2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 BOOL in_client = False; /* Not in the client by default */
58 extern pstring user_socket_options;
59 extern enum protocol_types Protocol;
60 extern userdom_struct current_user_info;
63 #define GLOBAL_NAME "global"
67 #define PRINTERS_NAME "printers"
71 #define HOMES_NAME "homes"
74 /* the special value for the include parameter
75 * to be interpreted not as a file name but to
76 * trigger loading of the global smb.conf options
78 #ifndef INCLUDE_REGISTRY_NAME
79 #define INCLUDE_REGISTRY_NAME "registry"
82 static int regdb_last_seqnum = 0;
83 static BOOL include_registry_globals = False;
85 /* some helpful bits */
86 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
87 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
89 #define USERSHARE_VALID 1
90 #define USERSHARE_PENDING_DELETE 2
92 BOOL use_getwd_cache = True;
94 extern int extra_time_offset;
96 static BOOL defaults_saved = False;
98 typedef struct _param_opt_struct param_opt_struct;
99 struct _param_opt_struct {
100 param_opt_struct *prev, *next;
107 * This structure describes global (ie., server-wide) parameters.
113 char *display_charset;
114 char *szPrintcapname;
115 char *szAddPortCommand;
116 char *szEnumPortsCommand;
117 char *szAddPrinterCommand;
118 char *szDeletePrinterCommand;
119 char *szOs2DriverMap;
123 char *szDefaultService;
127 char *szServerString;
128 char *szAutoServices;
129 char *szPasswdProgram;
133 char *szSMBPasswdFile;
135 char *szPassdbBackend;
136 char **szPreloadModules;
137 char *szPasswordServer;
138 char *szSocketOptions;
140 char *szAfsUsernameMap;
141 int iAfsTokenLifetime;
142 char *szLogNtTokenCommand;
148 char **szWINSservers;
150 char *szRemoteAnnounce;
151 char *szRemoteBrowseSync;
152 char *szSocketAddress;
153 char *szNISHomeMapName;
154 char *szAnnounceVersion; /* This is initialised in init_globals */
157 char **szNetbiosAliases;
158 char *szNetbiosScope;
159 char *szNameResolveOrder;
161 char *szAddUserScript;
162 char *szRenameUserScript;
163 char *szDelUserScript;
164 char *szAddGroupScript;
165 char *szDelGroupScript;
166 char *szAddUserToGroupScript;
167 char *szDelUserFromGroupScript;
168 char *szSetPrimaryGroupScript;
169 char *szAddMachineScript;
170 char *szShutdownScript;
171 char *szAbortShutdownScript;
172 char *szUsernameMapScript;
173 char *szCheckPasswordScript;
180 BOOL bPassdbExpandExplicit;
181 int AlgorithmicRidBase;
182 char *szTemplateHomedir;
183 char *szTemplateShell;
184 char *szWinbindSeparator;
185 BOOL bWinbindEnumUsers;
186 BOOL bWinbindEnumGroups;
187 BOOL bWinbindUseDefaultDomain;
188 BOOL bWinbindTrustedDomainsOnly;
189 BOOL bWinbindNestedGroups;
190 int winbind_expand_groups;
191 BOOL bWinbindRefreshTickets;
192 BOOL bWinbindOfflineLogon;
193 BOOL bWinbindNormalizeNames;
194 BOOL bWinbindRpcOnly;
195 char **szIdmapDomains;
196 char **szIdmapBackend; /* deprecated */
197 char *szIdmapAllocBackend;
198 char *szAddShareCommand;
199 char *szChangeShareCommand;
200 char *szDeleteShareCommand;
202 char *szGuestaccount;
203 char *szManglingMethod;
204 char **szServicesList;
205 char *szUsersharePath;
206 char *szUsershareTemplateShare;
207 char **szUsersharePrefixAllowList;
208 char **szUsersharePrefixDenyList;
215 int open_files_db_hash_size;
223 BOOL paranoid_server_security;
226 int iMaxSmbdProcesses;
227 BOOL bDisableSpoolss;
230 int enhanced_browsing;
236 int announce_as; /* This is initialised in init_globals */
237 int machine_password_timeout;
239 int oplock_break_wait_time;
240 int winbind_cache_time;
241 int winbind_max_idle_children;
242 char **szWinbindNssInfo;
244 char *szLdapMachineSuffix;
245 char *szLdapUserSuffix;
246 char *szLdapIdmapSuffix;
247 char *szLdapGroupSuffix;
253 char *szIPrintServer;
255 char **szClusterAddresses;
257 int ldap_passwd_sync;
258 int ldap_replication_sleep;
259 int ldap_timeout; /* This is initialised in init_globals */
262 BOOL bMsAddPrinterWizard;
267 BOOL bPreferredMaster;
270 BOOL bEncryptPasswords;
275 BOOL bObeyPamRestrictions;
277 int PrintcapCacheTime;
278 BOOL bLargeReadwrite;
285 BOOL bBindInterfacesOnly;
286 BOOL bPamPasswordChange;
287 BOOL bUnixPasswdSync;
288 BOOL bPasswdChatDebug;
289 int iPasswdChatTimeout;
293 BOOL bNTStatusSupport;
295 int iMaxStatCacheSize;
297 BOOL bAllowTrustedDomains;
301 BOOL bClientLanManAuth;
302 BOOL bClientNTLMv2Auth;
303 BOOL bClientPlaintextAuth;
304 BOOL bClientUseSpnego;
305 BOOL bDebugPrefixTimestamp;
306 BOOL bDebugHiresTimestamp;
310 BOOL bEnableCoreFiles;
313 BOOL bHostnameLookups;
314 BOOL bUnixExtensions;
315 BOOL bDisableNetbios;
316 BOOL bUseKerberosKeytab;
317 BOOL bDeferSharingViolations;
318 BOOL bEnablePrivileges;
320 BOOL bUsershareOwnerOnly;
321 BOOL bUsershareAllowGuests;
322 BOOL bRegistryShares;
323 int restrict_anonymous;
324 int name_cache_timeout;
327 int client_ldap_sasl_wrapping;
328 int iUsershareMaxShares;
330 int iIdmapNegativeCacheTime;
334 param_opt_struct *param_opt;
337 static global Globals;
340 * This structure describes a single service.
346 time_t usershare_last_mod;
350 char **szInvalidUsers;
358 char *szRootPostExec;
360 char *szPrintcommand;
363 char *szLppausecommand;
364 char *szLpresumecommand;
365 char *szQueuepausecommand;
366 char *szQueueresumecommand;
368 char *szPrintjobUsername;
376 char *szVetoOplockFiles;
382 char **printer_admin;
387 char *szAioWriteBehind;
391 int iMaxReportedPrintJobs;
394 int iCreate_force_mode;
396 int iSecurity_force_mode;
399 int iDir_Security_mask;
400 int iDir_Security_force_mode;
404 int iOplockContentionLimit;
409 BOOL bRootpreexecClose;
412 BOOL bShortCasePreserve;
414 BOOL bHideSpecialFiles;
415 BOOL bHideUnReadable;
416 BOOL bHideUnWriteableFiles;
427 BOOL bStoreDosAttributes;
440 BOOL bStrictAllocate;
444 BOOL bDeleteReadonly;
446 BOOL bDeleteVetoFiles;
449 BOOL bDosFiletimeResolution;
450 BOOL bFakeDirCreateTimes;
456 BOOL bUseClientDriver;
457 BOOL bDefaultDevmode;
458 BOOL bForcePrintername;
460 BOOL bForceUnknownAclUser;
463 BOOL bMap_acl_inherit;
466 BOOL bAclCheckPermissions;
467 BOOL bAclMapFullControl;
468 BOOL bAclGroupControl;
470 BOOL bKernelChangeNotify;
471 int iallocation_roundup_size;
475 int iDirectoryNameCacheSize;
476 param_opt_struct *param_opt;
478 char dummy[3]; /* for alignment */
482 /* This is a default service used to prime a services structure */
483 static service sDefault = {
485 False, /* not autoloaded */
486 0, /* not a usershare */
487 (time_t)0, /* No last mod time */
488 NULL, /* szService */
490 NULL, /* szUsername */
491 NULL, /* szInvalidUsers */
492 NULL, /* szValidUsers */
493 NULL, /* szAdminUsers */
495 NULL, /* szInclude */
496 NULL, /* szPreExec */
497 NULL, /* szPostExec */
498 NULL, /* szRootPreExec */
499 NULL, /* szRootPostExec */
500 NULL, /* szCupsOptions */
501 NULL, /* szPrintcommand */
502 NULL, /* szLpqcommand */
503 NULL, /* szLprmcommand */
504 NULL, /* szLppausecommand */
505 NULL, /* szLpresumecommand */
506 NULL, /* szQueuepausecommand */
507 NULL, /* szQueueresumecommand */
508 NULL, /* szPrintername */
509 NULL, /* szPrintjobUsername */
510 NULL, /* szDontdescend */
511 NULL, /* szHostsallow */
512 NULL, /* szHostsdeny */
513 NULL, /* szMagicScript */
514 NULL, /* szMagicOutput */
515 NULL, /* szVetoFiles */
516 NULL, /* szHideFiles */
517 NULL, /* szVetoOplockFiles */
519 NULL, /* force user */
520 NULL, /* force group */
522 NULL, /* writelist */
523 NULL, /* printer admin */
526 NULL, /* vfs objects */
527 NULL, /* szMSDfsProxy */
528 NULL, /* szAioWriteBehind */
530 0, /* iMinPrintSpace */
531 1000, /* iMaxPrintJobs */
532 0, /* iMaxReportedPrintJobs */
533 0, /* iWriteCacheSize */
534 0744, /* iCreate_mask */
535 0000, /* iCreate_force_mode */
536 0777, /* iSecurity_mask */
537 0, /* iSecurity_force_mode */
538 0755, /* iDir_mask */
539 0000, /* iDir_force_mode */
540 0777, /* iDir_Security_mask */
541 0, /* iDir_Security_force_mode */
542 0, /* iMaxConnections */
543 CASE_LOWER, /* iDefaultCase */
544 DEFAULT_PRINTING, /* iPrinting */
545 2, /* iOplockContentionLimit */
547 1024, /* iBlock_size */
548 0, /* iDfreeCacheTime */
549 False, /* bPreexecClose */
550 False, /* bRootpreexecClose */
551 Auto, /* case sensitive */
552 True, /* case preserve */
553 True, /* short case preserve */
554 True, /* bHideDotFiles */
555 False, /* bHideSpecialFiles */
556 False, /* bHideUnReadable */
557 False, /* bHideUnWriteableFiles */
558 True, /* bBrowseable */
559 True, /* bAvailable */
560 True, /* bRead_only */
561 True, /* bNo_set_dir */
562 False, /* bGuest_only */
563 False, /* bGuest_ok */
564 False, /* bPrint_ok */
565 False, /* bMap_system */
566 False, /* bMap_hidden */
567 True, /* bMap_archive */
568 False, /* bStoreDosAttributes */
569 False, /* bDmapiSupport */
571 Auto, /* iStrictLocking */
572 True, /* bPosixLocking */
573 True, /* bShareModes */
575 True, /* bLevel2OpLocks */
576 False, /* bOnlyUser */
577 True, /* bMangledNames */
578 True, /* bWidelinks */
579 True, /* bSymlinks */
580 False, /* bSyncAlways */
581 False, /* bStrictAllocate */
582 False, /* bStrictSync */
583 '~', /* magic char */
585 False, /* bDeleteReadonly */
586 False, /* bFakeOplocks */
587 False, /* bDeleteVetoFiles */
588 False, /* bDosFilemode */
589 True, /* bDosFiletimes */
590 False, /* bDosFiletimeResolution */
591 False, /* bFakeDirCreateTimes */
592 True, /* bBlockingLocks */
593 False, /* bInheritPerms */
594 False, /* bInheritACLS */
595 False, /* bInheritOwner */
596 False, /* bMSDfsRoot */
597 False, /* bUseClientDriver */
598 True, /* bDefaultDevmode */
599 False, /* bForcePrintername */
600 True, /* bNTAclSupport */
601 False, /* bForceUnknownAclUser */
602 False, /* bUseSendfile */
603 False, /* bProfileAcls */
604 False, /* bMap_acl_inherit */
605 False, /* bAfs_Share */
606 False, /* bEASupport */
607 True, /* bAclCheckPermissions */
608 True, /* bAclMapFullControl */
609 False, /* bAclGroupControl */
610 True, /* bChangeNotify */
611 True, /* bKernelChangeNotify */
612 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
613 0, /* iAioReadSize */
614 0, /* iAioWriteSize */
615 MAP_READONLY_YES, /* iMap_readonly */
616 #ifdef BROKEN_DIRECTORY_HANDLING
617 0, /* iDirectoryNameCacheSize */
619 100, /* iDirectoryNameCacheSize */
621 NULL, /* Parametric options */
626 /* local variables */
627 static service **ServicePtrs = NULL;
628 static int iNumServices = 0;
629 static int iServiceIndex = 0;
630 static TDB_CONTEXT *ServiceHash;
631 static int *invalid_services = NULL;
632 static int num_invalid_services = 0;
633 static BOOL bInGlobalSection = True;
634 static BOOL bGlobalOnly = False;
635 static int server_role;
636 static int default_server_announce;
638 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
640 /* prototypes for the special type handlers */
641 static BOOL handle_include( int snum, const char *pszParmValue, char **ptr);
642 static BOOL handle_copy( int snum, const char *pszParmValue, char **ptr);
643 static BOOL handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
644 static BOOL handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
645 static BOOL handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
646 static BOOL handle_debug_list( int snum, const char *pszParmValue, char **ptr );
647 static BOOL handle_workgroup( int snum, const char *pszParmValue, char **ptr );
648 static BOOL handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
649 static BOOL handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
650 static BOOL handle_charset( int snum, const char *pszParmValue, char **ptr );
651 static BOOL handle_printing( int snum, const char *pszParmValue, char **ptr);
653 static void set_server_role(void);
654 static void set_default_server_announce_type(void);
655 static void set_allowed_client_auth(void);
657 static const struct enum_list enum_protocol[] = {
658 {PROTOCOL_NT1, "NT1"},
659 {PROTOCOL_LANMAN2, "LANMAN2"},
660 {PROTOCOL_LANMAN1, "LANMAN1"},
661 {PROTOCOL_CORE, "CORE"},
662 {PROTOCOL_COREPLUS, "COREPLUS"},
663 {PROTOCOL_COREPLUS, "CORE+"},
667 static const struct enum_list enum_security[] = {
668 {SEC_SHARE, "SHARE"},
670 {SEC_SERVER, "SERVER"},
671 {SEC_DOMAIN, "DOMAIN"},
678 static const struct enum_list enum_printing[] = {
679 {PRINT_SYSV, "sysv"},
681 {PRINT_HPUX, "hpux"},
685 {PRINT_LPRNG, "lprng"},
686 {PRINT_CUPS, "cups"},
687 {PRINT_IPRINT, "iprint"},
689 {PRINT_LPROS2, "os2"},
691 {PRINT_TEST, "test"},
693 #endif /* DEVELOPER */
697 static const struct enum_list enum_ldap_sasl_wrapping[] = {
699 {ADS_AUTH_SASL_SIGN, "sign"},
700 {ADS_AUTH_SASL_SEAL, "seal"},
704 static const struct enum_list enum_ldap_ssl[] = {
705 {LDAP_SSL_OFF, "no"},
706 {LDAP_SSL_OFF, "No"},
707 {LDAP_SSL_OFF, "off"},
708 {LDAP_SSL_OFF, "Off"},
709 {LDAP_SSL_START_TLS, "start tls"},
710 {LDAP_SSL_START_TLS, "Start_tls"},
714 static const struct enum_list enum_ldap_passwd_sync[] = {
715 {LDAP_PASSWD_SYNC_OFF, "no"},
716 {LDAP_PASSWD_SYNC_OFF, "No"},
717 {LDAP_PASSWD_SYNC_OFF, "off"},
718 {LDAP_PASSWD_SYNC_OFF, "Off"},
719 {LDAP_PASSWD_SYNC_ON, "Yes"},
720 {LDAP_PASSWD_SYNC_ON, "yes"},
721 {LDAP_PASSWD_SYNC_ON, "on"},
722 {LDAP_PASSWD_SYNC_ON, "On"},
723 {LDAP_PASSWD_SYNC_ONLY, "Only"},
724 {LDAP_PASSWD_SYNC_ONLY, "only"},
728 /* Types of machine we can announce as. */
729 #define ANNOUNCE_AS_NT_SERVER 1
730 #define ANNOUNCE_AS_WIN95 2
731 #define ANNOUNCE_AS_WFW 3
732 #define ANNOUNCE_AS_NT_WORKSTATION 4
734 static const struct enum_list enum_announce_as[] = {
735 {ANNOUNCE_AS_NT_SERVER, "NT"},
736 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
737 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
738 {ANNOUNCE_AS_WIN95, "win95"},
739 {ANNOUNCE_AS_WFW, "WfW"},
743 static const struct enum_list enum_map_readonly[] = {
744 {MAP_READONLY_NO, "no"},
745 {MAP_READONLY_NO, "false"},
746 {MAP_READONLY_NO, "0"},
747 {MAP_READONLY_YES, "yes"},
748 {MAP_READONLY_YES, "true"},
749 {MAP_READONLY_YES, "1"},
750 {MAP_READONLY_PERMISSIONS, "permissions"},
751 {MAP_READONLY_PERMISSIONS, "perms"},
755 static const struct enum_list enum_case[] = {
756 {CASE_LOWER, "lower"},
757 {CASE_UPPER, "upper"},
761 static const struct enum_list enum_bool_auto[] = {
772 /* Client-side offline caching policy types */
773 #define CSC_POLICY_MANUAL 0
774 #define CSC_POLICY_DOCUMENTS 1
775 #define CSC_POLICY_PROGRAMS 2
776 #define CSC_POLICY_DISABLE 3
778 static const struct enum_list enum_csc_policy[] = {
779 {CSC_POLICY_MANUAL, "manual"},
780 {CSC_POLICY_DOCUMENTS, "documents"},
781 {CSC_POLICY_PROGRAMS, "programs"},
782 {CSC_POLICY_DISABLE, "disable"},
786 /* SMB signing types. */
787 static const struct enum_list enum_smb_signing_vals[] = {
799 {Required, "required"},
800 {Required, "mandatory"},
802 {Required, "forced"},
803 {Required, "enforced"},
807 /* ACL compatibility options. */
808 static const struct enum_list enum_acl_compat_vals[] = {
809 { ACL_COMPAT_AUTO, "auto" },
810 { ACL_COMPAT_WINNT, "winnt" },
811 { ACL_COMPAT_WIN2K, "win2k" },
816 Do you want session setups at user level security with a invalid
817 password to be rejected or allowed in as guest? WinNT rejects them
818 but it can be a pain as it means "net view" needs to use a password
820 You have 3 choices in the setting of map_to_guest:
822 "Never" means session setups with an invalid password
823 are rejected. This is the default.
825 "Bad User" means session setups with an invalid password
826 are rejected, unless the username does not exist, in which case it
827 is treated as a guest login
829 "Bad Password" means session setups with an invalid password
830 are treated as a guest login
832 Note that map_to_guest only has an effect in user or server
836 static const struct enum_list enum_map_to_guest[] = {
837 {NEVER_MAP_TO_GUEST, "Never"},
838 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
839 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
840 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
844 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
846 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
847 * screen in SWAT. This is used to exclude parameters as well as to squash all
848 * parameters that have been duplicated by pseudonyms.
850 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
851 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
852 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
855 * NOTE2: Handling of duplicated (synonym) paramters:
856 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
857 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
858 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
859 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
862 static struct parm_struct parm_table[] = {
863 {N_("Base Options"), P_SEP, P_SEPARATOR},
865 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
866 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
867 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
868 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
869 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
870 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
871 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
873 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
875 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
876 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
877 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
878 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
879 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
880 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
882 {N_("Security Options"), P_SEP, P_SEPARATOR},
884 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
885 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
886 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
887 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
888 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
889 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
890 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
891 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
892 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
893 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
894 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
895 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
896 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
897 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
898 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
899 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
900 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
901 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
902 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
903 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
905 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
906 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
907 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
908 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
909 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
910 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
911 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
912 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
913 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
914 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
915 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
916 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
917 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
918 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
919 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
920 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
922 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
923 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
924 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
926 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
927 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
928 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
929 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
930 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
931 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
932 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
933 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
934 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
936 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
937 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
938 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
939 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
941 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
942 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
943 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
944 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
945 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
946 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
947 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
948 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
950 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
951 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
952 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
953 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
954 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
955 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
956 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
957 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
958 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
959 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
961 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
962 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
964 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
965 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
966 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
967 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
968 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
969 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
970 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
972 {N_("Logging Options"), P_SEP, P_SEPARATOR},
974 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
975 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
976 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
977 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
978 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
980 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
981 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
982 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
983 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
984 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
985 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
986 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
987 {"debug class", P_BOOL, P_GLOBAL, &Globals.bDebugClass, NULL, NULL, FLAG_ADVANCED},
988 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
990 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
992 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
993 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
994 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
995 {"aio write behind", P_STRING, P_LOCAL, &sDefault.szAioWriteBehind, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
996 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
997 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
998 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
999 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1000 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
1001 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
1002 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
1003 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
1004 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
1006 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1007 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1008 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1009 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1010 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1011 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1012 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1014 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1015 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1016 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1017 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1018 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1019 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1021 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1022 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1023 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1024 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1025 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1026 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1027 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1028 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1029 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1030 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1031 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1032 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1033 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1035 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1037 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1038 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1039 {"getwd cache", P_BOOL, P_GLOBAL, &use_getwd_cache, NULL, NULL, FLAG_ADVANCED},
1040 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1041 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1042 {"directory name cache size", P_INTEGER, P_LOCAL, &sDefault.iDirectoryNameCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1043 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1045 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1046 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1047 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1048 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1049 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1050 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1051 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1053 {"socket options", P_GSTRING, P_GLOBAL, user_socket_options, NULL, NULL, FLAG_ADVANCED},
1054 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1055 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1056 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1057 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1058 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1059 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1060 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1062 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1063 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1064 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1065 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1067 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1069 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1070 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1071 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1072 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1073 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1074 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1075 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1076 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1077 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1078 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1079 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1080 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1081 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1083 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1084 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1085 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1086 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1087 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1088 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1089 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1091 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1092 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1093 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1094 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1095 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1096 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1098 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1099 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1100 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1101 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1102 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1103 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1105 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1106 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1107 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1109 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1110 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1111 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1112 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1113 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1114 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1115 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1116 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1117 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1118 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1120 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1121 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1122 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1123 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1124 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1125 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1126 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1127 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1128 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1129 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1130 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1131 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1134 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1136 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1138 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1140 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1141 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1142 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1143 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1144 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1145 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1146 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1147 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1148 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1149 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1150 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1151 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1153 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1154 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1155 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1156 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1157 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1159 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1161 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1162 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1163 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1164 {"preferred master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1165 {"prefered master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1166 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1167 {"domain master", P_ENUM, P_GLOBAL, &Globals.bDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1168 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1169 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1170 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1171 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1173 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1175 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1176 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1178 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1179 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1180 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1182 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1184 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1185 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1186 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1187 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1188 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1189 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1191 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1192 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1193 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1194 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1195 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1196 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1197 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1199 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1201 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1202 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1203 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1204 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1206 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1207 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1208 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1209 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1210 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1211 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1212 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1213 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1215 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1216 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1217 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1218 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1220 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1221 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1223 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1224 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1225 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1226 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1227 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1228 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1230 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1231 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1232 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1235 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1236 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1237 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1238 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1239 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1240 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1241 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1242 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1243 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1244 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1245 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1246 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1247 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1248 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1249 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1250 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1251 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1253 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1254 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1255 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1256 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1258 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1259 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1260 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1261 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1262 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1263 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1264 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1265 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1266 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1267 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1268 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1269 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1270 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1271 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1272 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1273 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1274 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1275 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1276 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1277 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1278 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1279 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1280 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1281 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1282 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1283 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1285 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1286 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1288 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1290 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1291 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1294 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1295 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1296 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1298 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1300 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1301 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1302 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1303 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1304 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1305 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1306 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1307 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1308 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1309 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1310 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1311 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1312 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1313 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1314 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1317 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1318 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1319 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1320 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1321 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1322 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1323 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1324 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1326 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1329 /***************************************************************************
1330 Initialise the sDefault parameter structure for the printer values.
1331 ***************************************************************************/
1333 static void init_printer_values(service *pService)
1335 /* choose defaults depending on the type of printing */
1336 switch (pService->iPrinting) {
1341 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1342 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1343 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1348 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1349 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1350 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1351 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1352 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1353 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1354 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1360 /* set the lpq command to contain the destination printer
1361 name only. This is used by cups_queue_get() */
1362 string_set(&pService->szLpqcommand, "%p");
1363 string_set(&pService->szLprmcommand, "");
1364 string_set(&pService->szPrintcommand, "");
1365 string_set(&pService->szLppausecommand, "");
1366 string_set(&pService->szLpresumecommand, "");
1367 string_set(&pService->szQueuepausecommand, "");
1368 string_set(&pService->szQueueresumecommand, "");
1370 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1371 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1372 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1373 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1374 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1375 string_set(&pService->szQueuepausecommand, "disable '%p'");
1376 string_set(&pService->szQueueresumecommand, "enable '%p'");
1377 #endif /* HAVE_CUPS */
1382 string_set(&pService->szLpqcommand, "lpstat -o%p");
1383 string_set(&pService->szLprmcommand, "cancel %p-%j");
1384 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1385 string_set(&pService->szQueuepausecommand, "disable %p");
1386 string_set(&pService->szQueueresumecommand, "enable %p");
1388 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1389 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1394 string_set(&pService->szLpqcommand, "lpq -P%p");
1395 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1396 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1402 string_set(&pService->szPrintcommand, "vlp print %p %s");
1403 string_set(&pService->szLpqcommand, "vlp lpq %p");
1404 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1405 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1406 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1407 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1408 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1410 #endif /* DEVELOPER */
1415 /***************************************************************************
1416 Initialise the global parameter structure.
1417 ***************************************************************************/
1419 static void init_globals(BOOL first_time_only)
1421 static BOOL done_init = False;
1424 /* If requested to initialize only once and we've already done it... */
1425 if (first_time_only && done_init) {
1426 /* ... then we have nothing more to do */
1433 /* The logfile can be set before this is invoked. Free it if so. */
1434 if (Globals.szLogFile != NULL) {
1435 string_free(&Globals.szLogFile);
1436 Globals.szLogFile = NULL;
1439 memset((void *)&Globals, '\0', sizeof(Globals));
1441 for (i = 0; parm_table[i].label; i++)
1442 if ((parm_table[i].type == P_STRING ||
1443 parm_table[i].type == P_USTRING) &&
1445 string_set((char **)parm_table[i].ptr, "");
1447 string_set(&sDefault.fstype, FSTYPE_STRING);
1448 string_set(&sDefault.szPrintjobUsername, "%U");
1450 init_printer_values(&sDefault);
1456 DEBUG(3, ("Initialising global parameters\n"));
1458 string_set(&Globals.szSMBPasswdFile, dyn_SMB_PASSWD_FILE);
1459 string_set(&Globals.szPrivateDir, dyn_PRIVATE_DIR);
1461 /* use the new 'hash2' method by default, with a prefix of 1 */
1462 string_set(&Globals.szManglingMethod, "hash2");
1463 Globals.mangle_prefix = 1;
1465 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1467 /* using UTF8 by default allows us to support all chars */
1468 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1470 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1471 /* If the system supports nl_langinfo(), try to grab the value
1472 from the user's locale */
1473 string_set(&Globals.display_charset, "LOCALE");
1475 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1478 /* Use codepage 850 as a default for the dos character set */
1479 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1482 * Allow the default PASSWD_CHAT to be overridden in local.h.
1484 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1486 set_global_myname(myhostname());
1487 string_set(&Globals.szNetbiosName,global_myname());
1489 set_global_myworkgroup(WORKGROUP);
1490 string_set(&Globals.szWorkgroup, lp_workgroup());
1492 string_set(&Globals.szPasswdProgram, "");
1493 string_set(&Globals.szPidDir, dyn_PIDDIR);
1494 string_set(&Globals.szLockDir, dyn_LOCKDIR);
1495 string_set(&Globals.szSocketAddress, "0.0.0.0");
1496 pstrcpy(s, "Samba ");
1497 pstrcat(s, SAMBA_VERSION_STRING);
1498 string_set(&Globals.szServerString, s);
1499 slprintf(s, sizeof(s) - 1, "%d.%d", DEFAULT_MAJOR_VERSION,
1500 DEFAULT_MINOR_VERSION);
1501 string_set(&Globals.szAnnounceVersion, s);
1503 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1506 pstrcpy(user_socket_options, DEFAULT_SOCKET_OPTIONS);
1508 string_set(&Globals.szLogonDrive, "");
1509 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1510 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1511 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1513 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1514 string_set(&Globals.szPasswordServer, "*");
1516 Globals.AlgorithmicRidBase = BASE_RID;
1518 Globals.bLoadPrinters = True;
1519 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1521 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1522 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1523 Globals.max_xmit = 0x4104;
1524 Globals.max_mux = 50; /* This is *needed* for profile support. */
1525 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1526 Globals.bDisableSpoolss = False;
1527 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1528 Globals.pwordlevel = 0;
1529 Globals.unamelevel = 0;
1530 Globals.deadtime = 0;
1531 Globals.bLargeReadwrite = True;
1532 Globals.max_log_size = 5000;
1533 Globals.max_open_files = MAX_OPEN_FILES;
1534 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1535 Globals.maxprotocol = PROTOCOL_NT1;
1536 Globals.minprotocol = PROTOCOL_CORE;
1537 Globals.security = SEC_USER;
1538 Globals.paranoid_server_security = True;
1539 Globals.bEncryptPasswords = True;
1540 Globals.bUpdateEncrypt = False;
1541 Globals.clientSchannel = Auto;
1542 Globals.serverSchannel = Auto;
1543 Globals.bReadRaw = True;
1544 Globals.bWriteRaw = True;
1545 Globals.bNullPasswords = False;
1546 Globals.bObeyPamRestrictions = False;
1548 Globals.bSyslogOnly = False;
1549 Globals.bTimestampLogs = True;
1550 string_set(&Globals.szLogLevel, "0");
1551 Globals.bDebugPrefixTimestamp = False;
1552 Globals.bDebugHiresTimestamp = False;
1553 Globals.bDebugPid = False;
1554 Globals.bDebugUid = False;
1555 Globals.bDebugClass = False;
1556 Globals.bEnableCoreFiles = True;
1557 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1558 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1559 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1560 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1561 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1562 Globals.lm_interval = 60;
1563 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1564 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1565 Globals.bNISHomeMap = False;
1566 #ifdef WITH_NISPLUS_HOME
1567 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1569 string_set(&Globals.szNISHomeMapName, "auto.home");
1572 Globals.bTimeServer = False;
1573 Globals.bBindInterfacesOnly = False;
1574 Globals.bUnixPasswdSync = False;
1575 Globals.bPamPasswordChange = False;
1576 Globals.bPasswdChatDebug = False;
1577 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1578 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1579 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1580 Globals.bStatCache = True; /* use stat cache by default */
1581 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1582 Globals.restrict_anonymous = 0;
1583 Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
1584 Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
1585 Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
1586 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
1587 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1588 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1590 Globals.map_to_guest = 0; /* By Default, "Never" */
1591 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1592 Globals.enhanced_browsing = True;
1593 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1594 #ifdef MMAP_BLACKLIST
1595 Globals.bUseMmap = False;
1597 Globals.bUseMmap = True;
1599 Globals.bUnixExtensions = True;
1600 Globals.bResetOnZeroVC = False;
1602 /* hostname lookups can be very expensive and are broken on
1603 a large number of sites (tridge) */
1604 Globals.bHostnameLookups = False;
1606 string_set(&Globals.szPassdbBackend, "smbpasswd");
1607 string_set(&Globals.szLdapSuffix, "");
1608 string_set(&Globals.szLdapMachineSuffix, "");
1609 string_set(&Globals.szLdapUserSuffix, "");
1610 string_set(&Globals.szLdapGroupSuffix, "");
1611 string_set(&Globals.szLdapIdmapSuffix, "");
1613 string_set(&Globals.szLdapAdminDn, "");
1614 Globals.ldap_ssl = LDAP_SSL_ON;
1615 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1616 Globals.ldap_delete_dn = False;
1617 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1618 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1619 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1621 /* This is what we tell the afs client. in reality we set the token
1622 * to never expire, though, when this runs out the afs client will
1623 * forget the token. Set to 0 to get NEVERDATE.*/
1624 Globals.iAfsTokenLifetime = 604800;
1626 /* these parameters are set to defaults that are more appropriate
1627 for the increasing samba install base:
1629 as a member of the workgroup, that will possibly become a
1630 _local_ master browser (lm = True). this is opposed to a forced
1631 local master browser startup (pm = True).
1633 doesn't provide WINS server service by default (wsupp = False),
1634 and doesn't provide domain master browser services by default, either.
1638 Globals.bMsAddPrinterWizard = True;
1639 Globals.bPreferredMaster = Auto; /* depending on bDomainMaster */
1640 Globals.os_level = 20;
1641 Globals.bLocalMaster = True;
1642 Globals.bDomainMaster = Auto; /* depending on bDomainLogons */
1643 Globals.bDomainLogons = False;
1644 Globals.bBrowseList = True;
1645 Globals.bWINSsupport = False;
1646 Globals.bWINSproxy = False;
1648 Globals.bDNSproxy = True;
1650 /* this just means to use them if they exist */
1651 Globals.bKernelOplocks = True;
1653 Globals.bAllowTrustedDomains = True;
1655 string_set(&Globals.szTemplateShell, "/bin/false");
1656 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1657 string_set(&Globals.szWinbindSeparator, "\\");
1659 string_set(&Globals.szCupsServer, "");
1660 string_set(&Globals.szIPrintServer, "");
1662 string_set(&Globals.ctdbdSocket, "");
1663 Globals.szClusterAddresses = NULL;
1664 Globals.clustering = False;
1666 Globals.winbind_cache_time = 300; /* 5 minutes */
1667 Globals.bWinbindEnumUsers = False;
1668 Globals.bWinbindEnumGroups = False;
1669 Globals.bWinbindUseDefaultDomain = False;
1670 Globals.bWinbindTrustedDomainsOnly = False;
1671 Globals.bWinbindNestedGroups = True;
1672 Globals.winbind_expand_groups = 1;
1673 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1674 Globals.bWinbindRefreshTickets = False;
1675 Globals.bWinbindOfflineLogon = False;
1677 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1678 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1680 Globals.bPassdbExpandExplicit = False;
1682 Globals.name_cache_timeout = 660; /* In seconds */
1684 Globals.bUseSpnego = True;
1685 Globals.bClientUseSpnego = True;
1687 Globals.client_signing = Auto;
1688 Globals.server_signing = False;
1690 Globals.bDeferSharingViolations = True;
1691 string_set(&Globals.smb_ports, SMB_PORTS);
1693 Globals.bEnablePrivileges = True;
1694 Globals.bHostMSDfs = True;
1695 Globals.bASUSupport = False;
1697 /* User defined shares. */
1698 pstrcpy(s, dyn_LOCKDIR);
1699 pstrcat(s, "/usershares");
1700 string_set(&Globals.szUsersharePath, s);
1701 string_set(&Globals.szUsershareTemplateShare, "");
1702 Globals.iUsershareMaxShares = 0;
1703 /* By default disallow sharing of directories not owned by the sharer. */
1704 Globals.bUsershareOwnerOnly = True;
1705 /* By default disallow guest access to usershares. */
1706 Globals.bUsershareAllowGuests = False;
1708 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1710 /* By default no shares out of the registry */
1711 Globals.bRegistryShares = False;
1714 /*******************************************************************
1715 Convenience routine to grab string parameters into temporary memory
1716 and run standard_sub_basic on them. The buffers can be written to by
1717 callers without affecting the source string.
1718 ********************************************************************/
1720 static char *lp_string(const char *s)
1724 /* The follow debug is useful for tracking down memory problems
1725 especially if you have an inner loop that is calling a lp_*()
1726 function that returns a string. Perhaps this debug should be
1727 present all the time? */
1730 DEBUG(10, ("lp_string(%s)\n", s));
1733 tmpstr = alloc_sub_basic(get_current_username(),
1734 current_user_info.domain, s);
1735 if (trim_char(tmpstr, '\"', '\"')) {
1736 if (strchr(tmpstr,'\"') != NULL) {
1738 tmpstr = alloc_sub_basic(get_current_username(),
1739 current_user_info.domain, s);
1742 ret = talloc_strdup(talloc_tos(), tmpstr);
1749 In this section all the functions that are used to access the
1750 parameters from the rest of the program are defined
1753 #define FN_GLOBAL_STRING(fn_name,ptr) \
1754 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1755 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1756 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1757 #define FN_GLOBAL_LIST(fn_name,ptr) \
1758 const char **fn_name(void) {return(*(const char ***)(ptr));}
1759 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1760 BOOL fn_name(void) {return(*(BOOL *)(ptr));}
1761 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1762 char fn_name(void) {return(*(char *)(ptr));}
1763 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1764 int fn_name(void) {return(*(int *)(ptr));}
1766 #define FN_LOCAL_STRING(fn_name,val) \
1767 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1768 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1769 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1770 #define FN_LOCAL_LIST(fn_name,val) \
1771 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1772 #define FN_LOCAL_BOOL(fn_name,val) \
1773 BOOL fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1774 #define FN_LOCAL_INTEGER(fn_name,val) \
1775 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1777 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1778 BOOL fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1779 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1780 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1781 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1782 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1783 #define FN_LOCAL_CHAR(fn_name,val) \
1784 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1786 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1787 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1788 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1789 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1790 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1791 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1792 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1793 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1794 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1795 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1796 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1797 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1798 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1799 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1800 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1801 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1802 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1803 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1804 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1805 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1806 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1807 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1808 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1809 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1810 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1811 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1812 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1813 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1814 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1815 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1816 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1817 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1818 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1819 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1820 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1821 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1822 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1823 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1824 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1825 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1826 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1827 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1828 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1829 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1830 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1831 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1832 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1833 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1834 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1835 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1836 * lp_passdb_backend() should be replace by the this macro again after
1839 const char *lp_passdb_backend(void)
1841 char *delim, *quote;
1843 delim = strchr( Globals.szPassdbBackend, ' ');
1844 /* no space at all */
1845 if (delim == NULL) {
1849 quote = strchr(Globals.szPassdbBackend, '"');
1850 /* no quote char or non in the first part */
1851 if (quote == NULL || quote > delim) {
1856 quote = strchr(quote+1, '"');
1857 if (quote == NULL) {
1858 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1860 } else if (*(quote+1) == '\0') {
1861 /* space, fitting quote char, and one backend only */
1864 /* terminate string after the fitting quote char */
1869 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1870 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1871 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1872 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1875 return Globals.szPassdbBackend;
1877 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1878 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1879 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1880 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1881 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1883 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1884 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1885 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1886 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1887 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1888 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1890 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1892 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1893 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1894 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1896 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1898 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1899 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1900 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1901 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1902 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1903 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1904 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1905 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1906 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1907 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1908 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1909 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1910 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1911 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1912 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1914 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1915 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1916 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1917 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1918 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1919 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1920 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1922 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1923 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1924 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1925 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1926 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1927 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1928 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1929 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1930 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1931 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1932 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1933 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1934 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1935 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1937 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1939 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1940 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1941 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1942 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1943 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1944 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1945 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1946 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1947 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1948 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1949 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1950 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1951 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1952 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1953 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1954 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1955 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1956 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1957 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1958 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1959 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1960 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1961 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1962 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1963 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1964 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1965 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1966 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1967 FN_GLOBAL_BOOL(lp_debug_class, &Globals.bDebugClass)
1968 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1969 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1970 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1971 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1972 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1973 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1974 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1975 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1976 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1977 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1978 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1979 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
1980 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
1981 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
1982 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
1983 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
1984 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
1985 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
1986 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
1987 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
1988 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
1989 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
1990 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
1991 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
1992 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
1993 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
1994 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
1995 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
1996 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
1997 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
1998 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
1999 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
2000 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
2001 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
2002 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
2003 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
2004 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
2005 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
2006 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2007 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2008 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2009 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2010 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2011 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2012 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2013 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2014 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2015 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2016 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2017 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2018 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2019 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2020 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2021 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2022 FN_GLOBAL_INTEGER(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2023 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2024 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2025 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2026 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2027 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2028 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2029 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2030 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2031 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2033 FN_LOCAL_STRING(lp_preexec, szPreExec)
2034 FN_LOCAL_STRING(lp_postexec, szPostExec)
2035 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2036 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2037 FN_LOCAL_STRING(lp_servicename, szService)
2038 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2039 FN_LOCAL_STRING(lp_pathname, szPath)
2040 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2041 FN_LOCAL_STRING(lp_username, szUsername)
2042 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2043 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2044 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2045 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2046 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2047 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2048 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2049 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2050 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2051 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2052 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2053 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2054 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2055 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2056 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2057 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2058 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2059 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2060 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2061 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2062 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2063 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2064 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2065 FN_LOCAL_STRING(lp_comment, comment)
2066 FN_LOCAL_STRING(lp_force_user, force_user)
2067 FN_LOCAL_STRING(lp_force_group, force_group)
2068 FN_LOCAL_LIST(lp_readlist, readlist)
2069 FN_LOCAL_LIST(lp_writelist, writelist)
2070 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2071 FN_LOCAL_STRING(lp_fstype, fstype)
2072 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2073 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2074 static FN_LOCAL_STRING(lp_volume, volume)
2075 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2076 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2077 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2078 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2079 FN_LOCAL_STRING(lp_aio_write_behind, szAioWriteBehind)
2080 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2081 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2082 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2083 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2084 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2085 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2086 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2087 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2088 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2089 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2090 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2091 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2092 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2093 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2094 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2095 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2096 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2097 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2098 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2099 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2100 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2101 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2102 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2103 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2104 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2105 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2106 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2107 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2108 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2109 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2110 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2111 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2112 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2113 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2114 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2115 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2116 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2117 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2118 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2119 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2120 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2121 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2122 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2123 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2124 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2125 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2126 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2127 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2128 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2129 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2130 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2131 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2132 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2133 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2134 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2135 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2136 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2137 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2138 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2139 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2140 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2141 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2142 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2143 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2144 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2145 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2146 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2147 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2148 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2149 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2150 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2151 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2152 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2153 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2154 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2155 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2156 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2157 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2158 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2159 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2160 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2161 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
2162 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2163 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2164 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2165 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2166 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2167 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2168 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2169 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2171 /* local prototypes */
2173 static int map_parameter(const char *pszParmName);
2174 static int map_parameter_canonical(const char *pszParmName, BOOL *inverse);
2175 static BOOL set_boolean(BOOL *pb, const char *pszParmValue);
2176 static const char *get_boolean(BOOL bool_value);
2177 static int getservicebyname(const char *pszServiceName,
2178 service * pserviceDest);
2179 static void copy_service(service * pserviceDest,
2180 service * pserviceSource, BOOL *pcopymapDest);
2181 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue);
2182 static BOOL do_section(const char *pszSectionName);
2183 static void init_copymap(service * pservice);
2184 static BOOL hash_a_service(const char *name, int number);
2185 static void free_service_byindex(int iService);
2186 static char * canonicalize_servicename(const char *name);
2187 static void show_parameter(int parmIndex);
2188 static BOOL is_synonym_of(int parm1, int parm2, BOOL *inverse);
2190 /* This is a helper function for parametrical options support. */
2191 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2192 /* Actual parametrical functions are quite simple */
2193 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2195 BOOL global_section = False;
2197 param_opt_struct *data;
2199 if (snum >= iNumServices) return NULL;
2202 data = Globals.param_opt;
2203 global_section = True;
2205 data = ServicePtrs[snum]->param_opt;
2208 asprintf(¶m_key, "%s:%s", type, option);
2210 DEBUG(0,("asprintf failed!\n"));
2215 if (strcmp(data->key, param_key) == 0) {
2216 string_free(¶m_key);
2222 if (!global_section) {
2223 /* Try to fetch the same option but from globals */
2224 /* but only if we are not already working with Globals */
2225 data = Globals.param_opt;
2227 if (strcmp(data->key, param_key) == 0) {
2228 string_free(¶m_key);
2235 string_free(¶m_key);
2241 #define MISSING_PARAMETER(name) \
2242 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2244 /*******************************************************************
2245 convenience routine to return int parameters.
2246 ********************************************************************/
2247 static int lp_int(const char *s)
2251 MISSING_PARAMETER(lp_int);
2255 return (int)strtol(s, NULL, 0);
2258 /*******************************************************************
2259 convenience routine to return unsigned long parameters.
2260 ********************************************************************/
2261 static unsigned long lp_ulong(const char *s)
2265 MISSING_PARAMETER(lp_ulong);
2269 return strtoul(s, NULL, 0);
2272 /*******************************************************************
2273 convenience routine to return boolean parameters.
2274 ********************************************************************/
2275 static BOOL lp_bool(const char *s)
2280 MISSING_PARAMETER(lp_bool);
2284 if (!set_boolean(&ret,s)) {
2285 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2292 /*******************************************************************
2293 convenience routine to return enum parameters.
2294 ********************************************************************/
2295 static int lp_enum(const char *s,const struct enum_list *_enum)
2299 if (!s || !*s || !_enum) {
2300 MISSING_PARAMETER(lp_enum);
2304 for (i=0; _enum[i].name; i++) {
2305 if (strequal(_enum[i].name,s))
2306 return _enum[i].value;
2309 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2313 #undef MISSING_PARAMETER
2315 /* DO NOT USE lp_parm_string ANYMORE!!!!
2316 * use lp_parm_const_string or lp_parm_talloc_string
2318 * lp_parm_string is only used to let old modules find this symbol
2320 #undef lp_parm_string
2321 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2322 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2324 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2327 /* Return parametric option from a given service. Type is a part of option before ':' */
2328 /* Parametric option has following syntax: 'Type: option = value' */
2329 /* the returned value is talloced on the talloc_tos() */
2330 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2332 param_opt_struct *data = get_parametrics(snum, type, option);
2334 if (data == NULL||data->value==NULL) {
2336 return lp_string(def);
2342 return lp_string(data->value);
2345 /* Return parametric option from a given service. Type is a part of option before ':' */
2346 /* Parametric option has following syntax: 'Type: option = value' */
2347 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2349 param_opt_struct *data = get_parametrics(snum, type, option);
2351 if (data == NULL||data->value==NULL)
2357 /* Return parametric option from a given service. Type is a part of option before ':' */
2358 /* Parametric option has following syntax: 'Type: option = value' */
2360 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2362 param_opt_struct *data = get_parametrics(snum, type, option);
2364 if (data == NULL||data->value==NULL)
2365 return (const char **)def;
2367 if (data->list==NULL) {
2368 data->list = str_list_make(data->value, NULL);
2371 return (const char **)data->list;
2374 /* Return parametric option from a given service. Type is a part of option before ':' */
2375 /* Parametric option has following syntax: 'Type: option = value' */
2377 int lp_parm_int(int snum, const char *type, const char *option, int def)
2379 param_opt_struct *data = get_parametrics(snum, type, option);
2381 if (data && data->value && *data->value)
2382 return lp_int(data->value);
2387 /* Return parametric option from a given service. Type is a part of option before ':' */
2388 /* Parametric option has following syntax: 'Type: option = value' */
2390 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2392 param_opt_struct *data = get_parametrics(snum, type, option);
2394 if (data && data->value && *data->value)
2395 return lp_ulong(data->value);
2400 /* Return parametric option from a given service. Type is a part of option before ':' */
2401 /* Parametric option has following syntax: 'Type: option = value' */
2403 BOOL lp_parm_bool(int snum, const char *type, const char *option, BOOL def)
2405 param_opt_struct *data = get_parametrics(snum, type, option);
2407 if (data && data->value && *data->value)
2408 return lp_bool(data->value);
2413 /* Return parametric option from a given service. Type is a part of option before ':' */
2414 /* Parametric option has following syntax: 'Type: option = value' */
2416 int lp_parm_enum(int snum, const char *type, const char *option,
2417 const struct enum_list *_enum, int def)
2419 param_opt_struct *data = get_parametrics(snum, type, option);
2421 if (data && data->value && *data->value && _enum)
2422 return lp_enum(data->value, _enum);
2428 /***************************************************************************
2429 Initialise a service to the defaults.
2430 ***************************************************************************/
2432 static void init_service(service * pservice)
2434 memset((char *)pservice, '\0', sizeof(service));
2435 copy_service(pservice, &sDefault, NULL);
2438 /***************************************************************************
2439 Free the dynamically allocated parts of a service struct.
2440 ***************************************************************************/
2442 static void free_service(service *pservice)
2445 param_opt_struct *data, *pdata;
2449 if (pservice->szService)
2450 DEBUG(5, ("free_service: Freeing service %s\n",
2451 pservice->szService));
2453 string_free(&pservice->szService);
2454 SAFE_FREE(pservice->copymap);
2456 for (i = 0; parm_table[i].label; i++) {
2457 if ((parm_table[i].type == P_STRING ||
2458 parm_table[i].type == P_USTRING) &&
2459 parm_table[i].p_class == P_LOCAL)
2460 string_free((char **)
2461 (((char *)pservice) +
2462 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2463 else if (parm_table[i].type == P_LIST &&
2464 parm_table[i].p_class == P_LOCAL)
2465 str_list_free((char ***)
2466 (((char *)pservice) +
2467 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2470 data = pservice->param_opt;
2472 DEBUG(5,("Freeing parametrics:\n"));
2474 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2475 string_free(&data->key);
2476 string_free(&data->value);
2477 str_list_free(&data->list);
2483 ZERO_STRUCTP(pservice);
2487 /***************************************************************************
2488 remove a service indexed in the ServicePtrs array from the ServiceHash
2489 and free the dynamically allocated parts
2490 ***************************************************************************/
2492 static void free_service_byindex(int idx)
2494 if ( !LP_SNUM_OK(idx) )
2497 ServicePtrs[idx]->valid = False;
2498 invalid_services[num_invalid_services++] = idx;
2500 /* we have to cleanup the hash record */
2502 if (ServicePtrs[idx]->szService) {
2503 char *canon_name = canonicalize_servicename( ServicePtrs[idx]->szService );
2505 tdb_delete_bystring(ServiceHash, canon_name );
2508 free_service(ServicePtrs[idx]);
2511 /***************************************************************************
2512 Add a new service to the services array initialising it with the given
2514 ***************************************************************************/
2516 static int add_a_service(const service *pservice, const char *name)
2520 int num_to_alloc = iNumServices + 1;
2521 param_opt_struct *data, *pdata;
2523 tservice = *pservice;
2525 /* it might already exist */
2527 i = getservicebyname(name, NULL);
2529 /* Clean all parametric options for service */
2530 /* They will be added during parsing again */
2531 data = ServicePtrs[i]->param_opt;
2533 string_free(&data->key);
2534 string_free(&data->value);
2535 str_list_free(&data->list);
2540 ServicePtrs[i]->param_opt = NULL;
2545 /* find an invalid one */
2547 if (num_invalid_services > 0) {
2548 i = invalid_services[--num_invalid_services];
2551 /* if not, then create one */
2552 if (i == iNumServices) {
2556 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2558 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2562 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2563 if (!ServicePtrs[iNumServices]) {
2564 DEBUG(0,("add_a_service: out of memory!\n"));
2569 /* enlarge invalid_services here for now... */
2570 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2572 if (tinvalid == NULL) {
2573 DEBUG(0,("add_a_service: failed to enlarge "
2574 "invalid_services!\n"));
2577 invalid_services = tinvalid;
2579 free_service_byindex(i);
2582 ServicePtrs[i]->valid = True;
2584 init_service(ServicePtrs[i]);
2585 copy_service(ServicePtrs[i], &tservice, NULL);
2587 string_set(&ServicePtrs[i]->szService, name);
2589 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2590 i, ServicePtrs[i]->szService));
2592 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2599 /***************************************************************************
2600 Convert a string to uppercase and remove whitespaces.
2601 ***************************************************************************/
2603 static char *canonicalize_servicename(const char *src)
2605 static fstring canon; /* is fstring large enough? */
2608 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2612 fstrcpy( canon, src );
2613 strlower_m( canon );
2618 /***************************************************************************
2619 Add a name/index pair for the services array to the hash table.
2620 ***************************************************************************/
2622 static BOOL hash_a_service(const char *name, int idx)
2626 if ( !ServiceHash ) {
2627 DEBUG(10,("hash_a_service: creating tdb servicehash\n"));
2628 ServiceHash = tdb_open("servicehash", 1031, TDB_INTERNAL,
2629 (O_RDWR|O_CREAT), 0600);
2630 if ( !ServiceHash ) {
2631 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2636 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2639 if ( !(canon_name = canonicalize_servicename( name )) )
2642 tdb_store_int32(ServiceHash, canon_name, idx);
2647 /***************************************************************************
2648 Add a new home service, with the specified home directory, defaults coming
2650 ***************************************************************************/
2652 BOOL lp_add_home(const char *pszHomename, int iDefaultService,
2653 const char *user, const char *pszHomedir)
2658 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2663 if (!(*(ServicePtrs[iDefaultService]->szPath))
2664 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2665 pstrcpy(newHomedir, pszHomedir);
2666 string_set(&ServicePtrs[i]->szPath, newHomedir);
2669 if (!(*(ServicePtrs[i]->comment))) {
2671 slprintf(comment, sizeof(comment) - 1,
2672 "Home directory of %s", user);
2673 string_set(&ServicePtrs[i]->comment, comment);
2676 /* set the browseable flag from the global default */
2678 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2680 ServicePtrs[i]->autoloaded = True;
2682 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2683 user, ServicePtrs[i]->szPath ));
2688 /***************************************************************************
2689 Add a new service, based on an old one.
2690 ***************************************************************************/
2692 int lp_add_service(const char *pszService, int iDefaultService)
2694 if (iDefaultService < 0) {
2695 return add_a_service(&sDefault, pszService);
2698 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2701 /***************************************************************************
2702 Add the IPC service.
2703 ***************************************************************************/
2705 static BOOL lp_add_ipc(const char *ipc_name, BOOL guest_ok)
2708 int i = add_a_service(&sDefault, ipc_name);
2713 slprintf(comment, sizeof(comment) - 1,
2714 "IPC Service (%s)", Globals.szServerString);
2716 string_set(&ServicePtrs[i]->szPath, tmpdir());
2717 string_set(&ServicePtrs[i]->szUsername, "");
2718 string_set(&ServicePtrs[i]->comment, comment);
2719 string_set(&ServicePtrs[i]->fstype, "IPC");
2720 ServicePtrs[i]->iMaxConnections = 0;
2721 ServicePtrs[i]->bAvailable = True;
2722 ServicePtrs[i]->bRead_only = True;
2723 ServicePtrs[i]->bGuest_only = False;
2724 ServicePtrs[i]->bGuest_ok = guest_ok;
2725 ServicePtrs[i]->bPrint_ok = False;
2726 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2728 DEBUG(3, ("adding IPC service\n"));
2733 /***************************************************************************
2734 Add a new printer service, with defaults coming from service iFrom.
2735 ***************************************************************************/
2737 BOOL lp_add_printer(const char *pszPrintername, int iDefaultService)
2739 const char *comment = "From Printcap";
2740 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2745 /* note that we do NOT default the availability flag to True - */
2746 /* we take it from the default service passed. This allows all */
2747 /* dynamic printers to be disabled by disabling the [printers] */
2748 /* entry (if/when the 'available' keyword is implemented!). */
2750 /* the printer name is set to the service name. */
2751 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2752 string_set(&ServicePtrs[i]->comment, comment);
2754 /* set the browseable flag from the gloabl default */
2755 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2757 /* Printers cannot be read_only. */
2758 ServicePtrs[i]->bRead_only = False;
2759 /* No share modes on printer services. */
2760 ServicePtrs[i]->bShareModes = False;
2761 /* No oplocks on printer services. */
2762 ServicePtrs[i]->bOpLocks = False;
2763 /* Printer services must be printable. */
2764 ServicePtrs[i]->bPrint_ok = True;
2766 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2772 /***************************************************************************
2773 Check whether the given parameter name is valid.
2774 Parametric options (names containing a colon) are considered valid.
2775 ***************************************************************************/
2777 BOOL lp_parameter_is_valid(const char *pszParmName)
2779 return ((map_parameter(pszParmName) != -1) ||
2780 (strchr(pszParmName, ':') != NULL));
2783 /***************************************************************************
2784 Check whether the given name is the name of a global parameter.
2785 Returns True for strings belonging to parameters of class
2786 P_GLOBAL, False for all other strings, also for parametric options
2787 and strings not belonging to any option.
2788 ***************************************************************************/
2790 BOOL lp_parameter_is_global(const char *pszParmName)
2792 int num = map_parameter(pszParmName);
2795 return (parm_table[num].p_class == P_GLOBAL);
2801 /**************************************************************************
2802 Check whether the given name is the canonical name of a parameter.
2803 Returns False if it is not a valid parameter Name.
2804 For parametric options, True is returned.
2805 **************************************************************************/
2807 BOOL lp_parameter_is_canonical(const char *parm_name)
2809 if (!lp_parameter_is_valid(parm_name)) {
2813 return (map_parameter(parm_name) ==
2814 map_parameter_canonical(parm_name, NULL));
2817 /**************************************************************************
2818 Determine the canonical name for a parameter.
2819 Indicate when it is an inverse (boolean) synonym instead of a
2821 **************************************************************************/
2823 BOOL lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2828 if (!lp_parameter_is_valid(parm_name)) {
2833 num = map_parameter_canonical(parm_name, inverse);
2835 /* parametric option */
2836 *canon_parm = parm_name;
2838 *canon_parm = parm_table[num].label;
2845 /**************************************************************************
2846 Determine the canonical name for a parameter.
2847 Turn the value given into the inverse boolean expression when
2848 the synonym is an invers boolean synonym.
2850 Return True if parm_name is a valid parameter name and
2851 in case it is an invers boolean synonym, if the val string could
2852 successfully be converted to the reverse bool.
2853 Return false in all other cases.
2854 **************************************************************************/
2856 BOOL lp_canonicalize_parameter_with_value(const char *parm_name,
2858 const char **canon_parm,
2859 const char **canon_val)
2864 if (!lp_parameter_is_valid(parm_name)) {
2870 num = map_parameter_canonical(parm_name, &inverse);
2872 /* parametric option */
2873 *canon_parm = parm_name;
2876 *canon_parm = parm_table[num].label;
2878 if (!lp_invert_boolean(val, canon_val)) {
2890 /***************************************************************************
2891 Map a parameter's string representation to something we can use.
2892 Returns False if the parameter string is not recognised, else TRUE.
2893 ***************************************************************************/
2895 static int map_parameter(const char *pszParmName)
2899 if (*pszParmName == '-')
2902 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2903 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2906 /* Warn only if it isn't parametric option */
2907 if (strchr(pszParmName, ':') == NULL)
2908 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2909 /* We do return 'fail' for parametric options as well because they are
2910 stored in different storage
2915 /***************************************************************************
2916 Map a parameter's string representation to the index of the canonical
2917 form of the parameter (it might be a synonym).
2918 Returns -1 if the parameter string is not recognised.
2919 ***************************************************************************/
2921 static int map_parameter_canonical(const char *pszParmName, BOOL *inverse)
2923 int parm_num, canon_num;
2924 BOOL loc_inverse = False;
2926 parm_num = map_parameter(pszParmName);
2927 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2928 /* invalid, parametric or no canidate for synonyms ... */
2932 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2933 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2934 parm_num = canon_num;
2940 if (inverse != NULL) {
2941 *inverse = loc_inverse;
2946 /***************************************************************************
2947 return true if parameter number parm1 is a synonym of parameter
2948 number parm2 (parm2 being the principal name).
2949 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
2951 ***************************************************************************/
2953 static BOOL is_synonym_of(int parm1, int parm2, BOOL *inverse)
2955 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
2956 (parm_table[parm1].flags & FLAG_HIDE) &&
2957 !(parm_table[parm2].flags & FLAG_HIDE))
2959 if (inverse != NULL) {
2960 if ((parm_table[parm1].type == P_BOOLREV) &&
2961 (parm_table[parm2].type == P_BOOL))
2973 /***************************************************************************
2974 Show one parameter's name, type, [values,] and flags.
2975 (helper functions for show_parameter_list)
2976 ***************************************************************************/
2978 static void show_parameter(int parmIndex)
2980 int enumIndex, flagIndex;
2985 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
2986 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING", "P_GSTRING",
2987 "P_UGSTRING", "P_ENUM", "P_SEP"};
2988 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
2989 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
2990 FLAG_HIDE, FLAG_DOS_STRING};
2991 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
2992 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
2993 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
2995 printf("%s=%s", parm_table[parmIndex].label,
2996 type[parm_table[parmIndex].type]);
2997 if (parm_table[parmIndex].type == P_ENUM) {
3000 parm_table[parmIndex].enum_list[enumIndex].name;
3004 enumIndex ? "|" : "",
3005 parm_table[parmIndex].enum_list[enumIndex].name);
3010 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3011 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3014 flag_names[flagIndex]);
3019 /* output synonyms */
3021 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3022 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3023 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3024 parm_table[parmIndex2].label);
3025 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3027 printf(" (synonyms: ");
3032 printf("%s%s", parm_table[parmIndex2].label,
3033 inverse ? "[i]" : "");
3043 /***************************************************************************
3044 Show all parameter's name, type, [values,] and flags.
3045 ***************************************************************************/
3047 void show_parameter_list(void)
3049 int classIndex, parmIndex;
3050 const char *section_names[] = { "local", "global", NULL};
3052 for (classIndex=0; section_names[classIndex]; classIndex++) {
3053 printf("[%s]\n", section_names[classIndex]);
3054 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3055 if (parm_table[parmIndex].p_class == classIndex) {
3056 show_parameter(parmIndex);
3062 /***************************************************************************
3063 Set a boolean variable from the text value stored in the passed string.
3064 Returns True in success, False if the passed string does not correctly
3065 represent a boolean.
3066 ***************************************************************************/
3068 static BOOL set_boolean(BOOL *pb, const char *pszParmValue)
3075 if (strwicmp(pszParmValue, "yes") == 0 ||
3076 strwicmp(pszParmValue, "true") == 0 ||
3077 strwicmp(pszParmValue, "1") == 0)
3079 else if (strwicmp(pszParmValue, "no") == 0 ||
3080 strwicmp(pszParmValue, "False") == 0 ||
3081 strwicmp(pszParmValue, "0") == 0)
3085 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3090 if ((pb != NULL) && (bRetval != False)) {
3098 /***************************************************************************
3099 Check if a given string correctly represents a boolean value.
3100 ***************************************************************************/
3102 BOOL lp_string_is_valid_boolean(const char *parm_value)
3104 return set_boolean(NULL, parm_value);
3107 /***************************************************************************
3108 Get the standard string representation of a boolean value ("yes" or "no")
3109 ***************************************************************************/
3111 static const char *get_boolean(BOOL bool_value)
3113 static const char *yes_str = "yes";
3114 static const char *no_str = "no";
3116 return (bool_value ? yes_str : no_str);
3119 /***************************************************************************
3120 Provide the string of the negated boolean value associated to the boolean
3121 given as a string. Returns False if the passed string does not correctly
3122 represent a boolean.
3123 ***************************************************************************/
3125 BOOL lp_invert_boolean(const char *str, const char **inverse_str)
3129 if (!set_boolean(&val, str)) {
3133 *inverse_str = get_boolean(!val);
3137 /***************************************************************************
3138 Provide the canonical string representation of a boolean value given
3139 as a string. Return True on success, False if the string given does
3140 not correctly represent a boolean.
3141 ***************************************************************************/
3143 BOOL lp_canonicalize_boolean(const char *str, const char**canon_str)
3147 if (!set_boolean(&val, str)) {
3151 *canon_str = get_boolean(val);
3155 /***************************************************************************
3156 Find a service by name. Otherwise works like get_service.
3157 ***************************************************************************/
3159 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3164 if (ServiceHash != NULL) {
3165 if ( !(canon_name = canonicalize_servicename( pszServiceName )) )
3168 iService = tdb_fetch_int32(ServiceHash, canon_name );
3170 if (LP_SNUM_OK(iService)) {
3171 if (pserviceDest != NULL) {
3172 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3182 /***************************************************************************
3183 Copy a service structure to another.
3184 If pcopymapDest is NULL then copy all fields
3185 ***************************************************************************/
3187 static void copy_service(service * pserviceDest, service * pserviceSource, BOOL *pcopymapDest)
3190 BOOL bcopyall = (pcopymapDest == NULL);
3191 param_opt_struct *data, *pdata, *paramo;
3194 for (i = 0; parm_table[i].label; i++)
3195 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3196 (bcopyall || pcopymapDest[i])) {
3197 void *def_ptr = parm_table[i].ptr;
3199 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3202 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3205 switch (parm_table[i].type) {
3208 *(BOOL *)dest_ptr = *(BOOL *)src_ptr;
3214 *(int *)dest_ptr = *(int *)src_ptr;
3218 *(char *)dest_ptr = *(char *)src_ptr;
3222 string_set((char **)dest_ptr,
3227 string_set((char **)dest_ptr,
3229 strupper_m(*(char **)dest_ptr);
3232 str_list_free((char ***)dest_ptr);
3233 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3241 init_copymap(pserviceDest);
3242 if (pserviceSource->copymap)
3243 memcpy((void *)pserviceDest->copymap,
3244 (void *)pserviceSource->copymap,
3245 sizeof(BOOL) * NUMPARAMETERS);
3248 data = pserviceSource->param_opt;
3251 pdata = pserviceDest->param_opt;
3252 /* Traverse destination */
3254 /* If we already have same option, override it */
3255 if (strcmp(pdata->key, data->key) == 0) {
3256 string_free(&pdata->value);
3257 str_list_free(&data->list);
3258 pdata->value = SMB_STRDUP(data->value);
3262 pdata = pdata->next;
3265 paramo = SMB_XMALLOC_P(param_opt_struct);
3266 paramo->key = SMB_STRDUP(data->key);
3267 paramo->value = SMB_STRDUP(data->value);
3268 paramo->list = NULL;
3269 DLIST_ADD(pserviceDest->param_opt, paramo);
3275 /***************************************************************************
3276 Check a service for consistency. Return False if the service is in any way
3277 incomplete or faulty, else True.
3278 ***************************************************************************/
3280 BOOL service_ok(int iService)
3285 if (ServicePtrs[iService]->szService[0] == '\0') {
3286 DEBUG(0, ("The following message indicates an internal error:\n"));
3287 DEBUG(0, ("No service name in service entry.\n"));
3291 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3292 /* I can't see why you'd want a non-printable printer service... */
3293 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3294 if (!ServicePtrs[iService]->bPrint_ok) {
3295 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3296 ServicePtrs[iService]->szService));
3297 ServicePtrs[iService]->bPrint_ok = True;
3299 /* [printers] service must also be non-browsable. */
3300 if (ServicePtrs[iService]->bBrowseable)
3301 ServicePtrs[iService]->bBrowseable = False;
3304 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3305 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3306 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3308 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3309 ServicePtrs[iService]->szService));
3310 ServicePtrs[iService]->bAvailable = False;
3313 /* If a service is flagged unavailable, log the fact at level 1. */
3314 if (!ServicePtrs[iService]->bAvailable)
3315 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3316 ServicePtrs[iService]->szService));
3322 * lp_regdb_open - regdb helper function
3324 * this should be considered an interim solution that becomes
3325 * superfluous once the registry code has been rewritten
3326 * do allow use of the tdb portion of the registry alone.
3328 * in the meanwhile this provides a lean access
3329 * to the registry globals.
3332 static struct tdb_wrap *lp_regdb_open(void)
3334 struct tdb_wrap *reg_tdb = NULL;
3335 const char *vstring = "INFO/version";
3339 reg_tdb = tdb_wrap_open(NULL, lock_path("registry.tdb"), 0,
3340 REG_TDB_FLAGS, O_RDWR, 0600);
3343 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3344 lock_path("registry.tdb"), strerror(errno)));
3348 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3351 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3352 if (vers_id != REGVER_V1) {
3353 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3354 "INFO/version (got %d, expected %d)\n",
3355 lock_path("registry.tdb"), vers_id, REGVER_V1));
3356 /* this is apparently not implemented in the tdb */
3364 * process_registry_globals
3366 * this is the interim version of process_registry globals
3368 * until we can do it as we would like using the api and only
3369 * using the tdb portion of the registry (see below),
3370 * this just provides the needed functionality of regdb_fetch_values
3371 * and regdb_unpack_values, circumventing any fancy stuff, to
3372 * give us access to the registry globals.
3374 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3377 struct tdb_wrap *reg_tdb = NULL;
3381 /* vars for the tdb unpack loop */
3388 uint32 num_values = 0;
3392 struct registry_value *value = NULL;
3394 include_registry_globals = True;
3398 reg_tdb = lp_regdb_open();
3400 DEBUG(1, ("Error opening the registry!\n"));
3404 /* reg_tdb is from now on used as talloc ctx.
3405 * freeing it closes the tdb (if refcount is 0) */
3407 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3408 KEY_SMBCONF, GLOBAL_NAME);
3409 normalize_dbkey(keystr);
3411 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3414 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3421 buflen = data.dsize;
3423 /* unpack number of values */
3424 len = tdb_unpack(buf, buflen, "d", &num_values);
3425 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3428 /* unpack the values */
3429 for (i=0; i < num_values; i++) {
3433 len += tdb_unpack(buf+len, buflen-len, "fdB",
3438 if (registry_smbconf_valname_forbidden(valname)) {
3439 DEBUG(10, ("process_registry_globals: Ignoring "
3440 "parameter '%s' in registry.\n", valname));
3443 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3445 if (size && data_p) {
3446 err = registry_pull_value(reg_tdb,
3453 if (!W_ERROR_IS_OK(err)) {
3458 valstr = talloc_asprintf(reg_tdb, "%d",
3460 pfunc(valname, valstr);
3463 pfunc(valname, value->v.sz.str);
3466 /* ignore other types */
3472 ret = pfunc("registry shares", "yes");
3473 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3476 TALLOC_FREE(reg_tdb);
3477 SAFE_FREE(data.dptr);
3483 * this is process_registry_globals as it _should_ be (roughly)
3484 * using the reg_api functions...
3487 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3490 TALLOC_CTX *ctx = NULL;
3491 char *regpath = NULL;
3492 WERROR werr = WERR_OK;
3493 struct registry_key *key = NULL;
3494 struct registry_value *value = NULL;
3495 char *valname = NULL;
3496 char *valstr = NULL;
3498 NT_USER_TOKEN *token;
3500 ctx = talloc_init("process_registry_globals");
3502 smb_panic("Failed to create talloc context!");
3505 include_registry_globals = True;
3507 if (!registry_init_regdb()) {
3508 DEBUG(1, ("Error initializing the registry.\n"));
3512 if (!(token = registry_create_admin_token(ctx))) {
3513 DEBUG(1, ("Error creating admin token\n"));
3517 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3518 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3519 if (!W_ERROR_IS_OK(werr)) {
3520 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3521 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3522 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3527 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3531 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3532 switch(value->type) {
3534 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3535 pfunc(valname, valstr);
3536 TALLOC_FREE(valstr);
3539 pfunc(valname, value->v.sz.str);
3542 /* ignore other types */
3546 TALLOC_FREE(valstr);
3549 ret = pfunc("registry shares", "yes");
3551 regdb_last_seqnum = regdb_get_seqnum();
3554 talloc_destroy(ctx);
3559 static struct file_lists {
3560 struct file_lists *next;
3564 } *file_lists = NULL;
3566 /*******************************************************************
3567 Keep a linked list of all config files so we know when one has changed
3568 it's date and needs to be reloaded.
3569 ********************************************************************/
3571 static void add_to_file_list(const char *fname, const char *subfname)
3573 struct file_lists *f = file_lists;
3576 if (f->name && !strcmp(f->name, fname))
3582 f = SMB_MALLOC_P(struct file_lists);
3585 f->next = file_lists;
3586 f->name = SMB_STRDUP(fname);
3591 f->subfname = SMB_STRDUP(subfname);
3597 f->modtime = file_modtime(subfname);
3599 time_t t = file_modtime(subfname);
3605 /*******************************************************************
3606 Check if a config file has changed date.
3607 ********************************************************************/
3609 BOOL lp_file_list_changed(void)
3611 struct file_lists *f = file_lists;
3612 struct tdb_wrap *reg_tdb = NULL;
3614 DEBUG(6, ("lp_file_list_changed()\n"));
3616 if (include_registry_globals) {
3617 reg_tdb = lp_regdb_open();
3618 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3620 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3621 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3622 TALLOC_FREE(reg_tdb);
3631 pstrcpy(n2, f->name);
3632 standard_sub_basic( get_current_username(),
3633 current_user_info.domain,
3636 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3637 f->name, n2, ctime(&f->modtime)));
3639 mod_time = file_modtime(n2);
3641 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3643 ("file %s modified: %s\n", n2,
3645 f->modtime = mod_time;
3646 SAFE_FREE(f->subfname);
3647 f->subfname = SMB_STRDUP(n2);
3655 /***************************************************************************
3656 Run standard_sub_basic on netbios name... needed because global_myname
3657 is not accessed through any lp_ macro.
3658 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3659 ***************************************************************************/
3661 static BOOL handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3664 pstring netbios_name;
3666 pstrcpy(netbios_name, pszParmValue);
3668 standard_sub_basic(get_current_username(), current_user_info.domain,
3669 netbios_name, sizeof(netbios_name));
3671 ret = set_global_myname(netbios_name);
3672 string_set(&Globals.szNetbiosName,global_myname());
3674 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3680 static BOOL handle_charset(int snum, const char *pszParmValue, char **ptr)
3682 if (strcmp(*ptr, pszParmValue) != 0) {
3683 string_set(ptr, pszParmValue);
3691 static BOOL handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3695 ret = set_global_myworkgroup(pszParmValue);
3696 string_set(&Globals.szWorkgroup,lp_workgroup());
3701 static BOOL handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3705 ret = set_global_scope(pszParmValue);
3706 string_set(&Globals.szNetbiosScope,global_scope());
3711 static BOOL handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3713 str_list_free(&Globals.szNetbiosAliases);
3714 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3715 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3718 /***************************************************************************
3719 Handle the include operation.
3720 ***************************************************************************/
3722 static BOOL handle_include(int snum, const char *pszParmValue, char **ptr)
3725 pstrcpy(fname, pszParmValue);
3727 if (strequal(fname, INCLUDE_REGISTRY_NAME)) {
3728 if (bInGlobalSection) {
3729 return process_registry_globals(do_parameter);
3732 DEBUG(1, ("\"include = registry\" only effective "
3733 "in %s section\n", GLOBAL_NAME));
3738 standard_sub_basic(get_current_username(), current_user_info.domain,
3739 fname,sizeof(fname));
3741 add_to_file_list(pszParmValue, fname);
3743 string_set(ptr, fname);
3745 if (file_exist(fname, NULL))
3746 return (pm_process(fname, do_section, do_parameter));
3748 DEBUG(2, ("Can't find include file %s\n", fname));
3753 /***************************************************************************
3754 Handle the interpretation of the copy parameter.
3755 ***************************************************************************/
3757 static BOOL handle_copy(int snum, const char *pszParmValue, char **ptr)
3761 service serviceTemp;
3763 string_set(ptr, pszParmValue);
3765 init_service(&serviceTemp);
3769 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3771 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3772 if (iTemp == iServiceIndex) {
3773 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3775 copy_service(ServicePtrs[iServiceIndex],
3777 ServicePtrs[iServiceIndex]->copymap);
3781 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3785 free_service(&serviceTemp);
3789 /***************************************************************************
3790 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3795 idmap uid = 1000-1999
3798 We only do simple parsing checks here. The strings are parsed into useful
3799 structures in the idmap daemon code.
3801 ***************************************************************************/
3803 /* Some lp_ routines to return idmap [ug]id information */
3805 static uid_t idmap_uid_low, idmap_uid_high;
3806 static gid_t idmap_gid_low, idmap_gid_high;
3808 BOOL lp_idmap_uid(uid_t *low, uid_t *high)
3810 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3814 *low = idmap_uid_low;
3817 *high = idmap_uid_high;
3822 BOOL lp_idmap_gid(gid_t *low, gid_t *high)
3824 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3828 *low = idmap_gid_low;
3831 *high = idmap_gid_high;
3836 /* Do some simple checks on "idmap [ug]id" parameter values */
3838 static BOOL handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3842 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3847 string_set(ptr, pszParmValue);
3849 idmap_uid_low = low;
3850 idmap_uid_high = high;
3855 static BOOL handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3859 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3864 string_set(ptr, pszParmValue);
3866 idmap_gid_low = low;
3867 idmap_gid_high = high;
3872 /***************************************************************************
3873 Handle the DEBUG level list.
3874 ***************************************************************************/
3876 static BOOL handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3878 pstring pszParmValue;
3880 pstrcpy(pszParmValue, pszParmValueIn);
3881 string_set(ptr, pszParmValueIn);
3882 return debug_parse_levels( pszParmValue );
3885 /***************************************************************************
3886 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3887 ***************************************************************************/
3889 static const char *append_ldap_suffix( const char *str )
3891 const char *suffix_string;
3894 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
3895 Globals.szLdapSuffix );
3896 if ( !suffix_string ) {
3897 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3901 return suffix_string;
3904 const char *lp_ldap_machine_suffix(void)
3906 if (Globals.szLdapMachineSuffix[0])
3907 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3909 return lp_string(Globals.szLdapSuffix);
3912 const char *lp_ldap_user_suffix(void)
3914 if (Globals.szLdapUserSuffix[0])
3915 return append_ldap_suffix(Globals.szLdapUserSuffix);
3917 return lp_string(Globals.szLdapSuffix);
3920 const char *lp_ldap_group_suffix(void)
3922 if (Globals.szLdapGroupSuffix[0])
3923 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3925 return lp_string(Globals.szLdapSuffix);
3928 const char *lp_ldap_idmap_suffix(void)
3930 if (Globals.szLdapIdmapSuffix[0])
3931 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3933 return lp_string(Globals.szLdapSuffix);
3936 /****************************************************************************
3937 set the value for a P_ENUM
3938 ***************************************************************************/
3940 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3945 for (i = 0; parm->enum_list[i].name; i++) {
3946 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3947 *ptr = parm->enum_list[i].value;
3953 /***************************************************************************
3954 ***************************************************************************/
3956 static BOOL handle_printing(int snum, const char *pszParmValue, char **ptr)
3958 static int parm_num = -1;
3961 if ( parm_num == -1 )
3962 parm_num = map_parameter( "printing" );
3964 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3969 s = ServicePtrs[snum];
3971 init_printer_values( s );
3977 /***************************************************************************
3978 Initialise a copymap.
3979 ***************************************************************************/
3981 static void init_copymap(service * pservice)
3984 SAFE_FREE(pservice->copymap);
3985 pservice->copymap = SMB_MALLOC_ARRAY(BOOL,NUMPARAMETERS);
3986 if (!pservice->copymap)
3988 ("Couldn't allocate copymap!! (size %d)\n",
3989 (int)NUMPARAMETERS));
3991 for (i = 0; i < NUMPARAMETERS; i++)
3992 pservice->copymap[i] = True;
3995 /***************************************************************************
3996 Return the local pointer to a parameter given the service number and the
3997 pointer into the default structure.
3998 ***************************************************************************/
4000 void *lp_local_ptr(int snum, void *ptr)
4002 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
4005 /***************************************************************************
4006 Process a parameter for a particular service number. If snum < 0
4007 then assume we are in the globals.
4008 ***************************************************************************/
4010 BOOL lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
4012 int parmnum, i, slen;
4013 void *parm_ptr = NULL; /* where we are going to store the result */
4014 void *def_ptr = NULL;
4017 param_opt_struct *paramo, *data;
4020 parmnum = map_parameter(pszParmName);
4023 if ((sep=strchr(pszParmName, ':')) != NULL) {
4025 ZERO_STRUCT(param_key);
4026 pstr_sprintf(param_key, "%s:", pszParmName);
4027 slen = strlen(param_key);
4028 pstrcat(param_key, sep+1);
4029 trim_char(param_key+slen, ' ', ' ');
4031 data = (snum < 0) ? Globals.param_opt :
4032 ServicePtrs[snum]->param_opt;
4033 /* Traverse destination */
4035 /* If we already have same option, override it */
4036 if (strcmp(data->key, param_key) == 0) {
4037 string_free(&data->value);
4038 str_list_free(&data->list);
4039 data->value = SMB_STRDUP(pszParmValue);
4046 paramo = SMB_XMALLOC_P(param_opt_struct);
4047 paramo->key = SMB_STRDUP(param_key);
4048 paramo->value = SMB_STRDUP(pszParmValue);
4049 paramo->list = NULL;
4051 DLIST_ADD(Globals.param_opt, paramo);
4053 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
4060 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
4064 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
4065 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
4069 def_ptr = parm_table[parmnum].ptr;
4071 /* we might point at a service, the default service or a global */
4075 if (parm_table[parmnum].p_class == P_GLOBAL) {
4077 ("Global parameter %s found in service section!\n",
4082 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
4087 if (!ServicePtrs[snum]->copymap)
4088 init_copymap(ServicePtrs[snum]);
4090 /* this handles the aliases - set the copymap for other entries with
4091 the same data pointer */
4092 for (i = 0; parm_table[i].label; i++)
4093 if (parm_table[i].ptr == parm_table[parmnum].ptr)
4094 ServicePtrs[snum]->copymap[i] = False;
4097 /* if it is a special case then go ahead */
4098 if (parm_table[parmnum].special) {
4099 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4103 /* now switch on the type of variable it is */
4104 switch (parm_table[parmnum].type)
4107 *(BOOL *)parm_ptr = lp_bool(pszParmValue);
4111 *(BOOL *)parm_ptr = !lp_bool(pszParmValue);
4115 *(int *)parm_ptr = lp_int(pszParmValue);
4119 *(char *)parm_ptr = *pszParmValue;
4123 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4125 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4130 str_list_free((char ***)parm_ptr);
4131 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
4135 string_set((char **)parm_ptr, pszParmValue);
4139 string_set((char **)parm_ptr, pszParmValue);
4140 strupper_m(*(char **)parm_ptr);
4144 pstrcpy((char *)parm_ptr, pszParmValue);
4148 pstrcpy((char *)parm_ptr, pszParmValue);
4149 strupper_m((char *)parm_ptr);
4153 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4162 /***************************************************************************
4163 Process a parameter.
4164 ***************************************************************************/
4166 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue)
4168 if (!bInGlobalSection && bGlobalOnly)
4171 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4173 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4174 pszParmName, pszParmValue));
4177 /***************************************************************************
4178 Print a parameter of the specified type.
4179 ***************************************************************************/
4181 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4187 for (i = 0; p->enum_list[i].name; i++) {
4188 if (*(int *)ptr == p->enum_list[i].value) {
4190 p->enum_list[i].name);
4197 fprintf(f, "%s", BOOLSTR(*(BOOL *)ptr));
4201 fprintf(f, "%s", BOOLSTR(!*(BOOL *)ptr));
4205 fprintf(f, "%d", *(int *)ptr);
4209 fprintf(f, "%c", *(char *)ptr);
4213 fprintf(f, "%s", octal_string(*(int *)ptr));
4217 if ((char ***)ptr && *(char ***)ptr) {
4218 char **list = *(char ***)ptr;
4220 for (; *list; list++) {
4221 /* surround strings with whitespace in double quotes */
4222 if ( strchr_m( *list, ' ' ) )
4223 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4225 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4233 fprintf(f, "%s", (char *)ptr);
4239 if (*(char **)ptr) {
4240 fprintf(f, "%s", *(char **)ptr);
4248 /***************************************************************************
4249 Check if two parameters are equal.
4250 ***************************************************************************/
4252 static BOOL equal_parameter(parm_type type, void *ptr1, void *ptr2)
4257 return (*((BOOL *)ptr1) == *((BOOL *)ptr2));
4262 return (*((int *)ptr1) == *((int *)ptr2));
4265 return (*((char *)ptr1) == *((char *)ptr2));
4268 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4273 char *p1 = (char *)ptr1, *p2 = (char *)ptr2;
4278 return (p1 == p2 || strequal(p1, p2));
4283 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4288 return (p1 == p2 || strequal(p1, p2));
4296 /***************************************************************************
4297 Initialize any local varients in the sDefault table.
4298 ***************************************************************************/
4300 void init_locals(void)
4305 /***************************************************************************
4306 Process a new section (service). At this stage all sections are services.
4307 Later we'll have special sections that permit server parameters to be set.
4308 Returns True on success, False on failure.
4309 ***************************************************************************/
4311 static BOOL do_section(const char *pszSectionName)
4314 BOOL isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4315 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4318 /* if we were in a global section then do the local inits */
4319 if (bInGlobalSection && !isglobal)
4322 /* if we've just struck a global section, note the fact. */
4323 bInGlobalSection = isglobal;
4325 /* check for multiple global sections */
4326 if (bInGlobalSection) {
4327 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4331 if (!bInGlobalSection && bGlobalOnly)
4334 /* if we have a current service, tidy it up before moving on */
4337 if (iServiceIndex >= 0)
4338 bRetval = service_ok(iServiceIndex);
4340 /* if all is still well, move to the next record in the services array */
4342 /* We put this here to avoid an odd message order if messages are */
4343 /* issued by the post-processing of a previous section. */
4344 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4346 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4348 DEBUG(0, ("Failed to add a new service\n"));
4357 /***************************************************************************
4358 Determine if a partcular base parameter is currentl set to the default value.
4359 ***************************************************************************/
4361 static BOOL is_default(int i)
4363 if (!defaults_saved)
4365 switch (parm_table[i].type) {
4367 return str_list_compare (parm_table[i].def.lvalue,
4368 *(char ***)parm_table[i].ptr);
4371 return strequal(parm_table[i].def.svalue,
4372 *(char **)parm_table[i].ptr);
4375 return strequal(parm_table[i].def.svalue,
4376 (char *)parm_table[i].ptr);
4379 return parm_table[i].def.bvalue ==
4380 *(BOOL *)parm_table[i].ptr;
4382 return parm_table[i].def.cvalue ==
4383 *(char *)parm_table[i].ptr;
4387 return parm_table[i].def.ivalue ==
4388 *(int *)parm_table[i].ptr;
4395 /***************************************************************************
4396 Display the contents of the global structure.
4397 ***************************************************************************/
4399 static void dump_globals(FILE *f)
4402 param_opt_struct *data;
4404 fprintf(f, "[global]\n");
4406 for (i = 0; parm_table[i].label; i++)
4407 if (parm_table[i].p_class == P_GLOBAL &&
4408 parm_table[i].ptr &&
4409 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4410 if (defaults_saved && is_default(i))
4412 fprintf(f, "\t%s = ", parm_table[i].label);
4413 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4416 if (Globals.param_opt != NULL) {
4417 data = Globals.param_opt;
4419 fprintf(f, "\t%s = %s\n", data->key, data->value);
4426 /***************************************************************************
4427 Return True if a local parameter is currently set to the global default.
4428 ***************************************************************************/
4430 BOOL lp_is_default(int snum, struct parm_struct *parm)
4432 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4434 return equal_parameter(parm->type,
4435 ((char *)ServicePtrs[snum]) + pdiff,
4436 ((char *)&sDefault) + pdiff);
4439 /***************************************************************************
4440 Display the contents of a single services record.
4441 ***************************************************************************/
4443 static void dump_a_service(service * pService, FILE * f)
4446 param_opt_struct *data;
4448 if (pService != &sDefault)
4449 fprintf(f, "[%s]\n", pService->szService);
4451 for (i = 0; parm_table[i].label; i++) {
4453 if (parm_table[i].p_class == P_LOCAL &&
4454 parm_table[i].ptr &&
4455 (*parm_table[i].label != '-') &&
4456 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4459 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4461 if (pService == &sDefault) {
4462 if (defaults_saved && is_default(i))
4465 if (equal_parameter(parm_table[i].type,
4466 ((char *)pService) +
4468 ((char *)&sDefault) +
4473 fprintf(f, "\t%s = ", parm_table[i].label);
4474 print_parameter(&parm_table[i],
4475 ((char *)pService) + pdiff, f);
4480 if (pService->param_opt != NULL) {
4481 data = pService->param_opt;
4483 fprintf(f, "\t%s = %s\n", data->key, data->value);
4489 /***************************************************************************
4490 Display the contents of a parameter of a single services record.
4491 ***************************************************************************/
4493 BOOL dump_a_parameter(int snum, char *parm_name, FILE * f, BOOL isGlobal)
4496 BOOL result = False;
4499 fstring local_parm_name;
4501 const char *parm_opt_value;
4503 /* check for parametrical option */
4504 fstrcpy( local_parm_name, parm_name);
4505 parm_opt = strchr( local_parm_name, ':');
4510 if (strlen(parm_opt)) {
4511 parm_opt_value = lp_parm_const_string( snum,
4512 local_parm_name, parm_opt, NULL);
4513 if (parm_opt_value) {
4514 printf( "%s\n", parm_opt_value);
4521 /* check for a key and print the value */
4528 for (i = 0; parm_table[i].label; i++) {
4529 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4530 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4531 parm_table[i].ptr &&
4532 (*parm_table[i].label != '-') &&
4533 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4538 ptr = parm_table[i].ptr;
4540 service * pService = ServicePtrs[snum];
4541 ptr = ((char *)pService) +
4542 PTR_DIFF(parm_table[i].ptr, &sDefault);
4545 print_parameter(&parm_table[i],
4556 /***************************************************************************
4557 Return info about the requested parameter (given as a string).
4558 Return NULL when the string is not a valid parameter name.
4559 ***************************************************************************/
4561 struct parm_struct *lp_get_parameter(const char *param_name)
4563 int num = map_parameter(param_name);
4569 return &parm_table[num];
4572 /***************************************************************************
4573 Return info about the next parameter in a service.
4574 snum==GLOBAL_SECTION_SNUM gives the globals.
4575 Return NULL when out of parameters.
4576 ***************************************************************************/
4578 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4581 /* do the globals */
4582 for (; parm_table[*i].label; (*i)++) {
4583 if (parm_table[*i].p_class == P_SEPARATOR)
4584 return &parm_table[(*i)++];
4586 if (!parm_table[*i].ptr
4587 || (*parm_table[*i].label == '-'))
4591 && (parm_table[*i].ptr ==
4592 parm_table[(*i) - 1].ptr))
4595 if (is_default(*i) && !allparameters)
4598 return &parm_table[(*i)++];
4601 service *pService = ServicePtrs[snum];
4603 for (; parm_table[*i].label; (*i)++) {
4604 if (parm_table[*i].p_class == P_SEPARATOR)
4605 return &parm_table[(*i)++];
4607 if (parm_table[*i].p_class == P_LOCAL &&
4608 parm_table[*i].ptr &&
4609 (*parm_table[*i].label != '-') &&
4611 (parm_table[*i].ptr !=
4612 parm_table[(*i) - 1].ptr)))
4615 PTR_DIFF(parm_table[*i].ptr,
4618 if (allparameters ||
4619 !equal_parameter(parm_table[*i].type,
4620 ((char *)pService) +
4622 ((char *)&sDefault) +
4625 return &parm_table[(*i)++];
4636 /***************************************************************************
4637 Display the contents of a single copy structure.
4638 ***************************************************************************/
4639 static void dump_copy_map(BOOL *pcopymap)
4645 printf("\n\tNon-Copied parameters:\n");
4647 for (i = 0; parm_table[i].label; i++)
4648 if (parm_table[i].p_class == P_LOCAL &&
4649 parm_table[i].ptr && !pcopymap[i] &&
4650 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4652 printf("\t\t%s\n", parm_table[i].label);
4657 /***************************************************************************
4658 Return TRUE if the passed service number is within range.
4659 ***************************************************************************/
4661 BOOL lp_snum_ok(int iService)
4663 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4666 /***************************************************************************
4667 Auto-load some home services.
4668 ***************************************************************************/
4670 static void lp_add_auto_services(char *str)
4679 s = SMB_STRDUP(str);
4683 homes = lp_servicenumber(HOMES_NAME);
4685 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4686 char *home = get_user_home_dir(p);
4688 if (lp_servicenumber(p) >= 0)
4691 if (home && homes >= 0)
4692 lp_add_home(p, homes, p, home);
4697 /***************************************************************************
4698 Auto-load one printer.
4699 ***************************************************************************/
4701 void lp_add_one_printer(char *name, char *comment)
4703 int printers = lp_servicenumber(PRINTERS_NAME);
4706 if (lp_servicenumber(name) < 0) {
4707 lp_add_printer(name, printers);
4708 if ((i = lp_servicenumber(name)) >= 0) {
4709 string_set(&ServicePtrs[i]->comment, comment);
4710 ServicePtrs[i]->autoloaded = True;
4715 /***************************************************************************
4716 Have we loaded a services file yet?
4717 ***************************************************************************/
4719 BOOL lp_loaded(void)
4724 /***************************************************************************
4725 Unload unused services.
4726 ***************************************************************************/
4728 void lp_killunused(BOOL (*snumused) (int))
4731 for (i = 0; i < iNumServices; i++) {
4735 /* don't kill autoloaded or usershare services */
4736 if ( ServicePtrs[i]->autoloaded ||
4737 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4741 if (!snumused || !snumused(i)) {
4742 free_service_byindex(i);
4747 /***************************************************************************
4749 ***************************************************************************/
4751 void lp_killservice(int iServiceIn)
4753 if (VALID(iServiceIn)) {
4754 free_service_byindex(iServiceIn);
4758 /***************************************************************************
4759 Save the curent values of all global and sDefault parameters into the
4760 defaults union. This allows swat and testparm to show only the
4761 changed (ie. non-default) parameters.
4762 ***************************************************************************/
4764 static void lp_save_defaults(void)
4767 for (i = 0; parm_table[i].label; i++) {
4768 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4770 switch (parm_table[i].type) {
4772 str_list_copy(&(parm_table[i].def.lvalue),
4773 *(const char ***)parm_table[i].ptr);
4777 if (parm_table[i].ptr) {
4778 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4780 parm_table[i].def.svalue = NULL;
4785 if (parm_table[i].ptr) {
4786 parm_table[i].def.svalue = SMB_STRDUP((char *)parm_table[i].ptr);
4788 parm_table[i].def.svalue = NULL;
4793 parm_table[i].def.bvalue =
4794 *(BOOL *)parm_table[i].ptr;
4797 parm_table[i].def.cvalue =
4798 *(char *)parm_table[i].ptr;
4803 parm_table[i].def.ivalue =
4804 *(int *)parm_table[i].ptr;
4810 defaults_saved = True;
4813 /*******************************************************************
4814 Set the server type we will announce as via nmbd.
4815 ********************************************************************/
4817 static const struct srv_role_tab {
4819 const char *role_str;
4820 } srv_role_tab [] = {
4821 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4822 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4823 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4824 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4828 const char* server_role_str(uint32 role)
4831 for (i=0; srv_role_tab[i].role_str; i++) {
4832 if (role == srv_role_tab[i].role) {
4833 return srv_role_tab[i].role_str;
4839 static void set_server_role(void)
4841 server_role = ROLE_STANDALONE;
4843 switch (lp_security()) {
4845 if (lp_domain_logons())
4846 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4849 if (lp_domain_logons())
4850 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4851 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4852 server_role = ROLE_STANDALONE;
4855 if (lp_domain_logons()) {
4856 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4857 server_role = ROLE_DOMAIN_BDC;
4860 server_role = ROLE_DOMAIN_MEMBER;
4863 if (lp_domain_logons()) {
4864 server_role = ROLE_DOMAIN_PDC;
4867 server_role = ROLE_DOMAIN_MEMBER;
4870 if (lp_domain_logons()) {
4872 if (Globals.bDomainMaster) /* auto or yes */
4873 server_role = ROLE_DOMAIN_PDC;
4875 server_role = ROLE_DOMAIN_BDC;
4879 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4883 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4886 /***********************************************************
4887 If we should send plaintext/LANMAN passwords in the clinet
4888 ************************************************************/
4890 static void set_allowed_client_auth(void)
4892 if (Globals.bClientNTLMv2Auth) {
4893 Globals.bClientLanManAuth = False;
4895 if (!Globals.bClientLanManAuth) {
4896 Globals.bClientPlaintextAuth = False;
4900 /***************************************************************************
4902 The following code allows smbd to read a user defined share file.
4903 Yes, this is my intent. Yes, I'm comfortable with that...
4905 THE FOLLOWING IS SECURITY CRITICAL CODE.
4907 It washes your clothes, it cleans your house, it guards you while you sleep...
4908 Do not f%^k with it....
4909 ***************************************************************************/
4911 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4913 /***************************************************************************
4914 Check allowed stat state of a usershare file.
4915 Ensure we print out who is dicking with us so the admin can
4916 get their sorry ass fired.
4917 ***************************************************************************/
4919 static BOOL check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4921 if (!S_ISREG(psbuf->st_mode)) {
4922 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4923 "not a regular file\n",
4924 fname, (unsigned int)psbuf->st_uid ));
4928 /* Ensure this doesn't have the other write bit set. */
4929 if (psbuf->st_mode & S_IWOTH) {
4930 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4931 "public write. Refusing to allow as a usershare file.\n",
4932 fname, (unsigned int)psbuf->st_uid ));
4936 /* Should be 10k or less. */
4937 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4938 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4939 "too large (%u) to be a user share file.\n",
4940 fname, (unsigned int)psbuf->st_uid,
4941 (unsigned int)psbuf->st_size ));
4948 /***************************************************************************
4949 Parse the contents of a usershare file.
4950 ***************************************************************************/
4952 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4953 SMB_STRUCT_STAT *psbuf,
4954 const char *servicename,
4963 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4964 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4967 SMB_STRUCT_STAT sbuf;
4969 *pallow_guest = False;
4972 return USERSHARE_MALFORMED_FILE;
4975 if (strcmp(lines[0], "#VERSION 1") == 0) {
4977 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4980 return USERSHARE_MALFORMED_FILE;
4983 return USERSHARE_BAD_VERSION;
4986 if (strncmp(lines[1], "path=", 5) != 0) {
4987 return USERSHARE_MALFORMED_PATH;
4990 pstrcpy(sharepath, &lines[1][5]);
4991 trim_string(sharepath, " ", " ");
4993 if (strncmp(lines[2], "comment=", 8) != 0) {
4994 return USERSHARE_MALFORMED_COMMENT_DEF;
4997 pstrcpy(comment, &lines[2][8]);
4998 trim_string(comment, " ", " ");
4999 trim_char(comment, '"', '"');
5001 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
5002 return USERSHARE_MALFORMED_ACL_DEF;
5005 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
5006 return USERSHARE_ACL_ERR;
5010 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
5011 return USERSHARE_MALFORMED_ACL_DEF;
5013 if (lines[4][9] == 'y') {
5014 *pallow_guest = True;
5018 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
5019 /* Path didn't change, no checks needed. */
5020 return USERSHARE_OK;
5023 /* The path *must* be absolute. */
5024 if (sharepath[0] != '/') {
5025 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
5026 servicename, sharepath));
5027 return USERSHARE_PATH_NOT_ABSOLUTE;
5030 /* If there is a usershare prefix deny list ensure one of these paths
5031 doesn't match the start of the user given path. */
5032 if (prefixdenylist) {
5034 for ( i=0; prefixdenylist[i]; i++ ) {
5035 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
5036 servicename, i, prefixdenylist[i], sharepath ));
5037 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
5038 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
5039 "usershare prefix deny list entries.\n",
5040 servicename, sharepath));
5041 return USERSHARE_PATH_IS_DENIED;
5046 /* If there is a usershare prefix allow list ensure one of these paths
5047 does match the start of the user given path. */
5049 if (prefixallowlist) {
5051 for ( i=0; prefixallowlist[i]; i++ ) {
5052 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
5053 servicename, i, prefixallowlist[i], sharepath ));
5054 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
5058 if (prefixallowlist[i] == NULL) {
5059 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
5060 "usershare prefix allow list entries.\n",
5061 servicename, sharepath));
5062 return USERSHARE_PATH_NOT_ALLOWED;
5066 /* Ensure this is pointing to a directory. */
5067 dp = sys_opendir(sharepath);
5070 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5071 servicename, sharepath));
5072 return USERSHARE_PATH_NOT_DIRECTORY;
5075 /* Ensure the owner of the usershare file has permission to share
5078 if (sys_stat(sharepath, &sbuf) == -1) {
5079 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
5080 servicename, sharepath, strerror(errno) ));
5082 return USERSHARE_POSIX_ERR;
5087 if (!S_ISDIR(sbuf.st_mode)) {
5088 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5089 servicename, sharepath ));
5090 return USERSHARE_PATH_NOT_DIRECTORY;
5093 /* Check if sharing is restricted to owner-only. */
5094 /* psbuf is the stat of the usershare definition file,
5095 sbuf is the stat of the target directory to be shared. */
5097 if (lp_usershare_owner_only()) {
5098 /* root can share anything. */
5099 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
5100 return USERSHARE_PATH_NOT_ALLOWED;
5104 return USERSHARE_OK;
5107 /***************************************************************************
5108 Deal with a usershare file.
5111 -1 - Bad name, invalid contents.
5112 - service name already existed and not a usershare, problem
5113 with permissions to share directory etc.
5114 ***************************************************************************/
5116 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5118 SMB_STRUCT_STAT sbuf;
5119 SMB_STRUCT_STAT lsbuf;
5123 fstring service_name;
5124 char **lines = NULL;
5128 TALLOC_CTX *ctx = NULL;
5129 SEC_DESC *psd = NULL;
5130 BOOL guest_ok = False;
5132 /* Ensure share name doesn't contain invalid characters. */
5133 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5134 DEBUG(0,("process_usershare_file: share name %s contains "
5135 "invalid characters (any of %s)\n",
5136 file_name, INVALID_SHARENAME_CHARS ));
5140 fstrcpy(service_name, file_name);
5142 pstrcpy(fname, dir_name);
5143 pstrcat(fname, "/");
5144 pstrcat(fname, file_name);
5146 /* Minimize the race condition by doing an lstat before we
5147 open and fstat. Ensure this isn't a symlink link. */
5149 if (sys_lstat(fname, &lsbuf) != 0) {
5150 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5151 fname, strerror(errno) ));
5155 /* This must be a regular file, not a symlink, directory or
5156 other strange filetype. */
5157 if (!check_usershare_stat(fname, &lsbuf)) {
5161 /* See if there is already a servicenum for this name. */
5162 /* tdb_fetch_int32 returns -1 if not found. */
5163 iService = (int)tdb_fetch_int32(ServiceHash, canonicalize_servicename(service_name) );
5165 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5166 /* Nothing changed - Mark valid and return. */
5167 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5169 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5173 /* Try and open the file read only - no symlinks allowed. */
5175 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5177 fd = sys_open(fname, O_RDONLY, 0);
5181 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5182 fname, strerror(errno) ));
5186 /* Now fstat to be *SURE* it's a regular file. */
5187 if (sys_fstat(fd, &sbuf) != 0) {
5189 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5190 fname, strerror(errno) ));
5194 /* Is it the same dev/inode as was lstated ? */
5195 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5197 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5198 "Symlink spoofing going on ?\n", fname ));
5202 /* This must be a regular file, not a symlink, directory or
5203 other strange filetype. */
5204 if (!check_usershare_stat(fname, &sbuf)) {
5208 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5211 if (lines == NULL) {
5212 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5213 fname, (unsigned int)sbuf.st_uid ));
5217 /* Should we allow printers to be shared... ? */
5218 ctx = talloc_init("usershare_sd_xctx");
5220 file_lines_free(lines);
5224 if (parse_usershare_file(ctx, &sbuf, service_name,
5225 iService, lines, numlines, sharepath,
5226 comment, &psd, &guest_ok) != USERSHARE_OK) {
5227 talloc_destroy(ctx);
5228 file_lines_free(lines);
5232 file_lines_free(lines);
5234 /* Everything ok - add the service possibly using a template. */
5236 const service *sp = &sDefault;
5237 if (snum_template != -1) {
5238 sp = ServicePtrs[snum_template];
5241 if ((iService = add_a_service(sp, service_name)) < 0) {
5242 DEBUG(0, ("process_usershare_file: Failed to add "
5243 "new service %s\n", service_name));
5244 talloc_destroy(ctx);
5248 /* Read only is controlled by usershare ACL below. */
5249 ServicePtrs[iService]->bRead_only = False;
5252 /* Write the ACL of the new/modified share. */
5253 if (!set_share_security(service_name, psd)) {
5254 DEBUG(0, ("process_usershare_file: Failed to set share "
5255 "security for user share %s\n",
5257 lp_remove_service(iService);
5258 talloc_destroy(ctx);
5262 talloc_destroy(ctx);
5264 /* If from a template it may be marked invalid. */
5265 ServicePtrs[iService]->valid = True;
5267 /* Set the service as a valid usershare. */
5268 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5270 /* Set guest access. */
5271 if (lp_usershare_allow_guests()) {
5272 ServicePtrs[iService]->bGuest_ok = guest_ok;
5275 /* And note when it was loaded. */
5276 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5277 string_set(&ServicePtrs[iService]->szPath, sharepath);
5278 string_set(&ServicePtrs[iService]->comment, comment);
5283 /***************************************************************************
5284 Checks if a usershare entry has been modified since last load.
5285 ***************************************************************************/
5287 static BOOL usershare_exists(int iService, time_t *last_mod)
5289 SMB_STRUCT_STAT lsbuf;
5290 const char *usersharepath = Globals.szUsersharePath;
5293 pstrcpy(fname, usersharepath);
5294 pstrcat(fname, "/");
5295 pstrcat(fname, ServicePtrs[iService]->szService);
5297 if (sys_lstat(fname, &lsbuf) != 0) {
5301 if (!S_ISREG(lsbuf.st_mode)) {
5305 *last_mod = lsbuf.st_mtime;
5309 /***************************************************************************
5310 Load a usershare service by name. Returns a valid servicenumber or -1.
5311 ***************************************************************************/
5313 int load_usershare_service(const char *servicename)
5315 SMB_STRUCT_STAT sbuf;
5316 const char *usersharepath = Globals.szUsersharePath;
5317 int max_user_shares = Globals.iUsershareMaxShares;
5318 int snum_template = -1;
5320 if (*usersharepath == 0 || max_user_shares == 0) {
5324 if (sys_stat(usersharepath, &sbuf) != 0) {
5325 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5326 usersharepath, strerror(errno) ));
5330 if (!S_ISDIR(sbuf.st_mode)) {
5331 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5337 * This directory must be owned by root, and have the 't' bit set.
5338 * It also must not be writable by "other".
5342 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5344 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5346 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5347 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5352 /* Ensure the template share exists if it's set. */
5353 if (Globals.szUsershareTemplateShare[0]) {
5354 /* We can't use lp_servicenumber here as we are recommending that
5355 template shares have -valid=False set. */
5356 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5357 if (ServicePtrs[snum_template]->szService &&
5358 strequal(ServicePtrs[snum_template]->szService,
5359 Globals.szUsershareTemplateShare)) {
5364 if (snum_template == -1) {
5365 DEBUG(0,("load_usershare_service: usershare template share %s "
5366 "does not exist.\n",
5367 Globals.szUsershareTemplateShare ));
5372 return process_usershare_file(usersharepath, servicename, snum_template);
5375 /***************************************************************************
5376 Load all user defined shares from the user share directory.
5377 We only do this if we're enumerating the share list.
5378 This is the function that can delete usershares that have
5380 ***************************************************************************/
5382 int load_usershare_shares(void)
5385 SMB_STRUCT_STAT sbuf;
5386 SMB_STRUCT_DIRENT *de;
5387 int num_usershares = 0;
5388 int max_user_shares = Globals.iUsershareMaxShares;
5389 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5390 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5391 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5393 int snum_template = -1;
5394 const char *usersharepath = Globals.szUsersharePath;
5395 int ret = lp_numservices();
5397 if (max_user_shares == 0 || *usersharepath == '\0') {
5398 return lp_numservices();
5401 if (sys_stat(usersharepath, &sbuf) != 0) {
5402 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5403 usersharepath, strerror(errno) ));
5408 * This directory must be owned by root, and have the 't' bit set.
5409 * It also must not be writable by "other".
5413 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5415 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5417 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5418 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5423 /* Ensure the template share exists if it's set. */
5424 if (Globals.szUsershareTemplateShare[0]) {
5425 /* We can't use lp_servicenumber here as we are recommending that
5426 template shares have -valid=False set. */
5427 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5428 if (ServicePtrs[snum_template]->szService &&
5429 strequal(ServicePtrs[snum_template]->szService,
5430 Globals.szUsershareTemplateShare)) {
5435 if (snum_template == -1) {
5436 DEBUG(0,("load_usershare_shares: usershare template share %s "
5437 "does not exist.\n",
5438 Globals.szUsershareTemplateShare ));
5443 /* Mark all existing usershares as pending delete. */
5444 for (iService = iNumServices - 1; iService >= 0; iService--) {
5445 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5446 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5450 dp = sys_opendir(usersharepath);
5452 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5453 usersharepath, strerror(errno) ));
5457 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5458 (de = sys_readdir(dp));
5459 num_dir_entries++ ) {
5461 const char *n = de->d_name;
5463 /* Ignore . and .. */
5465 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5471 /* Temporary file used when creating a share. */
5472 num_tmp_dir_entries++;
5475 /* Allow 20% tmp entries. */
5476 if (num_tmp_dir_entries > allowed_tmp_entries) {
5477 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5478 "in directory %s\n",
5479 num_tmp_dir_entries, usersharepath));
5483 r = process_usershare_file(usersharepath, n, snum_template);
5485 /* Update the services count. */
5487 if (num_usershares >= max_user_shares) {
5488 DEBUG(0,("load_usershare_shares: max user shares reached "
5489 "on file %s in directory %s\n",
5490 n, usersharepath ));
5493 } else if (r == -1) {
5494 num_bad_dir_entries++;
5497 /* Allow 20% bad entries. */
5498 if (num_bad_dir_entries > allowed_bad_entries) {
5499 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5500 "in directory %s\n",
5501 num_bad_dir_entries, usersharepath));
5505 /* Allow 20% bad entries. */
5506 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5507 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5508 "in directory %s\n",
5509 num_dir_entries, usersharepath));
5516 /* Sweep through and delete any non-refreshed usershares that are
5517 not currently in use. */
5518 for (iService = iNumServices - 1; iService >= 0; iService--) {
5519 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5520 if (conn_snum_used(iService)) {
5523 /* Remove from the share ACL db. */
5524 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5525 lp_servicename(iService) ));
5526 delete_share_security(lp_servicename(iService));
5527 free_service_byindex(iService);
5531 return lp_numservices();
5534 /********************************************************
5535 Destroy global resources allocated in this file
5536 ********************************************************/
5538 void gfree_loadparm(void)
5540 struct file_lists *f;
5541 struct file_lists *next;
5544 /* Free the file lists */
5549 SAFE_FREE( f->name );
5550 SAFE_FREE( f->subfname );
5555 /* Free resources allocated to services */
5557 for ( i = 0; i < iNumServices; i++ ) {
5559 free_service_byindex(i);
5563 SAFE_FREE( ServicePtrs );
5566 /* Now release all resources allocated to global
5567 parameters and the default service */
5569 for (i = 0; parm_table[i].label; i++)
5571 if ( parm_table[i].type == P_STRING
5572 || parm_table[i].type == P_USTRING )
5574 string_free( (char**)parm_table[i].ptr );
5576 else if (parm_table[i].type == P_LIST) {
5577 str_list_free( (char***)parm_table[i].ptr );
5582 /***************************************************************************
5583 Load the services array from the services file. Return True on success,
5585 ***************************************************************************/
5587 BOOL lp_load(const char *pszFname,
5591 BOOL initialize_globals)
5595 param_opt_struct *data, *pdata;
5597 pstrcpy(n2, pszFname);
5599 standard_sub_basic( get_current_username(), current_user_info.domain,
5602 add_to_file_list(pszFname, n2);
5606 DEBUG(3, ("lp_load: refreshing parameters\n"));
5608 bInGlobalSection = True;
5609 bGlobalOnly = global_only;
5611 init_globals(! initialize_globals);
5614 if (save_defaults) {
5619 if (Globals.param_opt != NULL) {
5620 data = Globals.param_opt;
5622 string_free(&data->key);
5623 string_free(&data->value);
5624 str_list_free(&data->list);
5629 Globals.param_opt = NULL;
5632 /* We get sections first, so have to start 'behind' to make up */
5634 bRetval = pm_process(n2, do_section, do_parameter);
5636 /* finish up the last section */
5637 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5639 if (iServiceIndex >= 0)
5640 bRetval = service_ok(iServiceIndex);
5642 lp_add_auto_services(lp_auto_services());
5645 /* When 'restrict anonymous = 2' guest connections to ipc$
5647 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5648 if ( lp_enable_asu_support() )
5649 lp_add_ipc("ADMIN$", False);
5653 set_default_server_announce_type();
5654 set_allowed_client_auth();
5658 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5659 /* if bWINSsupport is true and we are in the client */
5660 if (in_client && Globals.bWINSsupport) {
5661 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5669 /***************************************************************************
5670 Reset the max number of services.
5671 ***************************************************************************/
5673 void lp_resetnumservices(void)
5678 /***************************************************************************
5679 Return the max number of services.
5680 ***************************************************************************/
5682 int lp_numservices(void)
5684 return (iNumServices);
5687 /***************************************************************************
5688 Display the contents of the services array in human-readable form.
5689 ***************************************************************************/
5691 void lp_dump(FILE *f, BOOL show_defaults, int maxtoprint)
5696 defaults_saved = False;
5700 dump_a_service(&sDefault, f);
5702 for (iService = 0; iService < maxtoprint; iService++) {
5704 lp_dump_one(f, show_defaults, iService);
5708 /***************************************************************************
5709 Display the contents of one service in human-readable form.
5710 ***************************************************************************/
5712 void lp_dump_one(FILE * f, BOOL show_defaults, int snum)
5715 if (ServicePtrs[snum]->szService[0] == '\0')
5717 dump_a_service(ServicePtrs[snum], f);
5721 /***************************************************************************
5722 Return the number of the service with the given name, or -1 if it doesn't
5723 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5724 getservicebyname()! This works ONLY if all services have been loaded, and
5725 does not copy the found service.
5726 ***************************************************************************/
5728 int lp_servicenumber(const char *pszServiceName)
5731 fstring serviceName;
5733 if (!pszServiceName) {
5734 return GLOBAL_SECTION_SNUM;
5737 for (iService = iNumServices - 1; iService >= 0; iService--) {
5738 if (VALID(iService) && ServicePtrs[iService]->szService) {
5740 * The substitution here is used to support %U is
5743 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5744 standard_sub_basic(get_current_username(),
5745 current_user_info.domain,
5746 serviceName,sizeof(serviceName));
5747 if (strequal(serviceName, pszServiceName)) {
5753 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5756 if (!usershare_exists(iService, &last_mod)) {
5757 /* Remove the share security tdb entry for it. */
5758 delete_share_security(lp_servicename(iService));
5759 /* Remove it from the array. */
5760 free_service_byindex(iService);
5761 /* Doesn't exist anymore. */
5762 return GLOBAL_SECTION_SNUM;
5765 /* Has it been modified ? If so delete and reload. */
5766 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5767 /* Remove it from the array. */
5768 free_service_byindex(iService);
5769 /* and now reload it. */
5770 iService = load_usershare_service(pszServiceName);
5775 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5776 return GLOBAL_SECTION_SNUM;
5782 BOOL share_defined(const char *service_name)
5784 return (lp_servicenumber(service_name) != -1);
5787 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5788 const char *sharename)
5790 struct share_params *result;
5794 if (!(sname = SMB_STRDUP(sharename))) {
5798 snum = find_service(sname);
5805 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5806 DEBUG(0, ("talloc failed\n"));
5810 result->service = snum;
5814 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5816 struct share_iterator *result;
5818 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5819 DEBUG(0, ("talloc failed\n"));
5823 result->next_id = 0;
5827 struct share_params *next_share(struct share_iterator *list)
5829 struct share_params *result;
5831 while (!lp_snum_ok(list->next_id) &&
5832 (list->next_id < lp_numservices())) {
5836 if (list->next_id >= lp_numservices()) {
5840 if (!(result = TALLOC_P(list, struct share_params))) {
5841 DEBUG(0, ("talloc failed\n"));
5845 result->service = list->next_id;
5850 struct share_params *next_printer(struct share_iterator *list)
5852 struct share_params *result;
5854 while ((result = next_share(list)) != NULL) {
5855 if (lp_print_ok(result->service)) {
5863 * This is a hack for a transition period until we transformed all code from
5864 * service numbers to struct share_params.
5867 struct share_params *snum2params_static(int snum)
5869 static struct share_params result;
5870 result.service = snum;
5874 /*******************************************************************
5875 A useful volume label function.
5876 ********************************************************************/
5878 const char *volume_label(int snum)
5881 const char *label = lp_volume(snum);
5883 label = lp_servicename(snum);
5886 /* This returns a 33 byte guarenteed null terminated string. */
5887 ret = talloc_strndup(talloc_tos(), label, 32);
5894 /*******************************************************************
5895 Set the server type we will announce as via nmbd.
5896 ********************************************************************/
5898 static void set_default_server_announce_type(void)
5900 default_server_announce = 0;
5901 default_server_announce |= SV_TYPE_WORKSTATION;
5902 default_server_announce |= SV_TYPE_SERVER;
5903 default_server_announce |= SV_TYPE_SERVER_UNIX;
5905 /* note that the flag should be set only if we have a
5906 printer service but nmbd doesn't actually load the
5907 services so we can't tell --jerry */
5909 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5911 switch (lp_announce_as()) {
5912 case ANNOUNCE_AS_NT_SERVER:
5913 default_server_announce |= SV_TYPE_SERVER_NT;
5914 /* fall through... */
5915 case ANNOUNCE_AS_NT_WORKSTATION:
5916 default_server_announce |= SV_TYPE_NT;
5918 case ANNOUNCE_AS_WIN95:
5919 default_server_announce |= SV_TYPE_WIN95_PLUS;
5921 case ANNOUNCE_AS_WFW:
5922 default_server_announce |= SV_TYPE_WFW;
5928 switch (lp_server_role()) {
5929 case ROLE_DOMAIN_MEMBER:
5930 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5932 case ROLE_DOMAIN_PDC:
5933 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5935 case ROLE_DOMAIN_BDC:
5936 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5938 case ROLE_STANDALONE:
5942 if (lp_time_server())
5943 default_server_announce |= SV_TYPE_TIME_SOURCE;
5945 if (lp_host_msdfs())
5946 default_server_announce |= SV_TYPE_DFS_SERVER;
5949 /***********************************************************
5950 returns role of Samba server
5951 ************************************************************/
5953 int lp_server_role(void)
5958 /***********************************************************
5959 If we are PDC then prefer us as DMB
5960 ************************************************************/
5962 BOOL lp_domain_master(void)
5964 if (Globals.bDomainMaster == Auto)
5965 return (lp_server_role() == ROLE_DOMAIN_PDC);
5967 return Globals.bDomainMaster;
5970 /***********************************************************
5971 If we are DMB then prefer us as LMB
5972 ************************************************************/
5974 BOOL lp_preferred_master(void)
5976 if (Globals.bPreferredMaster == Auto)
5977 return (lp_local_master() && lp_domain_master());
5979 return Globals.bPreferredMaster;
5982 /*******************************************************************
5984 ********************************************************************/
5986 void lp_remove_service(int snum)
5988 ServicePtrs[snum]->valid = False;
5989 invalid_services[num_invalid_services++] = snum;
5992 /*******************************************************************
5994 ********************************************************************/
5996 void lp_copy_service(int snum, const char *new_name)
5998 do_section(new_name);
6000 snum = lp_servicenumber(new_name);
6002 lp_do_parameter(snum, "copy", lp_servicename(snum));
6007 /*******************************************************************
6008 Get the default server type we will announce as via nmbd.
6009 ********************************************************************/
6011 int lp_default_server_announce(void)
6013 return default_server_announce;
6016 /*******************************************************************
6017 Split the announce version into major and minor numbers.
6018 ********************************************************************/
6020 int lp_major_announce_version(void)
6022 static BOOL got_major = False;
6023 static int major_version = DEFAULT_MAJOR_VERSION;
6028 return major_version;
6031 if ((vers = lp_announce_version()) == NULL)
6032 return major_version;
6034 if ((p = strchr_m(vers, '.')) == 0)
6035 return major_version;
6038 major_version = atoi(vers);
6039 return major_version;
6042 int lp_minor_announce_version(void)
6044 static BOOL got_minor = False;
6045 static int minor_version = DEFAULT_MINOR_VERSION;
6050 return minor_version;
6053 if ((vers = lp_announce_version()) == NULL)
6054 return minor_version;
6056 if ((p = strchr_m(vers, '.')) == 0)
6057 return minor_version;
6060 minor_version = atoi(p);
6061 return minor_version;
6064 /***********************************************************
6065 Set the global name resolution order (used in smbclient).
6066 ************************************************************/
6068 void lp_set_name_resolve_order(const char *new_order)
6070 string_set(&Globals.szNameResolveOrder, new_order);
6073 const char *lp_printername(int snum)
6075 const char *ret = _lp_printername(snum);
6076 if (ret == NULL || (ret != NULL && *ret == '\0'))
6077 ret = lp_const_servicename(snum);
6083 /***********************************************************
6084 Allow daemons such as winbindd to fix their logfile name.
6085 ************************************************************/
6087 void lp_set_logfile(const char *name)
6089 string_set(&Globals.szLogFile, name);
6090 pstrcpy(debugf, name);
6093 /*******************************************************************
6094 Return the max print jobs per queue.
6095 ********************************************************************/
6097 int lp_maxprintjobs(int snum)
6099 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6100 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6101 maxjobs = PRINT_MAX_JOBID - 1;
6106 const char *lp_printcapname(void)
6108 if ((Globals.szPrintcapname != NULL) &&
6109 (Globals.szPrintcapname[0] != '\0'))
6110 return Globals.szPrintcapname;
6112 if (sDefault.iPrinting == PRINT_CUPS) {
6120 if (sDefault.iPrinting == PRINT_BSD)
6121 return "/etc/printcap";
6123 return PRINTCAP_NAME;
6126 /*******************************************************************
6127 Ensure we don't use sendfile if server smb signing is active.
6128 ********************************************************************/
6130 static uint32 spoolss_state;
6132 BOOL lp_disable_spoolss( void )
6134 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6135 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6137 return spoolss_state == SVCCTL_STOPPED ? True : False;
6140 void lp_set_spoolss_state( uint32 state )
6142 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6144 spoolss_state = state;
6147 uint32 lp_get_spoolss_state( void )
6149 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6152 /*******************************************************************
6153 Ensure we don't use sendfile if server smb signing is active.
6154 ********************************************************************/
6156 BOOL lp_use_sendfile(int snum)
6158 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6159 if (Protocol < PROTOCOL_NT1) {
6162 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
6165 /*******************************************************************
6166 Turn off sendfile if we find the underlying OS doesn't support it.
6167 ********************************************************************/
6169 void set_use_sendfile(int snum, BOOL val)
6171 if (LP_SNUM_OK(snum))
6172 ServicePtrs[snum]->bUseSendfile = val;
6174 sDefault.bUseSendfile = val;
6177 /*******************************************************************
6178 Turn off storing DOS attributes if this share doesn't support it.
6179 ********************************************************************/
6181 void set_store_dos_attributes(int snum, BOOL val)
6183 if (!LP_SNUM_OK(snum))
6185 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6188 void lp_set_mangling_method(const char *new_method)
6190 string_set(&Globals.szManglingMethod, new_method);
6193 /*******************************************************************
6194 Global state for POSIX pathname processing.
6195 ********************************************************************/
6197 static BOOL posix_pathnames;
6199 BOOL lp_posix_pathnames(void)
6201 return posix_pathnames;
6204 /*******************************************************************
6205 Change everything needed to ensure POSIX pathname processing (currently
6207 ********************************************************************/
6209 void lp_set_posix_pathnames(void)
6211 posix_pathnames = True;
6214 /*******************************************************************
6215 Global state for POSIX lock processing - CIFS unix extensions.
6216 ********************************************************************/
6218 BOOL posix_default_lock_was_set;
6219 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6221 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6223 if (posix_default_lock_was_set) {
6224 return posix_cifsx_locktype;
6226 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6230 /*******************************************************************
6231 ********************************************************************/
6233 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6235 posix_default_lock_was_set = True;
6236 posix_cifsx_locktype = val;