2 Unix SMB/CIFS implementation.
3 Main SMB reply routines
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Andrew Bartlett 2001
6 Copyright (C) Jeremy Allison 1992-2007.
7 Copyright (C) Volker Lendecke 2007
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 This file handles most of the reply_ calls that the server
24 makes to handle specific protocols
29 /* look in server.c for some explanation of these variables */
30 extern enum protocol_types Protocol;
32 unsigned int smb_echo_count = 0;
33 extern uint32 global_client_caps;
35 extern struct current_user current_user;
36 extern bool global_encrypted_passwords_negotiated;
38 /****************************************************************************
39 Ensure we check the path in *exactly* the same way as W2K for a findfirst/findnext
40 path or anything including wildcards.
41 We're assuming here that '/' is not the second byte in any multibyte char
42 set (a safe assumption). '\\' *may* be the second byte in a multibyte char
44 ****************************************************************************/
46 /* Custom version for processing POSIX paths. */
47 #define IS_PATH_SEP(c,posix_only) ((c) == '/' || (!(posix_only) && (c) == '\\'))
49 static NTSTATUS check_path_syntax_internal(char *path,
51 bool *p_last_component_contains_wcard)
55 NTSTATUS ret = NT_STATUS_OK;
56 bool start_of_name_component = True;
58 *p_last_component_contains_wcard = False;
61 if (IS_PATH_SEP(*s,posix_path)) {
63 * Safe to assume is not the second part of a mb char
64 * as this is handled below.
66 /* Eat multiple '/' or '\\' */
67 while (IS_PATH_SEP(*s,posix_path)) {
70 if ((d != path) && (*s != '\0')) {
71 /* We only care about non-leading or trailing '/' or '\\' */
75 start_of_name_component = True;
77 *p_last_component_contains_wcard = False;
81 if (start_of_name_component) {
82 if ((s[0] == '.') && (s[1] == '.') && (IS_PATH_SEP(s[2],posix_path) || s[2] == '\0')) {
83 /* Uh oh - "/../" or "\\..\\" or "/..\0" or "\\..\0" ! */
86 * No mb char starts with '.' so we're safe checking the directory separator here.
89 /* If we just added a '/' - delete it */
90 if ((d > path) && (*(d-1) == '/')) {
95 /* Are we at the start ? Can't go back further if so. */
97 ret = NT_STATUS_OBJECT_PATH_SYNTAX_BAD;
100 /* Go back one level... */
101 /* We know this is safe as '/' cannot be part of a mb sequence. */
102 /* NOTE - if this assumption is invalid we are not in good shape... */
103 /* Decrement d first as d points to the *next* char to write into. */
104 for (d--; d > path; d--) {
108 s += 2; /* Else go past the .. */
109 /* We're still at the start of a name component, just the previous one. */
112 } else if ((s[0] == '.') && ((s[1] == '\0') || IS_PATH_SEP(s[1],posix_path))) {
125 return NT_STATUS_OBJECT_NAME_INVALID;
133 *p_last_component_contains_wcard = True;
142 /* Get the size of the next MB character. */
143 next_codepoint(s,&siz);
161 DEBUG(0,("check_path_syntax_internal: character length assumptions invalid !\n"));
163 return NT_STATUS_INVALID_PARAMETER;
166 start_of_name_component = False;
173 /****************************************************************************
174 Ensure we check the path in *exactly* the same way as W2K for regular pathnames.
175 No wildcards allowed.
176 ****************************************************************************/
178 NTSTATUS check_path_syntax(char *path)
181 return check_path_syntax_internal(path, False, &ignore);
184 /****************************************************************************
185 Ensure we check the path in *exactly* the same way as W2K for regular pathnames.
186 Wildcards allowed - p_contains_wcard returns true if the last component contained
188 ****************************************************************************/
190 NTSTATUS check_path_syntax_wcard(char *path, bool *p_contains_wcard)
192 return check_path_syntax_internal(path, False, p_contains_wcard);
195 /****************************************************************************
196 Check the path for a POSIX client.
197 We're assuming here that '/' is not the second byte in any multibyte char
198 set (a safe assumption).
199 ****************************************************************************/
201 NTSTATUS check_path_syntax_posix(char *path)
204 return check_path_syntax_internal(path, True, &ignore);
207 /****************************************************************************
208 Pull a string and check the path allowing a wilcard - provide for error return.
209 ****************************************************************************/
211 size_t srvstr_get_path_wcard(TALLOC_CTX *ctx,
219 bool *contains_wcard)
226 ret = srvstr_pull_buf_talloc(ctx,
233 ret = srvstr_pull_talloc(ctx,
243 *err = NT_STATUS_INVALID_PARAMETER;
247 *contains_wcard = False;
249 if (smb_flags2 & FLAGS2_DFS_PATHNAMES) {
251 * For a DFS path the function parse_dfs_path()
252 * will do the path processing, just make a copy.
258 if (lp_posix_pathnames()) {
259 *err = check_path_syntax_posix(*pp_dest);
261 *err = check_path_syntax_wcard(*pp_dest, contains_wcard);
267 /****************************************************************************
268 Pull a string and check the path - provide for error return.
269 ****************************************************************************/
271 size_t srvstr_get_path(TALLOC_CTX *ctx,
285 ret = srvstr_pull_buf_talloc(ctx,
292 ret = srvstr_pull_talloc(ctx,
302 *err = NT_STATUS_INVALID_PARAMETER;
306 if (smb_flags2 & FLAGS2_DFS_PATHNAMES) {
308 * For a DFS path the function parse_dfs_path()
309 * will do the path processing, just make a copy.
315 if (lp_posix_pathnames()) {
316 *err = check_path_syntax_posix(*pp_dest);
318 *err = check_path_syntax(*pp_dest);
324 /****************************************************************************
325 Check if we have a correct fsp pointing to a file. Basic check for open fsp.
326 ****************************************************************************/
328 bool check_fsp_open(connection_struct *conn, struct smb_request *req,
329 files_struct *fsp, struct current_user *user)
331 if (!(fsp) || !(conn)) {
332 reply_nterror(req, NT_STATUS_INVALID_HANDLE);
335 if (((conn) != (fsp)->conn) || user->vuid != (fsp)->vuid) {
336 reply_nterror(req, NT_STATUS_INVALID_HANDLE);
342 /****************************************************************************
343 Check if we have a correct fsp pointing to a file. Replacement for the
345 ****************************************************************************/
347 bool check_fsp(connection_struct *conn, struct smb_request *req,
348 files_struct *fsp, struct current_user *user)
350 if (!check_fsp_open(conn, req, fsp, user)) {
353 if ((fsp)->is_directory) {
354 reply_nterror(req, NT_STATUS_INVALID_DEVICE_REQUEST);
357 if ((fsp)->fh->fd == -1) {
358 reply_nterror(req, NT_STATUS_ACCESS_DENIED);
361 (fsp)->num_smb_operations++;
365 /****************************************************************************
366 Check if we have a correct fsp. Replacement for the FSP_BELONGS_CONN macro
367 ****************************************************************************/
369 bool fsp_belongs_conn(connection_struct *conn, struct smb_request *req,
370 files_struct *fsp, struct current_user *user)
372 if ((fsp) && (conn) && ((conn)==(fsp)->conn)
373 && (current_user.vuid==(fsp)->vuid)) {
377 reply_nterror(req, NT_STATUS_INVALID_HANDLE);
381 /****************************************************************************
382 Reply to a (netbios-level) special message.
383 ****************************************************************************/
385 void reply_special(char *inbuf)
387 int msg_type = CVAL(inbuf,0);
388 int msg_flags = CVAL(inbuf,1);
393 * We only really use 4 bytes of the outbuf, but for the smb_setlen
394 * calculation & friends (send_smb uses that) we need the full smb
397 char outbuf[smb_size];
399 static bool already_got_session = False;
403 memset(outbuf, '\0', sizeof(outbuf));
405 smb_setlen(outbuf,0);
408 case 0x81: /* session request */
410 if (already_got_session) {
411 exit_server_cleanly("multiple session request not permitted");
414 SCVAL(outbuf,0,0x82);
416 if (name_len(inbuf+4) > 50 ||
417 name_len(inbuf+4 + name_len(inbuf + 4)) > 50) {
418 DEBUG(0,("Invalid name length in session request\n"));
421 name_extract(inbuf,4,name1);
422 name_type = name_extract(inbuf,4 + name_len(inbuf + 4),name2);
423 DEBUG(2,("netbios connect: name1=%s name2=%s\n",
426 set_local_machine_name(name1, True);
427 set_remote_machine_name(name2, True);
429 DEBUG(2,("netbios connect: local=%s remote=%s, name type = %x\n",
430 get_local_machine_name(), get_remote_machine_name(),
433 if (name_type == 'R') {
434 /* We are being asked for a pathworks session ---
436 SCVAL(outbuf, 0,0x83);
440 /* only add the client's machine name to the list
441 of possibly valid usernames if we are operating
442 in share mode security */
443 if (lp_security() == SEC_SHARE) {
444 add_session_user(get_remote_machine_name());
447 reload_services(True);
450 already_got_session = True;
453 case 0x89: /* session keepalive request
454 (some old clients produce this?) */
455 SCVAL(outbuf,0,SMBkeepalive);
459 case 0x82: /* positive session response */
460 case 0x83: /* negative session response */
461 case 0x84: /* retarget session response */
462 DEBUG(0,("Unexpected session response\n"));
465 case SMBkeepalive: /* session keepalive */
470 DEBUG(5,("init msg_type=0x%x msg_flags=0x%x\n",
471 msg_type, msg_flags));
473 send_smb(smbd_server_fd(), outbuf);
477 /****************************************************************************
479 conn POINTER CAN BE NULL HERE !
480 ****************************************************************************/
482 void reply_tcon(connection_struct *conn, struct smb_request *req)
485 char *service_buf = NULL;
486 char *password = NULL;
491 DATA_BLOB password_blob;
492 TALLOC_CTX *ctx = talloc_tos();
494 START_PROFILE(SMBtcon);
496 if (smb_buflen(req->inbuf) < 4) {
497 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
498 END_PROFILE(SMBtcon);
502 p = smb_buf(req->inbuf)+1;
503 p += srvstr_pull_buf_talloc(ctx, req->inbuf, req->flags2,
504 &service_buf, p, STR_TERMINATE) + 1;
505 pwlen = srvstr_pull_buf_talloc(ctx, req->inbuf, req->flags2,
506 &password, p, STR_TERMINATE) + 1;
508 p += srvstr_pull_buf_talloc(ctx, req->inbuf, req->flags2,
509 &dev, p, STR_TERMINATE) + 1;
511 if (service_buf == NULL || password == NULL || dev == NULL) {
512 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
513 END_PROFILE(SMBtcon);
516 p = strrchr_m(service_buf,'\\');
520 service = service_buf;
523 password_blob = data_blob(password, pwlen+1);
525 conn = make_connection(service,password_blob,dev,req->vuid,&nt_status);
527 data_blob_clear_free(&password_blob);
530 reply_nterror(req, nt_status);
531 END_PROFILE(SMBtcon);
535 reply_outbuf(req, 2, 0);
536 SSVAL(req->outbuf,smb_vwv0,max_recv);
537 SSVAL(req->outbuf,smb_vwv1,conn->cnum);
538 SSVAL(req->outbuf,smb_tid,conn->cnum);
540 DEBUG(3,("tcon service=%s cnum=%d\n",
541 service, conn->cnum));
543 END_PROFILE(SMBtcon);
547 /****************************************************************************
548 Reply to a tcon and X.
549 conn POINTER CAN BE NULL HERE !
550 ****************************************************************************/
552 void reply_tcon_and_X(connection_struct *conn, struct smb_request *req)
554 char *service = NULL;
556 TALLOC_CTX *ctx = talloc_tos();
557 /* what the cleint thinks the device is */
558 char *client_devicetype = NULL;
559 /* what the server tells the client the share represents */
560 const char *server_devicetype;
567 START_PROFILE(SMBtconX);
570 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
571 END_PROFILE(SMBtconX);
575 passlen = SVAL(req->inbuf,smb_vwv3);
576 tcon_flags = SVAL(req->inbuf,smb_vwv2);
578 /* we might have to close an old one */
579 if ((tcon_flags & 0x1) && conn) {
580 close_cnum(conn,req->vuid);
583 if ((passlen > MAX_PASS_LEN) || (passlen >= smb_buflen(req->inbuf))) {
584 reply_doserror(req, ERRDOS, ERRbuftoosmall);
585 END_PROFILE(SMBtconX);
589 if (global_encrypted_passwords_negotiated) {
590 password = data_blob(smb_buf(req->inbuf),passlen);
591 if (lp_security() == SEC_SHARE) {
593 * Security = share always has a pad byte
594 * after the password.
596 p = smb_buf(req->inbuf) + passlen + 1;
598 p = smb_buf(req->inbuf) + passlen;
601 password = data_blob(smb_buf(req->inbuf),passlen+1);
602 /* Ensure correct termination */
603 password.data[passlen]=0;
604 p = smb_buf(req->inbuf) + passlen + 1;
607 p += srvstr_pull_buf_talloc(ctx, req->inbuf, req->flags2, &path, p,
611 data_blob_clear_free(&password);
612 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
613 END_PROFILE(SMBtconX);
618 * the service name can be either: \\server\share
619 * or share directly like on the DELL PowerVault 705
622 q = strchr_m(path+2,'\\');
624 data_blob_clear_free(&password);
625 reply_doserror(req, ERRDOS, ERRnosuchshare);
626 END_PROFILE(SMBtconX);
634 p += srvstr_pull_talloc(ctx, req->inbuf, req->flags2,
635 &client_devicetype, p,
636 MIN(6,smb_bufrem(req->inbuf, p)), STR_ASCII);
638 if (client_devicetype == NULL) {
639 data_blob_clear_free(&password);
640 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
641 END_PROFILE(SMBtconX);
645 DEBUG(4,("Client requested device type [%s] for share [%s]\n", client_devicetype, service));
647 conn = make_connection(service, password, client_devicetype,
648 req->vuid, &nt_status);
650 data_blob_clear_free(&password);
653 reply_nterror(req, nt_status);
654 END_PROFILE(SMBtconX);
659 server_devicetype = "IPC";
660 else if ( IS_PRINT(conn) )
661 server_devicetype = "LPT1:";
663 server_devicetype = "A:";
665 if (Protocol < PROTOCOL_NT1) {
666 reply_outbuf(req, 2, 0);
667 if (message_push_string(&req->outbuf, server_devicetype,
668 STR_TERMINATE|STR_ASCII) == -1) {
669 reply_nterror(req, NT_STATUS_NO_MEMORY);
670 END_PROFILE(SMBtconX);
674 /* NT sets the fstype of IPC$ to the null string */
675 const char *fstype = IS_IPC(conn) ? "" : lp_fstype(SNUM(conn));
677 if (tcon_flags & TCONX_FLAG_EXTENDED_RESPONSE) {
678 /* Return permissions. */
682 reply_outbuf(req, 7, 0);
685 perm1 = FILE_ALL_ACCESS;
686 perm2 = FILE_ALL_ACCESS;
688 perm1 = CAN_WRITE(conn) ?
693 SIVAL(req->outbuf, smb_vwv3, perm1);
694 SIVAL(req->outbuf, smb_vwv5, perm2);
696 reply_outbuf(req, 3, 0);
699 if ((message_push_string(&req->outbuf, server_devicetype,
700 STR_TERMINATE|STR_ASCII) == -1)
701 || (message_push_string(&req->outbuf, fstype,
702 STR_TERMINATE) == -1)) {
703 reply_nterror(req, NT_STATUS_NO_MEMORY);
704 END_PROFILE(SMBtconX);
708 /* what does setting this bit do? It is set by NT4 and
709 may affect the ability to autorun mounted cdroms */
710 SSVAL(req->outbuf, smb_vwv2, SMB_SUPPORT_SEARCH_BITS|
711 (lp_csc_policy(SNUM(conn)) << 2));
713 init_dfsroot(conn, req->inbuf, req->outbuf);
717 DEBUG(3,("tconX service=%s \n",
720 /* set the incoming and outgoing tid to the just created one */
721 SSVAL(req->inbuf,smb_tid,conn->cnum);
722 SSVAL(req->outbuf,smb_tid,conn->cnum);
724 END_PROFILE(SMBtconX);
730 /****************************************************************************
731 Reply to an unknown type.
732 ****************************************************************************/
734 int reply_unknown(char *inbuf,char *outbuf)
737 type = CVAL(inbuf,smb_com);
739 DEBUG(0,("unknown command type (%s): type=%d (0x%X)\n",
740 smb_fn_name(type), type, type));
742 return(ERROR_DOS(ERRSRV,ERRunknownsmb));
745 void reply_unknown_new(struct smb_request *req, uint8 type)
747 DEBUG(0, ("unknown command type (%s): type=%d (0x%X)\n",
748 smb_fn_name(type), type, type));
749 reply_doserror(req, ERRSRV, ERRunknownsmb);
753 /****************************************************************************
755 conn POINTER CAN BE NULL HERE !
756 ****************************************************************************/
758 void reply_ioctl(connection_struct *conn, struct smb_request *req)
766 START_PROFILE(SMBioctl);
769 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
770 END_PROFILE(SMBioctl);
774 device = SVAL(req->inbuf,smb_vwv1);
775 function = SVAL(req->inbuf,smb_vwv2);
776 ioctl_code = (device << 16) + function;
778 DEBUG(4, ("Received IOCTL (code 0x%x)\n", ioctl_code));
780 switch (ioctl_code) {
781 case IOCTL_QUERY_JOB_INFO:
785 reply_doserror(req, ERRSRV, ERRnosupport);
786 END_PROFILE(SMBioctl);
790 reply_outbuf(req, 8, replysize+1);
791 SSVAL(req->outbuf,smb_vwv1,replysize); /* Total data bytes returned */
792 SSVAL(req->outbuf,smb_vwv5,replysize); /* Data bytes this buffer */
793 SSVAL(req->outbuf,smb_vwv6,52); /* Offset to data */
794 p = smb_buf(req->outbuf);
795 memset(p, '\0', replysize+1); /* valgrind-safe. */
796 p += 1; /* Allow for alignment */
798 switch (ioctl_code) {
799 case IOCTL_QUERY_JOB_INFO:
801 files_struct *fsp = file_fsp(SVAL(req->inbuf,
804 reply_doserror(req, ERRDOS, ERRbadfid);
805 END_PROFILE(SMBioctl);
808 SSVAL(p,0,fsp->rap_print_jobid); /* Job number */
809 srvstr_push((char *)req->outbuf, req->flags2, p+2,
811 STR_TERMINATE|STR_ASCII);
813 srvstr_push((char *)req->outbuf, req->flags2,
814 p+18, lp_servicename(SNUM(conn)),
815 13, STR_TERMINATE|STR_ASCII);
823 END_PROFILE(SMBioctl);
827 /****************************************************************************
828 Strange checkpath NTSTATUS mapping.
829 ****************************************************************************/
831 static NTSTATUS map_checkpath_error(const char *inbuf, NTSTATUS status)
833 /* Strange DOS error code semantics only for checkpath... */
834 if (!(SVAL(inbuf,smb_flg2) & FLAGS2_32_BIT_ERROR_CODES)) {
835 if (NT_STATUS_EQUAL(NT_STATUS_OBJECT_NAME_INVALID,status)) {
836 /* We need to map to ERRbadpath */
837 return NT_STATUS_OBJECT_PATH_NOT_FOUND;
843 /****************************************************************************
844 Reply to a checkpath.
845 ****************************************************************************/
847 void reply_checkpath(connection_struct *conn, struct smb_request *req)
850 SMB_STRUCT_STAT sbuf;
852 TALLOC_CTX *ctx = talloc_tos();
854 START_PROFILE(SMBcheckpath);
856 srvstr_get_path(ctx,(char *)req->inbuf, req->flags2, &name,
857 smb_buf(req->inbuf) + 1, 0,
858 STR_TERMINATE, &status);
859 if (!NT_STATUS_IS_OK(status)) {
860 status = map_checkpath_error((char *)req->inbuf, status);
861 reply_nterror(req, status);
862 END_PROFILE(SMBcheckpath);
866 status = resolve_dfspath(ctx, conn,
867 req->flags2 & FLAGS2_DFS_PATHNAMES,
870 if (!NT_STATUS_IS_OK(status)) {
871 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
872 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
874 END_PROFILE(SMBcheckpath);
880 DEBUG(3,("reply_checkpath %s mode=%d\n", name, (int)SVAL(req->inbuf,smb_vwv0)));
882 status = unix_convert(ctx, conn, name, False, &name, NULL, &sbuf);
883 if (!NT_STATUS_IS_OK(status)) {
887 status = check_name(conn, name);
888 if (!NT_STATUS_IS_OK(status)) {
889 DEBUG(3,("reply_checkpath: check_name of %s failed (%s)\n",name,nt_errstr(status)));
893 if (!VALID_STAT(sbuf) && (SMB_VFS_STAT(conn,name,&sbuf) != 0)) {
894 DEBUG(3,("reply_checkpath: stat of %s failed (%s)\n",name,strerror(errno)));
895 status = map_nt_error_from_unix(errno);
899 if (!S_ISDIR(sbuf.st_mode)) {
900 reply_botherror(req, NT_STATUS_NOT_A_DIRECTORY,
902 END_PROFILE(SMBcheckpath);
906 reply_outbuf(req, 0, 0);
908 END_PROFILE(SMBcheckpath);
913 END_PROFILE(SMBcheckpath);
915 /* We special case this - as when a Windows machine
916 is parsing a path is steps through the components
917 one at a time - if a component fails it expects
918 ERRbadpath, not ERRbadfile.
920 status = map_checkpath_error((char *)req->inbuf, status);
921 if (NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
923 * Windows returns different error codes if
924 * the parent directory is valid but not the
925 * last component - it returns NT_STATUS_OBJECT_NAME_NOT_FOUND
926 * for that case and NT_STATUS_OBJECT_PATH_NOT_FOUND
927 * if the path is invalid.
929 reply_botherror(req, NT_STATUS_OBJECT_NAME_NOT_FOUND,
934 reply_nterror(req, status);
937 /****************************************************************************
939 ****************************************************************************/
941 void reply_getatr(connection_struct *conn, struct smb_request *req)
944 SMB_STRUCT_STAT sbuf;
950 TALLOC_CTX *ctx = talloc_tos();
952 START_PROFILE(SMBgetatr);
954 p = smb_buf(req->inbuf) + 1;
955 p += srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &fname, p,
956 0, STR_TERMINATE, &status);
957 if (!NT_STATUS_IS_OK(status)) {
958 reply_nterror(req, status);
959 END_PROFILE(SMBgetatr);
963 status = resolve_dfspath(ctx, conn,
964 req->flags2 & FLAGS2_DFS_PATHNAMES,
967 if (!NT_STATUS_IS_OK(status)) {
968 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
969 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
971 END_PROFILE(SMBgetatr);
974 reply_nterror(req, status);
975 END_PROFILE(SMBgetatr);
979 /* dos smetimes asks for a stat of "" - it returns a "hidden directory"
980 under WfWg - weird! */
981 if (*fname == '\0') {
982 mode = aHIDDEN | aDIR;
983 if (!CAN_WRITE(conn)) {
989 status = unix_convert(ctx, conn, fname, False, &fname, NULL,&sbuf);
990 if (!NT_STATUS_IS_OK(status)) {
991 reply_nterror(req, status);
992 END_PROFILE(SMBgetatr);
995 status = check_name(conn, fname);
996 if (!NT_STATUS_IS_OK(status)) {
997 DEBUG(3,("reply_getatr: check_name of %s failed (%s)\n",fname,nt_errstr(status)));
998 reply_nterror(req, status);
999 END_PROFILE(SMBgetatr);
1002 if (!VALID_STAT(sbuf) && (SMB_VFS_STAT(conn,fname,&sbuf) != 0)) {
1003 DEBUG(3,("reply_getatr: stat of %s failed (%s)\n",fname,strerror(errno)));
1004 reply_unixerror(req, ERRDOS,ERRbadfile);
1005 END_PROFILE(SMBgetatr);
1009 mode = dos_mode(conn,fname,&sbuf);
1010 size = sbuf.st_size;
1011 mtime = sbuf.st_mtime;
1017 reply_outbuf(req, 10, 0);
1019 SSVAL(req->outbuf,smb_vwv0,mode);
1020 if(lp_dos_filetime_resolution(SNUM(conn)) ) {
1021 srv_put_dos_date3((char *)req->outbuf,smb_vwv1,mtime & ~1);
1023 srv_put_dos_date3((char *)req->outbuf,smb_vwv1,mtime);
1025 SIVAL(req->outbuf,smb_vwv3,(uint32)size);
1027 if (Protocol >= PROTOCOL_NT1) {
1028 SSVAL(req->outbuf, smb_flg2,
1029 SVAL(req->outbuf, smb_flg2) | FLAGS2_IS_LONG_NAME);
1032 DEBUG(3,("reply_getatr: name=%s mode=%d size=%u\n", fname, mode, (unsigned int)size ) );
1034 END_PROFILE(SMBgetatr);
1038 /****************************************************************************
1040 ****************************************************************************/
1042 void reply_setatr(connection_struct *conn, struct smb_request *req)
1047 SMB_STRUCT_STAT sbuf;
1050 TALLOC_CTX *ctx = talloc_tos();
1052 START_PROFILE(SMBsetatr);
1055 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
1059 p = smb_buf(req->inbuf) + 1;
1060 p += srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &fname, p,
1061 0, STR_TERMINATE, &status);
1062 if (!NT_STATUS_IS_OK(status)) {
1063 reply_nterror(req, status);
1064 END_PROFILE(SMBsetatr);
1068 status = resolve_dfspath(ctx, conn,
1069 req->flags2 & FLAGS2_DFS_PATHNAMES,
1072 if (!NT_STATUS_IS_OK(status)) {
1073 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
1074 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
1075 ERRSRV, ERRbadpath);
1076 END_PROFILE(SMBsetatr);
1079 reply_nterror(req, status);
1080 END_PROFILE(SMBsetatr);
1084 status = unix_convert(ctx, conn, fname, False, &fname, NULL, &sbuf);
1085 if (!NT_STATUS_IS_OK(status)) {
1086 reply_nterror(req, status);
1087 END_PROFILE(SMBsetatr);
1091 status = check_name(conn, fname);
1092 if (!NT_STATUS_IS_OK(status)) {
1093 reply_nterror(req, status);
1094 END_PROFILE(SMBsetatr);
1098 if (fname[0] == '.' && fname[1] == '\0') {
1100 * Not sure here is the right place to catch this
1101 * condition. Might be moved to somewhere else later -- vl
1103 reply_nterror(req, NT_STATUS_ACCESS_DENIED);
1104 END_PROFILE(SMBsetatr);
1108 mode = SVAL(req->inbuf,smb_vwv0);
1109 mtime = srv_make_unix_date3(req->inbuf+smb_vwv1);
1111 if (mode != FILE_ATTRIBUTE_NORMAL) {
1112 if (VALID_STAT_OF_DIR(sbuf))
1117 if (file_set_dosmode(conn,fname,mode,&sbuf,NULL,false) != 0) {
1118 reply_unixerror(req, ERRDOS, ERRnoaccess);
1119 END_PROFILE(SMBsetatr);
1124 if (!set_filetime(conn,fname,convert_time_t_to_timespec(mtime))) {
1125 reply_unixerror(req, ERRDOS, ERRnoaccess);
1126 END_PROFILE(SMBsetatr);
1130 reply_outbuf(req, 0, 0);
1132 DEBUG( 3, ( "setatr name=%s mode=%d\n", fname, mode ) );
1134 END_PROFILE(SMBsetatr);
1138 /****************************************************************************
1140 ****************************************************************************/
1142 void reply_dskattr(connection_struct *conn, struct smb_request *req)
1144 SMB_BIG_UINT dfree,dsize,bsize;
1145 START_PROFILE(SMBdskattr);
1147 if (get_dfree_info(conn,".",True,&bsize,&dfree,&dsize) == (SMB_BIG_UINT)-1) {
1148 reply_unixerror(req, ERRHRD, ERRgeneral);
1149 END_PROFILE(SMBdskattr);
1153 reply_outbuf(req, 5, 0);
1155 if (Protocol <= PROTOCOL_LANMAN2) {
1156 double total_space, free_space;
1157 /* we need to scale this to a number that DOS6 can handle. We
1158 use floating point so we can handle large drives on systems
1159 that don't have 64 bit integers
1161 we end up displaying a maximum of 2G to DOS systems
1163 total_space = dsize * (double)bsize;
1164 free_space = dfree * (double)bsize;
1166 dsize = (total_space+63*512) / (64*512);
1167 dfree = (free_space+63*512) / (64*512);
1169 if (dsize > 0xFFFF) dsize = 0xFFFF;
1170 if (dfree > 0xFFFF) dfree = 0xFFFF;
1172 SSVAL(req->outbuf,smb_vwv0,dsize);
1173 SSVAL(req->outbuf,smb_vwv1,64); /* this must be 64 for dos systems */
1174 SSVAL(req->outbuf,smb_vwv2,512); /* and this must be 512 */
1175 SSVAL(req->outbuf,smb_vwv3,dfree);
1177 SSVAL(req->outbuf,smb_vwv0,dsize);
1178 SSVAL(req->outbuf,smb_vwv1,bsize/512);
1179 SSVAL(req->outbuf,smb_vwv2,512);
1180 SSVAL(req->outbuf,smb_vwv3,dfree);
1183 DEBUG(3,("dskattr dfree=%d\n", (unsigned int)dfree));
1185 END_PROFILE(SMBdskattr);
1189 /****************************************************************************
1191 Can be called from SMBsearch, SMBffirst or SMBfunique.
1192 ****************************************************************************/
1194 void reply_search(connection_struct *conn, struct smb_request *req)
1197 char *directory = NULL;
1203 unsigned int numentries = 0;
1204 unsigned int maxentries = 0;
1205 bool finished = False;
1211 bool check_descend = False;
1212 bool expect_close = False;
1214 bool mask_contains_wcard = False;
1215 bool allow_long_path_components = (req->flags2 & FLAGS2_LONG_PATH_COMPONENTS) ? True : False;
1216 TALLOC_CTX *ctx = talloc_tos();
1218 START_PROFILE(SMBsearch);
1221 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
1222 END_PROFILE(SMBsearch);
1226 if (lp_posix_pathnames()) {
1227 reply_unknown_new(req, CVAL(req->inbuf, smb_com));
1228 END_PROFILE(SMBsearch);
1232 /* If we were called as SMBffirst then we must expect close. */
1233 if(CVAL(req->inbuf,smb_com) == SMBffirst) {
1234 expect_close = True;
1237 reply_outbuf(req, 1, 3);
1238 maxentries = SVAL(req->inbuf,smb_vwv0);
1239 dirtype = SVAL(req->inbuf,smb_vwv1);
1240 p = smb_buf(req->inbuf) + 1;
1241 p += srvstr_get_path_wcard(ctx,
1249 &mask_contains_wcard);
1250 if (!NT_STATUS_IS_OK(nt_status)) {
1251 reply_nterror(req, nt_status);
1252 END_PROFILE(SMBsearch);
1256 nt_status = resolve_dfspath_wcard(ctx, conn,
1257 req->flags2 & FLAGS2_DFS_PATHNAMES,
1260 &mask_contains_wcard);
1261 if (!NT_STATUS_IS_OK(nt_status)) {
1262 if (NT_STATUS_EQUAL(nt_status,NT_STATUS_PATH_NOT_COVERED)) {
1263 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
1264 ERRSRV, ERRbadpath);
1265 END_PROFILE(SMBsearch);
1268 reply_nterror(req, nt_status);
1269 END_PROFILE(SMBsearch);
1274 status_len = SVAL(p, 0);
1277 /* dirtype &= ~aDIR; */
1279 if (status_len == 0) {
1280 SMB_STRUCT_STAT sbuf;
1282 nt_status = unix_convert(ctx, conn, path, True,
1283 &directory, NULL, &sbuf);
1284 if (!NT_STATUS_IS_OK(nt_status)) {
1285 reply_nterror(req, nt_status);
1286 END_PROFILE(SMBsearch);
1290 nt_status = check_name(conn, directory);
1291 if (!NT_STATUS_IS_OK(nt_status)) {
1292 reply_nterror(req, nt_status);
1293 END_PROFILE(SMBsearch);
1297 p = strrchr_m(directory,'/');
1300 directory = talloc_strdup(ctx,".");
1302 reply_nterror(req, NT_STATUS_NO_MEMORY);
1303 END_PROFILE(SMBsearch);
1311 if (*directory == '\0') {
1312 directory = talloc_strdup(ctx,".");
1314 reply_nterror(req, NT_STATUS_NO_MEMORY);
1315 END_PROFILE(SMBsearch);
1319 memset((char *)status,'\0',21);
1320 SCVAL(status,0,(dirtype & 0x1F));
1322 nt_status = dptr_create(conn,
1328 mask_contains_wcard,
1331 if (!NT_STATUS_IS_OK(nt_status)) {
1332 reply_nterror(req, nt_status);
1333 END_PROFILE(SMBsearch);
1336 dptr_num = dptr_dnum(conn->dirptr);
1340 memcpy(status,p,21);
1341 status_dirtype = CVAL(status,0) & 0x1F;
1342 if (status_dirtype != (dirtype & 0x1F)) {
1343 dirtype = status_dirtype;
1346 conn->dirptr = dptr_fetch(status+12,&dptr_num);
1347 if (!conn->dirptr) {
1350 string_set(&conn->dirpath,dptr_path(dptr_num));
1351 mask = dptr_wcard(dptr_num);
1356 * For a 'continue' search we have no string. So
1357 * check from the initial saved string.
1359 mask_contains_wcard = ms_has_wild(mask);
1360 dirtype = dptr_attr(dptr_num);
1363 DEBUG(4,("dptr_num is %d\n",dptr_num));
1365 if ((dirtype&0x1F) == aVOLID) {
1366 char buf[DIR_STRUCT_SIZE];
1367 memcpy(buf,status,21);
1368 if (!make_dir_struct(ctx,buf,"???????????",volume_label(SNUM(conn)),
1369 0,aVOLID,0,!allow_long_path_components)) {
1370 reply_nterror(req, NT_STATUS_NO_MEMORY);
1371 END_PROFILE(SMBsearch);
1374 dptr_fill(buf+12,dptr_num);
1375 if (dptr_zero(buf+12) && (status_len==0)) {
1380 if (message_push_blob(&req->outbuf,
1381 data_blob_const(buf, sizeof(buf)))
1383 reply_nterror(req, NT_STATUS_NO_MEMORY);
1384 END_PROFILE(SMBsearch);
1392 ((uint8 *)smb_buf(req->outbuf) + 3 - req->outbuf))
1395 DEBUG(8,("dirpath=<%s> dontdescend=<%s>\n",
1396 conn->dirpath,lp_dontdescend(SNUM(conn))));
1397 if (in_list(conn->dirpath, lp_dontdescend(SNUM(conn)),True)) {
1398 check_descend = True;
1401 for (i=numentries;(i<maxentries) && !finished;i++) {
1402 finished = !get_dir_entry(ctx,conn,mask,dirtype,&fname,
1403 &size,&mode,&date,check_descend);
1405 char buf[DIR_STRUCT_SIZE];
1406 memcpy(buf,status,21);
1407 if (!make_dir_struct(ctx,
1414 !allow_long_path_components)) {
1415 reply_nterror(req, NT_STATUS_NO_MEMORY);
1416 END_PROFILE(SMBsearch);
1419 if (!dptr_fill(buf+12,dptr_num)) {
1422 if (message_push_blob(&req->outbuf,
1423 data_blob_const(buf, sizeof(buf)))
1425 reply_nterror(req, NT_STATUS_NO_MEMORY);
1426 END_PROFILE(SMBsearch);
1436 /* If we were called as SMBffirst with smb_search_id == NULL
1437 and no entries were found then return error and close dirptr
1440 if (numentries == 0) {
1441 dptr_close(&dptr_num);
1442 } else if(expect_close && status_len == 0) {
1443 /* Close the dptr - we know it's gone */
1444 dptr_close(&dptr_num);
1447 /* If we were called as SMBfunique, then we can close the dirptr now ! */
1448 if(dptr_num >= 0 && CVAL(req->inbuf,smb_com) == SMBfunique) {
1449 dptr_close(&dptr_num);
1452 if ((numentries == 0) && !mask_contains_wcard) {
1453 reply_botherror(req, STATUS_NO_MORE_FILES, ERRDOS, ERRnofiles);
1454 END_PROFILE(SMBsearch);
1458 SSVAL(req->outbuf,smb_vwv0,numentries);
1459 SSVAL(req->outbuf,smb_vwv1,3 + numentries * DIR_STRUCT_SIZE);
1460 SCVAL(smb_buf(req->outbuf),0,5);
1461 SSVAL(smb_buf(req->outbuf),1,numentries*DIR_STRUCT_SIZE);
1463 /* The replies here are never long name. */
1464 SSVAL(req->outbuf, smb_flg2,
1465 SVAL(req->outbuf, smb_flg2) & (~FLAGS2_IS_LONG_NAME));
1466 if (!allow_long_path_components) {
1467 SSVAL(req->outbuf, smb_flg2,
1468 SVAL(req->outbuf, smb_flg2)
1469 & (~FLAGS2_LONG_PATH_COMPONENTS));
1472 /* This SMB *always* returns ASCII names. Remove the unicode bit in flags2. */
1473 SSVAL(req->outbuf, smb_flg2,
1474 (SVAL(req->outbuf, smb_flg2) & (~FLAGS2_UNICODE_STRINGS)));
1477 directory = dptr_path(dptr_num);
1480 DEBUG(4,("%s mask=%s path=%s dtype=%d nument=%u of %u\n",
1481 smb_fn_name(CVAL(req->inbuf,smb_com)),
1483 directory ? directory : "./",
1488 END_PROFILE(SMBsearch);
1492 /****************************************************************************
1493 Reply to a fclose (stop directory search).
1494 ****************************************************************************/
1496 void reply_fclose(connection_struct *conn, struct smb_request *req)
1504 bool path_contains_wcard = False;
1505 TALLOC_CTX *ctx = talloc_tos();
1507 START_PROFILE(SMBfclose);
1509 if (lp_posix_pathnames()) {
1510 reply_unknown_new(req, CVAL(req->inbuf, smb_com));
1511 END_PROFILE(SMBfclose);
1515 p = smb_buf(req->inbuf) + 1;
1516 p += srvstr_get_path_wcard(ctx,
1524 &path_contains_wcard);
1525 if (!NT_STATUS_IS_OK(err)) {
1526 reply_nterror(req, err);
1527 END_PROFILE(SMBfclose);
1531 status_len = SVAL(p,0);
1534 if (status_len == 0) {
1535 reply_doserror(req, ERRSRV, ERRsrverror);
1536 END_PROFILE(SMBfclose);
1540 memcpy(status,p,21);
1542 if(dptr_fetch(status+12,&dptr_num)) {
1543 /* Close the dptr - we know it's gone */
1544 dptr_close(&dptr_num);
1547 reply_outbuf(req, 1, 0);
1548 SSVAL(req->outbuf,smb_vwv0,0);
1550 DEBUG(3,("search close\n"));
1552 END_PROFILE(SMBfclose);
1556 /****************************************************************************
1558 ****************************************************************************/
1560 void reply_open(connection_struct *conn, struct smb_request *req)
1567 SMB_STRUCT_STAT sbuf;
1574 uint32 create_disposition;
1575 uint32 create_options = 0;
1577 TALLOC_CTX *ctx = talloc_tos();
1579 START_PROFILE(SMBopen);
1582 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
1583 END_PROFILE(SMBopen);
1587 oplock_request = CORE_OPLOCK_REQUEST(req->inbuf);
1588 deny_mode = SVAL(req->inbuf,smb_vwv0);
1589 dos_attr = SVAL(req->inbuf,smb_vwv1);
1591 srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &fname,
1592 smb_buf(req->inbuf)+1, 0,
1593 STR_TERMINATE, &status);
1594 if (!NT_STATUS_IS_OK(status)) {
1595 reply_nterror(req, status);
1596 END_PROFILE(SMBopen);
1600 status = resolve_dfspath(ctx, conn,
1601 req->flags2 & FLAGS2_DFS_PATHNAMES,
1604 if (!NT_STATUS_IS_OK(status)) {
1605 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
1606 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
1607 ERRSRV, ERRbadpath);
1608 END_PROFILE(SMBopen);
1611 reply_nterror(req, status);
1612 END_PROFILE(SMBopen);
1616 status = unix_convert(ctx, conn, fname, False, &fname, NULL, &sbuf);
1617 if (!NT_STATUS_IS_OK(status)) {
1618 reply_nterror(req, status);
1619 END_PROFILE(SMBopen);
1623 status = check_name(conn, fname);
1624 if (!NT_STATUS_IS_OK(status)) {
1625 reply_nterror(req, status);
1626 END_PROFILE(SMBopen);
1630 if (!map_open_params_to_ntcreate(fname, deny_mode, OPENX_FILE_EXISTS_OPEN,
1631 &access_mask, &share_mode, &create_disposition, &create_options)) {
1632 reply_nterror(req, NT_STATUS_DOS(ERRDOS, ERRbadaccess));
1633 END_PROFILE(SMBopen);
1637 status = open_file_ntcreate(conn, req, fname, &sbuf,
1646 if (!NT_STATUS_IS_OK(status)) {
1647 if (open_was_deferred(req->mid)) {
1648 /* We have re-scheduled this call. */
1649 END_PROFILE(SMBopen);
1652 reply_openerror(req, status);
1653 END_PROFILE(SMBopen);
1657 size = sbuf.st_size;
1658 fattr = dos_mode(conn,fname,&sbuf);
1659 mtime = sbuf.st_mtime;
1662 DEBUG(3,("attempt to open a directory %s\n",fname));
1663 close_file(fsp,ERROR_CLOSE);
1664 reply_doserror(req, ERRDOS,ERRnoaccess);
1665 END_PROFILE(SMBopen);
1669 reply_outbuf(req, 7, 0);
1670 SSVAL(req->outbuf,smb_vwv0,fsp->fnum);
1671 SSVAL(req->outbuf,smb_vwv1,fattr);
1672 if(lp_dos_filetime_resolution(SNUM(conn)) ) {
1673 srv_put_dos_date3((char *)req->outbuf,smb_vwv2,mtime & ~1);
1675 srv_put_dos_date3((char *)req->outbuf,smb_vwv2,mtime);
1677 SIVAL(req->outbuf,smb_vwv4,(uint32)size);
1678 SSVAL(req->outbuf,smb_vwv6,deny_mode);
1680 if (oplock_request && lp_fake_oplocks(SNUM(conn))) {
1681 SCVAL(req->outbuf,smb_flg,
1682 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1685 if(EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type)) {
1686 SCVAL(req->outbuf,smb_flg,
1687 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1689 END_PROFILE(SMBopen);
1693 /****************************************************************************
1694 Reply to an open and X.
1695 ****************************************************************************/
1697 void reply_open_and_X(connection_struct *conn, struct smb_request *req)
1703 /* Breakout the oplock request bits so we can set the
1704 reply bits separately. */
1705 int ex_oplock_request;
1706 int core_oplock_request;
1709 int smb_sattr = SVAL(req->inbuf,smb_vwv4);
1710 uint32 smb_time = make_unix_date3(req->inbuf+smb_vwv6);
1715 SMB_STRUCT_STAT sbuf;
1719 SMB_BIG_UINT allocation_size;
1720 ssize_t retval = -1;
1723 uint32 create_disposition;
1724 uint32 create_options = 0;
1725 TALLOC_CTX *ctx = talloc_tos();
1727 START_PROFILE(SMBopenX);
1729 if (req->wct < 15) {
1730 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
1731 END_PROFILE(SMBopenX);
1735 open_flags = SVAL(req->inbuf,smb_vwv2);
1736 deny_mode = SVAL(req->inbuf,smb_vwv3);
1737 smb_attr = SVAL(req->inbuf,smb_vwv5);
1738 ex_oplock_request = EXTENDED_OPLOCK_REQUEST(req->inbuf);
1739 core_oplock_request = CORE_OPLOCK_REQUEST(req->inbuf);
1740 oplock_request = ex_oplock_request | core_oplock_request;
1741 smb_ofun = SVAL(req->inbuf,smb_vwv8);
1742 allocation_size = (SMB_BIG_UINT)IVAL(req->inbuf,smb_vwv9);
1744 /* If it's an IPC, pass off the pipe handler. */
1746 if (lp_nt_pipe_support()) {
1747 reply_open_pipe_and_X(conn, req);
1749 reply_doserror(req, ERRSRV, ERRaccess);
1751 END_PROFILE(SMBopenX);
1755 /* XXXX we need to handle passed times, sattr and flags */
1756 srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &fname,
1757 smb_buf(req->inbuf), 0, STR_TERMINATE,
1759 if (!NT_STATUS_IS_OK(status)) {
1760 reply_nterror(req, status);
1761 END_PROFILE(SMBopenX);
1765 status = resolve_dfspath(ctx, conn,
1766 req->flags2 & FLAGS2_DFS_PATHNAMES,
1769 if (!NT_STATUS_IS_OK(status)) {
1770 END_PROFILE(SMBopenX);
1771 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
1772 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
1773 ERRSRV, ERRbadpath);
1776 reply_nterror(req, status);
1780 status = unix_convert(ctx, conn, fname, False, &fname, NULL, &sbuf);
1781 if (!NT_STATUS_IS_OK(status)) {
1782 reply_nterror(req, status);
1783 END_PROFILE(SMBopenX);
1787 status = check_name(conn, fname);
1788 if (!NT_STATUS_IS_OK(status)) {
1789 reply_nterror(req, status);
1790 END_PROFILE(SMBopenX);
1794 if (!map_open_params_to_ntcreate(fname, deny_mode, smb_ofun,
1797 &create_disposition,
1799 reply_nterror(req, NT_STATUS_DOS(ERRDOS, ERRbadaccess));
1800 END_PROFILE(SMBopenX);
1804 status = open_file_ntcreate(conn, req, fname, &sbuf,
1813 if (!NT_STATUS_IS_OK(status)) {
1814 END_PROFILE(SMBopenX);
1815 if (open_was_deferred(req->mid)) {
1816 /* We have re-scheduled this call. */
1819 reply_openerror(req, status);
1823 /* Setting the "size" field in vwv9 and vwv10 causes the file to be set to this size,
1824 if the file is truncated or created. */
1825 if (((smb_action == FILE_WAS_CREATED) || (smb_action == FILE_WAS_OVERWRITTEN)) && allocation_size) {
1826 fsp->initial_allocation_size = smb_roundup(fsp->conn, allocation_size);
1827 if (vfs_allocate_file_space(fsp, fsp->initial_allocation_size) == -1) {
1828 close_file(fsp,ERROR_CLOSE);
1829 reply_nterror(req, NT_STATUS_DISK_FULL);
1830 END_PROFILE(SMBopenX);
1833 retval = vfs_set_filelen(fsp, (SMB_OFF_T)allocation_size);
1835 close_file(fsp,ERROR_CLOSE);
1836 reply_nterror(req, NT_STATUS_DISK_FULL);
1837 END_PROFILE(SMBopenX);
1840 sbuf.st_size = get_allocation_size(conn,fsp,&sbuf);
1843 fattr = dos_mode(conn,fname,&sbuf);
1844 mtime = sbuf.st_mtime;
1846 close_file(fsp,ERROR_CLOSE);
1847 reply_doserror(req, ERRDOS, ERRnoaccess);
1848 END_PROFILE(SMBopenX);
1852 /* If the caller set the extended oplock request bit
1853 and we granted one (by whatever means) - set the
1854 correct bit for extended oplock reply.
1857 if (ex_oplock_request && lp_fake_oplocks(SNUM(conn))) {
1858 smb_action |= EXTENDED_OPLOCK_GRANTED;
1861 if(ex_oplock_request && EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type)) {
1862 smb_action |= EXTENDED_OPLOCK_GRANTED;
1865 /* If the caller set the core oplock request bit
1866 and we granted one (by whatever means) - set the
1867 correct bit for core oplock reply.
1870 if (open_flags & EXTENDED_RESPONSE_REQUIRED) {
1871 reply_outbuf(req, 19, 0);
1873 reply_outbuf(req, 15, 0);
1876 if (core_oplock_request && lp_fake_oplocks(SNUM(conn))) {
1877 SCVAL(req->outbuf, smb_flg,
1878 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1881 if(core_oplock_request && EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type)) {
1882 SCVAL(req->outbuf, smb_flg,
1883 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
1886 SSVAL(req->outbuf,smb_vwv2,fsp->fnum);
1887 SSVAL(req->outbuf,smb_vwv3,fattr);
1888 if(lp_dos_filetime_resolution(SNUM(conn)) ) {
1889 srv_put_dos_date3((char *)req->outbuf,smb_vwv4,mtime & ~1);
1891 srv_put_dos_date3((char *)req->outbuf,smb_vwv4,mtime);
1893 SIVAL(req->outbuf,smb_vwv6,(uint32)sbuf.st_size);
1894 SSVAL(req->outbuf,smb_vwv8,GET_OPENX_MODE(deny_mode));
1895 SSVAL(req->outbuf,smb_vwv11,smb_action);
1897 if (open_flags & EXTENDED_RESPONSE_REQUIRED) {
1898 SIVAL(req->outbuf, smb_vwv15, STD_RIGHT_ALL_ACCESS);
1901 END_PROFILE(SMBopenX);
1906 /****************************************************************************
1907 Reply to a SMBulogoffX.
1908 conn POINTER CAN BE NULL HERE !
1909 ****************************************************************************/
1911 void reply_ulogoffX(connection_struct *conn, struct smb_request *req)
1915 START_PROFILE(SMBulogoffX);
1917 vuser = get_valid_user_struct(req->vuid);
1920 DEBUG(3,("ulogoff, vuser id %d does not map to user.\n",
1924 /* in user level security we are supposed to close any files
1925 open by this user */
1926 if ((vuser != NULL) && (lp_security() != SEC_SHARE)) {
1927 file_close_user(req->vuid);
1930 invalidate_vuid(req->vuid);
1932 reply_outbuf(req, 2, 0);
1934 DEBUG( 3, ( "ulogoffX vuid=%d\n", req->vuid ) );
1936 END_PROFILE(SMBulogoffX);
1940 /****************************************************************************
1941 Reply to a mknew or a create.
1942 ****************************************************************************/
1944 void reply_mknew(connection_struct *conn, struct smb_request *req)
1949 struct timespec ts[2];
1951 int oplock_request = 0;
1952 SMB_STRUCT_STAT sbuf;
1954 uint32 access_mask = FILE_GENERIC_READ | FILE_GENERIC_WRITE;
1955 uint32 share_mode = FILE_SHARE_READ|FILE_SHARE_WRITE;
1956 uint32 create_disposition;
1957 uint32 create_options = 0;
1958 TALLOC_CTX *ctx = talloc_tos();
1960 START_PROFILE(SMBcreate);
1963 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
1964 END_PROFILE(SMBcreate);
1968 fattr = SVAL(req->inbuf,smb_vwv0);
1969 oplock_request = CORE_OPLOCK_REQUEST(req->inbuf);
1970 com = SVAL(req->inbuf,smb_com);
1972 ts[1] =convert_time_t_to_timespec(
1973 srv_make_unix_date3(req->inbuf + smb_vwv1));
1976 srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &fname,
1977 smb_buf(req->inbuf) + 1, 0,
1978 STR_TERMINATE, &status);
1979 if (!NT_STATUS_IS_OK(status)) {
1980 reply_nterror(req, status);
1981 END_PROFILE(SMBcreate);
1985 status = resolve_dfspath(ctx, conn,
1986 req->flags2 & FLAGS2_DFS_PATHNAMES,
1989 if (!NT_STATUS_IS_OK(status)) {
1990 END_PROFILE(SMBcreate);
1991 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
1992 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
1993 ERRSRV, ERRbadpath);
1996 reply_nterror(req, status);
2000 status = unix_convert(ctx, conn, fname, False, &fname, NULL, &sbuf);
2001 if (!NT_STATUS_IS_OK(status)) {
2002 reply_nterror(req, status);
2003 END_PROFILE(SMBcreate);
2007 status = check_name(conn, fname);
2008 if (!NT_STATUS_IS_OK(status)) {
2009 reply_nterror(req, status);
2010 END_PROFILE(SMBcreate);
2014 if (fattr & aVOLID) {
2015 DEBUG(0,("Attempt to create file (%s) with volid set - "
2016 "please report this\n", fname));
2019 if(com == SMBmknew) {
2020 /* We should fail if file exists. */
2021 create_disposition = FILE_CREATE;
2023 /* Create if file doesn't exist, truncate if it does. */
2024 create_disposition = FILE_OVERWRITE_IF;
2027 /* Open file using ntcreate. */
2028 status = open_file_ntcreate(conn, req, fname, &sbuf,
2037 if (!NT_STATUS_IS_OK(status)) {
2038 END_PROFILE(SMBcreate);
2039 if (open_was_deferred(req->mid)) {
2040 /* We have re-scheduled this call. */
2043 reply_openerror(req, status);
2047 ts[0] = get_atimespec(&sbuf); /* atime. */
2048 file_ntimes(conn, fname, ts);
2050 reply_outbuf(req, 1, 0);
2051 SSVAL(req->outbuf,smb_vwv0,fsp->fnum);
2053 if (oplock_request && lp_fake_oplocks(SNUM(conn))) {
2054 SCVAL(req->outbuf,smb_flg,
2055 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
2058 if(EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type)) {
2059 SCVAL(req->outbuf,smb_flg,
2060 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
2063 DEBUG( 2, ( "reply_mknew: file %s\n", fname ) );
2064 DEBUG( 3, ( "reply_mknew %s fd=%d dmode=0x%x\n",
2065 fname, fsp->fh->fd, (unsigned int)fattr ) );
2067 END_PROFILE(SMBcreate);
2071 /****************************************************************************
2072 Reply to a create temporary file.
2073 ****************************************************************************/
2075 void reply_ctemp(connection_struct *conn, struct smb_request *req)
2082 SMB_STRUCT_STAT sbuf;
2085 TALLOC_CTX *ctx = talloc_tos();
2087 START_PROFILE(SMBctemp);
2090 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
2091 END_PROFILE(SMBctemp);
2095 fattr = SVAL(req->inbuf,smb_vwv0);
2096 oplock_request = CORE_OPLOCK_REQUEST(req->inbuf);
2098 srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &fname,
2099 smb_buf(req->inbuf)+1, 0, STR_TERMINATE,
2101 if (!NT_STATUS_IS_OK(status)) {
2102 reply_nterror(req, status);
2103 END_PROFILE(SMBctemp);
2107 fname = talloc_asprintf(ctx,
2111 fname = talloc_strdup(ctx, "TMXXXXXX");
2115 reply_nterror(req, NT_STATUS_NO_MEMORY);
2116 END_PROFILE(SMBctemp);
2120 status = resolve_dfspath(ctx, conn,
2121 req->flags2 & FLAGS2_DFS_PATHNAMES,
2124 if (!NT_STATUS_IS_OK(status)) {
2125 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
2126 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
2127 ERRSRV, ERRbadpath);
2128 END_PROFILE(SMBctemp);
2131 reply_nterror(req, status);
2132 END_PROFILE(SMBctemp);
2136 status = unix_convert(ctx, conn, fname, False, &fname, NULL, &sbuf);
2137 if (!NT_STATUS_IS_OK(status)) {
2138 reply_nterror(req, status);
2139 END_PROFILE(SMBctemp);
2143 status = check_name(conn, CONST_DISCARD(char *,fname));
2144 if (!NT_STATUS_IS_OK(status)) {
2145 reply_nterror(req, status);
2146 END_PROFILE(SMBctemp);
2150 tmpfd = smb_mkstemp(fname);
2152 reply_unixerror(req, ERRDOS, ERRnoaccess);
2153 END_PROFILE(SMBctemp);
2157 SMB_VFS_STAT(conn,fname,&sbuf);
2159 /* We should fail if file does not exist. */
2160 status = open_file_ntcreate(conn, req, fname, &sbuf,
2161 FILE_GENERIC_READ | FILE_GENERIC_WRITE,
2162 FILE_SHARE_READ|FILE_SHARE_WRITE,
2169 /* close fd from smb_mkstemp() */
2172 if (!NT_STATUS_IS_OK(status)) {
2173 if (open_was_deferred(req->mid)) {
2174 /* We have re-scheduled this call. */
2175 END_PROFILE(SMBctemp);
2178 reply_openerror(req, status);
2179 END_PROFILE(SMBctemp);
2183 reply_outbuf(req, 1, 0);
2184 SSVAL(req->outbuf,smb_vwv0,fsp->fnum);
2186 /* the returned filename is relative to the directory */
2187 s = strrchr_m(fname, '/');
2195 /* Tested vs W2K3 - this doesn't seem to be here - null terminated filename is the only
2196 thing in the byte section. JRA */
2197 SSVALS(p, 0, -1); /* what is this? not in spec */
2199 if (message_push_string(&req->outbuf, s, STR_ASCII|STR_TERMINATE)
2201 reply_nterror(req, NT_STATUS_NO_MEMORY);
2202 END_PROFILE(SMBctemp);
2206 if (oplock_request && lp_fake_oplocks(SNUM(conn))) {
2207 SCVAL(req->outbuf, smb_flg,
2208 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
2211 if (EXCLUSIVE_OPLOCK_TYPE(fsp->oplock_type)) {
2212 SCVAL(req->outbuf, smb_flg,
2213 CVAL(req->outbuf,smb_flg)|CORE_OPLOCK_GRANTED);
2216 DEBUG( 2, ( "reply_ctemp: created temp file %s\n", fname ) );
2217 DEBUG( 3, ( "reply_ctemp %s fd=%d umode=0%o\n", fname, fsp->fh->fd,
2218 (unsigned int)sbuf.st_mode ) );
2220 END_PROFILE(SMBctemp);
2224 /*******************************************************************
2225 Check if a user is allowed to rename a file.
2226 ********************************************************************/
2228 static NTSTATUS can_rename(connection_struct *conn, files_struct *fsp,
2229 uint16 dirtype, SMB_STRUCT_STAT *pst)
2233 if (!CAN_WRITE(conn)) {
2234 return NT_STATUS_MEDIA_WRITE_PROTECTED;
2237 fmode = dos_mode(conn, fsp->fsp_name, pst);
2238 if ((fmode & ~dirtype) & (aHIDDEN | aSYSTEM)) {
2239 return NT_STATUS_NO_SUCH_FILE;
2242 if (S_ISDIR(pst->st_mode)) {
2243 return NT_STATUS_OK;
2246 if (fsp->access_mask & DELETE_ACCESS) {
2247 return NT_STATUS_OK;
2250 return NT_STATUS_ACCESS_DENIED;
2253 /*******************************************************************
2254 * unlink a file with all relevant access checks
2255 *******************************************************************/
2257 static NTSTATUS do_unlink(connection_struct *conn,
2258 struct smb_request *req,
2262 SMB_STRUCT_STAT sbuf;
2265 uint32 dirtype_orig = dirtype;
2268 DEBUG(10,("do_unlink: %s, dirtype = %d\n", fname, dirtype ));
2270 if (!CAN_WRITE(conn)) {
2271 return NT_STATUS_MEDIA_WRITE_PROTECTED;
2274 if (SMB_VFS_LSTAT(conn,fname,&sbuf) != 0) {
2275 return map_nt_error_from_unix(errno);
2278 fattr = dos_mode(conn,fname,&sbuf);
2280 if (dirtype & FILE_ATTRIBUTE_NORMAL) {
2281 dirtype = aDIR|aARCH|aRONLY;
2284 dirtype &= (aDIR|aARCH|aRONLY|aHIDDEN|aSYSTEM);
2286 return NT_STATUS_NO_SUCH_FILE;
2289 if (!dir_check_ftype(conn, fattr, dirtype)) {
2291 return NT_STATUS_FILE_IS_A_DIRECTORY;
2293 return NT_STATUS_NO_SUCH_FILE;
2296 if (dirtype_orig & 0x8000) {
2297 /* These will never be set for POSIX. */
2298 return NT_STATUS_NO_SUCH_FILE;
2302 if ((fattr & dirtype) & FILE_ATTRIBUTE_DIRECTORY) {
2303 return NT_STATUS_FILE_IS_A_DIRECTORY;
2306 if ((fattr & ~dirtype) & (FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM)) {
2307 return NT_STATUS_NO_SUCH_FILE;
2310 if (dirtype & 0xFF00) {
2311 /* These will never be set for POSIX. */
2312 return NT_STATUS_NO_SUCH_FILE;
2317 return NT_STATUS_NO_SUCH_FILE;
2320 /* Can't delete a directory. */
2322 return NT_STATUS_FILE_IS_A_DIRECTORY;
2327 else if (dirtype & aDIR) /* Asked for a directory and it isn't. */
2328 return NT_STATUS_OBJECT_NAME_INVALID;
2329 #endif /* JRATEST */
2331 /* Fix for bug #3035 from SATOH Fumiyasu <fumiyas@miraclelinux.com>
2333 On a Windows share, a file with read-only dosmode can be opened with
2334 DELETE_ACCESS. But on a Samba share (delete readonly = no), it
2335 fails with NT_STATUS_CANNOT_DELETE error.
2337 This semantic causes a problem that a user can not
2338 rename a file with read-only dosmode on a Samba share
2339 from a Windows command prompt (i.e. cmd.exe, but can rename
2340 from Windows Explorer).
2343 if (!lp_delete_readonly(SNUM(conn))) {
2344 if (fattr & aRONLY) {
2345 return NT_STATUS_CANNOT_DELETE;
2349 /* On open checks the open itself will check the share mode, so
2350 don't do it here as we'll get it wrong. */
2352 status = open_file_ntcreate(conn, req, fname, &sbuf,
2357 FILE_ATTRIBUTE_NORMAL,
2358 req != NULL ? 0 : INTERNAL_OPEN_ONLY,
2361 if (!NT_STATUS_IS_OK(status)) {
2362 DEBUG(10, ("open_file_ntcreate failed: %s\n",
2363 nt_errstr(status)));
2367 /* The set is across all open files on this dev/inode pair. */
2368 if (!set_delete_on_close(fsp, True, ¤t_user.ut)) {
2369 close_file(fsp, NORMAL_CLOSE);
2370 return NT_STATUS_ACCESS_DENIED;
2373 return close_file(fsp,NORMAL_CLOSE);
2376 /****************************************************************************
2377 The guts of the unlink command, split out so it may be called by the NT SMB
2379 ****************************************************************************/
2381 NTSTATUS unlink_internals(connection_struct *conn, struct smb_request *req,
2382 uint32 dirtype, const char *name_in, bool has_wild)
2384 const char *directory = NULL;
2389 NTSTATUS status = NT_STATUS_OK;
2390 SMB_STRUCT_STAT sbuf;
2391 TALLOC_CTX *ctx = talloc_tos();
2393 status = unix_convert(ctx, conn, name_in, has_wild, &name, NULL, &sbuf);
2394 if (!NT_STATUS_IS_OK(status)) {
2398 p = strrchr_m(name,'/');
2400 directory = talloc_strdup(ctx, ".");
2402 return NT_STATUS_NO_MEMORY;
2412 * We should only check the mangled cache
2413 * here if unix_convert failed. This means
2414 * that the path in 'mask' doesn't exist
2415 * on the file system and so we need to look
2416 * for a possible mangle. This patch from
2417 * Tine Smukavec <valentin.smukavec@hermes.si>.
2420 if (!VALID_STAT(sbuf) && mangle_is_mangled(mask,conn->params)) {
2421 char *new_mask = NULL;
2422 mangle_lookup_name_from_8_3(ctx,
2432 directory = talloc_asprintf(ctx,
2437 return NT_STATUS_NO_MEMORY;
2440 dirtype = FILE_ATTRIBUTE_NORMAL;
2443 status = check_name(conn, directory);
2444 if (!NT_STATUS_IS_OK(status)) {
2448 status = do_unlink(conn, req, directory, dirtype);
2449 if (!NT_STATUS_IS_OK(status)) {
2455 struct smb_Dir *dir_hnd = NULL;
2459 if ((dirtype & SAMBA_ATTRIBUTES_MASK) == aDIR) {
2460 return NT_STATUS_OBJECT_NAME_INVALID;
2463 if (strequal(mask,"????????.???")) {
2468 status = check_name(conn, directory);
2469 if (!NT_STATUS_IS_OK(status)) {
2473 dir_hnd = OpenDir(conn, directory, mask, dirtype);
2474 if (dir_hnd == NULL) {
2475 return map_nt_error_from_unix(errno);
2478 /* XXXX the CIFS spec says that if bit0 of the flags2 field is set then
2479 the pattern matches against the long name, otherwise the short name
2480 We don't implement this yet XXXX
2483 status = NT_STATUS_NO_SUCH_FILE;
2485 while ((dname = ReadDirName(dir_hnd, &offset))) {
2489 if (!is_visible_file(conn, directory, dname, &st, True)) {
2493 /* Quick check for "." and ".." */
2494 if (ISDOT(dname) || ISDOTDOT(dname)) {
2498 if(!mask_match(dname, mask, conn->case_sensitive)) {
2502 fname = talloc_asprintf(ctx, "%s/%s",
2506 return NT_STATUS_NO_MEMORY;
2509 status = check_name(conn, fname);
2510 if (!NT_STATUS_IS_OK(status)) {
2515 status = do_unlink(conn, req, fname, dirtype);
2516 if (!NT_STATUS_IS_OK(status)) {
2522 DEBUG(3,("unlink_internals: succesful unlink [%s]\n",
2530 if (count == 0 && NT_STATUS_IS_OK(status)) {
2531 status = map_nt_error_from_unix(errno);
2537 /****************************************************************************
2539 ****************************************************************************/
2541 void reply_unlink(connection_struct *conn, struct smb_request *req)
2546 bool path_contains_wcard = False;
2547 TALLOC_CTX *ctx = talloc_tos();
2549 START_PROFILE(SMBunlink);
2552 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
2553 END_PROFILE(SMBunlink);
2557 dirtype = SVAL(req->inbuf,smb_vwv0);
2559 srvstr_get_path_wcard(ctx, (char *)req->inbuf, req->flags2, &name,
2560 smb_buf(req->inbuf) + 1, 0,
2561 STR_TERMINATE, &status, &path_contains_wcard);
2562 if (!NT_STATUS_IS_OK(status)) {
2563 reply_nterror(req, status);
2564 END_PROFILE(SMBunlink);
2568 status = resolve_dfspath_wcard(ctx, conn,
2569 req->flags2 & FLAGS2_DFS_PATHNAMES,
2572 &path_contains_wcard);
2573 if (!NT_STATUS_IS_OK(status)) {
2574 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
2575 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
2576 ERRSRV, ERRbadpath);
2577 END_PROFILE(SMBunlink);
2580 reply_nterror(req, status);
2581 END_PROFILE(SMBunlink);
2585 DEBUG(3,("reply_unlink : %s\n",name));
2587 status = unlink_internals(conn, req, dirtype, name,
2588 path_contains_wcard);
2589 if (!NT_STATUS_IS_OK(status)) {
2590 if (open_was_deferred(req->mid)) {
2591 /* We have re-scheduled this call. */
2592 END_PROFILE(SMBunlink);
2595 reply_nterror(req, status);
2596 END_PROFILE(SMBunlink);
2600 reply_outbuf(req, 0, 0);
2601 END_PROFILE(SMBunlink);
2606 /****************************************************************************
2608 ****************************************************************************/
2610 static void fail_readraw(void)
2612 const char *errstr = talloc_asprintf(talloc_tos(),
2613 "FAIL ! reply_readbraw: socket write fail (%s)",
2618 exit_server_cleanly(errstr);
2621 /****************************************************************************
2622 Fake (read/write) sendfile. Returns -1 on read or write fail.
2623 ****************************************************************************/
2625 static ssize_t fake_sendfile(files_struct *fsp, SMB_OFF_T startpos,
2629 size_t tosend = nread;
2636 bufsize = MIN(nread, 65536);
2638 if (!(buf = SMB_MALLOC_ARRAY(char, bufsize))) {
2642 while (tosend > 0) {
2646 if (tosend > bufsize) {
2651 ret = read_file(fsp,buf,startpos,cur_read);
2657 /* If we had a short read, fill with zeros. */
2658 if (ret < cur_read) {
2659 memset(buf, '\0', cur_read - ret);
2662 if (write_data(smbd_server_fd(),buf,cur_read) != cur_read) {
2667 startpos += cur_read;
2671 return (ssize_t)nread;
2674 /****************************************************************************
2675 Return a readbraw error (4 bytes of zero).
2676 ****************************************************************************/
2678 static void reply_readbraw_error(void)
2682 if (write_data(smbd_server_fd(),header,4) != 4) {
2687 /****************************************************************************
2688 Use sendfile in readbraw.
2689 ****************************************************************************/
2691 void send_file_readbraw(connection_struct *conn,
2697 char *outbuf = NULL;
2700 #if defined(WITH_SENDFILE)
2702 * We can only use sendfile on a non-chained packet
2703 * but we can use on a non-oplocked file. tridge proved this
2704 * on a train in Germany :-). JRA.
2705 * reply_readbraw has already checked the length.
2708 if ( (chain_size == 0) && (nread > 0) &&
2709 (fsp->wcp == NULL) && lp_use_sendfile(SNUM(conn)) ) {
2711 DATA_BLOB header_blob;
2713 _smb_setlen(header,nread);
2714 header_blob = data_blob_const(header, 4);
2716 if ( SMB_VFS_SENDFILE( smbd_server_fd(), fsp, fsp->fh->fd,
2717 &header_blob, startpos, nread) == -1) {
2718 /* Returning ENOSYS means no data at all was sent.
2719 * Do this as a normal read. */
2720 if (errno == ENOSYS) {
2721 goto normal_readbraw;
2725 * Special hack for broken Linux with no working sendfile. If we
2726 * return EINTR we sent the header but not the rest of the data.
2727 * Fake this up by doing read/write calls.
2729 if (errno == EINTR) {
2730 /* Ensure we don't do this again. */
2731 set_use_sendfile(SNUM(conn), False);
2732 DEBUG(0,("send_file_readbraw: sendfile not available. Faking..\n"));
2734 if (fake_sendfile(fsp, startpos, nread) == -1) {
2735 DEBUG(0,("send_file_readbraw: fake_sendfile failed for file %s (%s).\n",
2736 fsp->fsp_name, strerror(errno) ));
2737 exit_server_cleanly("send_file_readbraw fake_sendfile failed");
2742 DEBUG(0,("send_file_readbraw: sendfile failed for file %s (%s). Terminating\n",
2743 fsp->fsp_name, strerror(errno) ));
2744 exit_server_cleanly("send_file_readbraw sendfile failed");
2753 outbuf = TALLOC_ARRAY(NULL, char, nread+4);
2755 DEBUG(0,("send_file_readbraw: TALLOC_ARRAY failed for size %u.\n",
2756 (unsigned)(nread+4)));
2757 reply_readbraw_error();
2762 ret = read_file(fsp,outbuf+4,startpos,nread);
2763 #if 0 /* mincount appears to be ignored in a W2K server. JRA. */
2772 _smb_setlen(outbuf,ret);
2773 if (write_data(smbd_server_fd(),outbuf,4+ret) != 4+ret)
2776 TALLOC_FREE(outbuf);
2779 /****************************************************************************
2780 Reply to a readbraw (core+ protocol).
2781 ****************************************************************************/
2783 void reply_readbraw(connection_struct *conn, struct smb_request *req)
2785 ssize_t maxcount,mincount;
2792 START_PROFILE(SMBreadbraw);
2794 if (srv_is_signing_active()) {
2795 exit_server_cleanly("reply_readbraw: SMB signing is active - "
2796 "raw reads/writes are disallowed.");
2800 reply_readbraw_error();
2801 END_PROFILE(SMBreadbraw);
2806 * Special check if an oplock break has been issued
2807 * and the readraw request croses on the wire, we must
2808 * return a zero length response here.
2811 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
2814 * We have to do a check_fsp by hand here, as
2815 * we must always return 4 zero bytes on error,
2819 if (!fsp || !conn || conn != fsp->conn ||
2820 current_user.vuid != fsp->vuid ||
2821 fsp->is_directory || fsp->fh->fd == -1) {
2823 * fsp could be NULL here so use the value from the packet. JRA.
2825 DEBUG(3,("reply_readbraw: fnum %d not valid "
2827 (int)SVAL(req->inbuf,smb_vwv0)));
2828 reply_readbraw_error();
2829 END_PROFILE(SMBreadbraw);
2833 /* Do a "by hand" version of CHECK_READ. */
2834 if (!(fsp->can_read ||
2835 ((req->flags2 & FLAGS2_READ_PERMIT_EXECUTE) &&
2836 (fsp->access_mask & FILE_EXECUTE)))) {
2837 DEBUG(3,("reply_readbraw: fnum %d not readable.\n",
2838 (int)SVAL(req->inbuf,smb_vwv0)));
2839 reply_readbraw_error();
2840 END_PROFILE(SMBreadbraw);
2844 flush_write_cache(fsp, READRAW_FLUSH);
2846 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv1);
2847 if(req->wct == 10) {
2849 * This is a large offset (64 bit) read.
2851 #ifdef LARGE_SMB_OFF_T
2853 startpos |= (((SMB_OFF_T)IVAL(req->inbuf,smb_vwv8)) << 32);
2855 #else /* !LARGE_SMB_OFF_T */
2858 * Ensure we haven't been sent a >32 bit offset.
2861 if(IVAL(req->inbuf,smb_vwv8) != 0) {
2862 DEBUG(0,("reply_readbraw: large offset "
2863 "(%x << 32) used and we don't support "
2864 "64 bit offsets.\n",
2865 (unsigned int)IVAL(req->inbuf,smb_vwv8) ));
2866 reply_readbraw_error();
2867 END_PROFILE(SMBreadbraw);
2871 #endif /* LARGE_SMB_OFF_T */
2874 DEBUG(0,("reply_readbraw: negative 64 bit "
2875 "readraw offset (%.0f) !\n",
2876 (double)startpos ));
2877 reply_readbraw_error();
2878 END_PROFILE(SMBreadbraw);
2883 maxcount = (SVAL(req->inbuf,smb_vwv3) & 0xFFFF);
2884 mincount = (SVAL(req->inbuf,smb_vwv4) & 0xFFFF);
2886 /* ensure we don't overrun the packet size */
2887 maxcount = MIN(65535,maxcount);
2889 if (is_locked(fsp,(uint32)req->smbpid,
2890 (SMB_BIG_UINT)maxcount,
2891 (SMB_BIG_UINT)startpos,
2893 reply_readbraw_error();
2894 END_PROFILE(SMBreadbraw);
2898 if (SMB_VFS_FSTAT(fsp,fsp->fh->fd,&st) == 0) {
2902 if (startpos >= size) {
2905 nread = MIN(maxcount,(size - startpos));
2908 #if 0 /* mincount appears to be ignored in a W2K server. JRA. */
2909 if (nread < mincount)
2913 DEBUG( 3, ( "reply_readbraw: fnum=%d start=%.0f max=%lu "
2914 "min=%lu nread=%lu\n",
2915 fsp->fnum, (double)startpos,
2916 (unsigned long)maxcount,
2917 (unsigned long)mincount,
2918 (unsigned long)nread ) );
2920 send_file_readbraw(conn, fsp, startpos, nread, mincount);
2922 DEBUG(5,("reply_readbraw finished\n"));
2923 END_PROFILE(SMBreadbraw);
2927 #define DBGC_CLASS DBGC_LOCKING
2929 /****************************************************************************
2930 Reply to a lockread (core+ protocol).
2931 ****************************************************************************/
2933 void reply_lockread(connection_struct *conn, struct smb_request *req)
2941 struct byte_range_lock *br_lck = NULL;
2944 START_PROFILE(SMBlockread);
2947 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
2948 END_PROFILE(SMBlockread);
2952 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
2954 if (!check_fsp(conn, req, fsp, ¤t_user)) {
2955 END_PROFILE(SMBlockread);
2959 if (!CHECK_READ(fsp,req->inbuf)) {
2960 reply_doserror(req, ERRDOS, ERRbadaccess);
2961 END_PROFILE(SMBlockread);
2965 release_level_2_oplocks_on_change(fsp);
2967 numtoread = SVAL(req->inbuf,smb_vwv1);
2968 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv2);
2970 numtoread = MIN(BUFFER_SIZE - (smb_size + 3*2 + 3), numtoread);
2972 reply_outbuf(req, 5, numtoread + 3);
2974 data = smb_buf(req->outbuf) + 3;
2977 * NB. Discovered by Menny Hamburger at Mainsoft. This is a core+
2978 * protocol request that predates the read/write lock concept.
2979 * Thus instead of asking for a read lock here we need to ask
2980 * for a write lock. JRA.
2981 * Note that the requested lock size is unaffected by max_recv.
2984 br_lck = do_lock(smbd_messaging_context(),
2987 (SMB_BIG_UINT)numtoread,
2988 (SMB_BIG_UINT)startpos,
2991 False, /* Non-blocking lock. */
2994 TALLOC_FREE(br_lck);
2996 if (NT_STATUS_V(status)) {
2997 reply_nterror(req, status);
2998 END_PROFILE(SMBlockread);
3003 * However the requested READ size IS affected by max_recv. Insanity.... JRA.
3006 if (numtoread > max_recv) {
3007 DEBUG(0,("reply_lockread: requested read size (%u) is greater than maximum allowed (%u). \
3008 Returning short read of maximum allowed for compatibility with Windows 2000.\n",
3009 (unsigned int)numtoread, (unsigned int)max_recv ));
3010 numtoread = MIN(numtoread,max_recv);
3012 nread = read_file(fsp,data,startpos,numtoread);
3015 reply_unixerror(req, ERRDOS, ERRnoaccess);
3016 END_PROFILE(SMBlockread);
3020 set_message((char *)req->outbuf, 5, nread+3, False);
3022 SSVAL(req->outbuf,smb_vwv0,nread);
3023 SSVAL(req->outbuf,smb_vwv5,nread+3);
3024 p = smb_buf(req->outbuf);
3025 SCVAL(p,0,0); /* pad byte. */
3028 DEBUG(3,("lockread fnum=%d num=%d nread=%d\n",
3029 fsp->fnum, (int)numtoread, (int)nread));
3031 END_PROFILE(SMBlockread);
3036 #define DBGC_CLASS DBGC_ALL
3038 /****************************************************************************
3040 ****************************************************************************/
3042 void reply_read(connection_struct *conn, struct smb_request *req)
3051 START_PROFILE(SMBread);
3054 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3055 END_PROFILE(SMBread);
3059 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
3061 if (!check_fsp(conn, req, fsp, ¤t_user)) {
3062 END_PROFILE(SMBread);
3066 if (!CHECK_READ(fsp,req->inbuf)) {
3067 reply_doserror(req, ERRDOS, ERRbadaccess);
3068 END_PROFILE(SMBread);
3072 numtoread = SVAL(req->inbuf,smb_vwv1);
3073 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv2);
3075 numtoread = MIN(BUFFER_SIZE-outsize,numtoread);
3078 * The requested read size cannot be greater than max_recv. JRA.
3080 if (numtoread > max_recv) {
3081 DEBUG(0,("reply_read: requested read size (%u) is greater than maximum allowed (%u). \
3082 Returning short read of maximum allowed for compatibility with Windows 2000.\n",
3083 (unsigned int)numtoread, (unsigned int)max_recv ));
3084 numtoread = MIN(numtoread,max_recv);
3087 reply_outbuf(req, 5, numtoread+3);
3089 data = smb_buf(req->outbuf) + 3;
3091 if (is_locked(fsp, (uint32)req->smbpid, (SMB_BIG_UINT)numtoread,
3092 (SMB_BIG_UINT)startpos, READ_LOCK)) {
3093 reply_doserror(req, ERRDOS,ERRlock);
3094 END_PROFILE(SMBread);
3099 nread = read_file(fsp,data,startpos,numtoread);
3102 reply_unixerror(req, ERRDOS,ERRnoaccess);
3103 END_PROFILE(SMBread);
3107 set_message((char *)req->outbuf, 5, nread+3, False);
3109 SSVAL(req->outbuf,smb_vwv0,nread);
3110 SSVAL(req->outbuf,smb_vwv5,nread+3);
3111 SCVAL(smb_buf(req->outbuf),0,1);
3112 SSVAL(smb_buf(req->outbuf),1,nread);
3114 DEBUG( 3, ( "read fnum=%d num=%d nread=%d\n",
3115 fsp->fnum, (int)numtoread, (int)nread ) );
3117 END_PROFILE(SMBread);
3121 /****************************************************************************
3123 ****************************************************************************/
3125 static int setup_readX_header(char *outbuf, size_t smb_maxcnt)
3130 outsize = set_message(outbuf,12,smb_maxcnt,False);
3131 data = smb_buf(outbuf);
3133 memset(outbuf+smb_vwv0,'\0',24); /* valgrind init. */
3135 SCVAL(outbuf,smb_vwv0,0xFF);
3136 SSVAL(outbuf,smb_vwv2,0xFFFF); /* Remaining - must be -1. */
3137 SSVAL(outbuf,smb_vwv5,smb_maxcnt);
3138 SSVAL(outbuf,smb_vwv6,smb_offset(data,outbuf));
3139 SSVAL(outbuf,smb_vwv7,(smb_maxcnt >> 16));
3140 SSVAL(smb_buf(outbuf),-2,smb_maxcnt);
3141 /* Reset the outgoing length, set_message truncates at 0x1FFFF. */
3142 _smb_setlen_large(outbuf,(smb_size + 12*2 + smb_maxcnt - 4));
3146 /****************************************************************************
3147 Reply to a read and X - possibly using sendfile.
3148 ****************************************************************************/
3150 static void send_file_readX(connection_struct *conn, struct smb_request *req,
3151 files_struct *fsp, SMB_OFF_T startpos,
3154 SMB_STRUCT_STAT sbuf;
3157 if(SMB_VFS_FSTAT(fsp,fsp->fh->fd, &sbuf) == -1) {
3158 reply_unixerror(req, ERRDOS, ERRnoaccess);
3162 if (startpos > sbuf.st_size) {
3164 } else if (smb_maxcnt > (sbuf.st_size - startpos)) {
3165 smb_maxcnt = (sbuf.st_size - startpos);
3168 if (smb_maxcnt == 0) {
3172 #if defined(WITH_SENDFILE)
3174 * We can only use sendfile on a non-chained packet
3175 * but we can use on a non-oplocked file. tridge proved this
3176 * on a train in Germany :-). JRA.
3179 if ((chain_size == 0) && (CVAL(req->inbuf,smb_vwv0) == 0xFF) &&
3180 lp_use_sendfile(SNUM(conn)) && (fsp->wcp == NULL) ) {
3181 uint8 headerbuf[smb_size + 12 * 2];
3185 * Set up the packet header before send. We
3186 * assume here the sendfile will work (get the
3187 * correct amount of data).
3190 header = data_blob_const(headerbuf, sizeof(headerbuf));
3192 construct_reply_common((char *)req->inbuf, (char *)headerbuf);
3193 setup_readX_header((char *)headerbuf, smb_maxcnt);
3195 if ((nread = SMB_VFS_SENDFILE( smbd_server_fd(), fsp, fsp->fh->fd, &header, startpos, smb_maxcnt)) == -1) {
3196 /* Returning ENOSYS means no data at all was sent. Do this as a normal read. */
3197 if (errno == ENOSYS) {
3202 * Special hack for broken Linux with no working sendfile. If we
3203 * return EINTR we sent the header but not the rest of the data.
3204 * Fake this up by doing read/write calls.
3207 if (errno == EINTR) {
3208 /* Ensure we don't do this again. */
3209 set_use_sendfile(SNUM(conn), False);
3210 DEBUG(0,("send_file_readX: sendfile not available. Faking..\n"));
3211 nread = fake_sendfile(fsp, startpos,
3214 DEBUG(0,("send_file_readX: fake_sendfile failed for file %s (%s).\n",
3215 fsp->fsp_name, strerror(errno) ));
3216 exit_server_cleanly("send_file_readX: fake_sendfile failed");
3218 DEBUG( 3, ( "send_file_readX: fake_sendfile fnum=%d max=%d nread=%d\n",
3219 fsp->fnum, (int)smb_maxcnt, (int)nread ) );
3220 /* No outbuf here means successful sendfile. */
3221 TALLOC_FREE(req->outbuf);
3225 DEBUG(0,("send_file_readX: sendfile failed for file %s (%s). Terminating\n",
3226 fsp->fsp_name, strerror(errno) ));
3227 exit_server_cleanly("send_file_readX sendfile failed");
3230 DEBUG( 3, ( "send_file_readX: sendfile fnum=%d max=%d nread=%d\n",
3231 fsp->fnum, (int)smb_maxcnt, (int)nread ) );
3232 /* No outbuf here means successful sendfile. */
3233 TALLOC_FREE(req->outbuf);
3240 if ((smb_maxcnt & 0xFF0000) > 0x10000) {
3241 uint8 headerbuf[smb_size + 2*12];
3243 construct_reply_common((char *)req->inbuf, (char *)headerbuf);
3244 setup_readX_header((char *)headerbuf, smb_maxcnt);
3246 /* Send out the header. */
3247 if (write_data(smbd_server_fd(), (char *)headerbuf,
3248 sizeof(headerbuf)) != sizeof(headerbuf)) {
3249 DEBUG(0,("send_file_readX: write_data failed for file %s (%s). Terminating\n",
3250 fsp->fsp_name, strerror(errno) ));
3251 exit_server_cleanly("send_file_readX sendfile failed");
3253 nread = fake_sendfile(fsp, startpos, smb_maxcnt);
3255 DEBUG(0,("send_file_readX: fake_sendfile failed for file %s (%s).\n",
3256 fsp->fsp_name, strerror(errno) ));
3257 exit_server_cleanly("send_file_readX: fake_sendfile failed");
3259 TALLOC_FREE(req->outbuf);
3262 reply_outbuf(req, 12, smb_maxcnt);
3264 nread = read_file(fsp, smb_buf(req->outbuf), startpos,
3267 reply_unixerror(req, ERRDOS, ERRnoaccess);
3271 setup_readX_header((char *)req->outbuf, nread);
3273 DEBUG( 3, ( "send_file_readX fnum=%d max=%d nread=%d\n",
3274 fsp->fnum, (int)smb_maxcnt, (int)nread ) );
3282 /****************************************************************************
3283 Reply to a read and X.
3284 ****************************************************************************/
3286 void reply_read_and_X(connection_struct *conn, struct smb_request *req)
3291 bool big_readX = False;
3293 size_t smb_mincnt = SVAL(req->inbuf,smb_vwv6);
3296 START_PROFILE(SMBreadX);
3298 if ((req->wct != 10) && (req->wct != 12)) {
3299 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3303 fsp = file_fsp(SVAL(req->inbuf,smb_vwv2));
3304 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv3);
3305 smb_maxcnt = SVAL(req->inbuf,smb_vwv5);
3307 /* If it's an IPC, pass off the pipe handler. */
3309 reply_pipe_read_and_X(req);
3310 END_PROFILE(SMBreadX);
3314 if (!check_fsp(conn, req, fsp, ¤t_user)) {
3315 END_PROFILE(SMBreadX);
3319 if (!CHECK_READ(fsp,req->inbuf)) {
3320 reply_doserror(req, ERRDOS,ERRbadaccess);
3321 END_PROFILE(SMBreadX);
3325 if (global_client_caps & CAP_LARGE_READX) {
3326 size_t upper_size = SVAL(req->inbuf,smb_vwv7);
3327 smb_maxcnt |= (upper_size<<16);
3328 if (upper_size > 1) {
3329 /* Can't do this on a chained packet. */
3330 if ((CVAL(req->inbuf,smb_vwv0) != 0xFF)) {
3331 reply_nterror(req, NT_STATUS_NOT_SUPPORTED);
3332 END_PROFILE(SMBreadX);
3335 /* We currently don't do this on signed data. */
3336 if (srv_is_signing_active()) {
3337 reply_nterror(req, NT_STATUS_NOT_SUPPORTED);
3338 END_PROFILE(SMBreadX);
3341 /* Is there room in the reply for this data ? */
3342 if (smb_maxcnt > (0xFFFFFF - (smb_size -4 + 12*2))) {
3344 NT_STATUS_INVALID_PARAMETER);
3345 END_PROFILE(SMBreadX);
3352 if (req->wct == 12) {
3353 #ifdef LARGE_SMB_OFF_T
3355 * This is a large offset (64 bit) read.
3357 startpos |= (((SMB_OFF_T)IVAL(req->inbuf,smb_vwv10)) << 32);
3359 #else /* !LARGE_SMB_OFF_T */
3362 * Ensure we haven't been sent a >32 bit offset.
3365 if(IVAL(req->inbuf,smb_vwv10) != 0) {
3366 DEBUG(0,("reply_read_and_X - large offset (%x << 32) "
3367 "used and we don't support 64 bit offsets.\n",
3368 (unsigned int)IVAL(req->inbuf,smb_vwv10) ));
3369 END_PROFILE(SMBreadX);
3370 reply_doserror(req, ERRDOS, ERRbadaccess);
3374 #endif /* LARGE_SMB_OFF_T */
3378 if (is_locked(fsp, (uint32)req->smbpid, (SMB_BIG_UINT)smb_maxcnt,
3379 (SMB_BIG_UINT)startpos, READ_LOCK)) {
3380 END_PROFILE(SMBreadX);
3381 reply_doserror(req, ERRDOS, ERRlock);
3386 && schedule_aio_read_and_X(conn, req, fsp, startpos, smb_maxcnt)) {
3387 END_PROFILE(SMBreadX);
3391 send_file_readX(conn, req, fsp, startpos, smb_maxcnt);
3393 END_PROFILE(SMBreadX);
3397 /****************************************************************************
3398 Error replies to writebraw must have smb_wct == 1. Fix this up.
3399 ****************************************************************************/
3401 void error_to_writebrawerr(struct smb_request *req)
3403 uint8 *old_outbuf = req->outbuf;
3405 reply_outbuf(req, 1, 0);
3407 memcpy(req->outbuf, old_outbuf, smb_size);
3408 TALLOC_FREE(old_outbuf);
3411 /****************************************************************************
3412 Reply to a writebraw (core+ or LANMAN1.0 protocol).
3413 ****************************************************************************/
3415 void reply_writebraw(connection_struct *conn, struct smb_request *req)
3420 ssize_t total_written=0;
3421 size_t numtowrite=0;
3429 START_PROFILE(SMBwritebraw);
3432 * If we ever reply with an error, it must have the SMB command
3433 * type of SMBwritec, not SMBwriteBraw, as this tells the client
3436 SCVAL(req->inbuf,smb_com,SMBwritec);
3438 if (srv_is_signing_active()) {
3439 END_PROFILE(SMBwritebraw);
3440 exit_server_cleanly("reply_writebraw: SMB signing is active - "
3441 "raw reads/writes are disallowed.");
3444 if (req->wct < 12) {
3445 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3446 error_to_writebrawerr(req);
3447 END_PROFILE(SMBwritebraw);
3451 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
3452 if (!check_fsp(conn, req, fsp, ¤t_user)) {
3453 error_to_writebrawerr(req);
3454 END_PROFILE(SMBwritebraw);
3458 if (!CHECK_WRITE(fsp)) {
3459 reply_doserror(req, ERRDOS, ERRbadaccess);
3460 error_to_writebrawerr(req);
3461 END_PROFILE(SMBwritebraw);
3465 tcount = IVAL(req->inbuf,smb_vwv1);
3466 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv3);
3467 write_through = BITSETW(req->inbuf+smb_vwv7,0);
3469 /* We have to deal with slightly different formats depending
3470 on whether we are using the core+ or lanman1.0 protocol */
3472 if(Protocol <= PROTOCOL_COREPLUS) {
3473 numtowrite = SVAL(smb_buf(req->inbuf),-2);
3474 data = smb_buf(req->inbuf);
3476 numtowrite = SVAL(req->inbuf,smb_vwv10);
3477 data = smb_base(req->inbuf) + SVAL(req->inbuf, smb_vwv11);
3480 /* Ensure we don't write bytes past the end of this packet. */
3481 if (data + numtowrite > smb_base(req->inbuf) + smb_len(req->inbuf)) {
3482 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3483 error_to_writebrawerr(req);
3484 END_PROFILE(SMBwritebraw);
3488 if (is_locked(fsp,(uint32)req->smbpid,(SMB_BIG_UINT)tcount,
3489 (SMB_BIG_UINT)startpos, WRITE_LOCK)) {
3490 reply_doserror(req, ERRDOS, ERRlock);
3491 error_to_writebrawerr(req);
3492 END_PROFILE(SMBwritebraw);
3497 nwritten = write_file(req,fsp,data,startpos,numtowrite);
3500 DEBUG(3,("reply_writebraw: initial write fnum=%d start=%.0f num=%d "
3501 "wrote=%d sync=%d\n",
3502 fsp->fnum, (double)startpos, (int)numtowrite,
3503 (int)nwritten, (int)write_through));
3505 if (nwritten < (ssize_t)numtowrite) {
3506 reply_unixerror(req, ERRHRD, ERRdiskfull);
3507 error_to_writebrawerr(req);
3508 END_PROFILE(SMBwritebraw);
3512 total_written = nwritten;
3514 /* Allocate a buffer of 64k + length. */
3515 buf = TALLOC_ARRAY(NULL, char, 65540);
3517 reply_doserror(req, ERRDOS, ERRnomem);
3518 error_to_writebrawerr(req);
3519 END_PROFILE(SMBwritebraw);
3523 /* Return a SMBwritebraw message to the redirector to tell
3524 * it to send more bytes */
3526 memcpy(buf, req->inbuf, smb_size);
3527 outsize = set_message(buf,
3528 Protocol>PROTOCOL_COREPLUS?1:0,0,True);
3529 SCVAL(buf,smb_com,SMBwritebraw);
3530 SSVALS(buf,smb_vwv0,0xFFFF);
3532 if (!send_smb(smbd_server_fd(),buf)) {
3533 exit_server_cleanly("reply_writebraw: send_smb "
3537 /* Now read the raw data into the buffer and write it */
3538 if (read_smb_length(smbd_server_fd(),buf,
3539 SMB_SECONDARY_WAIT, get_srv_read_error()) == -1) {
3540 exit_server_cleanly("secondary writebraw failed");
3544 * Even though this is not an smb message,
3545 * smb_len returns the generic length of a packet.
3548 numtowrite = smb_len(buf);
3550 /* Set up outbuf to return the correct size */
3551 reply_outbuf(req, 1, 0);
3553 if (numtowrite != 0) {
3555 if (numtowrite > 0xFFFF) {
3556 DEBUG(0,("reply_writebraw: Oversize secondary write "
3557 "raw requested (%u). Terminating\n",
3558 (unsigned int)numtowrite ));
3559 exit_server_cleanly("secondary writebraw failed");
3562 if (tcount > nwritten+numtowrite) {
3563 DEBUG(3,("reply_writebraw: Client overestimated the "
3565 (int)tcount,(int)nwritten,(int)numtowrite));
3568 if (read_data(smbd_server_fd(), buf+4, numtowrite,get_srv_read_error())
3570 DEBUG(0,("reply_writebraw: Oversize secondary write "
3571 "raw read failed (%s). Terminating\n",
3573 exit_server_cleanly("secondary writebraw failed");
3576 nwritten = write_file(req,fsp,buf+4,startpos+nwritten,numtowrite);
3577 if (nwritten == -1) {
3579 reply_unixerror(req, ERRHRD, ERRdiskfull);
3580 error_to_writebrawerr(req);
3581 END_PROFILE(SMBwritebraw);
3585 if (nwritten < (ssize_t)numtowrite) {
3586 SCVAL(req->outbuf,smb_rcls,ERRHRD);
3587 SSVAL(req->outbuf,smb_err,ERRdiskfull);
3591 total_written += nwritten;
3596 SSVAL(req->outbuf,smb_vwv0,total_written);
3598 status = sync_file(conn, fsp, write_through);
3599 if (!NT_STATUS_IS_OK(status)) {
3600 DEBUG(5,("reply_writebraw: sync_file for %s returned %s\n",
3601 fsp->fsp_name, nt_errstr(status) ));
3602 reply_nterror(req, status);
3603 error_to_writebrawerr(req);
3604 END_PROFILE(SMBwritebraw);
3608 DEBUG(3,("reply_writebraw: secondart write fnum=%d start=%.0f num=%d "
3610 fsp->fnum, (double)startpos, (int)numtowrite,
3611 (int)total_written));
3613 /* We won't return a status if write through is not selected - this
3614 * follows what WfWg does */
3615 END_PROFILE(SMBwritebraw);
3617 if (!write_through && total_written==tcount) {
3619 #if RABBIT_PELLET_FIX
3621 * Fix for "rabbit pellet" mode, trigger an early TCP ack by
3622 * sending a SMBkeepalive. Thanks to DaveCB at Sun for this.
3625 if (!send_keepalive(smbd_server_fd())) {
3626 exit_server_cleanly("reply_writebraw: send of "
3627 "keepalive failed");
3630 TALLOC_FREE(req->outbuf);
3636 #define DBGC_CLASS DBGC_LOCKING
3638 /****************************************************************************
3639 Reply to a writeunlock (core+).
3640 ****************************************************************************/
3642 void reply_writeunlock(connection_struct *conn, struct smb_request *req)
3644 ssize_t nwritten = -1;
3648 NTSTATUS status = NT_STATUS_OK;
3651 START_PROFILE(SMBwriteunlock);
3654 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3655 END_PROFILE(SMBwriteunlock);
3659 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
3661 if (!check_fsp(conn, req, fsp, ¤t_user)) {
3662 END_PROFILE(SMBwriteunlock);
3666 if (!CHECK_WRITE(fsp)) {
3667 reply_doserror(req, ERRDOS,ERRbadaccess);
3668 END_PROFILE(SMBwriteunlock);
3672 numtowrite = SVAL(req->inbuf,smb_vwv1);
3673 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv2);
3674 data = smb_buf(req->inbuf) + 3;
3677 && is_locked(fsp, (uint32)req->smbpid, (SMB_BIG_UINT)numtowrite,
3678 (SMB_BIG_UINT)startpos, WRITE_LOCK)) {
3679 reply_doserror(req, ERRDOS, ERRlock);
3680 END_PROFILE(SMBwriteunlock);
3684 /* The special X/Open SMB protocol handling of
3685 zero length writes is *NOT* done for
3687 if(numtowrite == 0) {
3690 nwritten = write_file(req,fsp,data,startpos,numtowrite);
3693 status = sync_file(conn, fsp, False /* write through */);
3694 if (!NT_STATUS_IS_OK(status)) {
3695 DEBUG(5,("reply_writeunlock: sync_file for %s returned %s\n",
3696 fsp->fsp_name, nt_errstr(status) ));
3697 reply_nterror(req, status);
3698 END_PROFILE(SMBwriteunlock);
3702 if(((nwritten < numtowrite) && (numtowrite != 0))||(nwritten < 0)) {
3703 reply_unixerror(req, ERRHRD, ERRdiskfull);
3704 END_PROFILE(SMBwriteunlock);
3709 status = do_unlock(smbd_messaging_context(),
3712 (SMB_BIG_UINT)numtowrite,
3713 (SMB_BIG_UINT)startpos,
3716 if (NT_STATUS_V(status)) {
3717 reply_nterror(req, status);
3718 END_PROFILE(SMBwriteunlock);
3723 reply_outbuf(req, 1, 0);
3725 SSVAL(req->outbuf,smb_vwv0,nwritten);
3727 DEBUG(3,("writeunlock fnum=%d num=%d wrote=%d\n",
3728 fsp->fnum, (int)numtowrite, (int)nwritten));
3730 END_PROFILE(SMBwriteunlock);
3735 #define DBGC_CLASS DBGC_ALL
3737 /****************************************************************************
3739 ****************************************************************************/
3741 void reply_write(connection_struct *conn, struct smb_request *req)
3744 ssize_t nwritten = -1;
3750 START_PROFILE(SMBwrite);
3753 END_PROFILE(SMBwrite);
3754 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3758 /* If it's an IPC, pass off the pipe handler. */
3760 reply_pipe_write(req);
3761 END_PROFILE(SMBwrite);
3765 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
3767 if (!check_fsp(conn, req, fsp, ¤t_user)) {
3768 END_PROFILE(SMBwrite);
3772 if (!CHECK_WRITE(fsp)) {
3773 reply_doserror(req, ERRDOS, ERRbadaccess);
3774 END_PROFILE(SMBwrite);
3778 numtowrite = SVAL(req->inbuf,smb_vwv1);
3779 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv2);
3780 data = smb_buf(req->inbuf) + 3;
3782 if (is_locked(fsp, (uint32)req->smbpid, (SMB_BIG_UINT)numtowrite,
3783 (SMB_BIG_UINT)startpos, WRITE_LOCK)) {
3784 reply_doserror(req, ERRDOS, ERRlock);
3785 END_PROFILE(SMBwrite);
3790 * X/Open SMB protocol says that if smb_vwv1 is
3791 * zero then the file size should be extended or
3792 * truncated to the size given in smb_vwv[2-3].
3795 if(numtowrite == 0) {
3797 * This is actually an allocate call, and set EOF. JRA.
3799 nwritten = vfs_allocate_file_space(fsp, (SMB_OFF_T)startpos);
3801 reply_nterror(req, NT_STATUS_DISK_FULL);
3802 END_PROFILE(SMBwrite);
3805 nwritten = vfs_set_filelen(fsp, (SMB_OFF_T)startpos);
3807 reply_nterror(req, NT_STATUS_DISK_FULL);
3808 END_PROFILE(SMBwrite);
3812 nwritten = write_file(req,fsp,data,startpos,numtowrite);
3814 status = sync_file(conn, fsp, False);
3815 if (!NT_STATUS_IS_OK(status)) {
3816 DEBUG(5,("reply_write: sync_file for %s returned %s\n",
3817 fsp->fsp_name, nt_errstr(status) ));
3818 reply_nterror(req, status);
3819 END_PROFILE(SMBwrite);
3823 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
3824 reply_unixerror(req, ERRHRD, ERRdiskfull);
3825 END_PROFILE(SMBwrite);
3829 reply_outbuf(req, 1, 0);
3831 SSVAL(req->outbuf,smb_vwv0,nwritten);
3833 if (nwritten < (ssize_t)numtowrite) {
3834 SCVAL(req->outbuf,smb_rcls,ERRHRD);
3835 SSVAL(req->outbuf,smb_err,ERRdiskfull);
3838 DEBUG(3,("write fnum=%d num=%d wrote=%d\n", fsp->fnum, (int)numtowrite, (int)nwritten));
3840 END_PROFILE(SMBwrite);
3844 /****************************************************************************
3845 Ensure a buffer is a valid writeX for recvfile purposes.
3846 ****************************************************************************/
3848 #define STANDARD_WRITE_AND_X_HEADER_SIZE (smb_size - 4 + /* basic header */ \
3849 (2*14) + /* word count (including bcc) */ \
3852 bool is_valid_writeX_buffer(const char *inbuf)
3855 connection_struct *conn = NULL;
3856 unsigned int doff = 0;
3857 size_t len = smb_len_large(inbuf);
3859 if (CVAL(inbuf,smb_com) != SMBwriteX) {
3863 if (CVAL(inbuf,smb_vwv0) != 0xFF ||
3864 CVAL(inbuf,smb_wct) != 14) {
3865 DEBUG(10,("is_valid_writeX_buffer: chained or "
3866 "invalid word length.\n"));
3870 conn = conn_find(SVAL(inbuf, smb_tid));
3872 DEBUG(10,("is_valid_writeX_buffer: bad tid\n"));
3876 DEBUG(10,("is_valid_writeX_buffer: IPC$ tid\n"));
3879 doff = SVAL(inbuf,smb_vwv11);
3881 numtowrite = SVAL(inbuf,smb_vwv10);
3883 if (len > doff && len - doff > 0xFFFF) {
3884 numtowrite |= (((size_t)SVAL(inbuf,smb_vwv9))<<16);
3887 if (numtowrite == 0) {
3888 DEBUG(10,("is_valid_writeX_buffer: zero write\n"));
3892 /* Ensure the sizes match up. */
3893 if (doff < STANDARD_WRITE_AND_X_HEADER_SIZE) {
3894 /* no pad byte...old smbclient :-( */
3895 DEBUG(10,("is_valid_writeX_buffer: small doff %u (min %u)\n",
3897 (unsigned int)STANDARD_WRITE_AND_X_HEADER_SIZE));
3901 if (len - doff != numtowrite) {
3902 DEBUG(10,("is_valid_writeX_buffer: doff mismatch "
3903 "len = %u, doff = %u, numtowrite = %u\n",
3906 (unsigned int)numtowrite ));
3910 DEBUG(10,("is_valid_writeX_buffer: true "
3911 "len = %u, doff = %u, numtowrite = %u\n",
3914 (unsigned int)numtowrite ));
3919 /****************************************************************************
3920 Reply to a write and X.
3921 ****************************************************************************/
3923 void reply_write_and_X(connection_struct *conn, struct smb_request *req)
3930 unsigned int smb_doff;
3931 unsigned int smblen;
3935 START_PROFILE(SMBwriteX);
3937 if ((req->wct != 12) && (req->wct != 14)) {
3938 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3939 END_PROFILE(SMBwriteX);
3943 numtowrite = SVAL(req->inbuf,smb_vwv10);
3944 smb_doff = SVAL(req->inbuf,smb_vwv11);
3945 smblen = smb_len(req->inbuf);
3947 if (req->unread_bytes > 0xFFFF ||
3948 (smblen > smb_doff &&
3949 smblen - smb_doff > 0xFFFF)) {
3950 numtowrite |= (((size_t)SVAL(req->inbuf,smb_vwv9))<<16);
3953 if (req->unread_bytes) {
3954 /* Can't do a recvfile write on IPC$ */
3956 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
3957 END_PROFILE(SMBwriteX);
3960 if (numtowrite != req->unread_bytes) {
3961 reply_doserror(req, ERRDOS, ERRbadmem);
3962 END_PROFILE(SMBwriteX);
3966 if (smb_doff > smblen || smb_doff + numtowrite < numtowrite ||
3967 smb_doff + numtowrite > smblen) {
3968 reply_doserror(req, ERRDOS, ERRbadmem);
3969 END_PROFILE(SMBwriteX);
3974 /* If it's an IPC, pass off the pipe handler. */
3976 if (req->unread_bytes) {
3977 reply_doserror(req, ERRDOS, ERRbadmem);
3978 END_PROFILE(SMBwriteX);
3981 reply_pipe_write_and_X(req);
3982 END_PROFILE(SMBwriteX);
3986 fsp = file_fsp(SVAL(req->inbuf,smb_vwv2));
3987 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv3);
3988 write_through = BITSETW(req->inbuf+smb_vwv7,0);
3990 if (!check_fsp(conn, req, fsp, ¤t_user)) {
3991 END_PROFILE(SMBwriteX);
3995 if (!CHECK_WRITE(fsp)) {
3996 reply_doserror(req, ERRDOS, ERRbadaccess);
3997 END_PROFILE(SMBwriteX);
4001 data = smb_base(req->inbuf) + smb_doff;
4003 if(req->wct == 14) {
4004 #ifdef LARGE_SMB_OFF_T
4006 * This is a large offset (64 bit) write.
4008 startpos |= (((SMB_OFF_T)IVAL(req->inbuf,smb_vwv12)) << 32);
4010 #else /* !LARGE_SMB_OFF_T */
4013 * Ensure we haven't been sent a >32 bit offset.
4016 if(IVAL(req->inbuf,smb_vwv12) != 0) {
4017 DEBUG(0,("reply_write_and_X - large offset (%x << 32) "
4018 "used and we don't support 64 bit offsets.\n",
4019 (unsigned int)IVAL(req->inbuf,smb_vwv12) ));
4020 reply_doserror(req, ERRDOS, ERRbadaccess);
4021 END_PROFILE(SMBwriteX);
4025 #endif /* LARGE_SMB_OFF_T */
4028 if (is_locked(fsp,(uint32)req->smbpid,
4029 (SMB_BIG_UINT)numtowrite,
4030 (SMB_BIG_UINT)startpos, WRITE_LOCK)) {
4031 reply_doserror(req, ERRDOS, ERRlock);
4032 END_PROFILE(SMBwriteX);
4036 /* X/Open SMB protocol says that, unlike SMBwrite
4037 if the length is zero then NO truncation is
4038 done, just a write of zero. To truncate a file,
4041 if(numtowrite == 0) {
4045 if (req->unread_bytes == 0 &&
4046 schedule_aio_write_and_X(conn, req, fsp, data,
4047 startpos, numtowrite)) {
4048 END_PROFILE(SMBwriteX);
4052 nwritten = write_file(req,fsp,data,startpos,numtowrite);
4055 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
4056 reply_unixerror(req, ERRHRD, ERRdiskfull);
4057 END_PROFILE(SMBwriteX);
4061 reply_outbuf(req, 6, 0);
4062 SSVAL(req->outbuf,smb_vwv2,nwritten);
4063 SSVAL(req->outbuf,smb_vwv4,nwritten>>16);
4065 if (nwritten < (ssize_t)numtowrite) {
4066 SCVAL(req->outbuf,smb_rcls,ERRHRD);
4067 SSVAL(req->outbuf,smb_err,ERRdiskfull);
4070 DEBUG(3,("writeX fnum=%d num=%d wrote=%d\n",
4071 fsp->fnum, (int)numtowrite, (int)nwritten));
4073 status = sync_file(conn, fsp, write_through);
4074 if (!NT_STATUS_IS_OK(status)) {
4075 DEBUG(5,("reply_write_and_X: sync_file for %s returned %s\n",
4076 fsp->fsp_name, nt_errstr(status) ));
4077 reply_nterror(req, status);
4078 END_PROFILE(SMBwriteX);
4082 END_PROFILE(SMBwriteX);
4087 /****************************************************************************
4089 ****************************************************************************/
4091 void reply_lseek(connection_struct *conn, struct smb_request *req)
4098 START_PROFILE(SMBlseek);
4101 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4102 END_PROFILE(SMBlseek);
4106 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4108 if (!check_fsp(conn, req, fsp, ¤t_user)) {
4112 flush_write_cache(fsp, SEEK_FLUSH);
4114 mode = SVAL(req->inbuf,smb_vwv1) & 3;
4115 /* NB. This doesn't use IVAL_TO_SMB_OFF_T as startpos can be signed in this case. */
4116 startpos = (SMB_OFF_T)IVALS(req->inbuf,smb_vwv2);
4125 res = fsp->fh->pos + startpos;
4136 if (umode == SEEK_END) {
4137 if((res = SMB_VFS_LSEEK(fsp,fsp->fh->fd,startpos,umode)) == -1) {
4138 if(errno == EINVAL) {
4139 SMB_OFF_T current_pos = startpos;
4140 SMB_STRUCT_STAT sbuf;
4142 if(SMB_VFS_FSTAT(fsp,fsp->fh->fd, &sbuf) == -1) {
4143 reply_unixerror(req, ERRDOS,
4145 END_PROFILE(SMBlseek);
4149 current_pos += sbuf.st_size;
4151 res = SMB_VFS_LSEEK(fsp,fsp->fh->fd,0,SEEK_SET);
4156 reply_unixerror(req, ERRDOS, ERRnoaccess);
4157 END_PROFILE(SMBlseek);
4164 reply_outbuf(req, 2, 0);
4165 SIVAL(req->outbuf,smb_vwv0,res);
4167 DEBUG(3,("lseek fnum=%d ofs=%.0f newpos = %.0f mode=%d\n",
4168 fsp->fnum, (double)startpos, (double)res, mode));
4170 END_PROFILE(SMBlseek);
4174 /****************************************************************************
4176 ****************************************************************************/
4178 void reply_flush(connection_struct *conn, struct smb_request *req)
4183 START_PROFILE(SMBflush);
4186 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4190 fnum = SVAL(req->inbuf,smb_vwv0);
4191 fsp = file_fsp(fnum);
4193 if ((fnum != 0xFFFF) && !check_fsp(conn, req, fsp, ¤t_user)) {
4198 file_sync_all(conn);
4200 NTSTATUS status = sync_file(conn, fsp, True);
4201 if (!NT_STATUS_IS_OK(status)) {
4202 DEBUG(5,("reply_flush: sync_file for %s returned %s\n",
4203 fsp->fsp_name, nt_errstr(status) ));
4204 reply_nterror(req, status);
4205 END_PROFILE(SMBflush);
4210 reply_outbuf(req, 0, 0);
4212 DEBUG(3,("flush\n"));
4213 END_PROFILE(SMBflush);
4217 /****************************************************************************
4219 conn POINTER CAN BE NULL HERE !
4220 ****************************************************************************/
4222 void reply_exit(connection_struct *conn, struct smb_request *req)
4224 START_PROFILE(SMBexit);
4226 file_close_pid(req->smbpid, req->vuid);
4228 reply_outbuf(req, 0, 0);
4230 DEBUG(3,("exit\n"));
4232 END_PROFILE(SMBexit);
4236 /****************************************************************************
4237 Reply to a close - has to deal with closing a directory opened by NT SMB's.
4238 ****************************************************************************/
4240 void reply_close(connection_struct *conn, struct smb_request *req)
4242 NTSTATUS status = NT_STATUS_OK;
4243 files_struct *fsp = NULL;
4244 START_PROFILE(SMBclose);
4247 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4248 END_PROFILE(SMBclose);
4252 /* If it's an IPC, pass off to the pipe handler. */
4254 reply_pipe_close(conn, req);
4255 END_PROFILE(SMBclose);
4259 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4262 * We can only use CHECK_FSP if we know it's not a directory.
4265 if(!fsp || (fsp->conn != conn) || (fsp->vuid != current_user.vuid)) {
4266 reply_doserror(req, ERRDOS, ERRbadfid);
4267 END_PROFILE(SMBclose);
4271 if(fsp->is_directory) {
4273 * Special case - close NT SMB directory handle.
4275 DEBUG(3,("close directory fnum=%d\n", fsp->fnum));
4276 status = close_file(fsp,NORMAL_CLOSE);
4279 * Close ordinary file.
4282 DEBUG(3,("close fd=%d fnum=%d (numopen=%d)\n",
4283 fsp->fh->fd, fsp->fnum,
4284 conn->num_files_open));
4287 * Take care of any time sent in the close.
4290 fsp_set_pending_modtime(fsp, convert_time_t_to_timespec(
4291 srv_make_unix_date3(
4292 req->inbuf+smb_vwv1)));
4295 * close_file() returns the unix errno if an error
4296 * was detected on close - normally this is due to
4297 * a disk full error. If not then it was probably an I/O error.
4300 status = close_file(fsp,NORMAL_CLOSE);
4303 if (!NT_STATUS_IS_OK(status)) {
4304 reply_nterror(req, status);
4305 END_PROFILE(SMBclose);
4309 reply_outbuf(req, 0, 0);
4310 END_PROFILE(SMBclose);
4314 /****************************************************************************
4315 Reply to a writeclose (Core+ protocol).
4316 ****************************************************************************/
4318 void reply_writeclose(connection_struct *conn, struct smb_request *req)
4321 ssize_t nwritten = -1;
4322 NTSTATUS close_status = NT_STATUS_OK;
4325 struct timespec mtime;
4328 START_PROFILE(SMBwriteclose);
4331 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4332 END_PROFILE(SMBwriteclose);
4336 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4338 if (!check_fsp(conn, req, fsp, ¤t_user)) {
4339 END_PROFILE(SMBwriteclose);
4342 if (!CHECK_WRITE(fsp)) {
4343 reply_doserror(req, ERRDOS,ERRbadaccess);
4344 END_PROFILE(SMBwriteclose);
4348 numtowrite = SVAL(req->inbuf,smb_vwv1);
4349 startpos = IVAL_TO_SMB_OFF_T(req->inbuf,smb_vwv2);
4350 mtime = convert_time_t_to_timespec(srv_make_unix_date3(
4351 req->inbuf+smb_vwv4));
4352 data = smb_buf(req->inbuf) + 1;
4355 && is_locked(fsp, (uint32)req->smbpid, (SMB_BIG_UINT)numtowrite,
4356 (SMB_BIG_UINT)startpos, WRITE_LOCK)) {
4357 reply_doserror(req, ERRDOS,ERRlock);
4358 END_PROFILE(SMBwriteclose);
4362 nwritten = write_file(req,fsp,data,startpos,numtowrite);
4364 set_filetime(conn, fsp->fsp_name, mtime);
4367 * More insanity. W2K only closes the file if writelen > 0.
4372 DEBUG(3,("reply_writeclose: zero length write doesn't close file %s\n",
4374 close_status = close_file(fsp,NORMAL_CLOSE);
4377 DEBUG(3,("writeclose fnum=%d num=%d wrote=%d (numopen=%d)\n",
4378 fsp->fnum, (int)numtowrite, (int)nwritten,
4379 conn->num_files_open));
4381 if(((nwritten == 0) && (numtowrite != 0))||(nwritten < 0)) {
4382 reply_doserror(req, ERRHRD, ERRdiskfull);
4383 END_PROFILE(SMBwriteclose);
4387 if(!NT_STATUS_IS_OK(close_status)) {
4388 reply_nterror(req, close_status);
4389 END_PROFILE(SMBwriteclose);
4393 reply_outbuf(req, 1, 0);
4395 SSVAL(req->outbuf,smb_vwv0,nwritten);
4396 END_PROFILE(SMBwriteclose);
4401 #define DBGC_CLASS DBGC_LOCKING
4403 /****************************************************************************
4405 ****************************************************************************/
4407 void reply_lock(connection_struct *conn, struct smb_request *req)
4409 SMB_BIG_UINT count,offset;
4412 struct byte_range_lock *br_lck = NULL;
4414 START_PROFILE(SMBlock);
4417 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4418 END_PROFILE(SMBlock);
4422 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4424 if (!check_fsp(conn, req, fsp, ¤t_user)) {
4425 END_PROFILE(SMBlock);
4429 release_level_2_oplocks_on_change(fsp);
4431 count = (SMB_BIG_UINT)IVAL(req->inbuf,smb_vwv1);
4432 offset = (SMB_BIG_UINT)IVAL(req->inbuf,smb_vwv3);
4434 DEBUG(3,("lock fd=%d fnum=%d offset=%.0f count=%.0f\n",
4435 fsp->fh->fd, fsp->fnum, (double)offset, (double)count));
4437 br_lck = do_lock(smbd_messaging_context(),
4444 False, /* Non-blocking lock. */
4448 TALLOC_FREE(br_lck);
4450 if (NT_STATUS_V(status)) {
4451 reply_nterror(req, status);
4452 END_PROFILE(SMBlock);
4456 reply_outbuf(req, 0, 0);
4458 END_PROFILE(SMBlock);
4462 /****************************************************************************
4464 ****************************************************************************/
4466 void reply_unlock(connection_struct *conn, struct smb_request *req)
4468 SMB_BIG_UINT count,offset;
4472 START_PROFILE(SMBunlock);
4475 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4476 END_PROFILE(SMBunlock);
4480 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4482 if (!check_fsp(conn, req, fsp, ¤t_user)) {
4483 END_PROFILE(SMBunlock);
4487 count = (SMB_BIG_UINT)IVAL(req->inbuf,smb_vwv1);
4488 offset = (SMB_BIG_UINT)IVAL(req->inbuf,smb_vwv3);
4490 status = do_unlock(smbd_messaging_context(),
4497 if (NT_STATUS_V(status)) {
4498 reply_nterror(req, status);
4499 END_PROFILE(SMBunlock);
4503 DEBUG( 3, ( "unlock fd=%d fnum=%d offset=%.0f count=%.0f\n",
4504 fsp->fh->fd, fsp->fnum, (double)offset, (double)count ) );
4506 reply_outbuf(req, 0, 0);
4508 END_PROFILE(SMBunlock);
4513 #define DBGC_CLASS DBGC_ALL
4515 /****************************************************************************
4517 conn POINTER CAN BE NULL HERE !
4518 ****************************************************************************/
4520 void reply_tdis(connection_struct *conn, struct smb_request *req)
4522 START_PROFILE(SMBtdis);
4525 DEBUG(4,("Invalid connection in tdis\n"));
4526 reply_doserror(req, ERRSRV, ERRinvnid);
4527 END_PROFILE(SMBtdis);
4533 close_cnum(conn,req->vuid);
4535 reply_outbuf(req, 0, 0);
4536 END_PROFILE(SMBtdis);
4540 /****************************************************************************
4542 conn POINTER CAN BE NULL HERE !
4543 ****************************************************************************/
4545 void reply_echo(connection_struct *conn, struct smb_request *req)
4549 unsigned int data_len = smb_buflen(req->inbuf);
4551 START_PROFILE(SMBecho);
4554 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4555 END_PROFILE(SMBecho);
4559 if (data_len > BUFFER_SIZE) {
4560 DEBUG(0,("reply_echo: data_len too large.\n"));
4561 reply_nterror(req, NT_STATUS_INSUFFICIENT_RESOURCES);
4562 END_PROFILE(SMBecho);
4566 smb_reverb = SVAL(req->inbuf,smb_vwv0);
4568 reply_outbuf(req, 1, data_len);
4570 /* copy any incoming data back out */
4572 memcpy(smb_buf(req->outbuf),smb_buf(req->inbuf),data_len);
4575 if (smb_reverb > 100) {
4576 DEBUG(0,("large reverb (%d)?? Setting to 100\n",smb_reverb));
4580 for (seq_num =1 ; seq_num <= smb_reverb ; seq_num++) {
4581 SSVAL(req->outbuf,smb_vwv0,seq_num);
4583 show_msg((char *)req->outbuf);
4584 if (!send_smb(smbd_server_fd(),(char *)req->outbuf))
4585 exit_server_cleanly("reply_echo: send_smb failed.");
4588 DEBUG(3,("echo %d times\n", smb_reverb));
4590 TALLOC_FREE(req->outbuf);
4594 END_PROFILE(SMBecho);
4598 /****************************************************************************
4599 Reply to a printopen.
4600 ****************************************************************************/
4602 void reply_printopen(connection_struct *conn, struct smb_request *req)
4607 START_PROFILE(SMBsplopen);
4610 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4611 END_PROFILE(SMBsplopen);
4615 if (!CAN_PRINT(conn)) {
4616 reply_doserror(req, ERRDOS, ERRnoaccess);
4617 END_PROFILE(SMBsplopen);
4621 /* Open for exclusive use, write only. */
4622 status = print_fsp_open(conn, NULL, &fsp);
4624 if (!NT_STATUS_IS_OK(status)) {
4625 reply_nterror(req, status);
4626 END_PROFILE(SMBsplopen);
4630 reply_outbuf(req, 1, 0);
4631 SSVAL(req->outbuf,smb_vwv0,fsp->fnum);
4633 DEBUG(3,("openprint fd=%d fnum=%d\n",
4634 fsp->fh->fd, fsp->fnum));
4636 END_PROFILE(SMBsplopen);
4640 /****************************************************************************
4641 Reply to a printclose.
4642 ****************************************************************************/
4644 void reply_printclose(connection_struct *conn, struct smb_request *req)
4649 START_PROFILE(SMBsplclose);
4652 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4653 END_PROFILE(SMBsplclose);
4657 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4659 if (!check_fsp(conn, req, fsp, ¤t_user)) {
4660 END_PROFILE(SMBsplclose);
4664 if (!CAN_PRINT(conn)) {
4665 reply_nterror(req, NT_STATUS_DOS(ERRSRV, ERRerror));
4666 END_PROFILE(SMBsplclose);
4670 DEBUG(3,("printclose fd=%d fnum=%d\n",
4671 fsp->fh->fd,fsp->fnum));
4673 status = close_file(fsp,NORMAL_CLOSE);
4675 if(!NT_STATUS_IS_OK(status)) {
4676 reply_nterror(req, status);
4677 END_PROFILE(SMBsplclose);
4681 END_PROFILE(SMBsplclose);
4685 /****************************************************************************
4686 Reply to a printqueue.
4687 ****************************************************************************/
4689 void reply_printqueue(connection_struct *conn, struct smb_request *req)
4694 START_PROFILE(SMBsplretq);
4697 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4698 END_PROFILE(SMBsplretq);
4702 max_count = SVAL(req->inbuf,smb_vwv0);
4703 start_index = SVAL(req->inbuf,smb_vwv1);
4705 /* we used to allow the client to get the cnum wrong, but that
4706 is really quite gross and only worked when there was only
4707 one printer - I think we should now only accept it if they
4708 get it right (tridge) */
4709 if (!CAN_PRINT(conn)) {
4710 reply_doserror(req, ERRDOS, ERRnoaccess);
4711 END_PROFILE(SMBsplretq);
4715 reply_outbuf(req, 2, 3);
4716 SSVAL(req->outbuf,smb_vwv0,0);
4717 SSVAL(req->outbuf,smb_vwv1,0);
4718 SCVAL(smb_buf(req->outbuf),0,1);
4719 SSVAL(smb_buf(req->outbuf),1,0);
4721 DEBUG(3,("printqueue start_index=%d max_count=%d\n",
4722 start_index, max_count));
4725 print_queue_struct *queue = NULL;
4726 print_status_struct status;
4727 int count = print_queue_status(SNUM(conn), &queue, &status);
4728 int num_to_get = ABS(max_count);
4729 int first = (max_count>0?start_index:start_index+max_count+1);
4735 num_to_get = MIN(num_to_get,count-first);
4738 for (i=first;i<first+num_to_get;i++) {
4742 srv_put_dos_date2(p,0,queue[i].time);
4743 SCVAL(p,4,(queue[i].status==LPQ_PRINTING?2:3));
4744 SSVAL(p,5, queue[i].job);
4745 SIVAL(p,7,queue[i].size);
4747 srvstr_push(blob, req->flags2, p+12,
4748 queue[i].fs_user, 16, STR_ASCII);
4750 if (message_push_blob(
4753 blob, sizeof(blob))) == -1) {
4754 reply_nterror(req, NT_STATUS_NO_MEMORY);
4755 END_PROFILE(SMBsplretq);
4761 SSVAL(req->outbuf,smb_vwv0,count);
4762 SSVAL(req->outbuf,smb_vwv1,
4763 (max_count>0?first+count:first-1));
4764 SCVAL(smb_buf(req->outbuf),0,1);
4765 SSVAL(smb_buf(req->outbuf),1,28*count);
4770 DEBUG(3,("%d entries returned in queue\n",count));
4773 END_PROFILE(SMBsplretq);
4777 /****************************************************************************
4778 Reply to a printwrite.
4779 ****************************************************************************/
4781 void reply_printwrite(connection_struct *conn, struct smb_request *req)
4787 START_PROFILE(SMBsplwr);
4790 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4791 END_PROFILE(SMBsplwr);
4795 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
4797 if (!check_fsp(conn, req, fsp, ¤t_user)) {
4798 END_PROFILE(SMBsplwr);
4802 if (!CAN_PRINT(conn)) {
4803 reply_doserror(req, ERRDOS, ERRnoaccess);
4804 END_PROFILE(SMBsplwr);
4808 if (!CHECK_WRITE(fsp)) {
4809 reply_doserror(req, ERRDOS, ERRbadaccess);
4810 END_PROFILE(SMBsplwr);
4814 numtowrite = SVAL(smb_buf(req->inbuf),1);
4816 if (smb_buflen(req->inbuf) < numtowrite + 3) {
4817 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
4818 END_PROFILE(SMBsplwr);
4822 data = smb_buf(req->inbuf) + 3;
4824 if (write_file(req,fsp,data,-1,numtowrite) != numtowrite) {
4825 reply_unixerror(req, ERRHRD, ERRdiskfull);
4826 END_PROFILE(SMBsplwr);
4830 DEBUG( 3, ( "printwrite fnum=%d num=%d\n", fsp->fnum, numtowrite ) );
4832 END_PROFILE(SMBsplwr);
4836 /****************************************************************************
4838 ****************************************************************************/
4840 void reply_mkdir(connection_struct *conn, struct smb_request *req)
4842 char *directory = NULL;
4844 SMB_STRUCT_STAT sbuf;
4845 TALLOC_CTX *ctx = talloc_tos();
4847 START_PROFILE(SMBmkdir);
4849 srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &directory,
4850 smb_buf(req->inbuf) + 1, 0,
4851 STR_TERMINATE, &status);
4852 if (!NT_STATUS_IS_OK(status)) {
4853 reply_nterror(req, status);
4854 END_PROFILE(SMBmkdir);
4858 status = resolve_dfspath(ctx, conn,
4859 req->flags2 & FLAGS2_DFS_PATHNAMES,
4862 if (!NT_STATUS_IS_OK(status)) {
4863 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
4864 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
4865 ERRSRV, ERRbadpath);
4866 END_PROFILE(SMBmkdir);
4869 reply_nterror(req, status);
4870 END_PROFILE(SMBmkdir);
4874 status = unix_convert(ctx, conn, directory, False, &directory, NULL, &sbuf);
4875 if (!NT_STATUS_IS_OK(status)) {
4876 reply_nterror(req, status);
4877 END_PROFILE(SMBmkdir);
4881 status = check_name(conn, directory);
4882 if (!NT_STATUS_IS_OK(status)) {
4883 reply_nterror(req, status);
4884 END_PROFILE(SMBmkdir);
4888 status = create_directory(conn, directory);
4890 DEBUG(5, ("create_directory returned %s\n", nt_errstr(status)));
4892 if (!NT_STATUS_IS_OK(status)) {
4894 if (!use_nt_status()
4895 && NT_STATUS_EQUAL(status,
4896 NT_STATUS_OBJECT_NAME_COLLISION)) {
4898 * Yes, in the DOS error code case we get a
4899 * ERRDOS:ERRnoaccess here. See BASE-SAMBA3ERROR
4900 * samba4 torture test.
4902 status = NT_STATUS_DOS(ERRDOS, ERRnoaccess);
4905 reply_nterror(req, status);
4906 END_PROFILE(SMBmkdir);
4910 reply_outbuf(req, 0, 0);
4912 DEBUG( 3, ( "mkdir %s\n", directory ) );
4914 END_PROFILE(SMBmkdir);
4918 /****************************************************************************
4919 Static function used by reply_rmdir to delete an entire directory
4920 tree recursively. Return True on ok, False on fail.
4921 ****************************************************************************/
4923 static bool recursive_rmdir(TALLOC_CTX *ctx,
4924 connection_struct *conn,
4927 const char *dname = NULL;
4930 struct smb_Dir *dir_hnd = OpenDir(conn, directory, NULL, 0);
4935 while((dname = ReadDirName(dir_hnd, &offset))) {
4936 char *fullname = NULL;
4939 if (ISDOT(dname) || ISDOTDOT(dname)) {
4943 if (!is_visible_file(conn, directory, dname, &st, False)) {
4947 /* Construct the full name. */
4948 fullname = talloc_asprintf(ctx,
4958 if(SMB_VFS_LSTAT(conn,fullname, &st) != 0) {
4963 if(st.st_mode & S_IFDIR) {
4964 if(!recursive_rmdir(ctx, conn, fullname)) {
4968 if(SMB_VFS_RMDIR(conn,fullname) != 0) {
4972 } else if(SMB_VFS_UNLINK(conn,fullname) != 0) {
4976 TALLOC_FREE(fullname);
4982 /****************************************************************************
4983 The internals of the rmdir code - called elsewhere.
4984 ****************************************************************************/
4986 NTSTATUS rmdir_internals(TALLOC_CTX *ctx,
4987 connection_struct *conn,
4988 const char *directory)
4993 /* Might be a symlink. */
4994 if(SMB_VFS_LSTAT(conn, directory, &st) != 0) {
4995 return map_nt_error_from_unix(errno);
4998 if (S_ISLNK(st.st_mode)) {
4999 /* Is what it points to a directory ? */
5000 if(SMB_VFS_STAT(conn, directory, &st) != 0) {
5001 return map_nt_error_from_unix(errno);
5003 if (!(S_ISDIR(st.st_mode))) {
5004 return NT_STATUS_NOT_A_DIRECTORY;
5006 ret = SMB_VFS_UNLINK(conn,directory);
5008 ret = SMB_VFS_RMDIR(conn,directory);
5011 notify_fname(conn, NOTIFY_ACTION_REMOVED,
5012 FILE_NOTIFY_CHANGE_DIR_NAME,
5014 return NT_STATUS_OK;
5017 if(((errno == ENOTEMPTY)||(errno == EEXIST)) && lp_veto_files(SNUM(conn))) {
5019 * Check to see if the only thing in this directory are
5020 * vetoed files/directories. If so then delete them and
5021 * retry. If we fail to delete any of them (and we *don't*
5022 * do a recursive delete) then fail the rmdir.
5026 struct smb_Dir *dir_hnd = OpenDir(conn, directory, NULL, 0);
5028 if(dir_hnd == NULL) {
5033 while ((dname = ReadDirName(dir_hnd,&dirpos))) {
5034 if((strcmp(dname, ".") == 0) || (strcmp(dname, "..")==0))
5036 if (!is_visible_file(conn, directory, dname, &st, False))
5038 if(!IS_VETO_PATH(conn, dname)) {
5045 /* We only have veto files/directories. Recursive delete. */
5047 RewindDir(dir_hnd,&dirpos);
5048 while ((dname = ReadDirName(dir_hnd,&dirpos))) {
5049 char *fullname = NULL;
5051 if (ISDOT(dname) || ISDOTDOT(dname)) {
5054 if (!is_visible_file(conn, directory, dname, &st, False)) {
5058 fullname = talloc_asprintf(ctx,
5068 if(SMB_VFS_LSTAT(conn,fullname, &st) != 0) {
5071 if(st.st_mode & S_IFDIR) {
5072 if(lp_recursive_veto_delete(SNUM(conn))) {
5073 if(!recursive_rmdir(ctx, conn, fullname))
5076 if(SMB_VFS_RMDIR(conn,fullname) != 0) {
5079 } else if(SMB_VFS_UNLINK(conn,fullname) != 0) {
5082 TALLOC_FREE(fullname);
5085 /* Retry the rmdir */
5086 ret = SMB_VFS_RMDIR(conn,directory);
5092 DEBUG(3,("rmdir_internals: couldn't remove directory %s : "
5093 "%s\n", directory,strerror(errno)));
5094 return map_nt_error_from_unix(errno);
5097 notify_fname(conn, NOTIFY_ACTION_REMOVED,
5098 FILE_NOTIFY_CHANGE_DIR_NAME,
5101 return NT_STATUS_OK;
5104 /****************************************************************************
5106 ****************************************************************************/
5108 void reply_rmdir(connection_struct *conn, struct smb_request *req)
5110 char *directory = NULL;
5111 SMB_STRUCT_STAT sbuf;
5113 TALLOC_CTX *ctx = talloc_tos();
5115 START_PROFILE(SMBrmdir);
5117 srvstr_get_path(ctx, (char *)req->inbuf, req->flags2, &directory,
5118 smb_buf(req->inbuf) + 1, 0,
5119 STR_TERMINATE, &status);
5120 if (!NT_STATUS_IS_OK(status)) {
5121 reply_nterror(req, status);
5122 END_PROFILE(SMBrmdir);
5126 status = resolve_dfspath(ctx, conn,
5127 req->flags2 & FLAGS2_DFS_PATHNAMES,
5130 if (!NT_STATUS_IS_OK(status)) {
5131 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
5132 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
5133 ERRSRV, ERRbadpath);
5134 END_PROFILE(SMBrmdir);
5137 reply_nterror(req, status);
5138 END_PROFILE(SMBrmdir);
5142 status = unix_convert(ctx, conn, directory, False, &directory,
5144 if (!NT_STATUS_IS_OK(status)) {
5145 reply_nterror(req, status);
5146 END_PROFILE(SMBrmdir);
5150 status = check_name(conn, directory);
5151 if (!NT_STATUS_IS_OK(status)) {
5152 reply_nterror(req, status);
5153 END_PROFILE(SMBrmdir);
5157 dptr_closepath(directory, req->smbpid);
5158 status = rmdir_internals(ctx, conn, directory);
5159 if (!NT_STATUS_IS_OK(status)) {
5160 reply_nterror(req, status);
5161 END_PROFILE(SMBrmdir);
5165 reply_outbuf(req, 0, 0);
5167 DEBUG( 3, ( "rmdir %s\n", directory ) );
5169 END_PROFILE(SMBrmdir);
5173 /*******************************************************************
5174 Resolve wildcards in a filename rename.
5175 ********************************************************************/
5177 static bool resolve_wildcards(TALLOC_CTX *ctx,
5182 char *name2_copy = NULL;
5187 char *p,*p2, *pname1, *pname2;
5189 name2_copy = talloc_strdup(ctx, name2);
5194 pname1 = strrchr_m(name1,'/');
5195 pname2 = strrchr_m(name2_copy,'/');
5197 if (!pname1 || !pname2) {
5201 /* Truncate the copy of name2 at the last '/' */
5204 /* Now go past the '/' */
5208 root1 = talloc_strdup(ctx, pname1);
5209 root2 = talloc_strdup(ctx, pname2);
5211 if (!root1 || !root2) {
5215 p = strrchr_m(root1,'.');
5218 ext1 = talloc_strdup(ctx, p+1);
5220 ext1 = talloc_strdup(ctx, "");
5222 p = strrchr_m(root2,'.');
5225 ext2 = talloc_strdup(ctx, p+1);
5227 ext2 = talloc_strdup(ctx, "");
5230 if (!ext1 || !ext2) {
5238 /* Hmmm. Should this be mb-aware ? */
5241 } else if (*p2 == '*') {
5243 root2 = talloc_asprintf(ctx, "%s%s",
5262 /* Hmmm. Should this be mb-aware ? */
5265 } else if (*p2 == '*') {
5267 ext2 = talloc_asprintf(ctx, "%s%s",
5283 *pp_newname = talloc_asprintf(ctx, "%s/%s.%s",
5288 *pp_newname = talloc_asprintf(ctx, "%s/%s",
5300 /****************************************************************************
5301 Ensure open files have their names updated. Updated to notify other smbd's
5303 ****************************************************************************/
5305 static void rename_open_files(connection_struct *conn,
5306 struct share_mode_lock *lck,
5307 const char *newname)
5310 bool did_rename = False;
5312 for(fsp = file_find_di_first(lck->id); fsp;
5313 fsp = file_find_di_next(fsp)) {
5314 /* fsp_name is a relative path under the fsp. To change this for other
5315 sharepaths we need to manipulate relative paths. */
5316 /* TODO - create the absolute path and manipulate the newname
5317 relative to the sharepath. */
5318 if (fsp->conn != conn) {
5321 DEBUG(10,("rename_open_files: renaming file fnum %d (file_id %s) from %s -> %s\n",
5322 fsp->fnum, file_id_string_tos(&fsp->file_id),
5323 fsp->fsp_name, newname ));
5324 string_set(&fsp->fsp_name, newname);
5329 DEBUG(10,("rename_open_files: no open files on file_id %s for %s\n",
5330 file_id_string_tos(&lck->id), newname ));
5333 /* Send messages to all smbd's (not ourself) that the name has changed. */
5334 rename_share_filename(smbd_messaging_context(), lck, conn->connectpath,
5338 /****************************************************************************
5339 We need to check if the source path is a parent directory of the destination
5340 (ie. a rename of /foo/bar/baz -> /foo/bar/baz/bibble/bobble. If so we must
5341 refuse the rename with a sharing violation. Under UNIX the above call can
5342 *succeed* if /foo/bar/baz is a symlink to another area in the share. We
5343 probably need to check that the client is a Windows one before disallowing
5344 this as a UNIX client (one with UNIX extensions) can know the source is a
5345 symlink and make this decision intelligently. Found by an excellent bug
5346 report from <AndyLiebman@aol.com>.
5347 ****************************************************************************/
5349 static bool rename_path_prefix_equal(const char *src, const char *dest)
5351 const char *psrc = src;
5352 const char *pdst = dest;
5355 if (psrc[0] == '.' && psrc[1] == '/') {
5358 if (pdst[0] == '.' && pdst[1] == '/') {
5361 if ((slen = strlen(psrc)) > strlen(pdst)) {
5364 return ((memcmp(psrc, pdst, slen) == 0) && pdst[slen] == '/');
5368 * Do the notify calls from a rename
5371 static void notify_rename(connection_struct *conn, bool is_dir,
5372 const char *oldpath, const char *newpath)
5374 char *olddir, *newdir;
5375 const char *oldname, *newname;
5378 mask = is_dir ? FILE_NOTIFY_CHANGE_DIR_NAME
5379 : FILE_NOTIFY_CHANGE_FILE_NAME;
5381 if (!parent_dirname_talloc(NULL, oldpath, &olddir, &oldname)
5382 || !parent_dirname_talloc(NULL, newpath, &newdir, &newname)) {
5383 TALLOC_FREE(olddir);
5387 if (strcmp(olddir, newdir) == 0) {
5388 notify_fname(conn, NOTIFY_ACTION_OLD_NAME, mask, oldpath);
5389 notify_fname(conn, NOTIFY_ACTION_NEW_NAME, mask, newpath);
5392 notify_fname(conn, NOTIFY_ACTION_REMOVED, mask, oldpath);
5393 notify_fname(conn, NOTIFY_ACTION_ADDED, mask, newpath);
5395 TALLOC_FREE(olddir);
5396 TALLOC_FREE(newdir);
5398 /* this is a strange one. w2k3 gives an additional event for
5399 CHANGE_ATTRIBUTES and CHANGE_CREATION on the new file when renaming
5400 files, but not directories */
5402 notify_fname(conn, NOTIFY_ACTION_MODIFIED,
5403 FILE_NOTIFY_CHANGE_ATTRIBUTES
5404 |FILE_NOTIFY_CHANGE_CREATION,
5409 /****************************************************************************
5410 Rename an open file - given an fsp.
5411 ****************************************************************************/
5413 NTSTATUS rename_internals_fsp(connection_struct *conn,
5416 const char *newname_last_component,
5418 bool replace_if_exists)
5420 TALLOC_CTX *ctx = talloc_tos();
5421 SMB_STRUCT_STAT sbuf, sbuf1;
5422 NTSTATUS status = NT_STATUS_OK;
5423 struct share_mode_lock *lck = NULL;
5428 status = check_name(conn, newname);
5429 if (!NT_STATUS_IS_OK(status)) {
5433 /* Ensure newname contains a '/' */
5434 if(strrchr_m(newname,'/') == 0) {
5435 newname = talloc_asprintf(ctx,
5439 return NT_STATUS_NO_MEMORY;
5444 * Check for special case with case preserving and not
5445 * case sensitive. If the old last component differs from the original
5446 * last component only by case, then we should allow
5447 * the rename (user is trying to change the case of the
5451 if((conn->case_sensitive == False) && (conn->case_preserve == True) &&
5452 strequal(newname, fsp->fsp_name)) {
5454 char *newname_modified_last_component = NULL;
5457 * Get the last component of the modified name.
5458 * Note that we guarantee that newname contains a '/'
5461 p = strrchr_m(newname,'/');
5462 newname_modified_last_component = talloc_strdup(ctx,
5464 if (!newname_modified_last_component) {
5465 return NT_STATUS_NO_MEMORY;
5468 if(strcsequal(newname_modified_last_component,
5469 newname_last_component) == False) {
5471 * Replace the modified last component with
5474 *p = '\0'; /* Truncate at the '/' */
5475 newname = talloc_asprintf(ctx,
5478 newname_last_component);
5483 * If the src and dest names are identical - including case,
5484 * don't do the rename, just return success.
5487 if (strcsequal(fsp->fsp_name, newname)) {
5488 DEBUG(3,("rename_internals_fsp: identical names in rename %s - returning success\n",
5490 return NT_STATUS_OK;
5494 * Have vfs_object_exist also fill sbuf1
5496 dst_exists = vfs_object_exist(conn, newname, &sbuf1);
5498 if(!replace_if_exists && dst_exists) {
5499 DEBUG(3,("rename_internals_fsp: dest exists doing rename %s -> %s\n",
5500 fsp->fsp_name,newname));
5501 return NT_STATUS_OBJECT_NAME_COLLISION;
5505 struct file_id fileid = vfs_file_id_from_sbuf(conn, &sbuf1);
5506 files_struct *dst_fsp = file_find_di_first(fileid);
5508 DEBUG(3, ("rename_internals_fsp: Target file open\n"));
5509 return NT_STATUS_ACCESS_DENIED;
5513 /* Ensure we have a valid stat struct for the source. */
5514 if (fsp->fh->fd != -1) {
5515 if (SMB_VFS_FSTAT(fsp,fsp->fh->fd,&sbuf) == -1) {
5516 return map_nt_error_from_unix(errno);
5519 if (SMB_VFS_STAT(conn,fsp->fsp_name,&sbuf) == -1) {
5520 return map_nt_error_from_unix(errno);
5524 status = can_rename(conn, fsp, attrs, &sbuf);
5526 if (!NT_STATUS_IS_OK(status)) {
5527 DEBUG(3,("rename_internals_fsp: Error %s rename %s -> %s\n",
5528 nt_errstr(status), fsp->fsp_name,newname));
5529 if (NT_STATUS_EQUAL(status,NT_STATUS_SHARING_VIOLATION))
5530 status = NT_STATUS_ACCESS_DENIED;
5534 if (rename_path_prefix_equal(fsp->fsp_name, newname)) {
5535 return NT_STATUS_ACCESS_DENIED;
5538 lck = get_share_mode_lock(NULL, fsp->file_id, NULL, NULL);
5541 * We have the file open ourselves, so not being able to get the
5542 * corresponding share mode lock is a fatal error.
5545 SMB_ASSERT(lck != NULL);
5547 if(SMB_VFS_RENAME(conn,fsp->fsp_name, newname) == 0) {
5548 uint32 create_options = fsp->fh->private_options;
5550 DEBUG(3,("rename_internals_fsp: succeeded doing rename on %s -> %s\n",
5551 fsp->fsp_name,newname));
5553 rename_open_files(conn, lck, newname);
5555 notify_rename(conn, fsp->is_directory, fsp->fsp_name, newname);
5558 * A rename acts as a new file create w.r.t. allowing an initial delete
5559 * on close, probably because in Windows there is a new handle to the
5560 * new file. If initial delete on close was requested but not
5561 * originally set, we need to set it here. This is probably not 100% correct,
5562 * but will work for the CIFSFS client which in non-posix mode
5563 * depends on these semantics. JRA.
5566 set_allow_initial_delete_on_close(lck, fsp, True);
5568 if (create_options & FILE_DELETE_ON_CLOSE) {
5569 status = can_set_delete_on_close(fsp, True, 0);
5571 if (NT_STATUS_IS_OK(status)) {
5572 /* Note that here we set the *inital* delete on close flag,
5573 * not the regular one. The magic gets handled in close. */
5574 fsp->initial_delete_on_close = True;
5578 return NT_STATUS_OK;
5583 if (errno == ENOTDIR || errno == EISDIR) {
5584 status = NT_STATUS_OBJECT_NAME_COLLISION;
5586 status = map_nt_error_from_unix(errno);
5589 DEBUG(3,("rename_internals_fsp: Error %s rename %s -> %s\n",
5590 nt_errstr(status), fsp->fsp_name,newname));
5595 /****************************************************************************
5596 The guts of the rename command, split out so it may be called by the NT SMB
5598 ****************************************************************************/
5600 NTSTATUS rename_internals(TALLOC_CTX *ctx,
5601 connection_struct *conn,
5602 struct smb_request *req,
5603 const char *name_in,
5604 const char *newname_in,
5606 bool replace_if_exists,
5610 char *directory = NULL;
5612 char *last_component_src = NULL;
5613 char *last_component_dest = NULL;
5615 char *newname = NULL;
5618 NTSTATUS status = NT_STATUS_OK;
5619 SMB_STRUCT_STAT sbuf1, sbuf2;
5620 struct smb_Dir *dir_hnd = NULL;
5627 status = unix_convert(ctx, conn, name_in, src_has_wild, &name,
5628 &last_component_src, &sbuf1);
5629 if (!NT_STATUS_IS_OK(status)) {
5633 status = unix_convert(ctx, conn, newname_in, dest_has_wild, &newname,
5634 &last_component_dest, &sbuf2);
5635 if (!NT_STATUS_IS_OK(status)) {
5640 * Split the old name into directory and last component
5641 * strings. Note that unix_convert may have stripped off a
5642 * leading ./ from both name and newname if the rename is
5643 * at the root of the share. We need to make sure either both
5644 * name and newname contain a / character or neither of them do
5645 * as this is checked in resolve_wildcards().
5648 p = strrchr_m(name,'/');
5650 directory = talloc_strdup(ctx, ".");
5652 return NT_STATUS_NO_MEMORY;
5657 directory = talloc_strdup(ctx, name);
5659 return NT_STATUS_NO_MEMORY;
5662 *p = '/'; /* Replace needed for exceptional test below. */
5666 * We should only check the mangled cache
5667 * here if unix_convert failed. This means
5668 * that the path in 'mask' doesn't exist
5669 * on the file system and so we need to look
5670 * for a possible mangle. This patch from
5671 * Tine Smukavec <valentin.smukavec@hermes.si>.
5674 if (!VALID_STAT(sbuf1) && mangle_is_mangled(mask, conn->params)) {
5675 char *new_mask = NULL;
5676 mangle_lookup_name_from_8_3(ctx,
5685 if (!src_has_wild) {
5689 * No wildcards - just process the one file.
5691 bool is_short_name = mangle_is_8_3(name, True, conn->params);
5693 /* Add a terminating '/' to the directory name. */
5694 directory = talloc_asprintf_append(directory,
5698 return NT_STATUS_NO_MEMORY;
5701 /* Ensure newname contains a '/' also */
5702 if(strrchr_m(newname,'/') == 0) {
5703 newname = talloc_asprintf(ctx,
5707 return NT_STATUS_NO_MEMORY;
5711 DEBUG(3, ("rename_internals: case_sensitive = %d, "
5712 "case_preserve = %d, short case preserve = %d, "
5713 "directory = %s, newname = %s, "
5714 "last_component_dest = %s, is_8_3 = %d\n",
5715 conn->case_sensitive, conn->case_preserve,
5716 conn->short_case_preserve, directory,
5717 newname, last_component_dest, is_short_name));
5719 /* The dest name still may have wildcards. */
5720 if (dest_has_wild) {
5721 char *mod_newname = NULL;
5722 if (!resolve_wildcards(ctx,
5723 directory,newname,&mod_newname)) {
5724 DEBUG(6, ("rename_internals: resolve_wildcards "
5728 return NT_STATUS_NO_MEMORY;
5730 newname = mod_newname;
5734 SMB_VFS_STAT(conn, directory, &sbuf1);
5736 status = S_ISDIR(sbuf1.st_mode) ?
5737 open_directory(conn, req, directory, &sbuf1,
5739 FILE_SHARE_READ|FILE_SHARE_WRITE,
5740 FILE_OPEN, 0, 0, NULL,
5742 : open_file_ntcreate(conn, req, directory, &sbuf1,
5744 FILE_SHARE_READ|FILE_SHARE_WRITE,
5745 FILE_OPEN, 0, 0, 0, NULL,
5748 if (!NT_STATUS_IS_OK(status)) {
5749 DEBUG(3, ("Could not open rename source %s: %s\n",
5750 directory, nt_errstr(status)));
5754 status = rename_internals_fsp(conn, fsp, newname,
5755 last_component_dest,
5756 attrs, replace_if_exists);
5758 close_file(fsp, NORMAL_CLOSE);
5760 DEBUG(3, ("rename_internals: Error %s rename %s -> %s\n",
5761 nt_errstr(status), directory,newname));
5767 * Wildcards - process each file that matches.
5769 if (strequal(mask,"????????.???")) {
5774 status = check_name(conn, directory);
5775 if (!NT_STATUS_IS_OK(status)) {
5779 dir_hnd = OpenDir(conn, directory, mask, attrs);
5780 if (dir_hnd == NULL) {
5781 return map_nt_error_from_unix(errno);
5784 status = NT_STATUS_NO_SUCH_FILE;
5786 * Was status = NT_STATUS_OBJECT_NAME_NOT_FOUND;
5787 * - gentest fix. JRA
5790 while ((dname = ReadDirName(dir_hnd, &offset))) {
5791 files_struct *fsp = NULL;
5793 char *destname = NULL;
5794 bool sysdir_entry = False;
5796 /* Quick check for "." and ".." */
5797 if (ISDOT(dname) || ISDOTDOT(dname)) {
5799 sysdir_entry = True;
5805 if (!is_visible_file(conn, directory, dname, &sbuf1, False)) {
5809 if(!mask_match(dname, mask, conn->case_sensitive)) {
5814 status = NT_STATUS_OBJECT_NAME_INVALID;
5818 fname = talloc_asprintf(ctx,
5823 return NT_STATUS_NO_MEMORY;
5826 if (!resolve_wildcards(ctx,
5827 fname,newname,&destname)) {
5828 DEBUG(6, ("resolve_wildcards %s %s failed\n",
5834 return NT_STATUS_NO_MEMORY;
5838 SMB_VFS_STAT(conn, fname, &sbuf1);
5840 status = S_ISDIR(sbuf1.st_mode) ?
5841 open_directory(conn, req, fname, &sbuf1,
5843 FILE_SHARE_READ|FILE_SHARE_WRITE,
5844 FILE_OPEN, 0, 0, NULL,
5846 : open_file_ntcreate(conn, req, fname, &sbuf1,
5848 FILE_SHARE_READ|FILE_SHARE_WRITE,
5849 FILE_OPEN, 0, 0, 0, NULL,
5852 if (!NT_STATUS_IS_OK(status)) {
5853 DEBUG(3,("rename_internals: open_file_ntcreate "
5854 "returned %s rename %s -> %s\n",
5855 nt_errstr(status), directory, newname));
5859 status = rename_internals_fsp(conn, fsp, destname, dname,
5860 attrs, replace_if_exists);
5862 close_file(fsp, NORMAL_CLOSE);
5864 if (!NT_STATUS_IS_OK(status)) {
5865 DEBUG(3, ("rename_internals_fsp returned %s for "
5866 "rename %s -> %s\n", nt_errstr(status),
5867 directory, newname));
5873 DEBUG(3,("rename_internals: doing rename on %s -> "
5874 "%s\n",fname,destname));
5877 TALLOC_FREE(destname);
5881 if (count == 0 && NT_STATUS_IS_OK(status)) {
5882 status = map_nt_error_from_unix(errno);
5888 /****************************************************************************
5890 ****************************************************************************/
5892 void reply_mv(connection_struct *conn, struct smb_request *req)
5895 char *newname = NULL;
5899 bool src_has_wcard = False;
5900 bool dest_has_wcard = False;
5901 TALLOC_CTX *ctx = talloc_tos();
5903 START_PROFILE(SMBmv);
5906 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
5911 attrs = SVAL(req->inbuf,smb_vwv0);
5913 p = smb_buf(req->inbuf) + 1;
5914 p += srvstr_get_path_wcard(ctx, (char *)req->inbuf, req->flags2, &name, p,
5915 0, STR_TERMINATE, &status,
5917 if (!NT_STATUS_IS_OK(status)) {
5918 reply_nterror(req, status);
5923 p += srvstr_get_path_wcard(ctx, (char *)req->inbuf, req->flags2, &newname, p,
5924 0, STR_TERMINATE, &status,
5926 if (!NT_STATUS_IS_OK(status)) {
5927 reply_nterror(req, status);
5932 status = resolve_dfspath_wcard(ctx, conn,
5933 req->flags2 & FLAGS2_DFS_PATHNAMES,
5937 if (!NT_STATUS_IS_OK(status)) {
5938 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
5939 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
5940 ERRSRV, ERRbadpath);
5944 reply_nterror(req, status);
5949 status = resolve_dfspath_wcard(ctx, conn,
5950 req->flags2 & FLAGS2_DFS_PATHNAMES,
5954 if (!NT_STATUS_IS_OK(status)) {
5955 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
5956 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
5957 ERRSRV, ERRbadpath);
5961 reply_nterror(req, status);
5966 DEBUG(3,("reply_mv : %s -> %s\n",name,newname));
5968 status = rename_internals(ctx, conn, req, name, newname, attrs, False,
5969 src_has_wcard, dest_has_wcard);
5970 if (!NT_STATUS_IS_OK(status)) {
5971 if (open_was_deferred(req->mid)) {
5972 /* We have re-scheduled this call. */
5976 reply_nterror(req, status);
5981 reply_outbuf(req, 0, 0);
5987 /*******************************************************************
5988 Copy a file as part of a reply_copy.
5989 ******************************************************************/
5992 * TODO: check error codes on all callers
5995 NTSTATUS copy_file(TALLOC_CTX *ctx,
5996 connection_struct *conn,
6001 bool target_is_directory)
6003 SMB_STRUCT_STAT src_sbuf, sbuf2;
6005 files_struct *fsp1,*fsp2;
6008 uint32 new_create_disposition;
6011 dest = talloc_strdup(ctx, dest1);
6013 return NT_STATUS_NO_MEMORY;
6015 if (target_is_directory) {
6016 const char *p = strrchr_m(src,'/');
6022 dest = talloc_asprintf_append(dest,
6026 return NT_STATUS_NO_MEMORY;
6030 if (!vfs_file_exist(conn,src,&src_sbuf)) {
6032 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
6035 if (!target_is_directory && count) {
6036 new_create_disposition = FILE_OPEN;
6038 if (!map_open_params_to_ntcreate(dest1,0,ofun,
6039 NULL, NULL, &new_create_disposition, NULL)) {
6041 return NT_STATUS_INVALID_PARAMETER;
6045 status = open_file_ntcreate(conn, NULL, src, &src_sbuf,
6047 FILE_SHARE_READ|FILE_SHARE_WRITE,
6050 FILE_ATTRIBUTE_NORMAL,
6054 if (!NT_STATUS_IS_OK(status)) {
6059 dosattrs = dos_mode(conn, src, &src_sbuf);
6060 if (SMB_VFS_STAT(conn,dest,&sbuf2) == -1) {
6061 ZERO_STRUCTP(&sbuf2);
6064 status = open_file_ntcreate(conn, NULL, dest, &sbuf2,
6066 FILE_SHARE_READ|FILE_SHARE_WRITE,
6067 new_create_disposition,
6075 if (!NT_STATUS_IS_OK(status)) {
6076 close_file(fsp1,ERROR_CLOSE);
6080 if ((ofun&3) == 1) {
6081 if(SMB_VFS_LSEEK(fsp2,fsp2->fh->fd,0,SEEK_END) == -1) {
6082 DEBUG(0,("copy_file: error - vfs lseek returned error %s\n", strerror(errno) ));
6084 * Stop the copy from occurring.
6087 src_sbuf.st_size = 0;
6091 if (src_sbuf.st_size) {
6092 ret = vfs_transfer_file(fsp1, fsp2, src_sbuf.st_size);
6095 close_file(fsp1,NORMAL_CLOSE);
6097 /* Ensure the modtime is set correctly on the destination file. */
6098 fsp_set_pending_modtime( fsp2, get_mtimespec(&src_sbuf));
6101 * As we are opening fsp1 read-only we only expect
6102 * an error on close on fsp2 if we are out of space.
6103 * Thus we don't look at the error return from the
6106 status = close_file(fsp2,NORMAL_CLOSE);
6108 if (!NT_STATUS_IS_OK(status)) {
6112 if (ret != (SMB_OFF_T)src_sbuf.st_size) {
6113 return NT_STATUS_DISK_FULL;
6116 return NT_STATUS_OK;
6119 /****************************************************************************
6120 Reply to a file copy.
6121 ****************************************************************************/
6123 void reply_copy(connection_struct *conn, struct smb_request *req)
6126 char *newname = NULL;
6127 char *directory = NULL;
6131 int error = ERRnoaccess;
6136 bool target_is_directory=False;
6137 bool source_has_wild = False;
6138 bool dest_has_wild = False;
6139 SMB_STRUCT_STAT sbuf1, sbuf2;
6141 TALLOC_CTX *ctx = talloc_tos();
6143 START_PROFILE(SMBcopy);
6146 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
6147 END_PROFILE(SMBcopy);
6151 tid2 = SVAL(req->inbuf,smb_vwv0);
6152 ofun = SVAL(req->inbuf,smb_vwv1);
6153 flags = SVAL(req->inbuf,smb_vwv2);
6155 p = smb_buf(req->inbuf);
6156 p += srvstr_get_path_wcard(ctx, (char *)req->inbuf, req->flags2, &name, p,
6157 0, STR_TERMINATE, &status,
6159 if (!NT_STATUS_IS_OK(status)) {
6160 reply_nterror(req, status);
6161 END_PROFILE(SMBcopy);
6164 p += srvstr_get_path_wcard(ctx, (char *)req->inbuf, req->flags2, &newname, p,
6165 0, STR_TERMINATE, &status,
6167 if (!NT_STATUS_IS_OK(status)) {
6168 reply_nterror(req, status);
6169 END_PROFILE(SMBcopy);
6173 DEBUG(3,("reply_copy : %s -> %s\n",name,newname));
6175 if (tid2 != conn->cnum) {
6176 /* can't currently handle inter share copies XXXX */
6177 DEBUG(3,("Rejecting inter-share copy\n"));
6178 reply_doserror(req, ERRSRV, ERRinvdevice);
6179 END_PROFILE(SMBcopy);
6183 status = resolve_dfspath_wcard(ctx, conn,
6184 req->flags2 & FLAGS2_DFS_PATHNAMES,
6188 if (!NT_STATUS_IS_OK(status)) {
6189 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
6190 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
6191 ERRSRV, ERRbadpath);
6192 END_PROFILE(SMBcopy);
6195 reply_nterror(req, status);
6196 END_PROFILE(SMBcopy);
6200 status = resolve_dfspath_wcard(ctx, conn,
6201 req->flags2 & FLAGS2_DFS_PATHNAMES,
6205 if (!NT_STATUS_IS_OK(status)) {
6206 if (NT_STATUS_EQUAL(status,NT_STATUS_PATH_NOT_COVERED)) {
6207 reply_botherror(req, NT_STATUS_PATH_NOT_COVERED,
6208 ERRSRV, ERRbadpath);
6209 END_PROFILE(SMBcopy);
6212 reply_nterror(req, status);
6213 END_PROFILE(SMBcopy);
6217 status = unix_convert(ctx, conn, name, source_has_wild,
6218 &name, NULL, &sbuf1);
6219 if (!NT_STATUS_IS_OK(status)) {
6220 reply_nterror(req, status);
6221 END_PROFILE(SMBcopy);
6225 status = unix_convert(ctx, conn, newname, dest_has_wild,
6226 &newname, NULL, &sbuf2);
6227 if (!NT_STATUS_IS_OK(status)) {
6228 reply_nterror(req, status);
6229 END_PROFILE(SMBcopy);
6233 target_is_directory = VALID_STAT_OF_DIR(sbuf2);
6235 if ((flags&1) && target_is_directory) {
6236 reply_doserror(req, ERRDOS, ERRbadfile);
6237 END_PROFILE(SMBcopy);
6241 if ((flags&2) && !target_is_directory) {
6242 reply_doserror(req, ERRDOS, ERRbadpath);
6243 END_PROFILE(SMBcopy);
6247 if ((flags&(1<<5)) && VALID_STAT_OF_DIR(sbuf1)) {
6248 /* wants a tree copy! XXXX */
6249 DEBUG(3,("Rejecting tree copy\n"));
6250 reply_doserror(req, ERRSRV, ERRerror);
6251 END_PROFILE(SMBcopy);
6255 p = strrchr_m(name,'/');
6257 directory = talloc_strdup(ctx, "./");
6259 reply_nterror(req, NT_STATUS_NO_MEMORY);
6260 END_PROFILE(SMBcopy);
6266 directory = talloc_strdup(ctx, name);
6268 reply_nterror(req, NT_STATUS_NO_MEMORY);
6269 END_PROFILE(SMBcopy);
6276 * We should only check the mangled cache
6277 * here if unix_convert failed. This means
6278 * that the path in 'mask' doesn't exist
6279 * on the file system and so we need to look
6280 * for a possible mangle. This patch from
6281 * Tine Smukavec <valentin.smukavec@hermes.si>.
6284 if (!VALID_STAT(sbuf1) && mangle_is_mangled(mask, conn->params)) {
6285 char *new_mask = NULL;
6286 mangle_lookup_name_from_8_3(ctx,
6295 if (!source_has_wild) {
6296 directory = talloc_asprintf_append(directory,
6299 if (dest_has_wild) {
6300 char *mod_newname = NULL;
6301 if (!resolve_wildcards(ctx,
6302 directory,newname,&mod_newname)) {
6303 reply_nterror(req, NT_STATUS_NO_MEMORY);
6304 END_PROFILE(SMBcopy);
6307 newname = mod_newname;
6310 status = check_name(conn, directory);
6311 if (!NT_STATUS_IS_OK(status)) {
6312 reply_nterror(req, status);
6313 END_PROFILE(SMBcopy);
6317 status = check_name(conn, newname);
6318 if (!NT_STATUS_IS_OK(status)) {
6319 reply_nterror(req, status);
6320 END_PROFILE(SMBcopy);
6324 status = copy_file(ctx,conn,directory,newname,ofun,
6325 count,target_is_directory);
6327 if(!NT_STATUS_IS_OK(status)) {
6328 reply_nterror(req, status);
6329 END_PROFILE(SMBcopy);
6335 struct smb_Dir *dir_hnd = NULL;
6336 const char *dname = NULL;
6339 if (strequal(mask,"????????.???")) {
6344 status = check_name(conn, directory);
6345 if (!NT_STATUS_IS_OK(status)) {
6346 reply_nterror(req, status);
6347 END_PROFILE(SMBcopy);
6351 dir_hnd = OpenDir(conn, directory, mask, 0);
6352 if (dir_hnd == NULL) {
6353 status = map_nt_error_from_unix(errno);
6354 reply_nterror(req, status);
6355 END_PROFILE(SMBcopy);
6361 while ((dname = ReadDirName(dir_hnd, &offset))) {
6362 char *destname = NULL;
6365 if (ISDOT(dname) || ISDOTDOT(dname)) {
6369 if (!is_visible_file(conn, directory, dname, &sbuf1, False)) {
6373 if(!mask_match(dname, mask, conn->case_sensitive)) {
6377 error = ERRnoaccess;
6378 fname = talloc_asprintf(ctx,
6383 reply_nterror(req, NT_STATUS_NO_MEMORY);
6384 END_PROFILE(SMBcopy);
6388 if (!resolve_wildcards(ctx,
6389 fname,newname,&destname)) {
6393 reply_nterror(req, NT_STATUS_NO_MEMORY);
6394 END_PROFILE(SMBcopy);
6398 status = check_name(conn, fname);
6399 if (!NT_STATUS_IS_OK(status)) {
6400 reply_nterror(req, status);
6401 END_PROFILE(SMBcopy);
6405 status = check_name(conn, destname);
6406 if (!NT_STATUS_IS_OK(status)) {
6407 reply_nterror(req, status);
6408 END_PROFILE(SMBcopy);
6412 DEBUG(3,("reply_copy : doing copy on %s -> %s\n",fname, destname));
6414 status = copy_file(ctx,conn,fname,destname,ofun,
6415 count,target_is_directory);
6416 if (NT_STATUS_IS_OK(status)) {
6420 TALLOC_FREE(destname);
6427 /* Error on close... */
6429 reply_unixerror(req, ERRHRD, ERRgeneral);
6430 END_PROFILE(SMBcopy);
6434 reply_doserror(req, ERRDOS, error);
6435 END_PROFILE(SMBcopy);
6439 reply_outbuf(req, 1, 0);
6440 SSVAL(req->outbuf,smb_vwv0,count);
6442 END_PROFILE(SMBcopy);
6447 #define DBGC_CLASS DBGC_LOCKING
6449 /****************************************************************************
6450 Get a lock pid, dealing with large count requests.
6451 ****************************************************************************/
6453 uint32 get_lock_pid( char *data, int data_offset, bool large_file_format)
6455 if(!large_file_format)
6456 return (uint32)SVAL(data,SMB_LPID_OFFSET(data_offset));
6458 return (uint32)SVAL(data,SMB_LARGE_LPID_OFFSET(data_offset));
6461 /****************************************************************************
6462 Get a lock count, dealing with large count requests.
6463 ****************************************************************************/
6465 SMB_BIG_UINT get_lock_count( char *data, int data_offset, bool large_file_format)
6467 SMB_BIG_UINT count = 0;
6469 if(!large_file_format) {
6470 count = (SMB_BIG_UINT)IVAL(data,SMB_LKLEN_OFFSET(data_offset));
6473 #if defined(HAVE_LONGLONG)
6474 count = (((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset))) << 32) |
6475 ((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(data_offset)));
6476 #else /* HAVE_LONGLONG */
6479 * NT4.x seems to be broken in that it sends large file (64 bit)
6480 * lockingX calls even if the CAP_LARGE_FILES was *not*
6481 * negotiated. For boxes without large unsigned ints truncate the
6482 * lock count by dropping the top 32 bits.
6485 if(IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset)) != 0) {
6486 DEBUG(3,("get_lock_count: truncating lock count (high)0x%x (low)0x%x to just low count.\n",
6487 (unsigned int)IVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset)),
6488 (unsigned int)IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(data_offset)) ));
6489 SIVAL(data,SMB_LARGE_LKLEN_OFFSET_HIGH(data_offset),0);
6492 count = (SMB_BIG_UINT)IVAL(data,SMB_LARGE_LKLEN_OFFSET_LOW(data_offset));
6493 #endif /* HAVE_LONGLONG */
6499 #if !defined(HAVE_LONGLONG)
6500 /****************************************************************************
6501 Pathetically try and map a 64 bit lock offset into 31 bits. I hate Windows :-).
6502 ****************************************************************************/
6504 static uint32 map_lock_offset(uint32 high, uint32 low)
6508 uint32 highcopy = high;
6511 * Try and find out how many significant bits there are in high.
6514 for(i = 0; highcopy; i++)
6518 * We use 31 bits not 32 here as POSIX
6519 * lock offsets may not be negative.
6522 mask = (~0) << (31 - i);
6525 return 0; /* Fail. */
6531 #endif /* !defined(HAVE_LONGLONG) */
6533 /****************************************************************************
6534 Get a lock offset, dealing with large offset requests.
6535 ****************************************************************************/
6537 SMB_BIG_UINT get_lock_offset( char *data, int data_offset, bool large_file_format, bool *err)
6539 SMB_BIG_UINT offset = 0;
6543 if(!large_file_format) {
6544 offset = (SMB_BIG_UINT)IVAL(data,SMB_LKOFF_OFFSET(data_offset));
6547 #if defined(HAVE_LONGLONG)
6548 offset = (((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset))) << 32) |
6549 ((SMB_BIG_UINT) IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset)));
6550 #else /* HAVE_LONGLONG */
6553 * NT4.x seems to be broken in that it sends large file (64 bit)
6554 * lockingX calls even if the CAP_LARGE_FILES was *not*
6555 * negotiated. For boxes without large unsigned ints mangle the
6556 * lock offset by mapping the top 32 bits onto the lower 32.
6559 if(IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset)) != 0) {
6560 uint32 low = IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset));
6561 uint32 high = IVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset));
6564 if((new_low = map_lock_offset(high, low)) == 0) {
6566 return (SMB_BIG_UINT)-1;
6569 DEBUG(3,("get_lock_offset: truncating lock offset (high)0x%x (low)0x%x to offset 0x%x.\n",
6570 (unsigned int)high, (unsigned int)low, (unsigned int)new_low ));
6571 SIVAL(data,SMB_LARGE_LKOFF_OFFSET_HIGH(data_offset),0);
6572 SIVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset),new_low);
6575 offset = (SMB_BIG_UINT)IVAL(data,SMB_LARGE_LKOFF_OFFSET_LOW(data_offset));
6576 #endif /* HAVE_LONGLONG */
6582 /****************************************************************************
6583 Reply to a lockingX request.
6584 ****************************************************************************/
6586 void reply_lockingX(connection_struct *conn, struct smb_request *req)
6589 unsigned char locktype;
6590 unsigned char oplocklevel;
6593 SMB_BIG_UINT count = 0, offset = 0;
6598 bool large_file_format;
6600 NTSTATUS status = NT_STATUS_UNSUCCESSFUL;
6602 START_PROFILE(SMBlockingX);
6605 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
6606 END_PROFILE(SMBlockingX);
6610 fsp = file_fsp(SVAL(req->inbuf,smb_vwv2));
6611 locktype = CVAL(req->inbuf,smb_vwv3);
6612 oplocklevel = CVAL(req->inbuf,smb_vwv3+1);
6613 num_ulocks = SVAL(req->inbuf,smb_vwv6);
6614 num_locks = SVAL(req->inbuf,smb_vwv7);
6615 lock_timeout = IVAL(req->inbuf,smb_vwv4);
6616 large_file_format = (locktype & LOCKING_ANDX_LARGE_FILES)?True:False;
6618 if (!check_fsp(conn, req, fsp, ¤t_user)) {
6619 END_PROFILE(SMBlockingX);
6623 data = smb_buf(req->inbuf);
6625 if (locktype & LOCKING_ANDX_CHANGE_LOCKTYPE) {
6626 /* we don't support these - and CANCEL_LOCK makes w2k
6627 and XP reboot so I don't really want to be
6628 compatible! (tridge) */
6629 reply_nterror(req, NT_STATUS_DOS(ERRDOS, ERRnoatomiclocks));
6630 END_PROFILE(SMBlockingX);
6634 /* Check if this is an oplock break on a file
6635 we have granted an oplock on.
6637 if ((locktype & LOCKING_ANDX_OPLOCK_RELEASE)) {
6638 /* Client can insist on breaking to none. */
6639 bool break_to_none = (oplocklevel == 0);
6642 DEBUG(5,("reply_lockingX: oplock break reply (%u) from client "
6643 "for fnum = %d\n", (unsigned int)oplocklevel,
6647 * Make sure we have granted an exclusive or batch oplock on
6651 if (fsp->oplock_type == 0) {
6653 /* The Samba4 nbench simulator doesn't understand
6654 the difference between break to level2 and break
6655 to none from level2 - it sends oplock break
6656 replies in both cases. Don't keep logging an error
6657 message here - just ignore it. JRA. */
6659 DEBUG(5,("reply_lockingX: Error : oplock break from "
6660 "client for fnum = %d (oplock=%d) and no "
6661 "oplock granted on this file (%s).\n",
6662 fsp->fnum, fsp->oplock_type, fsp->fsp_name));
6664 /* if this is a pure oplock break request then don't
6666 if (num_locks == 0 && num_ulocks == 0) {
6667 END_PROFILE(SMBlockingX);
6670 END_PROFILE(SMBlockingX);
6671 reply_doserror(req, ERRDOS, ERRlock);
6676 if ((fsp->sent_oplock_break == BREAK_TO_NONE_SENT) ||
6678 result = remove_oplock(fsp);
6680 result = downgrade_oplock(fsp);
6684 DEBUG(0, ("reply_lockingX: error in removing "
6685 "oplock on file %s\n", fsp->fsp_name));
6686 /* Hmmm. Is this panic justified? */
6687 smb_panic("internal tdb error");
6690 reply_to_oplock_break_requests(fsp);
6692 /* if this is a pure oplock break request then don't send a
6694 if (num_locks == 0 && num_ulocks == 0) {
6695 /* Sanity check - ensure a pure oplock break is not a
6697 if(CVAL(req->inbuf,smb_vwv0) != 0xff)
6698 DEBUG(0,("reply_lockingX: Error : pure oplock "
6699 "break is a chained %d request !\n",
6700 (unsigned int)CVAL(req->inbuf,
6702 END_PROFILE(SMBlockingX);
6708 * We do this check *after* we have checked this is not a oplock break
6709 * response message. JRA.
6712 release_level_2_oplocks_on_change(fsp);
6714 if (smb_buflen(req->inbuf) <
6715 (num_ulocks + num_locks) * (large_file_format ? 20 : 10)) {
6716 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
6717 END_PROFILE(SMBlockingX);
6721 /* Data now points at the beginning of the list
6722 of smb_unlkrng structs */
6723 for(i = 0; i < (int)num_ulocks; i++) {
6724 lock_pid = get_lock_pid( data, i, large_file_format);
6725 count = get_lock_count( data, i, large_file_format);
6726 offset = get_lock_offset( data, i, large_file_format, &err);
6729 * There is no error code marked "stupid client bug".... :-).
6732 END_PROFILE(SMBlockingX);
6733 reply_doserror(req, ERRDOS, ERRnoaccess);
6737 DEBUG(10,("reply_lockingX: unlock start=%.0f, len=%.0f for "
6738 "pid %u, file %s\n", (double)offset, (double)count,
6739 (unsigned int)lock_pid, fsp->fsp_name ));
6741 status = do_unlock(smbd_messaging_context(),
6748 if (NT_STATUS_V(status)) {
6749 END_PROFILE(SMBlockingX);
6750 reply_nterror(req, status);
6755 /* Setup the timeout in seconds. */
6757 if (!lp_blocking_locks(SNUM(conn))) {
6761 /* Now do any requested locks */
6762 data += ((large_file_format ? 20 : 10)*num_ulocks);
6764 /* Data now points at the beginning of the list
6765 of smb_lkrng structs */
6767 for(i = 0; i < (int)num_locks; i++) {
6768 enum brl_type lock_type = ((locktype & LOCKING_ANDX_SHARED_LOCK) ?
6769 READ_LOCK:WRITE_LOCK);
6770 lock_pid = get_lock_pid( data, i, large_file_format);
6771 count = get_lock_count( data, i, large_file_format);
6772 offset = get_lock_offset( data, i, large_file_format, &err);
6775 * There is no error code marked "stupid client bug".... :-).
6778 END_PROFILE(SMBlockingX);
6779 reply_doserror(req, ERRDOS, ERRnoaccess);
6783 DEBUG(10,("reply_lockingX: lock start=%.0f, len=%.0f for pid "
6784 "%u, file %s timeout = %d\n", (double)offset,
6785 (double)count, (unsigned int)lock_pid,
6786 fsp->fsp_name, (int)lock_timeout ));
6788 if (locktype & LOCKING_ANDX_CANCEL_LOCK) {
6789 if (lp_blocking_locks(SNUM(conn))) {
6791 /* Schedule a message to ourselves to
6792 remove the blocking lock record and
6793 return the right error. */
6795 if (!blocking_lock_cancel(fsp,
6801 NT_STATUS_FILE_LOCK_CONFLICT)) {
6802 END_PROFILE(SMBlockingX);
6807 ERRcancelviolation));
6811 /* Remove a matching pending lock. */
6812 status = do_lock_cancel(fsp,
6818 bool blocking_lock = lock_timeout ? True : False;
6819 bool defer_lock = False;
6820 struct byte_range_lock *br_lck;
6821 uint32 block_smbpid;
6823 br_lck = do_lock(smbd_messaging_context(),
6834 if (br_lck && blocking_lock && ERROR_WAS_LOCK_DENIED(status)) {
6835 /* Windows internal resolution for blocking locks seems
6836 to be about 200ms... Don't wait for less than that. JRA. */
6837 if (lock_timeout != -1 && lock_timeout < lp_lock_spin_time()) {
6838 lock_timeout = lp_lock_spin_time();
6843 /* This heuristic seems to match W2K3 very well. If a
6844 lock sent with timeout of zero would fail with NT_STATUS_FILE_LOCK_CONFLICT
6845 it pretends we asked for a timeout of between 150 - 300 milliseconds as
6846 far as I can tell. Replacement for do_lock_spin(). JRA. */
6848 if (br_lck && lp_blocking_locks(SNUM(conn)) && !blocking_lock &&
6849 NT_STATUS_EQUAL((status), NT_STATUS_FILE_LOCK_CONFLICT)) {
6851 lock_timeout = lp_lock_spin_time();
6854 if (br_lck && defer_lock) {
6856 * A blocking lock was requested. Package up
6857 * this smb into a queued request and push it
6858 * onto the blocking lock queue.
6860 if(push_blocking_lock_request(br_lck,
6862 smb_len(req->inbuf)+4,
6872 TALLOC_FREE(br_lck);
6873 END_PROFILE(SMBlockingX);
6878 TALLOC_FREE(br_lck);
6881 if (NT_STATUS_V(status)) {
6882 END_PROFILE(SMBlockingX);
6883 reply_nterror(req, status);
6888 /* If any of the above locks failed, then we must unlock
6889 all of the previous locks (X/Open spec). */
6891 if (!(locktype & LOCKING_ANDX_CANCEL_LOCK) &&
6895 * Ensure we don't do a remove on the lock that just failed,
6896 * as under POSIX rules, if we have a lock already there, we
6897 * will delete it (and we shouldn't) .....
6899 for(i--; i >= 0; i--) {
6900 lock_pid = get_lock_pid( data, i, large_file_format);
6901 count = get_lock_count( data, i, large_file_format);
6902 offset = get_lock_offset( data, i, large_file_format,
6906 * There is no error code marked "stupid client
6910 END_PROFILE(SMBlockingX);
6911 reply_doserror(req, ERRDOS, ERRnoaccess);
6915 do_unlock(smbd_messaging_context(),
6922 END_PROFILE(SMBlockingX);
6923 reply_nterror(req, status);
6927 reply_outbuf(req, 2, 0);
6929 DEBUG(3, ("lockingX fnum=%d type=%d num_locks=%d num_ulocks=%d\n",
6930 fsp->fnum, (unsigned int)locktype, num_locks, num_ulocks));
6932 END_PROFILE(SMBlockingX);
6937 #define DBGC_CLASS DBGC_ALL
6939 /****************************************************************************
6940 Reply to a SMBreadbmpx (read block multiplex) request.
6941 Always reply with an error, if someone has a platform really needs this,
6942 please contact vl@samba.org
6943 ****************************************************************************/
6945 void reply_readbmpx(connection_struct *conn, struct smb_request *req)
6947 START_PROFILE(SMBreadBmpx);
6948 reply_doserror(req, ERRSRV, ERRuseSTD);
6949 END_PROFILE(SMBreadBmpx);
6953 /****************************************************************************
6954 Reply to a SMBreadbs (read block multiplex secondary) request.
6955 Always reply with an error, if someone has a platform really needs this,
6956 please contact vl@samba.org
6957 ****************************************************************************/
6959 void reply_readbs(connection_struct *conn, struct smb_request *req)
6961 START_PROFILE(SMBreadBs);
6962 reply_doserror(req, ERRSRV, ERRuseSTD);
6963 END_PROFILE(SMBreadBs);
6967 /****************************************************************************
6968 Reply to a SMBsetattrE.
6969 ****************************************************************************/
6971 void reply_setattrE(connection_struct *conn, struct smb_request *req)
6973 struct timespec ts[2];
6976 START_PROFILE(SMBsetattrE);
6979 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
6980 END_PROFILE(SMBsetattrE);
6984 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
6986 if(!fsp || (fsp->conn != conn)) {
6987 reply_doserror(req, ERRDOS, ERRbadfid);
6988 END_PROFILE(SMBsetattrE);
6994 * Convert the DOS times into unix times. Ignore create
6995 * time as UNIX can't set this.
6998 ts[0] = convert_time_t_to_timespec(
6999 srv_make_unix_date2(req->inbuf+smb_vwv3)); /* atime. */
7000 ts[1] = convert_time_t_to_timespec(
7001 srv_make_unix_date2(req->inbuf+smb_vwv5)); /* mtime. */
7003 reply_outbuf(req, 0, 0);
7006 * Patch from Ray Frush <frush@engr.colostate.edu>
7007 * Sometimes times are sent as zero - ignore them.
7010 if (null_timespec(ts[0]) && null_timespec(ts[1])) {
7011 /* Ignore request */
7012 if( DEBUGLVL( 3 ) ) {
7013 dbgtext( "reply_setattrE fnum=%d ", fsp->fnum);
7014 dbgtext( "ignoring zero request - not setting timestamps of 0\n" );
7016 END_PROFILE(SMBsetattrE);
7018 } else if (!null_timespec(ts[0]) && null_timespec(ts[1])) {
7019 /* set modify time = to access time if modify time was unset */
7023 /* Set the date on this file */
7024 /* Should we set pending modtime here ? JRA */
7025 if(file_ntimes(conn, fsp->fsp_name, ts)) {
7026 reply_doserror(req, ERRDOS, ERRnoaccess);
7027 END_PROFILE(SMBsetattrE);
7031 DEBUG( 3, ( "reply_setattrE fnum=%d actime=%u modtime=%u\n",
7033 (unsigned int)ts[0].tv_sec,
7034 (unsigned int)ts[1].tv_sec));
7036 END_PROFILE(SMBsetattrE);
7041 /* Back from the dead for OS/2..... JRA. */
7043 /****************************************************************************
7044 Reply to a SMBwritebmpx (write block multiplex primary) request.
7045 Always reply with an error, if someone has a platform really needs this,
7046 please contact vl@samba.org
7047 ****************************************************************************/
7049 void reply_writebmpx(connection_struct *conn, struct smb_request *req)
7051 START_PROFILE(SMBwriteBmpx);
7052 reply_doserror(req, ERRSRV, ERRuseSTD);
7053 END_PROFILE(SMBwriteBmpx);
7057 /****************************************************************************
7058 Reply to a SMBwritebs (write block multiplex secondary) request.
7059 Always reply with an error, if someone has a platform really needs this,
7060 please contact vl@samba.org
7061 ****************************************************************************/
7063 void reply_writebs(connection_struct *conn, struct smb_request *req)
7065 START_PROFILE(SMBwriteBs);
7066 reply_doserror(req, ERRSRV, ERRuseSTD);
7067 END_PROFILE(SMBwriteBs);
7071 /****************************************************************************
7072 Reply to a SMBgetattrE.
7073 ****************************************************************************/
7075 void reply_getattrE(connection_struct *conn, struct smb_request *req)
7077 SMB_STRUCT_STAT sbuf;
7081 START_PROFILE(SMBgetattrE);
7084 reply_nterror(req, NT_STATUS_INVALID_PARAMETER);
7085 END_PROFILE(SMBgetattrE);
7089 fsp = file_fsp(SVAL(req->inbuf,smb_vwv0));
7091 if(!fsp || (fsp->conn != conn)) {
7092 reply_doserror(req, ERRDOS, ERRbadfid);
7093 END_PROFILE(SMBgetattrE);
7097 /* Do an fstat on this file */
7098 if(fsp_stat(fsp, &sbuf)) {
7099 reply_unixerror(req, ERRDOS, ERRnoaccess);
7100 END_PROFILE(SMBgetattrE);
7104 mode = dos_mode(conn,fsp->fsp_name,&sbuf);
7107 * Convert the times into dos times. Set create
7108 * date to be last modify date as UNIX doesn't save
7112 reply_outbuf(req, 11, 0);
7114 srv_put_dos_date2((char *)req->outbuf, smb_vwv0,
7115 get_create_time(&sbuf,
7116 lp_fake_dir_create_times(SNUM(conn))));
7117 srv_put_dos_date2((char *)req->outbuf, smb_vwv2, sbuf.st_atime);
7118 /* Should we check pending modtime here ? JRA */
7119 srv_put_dos_date2((char *)req->outbuf, smb_vwv4, sbuf.st_mtime);
7122 SIVAL(req->outbuf, smb_vwv6, 0);
7123 SIVAL(req->outbuf, smb_vwv8, 0);
7125 uint32 allocation_size = get_allocation_size(conn,fsp, &sbuf);
7126 SIVAL(req->outbuf, smb_vwv6, (uint32)sbuf.st_size);
7127 SIVAL(req->outbuf, smb_vwv8, allocation_size);
7129 SSVAL(req->outbuf,smb_vwv10, mode);
7131 DEBUG( 3, ( "reply_getattrE fnum=%d\n", fsp->fnum));
7133 END_PROFILE(SMBgetattrE);
git.samba.org / samba.git / blob