READ, get_root_nt_token(),
284 if (!W_ERROR_IS_OK(err)) {
288 res = lp_add_service(servicename, -1);
294 W_ERROR_IS_OK(reg_enumvalue(key, key, i, &value_name, &value));
296 switch (value->type) {
299 if (asprintf(&tmp, "%d", value->v.dword) == -1) {
302 lp_do_parameter(res, value_name, tmp);
307 lp_do_parameter(res, value_name, value->v.sz.str);
311 /* Ignore all the rest */
315 TALLOC_FREE(value_name);
325 void load_registry_shares(void)
327 struct registry_key *key;
332 if (!lp_registry_shares()) {
336 err = reg_open_path(NULL, KEY_SMBCONF, REG_KEY_READ,
337 get_root_nt_token(), &key);
338 if (!(W_ERROR_IS_OK(err))) {
342 for (i=0; W_ERROR_IS_OK(reg_enumkey(key, key, i, &name, NULL)); i++) {
343 load_registry_service(name);
352 * Find a service entry.
354 * @param service is modified (to canonical form??)
357 int find_service(fstring service)
361 all_string_sub(service,"\\","/",0);
363 iService = lp_servicenumber(service);
365 /* now handle the special case of a home directory */
367 char *phome_dir = get_user_home_dir(talloc_tos(), service);
371 * Try mapping the servicename, it may
372 * be a Windows to unix mapped user name.
374 if(map_username(service))
375 phome_dir = get_user_home_dir(
376 talloc_tos(), service);
379 DEBUG(3,("checking for home directory %s gave %s\n",service,
380 phome_dir?phome_dir:"(NULL)"));
382 iService = add_home_service(service,service /* 'username' */, phome_dir);
385 /* If we still don't have a service, attempt to add it as a printer. */
389 if ((iPrinterService = lp_servicenumber(PRINTERS_NAME)) >= 0) {
390 DEBUG(3,("checking whether %s is a valid printer name...\n", service));
391 if (pcap_printername_ok(service)) {
392 DEBUG(3,("%s is a valid printer name\n", service));
393 DEBUG(3,("adding %s as a printer service\n", service));
394 lp_add_printer(service, iPrinterService);
395 iService = lp_servicenumber(service);
397 DEBUG(0,("failed to add %s as a printer service!\n", service));
400 DEBUG(3,("%s is not a valid printer name\n", service));
405 /* Check for default vfs service? Unsure whether to implement this */
410 iService = load_registry_service(service);
413 /* Is it a usershare service ? */
414 if (iService < 0 && *lp_usershare_path()) {
415 /* Ensure the name is canonicalized. */
417 iService = load_usershare_service(service);
420 /* just possibly it's a default service? */
422 char *pdefservice = lp_defaultservice();
423 if (pdefservice && *pdefservice && !strequal(pdefservice,service) && !strstr_m(service,"..")) {
425 * We need to do a local copy here as lp_defaultservice()
426 * returns one of the rotating lp_string buffers that
427 * could get overwritten by the recursive find_service() call
428 * below. Fix from Josef Hinteregger <joehtg@joehtg.co.at>.
430 char *defservice = SMB_STRDUP(pdefservice);
436 /* Disallow anything except explicit share names. */
437 if (strequal(defservice,HOMES_NAME) ||
438 strequal(defservice, PRINTERS_NAME) ||
439 strequal(defservice, "IPC$")) {
440 SAFE_FREE(defservice);
444 iService = find_service(defservice);
446 all_string_sub(service, "_","/",0);
447 iService = lp_add_service(service, iService);
449 SAFE_FREE(defservice);
454 if (!VALID_SNUM(iService)) {
455 DEBUG(0,("Invalid snum %d for %s\n",iService, service));
463 DEBUG(3,("find_service() failed to find service %s\n", service));
469 /****************************************************************************
470 do some basic sainity checks on the share.
471 This function modifies dev, ecode.
472 ****************************************************************************/
474 static NTSTATUS share_sanity_checks(int snum, fstring dev)
477 if (!lp_snum_ok(snum) ||
478 !check_access(smbd_server_fd(),
479 lp_hostsallow(snum), lp_hostsdeny(snum))) {
480 return NT_STATUS_ACCESS_DENIED;
483 if (dev[0] == '?' || !dev[0]) {
484 if (lp_print_ok(snum)) {
485 fstrcpy(dev,"LPT1:");
486 } else if (strequal(lp_fstype(snum), "IPC")) {
495 if (lp_print_ok(snum)) {
496 if (!strequal(dev, "LPT1:")) {
497 return NT_STATUS_BAD_DEVICE_TYPE;
499 } else if (strequal(lp_fstype(snum), "IPC")) {
500 if (!strequal(dev, "IPC")) {
501 return NT_STATUS_BAD_DEVICE_TYPE;
503 } else if (!strequal(dev, "A:")) {
504 return NT_STATUS_BAD_DEVICE_TYPE;
507 /* Behave as a printer if we are supposed to */
508 if (lp_print_ok(snum) && (strcmp(dev, "A:") == 0)) {
509 fstrcpy(dev, "LPT1:");
515 static NTSTATUS find_forced_user(connection_struct *conn, bool vuser_is_guest, fstring username)
517 int snum = conn->params->service;
518 char *fuser, *found_username;
521 if (!(fuser = talloc_string_sub(conn->mem_ctx, lp_force_user(snum), "%S",
522 lp_servicename(snum)))) {
523 return NT_STATUS_NO_MEMORY;
526 result = create_token_from_username(conn->mem_ctx, fuser, vuser_is_guest,
527 &conn->uid, &conn->gid, &found_username,
528 &conn->nt_user_token);
529 if (!NT_STATUS_IS_OK(result)) {
533 fstrcpy(username, found_username);
536 TALLOC_FREE(found_username);
541 * Go through lookup_name etc to find the force'd group.
543 * Create a new token from src_token, replacing the primary group sid with the
547 static NTSTATUS find_forced_group(bool force_user,
548 int snum, const char *username,
552 NTSTATUS result = NT_STATUS_NO_SUCH_GROUP;
555 enum lsa_SidType type;
557 bool user_must_be_member = False;
560 ZERO_STRUCTP(pgroup_sid);
563 mem_ctx = talloc_new(NULL);
564 if (mem_ctx == NULL) {
565 DEBUG(0, ("talloc_new failed\n"));
566 return NT_STATUS_NO_MEMORY;
569 groupname = talloc_strdup(mem_ctx, lp_force_group(snum));
570 if (groupname == NULL) {
571 DEBUG(1, ("talloc_strdup failed\n"));
572 result = NT_STATUS_NO_MEMORY;
576 if (groupname[0] == '+') {
577 user_must_be_member = True;
581 groupname = talloc_string_sub(mem_ctx, groupname,
582 "%S", lp_servicename(snum));
584 if (!lookup_name_smbconf(mem_ctx, groupname,
585 LOOKUP_NAME_ALL|LOOKUP_NAME_GROUP,
586 NULL, NULL, &group_sid, &type)) {
587 DEBUG(10, ("lookup_name_smbconf(%s) failed\n",
592 if ((type != SID_NAME_DOM_GRP) && (type != SID_NAME_ALIAS) &&
593 (type != SID_NAME_WKN_GRP)) {
594 DEBUG(10, ("%s is a %s, not a group\n", groupname,
595 sid_type_lookup(type)));
599 if (!sid_to_gid(&group_sid, &gid)) {
600 DEBUG(10, ("sid_to_gid(%s) for %s failed\n",
601 sid_string_dbg(&group_sid), groupname));
606 * If the user has been forced and the forced group starts with a '+',
607 * then we only set the group to be the forced group if the forced
608 * user is a member of that group. Otherwise, the meaning of the '+'
612 if (force_user && user_must_be_member) {
613 if (user_in_group_sid(username, &group_sid)) {
614 sid_copy(pgroup_sid, &group_sid);
616 DEBUG(3,("Forced group %s for member %s\n",
617 groupname, username));
619 DEBUG(0,("find_forced_group: forced user %s is not a member "
620 "of forced group %s. Disallowing access.\n",
621 username, groupname ));
622 result = NT_STATUS_MEMBER_NOT_IN_GROUP;
626 sid_copy(pgroup_sid, &group_sid);
628 DEBUG(3,("Forced group %s\n", groupname));
631 result = NT_STATUS_OK;
633 TALLOC_FREE(mem_ctx);
637 /****************************************************************************
638 Make a connection, given the snum to connect to, and the vuser of the
639 connecting user if appropriate.
640 ****************************************************************************/
642 static connection_struct *make_connection_snum(int snum, user_struct *vuser,
647 struct passwd *pass = NULL;
649 connection_struct *conn;
654 char addr[INET6_ADDRSTRLEN];
655 bool on_err_call_dis_hook = false;
659 SET_STAT_INVALID(st);
661 if (NT_STATUS_IS_ERR(*status = share_sanity_checks(snum, dev))) {
667 DEBUG(0,("Couldn't find free connection.\n"));
668 *status = NT_STATUS_INSUFFICIENT_RESOURCES;
672 conn->params->service = snum;
673 conn->nt_user_token = NULL;
675 if (lp_guest_only(snum)) {
676 const char *guestname = lp_guestaccount();
678 char *found_username = NULL;
681 pass = getpwnam_alloc(NULL, guestname);
683 DEBUG(0,("make_connection_snum: Invalid guest "
684 "account %s??\n",guestname));
686 *status = NT_STATUS_NO_SUCH_USER;
689 status2 = create_token_from_username(conn->mem_ctx, pass->pw_name, True,
690 &conn->uid, &conn->gid,
692 &conn->nt_user_token);
693 if (!NT_STATUS_IS_OK(status2)) {
699 fstrcpy(user, found_username);
700 string_set(&conn->user,user);
701 conn->force_user = True;
702 TALLOC_FREE(found_username);
704 DEBUG(3,("Guest only user %s\n",user));
707 if (!lp_guest_ok(snum)) {
708 DEBUG(2, ("guest user (from session setup) "
709 "not permitted to access this share "
710 "(%s)\n", lp_servicename(snum)));
712 *status = NT_STATUS_ACCESS_DENIED;
716 if (!user_ok_token(vuser->user.unix_name,
717 vuser->nt_user_token, snum)) {
718 DEBUG(2, ("user '%s' (from session setup) not "
719 "permitted to access this share "
720 "(%s)\n", vuser->user.unix_name,
721 lp_servicename(snum)));
723 *status = NT_STATUS_ACCESS_DENIED;
727 conn->vuid = vuser->vuid;
728 conn->uid = vuser->uid;
729 conn->gid = vuser->gid;
730 string_set(&conn->user,vuser->user.unix_name);
731 fstrcpy(user,vuser->user.unix_name);
732 guest = vuser->guest;
733 } else if (lp_security() == SEC_SHARE) {
735 char *found_username = NULL;
737 /* add it as a possible user name if we
738 are in share mode security */
739 add_session_user(lp_servicename(snum));
740 /* shall we let them in? */
741 if (!authorise_login(snum,user,password,&guest)) {
742 DEBUG( 2, ( "Invalid username/password for [%s]\n",
743 lp_servicename(snum)) );
745 *status = NT_STATUS_WRONG_PASSWORD;
748 pass = Get_Pwnam_alloc(talloc_tos(), user);
749 status2 = create_token_from_username(conn->mem_ctx, pass->pw_name, True,
750 &conn->uid, &conn->gid,
752 &conn->nt_user_token);
754 if (!NT_STATUS_IS_OK(status2)) {
759 fstrcpy(user, found_username);
760 string_set(&conn->user,user);
761 TALLOC_FREE(found_username);
762 conn->force_user = True;
764 DEBUG(0, ("invalid VUID (vuser) but not in security=share\n"));
766 *status = NT_STATUS_ACCESS_DENIED;
770 add_session_user(user);
772 safe_strcpy(conn->client_address,
773 client_addr(get_client_fd(),addr,sizeof(addr)),
774 sizeof(conn->client_address)-1);
775 conn->num_files_open = 0;
776 conn->lastused = conn->lastused_count = time(NULL);
778 conn->printer = (strncmp(dev,"LPT",3) == 0);
779 conn->ipc = ( (strncmp(dev,"IPC",3) == 0) ||
780 ( lp_enable_asu_support() && strequal(dev,"ADMIN$")) );
783 /* Case options for the share. */
784 if (lp_casesensitive(snum) == Auto) {
785 /* We will be setting this per packet. Set to be case
786 * insensitive for now. */
787 conn->case_sensitive = False;
789 conn->case_sensitive = (bool)lp_casesensitive(snum);
792 conn->case_preserve = lp_preservecase(snum);
793 conn->short_case_preserve = lp_shortpreservecase(snum);
795 conn->encrypt_level = lp_smb_encrypt(snum);
797 conn->veto_list = NULL;
798 conn->hide_list = NULL;
799 conn->veto_oplock_list = NULL;
800 conn->aio_write_behind_list = NULL;
801 string_set(&conn->dirpath,"");
802 string_set(&conn->user,user);
804 conn->read_only = lp_readonly(SNUM(conn));
805 conn->admin_user = False;
808 * If force user is true, then store the given userid and the gid of
809 * the user we're forcing.
810 * For auxiliary groups see below.
813 if (*lp_force_user(snum)) {
816 status2 = find_forced_user(conn,
817 (vuser != NULL) && vuser->guest,
819 if (!NT_STATUS_IS_OK(status2)) {
824 string_set(&conn->user,user);
825 conn->force_user = True;
826 DEBUG(3,("Forced user %s\n",user));
830 * If force group is true, then override
831 * any groupid stored for the connecting user.
834 if (*lp_force_group(snum)) {
838 status2 = find_forced_group(conn->force_user,
840 &group_sid, &conn->gid);
841 if (!NT_STATUS_IS_OK(status2)) {
847 if ((conn->nt_user_token == NULL) && (vuser != NULL)) {
849 /* Not force user and not security=share, but force
850 * group. vuser has a token to copy */
852 conn->nt_user_token = dup_nt_token(
853 NULL, vuser->nt_user_token);
854 if (conn->nt_user_token == NULL) {
855 DEBUG(0, ("dup_nt_token failed\n"));
857 *status = NT_STATUS_NO_MEMORY;
862 /* If conn->nt_user_token is still NULL, we have
863 * security=share. This means ignore the SID, as we had no
864 * vuser to copy from */
866 if (conn->nt_user_token != NULL) {
867 /* Overwrite the primary group sid */
868 sid_copy(&conn->nt_user_token->user_sids[1],
872 conn->force_group = True;
875 if (conn->nt_user_token != NULL) {
878 /* We have a share-specific token from force [user|group].
879 * This means we have to create the list of unix groups from
880 * the list of sids. */
885 for (i=0; i<conn->nt_user_token->num_sids; i++) {
887 DOM_SID *sid = &conn->nt_user_token->user_sids[i];
889 if (!sid_to_gid(sid, &gid)) {
890 DEBUG(10, ("Could not convert SID %s to gid, "
892 sid_string_dbg(sid)));
895 if (!add_gid_to_array_unique(conn->mem_ctx, gid, &conn->groups,
897 DEBUG(0, ("add_gid_to_array_unique failed\n"));
899 *status = NT_STATUS_NO_MEMORY;
906 char *s = talloc_sub_advanced(talloc_tos(),
907 lp_servicename(SNUM(conn)), conn->user,
908 conn->connectpath, conn->gid,
909 get_current_username(),
910 current_user_info.domain,
914 *status = NT_STATUS_NO_MEMORY;
918 if (!set_conn_connectpath(conn,s)) {
921 *status = NT_STATUS_NO_MEMORY;
924 DEBUG(3,("Connect path is '%s' for service [%s]\n",s,
925 lp_servicename(snum)));
930 * New code to check if there's a share security descripter
931 * added from NT server manager. This is done after the
932 * smb.conf checks are done as we need a uid and token. JRA.
937 bool can_write = False;
938 NT_USER_TOKEN *token = conn->nt_user_token ?
939 conn->nt_user_token :
940 (vuser ? vuser->nt_user_token : NULL);
943 * I don't believe this can happen. But the
944 * logic above is convoluted enough to confuse
945 * automated checkers, so be sure. JRA.
949 DEBUG(0,("make_connection: connection to %s "
950 "denied due to missing "
952 lp_servicename(snum)));
954 *status = NT_STATUS_ACCESS_DENIED;
958 can_write = share_access_check(token,
959 lp_servicename(snum),
963 if (!share_access_check(token,
964 lp_servicename(snum),
966 /* No access, read or write. */
967 DEBUG(0,("make_connection: connection to %s "
968 "denied due to security "
970 lp_servicename(snum)));
972 *status = NT_STATUS_ACCESS_DENIED;
975 conn->read_only = True;
979 /* Initialise VFS function pointers */
981 if (!smbd_vfs_init(conn)) {
982 DEBUG(0, ("vfs_init failed for service %s\n",
983 lp_servicename(snum)));
985 *status = NT_STATUS_BAD_NETWORK_NAME;
990 * If widelinks are disallowed we need to canonicalise the connect
991 * path here to ensure we don't have any symlinks in the
992 * connectpath. We will be checking all paths on this connection are
993 * below this directory. We must do this after the VFS init as we
994 * depend on the realpath() pointer in the vfs table. JRA.
996 if (!lp_widelinks(snum)) {
997 if (!canonicalize_connect_path(conn)) {
998 DEBUG(0, ("canonicalize_connect_path failed "
999 "for service %s, path %s\n",
1000 lp_servicename(snum),
1001 conn->connectpath));
1003 *status = NT_STATUS_BAD_NETWORK_NAME;
1008 if ((!conn->printer) && (!conn->ipc)) {
1009 conn->notify_ctx = notify_init(conn->mem_ctx, server_id_self(),
1010 smbd_messaging_context(),
1011 smbd_event_context(),
1015 /* ROOT Activities: */
1017 * Enforce the max connections parameter.
1020 if ((lp_max_connections(snum) > 0)
1021 && (count_current_connections(lp_servicename(SNUM(conn)), True) >=
1022 lp_max_connections(snum))) {
1024 DEBUG(1, ("Max connections (%d) exceeded for %s\n",
1025 lp_max_connections(snum), lp_servicename(snum)));
1027 *status = NT_STATUS_INSUFFICIENT_RESOURCES;
1032 * Get us an entry in the connections db
1034 if (!claim_connection(conn, lp_servicename(snum), 0)) {
1035 DEBUG(1, ("Could not store connections entry\n"));
1037 *status = NT_STATUS_INTERNAL_DB_ERROR;
1041 /* Preexecs are done here as they might make the dir we are to ChDir
1043 /* execute any "root preexec = " line */
1044 if (*lp_rootpreexec(snum)) {
1045 char *cmd = talloc_sub_advanced(talloc_tos(),
1046 lp_servicename(SNUM(conn)), conn->user,
1047 conn->connectpath, conn->gid,
1048 get_current_username(),
1049 current_user_info.domain,
1050 lp_rootpreexec(snum));
1051 DEBUG(5,("cmd=%s\n",cmd));
1052 ret = smbrun(cmd,NULL);
1054 if (ret != 0 && lp_rootpreexec_close(snum)) {
1055 DEBUG(1,("root preexec gave %d - failing "
1056 "connection\n", ret));
1057 yield_connection(conn, lp_servicename(snum));
1059 *status = NT_STATUS_ACCESS_DENIED;
1064 /* USER Activites: */
1065 if (!change_to_user(conn, conn->vuid)) {
1066 /* No point continuing if they fail the basic checks */
1067 DEBUG(0,("Can't become connected user!\n"));
1068 yield_connection(conn, lp_servicename(snum));
1070 *status = NT_STATUS_LOGON_FAILURE;
1074 /* Remember that a different vuid can connect later without these
1077 /* Preexecs are done here as they might make the dir we are to ChDir
1080 /* execute any "preexec = " line */
1081 if (*lp_preexec(snum)) {
1082 char *cmd = talloc_sub_advanced(talloc_tos(),
1083 lp_servicename(SNUM(conn)), conn->user,
1084 conn->connectpath, conn->gid,
1085 get_current_username(),
1086 current_user_info.domain,
1088 ret = smbrun(cmd,NULL);
1090 if (ret != 0 && lp_preexec_close(snum)) {
1091 DEBUG(1,("preexec gave %d - failing connection\n",
1093 *status = NT_STATUS_ACCESS_DENIED;
1098 #ifdef WITH_FAKE_KASERVER
1099 if (lp_afs_share(snum)) {
1104 /* Add veto/hide lists */
1105 if (!IS_IPC(conn) && !IS_PRINT(conn)) {
1106 set_namearray( &conn->veto_list, lp_veto_files(snum));
1107 set_namearray( &conn->hide_list, lp_hide_files(snum));
1108 set_namearray( &conn->veto_oplock_list, lp_veto_oplocks(snum));
1111 /* Invoke VFS make connection hook - do this before the VFS_STAT call
1112 to allow any filesystems needing user credentials to initialize
1115 if (SMB_VFS_CONNECT(conn, lp_servicename(snum), user) < 0) {
1116 DEBUG(0,("make_connection: VFS make connection failed!\n"));
1117 *status = NT_STATUS_UNSUCCESSFUL;
1121 /* Any error exit after here needs to call the disconnect hook. */
1122 on_err_call_dis_hook = true;
1124 /* win2000 does not check the permissions on the directory
1125 during the tree connect, instead relying on permission
1126 check during individual operations. To match this behaviour
1127 I have disabled this chdir check (tridge) */
1128 /* the alternative is just to check the directory exists */
1129 if ((ret = SMB_VFS_STAT(conn, conn->connectpath, &st)) != 0 ||
1130 !S_ISDIR(st.st_mode)) {
1131 if (ret == 0 && !S_ISDIR(st.st_mode)) {
1132 DEBUG(0,("'%s' is not a directory, when connecting to "
1133 "[%s]\n", conn->connectpath,
1134 lp_servicename(snum)));
1136 DEBUG(0,("'%s' does not exist or permission denied "
1137 "when connecting to [%s] Error was %s\n",
1138 conn->connectpath, lp_servicename(snum),
1141 *status = NT_STATUS_BAD_NETWORK_NAME;
1145 string_set(&conn->origpath,conn->connectpath);
1147 #if SOFTLINK_OPTIMISATION
1148 /* resolve any soft links early if possible */
1149 if (vfs_ChDir(conn,conn->connectpath) == 0) {
1150 TALLOC_CTX *ctx = talloc_tos();
1151 char *s = vfs_GetWd(ctx,s);
1153 *status = map_nt_error_from_unix(errno);
1156 if (!set_conn_connectpath(conn,s)) {
1157 *status = NT_STATUS_NO_MEMORY;
1160 vfs_ChDir(conn,conn->connectpath);
1164 /* Figure out the characteristics of the underlying filesystem. This
1165 * assumes that all the filesystem mounted withing a share path have
1166 * the same characteristics, which is likely but not guaranteed.
1169 vfs_statvfs_struct svfs;
1171 conn->fs_capabilities =
1172 FILE_CASE_SENSITIVE_SEARCH | FILE_CASE_PRESERVED_NAMES;
1174 if (SMB_VFS_STATVFS(conn, conn->connectpath, &svfs) == 0) {
1175 conn->fs_capabilities = svfs.FsCapabilities;
1180 * Print out the 'connected as' stuff here as we need
1181 * to know the effective uid and gid we will be using
1182 * (at least initially).
1185 if( DEBUGLVL( IS_IPC(conn) ? 3 : 1 ) ) {
1186 dbgtext( "%s (%s) ", get_remote_machine_name(),
1187 conn->client_address );
1188 dbgtext( "%s", srv_is_signing_active() ? "signed " : "");
1189 dbgtext( "connect to service %s ", lp_servicename(snum) );
1190 dbgtext( "initially as user %s ", user );
1191 dbgtext( "(uid=%d, gid=%d) ", (int)geteuid(), (int)getegid() );
1192 dbgtext( "(pid %d)\n", (int)sys_getpid() );
1195 /* we've finished with the user stuff - go back to root */
1196 change_to_root_user();
1201 change_to_root_user();
1202 if (on_err_call_dis_hook) {
1203 /* Call VFS disconnect hook */
1204 SMB_VFS_DISCONNECT(conn);
1206 yield_connection(conn, lp_servicename(snum));
1211 /***************************************************************************************
1212 Simple wrapper function for make_connection() to include a call to
1214 **************************************************************************************/
1216 connection_struct *make_connection_with_chdir(const char *service_in,
1218 const char *dev, uint16 vuid,
1221 connection_struct *conn = NULL;
1223 conn = make_connection(service_in, password, dev, vuid, status);
1226 * make_connection() does not change the directory for us any more
1227 * so we have to do it as a separate step --jerry
1230 if ( conn && vfs_ChDir(conn,conn->connectpath) != 0 ) {
1231 DEBUG(0,("move_driver_to_download_area: Can't change "
1232 "directory to %s for [print$] (%s)\n",
1233 conn->connectpath,strerror(errno)));
1234 yield_connection(conn, lp_servicename(SNUM(conn)));
1236 *status = NT_STATUS_UNSUCCESSFUL;
1243 /****************************************************************************
1244 Make a connection to a service.
1247 ****************************************************************************/
1249 connection_struct *make_connection(const char *service_in, DATA_BLOB password,
1250 const char *pdev, uint16 vuid,
1254 user_struct *vuser = NULL;
1258 char addr[INET6_ADDRSTRLEN];
1262 /* This must ONLY BE CALLED AS ROOT. As it exits this function as
1264 if (!non_root_mode() && (euid = geteuid()) != 0) {
1265 DEBUG(0,("make_connection: PANIC ERROR. Called as nonroot "
1266 "(%u)\n", (unsigned int)euid ));
1267 smb_panic("make_connection: PANIC ERROR. Called as nonroot\n");
1270 if (conn_num_open() > 2047) {
1271 *status = NT_STATUS_INSUFF_SERVER_RESOURCES;
1275 if(lp_security() != SEC_SHARE) {
1276 vuser = get_valid_user_struct(vuid);
1278 DEBUG(1,("make_connection: refusing to connect with "
1279 "no session setup\n"));
1280 *status = NT_STATUS_ACCESS_DENIED;
1285 /* Logic to try and connect to the correct [homes] share, preferably
1286 without too many getpwnam() lookups. This is particulary nasty for
1287 winbind usernames, where the share name isn't the same as unix
1290 The snum of the homes share is stored on the vuser at session setup
1294 if (strequal(service_in,HOMES_NAME)) {
1295 if(lp_security() != SEC_SHARE) {
1296 DATA_BLOB no_pw = data_blob_null;
1297 if (vuser->homes_snum == -1) {
1298 DEBUG(2, ("[homes] share not available for "
1299 "this user because it was not found "
1300 "or created at session setup "
1302 *status = NT_STATUS_BAD_NETWORK_NAME;
1305 DEBUG(5, ("making a connection to [homes] service "
1306 "created at session setup time\n"));
1307 return make_connection_snum(vuser->homes_snum,
1311 /* Security = share. Try with
1312 * current_user_info.smb_name as the username. */
1313 if (*current_user_info.smb_name) {
1314 fstring unix_username;
1315 fstrcpy(unix_username,
1316 current_user_info.smb_name);
1317 map_username(unix_username);
1318 snum = find_service(unix_username);
1321 DEBUG(5, ("making a connection to 'homes' "
1322 "service %s based on "
1323 "security=share\n", service_in));
1324 return make_connection_snum(snum, NULL,
1329 } else if ((lp_security() != SEC_SHARE) && (vuser->homes_snum != -1)
1330 && strequal(service_in,
1331 lp_servicename(vuser->homes_snum))) {
1332 DATA_BLOB no_pw = data_blob_null;
1333 DEBUG(5, ("making a connection to 'homes' service [%s] "
1334 "created at session setup time\n", service_in));
1335 return make_connection_snum(vuser->homes_snum,
1340 fstrcpy(service, service_in);
1342 strlower_m(service);
1344 snum = find_service(service);
1347 if (strequal(service,"IPC$") ||
1348 (lp_enable_asu_support() && strequal(service,"ADMIN$"))) {
1349 DEBUG(3,("refusing IPC connection to %s\n", service));
1350 *status = NT_STATUS_ACCESS_DENIED;
1354 DEBUG(0,("%s (%s) couldn't find service %s\n",
1355 get_remote_machine_name(),
1356 client_addr(get_client_fd(),addr,sizeof(addr)),
1358 *status = NT_STATUS_BAD_NETWORK_NAME;
1362 /* Handle non-Dfs clients attempting connections to msdfs proxy */
1363 if (lp_host_msdfs() && (*lp_msdfs_proxy(snum) != '\0')) {
1364 DEBUG(3, ("refusing connection to dfs proxy share '%s' "
1365 "(pointing to %s)\n",
1366 service, lp_msdfs_proxy(snum)));
1367 *status = NT_STATUS_BAD_NETWORK_NAME;
1371 DEBUG(5, ("making a connection to 'normal' service %s\n", service));
1373 return make_connection_snum(snum, vuser,
1378 /****************************************************************************
1380 ****************************************************************************/
1382 void close_cnum(connection_struct *conn, uint16 vuid)
1385 pipe_close_conn(conn);
1387 file_close_conn(conn);
1388 dptr_closecnum(conn);
1391 change_to_root_user();
1393 DEBUG(IS_IPC(conn)?3:1, ("%s (%s) closed connection to service %s\n",
1394 get_remote_machine_name(),
1395 conn->client_address,
1396 lp_servicename(SNUM(conn))));
1398 /* Call VFS disconnect hook */
1399 SMB_VFS_DISCONNECT(conn);
1401 yield_connection(conn, lp_servicename(SNUM(conn)));
1403 /* make sure we leave the directory available for unmount */
1404 vfs_ChDir(conn, "/");
1406 /* execute any "postexec = " line */
1407 if (*lp_postexec(SNUM(conn)) &&
1408 change_to_user(conn, vuid)) {
1409 char *cmd = talloc_sub_advanced(talloc_tos(),
1410 lp_servicename(SNUM(conn)), conn->user,
1411 conn->connectpath, conn->gid,
1412 get_current_username(),
1413 current_user_info.domain,
1414 lp_postexec(SNUM(conn)));
1417 change_to_root_user();
1420 change_to_root_user();
1421 /* execute any "root postexec = " line */
1422 if (*lp_rootpostexec(SNUM(conn))) {
1423 char *cmd = talloc_sub_advanced(talloc_tos(),
1424 lp_servicename(SNUM(conn)), conn->user,
1425 conn->connectpath, conn->gid,
1426 get_current_username(),
1427 current_user_info.domain,
1428 lp_rootpostexec(SNUM(conn)));
git.samba.org / kai / samba.git / blob