2 Unix SMB/CIFS implementation.
3 Parameter loading functions
4 Copyright (C) Karl Auer 1993-1998
6 Largely re-written by Andrew Tridgell, September 1994
8 Copyright (C) Simo Sorce 2001
9 Copyright (C) Alexander Bokovoy 2002
10 Copyright (C) Stefan (metze) Metzmacher 2002
11 Copyright (C) Jim McDonough <jmcd@us.ibm.com> 2003
13 This program is free software; you can redistribute it and/or modify
14 it under the terms of the GNU General Public License as published by
15 the Free Software Foundation; either version 3 of the License, or
16 (at your option) any later version.
18 This program is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 GNU General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program. If not, see <http://www.gnu.org/licenses/>.
30 * This module provides suitable callback functions for the params
31 * module. It builds the internal table of service details which is
32 * then used by the rest of the server.
36 * 1) add it to the global or service structure definition
37 * 2) add it to the parm_table
38 * 3) add it to the list of available functions (eg: using FN_GLOBAL_STRING())
39 * 4) If it's a global then initialise it in init_globals. If a local
40 * (ie. service) parameter then initialise it in the sDefault structure
44 * The configuration file is processed sequentially for speed. It is NOT
45 * accessed randomly as happens in 'real' Windows. For this reason, there
46 * is a fair bit of sequence-dependent code here - ie., code which assumes
47 * that certain things happen before others. In particular, the code which
48 * happens at the boundary between sections is delicately poised, so be
55 BOOL in_client = False; /* Not in the client by default */
58 extern pstring user_socket_options;
59 extern enum protocol_types Protocol;
60 extern userdom_struct current_user_info;
63 #define GLOBAL_NAME "global"
67 #define PRINTERS_NAME "printers"
71 #define HOMES_NAME "homes"
74 /* the special value for the include parameter
75 * to be interpreted not as a file name but to
76 * trigger loading of the global smb.conf options
78 #ifndef INCLUDE_REGISTRY_NAME
79 #define INCLUDE_REGISTRY_NAME "registry"
82 static int regdb_last_seqnum = 0;
83 static BOOL include_registry_globals = False;
85 /* some helpful bits */
86 #define LP_SNUM_OK(i) (((i) >= 0) && ((i) < iNumServices) && (ServicePtrs != NULL) && ServicePtrs[(i)]->valid)
87 #define VALID(i) (ServicePtrs != NULL && ServicePtrs[i]->valid)
89 #define USERSHARE_VALID 1
90 #define USERSHARE_PENDING_DELETE 2
92 BOOL use_getwd_cache = True;
94 extern int extra_time_offset;
96 static BOOL defaults_saved = False;
98 typedef struct _param_opt_struct param_opt_struct;
99 struct _param_opt_struct {
100 param_opt_struct *prev, *next;
107 * This structure describes global (ie., server-wide) parameters.
113 char *display_charset;
114 char *szPrintcapname;
115 char *szAddPortCommand;
116 char *szEnumPortsCommand;
117 char *szAddPrinterCommand;
118 char *szDeletePrinterCommand;
119 char *szOs2DriverMap;
123 char *szDefaultService;
127 char *szServerString;
128 char *szAutoServices;
129 char *szPasswdProgram;
133 char *szSMBPasswdFile;
135 char *szPassdbBackend;
136 char **szPreloadModules;
137 char *szPasswordServer;
138 char *szSocketOptions;
140 char *szAfsUsernameMap;
141 int iAfsTokenLifetime;
142 char *szLogNtTokenCommand;
148 char **szWINSservers;
150 char *szRemoteAnnounce;
151 char *szRemoteBrowseSync;
152 char *szSocketAddress;
153 char *szNISHomeMapName;
154 char *szAnnounceVersion; /* This is initialised in init_globals */
157 char **szNetbiosAliases;
158 char *szNetbiosScope;
159 char *szNameResolveOrder;
161 char *szAddUserScript;
162 char *szRenameUserScript;
163 char *szDelUserScript;
164 char *szAddGroupScript;
165 char *szDelGroupScript;
166 char *szAddUserToGroupScript;
167 char *szDelUserFromGroupScript;
168 char *szSetPrimaryGroupScript;
169 char *szAddMachineScript;
170 char *szShutdownScript;
171 char *szAbortShutdownScript;
172 char *szUsernameMapScript;
173 char *szCheckPasswordScript;
180 BOOL bPassdbExpandExplicit;
181 int AlgorithmicRidBase;
182 char *szTemplateHomedir;
183 char *szTemplateShell;
184 char *szWinbindSeparator;
185 BOOL bWinbindEnumUsers;
186 BOOL bWinbindEnumGroups;
187 BOOL bWinbindUseDefaultDomain;
188 BOOL bWinbindTrustedDomainsOnly;
189 BOOL bWinbindNestedGroups;
190 int winbind_expand_groups;
191 BOOL bWinbindRefreshTickets;
192 BOOL bWinbindOfflineLogon;
193 BOOL bWinbindNormalizeNames;
194 BOOL bWinbindRpcOnly;
195 char **szIdmapDomains;
196 char **szIdmapBackend; /* deprecated */
197 char *szIdmapAllocBackend;
198 char *szAddShareCommand;
199 char *szChangeShareCommand;
200 char *szDeleteShareCommand;
202 char *szGuestaccount;
203 char *szManglingMethod;
204 char **szServicesList;
205 char *szUsersharePath;
206 char *szUsershareTemplateShare;
207 char **szUsersharePrefixAllowList;
208 char **szUsersharePrefixDenyList;
215 int open_files_db_hash_size;
223 BOOL paranoid_server_security;
226 int iMaxSmbdProcesses;
227 BOOL bDisableSpoolss;
230 int enhanced_browsing;
236 int announce_as; /* This is initialised in init_globals */
237 int machine_password_timeout;
239 int oplock_break_wait_time;
240 int winbind_cache_time;
241 int winbind_max_idle_children;
242 char **szWinbindNssInfo;
244 char *szLdapMachineSuffix;
245 char *szLdapUserSuffix;
246 char *szLdapIdmapSuffix;
247 char *szLdapGroupSuffix;
253 char *szIPrintServer;
255 char **szClusterAddresses;
257 int ldap_passwd_sync;
258 int ldap_replication_sleep;
259 int ldap_timeout; /* This is initialised in init_globals */
262 BOOL bMsAddPrinterWizard;
267 BOOL bPreferredMaster;
270 BOOL bEncryptPasswords;
275 BOOL bObeyPamRestrictions;
277 int PrintcapCacheTime;
278 BOOL bLargeReadwrite;
285 BOOL bBindInterfacesOnly;
286 BOOL bPamPasswordChange;
287 BOOL bUnixPasswdSync;
288 BOOL bPasswdChatDebug;
289 int iPasswdChatTimeout;
293 BOOL bNTStatusSupport;
295 int iMaxStatCacheSize;
297 BOOL bAllowTrustedDomains;
301 BOOL bClientLanManAuth;
302 BOOL bClientNTLMv2Auth;
303 BOOL bClientPlaintextAuth;
304 BOOL bClientUseSpnego;
305 BOOL bDebugPrefixTimestamp;
306 BOOL bDebugHiresTimestamp;
309 BOOL bEnableCoreFiles;
312 BOOL bHostnameLookups;
313 BOOL bUnixExtensions;
314 BOOL bDisableNetbios;
315 BOOL bUseKerberosKeytab;
316 BOOL bDeferSharingViolations;
317 BOOL bEnablePrivileges;
319 BOOL bUsershareOwnerOnly;
320 BOOL bUsershareAllowGuests;
321 BOOL bRegistryShares;
322 int restrict_anonymous;
323 int name_cache_timeout;
326 int client_ldap_sasl_wrapping;
327 int iUsershareMaxShares;
329 int iIdmapNegativeCacheTime;
333 param_opt_struct *param_opt;
336 static global Globals;
339 * This structure describes a single service.
345 time_t usershare_last_mod;
349 char **szInvalidUsers;
357 char *szRootPostExec;
359 char *szPrintcommand;
362 char *szLppausecommand;
363 char *szLpresumecommand;
364 char *szQueuepausecommand;
365 char *szQueueresumecommand;
367 char *szPrintjobUsername;
375 char *szVetoOplockFiles;
381 char **printer_admin;
389 int iMaxReportedPrintJobs;
392 int iCreate_force_mode;
394 int iSecurity_force_mode;
397 int iDir_Security_mask;
398 int iDir_Security_force_mode;
402 int iOplockContentionLimit;
407 BOOL bRootpreexecClose;
410 BOOL bShortCasePreserve;
412 BOOL bHideSpecialFiles;
413 BOOL bHideUnReadable;
414 BOOL bHideUnWriteableFiles;
425 BOOL bStoreDosAttributes;
438 BOOL bStrictAllocate;
442 BOOL bDeleteReadonly;
444 BOOL bDeleteVetoFiles;
447 BOOL bDosFiletimeResolution;
448 BOOL bFakeDirCreateTimes;
454 BOOL bUseClientDriver;
455 BOOL bDefaultDevmode;
456 BOOL bForcePrintername;
458 BOOL bForceUnknownAclUser;
461 BOOL bMap_acl_inherit;
464 BOOL bAclCheckPermissions;
465 BOOL bAclMapFullControl;
466 BOOL bAclGroupControl;
468 BOOL bKernelChangeNotify;
469 int iallocation_roundup_size;
473 int iDirectoryNameCacheSize;
474 param_opt_struct *param_opt;
476 char dummy[3]; /* for alignment */
480 /* This is a default service used to prime a services structure */
481 static service sDefault = {
483 False, /* not autoloaded */
484 0, /* not a usershare */
485 (time_t)0, /* No last mod time */
486 NULL, /* szService */
488 NULL, /* szUsername */
489 NULL, /* szInvalidUsers */
490 NULL, /* szValidUsers */
491 NULL, /* szAdminUsers */
493 NULL, /* szInclude */
494 NULL, /* szPreExec */
495 NULL, /* szPostExec */
496 NULL, /* szRootPreExec */
497 NULL, /* szRootPostExec */
498 NULL, /* szCupsOptions */
499 NULL, /* szPrintcommand */
500 NULL, /* szLpqcommand */
501 NULL, /* szLprmcommand */
502 NULL, /* szLppausecommand */
503 NULL, /* szLpresumecommand */
504 NULL, /* szQueuepausecommand */
505 NULL, /* szQueueresumecommand */
506 NULL, /* szPrintername */
507 NULL, /* szPrintjobUsername */
508 NULL, /* szDontdescend */
509 NULL, /* szHostsallow */
510 NULL, /* szHostsdeny */
511 NULL, /* szMagicScript */
512 NULL, /* szMagicOutput */
513 NULL, /* szVetoFiles */
514 NULL, /* szHideFiles */
515 NULL, /* szVetoOplockFiles */
517 NULL, /* force user */
518 NULL, /* force group */
520 NULL, /* writelist */
521 NULL, /* printer admin */
524 NULL, /* vfs objects */
525 NULL, /* szMSDfsProxy */
527 0, /* iMinPrintSpace */
528 1000, /* iMaxPrintJobs */
529 0, /* iMaxReportedPrintJobs */
530 0, /* iWriteCacheSize */
531 0744, /* iCreate_mask */
532 0000, /* iCreate_force_mode */
533 0777, /* iSecurity_mask */
534 0, /* iSecurity_force_mode */
535 0755, /* iDir_mask */
536 0000, /* iDir_force_mode */
537 0777, /* iDir_Security_mask */
538 0, /* iDir_Security_force_mode */
539 0, /* iMaxConnections */
540 CASE_LOWER, /* iDefaultCase */
541 DEFAULT_PRINTING, /* iPrinting */
542 2, /* iOplockContentionLimit */
544 1024, /* iBlock_size */
545 0, /* iDfreeCacheTime */
546 False, /* bPreexecClose */
547 False, /* bRootpreexecClose */
548 Auto, /* case sensitive */
549 True, /* case preserve */
550 True, /* short case preserve */
551 True, /* bHideDotFiles */
552 False, /* bHideSpecialFiles */
553 False, /* bHideUnReadable */
554 False, /* bHideUnWriteableFiles */
555 True, /* bBrowseable */
556 True, /* bAvailable */
557 True, /* bRead_only */
558 True, /* bNo_set_dir */
559 False, /* bGuest_only */
560 False, /* bGuest_ok */
561 False, /* bPrint_ok */
562 False, /* bMap_system */
563 False, /* bMap_hidden */
564 True, /* bMap_archive */
565 False, /* bStoreDosAttributes */
566 False, /* bDmapiSupport */
568 Auto, /* iStrictLocking */
569 True, /* bPosixLocking */
570 True, /* bShareModes */
572 True, /* bLevel2OpLocks */
573 False, /* bOnlyUser */
574 True, /* bMangledNames */
575 True, /* bWidelinks */
576 True, /* bSymlinks */
577 False, /* bSyncAlways */
578 False, /* bStrictAllocate */
579 False, /* bStrictSync */
580 '~', /* magic char */
582 False, /* bDeleteReadonly */
583 False, /* bFakeOplocks */
584 False, /* bDeleteVetoFiles */
585 False, /* bDosFilemode */
586 True, /* bDosFiletimes */
587 False, /* bDosFiletimeResolution */
588 False, /* bFakeDirCreateTimes */
589 True, /* bBlockingLocks */
590 False, /* bInheritPerms */
591 False, /* bInheritACLS */
592 False, /* bInheritOwner */
593 False, /* bMSDfsRoot */
594 False, /* bUseClientDriver */
595 True, /* bDefaultDevmode */
596 False, /* bForcePrintername */
597 True, /* bNTAclSupport */
598 False, /* bForceUnknownAclUser */
599 False, /* bUseSendfile */
600 False, /* bProfileAcls */
601 False, /* bMap_acl_inherit */
602 False, /* bAfs_Share */
603 False, /* bEASupport */
604 True, /* bAclCheckPermissions */
605 True, /* bAclMapFullControl */
606 False, /* bAclGroupControl */
607 True, /* bChangeNotify */
608 True, /* bKernelChangeNotify */
609 SMB_ROUNDUP_ALLOCATION_SIZE, /* iallocation_roundup_size */
610 0, /* iAioReadSize */
611 0, /* iAioWriteSize */
612 MAP_READONLY_YES, /* iMap_readonly */
613 #ifdef BROKEN_DIRECTORY_HANDLING
614 0, /* iDirectoryNameCacheSize */
616 100, /* iDirectoryNameCacheSize */
618 NULL, /* Parametric options */
623 /* local variables */
624 static service **ServicePtrs = NULL;
625 static int iNumServices = 0;
626 static int iServiceIndex = 0;
627 static TDB_CONTEXT *ServiceHash;
628 static int *invalid_services = NULL;
629 static int num_invalid_services = 0;
630 static BOOL bInGlobalSection = True;
631 static BOOL bGlobalOnly = False;
632 static int server_role;
633 static int default_server_announce;
635 #define NUMPARAMETERS (sizeof(parm_table) / sizeof(struct parm_struct))
637 /* prototypes for the special type handlers */
638 static BOOL handle_include( int snum, const char *pszParmValue, char **ptr);
639 static BOOL handle_copy( int snum, const char *pszParmValue, char **ptr);
640 static BOOL handle_netbios_name( int snum, const char *pszParmValue, char **ptr);
641 static BOOL handle_idmap_uid( int snum, const char *pszParmValue, char **ptr);
642 static BOOL handle_idmap_gid( int snum, const char *pszParmValue, char **ptr);
643 static BOOL handle_debug_list( int snum, const char *pszParmValue, char **ptr );
644 static BOOL handle_workgroup( int snum, const char *pszParmValue, char **ptr );
645 static BOOL handle_netbios_aliases( int snum, const char *pszParmValue, char **ptr );
646 static BOOL handle_netbios_scope( int snum, const char *pszParmValue, char **ptr );
647 static BOOL handle_charset( int snum, const char *pszParmValue, char **ptr );
648 static BOOL handle_printing( int snum, const char *pszParmValue, char **ptr);
650 static void set_server_role(void);
651 static void set_default_server_announce_type(void);
652 static void set_allowed_client_auth(void);
654 static const struct enum_list enum_protocol[] = {
655 {PROTOCOL_NT1, "NT1"},
656 {PROTOCOL_LANMAN2, "LANMAN2"},
657 {PROTOCOL_LANMAN1, "LANMAN1"},
658 {PROTOCOL_CORE, "CORE"},
659 {PROTOCOL_COREPLUS, "COREPLUS"},
660 {PROTOCOL_COREPLUS, "CORE+"},
664 static const struct enum_list enum_security[] = {
665 {SEC_SHARE, "SHARE"},
667 {SEC_SERVER, "SERVER"},
668 {SEC_DOMAIN, "DOMAIN"},
675 static const struct enum_list enum_printing[] = {
676 {PRINT_SYSV, "sysv"},
678 {PRINT_HPUX, "hpux"},
682 {PRINT_LPRNG, "lprng"},
683 {PRINT_CUPS, "cups"},
684 {PRINT_IPRINT, "iprint"},
686 {PRINT_LPROS2, "os2"},
688 {PRINT_TEST, "test"},
690 #endif /* DEVELOPER */
694 static const struct enum_list enum_ldap_sasl_wrapping[] = {
696 {ADS_AUTH_SASL_SIGN, "sign"},
697 {ADS_AUTH_SASL_SEAL, "seal"},
701 static const struct enum_list enum_ldap_ssl[] = {
702 {LDAP_SSL_OFF, "no"},
703 {LDAP_SSL_OFF, "No"},
704 {LDAP_SSL_OFF, "off"},
705 {LDAP_SSL_OFF, "Off"},
706 {LDAP_SSL_START_TLS, "start tls"},
707 {LDAP_SSL_START_TLS, "Start_tls"},
711 static const struct enum_list enum_ldap_passwd_sync[] = {
712 {LDAP_PASSWD_SYNC_OFF, "no"},
713 {LDAP_PASSWD_SYNC_OFF, "No"},
714 {LDAP_PASSWD_SYNC_OFF, "off"},
715 {LDAP_PASSWD_SYNC_OFF, "Off"},
716 {LDAP_PASSWD_SYNC_ON, "Yes"},
717 {LDAP_PASSWD_SYNC_ON, "yes"},
718 {LDAP_PASSWD_SYNC_ON, "on"},
719 {LDAP_PASSWD_SYNC_ON, "On"},
720 {LDAP_PASSWD_SYNC_ONLY, "Only"},
721 {LDAP_PASSWD_SYNC_ONLY, "only"},
725 /* Types of machine we can announce as. */
726 #define ANNOUNCE_AS_NT_SERVER 1
727 #define ANNOUNCE_AS_WIN95 2
728 #define ANNOUNCE_AS_WFW 3
729 #define ANNOUNCE_AS_NT_WORKSTATION 4
731 static const struct enum_list enum_announce_as[] = {
732 {ANNOUNCE_AS_NT_SERVER, "NT"},
733 {ANNOUNCE_AS_NT_SERVER, "NT Server"},
734 {ANNOUNCE_AS_NT_WORKSTATION, "NT Workstation"},
735 {ANNOUNCE_AS_WIN95, "win95"},
736 {ANNOUNCE_AS_WFW, "WfW"},
740 static const struct enum_list enum_map_readonly[] = {
741 {MAP_READONLY_NO, "no"},
742 {MAP_READONLY_NO, "false"},
743 {MAP_READONLY_NO, "0"},
744 {MAP_READONLY_YES, "yes"},
745 {MAP_READONLY_YES, "true"},
746 {MAP_READONLY_YES, "1"},
747 {MAP_READONLY_PERMISSIONS, "permissions"},
748 {MAP_READONLY_PERMISSIONS, "perms"},
752 static const struct enum_list enum_case[] = {
753 {CASE_LOWER, "lower"},
754 {CASE_UPPER, "upper"},
758 static const struct enum_list enum_bool_auto[] = {
769 /* Client-side offline caching policy types */
770 #define CSC_POLICY_MANUAL 0
771 #define CSC_POLICY_DOCUMENTS 1
772 #define CSC_POLICY_PROGRAMS 2
773 #define CSC_POLICY_DISABLE 3
775 static const struct enum_list enum_csc_policy[] = {
776 {CSC_POLICY_MANUAL, "manual"},
777 {CSC_POLICY_DOCUMENTS, "documents"},
778 {CSC_POLICY_PROGRAMS, "programs"},
779 {CSC_POLICY_DISABLE, "disable"},
783 /* SMB signing types. */
784 static const struct enum_list enum_smb_signing_vals[] = {
796 {Required, "required"},
797 {Required, "mandatory"},
799 {Required, "forced"},
800 {Required, "enforced"},
804 /* ACL compatibility options. */
805 static const struct enum_list enum_acl_compat_vals[] = {
806 { ACL_COMPAT_AUTO, "auto" },
807 { ACL_COMPAT_WINNT, "winnt" },
808 { ACL_COMPAT_WIN2K, "win2k" },
813 Do you want session setups at user level security with a invalid
814 password to be rejected or allowed in as guest? WinNT rejects them
815 but it can be a pain as it means "net view" needs to use a password
817 You have 3 choices in the setting of map_to_guest:
819 "Never" means session setups with an invalid password
820 are rejected. This is the default.
822 "Bad User" means session setups with an invalid password
823 are rejected, unless the username does not exist, in which case it
824 is treated as a guest login
826 "Bad Password" means session setups with an invalid password
827 are treated as a guest login
829 Note that map_to_guest only has an effect in user or server
833 static const struct enum_list enum_map_to_guest[] = {
834 {NEVER_MAP_TO_GUEST, "Never"},
835 {MAP_TO_GUEST_ON_BAD_USER, "Bad User"},
836 {MAP_TO_GUEST_ON_BAD_PASSWORD, "Bad Password"},
837 {MAP_TO_GUEST_ON_BAD_UID, "Bad Uid"},
841 /* Note: We do not initialise the defaults union - it is not allowed in ANSI C
843 * The FLAG_HIDE is explicit. Paramters set this way do NOT appear in any edit
844 * screen in SWAT. This is used to exclude parameters as well as to squash all
845 * parameters that have been duplicated by pseudonyms.
847 * NOTE: To display a parameter in BASIC view set FLAG_BASIC
848 * Any parameter that does NOT have FLAG_ADVANCED will not disply at all
849 * Set FLAG_SHARE and FLAG_PRINT to specifically display parameters in
852 * NOTE2: Handling of duplicated (synonym) paramters:
853 * Only the first occurance of a parameter should be enabled by FLAG_BASIC
854 * and/or FLAG_ADVANCED. All duplicates following the first mention should be
855 * set to FLAG_HIDE. ie: Make you must place the parameter that has the preferred
856 * name first, and all synonyms must follow it with the FLAG_HIDE attribute.
859 static struct parm_struct parm_table[] = {
860 {N_("Base Options"), P_SEP, P_SEPARATOR},
862 {"dos charset", P_STRING, P_GLOBAL, &Globals.dos_charset, handle_charset, NULL, FLAG_ADVANCED},
863 {"unix charset", P_STRING, P_GLOBAL, &Globals.unix_charset, handle_charset, NULL, FLAG_ADVANCED},
864 {"display charset", P_STRING, P_GLOBAL, &Globals.display_charset, handle_charset, NULL, FLAG_ADVANCED},
865 {"comment", P_STRING, P_LOCAL, &sDefault.comment, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
866 {"path", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
867 {"directory", P_STRING, P_LOCAL, &sDefault.szPath, NULL, NULL, FLAG_HIDE},
868 {"workgroup", P_USTRING, P_GLOBAL, &Globals.szWorkgroup, handle_workgroup, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
870 {"realm", P_USTRING, P_GLOBAL, &Globals.szRealm, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
872 {"netbios name", P_USTRING, P_GLOBAL, &Globals.szNetbiosName, handle_netbios_name, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
873 {"netbios aliases", P_LIST, P_GLOBAL, &Globals.szNetbiosAliases, handle_netbios_aliases, NULL, FLAG_ADVANCED},
874 {"netbios scope", P_USTRING, P_GLOBAL, &Globals.szNetbiosScope, handle_netbios_scope, NULL, FLAG_ADVANCED},
875 {"server string", P_STRING, P_GLOBAL, &Globals.szServerString, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED },
876 {"interfaces", P_LIST, P_GLOBAL, &Globals.szInterfaces, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
877 {"bind interfaces only", P_BOOL, P_GLOBAL, &Globals.bBindInterfacesOnly, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
879 {N_("Security Options"), P_SEP, P_SEPARATOR},
881 {"security", P_ENUM, P_GLOBAL, &Globals.security, NULL, enum_security, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
882 {"auth methods", P_LIST, P_GLOBAL, &Globals.AuthMethods, NULL, NULL, FLAG_ADVANCED},
883 {"encrypt passwords", P_BOOL, P_GLOBAL, &Globals.bEncryptPasswords, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
884 {"update encrypted", P_BOOL, P_GLOBAL, &Globals.bUpdateEncrypt, NULL, NULL, FLAG_ADVANCED},
885 {"client schannel", P_ENUM, P_GLOBAL, &Globals.clientSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
886 {"server schannel", P_ENUM, P_GLOBAL, &Globals.serverSchannel, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
887 {"allow trusted domains", P_BOOL, P_GLOBAL, &Globals.bAllowTrustedDomains, NULL, NULL, FLAG_ADVANCED},
888 {"map to guest", P_ENUM, P_GLOBAL, &Globals.map_to_guest, NULL, enum_map_to_guest, FLAG_ADVANCED},
889 {"null passwords", P_BOOL, P_GLOBAL, &Globals.bNullPasswords, NULL, NULL, FLAG_ADVANCED},
890 {"obey pam restrictions", P_BOOL, P_GLOBAL, &Globals.bObeyPamRestrictions, NULL, NULL, FLAG_ADVANCED},
891 {"password server", P_STRING, P_GLOBAL, &Globals.szPasswordServer, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
892 {"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED},
893 {"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED},
894 {"passdb backend", P_STRING, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
895 {"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.AlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED},
896 {"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED},
897 {"root dir", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
898 {"root", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_HIDE},
899 {"guest account", P_STRING, P_GLOBAL, &Globals.szGuestaccount, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
900 {"enable privileges", P_BOOL, P_GLOBAL, &Globals.bEnablePrivileges, NULL, NULL, FLAG_ADVANCED},
902 {"pam password change", P_BOOL, P_GLOBAL, &Globals.bPamPasswordChange, NULL, NULL, FLAG_ADVANCED},
903 {"passwd program", P_STRING, P_GLOBAL, &Globals.szPasswdProgram, NULL, NULL, FLAG_ADVANCED},
904 {"passwd chat", P_STRING, P_GLOBAL, &Globals.szPasswdChat, NULL, NULL, FLAG_ADVANCED},
905 {"passwd chat debug", P_BOOL, P_GLOBAL, &Globals.bPasswdChatDebug, NULL, NULL, FLAG_ADVANCED},
906 {"passwd chat timeout", P_INTEGER, P_GLOBAL, &Globals.iPasswdChatTimeout, NULL, NULL, FLAG_ADVANCED},
907 {"check password script", P_STRING, P_GLOBAL, &Globals.szCheckPasswordScript, NULL, NULL, FLAG_ADVANCED},
908 {"username map", P_STRING, P_GLOBAL, &Globals.szUsernameMap, NULL, NULL, FLAG_ADVANCED},
909 {"password level", P_INTEGER, P_GLOBAL, &Globals.pwordlevel, NULL, NULL, FLAG_ADVANCED},
910 {"username level", P_INTEGER, P_GLOBAL, &Globals.unamelevel, NULL, NULL, FLAG_ADVANCED},
911 {"unix password sync", P_BOOL, P_GLOBAL, &Globals.bUnixPasswdSync, NULL, NULL, FLAG_ADVANCED},
912 {"restrict anonymous", P_INTEGER, P_GLOBAL, &Globals.restrict_anonymous, NULL, NULL, FLAG_ADVANCED},
913 {"lanman auth", P_BOOL, P_GLOBAL, &Globals.bLanmanAuth, NULL, NULL, FLAG_ADVANCED},
914 {"ntlm auth", P_BOOL, P_GLOBAL, &Globals.bNTLMAuth, NULL, NULL, FLAG_ADVANCED},
915 {"client NTLMv2 auth", P_BOOL, P_GLOBAL, &Globals.bClientNTLMv2Auth, NULL, NULL, FLAG_ADVANCED},
916 {"client lanman auth", P_BOOL, P_GLOBAL, &Globals.bClientLanManAuth, NULL, NULL, FLAG_ADVANCED},
917 {"client plaintext auth", P_BOOL, P_GLOBAL, &Globals.bClientPlaintextAuth, NULL, NULL, FLAG_ADVANCED},
919 {"username", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
920 {"user", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
921 {"users", P_STRING, P_LOCAL, &sDefault.szUsername, NULL, NULL, FLAG_HIDE},
923 {"invalid users", P_LIST, P_LOCAL, &sDefault.szInvalidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
924 {"valid users", P_LIST, P_LOCAL, &sDefault.szValidUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
925 {"admin users", P_LIST, P_LOCAL, &sDefault.szAdminUsers, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
926 {"read list", P_LIST, P_LOCAL, &sDefault.readlist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
927 {"write list", P_LIST, P_LOCAL, &sDefault.writelist, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
928 {"printer admin", P_LIST, P_LOCAL, &sDefault.printer_admin, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_PRINT | FLAG_DEPRECATED },
929 {"force user", P_STRING, P_LOCAL, &sDefault.force_user, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
930 {"force group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
931 {"group", P_STRING, P_LOCAL, &sDefault.force_group, NULL, NULL, FLAG_ADVANCED},
933 {"read only", P_BOOL, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE},
934 {"write ok", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
935 {"writeable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
936 {"writable", P_BOOLREV, P_LOCAL, &sDefault.bRead_only, NULL, NULL, FLAG_HIDE},
938 {"acl check permissions", P_BOOL, P_LOCAL, &sDefault.bAclCheckPermissions, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
939 {"acl group control", P_BOOL, P_LOCAL, &sDefault.bAclGroupControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE | FLAG_DEPRECATED },
940 {"acl map full control", P_BOOL, P_LOCAL, &sDefault.bAclMapFullControl, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
941 {"create mask", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
942 {"create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_mask, NULL, NULL, FLAG_HIDE},
943 {"force create mode", P_OCTAL, P_LOCAL, &sDefault.iCreate_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
944 {"security mask", P_OCTAL, P_LOCAL, &sDefault.iSecurity_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
945 {"force security mode", P_OCTAL, P_LOCAL, &sDefault.iSecurity_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
946 {"directory mask", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
947 {"directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
948 {"force directory mode", P_OCTAL, P_LOCAL, &sDefault.iDir_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
949 {"directory security mask", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_mask, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
950 {"force directory security mode", P_OCTAL, P_LOCAL, &sDefault.iDir_Security_force_mode, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
951 {"force unknown acl user", P_BOOL, P_LOCAL, &sDefault.bForceUnknownAclUser, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
952 {"inherit permissions", P_BOOL, P_LOCAL, &sDefault.bInheritPerms, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
953 {"inherit acls", P_BOOL, P_LOCAL, &sDefault.bInheritACLS, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
954 {"inherit owner", P_BOOL, P_LOCAL, &sDefault.bInheritOwner, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
955 {"guest only", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
956 {"only guest", P_BOOL, P_LOCAL, &sDefault.bGuest_only, NULL, NULL, FLAG_HIDE},
958 {"guest ok", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
959 {"public", P_BOOL, P_LOCAL, &sDefault.bGuest_ok, NULL, NULL, FLAG_HIDE},
961 {"only user", P_BOOL, P_LOCAL, &sDefault.bOnlyUser, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
962 {"hosts allow", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
963 {"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
964 {"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
965 {"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
966 {"preload modules", P_LIST, P_GLOBAL, &Globals.szPreloadModules, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
967 {"use kerberos keytab", P_BOOL, P_GLOBAL, &Globals.bUseKerberosKeytab, NULL, NULL, FLAG_ADVANCED},
969 {N_("Logging Options"), P_SEP, P_SEPARATOR},
971 {"log level", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_ADVANCED},
972 {"debuglevel", P_STRING, P_GLOBAL, &Globals.szLogLevel, handle_debug_list, NULL, FLAG_HIDE},
973 {"syslog", P_INTEGER, P_GLOBAL, &Globals.syslog, NULL, NULL, FLAG_ADVANCED},
974 {"syslog only", P_BOOL, P_GLOBAL, &Globals.bSyslogOnly, NULL, NULL, FLAG_ADVANCED},
975 {"log file", P_STRING, P_GLOBAL, &Globals.szLogFile, NULL, NULL, FLAG_ADVANCED},
977 {"max log size", P_INTEGER, P_GLOBAL, &Globals.max_log_size, NULL, NULL, FLAG_ADVANCED},
978 {"debug timestamp", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
979 {"timestamp logs", P_BOOL, P_GLOBAL, &Globals.bTimestampLogs, NULL, NULL, FLAG_ADVANCED},
980 {"debug prefix timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugPrefixTimestamp, NULL, NULL, FLAG_ADVANCED},
981 {"debug hires timestamp", P_BOOL, P_GLOBAL, &Globals.bDebugHiresTimestamp, NULL, NULL, FLAG_ADVANCED},
982 {"debug pid", P_BOOL, P_GLOBAL, &Globals.bDebugPid, NULL, NULL, FLAG_ADVANCED},
983 {"debug uid", P_BOOL, P_GLOBAL, &Globals.bDebugUid, NULL, NULL, FLAG_ADVANCED},
984 {"enable core files", P_BOOL, P_GLOBAL, &Globals.bEnableCoreFiles, NULL, NULL, FLAG_ADVANCED},
986 {N_("Protocol Options"), P_SEP, P_SEPARATOR},
988 {"allocation roundup size", P_INTEGER, P_LOCAL, &sDefault.iallocation_roundup_size, NULL, NULL, FLAG_ADVANCED},
989 {"aio read size", P_INTEGER, P_LOCAL, &sDefault.iAioReadSize, NULL, NULL, FLAG_ADVANCED},
990 {"aio write size", P_INTEGER, P_LOCAL, &sDefault.iAioWriteSize, NULL, NULL, FLAG_ADVANCED},
991 {"smb ports", P_STRING, P_GLOBAL, &Globals.smb_ports, NULL, NULL, FLAG_ADVANCED},
992 {"large readwrite", P_BOOL, P_GLOBAL, &Globals.bLargeReadwrite, NULL, NULL, FLAG_ADVANCED},
993 {"max protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
994 {"protocol", P_ENUM, P_GLOBAL, &Globals.maxprotocol, NULL, enum_protocol, FLAG_ADVANCED},
995 {"min protocol", P_ENUM, P_GLOBAL, &Globals.minprotocol, NULL, enum_protocol, FLAG_ADVANCED},
996 {"read raw", P_BOOL, P_GLOBAL, &Globals.bReadRaw, NULL, NULL, FLAG_ADVANCED},
997 {"write raw", P_BOOL, P_GLOBAL, &Globals.bWriteRaw, NULL, NULL, FLAG_ADVANCED},
998 {"disable netbios", P_BOOL, P_GLOBAL, &Globals.bDisableNetbios, NULL, NULL, FLAG_ADVANCED},
999 {"reset on zero vc", P_BOOL, P_GLOBAL, &Globals.bResetOnZeroVC, NULL, NULL, FLAG_ADVANCED},
1001 {"acl compatibility", P_ENUM, P_GLOBAL, &Globals.iAclCompat, NULL, enum_acl_compat_vals, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1002 {"defer sharing violations", P_BOOL, P_GLOBAL, &Globals.bDeferSharingViolations, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1003 {"ea support", P_BOOL, P_LOCAL, &sDefault.bEASupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1004 {"nt acl support", P_BOOL, P_LOCAL, &sDefault.bNTAclSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1005 {"nt pipe support", P_BOOL, P_GLOBAL, &Globals.bNTPipeSupport, NULL, NULL, FLAG_ADVANCED},
1006 {"nt status support", P_BOOL, P_GLOBAL, &Globals.bNTStatusSupport, NULL, NULL, FLAG_ADVANCED},
1007 {"profile acls", P_BOOL, P_LOCAL, &sDefault.bProfileAcls, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1009 {"announce version", P_STRING, P_GLOBAL, &Globals.szAnnounceVersion, NULL, NULL, FLAG_ADVANCED},
1010 {"announce as", P_ENUM, P_GLOBAL, &Globals.announce_as, NULL, enum_announce_as, FLAG_ADVANCED},
1011 {"map acl inherit", P_BOOL, P_LOCAL, &sDefault.bMap_acl_inherit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1012 {"afs share", P_BOOL, P_LOCAL, &sDefault.bAfs_Share, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1013 {"max mux", P_INTEGER, P_GLOBAL, &Globals.max_mux, NULL, NULL, FLAG_ADVANCED},
1014 {"max xmit", P_INTEGER, P_GLOBAL, &Globals.max_xmit, NULL, NULL, FLAG_ADVANCED},
1016 {"name resolve order", P_STRING, P_GLOBAL, &Globals.szNameResolveOrder, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1017 {"max ttl", P_INTEGER, P_GLOBAL, &Globals.max_ttl, NULL, NULL, FLAG_ADVANCED},
1018 {"max wins ttl", P_INTEGER, P_GLOBAL, &Globals.max_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1019 {"min wins ttl", P_INTEGER, P_GLOBAL, &Globals.min_wins_ttl, NULL, NULL, FLAG_ADVANCED},
1020 {"time server", P_BOOL, P_GLOBAL, &Globals.bTimeServer, NULL, NULL, FLAG_ADVANCED},
1021 {"unix extensions", P_BOOL, P_GLOBAL, &Globals.bUnixExtensions, NULL, NULL, FLAG_ADVANCED},
1022 {"use spnego", P_BOOL, P_GLOBAL, &Globals.bUseSpnego, NULL, NULL, FLAG_ADVANCED},
1023 {"client signing", P_ENUM, P_GLOBAL, &Globals.client_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1024 {"server signing", P_ENUM, P_GLOBAL, &Globals.server_signing, NULL, enum_smb_signing_vals, FLAG_ADVANCED},
1025 {"client use spnego", P_BOOL, P_GLOBAL, &Globals.bClientUseSpnego, NULL, NULL, FLAG_ADVANCED},
1026 {"client ldap sasl wrapping", P_ENUM, P_GLOBAL, &Globals.client_ldap_sasl_wrapping, NULL, enum_ldap_sasl_wrapping, FLAG_ADVANCED},
1027 {"enable asu support", P_BOOL, P_GLOBAL, &Globals.bASUSupport, NULL, NULL, FLAG_ADVANCED},
1028 {"svcctl list", P_LIST, P_GLOBAL, &Globals.szServicesList, NULL, NULL, FLAG_ADVANCED},
1030 {N_("Tuning Options"), P_SEP, P_SEPARATOR},
1032 {"block size", P_INTEGER, P_LOCAL, &sDefault.iBlock_size, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1033 {"deadtime", P_INTEGER, P_GLOBAL, &Globals.deadtime, NULL, NULL, FLAG_ADVANCED},
1034 {"getwd cache", P_BOOL, P_GLOBAL, &use_getwd_cache, NULL, NULL, FLAG_ADVANCED},
1035 {"keepalive", P_INTEGER, P_GLOBAL, &Globals.iKeepalive, NULL, NULL, FLAG_ADVANCED},
1036 {"change notify", P_BOOL, P_LOCAL, &sDefault.bChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1037 {"directory name cache size", P_INTEGER, P_LOCAL, &sDefault.iDirectoryNameCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1038 {"kernel change notify", P_BOOL, P_LOCAL, &sDefault.bKernelChangeNotify, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1040 {"lpq cache time", P_INTEGER, P_GLOBAL, &Globals.lpqcachetime, NULL, NULL, FLAG_ADVANCED},
1041 {"max smbd processes", P_INTEGER, P_GLOBAL, &Globals.iMaxSmbdProcesses, NULL, NULL, FLAG_ADVANCED},
1042 {"max connections", P_INTEGER, P_LOCAL, &sDefault.iMaxConnections, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1043 {"paranoid server security", P_BOOL, P_GLOBAL, &Globals.paranoid_server_security, NULL, NULL, FLAG_ADVANCED},
1044 {"max disk size", P_INTEGER, P_GLOBAL, &Globals.maxdisksize, NULL, NULL, FLAG_ADVANCED},
1045 {"max open files", P_INTEGER, P_GLOBAL, &Globals.max_open_files, NULL, NULL, FLAG_ADVANCED},
1046 {"min print space", P_INTEGER, P_LOCAL, &sDefault.iMinPrintSpace, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1048 {"socket options", P_GSTRING, P_GLOBAL, user_socket_options, NULL, NULL, FLAG_ADVANCED},
1049 {"strict allocate", P_BOOL, P_LOCAL, &sDefault.bStrictAllocate, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1050 {"strict sync", P_BOOL, P_LOCAL, &sDefault.bStrictSync, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1051 {"sync always", P_BOOL, P_LOCAL, &sDefault.bSyncAlways, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1052 {"use mmap", P_BOOL, P_GLOBAL, &Globals.bUseMmap, NULL, NULL, FLAG_ADVANCED},
1053 {"use sendfile", P_BOOL, P_LOCAL, &sDefault.bUseSendfile, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1054 {"hostname lookups", P_BOOL, P_GLOBAL, &Globals.bHostnameLookups, NULL, NULL, FLAG_ADVANCED},
1055 {"write cache size", P_INTEGER, P_LOCAL, &sDefault.iWriteCacheSize, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_DEPRECATED},
1057 {"name cache timeout", P_INTEGER, P_GLOBAL, &Globals.name_cache_timeout, NULL, NULL, FLAG_ADVANCED},
1058 {"ctdbd socket", P_STRING, P_GLOBAL, &Globals.ctdbdSocket, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1059 {"cluster addresses", P_LIST, P_GLOBAL, &Globals.szClusterAddresses, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1060 {"clustering", P_BOOL, P_GLOBAL, &Globals.clustering, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1062 {N_("Printing Options"), P_SEP, P_SEPARATOR},
1064 {"max reported print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxReportedPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1065 {"max print jobs", P_INTEGER, P_LOCAL, &sDefault.iMaxPrintJobs, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1066 {"load printers", P_BOOL, P_GLOBAL, &Globals.bLoadPrinters, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1067 {"printcap cache time", P_INTEGER, P_GLOBAL, &Globals.PrintcapCacheTime, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1068 {"printcap name", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1069 {"printcap", P_STRING, P_GLOBAL, &Globals.szPrintcapname, NULL, NULL, FLAG_HIDE},
1070 {"printable", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1071 {"print ok", P_BOOL, P_LOCAL, &sDefault.bPrint_ok, NULL, NULL, FLAG_HIDE},
1072 {"printing", P_ENUM, P_LOCAL, &sDefault.iPrinting, handle_printing, enum_printing, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1073 {"cups options", P_STRING, P_LOCAL, &sDefault.szCupsOptions, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1074 {"cups server", P_STRING, P_GLOBAL, &Globals.szCupsServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1075 {"iprint server", P_STRING, P_GLOBAL, &Globals.szIPrintServer, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1076 {"print command", P_STRING, P_LOCAL, &sDefault.szPrintcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1077 {"disable spoolss", P_BOOL, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1078 {"enable spoolss", P_BOOLREV, P_GLOBAL, &Globals.bDisableSpoolss, NULL, NULL, FLAG_HIDE},
1079 {"lpq command", P_STRING, P_LOCAL, &sDefault.szLpqcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1080 {"lprm command", P_STRING, P_LOCAL, &sDefault.szLprmcommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1081 {"lppause command", P_STRING, P_LOCAL, &sDefault.szLppausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1082 {"lpresume command", P_STRING, P_LOCAL, &sDefault.szLpresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1083 {"queuepause command", P_STRING, P_LOCAL, &sDefault.szQueuepausecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1084 {"queueresume command", P_STRING, P_LOCAL, &sDefault.szQueueresumecommand, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT | FLAG_GLOBAL},
1086 {"addport command", P_STRING, P_GLOBAL, &Globals.szAddPortCommand, NULL, NULL, FLAG_ADVANCED},
1087 {"enumports command", P_STRING, P_GLOBAL, &Globals.szEnumPortsCommand, NULL, NULL, FLAG_ADVANCED},
1088 {"addprinter command", P_STRING, P_GLOBAL, &Globals.szAddPrinterCommand, NULL, NULL, FLAG_ADVANCED},
1089 {"deleteprinter command", P_STRING, P_GLOBAL, &Globals.szDeletePrinterCommand, NULL, NULL, FLAG_ADVANCED},
1090 {"show add printer wizard", P_BOOL, P_GLOBAL, &Globals.bMsAddPrinterWizard, NULL, NULL, FLAG_ADVANCED},
1091 {"os2 driver map", P_STRING, P_GLOBAL, &Globals.szOs2DriverMap, NULL, NULL, FLAG_ADVANCED},
1093 {"printer name", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1094 {"printer", P_STRING, P_LOCAL, &sDefault.szPrintername, NULL, NULL, FLAG_HIDE},
1095 {"use client driver", P_BOOL, P_LOCAL, &sDefault.bUseClientDriver, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1096 {"default devmode", P_BOOL, P_LOCAL, &sDefault.bDefaultDevmode, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1097 {"force printername", P_BOOL, P_LOCAL, &sDefault.bForcePrintername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1098 {"printjob username", P_STRING, P_LOCAL, &sDefault.szPrintjobUsername, NULL, NULL, FLAG_ADVANCED | FLAG_PRINT},
1100 {N_("Filename Handling"), P_SEP, P_SEPARATOR},
1101 {"mangling method", P_STRING, P_GLOBAL, &Globals.szManglingMethod, NULL, NULL, FLAG_ADVANCED},
1102 {"mangle prefix", P_INTEGER, P_GLOBAL, &Globals.mangle_prefix, NULL, NULL, FLAG_ADVANCED},
1104 {"default case", P_ENUM, P_LOCAL, &sDefault.iDefaultCase, NULL, enum_case, FLAG_ADVANCED | FLAG_SHARE},
1105 {"case sensitive", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1106 {"casesignames", P_ENUM, P_LOCAL, &sDefault.iCaseSensitive, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL | FLAG_HIDE},
1107 {"preserve case", P_BOOL, P_LOCAL, &sDefault.bCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1108 {"short preserve case", P_BOOL, P_LOCAL, &sDefault.bShortCasePreserve, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1109 {"mangling char", P_CHAR, P_LOCAL, &sDefault.magic_char, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1110 {"hide dot files", P_BOOL, P_LOCAL, &sDefault.bHideDotFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1111 {"hide special files", P_BOOL, P_LOCAL, &sDefault.bHideSpecialFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1112 {"hide unreadable", P_BOOL, P_LOCAL, &sDefault.bHideUnReadable, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1113 {"hide unwriteable files", P_BOOL, P_LOCAL, &sDefault.bHideUnWriteableFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1114 {"delete veto files", P_BOOL, P_LOCAL, &sDefault.bDeleteVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1115 {"veto files", P_STRING, P_LOCAL, &sDefault.szVetoFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1116 {"hide files", P_STRING, P_LOCAL, &sDefault.szHideFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1117 {"veto oplock files", P_STRING, P_LOCAL, &sDefault.szVetoOplockFiles, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL },
1118 {"map archive", P_BOOL, P_LOCAL, &sDefault.bMap_archive, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1119 {"map hidden", P_BOOL, P_LOCAL, &sDefault.bMap_hidden, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1120 {"map system", P_BOOL, P_LOCAL, &sDefault.bMap_system, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1121 {"map readonly", P_ENUM, P_LOCAL, &sDefault.iMap_readonly, NULL, enum_map_readonly, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1122 {"mangled names", P_BOOL, P_LOCAL, &sDefault.bMangledNames, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1123 {"max stat cache size", P_INTEGER, P_GLOBAL, &Globals.iMaxStatCacheSize, NULL, NULL, FLAG_ADVANCED},
1124 {"stat cache", P_BOOL, P_GLOBAL, &Globals.bStatCache, NULL, NULL, FLAG_ADVANCED},
1125 {"store dos attributes", P_BOOL, P_LOCAL, &sDefault.bStoreDosAttributes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1126 {"dmapi support", P_BOOL, P_LOCAL, &sDefault.bDmapiSupport, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1129 {N_("Domain Options"), P_SEP, P_SEPARATOR},
1131 {"machine password timeout", P_INTEGER, P_GLOBAL, &Globals.machine_password_timeout, NULL, NULL, FLAG_ADVANCED | FLAG_WIZARD},
1133 {N_("Logon Options"), P_SEP, P_SEPARATOR},
1135 {"add user script", P_STRING, P_GLOBAL, &Globals.szAddUserScript, NULL, NULL, FLAG_ADVANCED},
1136 {"rename user script", P_STRING, P_GLOBAL, &Globals.szRenameUserScript, NULL, NULL, FLAG_ADVANCED},
1137 {"delete user script", P_STRING, P_GLOBAL, &Globals.szDelUserScript, NULL, NULL, FLAG_ADVANCED},
1138 {"add group script", P_STRING, P_GLOBAL, &Globals.szAddGroupScript, NULL, NULL, FLAG_ADVANCED},
1139 {"delete group script", P_STRING, P_GLOBAL, &Globals.szDelGroupScript, NULL, NULL, FLAG_ADVANCED},
1140 {"add user to group script", P_STRING, P_GLOBAL, &Globals.szAddUserToGroupScript, NULL, NULL, FLAG_ADVANCED},
1141 {"delete user from group script", P_STRING, P_GLOBAL, &Globals.szDelUserFromGroupScript, NULL, NULL, FLAG_ADVANCED},
1142 {"set primary group script", P_STRING, P_GLOBAL, &Globals.szSetPrimaryGroupScript, NULL, NULL, FLAG_ADVANCED},
1143 {"add machine script", P_STRING, P_GLOBAL, &Globals.szAddMachineScript, NULL, NULL, FLAG_ADVANCED},
1144 {"shutdown script", P_STRING, P_GLOBAL, &Globals.szShutdownScript, NULL, NULL, FLAG_ADVANCED},
1145 {"abort shutdown script", P_STRING, P_GLOBAL, &Globals.szAbortShutdownScript, NULL, NULL, FLAG_ADVANCED},
1146 {"username map script", P_STRING, P_GLOBAL, &Globals.szUsernameMapScript, NULL, NULL, FLAG_ADVANCED},
1148 {"logon script", P_STRING, P_GLOBAL, &Globals.szLogonScript, NULL, NULL, FLAG_ADVANCED},
1149 {"logon path", P_STRING, P_GLOBAL, &Globals.szLogonPath, NULL, NULL, FLAG_ADVANCED},
1150 {"logon drive", P_STRING, P_GLOBAL, &Globals.szLogonDrive, NULL, NULL, FLAG_ADVANCED},
1151 {"logon home", P_STRING, P_GLOBAL, &Globals.szLogonHome, NULL, NULL, FLAG_ADVANCED},
1152 {"domain logons", P_BOOL, P_GLOBAL, &Globals.bDomainLogons, NULL, NULL, FLAG_ADVANCED},
1154 {N_("Browse Options"), P_SEP, P_SEPARATOR},
1156 {"os level", P_INTEGER, P_GLOBAL, &Globals.os_level, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1157 {"lm announce", P_ENUM, P_GLOBAL, &Globals.lm_announce, NULL, enum_bool_auto, FLAG_ADVANCED},
1158 {"lm interval", P_INTEGER, P_GLOBAL, &Globals.lm_interval, NULL, NULL, FLAG_ADVANCED},
1159 {"preferred master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1160 {"prefered master", P_ENUM, P_GLOBAL, &Globals.bPreferredMaster, NULL, enum_bool_auto, FLAG_HIDE},
1161 {"local master", P_BOOL, P_GLOBAL, &Globals.bLocalMaster, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED},
1162 {"domain master", P_ENUM, P_GLOBAL, &Globals.bDomainMaster, NULL, enum_bool_auto, FLAG_BASIC | FLAG_ADVANCED},
1163 {"browse list", P_BOOL, P_GLOBAL, &Globals.bBrowseList, NULL, NULL, FLAG_ADVANCED},
1164 {"browseable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1165 {"browsable", P_BOOL, P_LOCAL, &sDefault.bBrowseable, NULL, NULL, FLAG_HIDE},
1166 {"enhanced browsing", P_BOOL, P_GLOBAL, &Globals.enhanced_browsing, NULL, NULL, FLAG_ADVANCED},
1168 {N_("WINS Options"), P_SEP, P_SEPARATOR},
1170 {"dns proxy", P_BOOL, P_GLOBAL, &Globals.bDNSproxy, NULL, NULL, FLAG_ADVANCED},
1171 {"wins proxy", P_BOOL, P_GLOBAL, &Globals.bWINSproxy, NULL, NULL, FLAG_ADVANCED},
1173 {"wins server", P_LIST, P_GLOBAL, &Globals.szWINSservers, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1174 {"wins support", P_BOOL, P_GLOBAL, &Globals.bWINSsupport, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_WIZARD},
1175 {"wins hook", P_STRING, P_GLOBAL, &Globals.szWINSHook, NULL, NULL, FLAG_ADVANCED},
1177 {N_("Locking Options"), P_SEP, P_SEPARATOR},
1179 {"blocking locks", P_BOOL, P_LOCAL, &sDefault.bBlockingLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1180 {"csc policy", P_ENUM, P_LOCAL, &sDefault.iCSCPolicy, NULL, enum_csc_policy, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1181 {"fake oplocks", P_BOOL, P_LOCAL, &sDefault.bFakeOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1182 {"kernel oplocks", P_BOOL, P_GLOBAL, &Globals.bKernelOplocks, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1183 {"locking", P_BOOL, P_LOCAL, &sDefault.bLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1184 {"lock spin time", P_INTEGER, P_GLOBAL, &Globals.iLockSpinTime, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1186 {"oplocks", P_BOOL, P_LOCAL, &sDefault.bOpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1187 {"level2 oplocks", P_BOOL, P_LOCAL, &sDefault.bLevel2OpLocks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1188 {"oplock break wait time", P_INTEGER, P_GLOBAL, &Globals.oplock_break_wait_time, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL},
1189 {"oplock contention limit", P_INTEGER, P_LOCAL, &sDefault.iOplockContentionLimit, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1190 {"posix locking", P_BOOL, P_LOCAL, &sDefault.bPosixLocking, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1191 {"strict locking", P_ENUM, P_LOCAL, &sDefault.iStrictLocking, NULL, enum_bool_auto, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1192 {"share modes", P_BOOL, P_LOCAL, &sDefault.bShareModes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1194 {N_("Ldap Options"), P_SEP, P_SEPARATOR},
1196 {"ldap admin dn", P_STRING, P_GLOBAL, &Globals.szLdapAdminDn, NULL, NULL, FLAG_ADVANCED},
1197 {"ldap delete dn", P_BOOL, P_GLOBAL, &Globals.ldap_delete_dn, NULL, NULL, FLAG_ADVANCED},
1198 {"ldap group suffix", P_STRING, P_GLOBAL, &Globals.szLdapGroupSuffix, NULL, NULL, FLAG_ADVANCED},
1199 {"ldap idmap suffix", P_STRING, P_GLOBAL, &Globals.szLdapIdmapSuffix, NULL, NULL, FLAG_ADVANCED},
1200 {"ldap machine suffix", P_STRING, P_GLOBAL, &Globals.szLdapMachineSuffix, NULL, NULL, FLAG_ADVANCED},
1201 {"ldap passwd sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_ADVANCED},
1202 {"ldap password sync", P_ENUM, P_GLOBAL, &Globals.ldap_passwd_sync, NULL, enum_ldap_passwd_sync, FLAG_HIDE},
1203 {"ldap replication sleep", P_INTEGER, P_GLOBAL, &Globals.ldap_replication_sleep, NULL, NULL, FLAG_ADVANCED},
1204 {"ldap suffix", P_STRING, P_GLOBAL, &Globals.szLdapSuffix, NULL, NULL, FLAG_ADVANCED},
1205 {"ldap ssl", P_ENUM, P_GLOBAL, &Globals.ldap_ssl, NULL, enum_ldap_ssl, FLAG_ADVANCED},
1206 {"ldap timeout", P_INTEGER, P_GLOBAL, &Globals.ldap_timeout, NULL, NULL, FLAG_ADVANCED},
1207 {"ldap page size", P_INTEGER, P_GLOBAL, &Globals.ldap_page_size, NULL, NULL, FLAG_ADVANCED},
1208 {"ldap user suffix", P_STRING, P_GLOBAL, &Globals.szLdapUserSuffix, NULL, NULL, FLAG_ADVANCED},
1210 {N_("Miscellaneous Options"), P_SEP, P_SEPARATOR},
1211 {"add share command", P_STRING, P_GLOBAL, &Globals.szAddShareCommand, NULL, NULL, FLAG_ADVANCED},
1212 {"change share command", P_STRING, P_GLOBAL, &Globals.szChangeShareCommand, NULL, NULL, FLAG_ADVANCED},
1213 {"delete share command", P_STRING, P_GLOBAL, &Globals.szDeleteShareCommand, NULL, NULL, FLAG_ADVANCED},
1215 {N_("EventLog Options"), P_SEP, P_SEPARATOR},
1216 {"eventlog list", P_LIST, P_GLOBAL, &Globals.szEventLogs, NULL, NULL, FLAG_ADVANCED | FLAG_GLOBAL | FLAG_SHARE},
1218 {"config file", P_STRING, P_GLOBAL, &Globals.szConfigFile, NULL, NULL, FLAG_HIDE},
1219 {"preload", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1220 {"auto services", P_STRING, P_GLOBAL, &Globals.szAutoServices, NULL, NULL, FLAG_ADVANCED},
1221 {"lock directory", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_ADVANCED},
1222 {"lock dir", P_STRING, P_GLOBAL, &Globals.szLockDir, NULL, NULL, FLAG_HIDE},
1223 {"pid directory", P_STRING, P_GLOBAL, &Globals.szPidDir, NULL, NULL, FLAG_ADVANCED},
1225 {"utmp directory", P_STRING, P_GLOBAL, &Globals.szUtmpDir, NULL, NULL, FLAG_ADVANCED},
1226 {"wtmp directory", P_STRING, P_GLOBAL, &Globals.szWtmpDir, NULL, NULL, FLAG_ADVANCED},
1227 {"utmp", P_BOOL, P_GLOBAL, &Globals.bUtmp, NULL, NULL, FLAG_ADVANCED},
1230 {"default service", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1231 {"default", P_STRING, P_GLOBAL, &Globals.szDefaultService, NULL, NULL, FLAG_ADVANCED},
1232 {"message command", P_STRING, P_GLOBAL, &Globals.szMsgCommand, NULL, NULL, FLAG_ADVANCED},
1233 {"dfree cache time", P_INTEGER, P_LOCAL, &sDefault.iDfreeCacheTime, NULL, NULL, FLAG_ADVANCED},
1234 {"dfree command", P_STRING, P_LOCAL, &sDefault.szDfree, NULL, NULL, FLAG_ADVANCED},
1235 {"get quota command", P_STRING, P_GLOBAL, &Globals.szGetQuota, NULL, NULL, FLAG_ADVANCED},
1236 {"set quota command", P_STRING, P_GLOBAL, &Globals.szSetQuota, NULL, NULL, FLAG_ADVANCED},
1237 {"remote announce", P_STRING, P_GLOBAL, &Globals.szRemoteAnnounce, NULL, NULL, FLAG_ADVANCED},
1238 {"remote browse sync", P_STRING, P_GLOBAL, &Globals.szRemoteBrowseSync, NULL, NULL, FLAG_ADVANCED},
1239 {"socket address", P_STRING, P_GLOBAL, &Globals.szSocketAddress, NULL, NULL, FLAG_ADVANCED},
1240 {"homedir map", P_STRING, P_GLOBAL, &Globals.szNISHomeMapName, NULL, NULL, FLAG_ADVANCED},
1241 {"afs username map", P_STRING, P_GLOBAL, &Globals.szAfsUsernameMap, NULL, NULL, FLAG_ADVANCED},
1242 {"afs token lifetime", P_INTEGER, P_GLOBAL, &Globals.iAfsTokenLifetime, NULL, NULL, FLAG_ADVANCED},
1243 {"log nt token command", P_STRING, P_GLOBAL, &Globals.szLogNtTokenCommand, NULL, NULL, FLAG_ADVANCED},
1244 {"time offset", P_INTEGER, P_GLOBAL, &extra_time_offset, NULL, NULL, FLAG_ADVANCED},
1245 {"NIS homedir", P_BOOL, P_GLOBAL, &Globals.bNISHomeMap, NULL, NULL, FLAG_ADVANCED},
1246 {"-valid", P_BOOL, P_LOCAL, &sDefault.valid, NULL, NULL, FLAG_HIDE},
1248 {"copy", P_STRING, P_LOCAL, &sDefault.szCopy, handle_copy, NULL, FLAG_HIDE},
1249 {"include", P_STRING, P_LOCAL, &sDefault.szInclude, handle_include, NULL, FLAG_HIDE},
1250 {"preexec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1251 {"exec", P_STRING, P_LOCAL, &sDefault.szPreExec, NULL, NULL, FLAG_ADVANCED},
1253 {"preexec close", P_BOOL, P_LOCAL, &sDefault.bPreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1254 {"postexec", P_STRING, P_LOCAL, &sDefault.szPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1255 {"root preexec", P_STRING, P_LOCAL, &sDefault.szRootPreExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1256 {"root preexec close", P_BOOL, P_LOCAL, &sDefault.bRootpreexecClose, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1257 {"root postexec", P_STRING, P_LOCAL, &sDefault.szRootPostExec, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1258 {"available", P_BOOL, P_LOCAL, &sDefault.bAvailable, NULL, NULL, FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT},
1259 {"registry shares", P_BOOL, P_GLOBAL, &Globals.bRegistryShares, NULL, NULL, FLAG_ADVANCED},
1260 {"usershare allow guests", P_BOOL, P_GLOBAL, &Globals.bUsershareAllowGuests, NULL, NULL, FLAG_ADVANCED},
1261 {"usershare max shares", P_INTEGER, P_GLOBAL, &Globals.iUsershareMaxShares, NULL, NULL, FLAG_ADVANCED},
1262 {"usershare owner only", P_BOOL, P_GLOBAL, &Globals.bUsershareOwnerOnly, NULL, NULL, FLAG_ADVANCED},
1263 {"usershare path", P_STRING, P_GLOBAL, &Globals.szUsersharePath, NULL, NULL, FLAG_ADVANCED},
1264 {"usershare prefix allow list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixAllowList, NULL, NULL, FLAG_ADVANCED},
1265 {"usershare prefix deny list", P_LIST, P_GLOBAL, &Globals.szUsersharePrefixDenyList, NULL, NULL, FLAG_ADVANCED},
1266 {"usershare template share", P_STRING, P_GLOBAL, &Globals.szUsershareTemplateShare, NULL, NULL, FLAG_ADVANCED},
1267 {"volume", P_STRING, P_LOCAL, &sDefault.volume, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE },
1268 {"fstype", P_STRING, P_LOCAL, &sDefault.fstype, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1269 {"set directory", P_BOOLREV, P_LOCAL, &sDefault.bNo_set_dir, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1270 {"wide links", P_BOOL, P_LOCAL, &sDefault.bWidelinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1271 {"follow symlinks", P_BOOL, P_LOCAL, &sDefault.bSymlinks, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1272 {"dont descend", P_STRING, P_LOCAL, &sDefault.szDontdescend, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1273 {"magic script", P_STRING, P_LOCAL, &sDefault.szMagicScript, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1274 {"magic output", P_STRING, P_LOCAL, &sDefault.szMagicOutput, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1275 {"delete readonly", P_BOOL, P_LOCAL, &sDefault.bDeleteReadonly, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1276 {"dos filemode", P_BOOL, P_LOCAL, &sDefault.bDosFilemode, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1277 {"dos filetimes", P_BOOL, P_LOCAL, &sDefault.bDosFiletimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1278 {"dos filetime resolution", P_BOOL, P_LOCAL, &sDefault.bDosFiletimeResolution, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1280 {"fake directory create times", P_BOOL, P_LOCAL, &sDefault.bFakeDirCreateTimes, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE | FLAG_GLOBAL},
1281 {"panic action", P_STRING, P_GLOBAL, &Globals.szPanicAction, NULL, NULL, FLAG_ADVANCED},
1283 {N_("VFS module options"), P_SEP, P_SEPARATOR},
1285 {"vfs objects", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1286 {"vfs object", P_LIST, P_LOCAL, &sDefault.szVfsObjects, NULL, NULL, FLAG_HIDE},
1289 {"msdfs root", P_BOOL, P_LOCAL, &sDefault.bMSDfsRoot, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1290 {"msdfs proxy", P_STRING, P_LOCAL, &sDefault.szMSDfsProxy, NULL, NULL, FLAG_ADVANCED | FLAG_SHARE},
1291 {"host msdfs", P_BOOL, P_GLOBAL, &Globals.bHostMSDfs, NULL, NULL, FLAG_ADVANCED},
1293 {N_("Winbind options"), P_SEP, P_SEPARATOR},
1295 {"passdb expand explicit", P_BOOL, P_GLOBAL, &Globals.bPassdbExpandExplicit, NULL, NULL, FLAG_ADVANCED},
1296 {"idmap domains", P_LIST, P_GLOBAL, &Globals.szIdmapDomains, NULL, NULL, FLAG_ADVANCED},
1297 {"idmap backend", P_LIST, P_GLOBAL, &Globals.szIdmapBackend, NULL, NULL, FLAG_ADVANCED },
1298 {"idmap alloc backend", P_STRING, P_GLOBAL, &Globals.szIdmapAllocBackend, NULL, NULL, FLAG_ADVANCED},
1299 {"idmap cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapCacheTime, NULL, NULL, FLAG_ADVANCED},
1300 {"idmap negative cache time", P_INTEGER, P_GLOBAL, &Globals.iIdmapNegativeCacheTime, NULL, NULL, FLAG_ADVANCED},
1301 {"idmap uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_ADVANCED },
1302 {"winbind uid", P_STRING, P_GLOBAL, &Globals.szIdmapUID, handle_idmap_uid, NULL, FLAG_HIDE },
1303 {"idmap gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_ADVANCED },
1304 {"winbind gid", P_STRING, P_GLOBAL, &Globals.szIdmapGID, handle_idmap_gid, NULL, FLAG_HIDE },
1305 {"template homedir", P_STRING, P_GLOBAL, &Globals.szTemplateHomedir, NULL, NULL, FLAG_ADVANCED},
1306 {"template shell", P_STRING, P_GLOBAL, &Globals.szTemplateShell, NULL, NULL, FLAG_ADVANCED},
1307 {"winbind separator", P_STRING, P_GLOBAL, &Globals.szWinbindSeparator, NULL, NULL, FLAG_ADVANCED},
1308 {"winbind cache time", P_INTEGER, P_GLOBAL, &Globals.winbind_cache_time, NULL, NULL, FLAG_ADVANCED},
1309 {"winbind enum users", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumUsers, NULL, NULL, FLAG_ADVANCED},
1310 {"winbind enum groups", P_BOOL, P_GLOBAL, &Globals.bWinbindEnumGroups, NULL, NULL, FLAG_ADVANCED},
1311 {"winbind use default domain", P_BOOL, P_GLOBAL, &Globals.bWinbindUseDefaultDomain, NULL, NULL, FLAG_ADVANCED},
1312 {"winbind trusted domains only", P_BOOL, P_GLOBAL, &Globals.bWinbindTrustedDomainsOnly, NULL, NULL, FLAG_ADVANCED},
1313 {"winbind nested groups", P_BOOL, P_GLOBAL, &Globals.bWinbindNestedGroups, NULL, NULL, FLAG_ADVANCED},
1314 {"winbind expand groups", P_INTEGER, P_GLOBAL, &Globals.winbind_expand_groups, NULL, NULL, FLAG_ADVANCED},
1315 {"winbind nss info", P_LIST, P_GLOBAL, &Globals.szWinbindNssInfo, NULL, NULL, FLAG_ADVANCED},
1316 {"winbind refresh tickets", P_BOOL, P_GLOBAL, &Globals.bWinbindRefreshTickets, NULL, NULL, FLAG_ADVANCED},
1317 {"winbind offline logon", P_BOOL, P_GLOBAL, &Globals.bWinbindOfflineLogon, NULL, NULL, FLAG_ADVANCED},
1318 {"winbind normalize names", P_BOOL, P_GLOBAL, &Globals.bWinbindNormalizeNames, NULL, NULL, FLAG_ADVANCED},
1319 {"winbind rpc only", P_BOOL, P_GLOBAL, &Globals.bWinbindRpcOnly, NULL, NULL, FLAG_ADVANCED},
1321 {NULL, P_BOOL, P_NONE, NULL, NULL, NULL, 0}
1324 /***************************************************************************
1325 Initialise the sDefault parameter structure for the printer values.
1326 ***************************************************************************/
1328 static void init_printer_values(service *pService)
1330 /* choose defaults depending on the type of printing */
1331 switch (pService->iPrinting) {
1336 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1337 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1338 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1343 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1344 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1345 string_set(&pService->szPrintcommand, "lpr -r -P'%p' %s");
1346 string_set(&pService->szQueuepausecommand, "lpc stop '%p'");
1347 string_set(&pService->szQueueresumecommand, "lpc start '%p'");
1348 string_set(&pService->szLppausecommand, "lpc hold '%p' %j");
1349 string_set(&pService->szLpresumecommand, "lpc release '%p' %j");
1355 /* set the lpq command to contain the destination printer
1356 name only. This is used by cups_queue_get() */
1357 string_set(&pService->szLpqcommand, "%p");
1358 string_set(&pService->szLprmcommand, "");
1359 string_set(&pService->szPrintcommand, "");
1360 string_set(&pService->szLppausecommand, "");
1361 string_set(&pService->szLpresumecommand, "");
1362 string_set(&pService->szQueuepausecommand, "");
1363 string_set(&pService->szQueueresumecommand, "");
1365 string_set(&pService->szLpqcommand, "lpq -P'%p'");
1366 string_set(&pService->szLprmcommand, "lprm -P'%p' %j");
1367 string_set(&pService->szPrintcommand, "lpr -P'%p' %s; rm %s");
1368 string_set(&pService->szLppausecommand, "lp -i '%p-%j' -H hold");
1369 string_set(&pService->szLpresumecommand, "lp -i '%p-%j' -H resume");
1370 string_set(&pService->szQueuepausecommand, "disable '%p'");
1371 string_set(&pService->szQueueresumecommand, "enable '%p'");
1372 #endif /* HAVE_CUPS */
1377 string_set(&pService->szLpqcommand, "lpstat -o%p");
1378 string_set(&pService->szLprmcommand, "cancel %p-%j");
1379 string_set(&pService->szPrintcommand, "lp -c -d%p %s; rm %s");
1380 string_set(&pService->szQueuepausecommand, "disable %p");
1381 string_set(&pService->szQueueresumecommand, "enable %p");
1383 string_set(&pService->szLppausecommand, "lp -i %p-%j -H hold");
1384 string_set(&pService->szLpresumecommand, "lp -i %p-%j -H resume");
1389 string_set(&pService->szLpqcommand, "lpq -P%p");
1390 string_set(&pService->szLprmcommand, "lprm -P%p %j");
1391 string_set(&pService->szPrintcommand, "lp -r -P%p %s");
1397 string_set(&pService->szPrintcommand, "vlp print %p %s");
1398 string_set(&pService->szLpqcommand, "vlp lpq %p");
1399 string_set(&pService->szLprmcommand, "vlp lprm %p %j");
1400 string_set(&pService->szLppausecommand, "vlp lppause %p %j");
1401 string_set(&pService->szLpresumecommand, "vlp lpresum %p %j");
1402 string_set(&pService->szQueuepausecommand, "vlp queuepause %p");
1403 string_set(&pService->szQueueresumecommand, "vlp queueresume %p");
1405 #endif /* DEVELOPER */
1410 /***************************************************************************
1411 Initialise the global parameter structure.
1412 ***************************************************************************/
1414 static void init_globals(BOOL first_time_only)
1416 static BOOL done_init = False;
1419 /* If requested to initialize only once and we've already done it... */
1420 if (first_time_only && done_init) {
1421 /* ... then we have nothing more to do */
1428 /* The logfile can be set before this is invoked. Free it if so. */
1429 if (Globals.szLogFile != NULL) {
1430 string_free(&Globals.szLogFile);
1431 Globals.szLogFile = NULL;
1434 memset((void *)&Globals, '\0', sizeof(Globals));
1436 for (i = 0; parm_table[i].label; i++)
1437 if ((parm_table[i].type == P_STRING ||
1438 parm_table[i].type == P_USTRING) &&
1440 string_set((char **)parm_table[i].ptr, "");
1442 string_set(&sDefault.fstype, FSTYPE_STRING);
1443 string_set(&sDefault.szPrintjobUsername, "%U");
1445 init_printer_values(&sDefault);
1451 DEBUG(3, ("Initialising global parameters\n"));
1453 string_set(&Globals.szSMBPasswdFile, dyn_SMB_PASSWD_FILE);
1454 string_set(&Globals.szPrivateDir, dyn_PRIVATE_DIR);
1456 /* use the new 'hash2' method by default, with a prefix of 1 */
1457 string_set(&Globals.szManglingMethod, "hash2");
1458 Globals.mangle_prefix = 1;
1460 string_set(&Globals.szGuestaccount, GUEST_ACCOUNT);
1462 /* using UTF8 by default allows us to support all chars */
1463 string_set(&Globals.unix_charset, DEFAULT_UNIX_CHARSET);
1465 #if defined(HAVE_NL_LANGINFO) && defined(CODESET)
1466 /* If the system supports nl_langinfo(), try to grab the value
1467 from the user's locale */
1468 string_set(&Globals.display_charset, "LOCALE");
1470 string_set(&Globals.display_charset, DEFAULT_DISPLAY_CHARSET);
1473 /* Use codepage 850 as a default for the dos character set */
1474 string_set(&Globals.dos_charset, DEFAULT_DOS_CHARSET);
1477 * Allow the default PASSWD_CHAT to be overridden in local.h.
1479 string_set(&Globals.szPasswdChat, DEFAULT_PASSWD_CHAT);
1481 set_global_myname(myhostname());
1482 string_set(&Globals.szNetbiosName,global_myname());
1484 set_global_myworkgroup(WORKGROUP);
1485 string_set(&Globals.szWorkgroup, lp_workgroup());
1487 string_set(&Globals.szPasswdProgram, "");
1488 string_set(&Globals.szPidDir, dyn_PIDDIR);
1489 string_set(&Globals.szLockDir, dyn_LOCKDIR);
1490 string_set(&Globals.szSocketAddress, "0.0.0.0");
1491 pstrcpy(s, "Samba ");
1492 pstrcat(s, SAMBA_VERSION_STRING);
1493 string_set(&Globals.szServerString, s);
1494 slprintf(s, sizeof(s) - 1, "%d.%d", DEFAULT_MAJOR_VERSION,
1495 DEFAULT_MINOR_VERSION);
1496 string_set(&Globals.szAnnounceVersion, s);
1498 string_set(&Globals.szPanicAction, "/bin/sleep 999999999");
1501 pstrcpy(user_socket_options, DEFAULT_SOCKET_OPTIONS);
1503 string_set(&Globals.szLogonDrive, "");
1504 /* %N is the NIS auto.home server if -DAUTOHOME is used, else same as %L */
1505 string_set(&Globals.szLogonHome, "\\\\%N\\%U");
1506 string_set(&Globals.szLogonPath, "\\\\%N\\%U\\profile");
1508 string_set(&Globals.szNameResolveOrder, "lmhosts wins host bcast");
1509 string_set(&Globals.szPasswordServer, "*");
1511 Globals.AlgorithmicRidBase = BASE_RID;
1513 Globals.bLoadPrinters = True;
1514 Globals.PrintcapCacheTime = 750; /* 12.5 minutes */
1516 /* Was 65535 (0xFFFF). 0x4101 matches W2K and causes major speed improvements... */
1517 /* Discovered by 2 days of pain by Don McCall @ HP :-). */
1518 Globals.max_xmit = 0x4104;
1519 Globals.max_mux = 50; /* This is *needed* for profile support. */
1520 Globals.lpqcachetime = 30; /* changed to handle large print servers better -- jerry */
1521 Globals.bDisableSpoolss = False;
1522 Globals.iMaxSmbdProcesses = 0;/* no limit specified */
1523 Globals.pwordlevel = 0;
1524 Globals.unamelevel = 0;
1525 Globals.deadtime = 0;
1526 Globals.bLargeReadwrite = True;
1527 Globals.max_log_size = 5000;
1528 Globals.max_open_files = MAX_OPEN_FILES;
1529 Globals.open_files_db_hash_size = SMB_OPEN_DATABASE_TDB_HASH_SIZE;
1530 Globals.maxprotocol = PROTOCOL_NT1;
1531 Globals.minprotocol = PROTOCOL_CORE;
1532 Globals.security = SEC_USER;
1533 Globals.paranoid_server_security = True;
1534 Globals.bEncryptPasswords = True;
1535 Globals.bUpdateEncrypt = False;
1536 Globals.clientSchannel = Auto;
1537 Globals.serverSchannel = Auto;
1538 Globals.bReadRaw = True;
1539 Globals.bWriteRaw = True;
1540 Globals.bNullPasswords = False;
1541 Globals.bObeyPamRestrictions = False;
1543 Globals.bSyslogOnly = False;
1544 Globals.bTimestampLogs = True;
1545 string_set(&Globals.szLogLevel, "0");
1546 Globals.bDebugPrefixTimestamp = False;
1547 Globals.bDebugHiresTimestamp = False;
1548 Globals.bDebugPid = False;
1549 Globals.bDebugUid = False;
1550 Globals.bEnableCoreFiles = True;
1551 Globals.max_ttl = 60 * 60 * 24 * 3; /* 3 days default. */
1552 Globals.max_wins_ttl = 60 * 60 * 24 * 6; /* 6 days default. */
1553 Globals.min_wins_ttl = 60 * 60 * 6; /* 6 hours default. */
1554 Globals.machine_password_timeout = 60 * 60 * 24 * 7; /* 7 days default. */
1555 Globals.lm_announce = 2; /* = Auto: send only if LM clients found */
1556 Globals.lm_interval = 60;
1557 Globals.announce_as = ANNOUNCE_AS_NT_SERVER;
1558 #if (defined(HAVE_NETGROUP) && defined(WITH_AUTOMOUNT))
1559 Globals.bNISHomeMap = False;
1560 #ifdef WITH_NISPLUS_HOME
1561 string_set(&Globals.szNISHomeMapName, "auto_home.org_dir");
1563 string_set(&Globals.szNISHomeMapName, "auto.home");
1566 Globals.bTimeServer = False;
1567 Globals.bBindInterfacesOnly = False;
1568 Globals.bUnixPasswdSync = False;
1569 Globals.bPamPasswordChange = False;
1570 Globals.bPasswdChatDebug = False;
1571 Globals.iPasswdChatTimeout = 2; /* 2 second default. */
1572 Globals.bNTPipeSupport = True; /* Do NT pipes by default. */
1573 Globals.bNTStatusSupport = True; /* Use NT status by default. */
1574 Globals.bStatCache = True; /* use stat cache by default */
1575 Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
1576 Globals.restrict_anonymous = 0;
1577 Globals.bClientLanManAuth = True; /* Do use the LanMan hash if it is available */
1578 Globals.bClientPlaintextAuth = True; /* Do use a plaintext password if is requested by the server */
1579 Globals.bLanmanAuth = True; /* Do use the LanMan hash if it is available */
1580 Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is available (otherwise NTLMv2) */
1581 Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
1582 /* Note, that we will use NTLM2 session security (which is different), if it is available */
1584 Globals.map_to_guest = 0; /* By Default, "Never" */
1585 Globals.oplock_break_wait_time = 0; /* By Default, 0 msecs. */
1586 Globals.enhanced_browsing = True;
1587 Globals.iLockSpinTime = WINDOWS_MINIMUM_LOCK_TIMEOUT_MS; /* msec. */
1588 #ifdef MMAP_BLACKLIST
1589 Globals.bUseMmap = False;
1591 Globals.bUseMmap = True;
1593 Globals.bUnixExtensions = True;
1594 Globals.bResetOnZeroVC = False;
1596 /* hostname lookups can be very expensive and are broken on
1597 a large number of sites (tridge) */
1598 Globals.bHostnameLookups = False;
1600 string_set(&Globals.szPassdbBackend, "smbpasswd");
1601 string_set(&Globals.szLdapSuffix, "");
1602 string_set(&Globals.szLdapMachineSuffix, "");
1603 string_set(&Globals.szLdapUserSuffix, "");
1604 string_set(&Globals.szLdapGroupSuffix, "");
1605 string_set(&Globals.szLdapIdmapSuffix, "");
1607 string_set(&Globals.szLdapAdminDn, "");
1608 Globals.ldap_ssl = LDAP_SSL_ON;
1609 Globals.ldap_passwd_sync = LDAP_PASSWD_SYNC_OFF;
1610 Globals.ldap_delete_dn = False;
1611 Globals.ldap_replication_sleep = 1000; /* wait 1 sec for replication */
1612 Globals.ldap_timeout = LDAP_CONNECT_DEFAULT_TIMEOUT;
1613 Globals.ldap_page_size = LDAP_PAGE_SIZE;
1615 /* This is what we tell the afs client. in reality we set the token
1616 * to never expire, though, when this runs out the afs client will
1617 * forget the token. Set to 0 to get NEVERDATE.*/
1618 Globals.iAfsTokenLifetime = 604800;
1620 /* these parameters are set to defaults that are more appropriate
1621 for the increasing samba install base:
1623 as a member of the workgroup, that will possibly become a
1624 _local_ master browser (lm = True). this is opposed to a forced
1625 local master browser startup (pm = True).
1627 doesn't provide WINS server service by default (wsupp = False),
1628 and doesn't provide domain master browser services by default, either.
1632 Globals.bMsAddPrinterWizard = True;
1633 Globals.bPreferredMaster = Auto; /* depending on bDomainMaster */
1634 Globals.os_level = 20;
1635 Globals.bLocalMaster = True;
1636 Globals.bDomainMaster = Auto; /* depending on bDomainLogons */
1637 Globals.bDomainLogons = False;
1638 Globals.bBrowseList = True;
1639 Globals.bWINSsupport = False;
1640 Globals.bWINSproxy = False;
1642 Globals.bDNSproxy = True;
1644 /* this just means to use them if they exist */
1645 Globals.bKernelOplocks = True;
1647 Globals.bAllowTrustedDomains = True;
1649 string_set(&Globals.szTemplateShell, "/bin/false");
1650 string_set(&Globals.szTemplateHomedir, "/home/%D/%U");
1651 string_set(&Globals.szWinbindSeparator, "\\");
1653 string_set(&Globals.szCupsServer, "");
1654 string_set(&Globals.szIPrintServer, "");
1656 string_set(&Globals.ctdbdSocket, "");
1657 Globals.szClusterAddresses = NULL;
1658 Globals.clustering = False;
1660 Globals.winbind_cache_time = 300; /* 5 minutes */
1661 Globals.bWinbindEnumUsers = False;
1662 Globals.bWinbindEnumGroups = False;
1663 Globals.bWinbindUseDefaultDomain = False;
1664 Globals.bWinbindTrustedDomainsOnly = False;
1665 Globals.bWinbindNestedGroups = True;
1666 Globals.winbind_expand_groups = 1;
1667 Globals.szWinbindNssInfo = str_list_make("template", NULL);
1668 Globals.bWinbindRefreshTickets = False;
1669 Globals.bWinbindOfflineLogon = False;
1671 Globals.iIdmapCacheTime = 900; /* 15 minutes by default */
1672 Globals.iIdmapNegativeCacheTime = 120; /* 2 minutes by default */
1674 Globals.bPassdbExpandExplicit = False;
1676 Globals.name_cache_timeout = 660; /* In seconds */
1678 Globals.bUseSpnego = True;
1679 Globals.bClientUseSpnego = True;
1681 Globals.client_signing = Auto;
1682 Globals.server_signing = False;
1684 Globals.bDeferSharingViolations = True;
1685 string_set(&Globals.smb_ports, SMB_PORTS);
1687 Globals.bEnablePrivileges = True;
1688 Globals.bHostMSDfs = True;
1689 Globals.bASUSupport = False;
1691 /* User defined shares. */
1692 pstrcpy(s, dyn_LOCKDIR);
1693 pstrcat(s, "/usershares");
1694 string_set(&Globals.szUsersharePath, s);
1695 string_set(&Globals.szUsershareTemplateShare, "");
1696 Globals.iUsershareMaxShares = 0;
1697 /* By default disallow sharing of directories not owned by the sharer. */
1698 Globals.bUsershareOwnerOnly = True;
1699 /* By default disallow guest access to usershares. */
1700 Globals.bUsershareAllowGuests = False;
1702 Globals.iKeepalive = DEFAULT_KEEPALIVE;
1704 /* By default no shares out of the registry */
1705 Globals.bRegistryShares = False;
1708 /*******************************************************************
1709 Convenience routine to grab string parameters into temporary memory
1710 and run standard_sub_basic on them. The buffers can be written to by
1711 callers without affecting the source string.
1712 ********************************************************************/
1714 static char *lp_string(const char *s)
1718 /* The follow debug is useful for tracking down memory problems
1719 especially if you have an inner loop that is calling a lp_*()
1720 function that returns a string. Perhaps this debug should be
1721 present all the time? */
1724 DEBUG(10, ("lp_string(%s)\n", s));
1727 tmpstr = alloc_sub_basic(get_current_username(),
1728 current_user_info.domain, s);
1729 if (trim_char(tmpstr, '\"', '\"')) {
1730 if (strchr(tmpstr,'\"') != NULL) {
1732 tmpstr = alloc_sub_basic(get_current_username(),
1733 current_user_info.domain, s);
1736 ret = talloc_strdup(talloc_tos(), tmpstr);
1743 In this section all the functions that are used to access the
1744 parameters from the rest of the program are defined
1747 #define FN_GLOBAL_STRING(fn_name,ptr) \
1748 char *fn_name(void) {return(lp_string(*(char **)(ptr) ? *(char **)(ptr) : ""));}
1749 #define FN_GLOBAL_CONST_STRING(fn_name,ptr) \
1750 const char *fn_name(void) {return(*(const char **)(ptr) ? *(const char **)(ptr) : "");}
1751 #define FN_GLOBAL_LIST(fn_name,ptr) \
1752 const char **fn_name(void) {return(*(const char ***)(ptr));}
1753 #define FN_GLOBAL_BOOL(fn_name,ptr) \
1754 BOOL fn_name(void) {return(*(BOOL *)(ptr));}
1755 #define FN_GLOBAL_CHAR(fn_name,ptr) \
1756 char fn_name(void) {return(*(char *)(ptr));}
1757 #define FN_GLOBAL_INTEGER(fn_name,ptr) \
1758 int fn_name(void) {return(*(int *)(ptr));}
1760 #define FN_LOCAL_STRING(fn_name,val) \
1761 char *fn_name(int i) {return(lp_string((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val));}
1762 #define FN_LOCAL_CONST_STRING(fn_name,val) \
1763 const char *fn_name(int i) {return (const char *)((LP_SNUM_OK(i) && ServicePtrs[(i)]->val) ? ServicePtrs[(i)]->val : sDefault.val);}
1764 #define FN_LOCAL_LIST(fn_name,val) \
1765 const char **fn_name(int i) {return(const char **)(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1766 #define FN_LOCAL_BOOL(fn_name,val) \
1767 BOOL fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1768 #define FN_LOCAL_INTEGER(fn_name,val) \
1769 int fn_name(int i) {return(LP_SNUM_OK(i)? ServicePtrs[(i)]->val : sDefault.val);}
1771 #define FN_LOCAL_PARM_BOOL(fn_name,val) \
1772 BOOL fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1773 #define FN_LOCAL_PARM_INTEGER(fn_name,val) \
1774 int fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1775 #define FN_LOCAL_PARM_STRING(fn_name,val) \
1776 char *fn_name(const struct share_params *p) {return(lp_string((LP_SNUM_OK(p->service) && ServicePtrs[(p->service)]->val) ? ServicePtrs[(p->service)]->val : sDefault.val));}
1777 #define FN_LOCAL_CHAR(fn_name,val) \
1778 char fn_name(const struct share_params *p) {return(LP_SNUM_OK(p->service)? ServicePtrs[(p->service)]->val : sDefault.val);}
1780 FN_GLOBAL_STRING(lp_smb_ports, &Globals.smb_ports)
1781 FN_GLOBAL_STRING(lp_dos_charset, &Globals.dos_charset)
1782 FN_GLOBAL_STRING(lp_unix_charset, &Globals.unix_charset)
1783 FN_GLOBAL_STRING(lp_display_charset, &Globals.display_charset)
1784 FN_GLOBAL_STRING(lp_logfile, &Globals.szLogFile)
1785 FN_GLOBAL_STRING(lp_configfile, &Globals.szConfigFile)
1786 FN_GLOBAL_STRING(lp_smb_passwd_file, &Globals.szSMBPasswdFile)
1787 FN_GLOBAL_STRING(lp_private_dir, &Globals.szPrivateDir)
1788 FN_GLOBAL_STRING(lp_serverstring, &Globals.szServerString)
1789 FN_GLOBAL_INTEGER(lp_printcap_cache_time, &Globals.PrintcapCacheTime)
1790 FN_GLOBAL_STRING(lp_addport_cmd, &Globals.szAddPortCommand)
1791 FN_GLOBAL_STRING(lp_enumports_cmd, &Globals.szEnumPortsCommand)
1792 FN_GLOBAL_STRING(lp_addprinter_cmd, &Globals.szAddPrinterCommand)
1793 FN_GLOBAL_STRING(lp_deleteprinter_cmd, &Globals.szDeletePrinterCommand)
1794 FN_GLOBAL_STRING(lp_os2_driver_map, &Globals.szOs2DriverMap)
1795 FN_GLOBAL_STRING(lp_lockdir, &Globals.szLockDir)
1796 FN_GLOBAL_STRING(lp_piddir, &Globals.szPidDir)
1797 FN_GLOBAL_STRING(lp_mangling_method, &Globals.szManglingMethod)
1798 FN_GLOBAL_INTEGER(lp_mangle_prefix, &Globals.mangle_prefix)
1799 FN_GLOBAL_STRING(lp_utmpdir, &Globals.szUtmpDir)
1800 FN_GLOBAL_STRING(lp_wtmpdir, &Globals.szWtmpDir)
1801 FN_GLOBAL_BOOL(lp_utmp, &Globals.bUtmp)
1802 FN_GLOBAL_STRING(lp_rootdir, &Globals.szRootdir)
1803 FN_GLOBAL_STRING(lp_defaultservice, &Globals.szDefaultService)
1804 FN_GLOBAL_STRING(lp_msg_command, &Globals.szMsgCommand)
1805 FN_GLOBAL_STRING(lp_get_quota_command, &Globals.szGetQuota)
1806 FN_GLOBAL_STRING(lp_set_quota_command, &Globals.szSetQuota)
1807 FN_GLOBAL_STRING(lp_auto_services, &Globals.szAutoServices)
1808 FN_GLOBAL_STRING(lp_passwd_program, &Globals.szPasswdProgram)
1809 FN_GLOBAL_STRING(lp_passwd_chat, &Globals.szPasswdChat)
1810 FN_GLOBAL_STRING(lp_passwordserver, &Globals.szPasswordServer)
1811 FN_GLOBAL_STRING(lp_name_resolve_order, &Globals.szNameResolveOrder)
1812 FN_GLOBAL_STRING(lp_realm, &Globals.szRealm)
1813 FN_GLOBAL_CONST_STRING(lp_afs_username_map, &Globals.szAfsUsernameMap)
1814 FN_GLOBAL_INTEGER(lp_afs_token_lifetime, &Globals.iAfsTokenLifetime)
1815 FN_GLOBAL_STRING(lp_log_nt_token_command, &Globals.szLogNtTokenCommand)
1816 FN_GLOBAL_STRING(lp_username_map, &Globals.szUsernameMap)
1817 FN_GLOBAL_CONST_STRING(lp_logon_script, &Globals.szLogonScript)
1818 FN_GLOBAL_CONST_STRING(lp_logon_path, &Globals.szLogonPath)
1819 FN_GLOBAL_CONST_STRING(lp_logon_drive, &Globals.szLogonDrive)
1820 FN_GLOBAL_CONST_STRING(lp_logon_home, &Globals.szLogonHome)
1821 FN_GLOBAL_STRING(lp_remote_announce, &Globals.szRemoteAnnounce)
1822 FN_GLOBAL_STRING(lp_remote_browse_sync, &Globals.szRemoteBrowseSync)
1823 FN_GLOBAL_LIST(lp_wins_server_list, &Globals.szWINSservers)
1824 FN_GLOBAL_LIST(lp_interfaces, &Globals.szInterfaces)
1825 FN_GLOBAL_STRING(lp_socket_address, &Globals.szSocketAddress)
1826 FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
1827 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
1828 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
1829 /* FN_GLOBAL_STRING(lp_passdb_backend, &Globals.szPassdbBackend)
1830 * lp_passdb_backend() should be replace by the this macro again after
1833 const char *lp_passdb_backend(void)
1835 char *delim, *quote;
1837 delim = strchr( Globals.szPassdbBackend, ' ');
1838 /* no space at all */
1839 if (delim == NULL) {
1843 quote = strchr(Globals.szPassdbBackend, '"');
1844 /* no quote char or non in the first part */
1845 if (quote == NULL || quote > delim) {
1850 quote = strchr(quote+1, '"');
1851 if (quote == NULL) {
1852 DEBUG(0, ("WARNING: Your 'passdb backend' configuration is invalid due to a missing second \" char.\n"));
1854 } else if (*(quote+1) == '\0') {
1855 /* space, fitting quote char, and one backend only */
1858 /* terminate string after the fitting quote char */
1863 DEBUG(0, ("WARNING: Your 'passdb backend' configuration includes multiple backends. This\n"
1864 "is deprecated since Samba 3.0.23. Please check WHATSNEW.txt or the section 'Passdb\n"
1865 "Changes' from the ChangeNotes as part of the Samba HOWTO collection. Only the first\n"
1866 "backend (%s) is used. The rest is ignored.\n", Globals.szPassdbBackend));
1869 return Globals.szPassdbBackend;
1871 FN_GLOBAL_LIST(lp_preload_modules, &Globals.szPreloadModules)
1872 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
1873 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
1874 FN_GLOBAL_STRING(lp_renameuser_script, &Globals.szRenameUserScript)
1875 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
1877 FN_GLOBAL_CONST_STRING(lp_guestaccount, &Globals.szGuestaccount)
1878 FN_GLOBAL_STRING(lp_addgroup_script, &Globals.szAddGroupScript)
1879 FN_GLOBAL_STRING(lp_delgroup_script, &Globals.szDelGroupScript)
1880 FN_GLOBAL_STRING(lp_addusertogroup_script, &Globals.szAddUserToGroupScript)
1881 FN_GLOBAL_STRING(lp_deluserfromgroup_script, &Globals.szDelUserFromGroupScript)
1882 FN_GLOBAL_STRING(lp_setprimarygroup_script, &Globals.szSetPrimaryGroupScript)
1884 FN_GLOBAL_STRING(lp_addmachine_script, &Globals.szAddMachineScript)
1886 FN_GLOBAL_STRING(lp_shutdown_script, &Globals.szShutdownScript)
1887 FN_GLOBAL_STRING(lp_abort_shutdown_script, &Globals.szAbortShutdownScript)
1888 FN_GLOBAL_STRING(lp_username_map_script, &Globals.szUsernameMapScript)
1890 FN_GLOBAL_STRING(lp_check_password_script, &Globals.szCheckPasswordScript)
1892 FN_GLOBAL_STRING(lp_wins_hook, &Globals.szWINSHook)
1893 FN_GLOBAL_CONST_STRING(lp_template_homedir, &Globals.szTemplateHomedir)
1894 FN_GLOBAL_CONST_STRING(lp_template_shell, &Globals.szTemplateShell)
1895 FN_GLOBAL_CONST_STRING(lp_winbind_separator, &Globals.szWinbindSeparator)
1896 FN_GLOBAL_INTEGER(lp_acl_compatibility, &Globals.iAclCompat)
1897 FN_GLOBAL_BOOL(lp_winbind_enum_users, &Globals.bWinbindEnumUsers)
1898 FN_GLOBAL_BOOL(lp_winbind_enum_groups, &Globals.bWinbindEnumGroups)
1899 FN_GLOBAL_BOOL(lp_winbind_use_default_domain, &Globals.bWinbindUseDefaultDomain)
1900 FN_GLOBAL_BOOL(lp_winbind_trusted_domains_only, &Globals.bWinbindTrustedDomainsOnly)
1901 FN_GLOBAL_BOOL(lp_winbind_nested_groups, &Globals.bWinbindNestedGroups)
1902 FN_GLOBAL_INTEGER(lp_winbind_expand_groups, &Globals.winbind_expand_groups)
1903 FN_GLOBAL_BOOL(lp_winbind_refresh_tickets, &Globals.bWinbindRefreshTickets)
1904 FN_GLOBAL_BOOL(lp_winbind_offline_logon, &Globals.bWinbindOfflineLogon)
1905 FN_GLOBAL_BOOL(lp_winbind_normalize_names, &Globals.bWinbindNormalizeNames)
1906 FN_GLOBAL_BOOL(lp_winbind_rpc_only, &Globals.bWinbindRpcOnly)
1908 FN_GLOBAL_LIST(lp_idmap_domains, &Globals.szIdmapDomains)
1909 FN_GLOBAL_LIST(lp_idmap_backend, &Globals.szIdmapBackend) /* deprecated */
1910 FN_GLOBAL_STRING(lp_idmap_alloc_backend, &Globals.szIdmapAllocBackend)
1911 FN_GLOBAL_INTEGER(lp_idmap_cache_time, &Globals.iIdmapCacheTime)
1912 FN_GLOBAL_INTEGER(lp_idmap_negative_cache_time, &Globals.iIdmapNegativeCacheTime)
1913 FN_GLOBAL_INTEGER(lp_keepalive, &Globals.iKeepalive)
1914 FN_GLOBAL_BOOL(lp_passdb_expand_explicit, &Globals.bPassdbExpandExplicit)
1916 FN_GLOBAL_STRING(lp_ldap_suffix, &Globals.szLdapSuffix)
1917 FN_GLOBAL_STRING(lp_ldap_admin_dn, &Globals.szLdapAdminDn)
1918 FN_GLOBAL_INTEGER(lp_ldap_ssl, &Globals.ldap_ssl)
1919 FN_GLOBAL_INTEGER(lp_ldap_passwd_sync, &Globals.ldap_passwd_sync)
1920 FN_GLOBAL_BOOL(lp_ldap_delete_dn, &Globals.ldap_delete_dn)
1921 FN_GLOBAL_INTEGER(lp_ldap_replication_sleep, &Globals.ldap_replication_sleep)
1922 FN_GLOBAL_INTEGER(lp_ldap_timeout, &Globals.ldap_timeout)
1923 FN_GLOBAL_INTEGER(lp_ldap_page_size, &Globals.ldap_page_size)
1924 FN_GLOBAL_STRING(lp_add_share_cmd, &Globals.szAddShareCommand)
1925 FN_GLOBAL_STRING(lp_change_share_cmd, &Globals.szChangeShareCommand)
1926 FN_GLOBAL_STRING(lp_delete_share_cmd, &Globals.szDeleteShareCommand)
1927 FN_GLOBAL_STRING(lp_usershare_path, &Globals.szUsersharePath)
1928 FN_GLOBAL_LIST(lp_usershare_prefix_allow_list, &Globals.szUsersharePrefixAllowList)
1929 FN_GLOBAL_LIST(lp_usershare_prefix_deny_list, &Globals.szUsersharePrefixDenyList)
1931 FN_GLOBAL_LIST(lp_eventlog_list, &Globals.szEventLogs)
1933 FN_GLOBAL_BOOL(lp_registry_shares, &Globals.bRegistryShares)
1934 FN_GLOBAL_BOOL(lp_usershare_allow_guests, &Globals.bUsershareAllowGuests)
1935 FN_GLOBAL_BOOL(lp_usershare_owner_only, &Globals.bUsershareOwnerOnly)
1936 FN_GLOBAL_BOOL(lp_disable_netbios, &Globals.bDisableNetbios)
1937 FN_GLOBAL_BOOL(lp_reset_on_zero_vc, &Globals.bResetOnZeroVC)
1938 FN_GLOBAL_BOOL(lp_ms_add_printer_wizard, &Globals.bMsAddPrinterWizard)
1939 FN_GLOBAL_BOOL(lp_dns_proxy, &Globals.bDNSproxy)
1940 FN_GLOBAL_BOOL(lp_wins_support, &Globals.bWINSsupport)
1941 FN_GLOBAL_BOOL(lp_we_are_a_wins_server, &Globals.bWINSsupport)
1942 FN_GLOBAL_BOOL(lp_wins_proxy, &Globals.bWINSproxy)
1943 FN_GLOBAL_BOOL(lp_local_master, &Globals.bLocalMaster)
1944 FN_GLOBAL_BOOL(lp_domain_logons, &Globals.bDomainLogons)
1945 FN_GLOBAL_BOOL(lp_load_printers, &Globals.bLoadPrinters)
1946 FN_GLOBAL_BOOL(lp_readraw, &Globals.bReadRaw)
1947 FN_GLOBAL_BOOL(lp_large_readwrite, &Globals.bLargeReadwrite)
1948 FN_GLOBAL_BOOL(lp_writeraw, &Globals.bWriteRaw)
1949 FN_GLOBAL_BOOL(lp_null_passwords, &Globals.bNullPasswords)
1950 FN_GLOBAL_BOOL(lp_obey_pam_restrictions, &Globals.bObeyPamRestrictions)
1951 FN_GLOBAL_BOOL(lp_encrypted_passwords, &Globals.bEncryptPasswords)
1952 FN_GLOBAL_BOOL(lp_update_encrypted, &Globals.bUpdateEncrypt)
1953 FN_GLOBAL_INTEGER(lp_client_schannel, &Globals.clientSchannel)
1954 FN_GLOBAL_INTEGER(lp_server_schannel, &Globals.serverSchannel)
1955 FN_GLOBAL_BOOL(lp_syslog_only, &Globals.bSyslogOnly)
1956 FN_GLOBAL_BOOL(lp_timestamp_logs, &Globals.bTimestampLogs)
1957 FN_GLOBAL_BOOL(lp_debug_prefix_timestamp, &Globals.bDebugPrefixTimestamp)
1958 FN_GLOBAL_BOOL(lp_debug_hires_timestamp, &Globals.bDebugHiresTimestamp)
1959 FN_GLOBAL_BOOL(lp_debug_pid, &Globals.bDebugPid)
1960 FN_GLOBAL_BOOL(lp_debug_uid, &Globals.bDebugUid)
1961 FN_GLOBAL_BOOL(lp_enable_core_files, &Globals.bEnableCoreFiles)
1962 FN_GLOBAL_BOOL(lp_browse_list, &Globals.bBrowseList)
1963 FN_GLOBAL_BOOL(lp_nis_home_map, &Globals.bNISHomeMap)
1964 static FN_GLOBAL_BOOL(lp_time_server, &Globals.bTimeServer)
1965 FN_GLOBAL_BOOL(lp_bind_interfaces_only, &Globals.bBindInterfacesOnly)
1966 FN_GLOBAL_BOOL(lp_pam_password_change, &Globals.bPamPasswordChange)
1967 FN_GLOBAL_BOOL(lp_unix_password_sync, &Globals.bUnixPasswdSync)
1968 FN_GLOBAL_BOOL(lp_passwd_chat_debug, &Globals.bPasswdChatDebug)
1969 FN_GLOBAL_INTEGER(lp_passwd_chat_timeout, &Globals.iPasswdChatTimeout)
1970 FN_GLOBAL_BOOL(lp_nt_pipe_support, &Globals.bNTPipeSupport)
1971 FN_GLOBAL_BOOL(lp_nt_status_support, &Globals.bNTStatusSupport)
1972 FN_GLOBAL_BOOL(lp_stat_cache, &Globals.bStatCache)
1973 FN_GLOBAL_INTEGER(lp_max_stat_cache_size, &Globals.iMaxStatCacheSize)
1974 FN_GLOBAL_BOOL(lp_allow_trusted_domains, &Globals.bAllowTrustedDomains)
1975 FN_GLOBAL_INTEGER(lp_restrict_anonymous, &Globals.restrict_anonymous)
1976 FN_GLOBAL_BOOL(lp_lanman_auth, &Globals.bLanmanAuth)
1977 FN_GLOBAL_BOOL(lp_ntlm_auth, &Globals.bNTLMAuth)
1978 FN_GLOBAL_BOOL(lp_client_plaintext_auth, &Globals.bClientPlaintextAuth)
1979 FN_GLOBAL_BOOL(lp_client_lanman_auth, &Globals.bClientLanManAuth)
1980 FN_GLOBAL_BOOL(lp_client_ntlmv2_auth, &Globals.bClientNTLMv2Auth)
1981 FN_GLOBAL_BOOL(lp_host_msdfs, &Globals.bHostMSDfs)
1982 FN_GLOBAL_BOOL(lp_kernel_oplocks, &Globals.bKernelOplocks)
1983 FN_GLOBAL_BOOL(lp_enhanced_browsing, &Globals.enhanced_browsing)
1984 FN_GLOBAL_BOOL(lp_use_mmap, &Globals.bUseMmap)
1985 FN_GLOBAL_BOOL(lp_unix_extensions, &Globals.bUnixExtensions)
1986 FN_GLOBAL_BOOL(lp_use_spnego, &Globals.bUseSpnego)
1987 FN_GLOBAL_BOOL(lp_client_use_spnego, &Globals.bClientUseSpnego)
1988 FN_GLOBAL_BOOL(lp_hostname_lookups, &Globals.bHostnameLookups)
1989 FN_LOCAL_PARM_BOOL(lp_change_notify, bChangeNotify)
1990 FN_LOCAL_PARM_BOOL(lp_kernel_change_notify, bKernelChangeNotify)
1991 FN_GLOBAL_BOOL(lp_use_kerberos_keytab, &Globals.bUseKerberosKeytab)
1992 FN_GLOBAL_BOOL(lp_defer_sharing_violations, &Globals.bDeferSharingViolations)
1993 FN_GLOBAL_BOOL(lp_enable_privileges, &Globals.bEnablePrivileges)
1994 FN_GLOBAL_BOOL(lp_enable_asu_support, &Globals.bASUSupport)
1995 FN_GLOBAL_INTEGER(lp_os_level, &Globals.os_level)
1996 FN_GLOBAL_INTEGER(lp_max_ttl, &Globals.max_ttl)
1997 FN_GLOBAL_INTEGER(lp_max_wins_ttl, &Globals.max_wins_ttl)
1998 FN_GLOBAL_INTEGER(lp_min_wins_ttl, &Globals.min_wins_ttl)
1999 FN_GLOBAL_INTEGER(lp_max_log_size, &Globals.max_log_size)
2000 FN_GLOBAL_INTEGER(lp_max_open_files, &Globals.max_open_files)
2001 FN_GLOBAL_INTEGER(lp_open_files_db_hash_size, &Globals.open_files_db_hash_size)
2002 FN_GLOBAL_INTEGER(lp_maxxmit, &Globals.max_xmit)
2003 FN_GLOBAL_INTEGER(lp_maxmux, &Globals.max_mux)
2004 FN_GLOBAL_INTEGER(lp_passwordlevel, &Globals.pwordlevel)
2005 FN_GLOBAL_INTEGER(lp_usernamelevel, &Globals.unamelevel)
2006 FN_GLOBAL_INTEGER(lp_deadtime, &Globals.deadtime)
2007 FN_GLOBAL_INTEGER(lp_maxprotocol, &Globals.maxprotocol)
2008 FN_GLOBAL_INTEGER(lp_minprotocol, &Globals.minprotocol)
2009 FN_GLOBAL_INTEGER(lp_security, &Globals.security)
2010 FN_GLOBAL_LIST(lp_auth_methods, &Globals.AuthMethods)
2011 FN_GLOBAL_BOOL(lp_paranoid_server_security, &Globals.paranoid_server_security)
2012 FN_GLOBAL_INTEGER(lp_maxdisksize, &Globals.maxdisksize)
2013 FN_GLOBAL_INTEGER(lp_lpqcachetime, &Globals.lpqcachetime)
2014 FN_GLOBAL_INTEGER(lp_max_smbd_processes, &Globals.iMaxSmbdProcesses)
2015 FN_GLOBAL_INTEGER(_lp_disable_spoolss, &Globals.bDisableSpoolss)
2016 FN_GLOBAL_INTEGER(lp_syslog, &Globals.syslog)
2017 static FN_GLOBAL_INTEGER(lp_announce_as, &Globals.announce_as)
2018 FN_GLOBAL_INTEGER(lp_lm_announce, &Globals.lm_announce)
2019 FN_GLOBAL_INTEGER(lp_lm_interval, &Globals.lm_interval)
2020 FN_GLOBAL_INTEGER(lp_machine_password_timeout, &Globals.machine_password_timeout)
2021 FN_GLOBAL_INTEGER(lp_map_to_guest, &Globals.map_to_guest)
2022 FN_GLOBAL_INTEGER(lp_oplock_break_wait_time, &Globals.oplock_break_wait_time)
2023 FN_GLOBAL_INTEGER(lp_lock_spin_time, &Globals.iLockSpinTime)
2024 FN_GLOBAL_INTEGER(lp_usershare_max_shares, &Globals.iUsershareMaxShares)
2026 FN_LOCAL_STRING(lp_preexec, szPreExec)
2027 FN_LOCAL_STRING(lp_postexec, szPostExec)
2028 FN_LOCAL_STRING(lp_rootpreexec, szRootPreExec)
2029 FN_LOCAL_STRING(lp_rootpostexec, szRootPostExec)
2030 FN_LOCAL_STRING(lp_servicename, szService)
2031 FN_LOCAL_CONST_STRING(lp_const_servicename, szService)
2032 FN_LOCAL_STRING(lp_pathname, szPath)
2033 FN_LOCAL_STRING(lp_dontdescend, szDontdescend)
2034 FN_LOCAL_STRING(lp_username, szUsername)
2035 FN_LOCAL_LIST(lp_invalid_users, szInvalidUsers)
2036 FN_LOCAL_LIST(lp_valid_users, szValidUsers)
2037 FN_LOCAL_LIST(lp_admin_users, szAdminUsers)
2038 FN_GLOBAL_LIST(lp_svcctl_list, &Globals.szServicesList)
2039 FN_LOCAL_STRING(lp_cups_options, szCupsOptions)
2040 FN_GLOBAL_STRING(lp_cups_server, &Globals.szCupsServer)
2041 FN_GLOBAL_STRING(lp_iprint_server, &Globals.szIPrintServer)
2042 FN_GLOBAL_CONST_STRING(lp_ctdbd_socket, &Globals.ctdbdSocket)
2043 FN_GLOBAL_LIST(lp_cluster_addresses, &Globals.szClusterAddresses)
2044 FN_GLOBAL_BOOL(lp_clustering, &Globals.clustering);
2045 FN_LOCAL_STRING(lp_printcommand, szPrintcommand)
2046 FN_LOCAL_STRING(lp_lpqcommand, szLpqcommand)
2047 FN_LOCAL_STRING(lp_lprmcommand, szLprmcommand)
2048 FN_LOCAL_STRING(lp_lppausecommand, szLppausecommand)
2049 FN_LOCAL_STRING(lp_lpresumecommand, szLpresumecommand)
2050 FN_LOCAL_STRING(lp_queuepausecommand, szQueuepausecommand)
2051 FN_LOCAL_STRING(lp_queueresumecommand, szQueueresumecommand)
2052 static FN_LOCAL_STRING(_lp_printername, szPrintername)
2053 FN_LOCAL_CONST_STRING(lp_printjob_username, szPrintjobUsername)
2054 FN_LOCAL_LIST(lp_hostsallow, szHostsallow)
2055 FN_LOCAL_LIST(lp_hostsdeny, szHostsdeny)
2056 FN_LOCAL_STRING(lp_magicscript, szMagicScript)
2057 FN_LOCAL_STRING(lp_magicoutput, szMagicOutput)
2058 FN_LOCAL_STRING(lp_comment, comment)
2059 FN_LOCAL_STRING(lp_force_user, force_user)
2060 FN_LOCAL_STRING(lp_force_group, force_group)
2061 FN_LOCAL_LIST(lp_readlist, readlist)
2062 FN_LOCAL_LIST(lp_writelist, writelist)
2063 FN_LOCAL_LIST(lp_printer_admin, printer_admin)
2064 FN_LOCAL_STRING(lp_fstype, fstype)
2065 FN_LOCAL_LIST(lp_vfs_objects, szVfsObjects)
2066 FN_LOCAL_STRING(lp_msdfs_proxy, szMSDfsProxy)
2067 static FN_LOCAL_STRING(lp_volume, volume)
2068 FN_LOCAL_STRING(lp_veto_files, szVetoFiles)
2069 FN_LOCAL_STRING(lp_hide_files, szHideFiles)
2070 FN_LOCAL_STRING(lp_veto_oplocks, szVetoOplockFiles)
2071 FN_LOCAL_BOOL(lp_msdfs_root, bMSDfsRoot)
2072 FN_LOCAL_STRING(lp_dfree_command, szDfree)
2073 FN_LOCAL_BOOL(lp_autoloaded, autoloaded)
2074 FN_LOCAL_BOOL(lp_preexec_close, bPreexecClose)
2075 FN_LOCAL_BOOL(lp_rootpreexec_close, bRootpreexecClose)
2076 FN_LOCAL_INTEGER(lp_casesensitive, iCaseSensitive)
2077 FN_LOCAL_BOOL(lp_preservecase, bCasePreserve)
2078 FN_LOCAL_BOOL(lp_shortpreservecase, bShortCasePreserve)
2079 FN_LOCAL_BOOL(lp_hide_dot_files, bHideDotFiles)
2080 FN_LOCAL_BOOL(lp_hide_special_files, bHideSpecialFiles)
2081 FN_LOCAL_BOOL(lp_hideunreadable, bHideUnReadable)
2082 FN_LOCAL_BOOL(lp_hideunwriteable_files, bHideUnWriteableFiles)
2083 FN_LOCAL_BOOL(lp_browseable, bBrowseable)
2084 FN_LOCAL_BOOL(lp_readonly, bRead_only)
2085 FN_LOCAL_BOOL(lp_no_set_dir, bNo_set_dir)
2086 FN_LOCAL_BOOL(lp_guest_ok, bGuest_ok)
2087 FN_LOCAL_BOOL(lp_guest_only, bGuest_only)
2088 FN_LOCAL_BOOL(lp_print_ok, bPrint_ok)
2089 FN_LOCAL_BOOL(lp_map_hidden, bMap_hidden)
2090 FN_LOCAL_BOOL(lp_map_archive, bMap_archive)
2091 FN_LOCAL_BOOL(lp_store_dos_attributes, bStoreDosAttributes)
2092 FN_LOCAL_BOOL(lp_dmapi_support, bDmapiSupport)
2093 FN_LOCAL_PARM_BOOL(lp_locking, bLocking)
2094 FN_LOCAL_PARM_INTEGER(lp_strict_locking, iStrictLocking)
2095 FN_LOCAL_PARM_BOOL(lp_posix_locking, bPosixLocking)
2096 FN_LOCAL_BOOL(lp_share_modes, bShareModes)
2097 FN_LOCAL_BOOL(lp_oplocks, bOpLocks)
2098 FN_LOCAL_BOOL(lp_level2_oplocks, bLevel2OpLocks)
2099 FN_LOCAL_BOOL(lp_onlyuser, bOnlyUser)
2100 FN_LOCAL_PARM_BOOL(lp_manglednames, bMangledNames)
2101 FN_LOCAL_BOOL(lp_widelinks, bWidelinks)
2102 FN_LOCAL_BOOL(lp_symlinks, bSymlinks)
2103 FN_LOCAL_BOOL(lp_syncalways, bSyncAlways)
2104 FN_LOCAL_BOOL(lp_strict_allocate, bStrictAllocate)
2105 FN_LOCAL_BOOL(lp_strict_sync, bStrictSync)
2106 FN_LOCAL_BOOL(lp_map_system, bMap_system)
2107 FN_LOCAL_BOOL(lp_delete_readonly, bDeleteReadonly)
2108 FN_LOCAL_BOOL(lp_fake_oplocks, bFakeOplocks)
2109 FN_LOCAL_BOOL(lp_recursive_veto_delete, bDeleteVetoFiles)
2110 FN_LOCAL_BOOL(lp_dos_filemode, bDosFilemode)
2111 FN_LOCAL_BOOL(lp_dos_filetimes, bDosFiletimes)
2112 FN_LOCAL_BOOL(lp_dos_filetime_resolution, bDosFiletimeResolution)
2113 FN_LOCAL_BOOL(lp_fake_dir_create_times, bFakeDirCreateTimes)
2114 FN_LOCAL_BOOL(lp_blocking_locks, bBlockingLocks)
2115 FN_LOCAL_BOOL(lp_inherit_perms, bInheritPerms)
2116 FN_LOCAL_BOOL(lp_inherit_acls, bInheritACLS)
2117 FN_LOCAL_BOOL(lp_inherit_owner, bInheritOwner)
2118 FN_LOCAL_BOOL(lp_use_client_driver, bUseClientDriver)
2119 FN_LOCAL_BOOL(lp_default_devmode, bDefaultDevmode)
2120 FN_LOCAL_BOOL(lp_force_printername, bForcePrintername)
2121 FN_LOCAL_BOOL(lp_nt_acl_support, bNTAclSupport)
2122 FN_LOCAL_BOOL(lp_force_unknown_acl_user, bForceUnknownAclUser)
2123 FN_LOCAL_BOOL(lp_ea_support, bEASupport)
2124 FN_LOCAL_BOOL(_lp_use_sendfile, bUseSendfile)
2125 FN_LOCAL_BOOL(lp_profile_acls, bProfileAcls)
2126 FN_LOCAL_BOOL(lp_map_acl_inherit, bMap_acl_inherit)
2127 FN_LOCAL_BOOL(lp_afs_share, bAfs_Share)
2128 FN_LOCAL_BOOL(lp_acl_check_permissions, bAclCheckPermissions)
2129 FN_LOCAL_BOOL(lp_acl_group_control, bAclGroupControl)
2130 FN_LOCAL_BOOL(lp_acl_map_full_control, bAclMapFullControl)
2131 FN_LOCAL_INTEGER(lp_create_mask, iCreate_mask)
2132 FN_LOCAL_INTEGER(lp_force_create_mode, iCreate_force_mode)
2133 FN_LOCAL_INTEGER(lp_security_mask, iSecurity_mask)
2134 FN_LOCAL_INTEGER(lp_force_security_mode, iSecurity_force_mode)
2135 FN_LOCAL_INTEGER(lp_dir_mask, iDir_mask)
2136 FN_LOCAL_INTEGER(lp_force_dir_mode, iDir_force_mode)
2137 FN_LOCAL_INTEGER(lp_dir_security_mask, iDir_Security_mask)
2138 FN_LOCAL_INTEGER(lp_force_dir_security_mode, iDir_Security_force_mode)
2139 FN_LOCAL_INTEGER(lp_max_connections, iMaxConnections)
2140 FN_LOCAL_INTEGER(lp_defaultcase, iDefaultCase)
2141 FN_LOCAL_INTEGER(lp_minprintspace, iMinPrintSpace)
2142 FN_LOCAL_INTEGER(lp_printing, iPrinting)
2143 FN_LOCAL_INTEGER(lp_max_reported_jobs, iMaxReportedPrintJobs)
2144 FN_LOCAL_INTEGER(lp_oplock_contention_limit, iOplockContentionLimit)
2145 FN_LOCAL_INTEGER(lp_csc_policy, iCSCPolicy)
2146 FN_LOCAL_INTEGER(lp_write_cache_size, iWriteCacheSize)
2147 FN_LOCAL_INTEGER(lp_block_size, iBlock_size)
2148 FN_LOCAL_INTEGER(lp_dfree_cache_time, iDfreeCacheTime)
2149 FN_LOCAL_INTEGER(lp_allocation_roundup_size, iallocation_roundup_size)
2150 FN_LOCAL_INTEGER(lp_aio_read_size, iAioReadSize)
2151 FN_LOCAL_INTEGER(lp_aio_write_size, iAioWriteSize)
2152 FN_LOCAL_INTEGER(lp_map_readonly, iMap_readonly)
2153 FN_LOCAL_INTEGER(lp_directory_name_cache_size, iDirectoryNameCacheSize)
2154 FN_LOCAL_CHAR(lp_magicchar, magic_char)
2155 FN_GLOBAL_INTEGER(lp_winbind_cache_time, &Globals.winbind_cache_time)
2156 FN_GLOBAL_LIST(lp_winbind_nss_info, &Globals.szWinbindNssInfo)
2157 FN_GLOBAL_INTEGER(lp_algorithmic_rid_base, &Globals.AlgorithmicRidBase)
2158 FN_GLOBAL_INTEGER(lp_name_cache_timeout, &Globals.name_cache_timeout)
2159 FN_GLOBAL_INTEGER(lp_client_signing, &Globals.client_signing)
2160 FN_GLOBAL_INTEGER(lp_server_signing, &Globals.server_signing)
2161 FN_GLOBAL_INTEGER(lp_client_ldap_sasl_wrapping, &Globals.client_ldap_sasl_wrapping)
2163 /* local prototypes */
2165 static int map_parameter(const char *pszParmName);
2166 static int map_parameter_canonical(const char *pszParmName, BOOL *inverse);
2167 static BOOL set_boolean(BOOL *pb, const char *pszParmValue);
2168 static const char *get_boolean(BOOL bool_value);
2169 static int getservicebyname(const char *pszServiceName,
2170 service * pserviceDest);
2171 static void copy_service(service * pserviceDest,
2172 service * pserviceSource, BOOL *pcopymapDest);
2173 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue);
2174 static BOOL do_section(const char *pszSectionName);
2175 static void init_copymap(service * pservice);
2176 static BOOL hash_a_service(const char *name, int number);
2177 static void free_service_byindex(int iService);
2178 static char * canonicalize_servicename(const char *name);
2179 static void show_parameter(int parmIndex);
2180 static BOOL is_synonym_of(int parm1, int parm2, BOOL *inverse);
2182 /* This is a helper function for parametrical options support. */
2183 /* It returns a pointer to parametrical option value if it exists or NULL otherwise */
2184 /* Actual parametrical functions are quite simple */
2185 static param_opt_struct *get_parametrics(int snum, const char *type, const char *option)
2187 BOOL global_section = False;
2189 param_opt_struct *data;
2191 if (snum >= iNumServices) return NULL;
2194 data = Globals.param_opt;
2195 global_section = True;
2197 data = ServicePtrs[snum]->param_opt;
2200 asprintf(¶m_key, "%s:%s", type, option);
2202 DEBUG(0,("asprintf failed!\n"));
2207 if (strcmp(data->key, param_key) == 0) {
2208 string_free(¶m_key);
2214 if (!global_section) {
2215 /* Try to fetch the same option but from globals */
2216 /* but only if we are not already working with Globals */
2217 data = Globals.param_opt;
2219 if (strcmp(data->key, param_key) == 0) {
2220 string_free(¶m_key);
2227 string_free(¶m_key);
2233 #define MISSING_PARAMETER(name) \
2234 DEBUG(0, ("%s(): value is NULL or empty!\n", #name))
2236 /*******************************************************************
2237 convenience routine to return int parameters.
2238 ********************************************************************/
2239 static int lp_int(const char *s)
2243 MISSING_PARAMETER(lp_int);
2247 return (int)strtol(s, NULL, 0);
2250 /*******************************************************************
2251 convenience routine to return unsigned long parameters.
2252 ********************************************************************/
2253 static unsigned long lp_ulong(const char *s)
2257 MISSING_PARAMETER(lp_ulong);
2261 return strtoul(s, NULL, 0);
2264 /*******************************************************************
2265 convenience routine to return boolean parameters.
2266 ********************************************************************/
2267 static BOOL lp_bool(const char *s)
2272 MISSING_PARAMETER(lp_bool);
2276 if (!set_boolean(&ret,s)) {
2277 DEBUG(0,("lp_bool(%s): value is not boolean!\n",s));
2284 /*******************************************************************
2285 convenience routine to return enum parameters.
2286 ********************************************************************/
2287 static int lp_enum(const char *s,const struct enum_list *_enum)
2291 if (!s || !*s || !_enum) {
2292 MISSING_PARAMETER(lp_enum);
2296 for (i=0; _enum[i].name; i++) {
2297 if (strequal(_enum[i].name,s))
2298 return _enum[i].value;
2301 DEBUG(0,("lp_enum(%s,enum): value is not in enum_list!\n",s));
2305 #undef MISSING_PARAMETER
2307 /* DO NOT USE lp_parm_string ANYMORE!!!!
2308 * use lp_parm_const_string or lp_parm_talloc_string
2310 * lp_parm_string is only used to let old modules find this symbol
2312 #undef lp_parm_string
2313 char *lp_parm_string(const char *servicename, const char *type, const char *option);
2314 char *lp_parm_string(const char *servicename, const char *type, const char *option)
2316 return lp_parm_talloc_string(lp_servicenumber(servicename), type, option, NULL);
2319 /* Return parametric option from a given service. Type is a part of option before ':' */
2320 /* Parametric option has following syntax: 'Type: option = value' */
2321 /* the returned value is talloced on the talloc_tos() */
2322 char *lp_parm_talloc_string(int snum, const char *type, const char *option, const char *def)
2324 param_opt_struct *data = get_parametrics(snum, type, option);
2326 if (data == NULL||data->value==NULL) {
2328 return lp_string(def);
2334 return lp_string(data->value);
2337 /* Return parametric option from a given service. Type is a part of option before ':' */
2338 /* Parametric option has following syntax: 'Type: option = value' */
2339 const char *lp_parm_const_string(int snum, const char *type, const char *option, const char *def)
2341 param_opt_struct *data = get_parametrics(snum, type, option);
2343 if (data == NULL||data->value==NULL)
2349 /* Return parametric option from a given service. Type is a part of option before ':' */
2350 /* Parametric option has following syntax: 'Type: option = value' */
2352 const char **lp_parm_string_list(int snum, const char *type, const char *option, const char **def)
2354 param_opt_struct *data = get_parametrics(snum, type, option);
2356 if (data == NULL||data->value==NULL)
2357 return (const char **)def;
2359 if (data->list==NULL) {
2360 data->list = str_list_make(data->value, NULL);
2363 return (const char **)data->list;
2366 /* Return parametric option from a given service. Type is a part of option before ':' */
2367 /* Parametric option has following syntax: 'Type: option = value' */
2369 int lp_parm_int(int snum, const char *type, const char *option, int def)
2371 param_opt_struct *data = get_parametrics(snum, type, option);
2373 if (data && data->value && *data->value)
2374 return lp_int(data->value);
2379 /* Return parametric option from a given service. Type is a part of option before ':' */
2380 /* Parametric option has following syntax: 'Type: option = value' */
2382 unsigned long lp_parm_ulong(int snum, const char *type, const char *option, unsigned long def)
2384 param_opt_struct *data = get_parametrics(snum, type, option);
2386 if (data && data->value && *data->value)
2387 return lp_ulong(data->value);
2392 /* Return parametric option from a given service. Type is a part of option before ':' */
2393 /* Parametric option has following syntax: 'Type: option = value' */
2395 BOOL lp_parm_bool(int snum, const char *type, const char *option, BOOL def)
2397 param_opt_struct *data = get_parametrics(snum, type, option);
2399 if (data && data->value && *data->value)
2400 return lp_bool(data->value);
2405 /* Return parametric option from a given service. Type is a part of option before ':' */
2406 /* Parametric option has following syntax: 'Type: option = value' */
2408 int lp_parm_enum(int snum, const char *type, const char *option,
2409 const struct enum_list *_enum, int def)
2411 param_opt_struct *data = get_parametrics(snum, type, option);
2413 if (data && data->value && *data->value && _enum)
2414 return lp_enum(data->value, _enum);
2420 /***************************************************************************
2421 Initialise a service to the defaults.
2422 ***************************************************************************/
2424 static void init_service(service * pservice)
2426 memset((char *)pservice, '\0', sizeof(service));
2427 copy_service(pservice, &sDefault, NULL);
2430 /***************************************************************************
2431 Free the dynamically allocated parts of a service struct.
2432 ***************************************************************************/
2434 static void free_service(service *pservice)
2437 param_opt_struct *data, *pdata;
2441 if (pservice->szService)
2442 DEBUG(5, ("free_service: Freeing service %s\n",
2443 pservice->szService));
2445 string_free(&pservice->szService);
2446 SAFE_FREE(pservice->copymap);
2448 for (i = 0; parm_table[i].label; i++) {
2449 if ((parm_table[i].type == P_STRING ||
2450 parm_table[i].type == P_USTRING) &&
2451 parm_table[i].p_class == P_LOCAL)
2452 string_free((char **)
2453 (((char *)pservice) +
2454 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2455 else if (parm_table[i].type == P_LIST &&
2456 parm_table[i].p_class == P_LOCAL)
2457 str_list_free((char ***)
2458 (((char *)pservice) +
2459 PTR_DIFF(parm_table[i].ptr, &sDefault)));
2462 data = pservice->param_opt;
2464 DEBUG(5,("Freeing parametrics:\n"));
2466 DEBUG(5,("[%s = %s]\n", data->key, data->value));
2467 string_free(&data->key);
2468 string_free(&data->value);
2469 str_list_free(&data->list);
2475 ZERO_STRUCTP(pservice);
2479 /***************************************************************************
2480 remove a service indexed in the ServicePtrs array from the ServiceHash
2481 and free the dynamically allocated parts
2482 ***************************************************************************/
2484 static void free_service_byindex(int idx)
2486 if ( !LP_SNUM_OK(idx) )
2489 ServicePtrs[idx]->valid = False;
2490 invalid_services[num_invalid_services++] = idx;
2492 /* we have to cleanup the hash record */
2494 if (ServicePtrs[idx]->szService) {
2495 char *canon_name = canonicalize_servicename( ServicePtrs[idx]->szService );
2497 tdb_delete_bystring(ServiceHash, canon_name );
2500 free_service(ServicePtrs[idx]);
2503 /***************************************************************************
2504 Add a new service to the services array initialising it with the given
2506 ***************************************************************************/
2508 static int add_a_service(const service *pservice, const char *name)
2512 int num_to_alloc = iNumServices + 1;
2513 param_opt_struct *data, *pdata;
2515 tservice = *pservice;
2517 /* it might already exist */
2519 i = getservicebyname(name, NULL);
2521 /* Clean all parametric options for service */
2522 /* They will be added during parsing again */
2523 data = ServicePtrs[i]->param_opt;
2525 string_free(&data->key);
2526 string_free(&data->value);
2527 str_list_free(&data->list);
2532 ServicePtrs[i]->param_opt = NULL;
2537 /* find an invalid one */
2539 if (num_invalid_services > 0) {
2540 i = invalid_services[--num_invalid_services];
2543 /* if not, then create one */
2544 if (i == iNumServices) {
2548 tsp = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(ServicePtrs, service *, num_to_alloc);
2550 DEBUG(0,("add_a_service: failed to enlarge ServicePtrs!\n"));
2554 ServicePtrs[iNumServices] = SMB_MALLOC_P(service);
2555 if (!ServicePtrs[iNumServices]) {
2556 DEBUG(0,("add_a_service: out of memory!\n"));
2561 /* enlarge invalid_services here for now... */
2562 tinvalid = SMB_REALLOC_ARRAY_KEEP_OLD_ON_ERROR(invalid_services, int,
2564 if (tinvalid == NULL) {
2565 DEBUG(0,("add_a_service: failed to enlarge "
2566 "invalid_services!\n"));
2569 invalid_services = tinvalid;
2571 free_service_byindex(i);
2574 ServicePtrs[i]->valid = True;
2576 init_service(ServicePtrs[i]);
2577 copy_service(ServicePtrs[i], &tservice, NULL);
2579 string_set(&ServicePtrs[i]->szService, name);
2581 DEBUG(8,("add_a_service: Creating snum = %d for %s\n",
2582 i, ServicePtrs[i]->szService));
2584 if (!hash_a_service(ServicePtrs[i]->szService, i)) {
2591 /***************************************************************************
2592 Canonicalize by converting to lowercase.
2593 ***************************************************************************/
2595 static char *canonicalize_servicename(const char *src)
2597 static fstring canon; /* is fstring large enough? */
2600 DEBUG(0,("canonicalize_servicename: NULL source name!\n"));
2604 fstrcpy( canon, src );
2605 strlower_m( canon );
2610 /***************************************************************************
2611 Add a name/index pair for the services array to the hash table.
2612 ***************************************************************************/
2614 static BOOL hash_a_service(const char *name, int idx)
2618 if ( !ServiceHash ) {
2619 DEBUG(10,("hash_a_service: creating tdb servicehash\n"));
2620 ServiceHash = tdb_open("servicehash", 1031, TDB_INTERNAL,
2621 (O_RDWR|O_CREAT), 0600);
2622 if ( !ServiceHash ) {
2623 DEBUG(0,("hash_a_service: open tdb servicehash failed!\n"));
2628 DEBUG(10,("hash_a_service: hashing index %d for service name %s\n",
2631 if ( !(canon_name = canonicalize_servicename( name )) )
2634 tdb_store_int32(ServiceHash, canon_name, idx);
2639 /***************************************************************************
2640 Add a new home service, with the specified home directory, defaults coming
2642 ***************************************************************************/
2644 BOOL lp_add_home(const char *pszHomename, int iDefaultService,
2645 const char *user, const char *pszHomedir)
2650 i = add_a_service(ServicePtrs[iDefaultService], pszHomename);
2655 if (!(*(ServicePtrs[iDefaultService]->szPath))
2656 || strequal(ServicePtrs[iDefaultService]->szPath, lp_pathname(GLOBAL_SECTION_SNUM))) {
2657 pstrcpy(newHomedir, pszHomedir);
2658 string_set(&ServicePtrs[i]->szPath, newHomedir);
2661 if (!(*(ServicePtrs[i]->comment))) {
2663 slprintf(comment, sizeof(comment) - 1,
2664 "Home directory of %s", user);
2665 string_set(&ServicePtrs[i]->comment, comment);
2668 /* set the browseable flag from the global default */
2670 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2672 ServicePtrs[i]->autoloaded = True;
2674 DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename,
2675 user, ServicePtrs[i]->szPath ));
2680 /***************************************************************************
2681 Add a new service, based on an old one.
2682 ***************************************************************************/
2684 int lp_add_service(const char *pszService, int iDefaultService)
2686 if (iDefaultService < 0) {
2687 return add_a_service(&sDefault, pszService);
2690 return (add_a_service(ServicePtrs[iDefaultService], pszService));
2693 /***************************************************************************
2694 Add the IPC service.
2695 ***************************************************************************/
2697 static BOOL lp_add_ipc(const char *ipc_name, BOOL guest_ok)
2700 int i = add_a_service(&sDefault, ipc_name);
2705 slprintf(comment, sizeof(comment) - 1,
2706 "IPC Service (%s)", Globals.szServerString);
2708 string_set(&ServicePtrs[i]->szPath, tmpdir());
2709 string_set(&ServicePtrs[i]->szUsername, "");
2710 string_set(&ServicePtrs[i]->comment, comment);
2711 string_set(&ServicePtrs[i]->fstype, "IPC");
2712 ServicePtrs[i]->iMaxConnections = 0;
2713 ServicePtrs[i]->bAvailable = True;
2714 ServicePtrs[i]->bRead_only = True;
2715 ServicePtrs[i]->bGuest_only = False;
2716 ServicePtrs[i]->bGuest_ok = guest_ok;
2717 ServicePtrs[i]->bPrint_ok = False;
2718 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2720 DEBUG(3, ("adding IPC service\n"));
2725 /***************************************************************************
2726 Add a new printer service, with defaults coming from service iFrom.
2727 ***************************************************************************/
2729 BOOL lp_add_printer(const char *pszPrintername, int iDefaultService)
2731 const char *comment = "From Printcap";
2732 int i = add_a_service(ServicePtrs[iDefaultService], pszPrintername);
2737 /* note that we do NOT default the availability flag to True - */
2738 /* we take it from the default service passed. This allows all */
2739 /* dynamic printers to be disabled by disabling the [printers] */
2740 /* entry (if/when the 'available' keyword is implemented!). */
2742 /* the printer name is set to the service name. */
2743 string_set(&ServicePtrs[i]->szPrintername, pszPrintername);
2744 string_set(&ServicePtrs[i]->comment, comment);
2746 /* set the browseable flag from the gloabl default */
2747 ServicePtrs[i]->bBrowseable = sDefault.bBrowseable;
2749 /* Printers cannot be read_only. */
2750 ServicePtrs[i]->bRead_only = False;
2751 /* No share modes on printer services. */
2752 ServicePtrs[i]->bShareModes = False;
2753 /* No oplocks on printer services. */
2754 ServicePtrs[i]->bOpLocks = False;
2755 /* Printer services must be printable. */
2756 ServicePtrs[i]->bPrint_ok = True;
2758 DEBUG(3, ("adding printer service %s\n", pszPrintername));
2764 /***************************************************************************
2765 Check whether the given parameter name is valid.
2766 Parametric options (names containing a colon) are considered valid.
2767 ***************************************************************************/
2769 BOOL lp_parameter_is_valid(const char *pszParmName)
2771 return ((map_parameter(pszParmName) != -1) ||
2772 (strchr(pszParmName, ':') != NULL));
2775 /***************************************************************************
2776 Check whether the given name is the name of a global parameter.
2777 Returns True for strings belonging to parameters of class
2778 P_GLOBAL, False for all other strings, also for parametric options
2779 and strings not belonging to any option.
2780 ***************************************************************************/
2782 BOOL lp_parameter_is_global(const char *pszParmName)
2784 int num = map_parameter(pszParmName);
2787 return (parm_table[num].p_class == P_GLOBAL);
2793 /**************************************************************************
2794 Check whether the given name is the canonical name of a parameter.
2795 Returns False if it is not a valid parameter Name.
2796 For parametric options, True is returned.
2797 **************************************************************************/
2799 BOOL lp_parameter_is_canonical(const char *parm_name)
2801 if (!lp_parameter_is_valid(parm_name)) {
2805 return (map_parameter(parm_name) ==
2806 map_parameter_canonical(parm_name, NULL));
2809 /**************************************************************************
2810 Determine the canonical name for a parameter.
2811 Indicate when it is an inverse (boolean) synonym instead of a
2813 **************************************************************************/
2815 BOOL lp_canonicalize_parameter(const char *parm_name, const char **canon_parm,
2820 if (!lp_parameter_is_valid(parm_name)) {
2825 num = map_parameter_canonical(parm_name, inverse);
2827 /* parametric option */
2828 *canon_parm = parm_name;
2830 *canon_parm = parm_table[num].label;
2837 /**************************************************************************
2838 Determine the canonical name for a parameter.
2839 Turn the value given into the inverse boolean expression when
2840 the synonym is an invers boolean synonym.
2842 Return True if parm_name is a valid parameter name and
2843 in case it is an invers boolean synonym, if the val string could
2844 successfully be converted to the reverse bool.
2845 Return false in all other cases.
2846 **************************************************************************/
2848 BOOL lp_canonicalize_parameter_with_value(const char *parm_name,
2850 const char **canon_parm,
2851 const char **canon_val)
2856 if (!lp_parameter_is_valid(parm_name)) {
2862 num = map_parameter_canonical(parm_name, &inverse);
2864 /* parametric option */
2865 *canon_parm = parm_name;
2868 *canon_parm = parm_table[num].label;
2870 if (!lp_invert_boolean(val, canon_val)) {
2882 /***************************************************************************
2883 Map a parameter's string representation to something we can use.
2884 Returns False if the parameter string is not recognised, else TRUE.
2885 ***************************************************************************/
2887 static int map_parameter(const char *pszParmName)
2891 if (*pszParmName == '-')
2894 for (iIndex = 0; parm_table[iIndex].label; iIndex++)
2895 if (strwicmp(parm_table[iIndex].label, pszParmName) == 0)
2898 /* Warn only if it isn't parametric option */
2899 if (strchr(pszParmName, ':') == NULL)
2900 DEBUG(0, ("Unknown parameter encountered: \"%s\"\n", pszParmName));
2901 /* We do return 'fail' for parametric options as well because they are
2902 stored in different storage
2907 /***************************************************************************
2908 Map a parameter's string representation to the index of the canonical
2909 form of the parameter (it might be a synonym).
2910 Returns -1 if the parameter string is not recognised.
2911 ***************************************************************************/
2913 static int map_parameter_canonical(const char *pszParmName, BOOL *inverse)
2915 int parm_num, canon_num;
2916 BOOL loc_inverse = False;
2918 parm_num = map_parameter(pszParmName);
2919 if ((parm_num < 0) || !(parm_table[parm_num].flags & FLAG_HIDE)) {
2920 /* invalid, parametric or no canidate for synonyms ... */
2924 for (canon_num = 0; parm_table[canon_num].label; canon_num++) {
2925 if (is_synonym_of(parm_num, canon_num, &loc_inverse)) {
2926 parm_num = canon_num;
2932 if (inverse != NULL) {
2933 *inverse = loc_inverse;
2938 /***************************************************************************
2939 return true if parameter number parm1 is a synonym of parameter
2940 number parm2 (parm2 being the principal name).
2941 set inverse to True if parm1 is P_BOOLREV and parm2 is P_BOOL,
2943 ***************************************************************************/
2945 static BOOL is_synonym_of(int parm1, int parm2, BOOL *inverse)
2947 if ((parm_table[parm1].ptr == parm_table[parm2].ptr) &&
2948 (parm_table[parm1].flags & FLAG_HIDE) &&
2949 !(parm_table[parm2].flags & FLAG_HIDE))
2951 if (inverse != NULL) {
2952 if ((parm_table[parm1].type == P_BOOLREV) &&
2953 (parm_table[parm2].type == P_BOOL))
2965 /***************************************************************************
2966 Show one parameter's name, type, [values,] and flags.
2967 (helper functions for show_parameter_list)
2968 ***************************************************************************/
2970 static void show_parameter(int parmIndex)
2972 int enumIndex, flagIndex;
2977 const char *type[] = { "P_BOOL", "P_BOOLREV", "P_CHAR", "P_INTEGER",
2978 "P_OCTAL", "P_LIST", "P_STRING", "P_USTRING", "P_GSTRING",
2979 "P_UGSTRING", "P_ENUM", "P_SEP"};
2980 unsigned flags[] = { FLAG_BASIC, FLAG_SHARE, FLAG_PRINT, FLAG_GLOBAL,
2981 FLAG_WIZARD, FLAG_ADVANCED, FLAG_DEVELOPER, FLAG_DEPRECATED,
2982 FLAG_HIDE, FLAG_DOS_STRING};
2983 const char *flag_names[] = { "FLAG_BASIC", "FLAG_SHARE", "FLAG_PRINT",
2984 "FLAG_GLOBAL", "FLAG_WIZARD", "FLAG_ADVANCED", "FLAG_DEVELOPER",
2985 "FLAG_DEPRECATED", "FLAG_HIDE", "FLAG_DOS_STRING", NULL};
2987 printf("%s=%s", parm_table[parmIndex].label,
2988 type[parm_table[parmIndex].type]);
2989 if (parm_table[parmIndex].type == P_ENUM) {
2992 parm_table[parmIndex].enum_list[enumIndex].name;
2996 enumIndex ? "|" : "",
2997 parm_table[parmIndex].enum_list[enumIndex].name);
3002 for (flagIndex=0; flag_names[flagIndex]; flagIndex++) {
3003 if (parm_table[parmIndex].flags & flags[flagIndex]) {
3006 flag_names[flagIndex]);
3011 /* output synonyms */
3013 for (parmIndex2=0; parm_table[parmIndex2].label; parmIndex2++) {
3014 if (is_synonym_of(parmIndex, parmIndex2, &inverse)) {
3015 printf(" (%ssynonym of %s)", inverse ? "inverse " : "",
3016 parm_table[parmIndex2].label);
3017 } else if (is_synonym_of(parmIndex2, parmIndex, &inverse)) {
3019 printf(" (synonyms: ");
3024 printf("%s%s", parm_table[parmIndex2].label,
3025 inverse ? "[i]" : "");
3035 /***************************************************************************
3036 Show all parameter's name, type, [values,] and flags.
3037 ***************************************************************************/
3039 void show_parameter_list(void)
3041 int classIndex, parmIndex;
3042 const char *section_names[] = { "local", "global", NULL};
3044 for (classIndex=0; section_names[classIndex]; classIndex++) {
3045 printf("[%s]\n", section_names[classIndex]);
3046 for (parmIndex = 0; parm_table[parmIndex].label; parmIndex++) {
3047 if (parm_table[parmIndex].p_class == classIndex) {
3048 show_parameter(parmIndex);
3054 /***************************************************************************
3055 Set a boolean variable from the text value stored in the passed string.
3056 Returns True in success, False if the passed string does not correctly
3057 represent a boolean.
3058 ***************************************************************************/
3060 static BOOL set_boolean(BOOL *pb, const char *pszParmValue)
3067 if (strwicmp(pszParmValue, "yes") == 0 ||
3068 strwicmp(pszParmValue, "true") == 0 ||
3069 strwicmp(pszParmValue, "1") == 0)
3071 else if (strwicmp(pszParmValue, "no") == 0 ||
3072 strwicmp(pszParmValue, "False") == 0 ||
3073 strwicmp(pszParmValue, "0") == 0)
3077 ("ERROR: Badly formed boolean in configuration file: \"%s\".\n",
3082 if ((pb != NULL) && (bRetval != False)) {
3090 /***************************************************************************
3091 Check if a given string correctly represents a boolean value.
3092 ***************************************************************************/
3094 BOOL lp_string_is_valid_boolean(const char *parm_value)
3096 return set_boolean(NULL, parm_value);
3099 /***************************************************************************
3100 Get the standard string representation of a boolean value ("yes" or "no")
3101 ***************************************************************************/
3103 static const char *get_boolean(BOOL bool_value)
3105 static const char *yes_str = "yes";
3106 static const char *no_str = "no";
3108 return (bool_value ? yes_str : no_str);
3111 /***************************************************************************
3112 Provide the string of the negated boolean value associated to the boolean
3113 given as a string. Returns False if the passed string does not correctly
3114 represent a boolean.
3115 ***************************************************************************/
3117 BOOL lp_invert_boolean(const char *str, const char **inverse_str)
3121 if (!set_boolean(&val, str)) {
3125 *inverse_str = get_boolean(!val);
3129 /***************************************************************************
3130 Provide the canonical string representation of a boolean value given
3131 as a string. Return True on success, False if the string given does
3132 not correctly represent a boolean.
3133 ***************************************************************************/
3135 BOOL lp_canonicalize_boolean(const char *str, const char**canon_str)
3139 if (!set_boolean(&val, str)) {
3143 *canon_str = get_boolean(val);
3147 /***************************************************************************
3148 Find a service by name. Otherwise works like get_service.
3149 ***************************************************************************/
3151 static int getservicebyname(const char *pszServiceName, service * pserviceDest)
3156 if (ServiceHash != NULL) {
3157 if ( !(canon_name = canonicalize_servicename( pszServiceName )) )
3160 iService = tdb_fetch_int32(ServiceHash, canon_name );
3162 if (LP_SNUM_OK(iService)) {
3163 if (pserviceDest != NULL) {
3164 copy_service(pserviceDest, ServicePtrs[iService], NULL);
3174 /***************************************************************************
3175 Copy a service structure to another.
3176 If pcopymapDest is NULL then copy all fields
3177 ***************************************************************************/
3179 static void copy_service(service * pserviceDest, service * pserviceSource, BOOL *pcopymapDest)
3182 BOOL bcopyall = (pcopymapDest == NULL);
3183 param_opt_struct *data, *pdata, *paramo;
3186 for (i = 0; parm_table[i].label; i++)
3187 if (parm_table[i].ptr && parm_table[i].p_class == P_LOCAL &&
3188 (bcopyall || pcopymapDest[i])) {
3189 void *def_ptr = parm_table[i].ptr;
3191 ((char *)pserviceSource) + PTR_DIFF(def_ptr,
3194 ((char *)pserviceDest) + PTR_DIFF(def_ptr,
3197 switch (parm_table[i].type) {
3200 *(BOOL *)dest_ptr = *(BOOL *)src_ptr;
3206 *(int *)dest_ptr = *(int *)src_ptr;
3210 *(char *)dest_ptr = *(char *)src_ptr;
3214 string_set((char **)dest_ptr,
3219 string_set((char **)dest_ptr,
3221 strupper_m(*(char **)dest_ptr);
3224 str_list_free((char ***)dest_ptr);
3225 str_list_copy((char ***)dest_ptr, *(const char ***)src_ptr);
3233 init_copymap(pserviceDest);
3234 if (pserviceSource->copymap)
3235 memcpy((void *)pserviceDest->copymap,
3236 (void *)pserviceSource->copymap,
3237 sizeof(BOOL) * NUMPARAMETERS);
3240 data = pserviceSource->param_opt;
3243 pdata = pserviceDest->param_opt;
3244 /* Traverse destination */
3246 /* If we already have same option, override it */
3247 if (strcmp(pdata->key, data->key) == 0) {
3248 string_free(&pdata->value);
3249 str_list_free(&data->list);
3250 pdata->value = SMB_STRDUP(data->value);
3254 pdata = pdata->next;
3257 paramo = SMB_XMALLOC_P(param_opt_struct);
3258 paramo->key = SMB_STRDUP(data->key);
3259 paramo->value = SMB_STRDUP(data->value);
3260 paramo->list = NULL;
3261 DLIST_ADD(pserviceDest->param_opt, paramo);
3267 /***************************************************************************
3268 Check a service for consistency. Return False if the service is in any way
3269 incomplete or faulty, else True.
3270 ***************************************************************************/
3272 BOOL service_ok(int iService)
3277 if (ServicePtrs[iService]->szService[0] == '\0') {
3278 DEBUG(0, ("The following message indicates an internal error:\n"));
3279 DEBUG(0, ("No service name in service entry.\n"));
3283 /* The [printers] entry MUST be printable. I'm all for flexibility, but */
3284 /* I can't see why you'd want a non-printable printer service... */
3285 if (strwicmp(ServicePtrs[iService]->szService, PRINTERS_NAME) == 0) {
3286 if (!ServicePtrs[iService]->bPrint_ok) {
3287 DEBUG(0, ("WARNING: [%s] service MUST be printable!\n",
3288 ServicePtrs[iService]->szService));
3289 ServicePtrs[iService]->bPrint_ok = True;
3291 /* [printers] service must also be non-browsable. */
3292 if (ServicePtrs[iService]->bBrowseable)
3293 ServicePtrs[iService]->bBrowseable = False;
3296 if (ServicePtrs[iService]->szPath[0] == '\0' &&
3297 strwicmp(ServicePtrs[iService]->szService, HOMES_NAME) != 0 &&
3298 ServicePtrs[iService]->szMSDfsProxy[0] == '\0'
3300 DEBUG(0, ("WARNING: No path in service %s - making it unavailable!\n",
3301 ServicePtrs[iService]->szService));
3302 ServicePtrs[iService]->bAvailable = False;
3305 /* If a service is flagged unavailable, log the fact at level 1. */
3306 if (!ServicePtrs[iService]->bAvailable)
3307 DEBUG(1, ("NOTE: Service %s is flagged unavailable.\n",
3308 ServicePtrs[iService]->szService));
3314 * lp_regdb_open - regdb helper function
3316 * this should be considered an interim solution that becomes
3317 * superfluous once the registry code has been rewritten
3318 * do allow use of the tdb portion of the registry alone.
3320 * in the meanwhile this provides a lean access
3321 * to the registry globals.
3324 static struct tdb_wrap *lp_regdb_open(void)
3326 struct tdb_wrap *reg_tdb = NULL;
3327 const char *vstring = "INFO/version";
3331 reg_tdb = tdb_wrap_open(NULL, lock_path("registry.tdb"), 0,
3332 REG_TDB_FLAGS, O_RDWR, 0600);
3334 DEBUG(1, ("lp_regdb_open: failed to open %s: %s\n",
3335 lock_path("registry.tdb"), strerror(errno)));
3339 DEBUG(10, ("lp_regdb_open: reg tdb opened.\n"));
3343 vers_id = tdb_fetch_int32(reg_tdb->tdb, vstring);
3344 if (vers_id != REGVER_V1) {
3345 DEBUG(10, ("lp_regdb_open: INFO: registry tdb %s has wrong "
3346 "INFO/version (got %d, expected %d)\n",
3347 lock_path("registry.tdb"), vers_id, REGVER_V1));
3348 /* this is apparently not implemented in the tdb */
3356 * process_registry_globals
3358 * this is the interim version of process_registry globals
3360 * until we can do it as we would like using the api and only
3361 * using the tdb portion of the registry (see below),
3362 * this just provides the needed functionality of regdb_fetch_values
3363 * and regdb_unpack_values, circumventing any fancy stuff, to
3364 * give us access to the registry globals.
3366 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3369 struct tdb_wrap *reg_tdb = NULL;
3373 /* vars for the tdb unpack loop */
3380 uint32 num_values = 0;
3384 struct registry_value *value = NULL;
3386 include_registry_globals = True;
3390 reg_tdb = lp_regdb_open();
3392 DEBUG(1, ("Error opening the registry!\n"));
3396 /* reg_tdb is from now on used as talloc ctx.
3397 * freeing it closes the tdb (if refcount is 0) */
3399 keystr = talloc_asprintf(reg_tdb,"%s/%s/%s", REG_VALUE_PREFIX,
3400 KEY_SMBCONF, GLOBAL_NAME);
3401 normalize_dbkey(keystr);
3403 DEBUG(10, ("process_registry_globals: fetching key '%s'\n",
3406 data = tdb_fetch_bystring(reg_tdb->tdb, keystr);
3413 buflen = data.dsize;
3415 /* unpack number of values */
3416 len = tdb_unpack(buf, buflen, "d", &num_values);
3417 DEBUG(10, ("process_registry_globals: got %d values from tdb\n",
3420 /* unpack the values */
3421 for (i=0; i < num_values; i++) {
3425 len += tdb_unpack(buf+len, buflen-len, "fdB",
3430 if (registry_smbconf_valname_forbidden(valname)) {
3431 DEBUG(10, ("process_registry_globals: Ignoring "
3432 "parameter '%s' in registry.\n", valname));
3435 DEBUG(10, ("process_registry_globals: got value '%s'\n",
3437 if (size && data_p) {
3438 err = registry_pull_value(reg_tdb,
3445 if (!W_ERROR_IS_OK(err)) {
3450 valstr = talloc_asprintf(reg_tdb, "%d",
3452 pfunc(valname, valstr);
3455 pfunc(valname, value->v.sz.str);
3458 /* ignore other types */
3464 ret = pfunc("registry shares", "yes");
3465 regdb_last_seqnum = tdb_get_seqnum(reg_tdb->tdb);
3468 TALLOC_FREE(reg_tdb);
3469 SAFE_FREE(data.dptr);
3475 * this is process_registry_globals as it _should_ be (roughly)
3476 * using the reg_api functions...
3479 static BOOL process_registry_globals(BOOL (*pfunc)(const char *, const char *))
3482 TALLOC_CTX *ctx = NULL;
3483 char *regpath = NULL;
3484 WERROR werr = WERR_OK;
3485 struct registry_key *key = NULL;
3486 struct registry_value *value = NULL;
3487 char *valname = NULL;
3488 char *valstr = NULL;
3490 NT_USER_TOKEN *token;
3492 ctx = talloc_init("process_registry_globals");
3494 smb_panic("Failed to create talloc context!");
3497 include_registry_globals = True;
3499 if (!registry_init_regdb()) {
3500 DEBUG(1, ("Error initializing the registry.\n"));
3504 if (!(token = registry_create_admin_token(ctx))) {
3505 DEBUG(1, ("Error creating admin token\n"));
3509 regpath = talloc_asprintf(ctx,"%s\\%s", KEY_SMBCONF, GLOBAL_NAME);
3510 werr = reg_open_path(ctx, regpath, REG_KEY_READ, token, &key);
3511 if (!W_ERROR_IS_OK(werr)) {
3512 DEBUG(1, ("Registry smbconf global section does not exist.\n"));
3513 DEBUGADD(1, ("Error opening registry path '%s\\%s: %s\n",
3514 KEY_SMBCONF, GLOBAL_NAME, dos_errstr(werr)));
3519 W_ERROR_IS_OK(werr = reg_enumvalue(ctx, key, idx, &valname,
3523 DEBUG(5, ("got global registry parameter '%s'\n", valname));
3524 switch(value->type) {
3526 valstr = talloc_asprintf(ctx, "%d", value->v.dword);
3527 pfunc(valname, valstr);
3528 TALLOC_FREE(valstr);
3531 pfunc(valname, value->v.sz.str);
3534 /* ignore other types */
3538 TALLOC_FREE(valstr);
3541 ret = pfunc("registry shares", "yes");
3543 regdb_last_seqnum = regdb_get_seqnum();
3546 talloc_destroy(ctx);
3551 static struct file_lists {
3552 struct file_lists *next;
3556 } *file_lists = NULL;
3558 /*******************************************************************
3559 Keep a linked list of all config files so we know when one has changed
3560 it's date and needs to be reloaded.
3561 ********************************************************************/
3563 static void add_to_file_list(const char *fname, const char *subfname)
3565 struct file_lists *f = file_lists;
3568 if (f->name && !strcmp(f->name, fname))
3574 f = SMB_MALLOC_P(struct file_lists);
3577 f->next = file_lists;
3578 f->name = SMB_STRDUP(fname);
3583 f->subfname = SMB_STRDUP(subfname);
3589 f->modtime = file_modtime(subfname);
3591 time_t t = file_modtime(subfname);
3597 /*******************************************************************
3598 Check if a config file has changed date.
3599 ********************************************************************/
3601 BOOL lp_file_list_changed(void)
3603 struct file_lists *f = file_lists;
3604 struct tdb_wrap *reg_tdb = NULL;
3606 DEBUG(6, ("lp_file_list_changed()\n"));
3608 if (include_registry_globals) {
3609 reg_tdb = lp_regdb_open();
3610 if (reg_tdb && (regdb_last_seqnum != tdb_get_seqnum(reg_tdb->tdb)))
3612 DEBUGADD(6, ("regdb seqnum changed: old = %d, new = %d\n",
3613 regdb_last_seqnum, tdb_get_seqnum(reg_tdb->tdb)));
3614 TALLOC_FREE(reg_tdb);
3623 pstrcpy(n2, f->name);
3624 standard_sub_basic( get_current_username(),
3625 current_user_info.domain,
3628 DEBUGADD(6, ("file %s -> %s last mod_time: %s\n",
3629 f->name, n2, ctime(&f->modtime)));
3631 mod_time = file_modtime(n2);
3633 if (mod_time && ((f->modtime != mod_time) || (f->subfname == NULL) || (strcmp(n2, f->subfname) != 0))) {
3635 ("file %s modified: %s\n", n2,
3637 f->modtime = mod_time;
3638 SAFE_FREE(f->subfname);
3639 f->subfname = SMB_STRDUP(n2);
3647 /***************************************************************************
3648 Run standard_sub_basic on netbios name... needed because global_myname
3649 is not accessed through any lp_ macro.
3650 Note: We must *NOT* use string_set() here as ptr points to global_myname.
3651 ***************************************************************************/
3653 static BOOL handle_netbios_name(int snum, const char *pszParmValue, char **ptr)
3656 pstring netbios_name;
3658 pstrcpy(netbios_name, pszParmValue);
3660 standard_sub_basic(get_current_username(), current_user_info.domain,
3661 netbios_name, sizeof(netbios_name));
3663 ret = set_global_myname(netbios_name);
3664 string_set(&Globals.szNetbiosName,global_myname());
3666 DEBUG(4, ("handle_netbios_name: set global_myname to: %s\n",
3672 static BOOL handle_charset(int snum, const char *pszParmValue, char **ptr)
3674 if (strcmp(*ptr, pszParmValue) != 0) {
3675 string_set(ptr, pszParmValue);
3683 static BOOL handle_workgroup(int snum, const char *pszParmValue, char **ptr)
3687 ret = set_global_myworkgroup(pszParmValue);
3688 string_set(&Globals.szWorkgroup,lp_workgroup());
3693 static BOOL handle_netbios_scope(int snum, const char *pszParmValue, char **ptr)
3697 ret = set_global_scope(pszParmValue);
3698 string_set(&Globals.szNetbiosScope,global_scope());
3703 static BOOL handle_netbios_aliases(int snum, const char *pszParmValue, char **ptr)
3705 str_list_free(&Globals.szNetbiosAliases);
3706 Globals.szNetbiosAliases = str_list_make(pszParmValue, NULL);
3707 return set_netbios_aliases((const char **)Globals.szNetbiosAliases);
3710 /***************************************************************************
3711 Handle the include operation.
3712 ***************************************************************************/
3714 static BOOL handle_include(int snum, const char *pszParmValue, char **ptr)
3717 pstrcpy(fname, pszParmValue);
3719 if (strequal(fname, INCLUDE_REGISTRY_NAME)) {
3720 if (bInGlobalSection) {
3721 return process_registry_globals(do_parameter);
3724 DEBUG(1, ("\"include = registry\" only effective "
3725 "in %s section\n", GLOBAL_NAME));
3730 standard_sub_basic(get_current_username(), current_user_info.domain,
3731 fname,sizeof(fname));
3733 add_to_file_list(pszParmValue, fname);
3735 string_set(ptr, fname);
3737 if (file_exist(fname, NULL))
3738 return (pm_process(fname, do_section, do_parameter));
3740 DEBUG(2, ("Can't find include file %s\n", fname));
3745 /***************************************************************************
3746 Handle the interpretation of the copy parameter.
3747 ***************************************************************************/
3749 static BOOL handle_copy(int snum, const char *pszParmValue, char **ptr)
3753 service serviceTemp;
3755 string_set(ptr, pszParmValue);
3757 init_service(&serviceTemp);
3761 DEBUG(3, ("Copying service from service %s\n", pszParmValue));
3763 if ((iTemp = getservicebyname(pszParmValue, &serviceTemp)) >= 0) {
3764 if (iTemp == iServiceIndex) {
3765 DEBUG(0, ("Can't copy service %s - unable to copy self!\n", pszParmValue));
3767 copy_service(ServicePtrs[iServiceIndex],
3769 ServicePtrs[iServiceIndex]->copymap);
3773 DEBUG(0, ("Unable to copy service - source not found: %s\n", pszParmValue));
3777 free_service(&serviceTemp);
3781 /***************************************************************************
3782 Handle idmap/non unix account uid and gid allocation parameters. The format of these
3787 idmap uid = 1000-1999
3790 We only do simple parsing checks here. The strings are parsed into useful
3791 structures in the idmap daemon code.
3793 ***************************************************************************/
3795 /* Some lp_ routines to return idmap [ug]id information */
3797 static uid_t idmap_uid_low, idmap_uid_high;
3798 static gid_t idmap_gid_low, idmap_gid_high;
3800 BOOL lp_idmap_uid(uid_t *low, uid_t *high)
3802 if (idmap_uid_low == 0 || idmap_uid_high == 0)
3806 *low = idmap_uid_low;
3809 *high = idmap_uid_high;
3814 BOOL lp_idmap_gid(gid_t *low, gid_t *high)
3816 if (idmap_gid_low == 0 || idmap_gid_high == 0)
3820 *low = idmap_gid_low;
3823 *high = idmap_gid_high;
3828 /* Do some simple checks on "idmap [ug]id" parameter values */
3830 static BOOL handle_idmap_uid(int snum, const char *pszParmValue, char **ptr)
3834 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3839 string_set(ptr, pszParmValue);
3841 idmap_uid_low = low;
3842 idmap_uid_high = high;
3847 static BOOL handle_idmap_gid(int snum, const char *pszParmValue, char **ptr)
3851 if (sscanf(pszParmValue, "%u - %u", &low, &high) != 2 || high < low)
3856 string_set(ptr, pszParmValue);
3858 idmap_gid_low = low;
3859 idmap_gid_high = high;
3864 /***************************************************************************
3865 Handle the DEBUG level list.
3866 ***************************************************************************/
3868 static BOOL handle_debug_list( int snum, const char *pszParmValueIn, char **ptr )
3870 pstring pszParmValue;
3872 pstrcpy(pszParmValue, pszParmValueIn);
3873 string_set(ptr, pszParmValueIn);
3874 return debug_parse_levels( pszParmValue );
3877 /***************************************************************************
3878 Handle ldap suffixes - default to ldapsuffix if sub-suffixes are not defined.
3879 ***************************************************************************/
3881 static const char *append_ldap_suffix( const char *str )
3883 const char *suffix_string;
3886 suffix_string = talloc_asprintf(talloc_tos(), "%s,%s", str,
3887 Globals.szLdapSuffix );
3888 if ( !suffix_string ) {
3889 DEBUG(0,("append_ldap_suffix: talloc_asprintf() failed!\n"));
3893 return suffix_string;
3896 const char *lp_ldap_machine_suffix(void)
3898 if (Globals.szLdapMachineSuffix[0])
3899 return append_ldap_suffix(Globals.szLdapMachineSuffix);
3901 return lp_string(Globals.szLdapSuffix);
3904 const char *lp_ldap_user_suffix(void)
3906 if (Globals.szLdapUserSuffix[0])
3907 return append_ldap_suffix(Globals.szLdapUserSuffix);
3909 return lp_string(Globals.szLdapSuffix);
3912 const char *lp_ldap_group_suffix(void)
3914 if (Globals.szLdapGroupSuffix[0])
3915 return append_ldap_suffix(Globals.szLdapGroupSuffix);
3917 return lp_string(Globals.szLdapSuffix);
3920 const char *lp_ldap_idmap_suffix(void)
3922 if (Globals.szLdapIdmapSuffix[0])
3923 return append_ldap_suffix(Globals.szLdapIdmapSuffix);
3925 return lp_string(Globals.szLdapSuffix);
3928 /****************************************************************************
3929 set the value for a P_ENUM
3930 ***************************************************************************/
3932 static void lp_set_enum_parm( struct parm_struct *parm, const char *pszParmValue,
3937 for (i = 0; parm->enum_list[i].name; i++) {
3938 if ( strequal(pszParmValue, parm->enum_list[i].name)) {
3939 *ptr = parm->enum_list[i].value;
3945 /***************************************************************************
3946 ***************************************************************************/
3948 static BOOL handle_printing(int snum, const char *pszParmValue, char **ptr)
3950 static int parm_num = -1;
3953 if ( parm_num == -1 )
3954 parm_num = map_parameter( "printing" );
3956 lp_set_enum_parm( &parm_table[parm_num], pszParmValue, (int*)ptr );
3961 s = ServicePtrs[snum];
3963 init_printer_values( s );
3969 /***************************************************************************
3970 Initialise a copymap.
3971 ***************************************************************************/
3973 static void init_copymap(service * pservice)
3976 SAFE_FREE(pservice->copymap);
3977 pservice->copymap = SMB_MALLOC_ARRAY(BOOL,NUMPARAMETERS);
3978 if (!pservice->copymap)
3980 ("Couldn't allocate copymap!! (size %d)\n",
3981 (int)NUMPARAMETERS));
3983 for (i = 0; i < NUMPARAMETERS; i++)
3984 pservice->copymap[i] = True;
3987 /***************************************************************************
3988 Return the local pointer to a parameter given the service number and the
3989 pointer into the default structure.
3990 ***************************************************************************/
3992 void *lp_local_ptr(int snum, void *ptr)
3994 return (void *)(((char *)ServicePtrs[snum]) + PTR_DIFF(ptr, &sDefault));
3997 /***************************************************************************
3998 Process a parameter for a particular service number. If snum < 0
3999 then assume we are in the globals.
4000 ***************************************************************************/
4002 BOOL lp_do_parameter(int snum, const char *pszParmName, const char *pszParmValue)
4004 int parmnum, i, slen;
4005 void *parm_ptr = NULL; /* where we are going to store the result */
4006 void *def_ptr = NULL;
4009 param_opt_struct *paramo, *data;
4012 parmnum = map_parameter(pszParmName);
4015 if ((sep=strchr(pszParmName, ':')) != NULL) {
4017 ZERO_STRUCT(param_key);
4018 pstr_sprintf(param_key, "%s:", pszParmName);
4019 slen = strlen(param_key);
4020 pstrcat(param_key, sep+1);
4021 trim_char(param_key+slen, ' ', ' ');
4023 data = (snum < 0) ? Globals.param_opt :
4024 ServicePtrs[snum]->param_opt;
4025 /* Traverse destination */
4027 /* If we already have same option, override it */
4028 if (strcmp(data->key, param_key) == 0) {
4029 string_free(&data->value);
4030 str_list_free(&data->list);
4031 data->value = SMB_STRDUP(pszParmValue);
4038 paramo = SMB_XMALLOC_P(param_opt_struct);
4039 paramo->key = SMB_STRDUP(param_key);
4040 paramo->value = SMB_STRDUP(pszParmValue);
4041 paramo->list = NULL;
4043 DLIST_ADD(Globals.param_opt, paramo);
4045 DLIST_ADD(ServicePtrs[snum]->param_opt, paramo);
4052 DEBUG(0, ("Ignoring unknown parameter \"%s\"\n", pszParmName));
4056 if (parm_table[parmnum].flags & FLAG_DEPRECATED) {
4057 DEBUG(1, ("WARNING: The \"%s\" option is deprecated\n",
4061 def_ptr = parm_table[parmnum].ptr;
4063 /* we might point at a service, the default service or a global */
4067 if (parm_table[parmnum].p_class == P_GLOBAL) {
4069 ("Global parameter %s found in service section!\n",
4074 ((char *)ServicePtrs[snum]) + PTR_DIFF(def_ptr,
4077 if (!ServicePtrs[snum]->copymap)
4078 init_copymap(ServicePtrs[snum]);
4080 /* this handles the aliases - set the copymap for other entries with
4081 the same data pointer */
4082 for (i = 0; parm_table[i].label; i++)
4083 if (parm_table[i].ptr == parm_table[parmnum].ptr)
4084 ServicePtrs[snum]->copymap[i] = False;
4087 /* if it is a special case then go ahead */
4088 if (parm_table[parmnum].special) {
4089 parm_table[parmnum].special(snum, pszParmValue, (char **)parm_ptr);
4093 /* now switch on the type of variable it is */
4094 switch (parm_table[parmnum].type)
4097 *(BOOL *)parm_ptr = lp_bool(pszParmValue);
4101 *(BOOL *)parm_ptr = !lp_bool(pszParmValue);
4105 *(int *)parm_ptr = lp_int(pszParmValue);
4109 *(char *)parm_ptr = *pszParmValue;
4113 i = sscanf(pszParmValue, "%o", (int *)parm_ptr);
4115 DEBUG ( 0, ("Invalid octal number %s\n", pszParmName ));
4120 str_list_free((char ***)parm_ptr);
4121 *(char ***)parm_ptr = str_list_make(pszParmValue, NULL);
4125 string_set((char **)parm_ptr, pszParmValue);
4129 string_set((char **)parm_ptr, pszParmValue);
4130 strupper_m(*(char **)parm_ptr);
4134 pstrcpy((char *)parm_ptr, pszParmValue);
4138 pstrcpy((char *)parm_ptr, pszParmValue);
4139 strupper_m((char *)parm_ptr);
4143 lp_set_enum_parm( &parm_table[parmnum], pszParmValue, (int*)parm_ptr );
4152 /***************************************************************************
4153 Process a parameter.
4154 ***************************************************************************/
4156 static BOOL do_parameter(const char *pszParmName, const char *pszParmValue)
4158 if (!bInGlobalSection && bGlobalOnly)
4161 DEBUGADD(4, ("doing parameter %s = %s\n", pszParmName, pszParmValue));
4163 return (lp_do_parameter(bInGlobalSection ? -2 : iServiceIndex,
4164 pszParmName, pszParmValue));
4167 /***************************************************************************
4168 Print a parameter of the specified type.
4169 ***************************************************************************/
4171 static void print_parameter(struct parm_struct *p, void *ptr, FILE * f)
4177 for (i = 0; p->enum_list[i].name; i++) {
4178 if (*(int *)ptr == p->enum_list[i].value) {
4180 p->enum_list[i].name);
4187 fprintf(f, "%s", BOOLSTR(*(BOOL *)ptr));
4191 fprintf(f, "%s", BOOLSTR(!*(BOOL *)ptr));
4195 fprintf(f, "%d", *(int *)ptr);
4199 fprintf(f, "%c", *(char *)ptr);
4203 fprintf(f, "%s", octal_string(*(int *)ptr));
4207 if ((char ***)ptr && *(char ***)ptr) {
4208 char **list = *(char ***)ptr;
4210 for (; *list; list++) {
4211 /* surround strings with whitespace in double quotes */
4212 if ( strchr_m( *list, ' ' ) )
4213 fprintf(f, "\"%s\"%s", *list, ((*(list+1))?", ":""));
4215 fprintf(f, "%s%s", *list, ((*(list+1))?", ":""));
4223 fprintf(f, "%s", (char *)ptr);
4229 if (*(char **)ptr) {
4230 fprintf(f, "%s", *(char **)ptr);
4238 /***************************************************************************
4239 Check if two parameters are equal.
4240 ***************************************************************************/
4242 static BOOL equal_parameter(parm_type type, void *ptr1, void *ptr2)
4247 return (*((BOOL *)ptr1) == *((BOOL *)ptr2));
4252 return (*((int *)ptr1) == *((int *)ptr2));
4255 return (*((char *)ptr1) == *((char *)ptr2));
4258 return str_list_compare(*(char ***)ptr1, *(char ***)ptr2);
4263 char *p1 = (char *)ptr1, *p2 = (char *)ptr2;
4268 return (p1 == p2 || strequal(p1, p2));
4273 char *p1 = *(char **)ptr1, *p2 = *(char **)ptr2;
4278 return (p1 == p2 || strequal(p1, p2));
4286 /***************************************************************************
4287 Initialize any local varients in the sDefault table.
4288 ***************************************************************************/
4290 void init_locals(void)
4295 /***************************************************************************
4296 Process a new section (service). At this stage all sections are services.
4297 Later we'll have special sections that permit server parameters to be set.
4298 Returns True on success, False on failure.
4299 ***************************************************************************/
4301 static BOOL do_section(const char *pszSectionName)
4304 BOOL isglobal = ((strwicmp(pszSectionName, GLOBAL_NAME) == 0) ||
4305 (strwicmp(pszSectionName, GLOBAL_NAME2) == 0));
4308 /* if we were in a global section then do the local inits */
4309 if (bInGlobalSection && !isglobal)
4312 /* if we've just struck a global section, note the fact. */
4313 bInGlobalSection = isglobal;
4315 /* check for multiple global sections */
4316 if (bInGlobalSection) {
4317 DEBUG(3, ("Processing section \"[%s]\"\n", pszSectionName));
4321 if (!bInGlobalSection && bGlobalOnly)
4324 /* if we have a current service, tidy it up before moving on */
4327 if (iServiceIndex >= 0)
4328 bRetval = service_ok(iServiceIndex);
4330 /* if all is still well, move to the next record in the services array */
4332 /* We put this here to avoid an odd message order if messages are */
4333 /* issued by the post-processing of a previous section. */
4334 DEBUG(2, ("Processing section \"[%s]\"\n", pszSectionName));
4336 if ((iServiceIndex = add_a_service(&sDefault, pszSectionName))
4338 DEBUG(0, ("Failed to add a new service\n"));
4347 /***************************************************************************
4348 Determine if a partcular base parameter is currentl set to the default value.
4349 ***************************************************************************/
4351 static BOOL is_default(int i)
4353 if (!defaults_saved)
4355 switch (parm_table[i].type) {
4357 return str_list_compare (parm_table[i].def.lvalue,
4358 *(char ***)parm_table[i].ptr);
4361 return strequal(parm_table[i].def.svalue,
4362 *(char **)parm_table[i].ptr);
4365 return strequal(parm_table[i].def.svalue,
4366 (char *)parm_table[i].ptr);
4369 return parm_table[i].def.bvalue ==
4370 *(BOOL *)parm_table[i].ptr;
4372 return parm_table[i].def.cvalue ==
4373 *(char *)parm_table[i].ptr;
4377 return parm_table[i].def.ivalue ==
4378 *(int *)parm_table[i].ptr;
4385 /***************************************************************************
4386 Display the contents of the global structure.
4387 ***************************************************************************/
4389 static void dump_globals(FILE *f)
4392 param_opt_struct *data;
4394 fprintf(f, "[global]\n");
4396 for (i = 0; parm_table[i].label; i++)
4397 if (parm_table[i].p_class == P_GLOBAL &&
4398 parm_table[i].ptr &&
4399 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr))) {
4400 if (defaults_saved && is_default(i))
4402 fprintf(f, "\t%s = ", parm_table[i].label);
4403 print_parameter(&parm_table[i], parm_table[i].ptr, f);
4406 if (Globals.param_opt != NULL) {
4407 data = Globals.param_opt;
4409 fprintf(f, "\t%s = %s\n", data->key, data->value);
4416 /***************************************************************************
4417 Return True if a local parameter is currently set to the global default.
4418 ***************************************************************************/
4420 BOOL lp_is_default(int snum, struct parm_struct *parm)
4422 int pdiff = PTR_DIFF(parm->ptr, &sDefault);
4424 return equal_parameter(parm->type,
4425 ((char *)ServicePtrs[snum]) + pdiff,
4426 ((char *)&sDefault) + pdiff);
4429 /***************************************************************************
4430 Display the contents of a single services record.
4431 ***************************************************************************/
4433 static void dump_a_service(service * pService, FILE * f)
4436 param_opt_struct *data;
4438 if (pService != &sDefault)
4439 fprintf(f, "[%s]\n", pService->szService);
4441 for (i = 0; parm_table[i].label; i++) {
4443 if (parm_table[i].p_class == P_LOCAL &&
4444 parm_table[i].ptr &&
4445 (*parm_table[i].label != '-') &&
4446 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4449 int pdiff = PTR_DIFF(parm_table[i].ptr, &sDefault);
4451 if (pService == &sDefault) {
4452 if (defaults_saved && is_default(i))
4455 if (equal_parameter(parm_table[i].type,
4456 ((char *)pService) +
4458 ((char *)&sDefault) +
4463 fprintf(f, "\t%s = ", parm_table[i].label);
4464 print_parameter(&parm_table[i],
4465 ((char *)pService) + pdiff, f);
4470 if (pService->param_opt != NULL) {
4471 data = pService->param_opt;
4473 fprintf(f, "\t%s = %s\n", data->key, data->value);
4479 /***************************************************************************
4480 Display the contents of a parameter of a single services record.
4481 ***************************************************************************/
4483 BOOL dump_a_parameter(int snum, char *parm_name, FILE * f, BOOL isGlobal)
4486 BOOL result = False;
4489 fstring local_parm_name;
4491 const char *parm_opt_value;
4493 /* check for parametrical option */
4494 fstrcpy( local_parm_name, parm_name);
4495 parm_opt = strchr( local_parm_name, ':');
4500 if (strlen(parm_opt)) {
4501 parm_opt_value = lp_parm_const_string( snum,
4502 local_parm_name, parm_opt, NULL);
4503 if (parm_opt_value) {
4504 printf( "%s\n", parm_opt_value);
4511 /* check for a key and print the value */
4518 for (i = 0; parm_table[i].label; i++) {
4519 if (strwicmp(parm_table[i].label, parm_name) == 0 &&
4520 (parm_table[i].p_class == p_class || parm_table[i].flags & flag) &&
4521 parm_table[i].ptr &&
4522 (*parm_table[i].label != '-') &&
4523 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4528 ptr = parm_table[i].ptr;
4530 service * pService = ServicePtrs[snum];
4531 ptr = ((char *)pService) +
4532 PTR_DIFF(parm_table[i].ptr, &sDefault);
4535 print_parameter(&parm_table[i],
4546 /***************************************************************************
4547 Return info about the requested parameter (given as a string).
4548 Return NULL when the string is not a valid parameter name.
4549 ***************************************************************************/
4551 struct parm_struct *lp_get_parameter(const char *param_name)
4553 int num = map_parameter(param_name);
4559 return &parm_table[num];
4562 /***************************************************************************
4563 Return info about the next parameter in a service.
4564 snum==GLOBAL_SECTION_SNUM gives the globals.
4565 Return NULL when out of parameters.
4566 ***************************************************************************/
4568 struct parm_struct *lp_next_parameter(int snum, int *i, int allparameters)
4571 /* do the globals */
4572 for (; parm_table[*i].label; (*i)++) {
4573 if (parm_table[*i].p_class == P_SEPARATOR)
4574 return &parm_table[(*i)++];
4576 if (!parm_table[*i].ptr
4577 || (*parm_table[*i].label == '-'))
4581 && (parm_table[*i].ptr ==
4582 parm_table[(*i) - 1].ptr))
4585 if (is_default(*i) && !allparameters)
4588 return &parm_table[(*i)++];
4591 service *pService = ServicePtrs[snum];
4593 for (; parm_table[*i].label; (*i)++) {
4594 if (parm_table[*i].p_class == P_SEPARATOR)
4595 return &parm_table[(*i)++];
4597 if (parm_table[*i].p_class == P_LOCAL &&
4598 parm_table[*i].ptr &&
4599 (*parm_table[*i].label != '-') &&
4601 (parm_table[*i].ptr !=
4602 parm_table[(*i) - 1].ptr)))
4605 PTR_DIFF(parm_table[*i].ptr,
4608 if (allparameters ||
4609 !equal_parameter(parm_table[*i].type,
4610 ((char *)pService) +
4612 ((char *)&sDefault) +
4615 return &parm_table[(*i)++];
4626 /***************************************************************************
4627 Display the contents of a single copy structure.
4628 ***************************************************************************/
4629 static void dump_copy_map(BOOL *pcopymap)
4635 printf("\n\tNon-Copied parameters:\n");
4637 for (i = 0; parm_table[i].label; i++)
4638 if (parm_table[i].p_class == P_LOCAL &&
4639 parm_table[i].ptr && !pcopymap[i] &&
4640 (i == 0 || (parm_table[i].ptr != parm_table[i - 1].ptr)))
4642 printf("\t\t%s\n", parm_table[i].label);
4647 /***************************************************************************
4648 Return TRUE if the passed service number is within range.
4649 ***************************************************************************/
4651 BOOL lp_snum_ok(int iService)
4653 return (LP_SNUM_OK(iService) && ServicePtrs[iService]->bAvailable);
4656 /***************************************************************************
4657 Auto-load some home services.
4658 ***************************************************************************/
4660 static void lp_add_auto_services(char *str)
4669 s = SMB_STRDUP(str);
4673 homes = lp_servicenumber(HOMES_NAME);
4675 for (p = strtok(s, LIST_SEP); p; p = strtok(NULL, LIST_SEP)) {
4676 char *home = get_user_home_dir(p);
4678 if (lp_servicenumber(p) >= 0)
4681 if (home && homes >= 0)
4682 lp_add_home(p, homes, p, home);
4687 /***************************************************************************
4688 Auto-load one printer.
4689 ***************************************************************************/
4691 void lp_add_one_printer(char *name, char *comment)
4693 int printers = lp_servicenumber(PRINTERS_NAME);
4696 if (lp_servicenumber(name) < 0) {
4697 lp_add_printer(name, printers);
4698 if ((i = lp_servicenumber(name)) >= 0) {
4699 string_set(&ServicePtrs[i]->comment, comment);
4700 ServicePtrs[i]->autoloaded = True;
4705 /***************************************************************************
4706 Have we loaded a services file yet?
4707 ***************************************************************************/
4709 BOOL lp_loaded(void)
4714 /***************************************************************************
4715 Unload unused services.
4716 ***************************************************************************/
4718 void lp_killunused(BOOL (*snumused) (int))
4721 for (i = 0; i < iNumServices; i++) {
4725 /* don't kill autoloaded or usershare services */
4726 if ( ServicePtrs[i]->autoloaded ||
4727 ServicePtrs[i]->usershare == USERSHARE_VALID) {
4731 if (!snumused || !snumused(i)) {
4732 free_service_byindex(i);
4737 /***************************************************************************
4739 ***************************************************************************/
4741 void lp_killservice(int iServiceIn)
4743 if (VALID(iServiceIn)) {
4744 free_service_byindex(iServiceIn);
4748 /***************************************************************************
4749 Save the curent values of all global and sDefault parameters into the
4750 defaults union. This allows swat and testparm to show only the
4751 changed (ie. non-default) parameters.
4752 ***************************************************************************/
4754 static void lp_save_defaults(void)
4757 for (i = 0; parm_table[i].label; i++) {
4758 if (i > 0 && parm_table[i].ptr == parm_table[i - 1].ptr)
4760 switch (parm_table[i].type) {
4762 str_list_copy(&(parm_table[i].def.lvalue),
4763 *(const char ***)parm_table[i].ptr);
4767 if (parm_table[i].ptr) {
4768 parm_table[i].def.svalue = SMB_STRDUP(*(char **)parm_table[i].ptr);
4770 parm_table[i].def.svalue = NULL;
4775 if (parm_table[i].ptr) {
4776 parm_table[i].def.svalue = SMB_STRDUP((char *)parm_table[i].ptr);
4778 parm_table[i].def.svalue = NULL;
4783 parm_table[i].def.bvalue =
4784 *(BOOL *)parm_table[i].ptr;
4787 parm_table[i].def.cvalue =
4788 *(char *)parm_table[i].ptr;
4793 parm_table[i].def.ivalue =
4794 *(int *)parm_table[i].ptr;
4800 defaults_saved = True;
4803 /*******************************************************************
4804 Set the server type we will announce as via nmbd.
4805 ********************************************************************/
4807 static const struct srv_role_tab {
4809 const char *role_str;
4810 } srv_role_tab [] = {
4811 { ROLE_STANDALONE, "ROLE_STANDALONE" },
4812 { ROLE_DOMAIN_MEMBER, "ROLE_DOMAIN_MEMBER" },
4813 { ROLE_DOMAIN_BDC, "ROLE_DOMAIN_BDC" },
4814 { ROLE_DOMAIN_PDC, "ROLE_DOMAIN_PDC" },
4818 const char* server_role_str(uint32 role)
4821 for (i=0; srv_role_tab[i].role_str; i++) {
4822 if (role == srv_role_tab[i].role) {
4823 return srv_role_tab[i].role_str;
4829 static void set_server_role(void)
4831 server_role = ROLE_STANDALONE;
4833 switch (lp_security()) {
4835 if (lp_domain_logons())
4836 DEBUG(0, ("Server's Role (logon server) conflicts with share-level security\n"));
4839 if (lp_domain_logons())
4840 DEBUG(0, ("Server's Role (logon server) conflicts with server-level security\n"));
4841 /* this used to be considered ROLE_DOMAIN_MEMBER but that's just wrong */
4842 server_role = ROLE_STANDALONE;
4845 if (lp_domain_logons()) {
4846 DEBUG(1, ("Server's Role (logon server) NOT ADVISED with domain-level security\n"));
4847 server_role = ROLE_DOMAIN_BDC;
4850 server_role = ROLE_DOMAIN_MEMBER;
4853 if (lp_domain_logons()) {
4854 server_role = ROLE_DOMAIN_PDC;
4857 server_role = ROLE_DOMAIN_MEMBER;
4860 if (lp_domain_logons()) {
4862 if (Globals.bDomainMaster) /* auto or yes */
4863 server_role = ROLE_DOMAIN_PDC;
4865 server_role = ROLE_DOMAIN_BDC;
4869 DEBUG(0, ("Server's Role undefined due to unknown security mode\n"));
4873 DEBUG(10, ("set_server_role: role = %s\n", server_role_str(server_role)));
4876 /***********************************************************
4877 If we should send plaintext/LANMAN passwords in the clinet
4878 ************************************************************/
4880 static void set_allowed_client_auth(void)
4882 if (Globals.bClientNTLMv2Auth) {
4883 Globals.bClientLanManAuth = False;
4885 if (!Globals.bClientLanManAuth) {
4886 Globals.bClientPlaintextAuth = False;
4890 /***************************************************************************
4892 The following code allows smbd to read a user defined share file.
4893 Yes, this is my intent. Yes, I'm comfortable with that...
4895 THE FOLLOWING IS SECURITY CRITICAL CODE.
4897 It washes your clothes, it cleans your house, it guards you while you sleep...
4898 Do not f%^k with it....
4899 ***************************************************************************/
4901 #define MAX_USERSHARE_FILE_SIZE (10*1024)
4903 /***************************************************************************
4904 Check allowed stat state of a usershare file.
4905 Ensure we print out who is dicking with us so the admin can
4906 get their sorry ass fired.
4907 ***************************************************************************/
4909 static BOOL check_usershare_stat(const char *fname, SMB_STRUCT_STAT *psbuf)
4911 if (!S_ISREG(psbuf->st_mode)) {
4912 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4913 "not a regular file\n",
4914 fname, (unsigned int)psbuf->st_uid ));
4918 /* Ensure this doesn't have the other write bit set. */
4919 if (psbuf->st_mode & S_IWOTH) {
4920 DEBUG(0,("check_usershare_stat: file %s owned by uid %u allows "
4921 "public write. Refusing to allow as a usershare file.\n",
4922 fname, (unsigned int)psbuf->st_uid ));
4926 /* Should be 10k or less. */
4927 if (psbuf->st_size > MAX_USERSHARE_FILE_SIZE) {
4928 DEBUG(0,("check_usershare_stat: file %s owned by uid %u is "
4929 "too large (%u) to be a user share file.\n",
4930 fname, (unsigned int)psbuf->st_uid,
4931 (unsigned int)psbuf->st_size ));
4938 /***************************************************************************
4939 Parse the contents of a usershare file.
4940 ***************************************************************************/
4942 enum usershare_err parse_usershare_file(TALLOC_CTX *ctx,
4943 SMB_STRUCT_STAT *psbuf,
4944 const char *servicename,
4953 const char **prefixallowlist = lp_usershare_prefix_allow_list();
4954 const char **prefixdenylist = lp_usershare_prefix_deny_list();
4957 SMB_STRUCT_STAT sbuf;
4959 *pallow_guest = False;
4962 return USERSHARE_MALFORMED_FILE;
4965 if (strcmp(lines[0], "#VERSION 1") == 0) {
4967 } else if (strcmp(lines[0], "#VERSION 2") == 0) {
4970 return USERSHARE_MALFORMED_FILE;
4973 return USERSHARE_BAD_VERSION;
4976 if (strncmp(lines[1], "path=", 5) != 0) {
4977 return USERSHARE_MALFORMED_PATH;
4980 pstrcpy(sharepath, &lines[1][5]);
4981 trim_string(sharepath, " ", " ");
4983 if (strncmp(lines[2], "comment=", 8) != 0) {
4984 return USERSHARE_MALFORMED_COMMENT_DEF;
4987 pstrcpy(comment, &lines[2][8]);
4988 trim_string(comment, " ", " ");
4989 trim_char(comment, '"', '"');
4991 if (strncmp(lines[3], "usershare_acl=", 14) != 0) {
4992 return USERSHARE_MALFORMED_ACL_DEF;
4995 if (!parse_usershare_acl(ctx, &lines[3][14], ppsd)) {
4996 return USERSHARE_ACL_ERR;
5000 if (strncmp(lines[4], "guest_ok=", 9) != 0) {
5001 return USERSHARE_MALFORMED_ACL_DEF;
5003 if (lines[4][9] == 'y') {
5004 *pallow_guest = True;
5008 if (snum != -1 && (strcmp(sharepath, ServicePtrs[snum]->szPath) == 0)) {
5009 /* Path didn't change, no checks needed. */
5010 return USERSHARE_OK;
5013 /* The path *must* be absolute. */
5014 if (sharepath[0] != '/') {
5015 DEBUG(2,("parse_usershare_file: share %s: path %s is not an absolute path.\n",
5016 servicename, sharepath));
5017 return USERSHARE_PATH_NOT_ABSOLUTE;
5020 /* If there is a usershare prefix deny list ensure one of these paths
5021 doesn't match the start of the user given path. */
5022 if (prefixdenylist) {
5024 for ( i=0; prefixdenylist[i]; i++ ) {
5025 DEBUG(10,("parse_usershare_file: share %s : checking prefixdenylist[%d]='%s' against %s\n",
5026 servicename, i, prefixdenylist[i], sharepath ));
5027 if (memcmp( sharepath, prefixdenylist[i], strlen(prefixdenylist[i])) == 0) {
5028 DEBUG(2,("parse_usershare_file: share %s path %s starts with one of the "
5029 "usershare prefix deny list entries.\n",
5030 servicename, sharepath));
5031 return USERSHARE_PATH_IS_DENIED;
5036 /* If there is a usershare prefix allow list ensure one of these paths
5037 does match the start of the user given path. */
5039 if (prefixallowlist) {
5041 for ( i=0; prefixallowlist[i]; i++ ) {
5042 DEBUG(10,("parse_usershare_file: share %s checking prefixallowlist[%d]='%s' against %s\n",
5043 servicename, i, prefixallowlist[i], sharepath ));
5044 if (memcmp( sharepath, prefixallowlist[i], strlen(prefixallowlist[i])) == 0) {
5048 if (prefixallowlist[i] == NULL) {
5049 DEBUG(2,("parse_usershare_file: share %s path %s doesn't start with one of the "
5050 "usershare prefix allow list entries.\n",
5051 servicename, sharepath));
5052 return USERSHARE_PATH_NOT_ALLOWED;
5056 /* Ensure this is pointing to a directory. */
5057 dp = sys_opendir(sharepath);
5060 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5061 servicename, sharepath));
5062 return USERSHARE_PATH_NOT_DIRECTORY;
5065 /* Ensure the owner of the usershare file has permission to share
5068 if (sys_stat(sharepath, &sbuf) == -1) {
5069 DEBUG(2,("parse_usershare_file: share %s : stat failed on path %s. %s\n",
5070 servicename, sharepath, strerror(errno) ));
5072 return USERSHARE_POSIX_ERR;
5077 if (!S_ISDIR(sbuf.st_mode)) {
5078 DEBUG(2,("parse_usershare_file: share %s path %s is not a directory.\n",
5079 servicename, sharepath ));
5080 return USERSHARE_PATH_NOT_DIRECTORY;
5083 /* Check if sharing is restricted to owner-only. */
5084 /* psbuf is the stat of the usershare definition file,
5085 sbuf is the stat of the target directory to be shared. */
5087 if (lp_usershare_owner_only()) {
5088 /* root can share anything. */
5089 if ((psbuf->st_uid != 0) && (sbuf.st_uid != psbuf->st_uid)) {
5090 return USERSHARE_PATH_NOT_ALLOWED;
5094 return USERSHARE_OK;
5097 /***************************************************************************
5098 Deal with a usershare file.
5101 -1 - Bad name, invalid contents.
5102 - service name already existed and not a usershare, problem
5103 with permissions to share directory etc.
5104 ***************************************************************************/
5106 static int process_usershare_file(const char *dir_name, const char *file_name, int snum_template)
5108 SMB_STRUCT_STAT sbuf;
5109 SMB_STRUCT_STAT lsbuf;
5113 fstring service_name;
5114 char **lines = NULL;
5118 TALLOC_CTX *ctx = NULL;
5119 SEC_DESC *psd = NULL;
5120 BOOL guest_ok = False;
5122 /* Ensure share name doesn't contain invalid characters. */
5123 if (!validate_net_name(file_name, INVALID_SHARENAME_CHARS, strlen(file_name))) {
5124 DEBUG(0,("process_usershare_file: share name %s contains "
5125 "invalid characters (any of %s)\n",
5126 file_name, INVALID_SHARENAME_CHARS ));
5130 fstrcpy(service_name, file_name);
5132 pstrcpy(fname, dir_name);
5133 pstrcat(fname, "/");
5134 pstrcat(fname, file_name);
5136 /* Minimize the race condition by doing an lstat before we
5137 open and fstat. Ensure this isn't a symlink link. */
5139 if (sys_lstat(fname, &lsbuf) != 0) {
5140 DEBUG(0,("process_usershare_file: stat of %s failed. %s\n",
5141 fname, strerror(errno) ));
5145 /* This must be a regular file, not a symlink, directory or
5146 other strange filetype. */
5147 if (!check_usershare_stat(fname, &lsbuf)) {
5151 /* See if there is already a servicenum for this name. */
5152 /* tdb_fetch_int32 returns -1 if not found. */
5153 iService = (int)tdb_fetch_int32(ServiceHash, canonicalize_servicename(service_name) );
5155 if (iService != -1 && ServicePtrs[iService]->usershare_last_mod == lsbuf.st_mtime) {
5156 /* Nothing changed - Mark valid and return. */
5157 DEBUG(10,("process_usershare_file: service %s not changed.\n",
5159 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5163 /* Try and open the file read only - no symlinks allowed. */
5165 fd = sys_open(fname, O_RDONLY|O_NOFOLLOW, 0);
5167 fd = sys_open(fname, O_RDONLY, 0);
5171 DEBUG(0,("process_usershare_file: unable to open %s. %s\n",
5172 fname, strerror(errno) ));
5176 /* Now fstat to be *SURE* it's a regular file. */
5177 if (sys_fstat(fd, &sbuf) != 0) {
5179 DEBUG(0,("process_usershare_file: fstat of %s failed. %s\n",
5180 fname, strerror(errno) ));
5184 /* Is it the same dev/inode as was lstated ? */
5185 if (lsbuf.st_dev != sbuf.st_dev || lsbuf.st_ino != sbuf.st_ino) {
5187 DEBUG(0,("process_usershare_file: fstat of %s is a different file from lstat. "
5188 "Symlink spoofing going on ?\n", fname ));
5192 /* This must be a regular file, not a symlink, directory or
5193 other strange filetype. */
5194 if (!check_usershare_stat(fname, &sbuf)) {
5198 lines = fd_lines_load(fd, &numlines, MAX_USERSHARE_FILE_SIZE);
5201 if (lines == NULL) {
5202 DEBUG(0,("process_usershare_file: loading file %s owned by %u failed.\n",
5203 fname, (unsigned int)sbuf.st_uid ));
5207 /* Should we allow printers to be shared... ? */
5208 ctx = talloc_init("usershare_sd_xctx");
5210 file_lines_free(lines);
5214 if (parse_usershare_file(ctx, &sbuf, service_name,
5215 iService, lines, numlines, sharepath,
5216 comment, &psd, &guest_ok) != USERSHARE_OK) {
5217 talloc_destroy(ctx);
5218 file_lines_free(lines);
5222 file_lines_free(lines);
5224 /* Everything ok - add the service possibly using a template. */
5226 const service *sp = &sDefault;
5227 if (snum_template != -1) {
5228 sp = ServicePtrs[snum_template];
5231 if ((iService = add_a_service(sp, service_name)) < 0) {
5232 DEBUG(0, ("process_usershare_file: Failed to add "
5233 "new service %s\n", service_name));
5234 talloc_destroy(ctx);
5238 /* Read only is controlled by usershare ACL below. */
5239 ServicePtrs[iService]->bRead_only = False;
5242 /* Write the ACL of the new/modified share. */
5243 if (!set_share_security(service_name, psd)) {
5244 DEBUG(0, ("process_usershare_file: Failed to set share "
5245 "security for user share %s\n",
5247 lp_remove_service(iService);
5248 talloc_destroy(ctx);
5252 talloc_destroy(ctx);
5254 /* If from a template it may be marked invalid. */
5255 ServicePtrs[iService]->valid = True;
5257 /* Set the service as a valid usershare. */
5258 ServicePtrs[iService]->usershare = USERSHARE_VALID;
5260 /* Set guest access. */
5261 if (lp_usershare_allow_guests()) {
5262 ServicePtrs[iService]->bGuest_ok = guest_ok;
5265 /* And note when it was loaded. */
5266 ServicePtrs[iService]->usershare_last_mod = sbuf.st_mtime;
5267 string_set(&ServicePtrs[iService]->szPath, sharepath);
5268 string_set(&ServicePtrs[iService]->comment, comment);
5273 /***************************************************************************
5274 Checks if a usershare entry has been modified since last load.
5275 ***************************************************************************/
5277 static BOOL usershare_exists(int iService, time_t *last_mod)
5279 SMB_STRUCT_STAT lsbuf;
5280 const char *usersharepath = Globals.szUsersharePath;
5283 pstrcpy(fname, usersharepath);
5284 pstrcat(fname, "/");
5285 pstrcat(fname, ServicePtrs[iService]->szService);
5287 if (sys_lstat(fname, &lsbuf) != 0) {
5291 if (!S_ISREG(lsbuf.st_mode)) {
5295 *last_mod = lsbuf.st_mtime;
5299 /***************************************************************************
5300 Load a usershare service by name. Returns a valid servicenumber or -1.
5301 ***************************************************************************/
5303 int load_usershare_service(const char *servicename)
5305 SMB_STRUCT_STAT sbuf;
5306 const char *usersharepath = Globals.szUsersharePath;
5307 int max_user_shares = Globals.iUsershareMaxShares;
5308 int snum_template = -1;
5310 if (*usersharepath == 0 || max_user_shares == 0) {
5314 if (sys_stat(usersharepath, &sbuf) != 0) {
5315 DEBUG(0,("load_usershare_service: stat of %s failed. %s\n",
5316 usersharepath, strerror(errno) ));
5320 if (!S_ISDIR(sbuf.st_mode)) {
5321 DEBUG(0,("load_usershare_service: %s is not a directory.\n",
5327 * This directory must be owned by root, and have the 't' bit set.
5328 * It also must not be writable by "other".
5332 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5334 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5336 DEBUG(0,("load_usershare_service: directory %s is not owned by root "
5337 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5342 /* Ensure the template share exists if it's set. */
5343 if (Globals.szUsershareTemplateShare[0]) {
5344 /* We can't use lp_servicenumber here as we are recommending that
5345 template shares have -valid=False set. */
5346 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5347 if (ServicePtrs[snum_template]->szService &&
5348 strequal(ServicePtrs[snum_template]->szService,
5349 Globals.szUsershareTemplateShare)) {
5354 if (snum_template == -1) {
5355 DEBUG(0,("load_usershare_service: usershare template share %s "
5356 "does not exist.\n",
5357 Globals.szUsershareTemplateShare ));
5362 return process_usershare_file(usersharepath, servicename, snum_template);
5365 /***************************************************************************
5366 Load all user defined shares from the user share directory.
5367 We only do this if we're enumerating the share list.
5368 This is the function that can delete usershares that have
5370 ***************************************************************************/
5372 int load_usershare_shares(void)
5375 SMB_STRUCT_STAT sbuf;
5376 SMB_STRUCT_DIRENT *de;
5377 int num_usershares = 0;
5378 int max_user_shares = Globals.iUsershareMaxShares;
5379 unsigned int num_dir_entries, num_bad_dir_entries, num_tmp_dir_entries;
5380 unsigned int allowed_bad_entries = ((2*max_user_shares)/10);
5381 unsigned int allowed_tmp_entries = ((2*max_user_shares)/10);
5383 int snum_template = -1;
5384 const char *usersharepath = Globals.szUsersharePath;
5385 int ret = lp_numservices();
5387 if (max_user_shares == 0 || *usersharepath == '\0') {
5388 return lp_numservices();
5391 if (sys_stat(usersharepath, &sbuf) != 0) {
5392 DEBUG(0,("load_usershare_shares: stat of %s failed. %s\n",
5393 usersharepath, strerror(errno) ));
5398 * This directory must be owned by root, and have the 't' bit set.
5399 * It also must not be writable by "other".
5403 if (sbuf.st_uid != 0 || !(sbuf.st_mode & S_ISVTX) || (sbuf.st_mode & S_IWOTH)) {
5405 if (sbuf.st_uid != 0 || (sbuf.st_mode & S_IWOTH)) {
5407 DEBUG(0,("load_usershare_shares: directory %s is not owned by root "
5408 "or does not have the sticky bit 't' set or is writable by anyone.\n",
5413 /* Ensure the template share exists if it's set. */
5414 if (Globals.szUsershareTemplateShare[0]) {
5415 /* We can't use lp_servicenumber here as we are recommending that
5416 template shares have -valid=False set. */
5417 for (snum_template = iNumServices - 1; snum_template >= 0; snum_template--) {
5418 if (ServicePtrs[snum_template]->szService &&
5419 strequal(ServicePtrs[snum_template]->szService,
5420 Globals.szUsershareTemplateShare)) {
5425 if (snum_template == -1) {
5426 DEBUG(0,("load_usershare_shares: usershare template share %s "
5427 "does not exist.\n",
5428 Globals.szUsershareTemplateShare ));
5433 /* Mark all existing usershares as pending delete. */
5434 for (iService = iNumServices - 1; iService >= 0; iService--) {
5435 if (VALID(iService) && ServicePtrs[iService]->usershare) {
5436 ServicePtrs[iService]->usershare = USERSHARE_PENDING_DELETE;
5440 dp = sys_opendir(usersharepath);
5442 DEBUG(0,("load_usershare_shares:: failed to open directory %s. %s\n",
5443 usersharepath, strerror(errno) ));
5447 for (num_dir_entries = 0, num_bad_dir_entries = 0, num_tmp_dir_entries = 0;
5448 (de = sys_readdir(dp));
5449 num_dir_entries++ ) {
5451 const char *n = de->d_name;
5453 /* Ignore . and .. */
5455 if ((n[1] == '\0') || (n[1] == '.' && n[2] == '\0')) {
5461 /* Temporary file used when creating a share. */
5462 num_tmp_dir_entries++;
5465 /* Allow 20% tmp entries. */
5466 if (num_tmp_dir_entries > allowed_tmp_entries) {
5467 DEBUG(0,("load_usershare_shares: too many temp entries (%u) "
5468 "in directory %s\n",
5469 num_tmp_dir_entries, usersharepath));
5473 r = process_usershare_file(usersharepath, n, snum_template);
5475 /* Update the services count. */
5477 if (num_usershares >= max_user_shares) {
5478 DEBUG(0,("load_usershare_shares: max user shares reached "
5479 "on file %s in directory %s\n",
5480 n, usersharepath ));
5483 } else if (r == -1) {
5484 num_bad_dir_entries++;
5487 /* Allow 20% bad entries. */
5488 if (num_bad_dir_entries > allowed_bad_entries) {
5489 DEBUG(0,("load_usershare_shares: too many bad entries (%u) "
5490 "in directory %s\n",
5491 num_bad_dir_entries, usersharepath));
5495 /* Allow 20% bad entries. */
5496 if (num_dir_entries > max_user_shares + allowed_bad_entries) {
5497 DEBUG(0,("load_usershare_shares: too many total entries (%u) "
5498 "in directory %s\n",
5499 num_dir_entries, usersharepath));
5506 /* Sweep through and delete any non-refreshed usershares that are
5507 not currently in use. */
5508 for (iService = iNumServices - 1; iService >= 0; iService--) {
5509 if (VALID(iService) && (ServicePtrs[iService]->usershare == USERSHARE_PENDING_DELETE)) {
5510 if (conn_snum_used(iService)) {
5513 /* Remove from the share ACL db. */
5514 DEBUG(10,("load_usershare_shares: Removing deleted usershare %s\n",
5515 lp_servicename(iService) ));
5516 delete_share_security(snum2params_static(iService));
5517 free_service_byindex(iService);
5521 return lp_numservices();
5524 /********************************************************
5525 Destroy global resources allocated in this file
5526 ********************************************************/
5528 void gfree_loadparm(void)
5530 struct file_lists *f;
5531 struct file_lists *next;
5534 /* Free the file lists */
5539 SAFE_FREE( f->name );
5540 SAFE_FREE( f->subfname );
5545 /* Free resources allocated to services */
5547 for ( i = 0; i < iNumServices; i++ ) {
5549 free_service_byindex(i);
5553 SAFE_FREE( ServicePtrs );
5556 /* Now release all resources allocated to global
5557 parameters and the default service */
5559 for (i = 0; parm_table[i].label; i++)
5561 if ( parm_table[i].type == P_STRING
5562 || parm_table[i].type == P_USTRING )
5564 string_free( (char**)parm_table[i].ptr );
5566 else if (parm_table[i].type == P_LIST) {
5567 str_list_free( (char***)parm_table[i].ptr );
5572 /***************************************************************************
5573 Load the services array from the services file. Return True on success,
5575 ***************************************************************************/
5577 BOOL lp_load(const char *pszFname,
5581 BOOL initialize_globals)
5585 param_opt_struct *data, *pdata;
5587 pstrcpy(n2, pszFname);
5589 standard_sub_basic( get_current_username(), current_user_info.domain,
5592 add_to_file_list(pszFname, n2);
5596 DEBUG(3, ("lp_load: refreshing parameters\n"));
5598 bInGlobalSection = True;
5599 bGlobalOnly = global_only;
5601 init_globals(! initialize_globals);
5604 if (save_defaults) {
5609 if (Globals.param_opt != NULL) {
5610 data = Globals.param_opt;
5612 string_free(&data->key);
5613 string_free(&data->value);
5614 str_list_free(&data->list);
5619 Globals.param_opt = NULL;
5622 /* We get sections first, so have to start 'behind' to make up */
5624 bRetval = pm_process(n2, do_section, do_parameter);
5626 /* finish up the last section */
5627 DEBUG(4, ("pm_process() returned %s\n", BOOLSTR(bRetval)));
5629 if (iServiceIndex >= 0)
5630 bRetval = service_ok(iServiceIndex);
5632 lp_add_auto_services(lp_auto_services());
5635 /* When 'restrict anonymous = 2' guest connections to ipc$
5637 lp_add_ipc("IPC$", (lp_restrict_anonymous() < 2));
5638 if ( lp_enable_asu_support() )
5639 lp_add_ipc("ADMIN$", False);
5643 set_default_server_announce_type();
5644 set_allowed_client_auth();
5648 /* Now we check bWINSsupport and set szWINSserver to 127.0.0.1 */
5649 /* if bWINSsupport is true and we are in the client */
5650 if (in_client && Globals.bWINSsupport) {
5651 lp_do_parameter(GLOBAL_SECTION_SNUM, "wins server", "127.0.0.1");
5659 /***************************************************************************
5660 Reset the max number of services.
5661 ***************************************************************************/
5663 void lp_resetnumservices(void)
5668 /***************************************************************************
5669 Return the max number of services.
5670 ***************************************************************************/
5672 int lp_numservices(void)
5674 return (iNumServices);
5677 /***************************************************************************
5678 Display the contents of the services array in human-readable form.
5679 ***************************************************************************/
5681 void lp_dump(FILE *f, BOOL show_defaults, int maxtoprint)
5686 defaults_saved = False;
5690 dump_a_service(&sDefault, f);
5692 for (iService = 0; iService < maxtoprint; iService++) {
5694 lp_dump_one(f, show_defaults, iService);
5698 /***************************************************************************
5699 Display the contents of one service in human-readable form.
5700 ***************************************************************************/
5702 void lp_dump_one(FILE * f, BOOL show_defaults, int snum)
5705 if (ServicePtrs[snum]->szService[0] == '\0')
5707 dump_a_service(ServicePtrs[snum], f);
5711 /***************************************************************************
5712 Return the number of the service with the given name, or -1 if it doesn't
5713 exist. Note that this is a DIFFERENT ANIMAL from the internal function
5714 getservicebyname()! This works ONLY if all services have been loaded, and
5715 does not copy the found service.
5716 ***************************************************************************/
5718 int lp_servicenumber(const char *pszServiceName)
5721 fstring serviceName;
5723 if (!pszServiceName) {
5724 return GLOBAL_SECTION_SNUM;
5727 for (iService = iNumServices - 1; iService >= 0; iService--) {
5728 if (VALID(iService) && ServicePtrs[iService]->szService) {
5730 * The substitution here is used to support %U is
5733 fstrcpy(serviceName, ServicePtrs[iService]->szService);
5734 standard_sub_basic(get_current_username(),
5735 current_user_info.domain,
5736 serviceName,sizeof(serviceName));
5737 if (strequal(serviceName, pszServiceName)) {
5743 if (iService >= 0 && ServicePtrs[iService]->usershare == USERSHARE_VALID) {
5746 if (!usershare_exists(iService, &last_mod)) {
5747 /* Remove the share security tdb entry for it. */
5748 delete_share_security(snum2params_static(iService));
5749 /* Remove it from the array. */
5750 free_service_byindex(iService);
5751 /* Doesn't exist anymore. */
5752 return GLOBAL_SECTION_SNUM;
5755 /* Has it been modified ? If so delete and reload. */
5756 if (ServicePtrs[iService]->usershare_last_mod < last_mod) {
5757 /* Remove it from the array. */
5758 free_service_byindex(iService);
5759 /* and now reload it. */
5760 iService = load_usershare_service(pszServiceName);
5765 DEBUG(7,("lp_servicenumber: couldn't find %s\n", pszServiceName));
5766 return GLOBAL_SECTION_SNUM;
5772 BOOL share_defined(const char *service_name)
5774 return (lp_servicenumber(service_name) != -1);
5777 struct share_params *get_share_params(TALLOC_CTX *mem_ctx,
5778 const char *sharename)
5780 struct share_params *result;
5784 if (!(sname = SMB_STRDUP(sharename))) {
5788 snum = find_service(sname);
5795 if (!(result = TALLOC_P(mem_ctx, struct share_params))) {
5796 DEBUG(0, ("talloc failed\n"));
5800 result->service = snum;
5804 struct share_iterator *share_list_all(TALLOC_CTX *mem_ctx)
5806 struct share_iterator *result;
5808 if (!(result = TALLOC_P(mem_ctx, struct share_iterator))) {
5809 DEBUG(0, ("talloc failed\n"));
5813 result->next_id = 0;
5817 struct share_params *next_share(struct share_iterator *list)
5819 struct share_params *result;
5821 while (!lp_snum_ok(list->next_id) &&
5822 (list->next_id < lp_numservices())) {
5826 if (list->next_id >= lp_numservices()) {
5830 if (!(result = TALLOC_P(list, struct share_params))) {
5831 DEBUG(0, ("talloc failed\n"));
5835 result->service = list->next_id;
5840 struct share_params *next_printer(struct share_iterator *list)
5842 struct share_params *result;
5844 while ((result = next_share(list)) != NULL) {
5845 if (lp_print_ok(result->service)) {
5853 * This is a hack for a transition period until we transformed all code from
5854 * service numbers to struct share_params.
5857 struct share_params *snum2params_static(int snum)
5859 static struct share_params result;
5860 result.service = snum;
5864 /*******************************************************************
5865 A useful volume label function.
5866 ********************************************************************/
5868 const char *volume_label(int snum)
5871 const char *label = lp_volume(snum);
5873 label = lp_servicename(snum);
5876 /* This returns a 33 byte guarenteed null terminated string. */
5877 ret = talloc_strndup(talloc_tos(), label, 32);
5884 /*******************************************************************
5885 Set the server type we will announce as via nmbd.
5886 ********************************************************************/
5888 static void set_default_server_announce_type(void)
5890 default_server_announce = 0;
5891 default_server_announce |= SV_TYPE_WORKSTATION;
5892 default_server_announce |= SV_TYPE_SERVER;
5893 default_server_announce |= SV_TYPE_SERVER_UNIX;
5895 /* note that the flag should be set only if we have a
5896 printer service but nmbd doesn't actually load the
5897 services so we can't tell --jerry */
5899 default_server_announce |= SV_TYPE_PRINTQ_SERVER;
5901 switch (lp_announce_as()) {
5902 case ANNOUNCE_AS_NT_SERVER:
5903 default_server_announce |= SV_TYPE_SERVER_NT;
5904 /* fall through... */
5905 case ANNOUNCE_AS_NT_WORKSTATION:
5906 default_server_announce |= SV_TYPE_NT;
5908 case ANNOUNCE_AS_WIN95:
5909 default_server_announce |= SV_TYPE_WIN95_PLUS;
5911 case ANNOUNCE_AS_WFW:
5912 default_server_announce |= SV_TYPE_WFW;
5918 switch (lp_server_role()) {
5919 case ROLE_DOMAIN_MEMBER:
5920 default_server_announce |= SV_TYPE_DOMAIN_MEMBER;
5922 case ROLE_DOMAIN_PDC:
5923 default_server_announce |= SV_TYPE_DOMAIN_CTRL;
5925 case ROLE_DOMAIN_BDC:
5926 default_server_announce |= SV_TYPE_DOMAIN_BAKCTRL;
5928 case ROLE_STANDALONE:
5932 if (lp_time_server())
5933 default_server_announce |= SV_TYPE_TIME_SOURCE;
5935 if (lp_host_msdfs())
5936 default_server_announce |= SV_TYPE_DFS_SERVER;
5939 /***********************************************************
5940 returns role of Samba server
5941 ************************************************************/
5943 int lp_server_role(void)
5948 /***********************************************************
5949 If we are PDC then prefer us as DMB
5950 ************************************************************/
5952 BOOL lp_domain_master(void)
5954 if (Globals.bDomainMaster == Auto)
5955 return (lp_server_role() == ROLE_DOMAIN_PDC);
5957 return Globals.bDomainMaster;
5960 /***********************************************************
5961 If we are DMB then prefer us as LMB
5962 ************************************************************/
5964 BOOL lp_preferred_master(void)
5966 if (Globals.bPreferredMaster == Auto)
5967 return (lp_local_master() && lp_domain_master());
5969 return Globals.bPreferredMaster;
5972 /*******************************************************************
5974 ********************************************************************/
5976 void lp_remove_service(int snum)
5978 ServicePtrs[snum]->valid = False;
5979 invalid_services[num_invalid_services++] = snum;
5982 /*******************************************************************
5984 ********************************************************************/
5986 void lp_copy_service(int snum, const char *new_name)
5988 do_section(new_name);
5990 snum = lp_servicenumber(new_name);
5992 lp_do_parameter(snum, "copy", lp_servicename(snum));
5997 /*******************************************************************
5998 Get the default server type we will announce as via nmbd.
5999 ********************************************************************/
6001 int lp_default_server_announce(void)
6003 return default_server_announce;
6006 /*******************************************************************
6007 Split the announce version into major and minor numbers.
6008 ********************************************************************/
6010 int lp_major_announce_version(void)
6012 static BOOL got_major = False;
6013 static int major_version = DEFAULT_MAJOR_VERSION;
6018 return major_version;
6021 if ((vers = lp_announce_version()) == NULL)
6022 return major_version;
6024 if ((p = strchr_m(vers, '.')) == 0)
6025 return major_version;
6028 major_version = atoi(vers);
6029 return major_version;
6032 int lp_minor_announce_version(void)
6034 static BOOL got_minor = False;
6035 static int minor_version = DEFAULT_MINOR_VERSION;
6040 return minor_version;
6043 if ((vers = lp_announce_version()) == NULL)
6044 return minor_version;
6046 if ((p = strchr_m(vers, '.')) == 0)
6047 return minor_version;
6050 minor_version = atoi(p);
6051 return minor_version;
6054 /***********************************************************
6055 Set the global name resolution order (used in smbclient).
6056 ************************************************************/
6058 void lp_set_name_resolve_order(const char *new_order)
6060 string_set(&Globals.szNameResolveOrder, new_order);
6063 const char *lp_printername(int snum)
6065 const char *ret = _lp_printername(snum);
6066 if (ret == NULL || (ret != NULL && *ret == '\0'))
6067 ret = lp_const_servicename(snum);
6073 /***********************************************************
6074 Allow daemons such as winbindd to fix their logfile name.
6075 ************************************************************/
6077 void lp_set_logfile(const char *name)
6079 string_set(&Globals.szLogFile, name);
6080 pstrcpy(debugf, name);
6083 /*******************************************************************
6084 Return the max print jobs per queue.
6085 ********************************************************************/
6087 int lp_maxprintjobs(int snum)
6089 int maxjobs = LP_SNUM_OK(snum) ? ServicePtrs[snum]->iMaxPrintJobs : sDefault.iMaxPrintJobs;
6090 if (maxjobs <= 0 || maxjobs >= PRINT_MAX_JOBID)
6091 maxjobs = PRINT_MAX_JOBID - 1;
6096 const char *lp_printcapname(void)
6098 if ((Globals.szPrintcapname != NULL) &&
6099 (Globals.szPrintcapname[0] != '\0'))
6100 return Globals.szPrintcapname;
6102 if (sDefault.iPrinting == PRINT_CUPS) {
6110 if (sDefault.iPrinting == PRINT_BSD)
6111 return "/etc/printcap";
6113 return PRINTCAP_NAME;
6116 /*******************************************************************
6117 Ensure we don't use sendfile if server smb signing is active.
6118 ********************************************************************/
6120 static uint32 spoolss_state;
6122 BOOL lp_disable_spoolss( void )
6124 if ( spoolss_state == SVCCTL_STATE_UNKNOWN )
6125 spoolss_state = _lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6127 return spoolss_state == SVCCTL_STOPPED ? True : False;
6130 void lp_set_spoolss_state( uint32 state )
6132 SMB_ASSERT( (state == SVCCTL_STOPPED) || (state == SVCCTL_RUNNING) );
6134 spoolss_state = state;
6137 uint32 lp_get_spoolss_state( void )
6139 return lp_disable_spoolss() ? SVCCTL_STOPPED : SVCCTL_RUNNING;
6142 /*******************************************************************
6143 Ensure we don't use sendfile if server smb signing is active.
6144 ********************************************************************/
6146 BOOL lp_use_sendfile(int snum)
6148 /* Using sendfile blows the brains out of any DOS or Win9x TCP stack... JRA. */
6149 if (Protocol < PROTOCOL_NT1) {
6152 return (_lp_use_sendfile(snum) && (get_remote_arch() != RA_WIN95) && !srv_is_signing_active());
6155 /*******************************************************************
6156 Turn off sendfile if we find the underlying OS doesn't support it.
6157 ********************************************************************/
6159 void set_use_sendfile(int snum, BOOL val)
6161 if (LP_SNUM_OK(snum))
6162 ServicePtrs[snum]->bUseSendfile = val;
6164 sDefault.bUseSendfile = val;
6167 /*******************************************************************
6168 Turn off storing DOS attributes if this share doesn't support it.
6169 ********************************************************************/
6171 void set_store_dos_attributes(int snum, BOOL val)
6173 if (!LP_SNUM_OK(snum))
6175 ServicePtrs[(snum)]->bStoreDosAttributes = val;
6178 void lp_set_mangling_method(const char *new_method)
6180 string_set(&Globals.szManglingMethod, new_method);
6183 /*******************************************************************
6184 Global state for POSIX pathname processing.
6185 ********************************************************************/
6187 static BOOL posix_pathnames;
6189 BOOL lp_posix_pathnames(void)
6191 return posix_pathnames;
6194 /*******************************************************************
6195 Change everything needed to ensure POSIX pathname processing (currently
6197 ********************************************************************/
6199 void lp_set_posix_pathnames(void)
6201 posix_pathnames = True;
6204 /*******************************************************************
6205 Global state for POSIX lock processing - CIFS unix extensions.
6206 ********************************************************************/
6208 BOOL posix_default_lock_was_set;
6209 static enum brl_flavour posix_cifsx_locktype; /* By default 0 == WINDOWS_LOCK */
6211 enum brl_flavour lp_posix_cifsu_locktype(files_struct *fsp)
6213 if (posix_default_lock_was_set) {
6214 return posix_cifsx_locktype;
6216 return fsp->posix_open ? POSIX_LOCK : WINDOWS_LOCK;
6220 /*******************************************************************
6221 ********************************************************************/
6223 void lp_set_posix_default_cifsx_readwrite_locktype(enum brl_flavour val)
6225 posix_default_lock_was_set = True;
6226 posix_cifsx_locktype = val;