sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00
Code
a849a12438
samba-mirror/source3/modules/vfs_fake_perms.c

109 lines
2.8 KiB
C
Raw Normal View History

Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
/*
* Fake Perms VFS module. Implements passthrough operation of all VFS
* calls to disk functions, except for file permissions, which are now
* mode 0700 for the current uid/gid.
*
* Copyright (C) Tim Potter, 1999-2000
* Copyright (C) Alexander Bokovoy, 2002
* Copyright (C) Andrew Bartlett, 2002
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
r23779: Change from v2 or later to v3 or later. Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-07-09 23:25:36 +04:00
* the Free Software Foundation; either version 3 of the License, or
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
r23801: The FSF has moved around a lot. This fixes their Mass Ave address. (This used to be commit 87c91e4362c51819032bfbebbb273c52e203b227)
2007-07-10 09:23:25 +04:00
* along with this program; if not, see <http://www.gnu.org/licenses/>.
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
*/
Fix VFS layer: 1. Finally work with cascaded modules with private data storage per module 2. Convert VFS API to macro calls to simplify cascading 3. Add quota support to VFS layer (prepare to NT quota support) Patch by Stefan (metze) Metzemacher, with review of Jelmer and me Tested in past few weeks. Documentation to new VFS API for third-party developers to follow (This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
2003-05-12 03:34:18 +04:00
#include "includes.h"
s3-vfs: include smbd/smbd.h in vfs modules. Guenther
2011-03-23 00:34:22 +03:00
#include "smbd/smbd.h"
s3-includes: only include system/filesys.h when needed. Guenther
2011-02-26 01:20:06 +03:00
#include "system/filesys.h"
s3-auth: vfs modules need auth.h Guenther
2011-03-24 16:15:54 +03:00
#include "auth.h"
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
Fix VFS layer: 1. Finally work with cascaded modules with private data storage per module 2. Convert VFS API to macro calls to simplify cascading 3. Add quota support to VFS layer (prepare to NT quota support) Patch by Stefan (metze) Metzemacher, with review of Jelmer and me Tested in past few weeks. Documentation to new VFS API for third-party developers to follow (This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
2003-05-12 03:34:18 +04:00
#undef DBGC_CLASS
#define DBGC_CLASS DBGC_VFS
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
s3: Plumb smb_filename through SMB_VFS_STAT and SMB_VFS_LSTAT This patch introduces two new temporary helper functions vfs_stat_smb_fname and vfs_lstat_smb_fname. They basically allowed me to call the new smb_filename version of stat, while avoiding plumbing it through callers that are still too inconvenient. As the conversion moves along, I will be able to remove callers of this, with the goal being to remove all callers. There was also a bug in create_synthetic_smb_fname_split (also a temporary utility function) that caused it to incorrectly handle filenames with ':'s in them when in posix mode. This is now fixed.
2009-06-23 02:26:56 +04:00
static int fake_perms_stat(vfs_handle_struct *handle,
struct smb_filename *smb_fname)
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
{
vfs_fake_perms: Slightly streamline code Don't initialize a variable directly set Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
int ret;
Fix VFS layer: 1. Finally work with cascaded modules with private data storage per module 2. Convert VFS API to macro calls to simplify cascading 3. Add quota support to VFS layer (prepare to NT quota support) Patch by Stefan (metze) Metzemacher, with review of Jelmer and me Tested in past few weeks. Documentation to new VFS API for third-party developers to follow (This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
2003-05-12 03:34:18 +04:00
s3: Plumb smb_filename through SMB_VFS_STAT and SMB_VFS_LSTAT This patch introduces two new temporary helper functions vfs_stat_smb_fname and vfs_lstat_smb_fname. They basically allowed me to call the new smb_filename version of stat, while avoiding plumbing it through callers that are still too inconvenient. As the conversion moves along, I will be able to remove callers of this, with the goal being to remove all callers. There was also a bug in create_synthetic_smb_fname_split (also a temporary utility function) that caused it to incorrectly handle filenames with ':'s in them when in posix mode. This is now fixed.
2009-06-23 02:26:56 +04:00
ret = SMB_VFS_NEXT_STAT(handle, smb_fname);
vfs_fake_perms: Slightly streamline code Do an early error return Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
if (ret != 0) {
return ret;
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
}
Fix VFS layer: 1. Finally work with cascaded modules with private data storage per module 2. Convert VFS API to macro calls to simplify cascading 3. Add quota support to VFS layer (prepare to NT quota support) Patch by Stefan (metze) Metzemacher, with review of Jelmer and me Tested in past few weeks. Documentation to new VFS API for third-party developers to follow (This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
2003-05-12 03:34:18 +04:00
vfs_fake_perms: Slightly streamline code Do an early error return Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
if (S_ISDIR(smb_fname->st.st_ex_mode)) {
smb_fname->st.st_ex_mode = S_IFDIR | S_IRWXU;
} else {
smb_fname->st.st_ex_mode = S_IRWXU;
}
vfs_fake_perms: Fix bug 9775, segfault for "artificial" conn_structs Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Apr 10 00:12:06 CEST 2013 on sn-devel-104
2013-04-09 23:18:34 +04:00
if (handle->conn->session_info != NULL) {
struct security_unix_token *utok;
utok = handle->conn->session_info->unix_token;
smb_fname->st.st_ex_uid = utok->uid;
smb_fname->st.st_ex_gid = utok->gid;
} else {
/*
* We have an artificial connection for dfs for example. It
* sucks, but the current uid/gid is the best we have.
*/
smb_fname->st.st_ex_uid = geteuid();
smb_fname->st.st_ex_gid = getegid();
}
vfs_fake_perms: Slightly streamline code Do an early error return Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
return ret;
}
Remove redundant parameter fd from SMB_VFS_FSTAT(). Michael (This used to be commit 0b86c420be94d295f6917a220b5d699f65b46711)
2008-01-07 15:21:26 +03:00
static int fake_perms_fstat(vfs_handle_struct *handle, files_struct *fsp, SMB_STRUCT_STAT *sbuf)
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
{
vfs_fake_perms: Slightly streamline code Don't initialize a variable directly set Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
int ret;
Fix VFS layer: 1. Finally work with cascaded modules with private data storage per module 2. Convert VFS API to macro calls to simplify cascading 3. Add quota support to VFS layer (prepare to NT quota support) Patch by Stefan (metze) Metzemacher, with review of Jelmer and me Tested in past few weeks. Documentation to new VFS API for third-party developers to follow (This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
2003-05-12 03:34:18 +04:00
Remove redundant parameter fd from SMB_VFS_FSTAT(). Michael (This used to be commit 0b86c420be94d295f6917a220b5d699f65b46711)
2008-01-07 15:21:26 +03:00
ret = SMB_VFS_NEXT_FSTAT(handle, fsp, sbuf);
vfs_fake_perms: Slightly streamline code Do an early error return Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
if (ret != 0) {
return ret;
Fixes to the vfs_fake_perms modules - we only need to specify the VFS functions that we actually modify. Also a better implementation of the stat() and fstat() functions. Andrew Bartlett (This used to be commit 03e74be11cf76167ed211398016274cbaba5847b)
2003-03-03 12:12:40 +03:00
}
vfs_fake_perms: Slightly streamline code Do an early error return Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
if (S_ISDIR(sbuf->st_ex_mode)) {
sbuf->st_ex_mode = S_IFDIR | S_IRWXU;
} else {
sbuf->st_ex_mode = S_IRWXU;
}
vfs_fake_perms: Fix bug 9775, segfault for "artificial" conn_structs Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Wed Apr 10 00:12:06 CEST 2013 on sn-devel-104
2013-04-09 23:18:34 +04:00
if (handle->conn->session_info != NULL) {
struct security_unix_token *utok;
utok = handle->conn->session_info->unix_token;
sbuf->st_ex_uid = utok->uid;
sbuf->st_ex_gid = utok->gid;
} else {
/*
* We have an artificial connection for dfs for example. It
* sucks, but the current uid/gid is the best we have.
*/
sbuf->st_ex_uid = geteuid();
sbuf->st_ex_gid = getegid();
}
vfs_fake_perms: Slightly streamline code Do an early error return Signed-off-by: Volker Lendecke <vl@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
2013-04-09 23:07:23 +04:00
Fixes to the vfs_fake_perms modules - we only need to specify the VFS functions that we actually modify. Also a better implementation of the stat() and fstat() functions. Andrew Bartlett (This used to be commit 03e74be11cf76167ed211398016274cbaba5847b)
2003-03-03 12:12:40 +03:00
return ret;
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
}
Make the smbd VFS typesafe
2009-07-24 04:28:58 +04:00
static struct vfs_fn_pointers vfs_fake_perms_fns = {
vfs: Make function pointer names consistent. They all end in _fn Autobuild-User: Richard Sharpe <sharpe@samba.org> Autobuild-Date: Mon Dec 12 04:58:40 CET 2011 on sn-devel-104
2011-12-04 08:45:04 +04:00
.stat_fn = fake_perms_stat,
.fstat_fn = fake_perms_fstat
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
};
r20261: merge 20260 from samba_3_0_24 clean up a bunch of no previous prototype warnings (This used to be commit c60687db112405262adf26dbf267804b04074e67)
2006-12-19 23:16:52 +03:00
NTSTATUS vfs_fake_perms_init(void);
Use NTSTATUS as return value for smb_register_*() functions and init_module() function. Patch by metze with some minor modifications. (This used to be commit bc4b51bcb2daa7271c884cb83bf8bdba6d3a9b6d)
2003-04-28 21:48:48 +04:00
NTSTATUS vfs_fake_perms_init(void)
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
{
Make the smbd VFS typesafe
2009-07-24 04:28:58 +04:00
return smb_register_vfs(SMB_VFS_INTERFACE_VERSION, "fake_perms",
&vfs_fake_perms_fns);
Add a new VFS module, that just fiddles the file permissions. Still need to make it fiddle with NT ACLs (or report no ACL, so Samba fakes it up). The idea here is that Samba reports an NT ACL to Windows clients, which use that ACL in downloaded profiles. If the user doesn't have write permissions on the directories being downloaded, then it cant put the subfolders in (yes, NT will set perms so that it can't access the dir as the user the created it) and the profile download fails. The current solution it to give the user unix write perms to the folders, but this is rather dangerous - sombody could trojen the profile. This should avoid that mess. I'll test this out properly next week, but it works in vfstest (thanks idra!). Andrew Bartlett (This used to be commit 1ad782282a3eb4f89c489a77ad8404099d41d0f9)
2002-12-30 07:19:57 +03:00
}
Copy Permalink