2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 BOOL in_client = False; /* Not in the client by default */
58 extern pstring user_socket_options;
59 extern enum protocol_types Protocol;
60 extern userdom_struct current_user_info;
63 #define GLOBAL_NAME "global"
67 #define PRINTERS_NAME "printers"
71 #define HOMES_NAME "homes"
74 /* the special value for the include parameter
75 * to be interpreted not as a file name but to
76 * trigger loading of the global smb.conf options
78 #ifndef INCLUDE_REGISTRY_NAME
79 #define INCLUDE_REGISTRY_NAME "registry"
82 static int regdb_last_seqnum = 0;
83 static BOOL include_registry_globals = False;
85 /* some helpful bits */
86 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
87 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
89 #define USERSHARE_VALID 1
90 #define USERSHARE_PENDING_DELETE 2
92 BOOL use_getwd_cache = True;
94 extern int extra_time_offset;
96 static BOOL defaults_saved = False;
98 typedef struct _param_opt_struct param_opt_struct;
99 struct _param_opt_struct {
100 param_opt_struct *prev, *next;
107 * This structure describes global (ie., server-wide) parameters.
113 char *display_charset;
114 char *szPrintcapname;
115 char *szAddPortCommand;
116 char *szEnumPortsCommand;
117 char *szAddPrinterCommand;
118 char *szDeletePrinterCommand;
119 char *szOs2DriverMap;
123 char *szDefaultService;
127 char *szServerString;
128 char *szAutoServices;
129 char *szPasswdProgram;
133 char *szSMBPasswdFile;
135 char *szPassdbBackend;
136 char **szPreloadModules;
137 char *szPasswordServer;
138 char *szSocketOptions;
140 char *szAfsUsernameMap;
141 int iAfsTokenLifetime;
142 char *szLogNtTokenCommand;
148 char **szWINSservers;
150 char *szRemoteAnnounce;
151 char *szRemoteBrowseSync;
152 char *szSocketAddress;
153 char *szNISHomeMapName;
154 char *szAnnounceVersion; /* This is initialised in init_globals */
157 char **szNetbiosAliases;
158 char *szNetbiosScope;
159 char *szNameResolveOrder;
161 char *szAddUserScript;
162 char *szRenameUserScript;
163 char *szDelUserScript;
164 char *szAddGroupScript;
165 char *szDelGroupScript;
166 char *szAddUserToGroupScript;
167 char *szDelUserFromGroupScript;
168 char *szSetPrimaryGroupScript;
169 char *szAddMachineScript;
170 char *szShutdownScript;
171 char *szAbortShutdownScript;
172 char *szUsernameMapScript;
173 char *szCheckPasswordScript;
180 BOOL bPassdbExpandExplicit;
181 int AlgorithmicRidBase;
182 char *szTemplateHomedir;
183 char *szTemplateShell;
184 char *szWinbindSeparator;
185 BOOL bWinbindEnumUsers;
186 BOOL bWinbindEnumGroups;
187 BOOL bWinbindUseDefaultDomain;
188 BOOL bWinbindTrustedDomainsOnly;
189 BOOL bWinbindNestedGroups;
190 int winbind_expand_groups;
191 BOOL bWinbindRefreshTickets;
192 BOOL bWinbindOfflineLogon;
193 BOOL bWinbindNormalizeNames;
194 BOOL bWinbindRpcOnly;
195 char **szIdmapDomains;
196 char **szIdmapBackend; /* deprecated */
197 char *szIdmapAllocBackend;
198 char *szAddShareCommand;
199 char *szChangeShareCommand;
200 char *szDeleteShareCommand;
202 char *szGuestaccount;
203 char *szManglingMethod;
204 char **szServicesList;
205 char *szUsersharePath;
206 char *szUsershareTemplateShare;
207 char **szUsersharePrefixAllowList;
208 char **szUsersharePrefixDenyList;
215 int open_files_db_hash_size;
223 BOOL paranoid_server_security;
226 int iMaxSmbdProcesses;
227 BOOL bDisableSpoolss;
230 int enhanced_browsing;
236 int announce_as; /* This is initialised in init_globals */
237 int machine_password_timeout;
239 int oplock_break_wait_time;
240 int winbind_cache_time;
241 int winbind_max_idle_children;
242 char **szWinbindNssInfo;
244 char *szLdapMachineSuffix;
245 char *szLdapUserSuffix;
246 char *szLdapIdmapSuffix;
247 char *szLdapGroupSuffix;
253 char *szIPrintServer;
255 char **szClusterAddresses;
257 int ldap_passwd_sync;
258 int ldap_replication_sleep;
259 int ldap_timeout; /* This is initialised in init_globals */
262 BOOL bMsAddPrinterWizard;
267 BOOL bPreferredMaster;
270 BOOL bEncryptPasswords;
275 BOOL bObeyPamRestrictions;
277 int PrintcapCacheTime;
278 BOOL bLargeReadwrite;
285 BOOL bBindInterfacesOnly;
286 BOOL bPamPasswordChange;
287 BOOL bUnixPasswdSync;
288 BOOL bPasswdChatDebug;
289 int iPasswdChatTimeout;
293 BOOL bNTStatusSupport;
295 int iMaxStatCacheSize;
297 BOOL bAllowTrustedDomains;
301 BOOL bClientLanManAuth;
302 BOOL bClientNTLMv2Auth;
303 BOOL bClientPlaintextAuth;
304 BOOL bClientUseSpnego;
305 BOOL bDebugPrefixTimestamp;
306 BOOL bDebugHiresTimestamp;
309 BOOL bEnableCoreFiles;
312 BOOL bHostnameLookups;
313 BOOL bUnixExtensions;
314 BOOL bDisableNetbios;
315 BOOL bUseKerberosKeytab;
316 BOOL bDeferSharingViolations;
317 BOOL bEnablePrivileges;
319 BOOL bUsershareOwnerOnly;
320 BOOL bUsershareAllowGuests;
321 BOOL bRegistryShares;
322 int restrict_anonymous;
323 int name_cache_timeout;
326 int client_ldap_sasl_wrapping;
327 int iUsershareMaxShares;
329 int iIdmapNegativeCacheTime;
333 param_opt_struct *param_opt;
336 static global Globals;
339 * This structure describes a single service.
345 time_t usershare_last_mod;
349 char **szInvalidUsers;
357 char *szRootPostExec;
359 char *szPrintcommand;
362 char *szLppausecommand;
363 char *szLpresumecommand;
364 char *szQueuepausecommand;
365 char *szQueueresumecommand;
367 char *szPrintjobUsername;
376 char *szVetoOplockFiles;
382 char **printer_admin;
390 int iMaxReportedPrintJobs;
393 int iCreate_force_mode;
395 int iSecurity_force_mode;
398 int iDir_Security_mask;
399 int iDir_Security_force_mode;
403 int iOplockContentionLimit;
408 BOOL bRootpreexecClose;
411 BOOL bShortCasePreserve;
413 BOOL bHideSpecialFiles;
414 BOOL bHideUnReadable;
415 BOOL bHideUnWriteableFiles;
426 BOOL bStoreDosAttributes;
439 BOOL bStrictAllocate;
443 BOOL bDeleteReadonly;
445 BOOL bDeleteVetoFiles;
448 BOOL bDosFiletimeResolution;
449 BOOL bFakeDirCreateTimes;
455 BOOL bUseClientDriver;
456 BOOL bDefaultDevmode;
457 BOOL bForcePrintername;
459 BOOL bForceUnknownAclUser;
462 BOOL bMap_acl_inherit;
465 BOOL bAclCheckPermissions;
466 BOOL bAclMapFullControl;
467 BOOL bAclGroupControl;
469 BOOL bKernelChangeNotify;
470 int iallocation_roundup_size;
474 param_opt_struct *param_opt;
476 char dummy[3]; /* for alignment */
480 /* This is a default service used to prime a services structure */
481 static service sDefault = {
483 False, /* not autoloaded */
484 0, /* not a usershare */
485 (time_t)0, /* No last mod time */
486 NULL, /* szService */
488 NULL, /* szUsername */
489 NULL, /* szInvalidUsers */
490 NULL, /* szValidUsers */
491 NULL, /* szAdminUsers */
493 NULL, /* szInclude */
494 NULL, /* szPreExec */
495 NULL, /* szPostExec */
496 NULL, /* szRootPreExec */
497 NULL, /* szRootPostExec */
498 NULL, /* szCupsOptions */
499 NULL, /* szPrintcommand */
500 NULL, /* szLpqcommand */
501 NULL, /* szLprmcommand */
502 NULL, /* szLppausecommand */
503 NULL, /* szLpresumecommand */
504 NULL, /* szQueuepausecommand */
505 NULL, /* szQueueresumecommand */
506 NULL, /* szPrintername */
507 NULL, /* szPrintjobUsername */
508 NULL, /* szDontdescend */
509 NULL, /* szHostsallow */
510 NULL, /* szHostsdeny */
511 NULL, /* szMagicScript */
512 NULL, /* szMagicOutput */
513 NULL, /* szMangledMap */
514 NULL, /* szVetoFiles */
515 NULL, /* szHideFiles */
516 NULL, /* szVetoOplockFiles */
518 NULL, /* force user */
519 NULL, /* force group */
521 NULL, /* writelist */
522 NULL, /* printer admin */
525 NULL, /* vfs objects */
526 NULL, /* szMSDfsProxy */
528 0, /* iMinPrintSpace */
529 1000, /* iMaxPrintJobs */
530 0, /* iMaxReportedPrintJobs */
531 0, /* iWriteCacheSize */
532 0744, /* iCreate_mask */
533 0000, /* iCreate_force_mode */
534 0777, /* iSecurity_mask */
535 0, /* iSecurity_force_mode */
536 0755, /* iDir_mask */
537 0000, /* iDir_force_mode */
538 0777, /* iDir_Security_mask */
539 0, /* iDir_Security_force_mode */
540 0, /* iMaxConnections */
541 CASE_LOWER, /* iDefaultCase */
542 DEFAULT_PRINTING, /* iPrinting */
543 2, /* iOplockContentionLimit */
545 1024, /* iBlock_size */
546 0, /* iDfreeCacheTime */
547 False, /* bPreexecClose */
548 False, /* bRootpreexecClose */
549 Auto, /* case sensitive */
550 True, /* case preserve */
551 True, /* short case preserve */
552 True, /* bHideDotFiles */
553 False, /* bHideSpecialFiles */
554 False, /* bHideUnReadable */
555 False, /* bHideUnWriteableFiles */
556 True, /* bBrowseable */
557 True, /* bAvailable */
558 True, /* bRead_only */
559 True, /* bNo_set_dir */
560 False, /* bGuest_only */
561 False, /* bGuest_ok */
562 False, /* bPrint_ok */
563 False, /* bMap_system */
564 False, /* bMap_hidden */
565 True, /* bMap_archive */
566 False, /* bStoreDosAttributes */
567 False, /* bDmapiSupport */
569 Auto, /* iStrictLocking */
570 True, /* bPosixLocking */
571 True, /* bShareModes */
573 True, /* bLevel2OpLocks */
574 False, /* bOnlyUser */
575 True, /* bMangledNames */
576 True, /* bWidelinks */
577 True, /* bSymlinks */
578 False, /* bSyncAlways */
579 False, /* bStrictAllocate */
580 False, /* bStrictSync */
581 '~', /* magic char */
583 False, /* bDeleteReadonly */
584 False, /* bFakeOplocks */
585 False, /* bDeleteVetoFiles */
586 False, /* bDosFilemode */
587 True, /* bDosFiletimes */
588 False, /* bDosFiletimeResolution */
589 False, /* bFakeDirCreateTimes */
590 True, /* bBlockingLocks */
591 False, /* bInheritPerms */
592 False, /* bInheritACLS */
593 False, /* bInheritOwner */
594 False, /* bMSDfsRoot */
595 False, /* bUseClientDriver */
596 True, /* bDefaultDevmode */
597 False, /* bForcePrintername */
598 True, /* bNTAclSupport */
599 False, /* bForceUnknownAclUser */
600 False, /* bUseSendfile */
601 False, /* bProfileAcls */
602 False, /* bMap_acl_inherit */
603 False, /* bAfs_Share */
604 False, /* bEASupport */
605 True, /* bAclCheckPermissions */
606 True, /* bAclMapFullControl */
607 False, /* bAclGroupControl */
608 True, /* bChangeNotify */
609 True, /* bKernelChangeNotify */
610 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
611 0, /* iAioReadSize */
612 0, /* iAioWriteSize */
613 MAP_READONLY_YES, /* iMap_readonly */
615 NULL, /* Parametric options */
620 /* local variables */
621 static service **ServicePtrs = NULL;
622 static int iNumServices = 0;
623 static int iServiceIndex = 0;
624 static TDB_CONTEXT *ServiceHash;
625 static int *invalid_services = NULL;
626 static int num_invalid_services = 0;
627 static BOOL bInGlobalSection = True;
628 static BOOL bGlobalOnly = False;
629 static int server_role;
630 static int default_server_announce;
632 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
634 /* prototypes for the special type handlers */
635 static BOOL handle_include( int snum, const char *pszParmValue, char **ptr);
636 static BOOL handle_copy( int snum, const char *pszParmValue, char **ptr);
637 static BOOL handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
638 static BOOL handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
639 static BOOL handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
640 static BOOL handle_debug_list( int snum, const char *pszParmValue, char **ptr );
641 static BOOL handle_workgroup( int snum, const char *pszParmValue, char **ptr );
642 static BOOL handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
643 static BOOL handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
644 static BOOL handle_charset( int snum, const char *pszParmValue, char **ptr );
645 static BOOL handle_printing( int snum, const char *pszParmValue, char **ptr);
647 static void set_server_role(void);
648 static void set_default_server_announce_type(void);
649 static void set_allowed_client_auth(void);
651 static const struct enum_list enum_protocol[] = {
652 {PROTOCOL_NT1, "NT1"},
653 {PROTOCOL_LANMAN2, "LANMAN2"},
654 {PROTOCOL_LANMAN1, "LANMAN1"},
655 {PROTOCOL_CORE, "CORE"},
656 {PROTOCOL_COREPLUS, "COREPLUS"},
657 {PROTOCOL_COREPLUS, "CORE+"},
661 static const struct enum_list enum_security[] = {
662 {SEC_SHARE, "SHARE"},
664 {SEC_SERVER, "SERVER"},
665 {SEC_DOMAIN, "DOMAIN"},
672 static const struct enum_list enum_printing[] = {
673 {PRINT_SYSV, "sysv"},
675 {PRINT_HPUX, "hpux"},
679 {PRINT_LPRNG, "lprng"},
680 {PRINT_CUPS, "cups"},
681 {PRINT_IPRINT, "iprint"},
683 {PRINT_LPROS2, "os2"},
685 {PRINT_TEST, "test"},
687 #endif /* DEVELOPER */
691 static const struct enum_list enum_ldap_sasl_wrapping[] = {
693 {ADS_AUTH_SASL_SIGN, "sign"},
694 {ADS_AUTH_SASL_SEAL, "seal"},
698 static const struct enum_list enum_ldap_ssl[] = {
699 {LDAP_SSL_OFF, "no"},
700 {LDAP_SSL_OFF, "No"},
701 {LDAP_SSL_OFF, "off"},
702 {LDAP_SSL_OFF, "Off"},
703 {LDAP_SSL_START_TLS, "start tls"},
704 {LDAP_SSL_START_TLS, "Start_tls"},
708 static const struct enum_list enum_ldap_passwd_sync[] = {
709 {LDAP_PASSWD_SYNC_OFF, "no"},
710 {LDAP_PASSWD_SYNC_OFF, "No"},
711 {LDAP_PASSWD_SYNC_OFF, "off"},
712 {LDAP_PASSWD_SYNC_OFF, "Off"},
713 {LDAP_PASSWD_SYNC_ON, "Yes"},
714 {LDAP_PASSWD_SYNC_ON, "yes"},
715 {LDAP_PASSWD_SYNC_ON, "on"},
716 {LDAP_PASSWD_SYNC_ON, "On"},
717 {LDAP_PASSWD_SYNC_ONLY, "Only"},
718 {LDAP_PASSWD_SYNC_ONLY, "only"},
722 /* Types of machine we can announce as. */
723 #define ANNOUNCE_AS_NT_SERVER 1
724 #define ANNOUNCE_AS_WIN95 2
725 #define ANNOUNCE_AS_WFW 3
726 #define ANNOUNCE_AS_NT_WORKSTATION 4
728 static const struct enum_list enum_announce_as[] = {
729 {ANNOUNCE_AS_NT_SERVER, "NT"},
730 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
731 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
732 {ANNOUNCE_AS_WIN95, "win95"},
733 {ANNOUNCE_AS_WFW, "WfW"},
737 static const struct enum_list enum_map_readonly[] = {
738 {MAP_READONLY_NO, "no"},
739 {MAP_READONLY_NO, "false"},
740 {MAP_READONLY_NO, "0"},
741 {MAP_READONLY_YES, "yes"},
742 {MAP_READONLY_YES, "true"},
743 {MAP_READONLY_YES, "1"},
744 {MAP_READONLY_PERMISSIONS, "permissions"},
745 {MAP_READONLY_PERMISSIONS, "perms"},
749 static const struct enum_list enum_case[] = {
750 {CASE_LOWER, "lower"},
751 {CASE_UPPER, "upper"},
755 static const struct enum_list enum_bool_auto[] = {
766 /* Client-side offline caching policy types */
767 #define CSC_POLICY_MANUAL 0
768 #define CSC_POLICY_DOCUMENTS 1
769 #define CSC_POLICY_PROGRAMS 2
770 #define CSC_POLICY_DISABLE 3
772 static const struct enum_list enum_csc_policy[] = {
773 {CSC_POLICY_MANUAL, "manual"},
774 {CSC_POLICY_DOCUMENTS, "documents"},
775 {CSC_POLICY_PROGRAMS, "programs"},
776 {CSC_POLICY_DISABLE, "disable"},
780 /* SMB signing types. */
781 static const struct enum_list enum_smb_signing_vals[] = {
793 {Required, "required"},
794 {Required, "mandatory"},
796 {Required, "forced"},
797 {Required, "enforced"},
801 /* ACL compatibility options. */
802 static const struct enum_list enum_acl_compat_vals[] = {
803 { ACL_COMPAT_AUTO, "auto" },
804 { ACL_COMPAT_WINNT, "winnt" },
805 { ACL_COMPAT_WIN2K, "win2k" },
810 Do you want session setups at user level security with a invalid
811 password to be rejected or allowed in as guest? WinNT rejects them
812 but it can be a pain as it means "net view" needs to use a password
814 You have 3 choices in the setting of map_to_guest:
816 "Never" means session setups with an invalid password
817 are rejected. This is the default.
819 "Bad User" means session setups with an invalid password
820 are rejected, unless the username does not exist, in which case it
821 is treated as a guest login
823 "Bad Password" means session setups with an invalid password
824 are treated as a guest login
826 Note that map_to_guest only has an effect in user or server
830 static const struct enum_list enum_map_to_guest[] = {
831 {NEVER_MAP_TO_GUEST, "Never"},
832 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
833 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
834 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
838 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
840 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
841 * screen in SWAT. This is used to exclude parameters as well as to squash all
842 * parameters that have been duplicated by pseudonyms.
844 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
845 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
846 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
849 * NOTE2: Handling of duplicated (synonym) paramters:
850 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
851 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
852 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
853 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
856 static struct parm_struct parm_table[] = {
857 {N_("Base Options"), P_SEP, P_SEPARATOR},
859 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
860 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
861 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
862 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
863 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
864 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
865 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
867 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
869 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
870 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
871 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
872 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
873 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
874 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
876 {N_("Security Options"), P_SEP, P_SEPARATOR},
878 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
879 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
880 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
881 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
882 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
883 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
884 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
885 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
886 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
887 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
888 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
889 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
890 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
891 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
892 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
893 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
894 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
895 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
896 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
897 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
899 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
900 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
901 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
902 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
903 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
904 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
905 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
906 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
907 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
908 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
909 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
910 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
911 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
912 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
913 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
914 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
916 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
917 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
918 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
920 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
921 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
922 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
923 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
924 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
925 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
926 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
927 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
928 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
930 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
931 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
932 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
933 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
935 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
936 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
937 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
938 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
939 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
940 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
941 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
942 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
943 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
944 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
945 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
946 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
947 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
948 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
950 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
951 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
952 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
953 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
955 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
956 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
958 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
959 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
960 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
961 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
962 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
963 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
964 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
966 {N_("Logging Options"), P_SEP, P_SEPARATOR},
968 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
969 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
970 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
971 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
972 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
974 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
975 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
976 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
977 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
978 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
979 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
980 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
981 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
983 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
985 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
986 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
987 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
988 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
989 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
990 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
991 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
992 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
993 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
994 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
995 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
996 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
998 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
999 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1000 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1001 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1002 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1003 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1004 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1006 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1007 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1008 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1009 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1010 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1011 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1013 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1014 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1015 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1016 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1017 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1018 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1019 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1020 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1021 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1022 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1023 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1024 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1025 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1027 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1029 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1030 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1031 {"getwd cache", P_BOOL, P_GLOBAL, &use_getwd_cache, NULL, NULL, FLAG_ADVANCED},
1032 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1033 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1034 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1036 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1037 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1038 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1039 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1040 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1041 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1042 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1044 {"socket options", P_GSTRING, P_GLOBAL, user_socket_options, NULL, NULL, FLAG_ADVANCED},
1045 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1046 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1047 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1048 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1049 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1050 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1051 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1053 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1054 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1055 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1056 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1058 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1060 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1061 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1062 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1063 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1064 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1065 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1066 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1067 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1068 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1069 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1070 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1071 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1072 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1073 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1074 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1075 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1076 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1077 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1078 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1079 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1080 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1083 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1084 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1085 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1086 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1087 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1089 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1090 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1091 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1092 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1093 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1094 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1096 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1097 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1098 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1100 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1101 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1102 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1103 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1104 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1105 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1106 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1107 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1108 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1109 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1110 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1111 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1112 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1113 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1114 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1115 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1116 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1117 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1118 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"mangled map", P_STRING, P_LOCAL, &sDefault.szMangledMap, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_DEPRECATED },
1120 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1121 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1122 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1123 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1126 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1128 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1130 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1132 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1133 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1134 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1135 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1136 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1137 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1138 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1139 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1140 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1141 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1142 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1143 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1145 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1146 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1147 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1148 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1149 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1151 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1153 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1154 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1155 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1156 {"preferred master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1157 {"prefered master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1158 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1159 {"domain master", P_ENUM, P_GLOBAL, &Globals.bDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1160 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1161 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1162 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1163 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1165 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1167 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1168 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1170 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1171 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1172 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1174 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1176 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1177 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1178 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1179 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1180 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1181 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1183 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1184 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1185 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1186 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1187 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1188 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1189 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1191 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1193 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1194 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1195 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1196 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1197 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1198 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1199 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1200 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1201 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1202 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1203 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1204 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1207 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1208 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1209 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1210 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1212 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1213 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1215 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1216 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1217 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1218 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1219 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1220 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1222 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1223 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1224 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1227 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1228 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1229 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1230 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1231 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1232 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1233 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1234 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1235 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1236 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1237 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1238 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1239 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1240 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1241 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1242 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1243 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1245 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1246 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1247 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1248 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1250 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1251 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1252 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1253 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1254 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1255 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1256 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1257 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1258 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1259 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1260 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1261 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1262 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1263 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1264 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1265 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1266 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1267 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1268 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1269 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1270 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1271 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1272 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1273 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1274 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1275 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1277 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1278 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1280 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1282 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1283 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1286 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1287 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1288 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1290 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1292 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1293 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1294 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1295 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1296 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1297 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1298 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1299 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1300 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1301 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1302 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1303 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1304 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1305 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1306 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1307 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1308 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1309 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1310 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1311 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1312 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1313 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1314 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1318 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1321 /***************************************************************************
1322 Initialise the sDefault parameter structure for the printer values.
1323 ***************************************************************************/
1325 static void init_printer_values(service *pService)
1327 /* choose defaults depending on the type of printing */
1328 switch (pService->iPrinting) {
1333 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1334 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1335 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1340 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1341 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1342 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1343 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1344 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1345 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1346 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1352 /* set the lpq command to contain the destination printer
1353 name only. This is used by cups_queue_get() */
1354 string_set(&pService->szLpqcommand, "%p");
1355 string_set(&pService->szLprmcommand, "");
1356 string_set(&pService->szPrintcommand, "");
1357 string_set(&pService->szLppausecommand, "");
1358 string_set(&pService->szLpresumecommand, "");
1359 string_set(&pService->szQueuepausecommand, "");
1360 string_set(&pService->szQueueresumecommand, "");
1362 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1363 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1364 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1365 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1366 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1367 string_set(&pService->szQueuepausecommand, "disable '%p'");
1368 string_set(&pService->szQueueresumecommand, "enable '%p'");
1369 #endif /* HAVE_CUPS */
1374 string_set(&pService->szLpqcommand, "lpstat -o%p");
1375 string_set(&pService->szLprmcommand, "cancel %p-%j");
1376 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1377 string_set(&pService->szQueuepausecommand, "disable %p");
1378 string_set(&pService->szQueueresumecommand, "enable %p");
1380 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1381 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1386 string_set(&pService->szLpqcommand, "lpq -P%p");
1387 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1388 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1394 string_set(&pService->szPrintcommand, "vlp print %p %s");
1395 string_set(&pService->szLpqcommand, "vlp lpq %p");
1396 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1397 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1398 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1399 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1400 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1402 #endif /* DEVELOPER */
1407 /***************************************************************************
1408 Initialise the global parameter structure.
1409 ***************************************************************************/
1411 static void init_globals(BOOL first_time_only)
1413 static BOOL done_init = False;
1416 /* If requested to initialize only once and we've already done it... */
1417 if (first_time_only && done_init) {
1418 /* ... then we have nothing more to do */
1425 /* The logfile can be set before this is invoked. Free it if so. */
1426 if (Globals.szLogFile != NULL) {
1427 string_free(&Globals.szLogFile);
1428 Globals.szLogFile = NULL;
1431 memset((void *)&Globals, '\0', sizeof(Globals));
1433 for (i = 0; parm_table[i].label; i++)
1434 if ((parm_table[i].type == P_STRING ||
1435 parm_table[i].type == P_USTRING) &&
1437 string_set((char **)parm_table[i].ptr, "");
1439 string_set(&sDefault.fstype, FSTYPE_STRING);
1440 string_set(&sDefault.szPrintjobUsername, "%U");
1442 init_printer_values(&sDefault);
1448 DEBUG(3, ("Initialising global parameters\n"));
1450 string_set(&Globals.szSMBPasswdFile, dyn_SMB_PASSWD_FILE);
1451 string_set(&Globals.szPrivateDir, dyn_PRIVATE_DIR);
1453 /* use the new 'hash2' method by default, with a prefix of 1 */
1454 string_set(&Globals.szManglingMethod, "hash2");
1455 Globals.mangle_prefix = 1;
1457 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1459 /* using UTF8 by default allows us to support all chars */
1460 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1462 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1463 /* If the system supports nl_langinfo(), try to grab the value
1464 from the user's locale */
1465 string_set(&Globals.display_charset, "LOCALE");
1467 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1470 /* Use codepage 850 as a default for the dos character set */
1471 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1474 * Allow the default PASSWD_CHAT to be overridden in local.h.
1476 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1478 set_global_myname(myhostname());
1479 string_set(&Globals.szNetbiosName,global_myname());
1481 set_global_myworkgroup(WORKGROUP);
1482 string_set(&Globals.szWorkgroup, lp_workgroup());
1484 string_set(&Globals.szPasswdProgram, "");
1485 string_set(&Globals.szPidDir, dyn_PIDDIR);
1486 string_set(&Globals.szLockDir, dyn_LOCKDIR);
1487 string_set(&Globals.szSocketAddress, "0.0.0.0");
1488 pstrcpy(s, "Samba ");
1489 pstrcat(s, SAMBA_VERSION_STRING);
1490 string_set(&Globals.szServerString, s);
1491 slprintf(s, sizeof(s) - 1, "%d.%d", DEFAULT_MAJOR_VERSION,
1492 DEFAULT_MINOR_VERSION);
1493 string_set(&Globals.szAnnounceVersion, s);
1495 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1498 pstrcpy(user_socket_options, DEFAULT_SOCKET_OPTIONS);
1500 string_set(&Globals.szLogonDrive, "");
1501 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1502 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1503 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1505 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1506 string_set(&Globals.szPasswordServer, "*");
1508 Globals.AlgorithmicRidBase = BASE_RID;
1510 Globals.bLoadPrinters = True;
1511 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1513 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1514 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1515 Globals.max_xmit = 0x4104;
1516 Globals.max_mux = 50; /* This is *needed* for profile support. */
1517 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1518 Globals.bDisableSpoolss = False;
1519 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1520 Globals.pwordlevel = 0;
1521 Globals.unamelevel = 0;
1522 Globals.deadtime = 0;
1523 Globals.bLargeReadwrite = True;
1524 Globals.max_log_size = 5000;
1525 Globals.max_open_files = MAX_OPEN_FILES;
1526 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1527 Globals.maxprotocol = PROTOCOL_NT1;
1528 Globals.minprotocol = PROTOCOL_CORE;
1529 Globals.security = SEC_USER;
1530 Globals.paranoid_server_security = True;
1531 Globals.bEncryptPasswords = True;
1532 Globals.bUpdateEncrypt = False;
1533 Globals.clientSchannel = Auto;
1534 Globals.serverSchannel = Auto;
1535 Globals.bReadRaw = True;
1536 Globals.bWriteRaw = True;
1537 Globals.bNullPasswords = False;
1538 Globals.bObeyPamRestrictions = False;
1540 Globals.bSyslogOnly = False;
1541 Globals.bTimestampLogs = True;
1542 string_set(&Globals.szLogLevel, "0");
1543 Globals.bDebugPrefixTimestamp = False;
1544 Globals.bDebugHiresTimestamp = False;
1545 Globals.bDebugPid = False;
1546 Globals.bDebugUid = False;
1547 Globals.bEnableCoreFiles = True;
1548 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1549 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1550 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1551 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1552 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1553 Globals.lm_interval = 60;
1554 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1555 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1556 Globals.bNISHomeMap = False;
1557 #ifdef WITH_NISPLUS_HOME
1558 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1560 string_set(&Globals.szNISHomeMapName, "auto.home");
1563 Globals.bTimeServer = False;
1564 Globals.bBindInterfacesOnly = False;
1565 Globals.bUnixPasswdSync = False;
1566 Globals.bPamPasswordChange = False;
1567 Globals.bPasswdChatDebug = False;
1568 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1569 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1570 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1571 Globals.bStatCache = True; /* use stat cache by default */
1572 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1573 Globals.restrict_anonymous = 0;
1574 Globals.bClientLanManAuth = True; /* Do use the LanMan hash if it is available */
1575 Globals.bClientPlaintextAuth = True; /* Do use a plaintext password if is requested by the server */
1576 Globals.bLanmanAuth = True; /* Do use the LanMan hash if it is available */
1577 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is available (otherwise NTLMv2) */
1578 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1579 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1581 Globals.map_to_guest = 0; /* By Default, "Never" */
1582 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1583 Globals.enhanced_browsing = True;
1584 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1585 #ifdef MMAP_BLACKLIST
1586 Globals.bUseMmap = False;
1588 Globals.bUseMmap = True;
1590 Globals.bUnixExtensions = True;
1591 Globals.bResetOnZeroVC = False;
1593 /* hostname lookups can be very expensive and are broken on
1594 a large number of sites (tridge) */
1595 Globals.bHostnameLookups = False;
1597 string_set(&Globals.szPassdbBackend, "smbpasswd");
1598 string_set(&Globals.szLdapSuffix, "");
1599 string_set(&Globals.szLdapMachineSuffix, "");
1600 string_set(&Globals.szLdapUserSuffix, "");
1601 string_set(&Globals.szLdapGroupSuffix, "");
1602 string_set(&Globals.szLdapIdmapSuffix, "");
1604 string_set(&Globals.szLdapAdminDn, "");
1605 Globals.ldap_ssl = LDAP_SSL_ON;
1606 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1607 Globals.ldap_delete_dn = False;
1608 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1609 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1610 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1612 /* This is what we tell the afs client. in reality we set the token
1613 * to never expire, though, when this runs out the afs client will
1614 * forget the token. Set to 0 to get NEVERDATE.*/
1615 Globals.iAfsTokenLifetime = 604800;
1617 /* these parameters are set to defaults that are more appropriate
1618 for the increasing samba install base:
1620 as a member of the workgroup, that will possibly become a
1621 _local_ master browser (lm = True). this is opposed to a forced
1622 local master browser startup (pm = True).
1624 doesn't provide WINS server service by default (wsupp = False),
1625 and doesn't provide domain master browser services by default, either.
1629 Globals.bMsAddPrinterWizard = True;
1630 Globals.bPreferredMaster = Auto; /* depending on bDomainMaster */
1631 Globals.os_level = 20;
1632 Globals.bLocalMaster = True;
1633 Globals.bDomainMaster = Auto; /* depending on bDomainLogons */
1634 Globals.bDomainLogons = False;
1635 Globals.bBrowseList = True;
1636 Globals.bWINSsupport = False;
1637 Globals.bWINSproxy = False;
1639 Globals.bDNSproxy = True;
1641 /* this just means to use them if they exist */
1642 Globals.bKernelOplocks = True;
1644 Globals.bAllowTrustedDomains = True;
1646 string_set(&Globals.szTemplateShell, "/bin/false");
1647 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1648 string_set(&Globals.szWinbindSeparator, "\\");
1650 string_set(&Globals.szCupsServer, "");
1651 string_set(&Globals.szIPrintServer, "");
1653 string_set(&Globals.ctdbdSocket, "");
1654 Globals.szClusterAddresses = NULL;
1655 Globals.clustering = False;
1657 Globals.winbind_cache_time = 300; /* 5 minutes */
1658 Globals.bWinbindEnumUsers = False;
1659 Globals.bWinbindEnumGroups = False;
1660 Globals.bWinbindUseDefaultDomain = False;
1661 Globals.bWinbindTrustedDomainsOnly = False;
1662 Globals.bWinbindNestedGroups = True;
1663 Globals.winbind_expand_groups = 1;
1664 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1665 Globals.bWinbindRefreshTickets = False;
1666 Globals.bWinbindOfflineLogon = False;
1668 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1669 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1671 Globals.bPassdbExpandExplicit = False;
1673 Globals.name_cache_timeout = 660; /* In seconds */
1675 Globals.bUseSpnego = True;
1676 Globals.bClientUseSpnego = True;
1678 Globals.client_signing = Auto;
1679 Globals.server_signing = False;
1681 Globals.bDeferSharingViolations = True;
1682 string_set(&Globals.smb_ports, SMB_PORTS);
1684 Globals.bEnablePrivileges = True;
1685 Globals.bHostMSDfs = True;
1686 Globals.bASUSupport = False;
1688 /* User defined shares. */
1689 pstrcpy(s, dyn_LOCKDIR);
1690 pstrcat(s, "/usershares");
1691 string_set(&Globals.szUsersharePath, s);
1692 string_set(&Globals.szUsershareTemplateShare, "");
1693 Globals.iUsershareMaxShares = 0;
1694 /* By default disallow sharing of directories not owned by the sharer. */
1695 Globals.bUsershareOwnerOnly = True;
1696 /* By default disallow guest access to usershares. */
1697 Globals.bUsershareAllowGuests = False;
1699 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1701 /* By default no shares out of the registry */
1702 Globals.bRegistryShares = False;
1705 static TALLOC_CTX *lp_talloc;
1707 /******************************************************************* a
1708 Free up temporary memory - called from the main loop.
1709 ********************************************************************/
1711 void lp_TALLOC_FREE(void)
1715 TALLOC_FREE(lp_talloc);
1719 TALLOC_CTX *tmp_talloc_ctx(void)
1721 if (lp_talloc == NULL) {
1722 lp_talloc = talloc_init("tmp_talloc_ctx");
1725 if (lp_talloc == NULL) {
1726 smb_panic("Could not create temporary talloc context");
1732 /*******************************************************************
1733 Convenience routine to grab string parameters into temporary memory
1734 and run standard_sub_basic on them. The buffers can be written to by
1735 callers without affecting the source string.
1736 ********************************************************************/
1738 static char *lp_string(const char *s)
1742 /* The follow debug is useful for tracking down memory problems
1743 especially if you have an inner loop that is calling a lp_*()
1744 function that returns a string. Perhaps this debug should be
1745 present all the time? */
1748 DEBUG(10, ("lp_string(%s)\n", s));
1752 lp_talloc = talloc_init("lp_talloc");
1754 tmpstr = alloc_sub_basic(get_current_username(),
1755 current_user_info.domain, s);
1756 if (trim_char(tmpstr, '\"', '\"')) {
1757 if (strchr(tmpstr,'\"') != NULL) {
1759 tmpstr = alloc_sub_basic(get_current_username(),
1760 current_user_info.domain, s);
1763 ret = talloc_strdup(lp_talloc, tmpstr);
1770 In this section all the functions that are used to access the
1771 parameters from the rest of the program are defined
1774 #define FN_GLOBAL_STRING(fn_name,ptr) \
1775 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1776 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1777 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1778 #define FN_GLOBAL_LIST(fn_name,ptr) \
1779 const char **fn_name(void) {return(*(const char ***)(ptr));}
1780 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1781 BOOL fn_name(void) {return(*(BOOL *)(ptr));}
1782 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1783 char fn_name(void) {return(*(char *)(ptr));}
1784 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1785 int fn_name(void) {return(*(int *)(ptr));}
1787 #define FN_LOCAL_STRING(fn_name,val) \
1788 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1789 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1790 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1791 #define FN_LOCAL_LIST(fn_name,val) \
1792 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1793 #define FN_LOCAL_BOOL(fn_name,val) \
1794 BOOL fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1795 #define FN_LOCAL_INTEGER(fn_name,val) \
1796 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1798 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1799 BOOL fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1800 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1801 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1802 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1803 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1804 #define FN_LOCAL_CHAR(fn_name,val) \
1805 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1807 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1808 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1809 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1810 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1811 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1812 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1813 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1814 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1815 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1816 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1817 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1818 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1819 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1820 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1821 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1822 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1823 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1824 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1825 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1826 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1827 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1828 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1829 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1830 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1831 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1832 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1833 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1834 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1835 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1836 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1837 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1838 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1839 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1840 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1841 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1842 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1843 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1844 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1845 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1846 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1847 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1848 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1849 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1850 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1851 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1852 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1853 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1854 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1855 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1856 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1857 * lp_passdb_backend() should be replace by the this macro again after
1860 const char *lp_passdb_backend(void)
1862 char *delim, *quote;
1864 delim = strchr( Globals.szPassdbBackend, ' ');
1865 /* no space at all */
1866 if (delim == NULL) {
1870 quote = strchr(Globals.szPassdbBackend, '"');
1871 /* no quote char or non in the first part */
1872 if (quote == NULL || quote > delim) {
1877 quote = strchr(quote+1, '"');
1878 if (quote == NULL) {
1879 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1881 } else if (*(quote+1) == '\0') {
1882 /* space, fitting quote char, and one backend only */
1885 /* terminate string after the fitting quote char */
1890 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1891 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1892 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1893 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1896 return Globals.szPassdbBackend;
1898 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1899 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1900 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1901 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1902 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1904 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1905 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1906 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1907 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1908 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1909 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1911 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1913 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1914 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1915 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1917 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1919 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1920 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1921 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1922 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1923 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1924 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1925 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1926 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1927 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1928 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1929 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1930 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1931 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1932 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1933 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1935 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1936 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1937 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1938 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1939 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1940 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1941 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1943 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1944 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1945 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1946 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1947 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1948 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1949 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1950 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1951 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1952 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1953 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1954 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1955 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1956 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1958 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1960 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1961 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1962 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1963 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1964 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1965 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1966 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1967 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1968 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1969 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1970 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1971 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1972 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1973 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1974 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1975 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1976 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1977 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1978 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1979 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1980 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1981 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1982 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1983 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1984 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1985 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1986 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1987 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1988 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1989 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1990 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1991 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1992 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1993 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1994 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1995 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1996 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1997 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1998 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1999 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
2000 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
2001 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
2002 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
2003 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
2004 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
2005 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
2006 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
2007 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
2008 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
2009 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
2010 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
2011 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
2012 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
2013 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
2014 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
2015 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
2016 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
2017 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
2018 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
2019 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2020 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2021 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2022 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2023 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2024 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2025 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2026 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2027 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2028 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2029 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2030 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2031 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2032 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2033 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2034 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2035 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2036 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2037 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2038 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2039 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2040 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2041 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2042 FN_GLOBAL_INTEGER(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2043 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2044 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2045 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2046 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2047 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2048 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2049 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2050 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2051 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2053 FN_LOCAL_STRING(lp_preexec, szPreExec)
2054 FN_LOCAL_STRING(lp_postexec, szPostExec)
2055 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2056 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2057 FN_LOCAL_STRING(lp_servicename, szService)
2058 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2059 FN_LOCAL_STRING(lp_pathname, szPath)
2060 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2061 FN_LOCAL_STRING(lp_username, szUsername)
2062 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2063 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2064 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2065 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2066 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2067 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2068 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2069 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2070 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2071 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2072 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2073 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2074 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2075 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2076 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2077 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2078 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2079 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2080 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2081 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2082 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2083 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2084 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2085 FN_LOCAL_STRING(lp_comment, comment)
2086 FN_LOCAL_STRING(lp_force_user, force_user)
2087 FN_LOCAL_STRING(lp_force_group, force_group)
2088 FN_LOCAL_LIST(lp_readlist, readlist)
2089 FN_LOCAL_LIST(lp_writelist, writelist)
2090 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2091 FN_LOCAL_STRING(lp_fstype, fstype)
2092 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2093 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2094 static FN_LOCAL_STRING(lp_volume, volume)
2095 FN_LOCAL_PARM_STRING(lp_mangled_map, szMangledMap)
2096 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2097 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2098 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2099 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2100 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2101 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2102 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2103 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2104 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2105 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2106 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2107 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2108 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2109 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2110 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2111 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2112 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2113 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2114 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2115 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2116 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2117 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2118 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2119 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2120 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2121 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2122 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2123 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2124 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2125 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2126 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2127 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2128 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2129 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2130 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2131 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2132 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2133 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2134 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2135 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2136 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2137 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2138 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2139 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2140 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2141 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2142 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2143 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2144 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2145 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2146 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2147 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2148 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2149 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2150 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2151 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2152 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2153 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2154 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2155 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2156 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2157 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2158 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2159 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2160 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2161 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2162 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2163 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2164 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2165 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2166 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2167 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2168 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2169 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2170 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2171 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2172 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2173 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2174 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2175 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2176 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2177 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2178 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2179 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2180 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2181 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2182 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2183 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2184 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2185 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2186 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2187 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2188 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2190 /* local prototypes */
2192 static int map_parameter(const char *pszParmName);
2193 static int map_parameter_canonical(const char *pszParmName, BOOL *inverse);
2194 static BOOL set_boolean(BOOL *pb, const char *pszParmValue);
2195 static const char *get_boolean(BOOL bool_value);
2196 static int getservicebyname(const char *pszServiceName,
2197 service * pserviceDest);
2198 static void copy_service(service * pserviceDest,
2199 service * pserviceSource, BOOL *pcopymapDest);
2200 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue);
2201 static BOOL do_section(const char *pszSectionName);
2202 static void init_copymap(service * pservice);
2203 static BOOL hash_a_service(const char *name, int number);
2204 static void free_service_byindex(int iService);
2205 static char * canonicalize_servicename(const char *name);
2206 static void show_parameter(int parmIndex);
2207 static BOOL is_synonym_of(int parm1, int parm2, BOOL *inverse);
2209 /* This is a helper function for parametrical options support. */
2210 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2211 /* Actual parametrical functions are quite simple */
2212 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2214 BOOL global_section = False;
2216 param_opt_struct *data;
2218 if (snum >= iNumServices) return NULL;
2221 data = Globals.param_opt;
2222 global_section = True;
2224 data = ServicePtrs[snum]->param_opt;
2227 asprintf(¶m_key, "%s:%s", type, option);
2229 DEBUG(0,("asprintf failed!\n"));
2234 if (strcmp(data->key, param_key) == 0) {
2235 string_free(¶m_key);
2241 if (!global_section) {
2242 /* Try to fetch the same option but from globals */
2243 /* but only if we are not already working with Globals */
2244 data = Globals.param_opt;
2246 if (strcmp(data->key, param_key) == 0) {
2247 string_free(¶m_key);
2254 string_free(¶m_key);
2260 #define MISSING_PARAMETER(name) \
2261 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2263 /*******************************************************************
2264 convenience routine to return int parameters.
2265 ********************************************************************/
2266 static int lp_int(const char *s)
2270 MISSING_PARAMETER(lp_int);
2274 return (int)strtol(s, NULL, 0);
2277 /*******************************************************************
2278 convenience routine to return unsigned long parameters.
2279 ********************************************************************/
2280 static unsigned long lp_ulong(const char *s)
2284 MISSING_PARAMETER(lp_ulong);
2288 return strtoul(s, NULL, 0);
2291 /*******************************************************************
2292 convenience routine to return boolean parameters.
2293 ********************************************************************/
2294 static BOOL lp_bool(const char *s)
2299 MISSING_PARAMETER(lp_bool);
2303 if (!set_boolean(&ret,s)) {
2304 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2311 /*******************************************************************
2312 convenience routine to return enum parameters.
2313 ********************************************************************/
2314 static int lp_enum(const char *s,const struct enum_list *_enum)
2318 if (!s || !*s || !_enum) {
2319 MISSING_PARAMETER(lp_enum);
2323 for (i=0; _enum[i].name; i++) {
2324 if (strequal(_enum[i].name,s))
2325 return _enum[i].value;
2328 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2332 #undef MISSING_PARAMETER
2334 /* DO NOT USE lp_parm_string ANYMORE!!!!
2335 * use lp_parm_const_string or lp_parm_talloc_string
2337 * lp_parm_string is only used to let old modules find this symbol
2339 #undef lp_parm_string
2340 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2341 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2343 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2346 /* Return parametric option from a given service. Type is a part of option before ':' */
2347 /* Parametric option has following syntax: 'Type: option = value' */
2348 /* the returned value is talloced in lp_talloc */
2349 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2351 param_opt_struct *data = get_parametrics(snum, type, option);
2353 if (data == NULL||data->value==NULL) {
2355 return lp_string(def);
2361 return lp_string(data->value);
2364 /* Return parametric option from a given service. Type is a part of option before ':' */
2365 /* Parametric option has following syntax: 'Type: option = value' */
2366 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2368 param_opt_struct *data = get_parametrics(snum, type, option);
2370 if (data == NULL||data->value==NULL)
2376 /* Return parametric option from a given service. Type is a part of option before ':' */
2377 /* Parametric option has following syntax: 'Type: option = value' */
2379 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2381 param_opt_struct *data = get_parametrics(snum, type, option);
2383 if (data == NULL||data->value==NULL)
2384 return (const char **)def;
2386 if (data->list==NULL) {
2387 data->list = str_list_make(data->value, NULL);
2390 return (const char **)data->list;
2393 /* Return parametric option from a given service. Type is a part of option before ':' */
2394 /* Parametric option has following syntax: 'Type: option = value' */
2396 int lp_parm_int(int snum, const char *type, const char *option, int def)
2398 param_opt_struct *data = get_parametrics(snum, type, option);
2400 if (data && data->value && *data->value)
2401 return lp_int(data->value);
2406 /* Return parametric option from a given service. Type is a part of option before ':' */
2407 /* Parametric option has following syntax: 'Type: option = value' */
2409 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2411 param_opt_struct *data = get_parametrics(snum, type, option);
2413 if (data && data->value && *data->value)
2414 return lp_ulong(data->value);
2419 /* Return parametric option from a given service. Type is a part of option before ':' */
2420 /* Parametric option has following syntax: 'Type: option = value' */
2422 BOOL lp_parm_bool(int snum, const char *type, const char *option, BOOL def)
2424 param_opt_struct *data = get_parametrics(snum, type, option);
2426 if (data && data->value && *data->value)
2427 return lp_bool(data->value);
2432 /* Return parametric option from a given service. Type is a part of option before ':' */
2433 /* Parametric option has following syntax: 'Type: option = value' */
2435 int lp_parm_enum(int snum, const char *type, const char *option,
2436 const struct enum_list *_enum, int def)
2438 param_opt_struct *data = get_parametrics(snum, type, option);
2440 if (data && data->value && *data->value && _enum)
2441 return lp_enum(data->value, _enum);
2447 /***************************************************************************
2448 Initialise a service to the defaults.
2449 ***************************************************************************/
2451 static void init_service(service * pservice)
2453 memset((char *)pservice, '\0', sizeof(service));
2454 copy_service(pservice, &sDefault, NULL);
2457 /***************************************************************************
2458 Free the dynamically allocated parts of a service struct.
2459 ***************************************************************************/
2461 static void free_service(service *pservice)
2464 param_opt_struct *data, *pdata;
2468 if (pservice->szService)
2469 DEBUG(5, ("free_service: Freeing service %s\n",
2470 pservice->szService));
2472 string_free(&pservice->szService);
2473 SAFE_FREE(pservice->copymap);
2475 for (i = 0; parm_table[i].label; i++) {
2476 if ((parm_table[i].type == P_STRING ||
2477 parm_table[i].type == P_USTRING) &&
2478 parm_table[i].p_class == P_LOCAL)
2479 string_free((char **)
2480 (((char *)pservice) +
2481 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2482 else if (parm_table[i].type == P_LIST &&
2483 parm_table[i].p_class == P_LOCAL)
2484 str_list_free((char ***)
2485 (((char *)pservice) +
2486 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2489 data = pservice->param_opt;
2491 DEBUG(5,("Freeing parametrics:\n"));
2493 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2494 string_free(&data->key);
2495 string_free(&data->value);
2496 str_list_free(&data->list);
2502 ZERO_STRUCTP(pservice);
2506 /***************************************************************************
2507 remove a service indexed in the ServicePtrs array from the ServiceHash
2508 and free the dynamically allocated parts
2509 ***************************************************************************/
2511 static void free_service_byindex(int idx)
2513 if ( !LP_SNUM_OK(idx) )
2516 ServicePtrs[idx]->valid = False;
2517 invalid_services[num_invalid_services++] = idx;
2519 /* we have to cleanup the hash record */
2521 if (ServicePtrs[idx]->szService) {
2522 char *canon_name = canonicalize_servicename( ServicePtrs[idx]->szService );
2524 tdb_delete_bystring(ServiceHash, canon_name );
2527 free_service(ServicePtrs[idx]);
2530 /***************************************************************************
2531 Add a new service to the services array initialising it with the given
2533 ***************************************************************************/
2535 static int add_a_service(const service *pservice, const char *name)
2539 int num_to_alloc = iNumServices + 1;
2540 param_opt_struct *data, *pdata;
2542 tservice = *pservice;
2544 /* it might already exist */
2546 i = getservicebyname(name, NULL);
2548 /* Clean all parametric options for service */
2549 /* They will be added during parsing again */
2550 data = ServicePtrs[i]->param_opt;
2552 string_free(&data->key);
2553 string_free(&data->value);
2554 str_list_free(&data->list);
2559 ServicePtrs[i]->param_opt = NULL;
2564 /* find an invalid one */
2566 if (num_invalid_services > 0) {
2567 i = invalid_services[--num_invalid_services];
2570 /* if not, then create one */
2571 if (i == iNumServices) {
2575 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2577 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2581 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2582 if (!ServicePtrs[iNumServices]) {
2583 DEBUG(0,("add_a_service: out of memory!\n"));
2588 /* enlarge invalid_services here for now... */
2589 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2591 if (tinvalid == NULL) {
2592 DEBUG(0,("add_a_service: failed to enlarge "
2593 "invalid_services!\n"));
2596 invalid_services = tinvalid;
2598 free_service_byindex(i);
2601 ServicePtrs[i]->valid = True;
2603 init_service(ServicePtrs[i]);
2604 copy_service(ServicePtrs[i], &tservice, NULL);
2606 string_set(&ServicePtrs[i]->szService, name);
2608 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2609 i, ServicePtrs[i]->szService));
2611 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2618 /***************************************************************************
2619 Canonicalize by converting to lowercase.
2620 ***************************************************************************/
2622 static char *canonicalize_servicename(const char *src)
2624 static fstring canon; /* is fstring large enough? */
2627 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2631 fstrcpy( canon, src );
2632 strlower_m( canon );
2637 /***************************************************************************
2638 Add a name/index pair for the services array to the hash table.
2639 ***************************************************************************/
2641 static BOOL hash_a_service(const char *name, int idx)
2645 if ( !ServiceHash ) {
2646 DEBUG(10,("hash_a_service: creating tdb servicehash\n"));
2647 ServiceHash = tdb_open("servicehash", 1031, TDB_INTERNAL,
2648 (O_RDWR|O_CREAT), 0600);
2649 if ( !ServiceHash ) {
2650 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2655 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2658 if ( !(canon_name = canonicalize_servicename( name )) )
2661 tdb_store_int32(ServiceHash, canon_name, idx);
2666 /***************************************************************************
2667 Add a new home service, with the specified home directory, defaults coming
2669 ***************************************************************************/
2671 BOOL lp_add_home(const char *pszHomename, int iDefaultService,
2672 const char *user, const char *pszHomedir)
2677 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2682 if (!(*(ServicePtrs[iDefaultService]->szPath))
2683 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2684 pstrcpy(newHomedir, pszHomedir);
2685 string_set(&ServicePtrs[i]->szPath, newHomedir);
2688 if (!(*(ServicePtrs[i]->comment))) {
2690 slprintf(comment, sizeof(comment) - 1,
2691 "Home directory of %s", user);
2692 string_set(&ServicePtrs[i]->comment, comment);
2695 /* set the browseable flag from the global default */
2697 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2699 ServicePtrs[i]->autoloaded = True;
2701 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2702 user, ServicePtrs[i]->szPath ));
2707 /***************************************************************************
2708 Add a new service, based on an old one.
2709 ***************************************************************************/
2711 int lp_add_service(const char *pszService, int iDefaultService)
2713 if (iDefaultService < 0) {
2714 return add_a_service(&sDefault, pszService);
2717 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2720 /***************************************************************************
2721 Add the IPC service.
2722 ***************************************************************************/
2724 static BOOL lp_add_ipc(const char *ipc_name, BOOL guest_ok)
2727 int i = add_a_service(&sDefault, ipc_name);
2732 slprintf(comment, sizeof(comment) - 1,
2733 "IPC Service (%s)", Globals.szServerString);
2735 string_set(&ServicePtrs[i]->szPath, tmpdir());
2736 string_set(&ServicePtrs[i]->szUsername, "");
2737 string_set(&ServicePtrs[i]->comment, comment);
2738 string_set(&ServicePtrs[i]->fstype, "IPC");
2739 ServicePtrs[i]->iMaxConnections = 0;
2740 ServicePtrs[i]->bAvailable = True;
2741 ServicePtrs[i]->bRead_only = True;
2742 ServicePtrs[i]->bGuest_only = False;
2743 ServicePtrs[i]->bGuest_ok = guest_ok;
2744 ServicePtrs[i]->bPrint_ok = False;
2745 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2747 DEBUG(3, ("adding IPC service\n"));
2752 /***************************************************************************
2753 Add a new printer service, with defaults coming from service iFrom.
2754 ***************************************************************************/
2756 BOOL lp_add_printer(const char *pszPrintername, int iDefaultService)
2758 const char *comment = "From Printcap";
2759 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2764 /* note that we do NOT default the availability flag to True - */
2765 /* we take it from the default service passed. This allows all */
2766 /* dynamic printers to be disabled by disabling the [printers] */
2767 /* entry (if/when the 'available' keyword is implemented!). */
2769 /* the printer name is set to the service name. */
2770 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2771 string_set(&ServicePtrs[i]->comment, comment);
2773 /* set the browseable flag from the gloabl default */
2774 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2776 /* Printers cannot be read_only. */
2777 ServicePtrs[i]->bRead_only = False;
2778 /* No share modes on printer services. */
2779 ServicePtrs[i]->bShareModes = False;
2780 /* No oplocks on printer services. */
2781 ServicePtrs[i]->bOpLocks = False;
2782 /* Printer services must be printable. */
2783 ServicePtrs[i]->bPrint_ok = True;
2785 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2791 /***************************************************************************
2792 Check whether the given parameter name is valid.
2793 Parametric options (names containing a colon) are considered valid.
2794 ***************************************************************************/
2796 BOOL lp_parameter_is_valid(const char *pszParmName)
2798 return ((map_parameter(pszParmName) != -1) ||
2799 (strchr(pszParmName, ':') != NULL));
2802 /***************************************************************************
2803 Check whether the given name is the name of a global parameter.
2804 Returns True for strings belonging to parameters of class
2805 P_GLOBAL, False for all other strings, also for parametric options
2806 and strings not belonging to any option.
2807 ***************************************************************************/
2809 BOOL lp_parameter_is_global(const char *pszParmName)
2811 int num = map_parameter(pszParmName);
2814 return (parm_table[num].p_class == P_GLOBAL);
2820 /**************************************************************************
2821 Check whether the given name is the canonical name of a parameter.
2822 Returns False if it is not a valid parameter Name.
2823 For parametric options, True is returned.
2824 **************************************************************************/
2826 BOOL lp_parameter_is_canonical(const char *parm_name)
2828 if (!lp_parameter_is_valid(parm_name)) {
2832 return (map_parameter(parm_name) ==
2833 map_parameter_canonical(parm_name, NULL));
2836 /**************************************************************************
2837 Determine the canonical name for a parameter.
2838 Indicate when it is an inverse (boolean) synonym instead of a
2840 **************************************************************************/
2842 BOOL lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2847 if (!lp_parameter_is_valid(parm_name)) {
2852 num = map_parameter_canonical(parm_name, inverse);
2854 /* parametric option */
2855 *canon_parm = parm_name;
2857 *canon_parm = parm_table[num].label;
2864 /**************************************************************************
2865 Determine the canonical name for a parameter.
2866 Turn the value given into the inverse boolean expression when
2867 the synonym is an invers boolean synonym.
2869 Return True if parm_name is a valid parameter name and
2870 in case it is an invers boolean synonym, if the val string could
2871 successfully be converted to the reverse bool.
2872 Return false in all other cases.
2873 **************************************************************************/
2875 BOOL lp_canonicalize_parameter_with_value(const char *parm_name,
2877 const char **canon_parm,
2878 const char **canon_val)
2883 if (!lp_parameter_is_valid(parm_name)) {
2889 num = map_parameter_canonical(parm_name, &inverse);
2891 /* parametric option */
2892 *canon_parm = parm_name;
2895 *canon_parm = parm_table[num].label;
2897 if (!lp_invert_boolean(val, canon_val)) {
2909 /***************************************************************************
2910 Map a parameter's string representation to something we can use.
2911 Returns False if the parameter string is not recognised, else TRUE.
2912 ***************************************************************************/
2914 static int map_parameter(const char *pszParmName)
2918 if (*pszParmName == '-')
2921 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2922 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2925 /* Warn only if it isn't parametric option */
2926 if (strchr(pszParmName, ':') == NULL)
2927 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2928 /* We do return 'fail' for parametric options as well because they are
2929 stored in different storage
2934 /***************************************************************************
2935 Map a parameter's string representation to the index of the canonical
2936 form of the parameter (it might be a synonym).
2937 Returns -1 if the parameter string is not recognised.
2938 ***************************************************************************/
2940 static int map_parameter_canonical(const char *pszParmName, BOOL *inverse)
2942 int parm_num, canon_num;
2943 BOOL loc_inverse = False;
2945 parm_num = map_parameter(pszParmName);
2946 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2947 /* invalid, parametric or no canidate for synonyms ... */
2951 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2952 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2953 parm_num = canon_num;
2959 if (inverse != NULL) {
2960 *inverse = loc_inverse;
2965 /***************************************************************************
2966 return true if parameter number parm1 is a synonym of parameter
2967 number parm2 (parm2 being the principal name).
2968 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
2970 ***************************************************************************/
2972 static BOOL is_synonym_of(int parm1, int parm2, BOOL *inverse)
2974 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
2975 (parm_table[parm1].flags & FLAG_HIDE) &&
2976 !(parm_table[parm2].flags & FLAG_HIDE))
2978 if (inverse != NULL) {
2979 if ((parm_table[parm1].type == P_BOOLREV) &&
2980 (parm_table[parm2].type == P_BOOL))
2992 /***************************************************************************
2993 Show one parameter's name, type, [values,] and flags.
2994 (helper functions for show_parameter_list)
2995 ***************************************************************************/
2997 static void show_parameter(int parmIndex)
2999 int enumIndex, flagIndex;
3004 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
3005 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING", "P_GSTRING",
3006 "P_UGSTRING", "P_ENUM", "P_SEP"};
3007 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
3008 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
3009 FLAG_HIDE, FLAG_DOS_STRING};
3010 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
3011 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
3012 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
3014 printf("%s=%s", parm_table[parmIndex].label,
3015 type[parm_table[parmIndex].type]);
3016 if (parm_table[parmIndex].type == P_ENUM) {
3019 parm_table[parmIndex].enum_list[enumIndex].name;
3023 enumIndex ? "|" : "",
3024 parm_table[parmIndex].enum_list[enumIndex].name);
3029 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3030 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3033 flag_names[flagIndex]);
3038 /* output synonyms */
3040 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3041 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3042 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3043 parm_table[parmIndex2].label);
3044 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3046 printf(" (synonyms: ");
3051 printf("%s%s", parm_table[parmIndex2].label,
3052 inverse ? "[i]" : "");
3062 /***************************************************************************
3063 Show all parameter's name, type, [values,] and flags.
3064 ***************************************************************************/
3066 void show_parameter_list(void)
3068 int classIndex, parmIndex;
3069 const char *section_names[] = { "local", "global", NULL};
3071 for (classIndex=0; section_names[classIndex]; classIndex++) {
3072 printf("[%s]\n", section_names[classIndex]);
3073 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3074 if (parm_table[parmIndex].p_class == classIndex) {
3075 show_parameter(parmIndex);
3081 /***************************************************************************
3082 Set a boolean variable from the text value stored in the passed string.
3083 Returns True in success, False if the passed string does not correctly
3084 represent a boolean.
3085 ***************************************************************************/
3087 static BOOL set_boolean(BOOL *pb, const char *pszParmValue)
3094 if (strwicmp(pszParmValue, "yes") == 0 ||
3095 strwicmp(pszParmValue, "true") == 0 ||
3096 strwicmp(pszParmValue, "1") == 0)
3098 else if (strwicmp(pszParmValue, "no") == 0 ||
3099 strwicmp(pszParmValue, "False") == 0 ||
3100 strwicmp(pszParmValue, "0") == 0)
3104 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3109 if ((pb != NULL) && (bRetval != False)) {
3117 /***************************************************************************
3118 Check if a given string correctly represents a boolean value.
3119 ***************************************************************************/
3121 BOOL lp_string_is_valid_boolean(const char *parm_value)
3123 return set_boolean(NULL, parm_value);
3126 /***************************************************************************
3127 Get the standard string representation of a boolean value ("yes" or "no")
3128 ***************************************************************************/
3130 static const char *get_boolean(BOOL bool_value)
3132 static const char *yes_str = "yes";
3133 static const char *no_str = "no";
3135 return (bool_value ? yes_str : no_str);
3138 /***************************************************************************
3139 Provide the string of the negated boolean value associated to the boolean
3140 given as a string. Returns False if the passed string does not correctly
3141 represent a boolean.
3142 ***************************************************************************/
3144 BOOL lp_invert_boolean(const char *str, const char **inverse_str)
3148 if (!set_boolean(&val, str)) {
3152 *inverse_str = get_boolean(!val);
3156 /***************************************************************************
3157 Provide the canonical string representation of a boolean value given
3158 as a string. Return True on success, False if the string given does
3159 not correctly represent a boolean.
3160 ***************************************************************************/
3162 BOOL lp_canonicalize_boolean(const char *str, const char**canon_str)
3166 if (!set_boolean(&val, str)) {
3170 *canon_str = get_boolean(val);
3174 /***************************************************************************
3175 Find a service by name. Otherwise works like get_service.
3176 ***************************************************************************/
3178 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3183 if (ServiceHash != NULL) {
3184 if ( !(canon_name = canonicalize_servicename( pszServiceName )) )
3187 iService = tdb_fetch_int32(ServiceHash, canon_name );
3189 if (LP_SNUM_OK(iService)) {
3190 if (pserviceDest != NULL) {
3191 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3201 /***************************************************************************
3202 Copy a service structure to another.
3203 If pcopymapDest is NULL then copy all fields
3204 ***************************************************************************/
3206 static void copy_service(service * pserviceDest, service * pserviceSource, BOOL *pcopymapDest)
3209 BOOL bcopyall = (pcopymapDest == NULL);
3210 param_opt_struct *data, *pdata, *paramo;
3213 for (i = 0; parm_table[i].label; i++)
3214 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3215 (bcopyall || pcopymapDest[i])) {
3216 void *def_ptr = parm_table[i].ptr;
3218 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3221 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3224 switch (parm_table[i].type) {
3227 *(BOOL *)dest_ptr = *(BOOL *)src_ptr;
3233 *(int *)dest_ptr = *(int *)src_ptr;
3237 *(char *)dest_ptr = *(char *)src_ptr;
3241 string_set((char **)dest_ptr,
3246 string_set((char **)dest_ptr,
3248 strupper_m(*(char **)dest_ptr);
3251 str_list_free((char ***)dest_ptr);
3252 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3260 init_copymap(pserviceDest);
3261 if (pserviceSource->copymap)
3262 memcpy((void *)pserviceDest->copymap,
3263 (void *)pserviceSource->copymap,
3264 sizeof(BOOL) * NUMPARAMETERS);
3267 data = pserviceSource->param_opt;
3270 pdata = pserviceDest->param_opt;
3271 /* Traverse destination */
3273 /* If we already have same option, override it */
3274 if (strcmp(pdata->key, data->key) == 0) {
3275 string_free(&pdata->value);
3276 str_list_free(&data->list);
3277 pdata->value = SMB_STRDUP(data->value);
3281 pdata = pdata->next;
3284 paramo = SMB_XMALLOC_P(param_opt_struct);
3285 paramo->key = SMB_STRDUP(data->key);
3286 paramo->value = SMB_STRDUP(data->value);
3287 paramo->list = NULL;
3288 DLIST_ADD(pserviceDest->param_opt, paramo);
3294 /***************************************************************************
3295 Check a service for consistency. Return False if the service is in any way
3296 incomplete or faulty, else True.
3297 ***************************************************************************/
3299 BOOL service_ok(int iService)
3304 if (ServicePtrs[iService]->szService[0] == '\0') {
3305 DEBUG(0, ("The following message indicates an internal error:\n"));
3306 DEBUG(0, ("No service name in service entry.\n"));
3310 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3311 /* I can't see why you'd want a non-printable printer service... */
3312 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3313 if (!ServicePtrs[iService]->bPrint_ok) {
3314 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3315 ServicePtrs[iService]->szService));
3316 ServicePtrs[iService]->bPrint_ok = True;
3318 /* [printers] service must also be non-browsable. */
3319 if (ServicePtrs[iService]->bBrowseable)
3320 ServicePtrs[iService]->bBrowseable = False;
3323 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3324 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3325 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3327 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3328 ServicePtrs[iService]->szService));
3329 ServicePtrs[iService]->bAvailable = False;
3332 /* If a service is flagged unavailable, log the fact at level 1. */
3333 if (!ServicePtrs[iService]->bAvailable)
3334 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3335 ServicePtrs[iService]->szService));
3341 * lp_regdb_open - regdb helper function
3343 * this should be considered an interim solution that becomes
3344 * superfluous once the registry code has been rewritten
3345 * do allow use of the tdb portion of the registry alone.
3347 * in the meanwhile this provides a lean access
3348 * to the registry globals.
3351 static struct tdb_wrap *lp_regdb_open(void)
3353 struct tdb_wrap *reg_tdb = NULL;
3354 const char *vstring = "INFO/version";
3358 reg_tdb = tdb_wrap_open(NULL, lock_path("registry.tdb"), 0,
3359 REG_TDB_FLAGS, O_RDWR, 0600);
3361 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3362 lock_path("registry.tdb"), strerror(errno)));
3366 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3370 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3371 if (vers_id != REGVER_V1) {
3372 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3373 "INFO/version (got %d, expected %d)\n",
3374 lock_path("registry.tdb"), vers_id, REGVER_V1));
3375 /* this is apparently not implemented in the tdb */
3383 * process_registry_globals
3385 * this is the interim version of process_registry globals
3387 * until we can do it as we would like using the api and only
3388 * using the tdb portion of the registry (see below),
3389 * this just provides the needed functionality of regdb_fetch_values
3390 * and regdb_unpack_values, circumventing any fancy stuff, to
3391 * give us access to the registry globals.
3393 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3396 struct tdb_wrap *reg_tdb = NULL;
3400 /* vars for the tdb unpack loop */
3407 uint32 num_values = 0;
3411 struct registry_value *value = NULL;
3413 include_registry_globals = True;
3417 reg_tdb = lp_regdb_open();
3419 DEBUG(1, ("Error opening the registry!\n"));
3423 /* reg_tdb is from now on used as talloc ctx.
3424 * freeing it closes the tdb (if refcount is 0) */
3426 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3427 KEY_SMBCONF, GLOBAL_NAME);
3428 normalize_dbkey(keystr);
3430 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3433 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3440 buflen = data.dsize;
3442 /* unpack number of values */
3443 len = tdb_unpack(buf, buflen, "d", &num_values);
3444 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3447 /* unpack the values */
3448 for (i=0; i < num_values; i++) {
3452 len += tdb_unpack(buf+len, buflen-len, "fdB",
3457 if (registry_smbconf_valname_forbidden(valname)) {
3458 DEBUG(10, ("process_registry_globals: Ignoring "
3459 "parameter '%s' in registry.\n", valname));
3462 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3464 if (size && data_p) {
3465 err = registry_pull_value(reg_tdb,
3472 if (!W_ERROR_IS_OK(err)) {
3477 valstr = talloc_asprintf(reg_tdb, "%d",
3479 pfunc(valname, valstr);
3482 pfunc(valname, value->v.sz.str);
3485 /* ignore other types */
3491 ret = pfunc("registry shares", "yes");
3492 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3495 TALLOC_FREE(reg_tdb);
3496 SAFE_FREE(data.dptr);
3502 * this is process_registry_globals as it _should_ be (roughly)
3503 * using the reg_api functions...
3506 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3509 TALLOC_CTX *ctx = NULL;
3510 char *regpath = NULL;
3511 WERROR werr = WERR_OK;
3512 struct registry_key *key = NULL;
3513 struct registry_value *value = NULL;
3514 char *valname = NULL;
3515 char *valstr = NULL;
3517 NT_USER_TOKEN *token;
3519 ctx = talloc_init("process_registry_globals");
3521 smb_panic("Failed to create talloc context!");
3524 include_registry_globals = True;
3526 if (!registry_init_regdb()) {
3527 DEBUG(1, ("Error initializing the registry.\n"));
3531 if (!(token = registry_create_admin_token(ctx))) {
3532 DEBUG(1, ("Error creating admin token\n"));
3536 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3537 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3538 if (!W_ERROR_IS_OK(werr)) {
3539 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3540 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3541 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3546 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3550 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3551 switch(value->type) {
3553 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3554 pfunc(valname, valstr);
3555 TALLOC_FREE(valstr);
3558 pfunc(valname, value->v.sz.str);
3561 /* ignore other types */
3565 TALLOC_FREE(valstr);
3568 ret = pfunc("registry shares", "yes");
3570 regdb_last_seqnum = regdb_get_seqnum();
3573 talloc_destroy(ctx);
3578 static struct file_lists {
3579 struct file_lists *next;
3583 } *file_lists = NULL;
3585 /*******************************************************************
3586 Keep a linked list of all config files so we know when one has changed
3587 it's date and needs to be reloaded.
3588 ********************************************************************/
3590 static void add_to_file_list(const char *fname, const char *subfname)
3592 struct file_lists *f = file_lists;
3595 if (f->name && !strcmp(f->name, fname))
3601 f = SMB_MALLOC_P(struct file_lists);
3604 f->next = file_lists;
3605 f->name = SMB_STRDUP(fname);
3610 f->subfname = SMB_STRDUP(subfname);
3616 f->modtime = file_modtime(subfname);
3618 time_t t = file_modtime(subfname);
3624 /*******************************************************************
3625 Check if a config file has changed date.
3626 ********************************************************************/
3628 BOOL lp_file_list_changed(void)
3630 struct file_lists *f = file_lists;
3631 struct tdb_wrap *reg_tdb = NULL;
3633 DEBUG(6, ("lp_file_list_changed()\n"));
3635 if (include_registry_globals) {
3636 reg_tdb = lp_regdb_open();
3637 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3639 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3640 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3641 TALLOC_FREE(reg_tdb);
3650 pstrcpy(n2, f->name);
3651 standard_sub_basic( get_current_username(),
3652 current_user_info.domain,
3655 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3656 f->name, n2, ctime(&f->modtime)));
3658 mod_time = file_modtime(n2);
3660 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3662 ("file %s modified: %s\n", n2,
3664 f->modtime = mod_time;
3665 SAFE_FREE(f->subfname);
3666 f->subfname = SMB_STRDUP(n2);
3674 /***************************************************************************
3675 Run standard_sub_basic on netbios name... needed because global_myname
3676 is not accessed through any lp_ macro.
3677 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3678 ***************************************************************************/
3680 static BOOL handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3683 pstring netbios_name;
3685 pstrcpy(netbios_name, pszParmValue);
3687 standard_sub_basic(get_current_username(), current_user_info.domain,
3688 netbios_name, sizeof(netbios_name));
3690 ret = set_global_myname(netbios_name);
3691 string_set(&Globals.szNetbiosName,global_myname());
3693 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3699 static BOOL handle_charset(int snum, const char *pszParmValue, char **ptr)
3701 if (strcmp(*ptr, pszParmValue) != 0) {
3702 string_set(ptr, pszParmValue);
3710 static BOOL handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3714 ret = set_global_myworkgroup(pszParmValue);
3715 string_set(&Globals.szWorkgroup,lp_workgroup());
3720 static BOOL handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3724 ret = set_global_scope(pszParmValue);
3725 string_set(&Globals.szNetbiosScope,global_scope());
3730 static BOOL handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3732 str_list_free(&Globals.szNetbiosAliases);
3733 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3734 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3737 /***************************************************************************
3738 Handle the include operation.
3739 ***************************************************************************/
3741 static BOOL handle_include(int snum, const char *pszParmValue, char **ptr)
3744 pstrcpy(fname, pszParmValue);
3746 if (strequal(fname, INCLUDE_REGISTRY_NAME)) {
3747 if (bInGlobalSection) {
3748 return process_registry_globals(do_parameter);
3751 DEBUG(1, ("\"include = registry\" only effective "
3752 "in %s section\n", GLOBAL_NAME));
3757 standard_sub_basic(get_current_username(), current_user_info.domain,
3758 fname,sizeof(fname));
3760 add_to_file_list(pszParmValue, fname);
3762 string_set(ptr, fname);
3764 if (file_exist(fname, NULL))
3765 return (pm_process(fname, do_section, do_parameter));
3767 DEBUG(2, ("Can't find include file %s\n", fname));
3772 /***************************************************************************
3773 Handle the interpretation of the copy parameter.
3774 ***************************************************************************/
3776 static BOOL handle_copy(int snum, const char *pszParmValue, char **ptr)
3780 service serviceTemp;
3782 string_set(ptr, pszParmValue);
3784 init_service(&serviceTemp);
3788 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3790 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3791 if (iTemp == iServiceIndex) {
3792 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3794 copy_service(ServicePtrs[iServiceIndex],
3796 ServicePtrs[iServiceIndex]->copymap);
3800 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3804 free_service(&serviceTemp);
3808 /***************************************************************************
3809 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3814 idmap uid = 1000-1999
3817 We only do simple parsing checks here. The strings are parsed into useful
3818 structures in the idmap daemon code.
3820 ***************************************************************************/
3822 /* Some lp_ routines to return idmap [ug]id information */
3824 static uid_t idmap_uid_low, idmap_uid_high;
3825 static gid_t idmap_gid_low, idmap_gid_high;
3827 BOOL lp_idmap_uid(uid_t *low, uid_t *high)
3829 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3833 *low = idmap_uid_low;
3836 *high = idmap_uid_high;
3841 BOOL lp_idmap_gid(gid_t *low, gid_t *high)
3843 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3847 *low = idmap_gid_low;
3850 *high = idmap_gid_high;
3855 /* Do some simple checks on "idmap [ug]id" parameter values */
3857 static BOOL handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3861 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3866 string_set(ptr, pszParmValue);
3868 idmap_uid_low = low;
3869 idmap_uid_high = high;
3874 static BOOL handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3878 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3883 string_set(ptr, pszParmValue);
3885 idmap_gid_low = low;
3886 idmap_gid_high = high;
3891 /***************************************************************************
3892 Handle the DEBUG level list.
3893 ***************************************************************************/
3895 static BOOL handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3897 pstring pszParmValue;
3899 pstrcpy(pszParmValue, pszParmValueIn);
3900 string_set(ptr, pszParmValueIn);
3901 return debug_parse_levels( pszParmValue );
3904 /***************************************************************************
3905 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3906 ***************************************************************************/
3908 static const char *append_ldap_suffix( const char *str )
3910 const char *suffix_string;
3914 lp_talloc = talloc_init("lp_talloc");
3916 suffix_string = talloc_asprintf( lp_talloc, "%s,%s", str, Globals.szLdapSuffix );
3917 if ( !suffix_string ) {
3918 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3922 return suffix_string;
3925 const char *lp_ldap_machine_suffix(void)
3927 if (Globals.szLdapMachineSuffix[0])
3928 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3930 return lp_string(Globals.szLdapSuffix);
3933 const char *lp_ldap_user_suffix(void)
3935 if (Globals.szLdapUserSuffix[0])
3936 return append_ldap_suffix(Globals.szLdapUserSuffix);
3938 return lp_string(Globals.szLdapSuffix);
3941 const char *lp_ldap_group_suffix(void)
3943 if (Globals.szLdapGroupSuffix[0])
3944 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3946 return lp_string(Globals.szLdapSuffix);
3949 const char *lp_ldap_idmap_suffix(void)
3951 if (Globals.szLdapIdmapSuffix[0])
3952 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3954 return lp_string(Globals.szLdapSuffix);
3957 /****************************************************************************
3958 set the value for a P_ENUM
3959 ***************************************************************************/
3961 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3966 for (i = 0; parm->enum_list[i].name; i++) {
3967 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3968 *ptr = parm->enum_list[i].value;
3974 /***************************************************************************
3975 ***************************************************************************/
3977 static BOOL handle_printing(int snum, const char *pszParmValue, char **ptr)
3979 static int parm_num = -1;
3982 if ( parm_num == -1 )
3983 parm_num = map_parameter( "printing" );
3985 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3990 s = ServicePtrs[snum];
3992 init_printer_values( s );
3998 /***************************************************************************
3999 Initialise a copymap.
4000 ***************************************************************************/
4002 static void init_copymap(service * pservice)
4005 SAFE_FREE(pservice->copymap);
4006 pservice->copymap = SMB_MALLOC_ARRAY(BOOL,NUMPARAMETERS);
4007 if (!pservice->copymap)
4009 ("Couldn't allocate copymap!! (size %d)\n",
4010 (int)NUMPARAMETERS));
4012 for (i = 0; i < NUMPARAMETERS; i++)
4013 pservice->copymap[i] = True;
4016 /***************************************************************************
4017 Return the local pointer to a parameter given the service number and the
4018 pointer into the default structure.
4019 ***************************************************************************/
4021 void *lp_local_ptr(int snum, void *ptr)
4023 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
4026 /***************************************************************************
4027 Process a parameter for a particular service number. If snum < 0
4028 then assume we are in the globals.
4029 ***************************************************************************/
4031 BOOL lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
4033 int parmnum, i, slen;
4034 void *parm_ptr = NULL; /* where we are going to store the result */
4035 void *def_ptr = NULL;
4038 param_opt_struct *paramo, *data;
4041 parmnum = map_parameter(pszParmName);
4044 if ((sep=strchr(pszParmName, ':')) != NULL) {
4046 ZERO_STRUCT(param_key);
4047 pstr_sprintf(param_key, "%s:", pszParmName);
4048 slen = strlen(param_key);
4049 pstrcat(param_key, sep+1);
4050 trim_char(param_key+slen, ' ', ' ');
4052 data = (snum < 0) ? Globals.param_opt :
4053 ServicePtrs[snum]->param_opt;
4054 /* Traverse destination */
4056 /* If we already have same option, override it */
4057 if (strcmp(data->key, param_key) == 0) {
4058 string_free(&data->value);
4059 str_list_free(&data->list);
4060 data->value = SMB_STRDUP(pszParmValue);
4067 paramo = SMB_XMALLOC_P(param_opt_struct);
4068 paramo->key = SMB_STRDUP(param_key);
4069 paramo->value = SMB_STRDUP(pszParmValue);
4070 paramo->list = NULL;
4072 DLIST_ADD(Globals.param_opt, paramo);
4074 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
4081 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
4085 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
4086 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
4090 def_ptr = parm_table[parmnum].ptr;
4092 /* we might point at a service, the default service or a global */
4096 if (parm_table[parmnum].p_class == P_GLOBAL) {
4098 ("Global parameter %s found in service section!\n",
4103 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
4106 if (!ServicePtrs[snum]->copymap)
4107 init_copymap(ServicePtrs[snum]);
4109 /* this handles the aliases - set the copymap for other entries with
4110 the same data pointer */
4111 for (i = 0; parm_table[i].label; i++)
4112 if (parm_table[i].ptr == parm_table[parmnum].ptr)
4113 ServicePtrs[snum]->copymap[i] = False;
4116 /* if it is a special case then go ahead */
4117 if (parm_table[parmnum].special) {
4118 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4122 /* now switch on the type of variable it is */
4123 switch (parm_table[parmnum].type)
4126 *(BOOL *)parm_ptr = lp_bool(pszParmValue);
4130 *(BOOL *)parm_ptr = !lp_bool(pszParmValue);
4134 *(int *)parm_ptr = lp_int(pszParmValue);
4138 *(char *)parm_ptr = *pszParmValue;
4142 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4144 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4149 str_list_free((char ***)parm_ptr);
4150 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
4154 string_set((char **)parm_ptr, pszParmValue);
4158 string_set((char **)parm_ptr, pszParmValue);
4159 strupper_m(*(char **)parm_ptr);
4163 pstrcpy((char *)parm_ptr, pszParmValue);
4167 pstrcpy((char *)parm_ptr, pszParmValue);
4168 strupper_m((char *)parm_ptr);
4172 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4181 /***************************************************************************
4182 Process a parameter.
4183 ***************************************************************************/
4185 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue)
4187 if (!bInGlobalSection && bGlobalOnly)
4190 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4192 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4193 pszParmName, pszParmValue));
4196 /***************************************************************************
4197 Print a parameter of the specified type.
4198 ***************************************************************************/
4200 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4206 for (i = 0; p->enum_list[i].name; i++) {
4207 if (*(int *)ptr == p->enum_list[i].value) {
4209 p->enum_list[i].name);
4216 fprintf(f, "%s", BOOLSTR(*(BOOL *)ptr));
4220 fprintf(f, "%s", BOOLSTR(!*(BOOL *)ptr));
4224 fprintf(f, "%d", *(int *)ptr);
4228 fprintf(f, "%c", *(char *)ptr);
4232 fprintf(f, "%s", octal_string(*(int *)ptr));
4236 if ((char ***)ptr && *(char ***)ptr) {
4237 char **list = *(char ***)ptr;
4239 for (; *list; list++) {
4240 /* surround strings with whitespace in double quotes */
4241 if ( strchr_m( *list, ' ' ) )
4242 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4244 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4252 fprintf(f, "%s", (char *)ptr);
4258 if (*(char **)ptr) {
4259 fprintf(f, "%s", *(char **)ptr);
4267 /***************************************************************************
4268 Check if two parameters are equal.
4269 ***************************************************************************/
4271 static BOOL equal_parameter(parm_type type, void *ptr1, void *ptr2)
4276 return (*((BOOL *)ptr1) == *((BOOL *)ptr2));
4281 return (*((int *)ptr1) == *((int *)ptr2));
4284 return (*((char *)ptr1) == *((char *)ptr2));
4287 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4292 char *p1 = (char *)ptr1, *p2 = (char *)ptr2;
4297 return (p1 == p2 || strequal(p1, p2));
4302 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4307 return (p1 == p2 || strequal(p1, p2));
4315 /***************************************************************************
4316 Initialize any local varients in the sDefault table.
4317 ***************************************************************************/
4319 void init_locals(void)
4324 /***************************************************************************
4325 Process a new section (service). At this stage all sections are services.
4326 Later we'll have special sections that permit server parameters to be set.
4327 Returns True on success, False on failure.
4328 ***************************************************************************/
4330 static BOOL do_section(const char *pszSectionName)
4333 BOOL isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4334 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4337 /* if we were in a global section then do the local inits */
4338 if (bInGlobalSection && !isglobal)
4341 /* if we've just struck a global section, note the fact. */
4342 bInGlobalSection = isglobal;
4344 /* check for multiple global sections */
4345 if (bInGlobalSection) {
4346 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4350 if (!bInGlobalSection && bGlobalOnly)
4353 /* if we have a current service, tidy it up before moving on */
4356 if (iServiceIndex >= 0)
4357 bRetval = service_ok(iServiceIndex);
4359 /* if all is still well, move to the next record in the services array */
4361 /* We put this here to avoid an odd message order if messages are */
4362 /* issued by the post-processing of a previous section. */
4363 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4365 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4367 DEBUG(0, ("Failed to add a new service\n"));
4376 /***************************************************************************
4377 Determine if a partcular base parameter is currentl set to the default value.
4378 ***************************************************************************/
4380 static BOOL is_default(int i)
4382 if (!defaults_saved)
4384 switch (parm_table[i].type) {
4386 return str_list_compare (parm_table[i].def.lvalue,
4387 *(char ***)parm_table[i].ptr);
4390 return strequal(parm_table[i].def.svalue,
4391 *(char **)parm_table[i].ptr);
4394 return strequal(parm_table[i].def.svalue,
4395 (char *)parm_table[i].ptr);
4398 return parm_table[i].def.bvalue ==
4399 *(BOOL *)parm_table[i].ptr;
4401 return parm_table[i].def.cvalue ==
4402 *(char *)parm_table[i].ptr;
4406 return parm_table[i].def.ivalue ==
4407 *(int *)parm_table[i].ptr;
4414 /***************************************************************************
4415 Display the contents of the global structure.
4416 ***************************************************************************/
4418 static void dump_globals(FILE *f)
4421 param_opt_struct *data;
4423 fprintf(f, "[global]\n");
4425 for (i = 0; parm_table[i].label; i++)
4426 if (parm_table[i].p_class == P_GLOBAL &&
4427 parm_table[i].ptr &&
4428 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4429 if (defaults_saved && is_default(i))
4431 fprintf(f, "\t%s = ", parm_table[i].label);
4432 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4435 if (Globals.param_opt != NULL) {
4436 data = Globals.param_opt;
4438 fprintf(f, "\t%s = %s\n", data->key, data->value);
4445 /***************************************************************************
4446 Return True if a local parameter is currently set to the global default.
4447 ***************************************************************************/
4449 BOOL lp_is_default(int snum, struct parm_struct *parm)
4451 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4453 return equal_parameter(parm->type,
4454 ((char *)ServicePtrs[snum]) + pdiff,
4455 ((char *)&sDefault) + pdiff);
4458 /***************************************************************************
4459 Display the contents of a single services record.
4460 ***************************************************************************/
4462 static void dump_a_service(service * pService, FILE * f)
4465 param_opt_struct *data;
4467 if (pService != &sDefault)
4468 fprintf(f, "[%s]\n", pService->szService);
4470 for (i = 0; parm_table[i].label; i++) {
4472 if (parm_table[i].p_class == P_LOCAL &&
4473 parm_table[i].ptr &&
4474 (*parm_table[i].label != '-') &&
4475 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4478 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4480 if (pService == &sDefault) {
4481 if (defaults_saved && is_default(i))
4484 if (equal_parameter(parm_table[i].type,
4485 ((char *)pService) +
4487 ((char *)&sDefault) +
4492 fprintf(f, "\t%s = ", parm_table[i].label);
4493 print_parameter(&parm_table[i],
4494 ((char *)pService) + pdiff, f);
4499 if (pService->param_opt != NULL) {
4500 data = pService->param_opt;
4502 fprintf(f, "\t%s = %s\n", data->key, data->value);
4508 /***************************************************************************
4509 Display the contents of a parameter of a single services record.
4510 ***************************************************************************/
4512 BOOL dump_a_parameter(int snum, char *parm_name, FILE * f, BOOL isGlobal)
4515 BOOL result = False;
4518 fstring local_parm_name;
4520 const char *parm_opt_value;
4522 /* check for parametrical option */
4523 fstrcpy( local_parm_name, parm_name);
4524 parm_opt = strchr( local_parm_name, ':');
4529 if (strlen(parm_opt)) {
4530 parm_opt_value = lp_parm_const_string( snum,
4531 local_parm_name, parm_opt, NULL);
4532 if (parm_opt_value) {
4533 printf( "%s\n", parm_opt_value);
4540 /* check for a key and print the value */
4547 for (i = 0; parm_table[i].label; i++) {
4548 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4549 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4550 parm_table[i].ptr &&
4551 (*parm_table[i].label != '-') &&
4552 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4557 ptr = parm_table[i].ptr;
4559 service * pService = ServicePtrs[snum];
4560 ptr = ((char *)pService) +
4561 PTR_DIFF(parm_table[i].ptr, &sDefault);
4564 print_parameter(&parm_table[i],
4575 /***************************************************************************
4576 Return info about the requested parameter (given as a string).
4577 Return NULL when the string is not a valid parameter name.
4578 ***************************************************************************/
4580 struct parm_struct *lp_get_parameter(const char *param_name)
4582 int num = map_parameter(param_name);
4588 return &parm_table[num];
4591 /***************************************************************************
4592 Return info about the next parameter in a service.
4593 snum==GLOBAL_SECTION_SNUM gives the globals.
4594 Return NULL when out of parameters.
4595 ***************************************************************************/
4597 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4600 /* do the globals */
4601 for (; parm_table[*i].label; (*i)++) {
4602 if (parm_table[*i].p_class == P_SEPARATOR)
4603 return &parm_table[(*i)++];
4605 if (!parm_table[*i].ptr
4606 || (*parm_table[*i].label == '-'))
4610 && (parm_table[*i].ptr ==
4611 parm_table[(*i) - 1].ptr))
4614 if (is_default(*i) && !allparameters)
4617 return &parm_table[(*i)++];
4620 service *pService = ServicePtrs[snum];
4622 for (; parm_table[*i].label; (*i)++) {
4623 if (parm_table[*i].p_class == P_SEPARATOR)
4624 return &parm_table[(*i)++];
4626 if (parm_table[*i].p_class == P_LOCAL &&
4627 parm_table[*i].ptr &&
4628 (*parm_table[*i].label != '-') &&
4630 (parm_table[*i].ptr !=
4631 parm_table[(*i) - 1].ptr)))
4634 PTR_DIFF(parm_table[*i].ptr,
4637 if (allparameters ||
4638 !equal_parameter(parm_table[*i].type,
4639 ((char *)pService) +
4641 ((char *)&sDefault) +
4644 return &parm_table[(*i)++];
4655 /***************************************************************************
4656 Display the contents of a single copy structure.
4657 ***************************************************************************/
4658 static void dump_copy_map(BOOL *pcopymap)
4664 printf("\n\tNon-Copied parameters:\n");
4666 for (i = 0; parm_table[i].label; i++)
4667 if (parm_table[i].p_class == P_LOCAL &&
4668 parm_table[i].ptr && !pcopymap[i] &&
4669 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4671 printf("\t\t%s\n", parm_table[i].label);
4676 /***************************************************************************
4677 Return TRUE if the passed service number is within range.
4678 ***************************************************************************/
4680 BOOL lp_snum_ok(int iService)
4682 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4685 /***************************************************************************
4686 Auto-load some home services.
4687 ***************************************************************************/
4689 static void lp_add_auto_services(char *str)
4698 s = SMB_STRDUP(str);
4702 homes = lp_servicenumber(HOMES_NAME);
4704 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4705 char *home = get_user_home_dir(p);
4707 if (lp_servicenumber(p) >= 0)
4710 if (home && homes >= 0)
4711 lp_add_home(p, homes, p, home);
4716 /***************************************************************************
4717 Auto-load one printer.
4718 ***************************************************************************/
4720 void lp_add_one_printer(char *name, char *comment)
4722 int printers = lp_servicenumber(PRINTERS_NAME);
4725 if (lp_servicenumber(name) < 0) {
4726 lp_add_printer(name, printers);
4727 if ((i = lp_servicenumber(name)) >= 0) {
4728 string_set(&ServicePtrs[i]->comment, comment);
4729 ServicePtrs[i]->autoloaded = True;
4734 /***************************************************************************
4735 Have we loaded a services file yet?
4736 ***************************************************************************/
4738 BOOL lp_loaded(void)
4743 /***************************************************************************
4744 Unload unused services.
4745 ***************************************************************************/
4747 void lp_killunused(BOOL (*snumused) (int))
4750 for (i = 0; i < iNumServices; i++) {
4754 /* don't kill autoloaded or usershare services */
4755 if ( ServicePtrs[i]->autoloaded ||
4756 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4760 if (!snumused || !snumused(i)) {
4761 free_service_byindex(i);
4766 /***************************************************************************
4768 ***************************************************************************/
4770 void lp_killservice(int iServiceIn)
4772 if (VALID(iServiceIn)) {
4773 free_service_byindex(iServiceIn);
4777 /***************************************************************************
4778 Save the curent values of all global and sDefault parameters into the
4779 defaults union. This allows swat and testparm to show only the
4780 changed (ie. non-default) parameters.
4781 ***************************************************************************/
4783 static void lp_save_defaults(void)
4786 for (i = 0; parm_table[i].label; i++) {
4787 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4789 switch (parm_table[i].type) {
4791 str_list_copy(&(parm_table[i].def.lvalue),
4792 *(const char ***)parm_table[i].ptr);
4796 if (parm_table[i].ptr) {
4797 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4799 parm_table[i].def.svalue = NULL;
4804 if (parm_table[i].ptr) {
4805 parm_table[i].def.svalue = SMB_STRDUP((char *)parm_table[i].ptr);
4807 parm_table[i].def.svalue = NULL;
4812 parm_table[i].def.bvalue =
4813 *(BOOL *)parm_table[i].ptr;
4816 parm_table[i].def.cvalue =
4817 *(char *)parm_table[i].ptr;
4822 parm_table[i].def.ivalue =
4823 *(int *)parm_table[i].ptr;
4829 defaults_saved = True;
4832 /*******************************************************************
4833 Set the server type we will announce as via nmbd.
4834 ********************************************************************/
4836 static const struct srv_role_tab {
4838 const char *role_str;
4839 } srv_role_tab [] = {
4840 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4841 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4842 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4843 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4847 const char* server_role_str(uint32 role)
4850 for (i=0; srv_role_tab[i].role_str; i++) {
4851 if (role == srv_role_tab[i].role) {
4852 return srv_role_tab[i].role_str;
4858 static void set_server_role(void)
4860 server_role = ROLE_STANDALONE;
4862 switch (lp_security()) {
4864 if (lp_domain_logons())
4865 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4868 if (lp_domain_logons())
4869 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4870 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4871 server_role = ROLE_STANDALONE;
4874 if (lp_domain_logons()) {
4875 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4876 server_role = ROLE_DOMAIN_BDC;
4879 server_role = ROLE_DOMAIN_MEMBER;
4882 if (lp_domain_logons()) {
4883 server_role = ROLE_DOMAIN_PDC;
4886 server_role = ROLE_DOMAIN_MEMBER;
4889 if (lp_domain_logons()) {
4891 if (Globals.bDomainMaster) /* auto or yes */
4892 server_role = ROLE_DOMAIN_PDC;
4894 server_role = ROLE_DOMAIN_BDC;
4898 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4902 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4905 /***********************************************************
4906 If we should send plaintext/LANMAN passwords in the clinet
4907 ************************************************************/
4909 static void set_allowed_client_auth(void)
4911 if (Globals.bClientNTLMv2Auth) {
4912 Globals.bClientLanManAuth = False;
4914 if (!Globals.bClientLanManAuth) {
4915 Globals.bClientPlaintextAuth = False;
4919 /***************************************************************************
4921 The following code allows smbd to read a user defined share file.
4922 Yes, this is my intent. Yes, I'm comfortable with that...
4924 THE FOLLOWING IS SECURITY CRITICAL CODE.
4926 It washes your clothes, it cleans your house, it guards you while you sleep...
4927 Do not f%^k with it....
4928 ***************************************************************************/
4930 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4932 /***************************************************************************
4933 Check allowed stat state of a usershare file.
4934 Ensure we print out who is dicking with us so the admin can
4935 get their sorry ass fired.
4936 ***************************************************************************/
4938 static BOOL check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4940 if (!S_ISREG(psbuf->st_mode)) {
4941 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4942 "not a regular file\n",
4943 fname, (unsigned int)psbuf->st_uid ));
4947 /* Ensure this doesn't have the other write bit set. */
4948 if (psbuf->st_mode & S_IWOTH) {
4949 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4950 "public write. Refusing to allow as a usershare file.\n",
4951 fname, (unsigned int)psbuf->st_uid ));
4955 /* Should be 10k or less. */
4956 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4957 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4958 "too large (%u) to be a user share file.\n",
4959 fname, (unsigned int)psbuf->st_uid,
4960 (unsigned int)psbuf->st_size ));
4967 /***************************************************************************
4968 Parse the contents of a usershare file.
4969 ***************************************************************************/
4971 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4972 SMB_STRUCT_STAT *psbuf,
4973 const char *servicename,
4982 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4983 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4986 SMB_STRUCT_STAT sbuf;
4988 *pallow_guest = False;
4991 return USERSHARE_MALFORMED_FILE;
4994 if (strcmp(lines[0], "#VERSION 1") == 0) {
4996 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4999 return USERSHARE_MALFORMED_FILE;
5002 return USERSHARE_BAD_VERSION;
5005 if (strncmp(lines[1], "path=", 5) != 0) {
5006 return USERSHARE_MALFORMED_PATH;
5009 pstrcpy(sharepath, &lines[1][5]);
5010 trim_string(sharepath, " ", " ");
5012 if (strncmp(lines[2], "comment=", 8) != 0) {
5013 return USERSHARE_MALFORMED_COMMENT_DEF;
5016 pstrcpy(comment, &lines[2][8]);
5017 trim_string(comment, " ", " ");
5018 trim_char(comment, '"', '"');
5020 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
5021 return USERSHARE_MALFORMED_ACL_DEF;
5024 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
5025 return USERSHARE_ACL_ERR;
5029 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
5030 return USERSHARE_MALFORMED_ACL_DEF;
5032 if (lines[4][9] == 'y') {
5033 *pallow_guest = True;
5037 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
5038 /* Path didn't change, no checks needed. */
5039 return USERSHARE_OK;
5042 /* The path *must* be absolute. */
5043 if (sharepath[0] != '/') {
5044 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
5045 servicename, sharepath));
5046 return USERSHARE_PATH_NOT_ABSOLUTE;
5049 /* If there is a usershare prefix deny list ensure one of these paths
5050 doesn't match the start of the user given path. */
5051 if (prefixdenylist) {
5053 for ( i=0; prefixdenylist[i]; i++ ) {
5054 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
5055 servicename, i, prefixdenylist[i], sharepath ));
5056 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
5057 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
5058 "usershare prefix deny list entries.\n",
5059 servicename, sharepath));
5060 return USERSHARE_PATH_IS_DENIED;
5065 /* If there is a usershare prefix allow list ensure one of these paths
5066 does match the start of the user given path. */
5068 if (prefixallowlist) {
5070 for ( i=0; prefixallowlist[i]; i++ ) {
5071 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
5072 servicename, i, prefixallowlist[i], sharepath ));
5073 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
5077 if (prefixallowlist[i] == NULL) {
5078 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
5079 "usershare prefix allow list entries.\n",
5080 servicename, sharepath));
5081 return USERSHARE_PATH_NOT_ALLOWED;
5085 /* Ensure this is pointing to a directory. */
5086 dp = sys_opendir(sharepath);
5089 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5090 servicename, sharepath));
5091 return USERSHARE_PATH_NOT_DIRECTORY;
5094 /* Ensure the owner of the usershare file has permission to share
5097 if (sys_stat(sharepath, &sbuf) == -1) {
5098 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
5099 servicename, sharepath, strerror(errno) ));
5101 return USERSHARE_POSIX_ERR;
5106 if (!S_ISDIR(sbuf.st_mode)) {
5107 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5108 servicename, sharepath ));
5109 return USERSHARE_PATH_NOT_DIRECTORY;
5112 /* Check if sharing is restricted to owner-only. */
5113 /* psbuf is the stat of the usershare definition file,
5114 sbuf is the stat of the target directory to be shared. */
5116 if (lp_usershare_owner_only()) {
5117 /* root can share anything. */
5118 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
5119 return USERSHARE_PATH_NOT_ALLOWED;
5123 return USERSHARE_OK;
5126 /***************************************************************************
5127 Deal with a usershare file.
5130 -1 - Bad name, invalid contents.
5131 - service name already existed and not a usershare, problem
5132 with permissions to share directory etc.
5133 ***************************************************************************/
5135 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5137 SMB_STRUCT_STAT sbuf;
5138 SMB_STRUCT_STAT lsbuf;
5142 fstring service_name;
5143 char **lines = NULL;
5147 TALLOC_CTX *ctx = NULL;
5148 SEC_DESC *psd = NULL;
5149 BOOL guest_ok = False;
5151 /* Ensure share name doesn't contain invalid characters. */
5152 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5153 DEBUG(0,("process_usershare_file: share name %s contains "
5154 "invalid characters (any of %s)\n",
5155 file_name, INVALID_SHARENAME_CHARS ));
5159 fstrcpy(service_name, file_name);
5161 pstrcpy(fname, dir_name);
5162 pstrcat(fname, "/");
5163 pstrcat(fname, file_name);
5165 /* Minimize the race condition by doing an lstat before we
5166 open and fstat. Ensure this isn't a symlink link. */
5168 if (sys_lstat(fname, &lsbuf) != 0) {
5169 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5170 fname, strerror(errno) ));
5174 /* This must be a regular file, not a symlink, directory or
5175 other strange filetype. */
5176 if (!check_usershare_stat(fname, &lsbuf)) {
5180 /* See if there is already a servicenum for this name. */
5181 /* tdb_fetch_int32 returns -1 if not found. */
5182 iService = (int)tdb_fetch_int32(ServiceHash, canonicalize_servicename(service_name) );
5184 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5185 /* Nothing changed - Mark valid and return. */
5186 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5188 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5192 /* Try and open the file read only - no symlinks allowed. */
5194 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5196 fd = sys_open(fname, O_RDONLY, 0);
5200 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5201 fname, strerror(errno) ));
5205 /* Now fstat to be *SURE* it's a regular file. */
5206 if (sys_fstat(fd, &sbuf) != 0) {
5208 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5209 fname, strerror(errno) ));
5213 /* Is it the same dev/inode as was lstated ? */
5214 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5216 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5217 "Symlink spoofing going on ?\n", fname ));
5221 /* This must be a regular file, not a symlink, directory or
5222 other strange filetype. */
5223 if (!check_usershare_stat(fname, &sbuf)) {
5227 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5230 if (lines == NULL) {
5231 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5232 fname, (unsigned int)sbuf.st_uid ));
5236 /* Should we allow printers to be shared... ? */
5237 ctx = talloc_init("usershare_sd_xctx");
5239 file_lines_free(lines);
5243 if (parse_usershare_file(ctx, &sbuf, service_name,
5244 iService, lines, numlines, sharepath,
5245 comment, &psd, &guest_ok) != USERSHARE_OK) {
5246 talloc_destroy(ctx);
5247 file_lines_free(lines);
5251 file_lines_free(lines);
5253 /* Everything ok - add the service possibly using a template. */
5255 const service *sp = &sDefault;
5256 if (snum_template != -1) {
5257 sp = ServicePtrs[snum_template];
5260 if ((iService = add_a_service(sp, service_name)) < 0) {
5261 DEBUG(0, ("process_usershare_file: Failed to add "
5262 "new service %s\n", service_name));
5263 talloc_destroy(ctx);
5267 /* Read only is controlled by usershare ACL below. */
5268 ServicePtrs[iService]->bRead_only = False;
5271 /* Write the ACL of the new/modified share. */
5272 if (!set_share_security(service_name, psd)) {
5273 DEBUG(0, ("process_usershare_file: Failed to set share "
5274 "security for user share %s\n",
5276 lp_remove_service(iService);
5277 talloc_destroy(ctx);
5281 talloc_destroy(ctx);
5283 /* If from a template it may be marked invalid. */
5284 ServicePtrs[iService]->valid = True;
5286 /* Set the service as a valid usershare. */
5287 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5289 /* Set guest access. */
5290 if (lp_usershare_allow_guests()) {
5291 ServicePtrs[iService]->bGuest_ok = guest_ok;
5294 /* And note when it was loaded. */
5295 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5296 string_set(&ServicePtrs[iService]->szPath, sharepath);
5297 string_set(&ServicePtrs[iService]->comment, comment);
5302 /***************************************************************************
5303 Checks if a usershare entry has been modified since last load.
5304 ***************************************************************************/
5306 static BOOL usershare_exists(int iService, time_t *last_mod)
5308 SMB_STRUCT_STAT lsbuf;
5309 const char *usersharepath = Globals.szUsersharePath;
5312 pstrcpy(fname, usersharepath);
5313 pstrcat(fname, "/");
5314 pstrcat(fname, ServicePtrs[iService]->szService);
5316 if (sys_lstat(fname, &lsbuf) != 0) {
5320 if (!S_ISREG(lsbuf.st_mode)) {
5324 *last_mod = lsbuf.st_mtime;
5328 /***************************************************************************
5329 Load a usershare service by name. Returns a valid servicenumber or -1.
5330 ***************************************************************************/
5332 int load_usershare_service(const char *servicename)
5334 SMB_STRUCT_STAT sbuf;
5335 const char *usersharepath = Globals.szUsersharePath;
5336 int max_user_shares = Globals.iUsershareMaxShares;
5337 int snum_template = -1;
5339 if (*usersharepath == 0 || max_user_shares == 0) {
5343 if (sys_stat(usersharepath, &sbuf) != 0) {
5344 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5345 usersharepath, strerror(errno) ));
5349 if (!S_ISDIR(sbuf.st_mode)) {
5350 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5356 * This directory must be owned by root, and have the 't' bit set.
5357 * It also must not be writable by "other".
5361 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5363 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5365 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5366 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5371 /* Ensure the template share exists if it's set. */
5372 if (Globals.szUsershareTemplateShare[0]) {
5373 /* We can't use lp_servicenumber here as we are recommending that
5374 template shares have -valid=False set. */
5375 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5376 if (ServicePtrs[snum_template]->szService &&
5377 strequal(ServicePtrs[snum_template]->szService,
5378 Globals.szUsershareTemplateShare)) {
5383 if (snum_template == -1) {
5384 DEBUG(0,("load_usershare_service: usershare template share %s "
5385 "does not exist.\n",
5386 Globals.szUsershareTemplateShare ));
5391 return process_usershare_file(usersharepath, servicename, snum_template);
5394 /***************************************************************************
5395 Load all user defined shares from the user share directory.
5396 We only do this if we're enumerating the share list.
5397 This is the function that can delete usershares that have
5399 ***************************************************************************/
5401 int load_usershare_shares(void)
5404 SMB_STRUCT_STAT sbuf;
5405 SMB_STRUCT_DIRENT *de;
5406 int num_usershares = 0;
5407 int max_user_shares = Globals.iUsershareMaxShares;
5408 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5409 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5410 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5412 int snum_template = -1;
5413 const char *usersharepath = Globals.szUsersharePath;
5414 int ret = lp_numservices();
5416 if (max_user_shares == 0 || *usersharepath == '\0') {
5417 return lp_numservices();
5420 if (sys_stat(usersharepath, &sbuf) != 0) {
5421 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5422 usersharepath, strerror(errno) ));
5427 * This directory must be owned by root, and have the 't' bit set.
5428 * It also must not be writable by "other".
5432 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5434 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5436 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5437 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5442 /* Ensure the template share exists if it's set. */
5443 if (Globals.szUsershareTemplateShare[0]) {
5444 /* We can't use lp_servicenumber here as we are recommending that
5445 template shares have -valid=False set. */
5446 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5447 if (ServicePtrs[snum_template]->szService &&
5448 strequal(ServicePtrs[snum_template]->szService,
5449 Globals.szUsershareTemplateShare)) {
5454 if (snum_template == -1) {
5455 DEBUG(0,("load_usershare_shares: usershare template share %s "
5456 "does not exist.\n",
5457 Globals.szUsershareTemplateShare ));
5462 /* Mark all existing usershares as pending delete. */
5463 for (iService = iNumServices - 1; iService >= 0; iService--) {
5464 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5465 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5469 dp = sys_opendir(usersharepath);
5471 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5472 usersharepath, strerror(errno) ));
5476 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5477 (de = sys_readdir(dp));
5478 num_dir_entries++ ) {
5480 const char *n = de->d_name;
5482 /* Ignore . and .. */
5484 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5490 /* Temporary file used when creating a share. */
5491 num_tmp_dir_entries++;
5494 /* Allow 20% tmp entries. */
5495 if (num_tmp_dir_entries > allowed_tmp_entries) {
5496 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5497 "in directory %s\n",
5498 num_tmp_dir_entries, usersharepath));
5502 r = process_usershare_file(usersharepath, n, snum_template);
5504 /* Update the services count. */
5506 if (num_usershares >= max_user_shares) {
5507 DEBUG(0,("load_usershare_shares: max user shares reached "
5508 "on file %s in directory %s\n",
5509 n, usersharepath ));
5512 } else if (r == -1) {
5513 num_bad_dir_entries++;
5516 /* Allow 20% bad entries. */
5517 if (num_bad_dir_entries > allowed_bad_entries) {
5518 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5519 "in directory %s\n",
5520 num_bad_dir_entries, usersharepath));
5524 /* Allow 20% bad entries. */
5525 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5526 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5527 "in directory %s\n",
5528 num_dir_entries, usersharepath));
5535 /* Sweep through and delete any non-refreshed usershares that are
5536 not currently in use. */
5537 for (iService = iNumServices - 1; iService >= 0; iService--) {
5538 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5539 if (conn_snum_used(iService)) {
5542 /* Remove from the share ACL db. */
5543 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5544 lp_servicename(iService) ));
5545 delete_share_security(snum2params_static(iService));
5546 free_service_byindex(iService);
5550 return lp_numservices();
5553 /********************************************************
5554 Destroy global resources allocated in this file
5555 ********************************************************/
5557 void gfree_loadparm(void)
5559 struct file_lists *f;
5560 struct file_lists *next;
5565 /* Free the file lists */
5570 SAFE_FREE( f->name );
5571 SAFE_FREE( f->subfname );
5576 /* Free resources allocated to services */
5578 for ( i = 0; i < iNumServices; i++ ) {
5580 free_service_byindex(i);
5584 SAFE_FREE( ServicePtrs );
5587 /* Now release all resources allocated to global
5588 parameters and the default service */
5590 for (i = 0; parm_table[i].label; i++)
5592 if ( parm_table[i].type == P_STRING
5593 || parm_table[i].type == P_USTRING )
5595 string_free( (char**)parm_table[i].ptr );
5597 else if (parm_table[i].type == P_LIST) {
5598 str_list_free( (char***)parm_table[i].ptr );
5603 /***************************************************************************
5604 Load the services array from the services file. Return True on success,
5606 ***************************************************************************/
5608 BOOL lp_load(const char *pszFname,
5612 BOOL initialize_globals)
5616 param_opt_struct *data, *pdata;
5618 pstrcpy(n2, pszFname);
5620 standard_sub_basic( get_current_username(), current_user_info.domain,
5623 add_to_file_list(pszFname, n2);
5627 DEBUG(3, ("lp_load: refreshing parameters\n"));
5629 bInGlobalSection = True;
5630 bGlobalOnly = global_only;
5632 init_globals(! initialize_globals);
5635 if (save_defaults) {
5640 if (Globals.param_opt != NULL) {
5641 data = Globals.param_opt;
5643 string_free(&data->key);
5644 string_free(&data->value);
5645 str_list_free(&data->list);
5650 Globals.param_opt = NULL;
5653 /* We get sections first, so have to start 'behind' to make up */
5655 bRetval = pm_process(n2, do_section, do_parameter);
5657 /* finish up the last section */
5658 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5660 if (iServiceIndex >= 0)
5661 bRetval = service_ok(iServiceIndex);
5663 lp_add_auto_services(lp_auto_services());
5666 /* When 'restrict anonymous = 2' guest connections to ipc$
5668 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5669 if ( lp_enable_asu_support() )
5670 lp_add_ipc("ADMIN$", False);
5674 set_default_server_announce_type();
5675 set_allowed_client_auth();
5679 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5680 /* if bWINSsupport is true and we are in the client */
5681 if (in_client && Globals.bWINSsupport) {
5682 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5690 /***************************************************************************
5691 Reset the max number of services.
5692 ***************************************************************************/
5694 void lp_resetnumservices(void)
5699 /***************************************************************************
5700 Return the max number of services.
5701 ***************************************************************************/
5703 int lp_numservices(void)
5705 return (iNumServices);
5708 /***************************************************************************
5709 Display the contents of the services array in human-readable form.
5710 ***************************************************************************/
5712 void lp_dump(FILE *f, BOOL show_defaults, int maxtoprint)
5717 defaults_saved = False;
5721 dump_a_service(&sDefault, f);
5723 for (iService = 0; iService < maxtoprint; iService++) {
5725 lp_dump_one(f, show_defaults, iService);
5729 /***************************************************************************
5730 Display the contents of one service in human-readable form.
5731 ***************************************************************************/
5733 void lp_dump_one(FILE * f, BOOL show_defaults, int snum)
5736 if (ServicePtrs[snum]->szService[0] == '\0')
5738 dump_a_service(ServicePtrs[snum], f);
5742 /***************************************************************************
5743 Return the number of the service with the given name, or -1 if it doesn't
5744 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5745 getservicebyname()! This works ONLY if all services have been loaded, and
5746 does not copy the found service.
5747 ***************************************************************************/
5749 int lp_servicenumber(const char *pszServiceName)
5752 fstring serviceName;
5754 if (!pszServiceName) {
5755 return GLOBAL_SECTION_SNUM;
5758 for (iService = iNumServices - 1; iService >= 0; iService--) {
5759 if (VALID(iService) && ServicePtrs[iService]->szService) {
5761 * The substitution here is used to support %U is
5764 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5765 standard_sub_basic(get_current_username(),
5766 current_user_info.domain,
5767 serviceName,sizeof(serviceName));
5768 if (strequal(serviceName, pszServiceName)) {
5774 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5777 if (!usershare_exists(iService, &last_mod)) {
5778 /* Remove the share security tdb entry for it. */
5779 delete_share_security(snum2params_static(iService));
5780 /* Remove it from the array. */
5781 free_service_byindex(iService);
5782 /* Doesn't exist anymore. */
5783 return GLOBAL_SECTION_SNUM;
5786 /* Has it been modified ? If so delete and reload. */
5787 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5788 /* Remove it from the array. */
5789 free_service_byindex(iService);
5790 /* and now reload it. */
5791 iService = load_usershare_service(pszServiceName);
5796 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5797 return GLOBAL_SECTION_SNUM;
5803 BOOL share_defined(const char *service_name)
5805 return (lp_servicenumber(service_name) != -1);
5808 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5809 const char *sharename)
5811 struct share_params *result;
5815 if (!(sname = SMB_STRDUP(sharename))) {
5819 snum = find_service(sname);
5826 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5827 DEBUG(0, ("talloc failed\n"));
5831 result->service = snum;
5835 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5837 struct share_iterator *result;
5839 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5840 DEBUG(0, ("talloc failed\n"));
5844 result->next_id = 0;
5848 struct share_params *next_share(struct share_iterator *list)
5850 struct share_params *result;
5852 while (!lp_snum_ok(list->next_id) &&
5853 (list->next_id < lp_numservices())) {
5857 if (list->next_id >= lp_numservices()) {
5861 if (!(result = TALLOC_P(list, struct share_params))) {
5862 DEBUG(0, ("talloc failed\n"));
5866 result->service = list->next_id;
5871 struct share_params *next_printer(struct share_iterator *list)
5873 struct share_params *result;
5875 while ((result = next_share(list)) != NULL) {
5876 if (lp_print_ok(result->service)) {
5884 * This is a hack for a transition period until we transformed all code from
5885 * service numbers to struct share_params.
5888 struct share_params *snum2params_static(int snum)
5890 static struct share_params result;
5891 result.service = snum;
5895 /*******************************************************************
5896 A useful volume label function.
5897 ********************************************************************/
5899 const char *volume_label(int snum)
5902 const char *label = lp_volume(snum);
5904 label = lp_servicename(snum);
5907 /* This returns a 33 byte guarenteed null terminated string. */
5908 ret = talloc_strndup(main_loop_talloc_get(), label, 32);
5915 /*******************************************************************
5916 Set the server type we will announce as via nmbd.
5917 ********************************************************************/
5919 static void set_default_server_announce_type(void)
5921 default_server_announce = 0;
5922 default_server_announce |= SV_TYPE_WORKSTATION;
5923 default_server_announce |= SV_TYPE_SERVER;
5924 default_server_announce |= SV_TYPE_SERVER_UNIX;
5926 /* note that the flag should be set only if we have a
5927 printer service but nmbd doesn't actually load the
5928 services so we can't tell --jerry */
5930 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5932 switch (lp_announce_as()) {
5933 case ANNOUNCE_AS_NT_SERVER:
5934 default_server_announce |= SV_TYPE_SERVER_NT;
5935 /* fall through... */
5936 case ANNOUNCE_AS_NT_WORKSTATION:
5937 default_server_announce |= SV_TYPE_NT;
5939 case ANNOUNCE_AS_WIN95:
5940 default_server_announce |= SV_TYPE_WIN95_PLUS;
5942 case ANNOUNCE_AS_WFW:
5943 default_server_announce |= SV_TYPE_WFW;
5949 switch (lp_server_role()) {
5950 case ROLE_DOMAIN_MEMBER:
5951 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5953 case ROLE_DOMAIN_PDC:
5954 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5956 case ROLE_DOMAIN_BDC:
5957 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5959 case ROLE_STANDALONE:
5963 if (lp_time_server())
5964 default_server_announce |= SV_TYPE_TIME_SOURCE;
5966 if (lp_host_msdfs())
5967 default_server_announce |= SV_TYPE_DFS_SERVER;
5970 /***********************************************************
5971 returns role of Samba server
5972 ************************************************************/
5974 int lp_server_role(void)
5979 /***********************************************************
5980 If we are PDC then prefer us as DMB
5981 ************************************************************/
5983 BOOL lp_domain_master(void)
5985 if (Globals.bDomainMaster == Auto)
5986 return (lp_server_role() == ROLE_DOMAIN_PDC);
5988 return Globals.bDomainMaster;
5991 /***********************************************************
5992 If we are DMB then prefer us as LMB
5993 ************************************************************/
5995 BOOL lp_preferred_master(void)
5997 if (Globals.bPreferredMaster == Auto)
5998 return (lp_local_master() && lp_domain_master());
6000 return Globals.bPreferredMaster;
6003 /*******************************************************************
6005 ********************************************************************/
6007 void lp_remove_service(int snum)
6009 ServicePtrs[snum]->valid = False;
6010 invalid_services[num_invalid_services++] = snum;
6013 /*******************************************************************
6015 ********************************************************************/
6017 void lp_copy_service(int snum, const char *new_name)
6019 do_section(new_name);
6021 snum = lp_servicenumber(new_name);
6023 lp_do_parameter(snum, "copy", lp_servicename(snum));
6028 /*******************************************************************
6029 Get the default server type we will announce as via nmbd.
6030 ********************************************************************/
6032 int lp_default_server_announce(void)
6034 return default_server_announce;
6037 /*******************************************************************
6038 Split the announce version into major and minor numbers.
6039 ********************************************************************/
6041 int lp_major_announce_version(void)
6043 static BOOL got_major = False;
6044 static int major_version = DEFAULT_MAJOR_VERSION;
6049 return major_version;
6052 if ((vers = lp_announce_version()) == NULL)
6053 return major_version;
6055 if ((p = strchr_m(vers, '.')) == 0)
6056 return major_version;
6059 major_version = atoi(vers);
6060 return major_version;
6063 int lp_minor_announce_version(void)
6065 static BOOL got_minor = False;
6066 static int minor_version = DEFAULT_MINOR_VERSION;
6071 return minor_version;
6074 if ((vers = lp_announce_version()) == NULL)
6075 return minor_version;
6077 if ((p = strchr_m(vers, '.')) == 0)
6078 return minor_version;
6081 minor_version = atoi(p);
6082 return minor_version;
6085 /***********************************************************
6086 Set the global name resolution order (used in smbclient).
6087 ************************************************************/
6089 void lp_set_name_resolve_order(const char *new_order)
6091 string_set(&Globals.szNameResolveOrder, new_order);
6094 const char *lp_printername(int snum)
6096 const char *ret = _lp_printername(snum);
6097 if (ret == NULL || (ret != NULL && *ret == '\0'))
6098 ret = lp_const_servicename(snum);
6104 /***********************************************************
6105 Allow daemons such as winbindd to fix their logfile name.
6106 ************************************************************/
6108 void lp_set_logfile(const char *name)
6110 string_set(&Globals.szLogFile, name);
6111 pstrcpy(debugf, name);
6114 /*******************************************************************
6115 Return the max print jobs per queue.
6116 ********************************************************************/
6118 int lp_maxprintjobs(int snum)
6120 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6121 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6122 maxjobs = PRINT_MAX_JOBID - 1;
6127 const char *lp_printcapname(void)
6129 if ((Globals.szPrintcapname != NULL) &&
6130 (Globals.szPrintcapname[0] != '\0'))
6131 return Globals.szPrintcapname;
6133 if (sDefault.iPrinting == PRINT_CUPS) {
6141 if (sDefault.iPrinting == PRINT_BSD)
6142 return "/etc/printcap";
6144 return PRINTCAP_NAME;
6147 /*******************************************************************
6148 Ensure we don't use sendfile if server smb signing is active.
6149 ********************************************************************/
6151 static uint32 spoolss_state;
6153 BOOL lp_disable_spoolss( void )
6155 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6156 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6158 return spoolss_state == SVCCTL_STOPPED ? True : False;
6161 void lp_set_spoolss_state( uint32 state )
6163 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6165 spoolss_state = state;
6168 uint32 lp_get_spoolss_state( void )
6170 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6173 /*******************************************************************
6174 Ensure we don't use sendfile if server smb signing is active.
6175 ********************************************************************/
6177 BOOL lp_use_sendfile(int snum)
6179 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6180 if (Protocol < PROTOCOL_NT1) {
6183 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
6186 /*******************************************************************
6187 Turn off sendfile if we find the underlying OS doesn't support it.
6188 ********************************************************************/
6190 void set_use_sendfile(int snum, BOOL val)
6192 if (LP_SNUM_OK(snum))
6193 ServicePtrs[snum]->bUseSendfile = val;
6195 sDefault.bUseSendfile = val;
6198 /*******************************************************************
6199 Turn off storing DOS attributes if this share doesn't support it.
6200 ********************************************************************/
6202 void set_store_dos_attributes(int snum, BOOL val)
6204 if (!LP_SNUM_OK(snum))
6206 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6209 void lp_set_mangling_method(const char *new_method)
6211 string_set(&Globals.szManglingMethod, new_method);
6214 /*******************************************************************
6215 Global state for POSIX pathname processing.
6216 ********************************************************************/
6218 static BOOL posix_pathnames;
6220 BOOL lp_posix_pathnames(void)
6222 return posix_pathnames;
6225 /*******************************************************************
6226 Change everything needed to ensure POSIX pathname processing (currently
6228 ********************************************************************/
6230 void lp_set_posix_pathnames(void)
6232 posix_pathnames = True;
6235 /*******************************************************************
6236 Global state for POSIX lock processing - CIFS unix extensions.
6237 ********************************************************************/
6239 BOOL posix_default_lock_was_set;
6240 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6242 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6244 if (posix_default_lock_was_set) {
6245 return posix_cifsx_locktype;
6247 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6251 /*******************************************************************
6252 ********************************************************************/
6254 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6256 posix_default_lock_was_set = True;
6257 posix_cifsx_locktype = val;