2012-05-07 10:24:03 +04:00
/*
Unix SMB / CIFS implementation .
2012-09-25 01:11:05 +04:00
Set NT and POSIX ACLs and other VFS operations from Python
2012-08-02 07:36:43 +04:00
Copyrigyt ( C ) Andrew Bartlett 2012
2012-05-07 10:24:03 +04:00
Copyright ( C ) Jeremy Allison 1994 - 2009.
Copyright ( C ) Andreas Gruenbacher 2002.
Copyright ( C ) Simo Sorce < idra @ samba . org > 2009.
2012-08-02 07:35:24 +04:00
Copyright ( C ) Simo Sorce 2002
Copyright ( C ) Eric Lorimer 2002
2012-05-07 10:24:03 +04:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
2015-06-12 12:45:39 +03:00
# include <Python.h>
2012-05-07 10:24:03 +04:00
# include "includes.h"
2018-02-05 14:10:46 +03:00
# include "python/py3compat.h"
2019-05-02 21:31:18 +03:00
# include "python/modules.h"
2012-05-07 10:24:03 +04:00
# include "smbd/smbd.h"
# include "libcli/util/pyerrors.h"
2012-08-02 07:35:24 +04:00
# include "librpc/rpc/pyrpc_util.h"
# include <pytalloc.h>
# include "system/filesys.h"
2018-09-04 16:29:58 +03:00
# include "passdb.h"
# include "secrets.h"
# include "auth.h"
2012-05-07 10:24:03 +04:00
extern const struct generic_mapping file_generic_mapping ;
# undef DBGC_CLASS
# define DBGC_CLASS DBGC_ACLS
2018-06-01 04:45:25 +03:00
# ifdef O_DIRECTORY
# define DIRECTORY_FLAGS O_RDONLY|O_DIRECTORY
# else
/* POSIX allows us to open a directory with O_RDONLY. */
# define DIRECTORY_FLAGS O_RDONLY
# endif
2018-07-04 01:05:50 +03:00
static connection_struct * get_conn_tos (
const char * service ,
const struct auth_session_info * session_info )
2012-05-07 10:24:03 +04:00
{
2018-05-24 17:16:19 +03:00
struct conn_struct_tos * c = NULL ;
2013-01-09 02:18:27 +04:00
int snum = - 1 ;
NTSTATUS status ;
2019-09-07 00:51:29 +03:00
char * cwd = NULL ;
struct smb_filename cwd_fname = { 0 } ;
int ret ;
2013-01-09 02:18:27 +04:00
2012-10-10 06:48:27 +04:00
if ( ! posix_locking_init ( false ) ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
if ( service ) {
2013-01-09 02:18:27 +04:00
snum = lp_servicenumber ( service ) ;
2012-10-10 06:48:27 +04:00
if ( snum = = - 1 ) {
PyErr_SetString ( PyExc_RuntimeError , " unknown service " ) ;
return NULL ;
}
2013-01-09 02:18:27 +04:00
}
2012-10-10 06:48:27 +04:00
2020-06-02 16:33:36 +03:00
/*
* Make sure that session unix info is filled ,
* which is required by vfs operations .
*/
if ( session_info - > unix_info = = NULL ) {
PyErr_SetString ( PyExc_RuntimeError ,
" Session unix info not initialized " ) ;
return NULL ;
}
if ( session_info - > unix_info - > unix_name = = NULL ) {
PyErr_SetString ( PyExc_RuntimeError ,
" Session unix info not available " ) ;
return NULL ;
}
2018-05-24 17:16:19 +03:00
status = create_conn_struct_tos ( NULL ,
snum ,
" / " ,
2018-07-04 01:05:50 +03:00
session_info ,
2018-05-24 17:16:19 +03:00
& c ) ;
2013-01-09 02:18:27 +04:00
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
2012-10-10 06:48:27 +04:00
2013-01-09 02:18:27 +04:00
/* Ignore read-only and share restrictions */
2018-05-24 17:16:19 +03:00
c - > conn - > read_only = false ;
c - > conn - > share_access = SEC_RIGHTS_FILE_ALL ;
2019-09-07 00:51:29 +03:00
/* Provided by libreplace if not present. Always mallocs. */
cwd = get_current_dir_name ( ) ;
if ( cwd = = NULL ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
cwd_fname . base_name = cwd ;
/*
* We need to call vfs_ChDir ( ) to initialize
* conn - > cwd_fsp correctly . Change directory
* to current directory ( so no change for process ) .
*/
ret = vfs_ChDir ( c - > conn , & cwd_fname ) ;
if ( ret ! = 0 ) {
status = map_nt_error_from_unix ( errno ) ;
SAFE_FREE ( cwd ) ;
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
}
SAFE_FREE ( cwd ) ;
2018-05-24 17:16:19 +03:00
return c - > conn ;
2012-10-10 06:48:27 +04:00
}
2014-02-05 06:31:22 +04:00
static int set_sys_acl_conn ( const char * fname ,
2012-10-10 06:48:27 +04:00
SMB_ACL_TYPE_T acltype ,
SMB_ACL_T theacl , connection_struct * conn )
{
2012-05-07 10:24:03 +04:00
int ret ;
2017-05-24 20:47:46 +03:00
struct smb_filename * smb_fname = NULL ;
2012-10-10 06:48:27 +04:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2020-12-14 13:25:12 +03:00
NTSTATUS status ;
2012-05-07 10:24:03 +04:00
2017-05-24 20:47:46 +03:00
smb_fname = synthetic_smb_fname_split ( frame ,
fname ,
lp_posix_pathnames ( ) ) ;
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return - 1 ;
}
2021-01-12 13:58:41 +03:00
ret = vfs_stat ( conn , smb_fname ) ;
if ( ret = = - 1 ) {
TALLOC_FREE ( frame ) ;
return - 1 ;
}
2020-12-14 13:25:12 +03:00
status = openat_pathref_fsp ( conn - > cwd_fsp , smb_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
errno = map_errno_from_nt_status ( status ) ;
return - 1 ;
}
ret = SMB_VFS_SYS_ACL_SET_FD ( smb_fname - > fsp , acltype , theacl ) ;
2012-05-07 10:24:03 +04:00
2021-12-28 20:34:20 +03:00
status = fd_close ( smb_fname - > fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
errno = map_errno_from_nt_status ( status ) ;
return - 1 ;
}
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
2014-02-05 06:31:22 +04:00
return ret ;
2012-05-07 10:24:03 +04:00
}
2018-06-01 04:45:25 +03:00
static NTSTATUS init_files_struct ( TALLOC_CTX * mem_ctx ,
const char * fname ,
struct connection_struct * conn ,
int flags ,
struct files_struct * * _fsp )
2012-08-02 07:35:24 +04:00
{
struct smb_filename * smb_fname = NULL ;
2020-09-26 22:46:51 +03:00
int fd ;
2012-10-26 07:22:07 +04:00
mode_t saved_umask ;
2018-06-01 04:45:25 +03:00
struct files_struct * fsp ;
2020-05-19 22:33:00 +03:00
struct files_struct * fspcwd = NULL ;
NTSTATUS status ;
2012-10-26 07:22:07 +04:00
2018-06-01 04:45:25 +03:00
fsp = talloc_zero ( mem_ctx , struct files_struct ) ;
2012-08-02 07:35:24 +04:00
if ( fsp = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
2020-09-27 22:16:03 +03:00
fsp - > fh = fd_handle_create ( fsp ) ;
2012-08-02 07:35:24 +04:00
if ( fsp - > fh = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
fsp - > conn = conn ;
2016-03-10 03:00:47 +03:00
smb_fname = synthetic_smb_fname_split ( fsp ,
2018-06-01 04:45:25 +03:00
fname ,
lp_posix_pathnames ( ) ) ;
2013-04-12 14:06:51 +04:00
if ( smb_fname = = NULL ) {
return NT_STATUS_NO_MEMORY ;
2012-08-02 07:35:24 +04:00
}
fsp - > fsp_name = smb_fname ;
2019-03-14 08:20:06 +03:00
2020-05-19 22:33:00 +03:00
status = vfs_at_fspcwd ( fsp , conn , & fspcwd ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
}
2019-03-14 08:20:06 +03:00
/*
* we want total control over the permissions on created files ,
* so set our umask to 0 ( this matters if flags contains O_CREAT )
*/
saved_umask = umask ( 0 ) ;
2020-09-26 22:46:51 +03:00
fd = SMB_VFS_OPENAT ( conn ,
fspcwd ,
smb_fname ,
fsp ,
flags ,
00644 ) ;
2019-03-14 08:20:06 +03:00
umask ( saved_umask ) ;
2020-09-26 22:46:51 +03:00
if ( fd = = - 1 ) {
2018-09-19 17:52:54 +03:00
int err = errno ;
if ( err = = ENOENT ) {
return NT_STATUS_OBJECT_NAME_NOT_FOUND ;
}
2018-06-01 04:45:25 +03:00
return NT_STATUS_INVALID_PARAMETER ;
2012-08-02 07:35:24 +04:00
}
2020-09-26 22:46:51 +03:00
fsp_set_fd ( fsp , fd ) ;
2012-08-02 07:35:24 +04:00
2022-03-19 00:57:13 +03:00
status = vfs_stat_fsp ( fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
2012-11-14 00:34:35 +04:00
/* If we have an fd, this stat should succeed. */
2018-06-01 04:45:25 +03:00
DEBUG ( 0 , ( " Error doing fstat on open file %s (%s) \n " ,
smb_fname_str_dbg ( smb_fname ) ,
2022-03-19 00:57:13 +03:00
nt_errstr ( status ) ) ) ;
return status ;
2012-11-14 00:34:35 +04:00
}
fsp - > file_id = vfs_file_id_from_sbuf ( conn , & smb_fname - > st ) ;
fsp - > vuid = UID_FIELD_INVALID ;
fsp - > file_pid = 0 ;
2020-04-02 18:09:36 +03:00
fsp - > fsp_flags . can_lock = true ;
2020-04-02 18:18:43 +03:00
fsp - > fsp_flags . can_read = true ;
2020-04-02 18:28:32 +03:00
fsp - > fsp_flags . can_write = true ;
2012-11-14 00:34:35 +04:00
fsp - > print_file = NULL ;
2020-04-02 18:37:02 +03:00
fsp - > fsp_flags . modified = false ;
2012-11-14 00:34:35 +04:00
fsp - > sent_oplock_break = NO_BREAK_SENT ;
2020-04-02 19:21:11 +03:00
fsp - > fsp_flags . is_directory = S_ISDIR ( smb_fname - > st . st_ex_mode ) ;
2012-11-14 00:34:35 +04:00
2018-06-01 04:45:25 +03:00
* _fsp = fsp ;
return NT_STATUS_OK ;
}
static NTSTATUS set_nt_acl_conn ( const char * fname ,
uint32_t security_info_sent , const struct security_descriptor * sd ,
connection_struct * conn )
{
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct files_struct * fsp = NULL ;
NTSTATUS status = NT_STATUS_OK ;
/* first, try to open it as a file with flag O_RDWR */
status = init_files_struct ( frame ,
fname ,
conn ,
O_RDWR ,
& fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) & & errno = = EISDIR ) {
/* if fail, try to open as dir */
status = init_files_struct ( frame ,
fname ,
conn ,
DIRECTORY_FLAGS ,
& fsp ) ;
}
if ( ! NT_STATUS_IS_OK ( status ) ) {
2018-09-19 17:52:54 +03:00
DBG_ERR ( " init_files_struct failed: %s \n " ,
nt_errstr ( status ) ) ;
if ( fsp ! = NULL ) {
2021-12-28 14:25:59 +03:00
fd_close ( fsp ) ;
2018-09-19 17:52:54 +03:00
}
2018-06-01 04:45:25 +03:00
TALLOC_FREE ( frame ) ;
return status ;
}
2022-07-29 15:54:07 +03:00
status = SMB_VFS_FSET_NT_ACL ( metadata_fsp ( fsp ) , security_info_sent , sd ) ;
2012-08-02 07:35:24 +04:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
DEBUG ( 0 , ( " set_nt_acl_no_snum: fset_nt_acl returned %s. \n " , nt_errstr ( status ) ) ) ;
}
2021-12-28 14:25:59 +03:00
fd_close ( fsp ) ;
2012-10-26 03:07:02 +04:00
2012-08-02 07:35:24 +04:00
TALLOC_FREE ( frame ) ;
return status ;
}
2012-10-10 06:48:27 +04:00
static NTSTATUS get_nt_acl_conn ( TALLOC_CTX * mem_ctx ,
const char * fname ,
connection_struct * conn ,
2015-05-03 07:01:14 +03:00
uint32_t security_info_wanted ,
2012-10-10 06:48:27 +04:00
struct security_descriptor * * sd )
{
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2016-02-12 21:30:10 +03:00
NTSTATUS status ;
2021-05-25 01:55:59 +03:00
int ret ;
struct smb_filename * smb_fname = NULL ;
smb_fname = synthetic_smb_fname_split ( frame ,
2016-03-19 07:19:38 +03:00
fname ,
2021-05-25 01:55:59 +03:00
lp_posix_pathnames ( ) ) ;
2016-02-12 21:30:10 +03:00
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return NT_STATUS_NO_MEMORY ;
}
2021-05-25 01:55:59 +03:00
ret = vfs_stat ( conn , smb_fname ) ;
if ( ret = = - 1 ) {
TALLOC_FREE ( frame ) ;
return NT_STATUS_OBJECT_NAME_NOT_FOUND ;
}
status = openat_pathref_fsp ( conn - > cwd_fsp , smb_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return status ;
}
2022-07-29 15:49:56 +03:00
status = SMB_VFS_FGET_NT_ACL ( metadata_fsp ( smb_fname - > fsp ) ,
2016-02-12 21:30:10 +03:00
security_info_wanted ,
mem_ctx ,
sd ) ;
2012-10-10 06:48:27 +04:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2021-06-02 23:29:27 +03:00
DBG_ERR ( " fget_nt_acl_at returned %s. \n " ,
2020-04-14 01:28:01 +03:00
nt_errstr ( status ) ) ;
2012-10-10 06:48:27 +04:00
}
2021-12-28 20:34:20 +03:00
status = fd_close ( smb_fname - > fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return status ;
}
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
return status ;
}
2017-12-05 21:49:03 +03:00
static int set_acl_entry_perms ( SMB_ACL_ENTRY_T entry , mode_t perm_mask )
{
SMB_ACL_PERMSET_T perms = NULL ;
if ( sys_acl_get_permset ( entry , & perms ) ! = 0 ) {
return - 1 ;
}
if ( sys_acl_clear_perms ( perms ) ! = 0 ) {
return - 1 ;
}
if ( ( perm_mask & SMB_ACL_READ ) ! = 0 & &
sys_acl_add_perm ( perms , SMB_ACL_READ ) ! = 0 ) {
return - 1 ;
}
if ( ( perm_mask & SMB_ACL_WRITE ) ! = 0 & &
sys_acl_add_perm ( perms , SMB_ACL_WRITE ) ! = 0 ) {
return - 1 ;
}
if ( ( perm_mask & SMB_ACL_EXECUTE ) ! = 0 & &
sys_acl_add_perm ( perms , SMB_ACL_EXECUTE ) ! = 0 ) {
return - 1 ;
}
if ( sys_acl_set_permset ( entry , perms ) ! = 0 ) {
return - 1 ;
}
return 0 ;
}
2012-05-07 10:24:03 +04:00
2018-05-24 17:16:19 +03:00
static SMB_ACL_T make_simple_acl ( TALLOC_CTX * mem_ctx ,
gid_t gid ,
mode_t chmod_mode )
2012-05-07 10:24:03 +04:00
{
2012-11-11 15:07:49 +04:00
mode_t mode = SMB_ACL_READ | SMB_ACL_WRITE | SMB_ACL_EXECUTE ;
2012-08-22 12:35:01 +04:00
2012-10-25 09:25:22 +04:00
mode_t mode_user = ( chmod_mode & 0700 ) > > 6 ;
mode_t mode_group = ( chmod_mode & 070 ) > > 3 ;
2012-08-22 12:35:01 +04:00
mode_t mode_other = chmod_mode & 07 ;
2012-05-07 10:24:03 +04:00
SMB_ACL_ENTRY_T entry ;
2018-05-24 17:16:19 +03:00
SMB_ACL_T acl = sys_acl_init ( mem_ctx ) ;
2012-05-07 10:24:03 +04:00
if ( ! acl ) {
return NULL ;
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_USER_OBJ ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
2017-12-05 21:49:03 +03:00
if ( set_acl_entry_perms ( entry , mode_user ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_GROUP_OBJ ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
2017-12-05 21:49:03 +03:00
if ( set_acl_entry_perms ( entry , mode_group ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_OTHER ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
2017-12-05 21:49:03 +03:00
if ( set_acl_entry_perms ( entry , mode_other ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
2012-08-22 12:35:01 +04:00
if ( gid ! = - 1 ) {
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-08-22 12:35:01 +04:00
return NULL ;
}
2012-09-25 01:11:05 +04:00
2012-08-22 12:35:01 +04:00
if ( sys_acl_set_tag_type ( entry , SMB_ACL_GROUP ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-08-22 12:35:01 +04:00
return NULL ;
}
2012-09-25 01:11:05 +04:00
2012-08-22 12:35:01 +04:00
if ( sys_acl_set_qualifier ( entry , & gid ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-08-22 12:35:01 +04:00
return NULL ;
}
2012-09-25 01:11:05 +04:00
2017-12-05 21:49:03 +03:00
if ( set_acl_entry_perms ( entry , mode_group ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-08-22 12:35:01 +04:00
return NULL ;
}
2012-05-07 10:24:03 +04:00
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_MASK ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
2017-12-05 21:49:03 +03:00
if ( set_acl_entry_perms ( entry , mode ) ! = 0 ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( acl ) ;
2012-05-07 10:24:03 +04:00
return NULL ;
}
2018-05-24 17:16:19 +03:00
2012-05-07 10:24:03 +04:00
return acl ;
}
/*
set a simple ACL on a file , as a test
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_set_simple_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-05-07 10:24:03 +04:00
{
2019-12-17 14:54:11 +03:00
const char * const kwnames [ ] = {
" fname " ,
" mode " ,
2019-12-17 16:13:30 +03:00
" session_info " ,
2019-12-17 14:54:11 +03:00
" gid " ,
" service " ,
NULL
} ;
2012-10-10 06:48:27 +04:00
char * fname , * service = NULL ;
2019-12-17 16:13:30 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2014-02-05 06:31:22 +04:00
int ret ;
2012-08-22 12:35:01 +04:00
int mode , gid = - 1 ;
2012-05-07 10:24:03 +04:00
SMB_ACL_T acl ;
2012-08-07 04:45:14 +04:00
TALLOC_CTX * frame ;
2012-10-10 06:48:27 +04:00
connection_struct * conn ;
2012-05-07 10:24:03 +04:00
2019-12-17 16:13:30 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siO|iz " ,
2012-12-15 14:17:30 +04:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 14:54:11 +03:00
& fname ,
& mode ,
2019-12-17 16:13:30 +03:00
& py_session ,
2019-12-17 14:54:11 +03:00
& gid ,
& service ) )
2012-05-07 10:24:03 +04:00
return NULL ;
2019-12-17 16:13:30 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
}
2012-08-07 04:45:14 +04:00
frame = talloc_stackframe ( ) ;
2018-05-24 17:16:19 +03:00
acl = make_simple_acl ( frame , gid , mode ) ;
if ( acl = = NULL ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 16:13:30 +03:00
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( frame ) ;
2012-10-10 06:48:27 +04:00
return NULL ;
}
2014-02-05 06:31:22 +04:00
ret = set_sys_acl_conn ( fname , SMB_ACL_TYPE_ACCESS , acl , conn ) ;
2012-08-07 04:45:14 +04:00
2014-02-05 06:31:22 +04:00
if ( ret ! = 0 ) {
TALLOC_FREE ( frame ) ;
errno = ret ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
}
2012-08-07 04:45:14 +04:00
2014-02-05 06:31:22 +04:00
TALLOC_FREE ( frame ) ;
2012-05-07 10:24:03 +04:00
Py_RETURN_NONE ;
}
2012-08-21 08:23:35 +04:00
/*
chown a file
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_chown ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-21 08:23:35 +04:00
{
2019-12-17 14:58:08 +03:00
const char * const kwnames [ ] = {
" fname " ,
" uid " ,
" gid " ,
2019-12-17 16:14:07 +03:00
" session_info " ,
2019-12-17 14:58:08 +03:00
" service " ,
NULL
} ;
2012-08-21 08:23:35 +04:00
connection_struct * conn ;
int ret ;
2019-10-11 00:14:13 +03:00
NTSTATUS status ;
2012-10-10 06:48:27 +04:00
char * fname , * service = NULL ;
2019-12-17 16:14:07 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-08-21 08:23:35 +04:00
int uid , gid ;
TALLOC_CTX * frame ;
2019-10-11 00:14:13 +03:00
struct files_struct * fsp = NULL ;
2012-08-21 08:23:35 +04:00
2019-12-17 16:14:07 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siiO|z " ,
2012-12-15 14:17:30 +04:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 14:58:08 +03:00
& fname ,
& uid ,
& gid ,
2019-12-17 16:14:07 +03:00
& py_session ,
2019-12-17 14:58:08 +03:00
& service ) )
2012-08-21 08:23:35 +04:00
return NULL ;
2019-12-17 16:14:07 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
}
2012-08-21 08:23:35 +04:00
frame = talloc_stackframe ( ) ;
2019-12-17 16:14:07 +03:00
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( frame ) ;
2012-08-21 08:23:35 +04:00
return NULL ;
}
2019-10-11 00:14:13 +03:00
/* first, try to open it as a file with flag O_RDWR */
status = init_files_struct ( frame ,
fname ,
conn ,
O_RDWR ,
& fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) & & errno = = EISDIR ) {
/* if fail, try to open as dir */
status = init_files_struct ( frame ,
fname ,
conn ,
DIRECTORY_FLAGS ,
& fsp ) ;
}
if ( ! NT_STATUS_IS_OK ( status ) ) {
DBG_ERR ( " init_files_struct failed: %s \n " ,
nt_errstr ( status ) ) ;
if ( fsp ! = NULL ) {
2021-12-28 14:25:59 +03:00
fd_close ( fsp ) ;
2019-10-11 00:14:13 +03:00
}
2016-03-03 22:54:23 +03:00
TALLOC_FREE ( frame ) ;
2019-10-11 00:14:13 +03:00
/*
* The following macro raises a python
* error then returns NULL .
*/
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
2016-03-03 22:54:23 +03:00
}
2019-10-11 00:14:13 +03:00
ret = SMB_VFS_FCHOWN ( fsp , uid , gid ) ;
2012-08-21 08:23:35 +04:00
if ( ret ! = 0 ) {
2019-10-11 00:14:13 +03:00
int saved_errno = errno ;
2021-12-28 14:25:59 +03:00
fd_close ( fsp ) ;
2014-02-05 06:31:22 +04:00
TALLOC_FREE ( frame ) ;
2019-10-11 00:14:13 +03:00
errno = saved_errno ;
2014-02-05 06:31:22 +04:00
return PyErr_SetFromErrno ( PyExc_OSError ) ;
2012-08-21 08:23:35 +04:00
}
2021-12-28 14:25:59 +03:00
fd_close ( fsp ) ;
2012-08-21 08:23:35 +04:00
TALLOC_FREE ( frame ) ;
Py_RETURN_NONE ;
}
2012-10-26 10:25:53 +04:00
/*
2014-02-05 06:31:22 +04:00
unlink a file
2012-10-26 10:25:53 +04:00
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_unlink ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-10-26 10:25:53 +04:00
{
2019-12-17 14:59:32 +03:00
const char * const kwnames [ ] = {
" fname " ,
2019-12-17 16:14:45 +03:00
" session_info " ,
2019-12-17 14:59:32 +03:00
" service " ,
NULL
} ;
2012-10-26 10:25:53 +04:00
connection_struct * conn ;
int ret ;
struct smb_filename * smb_fname = NULL ;
2021-01-22 16:54:18 +03:00
struct smb_filename * parent_fname = NULL ;
struct smb_filename * at_fname = NULL ;
2019-12-17 16:14:45 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-10-10 06:48:27 +04:00
char * fname , * service = NULL ;
2012-10-26 10:25:53 +04:00
TALLOC_CTX * frame ;
2021-01-22 16:54:18 +03:00
NTSTATUS status ;
2012-10-26 10:25:53 +04:00
frame = talloc_stackframe ( ) ;
2019-12-17 16:14:45 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " sO|z " ,
2012-12-15 14:17:30 +04:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 14:59:32 +03:00
& fname ,
2019-12-17 16:14:45 +03:00
& py_session ,
2019-12-17 14:59:32 +03:00
& service ) ) {
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
2012-10-26 10:25:53 +04:00
return NULL ;
}
2019-12-17 16:14:45 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
2012-10-26 10:25:53 +04:00
return NULL ;
}
2016-03-10 03:00:47 +03:00
smb_fname = synthetic_smb_fname_split ( frame ,
fname ,
lp_posix_pathnames ( ) ) ;
2013-04-12 14:14:32 +04:00
if ( smb_fname = = NULL ) {
2012-10-26 10:25:53 +04:00
TALLOC_FREE ( frame ) ;
2014-02-05 06:31:22 +04:00
return PyErr_NoMemory ( ) ;
2012-10-26 10:25:53 +04:00
}
2021-01-22 16:54:18 +03:00
status = parent_pathref ( frame ,
conn - > cwd_fsp ,
smb_fname ,
& parent_fname ,
& at_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return PyErr_NoMemory ( ) ;
}
2019-09-13 21:22:06 +03:00
ret = SMB_VFS_UNLINKAT ( conn ,
2021-01-22 16:54:18 +03:00
parent_fname - > fsp ,
at_fname ,
2019-09-13 21:22:06 +03:00
0 ) ;
2012-10-26 10:25:53 +04:00
if ( ret ! = 0 ) {
2014-02-05 06:31:22 +04:00
TALLOC_FREE ( frame ) ;
errno = ret ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
2012-10-26 10:25:53 +04:00
}
TALLOC_FREE ( frame ) ;
Py_RETURN_NONE ;
}
2012-06-21 10:21:54 +04:00
/*
check if we have ACL support
*/
2019-05-02 21:31:18 +03:00
static PyObject * py_smbd_have_posix_acls ( PyObject * self ,
PyObject * Py_UNUSED ( ignored ) )
2012-06-21 10:21:54 +04:00
{
# ifdef HAVE_POSIX_ACLS
return PyBool_FromLong ( true ) ;
# else
return PyBool_FromLong ( false ) ;
# endif
}
2012-08-02 07:35:24 +04:00
/*
2012-08-21 09:10:43 +04:00
set the NT ACL on a file
2012-08-02 07:35:24 +04:00
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_set_nt_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-02 07:35:24 +04:00
{
2018-07-04 01:18:30 +03:00
const char * const kwnames [ ] = {
2019-12-17 16:16:52 +03:00
" fname " ,
" security_info_sent " ,
" sd " ,
" session_info " ,
2019-12-17 16:49:42 +03:00
" service " ,
2019-12-17 16:16:52 +03:00
NULL
} ;
2018-07-04 01:18:30 +03:00
2012-08-02 07:35:24 +04:00
NTSTATUS status ;
2012-10-10 06:48:27 +04:00
char * fname , * service = NULL ;
2012-08-02 07:35:24 +04:00
int security_info_sent ;
PyObject * py_sd ;
struct security_descriptor * sd ;
2018-07-04 01:18:30 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-10-10 06:48:27 +04:00
connection_struct * conn ;
TALLOC_CTX * frame ;
frame = talloc_stackframe ( ) ;
2012-08-02 07:35:24 +04:00
2019-12-17 16:49:42 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siOO|z " ,
2018-07-04 01:18:30 +03:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 16:16:52 +03:00
& fname ,
& security_info_sent ,
& py_sd ,
2019-12-17 16:49:42 +03:00
& py_session ,
& service ) ) {
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
2012-08-02 07:35:24 +04:00
return NULL ;
2012-10-10 06:48:27 +04:00
}
2012-08-02 07:35:24 +04:00
if ( ! py_check_dcerpc_type ( py_sd , " samba.dcerpc.security " , " descriptor " ) ) {
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 16:49:42 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
2018-07-04 01:18:30 +03:00
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
2012-08-02 07:35:24 +04:00
return NULL ;
}
sd = pytalloc_get_type ( py_sd , struct security_descriptor ) ;
2012-10-10 06:48:27 +04:00
status = set_nt_acl_conn ( fname , security_info_sent , sd , conn ) ;
TALLOC_FREE ( frame ) ;
2012-08-02 07:35:24 +04:00
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
Py_RETURN_NONE ;
}
2012-08-02 09:16:13 +04:00
/*
2012-08-21 09:10:43 +04:00
Return the NT ACL on a file
2012-08-02 09:16:13 +04:00
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_get_nt_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-02 09:16:13 +04:00
{
2019-12-17 16:21:03 +03:00
const char * const kwnames [ ] = {
" fname " ,
" security_info_wanted " ,
" session_info " ,
2019-12-17 16:52:49 +03:00
" service " ,
2019-12-17 16:21:03 +03:00
NULL
} ;
2012-10-10 06:48:27 +04:00
char * fname , * service = NULL ;
2012-08-23 03:45:07 +04:00
int security_info_wanted ;
2012-08-02 09:16:13 +04:00
PyObject * py_sd ;
struct security_descriptor * sd ;
2018-05-24 17:16:19 +03:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2018-09-04 16:29:58 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-10-10 06:48:27 +04:00
connection_struct * conn ;
2012-11-14 00:48:53 +04:00
NTSTATUS status ;
2018-09-04 16:29:58 +03:00
int ret = 1 ;
ret = PyArg_ParseTupleAndKeywords ( args ,
kwargs ,
2019-12-17 16:52:49 +03:00
" siO|z " ,
2018-09-04 16:29:58 +03:00
discard_const_p ( char * , kwnames ) ,
& fname ,
& security_info_wanted ,
2019-12-17 16:52:49 +03:00
& py_session ,
& service ) ;
2018-09-04 16:29:58 +03:00
if ( ! ret ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( frame ) ;
2012-08-02 09:16:13 +04:00
return NULL ;
2012-10-10 06:48:27 +04:00
}
2019-12-17 16:52:49 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format (
PyExc_TypeError ,
" Expected auth_session_info for "
" session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
2018-09-04 16:29:58 +03:00
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( frame ) ;
2012-10-10 06:48:27 +04:00
return NULL ;
}
2012-09-25 01:11:05 +04:00
2018-05-24 17:16:19 +03:00
status = get_nt_acl_conn ( frame , fname , conn , security_info_wanted , & sd ) ;
2012-11-14 00:48:53 +04:00
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
2012-08-02 09:16:13 +04:00
2012-08-23 03:39:32 +04:00
py_sd = py_return_ndr_struct ( " samba.dcerpc.security " , " descriptor " , sd , sd ) ;
2012-08-02 09:16:13 +04:00
2018-05-24 17:16:19 +03:00
TALLOC_FREE ( frame ) ;
2012-08-02 09:16:13 +04:00
return py_sd ;
}
2012-08-21 09:11:30 +04:00
/*
set the posix ( or similar ) ACL on a file
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_set_sys_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-21 09:11:30 +04:00
{
2019-12-17 16:54:04 +03:00
const char * const kwnames [ ] = {
" fname " ,
" acl_type " ,
" acl " ,
2019-12-17 16:54:40 +03:00
" session_info " ,
2019-12-17 16:54:04 +03:00
" service " ,
NULL
} ;
2012-10-10 06:48:27 +04:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2014-02-05 06:31:22 +04:00
int ret ;
2012-10-10 06:48:27 +04:00
char * fname , * service = NULL ;
2012-08-21 09:11:30 +04:00
PyObject * py_acl ;
2019-12-17 16:54:40 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-08-21 09:11:30 +04:00
struct smb_acl_t * acl ;
int acl_type ;
2012-10-10 06:48:27 +04:00
connection_struct * conn ;
2012-08-21 09:11:30 +04:00
2019-12-17 16:54:40 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siOO|z " ,
2012-12-15 14:17:30 +04:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 16:54:04 +03:00
& fname ,
& acl_type ,
& py_acl ,
2019-12-17 16:54:40 +03:00
& py_session ,
2019-12-17 16:54:04 +03:00
& service ) ) {
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
2012-08-21 09:11:30 +04:00
return NULL ;
2012-10-10 06:48:27 +04:00
}
2012-08-21 09:11:30 +04:00
2012-08-21 16:41:13 +04:00
if ( ! py_check_dcerpc_type ( py_acl , " samba.dcerpc.smb_acl " , " t " ) ) {
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 16:54:40 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
2012-08-21 09:11:30 +04:00
return NULL ;
}
acl = pytalloc_get_type ( py_acl , struct smb_acl_t ) ;
2014-02-05 06:31:22 +04:00
ret = set_sys_acl_conn ( fname , acl_type , acl , conn ) ;
if ( ret ! = 0 ) {
TALLOC_FREE ( frame ) ;
errno = ret ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
}
2012-08-21 09:11:30 +04:00
2012-10-10 06:48:27 +04:00
TALLOC_FREE ( frame ) ;
2012-08-21 09:11:30 +04:00
Py_RETURN_NONE ;
}
/*
Return the posix ( or similar ) ACL on a file
*/
2012-12-15 14:17:30 +04:00
static PyObject * py_smbd_get_sys_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-21 09:11:30 +04:00
{
2019-12-17 16:55:54 +03:00
const char * const kwnames [ ] = {
" fname " ,
" acl_type " ,
2019-12-17 16:56:18 +03:00
" session_info " ,
2019-12-17 16:55:54 +03:00
" service " ,
NULL
} ;
2012-08-21 09:11:30 +04:00
char * fname ;
PyObject * py_acl ;
2019-12-17 16:56:18 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-08-21 09:11:30 +04:00
struct smb_acl_t * acl ;
int acl_type ;
TALLOC_CTX * frame = talloc_stackframe ( ) ;
connection_struct * conn ;
2012-10-10 06:48:27 +04:00
char * service = NULL ;
2017-05-24 03:11:18 +03:00
struct smb_filename * smb_fname = NULL ;
2021-05-25 01:52:44 +03:00
NTSTATUS status ;
int ret ;
2017-05-24 03:11:18 +03:00
2019-12-17 16:56:18 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siO|z " ,
2012-12-15 14:17:30 +04:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 16:55:54 +03:00
& fname ,
& acl_type ,
2019-12-17 16:56:18 +03:00
& py_session ,
2019-12-17 16:55:54 +03:00
& service ) ) {
2012-08-21 09:11:30 +04:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 16:56:18 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 06:48:27 +04:00
if ( ! conn ) {
2012-08-21 09:11:30 +04:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2017-05-24 03:11:18 +03:00
smb_fname = synthetic_smb_fname_split ( frame ,
fname ,
lp_posix_pathnames ( ) ) ;
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2021-05-25 01:52:44 +03:00
ret = vfs_stat ( conn , smb_fname ) ;
if ( ret = = - 1 ) {
TALLOC_FREE ( frame ) ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
}
status = openat_pathref_fsp ( conn - > cwd_fsp , smb_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
acl = SMB_VFS_SYS_ACL_GET_FD ( smb_fname - > fsp , acl_type , frame ) ;
2012-08-21 09:11:30 +04:00
if ( ! acl ) {
TALLOC_FREE ( frame ) ;
2014-02-05 06:31:22 +04:00
return PyErr_SetFromErrno ( PyExc_OSError ) ;
2012-08-21 09:11:30 +04:00
}
2021-12-28 20:34:20 +03:00
status = fd_close ( smb_fname - > fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
2012-08-21 16:41:13 +04:00
py_acl = py_return_ndr_struct ( " samba.dcerpc.smb_acl " , " t " , acl , acl ) ;
2012-08-21 09:11:30 +04:00
TALLOC_FREE ( frame ) ;
return py_acl ;
}
2018-06-01 04:40:42 +03:00
static PyObject * py_smbd_mkdir ( PyObject * self , PyObject * args , PyObject * kwargs )
{
2019-12-17 16:57:20 +03:00
const char * const kwnames [ ] = {
" fname " ,
2019-12-17 16:57:53 +03:00
" session_info " ,
2019-12-17 16:57:20 +03:00
" service " ,
NULL
} ;
2018-06-01 04:40:42 +03:00
char * fname , * service = NULL ;
2019-12-17 16:57:53 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2018-06-01 04:40:42 +03:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct connection_struct * conn = NULL ;
struct smb_filename * smb_fname = NULL ;
2021-01-15 12:12:29 +03:00
struct smb_filename * parent_fname = NULL ;
struct smb_filename * base_name = NULL ;
NTSTATUS status ;
2019-03-21 07:24:14 +03:00
int ret ;
mode_t saved_umask ;
2018-06-01 04:40:42 +03:00
if ( ! PyArg_ParseTupleAndKeywords ( args ,
kwargs ,
2019-12-17 16:57:53 +03:00
" sO|z " ,
2018-06-01 04:40:42 +03:00
discard_const_p ( char * ,
kwnames ) ,
& fname ,
2019-12-17 16:57:53 +03:00
& py_session ,
2018-06-01 04:40:42 +03:00
& service ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 16:57:53 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2018-06-01 04:40:42 +03:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
smb_fname = synthetic_smb_fname ( talloc_tos ( ) ,
fname ,
NULL ,
NULL ,
2020-04-30 12:48:32 +03:00
0 ,
2018-06-01 04:40:42 +03:00
lp_posix_pathnames ( ) ?
SMB_FILENAME_POSIX_PATH : 0 ) ;
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2021-01-25 17:51:05 +03:00
status = parent_pathref ( talloc_tos ( ) ,
conn - > cwd_fsp ,
smb_fname ,
& parent_fname ,
& base_name ) ;
2021-01-15 12:12:29 +03:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-03-21 07:24:14 +03:00
/* we want total control over the permissions on created files,
so set our umask to 0 */
saved_umask = umask ( 0 ) ;
2019-09-07 01:03:50 +03:00
ret = SMB_VFS_MKDIRAT ( conn ,
2021-01-15 12:12:29 +03:00
parent_fname - > fsp ,
base_name ,
2019-09-07 01:03:50 +03:00
00755 ) ;
2018-06-01 04:40:42 +03:00
2019-03-21 07:24:14 +03:00
umask ( saved_umask ) ;
if ( ret = = - 1 ) {
2019-09-07 01:03:50 +03:00
DBG_ERR ( " mkdirat error=%d (%s) \n " , errno , strerror ( errno ) ) ;
2018-06-01 04:40:42 +03:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
TALLOC_FREE ( frame ) ;
Py_RETURN_NONE ;
}
2018-06-01 04:48:31 +03:00
/*
Create an empty file
*/
static PyObject * py_smbd_create_file ( PyObject * self , PyObject * args , PyObject * kwargs )
{
2019-12-17 16:58:32 +03:00
const char * const kwnames [ ] = {
" fname " ,
2019-12-17 16:58:57 +03:00
" session_info " ,
2019-12-17 16:58:32 +03:00
" service " ,
NULL
} ;
2018-06-01 04:48:31 +03:00
char * fname , * service = NULL ;
2019-12-17 16:58:57 +03:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2018-06-01 04:48:31 +03:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct connection_struct * conn = NULL ;
struct files_struct * fsp = NULL ;
NTSTATUS status ;
if ( ! PyArg_ParseTupleAndKeywords ( args ,
kwargs ,
2019-12-17 16:58:57 +03:00
" sO|z " ,
2018-06-01 04:48:31 +03:00
discard_const_p ( char * ,
kwnames ) ,
& fname ,
2019-12-17 16:58:57 +03:00
& py_session ,
2018-06-01 04:48:31 +03:00
& service ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 16:58:57 +03:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2018-06-01 04:48:31 +03:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
status = init_files_struct ( frame ,
fname ,
conn ,
O_CREAT | O_EXCL | O_RDWR ,
& fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DBG_ERR ( " init_files_struct failed: %s \n " ,
nt_errstr ( status ) ) ;
2021-02-09 15:48:36 +03:00
} else if ( fsp ! = NULL ) {
2021-12-28 14:25:59 +03:00
fd_close ( fsp ) ;
2018-06-01 04:48:31 +03:00
}
TALLOC_FREE ( frame ) ;
2021-02-09 15:48:36 +03:00
PyErr_NTSTATUS_NOT_OK_RAISE ( status ) ;
2018-06-01 04:48:31 +03:00
Py_RETURN_NONE ;
}
2012-05-07 10:24:03 +04:00
static PyMethodDef py_smbd_methods [ ] = {
2012-06-21 10:21:54 +04:00
{ " have_posix_acls " ,
2012-12-15 14:17:30 +04:00
( PyCFunction ) py_smbd_have_posix_acls , METH_NOARGS ,
2012-06-21 10:21:54 +04:00
NULL } ,
2012-05-07 10:24:03 +04:00
{ " set_simple_acl " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_set_simple_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-05-07 10:24:03 +04:00
NULL } ,
2012-08-02 07:35:24 +04:00
{ " set_nt_acl " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_set_nt_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-02 07:35:24 +04:00
NULL } ,
2012-08-02 09:16:13 +04:00
{ " get_nt_acl " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_get_nt_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-02 09:16:13 +04:00
NULL } ,
2012-08-21 09:11:30 +04:00
{ " get_sys_acl " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_get_sys_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-21 09:11:30 +04:00
NULL } ,
{ " set_sys_acl " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_set_sys_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-21 09:11:30 +04:00
NULL } ,
2012-08-21 08:23:35 +04:00
{ " chown " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_chown ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-21 08:23:35 +04:00
NULL } ,
2012-10-26 10:25:53 +04:00
{ " unlink " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_unlink ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-10-26 10:25:53 +04:00
NULL } ,
2018-06-01 04:40:42 +03:00
{ " mkdir " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_mkdir ) ,
METH_VARARGS | METH_KEYWORDS ,
2018-06-01 04:40:42 +03:00
NULL } ,
2018-06-01 04:48:31 +03:00
{ " create_file " ,
2019-05-02 21:31:18 +03:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_create_file ) ,
METH_VARARGS | METH_KEYWORDS ,
2018-06-01 04:48:31 +03:00
NULL } ,
2020-05-05 04:47:39 +03:00
{ 0 }
2012-05-07 10:24:03 +04:00
} ;
void initsmbd ( void ) ;
2018-02-05 14:10:46 +03:00
static struct PyModuleDef moduledef = {
PyModuleDef_HEAD_INIT ,
. m_name = " smbd " ,
. m_doc = " Python bindings for the smbd file server. " ,
. m_size = - 1 ,
. m_methods = py_smbd_methods ,
} ;
MODULE_INIT_FUNC ( smbd )
{
PyObject * m = NULL ;
2012-05-07 10:24:03 +04:00
2018-02-05 14:10:46 +03:00
m = PyModule_Create ( & moduledef ) ;
return m ;
2012-05-07 10:24:03 +04:00
}