2 Unix SMB/CIFS implementation.
3 file opening and share modes
4 Copyright (C) Andrew Tridgell 1992-1998
5 Copyright (C) Jeremy Allison 2001-2004
6 Copyright (C) Volker Lendecke 2005
8 This program is free software; you can redistribute it and/or modify
9 it under the terms of the GNU General Public License as published by
10 the Free Software Foundation; either version 3 of the License, or
11 (at your option) any later version.
13 This program is distributed in the hope that it will be useful,
14 but WITHOUT ANY WARRANTY; without even the implied warranty of
15 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 GNU General Public License for more details.
18 You should have received a copy of the GNU General Public License
19 along with this program. If not, see <http://www.gnu.org/licenses/>.
23 #include "smbd/globals.h"
25 extern struct current_user current_user;
26 extern const struct generic_mapping file_generic_mapping;
28 struct deferred_open_record {
29 bool delayed_for_oplocks;
33 static NTSTATUS create_file_unixpath(connection_struct *conn,
34 struct smb_request *req,
35 struct smb_filename *smb_fname,
37 uint32_t share_access,
38 uint32_t create_disposition,
39 uint32_t create_options,
40 uint32_t file_attributes,
41 uint32_t oplock_request,
42 uint64_t allocation_size,
43 struct security_descriptor *sd,
44 struct ea_list *ea_list,
46 files_struct **result,
49 /****************************************************************************
50 SMB1 file varient of se_access_check. Never test FILE_READ_ATTRIBUTES.
51 ****************************************************************************/
53 NTSTATUS smb1_file_se_access_check(connection_struct *conn,
54 const struct security_descriptor *sd,
55 const NT_USER_TOKEN *token,
56 uint32_t access_desired,
57 uint32_t *access_granted)
61 if (conn->server_info->utok.uid == 0 || conn->admin_user) {
62 /* I'm sorry sir, I didn't know you were root... */
63 *access_granted = access_desired;
64 if (access_desired & SEC_FLAG_MAXIMUM_ALLOWED) {
65 *access_granted |= FILE_GENERIC_ALL;
70 return se_access_check(sd,
72 (access_desired & ~FILE_READ_ATTRIBUTES),
76 /****************************************************************************
77 Check if we have open rights.
78 ****************************************************************************/
80 NTSTATUS smbd_check_open_rights(struct connection_struct *conn,
81 const struct smb_filename *smb_fname,
83 uint32_t *access_granted)
85 /* Check if we have rights to open. */
87 struct security_descriptor *sd = NULL;
89 if ((access_mask & DELETE_ACCESS) && !lp_acl_check_permissions(SNUM(conn))) {
90 *access_granted = access_mask;
92 DEBUG(10,("smbd_check_open_rights: not checking ACL "
93 "on DELETE_ACCESS on file %s. Granting 0x%x\n",
94 smb_fname_str_dbg(smb_fname),
95 (unsigned int)*access_granted ));
99 status = SMB_VFS_GET_NT_ACL(conn, smb_fname->base_name,
100 (OWNER_SECURITY_INFORMATION |
101 GROUP_SECURITY_INFORMATION |
102 DACL_SECURITY_INFORMATION),&sd);
104 if (!NT_STATUS_IS_OK(status)) {
105 DEBUG(10, ("smbd_check_open_rights: Could not get acl "
107 smb_fname_str_dbg(smb_fname),
112 status = smb1_file_se_access_check(conn,
114 conn->server_info->ptok,
118 DEBUG(10,("smbd_check_open_rights: file %s requesting "
119 "0x%x returning 0x%x (%s)\n",
120 smb_fname_str_dbg(smb_fname),
121 (unsigned int)access_mask,
122 (unsigned int)*access_granted,
123 nt_errstr(status) ));
125 if (!NT_STATUS_IS_OK(status)) {
126 if (DEBUGLEVEL >= 10) {
127 DEBUG(10,("smbd_check_open_rights: acl for %s is:\n",
128 smb_fname_str_dbg(smb_fname) ));
129 NDR_PRINT_DEBUG(security_descriptor, sd);
138 /****************************************************************************
139 fd support routines - attempt to do a dos_open.
140 ****************************************************************************/
142 static NTSTATUS fd_open(struct connection_struct *conn,
147 struct smb_filename *smb_fname = fsp->fsp_name;
148 NTSTATUS status = NT_STATUS_OK;
152 * Never follow symlinks on a POSIX client. The
153 * client should be doing this.
156 if (fsp->posix_open || !lp_symlinks(SNUM(conn))) {
161 fsp->fh->fd = SMB_VFS_OPEN(conn, smb_fname, fsp, flags, mode);
162 if (fsp->fh->fd == -1) {
163 status = map_nt_error_from_unix(errno);
164 if (errno == EMFILE) {
165 static time_t last_warned = 0L;
167 if (time((time_t *) NULL) > last_warned) {
168 DEBUG(0,("Too many open files, unable "
169 "to open more! smbd's max "
171 lp_max_open_files()));
172 last_warned = time((time_t *) NULL);
178 DEBUG(10,("fd_open: name %s, flags = 0%o mode = 0%o, fd = %d. %s\n",
179 smb_fname_str_dbg(smb_fname), flags, (int)mode, fsp->fh->fd,
180 (fsp->fh->fd == -1) ? strerror(errno) : "" ));
185 /****************************************************************************
186 Close the file associated with a fsp.
187 ****************************************************************************/
189 NTSTATUS fd_close(files_struct *fsp)
193 if (fsp->fh->fd == -1) {
194 return NT_STATUS_OK; /* What we used to call a stat open. */
196 if (fsp->fh->ref_count > 1) {
197 return NT_STATUS_OK; /* Shared handle. Only close last reference. */
200 ret = SMB_VFS_CLOSE(fsp);
203 return map_nt_error_from_unix(errno);
208 /****************************************************************************
209 Change the ownership of a file to that of the parent directory.
210 Do this by fd if possible.
211 ****************************************************************************/
213 void change_file_owner_to_parent(connection_struct *conn,
214 const char *inherit_from_dir,
217 struct smb_filename *smb_fname_parent = NULL;
221 status = create_synthetic_smb_fname(talloc_tos(), inherit_from_dir,
222 NULL, NULL, &smb_fname_parent);
223 if (!NT_STATUS_IS_OK(status)) {
227 ret = SMB_VFS_STAT(conn, smb_fname_parent);
229 DEBUG(0,("change_file_owner_to_parent: failed to stat parent "
230 "directory %s. Error was %s\n",
231 smb_fname_str_dbg(smb_fname_parent),
237 ret = SMB_VFS_FCHOWN(fsp, smb_fname_parent->st.st_ex_uid, (gid_t)-1);
240 DEBUG(0,("change_file_owner_to_parent: failed to fchown "
241 "file %s to parent directory uid %u. Error "
242 "was %s\n", fsp_str_dbg(fsp),
243 (unsigned int)smb_fname_parent->st.st_ex_uid,
246 DEBUG(10,("change_file_owner_to_parent: changed new file %s to "
247 "parent directory uid %u.\n", fsp_str_dbg(fsp),
248 (unsigned int)smb_fname_parent->st.st_ex_uid));
250 /* Ensure the uid entry is updated. */
251 fsp->fsp_name->st.st_ex_uid = smb_fname_parent->st.st_ex_uid;
254 TALLOC_FREE(smb_fname_parent);
257 NTSTATUS change_dir_owner_to_parent(connection_struct *conn,
258 const char *inherit_from_dir,
260 SMB_STRUCT_STAT *psbuf)
262 struct smb_filename *smb_fname_parent = NULL;
263 struct smb_filename *smb_fname_cwd = NULL;
264 char *saved_dir = NULL;
265 TALLOC_CTX *ctx = talloc_tos();
266 NTSTATUS status = NT_STATUS_OK;
269 status = create_synthetic_smb_fname(ctx, inherit_from_dir, NULL, NULL,
271 if (!NT_STATUS_IS_OK(status)) {
275 ret = SMB_VFS_STAT(conn, smb_fname_parent);
277 status = map_nt_error_from_unix(errno);
278 DEBUG(0,("change_dir_owner_to_parent: failed to stat parent "
279 "directory %s. Error was %s\n",
280 smb_fname_str_dbg(smb_fname_parent),
285 /* We've already done an lstat into psbuf, and we know it's a
286 directory. If we can cd into the directory and the dev/ino
287 are the same then we can safely chown without races as
288 we're locking the directory in place by being in it. This
289 should work on any UNIX (thanks tridge :-). JRA.
292 saved_dir = vfs_GetWd(ctx,conn);
294 status = map_nt_error_from_unix(errno);
295 DEBUG(0,("change_dir_owner_to_parent: failed to get "
296 "current working directory. Error was %s\n",
301 /* Chdir into the new path. */
302 if (vfs_ChDir(conn, fname) == -1) {
303 status = map_nt_error_from_unix(errno);
304 DEBUG(0,("change_dir_owner_to_parent: failed to change "
305 "current working directory to %s. Error "
306 "was %s\n", fname, strerror(errno) ));
310 status = create_synthetic_smb_fname(ctx, ".", NULL, NULL,
312 if (!NT_STATUS_IS_OK(status)) {
316 ret = SMB_VFS_STAT(conn, smb_fname_cwd);
318 status = map_nt_error_from_unix(errno);
319 DEBUG(0,("change_dir_owner_to_parent: failed to stat "
320 "directory '.' (%s) Error was %s\n",
321 fname, strerror(errno)));
325 /* Ensure we're pointing at the same place. */
326 if (smb_fname_cwd->st.st_ex_dev != psbuf->st_ex_dev ||
327 smb_fname_cwd->st.st_ex_ino != psbuf->st_ex_ino) {
328 DEBUG(0,("change_dir_owner_to_parent: "
329 "device/inode on directory %s changed. "
330 "Refusing to chown !\n", fname ));
331 status = NT_STATUS_ACCESS_DENIED;
336 ret = SMB_VFS_CHOWN(conn, ".", smb_fname_parent->st.st_ex_uid,
340 status = map_nt_error_from_unix(errno);
341 DEBUG(10,("change_dir_owner_to_parent: failed to chown "
342 "directory %s to parent directory uid %u. "
343 "Error was %s\n", fname,
344 (unsigned int)smb_fname_parent->st.st_ex_uid,
349 DEBUG(10,("change_dir_owner_to_parent: changed ownership of new "
350 "directory %s to parent directory uid %u.\n",
351 fname, (unsigned int)smb_fname_parent->st.st_ex_uid ));
353 /* Ensure the uid entry is updated. */
354 psbuf->st_ex_uid = smb_fname_parent->st.st_ex_uid;
357 vfs_ChDir(conn,saved_dir);
359 TALLOC_FREE(smb_fname_parent);
360 TALLOC_FREE(smb_fname_cwd);
364 /****************************************************************************
366 ****************************************************************************/
368 static NTSTATUS open_file(files_struct *fsp,
369 connection_struct *conn,
370 struct smb_request *req,
371 const char *parent_dir,
374 uint32 access_mask, /* client requested access mask. */
375 uint32 open_access_mask) /* what we're actually using in the open. */
377 struct smb_filename *smb_fname = fsp->fsp_name;
378 NTSTATUS status = NT_STATUS_OK;
379 int accmode = (flags & O_ACCMODE);
380 int local_flags = flags;
381 bool file_existed = VALID_STAT(fsp->fsp_name->st);
382 bool file_created = false;
387 /* Check permissions */
390 * This code was changed after seeing a client open request
391 * containing the open mode of (DENY_WRITE/read-only) with
392 * the 'create if not exist' bit set. The previous code
393 * would fail to open the file read only on a read-only share
394 * as it was checking the flags parameter directly against O_RDONLY,
395 * this was failing as the flags parameter was set to O_RDONLY|O_CREAT.
399 if (!CAN_WRITE(conn)) {
400 /* It's a read-only share - fail if we wanted to write. */
401 if(accmode != O_RDONLY || (flags & O_TRUNC) || (flags & O_APPEND)) {
402 DEBUG(3,("Permission denied opening %s\n",
403 smb_fname_str_dbg(smb_fname)));
404 return NT_STATUS_ACCESS_DENIED;
405 } else if(flags & O_CREAT) {
406 /* We don't want to write - but we must make sure that
407 O_CREAT doesn't create the file if we have write
408 access into the directory.
410 flags &= ~(O_CREAT|O_EXCL);
411 local_flags &= ~(O_CREAT|O_EXCL);
416 * This little piece of insanity is inspired by the
417 * fact that an NT client can open a file for O_RDONLY,
418 * but set the create disposition to FILE_EXISTS_TRUNCATE.
419 * If the client *can* write to the file, then it expects to
420 * truncate the file, even though it is opening for readonly.
421 * Quicken uses this stupid trick in backup file creation...
422 * Thanks *greatly* to "David W. Chapman Jr." <dwcjr@inethouston.net>
423 * for helping track this one down. It didn't bite us in 2.0.x
424 * as we always opened files read-write in that release. JRA.
427 if ((accmode == O_RDONLY) && ((flags & O_TRUNC) == O_TRUNC)) {
428 DEBUG(10,("open_file: truncate requested on read-only open "
429 "for file %s\n", smb_fname_str_dbg(smb_fname)));
430 local_flags = (flags & ~O_ACCMODE)|O_RDWR;
433 if ((open_access_mask & (FILE_READ_DATA|FILE_WRITE_DATA|FILE_APPEND_DATA|FILE_EXECUTE)) ||
434 (!file_existed && (local_flags & O_CREAT)) ||
435 ((local_flags & O_TRUNC) == O_TRUNC) ) {
439 * We can't actually truncate here as the file may be locked.
440 * open_file_ntcreate will take care of the truncate later. JRA.
443 local_flags &= ~O_TRUNC;
445 #if defined(O_NONBLOCK) && defined(S_ISFIFO)
447 * We would block on opening a FIFO with no one else on the
448 * other end. Do what we used to do and add O_NONBLOCK to the
452 if (file_existed && S_ISFIFO(smb_fname->st.st_ex_mode)) {
453 local_flags |= O_NONBLOCK;
457 /* Don't create files with Microsoft wildcard characters. */
460 * wildcard characters are allowed in stream names
461 * only test the basefilename
463 wild = fsp->base_fsp->fsp_name->base_name;
465 wild = smb_fname->base_name;
467 if ((local_flags & O_CREAT) && !file_existed &&
469 return NT_STATUS_OBJECT_NAME_INVALID;
472 /* Actually do the open */
473 status = fd_open(conn, fsp, local_flags, unx_mode);
474 if (!NT_STATUS_IS_OK(status)) {
475 DEBUG(3,("Error opening file %s (%s) (local_flags=%d) "
476 "(flags=%d)\n", smb_fname_str_dbg(smb_fname),
477 nt_errstr(status),local_flags,flags));
481 if ((local_flags & O_CREAT) && !file_existed) {
486 fsp->fh->fd = -1; /* What we used to call a stat open. */
488 uint32_t access_granted = 0;
490 status = smbd_check_open_rights(conn,
494 if (!NT_STATUS_IS_OK(status)) {
495 if (NT_STATUS_EQUAL(status, NT_STATUS_ACCESS_DENIED)) {
497 * On NT_STATUS_ACCESS_DENIED, access_granted
498 * contains the denied bits.
501 if ((access_mask & FILE_WRITE_ATTRIBUTES) &&
502 (access_granted & FILE_WRITE_ATTRIBUTES) &&
503 (lp_map_readonly(SNUM(conn)) ||
504 lp_map_archive(SNUM(conn)) ||
505 lp_map_hidden(SNUM(conn)) ||
506 lp_map_system(SNUM(conn)))) {
507 access_granted &= ~FILE_WRITE_ATTRIBUTES;
509 DEBUG(10,("open_file: "
518 if ((access_mask & DELETE_ACCESS) &&
519 (access_granted & DELETE_ACCESS) &&
520 can_delete_file_in_directory(conn,
522 /* Were we trying to do a stat open
523 * for delete and didn't get DELETE
524 * access (only) ? Check if the
525 * directory allows DELETE_CHILD.
527 * http://blogs.msdn.com/oldnewthing/archive/2004/06/04/148426.aspx
530 access_granted &= ~DELETE_ACCESS;
532 DEBUG(10,("open_file: "
540 if (access_granted != 0) {
541 DEBUG(10,("open_file: Access "
548 } else if (NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND) &&
550 S_ISLNK(smb_fname->st.st_ex_mode)) {
551 /* This is a POSIX stat open for delete
552 * or rename on a symlink that points
554 DEBUG(10,("open_file: allowing POSIX "
555 "open on bad symlink %s\n",
559 DEBUG(10,("open_file: "
560 "smbd_check_open_rights on file "
562 smb_fname_str_dbg(smb_fname),
563 nt_errstr(status) ));
573 if (fsp->fh->fd == -1) {
574 ret = SMB_VFS_STAT(conn, smb_fname);
576 ret = SMB_VFS_FSTAT(fsp, &smb_fname->st);
577 /* If we have an fd, this stat should succeed. */
579 DEBUG(0,("Error doing fstat on open file %s "
581 smb_fname_str_dbg(smb_fname),
586 /* For a non-io open, this stat failing means file not found. JRA */
588 status = map_nt_error_from_unix(errno);
594 /* Do all inheritance work after we've
595 done a successful stat call and filled
596 in the stat struct in fsp->fsp_name. */
598 /* Inherit the ACL if required */
599 if (lp_inherit_perms(SNUM(conn))) {
600 inherit_access_posix_acl(conn, parent_dir,
601 smb_fname->base_name,
605 /* Change the owner if required. */
606 if (lp_inherit_owner(SNUM(conn))) {
607 change_file_owner_to_parent(conn, parent_dir,
611 notify_fname(conn, NOTIFY_ACTION_ADDED,
612 FILE_NOTIFY_CHANGE_FILE_NAME,
613 smb_fname->base_name);
618 * POSIX allows read-only opens of directories. We don't
619 * want to do this (we use a different code path for this)
620 * so catch a directory open and return an EISDIR. JRA.
623 if(S_ISDIR(smb_fname->st.st_ex_mode)) {
626 return NT_STATUS_FILE_IS_A_DIRECTORY;
629 fsp->mode = smb_fname->st.st_ex_mode;
630 fsp->file_id = vfs_file_id_from_sbuf(conn, &smb_fname->st);
631 fsp->vuid = req ? req->vuid : UID_FIELD_INVALID;
632 fsp->file_pid = req ? req->smbpid : 0;
633 fsp->can_lock = True;
634 fsp->can_read = (access_mask & (FILE_READ_DATA)) ? True : False;
635 if (!CAN_WRITE(conn)) {
636 fsp->can_write = False;
638 fsp->can_write = (access_mask & (FILE_WRITE_DATA | FILE_APPEND_DATA)) ?
641 fsp->print_file = False;
642 fsp->modified = False;
643 fsp->sent_oplock_break = NO_BREAK_SENT;
644 fsp->is_directory = False;
645 if (conn->aio_write_behind_list &&
646 is_in_path(smb_fname->base_name, conn->aio_write_behind_list,
647 conn->case_sensitive)) {
648 fsp->aio_write_behind = True;
651 fsp->wcp = NULL; /* Write cache pointer. */
653 DEBUG(2,("%s opened file %s read=%s write=%s (numopen=%d)\n",
654 conn->server_info->unix_name,
655 smb_fname_str_dbg(smb_fname),
656 BOOLSTR(fsp->can_read), BOOLSTR(fsp->can_write),
657 conn->num_files_open));
663 /*******************************************************************
664 Return True if the filename is one of the special executable types.
665 ********************************************************************/
667 bool is_executable(const char *fname)
669 if ((fname = strrchr_m(fname,'.'))) {
670 if (strequal(fname,".com") ||
671 strequal(fname,".dll") ||
672 strequal(fname,".exe") ||
673 strequal(fname,".sym")) {
680 /****************************************************************************
681 Check if we can open a file with a share mode.
682 Returns True if conflict, False if not.
683 ****************************************************************************/
685 static bool share_conflict(struct share_mode_entry *entry,
689 DEBUG(10,("share_conflict: entry->access_mask = 0x%x, "
690 "entry->share_access = 0x%x, "
691 "entry->private_options = 0x%x\n",
692 (unsigned int)entry->access_mask,
693 (unsigned int)entry->share_access,
694 (unsigned int)entry->private_options));
696 DEBUG(10,("share_conflict: access_mask = 0x%x, share_access = 0x%x\n",
697 (unsigned int)access_mask, (unsigned int)share_access));
699 if ((entry->access_mask & (FILE_WRITE_DATA|
703 DELETE_ACCESS)) == 0) {
704 DEBUG(10,("share_conflict: No conflict due to "
705 "entry->access_mask = 0x%x\n",
706 (unsigned int)entry->access_mask ));
710 if ((access_mask & (FILE_WRITE_DATA|
714 DELETE_ACCESS)) == 0) {
715 DEBUG(10,("share_conflict: No conflict due to "
716 "access_mask = 0x%x\n",
717 (unsigned int)access_mask ));
721 #if 1 /* JRA TEST - Superdebug. */
722 #define CHECK_MASK(num, am, right, sa, share) \
723 DEBUG(10,("share_conflict: [%d] am (0x%x) & right (0x%x) = 0x%x\n", \
724 (unsigned int)(num), (unsigned int)(am), \
725 (unsigned int)(right), (unsigned int)(am)&(right) )); \
726 DEBUG(10,("share_conflict: [%d] sa (0x%x) & share (0x%x) = 0x%x\n", \
727 (unsigned int)(num), (unsigned int)(sa), \
728 (unsigned int)(share), (unsigned int)(sa)&(share) )); \
729 if (((am) & (right)) && !((sa) & (share))) { \
730 DEBUG(10,("share_conflict: check %d conflict am = 0x%x, right = 0x%x, \
731 sa = 0x%x, share = 0x%x\n", (num), (unsigned int)(am), (unsigned int)(right), (unsigned int)(sa), \
732 (unsigned int)(share) )); \
736 #define CHECK_MASK(num, am, right, sa, share) \
737 if (((am) & (right)) && !((sa) & (share))) { \
738 DEBUG(10,("share_conflict: check %d conflict am = 0x%x, right = 0x%x, \
739 sa = 0x%x, share = 0x%x\n", (num), (unsigned int)(am), (unsigned int)(right), (unsigned int)(sa), \
740 (unsigned int)(share) )); \
745 CHECK_MASK(1, entry->access_mask, FILE_WRITE_DATA | FILE_APPEND_DATA,
746 share_access, FILE_SHARE_WRITE);
747 CHECK_MASK(2, access_mask, FILE_WRITE_DATA | FILE_APPEND_DATA,
748 entry->share_access, FILE_SHARE_WRITE);
750 CHECK_MASK(3, entry->access_mask, FILE_READ_DATA | FILE_EXECUTE,
751 share_access, FILE_SHARE_READ);
752 CHECK_MASK(4, access_mask, FILE_READ_DATA | FILE_EXECUTE,
753 entry->share_access, FILE_SHARE_READ);
755 CHECK_MASK(5, entry->access_mask, DELETE_ACCESS,
756 share_access, FILE_SHARE_DELETE);
757 CHECK_MASK(6, access_mask, DELETE_ACCESS,
758 entry->share_access, FILE_SHARE_DELETE);
760 DEBUG(10,("share_conflict: No conflict.\n"));
764 #if defined(DEVELOPER)
765 static void validate_my_share_entries(int num,
766 struct share_mode_entry *share_entry)
770 if (!procid_is_me(&share_entry->pid)) {
774 if (is_deferred_open_entry(share_entry) &&
775 !open_was_deferred(share_entry->op_mid)) {
776 char *str = talloc_asprintf(talloc_tos(),
777 "Got a deferred entry without a request: "
779 share_mode_str(talloc_tos(), num, share_entry));
783 if (!is_valid_share_mode_entry(share_entry)) {
787 fsp = file_find_dif(share_entry->id,
788 share_entry->share_file_id);
790 DEBUG(0,("validate_my_share_entries: PANIC : %s\n",
791 share_mode_str(talloc_tos(), num, share_entry) ));
792 smb_panic("validate_my_share_entries: Cannot match a "
793 "share entry with an open file\n");
796 if (is_deferred_open_entry(share_entry) ||
797 is_unused_share_mode_entry(share_entry)) {
801 if ((share_entry->op_type == NO_OPLOCK) &&
802 (fsp->oplock_type == FAKE_LEVEL_II_OPLOCK)) {
803 /* Someone has already written to it, but I haven't yet
808 if (((uint16)fsp->oplock_type) != share_entry->op_type) {
817 DEBUG(0,("validate_my_share_entries: PANIC : %s\n",
818 share_mode_str(talloc_tos(), num, share_entry) ));
819 str = talloc_asprintf(talloc_tos(),
820 "validate_my_share_entries: "
821 "file %s, oplock_type = 0x%x, op_type = 0x%x\n",
822 fsp->fsp_name->base_name,
823 (unsigned int)fsp->oplock_type,
824 (unsigned int)share_entry->op_type );
830 bool is_stat_open(uint32 access_mask)
832 return (access_mask &&
833 ((access_mask & ~(SYNCHRONIZE_ACCESS| FILE_READ_ATTRIBUTES|
834 FILE_WRITE_ATTRIBUTES))==0) &&
835 ((access_mask & (SYNCHRONIZE_ACCESS|FILE_READ_ATTRIBUTES|
836 FILE_WRITE_ATTRIBUTES)) != 0));
839 /****************************************************************************
840 Deal with share modes
841 Invarient: Share mode must be locked on entry and exit.
842 Returns -1 on error, or number of share modes on success (may be zero).
843 ****************************************************************************/
845 static NTSTATUS open_mode_check(connection_struct *conn,
846 struct share_mode_lock *lck,
849 uint32 create_options,
854 if(lck->num_share_modes == 0) {
858 *file_existed = True;
860 /* A delete on close prohibits everything */
862 if (lck->delete_on_close) {
863 return NT_STATUS_DELETE_PENDING;
866 if (is_stat_open(access_mask)) {
867 /* Stat open that doesn't trigger oplock breaks or share mode
868 * checks... ! JRA. */
873 * Check if the share modes will give us access.
876 #if defined(DEVELOPER)
877 for(i = 0; i < lck->num_share_modes; i++) {
878 validate_my_share_entries(i, &lck->share_modes[i]);
882 if (!lp_share_modes(SNUM(conn))) {
886 /* Now we check the share modes, after any oplock breaks. */
887 for(i = 0; i < lck->num_share_modes; i++) {
889 if (!is_valid_share_mode_entry(&lck->share_modes[i])) {
893 /* someone else has a share lock on it, check to see if we can
895 if (share_conflict(&lck->share_modes[i],
896 access_mask, share_access)) {
897 return NT_STATUS_SHARING_VIOLATION;
904 static bool is_delete_request(files_struct *fsp) {
905 return ((fsp->access_mask == DELETE_ACCESS) &&
906 (fsp->oplock_type == NO_OPLOCK));
910 * Send a break message to the oplock holder and delay the open for
914 static NTSTATUS send_break_message(files_struct *fsp,
915 struct share_mode_entry *exclusive,
920 char msg[MSG_SMB_SHARE_MODE_ENTRY_SIZE];
922 DEBUG(10, ("Sending break request to PID %s\n",
923 procid_str_static(&exclusive->pid)));
924 exclusive->op_mid = mid;
926 /* Create the message. */
927 share_mode_entry_to_message(msg, exclusive);
929 /* Add in the FORCE_OPLOCK_BREAK_TO_NONE bit in the message if set. We
930 don't want this set in the share mode struct pointed to by lck. */
932 if (oplock_request & FORCE_OPLOCK_BREAK_TO_NONE) {
933 SSVAL(msg,6,exclusive->op_type | FORCE_OPLOCK_BREAK_TO_NONE);
936 status = messaging_send_buf(smbd_messaging_context(), exclusive->pid,
937 MSG_SMB_BREAK_REQUEST,
939 MSG_SMB_SHARE_MODE_ENTRY_SIZE);
940 if (!NT_STATUS_IS_OK(status)) {
941 DEBUG(3, ("Could not send oplock break message: %s\n",
949 * 1) No files open at all or internal open: Grant whatever the client wants.
951 * 2) Exclusive (or batch) oplock around: If the requested access is a delete
952 * request, break if the oplock around is a batch oplock. If it's another
953 * requested access type, break.
955 * 3) Only level2 around: Grant level2 and do nothing else.
958 static bool delay_for_oplocks(struct share_mode_lock *lck,
965 struct share_mode_entry *exclusive = NULL;
966 bool valid_entry = false;
967 bool have_level2 = false;
968 bool have_a_none_oplock = false;
969 bool allow_level2 = (global_client_caps & CAP_LEVEL_II_OPLOCKS) &&
970 lp_level2_oplocks(SNUM(fsp->conn));
972 if (oplock_request & INTERNAL_OPEN_ONLY) {
973 fsp->oplock_type = NO_OPLOCK;
976 if ((oplock_request & INTERNAL_OPEN_ONLY) || is_stat_open(fsp->access_mask)) {
980 for (i=0; i<lck->num_share_modes; i++) {
982 if (!is_valid_share_mode_entry(&lck->share_modes[i])) {
986 /* At least one entry is not an invalid or deferred entry. */
989 if (pass_number == 1) {
990 if (BATCH_OPLOCK_TYPE(lck->share_modes[i].op_type)) {
991 SMB_ASSERT(exclusive == NULL);
992 exclusive = &lck->share_modes[i];
995 if (EXCLUSIVE_OPLOCK_TYPE(lck->share_modes[i].op_type)) {
996 SMB_ASSERT(exclusive == NULL);
997 exclusive = &lck->share_modes[i];
1001 if (LEVEL_II_OPLOCK_TYPE(lck->share_modes[i].op_type)) {
1002 SMB_ASSERT(exclusive == NULL);
1006 if (lck->share_modes[i].op_type == NO_OPLOCK) {
1007 have_a_none_oplock = true;
1011 if (exclusive != NULL) { /* Found an exclusive oplock */
1012 bool delay_it = is_delete_request(fsp) ?
1013 BATCH_OPLOCK_TYPE(exclusive->op_type) : true;
1014 SMB_ASSERT(!have_level2);
1016 send_break_message(fsp, exclusive, mid, oplock_request);
1022 * Match what was requested (fsp->oplock_type) with
1023 * what was found in the existing share modes.
1027 /* All entries are placeholders or deferred.
1028 * Directly grant whatever the client wants. */
1029 if (fsp->oplock_type == NO_OPLOCK) {
1030 /* Store a level2 oplock, but don't tell the client */
1031 fsp->oplock_type = FAKE_LEVEL_II_OPLOCK;
1033 } else if (have_a_none_oplock) {
1034 fsp->oplock_type = NO_OPLOCK;
1035 } else if (have_level2) {
1036 if (fsp->oplock_type == NO_OPLOCK ||
1037 fsp->oplock_type == FAKE_LEVEL_II_OPLOCK) {
1038 /* Store a level2 oplock, but don't tell the client */
1039 fsp->oplock_type = FAKE_LEVEL_II_OPLOCK;
1041 fsp->oplock_type = LEVEL_II_OPLOCK;
1044 /* This case can never happen. */
1049 * Don't grant level2 to clients that don't want them
1050 * or if we've turned them off.
1052 if (fsp->oplock_type == LEVEL_II_OPLOCK && !allow_level2) {
1053 fsp->oplock_type = FAKE_LEVEL_II_OPLOCK;
1056 DEBUG(10,("delay_for_oplocks: oplock type 0x%x on file %s\n",
1057 fsp->oplock_type, fsp_str_dbg(fsp)));
1063 bool request_timed_out(struct timeval request_time,
1064 struct timeval timeout)
1066 struct timeval now, end_time;
1068 end_time = timeval_sum(&request_time, &timeout);
1069 return (timeval_compare(&end_time, &now) < 0);
1072 /****************************************************************************
1073 Handle the 1 second delay in returning a SHARING_VIOLATION error.
1074 ****************************************************************************/
1076 static void defer_open(struct share_mode_lock *lck,
1077 struct timeval request_time,
1078 struct timeval timeout,
1079 struct smb_request *req,
1080 struct deferred_open_record *state)
1084 /* Paranoia check */
1086 for (i=0; i<lck->num_share_modes; i++) {
1087 struct share_mode_entry *e = &lck->share_modes[i];
1089 if (!is_deferred_open_entry(e)) {
1093 if (procid_is_me(&e->pid) && (e->op_mid == req->mid)) {
1094 DEBUG(0, ("Trying to defer an already deferred "
1095 "request: mid=%d, exiting\n", req->mid));
1096 exit_server("attempt to defer a deferred request");
1100 /* End paranoia check */
1102 DEBUG(10,("defer_open_sharing_error: time [%u.%06u] adding deferred "
1103 "open entry for mid %u\n",
1104 (unsigned int)request_time.tv_sec,
1105 (unsigned int)request_time.tv_usec,
1106 (unsigned int)req->mid));
1108 if (!push_deferred_smb_message(req, request_time, timeout,
1109 (char *)state, sizeof(*state))) {
1110 exit_server("push_deferred_smb_message failed");
1112 add_deferred_open(lck, req->mid, request_time, state->id);
1116 /****************************************************************************
1117 On overwrite open ensure that the attributes match.
1118 ****************************************************************************/
1120 bool open_match_attributes(connection_struct *conn,
1121 uint32 old_dos_attr,
1122 uint32 new_dos_attr,
1123 mode_t existing_unx_mode,
1124 mode_t new_unx_mode,
1125 mode_t *returned_unx_mode)
1127 uint32 noarch_old_dos_attr, noarch_new_dos_attr;
1129 noarch_old_dos_attr = (old_dos_attr & ~FILE_ATTRIBUTE_ARCHIVE);
1130 noarch_new_dos_attr = (new_dos_attr & ~FILE_ATTRIBUTE_ARCHIVE);
1132 if((noarch_old_dos_attr == 0 && noarch_new_dos_attr != 0) ||
1133 (noarch_old_dos_attr != 0 && ((noarch_old_dos_attr & noarch_new_dos_attr) == noarch_old_dos_attr))) {
1134 *returned_unx_mode = new_unx_mode;
1136 *returned_unx_mode = (mode_t)0;
1139 DEBUG(10,("open_match_attributes: old_dos_attr = 0x%x, "
1140 "existing_unx_mode = 0%o, new_dos_attr = 0x%x "
1141 "returned_unx_mode = 0%o\n",
1142 (unsigned int)old_dos_attr,
1143 (unsigned int)existing_unx_mode,
1144 (unsigned int)new_dos_attr,
1145 (unsigned int)*returned_unx_mode ));
1147 /* If we're mapping SYSTEM and HIDDEN ensure they match. */
1148 if (lp_map_system(SNUM(conn)) || lp_store_dos_attributes(SNUM(conn))) {
1149 if ((old_dos_attr & FILE_ATTRIBUTE_SYSTEM) &&
1150 !(new_dos_attr & FILE_ATTRIBUTE_SYSTEM)) {
1154 if (lp_map_hidden(SNUM(conn)) || lp_store_dos_attributes(SNUM(conn))) {
1155 if ((old_dos_attr & FILE_ATTRIBUTE_HIDDEN) &&
1156 !(new_dos_attr & FILE_ATTRIBUTE_HIDDEN)) {
1163 /****************************************************************************
1164 Special FCB or DOS processing in the case of a sharing violation.
1165 Try and find a duplicated file handle.
1166 ****************************************************************************/
1168 NTSTATUS fcb_or_dos_open(struct smb_request *req,
1169 connection_struct *conn,
1170 files_struct *fsp_to_dup_into,
1171 const struct smb_filename *smb_fname,
1176 uint32 share_access,
1177 uint32 create_options)
1181 DEBUG(5,("fcb_or_dos_open: attempting old open semantics for "
1182 "file %s.\n", smb_fname_str_dbg(smb_fname)));
1184 for(fsp = file_find_di_first(id); fsp;
1185 fsp = file_find_di_next(fsp)) {
1187 DEBUG(10,("fcb_or_dos_open: checking file %s, fd = %d, "
1188 "vuid = %u, file_pid = %u, private_options = 0x%x "
1189 "access_mask = 0x%x\n", fsp_str_dbg(fsp),
1190 fsp->fh->fd, (unsigned int)fsp->vuid,
1191 (unsigned int)fsp->file_pid,
1192 (unsigned int)fsp->fh->private_options,
1193 (unsigned int)fsp->access_mask ));
1195 if (fsp->fh->fd != -1 &&
1196 fsp->vuid == vuid &&
1197 fsp->file_pid == file_pid &&
1198 (fsp->fh->private_options & (NTCREATEX_OPTIONS_PRIVATE_DENY_DOS |
1199 NTCREATEX_OPTIONS_PRIVATE_DENY_FCB)) &&
1200 (fsp->access_mask & FILE_WRITE_DATA) &&
1201 strequal(fsp->fsp_name->base_name, smb_fname->base_name) &&
1202 strequal(fsp->fsp_name->stream_name,
1203 smb_fname->stream_name)) {
1204 DEBUG(10,("fcb_or_dos_open: file match\n"));
1210 return NT_STATUS_NOT_FOUND;
1213 /* quite an insane set of semantics ... */
1214 if (is_executable(smb_fname->base_name) &&
1215 (fsp->fh->private_options & NTCREATEX_OPTIONS_PRIVATE_DENY_DOS)) {
1216 DEBUG(10,("fcb_or_dos_open: file fail due to is_executable.\n"));
1217 return NT_STATUS_INVALID_PARAMETER;
1220 /* We need to duplicate this fsp. */
1221 return dup_file_fsp(req, fsp, access_mask, share_access,
1222 create_options, fsp_to_dup_into);
1225 /****************************************************************************
1226 Open a file with a share mode - old openX method - map into NTCreate.
1227 ****************************************************************************/
1229 bool map_open_params_to_ntcreate(const char *smb_base_fname,
1230 int deny_mode, int open_func,
1231 uint32 *paccess_mask,
1232 uint32 *pshare_mode,
1233 uint32 *pcreate_disposition,
1234 uint32 *pcreate_options)
1238 uint32 create_disposition;
1239 uint32 create_options = FILE_NON_DIRECTORY_FILE;
1241 DEBUG(10,("map_open_params_to_ntcreate: fname = %s, deny_mode = 0x%x, "
1242 "open_func = 0x%x\n",
1243 smb_base_fname, (unsigned int)deny_mode,
1244 (unsigned int)open_func ));
1246 /* Create the NT compatible access_mask. */
1247 switch (GET_OPENX_MODE(deny_mode)) {
1248 case DOS_OPEN_EXEC: /* Implies read-only - used to be FILE_READ_DATA */
1249 case DOS_OPEN_RDONLY:
1250 access_mask = FILE_GENERIC_READ;
1252 case DOS_OPEN_WRONLY:
1253 access_mask = FILE_GENERIC_WRITE;
1257 access_mask = FILE_GENERIC_READ|FILE_GENERIC_WRITE;
1260 DEBUG(10,("map_open_params_to_ntcreate: bad open mode = 0x%x\n",
1261 (unsigned int)GET_OPENX_MODE(deny_mode)));
1265 /* Create the NT compatible create_disposition. */
1266 switch (open_func) {
1267 case OPENX_FILE_EXISTS_FAIL|OPENX_FILE_CREATE_IF_NOT_EXIST:
1268 create_disposition = FILE_CREATE;
1271 case OPENX_FILE_EXISTS_OPEN:
1272 create_disposition = FILE_OPEN;
1275 case OPENX_FILE_EXISTS_OPEN|OPENX_FILE_CREATE_IF_NOT_EXIST:
1276 create_disposition = FILE_OPEN_IF;
1279 case OPENX_FILE_EXISTS_TRUNCATE:
1280 create_disposition = FILE_OVERWRITE;
1283 case OPENX_FILE_EXISTS_TRUNCATE|OPENX_FILE_CREATE_IF_NOT_EXIST:
1284 create_disposition = FILE_OVERWRITE_IF;
1288 /* From samba4 - to be confirmed. */
1289 if (GET_OPENX_MODE(deny_mode) == DOS_OPEN_EXEC) {
1290 create_disposition = FILE_CREATE;
1293 DEBUG(10,("map_open_params_to_ntcreate: bad "
1294 "open_func 0x%x\n", (unsigned int)open_func));
1298 /* Create the NT compatible share modes. */
1299 switch (GET_DENY_MODE(deny_mode)) {
1301 share_mode = FILE_SHARE_NONE;
1305 share_mode = FILE_SHARE_READ;
1309 share_mode = FILE_SHARE_WRITE;
1313 share_mode = FILE_SHARE_READ|FILE_SHARE_WRITE;
1317 create_options |= NTCREATEX_OPTIONS_PRIVATE_DENY_DOS;
1318 if (is_executable(smb_base_fname)) {
1319 share_mode = FILE_SHARE_READ|FILE_SHARE_WRITE;
1321 if (GET_OPENX_MODE(deny_mode) == DOS_OPEN_RDONLY) {
1322 share_mode = FILE_SHARE_READ;
1324 share_mode = FILE_SHARE_NONE;
1330 create_options |= NTCREATEX_OPTIONS_PRIVATE_DENY_FCB;
1331 share_mode = FILE_SHARE_NONE;
1335 DEBUG(10,("map_open_params_to_ntcreate: bad deny_mode 0x%x\n",
1336 (unsigned int)GET_DENY_MODE(deny_mode) ));
1340 DEBUG(10,("map_open_params_to_ntcreate: file %s, access_mask = 0x%x, "
1341 "share_mode = 0x%x, create_disposition = 0x%x, "
1342 "create_options = 0x%x\n",
1344 (unsigned int)access_mask,
1345 (unsigned int)share_mode,
1346 (unsigned int)create_disposition,
1347 (unsigned int)create_options ));
1350 *paccess_mask = access_mask;
1353 *pshare_mode = share_mode;
1355 if (pcreate_disposition) {
1356 *pcreate_disposition = create_disposition;
1358 if (pcreate_options) {
1359 *pcreate_options = create_options;
1366 static void schedule_defer_open(struct share_mode_lock *lck,
1367 struct timeval request_time,
1368 struct smb_request *req)
1370 struct deferred_open_record state;
1372 /* This is a relative time, added to the absolute
1373 request_time value to get the absolute timeout time.
1374 Note that if this is the second or greater time we enter
1375 this codepath for this particular request mid then
1376 request_time is left as the absolute time of the *first*
1377 time this request mid was processed. This is what allows
1378 the request to eventually time out. */
1380 struct timeval timeout;
1382 /* Normally the smbd we asked should respond within
1383 * OPLOCK_BREAK_TIMEOUT seconds regardless of whether
1384 * the client did, give twice the timeout as a safety
1385 * measure here in case the other smbd is stuck
1386 * somewhere else. */
1388 timeout = timeval_set(OPLOCK_BREAK_TIMEOUT*2, 0);
1390 /* Nothing actually uses state.delayed_for_oplocks
1391 but it's handy to differentiate in debug messages
1392 between a 30 second delay due to oplock break, and
1393 a 1 second delay for share mode conflicts. */
1395 state.delayed_for_oplocks = True;
1398 if (!request_timed_out(request_time, timeout)) {
1399 defer_open(lck, request_time, timeout, req, &state);
1403 /****************************************************************************
1404 Work out what access_mask to use from what the client sent us.
1405 ****************************************************************************/
1407 static NTSTATUS calculate_access_mask(connection_struct *conn,
1408 const struct smb_filename *smb_fname,
1410 uint32_t access_mask,
1411 uint32_t *access_mask_out)
1416 * Convert GENERIC bits to specific bits.
1419 se_map_generic(&access_mask, &file_generic_mapping);
1421 /* Calculate MAXIMUM_ALLOWED_ACCESS if requested. */
1422 if (access_mask & MAXIMUM_ALLOWED_ACCESS) {
1425 struct security_descriptor *sd;
1426 uint32_t access_granted = 0;
1428 status = SMB_VFS_GET_NT_ACL(conn, smb_fname->base_name,
1429 (OWNER_SECURITY_INFORMATION |
1430 GROUP_SECURITY_INFORMATION |
1431 DACL_SECURITY_INFORMATION),&sd);
1433 if (!NT_STATUS_IS_OK(status)) {
1434 DEBUG(10, ("calculate_access_mask: Could not get acl "
1436 smb_fname_str_dbg(smb_fname),
1437 nt_errstr(status)));
1438 return NT_STATUS_ACCESS_DENIED;
1441 status = smb1_file_se_access_check(conn,
1443 conn->server_info->ptok,
1449 if (!NT_STATUS_IS_OK(status)) {
1450 DEBUG(10, ("calculate_access_mask: Access denied on "
1451 "file %s: when calculating maximum access\n",
1452 smb_fname_str_dbg(smb_fname)));
1453 return NT_STATUS_ACCESS_DENIED;
1456 access_mask = access_granted;
1458 access_mask = FILE_GENERIC_ALL;
1462 *access_mask_out = access_mask;
1463 return NT_STATUS_OK;
1466 /****************************************************************************
1467 Open a file with a share mode. Passed in an already created files_struct *.
1468 ****************************************************************************/
1470 static NTSTATUS open_file_ntcreate(connection_struct *conn,
1471 struct smb_request *req,
1472 uint32 access_mask, /* access bits (FILE_READ_DATA etc.) */
1473 uint32 share_access, /* share constants (FILE_SHARE_READ etc) */
1474 uint32 create_disposition, /* FILE_OPEN_IF etc. */
1475 uint32 create_options, /* options such as delete on close. */
1476 uint32 new_dos_attributes, /* attributes used for new file. */
1477 int oplock_request, /* internal Samba oplock codes. */
1478 /* Information (FILE_EXISTS etc.) */
1482 struct smb_filename *smb_fname = fsp->fsp_name;
1485 bool file_existed = VALID_STAT(smb_fname->st);
1486 bool def_acl = False;
1487 bool posix_open = False;
1488 bool new_file_created = False;
1489 bool clear_ads = false;
1491 NTSTATUS fsp_open = NT_STATUS_ACCESS_DENIED;
1492 mode_t new_unx_mode = (mode_t)0;
1493 mode_t unx_mode = (mode_t)0;
1495 uint32 existing_dos_attributes = 0;
1496 struct pending_message_list *pml = NULL;
1497 struct timeval request_time = timeval_zero();
1498 struct share_mode_lock *lck = NULL;
1499 uint32 open_access_mask = access_mask;
1505 /* Windows allows a new file to be created and
1506 silently removes a FILE_ATTRIBUTE_DIRECTORY
1507 sent by the client. Do the same. */
1509 new_dos_attributes &= ~FILE_ATTRIBUTE_DIRECTORY;
1511 if (conn->printer) {
1513 * Printers are handled completely differently.
1514 * Most of the passed parameters are ignored.
1518 *pinfo = FILE_WAS_CREATED;
1521 DEBUG(10, ("open_file_ntcreate: printer open fname=%s\n",
1522 smb_fname_str_dbg(smb_fname)));
1525 DEBUG(0,("open_file_ntcreate: printer open without "
1526 "an SMB request!\n"));
1527 return NT_STATUS_INTERNAL_ERROR;
1530 return print_fsp_open(req, conn, smb_fname->base_name,
1534 if (!parent_dirname(talloc_tos(), smb_fname->base_name, &parent_dir,
1536 return NT_STATUS_NO_MEMORY;
1539 if (new_dos_attributes & FILE_FLAG_POSIX_SEMANTICS) {
1541 unx_mode = (mode_t)(new_dos_attributes & ~FILE_FLAG_POSIX_SEMANTICS);
1542 new_dos_attributes = 0;
1544 /* We add aARCH to this as this mode is only used if the file is
1546 unx_mode = unix_mode(conn, new_dos_attributes | aARCH,
1547 smb_fname, parent_dir);
1550 DEBUG(10, ("open_file_ntcreate: fname=%s, dos_attrs=0x%x "
1551 "access_mask=0x%x share_access=0x%x "
1552 "create_disposition = 0x%x create_options=0x%x "
1553 "unix mode=0%o oplock_request=%d\n",
1554 smb_fname_str_dbg(smb_fname), new_dos_attributes,
1555 access_mask, share_access, create_disposition,
1556 create_options, (unsigned int)unx_mode, oplock_request));
1558 if ((req == NULL) && ((oplock_request & INTERNAL_OPEN_ONLY) == 0)) {
1559 DEBUG(0, ("No smb request but not an internal only open!\n"));
1560 return NT_STATUS_INTERNAL_ERROR;
1564 * Only non-internal opens can be deferred at all
1568 && ((pml = get_open_deferred_message(req->mid)) != NULL)) {
1569 struct deferred_open_record *state =
1570 (struct deferred_open_record *)pml->private_data.data;
1572 /* Remember the absolute time of the original
1573 request with this mid. We'll use it later to
1574 see if this has timed out. */
1576 request_time = pml->request_time;
1578 /* Remove the deferred open entry under lock. */
1579 lck = get_share_mode_lock(talloc_tos(), state->id, NULL, NULL,
1582 DEBUG(0, ("could not get share mode lock\n"));
1584 del_deferred_open_entry(lck, req->mid);
1588 /* Ensure we don't reprocess this message. */
1589 remove_deferred_open_smb_message(req->mid);
1592 status = check_name(conn, smb_fname->base_name);
1593 if (!NT_STATUS_IS_OK(status)) {
1598 new_dos_attributes &= SAMBA_ATTRIBUTES_MASK;
1600 existing_dos_attributes = dos_mode(conn, smb_fname);
1604 /* ignore any oplock requests if oplocks are disabled */
1605 if (!lp_oplocks(SNUM(conn)) || global_client_failed_oplock_break ||
1606 IS_VETO_OPLOCK_PATH(conn, smb_fname->base_name)) {
1607 /* Mask off everything except the private Samba bits. */
1608 oplock_request &= SAMBA_PRIVATE_OPLOCK_MASK;
1611 /* this is for OS/2 long file names - say we don't support them */
1612 if (!lp_posix_pathnames() && strstr(smb_fname->base_name,".+,;=[].")) {
1613 /* OS/2 Workplace shell fix may be main code stream in a later
1615 DEBUG(5,("open_file_ntcreate: OS/2 long filenames are not "
1617 if (use_nt_status()) {
1618 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
1620 return NT_STATUS_DOS(ERRDOS, ERRcannotopen);
1623 switch( create_disposition ) {
1625 * Currently we're using FILE_SUPERSEDE as the same as
1626 * FILE_OVERWRITE_IF but they really are
1627 * different. FILE_SUPERSEDE deletes an existing file
1628 * (requiring delete access) then recreates it.
1630 case FILE_SUPERSEDE:
1631 /* If file exists replace/overwrite. If file doesn't
1633 flags2 |= (O_CREAT | O_TRUNC);
1637 case FILE_OVERWRITE_IF:
1638 /* If file exists replace/overwrite. If file doesn't
1640 flags2 |= (O_CREAT | O_TRUNC);
1645 /* If file exists open. If file doesn't exist error. */
1646 if (!file_existed) {
1647 DEBUG(5,("open_file_ntcreate: FILE_OPEN "
1648 "requested for file %s and file "
1650 smb_fname_str_dbg(smb_fname)));
1652 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
1656 case FILE_OVERWRITE:
1657 /* If file exists overwrite. If file doesn't exist
1659 if (!file_existed) {
1660 DEBUG(5,("open_file_ntcreate: FILE_OVERWRITE "
1661 "requested for file %s and file "
1663 smb_fname_str_dbg(smb_fname) ));
1665 return NT_STATUS_OBJECT_NAME_NOT_FOUND;
1672 /* If file exists error. If file doesn't exist
1675 DEBUG(5,("open_file_ntcreate: FILE_CREATE "
1676 "requested for file %s and file "
1677 "already exists.\n",
1678 smb_fname_str_dbg(smb_fname)));
1679 if (S_ISDIR(smb_fname->st.st_ex_mode)) {
1684 return map_nt_error_from_unix(errno);
1686 flags2 |= (O_CREAT|O_EXCL);
1690 /* If file exists open. If file doesn't exist
1696 return NT_STATUS_INVALID_PARAMETER;
1699 /* We only care about matching attributes on file exists and
1702 if (!posix_open && file_existed && ((create_disposition == FILE_OVERWRITE) ||
1703 (create_disposition == FILE_OVERWRITE_IF))) {
1704 if (!open_match_attributes(conn, existing_dos_attributes,
1706 smb_fname->st.st_ex_mode,
1707 unx_mode, &new_unx_mode)) {
1708 DEBUG(5,("open_file_ntcreate: attributes missmatch "
1709 "for file %s (%x %x) (0%o, 0%o)\n",
1710 smb_fname_str_dbg(smb_fname),
1711 existing_dos_attributes,
1713 (unsigned int)smb_fname->st.st_ex_mode,
1714 (unsigned int)unx_mode ));
1716 return NT_STATUS_ACCESS_DENIED;
1720 status = calculate_access_mask(conn, smb_fname, file_existed,
1723 if (!NT_STATUS_IS_OK(status)) {
1724 DEBUG(10, ("open_file_ntcreate: calculate_access_mask "
1725 "on file %s returned %s\n",
1726 smb_fname_str_dbg(smb_fname), nt_errstr(status)));
1730 open_access_mask = access_mask;
1732 if ((flags2 & O_TRUNC) || (oplock_request & FORCE_OPLOCK_BREAK_TO_NONE)) {
1733 open_access_mask |= FILE_WRITE_DATA; /* This will cause oplock breaks. */
1736 DEBUG(10, ("open_file_ntcreate: fname=%s, after mapping "
1737 "access_mask=0x%x\n", smb_fname_str_dbg(smb_fname),
1741 * Note that we ignore the append flag as append does not
1742 * mean the same thing under DOS and Unix.
1745 if ((access_mask & (FILE_WRITE_DATA | FILE_APPEND_DATA)) ||
1746 (oplock_request & FORCE_OPLOCK_BREAK_TO_NONE)) {
1747 /* DENY_DOS opens are always underlying read-write on the
1748 file handle, no matter what the requested access mask
1750 if ((create_options & NTCREATEX_OPTIONS_PRIVATE_DENY_DOS) ||
1751 access_mask & (FILE_READ_ATTRIBUTES|FILE_READ_DATA|FILE_READ_EA|FILE_EXECUTE)) {
1761 * Currently we only look at FILE_WRITE_THROUGH for create options.
1765 if ((create_options & FILE_WRITE_THROUGH) && lp_strict_sync(SNUM(conn))) {
1770 if (posix_open && (access_mask & FILE_APPEND_DATA)) {
1774 if (!posix_open && !CAN_WRITE(conn)) {
1776 * We should really return a permission denied error if either
1777 * O_CREAT or O_TRUNC are set, but for compatibility with
1778 * older versions of Samba we just AND them out.
1780 flags2 &= ~(O_CREAT|O_TRUNC);
1784 * Ensure we can't write on a read-only share or file.
1787 if (flags != O_RDONLY && file_existed &&
1788 (!CAN_WRITE(conn) || IS_DOS_READONLY(existing_dos_attributes))) {
1789 DEBUG(5,("open_file_ntcreate: write access requested for "
1790 "file %s on read only %s\n",
1791 smb_fname_str_dbg(smb_fname),
1792 !CAN_WRITE(conn) ? "share" : "file" ));
1794 return NT_STATUS_ACCESS_DENIED;
1797 fsp->file_id = vfs_file_id_from_sbuf(conn, &smb_fname->st);
1798 fsp->share_access = share_access;
1799 fsp->fh->private_options = create_options;
1800 fsp->access_mask = open_access_mask; /* We change this to the
1801 * requested access_mask after
1802 * the open is done. */
1803 fsp->posix_open = posix_open;
1805 /* Ensure no SAMBA_PRIVATE bits can be set. */
1806 fsp->oplock_type = (oplock_request & ~SAMBA_PRIVATE_OPLOCK_MASK);
1808 if (timeval_is_zero(&request_time)) {
1809 request_time = fsp->open_time;
1813 struct timespec old_write_time = smb_fname->st.st_ex_mtime;
1814 id = vfs_file_id_from_sbuf(conn, &smb_fname->st);
1816 lck = get_share_mode_lock(talloc_tos(), id,
1818 smb_fname, &old_write_time);
1821 DEBUG(0, ("Could not get share mode lock\n"));
1822 return NT_STATUS_SHARING_VIOLATION;
1825 /* First pass - send break only on batch oplocks. */
1827 && delay_for_oplocks(lck, fsp, req->mid, 1,
1829 schedule_defer_open(lck, request_time, req);
1831 return NT_STATUS_SHARING_VIOLATION;
1834 /* Use the client requested access mask here, not the one we
1836 status = open_mode_check(conn, lck, access_mask, share_access,
1837 create_options, &file_existed);
1839 if (NT_STATUS_IS_OK(status)) {
1840 /* We might be going to allow this open. Check oplock
1842 /* Second pass - send break for both batch or
1843 * exclusive oplocks. */
1845 && delay_for_oplocks(lck, fsp, req->mid, 2,
1847 schedule_defer_open(lck, request_time, req);
1849 return NT_STATUS_SHARING_VIOLATION;
1853 if (NT_STATUS_EQUAL(status, NT_STATUS_DELETE_PENDING)) {
1854 /* DELETE_PENDING is not deferred for a second */
1859 if (!NT_STATUS_IS_OK(status)) {
1860 uint32 can_access_mask;
1861 bool can_access = True;
1863 SMB_ASSERT(NT_STATUS_EQUAL(status, NT_STATUS_SHARING_VIOLATION));
1865 /* Check if this can be done with the deny_dos and fcb
1867 if (create_options &
1868 (NTCREATEX_OPTIONS_PRIVATE_DENY_DOS|
1869 NTCREATEX_OPTIONS_PRIVATE_DENY_FCB)) {
1871 DEBUG(0, ("DOS open without an SMB "
1874 return NT_STATUS_INTERNAL_ERROR;
1877 /* Use the client requested access mask here,
1878 * not the one we open with. */
1879 status = fcb_or_dos_open(req,
1890 if (NT_STATUS_IS_OK(status)) {
1893 *pinfo = FILE_WAS_OPENED;
1895 return NT_STATUS_OK;
1900 * This next line is a subtlety we need for
1901 * MS-Access. If a file open will fail due to share
1902 * permissions and also for security (access) reasons,
1903 * we need to return the access failed error, not the
1904 * share error. We can't open the file due to kernel
1905 * oplock deadlock (it's possible we failed above on
1906 * the open_mode_check()) so use a userspace check.
1909 if (flags & O_RDWR) {
1910 can_access_mask = FILE_READ_DATA|FILE_WRITE_DATA;
1911 } else if (flags & O_WRONLY) {
1912 can_access_mask = FILE_WRITE_DATA;
1914 can_access_mask = FILE_READ_DATA;
1917 if (((can_access_mask & FILE_WRITE_DATA) &&
1918 !CAN_WRITE(conn)) ||
1919 !can_access_file_data(conn, smb_fname,
1925 * If we're returning a share violation, ensure we
1926 * cope with the braindead 1 second delay.
1929 if (!(oplock_request & INTERNAL_OPEN_ONLY) &&
1930 lp_defer_sharing_violations()) {
1931 struct timeval timeout;
1932 struct deferred_open_record state;
1935 /* this is a hack to speed up torture tests
1937 timeout_usecs = lp_parm_int(SNUM(conn),
1938 "smbd","sharedelay",
1939 SHARING_VIOLATION_USEC_WAIT);
1941 /* This is a relative time, added to the absolute
1942 request_time value to get the absolute timeout time.
1943 Note that if this is the second or greater time we enter
1944 this codepath for this particular request mid then
1945 request_time is left as the absolute time of the *first*
1946 time this request mid was processed. This is what allows
1947 the request to eventually time out. */
1949 timeout = timeval_set(0, timeout_usecs);
1951 /* Nothing actually uses state.delayed_for_oplocks
1952 but it's handy to differentiate in debug messages
1953 between a 30 second delay due to oplock break, and
1954 a 1 second delay for share mode conflicts. */
1956 state.delayed_for_oplocks = False;
1960 && !request_timed_out(request_time,
1962 defer_open(lck, request_time, timeout,
1970 * We have detected a sharing violation here
1971 * so return the correct error code
1973 status = NT_STATUS_SHARING_VIOLATION;
1975 status = NT_STATUS_ACCESS_DENIED;
1981 * We exit this block with the share entry *locked*.....
1985 SMB_ASSERT(!file_existed || (lck != NULL));
1988 * Ensure we pay attention to default ACLs on directories if required.
1991 if ((flags2 & O_CREAT) && lp_inherit_acls(SNUM(conn)) &&
1992 (def_acl = directory_has_default_acl(conn, parent_dir))) {
1993 unx_mode = (0777 & lp_create_mask(SNUM(conn)));
1996 DEBUG(4,("calling open_file with flags=0x%X flags2=0x%X mode=0%o, "
1997 "access_mask = 0x%x, open_access_mask = 0x%x\n",
1998 (unsigned int)flags, (unsigned int)flags2,
1999 (unsigned int)unx_mode, (unsigned int)access_mask,
2000 (unsigned int)open_access_mask));
2003 * open_file strips any O_TRUNC flags itself.
2006 fsp_open = open_file(fsp, conn, req, parent_dir,
2007 flags|flags2, unx_mode, access_mask,
2010 if (!NT_STATUS_IS_OK(fsp_open)) {
2017 if (!file_existed) {
2018 struct timespec old_write_time = smb_fname->st.st_ex_mtime;
2020 * Deal with the race condition where two smbd's detect the
2021 * file doesn't exist and do the create at the same time. One
2022 * of them will win and set a share mode, the other (ie. this
2023 * one) should check if the requested share mode for this
2024 * create is allowed.
2028 * Now the file exists and fsp is successfully opened,
2029 * fsp->dev and fsp->inode are valid and should replace the
2030 * dev=0,inode=0 from a non existent file. Spotted by
2031 * Nadav Danieli <nadavd@exanet.com>. JRA.
2036 lck = get_share_mode_lock(talloc_tos(), id,
2038 smb_fname, &old_write_time);
2041 DEBUG(0, ("open_file_ntcreate: Could not get share "
2042 "mode lock for %s\n",
2043 smb_fname_str_dbg(smb_fname)));
2045 return NT_STATUS_SHARING_VIOLATION;
2048 /* First pass - send break only on batch oplocks. */
2050 && delay_for_oplocks(lck, fsp, req->mid, 1,
2052 schedule_defer_open(lck, request_time, req);
2055 return NT_STATUS_SHARING_VIOLATION;
2058 status = open_mode_check(conn, lck, access_mask, share_access,
2059 create_options, &file_existed);
2061 if (NT_STATUS_IS_OK(status)) {
2062 /* We might be going to allow this open. Check oplock
2064 /* Second pass - send break for both batch or
2065 * exclusive oplocks. */
2067 && delay_for_oplocks(lck, fsp, req->mid, 2,
2069 schedule_defer_open(lck, request_time, req);
2072 return NT_STATUS_SHARING_VIOLATION;
2076 if (!NT_STATUS_IS_OK(status)) {
2077 struct deferred_open_record state;
2081 state.delayed_for_oplocks = False;
2084 /* Do it all over again immediately. In the second
2085 * round we will find that the file existed and handle
2086 * the DELETE_PENDING and FCB cases correctly. No need
2087 * to duplicate the code here. Essentially this is a
2088 * "goto top of this function", but don't tell
2092 defer_open(lck, request_time, timeval_zero(),
2100 * We exit this block with the share entry *locked*.....
2105 SMB_ASSERT(lck != NULL);
2107 /* Delete streams if create_disposition requires it */
2108 if (file_existed && clear_ads &&
2109 !is_ntfs_stream_smb_fname(smb_fname)) {
2110 status = delete_all_streams(conn, smb_fname->base_name);
2111 if (!NT_STATUS_IS_OK(status)) {
2118 /* note that we ignore failure for the following. It is
2119 basically a hack for NFS, and NFS will never set one of
2120 these only read them. Nobody but Samba can ever set a deny
2121 mode and we have already checked our more authoritative
2122 locking database for permission to set this deny mode. If
2123 the kernel refuses the operations then the kernel is wrong.
2124 note that GPFS supports it as well - jmcd */
2126 if (fsp->fh->fd != -1) {
2128 ret_flock = SMB_VFS_KERNEL_FLOCK(fsp, share_access, access_mask);
2129 if(ret_flock == -1 ){
2134 return NT_STATUS_SHARING_VIOLATION;
2139 * At this point onwards, we can guarentee that the share entry
2140 * is locked, whether we created the file or not, and that the
2141 * deny mode is compatible with all current opens.
2145 * If requested, truncate the file.
2148 if (flags2&O_TRUNC) {
2150 * We are modifing the file after open - update the stat
2153 if ((SMB_VFS_FTRUNCATE(fsp, 0) == -1) ||
2154 (SMB_VFS_FSTAT(fsp, &smb_fname->st)==-1)) {
2155 status = map_nt_error_from_unix(errno);
2162 /* Record the options we were opened with. */
2163 fsp->share_access = share_access;
2164 fsp->fh->private_options = create_options;
2166 * According to Samba4, SEC_FILE_READ_ATTRIBUTE is always granted,
2168 fsp->access_mask = access_mask | FILE_READ_ATTRIBUTES;
2171 /* stat opens on existing files don't get oplocks. */
2172 if (is_stat_open(open_access_mask)) {
2173 fsp->oplock_type = NO_OPLOCK;
2176 if (!(flags2 & O_TRUNC)) {
2177 info = FILE_WAS_OPENED;
2179 info = FILE_WAS_OVERWRITTEN;
2182 info = FILE_WAS_CREATED;
2190 * Setup the oplock info in both the shared memory and
2194 if (!set_file_oplock(fsp, fsp->oplock_type)) {
2195 /* Could not get the kernel oplock */
2196 fsp->oplock_type = NO_OPLOCK;
2199 if (info == FILE_WAS_OVERWRITTEN || info == FILE_WAS_CREATED || info == FILE_WAS_SUPERSEDED) {
2200 new_file_created = True;
2203 set_share_mode(lck, fsp, conn->server_info->utok.uid, 0,
2206 /* Handle strange delete on close create semantics. */
2207 if (create_options & FILE_DELETE_ON_CLOSE) {
2209 status = can_set_delete_on_close(fsp, new_dos_attributes);
2211 if (!NT_STATUS_IS_OK(status)) {
2212 /* Remember to delete the mode we just added. */
2213 del_share_mode(lck, fsp);
2218 /* Note that here we set the *inital* delete on close flag,
2219 not the regular one. The magic gets handled in close. */
2220 fsp->initial_delete_on_close = True;
2223 if (new_file_created) {
2224 /* Files should be initially set as archive */
2225 if (lp_map_archive(SNUM(conn)) ||
2226 lp_store_dos_attributes(SNUM(conn))) {
2228 if (file_set_dosmode(conn, smb_fname,
2229 new_dos_attributes | aARCH,
2230 parent_dir, true) == 0) {
2231 unx_mode = smb_fname->st.st_ex_mode;
2238 * Take care of inherited ACLs on created files - if default ACL not
2242 if (!posix_open && !file_existed && !def_acl) {
2244 int saved_errno = errno; /* We might get ENOSYS in the next
2247 if (SMB_VFS_FCHMOD_ACL(fsp, unx_mode) == -1 &&
2249 errno = saved_errno; /* Ignore ENOSYS */
2252 } else if (new_unx_mode) {
2256 /* Attributes need changing. File already existed. */
2259 int saved_errno = errno; /* We might get ENOSYS in the
2261 ret = SMB_VFS_FCHMOD_ACL(fsp, new_unx_mode);
2263 if (ret == -1 && errno == ENOSYS) {
2264 errno = saved_errno; /* Ignore ENOSYS */
2266 DEBUG(5, ("open_file_ntcreate: reset "
2267 "attributes of file %s to 0%o\n",
2268 smb_fname_str_dbg(smb_fname),
2269 (unsigned int)new_unx_mode));
2270 ret = 0; /* Don't do the fchmod below. */
2275 (SMB_VFS_FCHMOD(fsp, new_unx_mode) == -1))
2276 DEBUG(5, ("open_file_ntcreate: failed to reset "
2277 "attributes of file %s to 0%o\n",
2278 smb_fname_str_dbg(smb_fname),
2279 (unsigned int)new_unx_mode));
2282 /* If this is a successful open, we must remove any deferred open
2285 del_deferred_open_entry(lck, req->mid);
2289 return NT_STATUS_OK;
2293 /****************************************************************************
2294 Open a file for for write to ensure that we can fchmod it.
2295 ****************************************************************************/
2297 NTSTATUS open_file_fchmod(connection_struct *conn,
2298 struct smb_filename *smb_fname,
2299 files_struct **result)
2301 if (!VALID_STAT(smb_fname->st)) {
2302 return NT_STATUS_INVALID_PARAMETER;
2305 return SMB_VFS_CREATE_FILE(
2308 0, /* root_dir_fid */
2309 smb_fname, /* fname */
2310 FILE_WRITE_DATA, /* access_mask */
2311 (FILE_SHARE_READ | FILE_SHARE_WRITE | /* share_access */
2313 FILE_OPEN, /* create_disposition*/
2314 0, /* create_options */
2315 0, /* file_attributes */
2316 INTERNAL_OPEN_ONLY, /* oplock_request */
2317 0, /* allocation_size */
2320 result, /* result */
2324 static NTSTATUS mkdir_internal(connection_struct *conn,
2325 struct smb_filename *smb_dname,
2326 uint32 file_attributes)
2331 bool posix_open = false;
2332 bool need_re_stat = false;
2334 if(!CAN_WRITE(conn)) {
2335 DEBUG(5,("mkdir_internal: failing create on read-only share "
2336 "%s\n", lp_servicename(SNUM(conn))));
2337 return NT_STATUS_ACCESS_DENIED;
2340 status = check_name(conn, smb_dname->base_name);
2341 if (!NT_STATUS_IS_OK(status)) {
2345 if (!parent_dirname(talloc_tos(), smb_dname->base_name, &parent_dir,
2347 return NT_STATUS_NO_MEMORY;
2350 if (file_attributes & FILE_FLAG_POSIX_SEMANTICS) {
2352 mode = (mode_t)(file_attributes & ~FILE_FLAG_POSIX_SEMANTICS);
2354 mode = unix_mode(conn, aDIR, smb_dname, parent_dir);
2357 if (SMB_VFS_MKDIR(conn, smb_dname->base_name, mode) != 0) {
2358 return map_nt_error_from_unix(errno);
2361 /* Ensure we're checking for a symlink here.... */
2362 /* We don't want to get caught by a symlink racer. */
2364 if (SMB_VFS_LSTAT(conn, smb_dname) == -1) {
2365 DEBUG(2, ("Could not stat directory '%s' just created: %s\n",
2366 smb_fname_str_dbg(smb_dname), strerror(errno)));
2367 return map_nt_error_from_unix(errno);
2370 if (!S_ISDIR(smb_dname->st.st_ex_mode)) {
2371 DEBUG(0, ("Directory just '%s' created is not a directory\n",
2372 smb_fname_str_dbg(smb_dname)));
2373 return NT_STATUS_ACCESS_DENIED;
2376 if (lp_store_dos_attributes(SNUM(conn))) {
2378 file_set_dosmode(conn, smb_dname,
2379 file_attributes | aDIR,
2384 if (lp_inherit_perms(SNUM(conn))) {
2385 inherit_access_posix_acl(conn, parent_dir,
2386 smb_dname->base_name, mode);
2387 need_re_stat = true;
2392 * Check if high bits should have been set,
2393 * then (if bits are missing): add them.
2394 * Consider bits automagically set by UNIX, i.e. SGID bit from parent
2397 if ((mode & ~(S_IRWXU|S_IRWXG|S_IRWXO)) &&
2398 (mode & ~smb_dname->st.st_ex_mode)) {
2399 SMB_VFS_CHMOD(conn, smb_dname->base_name,
2400 (smb_dname->st.st_ex_mode |
2401 (mode & ~smb_dname->st.st_ex_mode)));
2402 need_re_stat = true;
2406 /* Change the owner if required. */
2407 if (lp_inherit_owner(SNUM(conn))) {
2408 change_dir_owner_to_parent(conn, parent_dir,
2409 smb_dname->base_name,
2411 need_re_stat = true;
2415 if (SMB_VFS_LSTAT(conn, smb_dname) == -1) {
2416 DEBUG(2, ("Could not stat directory '%s' just created: %s\n",
2417 smb_fname_str_dbg(smb_dname), strerror(errno)));
2418 return map_nt_error_from_unix(errno);
2422 notify_fname(conn, NOTIFY_ACTION_ADDED, FILE_NOTIFY_CHANGE_DIR_NAME,
2423 smb_dname->base_name);
2425 return NT_STATUS_OK;
2428 /****************************************************************************
2429 Open a directory from an NT SMB call.
2430 ****************************************************************************/
2432 static NTSTATUS open_directory(connection_struct *conn,
2433 struct smb_request *req,
2434 struct smb_filename *smb_dname,
2436 uint32 share_access,
2437 uint32 create_disposition,
2438 uint32 create_options,
2439 uint32 file_attributes,
2441 files_struct **result)
2443 files_struct *fsp = NULL;
2444 bool dir_existed = VALID_STAT(smb_dname->st) ? True : False;
2445 struct share_mode_lock *lck = NULL;
2447 struct timespec mtimespec;
2450 SMB_ASSERT(!is_ntfs_stream_smb_fname(smb_dname));
2452 /* Ensure we have a directory attribute. */
2453 file_attributes |= FILE_ATTRIBUTE_DIRECTORY;
2455 DEBUG(5,("open_directory: opening directory %s, access_mask = 0x%x, "
2456 "share_access = 0x%x create_options = 0x%x, "
2457 "create_disposition = 0x%x, file_attributes = 0x%x\n",
2458 smb_fname_str_dbg(smb_dname),
2459 (unsigned int)access_mask,
2460 (unsigned int)share_access,
2461 (unsigned int)create_options,
2462 (unsigned int)create_disposition,
2463 (unsigned int)file_attributes));
2465 if (!(file_attributes & FILE_FLAG_POSIX_SEMANTICS) &&
2466 (conn->fs_capabilities & FILE_NAMED_STREAMS) &&
2467 is_ntfs_stream_smb_fname(smb_dname)) {
2468 DEBUG(2, ("open_directory: %s is a stream name!\n",
2469 smb_fname_str_dbg(smb_dname)));
2470 return NT_STATUS_NOT_A_DIRECTORY;
2473 status = calculate_access_mask(conn, smb_dname, dir_existed,
2474 access_mask, &access_mask);
2475 if (!NT_STATUS_IS_OK(status)) {
2476 DEBUG(10, ("open_directory: calculate_access_mask "
2477 "on file %s returned %s\n",
2478 smb_fname_str_dbg(smb_dname),
2479 nt_errstr(status)));
2483 if ((access_mask & SEC_FLAG_SYSTEM_SECURITY) &&
2484 !user_has_privileges(current_user.nt_user_token, &se_security)) {
2485 DEBUG(10, ("open_directory: open on %s "
2486 "failed - SEC_FLAG_SYSTEM_SECURITY denied.\n",
2487 smb_fname_str_dbg(smb_dname)));
2488 return NT_STATUS_PRIVILEGE_NOT_HELD;
2491 switch( create_disposition ) {
2494 info = FILE_WAS_OPENED;
2497 * We want to follow symlinks here.
2500 if (SMB_VFS_STAT(conn, smb_dname) != 0) {
2501 return map_nt_error_from_unix(errno);
2508 /* If directory exists error. If directory doesn't
2511 status = mkdir_internal(conn, smb_dname,
2514 if (!NT_STATUS_IS_OK(status)) {
2515 DEBUG(2, ("open_directory: unable to create "
2516 "%s. Error was %s\n",
2517 smb_fname_str_dbg(smb_dname),
2518 nt_errstr(status)));
2522 info = FILE_WAS_CREATED;
2527 * If directory exists open. If directory doesn't
2531 status = mkdir_internal(conn, smb_dname,
2534 if (NT_STATUS_IS_OK(status)) {
2535 info = FILE_WAS_CREATED;
2538 if (NT_STATUS_EQUAL(status,
2539 NT_STATUS_OBJECT_NAME_COLLISION)) {
2540 info = FILE_WAS_OPENED;
2541 status = NT_STATUS_OK;
2546 case FILE_SUPERSEDE:
2547 case FILE_OVERWRITE:
2548 case FILE_OVERWRITE_IF:
2550 DEBUG(5,("open_directory: invalid create_disposition "
2551 "0x%x for directory %s\n",
2552 (unsigned int)create_disposition,
2553 smb_fname_str_dbg(smb_dname)));
2554 return NT_STATUS_INVALID_PARAMETER;
2557 if(!S_ISDIR(smb_dname->st.st_ex_mode)) {
2558 DEBUG(5,("open_directory: %s is not a directory !\n",
2559 smb_fname_str_dbg(smb_dname)));
2560 return NT_STATUS_NOT_A_DIRECTORY;
2563 if (info == FILE_WAS_OPENED) {
2564 uint32_t access_granted = 0;
2565 status = smbd_check_open_rights(conn, smb_dname, access_mask,
2568 /* Were we trying to do a directory open
2569 * for delete and didn't get DELETE
2570 * access (only) ? Check if the
2571 * directory allows DELETE_CHILD.
2573 * http://blogs.msdn.com/oldnewthing/archive/2004/06/04/148426.aspx
2576 if ((NT_STATUS_EQUAL(status, NT_STATUS_ACCESS_DENIED) &&
2577 (access_mask & DELETE_ACCESS) &&
2578 (access_granted == DELETE_ACCESS) &&
2579 can_delete_file_in_directory(conn, smb_dname))) {
2580 DEBUG(10,("open_directory: overrode ACCESS_DENIED "
2581 "on directory %s\n",
2582 smb_fname_str_dbg(smb_dname)));
2583 status = NT_STATUS_OK;
2586 if (!NT_STATUS_IS_OK(status)) {
2587 DEBUG(10, ("open_directory: smbd_check_open_rights on "
2588 "file %s failed with %s\n",
2589 smb_fname_str_dbg(smb_dname),
2590 nt_errstr(status)));
2595 status = file_new(req, conn, &fsp);
2596 if(!NT_STATUS_IS_OK(status)) {
2601 * Setup the files_struct for it.
2604 fsp->mode = smb_dname->st.st_ex_mode;
2605 fsp->file_id = vfs_file_id_from_sbuf(conn, &smb_dname->st);
2606 fsp->vuid = req ? req->vuid : UID_FIELD_INVALID;
2607 fsp->file_pid = req ? req->smbpid : 0;
2608 fsp->can_lock = False;
2609 fsp->can_read = False;
2610 fsp->can_write = False;
2612 fsp->share_access = share_access;
2613 fsp->fh->private_options = create_options;
2615 * According to Samba4, SEC_FILE_READ_ATTRIBUTE is always granted,
2617 fsp->access_mask = access_mask | FILE_READ_ATTRIBUTES;
2618 fsp->print_file = False;
2619 fsp->modified = False;
2620 fsp->oplock_type = NO_OPLOCK;
2621 fsp->sent_oplock_break = NO_BREAK_SENT;
2622 fsp->is_directory = True;
2623 fsp->posix_open = (file_attributes & FILE_FLAG_POSIX_SEMANTICS) ? True : False;
2624 status = fsp_set_smb_fname(fsp, smb_dname);
2625 if (!NT_STATUS_IS_OK(status)) {
2629 mtimespec = smb_dname->st.st_ex_mtime;
2631 lck = get_share_mode_lock(talloc_tos(), fsp->file_id,
2632 conn->connectpath, smb_dname, &mtimespec);
2635 DEBUG(0, ("open_directory: Could not get share mode lock for "
2636 "%s\n", smb_fname_str_dbg(smb_dname)));
2637 file_free(req, fsp);
2638 return NT_STATUS_SHARING_VIOLATION;
2641 status = open_mode_check(conn, lck, access_mask, share_access,
2642 create_options, &dir_existed);
2644 if (!NT_STATUS_IS_OK(status)) {
2646 file_free(req, fsp);
2650 set_share_mode(lck, fsp, conn->server_info->utok.uid, 0, NO_OPLOCK);
2652 /* For directories the delete on close bit at open time seems
2653 always to be honored on close... See test 19 in Samba4 BASE-DELETE. */
2654 if (create_options & FILE_DELETE_ON_CLOSE) {
2655 status = can_set_delete_on_close(fsp, 0);
2656 if (!NT_STATUS_IS_OK(status) && !NT_STATUS_EQUAL(status, NT_STATUS_DIRECTORY_NOT_EMPTY)) {
2658 file_free(req, fsp);
2662 if (NT_STATUS_IS_OK(status)) {
2663 /* Note that here we set the *inital* delete on close flag,
2664 not the regular one. The magic gets handled in close. */
2665 fsp->initial_delete_on_close = True;
2676 return NT_STATUS_OK;
2679 NTSTATUS create_directory(connection_struct *conn, struct smb_request *req,
2680 struct smb_filename *smb_dname)
2685 status = SMB_VFS_CREATE_FILE(
2688 0, /* root_dir_fid */
2689 smb_dname, /* fname */
2690 FILE_READ_ATTRIBUTES, /* access_mask */
2691 FILE_SHARE_NONE, /* share_access */
2692 FILE_CREATE, /* create_disposition*/
2693 FILE_DIRECTORY_FILE, /* create_options */
2694 FILE_ATTRIBUTE_DIRECTORY, /* file_attributes */
2695 0, /* oplock_request */
2696 0, /* allocation_size */
2702 if (NT_STATUS_IS_OK(status)) {
2703 close_file(req, fsp, NORMAL_CLOSE);
2709 /****************************************************************************
2710 Receive notification that one of our open files has been renamed by another
2712 ****************************************************************************/
2714 void msg_file_was_renamed(struct messaging_context *msg,
2717 struct server_id server_id,
2721 char *frm = (char *)data->data;
2723 const char *sharepath;
2724 const char *base_name;
2725 const char *stream_name;
2726 struct smb_filename *smb_fname = NULL;
2727 size_t sp_len, bn_len;
2730 if (data->data == NULL
2731 || data->length < MSG_FILE_RENAMED_MIN_SIZE + 2) {
2732 DEBUG(0, ("msg_file_was_renamed: Got invalid msg len %d\n",
2733 (int)data->length));
2737 /* Unpack the message. */
2738 pull_file_id_24(frm, &id);
2739 sharepath = &frm[24];
2740 sp_len = strlen(sharepath);
2741 base_name = sharepath + sp_len + 1;
2742 bn_len = strlen(base_name);
2743 stream_name = sharepath + sp_len + 1 + bn_len + 1;
2745 /* stream_name must always be NULL if there is no stream. */
2746 if (stream_name[0] == '\0') {
2750 status = create_synthetic_smb_fname(talloc_tos(), base_name,
2751 stream_name, NULL, &smb_fname);
2752 if (!NT_STATUS_IS_OK(status)) {
2756 DEBUG(10,("msg_file_was_renamed: Got rename message for sharepath %s, new name %s, "
2758 sharepath, smb_fname_str_dbg(smb_fname),
2759 file_id_string_tos(&id)));
2761 for(fsp = file_find_di_first(id); fsp; fsp = file_find_di_next(fsp)) {
2762 if (memcmp(fsp->conn->connectpath, sharepath, sp_len) == 0) {
2764 DEBUG(10,("msg_file_was_renamed: renaming file fnum %d from %s -> %s\n",
2765 fsp->fnum, fsp_str_dbg(fsp),
2766 smb_fname_str_dbg(smb_fname)));
2767 status = fsp_set_smb_fname(fsp, smb_fname);
2768 if (!NT_STATUS_IS_OK(status)) {
2773 /* Now we have the complete path we can work out if this is
2774 actually within this share and adjust newname accordingly. */
2775 DEBUG(10,("msg_file_was_renamed: share mismatch (sharepath %s "
2776 "not sharepath %s) "
2777 "fnum %d from %s -> %s\n",
2778 fsp->conn->connectpath,
2782 smb_fname_str_dbg(smb_fname)));
2786 TALLOC_FREE(smb_fname);
2791 * If a main file is opened for delete, all streams need to be checked for
2792 * !FILE_SHARE_DELETE. Do this by opening with DELETE_ACCESS.
2793 * If that works, delete them all by setting the delete on close and close.
2796 NTSTATUS open_streams_for_delete(connection_struct *conn,
2799 struct stream_struct *stream_info;
2800 files_struct **streams;
2802 unsigned int num_streams;
2803 TALLOC_CTX *frame = talloc_stackframe();
2806 status = SMB_VFS_STREAMINFO(conn, NULL, fname, talloc_tos(),
2807 &num_streams, &stream_info);
2809 if (NT_STATUS_EQUAL(status, NT_STATUS_NOT_IMPLEMENTED)
2810 || NT_STATUS_EQUAL(status, NT_STATUS_OBJECT_NAME_NOT_FOUND)) {
2811 DEBUG(10, ("no streams around\n"));
2813 return NT_STATUS_OK;
2816 if (!NT_STATUS_IS_OK(status)) {
2817 DEBUG(10, ("SMB_VFS_STREAMINFO failed: %s\n",
2818 nt_errstr(status)));
2822 DEBUG(10, ("open_streams_for_delete found %d streams\n",
2825 if (num_streams == 0) {
2827 return NT_STATUS_OK;
2830 streams = TALLOC_ARRAY(talloc_tos(), files_struct *, num_streams);
2831 if (streams == NULL) {
2832 DEBUG(0, ("talloc failed\n"));
2833 status = NT_STATUS_NO_MEMORY;
2837 for (i=0; i<num_streams; i++) {
2838 struct smb_filename *smb_fname = NULL;
2840 if (strequal(stream_info[i].name, "::$DATA")) {
2845 status = create_synthetic_smb_fname(talloc_tos(), fname,
2846 stream_info[i].name,
2848 if (!NT_STATUS_IS_OK(status)) {
2852 if (SMB_VFS_STAT(conn, smb_fname) == -1) {
2853 DEBUG(10, ("Unable to stat stream: %s\n",
2854 smb_fname_str_dbg(smb_fname)));
2857 status = SMB_VFS_CREATE_FILE(
2860 0, /* root_dir_fid */
2861 smb_fname, /* fname */
2862 DELETE_ACCESS, /* access_mask */
2863 (FILE_SHARE_READ | /* share_access */
2864 FILE_SHARE_WRITE | FILE_SHARE_DELETE),
2865 FILE_OPEN, /* create_disposition*/
2866 NTCREATEX_OPTIONS_PRIVATE_STREAM_DELETE, /* create_options */
2867 FILE_ATTRIBUTE_NORMAL, /* file_attributes */
2868 0, /* oplock_request */
2869 0, /* allocation_size */
2872 &streams[i], /* result */
2875 if (!NT_STATUS_IS_OK(status)) {
2876 DEBUG(10, ("Could not open stream %s: %s\n",
2877 smb_fname_str_dbg(smb_fname),
2878 nt_errstr(status)));
2880 TALLOC_FREE(smb_fname);
2883 TALLOC_FREE(smb_fname);
2887 * don't touch the variable "status" beyond this point :-)
2890 for (i -= 1 ; i >= 0; i--) {
2891 if (streams[i] == NULL) {
2895 DEBUG(10, ("Closing stream # %d, %s\n", i,
2896 fsp_str_dbg(streams[i])));
2897 close_file(NULL, streams[i], NORMAL_CLOSE);
2906 * Wrapper around open_file_ntcreate and open_directory
2909 static NTSTATUS create_file_unixpath(connection_struct *conn,
2910 struct smb_request *req,
2911 struct smb_filename *smb_fname,
2912 uint32_t access_mask,
2913 uint32_t share_access,
2914 uint32_t create_disposition,
2915 uint32_t create_options,
2916 uint32_t file_attributes,
2917 uint32_t oplock_request,
2918 uint64_t allocation_size,
2919 struct security_descriptor *sd,
2920 struct ea_list *ea_list,
2922 files_struct **result,
2925 int info = FILE_WAS_OPENED;
2926 files_struct *base_fsp = NULL;
2927 files_struct *fsp = NULL;
2930 DEBUG(10,("create_file_unixpath: access_mask = 0x%x "
2931 "file_attributes = 0x%x, share_access = 0x%x, "
2932 "create_disposition = 0x%x create_options = 0x%x "
2933 "oplock_request = 0x%x ea_list = 0x%p, sd = 0x%p, "
2935 (unsigned int)access_mask,
2936 (unsigned int)file_attributes,
2937 (unsigned int)share_access,
2938 (unsigned int)create_disposition,
2939 (unsigned int)create_options,
2940 (unsigned int)oplock_request,
2941 ea_list, sd, smb_fname_str_dbg(smb_fname)));
2943 if (create_options & FILE_OPEN_BY_FILE_ID) {
2944 status = NT_STATUS_NOT_SUPPORTED;
2948 if (create_options & NTCREATEX_OPTIONS_INVALID_PARAM_MASK) {
2949 status = NT_STATUS_INVALID_PARAMETER;
2954 oplock_request |= INTERNAL_OPEN_ONLY;
2957 if ((conn->fs_capabilities & FILE_NAMED_STREAMS)
2958 && (access_mask & DELETE_ACCESS)
2959 && !is_ntfs_stream_smb_fname(smb_fname)) {
2961 * We can't open a file with DELETE access if any of the
2962 * streams is open without FILE_SHARE_DELETE
2964 status = open_streams_for_delete(conn, smb_fname->base_name);
2966 if (!NT_STATUS_IS_OK(status)) {
2971 /* This is the correct thing to do (check every time) but can_delete
2972 * is expensive (it may have to read the parent directory
2973 * permissions). So for now we're not doing it unless we have a strong
2974 * hint the client is really going to delete this file. If the client
2975 * is forcing FILE_CREATE let the filesystem take care of the
2978 /* Setting FILE_SHARE_DELETE is the hint. */
2980 if ((create_disposition != FILE_CREATE)
2981 && (access_mask & DELETE_ACCESS)
2982 && (!(can_delete_file_in_directory(conn, smb_fname) ||
2983 can_access_file_acl(conn, smb_fname, DELETE_ACCESS)))) {
2984 status = NT_STATUS_ACCESS_DENIED;
2985 DEBUG(10,("create_file_unixpath: open file %s "
2986 "for delete ACCESS_DENIED\n",
2987 smb_fname_str_dbg(smb_fname)));
2991 if ((access_mask & SEC_FLAG_SYSTEM_SECURITY) &&
2992 !user_has_privileges(current_user.nt_user_token, &se_security)) {
2993 DEBUG(10, ("create_file_unixpath:: open on %s "
2994 "failed - SEC_FLAG_SYSTEM_SECURITY denied.\n",
2995 smb_fname_str_dbg(smb_fname)));
2996 status = NT_STATUS_PRIVILEGE_NOT_HELD;
3000 if ((conn->fs_capabilities & FILE_NAMED_STREAMS)
3001 && is_ntfs_stream_smb_fname(smb_fname)
3002 && (!(create_options & NTCREATEX_OPTIONS_PRIVATE_STREAM_DELETE))) {
3003 uint32 base_create_disposition;
3004 struct smb_filename *smb_fname_base = NULL;
3006 if (create_options & FILE_DIRECTORY_FILE) {
3007 status = NT_STATUS_NOT_A_DIRECTORY;
3011 switch (create_disposition) {
3013 base_create_disposition = FILE_OPEN;
3016 base_create_disposition = FILE_OPEN_IF;
3020 /* Create an smb_filename with stream_name == NULL. */
3021 status = create_synthetic_smb_fname(talloc_tos(),
3022 smb_fname->base_name,
3025 if (!NT_STATUS_IS_OK(status)) {
3029 if (SMB_VFS_STAT(conn, smb_fname_base) == -1) {
3030 DEBUG(10, ("Unable to stat stream: %s\n",
3031 smb_fname_str_dbg(smb_fname_base)));
3034 /* Open the base file. */
3035 status = create_file_unixpath(conn, NULL, smb_fname_base, 0,
3038 | FILE_SHARE_DELETE,
3039 base_create_disposition,
3040 0, 0, 0, 0, NULL, NULL,
3042 TALLOC_FREE(smb_fname_base);
3044 if (!NT_STATUS_IS_OK(status)) {
3045 DEBUG(10, ("create_file_unixpath for base %s failed: "
3046 "%s\n", smb_fname->base_name,
3047 nt_errstr(status)));
3050 /* we don't need to low level fd */
3055 * If it's a request for a directory open, deal with it separately.
3058 if (create_options & FILE_DIRECTORY_FILE) {
3060 if (create_options & FILE_NON_DIRECTORY_FILE) {
3061 status = NT_STATUS_INVALID_PARAMETER;
3065 /* Can't open a temp directory. IFS kit test. */
3066 if (!(file_attributes & FILE_FLAG_POSIX_SEMANTICS) &&
3067 (file_attributes & FILE_ATTRIBUTE_TEMPORARY)) {
3068 status = NT_STATUS_INVALID_PARAMETER;
3073 * We will get a create directory here if the Win32
3074 * app specified a security descriptor in the
3075 * CreateDirectory() call.
3079 status = open_directory(
3080 conn, req, smb_fname, access_mask, share_access,
3081 create_disposition, create_options, file_attributes,
3086 * Ordinary file case.
3089 status = file_new(req, conn, &fsp);
3090 if(!NT_STATUS_IS_OK(status)) {
3094 status = fsp_set_smb_fname(fsp, smb_fname);
3095 if (!NT_STATUS_IS_OK(status)) {
3100 * We're opening the stream element of a base_fsp
3101 * we already opened. Set up the base_fsp pointer.
3104 fsp->base_fsp = base_fsp;
3107 status = open_file_ntcreate(conn,
3118 if(!NT_STATUS_IS_OK(status)) {
3119 file_free(req, fsp);
3123 if (NT_STATUS_EQUAL(status, NT_STATUS_FILE_IS_A_DIRECTORY)) {
3125 /* A stream open never opens a directory */
3128 status = NT_STATUS_FILE_IS_A_DIRECTORY;
3133 * Fail the open if it was explicitly a non-directory
3137 if (create_options & FILE_NON_DIRECTORY_FILE) {
3138 status = NT_STATUS_FILE_IS_A_DIRECTORY;
3143 status = open_directory(
3144 conn, req, smb_fname, access_mask,
3145 share_access, create_disposition,
3146 create_options, file_attributes,
3151 if (!NT_STATUS_IS_OK(status)) {
3155 fsp->base_fsp = base_fsp;
3158 * According to the MS documentation, the only time the security
3159 * descriptor is applied to the opened file is iff we *created* the
3160 * file; an existing file stays the same.
3162 * Also, it seems (from observation) that you can open the file with
3163 * any access mask but you can still write the sd. We need to override
3164 * the granted access before we call set_sd
3165 * Patch for bug #2242 from Tom Lackemann <cessnatomny@yahoo.com>.
3168 if ((sd != NULL) && (info == FILE_WAS_CREATED)
3169 && lp_nt_acl_support(SNUM(conn))) {
3171 uint32_t sec_info_sent;
3172 uint32_t saved_access_mask = fsp->access_mask;
3174 sec_info_sent = get_sec_info(sd);
3176 fsp->access_mask = FILE_GENERIC_ALL;
3178 /* Convert all the generic bits. */
3179 security_acl_map_generic(sd->dacl, &file_generic_mapping);
3180 security_acl_map_generic(sd->sacl, &file_generic_mapping);
3182 if (sec_info_sent & (OWNER_SECURITY_INFORMATION|
3183 GROUP_SECURITY_INFORMATION|
3184 DACL_SECURITY_INFORMATION|
3185 SACL_SECURITY_INFORMATION)) {
3186 status = SMB_VFS_FSET_NT_ACL(fsp, sec_info_sent, sd);
3189 fsp->access_mask = saved_access_mask;
3191 if (!NT_STATUS_IS_OK(status)) {
3196 if ((ea_list != NULL) &&
3197 ((info == FILE_WAS_CREATED) || (info == FILE_WAS_OVERWRITTEN))) {
3198 status = set_ea(conn, fsp, fsp->fsp_name, ea_list);
3199 if (!NT_STATUS_IS_OK(status)) {
3204 if (!fsp->is_directory && S_ISDIR(fsp->fsp_name->st.st_ex_mode)) {
3205 status = NT_STATUS_ACCESS_DENIED;
3209 /* Save the requested allocation size. */
3210 if ((info == FILE_WAS_CREATED) || (info == FILE_WAS_OVERWRITTEN)) {
3212 && (allocation_size > fsp->fsp_name->st.st_ex_size)) {
3213 fsp->initial_allocation_size = smb_roundup(
3214 fsp->conn, allocation_size);
3215 if (fsp->is_directory) {
3216 /* Can't set allocation size on a directory. */
3217 status = NT_STATUS_ACCESS_DENIED;
3220 if (vfs_allocate_file_space(
3221 fsp, fsp->initial_allocation_size) == -1) {
3222 status = NT_STATUS_DISK_FULL;
3226 fsp->initial_allocation_size = smb_roundup(
3227 fsp->conn, (uint64_t)fsp->fsp_name->st.st_ex_size);
3231 DEBUG(10, ("create_file_unixpath: info=%d\n", info));
3234 if (pinfo != NULL) {
3238 smb_fname->st = fsp->fsp_name->st;
3240 return NT_STATUS_OK;
3243 DEBUG(10, ("create_file_unixpath: %s\n", nt_errstr(status)));
3246 if (base_fsp && fsp->base_fsp == base_fsp) {
3248 * The close_file below will close
3253 close_file(req, fsp, ERROR_CLOSE);
3256 if (base_fsp != NULL) {
3257 close_file(req, base_fsp, ERROR_CLOSE);
3264 * Calculate the full path name given a relative fid.
3266 NTSTATUS get_relative_fid_filename(connection_struct *conn,
3267 struct smb_request *req,
3268 uint16_t root_dir_fid,
3269 const struct smb_filename *smb_fname,
3270 struct smb_filename **smb_fname_out)
3272 files_struct *dir_fsp;
3273 char *parent_fname = NULL;
3274 char *new_base_name = NULL;
3277 if (root_dir_fid == 0 || !smb_fname) {
3278 status = NT_STATUS_INTERNAL_ERROR;
3282 dir_fsp = file_fsp(req, root_dir_fid);
3284 if (dir_fsp == NULL) {
3285 status = NT_STATUS_INVALID_HANDLE;
3289 if (is_ntfs_stream_smb_fname(dir_fsp->fsp_name)) {
3290 status = NT_STATUS_INVALID_HANDLE;
3294 if (!dir_fsp->is_directory) {
3297 * Check to see if this is a mac fork of some kind.
3300 if ((conn->fs_capabilities & FILE_NAMED_STREAMS) &&
3301 is_ntfs_stream_smb_fname(smb_fname)) {
3302 status = NT_STATUS_OBJECT_PATH_NOT_FOUND;
3307 we need to handle the case when we get a
3308 relative open relative to a file and the
3309 pathname is blank - this is a reopen!
3310 (hint from demyn plantenberg)
3313 status = NT_STATUS_INVALID_HANDLE;
3317 if (ISDOT(dir_fsp->fsp_name->base_name)) {
3319 * We're at the toplevel dir, the final file name
3320 * must not contain ./, as this is filtered out
3321 * normally by srvstr_get_path and unix_convert
3322 * explicitly rejects paths containing ./.
3324 parent_fname = talloc_strdup(talloc_tos(), "");
3325 if (parent_fname == NULL) {
3326 status = NT_STATUS_NO_MEMORY;
3330 size_t dir_name_len = strlen(dir_fsp->fsp_name->base_name);
3333 * Copy in the base directory name.
3336 parent_fname = TALLOC_ARRAY(talloc_tos(), char,
3338 if (parent_fname == NULL) {
3339 status = NT_STATUS_NO_MEMORY;
3342 memcpy(parent_fname, dir_fsp->fsp_name->base_name,
3346 * Ensure it ends in a '/'.
3347 * We used TALLOC_SIZE +2 to add space for the '/'.
3351 && (parent_fname[dir_name_len-1] != '\\')
3352 && (parent_fname[dir_name_len-1] != '/')) {
3353 parent_fname[dir_name_len] = '/';
3354 parent_fname[dir_name_len+1] = '\0';
3358 new_base_name = talloc_asprintf(talloc_tos(), "%s%s", parent_fname,
3359 smb_fname->base_name);
3360 if (new_base_name == NULL) {
3361 status = NT_STATUS_NO_MEMORY;
3365 status = filename_convert(req,
3367 req->flags2 & FLAGS2_DFS_PATHNAMES,
3372 if (!NT_STATUS_IS_OK(status)) {
3377 TALLOC_FREE(parent_fname);
3381 NTSTATUS create_file_default(connection_struct *conn,
3382 struct smb_request *req,
3383 uint16_t root_dir_fid,
3384 struct smb_filename *smb_fname,
3385 uint32_t access_mask,
3386 uint32_t share_access,
3387 uint32_t create_disposition,
3388 uint32_t create_options,
3389 uint32_t file_attributes,
3390 uint32_t oplock_request,
3391 uint64_t allocation_size,
3392 struct security_descriptor *sd,
3393 struct ea_list *ea_list,
3394 files_struct **result,
3397 int info = FILE_WAS_OPENED;
3398 files_struct *fsp = NULL;
3401 DEBUG(10,("create_file: access_mask = 0x%x "
3402 "file_attributes = 0x%x, share_access = 0x%x, "
3403 "create_disposition = 0x%x create_options = 0x%x "
3404 "oplock_request = 0x%x "
3405 "root_dir_fid = 0x%x, ea_list = 0x%p, sd = 0x%p, "
3407 (unsigned int)access_mask,
3408 (unsigned int)file_attributes,
3409 (unsigned int)share_access,
3410 (unsigned int)create_disposition,
3411 (unsigned int)create_options,
3412 (unsigned int)oplock_request,
3413 (unsigned int)root_dir_fid,
3414 ea_list, sd, smb_fname_str_dbg(smb_fname)));
3417 * Calculate the filename from the root_dir_if if necessary.
3420 if (root_dir_fid != 0) {
3421 struct smb_filename *smb_fname_out = NULL;
3422 status = get_relative_fid_filename(conn, req, root_dir_fid,
3423 smb_fname, &smb_fname_out);
3424 if (!NT_STATUS_IS_OK(status)) {
3427 smb_fname = smb_fname_out;
3431 * Check to see if this is a mac fork of some kind.
3434 if (is_ntfs_stream_smb_fname(smb_fname)) {
3435 enum FAKE_FILE_TYPE fake_file_type;
3437 fake_file_type = is_fake_file(smb_fname);
3439 if (fake_file_type != FAKE_FILE_TYPE_NONE) {
3442 * Here we go! support for changing the disk quotas
3445 * We need to fake up to open this MAGIC QUOTA file
3446 * and return a valid FID.
3448 * w2k close this file directly after openening xp
3449 * also tries a QUERY_FILE_INFO on the file and then
3452 status = open_fake_file(req, conn, req->vuid,
3453 fake_file_type, smb_fname,
3455 if (!NT_STATUS_IS_OK(status)) {
3459 ZERO_STRUCT(smb_fname->st);
3463 if (!(conn->fs_capabilities & FILE_NAMED_STREAMS)) {
3464 status = NT_STATUS_OBJECT_NAME_NOT_FOUND;
3469 /* All file access must go through check_name() */
3471 status = check_name(conn, smb_fname->base_name);
3472 if (!NT_STATUS_IS_OK(status)) {
3476 status = create_file_unixpath(
3477 conn, req, smb_fname, access_mask, share_access,
3478 create_disposition, create_options, file_attributes,
3479 oplock_request, allocation_size, sd, ea_list,
3482 if (!NT_STATUS_IS_OK(status)) {
3487 DEBUG(10, ("create_file: info=%d\n", info));
3490 if (pinfo != NULL) {
3493 return NT_STATUS_OK;
3496 DEBUG(10, ("create_file: %s\n", nt_errstr(status)));
3499 close_file(req, fsp, ERROR_CLOSE);