2 Unix SMB/CIFS implementation.
3 service (connection) opening and closing
4 Copyright (C) Andrew Tridgell 1992-1998
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 extern userdom_struct current_user_info;
24 static bool canonicalize_connect_path(connection_struct *conn)
26 #ifdef REALPATH_TAKES_NULL
28 char *resolved_name = SMB_VFS_REALPATH(conn,conn->connectpath,NULL);
32 ret = set_conn_connectpath(conn,resolved_name);
33 SAFE_FREE(resolved_name);
36 char resolved_name_buf[PATH_MAX+1];
37 char *resolved_name = SMB_VFS_REALPATH(conn,conn->connectpath,resolved_name_buf);
41 return set_conn_connectpath(conn,resolved_name);
42 #endif /* REALPATH_TAKES_NULL */
45 /****************************************************************************
46 Ensure when setting connectpath it is a canonicalized (no ./ // or ../)
47 absolute path stating in / and not ending in /.
48 Observent people will notice a similarity between this and check_path_syntax :-).
49 ****************************************************************************/
51 bool set_conn_connectpath(connection_struct *conn, const char *connectpath)
55 const char *s = connectpath;
56 bool start_of_name_component = true;
58 destname = SMB_STRDUP(connectpath);
64 *d++ = '/'; /* Always start with root. */
68 /* Eat multiple '/' */
72 if ((d > destname + 1) && (*s != '\0')) {
75 start_of_name_component = True;
79 if (start_of_name_component) {
80 if ((s[0] == '.') && (s[1] == '.') && (s[2] == '/' || s[2] == '\0')) {
81 /* Uh oh - "/../" or "/..\0" ! */
83 /* Go past the ../ or .. */
87 s += 2; /* Go past the .. */
90 /* If we just added a '/' - delete it */
91 if ((d > destname) && (*(d-1) == '/')) {
96 /* Are we at the start ? Can't go back further if so. */
98 *d++ = '/'; /* Can't delete root */
101 /* Go back one level... */
102 /* Decrement d first as d points to the *next* char to write into. */
103 for (d--; d > destname; d--) {
108 /* We're still at the start of a name component, just the previous one. */
110 } else if ((s[0] == '.') && ((s[1] == '\0') || s[1] == '/')) {
111 /* Component of pathname can't be "." only - skip the '.' . */
125 /* Get the size of the next MB character. */
126 next_codepoint(s,&siz);
147 start_of_name_component = false;
151 /* And must not end in '/' */
152 if (d > destname + 1 && (*(d-1) == '/')) {
156 DEBUG(10,("set_conn_connectpath: service %s, connectpath = %s\n",
157 lp_servicename(SNUM(conn)), destname ));
159 string_set(&conn->connectpath, destname);
164 /****************************************************************************
165 Load parameters specific to a connection/service.
166 ****************************************************************************/
168 bool set_current_service(connection_struct *conn, uint16 flags, bool do_chdir)
170 static connection_struct *last_conn;
171 static uint16 last_flags;
179 conn->lastused_count++;
184 vfs_ChDir(conn,conn->connectpath) != 0 &&
185 vfs_ChDir(conn,conn->origpath) != 0) {
186 DEBUG(0,("chdir (%s) failed\n",
191 if ((conn == last_conn) && (last_flags == flags)) {
198 /* Obey the client case sensitivity requests - only for clients that support it. */
199 switch (lp_casesensitive(snum)) {
202 /* We need this uglyness due to DOS/Win9x clients that lie about case insensitivity. */
203 enum remote_arch_types ra_type = get_remote_arch();
204 if ((ra_type != RA_SAMBA) && (ra_type != RA_CIFSFS)) {
205 /* Client can't support per-packet case sensitive pathnames. */
206 conn->case_sensitive = False;
208 conn->case_sensitive = !(flags & FLAG_CASELESS_PATHNAMES);
213 conn->case_sensitive = True;
216 conn->case_sensitive = False;
222 static int load_registry_service(const char *servicename)
224 struct registry_key *key;
230 struct registry_value *value;
234 if (!lp_registry_shares()) {
238 if (strequal(servicename, GLOBAL_NAME)) {
242 if (asprintf(&path, "%s\\%s", KEY_SMBCONF, servicename) == -1) {
246 err = reg_open_path(NULL, path, REG_KEY_READ, get_root_nt_token(),
250 if (!W_ERROR_IS_OK(err)) {
254 res = lp_add_service(servicename, -1);
260 W_ERROR_IS_OK(reg_enumvalue(key, key, i, &value_name, &value));
262 switch (value->type) {
265 if (asprintf(&tmp, "%d", value->v.dword) == -1) {
268 lp_do_parameter(res, value_name, tmp);
273 lp_do_parameter(res, value_name, value->v.sz.str);
277 /* Ignore all the rest */
281 TALLOC_FREE(value_name);
291 void load_registry_shares(void)
293 struct registry_key *key;
298 DEBUG(8, ("load_registry_shares()\n"));
299 if (!lp_registry_shares()) {
303 err = reg_open_path(NULL, KEY_SMBCONF, REG_KEY_READ,
304 get_root_nt_token(), &key);
305 if (!(W_ERROR_IS_OK(err))) {
309 for (i=0; W_ERROR_IS_OK(reg_enumkey(key, key, i, &name, NULL)); i++) {
310 load_registry_service(name);
318 /****************************************************************************
319 Add a home service. Returns the new service number or -1 if fail.
320 ****************************************************************************/
322 int add_home_service(const char *service, const char *username, const char *homedir)
326 if (!service || !homedir)
329 if ((iHomeService = lp_servicenumber(HOMES_NAME)) < 0) {
330 if ((iHomeService = load_registry_service(HOMES_NAME)) < 0) {
336 * If this is a winbindd provided username, remove
337 * the domain component before adding the service.
338 * Log a warning if the "path=" parameter does not
339 * include any macros.
343 const char *p = strchr(service,*lp_winbind_separator());
345 /* We only want the 'user' part of the string */
351 if (!lp_add_home(service, iHomeService, username, homedir)) {
355 return lp_servicenumber(service);
360 * Find a service entry.
362 * @param service is modified (to canonical form??)
365 int find_service(fstring service)
369 all_string_sub(service,"\\","/",0);
371 iService = lp_servicenumber(service);
373 /* now handle the special case of a home directory */
375 char *phome_dir = get_user_home_dir(talloc_tos(), service);
379 * Try mapping the servicename, it may
380 * be a Windows to unix mapped user name.
382 if(map_username(service))
383 phome_dir = get_user_home_dir(
384 talloc_tos(), service);
387 DEBUG(3,("checking for home directory %s gave %s\n",service,
388 phome_dir?phome_dir:"(NULL)"));
390 iService = add_home_service(service,service /* 'username' */, phome_dir);
393 /* If we still don't have a service, attempt to add it as a printer. */
397 if ((iPrinterService = lp_servicenumber(PRINTERS_NAME)) < 0) {
398 iPrinterService = load_registry_service(PRINTERS_NAME);
400 if (iPrinterService) {
401 DEBUG(3,("checking whether %s is a valid printer name...\n", service));
402 if (pcap_printername_ok(service)) {
403 DEBUG(3,("%s is a valid printer name\n", service));
404 DEBUG(3,("adding %s as a printer service\n", service));
405 lp_add_printer(service, iPrinterService);
406 iService = lp_servicenumber(service);
408 DEBUG(0,("failed to add %s as a printer service!\n", service));
411 DEBUG(3,("%s is not a valid printer name\n", service));
416 /* Check for default vfs service? Unsure whether to implement this */
421 iService = load_registry_service(service);
424 /* Is it a usershare service ? */
425 if (iService < 0 && *lp_usershare_path()) {
426 /* Ensure the name is canonicalized. */
428 iService = load_usershare_service(service);
431 /* just possibly it's a default service? */
433 char *pdefservice = lp_defaultservice();
434 if (pdefservice && *pdefservice && !strequal(pdefservice,service) && !strstr_m(service,"..")) {
436 * We need to do a local copy here as lp_defaultservice()
437 * returns one of the rotating lp_string buffers that
438 * could get overwritten by the recursive find_service() call
439 * below. Fix from Josef Hinteregger <joehtg@joehtg.co.at>.
441 char *defservice = SMB_STRDUP(pdefservice);
447 /* Disallow anything except explicit share names. */
448 if (strequal(defservice,HOMES_NAME) ||
449 strequal(defservice, PRINTERS_NAME) ||
450 strequal(defservice, "IPC$")) {
451 SAFE_FREE(defservice);
455 iService = find_service(defservice);
457 all_string_sub(service, "_","/",0);
458 iService = lp_add_service(service, iService);
460 SAFE_FREE(defservice);
465 if (!VALID_SNUM(iService)) {
466 DEBUG(0,("Invalid snum %d for %s\n",iService, service));
474 DEBUG(3,("find_service() failed to find service %s\n", service));
480 /****************************************************************************
481 do some basic sainity checks on the share.
482 This function modifies dev, ecode.
483 ****************************************************************************/
485 static NTSTATUS share_sanity_checks(int snum, fstring dev)
488 if (!lp_snum_ok(snum) ||
489 !check_access(smbd_server_fd(),
490 lp_hostsallow(snum), lp_hostsdeny(snum))) {
491 return NT_STATUS_ACCESS_DENIED;
494 if (dev[0] == '?' || !dev[0]) {
495 if (lp_print_ok(snum)) {
496 fstrcpy(dev,"LPT1:");
497 } else if (strequal(lp_fstype(snum), "IPC")) {
506 if (lp_print_ok(snum)) {
507 if (!strequal(dev, "LPT1:")) {
508 return NT_STATUS_BAD_DEVICE_TYPE;
510 } else if (strequal(lp_fstype(snum), "IPC")) {
511 if (!strequal(dev, "IPC")) {
512 return NT_STATUS_BAD_DEVICE_TYPE;
514 } else if (!strequal(dev, "A:")) {
515 return NT_STATUS_BAD_DEVICE_TYPE;
518 /* Behave as a printer if we are supposed to */
519 if (lp_print_ok(snum) && (strcmp(dev, "A:") == 0)) {
520 fstrcpy(dev, "LPT1:");
526 static NTSTATUS find_forced_user(connection_struct *conn, bool vuser_is_guest, fstring username)
528 int snum = conn->params->service;
529 char *fuser, *found_username;
532 if (!(fuser = talloc_string_sub(conn, lp_force_user(snum), "%S",
533 lp_servicename(snum)))) {
534 return NT_STATUS_NO_MEMORY;
537 result = create_token_from_username(conn, fuser, vuser_is_guest,
538 &conn->uid, &conn->gid, &found_username,
539 &conn->nt_user_token);
540 if (!NT_STATUS_IS_OK(result)) {
544 fstrcpy(username, found_username);
547 TALLOC_FREE(found_username);
552 * Go through lookup_name etc to find the force'd group.
554 * Create a new token from src_token, replacing the primary group sid with the
558 static NTSTATUS find_forced_group(bool force_user,
559 int snum, const char *username,
563 NTSTATUS result = NT_STATUS_NO_SUCH_GROUP;
564 TALLOC_CTX *frame = talloc_stackframe();
566 enum lsa_SidType type;
568 bool user_must_be_member = False;
571 ZERO_STRUCTP(pgroup_sid);
574 groupname = talloc_strdup(talloc_tos(), lp_force_group(snum));
575 if (groupname == NULL) {
576 DEBUG(1, ("talloc_strdup failed\n"));
577 result = NT_STATUS_NO_MEMORY;
581 if (groupname[0] == '+') {
582 user_must_be_member = True;
586 groupname = talloc_string_sub(talloc_tos(), groupname,
587 "%S", lp_servicename(snum));
589 if (!lookup_name_smbconf(talloc_tos(), groupname,
590 LOOKUP_NAME_ALL|LOOKUP_NAME_GROUP,
591 NULL, NULL, &group_sid, &type)) {
592 DEBUG(10, ("lookup_name_smbconf(%s) failed\n",
597 if ((type != SID_NAME_DOM_GRP) && (type != SID_NAME_ALIAS) &&
598 (type != SID_NAME_WKN_GRP)) {
599 DEBUG(10, ("%s is a %s, not a group\n", groupname,
600 sid_type_lookup(type)));
604 if (!sid_to_gid(&group_sid, &gid)) {
605 DEBUG(10, ("sid_to_gid(%s) for %s failed\n",
606 sid_string_dbg(&group_sid), groupname));
611 * If the user has been forced and the forced group starts with a '+',
612 * then we only set the group to be the forced group if the forced
613 * user is a member of that group. Otherwise, the meaning of the '+'
617 if (force_user && user_must_be_member) {
618 if (user_in_group_sid(username, &group_sid)) {
619 sid_copy(pgroup_sid, &group_sid);
621 DEBUG(3,("Forced group %s for member %s\n",
622 groupname, username));
624 DEBUG(0,("find_forced_group: forced user %s is not a member "
625 "of forced group %s. Disallowing access.\n",
626 username, groupname ));
627 result = NT_STATUS_MEMBER_NOT_IN_GROUP;
631 sid_copy(pgroup_sid, &group_sid);
633 DEBUG(3,("Forced group %s\n", groupname));
636 result = NT_STATUS_OK;
642 /****************************************************************************
643 Create an auth_serversupplied_info structure for a connection_struct
644 ****************************************************************************/
646 static NTSTATUS create_connection_server_info(TALLOC_CTX *mem_ctx, int snum,
647 struct auth_serversupplied_info *vuid_serverinfo,
649 struct auth_serversupplied_info **presult)
651 if (lp_guest_only(snum)) {
652 return make_server_info_guest(mem_ctx, presult);
655 if (vuid_serverinfo != NULL) {
657 struct auth_serversupplied_info *result;
660 * This is the normal security != share case where we have a
661 * valid vuid from the session setup. */
663 if (vuid_serverinfo->guest) {
664 if (!lp_guest_ok(snum)) {
665 DEBUG(2, ("guest user (from session setup) "
666 "not permitted to access this share "
667 "(%s)\n", lp_servicename(snum)));
668 return NT_STATUS_ACCESS_DENIED;
671 if (!user_ok_token(vuid_serverinfo->unix_name,
672 vuid_serverinfo->ptok, snum)) {
673 DEBUG(2, ("user '%s' (from session setup) not "
674 "permitted to access this share "
676 vuid_serverinfo->unix_name,
677 lp_servicename(snum)));
678 return NT_STATUS_ACCESS_DENIED;
682 result = copy_serverinfo(mem_ctx, vuid_serverinfo);
683 if (result == NULL) {
684 return NT_STATUS_NO_MEMORY;
691 if (lp_security() == SEC_SHARE) {
696 /* add the sharename as a possible user name if we
697 are in share mode security */
699 add_session_user(lp_servicename(snum));
701 /* shall we let them in? */
703 if (!authorise_login(snum,user,password,&guest)) {
704 DEBUG( 2, ( "Invalid username/password for [%s]\n",
705 lp_servicename(snum)) );
706 return NT_STATUS_WRONG_PASSWORD;
709 return make_serverinfo_from_username(mem_ctx, user, guest,
713 DEBUG(0, ("invalid VUID (vuser) but not in security=share\n"));
714 return NT_STATUS_ACCESS_DENIED;
718 /****************************************************************************
719 Make a connection, given the snum to connect to, and the vuser of the
720 connecting user if appropriate.
721 ****************************************************************************/
723 static connection_struct *make_connection_snum(int snum, user_struct *vuser,
728 struct passwd *pass = NULL;
730 connection_struct *conn;
735 char addr[INET6_ADDRSTRLEN];
736 bool on_err_call_dis_hook = false;
741 SET_STAT_INVALID(st);
743 if (NT_STATUS_IS_ERR(*pstatus = share_sanity_checks(snum, dev))) {
749 DEBUG(0,("Couldn't find free connection.\n"));
750 *pstatus = NT_STATUS_INSUFFICIENT_RESOURCES;
754 conn->params->service = snum;
755 conn->nt_user_token = NULL;
757 if (lp_guest_only(snum)) {
758 const char *guestname = lp_guestaccount();
759 char *found_username = NULL;
762 pass = getpwnam_alloc(talloc_tos(), guestname);
764 DEBUG(0,("make_connection_snum: Invalid guest "
765 "account %s??\n",guestname));
767 *pstatus = NT_STATUS_NO_SUCH_USER;
770 status = create_token_from_username(conn, pass->pw_name, True,
771 &conn->uid, &conn->gid,
773 &conn->nt_user_token);
774 if (!NT_STATUS_IS_OK(status)) {
780 fstrcpy(user, found_username);
781 string_set(&conn->user,user);
782 conn->force_user = True;
783 TALLOC_FREE(found_username);
785 DEBUG(3,("Guest only user %s\n",user));
787 if (vuser->server_info->guest) {
788 if (!lp_guest_ok(snum)) {
789 DEBUG(2, ("guest user (from session setup) "
790 "not permitted to access this share "
791 "(%s)\n", lp_servicename(snum)));
793 *pstatus = NT_STATUS_ACCESS_DENIED;
797 if (!user_ok_token(vuser->server_info->unix_name,
798 vuser->server_info->ptok, snum)) {
799 DEBUG(2, ("user '%s' (from session setup) not "
800 "permitted to access this share "
802 vuser->server_info->unix_name,
803 lp_servicename(snum)));
805 *pstatus = NT_STATUS_ACCESS_DENIED;
809 conn->vuid = vuser->vuid;
810 conn->uid = vuser->server_info->uid;
811 conn->gid = vuser->server_info->gid;
812 string_set(&conn->user,vuser->server_info->unix_name);
813 fstrcpy(user,vuser->server_info->unix_name);
814 guest = vuser->server_info->guest;
815 } else if (lp_security() == SEC_SHARE) {
817 char *found_username = NULL;
819 /* add it as a possible user name if we
820 are in share mode security */
821 add_session_user(lp_servicename(snum));
822 /* shall we let them in? */
823 if (!authorise_login(snum,user,password,&guest)) {
824 DEBUG( 2, ( "Invalid username/password for [%s]\n",
825 lp_servicename(snum)) );
827 *pstatus = NT_STATUS_WRONG_PASSWORD;
830 pass = Get_Pwnam_alloc(talloc_tos(), user);
831 status2 = create_token_from_username(conn, pass->pw_name, True,
832 &conn->uid, &conn->gid,
834 &conn->nt_user_token);
836 if (!NT_STATUS_IS_OK(status2)) {
841 fstrcpy(user, found_username);
842 string_set(&conn->user,user);
843 TALLOC_FREE(found_username);
844 conn->force_user = True;
846 DEBUG(0, ("invalid VUID (vuser) but not in security=share\n"));
848 *pstatus = NT_STATUS_ACCESS_DENIED;
852 add_session_user(user);
854 safe_strcpy(conn->client_address,
855 client_addr(get_client_fd(),addr,sizeof(addr)),
856 sizeof(conn->client_address)-1);
857 conn->num_files_open = 0;
858 conn->lastused = conn->lastused_count = time(NULL);
860 conn->printer = (strncmp(dev,"LPT",3) == 0);
861 conn->ipc = ( (strncmp(dev,"IPC",3) == 0) ||
862 ( lp_enable_asu_support() && strequal(dev,"ADMIN$")) );
865 /* Case options for the share. */
866 if (lp_casesensitive(snum) == Auto) {
867 /* We will be setting this per packet. Set to be case
868 * insensitive for now. */
869 conn->case_sensitive = False;
871 conn->case_sensitive = (bool)lp_casesensitive(snum);
874 conn->case_preserve = lp_preservecase(snum);
875 conn->short_case_preserve = lp_shortpreservecase(snum);
877 conn->encrypt_level = lp_smb_encrypt(snum);
879 conn->veto_list = NULL;
880 conn->hide_list = NULL;
881 conn->veto_oplock_list = NULL;
882 conn->aio_write_behind_list = NULL;
883 string_set(&conn->dirpath,"");
884 string_set(&conn->user,user);
886 conn->read_only = lp_readonly(SNUM(conn));
887 conn->admin_user = False;
890 * If force user is true, then store the given userid and the gid of
891 * the user we're forcing.
892 * For auxiliary groups see below.
895 if (*lp_force_user(snum)) {
896 status = find_forced_user(conn,
897 (vuser != NULL) && vuser->server_info->guest,
899 if (!NT_STATUS_IS_OK(status)) {
904 string_set(&conn->user,user);
905 conn->force_user = True;
906 DEBUG(3,("Forced user %s\n",user));
910 * If force group is true, then override
911 * any groupid stored for the connecting user.
914 if (*lp_force_group(snum)) {
917 status = find_forced_group(conn->force_user, snum, user,
918 &group_sid, &conn->gid);
919 if (!NT_STATUS_IS_OK(status)) {
925 if ((conn->nt_user_token == NULL) && (vuser != NULL)) {
927 /* Not force user and not security=share, but force
928 * group. vuser has a token to copy */
930 conn->nt_user_token = dup_nt_token(
931 NULL, vuser->server_info->ptok);
932 if (conn->nt_user_token == NULL) {
933 DEBUG(0, ("dup_nt_token failed\n"));
935 *pstatus = NT_STATUS_NO_MEMORY;
940 /* If conn->nt_user_token is still NULL, we have
941 * security=share. This means ignore the SID, as we had no
942 * vuser to copy from */
944 if (conn->nt_user_token != NULL) {
945 /* Overwrite the primary group sid */
946 sid_copy(&conn->nt_user_token->user_sids[1],
950 conn->force_group = True;
953 if (conn->nt_user_token != NULL) {
956 /* We have a share-specific token from force [user|group].
957 * This means we have to create the list of unix groups from
958 * the list of sids. */
963 for (i=0; i<conn->nt_user_token->num_sids; i++) {
965 DOM_SID *sid = &conn->nt_user_token->user_sids[i];
967 if (!sid_to_gid(sid, &gid)) {
968 DEBUG(10, ("Could not convert SID %s to gid, "
970 sid_string_dbg(sid)));
973 if (!add_gid_to_array_unique(conn, gid, &conn->groups,
975 DEBUG(0, ("add_gid_to_array_unique failed\n"));
977 *pstatus = NT_STATUS_NO_MEMORY;
984 char *s = talloc_sub_advanced(talloc_tos(),
985 lp_servicename(SNUM(conn)), conn->user,
986 conn->connectpath, conn->gid,
987 get_current_username(),
988 current_user_info.domain,
992 *pstatus = NT_STATUS_NO_MEMORY;
996 if (!set_conn_connectpath(conn,s)) {
999 *pstatus = NT_STATUS_NO_MEMORY;
1002 DEBUG(3,("Connect path is '%s' for service [%s]\n",s,
1003 lp_servicename(snum)));
1008 * New code to check if there's a share security descripter
1009 * added from NT server manager. This is done after the
1010 * smb.conf checks are done as we need a uid and token. JRA.
1015 bool can_write = False;
1016 NT_USER_TOKEN *token = conn->nt_user_token ?
1017 conn->nt_user_token :
1018 (vuser ? vuser->server_info->ptok : NULL);
1021 * I don't believe this can happen. But the
1022 * logic above is convoluted enough to confuse
1023 * automated checkers, so be sure. JRA.
1026 if (token == NULL) {
1027 DEBUG(0,("make_connection: connection to %s "
1028 "denied due to missing "
1030 lp_servicename(snum)));
1032 *pstatus = NT_STATUS_ACCESS_DENIED;
1036 can_write = share_access_check(token,
1037 lp_servicename(snum),
1041 if (!share_access_check(token,
1042 lp_servicename(snum),
1044 /* No access, read or write. */
1045 DEBUG(0,("make_connection: connection to %s "
1046 "denied due to security "
1048 lp_servicename(snum)));
1050 *pstatus = NT_STATUS_ACCESS_DENIED;
1053 conn->read_only = True;
1057 /* Initialise VFS function pointers */
1059 if (!smbd_vfs_init(conn)) {
1060 DEBUG(0, ("vfs_init failed for service %s\n",
1061 lp_servicename(snum)));
1063 *pstatus = NT_STATUS_BAD_NETWORK_NAME;
1068 * If widelinks are disallowed we need to canonicalise the connect
1069 * path here to ensure we don't have any symlinks in the
1070 * connectpath. We will be checking all paths on this connection are
1071 * below this directory. We must do this after the VFS init as we
1072 * depend on the realpath() pointer in the vfs table. JRA.
1074 if (!lp_widelinks(snum)) {
1075 if (!canonicalize_connect_path(conn)) {
1076 DEBUG(0, ("canonicalize_connect_path failed "
1077 "for service %s, path %s\n",
1078 lp_servicename(snum),
1079 conn->connectpath));
1081 *pstatus = NT_STATUS_BAD_NETWORK_NAME;
1086 if ((!conn->printer) && (!conn->ipc)) {
1087 conn->notify_ctx = notify_init(conn, server_id_self(),
1088 smbd_messaging_context(),
1089 smbd_event_context(),
1093 /* ROOT Activities: */
1095 * Enforce the max connections parameter.
1098 if ((lp_max_connections(snum) > 0)
1099 && (count_current_connections(lp_servicename(SNUM(conn)), True) >=
1100 lp_max_connections(snum))) {
1102 DEBUG(1, ("Max connections (%d) exceeded for %s\n",
1103 lp_max_connections(snum), lp_servicename(snum)));
1105 *pstatus = NT_STATUS_INSUFFICIENT_RESOURCES;
1110 * Get us an entry in the connections db
1112 if (!claim_connection(conn, lp_servicename(snum), 0)) {
1113 DEBUG(1, ("Could not store connections entry\n"));
1115 *pstatus = NT_STATUS_INTERNAL_DB_ERROR;
1119 /* Preexecs are done here as they might make the dir we are to ChDir
1121 /* execute any "root preexec = " line */
1122 if (*lp_rootpreexec(snum)) {
1123 char *cmd = talloc_sub_advanced(talloc_tos(),
1124 lp_servicename(SNUM(conn)), conn->user,
1125 conn->connectpath, conn->gid,
1126 get_current_username(),
1127 current_user_info.domain,
1128 lp_rootpreexec(snum));
1129 DEBUG(5,("cmd=%s\n",cmd));
1130 ret = smbrun(cmd,NULL);
1132 if (ret != 0 && lp_rootpreexec_close(snum)) {
1133 DEBUG(1,("root preexec gave %d - failing "
1134 "connection\n", ret));
1135 yield_connection(conn, lp_servicename(snum));
1137 *pstatus = NT_STATUS_ACCESS_DENIED;
1142 /* USER Activites: */
1143 if (!change_to_user(conn, conn->vuid)) {
1144 /* No point continuing if they fail the basic checks */
1145 DEBUG(0,("Can't become connected user!\n"));
1146 yield_connection(conn, lp_servicename(snum));
1148 *pstatus = NT_STATUS_LOGON_FAILURE;
1152 /* Remember that a different vuid can connect later without these
1155 /* Preexecs are done here as they might make the dir we are to ChDir
1158 /* execute any "preexec = " line */
1159 if (*lp_preexec(snum)) {
1160 char *cmd = talloc_sub_advanced(talloc_tos(),
1161 lp_servicename(SNUM(conn)), conn->user,
1162 conn->connectpath, conn->gid,
1163 get_current_username(),
1164 current_user_info.domain,
1166 ret = smbrun(cmd,NULL);
1168 if (ret != 0 && lp_preexec_close(snum)) {
1169 DEBUG(1,("preexec gave %d - failing connection\n",
1171 *pstatus = NT_STATUS_ACCESS_DENIED;
1176 #ifdef WITH_FAKE_KASERVER
1177 if (lp_afs_share(snum)) {
1182 /* Add veto/hide lists */
1183 if (!IS_IPC(conn) && !IS_PRINT(conn)) {
1184 set_namearray( &conn->veto_list, lp_veto_files(snum));
1185 set_namearray( &conn->hide_list, lp_hide_files(snum));
1186 set_namearray( &conn->veto_oplock_list, lp_veto_oplocks(snum));
1189 /* Invoke VFS make connection hook - do this before the VFS_STAT call
1190 to allow any filesystems needing user credentials to initialize
1193 if (SMB_VFS_CONNECT(conn, lp_servicename(snum), user) < 0) {
1194 DEBUG(0,("make_connection: VFS make connection failed!\n"));
1195 *pstatus = NT_STATUS_UNSUCCESSFUL;
1199 /* Any error exit after here needs to call the disconnect hook. */
1200 on_err_call_dis_hook = true;
1202 /* win2000 does not check the permissions on the directory
1203 during the tree connect, instead relying on permission
1204 check during individual operations. To match this behaviour
1205 I have disabled this chdir check (tridge) */
1206 /* the alternative is just to check the directory exists */
1207 if ((ret = SMB_VFS_STAT(conn, conn->connectpath, &st)) != 0 ||
1208 !S_ISDIR(st.st_mode)) {
1209 if (ret == 0 && !S_ISDIR(st.st_mode)) {
1210 DEBUG(0,("'%s' is not a directory, when connecting to "
1211 "[%s]\n", conn->connectpath,
1212 lp_servicename(snum)));
1214 DEBUG(0,("'%s' does not exist or permission denied "
1215 "when connecting to [%s] Error was %s\n",
1216 conn->connectpath, lp_servicename(snum),
1219 *pstatus = NT_STATUS_BAD_NETWORK_NAME;
1223 string_set(&conn->origpath,conn->connectpath);
1225 #if SOFTLINK_OPTIMISATION
1226 /* resolve any soft links early if possible */
1227 if (vfs_ChDir(conn,conn->connectpath) == 0) {
1228 TALLOC_CTX *ctx = talloc_tos();
1229 char *s = vfs_GetWd(ctx,s);
1231 *status = map_nt_error_from_unix(errno);
1234 if (!set_conn_connectpath(conn,s)) {
1235 *status = NT_STATUS_NO_MEMORY;
1238 vfs_ChDir(conn,conn->connectpath);
1242 /* Figure out the characteristics of the underlying filesystem. This
1243 * assumes that all the filesystem mounted withing a share path have
1244 * the same characteristics, which is likely but not guaranteed.
1247 conn->fs_capabilities = SMB_VFS_FS_CAPABILITIES(conn);
1250 * Print out the 'connected as' stuff here as we need
1251 * to know the effective uid and gid we will be using
1252 * (at least initially).
1255 if( DEBUGLVL( IS_IPC(conn) ? 3 : 1 ) ) {
1256 dbgtext( "%s (%s) ", get_remote_machine_name(),
1257 conn->client_address );
1258 dbgtext( "%s", srv_is_signing_active() ? "signed " : "");
1259 dbgtext( "connect to service %s ", lp_servicename(snum) );
1260 dbgtext( "initially as user %s ", user );
1261 dbgtext( "(uid=%d, gid=%d) ", (int)geteuid(), (int)getegid() );
1262 dbgtext( "(pid %d)\n", (int)sys_getpid() );
1265 /* we've finished with the user stuff - go back to root */
1266 change_to_root_user();
1271 change_to_root_user();
1272 if (on_err_call_dis_hook) {
1273 /* Call VFS disconnect hook */
1274 SMB_VFS_DISCONNECT(conn);
1276 yield_connection(conn, lp_servicename(snum));
1281 /***************************************************************************************
1282 Simple wrapper function for make_connection() to include a call to
1284 **************************************************************************************/
1286 connection_struct *make_connection_with_chdir(const char *service_in,
1288 const char *dev, uint16 vuid,
1291 connection_struct *conn = NULL;
1293 conn = make_connection(service_in, password, dev, vuid, status);
1296 * make_connection() does not change the directory for us any more
1297 * so we have to do it as a separate step --jerry
1300 if ( conn && vfs_ChDir(conn,conn->connectpath) != 0 ) {
1301 DEBUG(0,("move_driver_to_download_area: Can't change "
1302 "directory to %s for [print$] (%s)\n",
1303 conn->connectpath,strerror(errno)));
1304 yield_connection(conn, lp_servicename(SNUM(conn)));
1306 *status = NT_STATUS_UNSUCCESSFUL;
1313 /****************************************************************************
1314 Make a connection to a service.
1317 ****************************************************************************/
1319 connection_struct *make_connection(const char *service_in, DATA_BLOB password,
1320 const char *pdev, uint16 vuid,
1324 user_struct *vuser = NULL;
1328 char addr[INET6_ADDRSTRLEN];
1332 /* This must ONLY BE CALLED AS ROOT. As it exits this function as
1334 if (!non_root_mode() && (euid = geteuid()) != 0) {
1335 DEBUG(0,("make_connection: PANIC ERROR. Called as nonroot "
1336 "(%u)\n", (unsigned int)euid ));
1337 smb_panic("make_connection: PANIC ERROR. Called as nonroot\n");
1340 if (conn_num_open() > 2047) {
1341 *status = NT_STATUS_INSUFF_SERVER_RESOURCES;
1345 if(lp_security() != SEC_SHARE) {
1346 vuser = get_valid_user_struct(vuid);
1348 DEBUG(1,("make_connection: refusing to connect with "
1349 "no session setup\n"));
1350 *status = NT_STATUS_ACCESS_DENIED;
1355 /* Logic to try and connect to the correct [homes] share, preferably
1356 without too many getpwnam() lookups. This is particulary nasty for
1357 winbind usernames, where the share name isn't the same as unix
1360 The snum of the homes share is stored on the vuser at session setup
1364 if (strequal(service_in,HOMES_NAME)) {
1365 if(lp_security() != SEC_SHARE) {
1366 DATA_BLOB no_pw = data_blob_null;
1367 if (vuser->homes_snum == -1) {
1368 DEBUG(2, ("[homes] share not available for "
1369 "this user because it was not found "
1370 "or created at session setup "
1372 *status = NT_STATUS_BAD_NETWORK_NAME;
1375 DEBUG(5, ("making a connection to [homes] service "
1376 "created at session setup time\n"));
1377 return make_connection_snum(vuser->homes_snum,
1381 /* Security = share. Try with
1382 * current_user_info.smb_name as the username. */
1383 if (*current_user_info.smb_name) {
1384 fstring unix_username;
1385 fstrcpy(unix_username,
1386 current_user_info.smb_name);
1387 map_username(unix_username);
1388 snum = find_service(unix_username);
1391 DEBUG(5, ("making a connection to 'homes' "
1392 "service %s based on "
1393 "security=share\n", service_in));
1394 return make_connection_snum(snum, NULL,
1399 } else if ((lp_security() != SEC_SHARE) && (vuser->homes_snum != -1)
1400 && strequal(service_in,
1401 lp_servicename(vuser->homes_snum))) {
1402 DATA_BLOB no_pw = data_blob_null;
1403 DEBUG(5, ("making a connection to 'homes' service [%s] "
1404 "created at session setup time\n", service_in));
1405 return make_connection_snum(vuser->homes_snum,
1410 fstrcpy(service, service_in);
1412 strlower_m(service);
1414 snum = find_service(service);
1417 if (strequal(service,"IPC$") ||
1418 (lp_enable_asu_support() && strequal(service,"ADMIN$"))) {
1419 DEBUG(3,("refusing IPC connection to %s\n", service));
1420 *status = NT_STATUS_ACCESS_DENIED;
1424 DEBUG(0,("%s (%s) couldn't find service %s\n",
1425 get_remote_machine_name(),
1426 client_addr(get_client_fd(),addr,sizeof(addr)),
1428 *status = NT_STATUS_BAD_NETWORK_NAME;
1432 /* Handle non-Dfs clients attempting connections to msdfs proxy */
1433 if (lp_host_msdfs() && (*lp_msdfs_proxy(snum) != '\0')) {
1434 DEBUG(3, ("refusing connection to dfs proxy share '%s' "
1435 "(pointing to %s)\n",
1436 service, lp_msdfs_proxy(snum)));
1437 *status = NT_STATUS_BAD_NETWORK_NAME;
1441 DEBUG(5, ("making a connection to 'normal' service %s\n", service));
1443 return make_connection_snum(snum, vuser,
1448 /****************************************************************************
1450 ****************************************************************************/
1452 void close_cnum(connection_struct *conn, uint16 vuid)
1455 pipe_close_conn(conn);
1457 file_close_conn(conn);
1458 dptr_closecnum(conn);
1461 change_to_root_user();
1463 DEBUG(IS_IPC(conn)?3:1, ("%s (%s) closed connection to service %s\n",
1464 get_remote_machine_name(),
1465 conn->client_address,
1466 lp_servicename(SNUM(conn))));
1468 /* Call VFS disconnect hook */
1469 SMB_VFS_DISCONNECT(conn);
1471 yield_connection(conn, lp_servicename(SNUM(conn)));
1473 /* make sure we leave the directory available for unmount */
1474 vfs_ChDir(conn, "/");
1476 /* execute any "postexec = " line */
1477 if (*lp_postexec(SNUM(conn)) &&
1478 change_to_user(conn, vuid)) {
1479 char *cmd = talloc_sub_advanced(talloc_tos(),
1480 lp_servicename(SNUM(conn)), conn->user,
1481 conn->connectpath, conn->gid,
1482 get_current_username(),
1483 current_user_info.domain,
1484 lp_postexec(SNUM(conn)));
1487 change_to_root_user();
1490 change_to_root_user();
1491 /* execute any "root postexec = " line */
1492 if (*lp_rootpostexec(SNUM(conn))) {
1493 char *cmd = talloc_sub_advanced(talloc_tos(),
1494 lp_servicename(SNUM(conn)), conn->user,
1495 conn->connectpath, conn->gid,
1496 get_current_username(),
1497 current_user_info.domain,
1498 lp_rootpostexec(SNUM(conn)));
git.samba.org / samba.git / blob