mirror of
https://github.com/samba-team/samba.git
synced 2025-01-14 19:24:43 +03:00
dffe228283
Signed-off-by: Richard Sharpe <rsharpe@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org>
1285 lines
32 KiB
C
1285 lines
32 KiB
C
/*
|
|
Unix SMB/CIFS implementation.
|
|
Samba system utilities
|
|
Copyright (C) Andrew Tridgell 1992-1998
|
|
Copyright (C) Jeremy Allison 1998-2005
|
|
Copyright (C) Timur Bakeyev 2005
|
|
Copyright (C) Bjoern Jacke 2006-2007
|
|
|
|
This program is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 3 of the License, or
|
|
(at your option) any later version.
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include "includes.h"
|
|
#include "system/syslog.h"
|
|
#include "system/capability.h"
|
|
#include "system/passwd.h"
|
|
#include "system/filesys.h"
|
|
#include "../lib/util/setid.h"
|
|
|
|
#ifdef HAVE_SYS_SYSCTL_H
|
|
#include <sys/sysctl.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_SYS_PRCTL_H
|
|
#include <sys/prctl.h>
|
|
#endif
|
|
|
|
/*
|
|
The idea is that this file will eventually have wrappers around all
|
|
important system calls in samba. The aims are:
|
|
|
|
- to enable easier porting by putting OS dependent stuff in here
|
|
|
|
- to allow for hooks into other "pseudo-filesystems"
|
|
|
|
- to allow easier integration of things like the japanese extensions
|
|
|
|
- to support the philosophy of Samba to expose the features of
|
|
the OS within the SMB model. In general whatever file/printer/variable
|
|
expansions/etc make sense to the OS should be acceptable to Samba.
|
|
*/
|
|
|
|
/*******************************************************************
|
|
A send wrapper that will deal with EINTR or EAGAIN or EWOULDBLOCK.
|
|
********************************************************************/
|
|
|
|
ssize_t sys_send(int s, const void *msg, size_t len, int flags)
|
|
{
|
|
ssize_t ret;
|
|
|
|
do {
|
|
ret = send(s, msg, len, flags);
|
|
} while (ret == -1 && (errno == EINTR || errno == EAGAIN || errno == EWOULDBLOCK));
|
|
|
|
return ret;
|
|
}
|
|
|
|
/*******************************************************************
|
|
A recvfrom wrapper that will deal with EINTR.
|
|
NB. As used with non-blocking sockets, return on EAGAIN/EWOULDBLOCK
|
|
********************************************************************/
|
|
|
|
ssize_t sys_recvfrom(int s, void *buf, size_t len, int flags, struct sockaddr *from, socklen_t *fromlen)
|
|
{
|
|
ssize_t ret;
|
|
|
|
do {
|
|
ret = recvfrom(s, buf, len, flags, from, fromlen);
|
|
} while (ret == -1 && (errno == EINTR));
|
|
return ret;
|
|
}
|
|
|
|
/*******************************************************************
|
|
A fcntl wrapper that will deal with EINTR.
|
|
********************************************************************/
|
|
|
|
int sys_fcntl_ptr(int fd, int cmd, void *arg)
|
|
{
|
|
int ret;
|
|
|
|
do {
|
|
ret = fcntl(fd, cmd, arg);
|
|
} while (ret == -1 && errno == EINTR);
|
|
return ret;
|
|
}
|
|
|
|
/*******************************************************************
|
|
A fcntl wrapper that will deal with EINTR.
|
|
********************************************************************/
|
|
|
|
int sys_fcntl_long(int fd, int cmd, long arg)
|
|
{
|
|
int ret;
|
|
|
|
do {
|
|
ret = fcntl(fd, cmd, arg);
|
|
} while (ret == -1 && errno == EINTR);
|
|
return ret;
|
|
}
|
|
|
|
/****************************************************************************
|
|
Get/Set all the possible time fields from a stat struct as a timespec.
|
|
****************************************************************************/
|
|
|
|
static struct timespec get_atimespec(const struct stat *pst)
|
|
{
|
|
#if !defined(HAVE_STAT_HIRES_TIMESTAMPS)
|
|
struct timespec ret;
|
|
|
|
/* Old system - no ns timestamp. */
|
|
ret.tv_sec = pst->st_atime;
|
|
ret.tv_nsec = 0;
|
|
return ret;
|
|
#else
|
|
#if defined(HAVE_STRUCT_STAT_ST_MTIM_TV_NSEC)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_atim.tv_sec;
|
|
ret.tv_nsec = pst->st_atim.tv_nsec;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIMENSEC)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_atime;
|
|
ret.tv_nsec = pst->st_atimensec;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIME_N)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_atime;
|
|
ret.tv_nsec = pst->st_atime_n;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_UMTIME)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_atime;
|
|
ret.tv_nsec = pst->st_uatime * 1000;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIMESPEC_TV_NSEC)
|
|
return pst->st_atimespec;
|
|
#else
|
|
#error CONFIGURE_ERROR_IN_DETECTING_TIMESPEC_IN_STAT
|
|
#endif
|
|
#endif
|
|
}
|
|
|
|
static struct timespec get_mtimespec(const struct stat *pst)
|
|
{
|
|
#if !defined(HAVE_STAT_HIRES_TIMESTAMPS)
|
|
struct timespec ret;
|
|
|
|
/* Old system - no ns timestamp. */
|
|
ret.tv_sec = pst->st_mtime;
|
|
ret.tv_nsec = 0;
|
|
return ret;
|
|
#else
|
|
#if defined(HAVE_STRUCT_STAT_ST_MTIM_TV_NSEC)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_mtim.tv_sec;
|
|
ret.tv_nsec = pst->st_mtim.tv_nsec;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIMENSEC)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_mtime;
|
|
ret.tv_nsec = pst->st_mtimensec;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIME_N)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_mtime;
|
|
ret.tv_nsec = pst->st_mtime_n;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_UMTIME)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_mtime;
|
|
ret.tv_nsec = pst->st_umtime * 1000;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIMESPEC_TV_NSEC)
|
|
return pst->st_mtimespec;
|
|
#else
|
|
#error CONFIGURE_ERROR_IN_DETECTING_TIMESPEC_IN_STAT
|
|
#endif
|
|
#endif
|
|
}
|
|
|
|
static struct timespec get_ctimespec(const struct stat *pst)
|
|
{
|
|
#if !defined(HAVE_STAT_HIRES_TIMESTAMPS)
|
|
struct timespec ret;
|
|
|
|
/* Old system - no ns timestamp. */
|
|
ret.tv_sec = pst->st_ctime;
|
|
ret.tv_nsec = 0;
|
|
return ret;
|
|
#else
|
|
#if defined(HAVE_STRUCT_STAT_ST_MTIM_TV_NSEC)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_ctim.tv_sec;
|
|
ret.tv_nsec = pst->st_ctim.tv_nsec;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIMENSEC)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_ctime;
|
|
ret.tv_nsec = pst->st_ctimensec;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIME_N)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_ctime;
|
|
ret.tv_nsec = pst->st_ctime_n;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_UMTIME)
|
|
struct timespec ret;
|
|
ret.tv_sec = pst->st_ctime;
|
|
ret.tv_nsec = pst->st_uctime * 1000;
|
|
return ret;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_MTIMESPEC_TV_NSEC)
|
|
return pst->st_ctimespec;
|
|
#else
|
|
#error CONFIGURE_ERROR_IN_DETECTING_TIMESPEC_IN_STAT
|
|
#endif
|
|
#endif
|
|
}
|
|
|
|
/****************************************************************************
|
|
Return the best approximation to a 'create time' under UNIX from a stat
|
|
structure.
|
|
****************************************************************************/
|
|
|
|
static struct timespec calc_create_time_stat(const struct stat *st)
|
|
{
|
|
struct timespec ret, ret1;
|
|
struct timespec c_time = get_ctimespec(st);
|
|
struct timespec m_time = get_mtimespec(st);
|
|
struct timespec a_time = get_atimespec(st);
|
|
|
|
ret = timespec_compare(&c_time, &m_time) < 0 ? c_time : m_time;
|
|
ret1 = timespec_compare(&ret, &a_time) < 0 ? ret : a_time;
|
|
|
|
if(!null_timespec(ret1)) {
|
|
return ret1;
|
|
}
|
|
|
|
/*
|
|
* One of ctime, mtime or atime was zero (probably atime).
|
|
* Just return MIN(ctime, mtime).
|
|
*/
|
|
return ret;
|
|
}
|
|
|
|
/****************************************************************************
|
|
Return the best approximation to a 'create time' under UNIX from a stat_ex
|
|
structure.
|
|
****************************************************************************/
|
|
|
|
static struct timespec calc_create_time_stat_ex(const struct stat_ex *st)
|
|
{
|
|
struct timespec ret, ret1;
|
|
struct timespec c_time = st->st_ex_ctime;
|
|
struct timespec m_time = st->st_ex_mtime;
|
|
struct timespec a_time = st->st_ex_atime;
|
|
|
|
ret = timespec_compare(&c_time, &m_time) < 0 ? c_time : m_time;
|
|
ret1 = timespec_compare(&ret, &a_time) < 0 ? ret : a_time;
|
|
|
|
if(!null_timespec(ret1)) {
|
|
return ret1;
|
|
}
|
|
|
|
/*
|
|
* One of ctime, mtime or atime was zero (probably atime).
|
|
* Just return MIN(ctime, mtime).
|
|
*/
|
|
return ret;
|
|
}
|
|
|
|
/****************************************************************************
|
|
Return the 'create time' from a stat struct if it exists (birthtime) or else
|
|
use the best approximation.
|
|
****************************************************************************/
|
|
|
|
static void make_create_timespec(const struct stat *pst, struct stat_ex *dst,
|
|
bool fake_dir_create_times)
|
|
{
|
|
if (S_ISDIR(pst->st_mode) && fake_dir_create_times) {
|
|
dst->st_ex_btime.tv_sec = 315493200L; /* 1/1/1980 */
|
|
dst->st_ex_btime.tv_nsec = 0;
|
|
}
|
|
|
|
dst->st_ex_calculated_birthtime = false;
|
|
|
|
#if defined(HAVE_STRUCT_STAT_ST_BIRTHTIMESPEC_TV_NSEC)
|
|
dst->st_ex_btime = pst->st_birthtimespec;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_BIRTHTIMENSEC)
|
|
dst->st_ex_btime.tv_sec = pst->st_birthtime;
|
|
dst->st_ex_btime.tv_nsec = pst->st_birthtimenspec;
|
|
#elif defined(HAVE_STRUCT_STAT_ST_BIRTHTIME)
|
|
dst->st_ex_btime.tv_sec = pst->st_birthtime;
|
|
dst->st_ex_btime.tv_nsec = 0;
|
|
#else
|
|
dst->st_ex_btime = calc_create_time_stat(pst);
|
|
dst->st_ex_calculated_birthtime = true;
|
|
#endif
|
|
|
|
/* Deal with systems that don't initialize birthtime correctly.
|
|
* Pointed out by SATOH Fumiyasu <fumiyas@osstech.jp>.
|
|
*/
|
|
if (null_timespec(dst->st_ex_btime)) {
|
|
dst->st_ex_btime = calc_create_time_stat(pst);
|
|
dst->st_ex_calculated_birthtime = true;
|
|
}
|
|
}
|
|
|
|
/****************************************************************************
|
|
If we update a timestamp in a stat_ex struct we may have to recalculate
|
|
the birthtime. For now only implement this for write time, but we may
|
|
also need to do it for atime and ctime. JRA.
|
|
****************************************************************************/
|
|
|
|
void update_stat_ex_mtime(struct stat_ex *dst,
|
|
struct timespec write_ts)
|
|
{
|
|
dst->st_ex_mtime = write_ts;
|
|
|
|
/* We may have to recalculate btime. */
|
|
if (dst->st_ex_calculated_birthtime) {
|
|
dst->st_ex_btime = calc_create_time_stat_ex(dst);
|
|
}
|
|
}
|
|
|
|
void update_stat_ex_create_time(struct stat_ex *dst,
|
|
struct timespec create_time)
|
|
{
|
|
dst->st_ex_btime = create_time;
|
|
dst->st_ex_calculated_birthtime = false;
|
|
}
|
|
|
|
void init_stat_ex_from_stat (struct stat_ex *dst,
|
|
const struct stat *src,
|
|
bool fake_dir_create_times)
|
|
{
|
|
dst->st_ex_dev = src->st_dev;
|
|
dst->st_ex_ino = src->st_ino;
|
|
dst->st_ex_mode = src->st_mode;
|
|
dst->st_ex_nlink = src->st_nlink;
|
|
dst->st_ex_uid = src->st_uid;
|
|
dst->st_ex_gid = src->st_gid;
|
|
dst->st_ex_rdev = src->st_rdev;
|
|
dst->st_ex_size = src->st_size;
|
|
dst->st_ex_atime = get_atimespec(src);
|
|
dst->st_ex_mtime = get_mtimespec(src);
|
|
dst->st_ex_ctime = get_ctimespec(src);
|
|
make_create_timespec(src, dst, fake_dir_create_times);
|
|
#ifdef HAVE_STAT_ST_BLKSIZE
|
|
dst->st_ex_blksize = src->st_blksize;
|
|
#else
|
|
dst->st_ex_blksize = STAT_ST_BLOCKSIZE;
|
|
#endif
|
|
|
|
#ifdef HAVE_STAT_ST_BLOCKS
|
|
dst->st_ex_blocks = src->st_blocks;
|
|
#else
|
|
dst->st_ex_blocks = src->st_size / dst->st_ex_blksize + 1;
|
|
#endif
|
|
|
|
#ifdef HAVE_STAT_ST_FLAGS
|
|
dst->st_ex_flags = src->st_flags;
|
|
#else
|
|
dst->st_ex_flags = 0;
|
|
#endif
|
|
}
|
|
|
|
/*******************************************************************
|
|
A stat() wrapper.
|
|
********************************************************************/
|
|
|
|
int sys_stat(const char *fname, SMB_STRUCT_STAT *sbuf,
|
|
bool fake_dir_create_times)
|
|
{
|
|
int ret;
|
|
struct stat statbuf;
|
|
ret = stat(fname, &statbuf);
|
|
if (ret == 0) {
|
|
/* we always want directories to appear zero size */
|
|
if (S_ISDIR(statbuf.st_mode)) {
|
|
statbuf.st_size = 0;
|
|
}
|
|
init_stat_ex_from_stat(sbuf, &statbuf, fake_dir_create_times);
|
|
}
|
|
return ret;
|
|
}
|
|
|
|
/*******************************************************************
|
|
An fstat() wrapper.
|
|
********************************************************************/
|
|
|
|
int sys_fstat(int fd, SMB_STRUCT_STAT *sbuf, bool fake_dir_create_times)
|
|
{
|
|
int ret;
|
|
struct stat statbuf;
|
|
ret = fstat(fd, &statbuf);
|
|
if (ret == 0) {
|
|
/* we always want directories to appear zero size */
|
|
if (S_ISDIR(statbuf.st_mode)) {
|
|
statbuf.st_size = 0;
|
|
}
|
|
init_stat_ex_from_stat(sbuf, &statbuf, fake_dir_create_times);
|
|
}
|
|
return ret;
|
|
}
|
|
|
|
/*******************************************************************
|
|
An lstat() wrapper.
|
|
********************************************************************/
|
|
|
|
int sys_lstat(const char *fname,SMB_STRUCT_STAT *sbuf,
|
|
bool fake_dir_create_times)
|
|
{
|
|
int ret;
|
|
struct stat statbuf;
|
|
ret = lstat(fname, &statbuf);
|
|
if (ret == 0) {
|
|
/* we always want directories to appear zero size */
|
|
if (S_ISDIR(statbuf.st_mode)) {
|
|
statbuf.st_size = 0;
|
|
}
|
|
init_stat_ex_from_stat(sbuf, &statbuf, fake_dir_create_times);
|
|
}
|
|
return ret;
|
|
}
|
|
|
|
/*******************************************************************
|
|
An posix_fallocate() wrapper.
|
|
********************************************************************/
|
|
int sys_posix_fallocate(int fd, off_t offset, off_t len)
|
|
{
|
|
#if defined(HAVE_POSIX_FALLOCATE) && !defined(HAVE_BROKEN_POSIX_FALLOCATE)
|
|
return posix_fallocate(fd, offset, len);
|
|
#elif defined(F_RESVSP64)
|
|
/* this handles XFS on IRIX */
|
|
struct flock64 fl;
|
|
off_t new_len = offset + len;
|
|
int ret;
|
|
struct stat64 sbuf;
|
|
|
|
/* unlikely to get a too large file on a 64bit system but ... */
|
|
if (new_len < 0)
|
|
return EFBIG;
|
|
|
|
fl.l_whence = SEEK_SET;
|
|
fl.l_start = offset;
|
|
fl.l_len = len;
|
|
|
|
ret=fcntl(fd, F_RESVSP64, &fl);
|
|
|
|
if (ret != 0)
|
|
return errno;
|
|
|
|
/* Make sure the file gets enlarged after we allocated space: */
|
|
fstat64(fd, &sbuf);
|
|
if (new_len > sbuf.st_size)
|
|
ftruncate64(fd, new_len);
|
|
return 0;
|
|
#else
|
|
return ENOSYS;
|
|
#endif
|
|
}
|
|
|
|
/*******************************************************************
|
|
An fallocate() function that matches the semantics of the Linux one.
|
|
********************************************************************/
|
|
|
|
#ifdef HAVE_LINUX_FALLOC_H
|
|
#include <linux/falloc.h>
|
|
#endif
|
|
|
|
int sys_fallocate(int fd, uint32_t mode, off_t offset, off_t len)
|
|
{
|
|
#if defined(HAVE_LINUX_FALLOCATE)
|
|
int lmode = 0;
|
|
|
|
if (mode & VFS_FALLOCATE_FL_KEEP_SIZE) {
|
|
lmode |= FALLOC_FL_KEEP_SIZE;
|
|
mode &= ~VFS_FALLOCATE_FL_KEEP_SIZE;
|
|
}
|
|
|
|
#if defined(HAVE_FALLOC_FL_PUNCH_HOLE)
|
|
if (mode & VFS_FALLOCATE_FL_PUNCH_HOLE) {
|
|
lmode |= FALLOC_FL_PUNCH_HOLE;
|
|
mode &= ~VFS_FALLOCATE_FL_PUNCH_HOLE;
|
|
}
|
|
#endif /* HAVE_FALLOC_FL_PUNCH_HOLE */
|
|
|
|
if (mode != 0) {
|
|
DEBUG(2, ("unmapped fallocate flags: %lx\n",
|
|
(unsigned long)mode));
|
|
errno = EINVAL;
|
|
return -1;
|
|
}
|
|
return fallocate(fd, lmode, offset, len);
|
|
#else /* HAVE_LINUX_FALLOCATE */
|
|
/* TODO - plumb in fallocate from other filesysetms like VXFS etc. JRA. */
|
|
errno = ENOSYS;
|
|
return -1;
|
|
#endif /* HAVE_LINUX_FALLOCATE */
|
|
}
|
|
|
|
#if HAVE_KERNEL_SHARE_MODES
|
|
#ifndef LOCK_MAND
|
|
#define LOCK_MAND 32 /* This is a mandatory flock */
|
|
#define LOCK_READ 64 /* ... Which allows concurrent read operations */
|
|
#define LOCK_WRITE 128 /* ... Which allows concurrent write operations */
|
|
#define LOCK_RW 192 /* ... Which allows concurrent read & write ops */
|
|
#endif
|
|
#endif
|
|
|
|
/*******************************************************************
|
|
A flock() wrapper that will perform the kernel flock.
|
|
********************************************************************/
|
|
|
|
void kernel_flock(int fd, uint32_t share_mode, uint32_t access_mask)
|
|
{
|
|
#if HAVE_KERNEL_SHARE_MODES
|
|
int kernel_mode = 0;
|
|
if (share_mode == FILE_SHARE_WRITE) {
|
|
kernel_mode = LOCK_MAND|LOCK_WRITE;
|
|
} else if (share_mode == FILE_SHARE_READ) {
|
|
kernel_mode = LOCK_MAND|LOCK_READ;
|
|
} else if (share_mode == FILE_SHARE_NONE) {
|
|
kernel_mode = LOCK_MAND;
|
|
}
|
|
if (kernel_mode) {
|
|
flock(fd, kernel_mode);
|
|
}
|
|
#endif
|
|
;
|
|
}
|
|
|
|
|
|
|
|
/*******************************************************************
|
|
An fdopendir wrapper.
|
|
********************************************************************/
|
|
|
|
DIR *sys_fdopendir(int fd)
|
|
{
|
|
#if defined(HAVE_FDOPENDIR)
|
|
return fdopendir(fd);
|
|
#else
|
|
errno = ENOSYS;
|
|
return NULL;
|
|
#endif
|
|
}
|
|
|
|
/*******************************************************************
|
|
An mknod() wrapper.
|
|
********************************************************************/
|
|
|
|
int sys_mknod(const char *path, mode_t mode, SMB_DEV_T dev)
|
|
{
|
|
#if defined(HAVE_MKNOD)
|
|
return mknod(path, mode, dev);
|
|
#else
|
|
/* No mknod system call. */
|
|
errno = ENOSYS;
|
|
return -1;
|
|
#endif
|
|
}
|
|
|
|
/*******************************************************************
|
|
The wait() calls vary between systems
|
|
********************************************************************/
|
|
|
|
int sys_waitpid(pid_t pid,int *status,int options)
|
|
{
|
|
#ifdef HAVE_WAITPID
|
|
return waitpid(pid,status,options);
|
|
#else /* HAVE_WAITPID */
|
|
return wait4(pid, status, options, NULL);
|
|
#endif /* HAVE_WAITPID */
|
|
}
|
|
|
|
/*******************************************************************
|
|
System wrapper for getwd. Always returns MALLOC'ed memory, or NULL
|
|
on error (malloc fail usually).
|
|
********************************************************************/
|
|
|
|
char *sys_getwd(void)
|
|
{
|
|
#ifdef GETCWD_TAKES_NULL
|
|
return getcwd(NULL, 0);
|
|
#elif HAVE_GETCWD
|
|
char *wd = NULL, *s = NULL;
|
|
size_t allocated = PATH_MAX;
|
|
|
|
while (1) {
|
|
s = SMB_REALLOC_ARRAY(s, char, allocated);
|
|
if (s == NULL) {
|
|
return NULL;
|
|
}
|
|
wd = getcwd(s, allocated);
|
|
if (wd) {
|
|
break;
|
|
}
|
|
if (errno != ERANGE) {
|
|
SAFE_FREE(s);
|
|
break;
|
|
}
|
|
allocated *= 2;
|
|
if (allocated < PATH_MAX) {
|
|
SAFE_FREE(s);
|
|
break;
|
|
}
|
|
}
|
|
return wd;
|
|
#else
|
|
char *s = SMB_MALLOC_ARRAY(char, PATH_MAX);
|
|
if (s == NULL) {
|
|
return NULL;
|
|
}
|
|
return getwd(s);
|
|
#endif
|
|
}
|
|
|
|
#if defined(HAVE_POSIX_CAPABILITIES)
|
|
|
|
/**************************************************************************
|
|
Try and abstract process capabilities (for systems that have them).
|
|
****************************************************************************/
|
|
|
|
/* Set the POSIX capabilities needed for the given purpose into the effective
|
|
* capability set of the current process. Make sure they are always removed
|
|
* from the inheritable set, because there is no circumstance in which our
|
|
* children should inherit our elevated privileges.
|
|
*/
|
|
static bool set_process_capability(enum smbd_capability capability,
|
|
bool enable)
|
|
{
|
|
cap_value_t cap_vals[2] = {0};
|
|
int num_cap_vals = 0;
|
|
|
|
cap_t cap;
|
|
|
|
#if defined(HAVE_PRCTL) && defined(PR_GET_KEEPCAPS) && defined(PR_SET_KEEPCAPS)
|
|
/* On Linux, make sure that any capabilities we grab are sticky
|
|
* across UID changes. We expect that this would allow us to keep both
|
|
* the effective and permitted capability sets, but as of circa 2.6.16,
|
|
* only the permitted set is kept. It is a bug (which we work around)
|
|
* that the effective set is lost, but we still require the effective
|
|
* set to be kept.
|
|
*/
|
|
if (!prctl(PR_GET_KEEPCAPS)) {
|
|
prctl(PR_SET_KEEPCAPS, 1);
|
|
}
|
|
#endif
|
|
|
|
cap = cap_get_proc();
|
|
if (cap == NULL) {
|
|
DEBUG(0,("set_process_capability: cap_get_proc failed: %s\n",
|
|
strerror(errno)));
|
|
return False;
|
|
}
|
|
|
|
switch (capability) {
|
|
case KERNEL_OPLOCK_CAPABILITY:
|
|
#ifdef CAP_NETWORK_MGT
|
|
/* IRIX has CAP_NETWORK_MGT for oplocks. */
|
|
cap_vals[num_cap_vals++] = CAP_NETWORK_MGT;
|
|
#endif
|
|
break;
|
|
case DMAPI_ACCESS_CAPABILITY:
|
|
#ifdef CAP_DEVICE_MGT
|
|
/* IRIX has CAP_DEVICE_MGT for DMAPI access. */
|
|
cap_vals[num_cap_vals++] = CAP_DEVICE_MGT;
|
|
#elif CAP_MKNOD
|
|
/* Linux has CAP_MKNOD for DMAPI access. */
|
|
cap_vals[num_cap_vals++] = CAP_MKNOD;
|
|
#endif
|
|
break;
|
|
case LEASE_CAPABILITY:
|
|
#ifdef CAP_LEASE
|
|
cap_vals[num_cap_vals++] = CAP_LEASE;
|
|
#endif
|
|
break;
|
|
case DAC_OVERRIDE_CAPABILITY:
|
|
#ifdef CAP_DAC_OVERRIDE
|
|
cap_vals[num_cap_vals++] = CAP_DAC_OVERRIDE;
|
|
#endif
|
|
}
|
|
|
|
SMB_ASSERT(num_cap_vals <= ARRAY_SIZE(cap_vals));
|
|
|
|
if (num_cap_vals == 0) {
|
|
cap_free(cap);
|
|
return True;
|
|
}
|
|
|
|
cap_set_flag(cap, CAP_EFFECTIVE, num_cap_vals, cap_vals,
|
|
enable ? CAP_SET : CAP_CLEAR);
|
|
|
|
/* We never want to pass capabilities down to our children, so make
|
|
* sure they are not inherited.
|
|
*/
|
|
cap_set_flag(cap, CAP_INHERITABLE, num_cap_vals, cap_vals, CAP_CLEAR);
|
|
|
|
if (cap_set_proc(cap) == -1) {
|
|
DEBUG(0, ("set_process_capability: cap_set_proc failed: %s\n",
|
|
strerror(errno)));
|
|
cap_free(cap);
|
|
return False;
|
|
}
|
|
|
|
cap_free(cap);
|
|
return True;
|
|
}
|
|
|
|
#endif /* HAVE_POSIX_CAPABILITIES */
|
|
|
|
/****************************************************************************
|
|
Gain the oplock capability from the kernel if possible.
|
|
****************************************************************************/
|
|
|
|
void set_effective_capability(enum smbd_capability capability)
|
|
{
|
|
#if defined(HAVE_POSIX_CAPABILITIES)
|
|
set_process_capability(capability, True);
|
|
#endif /* HAVE_POSIX_CAPABILITIES */
|
|
}
|
|
|
|
void drop_effective_capability(enum smbd_capability capability)
|
|
{
|
|
#if defined(HAVE_POSIX_CAPABILITIES)
|
|
set_process_capability(capability, False);
|
|
#endif /* HAVE_POSIX_CAPABILITIES */
|
|
}
|
|
|
|
/**************************************************************************
|
|
Wrapper for random().
|
|
****************************************************************************/
|
|
|
|
long sys_random(void)
|
|
{
|
|
#if defined(HAVE_RANDOM)
|
|
return (long)random();
|
|
#elif defined(HAVE_RAND)
|
|
return (long)rand();
|
|
#else
|
|
DEBUG(0,("Error - no random function available !\n"));
|
|
exit(1);
|
|
#endif
|
|
}
|
|
|
|
/**************************************************************************
|
|
Wrapper for srandom().
|
|
****************************************************************************/
|
|
|
|
void sys_srandom(unsigned int seed)
|
|
{
|
|
#if defined(HAVE_SRANDOM)
|
|
srandom(seed);
|
|
#elif defined(HAVE_SRAND)
|
|
srand(seed);
|
|
#else
|
|
DEBUG(0,("Error - no srandom function available !\n"));
|
|
exit(1);
|
|
#endif
|
|
}
|
|
|
|
#ifndef NGROUPS_MAX
|
|
#define NGROUPS_MAX 32 /* Guess... */
|
|
#endif
|
|
|
|
/**************************************************************************
|
|
Returns equivalent to NGROUPS_MAX - using sysconf if needed.
|
|
****************************************************************************/
|
|
|
|
int groups_max(void)
|
|
{
|
|
#if defined(SYSCONF_SC_NGROUPS_MAX)
|
|
int ret = sysconf(_SC_NGROUPS_MAX);
|
|
return (ret == -1) ? NGROUPS_MAX : ret;
|
|
#else
|
|
return NGROUPS_MAX;
|
|
#endif
|
|
}
|
|
|
|
/**************************************************************************
|
|
Wrap setgroups and getgroups for systems that declare getgroups() as
|
|
returning an array of gid_t, but actuall return an array of int.
|
|
****************************************************************************/
|
|
|
|
#if defined(HAVE_BROKEN_GETGROUPS)
|
|
|
|
#ifdef HAVE_BROKEN_GETGROUPS
|
|
#define GID_T int
|
|
#else
|
|
#define GID_T gid_t
|
|
#endif
|
|
|
|
static int sys_broken_getgroups(int setlen, gid_t *gidset)
|
|
{
|
|
GID_T gid;
|
|
GID_T *group_list;
|
|
int i, ngroups;
|
|
|
|
if(setlen == 0) {
|
|
return getgroups(setlen, &gid);
|
|
}
|
|
|
|
/*
|
|
* Broken case. We need to allocate a
|
|
* GID_T array of size setlen.
|
|
*/
|
|
|
|
if(setlen < 0) {
|
|
errno = EINVAL;
|
|
return -1;
|
|
}
|
|
|
|
if (setlen == 0)
|
|
setlen = groups_max();
|
|
|
|
if((group_list = SMB_MALLOC_ARRAY(GID_T, setlen)) == NULL) {
|
|
DEBUG(0,("sys_getgroups: Malloc fail.\n"));
|
|
return -1;
|
|
}
|
|
|
|
if((ngroups = getgroups(setlen, group_list)) < 0) {
|
|
int saved_errno = errno;
|
|
SAFE_FREE(group_list);
|
|
errno = saved_errno;
|
|
return -1;
|
|
}
|
|
|
|
for(i = 0; i < ngroups; i++)
|
|
gidset[i] = (gid_t)group_list[i];
|
|
|
|
SAFE_FREE(group_list);
|
|
return ngroups;
|
|
}
|
|
|
|
static int sys_broken_setgroups(int setlen, gid_t *gidset)
|
|
{
|
|
GID_T *group_list;
|
|
int i ;
|
|
|
|
if (setlen == 0)
|
|
return 0 ;
|
|
|
|
if (setlen < 0 || setlen > groups_max()) {
|
|
errno = EINVAL;
|
|
return -1;
|
|
}
|
|
|
|
/*
|
|
* Broken case. We need to allocate a
|
|
* GID_T array of size setlen.
|
|
*/
|
|
|
|
if((group_list = SMB_MALLOC_ARRAY(GID_T, setlen)) == NULL) {
|
|
DEBUG(0,("sys_setgroups: Malloc fail.\n"));
|
|
return -1;
|
|
}
|
|
|
|
for(i = 0; i < setlen; i++)
|
|
group_list[i] = (GID_T) gidset[i];
|
|
|
|
if(samba_setgroups(setlen, group_list) != 0) {
|
|
int saved_errno = errno;
|
|
SAFE_FREE(group_list);
|
|
errno = saved_errno;
|
|
return -1;
|
|
}
|
|
|
|
SAFE_FREE(group_list);
|
|
return 0 ;
|
|
}
|
|
|
|
#endif /* HAVE_BROKEN_GETGROUPS */
|
|
|
|
/* This is a list of systems that require the first GID passed to setgroups(2)
|
|
* to be the effective GID. If your system is one of these, add it here.
|
|
*/
|
|
#if defined (FREEBSD) || defined (DARWINOS)
|
|
#define USE_BSD_SETGROUPS
|
|
#endif
|
|
|
|
#if defined(USE_BSD_SETGROUPS)
|
|
/* Depending on the particular BSD implementation, the first GID that is
|
|
* passed to setgroups(2) will either be ignored or will set the credential's
|
|
* effective GID. In either case, the right thing to do is to guarantee that
|
|
* gidset[0] is the effective GID.
|
|
*/
|
|
static int sys_bsd_setgroups(gid_t primary_gid, int setlen, const gid_t *gidset)
|
|
{
|
|
gid_t *new_gidset = NULL;
|
|
int max;
|
|
int ret;
|
|
|
|
/* setgroups(2) will fail with EINVAL if we pass too many groups. */
|
|
max = groups_max();
|
|
|
|
/* No group list, just make sure we are setting the efective GID. */
|
|
if (setlen == 0) {
|
|
return samba_setgroups(1, &primary_gid);
|
|
}
|
|
|
|
/* If the primary gid is not the first array element, grow the array
|
|
* and insert it at the front.
|
|
*/
|
|
if (gidset[0] != primary_gid) {
|
|
new_gidset = SMB_MALLOC_ARRAY(gid_t, setlen + 1);
|
|
if (new_gidset == NULL) {
|
|
return -1;
|
|
}
|
|
|
|
memcpy(new_gidset + 1, gidset, (setlen * sizeof(gid_t)));
|
|
new_gidset[0] = primary_gid;
|
|
setlen++;
|
|
}
|
|
|
|
if (setlen > max) {
|
|
DEBUG(3, ("forced to truncate group list from %d to %d\n",
|
|
setlen, max));
|
|
setlen = max;
|
|
}
|
|
|
|
#if defined(HAVE_BROKEN_GETGROUPS)
|
|
ret = sys_broken_setgroups(setlen, new_gidset ? new_gidset : gidset);
|
|
#else
|
|
ret = samba_setgroups(setlen, new_gidset ? new_gidset : gidset);
|
|
#endif
|
|
|
|
if (new_gidset) {
|
|
int errsav = errno;
|
|
SAFE_FREE(new_gidset);
|
|
errno = errsav;
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
#endif /* USE_BSD_SETGROUPS */
|
|
|
|
/**************************************************************************
|
|
Wrapper for getgroups. Deals with broken (int) case.
|
|
****************************************************************************/
|
|
|
|
int sys_getgroups(int setlen, gid_t *gidset)
|
|
{
|
|
#if defined(HAVE_BROKEN_GETGROUPS)
|
|
return sys_broken_getgroups(setlen, gidset);
|
|
#else
|
|
return getgroups(setlen, gidset);
|
|
#endif
|
|
}
|
|
|
|
/**************************************************************************
|
|
Wrapper for setgroups. Deals with broken (int) case and BSD case.
|
|
****************************************************************************/
|
|
|
|
int sys_setgroups(gid_t UNUSED(primary_gid), int setlen, gid_t *gidset)
|
|
{
|
|
#if !defined(HAVE_SETGROUPS)
|
|
errno = ENOSYS;
|
|
return -1;
|
|
#endif /* HAVE_SETGROUPS */
|
|
|
|
#if defined(USE_BSD_SETGROUPS)
|
|
return sys_bsd_setgroups(primary_gid, setlen, gidset);
|
|
#elif defined(HAVE_BROKEN_GETGROUPS)
|
|
return sys_broken_setgroups(setlen, gidset);
|
|
#else
|
|
return samba_setgroups(setlen, gidset);
|
|
#endif
|
|
}
|
|
|
|
/**************************************************************************
|
|
Extract a command into an arg list.
|
|
****************************************************************************/
|
|
|
|
static char **extract_args(TALLOC_CTX *mem_ctx, const char *command)
|
|
{
|
|
char *trunc_cmd;
|
|
char *saveptr;
|
|
char *ptr;
|
|
int argcl;
|
|
char **argl = NULL;
|
|
int i;
|
|
|
|
if (!(trunc_cmd = talloc_strdup(mem_ctx, command))) {
|
|
DEBUG(0, ("talloc failed\n"));
|
|
goto nomem;
|
|
}
|
|
|
|
if(!(ptr = strtok_r(trunc_cmd, " \t", &saveptr))) {
|
|
TALLOC_FREE(trunc_cmd);
|
|
errno = EINVAL;
|
|
return NULL;
|
|
}
|
|
|
|
/*
|
|
* Count the args.
|
|
*/
|
|
|
|
for( argcl = 1; ptr; ptr = strtok_r(NULL, " \t", &saveptr))
|
|
argcl++;
|
|
|
|
TALLOC_FREE(trunc_cmd);
|
|
|
|
if (!(argl = talloc_array(mem_ctx, char *, argcl + 1))) {
|
|
goto nomem;
|
|
}
|
|
|
|
/*
|
|
* Now do the extraction.
|
|
*/
|
|
|
|
if (!(trunc_cmd = talloc_strdup(mem_ctx, command))) {
|
|
goto nomem;
|
|
}
|
|
|
|
ptr = strtok_r(trunc_cmd, " \t", &saveptr);
|
|
i = 0;
|
|
|
|
if (!(argl[i++] = talloc_strdup(argl, ptr))) {
|
|
goto nomem;
|
|
}
|
|
|
|
while((ptr = strtok_r(NULL, " \t", &saveptr)) != NULL) {
|
|
|
|
if (!(argl[i++] = talloc_strdup(argl, ptr))) {
|
|
goto nomem;
|
|
}
|
|
}
|
|
|
|
argl[i++] = NULL;
|
|
TALLOC_FREE(trunc_cmd);
|
|
return argl;
|
|
|
|
nomem:
|
|
DEBUG(0, ("talloc failed\n"));
|
|
TALLOC_FREE(trunc_cmd);
|
|
TALLOC_FREE(argl);
|
|
errno = ENOMEM;
|
|
return NULL;
|
|
}
|
|
|
|
/**************************************************************************
|
|
Wrapper for popen. Safer as it doesn't search a path.
|
|
Modified from the glibc sources.
|
|
modified by tridge to return a file descriptor. We must kick our FILE* habit
|
|
****************************************************************************/
|
|
|
|
typedef struct _popen_list
|
|
{
|
|
int fd;
|
|
pid_t child_pid;
|
|
struct _popen_list *next;
|
|
} popen_list;
|
|
|
|
static popen_list *popen_chain;
|
|
|
|
int sys_popen(const char *command)
|
|
{
|
|
int parent_end, child_end;
|
|
int pipe_fds[2];
|
|
popen_list *entry = NULL;
|
|
char **argl = NULL;
|
|
int ret;
|
|
|
|
if (!*command) {
|
|
errno = EINVAL;
|
|
return -1;
|
|
}
|
|
|
|
ret = pipe(pipe_fds);
|
|
if (ret < 0) {
|
|
DEBUG(0, ("sys_popen: error opening pipe: %s\n",
|
|
strerror(errno)));
|
|
return -1;
|
|
}
|
|
|
|
parent_end = pipe_fds[0];
|
|
child_end = pipe_fds[1];
|
|
|
|
entry = SMB_MALLOC_P(popen_list);
|
|
if (entry == NULL) {
|
|
DEBUG(0, ("sys_popen: malloc failed\n"));
|
|
goto err_exit;
|
|
}
|
|
|
|
ZERO_STRUCTP(entry);
|
|
|
|
/*
|
|
* Extract the command and args into a NULL terminated array.
|
|
*/
|
|
|
|
argl = extract_args(NULL, command);
|
|
if (argl == NULL) {
|
|
DEBUG(0, ("sys_popen: extract_args() failed: %s\n", strerror(errno)));
|
|
goto err_exit;
|
|
}
|
|
|
|
entry->child_pid = fork();
|
|
|
|
if (entry->child_pid == -1) {
|
|
DEBUG(0, ("sys_popen: fork failed: %s\n", strerror(errno)));
|
|
goto err_exit;
|
|
}
|
|
|
|
if (entry->child_pid == 0) {
|
|
|
|
/*
|
|
* Child !
|
|
*/
|
|
|
|
int child_std_end = STDOUT_FILENO;
|
|
popen_list *p;
|
|
|
|
close(parent_end);
|
|
if (child_end != child_std_end) {
|
|
dup2 (child_end, child_std_end);
|
|
close (child_end);
|
|
}
|
|
|
|
/*
|
|
* POSIX.2: "popen() shall ensure that any streams from previous
|
|
* popen() calls that remain open in the parent process are closed
|
|
* in the new child process."
|
|
*/
|
|
|
|
for (p = popen_chain; p; p = p->next)
|
|
close(p->fd);
|
|
|
|
ret = execv(argl[0], argl);
|
|
if (ret == -1) {
|
|
DEBUG(0, ("sys_popen: ERROR executing command "
|
|
"'%s': %s\n", command, strerror(errno)));
|
|
}
|
|
_exit (127);
|
|
}
|
|
|
|
/*
|
|
* Parent.
|
|
*/
|
|
|
|
close (child_end);
|
|
TALLOC_FREE(argl);
|
|
|
|
/* Link into popen_chain. */
|
|
entry->next = popen_chain;
|
|
popen_chain = entry;
|
|
entry->fd = parent_end;
|
|
|
|
return entry->fd;
|
|
|
|
err_exit:
|
|
|
|
SAFE_FREE(entry);
|
|
TALLOC_FREE(argl);
|
|
close(pipe_fds[0]);
|
|
close(pipe_fds[1]);
|
|
return -1;
|
|
}
|
|
|
|
/**************************************************************************
|
|
Wrapper for pclose. Modified from the glibc sources.
|
|
****************************************************************************/
|
|
|
|
int sys_pclose(int fd)
|
|
{
|
|
int wstatus;
|
|
popen_list **ptr = &popen_chain;
|
|
popen_list *entry = NULL;
|
|
pid_t wait_pid;
|
|
int status = -1;
|
|
|
|
/* Unlink from popen_chain. */
|
|
for ( ; *ptr != NULL; ptr = &(*ptr)->next) {
|
|
if ((*ptr)->fd == fd) {
|
|
entry = *ptr;
|
|
*ptr = (*ptr)->next;
|
|
status = 0;
|
|
break;
|
|
}
|
|
}
|
|
|
|
if (status < 0 || close(entry->fd) < 0)
|
|
return -1;
|
|
|
|
/*
|
|
* As Samba is catching and eating child process
|
|
* exits we don't really care about the child exit
|
|
* code, a -1 with errno = ECHILD will do fine for us.
|
|
*/
|
|
|
|
do {
|
|
wait_pid = sys_waitpid (entry->child_pid, &wstatus, 0);
|
|
} while (wait_pid == -1 && errno == EINTR);
|
|
|
|
SAFE_FREE(entry);
|
|
|
|
if (wait_pid == -1)
|
|
return -1;
|
|
return wstatus;
|
|
}
|
|
|
|
/****************************************************************************
|
|
Return the major devicenumber for UNIX extensions.
|
|
****************************************************************************/
|
|
|
|
uint32_t unix_dev_major(SMB_DEV_T dev)
|
|
{
|
|
#if defined(HAVE_DEVICE_MAJOR_FN)
|
|
return (uint32_t)major(dev);
|
|
#else
|
|
return (uint32_t)(dev >> 8);
|
|
#endif
|
|
}
|
|
|
|
/****************************************************************************
|
|
Return the minor devicenumber for UNIX extensions.
|
|
****************************************************************************/
|
|
|
|
uint32_t unix_dev_minor(SMB_DEV_T dev)
|
|
{
|
|
#if defined(HAVE_DEVICE_MINOR_FN)
|
|
return (uint32_t)minor(dev);
|
|
#else
|
|
return (uint32_t)(dev & 0xff);
|
|
#endif
|
|
}
|
|
|
|
#if 0
|
|
/*******************************************************************
|
|
Return the number of CPUs.
|
|
********************************************************************/
|
|
|
|
int sys_get_number_of_cores(void)
|
|
{
|
|
int ret = -1;
|
|
|
|
#if defined(HAVE_SYSCONF)
|
|
#if defined(_SC_NPROCESSORS_ONLN)
|
|
ret = (int)sysconf(_SC_NPROCESSORS_ONLN);
|
|
#endif
|
|
#if defined(_SC_NPROCESSORS_CONF)
|
|
if (ret < 1) {
|
|
ret = (int)sysconf(_SC_NPROCESSORS_CONF);
|
|
}
|
|
#endif
|
|
#elif defined(HAVE_SYSCTL) && defined(CTL_HW)
|
|
int name[2];
|
|
unsigned int len = sizeof(ret);
|
|
|
|
name[0] = CTL_HW;
|
|
#if defined(HW_AVAILCPU)
|
|
name[1] = HW_AVAILCPU;
|
|
|
|
if (sysctl(name, 2, &ret, &len, NULL, 0) == -1) {
|
|
ret = -1;
|
|
}
|
|
#endif
|
|
#if defined(HW_NCPU)
|
|
if(ret < 1) {
|
|
name[0] = CTL_HW;
|
|
name[1] = HW_NCPU;
|
|
if (sysctl(nm, 2, &count, &len, NULL, 0) == -1) {
|
|
ret = -1;
|
|
}
|
|
}
|
|
#endif
|
|
#endif
|
|
if (ret < 1) {
|
|
ret = 1;
|
|
}
|
|
return ret;
|
|
}
|
|
#endif
|