smbsrv/smbd/smbd_main.c

5331Samw/*
5331Samw * CDDL HEADER START
5331Samw *
5331Samw * The contents of this file are subject to the terms of the
5331Samw * Common Development and Distribution License (the "License").
5331Samw * You may not use this file except in compliance with the License.
5331Samw *
5331Samw * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
5331Samw * or http://www.opensolaris.org/os/licensing.
5331Samw * See the License for the specific language governing permissions
5331Samw * and limitations under the License.
5331Samw *
5331Samw * When distributing Covered Code, include this CDDL HEADER in each
5331Samw * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
5331Samw * If applicable, add the following below this CDDL HEADER, with the
5331Samw * fields enclosed by brackets "[]" replaced with your own identifying
5331Samw * information: Portions Copyright [yyyy] [name of copyright owner]
5331Samw *
5331Samw * CDDL HEADER END
5331Samw */
5331Samw/*
*12508Samw@Sun.COM * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
5331Samw */
5331Samw
5331Samw#include <sys/types.h>
5331Samw#include <sys/stat.h>
5331Samw#include <sys/ioccom.h>
9832Samw@Sun.COM#include <sys/corectl.h>
5331Samw#include <stdio.h>
5331Samw#include <string.h>
5331Samw#include <strings.h>
5331Samw#include <stdlib.h>
5331Samw#include <unistd.h>
5331Samw#include <stdarg.h>
5331Samw#include <fcntl.h>
5331Samw#include <wait.h>
5331Samw#include <signal.h>
8334SJose.Borrego@Sun.COM#include <atomic.h>
5331Samw#include <libscf.h>
5331Samw#include <limits.h>
5331Samw#include <priv_utils.h>
5331Samw#include <door.h>
5331Samw#include <errno.h>
5331Samw#include <pthread.h>
5331Samw#include <time.h>
5331Samw#include <libscf.h>
5331Samw#include <zone.h>
5331Samw#include <libgen.h>
5331Samw#include <pwd.h>
5331Samw#include <grp.h>
5331Samw
11963SAfshin.Ardakani@Sun.COM#include <smbsrv/smb_door.h>
5331Samw#include <smbsrv/smb_ioctl.h>
10966SJordan.Brown@Sun.COM#include <smbsrv/string.h>
5331Samw#include <smbsrv/libsmb.h>
5331Samw#include <smbsrv/libsmbns.h>
5331Samw#include <smbsrv/libmlsvc.h>
5331Samw#include "smbd.h"
5331Samw
5331Samw#define	DRV_DEVICE_PATH	"/devices/pseudo/smbsrv@0:smbsrv"
5331Samw#define	SMB_DBDIR "/var/smb"
5331Samw
9832Samw@Sun.COMstatic void *smbd_nbt_listener(void *);
9832Samw@Sun.COMstatic void *smbd_tcp_listener(void *);
9832Samw@Sun.COMstatic void *smbd_nbt_receiver(void *);
9832Samw@Sun.COMstatic void *smbd_tcp_receiver(void *);
6139Sjb150015
5331Samwstatic int smbd_daemonize_init(void);
5331Samwstatic void smbd_daemonize_fini(int, int);
9832Samw@Sun.COMstatic int smb_init_daemon_priv(int, uid_t, gid_t);
5331Samw
6432Sas200622static int smbd_kernel_bind(void);
5331Samwstatic void smbd_kernel_unbind(void);
5331Samwstatic int smbd_already_running(void);
5331Samw
5331Samwstatic int smbd_service_init(void);
5331Samwstatic void smbd_service_fini(void);
5331Samw
5331Samwstatic int smbd_setup_options(int argc, char *argv[]);
5331Samwstatic void smbd_usage(FILE *fp);
5331Samwstatic void smbd_report(const char *fmt, ...);
5331Samw
5331Samwstatic void smbd_sig_handler(int sig);
5331Samw
7348SJose.Borrego@Sun.COMstatic int32_t smbd_gmtoff(void);
5331Samwstatic int smbd_localtime_init(void);
5331Samwstatic void *smbd_localtime_monitor(void *arg);
5331Samw
5331Samwstatic pthread_t localtime_thr;
5331Samw
5331Samwstatic int smbd_refresh_init(void);
5331Samwstatic void smbd_refresh_fini(void);
5331Samwstatic void *smbd_refresh_monitor(void *);
8670SJose.Borrego@Sun.COMstatic void smbd_refresh_dc(void);
8670SJose.Borrego@Sun.COM
9832Samw@Sun.COMstatic void *smbd_nbt_receiver(void *);
9832Samw@Sun.COMstatic void *smbd_nbt_listener(void *);
9832Samw@Sun.COM
9832Samw@Sun.COMstatic void *smbd_tcp_receiver(void *);
9832Samw@Sun.COMstatic void *smbd_tcp_listener(void *);
9832Samw@Sun.COM
9046SJose.Borrego@Sun.COMstatic int smbd_start_listeners(void);
9046SJose.Borrego@Sun.COMstatic void smbd_stop_listeners(void);
9832Samw@Sun.COMstatic int smbd_kernel_start(void);
9832Samw@Sun.COM
9832Samw@Sun.COMstatic void smbd_fatal_error(const char *);
9046SJose.Borrego@Sun.COM
5331Samwstatic pthread_t refresh_thr;
5331Samwstatic pthread_cond_t refresh_cond;
5331Samwstatic pthread_mutex_t refresh_mutex;
5331Samw
11963SAfshin.Ardakani@Sun.COMstatic cond_t listener_cv;
11963SAfshin.Ardakani@Sun.COMstatic mutex_t listener_mutex;
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM/*
11963SAfshin.Ardakani@Sun.COM * Mutex to ensure that smbd_service_fini() and smbd_service_init()
11963SAfshin.Ardakani@Sun.COM * are atomic w.r.t. one another.  Otherwise, if a shutdown begins
11963SAfshin.Ardakani@Sun.COM * before initialization is complete, resources can get deallocated
11963SAfshin.Ardakani@Sun.COM * while initialization threads are still using them.
11963SAfshin.Ardakani@Sun.COM */
11963SAfshin.Ardakani@Sun.COMstatic mutex_t smbd_service_mutex;
11963SAfshin.Ardakani@Sun.COMstatic cond_t smbd_service_cv;
11963SAfshin.Ardakani@Sun.COM
6139Sjb150015smbd_t smbd;
5331Samw
5331Samw/*
5331Samw * Use SMF error codes only on return or exit.
5331Samw */
5331Samwint
5331Samwmain(int argc, char *argv[])
5331Samw{
6432Sas200622	struct sigaction	act;
6432Sas200622	sigset_t		set;
6432Sas200622	uid_t			uid;
6432Sas200622	int			pfd = -1;
8334SJose.Borrego@Sun.COM	uint_t			sigval;
5331Samw
5331Samw	smbd.s_pname = basename(argv[0]);
5331Samw	openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
5331Samw
5331Samw	if (smbd_setup_options(argc, argv) != 0)
5331Samw		return (SMF_EXIT_ERR_FATAL);
5331Samw
5331Samw	if ((uid = getuid()) != smbd.s_uid) {
5331Samw		smbd_report("user %d: %s", uid, strerror(EPERM));
5331Samw		return (SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	if (getzoneid() != GLOBAL_ZONEID) {
5331Samw		smbd_report("non-global zones are not supported");
5331Samw		return (SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	if (is_system_labeled()) {
5331Samw		smbd_report("Trusted Extensions not supported");
5331Samw		return (SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	if (smbd_already_running())
5331Samw		return (SMF_EXIT_OK);
5331Samw
5331Samw	(void) sigfillset(&set);
5331Samw	(void) sigdelset(&set, SIGABRT);
5331Samw
5331Samw	(void) sigfillset(&act.sa_mask);
5331Samw	act.sa_handler = smbd_sig_handler;
5331Samw	act.sa_flags = 0;
5331Samw
11963SAfshin.Ardakani@Sun.COM	(void) sigaction(SIGABRT, &act, NULL);
5331Samw	(void) sigaction(SIGTERM, &act, NULL);
5331Samw	(void) sigaction(SIGHUP, &act, NULL);
5331Samw	(void) sigaction(SIGINT, &act, NULL);
5331Samw	(void) sigaction(SIGPIPE, &act, NULL);
*12508Samw@Sun.COM	(void) sigaction(SIGUSR1, &act, NULL);
5331Samw
5331Samw	(void) sigdelset(&set, SIGTERM);
5331Samw	(void) sigdelset(&set, SIGHUP);
5331Samw	(void) sigdelset(&set, SIGINT);
5331Samw	(void) sigdelset(&set, SIGPIPE);
*12508Samw@Sun.COM	(void) sigdelset(&set, SIGUSR1);
5331Samw
5331Samw	if (smbd.s_fg) {
5331Samw		(void) sigdelset(&set, SIGTSTP);
5331Samw		(void) sigdelset(&set, SIGTTIN);
5331Samw		(void) sigdelset(&set, SIGTTOU);
5331Samw
5331Samw		if (smbd_service_init() != 0) {
5331Samw			smbd_report("service initialization failed");
5331Samw			exit(SMF_EXIT_ERR_FATAL);
5331Samw		}
5331Samw	} else {
5331Samw		/*
5331Samw		 * "pfd" is a pipe descriptor -- any fatal errors
5331Samw		 * during subsequent initialization of the child
5331Samw		 * process should be written to this pipe and the
5331Samw		 * parent will report this error as the exit status.
5331Samw		 */
5331Samw		pfd = smbd_daemonize_init();
5331Samw
5331Samw		if (smbd_service_init() != 0) {
5331Samw			smbd_report("daemon initialization failed");
5331Samw			exit(SMF_EXIT_ERR_FATAL);
5331Samw		}
5331Samw
5331Samw		smbd_daemonize_fini(pfd, SMF_EXIT_OK);
5331Samw	}
5331Samw
11963SAfshin.Ardakani@Sun.COM	(void) atexit(smb_kmod_stop);
5331Samw
8334SJose.Borrego@Sun.COM	while (!smbd.s_shutting_down) {
8334SJose.Borrego@Sun.COM		if (smbd.s_sigval == 0 && smbd.s_refreshes == 0)
7052Samw			(void) sigsuspend(&set);
5331Samw
8334SJose.Borrego@Sun.COM		sigval = atomic_swap_uint(&smbd.s_sigval, 0);
7052Samw
7052Samw		switch (sigval) {
5331Samw		case 0:
5331Samw		case SIGPIPE:
11963SAfshin.Ardakani@Sun.COM		case SIGABRT:
5331Samw			break;
5331Samw
5331Samw		case SIGHUP:
8334SJose.Borrego@Sun.COM			syslog(LOG_DEBUG, "refresh requested");
5331Samw			(void) pthread_cond_signal(&refresh_cond);
5331Samw			break;
5331Samw
*12508Samw@Sun.COM		case SIGUSR1:
*12508Samw@Sun.COM			smb_log_dumpall();
*12508Samw@Sun.COM			break;
*12508Samw@Sun.COM
5331Samw		default:
5331Samw			/*
5331Samw			 * Typically SIGINT or SIGTERM.
5331Samw			 */
8334SJose.Borrego@Sun.COM			smbd.s_shutting_down = B_TRUE;
5331Samw			break;
5331Samw		}
5331Samw	}
5331Samw
5331Samw	smbd_service_fini();
5331Samw	closelog();
9832Samw@Sun.COM	return ((smbd.s_fatal_error) ? SMF_EXIT_ERR_FATAL : SMF_EXIT_OK);
5331Samw}
5331Samw
5331Samw/*
5331Samw * This function will fork off a child process,
5331Samw * from which only the child will return.
5331Samw *
5331Samw * Use SMF error codes only on exit.
5331Samw */
5331Samwstatic int
5331Samwsmbd_daemonize_init(void)
5331Samw{
5331Samw	int status, pfds[2];
5331Samw	sigset_t set, oset;
5331Samw	pid_t pid;
5331Samw	int rc;
5331Samw
5331Samw	/*
5331Samw	 * Reset privileges to the minimum set required. We continue
5331Samw	 * to run as root to create and access files in /var.
5331Samw	 */
9832Samw@Sun.COM	rc = smb_init_daemon_priv(PU_RESETGROUPS, smbd.s_uid, smbd.s_gid);
5331Samw
5331Samw	if (rc != 0) {
5331Samw		smbd_report("insufficient privileges");
5331Samw		exit(SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	/*
5331Samw	 * Block all signals prior to the fork and leave them blocked in the
5331Samw	 * parent so we don't get in a situation where the parent gets SIGINT
5331Samw	 * and returns non-zero exit status and the child is actually running.
5331Samw	 * In the child, restore the signal mask once we've done our setsid().
5331Samw	 */
5331Samw	(void) sigfillset(&set);
5331Samw	(void) sigdelset(&set, SIGABRT);
5331Samw	(void) sigprocmask(SIG_BLOCK, &set, &oset);
5331Samw
5331Samw	if (pipe(pfds) == -1) {
5331Samw		smbd_report("unable to create pipe");
5331Samw		exit(SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	closelog();
5331Samw
5331Samw	if ((pid = fork()) == -1) {
5331Samw		openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
5331Samw		smbd_report("unable to fork");
5331Samw		closelog();
5331Samw		exit(SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	/*
5331Samw	 * If we're the parent process, wait for either the child to send us
5331Samw	 * the appropriate exit status over the pipe or for the read to fail
5331Samw	 * (presumably with 0 for EOF if our child terminated abnormally).
5331Samw	 * If the read fails, exit with either the child's exit status if it
5331Samw	 * exited or with SMF_EXIT_ERR_FATAL if it died from a fatal signal.
5331Samw	 */
5331Samw	if (pid != 0) {
5331Samw		(void) close(pfds[1]);
5331Samw
5331Samw		if (read(pfds[0], &status, sizeof (status)) == sizeof (status))
5331Samw			_exit(status);
5331Samw
5331Samw		if (waitpid(pid, &status, 0) == pid && WIFEXITED(status))
5331Samw			_exit(WEXITSTATUS(status));
5331Samw
5331Samw		_exit(SMF_EXIT_ERR_FATAL);
5331Samw	}
5331Samw
5331Samw	openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
5331Samw	(void) setsid();
5331Samw	(void) sigprocmask(SIG_SETMASK, &oset, NULL);
5331Samw	(void) chdir("/");
5331Samw	(void) umask(022);
5331Samw	(void) close(pfds[0]);
5331Samw
5331Samw	return (pfds[1]);
5331Samw}
5331Samw
9832Samw@Sun.COM/*
9832Samw@Sun.COM * This function is based on __init_daemon_priv() and replaces
9832Samw@Sun.COM * __init_daemon_priv() since we want smbd to have all privileges so that it
9832Samw@Sun.COM * can execute map/unmap commands with all privileges during share
9832Samw@Sun.COM * connection/disconnection.  Unused privileges are disabled until command
9832Samw@Sun.COM * execution.  The permitted and the limit set contains all privileges.  The
9832Samw@Sun.COM * inheritable set contains no privileges.
9832Samw@Sun.COM */
9832Samw@Sun.COM
9832Samw@Sun.COMstatic const char root_cp[] = "/core.%f.%t";
9832Samw@Sun.COMstatic const char daemon_cp[] = "/var/tmp/core.%f.%t";
9832Samw@Sun.COM
9832Samw@Sun.COMstatic int
9832Samw@Sun.COMsmb_init_daemon_priv(int flags, uid_t uid, gid_t gid)
9832Samw@Sun.COM{
9832Samw@Sun.COM	priv_set_t *perm = NULL;
9832Samw@Sun.COM	int ret = -1;
9832Samw@Sun.COM	char buf[1024];
9832Samw@Sun.COM
9832Samw@Sun.COM	/*
9832Samw@Sun.COM	 * This is not a significant failure: it allows us to start programs
9832Samw@Sun.COM	 * with sufficient privileges and with the proper uid.   We don't
9832Samw@Sun.COM	 * care enough about the extra groups in that case.
9832Samw@Sun.COM	 */
9832Samw@Sun.COM	if (flags & PU_RESETGROUPS)
9832Samw@Sun.COM		(void) setgroups(0, NULL);
9832Samw@Sun.COM
9832Samw@Sun.COM	if (gid != (gid_t)-1 && setgid(gid) != 0)
9832Samw@Sun.COM		goto end;
9832Samw@Sun.COM
9832Samw@Sun.COM	perm = priv_allocset();
9832Samw@Sun.COM	if (perm == NULL)
9832Samw@Sun.COM		goto end;
9832Samw@Sun.COM
9832Samw@Sun.COM	/* E = P */
9832Samw@Sun.COM	(void) getppriv(PRIV_PERMITTED, perm);
9832Samw@Sun.COM	(void) setppriv(PRIV_SET, PRIV_EFFECTIVE, perm);
9832Samw@Sun.COM
9832Samw@Sun.COM	/* Now reset suid and euid */
9832Samw@Sun.COM	if (uid != (uid_t)-1 && setreuid(uid, uid) != 0)
9832Samw@Sun.COM		goto end;
9832Samw@Sun.COM
9832Samw@Sun.COM	/* I = 0 */
9832Samw@Sun.COM	priv_emptyset(perm);
9832Samw@Sun.COM	ret = setppriv(PRIV_SET, PRIV_INHERITABLE, perm);
9832Samw@Sun.COMend:
9832Samw@Sun.COM	priv_freeset(perm);
9832Samw@Sun.COM
9832Samw@Sun.COM	if (core_get_process_path(buf, sizeof (buf), getpid()) == 0 &&
9832Samw@Sun.COM	    strcmp(buf, "core") == 0) {
9832Samw@Sun.COM
9832Samw@Sun.COM		if ((uid == (uid_t)-1 ? geteuid() : uid) == 0) {
9832Samw@Sun.COM			(void) core_set_process_path(root_cp, sizeof (root_cp),
9832Samw@Sun.COM			    getpid());
9832Samw@Sun.COM		} else {
9832Samw@Sun.COM			(void) core_set_process_path(daemon_cp,
9832Samw@Sun.COM			    sizeof (daemon_cp), getpid());
9832Samw@Sun.COM		}
9832Samw@Sun.COM	}
9832Samw@Sun.COM	(void) setpflags(__PROC_PROTECT, 0);
9832Samw@Sun.COM
9832Samw@Sun.COM	return (ret);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COM/*
9832Samw@Sun.COM * Most privileges, except the ones that are required for smbd, are turn off
9832Samw@Sun.COM * in the effective set.  They will be turn on when needed for command
9832Samw@Sun.COM * execution during share connection/disconnection.
9832Samw@Sun.COM */
5331Samwstatic void
5331Samwsmbd_daemonize_fini(int fd, int exit_status)
5331Samw{
9832Samw@Sun.COM	priv_set_t *pset;
9832Samw@Sun.COM
5331Samw	/*
5331Samw	 * Now that we're running, if a pipe fd was specified, write an exit
5331Samw	 * status to it to indicate that our parent process can safely detach.
5331Samw	 * Then proceed to loading the remaining non-built-in modules.
5331Samw	 */
5331Samw	if (fd >= 0)
5331Samw		(void) write(fd, &exit_status, sizeof (exit_status));
5331Samw
5331Samw	(void) close(fd);
5331Samw
9832Samw@Sun.COM	pset = priv_allocset();
9832Samw@Sun.COM	if (pset == NULL)
9832Samw@Sun.COM		return;
9832Samw@Sun.COM
11537SCasper.Dik@Sun.COM	priv_basicset(pset);
9832Samw@Sun.COM
9832Samw@Sun.COM	/* list of privileges for smbd */
9832Samw@Sun.COM	(void) priv_addset(pset, PRIV_NET_MAC_AWARE);
9832Samw@Sun.COM	(void) priv_addset(pset, PRIV_NET_PRIVADDR);
9832Samw@Sun.COM	(void) priv_addset(pset, PRIV_PROC_AUDIT);
9832Samw@Sun.COM	(void) priv_addset(pset, PRIV_SYS_DEVICES);
9832Samw@Sun.COM	(void) priv_addset(pset, PRIV_SYS_SMB);
11963SAfshin.Ardakani@Sun.COM	(void) priv_addset(pset, PRIV_SYS_MOUNT);
9832Samw@Sun.COM
9832Samw@Sun.COM	priv_inverse(pset);
9832Samw@Sun.COM
9832Samw@Sun.COM	/* turn off unneeded privileges */
9832Samw@Sun.COM	(void) setppriv(PRIV_OFF, PRIV_EFFECTIVE, pset);
9832Samw@Sun.COM
9832Samw@Sun.COM	priv_freeset(pset);
9832Samw@Sun.COM
9832Samw@Sun.COM	/* reenable core dumps */
9832Samw@Sun.COM	__fini_daemon_priv(NULL);
5331Samw}
5331Samw
6139Sjb150015/*
6139Sjb150015 * smbd_service_init
6139Sjb150015 */
5331Samwstatic int
5331Samwsmbd_service_init(void)
5331Samw{
11963SAfshin.Ardakani@Sun.COM	static struct dir {
11963SAfshin.Ardakani@Sun.COM		char	*name;
11963SAfshin.Ardakani@Sun.COM		int	perm;
11963SAfshin.Ardakani@Sun.COM	} dir[] = {
11963SAfshin.Ardakani@Sun.COM		{ SMB_DBDIR,	0700 },
11963SAfshin.Ardakani@Sun.COM		{ SMB_CVOL,	0755 },
11963SAfshin.Ardakani@Sun.COM		{ SMB_SYSROOT,	0755 },
11963SAfshin.Ardakani@Sun.COM		{ SMB_SYSTEM32,	0755 },
11963SAfshin.Ardakani@Sun.COM		{ SMB_VSS,	0755 }
11963SAfshin.Ardakani@Sun.COM	};
11963SAfshin.Ardakani@Sun.COM	int	rc, i;
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	(void) mutex_lock(&smbd_service_mutex);
6432Sas200622
9832Samw@Sun.COM	smbd.s_pid = getpid();
11963SAfshin.Ardakani@Sun.COM	for (i = 0; i < sizeof (dir)/sizeof (dir[0]); ++i) {
11963SAfshin.Ardakani@Sun.COM		if ((mkdir(dir[i].name, dir[i].perm) < 0) &&
11963SAfshin.Ardakani@Sun.COM		    (errno != EEXIST)) {
11963SAfshin.Ardakani@Sun.COM			smbd_report("mkdir %s: %s", dir[i].name,
11963SAfshin.Ardakani@Sun.COM			    strerror(errno));
11963SAfshin.Ardakani@Sun.COM			(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM			return (-1);
11963SAfshin.Ardakani@Sun.COM		}
5331Samw	}
5331Samw
6139Sjb150015	if ((rc = smb_ccache_init(SMB_VARRUN_DIR, SMB_CCACHE_FILE)) != 0) {
6139Sjb150015		if (rc == -1)
6139Sjb150015			smbd_report("mkdir %s: %s", SMB_VARRUN_DIR,
6139Sjb150015			    strerror(errno));
6139Sjb150015		else
6139Sjb150015			smbd_report("unable to set KRB5CCNAME");
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
5331Samw	}
5331Samw
*12508Samw@Sun.COM	smbd.s_loghd = smb_log_create(SMBD_LOGSIZE, SMBD_LOGNAME);
10966SJordan.Brown@Sun.COM	smb_codepage_init();
5331Samw
*12508Samw@Sun.COM	if (smbd_nicmon_start(SMBD_DEFAULT_INSTANCE_FMRI) != 0)
*12508Samw@Sun.COM		smbd_report("NIC monitor failed to start");
6432Sas200622
8334SJose.Borrego@Sun.COM	(void) dyndns_start();
10717Samw@Sun.COM	smb_ipc_init();
5331Samw
5772Sas200622	if (smb_netbios_start() != 0)
5772Sas200622		smbd_report("NetBIOS services failed to start");
5772Sas200622	else
5772Sas200622		smbd_report("NetBIOS services started");
5772Sas200622
6432Sas200622	smbd.s_secmode = smb_config_get_secmode();
10717Samw@Sun.COM	if ((rc = smb_domain_init(smbd.s_secmode)) != 0) {
5772Sas200622		if (rc == SMB_DOMAIN_NOMACHINE_SID) {
5772Sas200622			smbd_report(
5772Sas200622			    "no machine SID: check idmap configuration");
11963SAfshin.Ardakani@Sun.COM			(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM			return (-1);
5772Sas200622		}
5331Samw	}
5331Samw
7052Samw	smb_ads_init();
11963SAfshin.Ardakani@Sun.COM	if (mlsvc_init() != 0) {
5331Samw		smbd_report("msrpc initialization failed");
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
5331Samw	}
5331Samw
7348SJose.Borrego@Sun.COM	if (smbd.s_secmode == SMB_SECMODE_DOMAIN)
8334SJose.Borrego@Sun.COM		if (smbd_locate_dc_start() != 0)
7348SJose.Borrego@Sun.COM			smbd_report("dc discovery failed %s", strerror(errno));
6139Sjb150015
11963SAfshin.Ardakani@Sun.COM	smbd.s_door_srv = smbd_door_start();
11963SAfshin.Ardakani@Sun.COM	smbd.s_door_opipe = smbd_opipe_start();
11963SAfshin.Ardakani@Sun.COM	if (smbd.s_door_srv < 0 || smbd.s_door_opipe < 0) {
11963SAfshin.Ardakani@Sun.COM		smbd_report("door initialization failed %s", strerror(errno));
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
11963SAfshin.Ardakani@Sun.COM	}
5331Samw
11963SAfshin.Ardakani@Sun.COM	if (smbd_refresh_init() != 0) {
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
11963SAfshin.Ardakani@Sun.COM	}
5331Samw
8334SJose.Borrego@Sun.COM	dyndns_update_zones();
5331Samw	(void) smbd_localtime_init();
5772Sas200622	(void) smb_lgrp_start();
7052Samw	smb_pwd_init(B_TRUE);
6030Sjb150015
11963SAfshin.Ardakani@Sun.COM	if (smb_shr_start() != 0) {
7961SNatalie.Li@Sun.COM		smbd_report("share initialization failed: %s", strerror(errno));
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
7961SNatalie.Li@Sun.COM	}
7961SNatalie.Li@Sun.COM
11963SAfshin.Ardakani@Sun.COM	smbd.s_door_lmshr = smbd_share_start();
11963SAfshin.Ardakani@Sun.COM	if (smbd.s_door_lmshr < 0)
11963SAfshin.Ardakani@Sun.COM		smbd_report("share initialization failed");
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	if (smbd_kernel_bind() != 0) {
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
6432Sas200622	}
5331Samw
11963SAfshin.Ardakani@Sun.COM	if (smb_shr_load() != 0) {
8334SJose.Borrego@Sun.COM		smbd_report("failed to start loading shares: %s",
8334SJose.Borrego@Sun.COM		    strerror(errno));
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		return (-1);
8334SJose.Borrego@Sun.COM	}
8334SJose.Borrego@Sun.COM
11963SAfshin.Ardakani@Sun.COM	smbd.s_initialized = B_TRUE;
11963SAfshin.Ardakani@Sun.COM	smbd_report("service initialized");
11963SAfshin.Ardakani@Sun.COM	(void) cond_signal(&smbd_service_cv);
11963SAfshin.Ardakani@Sun.COM	(void) mutex_unlock(&smbd_service_mutex);
7348SJose.Borrego@Sun.COM	return (0);
5521Sas200622}
5521Sas200622
5331Samw/*
11963SAfshin.Ardakani@Sun.COM * Shutdown smbd and smbsrv kernel services.
11963SAfshin.Ardakani@Sun.COM *
11963SAfshin.Ardakani@Sun.COM * Shutdown will not begin until initialization has completed.
11963SAfshin.Ardakani@Sun.COM * Only one thread is allowed to perform the shutdown.  Other
11963SAfshin.Ardakani@Sun.COM * threads will be blocked on fini_in_progress until the process
11963SAfshin.Ardakani@Sun.COM * has exited.
5331Samw */
5331Samwstatic void
5331Samwsmbd_service_fini(void)
5331Samw{
11963SAfshin.Ardakani@Sun.COM	static uint_t	fini_in_progress;
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	(void) mutex_lock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	while (!smbd.s_initialized)
11963SAfshin.Ardakani@Sun.COM		(void) cond_wait(&smbd_service_cv, &smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	if (atomic_swap_uint(&fini_in_progress, 1) != 0) {
11963SAfshin.Ardakani@Sun.COM		while (fini_in_progress)
11963SAfshin.Ardakani@Sun.COM			(void) cond_wait(&smbd_service_cv, &smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM		/*NOTREACHED*/
11963SAfshin.Ardakani@Sun.COM	}
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	smbd.s_shutting_down = B_TRUE;
11963SAfshin.Ardakani@Sun.COM	smbd_report("service shutting down");
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	smb_kmod_stop();
11963SAfshin.Ardakani@Sun.COM	smb_logon_abort();
11963SAfshin.Ardakani@Sun.COM	smb_lgrp_stop();
11963SAfshin.Ardakani@Sun.COM	smbd_opipe_stop();
11963SAfshin.Ardakani@Sun.COM	smbd_door_stop();
5331Samw	smbd_refresh_fini();
5331Samw	smbd_kernel_unbind();
11963SAfshin.Ardakani@Sun.COM	smbd_share_stop();
7052Samw	smb_shr_stop();
8334SJose.Borrego@Sun.COM	dyndns_stop();
*12508Samw@Sun.COM	smbd_nicmon_stop();
6139Sjb150015	smb_ccache_remove(SMB_CCACHE_PATH);
6030Sjb150015	smb_pwd_fini();
10717Samw@Sun.COM	smb_domain_fini();
9832Samw@Sun.COM	mlsvc_fini();
9832Samw@Sun.COM	smb_ads_fini();
10717Samw@Sun.COM	smb_netbios_stop();
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	smbd.s_initialized = B_FALSE;
11963SAfshin.Ardakani@Sun.COM	smbd_report("service terminated");
11963SAfshin.Ardakani@Sun.COM	(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM	exit((smbd.s_fatal_error) ? SMF_EXIT_ERR_FATAL : SMF_EXIT_OK);
5331Samw}
5331Samw
5331Samw/*
5331Samw * smbd_refresh_init()
5331Samw *
5331Samw * SMB service refresh thread initialization.  This thread waits for a
5331Samw * refresh event and updates the daemon's view of the configuration
5331Samw * before going back to sleep.
5331Samw */
5331Samwstatic int
5331Samwsmbd_refresh_init()
5331Samw{
6432Sas200622	pthread_attr_t		tattr;
6432Sas200622	pthread_condattr_t	cattr;
6432Sas200622	int			rc;
5331Samw
5331Samw	(void) pthread_condattr_init(&cattr);
5331Samw	(void) pthread_cond_init(&refresh_cond, &cattr);
5331Samw	(void) pthread_condattr_destroy(&cattr);
5331Samw
5331Samw	(void) pthread_mutex_init(&refresh_mutex, NULL);
5331Samw
5331Samw	(void) pthread_attr_init(&tattr);
5331Samw	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
5331Samw	rc = pthread_create(&refresh_thr, &tattr, smbd_refresh_monitor, 0);
5331Samw	(void) pthread_attr_destroy(&tattr);
6432Sas200622
5331Samw	return (rc);
5331Samw}
5331Samw
5331Samw/*
5331Samw * smbd_refresh_fini()
5331Samw *
5331Samw * Stop the refresh thread.
5331Samw */
5331Samwstatic void
5331Samwsmbd_refresh_fini()
5331Samw{
11963SAfshin.Ardakani@Sun.COM	if (pthread_self() != refresh_thr) {
11963SAfshin.Ardakani@Sun.COM		(void) pthread_cancel(refresh_thr);
11963SAfshin.Ardakani@Sun.COM		(void) pthread_cond_destroy(&refresh_cond);
11963SAfshin.Ardakani@Sun.COM		(void) pthread_mutex_destroy(&refresh_mutex);
11963SAfshin.Ardakani@Sun.COM	}
5331Samw}
5331Samw
5331Samw/*
5331Samw * smbd_refresh_monitor()
5331Samw *
5331Samw * Wait for a refresh event. When this thread wakes up, update the
5331Samw * smbd configuration from the SMF config information then go back to
5331Samw * wait for the next refresh.
5331Samw */
5331Samw/*ARGSUSED*/
5331Samwstatic void *
5331Samwsmbd_refresh_monitor(void *arg)
5331Samw{
9832Samw@Sun.COM	smb_kmod_cfg_t	cfg;
9832Samw@Sun.COM	int		error;
6771Sjb150015
8334SJose.Borrego@Sun.COM	while (!smbd.s_shutting_down) {
8334SJose.Borrego@Sun.COM		(void) pthread_mutex_lock(&refresh_mutex);
8334SJose.Borrego@Sun.COM		while ((atomic_swap_uint(&smbd.s_refreshes, 0) == 0) &&
8334SJose.Borrego@Sun.COM		    (!smbd.s_shutting_down))
8334SJose.Borrego@Sun.COM			(void) pthread_cond_wait(&refresh_cond, &refresh_mutex);
8334SJose.Borrego@Sun.COM		(void) pthread_mutex_unlock(&refresh_mutex);
8334SJose.Borrego@Sun.COM
8334SJose.Borrego@Sun.COM		if (smbd.s_shutting_down) {
11963SAfshin.Ardakani@Sun.COM			smbd_service_fini();
11963SAfshin.Ardakani@Sun.COM			/*NOTREACHED*/
8334SJose.Borrego@Sun.COM		}
8334SJose.Borrego@Sun.COM
11963SAfshin.Ardakani@Sun.COM		(void) mutex_lock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM
5331Samw		/*
5331Samw		 * We've been woken up by a refresh event so go do
5331Samw		 * what is necessary.
5331Samw		 */
7052Samw		smb_ads_refresh();
6139Sjb150015		smb_ccache_remove(SMB_CCACHE_PATH);
6432Sas200622
8334SJose.Borrego@Sun.COM		/*
8334SJose.Borrego@Sun.COM		 * Start the dyndns thread, if required.
8334SJose.Borrego@Sun.COM		 * Clear the DNS zones for the existing interfaces
8334SJose.Borrego@Sun.COM		 * before updating the NIC interface list.
8334SJose.Borrego@Sun.COM		 */
8334SJose.Borrego@Sun.COM		(void) dyndns_start();
8334SJose.Borrego@Sun.COM		dyndns_clear_zones();
6432Sas200622
*12508Samw@Sun.COM		if (smbd_nicmon_refresh() != 0)
*12508Samw@Sun.COM			smbd_report("NIC monitor refresh failed");
6432Sas200622		smb_netbios_name_reconfig();
6432Sas200622		smb_browser_reconfig();
8670SJose.Borrego@Sun.COM		smbd_refresh_dc();
8334SJose.Borrego@Sun.COM		dyndns_update_zones();
6432Sas200622
11963SAfshin.Ardakani@Sun.COM		(void) mutex_unlock(&smbd_service_mutex);
11963SAfshin.Ardakani@Sun.COM
8334SJose.Borrego@Sun.COM		if (smbd_set_netlogon_cred()) {
6432Sas200622			/*
8334SJose.Borrego@Sun.COM			 * Restart required because the domain changed
8334SJose.Borrego@Sun.COM			 * or the credential chain setup failed.
6432Sas200622			 */
8334SJose.Borrego@Sun.COM			if (smb_smf_restart_service() != 0) {
8334SJose.Borrego@Sun.COM				syslog(LOG_ERR,
11963SAfshin.Ardakani@Sun.COM				    "unable to restart smb/server. "
8334SJose.Borrego@Sun.COM				    "Run 'svcs -xv smb/server' for more "
8334SJose.Borrego@Sun.COM				    "information.");
11963SAfshin.Ardakani@Sun.COM				smbd_service_fini();
11963SAfshin.Ardakani@Sun.COM				/*NOTREACHED*/
8334SJose.Borrego@Sun.COM			}
8334SJose.Borrego@Sun.COM
8334SJose.Borrego@Sun.COM			break;
8334SJose.Borrego@Sun.COM		}
8334SJose.Borrego@Sun.COM
9832Samw@Sun.COM		if (!smbd.s_kbound) {
11963SAfshin.Ardakani@Sun.COM			if ((error = smbd_kernel_bind()) == 0)
8334SJose.Borrego@Sun.COM				(void) smb_shr_load();
9832Samw@Sun.COM
6432Sas200622			continue;
6432Sas200622		}
6432Sas200622
8334SJose.Borrego@Sun.COM		(void) smb_shr_load();
8334SJose.Borrego@Sun.COM
9832Samw@Sun.COM		smb_load_kconfig(&cfg);
9832Samw@Sun.COM		error = smb_kmod_setcfg(&cfg);
9832Samw@Sun.COM		if (error < 0)
9832Samw@Sun.COM			smbd_report("configuration update failed: %s",
9832Samw@Sun.COM			    strerror(error));
5331Samw	}
8334SJose.Borrego@Sun.COM
5331Samw	return (NULL);
5331Samw}
5331Samw
8670SJose.Borrego@Sun.COM/*
8670SJose.Borrego@Sun.COM * Update DC information on a refresh.
8670SJose.Borrego@Sun.COM */
8670SJose.Borrego@Sun.COMstatic void
8670SJose.Borrego@Sun.COMsmbd_refresh_dc(void)
8670SJose.Borrego@Sun.COM{
8670SJose.Borrego@Sun.COM	char fqdomain[MAXHOSTNAMELEN];
8670SJose.Borrego@Sun.COM	if (smb_config_get_secmode() != SMB_SECMODE_DOMAIN)
8670SJose.Borrego@Sun.COM		return;
8670SJose.Borrego@Sun.COM
8670SJose.Borrego@Sun.COM	if (smb_getfqdomainname(fqdomain, MAXHOSTNAMELEN))
8670SJose.Borrego@Sun.COM		return;
8670SJose.Borrego@Sun.COM
*12508Samw@Sun.COM	if (!smb_locate_dc(fqdomain, "", NULL))
*12508Samw@Sun.COM		smbd_report("DC refresh failed");
8670SJose.Borrego@Sun.COM}
8670SJose.Borrego@Sun.COM
8334SJose.Borrego@Sun.COMvoid
8334SJose.Borrego@Sun.COMsmbd_set_secmode(int secmode)
8334SJose.Borrego@Sun.COM{
8334SJose.Borrego@Sun.COM	switch (secmode) {
8334SJose.Borrego@Sun.COM	case SMB_SECMODE_WORKGRP:
8334SJose.Borrego@Sun.COM	case SMB_SECMODE_DOMAIN:
8334SJose.Borrego@Sun.COM		(void) smb_config_set_secmode(secmode);
8334SJose.Borrego@Sun.COM		smbd.s_secmode = secmode;
8334SJose.Borrego@Sun.COM		break;
8334SJose.Borrego@Sun.COM
8334SJose.Borrego@Sun.COM	default:
8334SJose.Borrego@Sun.COM		syslog(LOG_ERR, "invalid security mode: %d", secmode);
8334SJose.Borrego@Sun.COM		syslog(LOG_ERR, "entering maintenance mode");
8334SJose.Borrego@Sun.COM		(void) smb_smf_maintenance_mode();
8334SJose.Borrego@Sun.COM	}
8334SJose.Borrego@Sun.COM}
5331Samw
5331Samw/*
11963SAfshin.Ardakani@Sun.COM * The service is online if initialization is complete and shutdown
11963SAfshin.Ardakani@Sun.COM * has not begun.
11963SAfshin.Ardakani@Sun.COM */
11963SAfshin.Ardakani@Sun.COMboolean_t
11963SAfshin.Ardakani@Sun.COMsmbd_online(void)
11963SAfshin.Ardakani@Sun.COM{
11963SAfshin.Ardakani@Sun.COM	return (smbd.s_initialized && !smbd.s_shutting_down);
11963SAfshin.Ardakani@Sun.COM}
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM/*
5331Samw * If the door has already been opened by another process (non-zero pid
5331Samw * in target), we assume that another smbd is already running.  If there
5331Samw * is a race here, it will be caught later when smbsrv is opened because
5331Samw * only one process is allowed to open the device at a time.
5331Samw */
5331Samwstatic int
5331Samwsmbd_already_running(void)
5331Samw{
5331Samw	door_info_t info;
5331Samw	int door;
5331Samw
11963SAfshin.Ardakani@Sun.COM	if ((door = open(SMBD_DOOR_NAME, O_RDONLY)) < 0)
5331Samw		return (0);
5331Samw
5331Samw	if (door_info(door, &info) < 0)
5331Samw		return (0);
5331Samw
5331Samw	if (info.di_target > 0) {
5331Samw		smbd_report("already running: pid %ld\n", info.di_target);
5331Samw		(void) close(door);
5331Samw		return (1);
5331Samw	}
5331Samw
5331Samw	(void) close(door);
5331Samw	return (0);
5331Samw}
5331Samw
6139Sjb150015/*
6139Sjb150015 * smbd_kernel_bind
6432Sas200622 *
6432Sas200622 * This function open the smbsrv device and start the kernel service.
6139Sjb150015 */
5331Samwstatic int
6432Sas200622smbd_kernel_bind(void)
5331Samw{
9832Samw@Sun.COM	int rc;
6139Sjb150015
8334SJose.Borrego@Sun.COM	smbd_kernel_unbind();
5331Samw
11963SAfshin.Ardakani@Sun.COM	if ((rc = smb_kmod_bind()) == 0) {
9832Samw@Sun.COM		rc = smbd_kernel_start();
9832Samw@Sun.COM		if (rc != 0)
9832Samw@Sun.COM			smb_kmod_unbind();
9832Samw@Sun.COM		else
9832Samw@Sun.COM			smbd.s_kbound = B_TRUE;
6139Sjb150015	}
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	if (rc != 0)
11963SAfshin.Ardakani@Sun.COM		smbd_report("kernel bind error: %s", strerror(errno));
9832Samw@Sun.COM	return (rc);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COMstatic int
9832Samw@Sun.COMsmbd_kernel_start(void)
9832Samw@Sun.COM{
9832Samw@Sun.COM	smb_kmod_cfg_t	cfg;
9832Samw@Sun.COM	int		rc;
9832Samw@Sun.COM
9832Samw@Sun.COM	smb_load_kconfig(&cfg);
9832Samw@Sun.COM	rc = smb_kmod_setcfg(&cfg);
9832Samw@Sun.COM	if (rc != 0)
9832Samw@Sun.COM		return (rc);
9832Samw@Sun.COM
9832Samw@Sun.COM	rc = smb_kmod_setgmtoff(smbd_gmtoff());
9832Samw@Sun.COM	if (rc != 0)
9832Samw@Sun.COM		return (rc);
9832Samw@Sun.COM
9832Samw@Sun.COM	rc = smb_kmod_start(smbd.s_door_opipe, smbd.s_door_lmshr,
9832Samw@Sun.COM	    smbd.s_door_srv);
9832Samw@Sun.COM	if (rc != 0)
9832Samw@Sun.COM		return (rc);
6139Sjb150015
9046SJose.Borrego@Sun.COM	rc = smbd_start_listeners();
9832Samw@Sun.COM	if (rc != 0)
9832Samw@Sun.COM		return (rc);
9832Samw@Sun.COM
9832Samw@Sun.COM	return (0);
5331Samw}
5331Samw
6139Sjb150015/*
6139Sjb150015 * smbd_kernel_unbind
6139Sjb150015 */
6139Sjb150015static void
6139Sjb150015smbd_kernel_unbind(void)
6139Sjb150015{
9832Samw@Sun.COM	smbd_stop_listeners();
9832Samw@Sun.COM	smb_kmod_unbind();
9832Samw@Sun.COM	smbd.s_kbound = B_FALSE;
8167Samw@Sun.COM}
8167Samw@Sun.COM
5331Samw/*
5331Samw * Initialization of the localtime thread.
5331Samw * Returns 0 on success, an error number if thread creation fails.
5331Samw */
5331Samw
5331Samwint
5331Samwsmbd_localtime_init(void)
5331Samw{
5331Samw	pthread_attr_t tattr;
5331Samw	int rc;
5331Samw
5331Samw	(void) pthread_attr_init(&tattr);
5331Samw	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
5331Samw	rc = pthread_create(&localtime_thr, &tattr, smbd_localtime_monitor, 0);
5331Samw	(void) pthread_attr_destroy(&tattr);
5331Samw	return (rc);
5331Samw}
5331Samw
5331Samw/*
5331Samw * Local time thread to kernel land.
5331Samw * Send local gmtoff to kernel module one time at startup
5331Samw * and each time it changes (up to twice a year).
5331Samw * Local gmtoff is checked once every 15 minutes and
5331Samw * since some timezones are aligned on half and qtr hour boundaries,
5331Samw * once an hour would likely suffice.
5331Samw */
5331Samw
5331Samw/*ARGSUSED*/
5331Samwstatic void *
5331Samwsmbd_localtime_monitor(void *arg)
5331Samw{
5331Samw	struct tm local_tm;
7348SJose.Borrego@Sun.COM	time_t secs;
7348SJose.Borrego@Sun.COM	int32_t gmtoff, last_gmtoff = -1;
5331Samw	int timeout;
9832Samw@Sun.COM	int error;
8167Samw@Sun.COM
5331Samw	for (;;) {
7348SJose.Borrego@Sun.COM		gmtoff = smbd_gmtoff();
5331Samw
9832Samw@Sun.COM		if ((last_gmtoff != gmtoff) && smbd.s_kbound) {
9832Samw@Sun.COM			error = smb_kmod_setgmtoff(gmtoff);
9832Samw@Sun.COM			if (error != 0)
9832Samw@Sun.COM				smbd_report("localtime set failed: %s",
9832Samw@Sun.COM				    strerror(error));
5331Samw		}
5331Samw
5331Samw		/*
5331Samw		 * Align the next iteration on a fifteen minute boundary.
5331Samw		 */
5331Samw		secs = time(0);
5331Samw		(void) localtime_r(&secs, &local_tm);
5331Samw		timeout = ((15 - (local_tm.tm_min % 15)) * SECSPERMIN);
5331Samw		(void) sleep(timeout);
5331Samw
5331Samw		last_gmtoff = gmtoff;
5331Samw	}
5331Samw
5331Samw	/*NOTREACHED*/
5331Samw	return (NULL);
5331Samw}
5331Samw
7348SJose.Borrego@Sun.COM/*
7348SJose.Borrego@Sun.COM * smbd_gmtoff
7348SJose.Borrego@Sun.COM *
7348SJose.Borrego@Sun.COM * Determine offset from GMT. If daylight saving time use altzone,
7348SJose.Borrego@Sun.COM * otherwise use timezone.
7348SJose.Borrego@Sun.COM */
7348SJose.Borrego@Sun.COMstatic int32_t
7348SJose.Borrego@Sun.COMsmbd_gmtoff(void)
7348SJose.Borrego@Sun.COM{
7348SJose.Borrego@Sun.COM	time_t clock_val;
7348SJose.Borrego@Sun.COM	struct tm *atm;
7348SJose.Borrego@Sun.COM	int32_t gmtoff;
7348SJose.Borrego@Sun.COM
7348SJose.Borrego@Sun.COM	(void) time(&clock_val);
7348SJose.Borrego@Sun.COM	atm = localtime(&clock_val);
7348SJose.Borrego@Sun.COM
7348SJose.Borrego@Sun.COM	gmtoff = (atm->tm_isdst) ? altzone : timezone;
7348SJose.Borrego@Sun.COM
7348SJose.Borrego@Sun.COM	return (gmtoff);
7348SJose.Borrego@Sun.COM}
7348SJose.Borrego@Sun.COM
5331Samwstatic void
5331Samwsmbd_sig_handler(int sigval)
5331Samw{
5331Samw	if (smbd.s_sigval == 0)
8334SJose.Borrego@Sun.COM		(void) atomic_swap_uint(&smbd.s_sigval, sigval);
8334SJose.Borrego@Sun.COM
8334SJose.Borrego@Sun.COM	if (sigval == SIGHUP) {
8334SJose.Borrego@Sun.COM		atomic_inc_uint(&smbd.s_refreshes);
8334SJose.Borrego@Sun.COM		(void) pthread_cond_signal(&refresh_cond);
8334SJose.Borrego@Sun.COM	}
8334SJose.Borrego@Sun.COM
8334SJose.Borrego@Sun.COM	if (sigval == SIGINT || sigval == SIGTERM) {
8334SJose.Borrego@Sun.COM		smbd.s_shutting_down = B_TRUE;
8334SJose.Borrego@Sun.COM		(void) pthread_cond_signal(&refresh_cond);
8334SJose.Borrego@Sun.COM	}
5331Samw}
5331Samw
5331Samw/*
5331Samw * Set up configuration options and parse the command line.
5331Samw * This function will determine if we will run as a daemon
5331Samw * or in the foreground.
5331Samw *
5331Samw * Failure to find a uid or gid results in using the default (0).
5331Samw */
5331Samwstatic int
5331Samwsmbd_setup_options(int argc, char *argv[])
5331Samw{
5331Samw	struct passwd *pwd;
5331Samw	struct group *grp;
5331Samw	int c;
5331Samw
5331Samw	if ((pwd = getpwnam("root")) != NULL)
5331Samw		smbd.s_uid = pwd->pw_uid;
5331Samw
5331Samw	if ((grp = getgrnam("sys")) != NULL)
5331Samw		smbd.s_gid = grp->gr_gid;
5331Samw
5772Sas200622	smbd.s_fg = smb_config_get_fg_flag();
5331Samw
5331Samw	while ((c = getopt(argc, argv, ":f")) != -1) {
5331Samw		switch (c) {
5331Samw		case 'f':
5331Samw			smbd.s_fg = 1;
5331Samw			break;
5331Samw
5331Samw		case ':':
5331Samw		case '?':
5331Samw		default:
5331Samw			smbd_usage(stderr);
5331Samw			return (-1);
5331Samw		}
5331Samw	}
5331Samw
5331Samw	return (0);
5331Samw}
5331Samw
5331Samwstatic void
5331Samwsmbd_usage(FILE *fp)
5331Samw{
5331Samw	static char *help[] = {
5331Samw		"-f  run program in foreground"
5331Samw	};
5331Samw
5331Samw	int i;
5331Samw
5331Samw	(void) fprintf(fp, "Usage: %s [-f]\n", smbd.s_pname);
5331Samw
5331Samw	for (i = 0; i < sizeof (help)/sizeof (help[0]); ++i)
5331Samw		(void) fprintf(fp, "    %s\n", help[i]);
5331Samw}
5331Samw
5331Samwstatic void
5331Samwsmbd_report(const char *fmt, ...)
5331Samw{
5331Samw	char buf[128];
5331Samw	va_list ap;
5331Samw
5331Samw	if (fmt == NULL)
5331Samw		return;
5331Samw
5331Samw	va_start(ap, fmt);
5331Samw	(void) vsnprintf(buf, 128, fmt, ap);
5331Samw	va_end(ap);
5331Samw
5331Samw	(void) fprintf(stderr, "smbd: %s\n", buf);
5331Samw}
5331Samw
9046SJose.Borrego@Sun.COMstatic int
9046SJose.Borrego@Sun.COMsmbd_start_listeners(void)
9046SJose.Borrego@Sun.COM{
9046SJose.Borrego@Sun.COM	int		rc1;
9046SJose.Borrego@Sun.COM	int		rc2;
9046SJose.Borrego@Sun.COM	pthread_attr_t	tattr;
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	(void) pthread_attr_init(&tattr);
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	if (!smbd.s_nbt_listener_running) {
9046SJose.Borrego@Sun.COM		rc1 = pthread_create(&smbd.s_nbt_listener_id, &tattr,
9046SJose.Borrego@Sun.COM		    smbd_nbt_listener, NULL);
9046SJose.Borrego@Sun.COM		if (rc1 != 0)
9046SJose.Borrego@Sun.COM			smbd_report("unable to start NBT service");
9046SJose.Borrego@Sun.COM		else
9046SJose.Borrego@Sun.COM			smbd.s_nbt_listener_running = B_TRUE;
9046SJose.Borrego@Sun.COM	}
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	if (!smbd.s_tcp_listener_running) {
9046SJose.Borrego@Sun.COM		rc2 = pthread_create(&smbd.s_tcp_listener_id, &tattr,
9046SJose.Borrego@Sun.COM		    smbd_tcp_listener, NULL);
9046SJose.Borrego@Sun.COM		if (rc2 != 0)
9046SJose.Borrego@Sun.COM			smbd_report("unable to start TCP service");
9046SJose.Borrego@Sun.COM		else
9046SJose.Borrego@Sun.COM			smbd.s_tcp_listener_running = B_TRUE;
9046SJose.Borrego@Sun.COM	}
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	(void) pthread_attr_destroy(&tattr);
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	if (rc1 != 0)
9046SJose.Borrego@Sun.COM		return (rc1);
9046SJose.Borrego@Sun.COM	return (rc2);
9046SJose.Borrego@Sun.COM}
9046SJose.Borrego@Sun.COM
11963SAfshin.Ardakani@Sun.COM/*
11963SAfshin.Ardakani@Sun.COM * Stop the listener threads.  In an attempt to ensure that the listener
11963SAfshin.Ardakani@Sun.COM * threads get the signal, we use the timed wait loop to harass the
11963SAfshin.Ardakani@Sun.COM * threads into terminating.  Then, if they are still running, we make
11963SAfshin.Ardakani@Sun.COM * one final attempt to deliver the signal before calling thread join
11963SAfshin.Ardakani@Sun.COM * to wait for them.  Note: if these threads don't terminate, smbd will
11963SAfshin.Ardakani@Sun.COM * hang here and SMF will probably end up killing the contract.
11963SAfshin.Ardakani@Sun.COM */
9046SJose.Borrego@Sun.COMstatic void
9046SJose.Borrego@Sun.COMsmbd_stop_listeners(void)
9046SJose.Borrego@Sun.COM{
11963SAfshin.Ardakani@Sun.COM	void		*status;
11963SAfshin.Ardakani@Sun.COM	timestruc_t	delay;
11963SAfshin.Ardakani@Sun.COM	int		rc = 0;
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	(void) mutex_lock(&listener_mutex);
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	while ((smbd.s_nbt_listener_running || smbd.s_tcp_listener_running) &&
11963SAfshin.Ardakani@Sun.COM	    (rc != ETIME)) {
11963SAfshin.Ardakani@Sun.COM		if (smbd.s_nbt_listener_running)
11963SAfshin.Ardakani@Sun.COM			(void) pthread_kill(smbd.s_nbt_listener_id, SIGTERM);
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM		if (smbd.s_tcp_listener_running)
11963SAfshin.Ardakani@Sun.COM			(void) pthread_kill(smbd.s_tcp_listener_id, SIGTERM);
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM		delay.tv_sec = 3;
11963SAfshin.Ardakani@Sun.COM		delay.tv_nsec = 0;
11963SAfshin.Ardakani@Sun.COM		rc = cond_reltimedwait(&listener_cv, &listener_mutex, &delay);
11963SAfshin.Ardakani@Sun.COM	}
11963SAfshin.Ardakani@Sun.COM
11963SAfshin.Ardakani@Sun.COM	(void) mutex_unlock(&listener_mutex);
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	if (smbd.s_nbt_listener_running) {
11963SAfshin.Ardakani@Sun.COM		syslog(LOG_WARNING, "NBT listener still running");
9046SJose.Borrego@Sun.COM		(void) pthread_kill(smbd.s_nbt_listener_id, SIGTERM);
9046SJose.Borrego@Sun.COM		(void) pthread_join(smbd.s_nbt_listener_id, &status);
9046SJose.Borrego@Sun.COM		smbd.s_nbt_listener_running = B_FALSE;
9046SJose.Borrego@Sun.COM	}
9046SJose.Borrego@Sun.COM
9046SJose.Borrego@Sun.COM	if (smbd.s_tcp_listener_running) {
11963SAfshin.Ardakani@Sun.COM		syslog(LOG_WARNING, "TCP listener still running");
9046SJose.Borrego@Sun.COM		(void) pthread_kill(smbd.s_tcp_listener_id, SIGTERM);
9046SJose.Borrego@Sun.COM		(void) pthread_join(smbd.s_tcp_listener_id, &status);
9046SJose.Borrego@Sun.COM		smbd.s_tcp_listener_running = B_FALSE;
9046SJose.Borrego@Sun.COM	}
9046SJose.Borrego@Sun.COM}
9046SJose.Borrego@Sun.COM
5331Samw/*
9832Samw@Sun.COM * Perform fatal error exit.
9832Samw@Sun.COM */
9832Samw@Sun.COMstatic void
9832Samw@Sun.COMsmbd_fatal_error(const char *msg)
9832Samw@Sun.COM{
9832Samw@Sun.COM	if (msg == NULL)
9832Samw@Sun.COM		msg = "Fatal error";
9832Samw@Sun.COM
9832Samw@Sun.COM	smbd_report("%s", msg);
9832Samw@Sun.COM	smbd.s_fatal_error = B_TRUE;
9832Samw@Sun.COM	(void) kill(smbd.s_pid, SIGTERM);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COM/*ARGSUSED*/
9832Samw@Sun.COMstatic void *
9832Samw@Sun.COMsmbd_nbt_receiver(void *arg)
9832Samw@Sun.COM{
9832Samw@Sun.COM	(void) smb_kmod_nbtreceive();
9832Samw@Sun.COM	return (NULL);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COM/*ARGSUSED*/
9832Samw@Sun.COMstatic void *
9832Samw@Sun.COMsmbd_nbt_listener(void *arg)
9832Samw@Sun.COM{
9832Samw@Sun.COM	pthread_attr_t	tattr;
9832Samw@Sun.COM	sigset_t	set;
9832Samw@Sun.COM	sigset_t	oset;
9832Samw@Sun.COM	pthread_t	tid;
9832Samw@Sun.COM	int		error = 0;
9832Samw@Sun.COM
9832Samw@Sun.COM	(void) sigfillset(&set);
9832Samw@Sun.COM	(void) sigdelset(&set, SIGTERM);
9832Samw@Sun.COM	(void) sigdelset(&set, SIGINT);
9832Samw@Sun.COM	(void) pthread_sigmask(SIG_SETMASK, &set, &oset);
9832Samw@Sun.COM	(void) pthread_attr_init(&tattr);
9832Samw@Sun.COM	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
9832Samw@Sun.COM
9832Samw@Sun.COM	while (smb_kmod_nbtlisten(error) == 0)
9832Samw@Sun.COM		error = pthread_create(&tid, &tattr, smbd_nbt_receiver, NULL);
9832Samw@Sun.COM
9832Samw@Sun.COM	(void) pthread_attr_destroy(&tattr);
9832Samw@Sun.COM
9832Samw@Sun.COM	if (!smbd.s_shutting_down)
9832Samw@Sun.COM		smbd_fatal_error("NBT listener thread terminated unexpectedly");
9832Samw@Sun.COM
11963SAfshin.Ardakani@Sun.COM	(void) mutex_lock(&listener_mutex);
11963SAfshin.Ardakani@Sun.COM	smbd.s_nbt_listener_running = B_FALSE;
11963SAfshin.Ardakani@Sun.COM	(void) cond_broadcast(&listener_cv);
11963SAfshin.Ardakani@Sun.COM	(void) mutex_unlock(&listener_mutex);
9832Samw@Sun.COM	return (NULL);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COM/*ARGSUSED*/
9832Samw@Sun.COMstatic void *
9832Samw@Sun.COMsmbd_tcp_receiver(void *arg)
9832Samw@Sun.COM{
9832Samw@Sun.COM	(void) smb_kmod_tcpreceive();
9832Samw@Sun.COM	return (NULL);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COM/*ARGSUSED*/
9832Samw@Sun.COMstatic void *
9832Samw@Sun.COMsmbd_tcp_listener(void *arg)
9832Samw@Sun.COM{
9832Samw@Sun.COM	pthread_attr_t	tattr;
9832Samw@Sun.COM	sigset_t	set;
9832Samw@Sun.COM	sigset_t	oset;
9832Samw@Sun.COM	pthread_t	tid;
9832Samw@Sun.COM	int		error = 0;
9832Samw@Sun.COM
9832Samw@Sun.COM	(void) sigfillset(&set);
9832Samw@Sun.COM	(void) sigdelset(&set, SIGTERM);
9832Samw@Sun.COM	(void) sigdelset(&set, SIGINT);
9832Samw@Sun.COM	(void) pthread_sigmask(SIG_SETMASK, &set, &oset);
9832Samw@Sun.COM	(void) pthread_attr_init(&tattr);
9832Samw@Sun.COM	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
9832Samw@Sun.COM
9832Samw@Sun.COM	while (smb_kmod_tcplisten(error) == 0)
9832Samw@Sun.COM		error = pthread_create(&tid, &tattr, smbd_tcp_receiver, NULL);
9832Samw@Sun.COM
9832Samw@Sun.COM	(void) pthread_attr_destroy(&tattr);
9832Samw@Sun.COM
9832Samw@Sun.COM	if (!smbd.s_shutting_down)
9832Samw@Sun.COM		smbd_fatal_error("TCP listener thread terminated unexpectedly");
9832Samw@Sun.COM
11963SAfshin.Ardakani@Sun.COM	(void) mutex_lock(&listener_mutex);
11963SAfshin.Ardakani@Sun.COM	smbd.s_tcp_listener_running = B_FALSE;
11963SAfshin.Ardakani@Sun.COM	(void) cond_broadcast(&listener_cv);
11963SAfshin.Ardakani@Sun.COM	(void) mutex_unlock(&listener_mutex);
9832Samw@Sun.COM	return (NULL);
9832Samw@Sun.COM}
9832Samw@Sun.COM
9832Samw@Sun.COM/*
5331Samw * Enable libumem debugging by default on DEBUG builds.
5331Samw */
5331Samw#ifdef DEBUG
5331Samwconst char *
5331Samw_umem_debug_init(void)
5331Samw{
5331Samw	return ("default,verbose"); /* $UMEM_DEBUG setting */
5331Samw}
5331Samw
5331Samwconst char *
5331Samw_umem_logging_init(void)
5331Samw{
5331Samw	return ("fail,contents"); /* $UMEM_LOGGING setting */
5331Samw}
5331Samw#endif