2 Unix SMB/CIFS implementation.
3 service (connection) opening and closing
4 Copyright (C) Andrew Tridgell 1992-1998
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 extern userdom_struct current_user_info;
24 static bool canonicalize_path(connection_struct *conn, pstring path)
26 #ifdef REALPATH_TAKES_NULL
27 char *resolved_name = SMB_VFS_REALPATH(conn,path,NULL);
31 pstrcpy(path, resolved_name);
32 SAFE_FREE(resolved_name);
36 char resolved_name_buf[PATH_MAX+1];
38 pstring resolved_name_buf;
40 char *resolved_name = SMB_VFS_REALPATH(conn,path,resolved_name_buf);
44 pstrcpy(path, resolved_name);
46 #endif /* REALPATH_TAKES_NULL */
49 /****************************************************************************
50 Ensure when setting connectpath it is a canonicalized (no ./ // or ../)
51 absolute path stating in / and not ending in /.
52 Observent people will notice a similarity between this and check_path_syntax :-).
53 ****************************************************************************/
55 void set_conn_connectpath(connection_struct *conn, const char *connectpath)
59 const char *s = connectpath;
60 bool start_of_name_component = True;
62 *d++ = '/'; /* Always start with root. */
66 /* Eat multiple '/' */
70 if ((d > destname + 1) && (*s != '\0')) {
73 start_of_name_component = True;
77 if (start_of_name_component) {
78 if ((s[0] == '.') && (s[1] == '.') && (s[2] == '/' || s[2] == '\0')) {
79 /* Uh oh - "/../" or "/..\0" ! */
81 /* Go past the ../ or .. */
85 s += 2; /* Go past the .. */
88 /* If we just added a '/' - delete it */
89 if ((d > destname) && (*(d-1) == '/')) {
94 /* Are we at the start ? Can't go back further if so. */
96 *d++ = '/'; /* Can't delete root */
99 /* Go back one level... */
100 /* Decrement d first as d points to the *next* char to write into. */
101 for (d--; d > destname; d--) {
106 /* We're still at the start of a name component, just the previous one. */
108 } else if ((s[0] == '.') && ((s[1] == '\0') || s[1] == '/')) {
109 /* Component of pathname can't be "." only - skip the '.' . */
123 /* Get the size of the next MB character. */
124 next_codepoint(s,&siz);
145 start_of_name_component = False;
149 /* And must not end in '/' */
150 if (d > destname + 1 && (*(d-1) == '/')) {
154 DEBUG(10,("set_conn_connectpath: service %s, connectpath = %s\n",
155 lp_servicename(SNUM(conn)), destname ));
157 string_set(&conn->connectpath, destname);
160 /****************************************************************************
161 Load parameters specific to a connection/service.
162 ****************************************************************************/
164 bool set_current_service(connection_struct *conn, uint16 flags, bool do_chdir)
166 static connection_struct *last_conn;
167 static uint16 last_flags;
175 conn->lastused_count++;
180 vfs_ChDir(conn,conn->connectpath) != 0 &&
181 vfs_ChDir(conn,conn->origpath) != 0) {
182 DEBUG(0,("chdir (%s) failed\n",
187 if ((conn == last_conn) && (last_flags == flags)) {
194 /* Obey the client case sensitivity requests - only for clients that support it. */
195 switch (lp_casesensitive(snum)) {
198 /* We need this uglyness due to DOS/Win9x clients that lie about case insensitivity. */
199 enum remote_arch_types ra_type = get_remote_arch();
200 if ((ra_type != RA_SAMBA) && (ra_type != RA_CIFSFS)) {
201 /* Client can't support per-packet case sensitive pathnames. */
202 conn->case_sensitive = False;
204 conn->case_sensitive = !(flags & FLAG_CASELESS_PATHNAMES);
209 conn->case_sensitive = True;
212 conn->case_sensitive = False;
218 /****************************************************************************
219 Add a home service. Returns the new service number or -1 if fail.
220 ****************************************************************************/
222 int add_home_service(const char *service, const char *username, const char *homedir)
226 if (!service || !homedir)
229 if ((iHomeService = lp_servicenumber(HOMES_NAME)) < 0)
233 * If this is a winbindd provided username, remove
234 * the domain component before adding the service.
235 * Log a warning if the "path=" parameter does not
236 * include any macros.
240 const char *p = strchr(service,*lp_winbind_separator());
242 /* We only want the 'user' part of the string */
248 if (!lp_add_home(service, iHomeService, username, homedir)) {
252 return lp_servicenumber(service);
256 static int load_registry_service(const char *servicename)
258 struct registry_key *key;
264 struct registry_value *value;
268 if (!lp_registry_shares()) {
272 if (asprintf(&path, "%s\\%s", KEY_SMBCONF, servicename) == -1) {
276 err = reg_open_path(NULL, path, REG_KEY_READ, get_root_nt_token(),
280 if (!W_ERROR_IS_OK(err)) {
284 res = lp_add_service(servicename, -1);
290 W_ERROR_IS_OK(reg_enumvalue(key, key, i, &value_name, &value));
292 switch (value->type) {
295 if (asprintf(&tmp, "%d", value->v.dword) == -1) {
298 lp_do_parameter(res, value_name, tmp);
303 lp_do_parameter(res, value_name, value->v.sz.str);
307 /* Ignore all the rest */
311 TALLOC_FREE(value_name);
321 void load_registry_shares(void)
323 struct registry_key *key;
328 if (!lp_registry_shares()) {
332 err = reg_open_path(NULL, KEY_SMBCONF, REG_KEY_READ,
333 get_root_nt_token(), &key);
334 if (!(W_ERROR_IS_OK(err))) {
338 for (i=0; W_ERROR_IS_OK(reg_enumkey(key, key, i, &name, NULL)); i++) {
339 load_registry_service(name);
348 * Find a service entry.
350 * @param service is modified (to canonical form??)
353 int find_service(fstring service)
357 all_string_sub(service,"\\","/",0);
359 iService = lp_servicenumber(service);
361 /* now handle the special case of a home directory */
363 char *phome_dir = get_user_home_dir(service);
367 * Try mapping the servicename, it may
368 * be a Windows to unix mapped user name.
370 if(map_username(service))
371 phome_dir = get_user_home_dir(service);
374 DEBUG(3,("checking for home directory %s gave %s\n",service,
375 phome_dir?phome_dir:"(NULL)"));
377 iService = add_home_service(service,service /* 'username' */, phome_dir);
380 /* If we still don't have a service, attempt to add it as a printer. */
384 if ((iPrinterService = lp_servicenumber(PRINTERS_NAME)) >= 0) {
385 DEBUG(3,("checking whether %s is a valid printer name...\n", service));
386 if (pcap_printername_ok(service)) {
387 DEBUG(3,("%s is a valid printer name\n", service));
388 DEBUG(3,("adding %s as a printer service\n", service));
389 lp_add_printer(service, iPrinterService);
390 iService = lp_servicenumber(service);
392 DEBUG(0,("failed to add %s as a printer service!\n", service));
395 DEBUG(3,("%s is not a valid printer name\n", service));
400 /* Check for default vfs service? Unsure whether to implement this */
405 iService = load_registry_service(service);
408 /* Is it a usershare service ? */
409 if (iService < 0 && *lp_usershare_path()) {
410 /* Ensure the name is canonicalized. */
412 iService = load_usershare_service(service);
415 /* just possibly it's a default service? */
417 char *pdefservice = lp_defaultservice();
418 if (pdefservice && *pdefservice && !strequal(pdefservice,service) && !strstr_m(service,"..")) {
420 * We need to do a local copy here as lp_defaultservice()
421 * returns one of the rotating lp_string buffers that
422 * could get overwritten by the recursive find_service() call
423 * below. Fix from Josef Hinteregger <joehtg@joehtg.co.at>.
426 pstrcpy(defservice, pdefservice);
428 /* Disallow anything except explicit share names. */
429 if (strequal(defservice,HOMES_NAME) ||
430 strequal(defservice, PRINTERS_NAME) ||
431 strequal(defservice, "IPC$")) {
435 iService = find_service(defservice);
437 all_string_sub(service, "_","/",0);
438 iService = lp_add_service(service, iService);
444 if (!VALID_SNUM(iService)) {
445 DEBUG(0,("Invalid snum %d for %s\n",iService, service));
453 DEBUG(3,("find_service() failed to find service %s\n", service));
459 /****************************************************************************
460 do some basic sainity checks on the share.
461 This function modifies dev, ecode.
462 ****************************************************************************/
464 static NTSTATUS share_sanity_checks(int snum, fstring dev)
467 if (!lp_snum_ok(snum) ||
468 !check_access(smbd_server_fd(),
469 lp_hostsallow(snum), lp_hostsdeny(snum))) {
470 return NT_STATUS_ACCESS_DENIED;
473 if (dev[0] == '?' || !dev[0]) {
474 if (lp_print_ok(snum)) {
475 fstrcpy(dev,"LPT1:");
476 } else if (strequal(lp_fstype(snum), "IPC")) {
485 if (lp_print_ok(snum)) {
486 if (!strequal(dev, "LPT1:")) {
487 return NT_STATUS_BAD_DEVICE_TYPE;
489 } else if (strequal(lp_fstype(snum), "IPC")) {
490 if (!strequal(dev, "IPC")) {
491 return NT_STATUS_BAD_DEVICE_TYPE;
493 } else if (!strequal(dev, "A:")) {
494 return NT_STATUS_BAD_DEVICE_TYPE;
497 /* Behave as a printer if we are supposed to */
498 if (lp_print_ok(snum) && (strcmp(dev, "A:") == 0)) {
499 fstrcpy(dev, "LPT1:");
505 static NTSTATUS find_forced_user(connection_struct *conn, bool vuser_is_guest, fstring username)
507 int snum = conn->params->service;
508 char *fuser, *found_username;
511 if (!(fuser = talloc_string_sub(conn->mem_ctx, lp_force_user(snum), "%S",
512 lp_servicename(snum)))) {
513 return NT_STATUS_NO_MEMORY;
516 result = create_token_from_username(conn->mem_ctx, fuser, vuser_is_guest,
517 &conn->uid, &conn->gid, &found_username,
518 &conn->nt_user_token);
519 if (!NT_STATUS_IS_OK(result)) {
523 fstrcpy(username, found_username);
526 TALLOC_FREE(found_username);
531 * Go through lookup_name etc to find the force'd group.
533 * Create a new token from src_token, replacing the primary group sid with the
537 static NTSTATUS find_forced_group(bool force_user,
538 int snum, const char *username,
542 NTSTATUS result = NT_STATUS_NO_SUCH_GROUP;
545 enum lsa_SidType type;
547 bool user_must_be_member = False;
550 ZERO_STRUCTP(pgroup_sid);
553 mem_ctx = talloc_new(NULL);
554 if (mem_ctx == NULL) {
555 DEBUG(0, ("talloc_new failed\n"));
556 return NT_STATUS_NO_MEMORY;
559 groupname = talloc_strdup(mem_ctx, lp_force_group(snum));
560 if (groupname == NULL) {
561 DEBUG(1, ("talloc_strdup failed\n"));
562 result = NT_STATUS_NO_MEMORY;
566 if (groupname[0] == '+') {
567 user_must_be_member = True;
571 groupname = talloc_string_sub(mem_ctx, groupname,
572 "%S", lp_servicename(snum));
574 if (!lookup_name_smbconf(mem_ctx, groupname,
575 LOOKUP_NAME_ALL|LOOKUP_NAME_GROUP,
576 NULL, NULL, &group_sid, &type)) {
577 DEBUG(10, ("lookup_name_smbconf(%s) failed\n",
582 if ((type != SID_NAME_DOM_GRP) && (type != SID_NAME_ALIAS) &&
583 (type != SID_NAME_WKN_GRP)) {
584 DEBUG(10, ("%s is a %s, not a group\n", groupname,
585 sid_type_lookup(type)));
589 if (!sid_to_gid(&group_sid, &gid)) {
590 DEBUG(10, ("sid_to_gid(%s) for %s failed\n",
591 sid_string_static(&group_sid), groupname));
596 * If the user has been forced and the forced group starts with a '+',
597 * then we only set the group to be the forced group if the forced
598 * user is a member of that group. Otherwise, the meaning of the '+'
602 if (force_user && user_must_be_member) {
603 if (user_in_group_sid(username, &group_sid)) {
604 sid_copy(pgroup_sid, &group_sid);
606 DEBUG(3,("Forced group %s for member %s\n",
607 groupname, username));
609 DEBUG(0,("find_forced_group: forced user %s is not a member "
610 "of forced group %s. Disallowing access.\n",
611 username, groupname ));
612 result = NT_STATUS_MEMBER_NOT_IN_GROUP;
616 sid_copy(pgroup_sid, &group_sid);
618 DEBUG(3,("Forced group %s\n", groupname));
621 result = NT_STATUS_OK;
623 TALLOC_FREE(mem_ctx);
627 /****************************************************************************
628 Make a connection, given the snum to connect to, and the vuser of the
629 connecting user if appropriate.
630 ****************************************************************************/
632 static connection_struct *make_connection_snum(int snum, user_struct *vuser,
637 struct passwd *pass = NULL;
639 connection_struct *conn;
644 char addr[INET6_ADDRSTRLEN];
648 SET_STAT_INVALID(st);
650 if (NT_STATUS_IS_ERR(*status = share_sanity_checks(snum, dev))) {
656 DEBUG(0,("Couldn't find free connection.\n"));
657 *status = NT_STATUS_INSUFFICIENT_RESOURCES;
661 conn->params->service = snum;
662 conn->nt_user_token = NULL;
664 if (lp_guest_only(snum)) {
665 const char *guestname = lp_guestaccount();
667 char *found_username = NULL;
670 pass = getpwnam_alloc(NULL, guestname);
672 DEBUG(0,("make_connection_snum: Invalid guest "
673 "account %s??\n",guestname));
675 *status = NT_STATUS_NO_SUCH_USER;
678 status2 = create_token_from_username(conn->mem_ctx, pass->pw_name, True,
679 &conn->uid, &conn->gid,
681 &conn->nt_user_token);
682 if (!NT_STATUS_IS_OK(status2)) {
688 fstrcpy(user, found_username);
689 string_set(&conn->user,user);
690 conn->force_user = True;
691 TALLOC_FREE(found_username);
693 DEBUG(3,("Guest only user %s\n",user));
696 if (!lp_guest_ok(snum)) {
697 DEBUG(2, ("guest user (from session setup) "
698 "not permitted to access this share "
699 "(%s)\n", lp_servicename(snum)));
701 *status = NT_STATUS_ACCESS_DENIED;
705 if (!user_ok_token(vuser->user.unix_name,
706 vuser->nt_user_token, snum)) {
707 DEBUG(2, ("user '%s' (from session setup) not "
708 "permitted to access this share "
709 "(%s)\n", vuser->user.unix_name,
710 lp_servicename(snum)));
712 *status = NT_STATUS_ACCESS_DENIED;
716 conn->vuid = vuser->vuid;
717 conn->uid = vuser->uid;
718 conn->gid = vuser->gid;
719 string_set(&conn->user,vuser->user.unix_name);
720 fstrcpy(user,vuser->user.unix_name);
721 guest = vuser->guest;
722 } else if (lp_security() == SEC_SHARE) {
724 char *found_username = NULL;
726 /* add it as a possible user name if we
727 are in share mode security */
728 add_session_user(lp_servicename(snum));
729 /* shall we let them in? */
730 if (!authorise_login(snum,user,password,&guest)) {
731 DEBUG( 2, ( "Invalid username/password for [%s]\n",
732 lp_servicename(snum)) );
734 *status = NT_STATUS_WRONG_PASSWORD;
737 pass = Get_Pwnam(user);
738 status2 = create_token_from_username(conn->mem_ctx, pass->pw_name, True,
739 &conn->uid, &conn->gid,
741 &conn->nt_user_token);
742 if (!NT_STATUS_IS_OK(status2)) {
747 fstrcpy(user, found_username);
748 string_set(&conn->user,user);
749 TALLOC_FREE(found_username);
750 conn->force_user = True;
752 DEBUG(0, ("invalid VUID (vuser) but not in security=share\n"));
754 *status = NT_STATUS_ACCESS_DENIED;
758 add_session_user(user);
760 safe_strcpy(conn->client_address,
761 client_addr(get_client_fd(),addr,sizeof(addr)),
762 sizeof(conn->client_address)-1);
763 conn->num_files_open = 0;
764 conn->lastused = conn->lastused_count = time(NULL);
766 conn->printer = (strncmp(dev,"LPT",3) == 0);
767 conn->ipc = ( (strncmp(dev,"IPC",3) == 0) ||
768 ( lp_enable_asu_support() && strequal(dev,"ADMIN$")) );
771 /* Case options for the share. */
772 if (lp_casesensitive(snum) == Auto) {
773 /* We will be setting this per packet. Set to be case
774 * insensitive for now. */
775 conn->case_sensitive = False;
777 conn->case_sensitive = (bool)lp_casesensitive(snum);
780 conn->case_preserve = lp_preservecase(snum);
781 conn->short_case_preserve = lp_shortpreservecase(snum);
783 conn->veto_list = NULL;
784 conn->hide_list = NULL;
785 conn->veto_oplock_list = NULL;
786 conn->aio_write_behind_list = NULL;
787 string_set(&conn->dirpath,"");
788 string_set(&conn->user,user);
790 conn->read_only = lp_readonly(SNUM(conn));
791 conn->admin_user = False;
794 * If force user is true, then store the given userid and the gid of
795 * the user we're forcing.
796 * For auxiliary groups see below.
799 if (*lp_force_user(snum)) {
802 status2 = find_forced_user(conn,
803 (vuser != NULL) && vuser->guest,
805 if (!NT_STATUS_IS_OK(status2)) {
810 string_set(&conn->user,user);
811 conn->force_user = True;
812 DEBUG(3,("Forced user %s\n",user));
816 * If force group is true, then override
817 * any groupid stored for the connecting user.
820 if (*lp_force_group(snum)) {
824 status2 = find_forced_group(conn->force_user,
826 &group_sid, &conn->gid);
827 if (!NT_STATUS_IS_OK(status2)) {
833 if ((conn->nt_user_token == NULL) && (vuser != NULL)) {
835 /* Not force user and not security=share, but force
836 * group. vuser has a token to copy */
838 conn->nt_user_token = dup_nt_token(
839 NULL, vuser->nt_user_token);
840 if (conn->nt_user_token == NULL) {
841 DEBUG(0, ("dup_nt_token failed\n"));
843 *status = NT_STATUS_NO_MEMORY;
848 /* If conn->nt_user_token is still NULL, we have
849 * security=share. This means ignore the SID, as we had no
850 * vuser to copy from */
852 if (conn->nt_user_token != NULL) {
853 /* Overwrite the primary group sid */
854 sid_copy(&conn->nt_user_token->user_sids[1],
858 conn->force_group = True;
861 if (conn->nt_user_token != NULL) {
864 /* We have a share-specific token from force [user|group].
865 * This means we have to create the list of unix groups from
866 * the list of sids. */
871 for (i=0; i<conn->nt_user_token->num_sids; i++) {
873 DOM_SID *sid = &conn->nt_user_token->user_sids[i];
875 if (!sid_to_gid(sid, &gid)) {
876 DEBUG(10, ("Could not convert SID %s to gid, "
878 sid_string_static(sid)));
881 if (!add_gid_to_array_unique(conn->mem_ctx, gid, &conn->groups,
883 DEBUG(0, ("add_gid_to_array_unique failed\n"));
885 *status = NT_STATUS_NO_MEMORY;
893 pstrcpy(s,lp_pathname(snum));
894 standard_sub_advanced(lp_servicename(SNUM(conn)), conn->user,
895 conn->connectpath, conn->gid,
896 get_current_username(),
897 current_user_info.domain,
899 set_conn_connectpath(conn,s);
900 DEBUG(3,("Connect path is '%s' for service [%s]\n",s,
901 lp_servicename(snum)));
905 * New code to check if there's a share security descripter
906 * added from NT server manager. This is done after the
907 * smb.conf checks are done as we need a uid and token. JRA.
912 bool can_write = False;
913 NT_USER_TOKEN *token = conn->nt_user_token ?
914 conn->nt_user_token :
915 (vuser ? vuser->nt_user_token : NULL);
918 * I don't believe this can happen. But the
919 * logic above is convoluted enough to confuse
920 * automated checkers, so be sure. JRA.
924 DEBUG(0,("make_connection: connection to %s "
925 "denied due to missing "
927 lp_servicename(snum)));
929 *status = NT_STATUS_ACCESS_DENIED;
933 can_write = share_access_check(token,
934 lp_servicename(snum),
938 if (!share_access_check(token,
939 lp_servicename(snum),
941 /* No access, read or write. */
942 DEBUG(0,("make_connection: connection to %s "
943 "denied due to security "
945 lp_servicename(snum)));
947 *status = NT_STATUS_ACCESS_DENIED;
950 conn->read_only = True;
954 /* Initialise VFS function pointers */
956 if (!smbd_vfs_init(conn)) {
957 DEBUG(0, ("vfs_init failed for service %s\n",
958 lp_servicename(snum)));
960 *status = NT_STATUS_BAD_NETWORK_NAME;
965 * If widelinks are disallowed we need to canonicalise the connect
966 * path here to ensure we don't have any symlinks in the
967 * connectpath. We will be checking all paths on this connection are
968 * below this directory. We must do this after the VFS init as we
969 * depend on the realpath() pointer in the vfs table. JRA.
971 if (!lp_widelinks(snum)) {
973 pstrcpy(s,conn->connectpath);
974 canonicalize_path(conn, s);
975 set_conn_connectpath(conn,s);
978 if ((!conn->printer) && (!conn->ipc)) {
979 conn->notify_ctx = notify_init(conn->mem_ctx, server_id_self(),
980 smbd_messaging_context(),
981 smbd_event_context(),
985 /* ROOT Activities: */
987 * Enforce the max connections parameter.
990 if ((lp_max_connections(snum) > 0)
991 && (count_current_connections(lp_servicename(SNUM(conn)), True) >=
992 lp_max_connections(snum))) {
994 DEBUG(1, ("Max connections (%d) exceeded for %s\n",
995 lp_max_connections(snum), lp_servicename(snum)));
997 *status = NT_STATUS_INSUFFICIENT_RESOURCES;
1002 * Get us an entry in the connections db
1004 if (!claim_connection(conn, lp_servicename(snum), 0)) {
1005 DEBUG(1, ("Could not store connections entry\n"));
1007 *status = NT_STATUS_INTERNAL_DB_ERROR;
1011 /* Preexecs are done here as they might make the dir we are to ChDir
1013 /* execute any "root preexec = " line */
1014 if (*lp_rootpreexec(snum)) {
1016 pstrcpy(cmd,lp_rootpreexec(snum));
1017 standard_sub_advanced(lp_servicename(SNUM(conn)), conn->user,
1018 conn->connectpath, conn->gid,
1019 get_current_username(),
1020 current_user_info.domain,
1022 DEBUG(5,("cmd=%s\n",cmd));
1023 ret = smbrun(cmd,NULL);
1024 if (ret != 0 && lp_rootpreexec_close(snum)) {
1025 DEBUG(1,("root preexec gave %d - failing "
1026 "connection\n", ret));
1027 yield_connection(conn, lp_servicename(snum));
1029 *status = NT_STATUS_ACCESS_DENIED;
1034 /* USER Activites: */
1035 if (!change_to_user(conn, conn->vuid)) {
1036 /* No point continuing if they fail the basic checks */
1037 DEBUG(0,("Can't become connected user!\n"));
1038 yield_connection(conn, lp_servicename(snum));
1040 *status = NT_STATUS_LOGON_FAILURE;
1044 /* Remember that a different vuid can connect later without these
1047 /* Preexecs are done here as they might make the dir we are to ChDir
1050 /* execute any "preexec = " line */
1051 if (*lp_preexec(snum)) {
1053 pstrcpy(cmd,lp_preexec(snum));
1054 standard_sub_advanced(lp_servicename(SNUM(conn)), conn->user,
1055 conn->connectpath, conn->gid,
1056 get_current_username(),
1057 current_user_info.domain,
1059 ret = smbrun(cmd,NULL);
1060 if (ret != 0 && lp_preexec_close(snum)) {
1061 DEBUG(1,("preexec gave %d - failing connection\n",
1063 change_to_root_user();
1064 yield_connection(conn, lp_servicename(snum));
1066 *status = NT_STATUS_ACCESS_DENIED;
1071 #ifdef WITH_FAKE_KASERVER
1072 if (lp_afs_share(snum)) {
1077 /* Add veto/hide lists */
1078 if (!IS_IPC(conn) && !IS_PRINT(conn)) {
1079 set_namearray( &conn->veto_list, lp_veto_files(snum));
1080 set_namearray( &conn->hide_list, lp_hide_files(snum));
1081 set_namearray( &conn->veto_oplock_list, lp_veto_oplocks(snum));
1084 /* Invoke VFS make connection hook - do this before the VFS_STAT call
1085 to allow any filesystems needing user credentials to initialize
1088 if (SMB_VFS_CONNECT(conn, lp_servicename(snum), user) < 0) {
1089 DEBUG(0,("make_connection: VFS make connection failed!\n"));
1090 change_to_root_user();
1091 yield_connection(conn, lp_servicename(snum));
1093 *status = NT_STATUS_UNSUCCESSFUL;
1097 /* win2000 does not check the permissions on the directory
1098 during the tree connect, instead relying on permission
1099 check during individual operations. To match this behaviour
1100 I have disabled this chdir check (tridge) */
1101 /* the alternative is just to check the directory exists */
1102 if ((ret = SMB_VFS_STAT(conn, conn->connectpath, &st)) != 0 ||
1103 !S_ISDIR(st.st_mode)) {
1104 if (ret == 0 && !S_ISDIR(st.st_mode)) {
1105 DEBUG(0,("'%s' is not a directory, when connecting to "
1106 "[%s]\n", conn->connectpath,
1107 lp_servicename(snum)));
1109 DEBUG(0,("'%s' does not exist or permission denied "
1110 "when connecting to [%s] Error was %s\n",
1111 conn->connectpath, lp_servicename(snum),
1114 change_to_root_user();
1115 /* Call VFS disconnect hook */
1116 SMB_VFS_DISCONNECT(conn);
1117 yield_connection(conn, lp_servicename(snum));
1119 *status = NT_STATUS_BAD_NETWORK_NAME;
1123 string_set(&conn->origpath,conn->connectpath);
1125 #if SOFTLINK_OPTIMISATION
1126 /* resolve any soft links early if possible */
1127 if (vfs_ChDir(conn,conn->connectpath) == 0) {
1128 TALLOC_CTX *ctx = talloc_stackframe();
1129 char *s = vfs_GetWd(ctx,s);
1131 *status = map_nt_error_from_unix(errno);
1134 set_conn_connectpath(conn,s);
1135 vfs_ChDir(conn,conn->connectpath);
1141 * Print out the 'connected as' stuff here as we need
1142 * to know the effective uid and gid we will be using
1143 * (at least initially).
1146 if( DEBUGLVL( IS_IPC(conn) ? 3 : 1 ) ) {
1147 dbgtext( "%s (%s) ", get_remote_machine_name(),
1148 conn->client_address );
1149 dbgtext( "%s", srv_is_signing_active() ? "signed " : "");
1150 dbgtext( "connect to service %s ", lp_servicename(snum) );
1151 dbgtext( "initially as user %s ", user );
1152 dbgtext( "(uid=%d, gid=%d) ", (int)geteuid(), (int)getegid() );
1153 dbgtext( "(pid %d)\n", (int)sys_getpid() );
1156 /* we've finished with the user stuff - go back to root */
1157 change_to_root_user();
1161 /***************************************************************************************
1162 Simple wrapper function for make_connection() to include a call to
1164 **************************************************************************************/
1166 connection_struct *make_connection_with_chdir(const char *service_in,
1168 const char *dev, uint16 vuid,
1171 connection_struct *conn = NULL;
1173 conn = make_connection(service_in, password, dev, vuid, status);
1176 * make_connection() does not change the directory for us any more
1177 * so we have to do it as a separate step --jerry
1180 if ( conn && vfs_ChDir(conn,conn->connectpath) != 0 ) {
1181 DEBUG(0,("move_driver_to_download_area: Can't change "
1182 "directory to %s for [print$] (%s)\n",
1183 conn->connectpath,strerror(errno)));
1184 yield_connection(conn, lp_servicename(SNUM(conn)));
1186 *status = NT_STATUS_UNSUCCESSFUL;
1193 /****************************************************************************
1194 Make a connection to a service.
1197 ****************************************************************************/
1199 connection_struct *make_connection(const char *service_in, DATA_BLOB password,
1200 const char *pdev, uint16 vuid,
1204 user_struct *vuser = NULL;
1208 char addr[INET6_ADDRSTRLEN];
1212 /* This must ONLY BE CALLED AS ROOT. As it exits this function as
1214 if (!non_root_mode() && (euid = geteuid()) != 0) {
1215 DEBUG(0,("make_connection: PANIC ERROR. Called as nonroot "
1216 "(%u)\n", (unsigned int)euid ));
1217 smb_panic("make_connection: PANIC ERROR. Called as nonroot\n");
1220 if (conn_num_open() > 2047) {
1221 *status = NT_STATUS_INSUFF_SERVER_RESOURCES;
1225 if(lp_security() != SEC_SHARE) {
1226 vuser = get_valid_user_struct(vuid);
1228 DEBUG(1,("make_connection: refusing to connect with "
1229 "no session setup\n"));
1230 *status = NT_STATUS_ACCESS_DENIED;
1235 /* Logic to try and connect to the correct [homes] share, preferably
1236 without too many getpwnam() lookups. This is particulary nasty for
1237 winbind usernames, where the share name isn't the same as unix
1240 The snum of the homes share is stored on the vuser at session setup
1244 if (strequal(service_in,HOMES_NAME)) {
1245 if(lp_security() != SEC_SHARE) {
1246 DATA_BLOB no_pw = data_blob_null;
1247 if (vuser->homes_snum == -1) {
1248 DEBUG(2, ("[homes] share not available for "
1249 "this user because it was not found "
1250 "or created at session setup "
1252 *status = NT_STATUS_BAD_NETWORK_NAME;
1255 DEBUG(5, ("making a connection to [homes] service "
1256 "created at session setup time\n"));
1257 return make_connection_snum(vuser->homes_snum,
1261 /* Security = share. Try with
1262 * current_user_info.smb_name as the username. */
1263 if (*current_user_info.smb_name) {
1264 fstring unix_username;
1265 fstrcpy(unix_username,
1266 current_user_info.smb_name);
1267 map_username(unix_username);
1268 snum = find_service(unix_username);
1271 DEBUG(5, ("making a connection to 'homes' "
1272 "service %s based on "
1273 "security=share\n", service_in));
1274 return make_connection_snum(snum, NULL,
1279 } else if ((lp_security() != SEC_SHARE) && (vuser->homes_snum != -1)
1280 && strequal(service_in,
1281 lp_servicename(vuser->homes_snum))) {
1282 DATA_BLOB no_pw = data_blob_null;
1283 DEBUG(5, ("making a connection to 'homes' service [%s] "
1284 "created at session setup time\n", service_in));
1285 return make_connection_snum(vuser->homes_snum,
1290 fstrcpy(service, service_in);
1292 strlower_m(service);
1294 snum = find_service(service);
1297 if (strequal(service,"IPC$") ||
1298 (lp_enable_asu_support() && strequal(service,"ADMIN$"))) {
1299 DEBUG(3,("refusing IPC connection to %s\n", service));
1300 *status = NT_STATUS_ACCESS_DENIED;
1304 DEBUG(0,("%s (%s) couldn't find service %s\n",
1305 get_remote_machine_name(),
1306 client_addr(get_client_fd(),addr,sizeof(addr)),
1308 *status = NT_STATUS_BAD_NETWORK_NAME;
1312 /* Handle non-Dfs clients attempting connections to msdfs proxy */
1313 if (lp_host_msdfs() && (*lp_msdfs_proxy(snum) != '\0')) {
1314 DEBUG(3, ("refusing connection to dfs proxy share '%s' "
1315 "(pointing to %s)\n",
1316 service, lp_msdfs_proxy(snum)));
1317 *status = NT_STATUS_BAD_NETWORK_NAME;
1321 DEBUG(5, ("making a connection to 'normal' service %s\n", service));
1323 return make_connection_snum(snum, vuser,
1328 /****************************************************************************
1330 ****************************************************************************/
1332 void close_cnum(connection_struct *conn, uint16 vuid)
1335 pipe_close_conn(conn);
1337 file_close_conn(conn);
1338 dptr_closecnum(conn);
1341 change_to_root_user();
1343 DEBUG(IS_IPC(conn)?3:1, ("%s (%s) closed connection to service %s\n",
1344 get_remote_machine_name(),
1345 conn->client_address,
1346 lp_servicename(SNUM(conn))));
1348 /* Call VFS disconnect hook */
1349 SMB_VFS_DISCONNECT(conn);
1351 yield_connection(conn, lp_servicename(SNUM(conn)));
1353 /* make sure we leave the directory available for unmount */
1354 vfs_ChDir(conn, "/");
1356 /* execute any "postexec = " line */
1357 if (*lp_postexec(SNUM(conn)) &&
1358 change_to_user(conn, vuid)) {
1360 pstrcpy(cmd,lp_postexec(SNUM(conn)));
1361 standard_sub_advanced(lp_servicename(SNUM(conn)), conn->user,
1362 conn->connectpath, conn->gid,
1363 get_current_username(),
1364 current_user_info.domain,
1367 change_to_root_user();
1370 change_to_root_user();
1371 /* execute any "root postexec = " line */
1372 if (*lp_rootpostexec(SNUM(conn))) {
1374 pstrcpy(cmd,lp_rootpostexec(SNUM(conn)));
1375 standard_sub_advanced(lp_servicename(SNUM(conn)), conn->user,
1376 conn->connectpath, conn->gid,
1377 get_current_username(),
1378 current_user_info.domain,