2012-05-07 16:24:03 +10:00
/*
Unix SMB / CIFS implementation .
2012-09-24 14:11:05 -07:00
Set NT and POSIX ACLs and other VFS operations from Python
2012-08-02 13:36:43 +10:00
Copyrigyt ( C ) Andrew Bartlett 2012
2012-05-07 16:24:03 +10:00
Copyright ( C ) Jeremy Allison 1994 - 2009.
Copyright ( C ) Andreas Gruenbacher 2002.
Copyright ( C ) Simo Sorce < idra @ samba . org > 2009.
2012-08-02 13:35:24 +10:00
Copyright ( C ) Simo Sorce 2002
Copyright ( C ) Eric Lorimer 2002
2012-05-07 16:24:03 +10:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
2023-11-09 11:35:56 +01:00
# include "lib/replace/system/python.h"
2012-05-07 16:24:03 +10:00
# include "includes.h"
2018-02-05 11:10:46 +00:00
# include "python/py3compat.h"
2019-05-02 19:31:18 +01:00
# include "python/modules.h"
2012-05-07 16:24:03 +10:00
# include "smbd/smbd.h"
# include "libcli/util/pyerrors.h"
2012-08-02 13:35:24 +10:00
# include "librpc/rpc/pyrpc_util.h"
# include <pytalloc.h>
# include "system/filesys.h"
2018-09-04 15:29:58 +02:00
# include "passdb.h"
# include "secrets.h"
# include "auth.h"
2012-05-07 16:24:03 +10:00
extern const struct generic_mapping file_generic_mapping ;
# undef DBGC_CLASS
# define DBGC_CLASS DBGC_ACLS
2018-06-01 13:45:25 +12:00
# ifdef O_DIRECTORY
# define DIRECTORY_FLAGS O_RDONLY|O_DIRECTORY
# else
/* POSIX allows us to open a directory with O_RDONLY. */
# define DIRECTORY_FLAGS O_RDONLY
# endif
2018-07-04 10:05:50 +12:00
static connection_struct * get_conn_tos (
const char * service ,
const struct auth_session_info * session_info )
2012-05-07 16:24:03 +10:00
{
2018-05-24 16:16:19 +02:00
struct conn_struct_tos * c = NULL ;
2013-01-08 14:18:27 -08:00
int snum = - 1 ;
NTSTATUS status ;
2019-09-06 14:51:29 -07:00
char * cwd = NULL ;
struct smb_filename cwd_fname = { 0 } ;
int ret ;
2013-01-08 14:18:27 -08:00
2012-10-10 13:48:27 +11:00
if ( ! posix_locking_init ( false ) ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
if ( service ) {
2013-01-08 14:18:27 -08:00
snum = lp_servicenumber ( service ) ;
2012-10-10 13:48:27 +11:00
if ( snum = = - 1 ) {
PyErr_SetString ( PyExc_RuntimeError , " unknown service " ) ;
return NULL ;
}
2013-01-08 14:18:27 -08:00
}
2012-10-10 13:48:27 +11:00
2020-06-02 15:33:36 +02:00
/*
* Make sure that session unix info is filled ,
* which is required by vfs operations .
*/
if ( session_info - > unix_info = = NULL ) {
PyErr_SetString ( PyExc_RuntimeError ,
" Session unix info not initialized " ) ;
return NULL ;
}
if ( session_info - > unix_info - > unix_name = = NULL ) {
PyErr_SetString ( PyExc_RuntimeError ,
" Session unix info not available " ) ;
return NULL ;
}
2018-05-24 16:16:19 +02:00
status = create_conn_struct_tos ( NULL ,
snum ,
" / " ,
2018-07-04 10:05:50 +12:00
session_info ,
2018-05-24 16:16:19 +02:00
& c ) ;
2013-01-08 14:18:27 -08:00
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
2012-10-10 13:48:27 +11:00
2013-01-08 14:18:27 -08:00
/* Ignore read-only and share restrictions */
2018-05-24 16:16:19 +02:00
c - > conn - > read_only = false ;
c - > conn - > share_access = SEC_RIGHTS_FILE_ALL ;
2019-09-06 14:51:29 -07:00
/* Provided by libreplace if not present. Always mallocs. */
cwd = get_current_dir_name ( ) ;
if ( cwd = = NULL ) {
PyErr_NoMemory ( ) ;
return NULL ;
}
cwd_fname . base_name = cwd ;
/*
* We need to call vfs_ChDir ( ) to initialize
* conn - > cwd_fsp correctly . Change directory
* to current directory ( so no change for process ) .
*/
ret = vfs_ChDir ( c - > conn , & cwd_fname ) ;
if ( ret ! = 0 ) {
status = map_nt_error_from_unix ( errno ) ;
SAFE_FREE ( cwd ) ;
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
}
SAFE_FREE ( cwd ) ;
2018-05-24 16:16:19 +02:00
return c - > conn ;
2012-10-10 13:48:27 +11:00
}
2014-02-05 15:31:22 +13:00
static int set_sys_acl_conn ( const char * fname ,
2012-10-10 13:48:27 +11:00
SMB_ACL_TYPE_T acltype ,
SMB_ACL_T theacl , connection_struct * conn )
{
2012-05-07 16:24:03 +10:00
int ret ;
2017-05-24 10:47:46 -07:00
struct smb_filename * smb_fname = NULL ;
2012-10-10 13:48:27 +11:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2020-12-14 11:25:12 +01:00
NTSTATUS status ;
2012-05-07 16:24:03 +10:00
2024-10-21 15:45:47 +02:00
smb_fname = synthetic_smb_fname_split (
frame ,
canonicalize_absolute_path ( talloc_tos ( ) , fname ) ,
lp_posix_pathnames ( ) ) ;
2017-05-24 10:47:46 -07:00
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return - 1 ;
}
2020-12-14 11:25:12 +01:00
status = openat_pathref_fsp ( conn - > cwd_fsp , smb_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
errno = map_errno_from_nt_status ( status ) ;
return - 1 ;
}
ret = SMB_VFS_SYS_ACL_SET_FD ( smb_fname - > fsp , acltype , theacl ) ;
2012-05-07 16:24:03 +10:00
2021-12-28 18:34:20 +01:00
status = fd_close ( smb_fname - > fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
errno = map_errno_from_nt_status ( status ) ;
return - 1 ;
}
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
2014-02-05 15:31:22 +13:00
return ret ;
2012-05-07 16:24:03 +10:00
}
2018-06-01 13:45:25 +12:00
static NTSTATUS init_files_struct ( TALLOC_CTX * mem_ctx ,
const char * fname ,
struct connection_struct * conn ,
int flags ,
struct files_struct * * _fsp )
2012-08-02 13:35:24 +10:00
{
2022-06-03 15:53:29 +02:00
struct vfs_open_how how = { . flags = flags , . mode = 0644 } ;
2012-08-02 13:35:24 +10:00
struct smb_filename * smb_fname = NULL ;
2020-09-26 21:46:51 +02:00
int fd ;
2012-10-26 14:22:07 +11:00
mode_t saved_umask ;
2018-06-01 13:45:25 +12:00
struct files_struct * fsp ;
2020-05-19 21:33:00 +02:00
struct files_struct * fspcwd = NULL ;
NTSTATUS status ;
2012-10-26 14:22:07 +11:00
2018-06-01 13:45:25 +12:00
fsp = talloc_zero ( mem_ctx , struct files_struct ) ;
2012-08-02 13:35:24 +10:00
if ( fsp = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
2020-09-27 21:16:03 +02:00
fsp - > fh = fd_handle_create ( fsp ) ;
2012-08-02 13:35:24 +10:00
if ( fsp - > fh = = NULL ) {
return NT_STATUS_NO_MEMORY ;
}
fsp - > conn = conn ;
2024-10-21 15:45:47 +02:00
smb_fname = synthetic_smb_fname_split (
fsp ,
canonicalize_absolute_path ( talloc_tos ( ) , fname ) ,
lp_posix_pathnames ( ) ) ;
2013-04-12 12:06:51 +02:00
if ( smb_fname = = NULL ) {
return NT_STATUS_NO_MEMORY ;
2012-08-02 13:35:24 +10:00
}
fsp - > fsp_name = smb_fname ;
2019-03-14 18:20:06 +13:00
2020-05-19 21:33:00 +02:00
status = vfs_at_fspcwd ( fsp , conn , & fspcwd ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
return status ;
}
2019-03-14 18:20:06 +13:00
/*
* we want total control over the permissions on created files ,
* so set our umask to 0 ( this matters if flags contains O_CREAT )
*/
saved_umask = umask ( 0 ) ;
2020-09-26 21:46:51 +02:00
fd = SMB_VFS_OPENAT ( conn ,
fspcwd ,
smb_fname ,
fsp ,
2022-06-03 15:53:29 +02:00
& how ) ;
2019-03-14 18:20:06 +13:00
umask ( saved_umask ) ;
2020-09-26 21:46:51 +02:00
if ( fd = = - 1 ) {
2018-09-19 16:52:54 +02:00
int err = errno ;
if ( err = = ENOENT ) {
return NT_STATUS_OBJECT_NAME_NOT_FOUND ;
}
2018-06-01 13:45:25 +12:00
return NT_STATUS_INVALID_PARAMETER ;
2012-08-02 13:35:24 +10:00
}
2020-09-26 21:46:51 +02:00
fsp_set_fd ( fsp , fd ) ;
2012-08-02 13:35:24 +10:00
2022-03-18 14:57:13 -07:00
status = vfs_stat_fsp ( fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
2012-11-13 12:34:35 -08:00
/* If we have an fd, this stat should succeed. */
2018-06-01 13:45:25 +12:00
DEBUG ( 0 , ( " Error doing fstat on open file %s (%s) \n " ,
smb_fname_str_dbg ( smb_fname ) ,
2022-03-18 14:57:13 -07:00
nt_errstr ( status ) ) ) ;
return status ;
2012-11-13 12:34:35 -08:00
}
fsp - > file_id = vfs_file_id_from_sbuf ( conn , & smb_fname - > st ) ;
fsp - > vuid = UID_FIELD_INVALID ;
fsp - > file_pid = 0 ;
2020-04-02 17:09:36 +02:00
fsp - > fsp_flags . can_lock = true ;
2020-04-02 17:18:43 +02:00
fsp - > fsp_flags . can_read = true ;
2020-04-02 17:28:32 +02:00
fsp - > fsp_flags . can_write = true ;
2012-11-13 12:34:35 -08:00
fsp - > print_file = NULL ;
2020-04-02 17:37:02 +02:00
fsp - > fsp_flags . modified = false ;
2012-11-13 12:34:35 -08:00
fsp - > sent_oplock_break = NO_BREAK_SENT ;
2020-04-02 18:21:11 +02:00
fsp - > fsp_flags . is_directory = S_ISDIR ( smb_fname - > st . st_ex_mode ) ;
2012-11-13 12:34:35 -08:00
2018-06-01 13:45:25 +12:00
* _fsp = fsp ;
return NT_STATUS_OK ;
}
static NTSTATUS set_nt_acl_conn ( const char * fname ,
uint32_t security_info_sent , const struct security_descriptor * sd ,
connection_struct * conn )
{
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct files_struct * fsp = NULL ;
NTSTATUS status = NT_STATUS_OK ;
/* first, try to open it as a file with flag O_RDWR */
status = init_files_struct ( frame ,
fname ,
conn ,
O_RDWR ,
& fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) & & errno = = EISDIR ) {
/* if fail, try to open as dir */
status = init_files_struct ( frame ,
fname ,
conn ,
DIRECTORY_FLAGS ,
& fsp ) ;
}
if ( ! NT_STATUS_IS_OK ( status ) ) {
2018-09-19 16:52:54 +02:00
DBG_ERR ( " init_files_struct failed: %s \n " ,
nt_errstr ( status ) ) ;
if ( fsp ! = NULL ) {
2021-12-28 12:25:59 +01:00
fd_close ( fsp ) ;
2018-09-19 16:52:54 +02:00
}
2018-06-01 13:45:25 +12:00
TALLOC_FREE ( frame ) ;
return status ;
}
2022-07-29 14:54:07 +02:00
status = SMB_VFS_FSET_NT_ACL ( metadata_fsp ( fsp ) , security_info_sent , sd ) ;
2012-08-02 13:35:24 +10:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2023-04-04 11:06:47 +12:00
DEBUG ( 0 , ( " set_nt_acl_conn: fset_nt_acl returned %s. \n " , nt_errstr ( status ) ) ) ;
2012-08-02 13:35:24 +10:00
}
2021-12-28 12:25:59 +01:00
fd_close ( fsp ) ;
2012-10-26 10:07:02 +11:00
2012-08-02 13:35:24 +10:00
TALLOC_FREE ( frame ) ;
return status ;
}
2012-10-10 13:48:27 +11:00
static NTSTATUS get_nt_acl_conn ( TALLOC_CTX * mem_ctx ,
const char * fname ,
connection_struct * conn ,
2015-05-02 21:01:14 -07:00
uint32_t security_info_wanted ,
2012-10-10 13:48:27 +11:00
struct security_descriptor * * sd )
{
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2016-02-12 10:30:10 -08:00
NTSTATUS status ;
2021-05-24 15:55:59 -07:00
struct smb_filename * smb_fname = NULL ;
2024-10-21 15:45:47 +02:00
smb_fname = synthetic_smb_fname_split (
frame ,
canonicalize_absolute_path ( talloc_tos ( ) , fname ) ,
lp_posix_pathnames ( ) ) ;
2016-02-12 10:30:10 -08:00
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return NT_STATUS_NO_MEMORY ;
}
2021-05-24 15:55:59 -07:00
status = openat_pathref_fsp ( conn - > cwd_fsp , smb_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return status ;
}
2022-07-29 14:49:56 +02:00
status = SMB_VFS_FGET_NT_ACL ( metadata_fsp ( smb_fname - > fsp ) ,
2016-02-12 10:30:10 -08:00
security_info_wanted ,
mem_ctx ,
sd ) ;
2012-10-10 13:48:27 +11:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
2021-06-02 13:29:27 -07:00
DBG_ERR ( " fget_nt_acl_at returned %s. \n " ,
2020-04-13 15:28:01 -07:00
nt_errstr ( status ) ) ;
2012-10-10 13:48:27 +11:00
}
2021-12-28 18:34:20 +01:00
status = fd_close ( smb_fname - > fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return status ;
}
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
return status ;
}
2017-12-05 20:49:03 +02:00
static int set_acl_entry_perms ( SMB_ACL_ENTRY_T entry , mode_t perm_mask )
{
SMB_ACL_PERMSET_T perms = NULL ;
if ( sys_acl_get_permset ( entry , & perms ) ! = 0 ) {
return - 1 ;
}
if ( sys_acl_clear_perms ( perms ) ! = 0 ) {
return - 1 ;
}
if ( ( perm_mask & SMB_ACL_READ ) ! = 0 & &
sys_acl_add_perm ( perms , SMB_ACL_READ ) ! = 0 ) {
return - 1 ;
}
if ( ( perm_mask & SMB_ACL_WRITE ) ! = 0 & &
sys_acl_add_perm ( perms , SMB_ACL_WRITE ) ! = 0 ) {
return - 1 ;
}
if ( ( perm_mask & SMB_ACL_EXECUTE ) ! = 0 & &
sys_acl_add_perm ( perms , SMB_ACL_EXECUTE ) ! = 0 ) {
return - 1 ;
}
if ( sys_acl_set_permset ( entry , perms ) ! = 0 ) {
return - 1 ;
}
return 0 ;
}
2012-05-07 16:24:03 +10:00
2018-05-24 16:16:19 +02:00
static SMB_ACL_T make_simple_acl ( TALLOC_CTX * mem_ctx ,
gid_t gid ,
mode_t chmod_mode )
2012-05-07 16:24:03 +10:00
{
2012-11-11 22:07:49 +11:00
mode_t mode = SMB_ACL_READ | SMB_ACL_WRITE | SMB_ACL_EXECUTE ;
2012-08-22 18:35:01 +10:00
2012-10-25 16:25:22 +11:00
mode_t mode_user = ( chmod_mode & 0700 ) > > 6 ;
mode_t mode_group = ( chmod_mode & 070 ) > > 3 ;
2012-08-22 18:35:01 +10:00
mode_t mode_other = chmod_mode & 07 ;
2012-05-07 16:24:03 +10:00
SMB_ACL_ENTRY_T entry ;
2018-05-24 16:16:19 +02:00
SMB_ACL_T acl = sys_acl_init ( mem_ctx ) ;
2012-05-07 16:24:03 +10:00
if ( ! acl ) {
return NULL ;
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_USER_OBJ ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
2017-12-05 20:49:03 +02:00
if ( set_acl_entry_perms ( entry , mode_user ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_GROUP_OBJ ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
2017-12-05 20:49:03 +02:00
if ( set_acl_entry_perms ( entry , mode_group ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_OTHER ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
2017-12-05 20:49:03 +02:00
if ( set_acl_entry_perms ( entry , mode_other ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
2012-08-22 18:35:01 +10:00
if ( gid ! = - 1 ) {
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-08-22 18:35:01 +10:00
return NULL ;
}
2012-09-24 14:11:05 -07:00
2012-08-22 18:35:01 +10:00
if ( sys_acl_set_tag_type ( entry , SMB_ACL_GROUP ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-08-22 18:35:01 +10:00
return NULL ;
}
2012-09-24 14:11:05 -07:00
2012-08-22 18:35:01 +10:00
if ( sys_acl_set_qualifier ( entry , & gid ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-08-22 18:35:01 +10:00
return NULL ;
}
2012-09-24 14:11:05 -07:00
2017-12-05 20:49:03 +02:00
if ( set_acl_entry_perms ( entry , mode_group ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-08-22 18:35:01 +10:00
return NULL ;
}
2012-05-07 16:24:03 +10:00
}
if ( sys_acl_create_entry ( & acl , & entry ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
if ( sys_acl_set_tag_type ( entry , SMB_ACL_MASK ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
2017-12-05 20:49:03 +02:00
if ( set_acl_entry_perms ( entry , mode ) ! = 0 ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( acl ) ;
2012-05-07 16:24:03 +10:00
return NULL ;
}
2018-05-24 16:16:19 +02:00
2012-05-07 16:24:03 +10:00
return acl ;
}
/*
set a simple ACL on a file , as a test
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_set_simple_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-05-07 16:24:03 +10:00
{
2019-12-17 12:54:11 +01:00
const char * const kwnames [ ] = {
" fname " ,
" mode " ,
2019-12-17 14:13:30 +01:00
" session_info " ,
2019-12-17 12:54:11 +01:00
" gid " ,
" service " ,
NULL
} ;
2012-10-10 13:48:27 +11:00
char * fname , * service = NULL ;
2019-12-17 14:13:30 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2014-02-05 15:31:22 +13:00
int ret ;
2012-08-22 18:35:01 +10:00
int mode , gid = - 1 ;
2012-05-07 16:24:03 +10:00
SMB_ACL_T acl ;
2012-08-07 10:45:14 +10:00
TALLOC_CTX * frame ;
2012-10-10 13:48:27 +11:00
connection_struct * conn ;
2012-05-07 16:24:03 +10:00
2019-12-17 14:13:30 +01:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siO|iz " ,
2012-12-15 21:17:30 +11:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 12:54:11 +01:00
& fname ,
& mode ,
2019-12-17 14:13:30 +01:00
& py_session ,
2019-12-17 12:54:11 +01:00
& gid ,
& service ) )
2012-05-07 16:24:03 +10:00
return NULL ;
2019-12-17 14:13:30 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
}
2012-08-07 10:45:14 +10:00
frame = talloc_stackframe ( ) ;
2018-05-24 16:16:19 +02:00
acl = make_simple_acl ( frame , gid , mode ) ;
if ( acl = = NULL ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 14:13:30 +01:00
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( frame ) ;
2012-10-10 13:48:27 +11:00
return NULL ;
}
2014-02-05 15:31:22 +13:00
ret = set_sys_acl_conn ( fname , SMB_ACL_TYPE_ACCESS , acl , conn ) ;
2012-08-07 10:45:14 +10:00
2014-02-05 15:31:22 +13:00
if ( ret ! = 0 ) {
TALLOC_FREE ( frame ) ;
errno = ret ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
}
2012-08-07 10:45:14 +10:00
2014-02-05 15:31:22 +13:00
TALLOC_FREE ( frame ) ;
2012-05-07 16:24:03 +10:00
Py_RETURN_NONE ;
}
2012-08-21 14:23:35 +10:00
/*
chown a file
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_chown ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-21 14:23:35 +10:00
{
2019-12-17 12:58:08 +01:00
const char * const kwnames [ ] = {
" fname " ,
" uid " ,
" gid " ,
2019-12-17 14:14:07 +01:00
" session_info " ,
2019-12-17 12:58:08 +01:00
" service " ,
NULL
} ;
2012-08-21 14:23:35 +10:00
connection_struct * conn ;
int ret ;
2019-10-10 14:14:13 -07:00
NTSTATUS status ;
2012-10-10 13:48:27 +11:00
char * fname , * service = NULL ;
2019-12-17 14:14:07 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-08-21 14:23:35 +10:00
int uid , gid ;
TALLOC_CTX * frame ;
2019-10-10 14:14:13 -07:00
struct files_struct * fsp = NULL ;
2012-08-21 14:23:35 +10:00
2019-12-17 14:14:07 +01:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siiO|z " ,
2012-12-15 21:17:30 +11:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 12:58:08 +01:00
& fname ,
& uid ,
& gid ,
2019-12-17 14:14:07 +01:00
& py_session ,
2019-12-17 12:58:08 +01:00
& service ) )
2012-08-21 14:23:35 +10:00
return NULL ;
2019-12-17 14:14:07 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
}
2012-08-21 14:23:35 +10:00
frame = talloc_stackframe ( ) ;
2019-12-17 14:14:07 +01:00
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( frame ) ;
2012-08-21 14:23:35 +10:00
return NULL ;
}
2019-10-10 14:14:13 -07:00
/* first, try to open it as a file with flag O_RDWR */
status = init_files_struct ( frame ,
fname ,
conn ,
O_RDWR ,
& fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) & & errno = = EISDIR ) {
/* if fail, try to open as dir */
status = init_files_struct ( frame ,
fname ,
conn ,
DIRECTORY_FLAGS ,
& fsp ) ;
}
if ( ! NT_STATUS_IS_OK ( status ) ) {
DBG_ERR ( " init_files_struct failed: %s \n " ,
nt_errstr ( status ) ) ;
if ( fsp ! = NULL ) {
2021-12-28 12:25:59 +01:00
fd_close ( fsp ) ;
2019-10-10 14:14:13 -07:00
}
2016-03-03 11:54:23 -08:00
TALLOC_FREE ( frame ) ;
2019-10-10 14:14:13 -07:00
/*
* The following macro raises a python
* error then returns NULL .
*/
PyErr_NTSTATUS_IS_ERR_RAISE ( status ) ;
2016-03-03 11:54:23 -08:00
}
2019-10-10 14:14:13 -07:00
ret = SMB_VFS_FCHOWN ( fsp , uid , gid ) ;
2012-08-21 14:23:35 +10:00
if ( ret ! = 0 ) {
2019-10-10 14:14:13 -07:00
int saved_errno = errno ;
2021-12-28 12:25:59 +01:00
fd_close ( fsp ) ;
2014-02-05 15:31:22 +13:00
TALLOC_FREE ( frame ) ;
2019-10-10 14:14:13 -07:00
errno = saved_errno ;
2014-02-05 15:31:22 +13:00
return PyErr_SetFromErrno ( PyExc_OSError ) ;
2012-08-21 14:23:35 +10:00
}
2021-12-28 12:25:59 +01:00
fd_close ( fsp ) ;
2012-08-21 14:23:35 +10:00
TALLOC_FREE ( frame ) ;
Py_RETURN_NONE ;
}
2012-10-26 17:25:53 +11:00
/*
2014-02-05 15:31:22 +13:00
unlink a file
2012-10-26 17:25:53 +11:00
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_unlink ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-10-26 17:25:53 +11:00
{
2019-12-17 12:59:32 +01:00
const char * const kwnames [ ] = {
" fname " ,
2019-12-17 14:14:45 +01:00
" session_info " ,
2019-12-17 12:59:32 +01:00
" service " ,
NULL
} ;
2012-10-26 17:25:53 +11:00
connection_struct * conn ;
int ret ;
struct smb_filename * smb_fname = NULL ;
2021-01-22 14:54:18 +01:00
struct smb_filename * parent_fname = NULL ;
struct smb_filename * at_fname = NULL ;
2019-12-17 14:14:45 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-10-10 13:48:27 +11:00
char * fname , * service = NULL ;
2012-10-26 17:25:53 +11:00
TALLOC_CTX * frame ;
2021-01-22 14:54:18 +01:00
NTSTATUS status ;
2012-10-26 17:25:53 +11:00
frame = talloc_stackframe ( ) ;
2019-12-17 14:14:45 +01:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " sO|z " ,
2012-12-15 21:17:30 +11:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 12:59:32 +01:00
& fname ,
2019-12-17 14:14:45 +01:00
& py_session ,
2019-12-17 12:59:32 +01:00
& service ) ) {
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
2012-10-26 17:25:53 +11:00
return NULL ;
}
2019-12-17 14:14:45 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
2012-10-26 17:25:53 +11:00
return NULL ;
}
2024-10-21 15:45:47 +02:00
smb_fname = synthetic_smb_fname_split (
frame ,
canonicalize_absolute_path ( talloc_tos ( ) , fname ) ,
lp_posix_pathnames ( ) ) ;
2013-04-12 12:14:32 +02:00
if ( smb_fname = = NULL ) {
2012-10-26 17:25:53 +11:00
TALLOC_FREE ( frame ) ;
2014-02-05 15:31:22 +13:00
return PyErr_NoMemory ( ) ;
2012-10-26 17:25:53 +11:00
}
2021-01-22 14:54:18 +01:00
status = parent_pathref ( frame ,
conn - > cwd_fsp ,
smb_fname ,
& parent_fname ,
& at_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return PyErr_NoMemory ( ) ;
}
2019-09-13 11:22:06 -07:00
ret = SMB_VFS_UNLINKAT ( conn ,
2021-01-22 14:54:18 +01:00
parent_fname - > fsp ,
at_fname ,
2019-09-13 11:22:06 -07:00
0 ) ;
2012-10-26 17:25:53 +11:00
if ( ret ! = 0 ) {
2014-02-05 15:31:22 +13:00
TALLOC_FREE ( frame ) ;
errno = ret ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
2012-10-26 17:25:53 +11:00
}
TALLOC_FREE ( frame ) ;
Py_RETURN_NONE ;
}
2012-06-21 16:21:54 +10:00
/*
check if we have ACL support
*/
2019-05-02 19:31:18 +01:00
static PyObject * py_smbd_have_posix_acls ( PyObject * self ,
PyObject * Py_UNUSED ( ignored ) )
2012-06-21 16:21:54 +10:00
{
# ifdef HAVE_POSIX_ACLS
return PyBool_FromLong ( true ) ;
# else
return PyBool_FromLong ( false ) ;
# endif
}
2012-08-02 13:35:24 +10:00
/*
2012-08-21 15:10:43 +10:00
set the NT ACL on a file
2012-08-02 13:35:24 +10:00
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_set_nt_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-02 13:35:24 +10:00
{
2018-07-04 10:18:30 +12:00
const char * const kwnames [ ] = {
2019-12-17 14:16:52 +01:00
" fname " ,
" security_info_sent " ,
" sd " ,
" session_info " ,
2019-12-17 14:49:42 +01:00
" service " ,
2019-12-17 14:16:52 +01:00
NULL
} ;
2018-07-04 10:18:30 +12:00
2012-08-02 13:35:24 +10:00
NTSTATUS status ;
2012-10-10 13:48:27 +11:00
char * fname , * service = NULL ;
2012-08-02 13:35:24 +10:00
int security_info_sent ;
PyObject * py_sd ;
struct security_descriptor * sd ;
2018-07-04 10:18:30 +12:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-10-10 13:48:27 +11:00
connection_struct * conn ;
TALLOC_CTX * frame ;
frame = talloc_stackframe ( ) ;
2012-08-02 13:35:24 +10:00
2019-12-17 14:49:42 +01:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siOO|z " ,
2018-07-04 10:18:30 +12:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 14:16:52 +01:00
& fname ,
& security_info_sent ,
& py_sd ,
2019-12-17 14:49:42 +01:00
& py_session ,
& service ) ) {
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
2012-08-02 13:35:24 +10:00
return NULL ;
2012-10-10 13:48:27 +11:00
}
2012-08-02 13:35:24 +10:00
if ( ! py_check_dcerpc_type ( py_sd , " samba.dcerpc.security " , " descriptor " ) ) {
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 14:49:42 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
return NULL ;
2018-07-04 10:18:30 +12:00
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
2012-08-02 13:35:24 +10:00
return NULL ;
}
sd = pytalloc_get_type ( py_sd , struct security_descriptor ) ;
2012-10-10 13:48:27 +11:00
status = set_nt_acl_conn ( fname , security_info_sent , sd , conn ) ;
TALLOC_FREE ( frame ) ;
2022-09-01 11:06:03 +12:00
if ( NT_STATUS_IS_ERR ( status ) ) {
2022-09-01 01:18:12 +00:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_OBJECT_NAME_NOT_FOUND ) ) {
/*
* This will show up as a FileNotFoundError in python .
*/
PyErr_SetFromErrnoWithFilename ( PyExc_OSError , fname ) ;
} else {
PyErr_SetNTSTATUS ( status ) ;
}
2022-09-01 11:06:03 +12:00
return NULL ;
}
2012-08-02 13:35:24 +10:00
Py_RETURN_NONE ;
}
2012-08-02 15:16:13 +10:00
/*
2012-08-21 15:10:43 +10:00
Return the NT ACL on a file
2012-08-02 15:16:13 +10:00
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_get_nt_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-02 15:16:13 +10:00
{
2019-12-17 14:21:03 +01:00
const char * const kwnames [ ] = {
" fname " ,
" security_info_wanted " ,
" session_info " ,
2019-12-17 14:52:49 +01:00
" service " ,
2019-12-17 14:21:03 +01:00
NULL
} ;
2012-10-10 13:48:27 +11:00
char * fname , * service = NULL ;
2012-08-23 09:45:07 +10:00
int security_info_wanted ;
2012-08-02 15:16:13 +10:00
PyObject * py_sd ;
struct security_descriptor * sd ;
2018-05-24 16:16:19 +02:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2018-09-04 15:29:58 +02:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-10-10 13:48:27 +11:00
connection_struct * conn ;
2012-11-13 12:48:53 -08:00
NTSTATUS status ;
2018-09-04 15:29:58 +02:00
int ret = 1 ;
ret = PyArg_ParseTupleAndKeywords ( args ,
kwargs ,
2019-12-17 14:52:49 +01:00
" siO|z " ,
2018-09-04 15:29:58 +02:00
discard_const_p ( char * , kwnames ) ,
& fname ,
& security_info_wanted ,
2019-12-17 14:52:49 +01:00
& py_session ,
& service ) ;
2018-09-04 15:29:58 +02:00
if ( ! ret ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( frame ) ;
2012-08-02 15:16:13 +10:00
return NULL ;
2012-10-10 13:48:27 +11:00
}
2019-12-17 14:52:49 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format (
PyExc_TypeError ,
" Expected auth_session_info for "
" session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
2022-09-01 11:06:03 +12:00
TALLOC_FREE ( frame ) ;
2019-12-17 14:52:49 +01:00
return NULL ;
2018-09-04 15:29:58 +02:00
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( frame ) ;
2012-10-10 13:48:27 +11:00
return NULL ;
}
2012-09-24 14:11:05 -07:00
2018-05-24 16:16:19 +02:00
status = get_nt_acl_conn ( frame , fname , conn , security_info_wanted , & sd ) ;
2022-09-01 11:06:03 +12:00
if ( NT_STATUS_IS_ERR ( status ) ) {
2022-09-01 11:25:26 +12:00
if ( NT_STATUS_EQUAL ( status , NT_STATUS_OBJECT_NAME_NOT_FOUND ) ) {
/*
* This will show up as a FileNotFoundError in python ,
* from which samba - tool can at least produce a short
* message containing the problematic filename .
*/
PyErr_SetFromErrnoWithFilename ( PyExc_OSError , fname ) ;
} else {
PyErr_SetNTSTATUS ( status ) ;
}
2022-09-01 11:06:03 +12:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2012-08-02 15:16:13 +10:00
2012-08-23 09:39:32 +10:00
py_sd = py_return_ndr_struct ( " samba.dcerpc.security " , " descriptor " , sd , sd ) ;
2012-08-02 15:16:13 +10:00
2018-05-24 16:16:19 +02:00
TALLOC_FREE ( frame ) ;
2012-08-02 15:16:13 +10:00
return py_sd ;
}
2012-08-21 15:11:30 +10:00
/*
set the posix ( or similar ) ACL on a file
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_set_sys_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-21 15:11:30 +10:00
{
2019-12-17 14:54:04 +01:00
const char * const kwnames [ ] = {
" fname " ,
" acl_type " ,
" acl " ,
2019-12-17 14:54:40 +01:00
" session_info " ,
2019-12-17 14:54:04 +01:00
" service " ,
NULL
} ;
2012-10-10 13:48:27 +11:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
2014-02-05 15:31:22 +13:00
int ret ;
2012-10-10 13:48:27 +11:00
char * fname , * service = NULL ;
2012-08-21 15:11:30 +10:00
PyObject * py_acl ;
2019-12-17 14:54:40 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-08-21 15:11:30 +10:00
struct smb_acl_t * acl ;
int acl_type ;
2012-10-10 13:48:27 +11:00
connection_struct * conn ;
2012-08-21 15:11:30 +10:00
2019-12-17 14:54:40 +01:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siOO|z " ,
2012-12-15 21:17:30 +11:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 14:54:04 +01:00
& fname ,
& acl_type ,
& py_acl ,
2019-12-17 14:54:40 +01:00
& py_session ,
2019-12-17 14:54:04 +01:00
& service ) ) {
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
2012-08-21 15:11:30 +10:00
return NULL ;
2012-10-10 13:48:27 +11:00
}
2012-08-21 15:11:30 +10:00
2012-08-21 22:41:13 +10:00
if ( ! py_check_dcerpc_type ( py_acl , " samba.dcerpc.smb_acl " , " t " ) ) {
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 14:54:40 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
2012-08-21 15:11:30 +10:00
return NULL ;
}
acl = pytalloc_get_type ( py_acl , struct smb_acl_t ) ;
2014-02-05 15:31:22 +13:00
ret = set_sys_acl_conn ( fname , acl_type , acl , conn ) ;
if ( ret ! = 0 ) {
TALLOC_FREE ( frame ) ;
errno = ret ;
return PyErr_SetFromErrno ( PyExc_OSError ) ;
}
2012-08-21 15:11:30 +10:00
2012-10-10 13:48:27 +11:00
TALLOC_FREE ( frame ) ;
2012-08-21 15:11:30 +10:00
Py_RETURN_NONE ;
}
/*
Return the posix ( or similar ) ACL on a file
*/
2012-12-15 21:17:30 +11:00
static PyObject * py_smbd_get_sys_acl ( PyObject * self , PyObject * args , PyObject * kwargs )
2012-08-21 15:11:30 +10:00
{
2019-12-17 14:55:54 +01:00
const char * const kwnames [ ] = {
" fname " ,
" acl_type " ,
2019-12-17 14:56:18 +01:00
" session_info " ,
2019-12-17 14:55:54 +01:00
" service " ,
NULL
} ;
2012-08-21 15:11:30 +10:00
char * fname ;
PyObject * py_acl ;
2019-12-17 14:56:18 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2012-08-21 15:11:30 +10:00
struct smb_acl_t * acl ;
int acl_type ;
TALLOC_CTX * frame = talloc_stackframe ( ) ;
connection_struct * conn ;
2012-10-10 13:48:27 +11:00
char * service = NULL ;
2017-05-23 17:11:18 -07:00
struct smb_filename * smb_fname = NULL ;
2021-05-24 15:52:44 -07:00
NTSTATUS status ;
2017-05-23 17:11:18 -07:00
2019-12-17 14:56:18 +01:00
if ( ! PyArg_ParseTupleAndKeywords ( args , kwargs , " siO|z " ,
2012-12-15 21:17:30 +11:00
discard_const_p ( char * , kwnames ) ,
2019-12-17 14:55:54 +01:00
& fname ,
& acl_type ,
2019-12-17 14:56:18 +01:00
& py_session ,
2019-12-17 14:55:54 +01:00
& service ) ) {
2012-08-21 15:11:30 +10:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 14:56:18 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2012-10-10 13:48:27 +11:00
if ( ! conn ) {
2012-08-21 15:11:30 +10:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
2024-10-21 15:45:47 +02:00
smb_fname = synthetic_smb_fname_split (
frame ,
canonicalize_absolute_path ( talloc_tos ( ) , fname ) ,
lp_posix_pathnames ( ) ) ;
2017-05-23 17:11:18 -07:00
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2021-05-24 15:52:44 -07:00
status = openat_pathref_fsp ( conn - > cwd_fsp , smb_fname ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
acl = SMB_VFS_SYS_ACL_GET_FD ( smb_fname - > fsp , acl_type , frame ) ;
2012-08-21 15:11:30 +10:00
if ( ! acl ) {
TALLOC_FREE ( frame ) ;
2014-02-05 15:31:22 +13:00
return PyErr_SetFromErrno ( PyExc_OSError ) ;
2012-08-21 15:11:30 +10:00
}
2021-12-28 18:34:20 +01:00
status = fd_close ( smb_fname - > fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
PyErr_SetNTSTATUS ( status ) ;
return NULL ;
}
2012-08-21 22:41:13 +10:00
py_acl = py_return_ndr_struct ( " samba.dcerpc.smb_acl " , " t " , acl , acl ) ;
2012-08-21 15:11:30 +10:00
TALLOC_FREE ( frame ) ;
return py_acl ;
}
2018-06-01 13:40:42 +12:00
static PyObject * py_smbd_mkdir ( PyObject * self , PyObject * args , PyObject * kwargs )
{
2019-12-17 14:57:20 +01:00
const char * const kwnames [ ] = {
" fname " ,
2019-12-17 14:57:53 +01:00
" session_info " ,
2019-12-17 14:57:20 +01:00
" service " ,
NULL
} ;
2018-06-01 13:40:42 +12:00
char * fname , * service = NULL ;
2019-12-17 14:57:53 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2018-06-01 13:40:42 +12:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct connection_struct * conn = NULL ;
struct smb_filename * smb_fname = NULL ;
2021-01-15 10:12:29 +01:00
struct smb_filename * parent_fname = NULL ;
struct smb_filename * base_name = NULL ;
NTSTATUS status ;
2019-03-21 17:24:14 +13:00
int ret ;
mode_t saved_umask ;
2018-06-01 13:40:42 +12:00
if ( ! PyArg_ParseTupleAndKeywords ( args ,
kwargs ,
2019-12-17 14:57:53 +01:00
" sO|z " ,
2018-06-01 13:40:42 +12:00
discard_const_p ( char * ,
kwnames ) ,
& fname ,
2019-12-17 14:57:53 +01:00
& py_session ,
2018-06-01 13:40:42 +12:00
& service ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 14:57:53 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2018-06-01 13:40:42 +12:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2024-10-21 15:45:47 +02:00
smb_fname = synthetic_smb_fname (
talloc_tos ( ) ,
canonicalize_absolute_path ( talloc_tos ( ) , fname ) ,
NULL ,
NULL ,
0 ,
lp_posix_pathnames ( ) ? SMB_FILENAME_POSIX_PATH : 0 ) ;
2018-06-01 13:40:42 +12:00
if ( smb_fname = = NULL ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2021-01-25 15:51:05 +01:00
status = parent_pathref ( talloc_tos ( ) ,
conn - > cwd_fsp ,
smb_fname ,
& parent_fname ,
& base_name ) ;
2021-01-15 10:12:29 +01:00
if ( ! NT_STATUS_IS_OK ( status ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-03-21 17:24:14 +13:00
/* we want total control over the permissions on created files,
so set our umask to 0 */
saved_umask = umask ( 0 ) ;
2019-09-06 15:03:50 -07:00
ret = SMB_VFS_MKDIRAT ( conn ,
2021-01-15 10:12:29 +01:00
parent_fname - > fsp ,
base_name ,
2019-09-06 15:03:50 -07:00
00755 ) ;
2018-06-01 13:40:42 +12:00
2019-03-21 17:24:14 +13:00
umask ( saved_umask ) ;
if ( ret = = - 1 ) {
2019-09-06 15:03:50 -07:00
DBG_ERR ( " mkdirat error=%d (%s) \n " , errno , strerror ( errno ) ) ;
2018-06-01 13:40:42 +12:00
TALLOC_FREE ( frame ) ;
return NULL ;
}
TALLOC_FREE ( frame ) ;
Py_RETURN_NONE ;
}
2018-06-01 13:48:31 +12:00
/*
Create an empty file
*/
static PyObject * py_smbd_create_file ( PyObject * self , PyObject * args , PyObject * kwargs )
{
2019-12-17 14:58:32 +01:00
const char * const kwnames [ ] = {
" fname " ,
2019-12-17 14:58:57 +01:00
" session_info " ,
2019-12-17 14:58:32 +01:00
" service " ,
NULL
} ;
2018-06-01 13:48:31 +12:00
char * fname , * service = NULL ;
2019-12-17 14:58:57 +01:00
PyObject * py_session = Py_None ;
struct auth_session_info * session_info = NULL ;
2018-06-01 13:48:31 +12:00
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct connection_struct * conn = NULL ;
struct files_struct * fsp = NULL ;
NTSTATUS status ;
if ( ! PyArg_ParseTupleAndKeywords ( args ,
kwargs ,
2019-12-17 14:58:57 +01:00
" sO|z " ,
2018-06-01 13:48:31 +12:00
discard_const_p ( char * ,
kwnames ) ,
& fname ,
2019-12-17 14:58:57 +01:00
& py_session ,
2018-06-01 13:48:31 +12:00
& service ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
2019-12-17 14:58:57 +01:00
if ( ! py_check_dcerpc_type ( py_session ,
" samba.dcerpc.auth " ,
" session_info " ) ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
session_info = pytalloc_get_type ( py_session ,
struct auth_session_info ) ;
if ( session_info = = NULL ) {
PyErr_Format ( PyExc_TypeError ,
" Expected auth_session_info for session_info argument got %s " ,
pytalloc_get_name ( py_session ) ) ;
TALLOC_FREE ( frame ) ;
return NULL ;
}
conn = get_conn_tos ( service , session_info ) ;
2018-06-01 13:48:31 +12:00
if ( ! conn ) {
TALLOC_FREE ( frame ) ;
return NULL ;
}
status = init_files_struct ( frame ,
fname ,
conn ,
O_CREAT | O_EXCL | O_RDWR ,
& fsp ) ;
if ( ! NT_STATUS_IS_OK ( status ) ) {
DBG_ERR ( " init_files_struct failed: %s \n " ,
nt_errstr ( status ) ) ;
2021-02-09 13:48:36 +01:00
} else if ( fsp ! = NULL ) {
2021-12-28 12:25:59 +01:00
fd_close ( fsp ) ;
2018-06-01 13:48:31 +12:00
}
TALLOC_FREE ( frame ) ;
2021-02-09 13:48:36 +01:00
PyErr_NTSTATUS_NOT_OK_RAISE ( status ) ;
2018-06-01 13:48:31 +12:00
Py_RETURN_NONE ;
}
2012-05-07 16:24:03 +10:00
static PyMethodDef py_smbd_methods [ ] = {
2012-06-21 16:21:54 +10:00
{ " have_posix_acls " ,
2012-12-15 21:17:30 +11:00
( PyCFunction ) py_smbd_have_posix_acls , METH_NOARGS ,
2012-06-21 16:21:54 +10:00
NULL } ,
2012-05-07 16:24:03 +10:00
{ " set_simple_acl " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_set_simple_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-05-07 16:24:03 +10:00
NULL } ,
2012-08-02 13:35:24 +10:00
{ " set_nt_acl " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_set_nt_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-02 13:35:24 +10:00
NULL } ,
2012-08-02 15:16:13 +10:00
{ " get_nt_acl " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_get_nt_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-02 15:16:13 +10:00
NULL } ,
2012-08-21 15:11:30 +10:00
{ " get_sys_acl " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_get_sys_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-21 15:11:30 +10:00
NULL } ,
{ " set_sys_acl " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_set_sys_acl ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-21 15:11:30 +10:00
NULL } ,
2012-08-21 14:23:35 +10:00
{ " chown " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_chown ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-08-21 14:23:35 +10:00
NULL } ,
2012-10-26 17:25:53 +11:00
{ " unlink " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_unlink ) ,
METH_VARARGS | METH_KEYWORDS ,
2012-10-26 17:25:53 +11:00
NULL } ,
2018-06-01 13:40:42 +12:00
{ " mkdir " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_mkdir ) ,
METH_VARARGS | METH_KEYWORDS ,
2018-06-01 13:40:42 +12:00
NULL } ,
2018-06-01 13:48:31 +12:00
{ " create_file " ,
2019-05-02 19:31:18 +01:00
PY_DISCARD_FUNC_SIG ( PyCFunction , py_smbd_create_file ) ,
METH_VARARGS | METH_KEYWORDS ,
2018-06-01 13:48:31 +12:00
NULL } ,
2020-05-05 13:47:39 +12:00
{ 0 }
2012-05-07 16:24:03 +10:00
} ;
void initsmbd ( void ) ;
2018-02-05 11:10:46 +00:00
static struct PyModuleDef moduledef = {
PyModuleDef_HEAD_INIT ,
. m_name = " smbd " ,
. m_doc = " Python bindings for the smbd file server. " ,
. m_size = - 1 ,
. m_methods = py_smbd_methods ,
} ;
MODULE_INIT_FUNC ( smbd )
{
PyObject * m = NULL ;
2012-05-07 16:24:03 +10:00
2018-02-05 11:10:46 +00:00
m = PyModule_Create ( & moduledef ) ;
return m ;
2012-05-07 16:24:03 +10:00
}