2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 BOOL in_client = False; /* Not in the client by default */
58 extern pstring user_socket_options;
59 extern enum protocol_types Protocol;
60 extern userdom_struct current_user_info;
63 #define GLOBAL_NAME "global"
67 #define PRINTERS_NAME "printers"
71 #define HOMES_NAME "homes"
74 /* the special value for the include parameter
75 * to be interpreted not as a file name but to
76 * trigger loading of the global smb.conf options
78 #ifndef INCLUDE_REGISTRY_NAME
79 #define INCLUDE_REGISTRY_NAME "registry"
82 static int regdb_last_seqnum = 0;
83 static BOOL include_registry_globals = False;
85 /* some helpful bits */
86 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
87 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
89 #define USERSHARE_VALID 1
90 #define USERSHARE_PENDING_DELETE 2
92 BOOL use_getwd_cache = True;
94 extern int extra_time_offset;
96 static BOOL defaults_saved = False;
98 typedef struct _param_opt_struct param_opt_struct;
99 struct _param_opt_struct {
100 param_opt_struct *prev, *next;
107 * This structure describes global (ie., server-wide) parameters.
113 char *display_charset;
114 char *szPrintcapname;
115 char *szAddPortCommand;
116 char *szEnumPortsCommand;
117 char *szAddPrinterCommand;
118 char *szDeletePrinterCommand;
119 char *szOs2DriverMap;
123 char *szDefaultService;
127 char *szServerString;
128 char *szAutoServices;
129 char *szPasswdProgram;
133 char *szSMBPasswdFile;
135 char *szPassdbBackend;
136 char **szPreloadModules;
137 char *szPasswordServer;
138 char *szSocketOptions;
140 char *szAfsUsernameMap;
141 int iAfsTokenLifetime;
142 char *szLogNtTokenCommand;
148 char **szWINSservers;
150 char *szRemoteAnnounce;
151 char *szRemoteBrowseSync;
152 char *szSocketAddress;
153 char *szNISHomeMapName;
154 char *szAnnounceVersion; /* This is initialised in init_globals */
157 char **szNetbiosAliases;
158 char *szNetbiosScope;
159 char *szNameResolveOrder;
161 char *szAddUserScript;
162 char *szRenameUserScript;
163 char *szDelUserScript;
164 char *szAddGroupScript;
165 char *szDelGroupScript;
166 char *szAddUserToGroupScript;
167 char *szDelUserFromGroupScript;
168 char *szSetPrimaryGroupScript;
169 char *szAddMachineScript;
170 char *szShutdownScript;
171 char *szAbortShutdownScript;
172 char *szUsernameMapScript;
173 char *szCheckPasswordScript;
180 BOOL bPassdbExpandExplicit;
181 int AlgorithmicRidBase;
182 char *szTemplateHomedir;
183 char *szTemplateShell;
184 char *szWinbindSeparator;
185 BOOL bWinbindEnumUsers;
186 BOOL bWinbindEnumGroups;
187 BOOL bWinbindUseDefaultDomain;
188 BOOL bWinbindTrustedDomainsOnly;
189 BOOL bWinbindNestedGroups;
190 int winbind_expand_groups;
191 BOOL bWinbindRefreshTickets;
192 BOOL bWinbindOfflineLogon;
193 BOOL bWinbindNormalizeNames;
194 BOOL bWinbindRpcOnly;
195 char **szIdmapDomains;
196 char **szIdmapBackend; /* deprecated */
197 char *szIdmapAllocBackend;
198 char *szAddShareCommand;
199 char *szChangeShareCommand;
200 char *szDeleteShareCommand;
202 char *szGuestaccount;
203 char *szManglingMethod;
204 char **szServicesList;
205 char *szUsersharePath;
206 char *szUsershareTemplateShare;
207 char **szUsersharePrefixAllowList;
208 char **szUsersharePrefixDenyList;
215 int open_files_db_hash_size;
223 BOOL paranoid_server_security;
226 int iMaxSmbdProcesses;
227 BOOL bDisableSpoolss;
230 int enhanced_browsing;
236 int announce_as; /* This is initialised in init_globals */
237 int machine_password_timeout;
239 int oplock_break_wait_time;
240 int winbind_cache_time;
241 int winbind_max_idle_children;
242 char **szWinbindNssInfo;
244 char *szLdapMachineSuffix;
245 char *szLdapUserSuffix;
246 char *szLdapIdmapSuffix;
247 char *szLdapGroupSuffix;
253 char *szIPrintServer;
255 char **szClusterAddresses;
257 int ldap_passwd_sync;
258 int ldap_replication_sleep;
259 int ldap_timeout; /* This is initialised in init_globals */
262 BOOL bMsAddPrinterWizard;
267 BOOL bPreferredMaster;
270 BOOL bEncryptPasswords;
275 BOOL bObeyPamRestrictions;
277 int PrintcapCacheTime;
278 BOOL bLargeReadwrite;
285 BOOL bBindInterfacesOnly;
286 BOOL bPamPasswordChange;
287 BOOL bUnixPasswdSync;
288 BOOL bPasswdChatDebug;
289 int iPasswdChatTimeout;
293 BOOL bNTStatusSupport;
295 int iMaxStatCacheSize;
297 BOOL bAllowTrustedDomains;
301 BOOL bClientLanManAuth;
302 BOOL bClientNTLMv2Auth;
303 BOOL bClientPlaintextAuth;
304 BOOL bClientUseSpnego;
305 BOOL bDebugPrefixTimestamp;
306 BOOL bDebugHiresTimestamp;
309 BOOL bEnableCoreFiles;
312 BOOL bHostnameLookups;
313 BOOL bUnixExtensions;
314 BOOL bDisableNetbios;
315 BOOL bUseKerberosKeytab;
316 BOOL bDeferSharingViolations;
317 BOOL bEnablePrivileges;
319 BOOL bUsershareOwnerOnly;
320 BOOL bUsershareAllowGuests;
321 BOOL bRegistryShares;
322 int restrict_anonymous;
323 int name_cache_timeout;
326 int client_ldap_sasl_wrapping;
327 int iUsershareMaxShares;
329 int iIdmapNegativeCacheTime;
333 param_opt_struct *param_opt;
336 static global Globals;
339 * This structure describes a single service.
345 time_t usershare_last_mod;
349 char **szInvalidUsers;
357 char *szRootPostExec;
359 char *szPrintcommand;
362 char *szLppausecommand;
363 char *szLpresumecommand;
364 char *szQueuepausecommand;
365 char *szQueueresumecommand;
367 char *szPrintjobUsername;
376 char *szVetoOplockFiles;
382 char **printer_admin;
390 int iMaxReportedPrintJobs;
393 int iCreate_force_mode;
395 int iSecurity_force_mode;
398 int iDir_Security_mask;
399 int iDir_Security_force_mode;
403 int iOplockContentionLimit;
408 BOOL bRootpreexecClose;
411 BOOL bShortCasePreserve;
413 BOOL bHideSpecialFiles;
414 BOOL bHideUnReadable;
415 BOOL bHideUnWriteableFiles;
426 BOOL bStoreDosAttributes;
439 BOOL bStrictAllocate;
443 BOOL bDeleteReadonly;
445 BOOL bDeleteVetoFiles;
448 BOOL bDosFiletimeResolution;
449 BOOL bFakeDirCreateTimes;
455 BOOL bUseClientDriver;
456 BOOL bDefaultDevmode;
457 BOOL bForcePrintername;
459 BOOL bForceUnknownAclUser;
462 BOOL bMap_acl_inherit;
465 BOOL bAclCheckPermissions;
466 BOOL bAclMapFullControl;
467 BOOL bAclGroupControl;
469 BOOL bKernelChangeNotify;
470 int iallocation_roundup_size;
474 param_opt_struct *param_opt;
476 char dummy[3]; /* for alignment */
480 /* This is a default service used to prime a services structure */
481 static service sDefault = {
483 False, /* not autoloaded */
484 0, /* not a usershare */
485 (time_t)0, /* No last mod time */
486 NULL, /* szService */
488 NULL, /* szUsername */
489 NULL, /* szInvalidUsers */
490 NULL, /* szValidUsers */
491 NULL, /* szAdminUsers */
493 NULL, /* szInclude */
494 NULL, /* szPreExec */
495 NULL, /* szPostExec */
496 NULL, /* szRootPreExec */
497 NULL, /* szRootPostExec */
498 NULL, /* szCupsOptions */
499 NULL, /* szPrintcommand */
500 NULL, /* szLpqcommand */
501 NULL, /* szLprmcommand */
502 NULL, /* szLppausecommand */
503 NULL, /* szLpresumecommand */
504 NULL, /* szQueuepausecommand */
505 NULL, /* szQueueresumecommand */
506 NULL, /* szPrintername */
507 NULL, /* szPrintjobUsername */
508 NULL, /* szDontdescend */
509 NULL, /* szHostsallow */
510 NULL, /* szHostsdeny */
511 NULL, /* szMagicScript */
512 NULL, /* szMagicOutput */
513 NULL, /* szMangledMap */
514 NULL, /* szVetoFiles */
515 NULL, /* szHideFiles */
516 NULL, /* szVetoOplockFiles */
518 NULL, /* force user */
519 NULL, /* force group */
521 NULL, /* writelist */
522 NULL, /* printer admin */
525 NULL, /* vfs objects */
526 NULL, /* szMSDfsProxy */
528 0, /* iMinPrintSpace */
529 1000, /* iMaxPrintJobs */
530 0, /* iMaxReportedPrintJobs */
531 0, /* iWriteCacheSize */
532 0744, /* iCreate_mask */
533 0000, /* iCreate_force_mode */
534 0777, /* iSecurity_mask */
535 0, /* iSecurity_force_mode */
536 0755, /* iDir_mask */
537 0000, /* iDir_force_mode */
538 0777, /* iDir_Security_mask */
539 0, /* iDir_Security_force_mode */
540 0, /* iMaxConnections */
541 CASE_LOWER, /* iDefaultCase */
542 DEFAULT_PRINTING, /* iPrinting */
543 2, /* iOplockContentionLimit */
545 1024, /* iBlock_size */
546 0, /* iDfreeCacheTime */
547 False, /* bPreexecClose */
548 False, /* bRootpreexecClose */
549 Auto, /* case sensitive */
550 True, /* case preserve */
551 True, /* short case preserve */
552 True, /* bHideDotFiles */
553 False, /* bHideSpecialFiles */
554 False, /* bHideUnReadable */
555 False, /* bHideUnWriteableFiles */
556 True, /* bBrowseable */
557 True, /* bAvailable */
558 True, /* bRead_only */
559 True, /* bNo_set_dir */
560 False, /* bGuest_only */
561 False, /* bGuest_ok */
562 False, /* bPrint_ok */
563 False, /* bMap_system */
564 False, /* bMap_hidden */
565 True, /* bMap_archive */
566 False, /* bStoreDosAttributes */
567 False, /* bDmapiSupport */
569 Auto, /* iStrictLocking */
570 True, /* bPosixLocking */
571 True, /* bShareModes */
573 True, /* bLevel2OpLocks */
574 False, /* bOnlyUser */
575 True, /* bMangledNames */
576 True, /* bWidelinks */
577 True, /* bSymlinks */
578 False, /* bSyncAlways */
579 False, /* bStrictAllocate */
580 False, /* bStrictSync */
581 '~', /* magic char */
583 False, /* bDeleteReadonly */
584 False, /* bFakeOplocks */
585 False, /* bDeleteVetoFiles */
586 False, /* bDosFilemode */
587 True, /* bDosFiletimes */
588 False, /* bDosFiletimeResolution */
589 False, /* bFakeDirCreateTimes */
590 True, /* bBlockingLocks */
591 False, /* bInheritPerms */
592 False, /* bInheritACLS */
593 False, /* bInheritOwner */
594 False, /* bMSDfsRoot */
595 False, /* bUseClientDriver */
596 True, /* bDefaultDevmode */
597 False, /* bForcePrintername */
598 True, /* bNTAclSupport */
599 False, /* bForceUnknownAclUser */
600 False, /* bUseSendfile */
601 False, /* bProfileAcls */
602 False, /* bMap_acl_inherit */
603 False, /* bAfs_Share */
604 False, /* bEASupport */
605 True, /* bAclCheckPermissions */
606 True, /* bAclMapFullControl */
607 False, /* bAclGroupControl */
608 True, /* bChangeNotify */
609 True, /* bKernelChangeNotify */
610 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
611 0, /* iAioReadSize */
612 0, /* iAioWriteSize */
613 MAP_READONLY_YES, /* iMap_readonly */
615 NULL, /* Parametric options */
620 /* local variables */
621 static service **ServicePtrs = NULL;
622 static int iNumServices = 0;
623 static int iServiceIndex = 0;
624 static TDB_CONTEXT *ServiceHash;
625 static int *invalid_services = NULL;
626 static int num_invalid_services = 0;
627 static BOOL bInGlobalSection = True;
628 static BOOL bGlobalOnly = False;
629 static int server_role;
630 static int default_server_announce;
632 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
634 /* prototypes for the special type handlers */
635 static BOOL handle_include( int snum, const char *pszParmValue, char **ptr);
636 static BOOL handle_copy( int snum, const char *pszParmValue, char **ptr);
637 static BOOL handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
638 static BOOL handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
639 static BOOL handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
640 static BOOL handle_debug_list( int snum, const char *pszParmValue, char **ptr );
641 static BOOL handle_workgroup( int snum, const char *pszParmValue, char **ptr );
642 static BOOL handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
643 static BOOL handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
644 static BOOL handle_charset( int snum, const char *pszParmValue, char **ptr );
645 static BOOL handle_printing( int snum, const char *pszParmValue, char **ptr);
647 static void set_server_role(void);
648 static void set_default_server_announce_type(void);
649 static void set_allowed_client_auth(void);
651 static const struct enum_list enum_protocol[] = {
652 {PROTOCOL_NT1, "NT1"},
653 {PROTOCOL_LANMAN2, "LANMAN2"},
654 {PROTOCOL_LANMAN1, "LANMAN1"},
655 {PROTOCOL_CORE, "CORE"},
656 {PROTOCOL_COREPLUS, "COREPLUS"},
657 {PROTOCOL_COREPLUS, "CORE+"},
661 static const struct enum_list enum_security[] = {
662 {SEC_SHARE, "SHARE"},
664 {SEC_SERVER, "SERVER"},
665 {SEC_DOMAIN, "DOMAIN"},
672 static const struct enum_list enum_printing[] = {
673 {PRINT_SYSV, "sysv"},
675 {PRINT_HPUX, "hpux"},
679 {PRINT_LPRNG, "lprng"},
680 {PRINT_CUPS, "cups"},
681 {PRINT_IPRINT, "iprint"},
683 {PRINT_LPROS2, "os2"},
685 {PRINT_TEST, "test"},
687 #endif /* DEVELOPER */
691 static const struct enum_list enum_ldap_sasl_wrapping[] = {
693 {ADS_AUTH_SASL_SIGN, "sign"},
694 {ADS_AUTH_SASL_SEAL, "seal"},
698 static const struct enum_list enum_ldap_ssl[] = {
699 {LDAP_SSL_OFF, "no"},
700 {LDAP_SSL_OFF, "No"},
701 {LDAP_SSL_OFF, "off"},
702 {LDAP_SSL_OFF, "Off"},
703 {LDAP_SSL_START_TLS, "start tls"},
704 {LDAP_SSL_START_TLS, "Start_tls"},
708 static const struct enum_list enum_ldap_passwd_sync[] = {
709 {LDAP_PASSWD_SYNC_OFF, "no"},
710 {LDAP_PASSWD_SYNC_OFF, "No"},
711 {LDAP_PASSWD_SYNC_OFF, "off"},
712 {LDAP_PASSWD_SYNC_OFF, "Off"},
713 {LDAP_PASSWD_SYNC_ON, "Yes"},
714 {LDAP_PASSWD_SYNC_ON, "yes"},
715 {LDAP_PASSWD_SYNC_ON, "on"},
716 {LDAP_PASSWD_SYNC_ON, "On"},
717 {LDAP_PASSWD_SYNC_ONLY, "Only"},
718 {LDAP_PASSWD_SYNC_ONLY, "only"},
722 /* Types of machine we can announce as. */
723 #define ANNOUNCE_AS_NT_SERVER 1
724 #define ANNOUNCE_AS_WIN95 2
725 #define ANNOUNCE_AS_WFW 3
726 #define ANNOUNCE_AS_NT_WORKSTATION 4
728 static const struct enum_list enum_announce_as[] = {
729 {ANNOUNCE_AS_NT_SERVER, "NT"},
730 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
731 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
732 {ANNOUNCE_AS_WIN95, "win95"},
733 {ANNOUNCE_AS_WFW, "WfW"},
737 static const struct enum_list enum_map_readonly[] = {
738 {MAP_READONLY_NO, "no"},
739 {MAP_READONLY_NO, "false"},
740 {MAP_READONLY_NO, "0"},
741 {MAP_READONLY_YES, "yes"},
742 {MAP_READONLY_YES, "true"},
743 {MAP_READONLY_YES, "1"},
744 {MAP_READONLY_PERMISSIONS, "permissions"},
745 {MAP_READONLY_PERMISSIONS, "perms"},
749 static const struct enum_list enum_case[] = {
750 {CASE_LOWER, "lower"},
751 {CASE_UPPER, "upper"},
755 static const struct enum_list enum_bool_auto[] = {
766 /* Client-side offline caching policy types */
767 #define CSC_POLICY_MANUAL 0
768 #define CSC_POLICY_DOCUMENTS 1
769 #define CSC_POLICY_PROGRAMS 2
770 #define CSC_POLICY_DISABLE 3
772 static const struct enum_list enum_csc_policy[] = {
773 {CSC_POLICY_MANUAL, "manual"},
774 {CSC_POLICY_DOCUMENTS, "documents"},
775 {CSC_POLICY_PROGRAMS, "programs"},
776 {CSC_POLICY_DISABLE, "disable"},
780 /* SMB signing types. */
781 static const struct enum_list enum_smb_signing_vals[] = {
793 {Required, "required"},
794 {Required, "mandatory"},
796 {Required, "forced"},
797 {Required, "enforced"},
801 /* ACL compatibility options. */
802 static const struct enum_list enum_acl_compat_vals[] = {
803 { ACL_COMPAT_AUTO, "auto" },
804 { ACL_COMPAT_WINNT, "winnt" },
805 { ACL_COMPAT_WIN2K, "win2k" },
810 Do you want session setups at user level security with a invalid
811 password to be rejected or allowed in as guest? WinNT rejects them
812 but it can be a pain as it means "net view" needs to use a password
814 You have 3 choices in the setting of map_to_guest:
816 "Never" means session setups with an invalid password
817 are rejected. This is the default.
819 "Bad User" means session setups with an invalid password
820 are rejected, unless the username does not exist, in which case it
821 is treated as a guest login
823 "Bad Password" means session setups with an invalid password
824 are treated as a guest login
826 Note that map_to_guest only has an effect in user or server
830 static const struct enum_list enum_map_to_guest[] = {
831 {NEVER_MAP_TO_GUEST, "Never"},
832 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
833 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
834 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
838 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
840 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
841 * screen in SWAT. This is used to exclude parameters as well as to squash all
842 * parameters that have been duplicated by pseudonyms.
844 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
845 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
846 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
849 * NOTE2: Handling of duplicated (synonym) paramters:
850 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
851 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
852 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
853 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
856 static struct parm_struct parm_table[] = {
857 {N_("Base Options"), P_SEP, P_SEPARATOR},
859 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
860 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
861 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
862 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
863 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
864 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
865 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
867 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
869 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
870 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
871 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
872 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
873 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
874 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
876 {N_("Security Options"), P_SEP, P_SEPARATOR},
878 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
879 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
880 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
881 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
882 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
883 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
884 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
885 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
886 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
887 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
888 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
889 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
890 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
891 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
892 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
893 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
894 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
895 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
896 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
897 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
899 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
900 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
901 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
902 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
903 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
904 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
905 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
906 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
907 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
908 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
909 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
910 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
911 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
912 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
913 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
914 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
916 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
917 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
918 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
920 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
921 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
922 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
923 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
924 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
925 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
926 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
927 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
928 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
930 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
931 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
932 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
933 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
935 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
936 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
937 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
938 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
939 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
940 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
941 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
942 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
943 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
944 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
945 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
946 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
947 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
948 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
950 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
951 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
952 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
953 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
955 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
956 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
958 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
959 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
960 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
961 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
962 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
963 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
964 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
966 {N_("Logging Options"), P_SEP, P_SEPARATOR},
968 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
969 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
970 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
971 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
972 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
974 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
975 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
976 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
977 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
978 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
979 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
980 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
981 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
983 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
985 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
986 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
987 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
988 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
989 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
990 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
991 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
992 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
993 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
994 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
995 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
996 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
998 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
999 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1000 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1001 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1002 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1003 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1004 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1006 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1007 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1008 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1009 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1010 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1011 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1013 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1014 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1015 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1016 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1017 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1018 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1019 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1020 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1021 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1022 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1023 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1024 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1025 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1027 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1029 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1030 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1031 {"getwd cache", P_BOOL, P_GLOBAL, &use_getwd_cache, NULL, NULL, FLAG_ADVANCED},
1032 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1033 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1034 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1036 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1037 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1038 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1039 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1040 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1041 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1042 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1044 {"socket options", P_GSTRING, P_GLOBAL, user_socket_options, NULL, NULL, FLAG_ADVANCED},
1045 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1046 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1047 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1048 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1049 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1050 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1051 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1053 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1054 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1055 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1056 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1058 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1060 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1061 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1062 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1063 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1064 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1065 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1066 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1067 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1068 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1069 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1070 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1071 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1072 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1073 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1074 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1075 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1076 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1077 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1078 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1079 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1080 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1083 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1084 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1085 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1086 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1087 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1089 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1090 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1091 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1092 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1093 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1094 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1096 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1097 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1098 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1100 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1101 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1102 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1103 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1104 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1105 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1106 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1107 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1108 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1109 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1110 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1111 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1112 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1113 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1114 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1115 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1116 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1117 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1118 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"mangled map", P_STRING, P_LOCAL, &sDefault.szMangledMap, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_DEPRECATED },
1120 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1121 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1122 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1123 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1126 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1128 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1130 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1132 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1133 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1134 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1135 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1136 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1137 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1138 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1139 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1140 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1141 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1142 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1143 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1145 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1146 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1147 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1148 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1149 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1151 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1153 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1154 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1155 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1156 {"preferred master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1157 {"prefered master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1158 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1159 {"domain master", P_ENUM, P_GLOBAL, &Globals.bDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1160 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1161 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1162 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1163 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1165 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1167 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1168 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1170 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1171 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1172 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1174 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1176 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1177 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1178 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1179 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1180 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1181 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1183 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1184 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1185 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1186 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1187 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1188 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1189 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1191 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1193 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1194 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1195 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1196 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1197 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1198 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1199 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1200 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1201 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1202 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1203 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1204 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1207 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1208 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1209 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1210 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1212 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1213 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1215 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1216 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1217 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1218 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1219 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1220 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1222 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1223 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1224 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1227 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1228 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1229 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1230 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1231 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1232 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1233 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1234 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1235 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1236 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1237 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1238 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1239 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1240 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1241 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1242 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1243 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1245 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1246 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1247 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1248 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1250 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1251 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1252 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1253 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1254 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1255 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1256 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1257 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1258 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1259 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1260 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1261 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1262 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1263 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1264 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1265 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1266 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1267 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1268 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1269 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1270 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1271 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1272 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1273 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1274 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1275 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1277 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1278 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1280 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1282 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1283 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1286 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1287 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1288 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1290 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1292 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1293 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1294 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1295 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1296 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1297 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1298 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1299 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1300 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1301 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1302 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1303 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1304 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1305 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1306 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1307 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1308 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1309 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1310 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1311 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1312 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1313 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1314 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1318 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1321 /***************************************************************************
1322 Initialise the sDefault parameter structure for the printer values.
1323 ***************************************************************************/
1325 static void init_printer_values(service *pService)
1327 /* choose defaults depending on the type of printing */
1328 switch (pService->iPrinting) {
1333 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1334 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1335 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1340 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1341 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1342 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1343 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1344 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1345 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1346 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1352 /* set the lpq command to contain the destination printer
1353 name only. This is used by cups_queue_get() */
1354 string_set(&pService->szLpqcommand, "%p");
1355 string_set(&pService->szLprmcommand, "");
1356 string_set(&pService->szPrintcommand, "");
1357 string_set(&pService->szLppausecommand, "");
1358 string_set(&pService->szLpresumecommand, "");
1359 string_set(&pService->szQueuepausecommand, "");
1360 string_set(&pService->szQueueresumecommand, "");
1362 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1363 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1364 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1365 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1366 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1367 string_set(&pService->szQueuepausecommand, "disable '%p'");
1368 string_set(&pService->szQueueresumecommand, "enable '%p'");
1369 #endif /* HAVE_CUPS */
1374 string_set(&pService->szLpqcommand, "lpstat -o%p");
1375 string_set(&pService->szLprmcommand, "cancel %p-%j");
1376 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1377 string_set(&pService->szQueuepausecommand, "disable %p");
1378 string_set(&pService->szQueueresumecommand, "enable %p");
1380 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1381 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1386 string_set(&pService->szLpqcommand, "lpq -P%p");
1387 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1388 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1394 string_set(&pService->szPrintcommand, "vlp print %p %s");
1395 string_set(&pService->szLpqcommand, "vlp lpq %p");
1396 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1397 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1398 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1399 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1400 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1402 #endif /* DEVELOPER */
1407 /***************************************************************************
1408 Initialise the global parameter structure.
1409 ***************************************************************************/
1411 static void init_globals(BOOL first_time_only)
1413 static BOOL done_init = False;
1416 /* If requested to initialize only once and we've already done it... */
1417 if (first_time_only && done_init) {
1418 /* ... then we have nothing more to do */
1425 /* The logfile can be set before this is invoked. Free it if so. */
1426 if (Globals.szLogFile != NULL) {
1427 string_free(&Globals.szLogFile);
1428 Globals.szLogFile = NULL;
1431 memset((void *)&Globals, '\0', sizeof(Globals));
1433 for (i = 0; parm_table[i].label; i++)
1434 if ((parm_table[i].type == P_STRING ||
1435 parm_table[i].type == P_USTRING) &&
1437 string_set((char **)parm_table[i].ptr, "");
1439 string_set(&sDefault.fstype, FSTYPE_STRING);
1440 string_set(&sDefault.szPrintjobUsername, "%U");
1442 init_printer_values(&sDefault);
1448 DEBUG(3, ("Initialising global parameters\n"));
1450 string_set(&Globals.szSMBPasswdFile, dyn_SMB_PASSWD_FILE);
1451 string_set(&Globals.szPrivateDir, dyn_PRIVATE_DIR);
1453 /* use the new 'hash2' method by default, with a prefix of 1 */
1454 string_set(&Globals.szManglingMethod, "hash2");
1455 Globals.mangle_prefix = 1;
1457 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1459 /* using UTF8 by default allows us to support all chars */
1460 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1462 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1463 /* If the system supports nl_langinfo(), try to grab the value
1464 from the user's locale */
1465 string_set(&Globals.display_charset, "LOCALE");
1467 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1470 /* Use codepage 850 as a default for the dos character set */
1471 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1474 * Allow the default PASSWD_CHAT to be overridden in local.h.
1476 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1478 set_global_myname(myhostname());
1479 string_set(&Globals.szNetbiosName,global_myname());
1481 set_global_myworkgroup(WORKGROUP);
1482 string_set(&Globals.szWorkgroup, lp_workgroup());
1484 string_set(&Globals.szPasswdProgram, "");
1485 string_set(&Globals.szPidDir, dyn_PIDDIR);
1486 string_set(&Globals.szLockDir, dyn_LOCKDIR);
1487 string_set(&Globals.szSocketAddress, "0.0.0.0");
1488 pstrcpy(s, "Samba ");
1489 pstrcat(s, SAMBA_VERSION_STRING);
1490 string_set(&Globals.szServerString, s);
1491 slprintf(s, sizeof(s) - 1, "%d.%d", DEFAULT_MAJOR_VERSION,
1492 DEFAULT_MINOR_VERSION);
1493 string_set(&Globals.szAnnounceVersion, s);
1495 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1498 pstrcpy(user_socket_options, DEFAULT_SOCKET_OPTIONS);
1500 string_set(&Globals.szLogonDrive, "");
1501 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1502 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1503 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1505 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1506 string_set(&Globals.szPasswordServer, "*");
1508 Globals.AlgorithmicRidBase = BASE_RID;
1510 Globals.bLoadPrinters = True;
1511 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1513 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1514 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1515 Globals.max_xmit = 0x4104;
1516 Globals.max_mux = 50; /* This is *needed* for profile support. */
1517 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1518 Globals.bDisableSpoolss = False;
1519 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1520 Globals.pwordlevel = 0;
1521 Globals.unamelevel = 0;
1522 Globals.deadtime = 0;
1523 Globals.bLargeReadwrite = True;
1524 Globals.max_log_size = 5000;
1525 Globals.max_open_files = MAX_OPEN_FILES;
1526 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1527 Globals.maxprotocol = PROTOCOL_NT1;
1528 Globals.minprotocol = PROTOCOL_CORE;
1529 Globals.security = SEC_USER;
1530 Globals.paranoid_server_security = True;
1531 Globals.bEncryptPasswords = True;
1532 Globals.bUpdateEncrypt = False;
1533 Globals.clientSchannel = Auto;
1534 Globals.serverSchannel = Auto;
1535 Globals.bReadRaw = True;
1536 Globals.bWriteRaw = True;
1537 Globals.bNullPasswords = False;
1538 Globals.bObeyPamRestrictions = False;
1540 Globals.bSyslogOnly = False;
1541 Globals.bTimestampLogs = True;
1542 string_set(&Globals.szLogLevel, "0");
1543 Globals.bDebugPrefixTimestamp = False;
1544 Globals.bDebugHiresTimestamp = False;
1545 Globals.bDebugPid = False;
1546 Globals.bDebugUid = False;
1547 Globals.bEnableCoreFiles = True;
1548 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1549 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1550 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1551 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1552 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1553 Globals.lm_interval = 60;
1554 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1555 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1556 Globals.bNISHomeMap = False;
1557 #ifdef WITH_NISPLUS_HOME
1558 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1560 string_set(&Globals.szNISHomeMapName, "auto.home");
1563 Globals.bTimeServer = False;
1564 Globals.bBindInterfacesOnly = False;
1565 Globals.bUnixPasswdSync = False;
1566 Globals.bPamPasswordChange = False;
1567 Globals.bPasswdChatDebug = False;
1568 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1569 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1570 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1571 Globals.bStatCache = True; /* use stat cache by default */
1572 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1573 Globals.restrict_anonymous = 0;
1574 Globals.bClientLanManAuth = True; /* Do use the LanMan hash if it is available */
1575 Globals.bClientPlaintextAuth = True; /* Do use a plaintext password if is requested by the server */
1576 Globals.bLanmanAuth = True; /* Do use the LanMan hash if it is available */
1577 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is available (otherwise NTLMv2) */
1578 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1579 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1581 Globals.map_to_guest = 0; /* By Default, "Never" */
1582 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1583 Globals.enhanced_browsing = True;
1584 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1585 #ifdef MMAP_BLACKLIST
1586 Globals.bUseMmap = False;
1588 Globals.bUseMmap = True;
1590 Globals.bUnixExtensions = True;
1591 Globals.bResetOnZeroVC = False;
1593 /* hostname lookups can be very expensive and are broken on
1594 a large number of sites (tridge) */
1595 Globals.bHostnameLookups = False;
1597 string_set(&Globals.szPassdbBackend, "smbpasswd");
1598 string_set(&Globals.szLdapSuffix, "");
1599 string_set(&Globals.szLdapMachineSuffix, "");
1600 string_set(&Globals.szLdapUserSuffix, "");
1601 string_set(&Globals.szLdapGroupSuffix, "");
1602 string_set(&Globals.szLdapIdmapSuffix, "");
1604 string_set(&Globals.szLdapAdminDn, "");
1605 Globals.ldap_ssl = LDAP_SSL_ON;
1606 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1607 Globals.ldap_delete_dn = False;
1608 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1609 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1610 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1612 /* This is what we tell the afs client. in reality we set the token
1613 * to never expire, though, when this runs out the afs client will
1614 * forget the token. Set to 0 to get NEVERDATE.*/
1615 Globals.iAfsTokenLifetime = 604800;
1617 /* these parameters are set to defaults that are more appropriate
1618 for the increasing samba install base:
1620 as a member of the workgroup, that will possibly become a
1621 _local_ master browser (lm = True). this is opposed to a forced
1622 local master browser startup (pm = True).
1624 doesn't provide WINS server service by default (wsupp = False),
1625 and doesn't provide domain master browser services by default, either.
1629 Globals.bMsAddPrinterWizard = True;
1630 Globals.bPreferredMaster = Auto; /* depending on bDomainMaster */
1631 Globals.os_level = 20;
1632 Globals.bLocalMaster = True;
1633 Globals.bDomainMaster = Auto; /* depending on bDomainLogons */
1634 Globals.bDomainLogons = False;
1635 Globals.bBrowseList = True;
1636 Globals.bWINSsupport = False;
1637 Globals.bWINSproxy = False;
1639 Globals.bDNSproxy = True;
1641 /* this just means to use them if they exist */
1642 Globals.bKernelOplocks = True;
1644 Globals.bAllowTrustedDomains = True;
1646 string_set(&Globals.szTemplateShell, "/bin/false");
1647 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1648 string_set(&Globals.szWinbindSeparator, "\\");
1650 string_set(&Globals.szCupsServer, "");
1651 string_set(&Globals.szIPrintServer, "");
1653 string_set(&Globals.ctdbdSocket, "");
1654 Globals.szClusterAddresses = NULL;
1655 Globals.clustering = False;
1657 Globals.winbind_cache_time = 300; /* 5 minutes */
1658 Globals.bWinbindEnumUsers = False;
1659 Globals.bWinbindEnumGroups = False;
1660 Globals.bWinbindUseDefaultDomain = False;
1661 Globals.bWinbindTrustedDomainsOnly = False;
1662 Globals.bWinbindNestedGroups = True;
1663 Globals.winbind_expand_groups = 1;
1664 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1665 Globals.bWinbindRefreshTickets = False;
1666 Globals.bWinbindOfflineLogon = False;
1668 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1669 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1671 Globals.bPassdbExpandExplicit = False;
1673 Globals.name_cache_timeout = 660; /* In seconds */
1675 Globals.bUseSpnego = True;
1676 Globals.bClientUseSpnego = True;
1678 Globals.client_signing = Auto;
1679 Globals.server_signing = False;
1681 Globals.bDeferSharingViolations = True;
1682 string_set(&Globals.smb_ports, SMB_PORTS);
1684 Globals.bEnablePrivileges = True;
1685 Globals.bHostMSDfs = True;
1686 Globals.bASUSupport = False;
1688 /* User defined shares. */
1689 pstrcpy(s, dyn_LOCKDIR);
1690 pstrcat(s, "/usershares");
1691 string_set(&Globals.szUsersharePath, s);
1692 string_set(&Globals.szUsershareTemplateShare, "");
1693 Globals.iUsershareMaxShares = 0;
1694 /* By default disallow sharing of directories not owned by the sharer. */
1695 Globals.bUsershareOwnerOnly = True;
1696 /* By default disallow guest access to usershares. */
1697 Globals.bUsershareAllowGuests = False;
1699 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1701 /* By default no shares out of the registry */
1702 Globals.bRegistryShares = False;
1705 static TALLOC_CTX *lp_talloc;
1707 /******************************************************************* a
1708 Free up temporary memory - called from the main loop.
1709 ********************************************************************/
1711 void lp_TALLOC_FREE(void)
1715 TALLOC_FREE(lp_talloc);
1719 TALLOC_CTX *tmp_talloc_ctx(void)
1721 if (lp_talloc == NULL) {
1722 lp_talloc = talloc_init("tmp_talloc_ctx");
1725 if (lp_talloc == NULL) {
1726 smb_panic("Could not create temporary talloc context");
1732 /*******************************************************************
1733 Convenience routine to grab string parameters into temporary memory
1734 and run standard_sub_basic on them. The buffers can be written to by
1735 callers without affecting the source string.
1736 ********************************************************************/
1738 static char *lp_string(const char *s)
1742 /* The follow debug is useful for tracking down memory problems
1743 especially if you have an inner loop that is calling a lp_*()
1744 function that returns a string. Perhaps this debug should be
1745 present all the time? */
1748 DEBUG(10, ("lp_string(%s)\n", s));
1752 lp_talloc = talloc_init("lp_talloc");
1754 tmpstr = alloc_sub_basic(get_current_username(),
1755 current_user_info.domain, s);
1756 if (trim_char(tmpstr, '\"', '\"')) {
1757 if (strchr(tmpstr,'\"') != NULL) {
1759 tmpstr = alloc_sub_basic(get_current_username(),
1760 current_user_info.domain, s);
1763 ret = talloc_strdup(lp_talloc, tmpstr);
1770 In this section all the functions that are used to access the
1771 parameters from the rest of the program are defined
1774 #define FN_GLOBAL_STRING(fn_name,ptr) \
1775 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1776 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1777 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1778 #define FN_GLOBAL_LIST(fn_name,ptr) \
1779 const char **fn_name(void) {return(*(const char ***)(ptr));}
1780 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1781 BOOL fn_name(void) {return(*(BOOL *)(ptr));}
1782 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1783 char fn_name(void) {return(*(char *)(ptr));}
1784 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1785 int fn_name(void) {return(*(int *)(ptr));}
1787 #define FN_LOCAL_STRING(fn_name,val) \
1788 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1789 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1790 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1791 #define FN_LOCAL_LIST(fn_name,val) \
1792 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1793 #define FN_LOCAL_BOOL(fn_name,val) \
1794 BOOL fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1795 #define FN_LOCAL_INTEGER(fn_name,val) \
1796 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1798 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1799 BOOL fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1800 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1801 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1802 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1803 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1804 #define FN_LOCAL_CHAR(fn_name,val) \
1805 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1807 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1808 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1809 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1810 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1811 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1812 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1813 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1814 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1815 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1816 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1817 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1818 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1819 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1820 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1821 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1822 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1823 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1824 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1825 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1826 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1827 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1828 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1829 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1830 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1831 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1832 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1833 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1834 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1835 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1836 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1837 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1838 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1839 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1840 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1841 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1842 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1843 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1844 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1845 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1846 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1847 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1848 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1849 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1850 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1851 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1852 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1853 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1854 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1855 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1856 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1857 * lp_passdb_backend() should be replace by the this macro again after
1860 const char *lp_passdb_backend(void)
1862 char *delim, *quote;
1864 delim = strchr( Globals.szPassdbBackend, ' ');
1865 /* no space at all */
1866 if (delim == NULL) {
1870 quote = strchr(Globals.szPassdbBackend, '"');
1871 /* no quote char or non in the first part */
1872 if (quote == NULL || quote > delim) {
1877 quote = strchr(quote+1, '"');
1878 if (quote == NULL) {
1879 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1881 } else if (*(quote+1) == '\0') {
1882 /* space, fitting quote char, and one backend only */
1885 /* terminate string after the fitting quote char */
1890 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1891 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1892 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1893 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1896 return Globals.szPassdbBackend;
1898 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1899 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1900 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1901 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1902 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1904 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1905 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1906 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1907 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1908 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1909 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1911 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1913 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1914 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1915 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1917 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1919 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1920 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1921 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1922 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1923 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1924 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1925 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1926 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1927 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1928 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1929 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1930 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1931 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1932 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1933 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1935 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1936 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1937 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1938 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1939 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1940 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1941 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1943 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1944 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1945 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1946 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1947 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1948 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1949 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1950 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1951 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1952 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1953 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1954 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1955 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1956 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1958 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1960 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1961 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1962 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1963 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1964 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1965 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1966 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1967 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1968 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1969 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1970 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1971 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1972 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1973 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1974 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1975 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1976 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1977 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1978 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1979 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1980 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1981 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1982 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1983 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1984 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1985 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1986 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1987 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1988 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1989 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1990 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1991 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1992 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1993 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1994 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1995 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1996 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1997 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1998 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1999 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
2000 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
2001 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
2002 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
2003 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
2004 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
2005 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
2006 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
2007 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
2008 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
2009 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
2010 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
2011 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
2012 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
2013 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
2014 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
2015 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
2016 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
2017 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
2018 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
2019 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2020 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2021 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2022 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2023 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2024 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2025 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2026 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2027 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2028 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2029 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2030 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2031 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2032 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2033 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2034 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2035 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2036 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2037 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2038 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2039 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2040 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2041 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2042 FN_GLOBAL_INTEGER(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2043 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2044 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2045 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2046 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2047 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2048 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2049 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2050 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2051 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2053 FN_LOCAL_STRING(lp_preexec, szPreExec)
2054 FN_LOCAL_STRING(lp_postexec, szPostExec)
2055 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2056 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2057 FN_LOCAL_STRING(lp_servicename, szService)
2058 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2059 FN_LOCAL_STRING(lp_pathname, szPath)
2060 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2061 FN_LOCAL_STRING(lp_username, szUsername)
2062 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2063 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2064 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2065 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2066 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2067 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2068 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2069 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2070 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2071 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2072 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2073 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2074 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2075 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2076 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2077 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2078 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2079 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2080 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2081 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2082 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2083 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2084 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2085 FN_LOCAL_STRING(lp_comment, comment)
2086 FN_LOCAL_STRING(lp_force_user, force_user)
2087 FN_LOCAL_STRING(lp_force_group, force_group)
2088 FN_LOCAL_LIST(lp_readlist, readlist)
2089 FN_LOCAL_LIST(lp_writelist, writelist)
2090 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2091 FN_LOCAL_STRING(lp_fstype, fstype)
2092 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2093 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2094 static FN_LOCAL_STRING(lp_volume, volume)
2095 FN_LOCAL_PARM_STRING(lp_mangled_map, szMangledMap)
2096 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2097 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2098 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2099 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2100 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2101 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2102 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2103 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2104 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2105 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2106 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2107 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2108 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2109 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2110 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2111 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2112 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2113 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2114 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2115 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2116 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2117 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2118 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2119 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2120 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2121 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2122 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2123 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2124 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2125 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2126 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2127 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2128 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2129 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2130 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2131 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2132 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2133 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2134 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2135 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2136 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2137 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2138 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2139 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2140 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2141 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2142 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2143 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2144 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2145 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2146 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2147 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2148 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2149 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2150 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2151 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2152 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2153 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2154 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2155 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2156 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2157 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2158 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2159 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2160 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2161 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2162 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2163 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2164 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2165 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2166 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2167 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2168 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2169 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2170 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2171 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2172 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2173 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2174 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2175 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2176 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2177 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2178 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2179 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2180 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2181 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2182 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2183 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2184 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2185 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2186 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2187 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2188 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2190 /* local prototypes */
2192 static int map_parameter(const char *pszParmName);
2193 static BOOL set_boolean(BOOL *pb, const char *pszParmValue);
2194 static const char *get_boolean(BOOL bool_value);
2195 static int getservicebyname(const char *pszServiceName,
2196 service * pserviceDest);
2197 static void copy_service(service * pserviceDest,
2198 service * pserviceSource, BOOL *pcopymapDest);
2199 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue);
2200 static BOOL do_section(const char *pszSectionName);
2201 static void init_copymap(service * pservice);
2202 static BOOL hash_a_service(const char *name, int number);
2203 static void free_service_byindex(int iService);
2204 static char * canonicalize_servicename(const char *name);
2206 /* This is a helper function for parametrical options support. */
2207 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2208 /* Actual parametrical functions are quite simple */
2209 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2211 BOOL global_section = False;
2213 param_opt_struct *data;
2215 if (snum >= iNumServices) return NULL;
2218 data = Globals.param_opt;
2219 global_section = True;
2221 data = ServicePtrs[snum]->param_opt;
2224 asprintf(¶m_key, "%s:%s", type, option);
2226 DEBUG(0,("asprintf failed!\n"));
2231 if (strcmp(data->key, param_key) == 0) {
2232 string_free(¶m_key);
2238 if (!global_section) {
2239 /* Try to fetch the same option but from globals */
2240 /* but only if we are not already working with Globals */
2241 data = Globals.param_opt;
2243 if (strcmp(data->key, param_key) == 0) {
2244 string_free(¶m_key);
2251 string_free(¶m_key);
2257 #define MISSING_PARAMETER(name) \
2258 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2260 /*******************************************************************
2261 convenience routine to return int parameters.
2262 ********************************************************************/
2263 static int lp_int(const char *s)
2267 MISSING_PARAMETER(lp_int);
2271 return (int)strtol(s, NULL, 0);
2274 /*******************************************************************
2275 convenience routine to return unsigned long parameters.
2276 ********************************************************************/
2277 static unsigned long lp_ulong(const char *s)
2281 MISSING_PARAMETER(lp_ulong);
2285 return strtoul(s, NULL, 0);
2288 /*******************************************************************
2289 convenience routine to return boolean parameters.
2290 ********************************************************************/
2291 static BOOL lp_bool(const char *s)
2296 MISSING_PARAMETER(lp_bool);
2300 if (!set_boolean(&ret,s)) {
2301 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2308 /*******************************************************************
2309 convenience routine to return enum parameters.
2310 ********************************************************************/
2311 static int lp_enum(const char *s,const struct enum_list *_enum)
2315 if (!s || !*s || !_enum) {
2316 MISSING_PARAMETER(lp_enum);
2320 for (i=0; _enum[i].name; i++) {
2321 if (strequal(_enum[i].name,s))
2322 return _enum[i].value;
2325 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2329 #undef MISSING_PARAMETER
2331 /* DO NOT USE lp_parm_string ANYMORE!!!!
2332 * use lp_parm_const_string or lp_parm_talloc_string
2334 * lp_parm_string is only used to let old modules find this symbol
2336 #undef lp_parm_string
2337 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2338 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2340 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2343 /* Return parametric option from a given service. Type is a part of option before ':' */
2344 /* Parametric option has following syntax: 'Type: option = value' */
2345 /* the returned value is talloced in lp_talloc */
2346 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2348 param_opt_struct *data = get_parametrics(snum, type, option);
2350 if (data == NULL||data->value==NULL) {
2352 return lp_string(def);
2358 return lp_string(data->value);
2361 /* Return parametric option from a given service. Type is a part of option before ':' */
2362 /* Parametric option has following syntax: 'Type: option = value' */
2363 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2365 param_opt_struct *data = get_parametrics(snum, type, option);
2367 if (data == NULL||data->value==NULL)
2373 /* Return parametric option from a given service. Type is a part of option before ':' */
2374 /* Parametric option has following syntax: 'Type: option = value' */
2376 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2378 param_opt_struct *data = get_parametrics(snum, type, option);
2380 if (data == NULL||data->value==NULL)
2381 return (const char **)def;
2383 if (data->list==NULL) {
2384 data->list = str_list_make(data->value, NULL);
2387 return (const char **)data->list;
2390 /* Return parametric option from a given service. Type is a part of option before ':' */
2391 /* Parametric option has following syntax: 'Type: option = value' */
2393 int lp_parm_int(int snum, const char *type, const char *option, int def)
2395 param_opt_struct *data = get_parametrics(snum, type, option);
2397 if (data && data->value && *data->value)
2398 return lp_int(data->value);
2403 /* Return parametric option from a given service. Type is a part of option before ':' */
2404 /* Parametric option has following syntax: 'Type: option = value' */
2406 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2408 param_opt_struct *data = get_parametrics(snum, type, option);
2410 if (data && data->value && *data->value)
2411 return lp_ulong(data->value);
2416 /* Return parametric option from a given service. Type is a part of option before ':' */
2417 /* Parametric option has following syntax: 'Type: option = value' */
2419 BOOL lp_parm_bool(int snum, const char *type, const char *option, BOOL def)
2421 param_opt_struct *data = get_parametrics(snum, type, option);
2423 if (data && data->value && *data->value)
2424 return lp_bool(data->value);
2429 /* Return parametric option from a given service. Type is a part of option before ':' */
2430 /* Parametric option has following syntax: 'Type: option = value' */
2432 int lp_parm_enum(int snum, const char *type, const char *option,
2433 const struct enum_list *_enum, int def)
2435 param_opt_struct *data = get_parametrics(snum, type, option);
2437 if (data && data->value && *data->value && _enum)
2438 return lp_enum(data->value, _enum);
2444 /***************************************************************************
2445 Initialise a service to the defaults.
2446 ***************************************************************************/
2448 static void init_service(service * pservice)
2450 memset((char *)pservice, '\0', sizeof(service));
2451 copy_service(pservice, &sDefault, NULL);
2454 /***************************************************************************
2455 Free the dynamically allocated parts of a service struct.
2456 ***************************************************************************/
2458 static void free_service(service *pservice)
2461 param_opt_struct *data, *pdata;
2465 if (pservice->szService)
2466 DEBUG(5, ("free_service: Freeing service %s\n",
2467 pservice->szService));
2469 string_free(&pservice->szService);
2470 SAFE_FREE(pservice->copymap);
2472 for (i = 0; parm_table[i].label; i++) {
2473 if ((parm_table[i].type == P_STRING ||
2474 parm_table[i].type == P_USTRING) &&
2475 parm_table[i].p_class == P_LOCAL)
2476 string_free((char **)
2477 (((char *)pservice) +
2478 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2479 else if (parm_table[i].type == P_LIST &&
2480 parm_table[i].p_class == P_LOCAL)
2481 str_list_free((char ***)
2482 (((char *)pservice) +
2483 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2486 data = pservice->param_opt;
2488 DEBUG(5,("Freeing parametrics:\n"));
2490 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2491 string_free(&data->key);
2492 string_free(&data->value);
2493 str_list_free(&data->list);
2499 ZERO_STRUCTP(pservice);
2503 /***************************************************************************
2504 remove a service indexed in the ServicePtrs array from the ServiceHash
2505 and free the dynamically allocated parts
2506 ***************************************************************************/
2508 static void free_service_byindex(int idx)
2510 if ( !LP_SNUM_OK(idx) )
2513 ServicePtrs[idx]->valid = False;
2514 invalid_services[num_invalid_services++] = idx;
2516 /* we have to cleanup the hash record */
2518 if (ServicePtrs[idx]->szService) {
2519 char *canon_name = canonicalize_servicename( ServicePtrs[idx]->szService );
2521 tdb_delete_bystring(ServiceHash, canon_name );
2524 free_service(ServicePtrs[idx]);
2527 /***************************************************************************
2528 Add a new service to the services array initialising it with the given
2530 ***************************************************************************/
2532 static int add_a_service(const service *pservice, const char *name)
2536 int num_to_alloc = iNumServices + 1;
2537 param_opt_struct *data, *pdata;
2539 tservice = *pservice;
2541 /* it might already exist */
2543 i = getservicebyname(name, NULL);
2545 /* Clean all parametric options for service */
2546 /* They will be added during parsing again */
2547 data = ServicePtrs[i]->param_opt;
2549 string_free(&data->key);
2550 string_free(&data->value);
2551 str_list_free(&data->list);
2556 ServicePtrs[i]->param_opt = NULL;
2561 /* find an invalid one */
2563 if (num_invalid_services > 0) {
2564 i = invalid_services[--num_invalid_services];
2567 /* if not, then create one */
2568 if (i == iNumServices) {
2572 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2574 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2578 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2579 if (!ServicePtrs[iNumServices]) {
2580 DEBUG(0,("add_a_service: out of memory!\n"));
2585 /* enlarge invalid_services here for now... */
2586 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2588 if (tinvalid == NULL) {
2589 DEBUG(0,("add_a_service: failed to enlarge "
2590 "invalid_services!\n"));
2593 invalid_services = tinvalid;
2595 free_service_byindex(i);
2598 ServicePtrs[i]->valid = True;
2600 init_service(ServicePtrs[i]);
2601 copy_service(ServicePtrs[i], &tservice, NULL);
2603 string_set(&ServicePtrs[i]->szService, name);
2605 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2606 i, ServicePtrs[i]->szService));
2608 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2615 /***************************************************************************
2616 Canonicalize by converting to lowercase.
2617 ***************************************************************************/
2619 static char *canonicalize_servicename(const char *src)
2621 static fstring canon; /* is fstring large enough? */
2624 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2628 fstrcpy( canon, src );
2629 strlower_m( canon );
2634 /***************************************************************************
2635 Add a name/index pair for the services array to the hash table.
2636 ***************************************************************************/
2638 static BOOL hash_a_service(const char *name, int idx)
2642 if ( !ServiceHash ) {
2643 DEBUG(10,("hash_a_service: creating tdb servicehash\n"));
2644 ServiceHash = tdb_open("servicehash", 1031, TDB_INTERNAL,
2645 (O_RDWR|O_CREAT), 0600);
2646 if ( !ServiceHash ) {
2647 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2652 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2655 if ( !(canon_name = canonicalize_servicename( name )) )
2658 tdb_store_int32(ServiceHash, canon_name, idx);
2663 /***************************************************************************
2664 Add a new home service, with the specified home directory, defaults coming
2666 ***************************************************************************/
2668 BOOL lp_add_home(const char *pszHomename, int iDefaultService,
2669 const char *user, const char *pszHomedir)
2674 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2679 if (!(*(ServicePtrs[iDefaultService]->szPath))
2680 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2681 pstrcpy(newHomedir, pszHomedir);
2682 string_set(&ServicePtrs[i]->szPath, newHomedir);
2685 if (!(*(ServicePtrs[i]->comment))) {
2687 slprintf(comment, sizeof(comment) - 1,
2688 "Home directory of %s", user);
2689 string_set(&ServicePtrs[i]->comment, comment);
2692 /* set the browseable flag from the global default */
2694 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2696 ServicePtrs[i]->autoloaded = True;
2698 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2699 user, ServicePtrs[i]->szPath ));
2704 /***************************************************************************
2705 Add a new service, based on an old one.
2706 ***************************************************************************/
2708 int lp_add_service(const char *pszService, int iDefaultService)
2710 if (iDefaultService < 0) {
2711 return add_a_service(&sDefault, pszService);
2714 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2717 /***************************************************************************
2718 Add the IPC service.
2719 ***************************************************************************/
2721 static BOOL lp_add_ipc(const char *ipc_name, BOOL guest_ok)
2724 int i = add_a_service(&sDefault, ipc_name);
2729 slprintf(comment, sizeof(comment) - 1,
2730 "IPC Service (%s)", Globals.szServerString);
2732 string_set(&ServicePtrs[i]->szPath, tmpdir());
2733 string_set(&ServicePtrs[i]->szUsername, "");
2734 string_set(&ServicePtrs[i]->comment, comment);
2735 string_set(&ServicePtrs[i]->fstype, "IPC");
2736 ServicePtrs[i]->iMaxConnections = 0;
2737 ServicePtrs[i]->bAvailable = True;
2738 ServicePtrs[i]->bRead_only = True;
2739 ServicePtrs[i]->bGuest_only = False;
2740 ServicePtrs[i]->bGuest_ok = guest_ok;
2741 ServicePtrs[i]->bPrint_ok = False;
2742 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2744 DEBUG(3, ("adding IPC service\n"));
2749 /***************************************************************************
2750 Add a new printer service, with defaults coming from service iFrom.
2751 ***************************************************************************/
2753 BOOL lp_add_printer(const char *pszPrintername, int iDefaultService)
2755 const char *comment = "From Printcap";
2756 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2761 /* note that we do NOT default the availability flag to True - */
2762 /* we take it from the default service passed. This allows all */
2763 /* dynamic printers to be disabled by disabling the [printers] */
2764 /* entry (if/when the 'available' keyword is implemented!). */
2766 /* the printer name is set to the service name. */
2767 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2768 string_set(&ServicePtrs[i]->comment, comment);
2770 /* set the browseable flag from the gloabl default */
2771 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2773 /* Printers cannot be read_only. */
2774 ServicePtrs[i]->bRead_only = False;
2775 /* No share modes on printer services. */
2776 ServicePtrs[i]->bShareModes = False;
2777 /* No oplocks on printer services. */
2778 ServicePtrs[i]->bOpLocks = False;
2779 /* Printer services must be printable. */
2780 ServicePtrs[i]->bPrint_ok = True;
2782 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2788 /***************************************************************************
2789 Check whether the given parameter name is valid.
2790 Parametric options (names containing a colon) are considered valid.
2791 ***************************************************************************/
2793 BOOL lp_parameter_is_valid(const char *pszParmName)
2795 return ((map_parameter(pszParmName) != -1) ||
2796 (strchr(pszParmName, ':') != NULL));
2799 /***************************************************************************
2800 Check whether the given name is the name of a global parameter.
2801 Returns True for strings belonging to parameters of class
2802 P_GLOBAL, False for all other strings, also for parametric options
2803 and strings not belonging to any option.
2804 ***************************************************************************/
2806 BOOL lp_parameter_is_global(const char *pszParmName)
2808 int num = map_parameter(pszParmName);
2811 return (parm_table[num].p_class == P_GLOBAL);
2817 /**************************************************************************
2818 Determine the canonical name for a parameter.
2819 Indicate when it is an inverse (boolean) synonym instead of a
2821 **************************************************************************/
2823 BOOL lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2828 if (!lp_parameter_is_valid(parm_name)) {
2834 num = map_parameter(parm_name);
2835 if ((num < 0) || !(parm_table[num].flags & FLAG_HIDE)) {
2836 /* it is already canonical (parametric are canonical anyways) */
2837 *canon_parm = parm_name;
2841 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2842 if (!(parm_table[canon_num].flags & FLAG_HIDE) &&
2843 (parm_table[num].ptr == parm_table[canon_num].ptr))
2845 *canon_parm = parm_table[canon_num].label;
2846 if ((parm_table[canon_num].type == P_BOOL) &&
2847 (parm_table[num].type == P_BOOLREV))
2855 /* 'include', 'copy', 'config file' and friends left */
2856 *canon_parm = parm_name;
2860 /***************************************************************************
2861 Map a parameter's string representation to something we can use.
2862 Returns False if the parameter string is not recognised, else TRUE.
2863 ***************************************************************************/
2865 static int map_parameter(const char *pszParmName)
2869 if (*pszParmName == '-')
2872 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2873 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2876 /* Warn only if it isn't parametric option */
2877 if (strchr(pszParmName, ':') == NULL)
2878 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2879 /* We do return 'fail' for parametric options as well because they are
2880 stored in different storage
2885 /***************************************************************************
2886 Show all parameter's name, type, [values,] and flags.
2887 ***************************************************************************/
2889 void show_parameter_list(void)
2891 int classIndex, parmIndex, enumIndex, flagIndex;
2893 const char *section_names[] = { "local", "global", NULL};
2894 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
2895 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING", "P_GSTRING",
2896 "P_UGSTRING", "P_ENUM", "P_SEP"};
2897 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
2898 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
2899 FLAG_HIDE, FLAG_DOS_STRING};
2900 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
2901 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
2902 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
2904 for ( classIndex=0; section_names[classIndex]; classIndex++) {
2905 printf("[%s]\n", section_names[classIndex]);
2906 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
2907 if (parm_table[parmIndex].p_class == classIndex) {
2909 parm_table[parmIndex].label,
2910 type[parm_table[parmIndex].type]);
2911 switch (parm_table[parmIndex].type) {
2914 for (enumIndex=0; parm_table[parmIndex].enum_list[enumIndex].name; enumIndex++)
2916 enumIndex ? "|" : "",
2917 parm_table[parmIndex].enum_list[enumIndex].name);
2924 for ( flagIndex=0; flag_names[flagIndex]; flagIndex++ ) {
2925 if (parm_table[parmIndex].flags & flags[flagIndex]) {
2928 flag_names[flagIndex]);
2938 /***************************************************************************
2939 Set a boolean variable from the text value stored in the passed string.
2940 Returns True in success, False if the passed string does not correctly
2941 represent a boolean.
2942 ***************************************************************************/
2944 static BOOL set_boolean(BOOL *pb, const char *pszParmValue)
2949 if (strwicmp(pszParmValue, "yes") == 0 ||
2950 strwicmp(pszParmValue, "true") == 0 ||
2951 strwicmp(pszParmValue, "1") == 0)
2953 else if (strwicmp(pszParmValue, "no") == 0 ||
2954 strwicmp(pszParmValue, "False") == 0 ||
2955 strwicmp(pszParmValue, "0") == 0)
2959 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
2966 /***************************************************************************
2967 Get the standard string representation of a boolean value ("yes" or "no")
2968 ***************************************************************************/
2970 static const char *get_boolean(BOOL bool_value)
2972 static const char *yes_str = "yes";
2973 static const char *no_str = "no";
2975 return (bool_value ? yes_str : no_str);
2978 /***************************************************************************
2979 Provide the string of the negated boolean value associated to the boolean
2980 given as a string. Returns False if the passed string does not correctly
2981 represent a boolean.
2982 ***************************************************************************/
2984 BOOL lp_invert_boolean(const char *str, const char **inverse_str)
2988 if (!set_boolean(&val, str)) {
2992 *inverse_str = get_boolean(!val);
2996 /***************************************************************************
2997 Provide the canonical string representation of a boolean value given
2998 as a string. Return True on success, False if the string given does
2999 not correctly represent a boolean.
3000 ***************************************************************************/
3002 BOOL lp_canonicalize_boolean(const char *str, const char**canon_str)
3006 if (!set_boolean(&val, str)) {
3010 *canon_str = get_boolean(val);
3014 /***************************************************************************
3015 Find a service by name. Otherwise works like get_service.
3016 ***************************************************************************/
3018 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3023 if (ServiceHash != NULL) {
3024 if ( !(canon_name = canonicalize_servicename( pszServiceName )) )
3027 iService = tdb_fetch_int32(ServiceHash, canon_name );
3029 if (LP_SNUM_OK(iService)) {
3030 if (pserviceDest != NULL) {
3031 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3041 /***************************************************************************
3042 Copy a service structure to another.
3043 If pcopymapDest is NULL then copy all fields
3044 ***************************************************************************/
3046 static void copy_service(service * pserviceDest, service * pserviceSource, BOOL *pcopymapDest)
3049 BOOL bcopyall = (pcopymapDest == NULL);
3050 param_opt_struct *data, *pdata, *paramo;
3053 for (i = 0; parm_table[i].label; i++)
3054 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3055 (bcopyall || pcopymapDest[i])) {
3056 void *def_ptr = parm_table[i].ptr;
3058 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3061 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3064 switch (parm_table[i].type) {
3067 *(BOOL *)dest_ptr = *(BOOL *)src_ptr;
3073 *(int *)dest_ptr = *(int *)src_ptr;
3077 *(char *)dest_ptr = *(char *)src_ptr;
3081 string_set((char **)dest_ptr,
3086 string_set((char **)dest_ptr,
3088 strupper_m(*(char **)dest_ptr);
3091 str_list_free((char ***)dest_ptr);
3092 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3100 init_copymap(pserviceDest);
3101 if (pserviceSource->copymap)
3102 memcpy((void *)pserviceDest->copymap,
3103 (void *)pserviceSource->copymap,
3104 sizeof(BOOL) * NUMPARAMETERS);
3107 data = pserviceSource->param_opt;
3110 pdata = pserviceDest->param_opt;
3111 /* Traverse destination */
3113 /* If we already have same option, override it */
3114 if (strcmp(pdata->key, data->key) == 0) {
3115 string_free(&pdata->value);
3116 str_list_free(&data->list);
3117 pdata->value = SMB_STRDUP(data->value);
3121 pdata = pdata->next;
3124 paramo = SMB_XMALLOC_P(param_opt_struct);
3125 paramo->key = SMB_STRDUP(data->key);
3126 paramo->value = SMB_STRDUP(data->value);
3127 paramo->list = NULL;
3128 DLIST_ADD(pserviceDest->param_opt, paramo);
3134 /***************************************************************************
3135 Check a service for consistency. Return False if the service is in any way
3136 incomplete or faulty, else True.
3137 ***************************************************************************/
3139 BOOL service_ok(int iService)
3144 if (ServicePtrs[iService]->szService[0] == '\0') {
3145 DEBUG(0, ("The following message indicates an internal error:\n"));
3146 DEBUG(0, ("No service name in service entry.\n"));
3150 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3151 /* I can't see why you'd want a non-printable printer service... */
3152 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3153 if (!ServicePtrs[iService]->bPrint_ok) {
3154 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3155 ServicePtrs[iService]->szService));
3156 ServicePtrs[iService]->bPrint_ok = True;
3158 /* [printers] service must also be non-browsable. */
3159 if (ServicePtrs[iService]->bBrowseable)
3160 ServicePtrs[iService]->bBrowseable = False;
3163 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3164 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3165 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3167 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3168 ServicePtrs[iService]->szService));
3169 ServicePtrs[iService]->bAvailable = False;
3172 /* If a service is flagged unavailable, log the fact at level 1. */
3173 if (!ServicePtrs[iService]->bAvailable)
3174 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3175 ServicePtrs[iService]->szService));
3181 * lp_regdb_open - regdb helper function
3183 * this should be considered an interim solution that becomes
3184 * superfluous once the registry code has been rewritten
3185 * do allow use of the tdb portion of the registry alone.
3187 * in the meanwhile this provides a lean access
3188 * to the registry globals.
3191 static struct tdb_wrap *lp_regdb_open(void)
3193 struct tdb_wrap *reg_tdb = NULL;
3194 const char *vstring = "INFO/version";
3198 reg_tdb = tdb_wrap_open(NULL, lock_path("registry.tdb"), 0,
3199 REG_TDB_FLAGS, O_RDWR, 0600);
3201 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3202 lock_path("registry.tdb"), strerror(errno)));
3206 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3210 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3211 if (vers_id != REGVER_V1) {
3212 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3213 "INFO/version (got %d, expected %d)\n",
3214 lock_path("registry.tdb"), vers_id, REGVER_V1));
3215 /* this is apparently not implemented in the tdb */
3223 * process_registry_globals
3225 * this is the interim version of process_registry globals
3227 * until we can do it as we would like using the api and only
3228 * using the tdb portion of the registry (see below),
3229 * this just provides the needed functionality of regdb_fetch_values
3230 * and regdb_unpack_values, circumventing any fancy stuff, to
3231 * give us access to the registry globals.
3233 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3236 struct tdb_wrap *reg_tdb = NULL;
3240 /* vars for the tdb unpack loop */
3247 uint32 num_values = 0;
3251 struct registry_value *value = NULL;
3253 include_registry_globals = True;
3257 reg_tdb = lp_regdb_open();
3259 DEBUG(1, ("Error opening the registry!\n"));
3263 /* reg_tdb is from now on used as talloc ctx.
3264 * freeing it closes the tdb (if refcount is 0) */
3266 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3267 KEY_SMBCONF, GLOBAL_NAME);
3268 normalize_dbkey(keystr);
3270 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3273 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3280 buflen = data.dsize;
3282 /* unpack number of values */
3283 len = tdb_unpack(buf, buflen, "d", &num_values);
3284 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3287 /* unpack the values */
3288 for (i=0; i < num_values; i++) {
3292 len += tdb_unpack(buf+len, buflen-len, "fdB",
3297 if (registry_smbconf_valname_forbidden(valname)) {
3298 DEBUG(10, ("process_registry_globals: Ignoring "
3299 "parameter '%s' in registry.\n", valname));
3302 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3304 if (size && data_p) {
3305 err = registry_pull_value(reg_tdb,
3312 if (!W_ERROR_IS_OK(err)) {
3317 valstr = talloc_asprintf(reg_tdb, "%d",
3319 pfunc(valname, valstr);
3322 pfunc(valname, value->v.sz.str);
3325 /* ignore other types */
3331 ret = pfunc("registry shares", "yes");
3332 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3335 TALLOC_FREE(reg_tdb);
3336 SAFE_FREE(data.dptr);
3342 * this is process_registry_globals as it _should_ be (roughly)
3343 * using the reg_api functions...
3346 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3349 TALLOC_CTX *ctx = NULL;
3350 char *regpath = NULL;
3351 WERROR werr = WERR_OK;
3352 struct registry_key *key = NULL;
3353 struct registry_value *value = NULL;
3354 char *valname = NULL;
3355 char *valstr = NULL;
3357 NT_USER_TOKEN *token;
3359 ctx = talloc_init("process_registry_globals");
3361 smb_panic("Failed to create talloc context!");
3364 include_registry_globals = True;
3366 if (!registry_init_regdb()) {
3367 DEBUG(1, ("Error initializing the registry.\n"));
3371 if (!(token = registry_create_admin_token(ctx))) {
3372 DEBUG(1, ("Error creating admin token\n"));
3376 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3377 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3378 if (!W_ERROR_IS_OK(werr)) {
3379 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3380 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3381 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3386 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3390 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3391 switch(value->type) {
3393 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3394 pfunc(valname, valstr);
3395 TALLOC_FREE(valstr);
3398 pfunc(valname, value->v.sz.str);
3401 /* ignore other types */
3405 TALLOC_FREE(valstr);
3408 ret = pfunc("registry shares", "yes");
3410 regdb_last_seqnum = regdb_get_seqnum();
3413 talloc_destroy(ctx);
3418 static struct file_lists {
3419 struct file_lists *next;
3423 } *file_lists = NULL;
3425 /*******************************************************************
3426 Keep a linked list of all config files so we know when one has changed
3427 it's date and needs to be reloaded.
3428 ********************************************************************/
3430 static void add_to_file_list(const char *fname, const char *subfname)
3432 struct file_lists *f = file_lists;
3435 if (f->name && !strcmp(f->name, fname))
3441 f = SMB_MALLOC_P(struct file_lists);
3444 f->next = file_lists;
3445 f->name = SMB_STRDUP(fname);
3450 f->subfname = SMB_STRDUP(subfname);
3456 f->modtime = file_modtime(subfname);
3458 time_t t = file_modtime(subfname);
3464 /*******************************************************************
3465 Check if a config file has changed date.
3466 ********************************************************************/
3468 BOOL lp_file_list_changed(void)
3470 struct file_lists *f = file_lists;
3471 struct tdb_wrap *reg_tdb = NULL;
3473 DEBUG(6, ("lp_file_list_changed()\n"));
3475 if (include_registry_globals) {
3476 reg_tdb = lp_regdb_open();
3477 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3479 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3480 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3481 TALLOC_FREE(reg_tdb);
3490 pstrcpy(n2, f->name);
3491 standard_sub_basic( get_current_username(),
3492 current_user_info.domain,
3495 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3496 f->name, n2, ctime(&f->modtime)));
3498 mod_time = file_modtime(n2);
3500 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3502 ("file %s modified: %s\n", n2,
3504 f->modtime = mod_time;
3505 SAFE_FREE(f->subfname);
3506 f->subfname = SMB_STRDUP(n2);
3514 /***************************************************************************
3515 Run standard_sub_basic on netbios name... needed because global_myname
3516 is not accessed through any lp_ macro.
3517 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3518 ***************************************************************************/
3520 static BOOL handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3523 pstring netbios_name;
3525 pstrcpy(netbios_name, pszParmValue);
3527 standard_sub_basic(get_current_username(), current_user_info.domain,
3528 netbios_name, sizeof(netbios_name));
3530 ret = set_global_myname(netbios_name);
3531 string_set(&Globals.szNetbiosName,global_myname());
3533 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3539 static BOOL handle_charset(int snum, const char *pszParmValue, char **ptr)
3541 if (strcmp(*ptr, pszParmValue) != 0) {
3542 string_set(ptr, pszParmValue);
3550 static BOOL handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3554 ret = set_global_myworkgroup(pszParmValue);
3555 string_set(&Globals.szWorkgroup,lp_workgroup());
3560 static BOOL handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3564 ret = set_global_scope(pszParmValue);
3565 string_set(&Globals.szNetbiosScope,global_scope());
3570 static BOOL handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3572 str_list_free(&Globals.szNetbiosAliases);
3573 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3574 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3577 /***************************************************************************
3578 Handle the include operation.
3579 ***************************************************************************/
3581 static BOOL handle_include(int snum, const char *pszParmValue, char **ptr)
3584 pstrcpy(fname, pszParmValue);
3586 if (strequal(fname, INCLUDE_REGISTRY_NAME)) {
3587 if (bInGlobalSection) {
3588 return process_registry_globals(do_parameter);
3591 DEBUG(1, ("\"include = registry\" only effective "
3592 "in %s section\n", GLOBAL_NAME));
3597 standard_sub_basic(get_current_username(), current_user_info.domain,
3598 fname,sizeof(fname));
3600 add_to_file_list(pszParmValue, fname);
3602 string_set(ptr, fname);
3604 if (file_exist(fname, NULL))
3605 return (pm_process(fname, do_section, do_parameter));
3607 DEBUG(2, ("Can't find include file %s\n", fname));
3612 /***************************************************************************
3613 Handle the interpretation of the copy parameter.
3614 ***************************************************************************/
3616 static BOOL handle_copy(int snum, const char *pszParmValue, char **ptr)
3620 service serviceTemp;
3622 string_set(ptr, pszParmValue);
3624 init_service(&serviceTemp);
3628 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3630 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3631 if (iTemp == iServiceIndex) {
3632 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3634 copy_service(ServicePtrs[iServiceIndex],
3636 ServicePtrs[iServiceIndex]->copymap);
3640 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3644 free_service(&serviceTemp);
3648 /***************************************************************************
3649 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3654 idmap uid = 1000-1999
3657 We only do simple parsing checks here. The strings are parsed into useful
3658 structures in the idmap daemon code.
3660 ***************************************************************************/
3662 /* Some lp_ routines to return idmap [ug]id information */
3664 static uid_t idmap_uid_low, idmap_uid_high;
3665 static gid_t idmap_gid_low, idmap_gid_high;
3667 BOOL lp_idmap_uid(uid_t *low, uid_t *high)
3669 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3673 *low = idmap_uid_low;
3676 *high = idmap_uid_high;
3681 BOOL lp_idmap_gid(gid_t *low, gid_t *high)
3683 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3687 *low = idmap_gid_low;
3690 *high = idmap_gid_high;
3695 /* Do some simple checks on "idmap [ug]id" parameter values */
3697 static BOOL handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3701 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3706 string_set(ptr, pszParmValue);
3708 idmap_uid_low = low;
3709 idmap_uid_high = high;
3714 static BOOL handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3718 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3723 string_set(ptr, pszParmValue);
3725 idmap_gid_low = low;
3726 idmap_gid_high = high;
3731 /***************************************************************************
3732 Handle the DEBUG level list.
3733 ***************************************************************************/
3735 static BOOL handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3737 pstring pszParmValue;
3739 pstrcpy(pszParmValue, pszParmValueIn);
3740 string_set(ptr, pszParmValueIn);
3741 return debug_parse_levels( pszParmValue );
3744 /***************************************************************************
3745 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3746 ***************************************************************************/
3748 static const char *append_ldap_suffix( const char *str )
3750 const char *suffix_string;
3754 lp_talloc = talloc_init("lp_talloc");
3756 suffix_string = talloc_asprintf( lp_talloc, "%s,%s", str, Globals.szLdapSuffix );
3757 if ( !suffix_string ) {
3758 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3762 return suffix_string;
3765 const char *lp_ldap_machine_suffix(void)
3767 if (Globals.szLdapMachineSuffix[0])
3768 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3770 return lp_string(Globals.szLdapSuffix);
3773 const char *lp_ldap_user_suffix(void)
3775 if (Globals.szLdapUserSuffix[0])
3776 return append_ldap_suffix(Globals.szLdapUserSuffix);
3778 return lp_string(Globals.szLdapSuffix);
3781 const char *lp_ldap_group_suffix(void)
3783 if (Globals.szLdapGroupSuffix[0])
3784 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3786 return lp_string(Globals.szLdapSuffix);
3789 const char *lp_ldap_idmap_suffix(void)
3791 if (Globals.szLdapIdmapSuffix[0])
3792 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3794 return lp_string(Globals.szLdapSuffix);
3797 /****************************************************************************
3798 set the value for a P_ENUM
3799 ***************************************************************************/
3801 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3806 for (i = 0; parm->enum_list[i].name; i++) {
3807 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3808 *ptr = parm->enum_list[i].value;
3814 /***************************************************************************
3815 ***************************************************************************/
3817 static BOOL handle_printing(int snum, const char *pszParmValue, char **ptr)
3819 static int parm_num = -1;
3822 if ( parm_num == -1 )
3823 parm_num = map_parameter( "printing" );
3825 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3830 s = ServicePtrs[snum];
3832 init_printer_values( s );
3838 /***************************************************************************
3839 Initialise a copymap.
3840 ***************************************************************************/
3842 static void init_copymap(service * pservice)
3845 SAFE_FREE(pservice->copymap);
3846 pservice->copymap = SMB_MALLOC_ARRAY(BOOL,NUMPARAMETERS);
3847 if (!pservice->copymap)
3849 ("Couldn't allocate copymap!! (size %d)\n",
3850 (int)NUMPARAMETERS));
3852 for (i = 0; i < NUMPARAMETERS; i++)
3853 pservice->copymap[i] = True;
3856 /***************************************************************************
3857 Return the local pointer to a parameter given the service number and the
3858 pointer into the default structure.
3859 ***************************************************************************/
3861 void *lp_local_ptr(int snum, void *ptr)
3863 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
3866 /***************************************************************************
3867 Process a parameter for a particular service number. If snum < 0
3868 then assume we are in the globals.
3869 ***************************************************************************/
3871 BOOL lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
3873 int parmnum, i, slen;
3874 void *parm_ptr = NULL; /* where we are going to store the result */
3875 void *def_ptr = NULL;
3878 param_opt_struct *paramo, *data;
3881 parmnum = map_parameter(pszParmName);
3884 if ((sep=strchr(pszParmName, ':')) != NULL) {
3886 ZERO_STRUCT(param_key);
3887 pstr_sprintf(param_key, "%s:", pszParmName);
3888 slen = strlen(param_key);
3889 pstrcat(param_key, sep+1);
3890 trim_char(param_key+slen, ' ', ' ');
3892 data = (snum < 0) ? Globals.param_opt :
3893 ServicePtrs[snum]->param_opt;
3894 /* Traverse destination */
3896 /* If we already have same option, override it */
3897 if (strcmp(data->key, param_key) == 0) {
3898 string_free(&data->value);
3899 str_list_free(&data->list);
3900 data->value = SMB_STRDUP(pszParmValue);
3907 paramo = SMB_XMALLOC_P(param_opt_struct);
3908 paramo->key = SMB_STRDUP(param_key);
3909 paramo->value = SMB_STRDUP(pszParmValue);
3910 paramo->list = NULL;
3912 DLIST_ADD(Globals.param_opt, paramo);
3914 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
3921 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
3925 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
3926 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
3930 def_ptr = parm_table[parmnum].ptr;
3932 /* we might point at a service, the default service or a global */
3936 if (parm_table[parmnum].p_class == P_GLOBAL) {
3938 ("Global parameter %s found in service section!\n",
3943 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
3946 if (!ServicePtrs[snum]->copymap)
3947 init_copymap(ServicePtrs[snum]);
3949 /* this handles the aliases - set the copymap for other entries with
3950 the same data pointer */
3951 for (i = 0; parm_table[i].label; i++)
3952 if (parm_table[i].ptr == parm_table[parmnum].ptr)
3953 ServicePtrs[snum]->copymap[i] = False;
3956 /* if it is a special case then go ahead */
3957 if (parm_table[parmnum].special) {
3958 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
3962 /* now switch on the type of variable it is */
3963 switch (parm_table[parmnum].type)
3966 *(BOOL *)parm_ptr = lp_bool(pszParmValue);
3970 *(BOOL *)parm_ptr = !lp_bool(pszParmValue);
3974 *(int *)parm_ptr = lp_int(pszParmValue);
3978 *(char *)parm_ptr = *pszParmValue;
3982 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
3984 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
3989 str_list_free((char ***)parm_ptr);
3990 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
3994 string_set((char **)parm_ptr, pszParmValue);
3998 string_set((char **)parm_ptr, pszParmValue);
3999 strupper_m(*(char **)parm_ptr);
4003 pstrcpy((char *)parm_ptr, pszParmValue);
4007 pstrcpy((char *)parm_ptr, pszParmValue);
4008 strupper_m((char *)parm_ptr);
4012 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4021 /***************************************************************************
4022 Process a parameter.
4023 ***************************************************************************/
4025 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue)
4027 if (!bInGlobalSection && bGlobalOnly)
4030 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4032 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4033 pszParmName, pszParmValue));
4036 /***************************************************************************
4037 Print a parameter of the specified type.
4038 ***************************************************************************/
4040 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4046 for (i = 0; p->enum_list[i].name; i++) {
4047 if (*(int *)ptr == p->enum_list[i].value) {
4049 p->enum_list[i].name);
4056 fprintf(f, "%s", BOOLSTR(*(BOOL *)ptr));
4060 fprintf(f, "%s", BOOLSTR(!*(BOOL *)ptr));
4064 fprintf(f, "%d", *(int *)ptr);
4068 fprintf(f, "%c", *(char *)ptr);
4072 fprintf(f, "%s", octal_string(*(int *)ptr));
4076 if ((char ***)ptr && *(char ***)ptr) {
4077 char **list = *(char ***)ptr;
4079 for (; *list; list++) {
4080 /* surround strings with whitespace in double quotes */
4081 if ( strchr_m( *list, ' ' ) )
4082 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4084 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4092 fprintf(f, "%s", (char *)ptr);
4098 if (*(char **)ptr) {
4099 fprintf(f, "%s", *(char **)ptr);
4107 /***************************************************************************
4108 Check if two parameters are equal.
4109 ***************************************************************************/
4111 static BOOL equal_parameter(parm_type type, void *ptr1, void *ptr2)
4116 return (*((BOOL *)ptr1) == *((BOOL *)ptr2));
4121 return (*((int *)ptr1) == *((int *)ptr2));
4124 return (*((char *)ptr1) == *((char *)ptr2));
4127 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4132 char *p1 = (char *)ptr1, *p2 = (char *)ptr2;
4137 return (p1 == p2 || strequal(p1, p2));
4142 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4147 return (p1 == p2 || strequal(p1, p2));
4155 /***************************************************************************
4156 Initialize any local varients in the sDefault table.
4157 ***************************************************************************/
4159 void init_locals(void)
4164 /***************************************************************************
4165 Process a new section (service). At this stage all sections are services.
4166 Later we'll have special sections that permit server parameters to be set.
4167 Returns True on success, False on failure.
4168 ***************************************************************************/
4170 static BOOL do_section(const char *pszSectionName)
4173 BOOL isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4174 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4177 /* if we were in a global section then do the local inits */
4178 if (bInGlobalSection && !isglobal)
4181 /* if we've just struck a global section, note the fact. */
4182 bInGlobalSection = isglobal;
4184 /* check for multiple global sections */
4185 if (bInGlobalSection) {
4186 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4190 if (!bInGlobalSection && bGlobalOnly)
4193 /* if we have a current service, tidy it up before moving on */
4196 if (iServiceIndex >= 0)
4197 bRetval = service_ok(iServiceIndex);
4199 /* if all is still well, move to the next record in the services array */
4201 /* We put this here to avoid an odd message order if messages are */
4202 /* issued by the post-processing of a previous section. */
4203 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4205 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4207 DEBUG(0, ("Failed to add a new service\n"));
4216 /***************************************************************************
4217 Determine if a partcular base parameter is currentl set to the default value.
4218 ***************************************************************************/
4220 static BOOL is_default(int i)
4222 if (!defaults_saved)
4224 switch (parm_table[i].type) {
4226 return str_list_compare (parm_table[i].def.lvalue,
4227 *(char ***)parm_table[i].ptr);
4230 return strequal(parm_table[i].def.svalue,
4231 *(char **)parm_table[i].ptr);
4234 return strequal(parm_table[i].def.svalue,
4235 (char *)parm_table[i].ptr);
4238 return parm_table[i].def.bvalue ==
4239 *(BOOL *)parm_table[i].ptr;
4241 return parm_table[i].def.cvalue ==
4242 *(char *)parm_table[i].ptr;
4246 return parm_table[i].def.ivalue ==
4247 *(int *)parm_table[i].ptr;
4254 /***************************************************************************
4255 Display the contents of the global structure.
4256 ***************************************************************************/
4258 static void dump_globals(FILE *f)
4261 param_opt_struct *data;
4263 fprintf(f, "[global]\n");
4265 for (i = 0; parm_table[i].label; i++)
4266 if (parm_table[i].p_class == P_GLOBAL &&
4267 parm_table[i].ptr &&
4268 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4269 if (defaults_saved && is_default(i))
4271 fprintf(f, "\t%s = ", parm_table[i].label);
4272 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4275 if (Globals.param_opt != NULL) {
4276 data = Globals.param_opt;
4278 fprintf(f, "\t%s = %s\n", data->key, data->value);
4285 /***************************************************************************
4286 Return True if a local parameter is currently set to the global default.
4287 ***************************************************************************/
4289 BOOL lp_is_default(int snum, struct parm_struct *parm)
4291 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4293 return equal_parameter(parm->type,
4294 ((char *)ServicePtrs[snum]) + pdiff,
4295 ((char *)&sDefault) + pdiff);
4298 /***************************************************************************
4299 Display the contents of a single services record.
4300 ***************************************************************************/
4302 static void dump_a_service(service * pService, FILE * f)
4305 param_opt_struct *data;
4307 if (pService != &sDefault)
4308 fprintf(f, "[%s]\n", pService->szService);
4310 for (i = 0; parm_table[i].label; i++) {
4312 if (parm_table[i].p_class == P_LOCAL &&
4313 parm_table[i].ptr &&
4314 (*parm_table[i].label != '-') &&
4315 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4318 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4320 if (pService == &sDefault) {
4321 if (defaults_saved && is_default(i))
4324 if (equal_parameter(parm_table[i].type,
4325 ((char *)pService) +
4327 ((char *)&sDefault) +
4332 fprintf(f, "\t%s = ", parm_table[i].label);
4333 print_parameter(&parm_table[i],
4334 ((char *)pService) + pdiff, f);
4339 if (pService->param_opt != NULL) {
4340 data = pService->param_opt;
4342 fprintf(f, "\t%s = %s\n", data->key, data->value);
4348 /***************************************************************************
4349 Display the contents of a parameter of a single services record.
4350 ***************************************************************************/
4352 BOOL dump_a_parameter(int snum, char *parm_name, FILE * f, BOOL isGlobal)
4355 BOOL result = False;
4358 fstring local_parm_name;
4360 const char *parm_opt_value;
4362 /* check for parametrical option */
4363 fstrcpy( local_parm_name, parm_name);
4364 parm_opt = strchr( local_parm_name, ':');
4369 if (strlen(parm_opt)) {
4370 parm_opt_value = lp_parm_const_string( snum,
4371 local_parm_name, parm_opt, NULL);
4372 if (parm_opt_value) {
4373 printf( "%s\n", parm_opt_value);
4380 /* check for a key and print the value */
4387 for (i = 0; parm_table[i].label; i++) {
4388 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4389 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4390 parm_table[i].ptr &&
4391 (*parm_table[i].label != '-') &&
4392 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4397 ptr = parm_table[i].ptr;
4399 service * pService = ServicePtrs[snum];
4400 ptr = ((char *)pService) +
4401 PTR_DIFF(parm_table[i].ptr, &sDefault);
4404 print_parameter(&parm_table[i],
4415 /***************************************************************************
4416 Return info about the requested parameter (given as a string).
4417 Return NULL when the string is not a valid parameter name.
4418 ***************************************************************************/
4420 struct parm_struct *lp_get_parameter(const char *param_name)
4422 int num = map_parameter(param_name);
4428 return &parm_table[num];
4431 /***************************************************************************
4432 Return info about the next parameter in a service.
4433 snum==GLOBAL_SECTION_SNUM gives the globals.
4434 Return NULL when out of parameters.
4435 ***************************************************************************/
4437 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4440 /* do the globals */
4441 for (; parm_table[*i].label; (*i)++) {
4442 if (parm_table[*i].p_class == P_SEPARATOR)
4443 return &parm_table[(*i)++];
4445 if (!parm_table[*i].ptr
4446 || (*parm_table[*i].label == '-'))
4450 && (parm_table[*i].ptr ==
4451 parm_table[(*i) - 1].ptr))
4454 if (is_default(*i) && !allparameters)
4457 return &parm_table[(*i)++];
4460 service *pService = ServicePtrs[snum];
4462 for (; parm_table[*i].label; (*i)++) {
4463 if (parm_table[*i].p_class == P_SEPARATOR)
4464 return &parm_table[(*i)++];
4466 if (parm_table[*i].p_class == P_LOCAL &&
4467 parm_table[*i].ptr &&
4468 (*parm_table[*i].label != '-') &&
4470 (parm_table[*i].ptr !=
4471 parm_table[(*i) - 1].ptr)))
4474 PTR_DIFF(parm_table[*i].ptr,
4477 if (allparameters ||
4478 !equal_parameter(parm_table[*i].type,
4479 ((char *)pService) +
4481 ((char *)&sDefault) +
4484 return &parm_table[(*i)++];
4495 /***************************************************************************
4496 Display the contents of a single copy structure.
4497 ***************************************************************************/
4498 static void dump_copy_map(BOOL *pcopymap)
4504 printf("\n\tNon-Copied parameters:\n");
4506 for (i = 0; parm_table[i].label; i++)
4507 if (parm_table[i].p_class == P_LOCAL &&
4508 parm_table[i].ptr && !pcopymap[i] &&
4509 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4511 printf("\t\t%s\n", parm_table[i].label);
4516 /***************************************************************************
4517 Return TRUE if the passed service number is within range.
4518 ***************************************************************************/
4520 BOOL lp_snum_ok(int iService)
4522 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4525 /***************************************************************************
4526 Auto-load some home services.
4527 ***************************************************************************/
4529 static void lp_add_auto_services(char *str)
4538 s = SMB_STRDUP(str);
4542 homes = lp_servicenumber(HOMES_NAME);
4544 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4545 char *home = get_user_home_dir(p);
4547 if (lp_servicenumber(p) >= 0)
4550 if (home && homes >= 0)
4551 lp_add_home(p, homes, p, home);
4556 /***************************************************************************
4557 Auto-load one printer.
4558 ***************************************************************************/
4560 void lp_add_one_printer(char *name, char *comment)
4562 int printers = lp_servicenumber(PRINTERS_NAME);
4565 if (lp_servicenumber(name) < 0) {
4566 lp_add_printer(name, printers);
4567 if ((i = lp_servicenumber(name)) >= 0) {
4568 string_set(&ServicePtrs[i]->comment, comment);
4569 ServicePtrs[i]->autoloaded = True;
4574 /***************************************************************************
4575 Have we loaded a services file yet?
4576 ***************************************************************************/
4578 BOOL lp_loaded(void)
4583 /***************************************************************************
4584 Unload unused services.
4585 ***************************************************************************/
4587 void lp_killunused(BOOL (*snumused) (int))
4590 for (i = 0; i < iNumServices; i++) {
4594 /* don't kill autoloaded or usershare services */
4595 if ( ServicePtrs[i]->autoloaded ||
4596 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4600 if (!snumused || !snumused(i)) {
4601 free_service_byindex(i);
4606 /***************************************************************************
4608 ***************************************************************************/
4610 void lp_killservice(int iServiceIn)
4612 if (VALID(iServiceIn)) {
4613 free_service_byindex(iServiceIn);
4617 /***************************************************************************
4618 Save the curent values of all global and sDefault parameters into the
4619 defaults union. This allows swat and testparm to show only the
4620 changed (ie. non-default) parameters.
4621 ***************************************************************************/
4623 static void lp_save_defaults(void)
4626 for (i = 0; parm_table[i].label; i++) {
4627 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4629 switch (parm_table[i].type) {
4631 str_list_copy(&(parm_table[i].def.lvalue),
4632 *(const char ***)parm_table[i].ptr);
4636 if (parm_table[i].ptr) {
4637 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4639 parm_table[i].def.svalue = NULL;
4644 if (parm_table[i].ptr) {
4645 parm_table[i].def.svalue = SMB_STRDUP((char *)parm_table[i].ptr);
4647 parm_table[i].def.svalue = NULL;
4652 parm_table[i].def.bvalue =
4653 *(BOOL *)parm_table[i].ptr;
4656 parm_table[i].def.cvalue =
4657 *(char *)parm_table[i].ptr;
4662 parm_table[i].def.ivalue =
4663 *(int *)parm_table[i].ptr;
4669 defaults_saved = True;
4672 /*******************************************************************
4673 Set the server type we will announce as via nmbd.
4674 ********************************************************************/
4676 static const struct srv_role_tab {
4678 const char *role_str;
4679 } srv_role_tab [] = {
4680 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4681 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4682 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4683 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4687 const char* server_role_str(uint32 role)
4690 for (i=0; srv_role_tab[i].role_str; i++) {
4691 if (role == srv_role_tab[i].role) {
4692 return srv_role_tab[i].role_str;
4698 static void set_server_role(void)
4700 server_role = ROLE_STANDALONE;
4702 switch (lp_security()) {
4704 if (lp_domain_logons())
4705 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4708 if (lp_domain_logons())
4709 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4710 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4711 server_role = ROLE_STANDALONE;
4714 if (lp_domain_logons()) {
4715 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4716 server_role = ROLE_DOMAIN_BDC;
4719 server_role = ROLE_DOMAIN_MEMBER;
4722 if (lp_domain_logons()) {
4723 server_role = ROLE_DOMAIN_PDC;
4726 server_role = ROLE_DOMAIN_MEMBER;
4729 if (lp_domain_logons()) {
4731 if (Globals.bDomainMaster) /* auto or yes */
4732 server_role = ROLE_DOMAIN_PDC;
4734 server_role = ROLE_DOMAIN_BDC;
4738 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4742 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4745 /***********************************************************
4746 If we should send plaintext/LANMAN passwords in the clinet
4747 ************************************************************/
4749 static void set_allowed_client_auth(void)
4751 if (Globals.bClientNTLMv2Auth) {
4752 Globals.bClientLanManAuth = False;
4754 if (!Globals.bClientLanManAuth) {
4755 Globals.bClientPlaintextAuth = False;
4759 /***************************************************************************
4761 The following code allows smbd to read a user defined share file.
4762 Yes, this is my intent. Yes, I'm comfortable with that...
4764 THE FOLLOWING IS SECURITY CRITICAL CODE.
4766 It washes your clothes, it cleans your house, it guards you while you sleep...
4767 Do not f%^k with it....
4768 ***************************************************************************/
4770 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4772 /***************************************************************************
4773 Check allowed stat state of a usershare file.
4774 Ensure we print out who is dicking with us so the admin can
4775 get their sorry ass fired.
4776 ***************************************************************************/
4778 static BOOL check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4780 if (!S_ISREG(psbuf->st_mode)) {
4781 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4782 "not a regular file\n",
4783 fname, (unsigned int)psbuf->st_uid ));
4787 /* Ensure this doesn't have the other write bit set. */
4788 if (psbuf->st_mode & S_IWOTH) {
4789 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4790 "public write. Refusing to allow as a usershare file.\n",
4791 fname, (unsigned int)psbuf->st_uid ));
4795 /* Should be 10k or less. */
4796 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4797 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4798 "too large (%u) to be a user share file.\n",
4799 fname, (unsigned int)psbuf->st_uid,
4800 (unsigned int)psbuf->st_size ));
4807 /***************************************************************************
4808 Parse the contents of a usershare file.
4809 ***************************************************************************/
4811 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4812 SMB_STRUCT_STAT *psbuf,
4813 const char *servicename,
4822 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4823 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4826 SMB_STRUCT_STAT sbuf;
4828 *pallow_guest = False;
4831 return USERSHARE_MALFORMED_FILE;
4834 if (strcmp(lines[0], "#VERSION 1") == 0) {
4836 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4839 return USERSHARE_MALFORMED_FILE;
4842 return USERSHARE_BAD_VERSION;
4845 if (strncmp(lines[1], "path=", 5) != 0) {
4846 return USERSHARE_MALFORMED_PATH;
4849 pstrcpy(sharepath, &lines[1][5]);
4850 trim_string(sharepath, " ", " ");
4852 if (strncmp(lines[2], "comment=", 8) != 0) {
4853 return USERSHARE_MALFORMED_COMMENT_DEF;
4856 pstrcpy(comment, &lines[2][8]);
4857 trim_string(comment, " ", " ");
4858 trim_char(comment, '"', '"');
4860 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
4861 return USERSHARE_MALFORMED_ACL_DEF;
4864 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
4865 return USERSHARE_ACL_ERR;
4869 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
4870 return USERSHARE_MALFORMED_ACL_DEF;
4872 if (lines[4][9] == 'y') {
4873 *pallow_guest = True;
4877 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
4878 /* Path didn't change, no checks needed. */
4879 return USERSHARE_OK;
4882 /* The path *must* be absolute. */
4883 if (sharepath[0] != '/') {
4884 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
4885 servicename, sharepath));
4886 return USERSHARE_PATH_NOT_ABSOLUTE;
4889 /* If there is a usershare prefix deny list ensure one of these paths
4890 doesn't match the start of the user given path. */
4891 if (prefixdenylist) {
4893 for ( i=0; prefixdenylist[i]; i++ ) {
4894 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
4895 servicename, i, prefixdenylist[i], sharepath ));
4896 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
4897 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
4898 "usershare prefix deny list entries.\n",
4899 servicename, sharepath));
4900 return USERSHARE_PATH_IS_DENIED;
4905 /* If there is a usershare prefix allow list ensure one of these paths
4906 does match the start of the user given path. */
4908 if (prefixallowlist) {
4910 for ( i=0; prefixallowlist[i]; i++ ) {
4911 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
4912 servicename, i, prefixallowlist[i], sharepath ));
4913 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
4917 if (prefixallowlist[i] == NULL) {
4918 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
4919 "usershare prefix allow list entries.\n",
4920 servicename, sharepath));
4921 return USERSHARE_PATH_NOT_ALLOWED;
4925 /* Ensure this is pointing to a directory. */
4926 dp = sys_opendir(sharepath);
4929 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
4930 servicename, sharepath));
4931 return USERSHARE_PATH_NOT_DIRECTORY;
4934 /* Ensure the owner of the usershare file has permission to share
4937 if (sys_stat(sharepath, &sbuf) == -1) {
4938 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
4939 servicename, sharepath, strerror(errno) ));
4941 return USERSHARE_POSIX_ERR;
4946 if (!S_ISDIR(sbuf.st_mode)) {
4947 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
4948 servicename, sharepath ));
4949 return USERSHARE_PATH_NOT_DIRECTORY;
4952 /* Check if sharing is restricted to owner-only. */
4953 /* psbuf is the stat of the usershare definition file,
4954 sbuf is the stat of the target directory to be shared. */
4956 if (lp_usershare_owner_only()) {
4957 /* root can share anything. */
4958 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
4959 return USERSHARE_PATH_NOT_ALLOWED;
4963 return USERSHARE_OK;
4966 /***************************************************************************
4967 Deal with a usershare file.
4970 -1 - Bad name, invalid contents.
4971 - service name already existed and not a usershare, problem
4972 with permissions to share directory etc.
4973 ***************************************************************************/
4975 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
4977 SMB_STRUCT_STAT sbuf;
4978 SMB_STRUCT_STAT lsbuf;
4982 fstring service_name;
4983 char **lines = NULL;
4987 TALLOC_CTX *ctx = NULL;
4988 SEC_DESC *psd = NULL;
4989 BOOL guest_ok = False;
4991 /* Ensure share name doesn't contain invalid characters. */
4992 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
4993 DEBUG(0,("process_usershare_file: share name %s contains "
4994 "invalid characters (any of %s)\n",
4995 file_name, INVALID_SHARENAME_CHARS ));
4999 fstrcpy(service_name, file_name);
5001 pstrcpy(fname, dir_name);
5002 pstrcat(fname, "/");
5003 pstrcat(fname, file_name);
5005 /* Minimize the race condition by doing an lstat before we
5006 open and fstat. Ensure this isn't a symlink link. */
5008 if (sys_lstat(fname, &lsbuf) != 0) {
5009 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5010 fname, strerror(errno) ));
5014 /* This must be a regular file, not a symlink, directory or
5015 other strange filetype. */
5016 if (!check_usershare_stat(fname, &lsbuf)) {
5020 /* See if there is already a servicenum for this name. */
5021 /* tdb_fetch_int32 returns -1 if not found. */
5022 iService = (int)tdb_fetch_int32(ServiceHash, canonicalize_servicename(service_name) );
5024 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5025 /* Nothing changed - Mark valid and return. */
5026 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5028 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5032 /* Try and open the file read only - no symlinks allowed. */
5034 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5036 fd = sys_open(fname, O_RDONLY, 0);
5040 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5041 fname, strerror(errno) ));
5045 /* Now fstat to be *SURE* it's a regular file. */
5046 if (sys_fstat(fd, &sbuf) != 0) {
5048 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5049 fname, strerror(errno) ));
5053 /* Is it the same dev/inode as was lstated ? */
5054 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5056 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5057 "Symlink spoofing going on ?\n", fname ));
5061 /* This must be a regular file, not a symlink, directory or
5062 other strange filetype. */
5063 if (!check_usershare_stat(fname, &sbuf)) {
5067 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5070 if (lines == NULL) {
5071 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5072 fname, (unsigned int)sbuf.st_uid ));
5076 /* Should we allow printers to be shared... ? */
5077 ctx = talloc_init("usershare_sd_xctx");
5079 file_lines_free(lines);
5083 if (parse_usershare_file(ctx, &sbuf, service_name,
5084 iService, lines, numlines, sharepath,
5085 comment, &psd, &guest_ok) != USERSHARE_OK) {
5086 talloc_destroy(ctx);
5087 file_lines_free(lines);
5091 file_lines_free(lines);
5093 /* Everything ok - add the service possibly using a template. */
5095 const service *sp = &sDefault;
5096 if (snum_template != -1) {
5097 sp = ServicePtrs[snum_template];
5100 if ((iService = add_a_service(sp, service_name)) < 0) {
5101 DEBUG(0, ("process_usershare_file: Failed to add "
5102 "new service %s\n", service_name));
5103 talloc_destroy(ctx);
5107 /* Read only is controlled by usershare ACL below. */
5108 ServicePtrs[iService]->bRead_only = False;
5111 /* Write the ACL of the new/modified share. */
5112 if (!set_share_security(service_name, psd)) {
5113 DEBUG(0, ("process_usershare_file: Failed to set share "
5114 "security for user share %s\n",
5116 lp_remove_service(iService);
5117 talloc_destroy(ctx);
5121 talloc_destroy(ctx);
5123 /* If from a template it may be marked invalid. */
5124 ServicePtrs[iService]->valid = True;
5126 /* Set the service as a valid usershare. */
5127 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5129 /* Set guest access. */
5130 if (lp_usershare_allow_guests()) {
5131 ServicePtrs[iService]->bGuest_ok = guest_ok;
5134 /* And note when it was loaded. */
5135 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5136 string_set(&ServicePtrs[iService]->szPath, sharepath);
5137 string_set(&ServicePtrs[iService]->comment, comment);
5142 /***************************************************************************
5143 Checks if a usershare entry has been modified since last load.
5144 ***************************************************************************/
5146 static BOOL usershare_exists(int iService, time_t *last_mod)
5148 SMB_STRUCT_STAT lsbuf;
5149 const char *usersharepath = Globals.szUsersharePath;
5152 pstrcpy(fname, usersharepath);
5153 pstrcat(fname, "/");
5154 pstrcat(fname, ServicePtrs[iService]->szService);
5156 if (sys_lstat(fname, &lsbuf) != 0) {
5160 if (!S_ISREG(lsbuf.st_mode)) {
5164 *last_mod = lsbuf.st_mtime;
5168 /***************************************************************************
5169 Load a usershare service by name. Returns a valid servicenumber or -1.
5170 ***************************************************************************/
5172 int load_usershare_service(const char *servicename)
5174 SMB_STRUCT_STAT sbuf;
5175 const char *usersharepath = Globals.szUsersharePath;
5176 int max_user_shares = Globals.iUsershareMaxShares;
5177 int snum_template = -1;
5179 if (*usersharepath == 0 || max_user_shares == 0) {
5183 if (sys_stat(usersharepath, &sbuf) != 0) {
5184 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5185 usersharepath, strerror(errno) ));
5189 if (!S_ISDIR(sbuf.st_mode)) {
5190 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5196 * This directory must be owned by root, and have the 't' bit set.
5197 * It also must not be writable by "other".
5201 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5203 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5205 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5206 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5211 /* Ensure the template share exists if it's set. */
5212 if (Globals.szUsershareTemplateShare[0]) {
5213 /* We can't use lp_servicenumber here as we are recommending that
5214 template shares have -valid=False set. */
5215 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5216 if (ServicePtrs[snum_template]->szService &&
5217 strequal(ServicePtrs[snum_template]->szService,
5218 Globals.szUsershareTemplateShare)) {
5223 if (snum_template == -1) {
5224 DEBUG(0,("load_usershare_service: usershare template share %s "
5225 "does not exist.\n",
5226 Globals.szUsershareTemplateShare ));
5231 return process_usershare_file(usersharepath, servicename, snum_template);
5234 /***************************************************************************
5235 Load all user defined shares from the user share directory.
5236 We only do this if we're enumerating the share list.
5237 This is the function that can delete usershares that have
5239 ***************************************************************************/
5241 int load_usershare_shares(void)
5244 SMB_STRUCT_STAT sbuf;
5245 SMB_STRUCT_DIRENT *de;
5246 int num_usershares = 0;
5247 int max_user_shares = Globals.iUsershareMaxShares;
5248 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5249 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5250 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5252 int snum_template = -1;
5253 const char *usersharepath = Globals.szUsersharePath;
5254 int ret = lp_numservices();
5256 if (max_user_shares == 0 || *usersharepath == '\0') {
5257 return lp_numservices();
5260 if (sys_stat(usersharepath, &sbuf) != 0) {
5261 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5262 usersharepath, strerror(errno) ));
5267 * This directory must be owned by root, and have the 't' bit set.
5268 * It also must not be writable by "other".
5272 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5274 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5276 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5277 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5282 /* Ensure the template share exists if it's set. */
5283 if (Globals.szUsershareTemplateShare[0]) {
5284 /* We can't use lp_servicenumber here as we are recommending that
5285 template shares have -valid=False set. */
5286 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5287 if (ServicePtrs[snum_template]->szService &&
5288 strequal(ServicePtrs[snum_template]->szService,
5289 Globals.szUsershareTemplateShare)) {
5294 if (snum_template == -1) {
5295 DEBUG(0,("load_usershare_shares: usershare template share %s "
5296 "does not exist.\n",
5297 Globals.szUsershareTemplateShare ));
5302 /* Mark all existing usershares as pending delete. */
5303 for (iService = iNumServices - 1; iService >= 0; iService--) {
5304 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5305 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5309 dp = sys_opendir(usersharepath);
5311 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5312 usersharepath, strerror(errno) ));
5316 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5317 (de = sys_readdir(dp));
5318 num_dir_entries++ ) {
5320 const char *n = de->d_name;
5322 /* Ignore . and .. */
5324 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5330 /* Temporary file used when creating a share. */
5331 num_tmp_dir_entries++;
5334 /* Allow 20% tmp entries. */
5335 if (num_tmp_dir_entries > allowed_tmp_entries) {
5336 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5337 "in directory %s\n",
5338 num_tmp_dir_entries, usersharepath));
5342 r = process_usershare_file(usersharepath, n, snum_template);
5344 /* Update the services count. */
5346 if (num_usershares >= max_user_shares) {
5347 DEBUG(0,("load_usershare_shares: max user shares reached "
5348 "on file %s in directory %s\n",
5349 n, usersharepath ));
5352 } else if (r == -1) {
5353 num_bad_dir_entries++;
5356 /* Allow 20% bad entries. */
5357 if (num_bad_dir_entries > allowed_bad_entries) {
5358 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5359 "in directory %s\n",
5360 num_bad_dir_entries, usersharepath));
5364 /* Allow 20% bad entries. */
5365 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5366 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5367 "in directory %s\n",
5368 num_dir_entries, usersharepath));
5375 /* Sweep through and delete any non-refreshed usershares that are
5376 not currently in use. */
5377 for (iService = iNumServices - 1; iService >= 0; iService--) {
5378 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5379 if (conn_snum_used(iService)) {
5382 /* Remove from the share ACL db. */
5383 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5384 lp_servicename(iService) ));
5385 delete_share_security(snum2params_static(iService));
5386 free_service_byindex(iService);
5390 return lp_numservices();
5393 /********************************************************
5394 Destroy global resources allocated in this file
5395 ********************************************************/
5397 void gfree_loadparm(void)
5399 struct file_lists *f;
5400 struct file_lists *next;
5405 /* Free the file lists */
5410 SAFE_FREE( f->name );
5411 SAFE_FREE( f->subfname );
5416 /* Free resources allocated to services */
5418 for ( i = 0; i < iNumServices; i++ ) {
5420 free_service_byindex(i);
5424 SAFE_FREE( ServicePtrs );
5427 /* Now release all resources allocated to global
5428 parameters and the default service */
5430 for (i = 0; parm_table[i].label; i++)
5432 if ( parm_table[i].type == P_STRING
5433 || parm_table[i].type == P_USTRING )
5435 string_free( (char**)parm_table[i].ptr );
5437 else if (parm_table[i].type == P_LIST) {
5438 str_list_free( (char***)parm_table[i].ptr );
5443 /***************************************************************************
5444 Load the services array from the services file. Return True on success,
5446 ***************************************************************************/
5448 BOOL lp_load(const char *pszFname,
5452 BOOL initialize_globals)
5456 param_opt_struct *data, *pdata;
5458 pstrcpy(n2, pszFname);
5460 standard_sub_basic( get_current_username(), current_user_info.domain,
5463 add_to_file_list(pszFname, n2);
5467 DEBUG(3, ("lp_load: refreshing parameters\n"));
5469 bInGlobalSection = True;
5470 bGlobalOnly = global_only;
5472 init_globals(! initialize_globals);
5475 if (save_defaults) {
5480 if (Globals.param_opt != NULL) {
5481 data = Globals.param_opt;
5483 string_free(&data->key);
5484 string_free(&data->value);
5485 str_list_free(&data->list);
5490 Globals.param_opt = NULL;
5493 /* We get sections first, so have to start 'behind' to make up */
5495 bRetval = pm_process(n2, do_section, do_parameter);
5497 /* finish up the last section */
5498 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5500 if (iServiceIndex >= 0)
5501 bRetval = service_ok(iServiceIndex);
5503 lp_add_auto_services(lp_auto_services());
5506 /* When 'restrict anonymous = 2' guest connections to ipc$
5508 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5509 if ( lp_enable_asu_support() )
5510 lp_add_ipc("ADMIN$", False);
5514 set_default_server_announce_type();
5515 set_allowed_client_auth();
5519 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5520 /* if bWINSsupport is true and we are in the client */
5521 if (in_client && Globals.bWINSsupport) {
5522 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5530 /***************************************************************************
5531 Reset the max number of services.
5532 ***************************************************************************/
5534 void lp_resetnumservices(void)
5539 /***************************************************************************
5540 Return the max number of services.
5541 ***************************************************************************/
5543 int lp_numservices(void)
5545 return (iNumServices);
5548 /***************************************************************************
5549 Display the contents of the services array in human-readable form.
5550 ***************************************************************************/
5552 void lp_dump(FILE *f, BOOL show_defaults, int maxtoprint)
5557 defaults_saved = False;
5561 dump_a_service(&sDefault, f);
5563 for (iService = 0; iService < maxtoprint; iService++) {
5565 lp_dump_one(f, show_defaults, iService);
5569 /***************************************************************************
5570 Display the contents of one service in human-readable form.
5571 ***************************************************************************/
5573 void lp_dump_one(FILE * f, BOOL show_defaults, int snum)
5576 if (ServicePtrs[snum]->szService[0] == '\0')
5578 dump_a_service(ServicePtrs[snum], f);
5582 /***************************************************************************
5583 Return the number of the service with the given name, or -1 if it doesn't
5584 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5585 getservicebyname()! This works ONLY if all services have been loaded, and
5586 does not copy the found service.
5587 ***************************************************************************/
5589 int lp_servicenumber(const char *pszServiceName)
5592 fstring serviceName;
5594 if (!pszServiceName) {
5595 return GLOBAL_SECTION_SNUM;
5598 for (iService = iNumServices - 1; iService >= 0; iService--) {
5599 if (VALID(iService) && ServicePtrs[iService]->szService) {
5601 * The substitution here is used to support %U is
5604 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5605 standard_sub_basic(get_current_username(),
5606 current_user_info.domain,
5607 serviceName,sizeof(serviceName));
5608 if (strequal(serviceName, pszServiceName)) {
5614 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5617 if (!usershare_exists(iService, &last_mod)) {
5618 /* Remove the share security tdb entry for it. */
5619 delete_share_security(snum2params_static(iService));
5620 /* Remove it from the array. */
5621 free_service_byindex(iService);
5622 /* Doesn't exist anymore. */
5623 return GLOBAL_SECTION_SNUM;
5626 /* Has it been modified ? If so delete and reload. */
5627 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5628 /* Remove it from the array. */
5629 free_service_byindex(iService);
5630 /* and now reload it. */
5631 iService = load_usershare_service(pszServiceName);
5636 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5637 return GLOBAL_SECTION_SNUM;
5643 BOOL share_defined(const char *service_name)
5645 return (lp_servicenumber(service_name) != -1);
5648 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5649 const char *sharename)
5651 struct share_params *result;
5655 if (!(sname = SMB_STRDUP(sharename))) {
5659 snum = find_service(sname);
5666 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5667 DEBUG(0, ("talloc failed\n"));
5671 result->service = snum;
5675 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5677 struct share_iterator *result;
5679 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5680 DEBUG(0, ("talloc failed\n"));
5684 result->next_id = 0;
5688 struct share_params *next_share(struct share_iterator *list)
5690 struct share_params *result;
5692 while (!lp_snum_ok(list->next_id) &&
5693 (list->next_id < lp_numservices())) {
5697 if (list->next_id >= lp_numservices()) {
5701 if (!(result = TALLOC_P(list, struct share_params))) {
5702 DEBUG(0, ("talloc failed\n"));
5706 result->service = list->next_id;
5711 struct share_params *next_printer(struct share_iterator *list)
5713 struct share_params *result;
5715 while ((result = next_share(list)) != NULL) {
5716 if (lp_print_ok(result->service)) {
5724 * This is a hack for a transition period until we transformed all code from
5725 * service numbers to struct share_params.
5728 struct share_params *snum2params_static(int snum)
5730 static struct share_params result;
5731 result.service = snum;
5735 /*******************************************************************
5736 A useful volume label function.
5737 ********************************************************************/
5739 const char *volume_label(int snum)
5742 const char *label = lp_volume(snum);
5744 label = lp_servicename(snum);
5747 /* This returns a 33 byte guarenteed null terminated string. */
5748 ret = talloc_strndup(main_loop_talloc_get(), label, 32);
5755 /*******************************************************************
5756 Set the server type we will announce as via nmbd.
5757 ********************************************************************/
5759 static void set_default_server_announce_type(void)
5761 default_server_announce = 0;
5762 default_server_announce |= SV_TYPE_WORKSTATION;
5763 default_server_announce |= SV_TYPE_SERVER;
5764 default_server_announce |= SV_TYPE_SERVER_UNIX;
5766 /* note that the flag should be set only if we have a
5767 printer service but nmbd doesn't actually load the
5768 services so we can't tell --jerry */
5770 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5772 switch (lp_announce_as()) {
5773 case ANNOUNCE_AS_NT_SERVER:
5774 default_server_announce |= SV_TYPE_SERVER_NT;
5775 /* fall through... */
5776 case ANNOUNCE_AS_NT_WORKSTATION:
5777 default_server_announce |= SV_TYPE_NT;
5779 case ANNOUNCE_AS_WIN95:
5780 default_server_announce |= SV_TYPE_WIN95_PLUS;
5782 case ANNOUNCE_AS_WFW:
5783 default_server_announce |= SV_TYPE_WFW;
5789 switch (lp_server_role()) {
5790 case ROLE_DOMAIN_MEMBER:
5791 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5793 case ROLE_DOMAIN_PDC:
5794 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5796 case ROLE_DOMAIN_BDC:
5797 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5799 case ROLE_STANDALONE:
5803 if (lp_time_server())
5804 default_server_announce |= SV_TYPE_TIME_SOURCE;
5806 if (lp_host_msdfs())
5807 default_server_announce |= SV_TYPE_DFS_SERVER;
5810 /***********************************************************
5811 returns role of Samba server
5812 ************************************************************/
5814 int lp_server_role(void)
5819 /***********************************************************
5820 If we are PDC then prefer us as DMB
5821 ************************************************************/
5823 BOOL lp_domain_master(void)
5825 if (Globals.bDomainMaster == Auto)
5826 return (lp_server_role() == ROLE_DOMAIN_PDC);
5828 return Globals.bDomainMaster;
5831 /***********************************************************
5832 If we are DMB then prefer us as LMB
5833 ************************************************************/
5835 BOOL lp_preferred_master(void)
5837 if (Globals.bPreferredMaster == Auto)
5838 return (lp_local_master() && lp_domain_master());
5840 return Globals.bPreferredMaster;
5843 /*******************************************************************
5845 ********************************************************************/
5847 void lp_remove_service(int snum)
5849 ServicePtrs[snum]->valid = False;
5850 invalid_services[num_invalid_services++] = snum;
5853 /*******************************************************************
5855 ********************************************************************/
5857 void lp_copy_service(int snum, const char *new_name)
5859 do_section(new_name);
5861 snum = lp_servicenumber(new_name);
5863 lp_do_parameter(snum, "copy", lp_servicename(snum));
5868 /*******************************************************************
5869 Get the default server type we will announce as via nmbd.
5870 ********************************************************************/
5872 int lp_default_server_announce(void)
5874 return default_server_announce;
5877 /*******************************************************************
5878 Split the announce version into major and minor numbers.
5879 ********************************************************************/
5881 int lp_major_announce_version(void)
5883 static BOOL got_major = False;
5884 static int major_version = DEFAULT_MAJOR_VERSION;
5889 return major_version;
5892 if ((vers = lp_announce_version()) == NULL)
5893 return major_version;
5895 if ((p = strchr_m(vers, '.')) == 0)
5896 return major_version;
5899 major_version = atoi(vers);
5900 return major_version;
5903 int lp_minor_announce_version(void)
5905 static BOOL got_minor = False;
5906 static int minor_version = DEFAULT_MINOR_VERSION;
5911 return minor_version;
5914 if ((vers = lp_announce_version()) == NULL)
5915 return minor_version;
5917 if ((p = strchr_m(vers, '.')) == 0)
5918 return minor_version;
5921 minor_version = atoi(p);
5922 return minor_version;
5925 /***********************************************************
5926 Set the global name resolution order (used in smbclient).
5927 ************************************************************/
5929 void lp_set_name_resolve_order(const char *new_order)
5931 string_set(&Globals.szNameResolveOrder, new_order);
5934 const char *lp_printername(int snum)
5936 const char *ret = _lp_printername(snum);
5937 if (ret == NULL || (ret != NULL && *ret == '\0'))
5938 ret = lp_const_servicename(snum);
5944 /***********************************************************
5945 Allow daemons such as winbindd to fix their logfile name.
5946 ************************************************************/
5948 void lp_set_logfile(const char *name)
5950 string_set(&Globals.szLogFile, name);
5951 pstrcpy(debugf, name);
5954 /*******************************************************************
5955 Return the max print jobs per queue.
5956 ********************************************************************/
5958 int lp_maxprintjobs(int snum)
5960 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
5961 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
5962 maxjobs = PRINT_MAX_JOBID - 1;
5967 const char *lp_printcapname(void)
5969 if ((Globals.szPrintcapname != NULL) &&
5970 (Globals.szPrintcapname[0] != '\0'))
5971 return Globals.szPrintcapname;
5973 if (sDefault.iPrinting == PRINT_CUPS) {
5981 if (sDefault.iPrinting == PRINT_BSD)
5982 return "/etc/printcap";
5984 return PRINTCAP_NAME;
5987 /*******************************************************************
5988 Ensure we don't use sendfile if server smb signing is active.
5989 ********************************************************************/
5991 static uint32 spoolss_state;
5993 BOOL lp_disable_spoolss( void )
5995 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
5996 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
5998 return spoolss_state == SVCCTL_STOPPED ? True : False;
6001 void lp_set_spoolss_state( uint32 state )
6003 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6005 spoolss_state = state;
6008 uint32 lp_get_spoolss_state( void )
6010 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6013 /*******************************************************************
6014 Ensure we don't use sendfile if server smb signing is active.
6015 ********************************************************************/
6017 BOOL lp_use_sendfile(int snum)
6019 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6020 if (Protocol < PROTOCOL_NT1) {
6023 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
6026 /*******************************************************************
6027 Turn off sendfile if we find the underlying OS doesn't support it.
6028 ********************************************************************/
6030 void set_use_sendfile(int snum, BOOL val)
6032 if (LP_SNUM_OK(snum))
6033 ServicePtrs[snum]->bUseSendfile = val;
6035 sDefault.bUseSendfile = val;
6038 /*******************************************************************
6039 Turn off storing DOS attributes if this share doesn't support it.
6040 ********************************************************************/
6042 void set_store_dos_attributes(int snum, BOOL val)
6044 if (!LP_SNUM_OK(snum))
6046 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6049 void lp_set_mangling_method(const char *new_method)
6051 string_set(&Globals.szManglingMethod, new_method);
6054 /*******************************************************************
6055 Global state for POSIX pathname processing.
6056 ********************************************************************/
6058 static BOOL posix_pathnames;
6060 BOOL lp_posix_pathnames(void)
6062 return posix_pathnames;
6065 /*******************************************************************
6066 Change everything needed to ensure POSIX pathname processing (currently
6068 ********************************************************************/
6070 void lp_set_posix_pathnames(void)
6072 posix_pathnames = True;
6075 /*******************************************************************
6076 Global state for POSIX lock processing - CIFS unix extensions.
6077 ********************************************************************/
6079 BOOL posix_default_lock_was_set;
6080 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6082 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6084 if (posix_default_lock_was_set) {
6085 return posix_cifsx_locktype;
6087 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6091 /*******************************************************************
6092 ********************************************************************/
6094 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6096 posix_default_lock_was_set = True;
6097 posix_cifsx_locktype = val;