xref: /onnv-gate/usr/src/cmd/smbsrv/smbd/smbd_main.c (revision 6600:4e63bcd27ae9) 
15331Samw /*
25331Samw  * CDDL HEADER START
35331Samw  *
45331Samw  * The contents of this file are subject to the terms of the
55331Samw  * Common Development and Distribution License (the "License").
65331Samw  * You may not use this file except in compliance with the License.
75331Samw  *
85331Samw  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
95331Samw  * or http://www.opensolaris.org/os/licensing.
105331Samw  * See the License for the specific language governing permissions
115331Samw  * and limitations under the License.
125331Samw  *
135331Samw  * When distributing Covered Code, include this CDDL HEADER in each
145331Samw  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
155331Samw  * If applicable, add the following below this CDDL HEADER, with the
165331Samw  * fields enclosed by brackets "[]" replaced with your own identifying
175331Samw  * information: Portions Copyright [yyyy] [name of copyright owner]
185331Samw  *
195331Samw  * CDDL HEADER END
205331Samw  */
215331Samw /*
225772Sas200622  * Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
235331Samw  * Use is subject to license terms.
245331Samw  */
255331Samw 
265331Samw #pragma ident	"%Z%%M%	%I%	%E% SMI"
275331Samw 
285331Samw #include <sys/types.h>
295331Samw #include <sys/stat.h>
305331Samw #include <sys/ioccom.h>
315331Samw #include <stdio.h>
325331Samw #include <string.h>
335331Samw #include <strings.h>
345331Samw #include <stdlib.h>
355331Samw #include <unistd.h>
365331Samw #include <stdarg.h>
375331Samw #include <fcntl.h>
385331Samw #include <wait.h>
395331Samw #include <signal.h>
405331Samw #include <libscf.h>
415331Samw #include <limits.h>
425331Samw #include <priv_utils.h>
435331Samw #include <door.h>
445331Samw #include <errno.h>
455331Samw #include <syslog.h>
465331Samw #include <pthread.h>
475331Samw #include <time.h>
485331Samw #include <libscf.h>
495331Samw #include <zone.h>
505331Samw #include <tzfile.h>
515331Samw #include <libgen.h>
525331Samw #include <pwd.h>
535331Samw #include <grp.h>
545331Samw 
555331Samw #include <smbsrv/smb_door_svc.h>
565331Samw #include <smbsrv/smb_ioctl.h>
575331Samw #include <smbsrv/libsmb.h>
585331Samw #include <smbsrv/libsmbns.h>
595331Samw #include <smbsrv/libsmbrdr.h>
605331Samw #include <smbsrv/libmlsvc.h>
615331Samw 
625331Samw #include "smbd.h"
635331Samw 
645331Samw #define	DRV_DEVICE_PATH	"/devices/pseudo/smbsrv@0:smbsrv"
655331Samw #define	SMB_DBDIR "/var/smb"
665331Samw 
676139Sjb150015 extern void *smbd_nbt_listener(void *);
686139Sjb150015 extern void *smbd_tcp_listener(void *);
696139Sjb150015 
705331Samw static int smbd_daemonize_init(void);
715331Samw static void smbd_daemonize_fini(int, int);
725331Samw 
736432Sas200622 static int smbd_kernel_bind(void);
745331Samw static void smbd_kernel_unbind(void);
755331Samw static int smbd_already_running(void);
765331Samw 
775331Samw static int smbd_service_init(void);
785331Samw static void smbd_service_fini(void);
795331Samw 
805331Samw static int smbd_setup_options(int argc, char *argv[]);
815331Samw static void smbd_usage(FILE *fp);
825331Samw static void smbd_report(const char *fmt, ...);
835331Samw 
845331Samw static void smbd_sig_handler(int sig);
855331Samw 
865331Samw static int smbd_localtime_init(void);
875331Samw static void *smbd_localtime_monitor(void *arg);
885331Samw 
895331Samw static pthread_t localtime_thr;
905331Samw 
915331Samw static int smbd_refresh_init(void);
925331Samw static void smbd_refresh_fini(void);
935331Samw static void *smbd_refresh_monitor(void *);
946139Sjb150015 static pthread_t nbt_listener;
956139Sjb150015 static pthread_t tcp_listener;
965331Samw static pthread_t refresh_thr;
975331Samw static pthread_cond_t refresh_cond;
985331Samw static pthread_mutex_t refresh_mutex;
995331Samw 
1006139Sjb150015 smbd_t smbd;
1015331Samw 
1025331Samw /*
1035331Samw  * smbd user land daemon
1045331Samw  *
1055331Samw  * Use SMF error codes only on return or exit.
1065331Samw  */
1075331Samw int
1085331Samw main(int argc, char *argv[])
1095331Samw {
1106432Sas200622 	struct sigaction	act;
1116432Sas200622 	sigset_t		set;
1126432Sas200622 	uid_t			uid;
1136432Sas200622 	int			pfd = -1;
1145331Samw 
1155331Samw 	smbd.s_pname = basename(argv[0]);
1165331Samw 	openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
1175331Samw 
1185331Samw 	if (smbd_setup_options(argc, argv) != 0)
1195331Samw 		return (SMF_EXIT_ERR_FATAL);
1205331Samw 
1215331Samw 	if ((uid = getuid()) != smbd.s_uid) {
1225331Samw 		smbd_report("user %d: %s", uid, strerror(EPERM));
1235331Samw 		return (SMF_EXIT_ERR_FATAL);
1245331Samw 	}
1255331Samw 
1265331Samw 	if (getzoneid() != GLOBAL_ZONEID) {
1275331Samw 		smbd_report("non-global zones are not supported");
1285331Samw 		return (SMF_EXIT_ERR_FATAL);
1295331Samw 	}
1305331Samw 
1315331Samw 	if (is_system_labeled()) {
1325331Samw 		smbd_report("Trusted Extensions not supported");
1335331Samw 		return (SMF_EXIT_ERR_FATAL);
1345331Samw 	}
1355331Samw 
1365331Samw 	if (smbd_already_running())
1375331Samw 		return (SMF_EXIT_OK);
1385331Samw 
1395331Samw 	(void) sigfillset(&set);
1405331Samw 	(void) sigdelset(&set, SIGABRT);
1415331Samw 
1425331Samw 	(void) sigfillset(&act.sa_mask);
1435331Samw 	act.sa_handler = smbd_sig_handler;
1445331Samw 	act.sa_flags = 0;
1455331Samw 
1465331Samw 	(void) sigaction(SIGTERM, &act, NULL);
1475331Samw 	(void) sigaction(SIGHUP, &act, NULL);
1485331Samw 	(void) sigaction(SIGINT, &act, NULL);
1495331Samw 	(void) sigaction(SIGPIPE, &act, NULL);
1505331Samw 
1515331Samw 	(void) sigdelset(&set, SIGTERM);
1525331Samw 	(void) sigdelset(&set, SIGHUP);
1535331Samw 	(void) sigdelset(&set, SIGINT);
1545331Samw 	(void) sigdelset(&set, SIGPIPE);
1555331Samw 
1565331Samw 	if (smbd.s_fg) {
1575331Samw 		(void) sigdelset(&set, SIGTSTP);
1585331Samw 		(void) sigdelset(&set, SIGTTIN);
1595331Samw 		(void) sigdelset(&set, SIGTTOU);
1605331Samw 
1615331Samw 		if (smbd_service_init() != 0) {
1625331Samw 			smbd_report("service initialization failed");
1635331Samw 			exit(SMF_EXIT_ERR_FATAL);
1645331Samw 		}
1655331Samw 	} else {
1665331Samw 		/*
1675331Samw 		 * "pfd" is a pipe descriptor -- any fatal errors
1685331Samw 		 * during subsequent initialization of the child
1695331Samw 		 * process should be written to this pipe and the
1705331Samw 		 * parent will report this error as the exit status.
1715331Samw 		 */
1725331Samw 		pfd = smbd_daemonize_init();
1735331Samw 
1745331Samw 		if (smbd_service_init() != 0) {
1755331Samw 			smbd_report("daemon initialization failed");
1765331Samw 			exit(SMF_EXIT_ERR_FATAL);
1775331Samw 		}
1785331Samw 
1795331Samw 		smbd_daemonize_fini(pfd, SMF_EXIT_OK);
1805331Samw 	}
1815331Samw 
1825331Samw 	(void) atexit(smbd_service_fini);
1835331Samw 
1845331Samw 	while (!smbd.s_shutdown_flag) {
1855331Samw 		(void) sigsuspend(&set);
1865331Samw 
1875331Samw 		switch (smbd.s_sigval) {
1885331Samw 		case 0:
1895331Samw 			break;
1905331Samw 
1915331Samw 		case SIGPIPE:
1925331Samw 			break;
1935331Samw 
1945331Samw 		case SIGHUP:
1955331Samw 			/* Refresh config was triggered */
1965331Samw 			if (smbd.s_fg)
1975331Samw 				smbd_report("reconfiguration requested");
1985331Samw 			(void) pthread_cond_signal(&refresh_cond);
1995331Samw 			break;
2005331Samw 
2015331Samw 		default:
2025331Samw 			/*
2035331Samw 			 * Typically SIGINT or SIGTERM.
2045331Samw 			 */
2055331Samw 			smbd.s_shutdown_flag = 1;
2065331Samw 			break;
2075331Samw 		}
2085331Samw 
2095331Samw 		smbd.s_sigval = 0;
2105331Samw 	}
2115331Samw 
2125331Samw 	smbd_service_fini();
2135331Samw 	closelog();
2145331Samw 	return (SMF_EXIT_OK);
2155331Samw }
2165331Samw 
2175331Samw /*
2185331Samw  * This function will fork off a child process,
2195331Samw  * from which only the child will return.
2205331Samw  *
2215331Samw  * Use SMF error codes only on exit.
2225331Samw  */
2235331Samw static int
2245331Samw smbd_daemonize_init(void)
2255331Samw {
2265331Samw 	int status, pfds[2];
2275331Samw 	sigset_t set, oset;
2285331Samw 	pid_t pid;
2295331Samw 	int rc;
2305331Samw 
2315331Samw 	/*
2325331Samw 	 * Reset privileges to the minimum set required. We continue
2335331Samw 	 * to run as root to create and access files in /var.
2345331Samw 	 */
2355331Samw 	rc = __init_daemon_priv(PU_RESETGROUPS | PU_LIMITPRIVS,
2365331Samw 	    smbd.s_uid, smbd.s_gid,
2375331Samw 	    PRIV_NET_MAC_AWARE, PRIV_NET_PRIVADDR, PRIV_PROC_AUDIT,
2385331Samw 	    PRIV_SYS_DEVICES, PRIV_SYS_SMB, NULL);
2395331Samw 
2405331Samw 	if (rc != 0) {
2415331Samw 		smbd_report("insufficient privileges");
2425331Samw 		exit(SMF_EXIT_ERR_FATAL);
2435331Samw 	}
2445331Samw 
2455331Samw 	/*
2465331Samw 	 * Block all signals prior to the fork and leave them blocked in the
2475331Samw 	 * parent so we don't get in a situation where the parent gets SIGINT
2485331Samw 	 * and returns non-zero exit status and the child is actually running.
2495331Samw 	 * In the child, restore the signal mask once we've done our setsid().
2505331Samw 	 */
2515331Samw 	(void) sigfillset(&set);
2525331Samw 	(void) sigdelset(&set, SIGABRT);
2535331Samw 	(void) sigprocmask(SIG_BLOCK, &set, &oset);
2545331Samw 
2555331Samw 	if (pipe(pfds) == -1) {
2565331Samw 		smbd_report("unable to create pipe");
2575331Samw 		exit(SMF_EXIT_ERR_FATAL);
2585331Samw 	}
2595331Samw 
2605331Samw 	closelog();
2615331Samw 
2625331Samw 	if ((pid = fork()) == -1) {
2635331Samw 		openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
2645331Samw 		smbd_report("unable to fork");
2655331Samw 		closelog();
2665331Samw 		exit(SMF_EXIT_ERR_FATAL);
2675331Samw 	}
2685331Samw 
2695331Samw 	/*
2705331Samw 	 * If we're the parent process, wait for either the child to send us
2715331Samw 	 * the appropriate exit status over the pipe or for the read to fail
2725331Samw 	 * (presumably with 0 for EOF if our child terminated abnormally).
2735331Samw 	 * If the read fails, exit with either the child's exit status if it
2745331Samw 	 * exited or with SMF_EXIT_ERR_FATAL if it died from a fatal signal.
2755331Samw 	 */
2765331Samw 	if (pid != 0) {
2775331Samw 		(void) close(pfds[1]);
2785331Samw 
2795331Samw 		if (read(pfds[0], &status, sizeof (status)) == sizeof (status))
2805331Samw 			_exit(status);
2815331Samw 
2825331Samw 		if (waitpid(pid, &status, 0) == pid && WIFEXITED(status))
2835331Samw 			_exit(WEXITSTATUS(status));
2845331Samw 
2855331Samw 		_exit(SMF_EXIT_ERR_FATAL);
2865331Samw 	}
2875331Samw 
2885331Samw 	openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
2895331Samw 	smbd.s_pid = getpid();
2905331Samw 	(void) setsid();
2915331Samw 	(void) sigprocmask(SIG_SETMASK, &oset, NULL);
2925331Samw 	(void) chdir("/");
2935331Samw 	(void) umask(022);
2945331Samw 	(void) close(pfds[0]);
2955331Samw 
2965331Samw 	return (pfds[1]);
2975331Samw }
2985331Samw 
2995331Samw static void
3005331Samw smbd_daemonize_fini(int fd, int exit_status)
3015331Samw {
3025331Samw 	/*
3035331Samw 	 * Now that we're running, if a pipe fd was specified, write an exit
3045331Samw 	 * status to it to indicate that our parent process can safely detach.
3055331Samw 	 * Then proceed to loading the remaining non-built-in modules.
3065331Samw 	 */
3075331Samw 	if (fd >= 0)
3085331Samw 		(void) write(fd, &exit_status, sizeof (exit_status));
3095331Samw 
3105331Samw 	(void) close(fd);
3115331Samw 
3125331Samw 	if ((fd = open("/dev/null", O_RDWR)) >= 0) {
3135331Samw 		(void) fcntl(fd, F_DUP2FD, STDIN_FILENO);
3145331Samw 		(void) fcntl(fd, F_DUP2FD, STDOUT_FILENO);
3155331Samw 		(void) fcntl(fd, F_DUP2FD, STDERR_FILENO);
3165331Samw 		(void) close(fd);
3175331Samw 	}
3185331Samw 
3195331Samw 	__fini_daemon_priv(PRIV_PROC_FORK, PRIV_PROC_EXEC, PRIV_PROC_SESSION,
3205331Samw 	    PRIV_FILE_LINK_ANY, PRIV_PROC_INFO, NULL);
3215331Samw }
3225331Samw 
3236139Sjb150015 /*
3246139Sjb150015  * smbd_service_init
3256139Sjb150015  */
3265331Samw static int
3275331Samw smbd_service_init(void)
3285331Samw {
3296432Sas200622 	int	rc;
3306432Sas200622 	char	resource_domain[SMB_PI_MAX_DOMAIN];
3316432Sas200622 	char	fqdn[MAXHOSTNAMELEN];
3326432Sas200622 
3335331Samw 	smbd.s_drv_fd = -1;
3345331Samw 
3356139Sjb150015 	if ((mkdir(SMB_DBDIR, 0700) < 0) && (errno != EEXIST)) {
3366139Sjb150015 		smbd_report("mkdir %s: %s", SMB_DBDIR, strerror(errno));
3376139Sjb150015 		return (1);
3385331Samw 	}
3395331Samw 
3406139Sjb150015 	if ((rc = smb_ccache_init(SMB_VARRUN_DIR, SMB_CCACHE_FILE)) != 0) {
3416139Sjb150015 		if (rc == -1)
3426139Sjb150015 			smbd_report("mkdir %s: %s", SMB_VARRUN_DIR,
3436139Sjb150015 			    strerror(errno));
3446139Sjb150015 		else
3456139Sjb150015 			smbd_report("unable to set KRB5CCNAME");
3465331Samw 		return (1);
3475331Samw 	}
3485331Samw 
3496139Sjb150015 
3505331Samw 	(void) oem_language_set("english");
3515331Samw 
3526432Sas200622 	if (!smb_wka_init()) {
3535331Samw 		smbd_report("out of memory");
3545331Samw 		return (1);
3555331Samw 	}
3565331Samw 
3576432Sas200622 	if (smb_nicmon_start(SMBD_DEFAULT_INSTANCE_FMRI) != 0)
3586432Sas200622 		smbd_report("NIC monitoring failed to start");
3596432Sas200622 
3605772Sas200622 	if (dns_msgid_init() != 0) {
3615772Sas200622 		smbd_report("DNS message id initialization failed");
3625331Samw 		return (1);
3635331Samw 	}
3645331Samw 
3655331Samw 	smbrdr_init();
3665331Samw 
3675772Sas200622 	if (smb_netbios_start() != 0)
3685772Sas200622 		smbd_report("NetBIOS services failed to start");
3695772Sas200622 	else
3705772Sas200622 		smbd_report("NetBIOS services started");
3715772Sas200622 
3725331Samw 	if (smb_netlogon_init() != 0) {
3735331Samw 		smbd_report("netlogon initialization failed");
3745331Samw 		return (1);
3755331Samw 	}
3765331Samw 
3775772Sas200622 	(void) smb_getdomainname(resource_domain, SMB_PI_MAX_DOMAIN);
3785331Samw 	(void) utf8_strupr(resource_domain);
3795331Samw 
3805331Samw 	/* Get the ID map client handle */
3815331Samw 	if ((rc = smb_idmap_start()) != 0) {
3825331Samw 		smbd_report("no idmap handle");
3835331Samw 		return (rc);
3845331Samw 	}
3855331Samw 
3866432Sas200622 	smbd.s_secmode = smb_config_get_secmode();
3876432Sas200622 	if ((rc = nt_domain_init(resource_domain, smbd.s_secmode)) != 0) {
3885772Sas200622 		if (rc == SMB_DOMAIN_NOMACHINE_SID) {
3895772Sas200622 			smbd_report(
3905772Sas200622 			    "no machine SID: check idmap configuration");
3915772Sas200622 			return (rc);
3925772Sas200622 		}
3935331Samw 	}
3945331Samw 
3955772Sas200622 	ads_init();
3965331Samw 	if ((rc = mlsvc_init()) != 0) {
3975331Samw 		smbd_report("msrpc initialization failed");
3985331Samw 		return (rc);
3995331Samw 	}
4005331Samw 
4016432Sas200622 	if (smbd.s_secmode == SMB_SECMODE_DOMAIN) {
4026139Sjb150015 		if (!smb_match_netlogon_seqnum())
4036139Sjb150015 			smb_set_netlogon_cred();
4046139Sjb150015 		else
4056139Sjb150015 			(void) smbd_locate_dc(resource_domain, "");
4066139Sjb150015 
4076139Sjb150015 		(void) lsa_query_primary_domain_info();
4086139Sjb150015 	}
4096139Sjb150015 
4106432Sas200622 	smbd.s_door_lmshr = smb_lmshrd_srv_start();
4116432Sas200622 	if (smbd.s_door_lmshr < 0) {
4125331Samw 		smbd_report("share initialization failed");
4135331Samw 	}
4145331Samw 
4156432Sas200622 	smbd.s_door_srv = smb_door_srv_start();
4166432Sas200622 	if (smbd.s_door_srv < 0)
4175331Samw 		return (rc);
4185331Samw 
4195331Samw 	if ((rc = smbd_refresh_init()) != 0)
4205331Samw 		return (rc);
4215331Samw 
4226139Sjb150015 	if (smb_getfqdomainname(fqdn, MAXHOSTNAMELEN) == 0)
423*6600Sas200622 		(void) dyndns_update_core(fqdn);
4245331Samw 
4255331Samw 	(void) smbd_localtime_init();
4265331Samw 
4276432Sas200622 	smbd.s_door_winpipe = smb_winpipe_doorsvc_start();
4286432Sas200622 	if (smbd.s_door_winpipe < 0) {
4295521Sas200622 		smbd_report("winpipe initialization failed %s",
4305521Sas200622 		    strerror(errno));
4315521Sas200622 		return (rc);
4325521Sas200622 	}
4335521Sas200622 
4345772Sas200622 	(void) smb_lgrp_start();
4356030Sjb150015 
4366030Sjb150015 	(void) smb_pwd_init();
4376030Sjb150015 
4386432Sas200622 	rc = smbd_kernel_bind();
4396432Sas200622 	if (rc != 0) {
4406139Sjb150015 		smbd_report("kernel bind error: %s", strerror(errno));
4416432Sas200622 		return (rc);
4426432Sas200622 	}
4435331Samw 
4446139Sjb150015 	return (lmshare_start());
4455521Sas200622 }
4465521Sas200622 
4475331Samw /*
4485331Samw  * Close the kernel service and shutdown smbd services.
4495331Samw  * This function is registered with atexit(): ensure that anything
4505331Samw  * called from here is safe to be called multiple times.
4515331Samw  */
4525331Samw static void
4535331Samw smbd_service_fini(void)
4545331Samw {
4555521Sas200622 	smb_winpipe_doorsvc_stop();
4566432Sas200622 	smb_wka_fini();
4575331Samw 	smbd_refresh_fini();
4585331Samw 	smbd_kernel_unbind();
4595331Samw 	smb_door_srv_stop();
4605331Samw 	smb_lmshrd_srv_stop();
4615331Samw 	lmshare_stop();
4625331Samw 	smb_nicmon_stop();
4635331Samw 	smb_idmap_stop();
4645772Sas200622 	smb_lgrp_stop();
4656139Sjb150015 	smb_ccache_remove(SMB_CCACHE_PATH);
4666030Sjb150015 	smb_pwd_fini();
4675521Sas200622 
4685331Samw }
4695331Samw 
4706139Sjb150015 
4715331Samw /*
4725331Samw  * smbd_refresh_init()
4735331Samw  *
4745331Samw  * SMB service refresh thread initialization.  This thread waits for a
4755331Samw  * refresh event and updates the daemon's view of the configuration
4765331Samw  * before going back to sleep.
4775331Samw  */
4785331Samw static int
4795331Samw smbd_refresh_init()
4805331Samw {
4816432Sas200622 	pthread_attr_t		tattr;
4826432Sas200622 	pthread_condattr_t	cattr;
4836432Sas200622 	int			rc;
4845331Samw 
4855331Samw 	(void) pthread_condattr_init(&cattr);
4865331Samw 	(void) pthread_cond_init(&refresh_cond, &cattr);
4875331Samw 	(void) pthread_condattr_destroy(&cattr);
4885331Samw 
4895331Samw 	(void) pthread_mutex_init(&refresh_mutex, NULL);
4905331Samw 
4915331Samw 	(void) pthread_attr_init(&tattr);
4925331Samw 	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
4935331Samw 	rc = pthread_create(&refresh_thr, &tattr, smbd_refresh_monitor, 0);
4945331Samw 	(void) pthread_attr_destroy(&tattr);
4956432Sas200622 
4965331Samw 	return (rc);
4975331Samw }
4985331Samw 
4995331Samw /*
5005331Samw  * smbd_refresh_fini()
5015331Samw  *
5025331Samw  * Stop the refresh thread.
5035331Samw  */
5045331Samw static void
5055331Samw smbd_refresh_fini()
5065331Samw {
5075331Samw 	(void) pthread_cancel(refresh_thr);
5085331Samw 
5095331Samw 	(void) pthread_cond_destroy(&refresh_cond);
5105331Samw 	(void) pthread_mutex_destroy(&refresh_mutex);
5115331Samw }
5125331Samw 
5135331Samw /*
5145331Samw  * smbd_refresh_monitor()
5155331Samw  *
5165331Samw  * Wait for a refresh event. When this thread wakes up, update the
5175331Samw  * smbd configuration from the SMF config information then go back to
5185331Samw  * wait for the next refresh.
5195331Samw  */
5205331Samw /*ARGSUSED*/
5215331Samw static void *
5225331Samw smbd_refresh_monitor(void *arg)
5235331Samw {
5246432Sas200622 	smb_io_t	smb_io;
5256432Sas200622 	size_t		len;
5266432Sas200622 	char		*new_dom;
5276432Sas200622 	int		new_secmod;
5286432Sas200622 	char		*old_dom;
5296432Sas200622 	char		fqdn[MAXHOSTNAMELEN];
5306432Sas200622 	int		rc = 0;
5315331Samw 
5325331Samw 	(void) pthread_mutex_lock(&refresh_mutex);
5335331Samw 	while (pthread_cond_wait(&refresh_cond, &refresh_mutex) == 0) {
5345331Samw 		/*
5355331Samw 		 * We've been woken up by a refresh event so go do
5365331Samw 		 * what is necessary.
5375331Samw 		 */
5385772Sas200622 		ads_refresh();
5396139Sjb150015 		smb_ccache_remove(SMB_CCACHE_PATH);
5406432Sas200622 
5416432Sas200622 		if ((rc = smb_getfqdomainname(fqdn, MAXHOSTNAMELEN)) != 0)
5426432Sas200622 			smbd_report("failed to get fully qualified domainname");
5436432Sas200622 
5446432Sas200622 		if (rc == 0)
5456432Sas200622 			/* Clear rev zone before creating if list */
5466432Sas200622 			if (dyndns_clear_rev_zone(fqdn) != 0)
5476432Sas200622 				smbd_report("failed to clear DNS reverse "
5486432Sas200622 				    "lookup zone");
5496432Sas200622 
5506432Sas200622 		/* re-initialize NIC table */
5516432Sas200622 		if (smb_nic_init() != 0)
5526432Sas200622 			smbd_report("failed to get NIC information");
5536432Sas200622 
5546432Sas200622 		smb_netbios_name_reconfig();
5556432Sas200622 		smb_browser_reconfig();
5566432Sas200622 
5576432Sas200622 		if (rc == 0)
558*6600Sas200622 			if (dyndns_update_core(fqdn) != 0)
5596432Sas200622 				smbd_report("failed to update dynamic DNS");
5606432Sas200622 
5616139Sjb150015 		smb_set_netlogon_cred();
5626432Sas200622 
5636432Sas200622 		smb_load_kconfig(&smb_io.sio_data.cfg);
5646432Sas200622 		new_dom = smb_io.sio_data.cfg.skc_resource_domain;
5656432Sas200622 		old_dom = smbd.s_kcfg.skc_resource_domain;
5666432Sas200622 		len = strlen(old_dom);
5676432Sas200622 		new_secmod = smb_config_get_secmode();
5686432Sas200622 		if ((len != strlen(new_dom)) ||
5696432Sas200622 		    (strncasecmp(new_dom, old_dom, len)) ||
5706432Sas200622 		    (new_secmod != smbd.s_secmode) ||
5716432Sas200622 		    (smbd.s_drv_fd == -1)) {
5726432Sas200622 			/*
5736432Sas200622 			 * The active sessions have to be disconnected.
5746432Sas200622 			 */
5756432Sas200622 			smbd_kernel_unbind();
5766432Sas200622 			if (smbd_kernel_bind()) {
5776432Sas200622 				smbd_report("kernel bind error: %s",
5786432Sas200622 				    strerror(errno));
5796432Sas200622 			}
5806432Sas200622 			continue;
5816432Sas200622 		}
5826432Sas200622 
5836432Sas200622 		bcopy(&smb_io.sio_data.cfg, &smbd.s_kcfg, sizeof (smbd.s_kcfg));
5846432Sas200622 		if (ioctl(smbd.s_drv_fd, SMB_IOC_CONFIG, &smb_io) < 0) {
5855331Samw 			smbd_report("configuration update ioctl: %s",
5865331Samw 			    strerror(errno));
5875331Samw 		}
5885331Samw 	}
5895331Samw 	return (NULL);
5905331Samw }
5915331Samw 
5925331Samw 
5935331Samw /*
5945331Samw  * If the door has already been opened by another process (non-zero pid
5955331Samw  * in target), we assume that another smbd is already running.  If there
5965331Samw  * is a race here, it will be caught later when smbsrv is opened because
5975331Samw  * only one process is allowed to open the device at a time.
5985331Samw  */
5995331Samw static int
6005331Samw smbd_already_running(void)
6015331Samw {
6025331Samw 	door_info_t info;
6035331Samw 	int door;
6045331Samw 
6056139Sjb150015 	if ((door = open(SMB_DR_SVC_NAME, O_RDONLY)) < 0)
6065331Samw 		return (0);
6075331Samw 
6085331Samw 	if (door_info(door, &info) < 0)
6095331Samw 		return (0);
6105331Samw 
6115331Samw 	if (info.di_target > 0) {
6125331Samw 		smbd_report("already running: pid %ld\n", info.di_target);
6135331Samw 		(void) close(door);
6145331Samw 		return (1);
6155331Samw 	}
6165331Samw 
6175331Samw 	(void) close(door);
6185331Samw 	return (0);
6195331Samw }
6205331Samw 
6216139Sjb150015 /*
6226139Sjb150015  * smbd_kernel_bind
6236432Sas200622  *
6246432Sas200622  * This function open the smbsrv device and start the kernel service.
6256139Sjb150015  */
6265331Samw static int
6276432Sas200622 smbd_kernel_bind(void)
6285331Samw {
6296139Sjb150015 	smb_io_t	smb_io;
6306139Sjb150015 	int		rc;
6316139Sjb150015 
6326139Sjb150015 	bzero(&smb_io, sizeof (smb_io));
6336139Sjb150015 	smb_io.sio_version = SMB_IOC_VERSION;
6346139Sjb150015 
6355331Samw 	if (smbd.s_drv_fd != -1)
6365331Samw 		(void) close(smbd.s_drv_fd);
6375331Samw 
6385331Samw 	if ((smbd.s_drv_fd = open(DRV_DEVICE_PATH, 0)) < 0) {
6395331Samw 		smbd.s_drv_fd = -1;
6406139Sjb150015 		return (errno);
6416139Sjb150015 	}
6426432Sas200622 	smb_load_kconfig(&smbd.s_kcfg);
6436432Sas200622 	bcopy(&smbd.s_kcfg, &smb_io.sio_data.cfg, sizeof (smb_io.sio_data.cfg));
6446139Sjb150015 	if (ioctl(smbd.s_drv_fd, SMB_IOC_CONFIG, &smb_io) < 0) {
6456139Sjb150015 		(void) close(smbd.s_drv_fd);
6466139Sjb150015 		smbd.s_drv_fd = -1;
6476139Sjb150015 		return (errno);
6486139Sjb150015 	}
6496139Sjb150015 	smb_io.sio_data.gmtoff = (uint32_t)(-altzone);
6506139Sjb150015 	if (ioctl(smbd.s_drv_fd, SMB_IOC_GMTOFF, &smb_io) < 0) {
6516139Sjb150015 		(void) close(smbd.s_drv_fd);
6526139Sjb150015 		smbd.s_drv_fd = -1;
6536139Sjb150015 		return (errno);
6545331Samw 	}
6556432Sas200622 	smb_io.sio_data.start.winpipe = smbd.s_door_winpipe;
6566432Sas200622 	smb_io.sio_data.start.lmshrd = smbd.s_door_lmshr;
6576432Sas200622 	smb_io.sio_data.start.udoor = smbd.s_door_srv;
6586139Sjb150015 	if (ioctl(smbd.s_drv_fd, SMB_IOC_START, &smb_io) < 0) {
6596139Sjb150015 		(void) close(smbd.s_drv_fd);
6606139Sjb150015 		smbd.s_drv_fd = -1;
6616139Sjb150015 		return (errno);
6626139Sjb150015 	}
6636139Sjb150015 
6646139Sjb150015 	rc = pthread_create(&nbt_listener, NULL, smbd_nbt_listener, NULL);
6656139Sjb150015 	if (rc == 0) {
6666139Sjb150015 		rc = pthread_create(&tcp_listener, NULL, smbd_tcp_listener,
6676139Sjb150015 		    NULL);
6686432Sas200622 		if (rc == 0) {
6696432Sas200622 			smbd.s_kbound = B_TRUE;
6706139Sjb150015 			return (0);
6716432Sas200622 		}
6726432Sas200622 	}
6736432Sas200622 
6746432Sas200622 	rc = pthread_create(&nbt_listener, NULL, smbd_nbt_listener, NULL);
6756432Sas200622 	if (rc == 0) {
6766432Sas200622 		rc = pthread_create(&tcp_listener, NULL, smbd_tcp_listener,
6776432Sas200622 		    NULL);
6786432Sas200622 		if (rc == 0) {
6796432Sas200622 			smbd.s_kbound = B_TRUE;
6806432Sas200622 			return (0);
6816432Sas200622 		}
6826139Sjb150015 	}
6836139Sjb150015 	(void) close(smbd.s_drv_fd);
6846139Sjb150015 	smbd.s_drv_fd = -1;
6856139Sjb150015 	return (rc);
6865331Samw }
6875331Samw 
6886139Sjb150015 /*
6896139Sjb150015  * smbd_kernel_unbind
6906139Sjb150015  */
6916139Sjb150015 static void
6926139Sjb150015 smbd_kernel_unbind(void)
6936139Sjb150015 {
6946139Sjb150015 	if (smbd.s_drv_fd != -1) {
6956139Sjb150015 		(void) close(smbd.s_drv_fd);
6966139Sjb150015 		smbd.s_drv_fd = -1;
6976432Sas200622 		smbd.s_kbound = B_FALSE;
6986139Sjb150015 	}
6996139Sjb150015 }
7005331Samw 
7015331Samw /*
7025331Samw  * Initialization of the localtime thread.
7035331Samw  * Returns 0 on success, an error number if thread creation fails.
7045331Samw  */
7055331Samw 
7065331Samw int
7075331Samw smbd_localtime_init(void)
7085331Samw {
7095331Samw 	pthread_attr_t tattr;
7105331Samw 	int rc;
7115331Samw 
7125331Samw 	(void) pthread_attr_init(&tattr);
7135331Samw 	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
7145331Samw 	rc = pthread_create(&localtime_thr, &tattr, smbd_localtime_monitor, 0);
7155331Samw 	(void) pthread_attr_destroy(&tattr);
7165331Samw 	return (rc);
7175331Samw }
7185331Samw 
7195331Samw /*
7205331Samw  * Local time thread to kernel land.
7215331Samw  * Send local gmtoff to kernel module one time at startup
7225331Samw  * and each time it changes (up to twice a year).
7235331Samw  * Local gmtoff is checked once every 15 minutes and
7245331Samw  * since some timezones are aligned on half and qtr hour boundaries,
7255331Samw  * once an hour would likely suffice.
7265331Samw  */
7275331Samw 
7285331Samw /*ARGSUSED*/
7295331Samw static void *
7305331Samw smbd_localtime_monitor(void *arg)
7315331Samw {
7325331Samw 	struct tm local_tm;
7335331Samw 	time_t secs, gmtoff;
7345331Samw 	time_t last_gmtoff = -1;
7355331Samw 	int timeout;
7365331Samw 
7375331Samw 	for (;;) {
7385331Samw 		gmtoff = -altzone;
7395331Samw 
7405331Samw 		if ((last_gmtoff != gmtoff) && (smbd.s_drv_fd != -1)) {
7415331Samw 			if (ioctl(smbd.s_drv_fd, SMB_IOC_GMTOFF, &gmtoff) < 0) {
7425331Samw 				smbd_report("localtime ioctl: %s",
7435331Samw 				    strerror(errno));
7445331Samw 			}
7455331Samw 		}
7465331Samw 
7475331Samw 		/*
7485331Samw 		 * Align the next iteration on a fifteen minute boundary.
7495331Samw 		 */
7505331Samw 		secs = time(0);
7515331Samw 		(void) localtime_r(&secs, &local_tm);
7525331Samw 		timeout = ((15 - (local_tm.tm_min % 15)) * SECSPERMIN);
7535331Samw 		(void) sleep(timeout);
7545331Samw 
7555331Samw 		last_gmtoff = gmtoff;
7565331Samw 	}
7575331Samw 
7585331Samw 	/*NOTREACHED*/
7595331Samw 	return (NULL);
7605331Samw }
7615331Samw 
7625331Samw static void
7635331Samw smbd_sig_handler(int sigval)
7645331Samw {
7655331Samw 	if (smbd.s_sigval == 0)
7665331Samw 		smbd.s_sigval = sigval;
7675331Samw }
7685331Samw 
7695331Samw /*
7705331Samw  * Set up configuration options and parse the command line.
7715331Samw  * This function will determine if we will run as a daemon
7725331Samw  * or in the foreground.
7735331Samw  *
7745331Samw  * Failure to find a uid or gid results in using the default (0).
7755331Samw  */
7765331Samw static int
7775331Samw smbd_setup_options(int argc, char *argv[])
7785331Samw {
7795331Samw 	struct passwd *pwd;
7805331Samw 	struct group *grp;
7815331Samw 	int c;
7825331Samw 
7835331Samw 	if ((pwd = getpwnam("root")) != NULL)
7845331Samw 		smbd.s_uid = pwd->pw_uid;
7855331Samw 
7865331Samw 	if ((grp = getgrnam("sys")) != NULL)
7875331Samw 		smbd.s_gid = grp->gr_gid;
7885331Samw 
7895772Sas200622 	smbd.s_fg = smb_config_get_fg_flag();
7905331Samw 
7915331Samw 	while ((c = getopt(argc, argv, ":f")) != -1) {
7925331Samw 		switch (c) {
7935331Samw 		case 'f':
7945331Samw 			smbd.s_fg = 1;
7955331Samw 			break;
7965331Samw 
7975331Samw 		case ':':
7985331Samw 		case '?':
7995331Samw 		default:
8005331Samw 			smbd_usage(stderr);
8015331Samw 			return (-1);
8025331Samw 		}
8035331Samw 	}
8045331Samw 
8055331Samw 	return (0);
8065331Samw }
8075331Samw 
8085331Samw static void
8095331Samw smbd_usage(FILE *fp)
8105331Samw {
8115331Samw 	static char *help[] = {
8125331Samw 		"-f  run program in foreground"
8135331Samw 	};
8145331Samw 
8155331Samw 	int i;
8165331Samw 
8175331Samw 	(void) fprintf(fp, "Usage: %s [-f]\n", smbd.s_pname);
8185331Samw 
8195331Samw 	for (i = 0; i < sizeof (help)/sizeof (help[0]); ++i)
8205331Samw 		(void) fprintf(fp, "    %s\n", help[i]);
8215331Samw }
8225331Samw 
8235331Samw static void
8245331Samw smbd_report(const char *fmt, ...)
8255331Samw {
8265331Samw 	char buf[128];
8275331Samw 	va_list ap;
8285331Samw 
8295331Samw 	if (fmt == NULL)
8305331Samw 		return;
8315331Samw 
8325331Samw 	va_start(ap, fmt);
8335331Samw 	(void) vsnprintf(buf, 128, fmt, ap);
8345331Samw 	va_end(ap);
8355331Samw 
8365331Samw 	(void) fprintf(stderr, "smbd: %s\n", buf);
8375331Samw }
8385331Samw 
8395331Samw /*
8405331Samw  * Enable libumem debugging by default on DEBUG builds.
8415331Samw  */
8425331Samw #ifdef DEBUG
8435331Samw const char *
8445331Samw _umem_debug_init(void)
8455331Samw {
8465331Samw 	return ("default,verbose"); /* $UMEM_DEBUG setting */
8475331Samw }
8485331Samw 
8495331Samw const char *
8505331Samw _umem_logging_init(void)
8515331Samw {
8525331Samw 	return ("fail,contents"); /* $UMEM_LOGGING setting */
8535331Samw }
8545331Samw #endif
855