2003-08-13 01:53:07 +00:00
/*
Unix SMB / CIFS implementation .
Common popt routines
Copyright ( C ) Tim Potter 2001 , 2002
Copyright ( C ) Jelmer Vernooij 2002 , 2003
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 2 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; if not , write to the Free Software
Foundation , Inc . , 675 Mass Ave , Cambridge , MA 0213 9 , USA .
*/
# include "includes.h"
2004-11-03 00:17:12 +00:00
# include "dynconfig.h"
2004-11-02 03:13:06 +00:00
# include "system/passwd.h"
2004-11-02 02:57:18 +00:00
# include "lib/cmdline/popt_common.h"
2003-08-13 01:53:07 +00:00
/* Handle command line options:
* - d , - - debuglevel
* - s , - - configfile
* - O , - - socket - options
* - V , - - version
* - l , - - log - base
* - n , - - netbios - name
* - W , - - workgroup
* - i , - - scope
*/
2004-09-13 01:27:37 +00:00
2004-09-27 04:20:18 +00:00
enum { OPT_OPTION = 1 , OPT_LEAK_REPORT , OPT_LEAK_REPORT_FULL } ;
2004-09-13 01:27:37 +00:00
2004-08-20 09:48:25 +00:00
static struct cmdline_auth_info cmdline_auth_info ;
2003-08-13 01:53:07 +00:00
static void popt_common_callback ( poptContext con ,
enum poptCallbackReason reason ,
const struct poptOption * opt ,
const char * arg , const void * data )
{
const char * pname ;
/* Find out basename of current program */
pname = strrchr_m ( poptGetInvocationName ( con ) , ' / ' ) ;
if ( ! pname )
pname = poptGetInvocationName ( con ) ;
else
pname + + ;
if ( reason = = POPT_CALLBACK_REASON_PRE ) {
2004-09-13 01:27:37 +00:00
char * logfile = talloc_asprintf ( NULL , " %s/log.%s " , dyn_LOGFILEBASE , pname ) ;
2003-08-13 01:53:07 +00:00
lp_set_cmdline ( " log file " , logfile ) ;
2004-09-13 01:27:37 +00:00
talloc_free ( logfile ) ;
2003-08-13 01:53:07 +00:00
return ;
}
switch ( opt - > val ) {
case ' d ' :
lp_set_cmdline ( " log level " , arg ) ;
break ;
case ' V ' :
2004-01-28 12:47:52 +00:00
printf ( " Version %s \n " , SAMBA_VERSION_STRING ) ;
2003-08-13 01:53:07 +00:00
exit ( 0 ) ;
break ;
2004-08-19 12:16:48 +00:00
case ' O ' :
if ( arg ) {
lp_set_cmdline ( " socket options " , arg ) ;
}
break ;
2003-08-13 01:53:07 +00:00
case ' s ' :
if ( arg ) {
pstrcpy ( dyn_CONFIGFILE , arg ) ;
}
break ;
case ' l ' :
if ( arg ) {
2004-09-13 01:27:37 +00:00
char * logfile = talloc_asprintf ( NULL , " %s/log.%s " , arg , pname ) ;
2003-08-13 01:53:07 +00:00
lp_set_cmdline ( " log file " , logfile ) ;
2004-09-13 01:27:37 +00:00
talloc_free ( logfile ) ;
2003-08-13 01:53:07 +00:00
}
break ;
case ' W ' :
lp_set_cmdline ( " workgroup " , arg ) ;
break ;
case ' n ' :
lp_set_cmdline ( " netbios name " , arg ) ;
break ;
case ' i ' :
lp_set_cmdline ( " netbios scope " , arg ) ;
break ;
2003-11-27 04:00:21 +00:00
case ' m ' :
lp_set_cmdline ( " max protocol " , arg ) ;
break ;
2004-08-19 12:16:48 +00:00
case ' R ' :
lp_set_cmdline ( " name resolve order " , arg ) ;
break ;
2004-09-13 01:27:37 +00:00
case OPT_OPTION :
if ( ! lp_set_option ( arg ) ) {
fprintf ( stderr , " Error setting option '%s' \n " , arg ) ;
exit ( 1 ) ;
}
break ;
2004-09-26 01:14:26 +00:00
2004-09-27 04:20:18 +00:00
case OPT_LEAK_REPORT :
talloc_enable_leak_report ( ) ;
break ;
case OPT_LEAK_REPORT_FULL :
talloc_enable_leak_report_full ( ) ;
2004-09-26 01:14:26 +00:00
break ;
2003-08-13 01:53:07 +00:00
}
}
struct poptOption popt_common_connection [ ] = {
{ NULL , 0 , POPT_ARG_CALLBACK , popt_common_callback } ,
2004-08-19 12:16:48 +00:00
{ " name-resolve " , ' R ' , POPT_ARG_STRING , NULL , ' R ' , " Use these name resolution services only " , " NAME-RESOLVE-ORDER " } ,
{ " socket-options " , ' O ' , POPT_ARG_STRING , NULL , ' O ' , " socket options to use " , " SOCKETOPTIONS " } ,
2003-08-13 01:53:07 +00:00
{ " netbiosname " , ' n ' , POPT_ARG_STRING , NULL , ' n ' , " Primary netbios name " , " NETBIOSNAME " } ,
{ " workgroup " , ' W ' , POPT_ARG_STRING , NULL , ' W ' , " Set the workgroup name " , " WORKGROUP " } ,
{ " scope " , ' i ' , POPT_ARG_STRING , NULL , ' i ' , " Use this Netbios scope " , " SCOPE " } ,
2003-11-27 04:00:21 +00:00
{ " maxprotocol " , ' m ' , POPT_ARG_STRING , NULL , ' m ' , " Set max protocol level " , " MAXPROTOCOL " } ,
2003-08-13 01:53:07 +00:00
POPT_TABLEEND
} ;
struct poptOption popt_common_samba [ ] = {
{ NULL , 0 , POPT_ARG_CALLBACK | POPT_CBFLAG_PRE , popt_common_callback } ,
2004-09-26 01:14:26 +00:00
{ " debuglevel " , ' d ' , POPT_ARG_STRING , NULL , ' d ' , " Set debug level " , " DEBUGLEVEL " } ,
{ " configfile " , ' s ' , POPT_ARG_STRING , NULL , ' s ' , " Use alternative configuration file " , " CONFIGFILE " } ,
{ " option " , 0 , POPT_ARG_STRING , NULL , OPT_OPTION , " Set smb.conf option from command line " , " name=value " } ,
2003-08-13 01:53:07 +00:00
{ " log-basename " , ' l ' , POPT_ARG_STRING , NULL , ' l ' , " Basename for log/debug files " , " LOGFILEBASE " } ,
2004-09-27 04:20:18 +00:00
{ " leak-report " , 0 , POPT_ARG_NONE , NULL , OPT_LEAK_REPORT , " enable talloc leak reporting on exit " , NULL } ,
{ " leak-report-full " , 0 , POPT_ARG_NONE , NULL , OPT_LEAK_REPORT_FULL , " enable full talloc leak reporting on exit " , NULL } ,
2003-08-13 01:53:07 +00:00
POPT_TABLEEND
} ;
struct poptOption popt_common_version [ ] = {
{ NULL , 0 , POPT_ARG_CALLBACK , popt_common_callback } ,
{ " version " , ' V ' , POPT_ARG_NONE , NULL , ' V ' , " Print version " } ,
POPT_TABLEEND
} ;
/****************************************************************************
* get a password from a a file or file descriptor
* exit on failure
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
2004-08-19 12:16:48 +00:00
static void get_password_file ( struct cmdline_auth_info * a )
2003-08-13 01:53:07 +00:00
{
int fd = - 1 ;
char * p ;
BOOL close_it = False ;
pstring spec ;
char pass [ 128 ] ;
if ( ( p = getenv ( " PASSWD_FD " ) ) ! = NULL ) {
pstrcpy ( spec , " descriptor " ) ;
pstrcat ( spec , p ) ;
sscanf ( p , " %d " , & fd ) ;
close_it = False ;
} else if ( ( p = getenv ( " PASSWD_FILE " ) ) ! = NULL ) {
2004-11-01 20:21:54 +00:00
fd = open ( p , O_RDONLY , 0 ) ;
2003-08-13 01:53:07 +00:00
pstrcpy ( spec , p ) ;
if ( fd < 0 ) {
fprintf ( stderr , " Error opening PASSWD_FILE %s: %s \n " ,
spec , strerror ( errno ) ) ;
exit ( 1 ) ;
}
close_it = True ;
}
for ( p = pass , * p = ' \0 ' ; /* ensure that pass is null-terminated */
p & & p - pass < sizeof ( pass ) ; ) {
switch ( read ( fd , p , 1 ) ) {
case 1 :
if ( * p ! = ' \n ' & & * p ! = ' \0 ' ) {
* + + p = ' \0 ' ; /* advance p, and null-terminate pass */
break ;
}
case 0 :
if ( p - pass ) {
* p = ' \0 ' ; /* null-terminate it, just in case... */
p = NULL ; /* then force the loop condition to become false */
break ;
} else {
fprintf ( stderr , " Error reading password from file %s: %s \n " ,
spec , " empty password \n " ) ;
exit ( 1 ) ;
}
default :
fprintf ( stderr , " Error reading password from file %s: %s \n " ,
spec , strerror ( errno ) ) ;
exit ( 1 ) ;
}
}
pstrcpy ( a - > password , pass ) ;
if ( close_it )
close ( fd ) ;
}
2004-08-19 12:16:48 +00:00
static void get_credentials_file ( const char * file , struct cmdline_auth_info * info )
2003-08-13 01:53:07 +00:00
{
XFILE * auth ;
fstring buf ;
2004-05-25 17:24:24 +00:00
uint16_t len = 0 ;
2003-08-13 01:53:07 +00:00
char * ptr , * val , * param ;
if ( ( auth = x_fopen ( file , O_RDONLY , 0 ) ) = = NULL )
{
/* fail if we can't open the credentials file */
d_printf ( " ERROR: Unable to open credentials file! \n " ) ;
exit ( - 1 ) ;
}
while ( ! x_feof ( auth ) )
{
/* get a line from the file */
if ( ! x_fgets ( buf , sizeof ( buf ) , auth ) )
continue ;
len = strlen ( buf ) ;
if ( ( len ) & & ( buf [ len - 1 ] = = ' \n ' ) )
{
buf [ len - 1 ] = ' \0 ' ;
len - - ;
}
if ( len = = 0 )
continue ;
/* break up the line into parameter & value.
* will need to eat a little whitespace possibly */
param = buf ;
if ( ! ( ptr = strchr_m ( buf , ' = ' ) ) )
continue ;
val = ptr + 1 ;
* ptr = ' \0 ' ;
/* eat leading white space */
while ( ( * val ! = ' \0 ' ) & & ( ( * val = = ' ' ) | | ( * val = = ' \t ' ) ) )
val + + ;
2004-10-21 00:47:05 +00:00
if ( strwicmp ( " password " , param ) = = 0 ) {
2003-08-13 01:53:07 +00:00
pstrcpy ( info - > password , val ) ;
info - > got_pass = True ;
2004-10-21 00:47:05 +00:00
} else if ( strwicmp ( " username " , param ) = = 0 ) {
2003-08-13 01:53:07 +00:00
pstrcpy ( info - > username , val ) ;
2004-10-21 00:47:05 +00:00
} else if ( strwicmp ( " domain " , param ) = = 0 ) {
2004-08-19 12:16:48 +00:00
pstrcpy ( info - > domain , val ) ;
2004-10-21 00:47:05 +00:00
info - > got_domain = True ;
}
2003-08-13 01:53:07 +00:00
memset ( buf , 0 , sizeof ( buf ) ) ;
}
x_fclose ( auth ) ;
}
/* Handle command line options:
* - U , - - user
* - A , - - authentication - file
* - k , - - use - kerberos
* - N , - - no - pass
2004-08-19 12:16:48 +00:00
* - S , - - signing
* - P - - machine - pass
2003-08-13 01:53:07 +00:00
*/
static void popt_common_credentials_callback ( poptContext con ,
2004-08-19 12:16:48 +00:00
enum poptCallbackReason reason ,
const struct poptOption * opt ,
const char * arg , const void * data )
2003-08-13 01:53:07 +00:00
{
char * p ;
if ( reason = = POPT_CALLBACK_REASON_PRE ) {
cmdline_auth_info . use_kerberos = False ;
cmdline_auth_info . got_pass = False ;
pstrcpy ( cmdline_auth_info . username , " GUEST " ) ;
if ( getenv ( " LOGNAME " ) ) pstrcpy ( cmdline_auth_info . username , getenv ( " LOGNAME " ) ) ;
if ( getenv ( " USER " ) ) {
2004-08-19 12:16:48 +00:00
pstring tmp ;
2003-08-13 01:53:07 +00:00
pstrcpy ( cmdline_auth_info . username , getenv ( " USER " ) ) ;
2004-08-19 12:16:48 +00:00
pstrcpy ( tmp , cmdline_auth_info . username ) ;
if ( ( p = strchr_m ( tmp , ' \\ ' ) ) ) {
* p = 0 ;
pstrcpy ( cmdline_auth_info . domain , tmp ) ;
2004-10-21 00:26:43 +00:00
cmdline_auth_info . got_domain = True ;
2004-08-19 12:16:48 +00:00
pstrcpy ( cmdline_auth_info . username , p + 1 ) ;
}
2003-08-13 01:53:07 +00:00
if ( ( p = strchr_m ( cmdline_auth_info . username , ' % ' ) ) ) {
* p = 0 ;
pstrcpy ( cmdline_auth_info . password , p + 1 ) ;
cmdline_auth_info . got_pass = True ;
memset ( strchr_m ( getenv ( " USER " ) , ' % ' ) + 1 , ' X ' , strlen ( cmdline_auth_info . password ) ) ;
}
}
2004-08-19 12:16:48 +00:00
if ( getenv ( " DOMAIN " ) ) {
pstrcpy ( cmdline_auth_info . domain , getenv ( " DOMAIN " ) ) ;
2004-10-21 00:26:43 +00:00
cmdline_auth_info . got_domain = True ;
2004-08-19 12:16:48 +00:00
}
2003-08-13 01:53:07 +00:00
if ( getenv ( " PASSWD " ) ) {
pstrcpy ( cmdline_auth_info . password , getenv ( " PASSWD " ) ) ;
cmdline_auth_info . got_pass = True ;
}
if ( getenv ( " PASSWD_FD " ) | | getenv ( " PASSWD_FILE " ) ) {
get_password_file ( & cmdline_auth_info ) ;
cmdline_auth_info . got_pass = True ;
}
return ;
}
switch ( opt - > val ) {
case ' U ' :
{
char * lp ;
2004-08-19 12:16:48 +00:00
pstring tmp ;
2003-08-13 01:53:07 +00:00
pstrcpy ( cmdline_auth_info . username , arg ) ;
2004-08-19 12:16:48 +00:00
pstrcpy ( tmp , cmdline_auth_info . username ) ;
if ( ( p = strchr_m ( tmp , ' \\ ' ) ) ) {
* p = 0 ;
pstrcpy ( cmdline_auth_info . domain , tmp ) ;
2004-10-21 00:26:43 +00:00
cmdline_auth_info . got_domain = True ;
2004-08-19 12:16:48 +00:00
pstrcpy ( cmdline_auth_info . username , p + 1 ) ;
}
2003-08-13 01:53:07 +00:00
if ( ( lp = strchr_m ( cmdline_auth_info . username , ' % ' ) ) ) {
* lp = 0 ;
pstrcpy ( cmdline_auth_info . password , lp + 1 ) ;
cmdline_auth_info . got_pass = True ;
memset ( strchr_m ( arg , ' % ' ) + 1 , ' X ' , strlen ( cmdline_auth_info . password ) ) ;
}
}
break ;
case ' A ' :
get_credentials_file ( arg , & cmdline_auth_info ) ;
break ;
case ' k ' :
# ifndef HAVE_KRB5
d_printf ( " No kerberos support compiled in \n " ) ;
exit ( 1 ) ;
# else
cmdline_auth_info . use_kerberos = True ;
cmdline_auth_info . got_pass = True ;
2004-12-02 18:27:08 +00:00
lp_set_cmdline ( " gensec:krb5 " , " True " ) ;
lp_set_cmdline ( " gensec:ms_krb5 " , " True " ) ;
2003-08-13 01:53:07 +00:00
# endif
break ;
2004-08-19 12:16:48 +00:00
case ' S ' :
lp_set_cmdline ( " client signing " , arg ) ;
break ;
case ' P ' :
{
char * opt_password = NULL ;
/* it is very useful to be able to make ads queries as the
machine account for testing purposes and for domain leave */
if ( ! secrets_init ( ) ) {
d_printf ( " ERROR: Unable to open secrets database \n " ) ;
exit ( 1 ) ;
}
opt_password = secrets_fetch_machine_password ( lp_workgroup ( ) ) ;
if ( ! opt_password ) {
d_printf ( " ERROR: Unable to fetch machine password \n " ) ;
exit ( 1 ) ;
}
2004-10-08 08:13:00 +00:00
snprintf ( cmdline_auth_info . username , sizeof ( cmdline_auth_info . username ) ,
" %s$ " , lp_netbios_name ( ) ) ;
2004-08-19 12:16:48 +00:00
pstrcpy ( cmdline_auth_info . password , opt_password ) ;
SAFE_FREE ( opt_password ) ;
2004-10-21 00:47:05 +00:00
cmdline_auth_info . got_pass = True ;
2004-08-19 12:16:48 +00:00
2004-10-21 00:47:05 +00:00
pstrcpy ( cmdline_auth_info . domain , lp_workgroup ( ) ) ;
2004-10-21 00:49:39 +00:00
cmdline_auth_info . got_domain = True ;
2004-10-21 00:47:05 +00:00
2004-08-19 12:16:48 +00:00
/* machine accounts only work with kerberos */
cmdline_auth_info . use_kerberos = True ;
}
break ;
2003-08-13 01:53:07 +00:00
}
}
struct poptOption popt_common_credentials [ ] = {
{ NULL , 0 , POPT_ARG_CALLBACK | POPT_CBFLAG_PRE , popt_common_credentials_callback } ,
{ " user " , ' U ' , POPT_ARG_STRING , NULL , ' U ' , " Set the network username " , " USERNAME " } ,
2004-09-10 03:37:29 +00:00
{ " no-pass " , ' N ' , POPT_ARG_NONE , & cmdline_auth_info . got_pass , 0 , " Don't ask for a password " } ,
{ " kerberos " , ' k ' , POPT_ARG_NONE , & cmdline_auth_info . use_kerberos , ' k ' , " Use kerberos (active directory) authentication " } ,
2003-08-13 01:53:07 +00:00
{ " authentication-file " , ' A ' , POPT_ARG_STRING , NULL , ' A ' , " Get the credentials from a file " , " FILE " } ,
2004-08-19 12:16:48 +00:00
{ " signing " , ' S ' , POPT_ARG_STRING , NULL , ' S ' , " Set the client signing state " , " on|off|required " } ,
{ " machine-pass " , ' P ' , POPT_ARG_NONE , NULL , ' P ' , " Use stored machine account password " } ,
2003-08-13 01:53:07 +00:00
POPT_TABLEEND
} ;
2004-08-20 09:48:25 +00:00
2004-08-20 13:24:28 +00:00
void cmdline_set_username ( const char * name )
{
pstrcpy ( cmdline_auth_info . username , name ) ;
}
2004-08-20 09:48:25 +00:00
const char * cmdline_get_username ( void )
{
return cmdline_auth_info . username ;
}
2004-08-20 13:24:28 +00:00
void cmdline_set_userdomain ( const char * domain )
{
2004-10-21 00:26:43 +00:00
cmdline_auth_info . got_domain = True ;
2004-08-20 13:24:28 +00:00
pstrcpy ( cmdline_auth_info . domain , domain ) ;
}
2004-08-20 09:48:25 +00:00
const char * cmdline_get_userdomain ( void )
{
2004-10-21 00:26:43 +00:00
if ( cmdline_auth_info . got_domain ) {
2004-08-20 09:48:25 +00:00
return cmdline_auth_info . domain ;
}
/* I think this should be lp_netbios_name()
* instead of lp_workgroup ( ) , because if you ' re logged in
* as domain user the getenv ( " USER " ) contains the domain
* and this code path isn ' t used
* - - metze
*/
return lp_netbios_name ( ) ;
}
const char * cmdline_get_userpassword ( void )
{
2004-10-08 08:13:00 +00:00
char * prompt ;
char * ret ;
2004-08-20 09:48:25 +00:00
if ( cmdline_auth_info . got_pass ) {
return cmdline_auth_info . password ;
}
2004-10-08 08:13:00 +00:00
prompt = talloc_asprintf ( NULL , " Password for [%s \\ %s]: " ,
cmdline_get_userdomain ( ) ,
cmdline_get_username ( ) ) ;
2004-08-20 09:48:25 +00:00
2004-10-08 08:13:00 +00:00
ret = getpass ( prompt ) ;
talloc_free ( prompt ) ;
return ret ;
2004-08-20 09:48:25 +00:00
}
2004-08-20 13:24:28 +00:00
void cmdline_set_userpassword ( const char * pass )
{
cmdline_auth_info . got_pass = True ;
pstrcpy ( cmdline_auth_info . password , pass ) ;
}
void cmdline_set_use_kerberos ( BOOL use_kerberos )
{
cmdline_auth_info . use_kerberos = use_kerberos ;
}
BOOL cmdline_get_use_kerberos ( void )
{
return cmdline_auth_info . use_kerberos ;
}
