Context Navigation

source: trunk-3.0/source/utils/net_usershare.c@ 103

Visit:

Last change on this file since 103 was 74, checked in by Paul Smedley, 18 years ago
Close file handles before rename()
File size: 24.9 KB

Line
1	/*
2	Samba Unix/Linux SMB client library
3	Distributed SMB/CIFS Server Management Utility
4
5	Copyright (C) Jeremy Allison (jra@samba.org) 2005
6
7	This program is free software; you can redistribute it and/or modify
8	it under the terms of the GNU General Public License as published by
9	the Free Software Foundation; either version 2 of the License, or
10	(at your option) any later version.
11
12	This program is distributed in the hope that it will be useful,
13	but WITHOUT ANY WARRANTY; without even the implied warranty of
14	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15	GNU General Public License for more details.
16
17	You should have received a copy of the GNU General Public License
18	along with this program; if not, write to the Free Software
19	Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. */
20
21	#include "includes.h"
22	#include "utils/net.h"
23
24	struct {
25	const char *us_errstr;
26	enum usershare_err us_err;
27	} us_errs [] = {
28	{"",USERSHARE_OK},
29	{"Malformed usershare file", USERSHARE_MALFORMED_FILE},
30	{"Bad version number", USERSHARE_BAD_VERSION},
31	{"Malformed path entry", USERSHARE_MALFORMED_PATH},
32	{"Malformed comment entryfile", USERSHARE_MALFORMED_COMMENT_DEF},
33	{"Malformed acl definition", USERSHARE_MALFORMED_ACL_DEF},
34	{"Acl parse error", USERSHARE_ACL_ERR},
35	{"Path not absolute", USERSHARE_PATH_NOT_ABSOLUTE},
36	{"Path is denied", USERSHARE_PATH_IS_DENIED},
37	{"Path not allowed", USERSHARE_PATH_NOT_ALLOWED},
38	{"Path is not a directory", USERSHARE_PATH_NOT_DIRECTORY},
39	{"System error", USERSHARE_POSIX_ERR},
40	{NULL,(enum usershare_err)-1}
41	};
42
43	static const char *get_us_error_code(enum usershare_err us_err)
44	{
45	static pstring out;
46	int idx = 0;
47
48	while (us_errs[idx].us_errstr != NULL) {
49	if (us_errs[idx].us_err == us_err) {
50	return us_errs[idx].us_errstr;
51	}
52	idx++;
53	}
54
55	slprintf(out, sizeof(out), "Usershare error code (0x%x)", (unsigned int)us_err);
56	return out;
57	}
58
59	/* The help subsystem for the USERSHARE subcommand */
60
61	static int net_usershare_add_usage(int argc, const char **argv)
62	{
63	char c = *lp_winbind_separator();
64	d_printf(
65	"net usershare add [-l\|--long] <sharename> <path> [<comment>] [<acl>] [<guest_ok=[y\|n]>]\n"
66	"\tAdds the specified share name for this user.\n"
67	"\t<sharename> is the new share name.\n"
68	"\t<path> is the path on the filesystem to export.\n"
69	"\t<comment> is the optional comment for the new share.\n"
70	"\t<acl> is an optional share acl in the format \"DOMAIN%cname:X,DOMAIN%cname:X,....\"\n"
71	"\t<guest_ok=y> if present sets \"guest ok = yes\" on this usershare.\n"
72	"\t\t\"X\" represents a permission and can be any one of the characters f, r or d\n"
73	"\t\twhere \"f\" means full control, \"r\" means read-only, \"d\" means deny access.\n"
74	"\t\tname may be a domain user or group. For local users use the local server name "
75	"instead of \"DOMAIN\"\n"
76	"\t\tThe default acl is \"Everyone:r\" which allows everyone read-only access.\n"
77	"\tAdd -l or --long to print the info on the newly added share.\n",
78	c, c );
79	return -1;
80	}
81
82	static int net_usershare_delete_usage(int argc, const char **argv)
83	{
84	d_printf(
85	"net usershare delete <sharename>\n"\
86	"\tdeletes the specified share name for this user.\n");
87	return -1;
88	}
89
90	static int net_usershare_info_usage(int argc, const char **argv)
91	{
92	d_printf(
93	"net usershare info [-l\|--long] [wildcard sharename]\n"\
94	"\tPrints out the path, comment and acl elements of shares that match the wildcard.\n"
95	"\tBy default only gives info on shares owned by the current user\n"
96	"\tAdd -l or --long to apply this to all shares\n"
97	"\tOmit the sharename or use a wildcard of '*' to see all shares\n");
98	return -1;
99	}
100
101	static int net_usershare_list_usage(int argc, const char **argv)
102	{
103	d_printf(
104	"net usershare list [-l\|--long] [wildcard sharename]\n"\
105	"\tLists the names of all shares that match the wildcard.\n"
106	"\tBy default only lists shares owned by the current user\n"
107	"\tAdd -l or --long to apply this to all shares\n"
108	"\tOmit the sharename or use a wildcard of '*' to see all shares\n");
109	return -1;
110	}
111
112	int net_usershare_usage(int argc, const char **argv)
113	{
114	d_printf("net usershare add <sharename> <path> [<comment>] [<acl>] [<guest_ok=[y\|n]>] to "
115	"add or change a user defined share.\n"
116	"net usershare delete <sharename> to delete a user defined share.\n"
117	"net usershare info [-l\|--long] [wildcard sharename] to print info about a user defined share.\n"
118	"net usershare list [-l\|--long] [wildcard sharename] to list user defined shares.\n"
119	"net usershare help\n"\
120	"\nType \"net usershare help <option>\" to get more information on that option\n\n");
121
122	net_common_flags_usage(argc, argv);
123	return -1;
124	}
125
126	/***************************************************************************
127	***************************************************************************/
128
129	static void get_basepath(pstring basepath)
130	{
131	pstrcpy(basepath, lp_usershare_path());
132	if ((basepath[0] != '\0') && (basepath[strlen(basepath)-1] == '/')) {
133	basepath[strlen(basepath)-1] = '\0';
134	}
135	}
136
137	/***************************************************************************
138	Delete a single userlevel share.
139	***************************************************************************/
140
141	static int net_usershare_delete(int argc, const char **argv)
142	{
143	pstring us_path;
144	char *sharename;
145
146	if (argc != 1) {
147	return net_usershare_delete_usage(argc, argv);
148	}
149
150	if ((sharename = strdup_lower(argv[0])) == NULL) {
151	d_fprintf(stderr, "strdup failed\n");
152	return -1;
153	}
154
155	if (!validate_net_name(sharename, INVALID_SHARENAME_CHARS, strlen(sharename))) {
156	d_fprintf(stderr, "net usershare delete: share name %s contains "
157	"invalid characters (any of %s)\n",
158	sharename, INVALID_SHARENAME_CHARS);
159	SAFE_FREE(sharename);
160	return -1;
161	}
162
163	pstrcpy(us_path, lp_usershare_path());
164	pstrcat(us_path, "/");
165	pstrcat(us_path, sharename);
166
167	if (unlink(us_path) != 0) {
168	d_fprintf(stderr, "net usershare delete: unable to remove usershare %s. "
169	"Error was %s\n",
170	us_path, strerror(errno));
171	SAFE_FREE(sharename);
172	return -1;
173	}
174	SAFE_FREE(sharename);
175	return 0;
176	}
177
178	/***************************************************************************
179	Data structures to handle a list of usershare files.
180	***************************************************************************/
181
182	struct file_list {
183	struct file_list next, prev;
184	const char *pathname;
185	};
186
187	static struct file_list *flist;
188
189	/***************************************************************************
190	***************************************************************************/
191
192	static int get_share_list(TALLOC_CTX ctx, const char wcard, BOOL only_ours)
193	{
194	SMB_STRUCT_DIR *dp;
195	SMB_STRUCT_DIRENT *de;
196	uid_t myuid = geteuid();
197	struct file_list *fl = NULL;
198	pstring basepath;
199
200	get_basepath(basepath);
201	dp = sys_opendir(basepath);
202	if (!dp) {
203	d_fprintf(stderr, "get_share_list: cannot open usershare directory %s. Error %s\n",
204	basepath, strerror(errno) );
205	return -1;
206	}
207
208	while((de = sys_readdir(dp)) != 0) {
209	SMB_STRUCT_STAT sbuf;
210	pstring path;
211	const char *n = de->d_name;
212
213	/* Ignore . and .. */
214	if (*n == '.') {
215	if ((n[1] == '\0') \|\| (n[1] == '.' && n[2] == '\0')) {
216	continue;
217	}
218	}
219
220	if (!validate_net_name(n, INVALID_SHARENAME_CHARS, strlen(n))) {
221	d_fprintf(stderr, "get_share_list: ignoring bad share name %s\n",n);
222	continue;
223	}
224	pstrcpy(path, basepath);
225	pstrcat(path, "/");
226	pstrcat(path, n);
227
228	if (sys_lstat(path, &sbuf) != 0) {
229	d_fprintf(stderr, "get_share_list: can't lstat file %s. Error was %s\n",
230	path, strerror(errno) );
231	continue;
232	}
233
234	if (!S_ISREG(sbuf.st_mode)) {
235	d_fprintf(stderr, "get_share_list: file %s is not a regular file. Ignoring.\n",
236	path );
237	continue;
238	}
239
240	if (only_ours && sbuf.st_uid != myuid) {
241	continue;
242	}
243
244	if (!unix_wild_match(wcard, n)) {
245	continue;
246	}
247
248	/* (Finally) - add to list. */
249	fl = TALLOC_P(ctx, struct file_list);
250	if (!fl) {
251	return -1;
252	}
253	fl->pathname = talloc_strdup(ctx, n);
254	if (!fl->pathname) {
255	return -1;
256	}
257
258	DLIST_ADD(flist, fl);
259	}
260
261	sys_closedir(dp);
262	return 0;
263	}
264
265	enum us_priv_op { US_LIST_OP, US_INFO_OP};
266
267	struct us_priv_info {
268	TALLOC_CTX *ctx;
269	enum us_priv_op op;
270	};
271
272	/***************************************************************************
273	Call a function for every share on the list.
274	***************************************************************************/
275
276	static int process_share_list(int (fn)(struct file_list , void ), void priv)
277	{
278	struct file_list *fl;
279	int ret = 0;
280
281	for (fl = flist; fl; fl = fl->next) {
282	ret = (*fn)(fl, priv);
283	}
284
285	return ret;
286	}
287
288	/***************************************************************************
289	Info function.
290	***************************************************************************/
291
292	static int info_fn(struct file_list fl, void priv)
293	{
294	SMB_STRUCT_STAT sbuf;
295	char **lines = NULL;
296	struct us_priv_info pi = (struct us_priv_info )priv;
297	TALLOC_CTX *ctx = pi->ctx;
298	int fd = -1;
299	int numlines = 0;
300	SEC_DESC *psd = NULL;
301	pstring basepath;
302	pstring sharepath;
303	pstring comment;
304	pstring acl_str;
305	int num_aces;
306	char sep_str[2];
307	enum usershare_err us_err;
308	BOOL guest_ok = False;
309
310	sep_str[0] = *lp_winbind_separator();
311	sep_str[1] = '\0';
312
313	get_basepath(basepath);
314	pstrcat(basepath, "/");
315	pstrcat(basepath, fl->pathname);
316
317	#ifdef O_NOFOLLOW
318	fd = sys_open(basepath, O_RDONLY\|O_NOFOLLOW, 0);
319	#else
320	fd = sys_open(basepath, O_RDONLY, 0);
321	#endif
322
323	if (fd == -1) {
324	d_fprintf(stderr, "info_fn: unable to open %s. %s\n",
325	basepath, strerror(errno) );
326	return -1;
327	}
328
329	/* Paranoia... */
330	if (sys_fstat(fd, &sbuf) != 0) {
331	d_fprintf(stderr, "info_fn: can't fstat file %s. Error was %s\n",
332	basepath, strerror(errno) );
333	close(fd);
334	return -1;
335	}
336
337	if (!S_ISREG(sbuf.st_mode)) {
338	d_fprintf(stderr, "info_fn: file %s is not a regular file. Ignoring.\n",
339	basepath );
340	close(fd);
341	return -1;
342	}
343
344	lines = fd_lines_load(fd, &numlines, 10240);
345	close(fd);
346
347	if (lines == NULL) {
348	return -1;
349	}
350
351	/* Ensure it's well formed. */
352	us_err = parse_usershare_file(ctx, &sbuf, fl->pathname, -1, lines, numlines,
353	sharepath,
354	comment,
355	&psd,
356	&guest_ok);
357
358	file_lines_free(lines);
359
360	if (us_err != USERSHARE_OK) {
361	d_fprintf(stderr, "info_fn: file %s is not a well formed usershare file.\n",
362	basepath );
363	d_fprintf(stderr, "info_fn: Error was %s.\n",
364	get_us_error_code(us_err) );
365	return -1;
366	}
367
368	pstrcpy(acl_str, "usershare_acl=");
369
370	for (num_aces = 0; num_aces < psd->dacl->num_aces; num_aces++) {
371	const char *domain;
372	const char *name;
373	NTSTATUS ntstatus;
374
375	ntstatus = net_lookup_name_from_sid(ctx, &psd->dacl->aces[num_aces].trustee, &domain, &name);
376
377	if (NT_STATUS_IS_OK(ntstatus)) {
378	if (domain && *domain) {
379	pstrcat(acl_str, domain);
380	pstrcat(acl_str, sep_str);
381	}
382	pstrcat(acl_str,name);
383	} else {
384	fstring sidstr;
385	sid_to_string(sidstr, &psd->dacl->aces[num_aces].trustee);
386	pstrcat(acl_str,sidstr);
387	}
388	pstrcat(acl_str, ":");
389
390	if (psd->dacl->aces[num_aces].type == SEC_ACE_TYPE_ACCESS_DENIED) {
391	pstrcat(acl_str, "D,");
392	} else {
393	if (psd->dacl->aces[num_aces].access_mask & GENERIC_ALL_ACCESS) {
394	pstrcat(acl_str, "F,");
395	} else {
396	pstrcat(acl_str, "R,");
397	}
398	}
399	}
400
401	acl_str[strlen(acl_str)-1] = '\0';
402
403	if (pi->op == US_INFO_OP) {
404	d_printf("[%s]\n", fl->pathname );
405	d_printf("path=%s\n", sharepath );
406	d_printf("comment=%s\n", comment);
407	d_printf("%s\n", acl_str);
408	d_printf("guest_ok=%c\n\n", guest_ok ? 'y' : 'n');
409	} else if (pi->op == US_LIST_OP) {
410	d_printf("%s\n", fl->pathname);
411	}
412
413	return 0;
414	}
415
416	/***************************************************************************
417	Print out info (internal detail) on userlevel shares.
418	***************************************************************************/
419
420	static int net_usershare_info(int argc, const char **argv)
421	{
422	fstring wcard;
423	BOOL only_ours = True;
424	int ret = -1;
425	struct us_priv_info pi;
426	TALLOC_CTX *ctx;
427
428	fstrcpy(wcard, "*");
429
430	if (opt_long_list_entries) {
431	only_ours = False;
432	}
433
434	switch (argc) {
435	case 0:
436	break;
437	case 1:
438	fstrcpy(wcard, argv[0]);
439	break;
440	default:
441	return net_usershare_info_usage(argc, argv);
442	}
443
444	strlower_m(wcard);
445
446	ctx = talloc_init("share_info");
447	ret = get_share_list(ctx, wcard, only_ours);
448	if (ret) {
449	return ret;
450	}
451
452	pi.ctx = ctx;
453	pi.op = US_INFO_OP;
454
455	ret = process_share_list(info_fn, &pi);
456	talloc_destroy(ctx);
457	return ret;
458	}
459
460	/***************************************************************************
461	Count the current total number of usershares.
462	***************************************************************************/
463
464	static int count_num_usershares(void)
465	{
466	SMB_STRUCT_DIR *dp;
467	SMB_STRUCT_DIRENT *de;
468	pstring basepath;
469	int num_usershares = 0;
470
471	get_basepath(basepath);
472	dp = sys_opendir(basepath);
473	if (!dp) {
474	d_fprintf(stderr, "count_num_usershares: cannot open usershare directory %s. Error %s\n",
475	basepath, strerror(errno) );
476	return -1;
477	}
478
479	while((de = sys_readdir(dp)) != 0) {
480	SMB_STRUCT_STAT sbuf;
481	pstring path;
482	const char *n = de->d_name;
483
484	/* Ignore . and .. */
485	if (*n == '.') {
486	if ((n[1] == '\0') \|\| (n[1] == '.' && n[2] == '\0')) {
487	continue;
488	}
489	}
490
491	if (!validate_net_name(n, INVALID_SHARENAME_CHARS, strlen(n))) {
492	d_fprintf(stderr, "count_num_usershares: ignoring bad share name %s\n",n);
493	continue;
494	}
495	pstrcpy(path, basepath);
496	pstrcat(path, "/");
497	pstrcat(path, n);
498
499	if (sys_lstat(path, &sbuf) != 0) {
500	d_fprintf(stderr, "count_num_usershares: can't lstat file %s. Error was %s\n",
501	path, strerror(errno) );
502	continue;
503	}
504
505	if (!S_ISREG(sbuf.st_mode)) {
506	d_fprintf(stderr, "count_num_usershares: file %s is not a regular file. Ignoring.\n",
507	path );
508	continue;
509	}
510	num_usershares++;
511	}
512
513	sys_closedir(dp);
514	return num_usershares;
515	}
516
517	/***************************************************************************
518	Add a single userlevel share.
519	***************************************************************************/
520
521	static int net_usershare_add(int argc, const char **argv)
522	{
523	TALLOC_CTX *ctx = NULL;
524	SMB_STRUCT_STAT sbuf;
525	SMB_STRUCT_STAT lsbuf;
526	char *sharename;
527	pstring full_path;
528	pstring full_path_tmp;
529	const char *us_path;
530	const char *us_comment;
531	const char *arg_acl;
532	char *us_acl;
533	char *file_img;
534	int num_aces = 0;
535	int i;
536	int tmpfd;
537	const char *pacl;
538	size_t to_write;
539	uid_t myeuid = geteuid();
540	BOOL guest_ok = False;
541	int num_usershares;
542
543	us_comment = "";
544	arg_acl = "S-1-1-0:R";
545
546	switch (argc) {
547	case 0:
548	case 1:
549	default:
550	return net_usershare_add_usage(argc, argv);
551	case 2:
552	sharename = strdup_lower(argv[0]);
553	us_path = argv[1];
554	break;
555	case 3:
556	sharename = strdup_lower(argv[0]);
557	us_path = argv[1];
558	us_comment = argv[2];
559	break;
560	case 4:
561	sharename = strdup_lower(argv[0]);
562	us_path = argv[1];
563	us_comment = argv[2];
564	arg_acl = argv[3];
565	break;
566	case 5:
567	sharename = strdup_lower(argv[0]);
568	us_path = argv[1];
569	us_comment = argv[2];
570	arg_acl = argv[3];
571	if (strlen(arg_acl) == 0) {
572	arg_acl = "S-1-1-0:R";
573	}
574	if (!strnequal(argv[4], "guest_ok=", 9)) {
575	return net_usershare_add_usage(argc, argv);
576	}
577	switch (argv[4][9]) {
578	case 'y':
579	case 'Y':
580	guest_ok = True;
581	break;
582	case 'n':
583	case 'N':
584	guest_ok = False;
585	break;
586	default:
587	return net_usershare_add_usage(argc, argv);
588	}
589	break;
590	}
591
592	/* Ensure we're under the "usershare max shares" number. Advisory only. */
593	num_usershares = count_num_usershares();
594	if (num_usershares >= lp_usershare_max_shares()) {
595	d_fprintf(stderr, "net usershare add: maximum number of allowed usershares (%d) reached\n",
596	lp_usershare_max_shares() );
597	SAFE_FREE(sharename);
598	return -1;
599	}
600
601	if (!validate_net_name(sharename, INVALID_SHARENAME_CHARS, strlen(sharename))) {
602	d_fprintf(stderr, "net usershare add: share name %s contains "
603	"invalid characters (any of %s)\n",
604	sharename, INVALID_SHARENAME_CHARS);
605	SAFE_FREE(sharename);
606	return -1;
607	}
608
609	/* Disallow shares the same as users. */
610	if (getpwnam(sharename)) {
611	d_fprintf(stderr, "net usershare add: share name %s is already a valid system user name\n",
612	sharename );
613	SAFE_FREE(sharename);
614	return -1;
615	}
616
617	/* Construct the full path for the usershare file. */
618	get_basepath(full_path);
619	pstrcat(full_path, "/");
620	pstrcpy(full_path_tmp, full_path);
621	pstrcat(full_path, sharename);
622	pstrcat(full_path_tmp, ":tmpXXXXXX");
623
624	/* The path must be absolute. */
625	if (us_path[0] != '/') {
626	d_fprintf(stderr,"net usershare add: path %s is not an absolute path.\n",
627	us_path);
628	SAFE_FREE(sharename);
629	return -1;
630	}
631
632	/* Check the directory to be shared exists. */
633	if (sys_stat(us_path, &sbuf) != 0) {
634	d_fprintf(stderr, "net usershare add: cannot stat path %s to ensure "
635	"this is a directory. Error was %s\n",
636	us_path, strerror(errno) );
637	SAFE_FREE(sharename);
638	return -1;
639	}
640
641	if (!S_ISDIR(sbuf.st_mode)) {
642	d_fprintf(stderr, "net usershare add: path %s is not a directory.\n",
643	us_path );
644	SAFE_FREE(sharename);
645	return -1;
646	}
647
648	/* If we're not root, check if we're restricted to sharing out directories
649	that we own only. */
650
651	if ((myeuid != 0) && lp_usershare_owner_only() && (myeuid != sbuf.st_uid)) {
652	d_fprintf(stderr, "net usershare add: cannot share path %s as "
653	"we are restricted to only sharing directories we own.\n"
654	"\tAsk the administrator to add the line \"usershare owner only = False\" \n"
655	"\tto the [global] section of the smb.conf to allow this.\n",
656	us_path );
657	SAFE_FREE(sharename);
658	return -1;
659	}
660
661	/* No validation needed on comment. Now go through and validate the
662	acl string. Convert names to SID's as needed. Then run it through
663	parse_usershare_acl to ensure it's valid. */
664
665	ctx = talloc_init("share_info");
666
667	/* Start off the string we'll append to. */
668	us_acl = talloc_strdup(ctx, "");
669
670	pacl = arg_acl;
671	num_aces = 1;
672
673	/* Add the number of ',' characters to get the number of aces. */
674	num_aces += count_chars(pacl,',');
675
676	for (i = 0; i < num_aces; i++) {
677	DOM_SID sid;
678	const char *pcolon = strchr_m(pacl, ':');
679	const char *name;
680
681	if (pcolon == NULL) {
682	d_fprintf(stderr, "net usershare add: malformed acl %s (missing ':').\n",
683	pacl );
684	talloc_destroy(ctx);
685	SAFE_FREE(sharename);
686	return -1;
687	}
688
689	switch(pcolon[1]) {
690	case 'f':
691	case 'F':
692	case 'd':
693	case 'r':
694	case 'R':
695	break;
696	default:
697	d_fprintf(stderr, "net usershare add: malformed acl %s "
698	"(access control must be 'r', 'f', or 'd')\n",
699	pacl );
700	talloc_destroy(ctx);
701	SAFE_FREE(sharename);
702	return -1;
703	}
704
705	if (pcolon[2] != ',' && pcolon[2] != '\0') {
706	d_fprintf(stderr, "net usershare add: malformed terminating character for acl %s\n",
707	pacl );
708	talloc_destroy(ctx);
709	SAFE_FREE(sharename);
710	return -1;
711	}
712
713	/* Get the name */
714	if ((name = talloc_strndup(ctx, pacl, pcolon - pacl)) == NULL) {
715	d_fprintf(stderr, "talloc_strndup failed\n");
716	talloc_destroy(ctx);
717	SAFE_FREE(sharename);
718	return -1;
719	}
720	if (!string_to_sid(&sid, name)) {
721	/* Convert to a SID */
722	NTSTATUS ntstatus = net_lookup_sid_from_name(ctx, name, &sid);
723	if (!NT_STATUS_IS_OK(ntstatus)) {
724	d_fprintf(stderr, "net usershare add: cannot convert name \"%s\" to a SID. %s.",
725	name, get_friendly_nt_error_msg(ntstatus) );
726	if (NT_STATUS_EQUAL(ntstatus, NT_STATUS_CONNECTION_REFUSED)) {
727	d_fprintf(stderr, " Maybe smbd is not running.\n");
728	} else {
729	d_fprintf(stderr, "\n");
730	}
731	talloc_destroy(ctx);
732	SAFE_FREE(sharename);
733	return -1;
734	}
735	}
736	us_acl = talloc_asprintf_append(us_acl, "%s:%c,", sid_string_static(&sid), pcolon[1]);
737
738	/* Move to the next ACL entry. */
739	if (pcolon[2] == ',') {
740	pacl = &pcolon[3];
741	}
742	}
743
744	/* Remove the last ',' */
745	us_acl[strlen(us_acl)-1] = '\0';
746
747	if (guest_ok && !lp_usershare_allow_guests()) {
748	d_fprintf(stderr, "net usershare add: guest_ok=y requested "
749	"but the \"usershare allow guests\" parameter is not enabled "
750	"by this server.\n");
751	talloc_destroy(ctx);
752	SAFE_FREE(sharename);
753	return -1;
754	}
755
756	/* Create a temporary filename for this share. */
757	tmpfd = smb_mkstemp(full_path_tmp);
758
759	if (tmpfd == -1) {
760	d_fprintf(stderr, "net usershare add: cannot create tmp file %s\n",
761	full_path_tmp );
762	talloc_destroy(ctx);
763	SAFE_FREE(sharename);
764	return -1;
765	}
766
767	/* Ensure we opened the file we thought we did. */
768	if (sys_lstat(full_path_tmp, &lsbuf) != 0) {
769	d_fprintf(stderr, "net usershare add: cannot lstat tmp file %s\n",
770	full_path_tmp );
771	talloc_destroy(ctx);
772	SAFE_FREE(sharename);
773	return -1;
774	}
775
776	/* Check this is the same as the file we opened. */
777	if (sys_fstat(tmpfd, &sbuf) != 0) {
778	d_fprintf(stderr, "net usershare add: cannot fstat tmp file %s\n",
779	full_path_tmp );
780	talloc_destroy(ctx);
781	SAFE_FREE(sharename);
782	return -1;
783	}
784
785	if (!S_ISREG(sbuf.st_mode) \|\| sbuf.st_dev != lsbuf.st_dev \|\| sbuf.st_ino != lsbuf.st_ino) {
786	d_fprintf(stderr, "net usershare add: tmp file %s is not a regular file ?\n",
787	full_path_tmp );
788	talloc_destroy(ctx);
789	SAFE_FREE(sharename);
790	return -1;
791	}
792
793	if (fchmod(tmpfd, 0644) == -1) {
794	d_fprintf(stderr, "net usershare add: failed to fchmod tmp file %s to 0644n",
795	full_path_tmp );
796	talloc_destroy(ctx);
797	SAFE_FREE(sharename);
798	return -1;
799	}
800
801	/* Create the in-memory image of the file. */
802	file_img = talloc_strdup(ctx, "#VERSION 2\npath=");
803	file_img = talloc_asprintf_append(file_img, "%s\ncomment=%s\nusershare_acl=%s\nguest_ok=%c\n",
804	us_path, us_comment, us_acl, guest_ok ? 'y' : 'n');
805
806	to_write = strlen(file_img);
807
808	if (write(tmpfd, file_img, to_write) != to_write) {
809	d_fprintf(stderr, "net usershare add: failed to write %u bytes to file %s. Error was %s\n",
810	(unsigned int)to_write, full_path_tmp, strerror(errno));
811	unlink(full_path_tmp);
812	talloc_destroy(ctx);
813	SAFE_FREE(sharename);
814	return -1;
815	}
816
817	/* Attempt to replace any existing share by this name. */
818	#ifdef __OS2__
819	close(tmpfd);
820	#endif
821	if (rename(full_path_tmp, full_path) != 0) {
822	unlink(full_path_tmp);
823	d_fprintf(stderr, "net usershare add: failed to add share %s. Error was %s\n",
824	sharename, strerror(errno));
825	talloc_destroy(ctx);
826	close(tmpfd);
827	SAFE_FREE(sharename);
828	return -1;
829	}
830
831	#ifndef __OS2__
832	close(tmpfd);
833	#endif
834	talloc_destroy(ctx);
835
836	if (opt_long_list_entries) {
837	const char *my_argv[2];
838	my_argv[0] = sharename;
839	my_argv[1] = NULL;
840	net_usershare_info(1, my_argv);
841	}
842
843	SAFE_FREE(sharename);
844	return 0;
845	}
846
847	#if 0
848	/***************************************************************************
849	List function.
850	***************************************************************************/
851
852	static int list_fn(struct file_list fl, void priv)
853	{
854	d_printf("%s\n", fl->pathname);
855	return 0;
856	}
857	#endif
858
859	/***************************************************************************
860	List userlevel shares.
861	***************************************************************************/
862
863	static int net_usershare_list(int argc, const char **argv)
864	{
865	fstring wcard;
866	BOOL only_ours = True;
867	int ret = -1;
868	struct us_priv_info pi;
869	TALLOC_CTX *ctx;
870
871	fstrcpy(wcard, "*");
872
873	if (opt_long_list_entries) {
874	only_ours = False;
875	}
876
877	switch (argc) {
878	case 0:
879	break;
880	case 1:
881	fstrcpy(wcard, argv[0]);
882	break;
883	default:
884	return net_usershare_list_usage(argc, argv);
885	}
886
887	strlower_m(wcard);
888
889	ctx = talloc_init("share_list");
890	ret = get_share_list(ctx, wcard, only_ours);
891	if (ret) {
892	return ret;
893	}
894
895	pi.ctx = ctx;
896	pi.op = US_LIST_OP;
897
898	ret = process_share_list(info_fn, &pi);
899	talloc_destroy(ctx);
900	return ret;
901	}
902
903	/***************************************************************************
904	Handle "net usershare help *" subcommands.
905	***************************************************************************/
906
907	int net_usershare_help(int argc, const char **argv)
908	{
909	struct functable func[] = {
910	{"ADD", net_usershare_add_usage},
911	{"DELETE", net_usershare_delete_usage},
912	{"INFO", net_usershare_info_usage},
913	{"LIST", net_usershare_list_usage},
914	{NULL, NULL}};
915
916	return net_run_function(argc, argv, func, net_usershare_usage);
917	}
918
919	/***************************************************************************
920	Entry-point for all the USERSHARE functions.
921	***************************************************************************/
922
923	int net_usershare(int argc, const char **argv)
924	{
925	SMB_STRUCT_DIR *dp;
926
927	struct functable func[] = {
928	{"ADD", net_usershare_add},
929	{"DELETE", net_usershare_delete},
930	{"INFO", net_usershare_info},
931	{"LIST", net_usershare_list},
932	{"HELP", net_usershare_help},
933	{NULL, NULL}
934	};
935
936	if (lp_usershare_max_shares() == 0) {
937	d_fprintf(stderr, "net usershare: usershares are currently disabled\n");
938	return -1;
939	}
940
941	dp = sys_opendir(lp_usershare_path());
942	if (!dp) {
943	int err = errno;
944	d_fprintf(stderr, "net usershare: cannot open usershare directory %s. Error %s\n",
945	lp_usershare_path(), strerror(err) );
946	if (err == EACCES) {
947	d_fprintf(stderr, "You do not have permission to create a usershare. Ask your "
948	"administrator to grant you permissions to create a share.\n");
949	} else if (err == ENOENT) {
950	d_fprintf(stderr, "Please ask your system administrator to "
951	"enable user sharing.\n");
952	}
953	return -1;
954	}
955	sys_closedir(dp);
956
957	return net_run_function(argc, argv, func, net_usershare_usage);
958	}

Note: See TracBrowser for help on using the repository browser.

Download in other formats: