xref: /onnv-gate/usr/src/cmd/smbsrv/smbd/smbd_main.c (revision 7052:efa04b030974) 
15331Samw /*
25331Samw  * CDDL HEADER START
35331Samw  *
45331Samw  * The contents of this file are subject to the terms of the
55331Samw  * Common Development and Distribution License (the "License").
65331Samw  * You may not use this file except in compliance with the License.
75331Samw  *
85331Samw  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
95331Samw  * or http://www.opensolaris.org/os/licensing.
105331Samw  * See the License for the specific language governing permissions
115331Samw  * and limitations under the License.
125331Samw  *
135331Samw  * When distributing Covered Code, include this CDDL HEADER in each
145331Samw  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
155331Samw  * If applicable, add the following below this CDDL HEADER, with the
165331Samw  * fields enclosed by brackets "[]" replaced with your own identifying
175331Samw  * information: Portions Copyright [yyyy] [name of copyright owner]
185331Samw  *
195331Samw  * CDDL HEADER END
205331Samw  */
215331Samw /*
225772Sas200622  * Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
235331Samw  * Use is subject to license terms.
245331Samw  */
255331Samw 
265331Samw #pragma ident	"%Z%%M%	%I%	%E% SMI"
275331Samw 
285331Samw #include <sys/types.h>
295331Samw #include <sys/stat.h>
305331Samw #include <sys/ioccom.h>
315331Samw #include <stdio.h>
325331Samw #include <string.h>
335331Samw #include <strings.h>
345331Samw #include <stdlib.h>
355331Samw #include <unistd.h>
365331Samw #include <stdarg.h>
375331Samw #include <fcntl.h>
385331Samw #include <wait.h>
395331Samw #include <signal.h>
405331Samw #include <libscf.h>
415331Samw #include <limits.h>
425331Samw #include <priv_utils.h>
435331Samw #include <door.h>
445331Samw #include <errno.h>
455331Samw #include <syslog.h>
465331Samw #include <pthread.h>
475331Samw #include <time.h>
485331Samw #include <libscf.h>
495331Samw #include <zone.h>
505331Samw #include <tzfile.h>
515331Samw #include <libgen.h>
525331Samw #include <pwd.h>
535331Samw #include <grp.h>
545331Samw 
555331Samw #include <smbsrv/smb_door_svc.h>
565331Samw #include <smbsrv/smb_ioctl.h>
575331Samw #include <smbsrv/libsmb.h>
585331Samw #include <smbsrv/libsmbns.h>
595331Samw #include <smbsrv/libsmbrdr.h>
605331Samw #include <smbsrv/libmlsvc.h>
615331Samw 
625331Samw #include "smbd.h"
635331Samw 
645331Samw #define	DRV_DEVICE_PATH	"/devices/pseudo/smbsrv@0:smbsrv"
655331Samw #define	SMB_DBDIR "/var/smb"
665331Samw 
676139Sjb150015 extern void *smbd_nbt_listener(void *);
686139Sjb150015 extern void *smbd_tcp_listener(void *);
696139Sjb150015 
705331Samw static int smbd_daemonize_init(void);
715331Samw static void smbd_daemonize_fini(int, int);
725331Samw 
736432Sas200622 static int smbd_kernel_bind(void);
745331Samw static void smbd_kernel_unbind(void);
755331Samw static int smbd_already_running(void);
765331Samw 
775331Samw static int smbd_service_init(void);
785331Samw static void smbd_service_fini(void);
795331Samw 
805331Samw static int smbd_setup_options(int argc, char *argv[]);
815331Samw static void smbd_usage(FILE *fp);
825331Samw static void smbd_report(const char *fmt, ...);
835331Samw 
845331Samw static void smbd_sig_handler(int sig);
855331Samw 
865331Samw static int smbd_localtime_init(void);
875331Samw static void *smbd_localtime_monitor(void *arg);
885331Samw 
895331Samw static pthread_t localtime_thr;
905331Samw 
915331Samw static int smbd_refresh_init(void);
925331Samw static void smbd_refresh_fini(void);
935331Samw static void *smbd_refresh_monitor(void *);
946139Sjb150015 static pthread_t nbt_listener;
956139Sjb150015 static pthread_t tcp_listener;
965331Samw static pthread_t refresh_thr;
975331Samw static pthread_cond_t refresh_cond;
985331Samw static pthread_mutex_t refresh_mutex;
995331Samw 
1006139Sjb150015 smbd_t smbd;
1015331Samw 
1025331Samw /*
1035331Samw  * smbd user land daemon
1045331Samw  *
1055331Samw  * Use SMF error codes only on return or exit.
1065331Samw  */
1075331Samw int
1085331Samw main(int argc, char *argv[])
1095331Samw {
1106432Sas200622 	struct sigaction	act;
1116432Sas200622 	sigset_t		set;
1126432Sas200622 	uid_t			uid;
1136432Sas200622 	int			pfd = -1;
114*7052Samw 	int			sigval;
1155331Samw 
1165331Samw 	smbd.s_pname = basename(argv[0]);
1175331Samw 	openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
1185331Samw 
1195331Samw 	if (smbd_setup_options(argc, argv) != 0)
1205331Samw 		return (SMF_EXIT_ERR_FATAL);
1215331Samw 
1225331Samw 	if ((uid = getuid()) != smbd.s_uid) {
1235331Samw 		smbd_report("user %d: %s", uid, strerror(EPERM));
1245331Samw 		return (SMF_EXIT_ERR_FATAL);
1255331Samw 	}
1265331Samw 
1275331Samw 	if (getzoneid() != GLOBAL_ZONEID) {
1285331Samw 		smbd_report("non-global zones are not supported");
1295331Samw 		return (SMF_EXIT_ERR_FATAL);
1305331Samw 	}
1315331Samw 
1325331Samw 	if (is_system_labeled()) {
1335331Samw 		smbd_report("Trusted Extensions not supported");
1345331Samw 		return (SMF_EXIT_ERR_FATAL);
1355331Samw 	}
1365331Samw 
1375331Samw 	if (smbd_already_running())
1385331Samw 		return (SMF_EXIT_OK);
1395331Samw 
1405331Samw 	(void) sigfillset(&set);
1415331Samw 	(void) sigdelset(&set, SIGABRT);
1425331Samw 
1435331Samw 	(void) sigfillset(&act.sa_mask);
1445331Samw 	act.sa_handler = smbd_sig_handler;
1455331Samw 	act.sa_flags = 0;
1465331Samw 
1475331Samw 	(void) sigaction(SIGTERM, &act, NULL);
1485331Samw 	(void) sigaction(SIGHUP, &act, NULL);
1495331Samw 	(void) sigaction(SIGINT, &act, NULL);
1505331Samw 	(void) sigaction(SIGPIPE, &act, NULL);
1515331Samw 
1525331Samw 	(void) sigdelset(&set, SIGTERM);
1535331Samw 	(void) sigdelset(&set, SIGHUP);
1545331Samw 	(void) sigdelset(&set, SIGINT);
1555331Samw 	(void) sigdelset(&set, SIGPIPE);
1565331Samw 
1575331Samw 	if (smbd.s_fg) {
1585331Samw 		(void) sigdelset(&set, SIGTSTP);
1595331Samw 		(void) sigdelset(&set, SIGTTIN);
1605331Samw 		(void) sigdelset(&set, SIGTTOU);
1615331Samw 
1625331Samw 		if (smbd_service_init() != 0) {
1635331Samw 			smbd_report("service initialization failed");
1645331Samw 			exit(SMF_EXIT_ERR_FATAL);
1655331Samw 		}
1665331Samw 	} else {
1675331Samw 		/*
1685331Samw 		 * "pfd" is a pipe descriptor -- any fatal errors
1695331Samw 		 * during subsequent initialization of the child
1705331Samw 		 * process should be written to this pipe and the
1715331Samw 		 * parent will report this error as the exit status.
1725331Samw 		 */
1735331Samw 		pfd = smbd_daemonize_init();
1745331Samw 
1755331Samw 		if (smbd_service_init() != 0) {
1765331Samw 			smbd_report("daemon initialization failed");
1775331Samw 			exit(SMF_EXIT_ERR_FATAL);
1785331Samw 		}
1795331Samw 
1805331Samw 		smbd_daemonize_fini(pfd, SMF_EXIT_OK);
1815331Samw 	}
1825331Samw 
1835331Samw 	(void) atexit(smbd_service_fini);
1845331Samw 
1855331Samw 	while (!smbd.s_shutdown_flag) {
186*7052Samw 		if (smbd.s_sigval == 0)
187*7052Samw 			(void) sigsuspend(&set);
1885331Samw 
189*7052Samw 		sigval = smbd.s_sigval;
190*7052Samw 		smbd.s_sigval = 0;
191*7052Samw 
192*7052Samw 		switch (sigval) {
1935331Samw 		case 0:
1945331Samw 		case SIGPIPE:
1955331Samw 			break;
1965331Samw 
1975331Samw 		case SIGHUP:
1985331Samw 			/* Refresh config was triggered */
1995331Samw 			if (smbd.s_fg)
2005331Samw 				smbd_report("reconfiguration requested");
2015331Samw 			(void) pthread_cond_signal(&refresh_cond);
2025331Samw 			break;
2035331Samw 
2045331Samw 		default:
2055331Samw 			/*
2065331Samw 			 * Typically SIGINT or SIGTERM.
2075331Samw 			 */
2085331Samw 			smbd.s_shutdown_flag = 1;
2095331Samw 			break;
2105331Samw 		}
2115331Samw 	}
2125331Samw 
2135331Samw 	smbd_service_fini();
2145331Samw 	closelog();
2155331Samw 	return (SMF_EXIT_OK);
2165331Samw }
2175331Samw 
2185331Samw /*
2195331Samw  * This function will fork off a child process,
2205331Samw  * from which only the child will return.
2215331Samw  *
2225331Samw  * Use SMF error codes only on exit.
2235331Samw  */
2245331Samw static int
2255331Samw smbd_daemonize_init(void)
2265331Samw {
2275331Samw 	int status, pfds[2];
2285331Samw 	sigset_t set, oset;
2295331Samw 	pid_t pid;
2305331Samw 	int rc;
2315331Samw 
2325331Samw 	/*
2335331Samw 	 * Reset privileges to the minimum set required. We continue
2345331Samw 	 * to run as root to create and access files in /var.
2355331Samw 	 */
2365331Samw 	rc = __init_daemon_priv(PU_RESETGROUPS | PU_LIMITPRIVS,
2375331Samw 	    smbd.s_uid, smbd.s_gid,
2385331Samw 	    PRIV_NET_MAC_AWARE, PRIV_NET_PRIVADDR, PRIV_PROC_AUDIT,
2395331Samw 	    PRIV_SYS_DEVICES, PRIV_SYS_SMB, NULL);
2405331Samw 
2415331Samw 	if (rc != 0) {
2425331Samw 		smbd_report("insufficient privileges");
2435331Samw 		exit(SMF_EXIT_ERR_FATAL);
2445331Samw 	}
2455331Samw 
2465331Samw 	/*
2475331Samw 	 * Block all signals prior to the fork and leave them blocked in the
2485331Samw 	 * parent so we don't get in a situation where the parent gets SIGINT
2495331Samw 	 * and returns non-zero exit status and the child is actually running.
2505331Samw 	 * In the child, restore the signal mask once we've done our setsid().
2515331Samw 	 */
2525331Samw 	(void) sigfillset(&set);
2535331Samw 	(void) sigdelset(&set, SIGABRT);
2545331Samw 	(void) sigprocmask(SIG_BLOCK, &set, &oset);
2555331Samw 
2565331Samw 	if (pipe(pfds) == -1) {
2575331Samw 		smbd_report("unable to create pipe");
2585331Samw 		exit(SMF_EXIT_ERR_FATAL);
2595331Samw 	}
2605331Samw 
2615331Samw 	closelog();
2625331Samw 
2635331Samw 	if ((pid = fork()) == -1) {
2645331Samw 		openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
2655331Samw 		smbd_report("unable to fork");
2665331Samw 		closelog();
2675331Samw 		exit(SMF_EXIT_ERR_FATAL);
2685331Samw 	}
2695331Samw 
2705331Samw 	/*
2715331Samw 	 * If we're the parent process, wait for either the child to send us
2725331Samw 	 * the appropriate exit status over the pipe or for the read to fail
2735331Samw 	 * (presumably with 0 for EOF if our child terminated abnormally).
2745331Samw 	 * If the read fails, exit with either the child's exit status if it
2755331Samw 	 * exited or with SMF_EXIT_ERR_FATAL if it died from a fatal signal.
2765331Samw 	 */
2775331Samw 	if (pid != 0) {
2785331Samw 		(void) close(pfds[1]);
2795331Samw 
2805331Samw 		if (read(pfds[0], &status, sizeof (status)) == sizeof (status))
2815331Samw 			_exit(status);
2825331Samw 
2835331Samw 		if (waitpid(pid, &status, 0) == pid && WIFEXITED(status))
2845331Samw 			_exit(WEXITSTATUS(status));
2855331Samw 
2865331Samw 		_exit(SMF_EXIT_ERR_FATAL);
2875331Samw 	}
2885331Samw 
2895331Samw 	openlog(smbd.s_pname, LOG_PID | LOG_NOWAIT, LOG_DAEMON);
2905331Samw 	smbd.s_pid = getpid();
2915331Samw 	(void) setsid();
2925331Samw 	(void) sigprocmask(SIG_SETMASK, &oset, NULL);
2935331Samw 	(void) chdir("/");
2945331Samw 	(void) umask(022);
2955331Samw 	(void) close(pfds[0]);
2965331Samw 
2975331Samw 	return (pfds[1]);
2985331Samw }
2995331Samw 
3005331Samw static void
3015331Samw smbd_daemonize_fini(int fd, int exit_status)
3025331Samw {
3035331Samw 	/*
3045331Samw 	 * Now that we're running, if a pipe fd was specified, write an exit
3055331Samw 	 * status to it to indicate that our parent process can safely detach.
3065331Samw 	 * Then proceed to loading the remaining non-built-in modules.
3075331Samw 	 */
3085331Samw 	if (fd >= 0)
3095331Samw 		(void) write(fd, &exit_status, sizeof (exit_status));
3105331Samw 
3115331Samw 	(void) close(fd);
3125331Samw 
3135331Samw 	if ((fd = open("/dev/null", O_RDWR)) >= 0) {
3145331Samw 		(void) fcntl(fd, F_DUP2FD, STDIN_FILENO);
3155331Samw 		(void) fcntl(fd, F_DUP2FD, STDOUT_FILENO);
3165331Samw 		(void) fcntl(fd, F_DUP2FD, STDERR_FILENO);
3175331Samw 		(void) close(fd);
3185331Samw 	}
3195331Samw 
3205331Samw 	__fini_daemon_priv(PRIV_PROC_FORK, PRIV_PROC_EXEC, PRIV_PROC_SESSION,
3215331Samw 	    PRIV_FILE_LINK_ANY, PRIV_PROC_INFO, NULL);
3225331Samw }
3235331Samw 
3246139Sjb150015 /*
3256139Sjb150015  * smbd_service_init
3266139Sjb150015  */
3275331Samw static int
3285331Samw smbd_service_init(void)
3295331Samw {
3306432Sas200622 	int	rc;
3316432Sas200622 	char	resource_domain[SMB_PI_MAX_DOMAIN];
3326432Sas200622 	char	fqdn[MAXHOSTNAMELEN];
3336432Sas200622 
3345331Samw 	smbd.s_drv_fd = -1;
3355331Samw 
3366139Sjb150015 	if ((mkdir(SMB_DBDIR, 0700) < 0) && (errno != EEXIST)) {
3376139Sjb150015 		smbd_report("mkdir %s: %s", SMB_DBDIR, strerror(errno));
3386139Sjb150015 		return (1);
3395331Samw 	}
3405331Samw 
3416139Sjb150015 	if ((rc = smb_ccache_init(SMB_VARRUN_DIR, SMB_CCACHE_FILE)) != 0) {
3426139Sjb150015 		if (rc == -1)
3436139Sjb150015 			smbd_report("mkdir %s: %s", SMB_VARRUN_DIR,
3446139Sjb150015 			    strerror(errno));
3456139Sjb150015 		else
3466139Sjb150015 			smbd_report("unable to set KRB5CCNAME");
3475331Samw 		return (1);
3485331Samw 	}
3495331Samw 
3506139Sjb150015 
3515331Samw 	(void) oem_language_set("english");
3525331Samw 
3536432Sas200622 	if (!smb_wka_init()) {
3545331Samw 		smbd_report("out of memory");
3555331Samw 		return (1);
3565331Samw 	}
3575331Samw 
3586432Sas200622 	if (smb_nicmon_start(SMBD_DEFAULT_INSTANCE_FMRI) != 0)
3596432Sas200622 		smbd_report("NIC monitoring failed to start");
3606432Sas200622 
3615772Sas200622 	if (dns_msgid_init() != 0) {
3625772Sas200622 		smbd_report("DNS message id initialization failed");
3635331Samw 		return (1);
3645331Samw 	}
3655331Samw 
3665331Samw 	smbrdr_init();
3675331Samw 
3685772Sas200622 	if (smb_netbios_start() != 0)
3695772Sas200622 		smbd_report("NetBIOS services failed to start");
3705772Sas200622 	else
3715772Sas200622 		smbd_report("NetBIOS services started");
3725772Sas200622 
3735331Samw 	if (smb_netlogon_init() != 0) {
3745331Samw 		smbd_report("netlogon initialization failed");
3755331Samw 		return (1);
3765331Samw 	}
3775331Samw 
3785772Sas200622 	(void) smb_getdomainname(resource_domain, SMB_PI_MAX_DOMAIN);
3795331Samw 	(void) utf8_strupr(resource_domain);
3805331Samw 
3815331Samw 	/* Get the ID map client handle */
3825331Samw 	if ((rc = smb_idmap_start()) != 0) {
3835331Samw 		smbd_report("no idmap handle");
3845331Samw 		return (rc);
3855331Samw 	}
3865331Samw 
3876432Sas200622 	smbd.s_secmode = smb_config_get_secmode();
3886432Sas200622 	if ((rc = nt_domain_init(resource_domain, smbd.s_secmode)) != 0) {
3895772Sas200622 		if (rc == SMB_DOMAIN_NOMACHINE_SID) {
3905772Sas200622 			smbd_report(
3915772Sas200622 			    "no machine SID: check idmap configuration");
3925772Sas200622 			return (rc);
3935772Sas200622 		}
3945331Samw 	}
3955331Samw 
396*7052Samw 	smb_ads_init();
3975331Samw 	if ((rc = mlsvc_init()) != 0) {
3985331Samw 		smbd_report("msrpc initialization failed");
3995331Samw 		return (rc);
4005331Samw 	}
4015331Samw 
4026432Sas200622 	if (smbd.s_secmode == SMB_SECMODE_DOMAIN) {
4036139Sjb150015 		if (!smb_match_netlogon_seqnum())
4046139Sjb150015 			smb_set_netlogon_cred();
4056139Sjb150015 		else
4066139Sjb150015 			(void) smbd_locate_dc(resource_domain, "");
4076139Sjb150015 
4086139Sjb150015 		(void) lsa_query_primary_domain_info();
4096139Sjb150015 	}
4106139Sjb150015 
4116771Sjb150015 	smbd.s_door_lmshr = smb_share_dsrv_start();
4126432Sas200622 	if (smbd.s_door_lmshr < 0) {
4135331Samw 		smbd_report("share initialization failed");
4145331Samw 	}
4155331Samw 
4166432Sas200622 	smbd.s_door_srv = smb_door_srv_start();
4176432Sas200622 	if (smbd.s_door_srv < 0)
4185331Samw 		return (rc);
4195331Samw 
4205331Samw 	if ((rc = smbd_refresh_init()) != 0)
4215331Samw 		return (rc);
4225331Samw 
4236139Sjb150015 	if (smb_getfqdomainname(fqdn, MAXHOSTNAMELEN) == 0)
4246600Sas200622 		(void) dyndns_update_core(fqdn);
4255331Samw 
4265331Samw 	(void) smbd_localtime_init();
4275331Samw 
428*7052Samw 	smbd.s_door_opipe = smbd_opipe_dsrv_start();
429*7052Samw 	if (smbd.s_door_opipe < 0) {
430*7052Samw 		smbd_report("opipe initialization failed %s",
4315521Sas200622 		    strerror(errno));
4325521Sas200622 		return (rc);
4335521Sas200622 	}
4345521Sas200622 
4355772Sas200622 	(void) smb_lgrp_start();
4366030Sjb150015 
437*7052Samw 	smb_pwd_init(B_TRUE);
4386030Sjb150015 
4396432Sas200622 	rc = smbd_kernel_bind();
4406432Sas200622 	if (rc != 0) {
4416139Sjb150015 		smbd_report("kernel bind error: %s", strerror(errno));
4426432Sas200622 		return (rc);
4436432Sas200622 	}
4445331Samw 
445*7052Samw 	return (smb_shr_start());
4465521Sas200622 }
4475521Sas200622 
4485331Samw /*
4495331Samw  * Close the kernel service and shutdown smbd services.
4505331Samw  * This function is registered with atexit(): ensure that anything
4515331Samw  * called from here is safe to be called multiple times.
4525331Samw  */
4535331Samw static void
4545331Samw smbd_service_fini(void)
4555331Samw {
456*7052Samw 	smbd_opipe_dsrv_stop();
4576432Sas200622 	smb_wka_fini();
4585331Samw 	smbd_refresh_fini();
4595331Samw 	smbd_kernel_unbind();
4605331Samw 	smb_door_srv_stop();
4616771Sjb150015 	smb_share_dsrv_stop();
462*7052Samw 	smb_shr_stop();
4635331Samw 	smb_nicmon_stop();
4645331Samw 	smb_idmap_stop();
4655772Sas200622 	smb_lgrp_stop();
4666139Sjb150015 	smb_ccache_remove(SMB_CCACHE_PATH);
4676030Sjb150015 	smb_pwd_fini();
4685521Sas200622 
4695331Samw }
4705331Samw 
4716139Sjb150015 
4725331Samw /*
4735331Samw  * smbd_refresh_init()
4745331Samw  *
4755331Samw  * SMB service refresh thread initialization.  This thread waits for a
4765331Samw  * refresh event and updates the daemon's view of the configuration
4775331Samw  * before going back to sleep.
4785331Samw  */
4795331Samw static int
4805331Samw smbd_refresh_init()
4815331Samw {
4826432Sas200622 	pthread_attr_t		tattr;
4836432Sas200622 	pthread_condattr_t	cattr;
4846432Sas200622 	int			rc;
4855331Samw 
4865331Samw 	(void) pthread_condattr_init(&cattr);
4875331Samw 	(void) pthread_cond_init(&refresh_cond, &cattr);
4885331Samw 	(void) pthread_condattr_destroy(&cattr);
4895331Samw 
4905331Samw 	(void) pthread_mutex_init(&refresh_mutex, NULL);
4915331Samw 
4925331Samw 	(void) pthread_attr_init(&tattr);
4935331Samw 	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
4945331Samw 	rc = pthread_create(&refresh_thr, &tattr, smbd_refresh_monitor, 0);
4955331Samw 	(void) pthread_attr_destroy(&tattr);
4966432Sas200622 
4975331Samw 	return (rc);
4985331Samw }
4995331Samw 
5005331Samw /*
5015331Samw  * smbd_refresh_fini()
5025331Samw  *
5035331Samw  * Stop the refresh thread.
5045331Samw  */
5055331Samw static void
5065331Samw smbd_refresh_fini()
5075331Samw {
5085331Samw 	(void) pthread_cancel(refresh_thr);
5095331Samw 
5105331Samw 	(void) pthread_cond_destroy(&refresh_cond);
5115331Samw 	(void) pthread_mutex_destroy(&refresh_mutex);
5125331Samw }
5135331Samw 
5145331Samw /*
5155331Samw  * smbd_refresh_monitor()
5165331Samw  *
5175331Samw  * Wait for a refresh event. When this thread wakes up, update the
5185331Samw  * smbd configuration from the SMF config information then go back to
5195331Samw  * wait for the next refresh.
5205331Samw  */
5215331Samw /*ARGSUSED*/
5225331Samw static void *
5235331Samw smbd_refresh_monitor(void *arg)
5245331Samw {
5256432Sas200622 	smb_io_t	smb_io;
5266432Sas200622 	size_t		len;
5276432Sas200622 	char		*new_dom;
5286432Sas200622 	int		new_secmod;
5296432Sas200622 	char		*old_dom;
5306432Sas200622 	char		fqdn[MAXHOSTNAMELEN];
5316432Sas200622 	int		rc = 0;
5325331Samw 
5336771Sjb150015 	bzero(&smb_io, sizeof (smb_io));
5346771Sjb150015 	smb_io.sio_version = SMB_IOC_VERSION;
5356771Sjb150015 
5365331Samw 	(void) pthread_mutex_lock(&refresh_mutex);
5375331Samw 	while (pthread_cond_wait(&refresh_cond, &refresh_mutex) == 0) {
5385331Samw 		/*
5395331Samw 		 * We've been woken up by a refresh event so go do
5405331Samw 		 * what is necessary.
5415331Samw 		 */
542*7052Samw 		smb_ads_refresh();
5436139Sjb150015 		smb_ccache_remove(SMB_CCACHE_PATH);
5446432Sas200622 
5456432Sas200622 		if ((rc = smb_getfqdomainname(fqdn, MAXHOSTNAMELEN)) != 0)
5466432Sas200622 			smbd_report("failed to get fully qualified domainname");
5476432Sas200622 
5486432Sas200622 		if (rc == 0)
5496432Sas200622 			/* Clear rev zone before creating if list */
5506432Sas200622 			if (dyndns_clear_rev_zone(fqdn) != 0)
5516432Sas200622 				smbd_report("failed to clear DNS reverse "
5526432Sas200622 				    "lookup zone");
5536432Sas200622 
5546432Sas200622 		/* re-initialize NIC table */
5556432Sas200622 		if (smb_nic_init() != 0)
5566432Sas200622 			smbd_report("failed to get NIC information");
5576432Sas200622 
5586432Sas200622 		smb_netbios_name_reconfig();
5596432Sas200622 		smb_browser_reconfig();
5606432Sas200622 
5616432Sas200622 		if (rc == 0)
5626600Sas200622 			if (dyndns_update_core(fqdn) != 0)
5636432Sas200622 				smbd_report("failed to update dynamic DNS");
5646432Sas200622 
5656139Sjb150015 		smb_set_netlogon_cred();
5666432Sas200622 
5676432Sas200622 		smb_load_kconfig(&smb_io.sio_data.cfg);
5686432Sas200622 		new_dom = smb_io.sio_data.cfg.skc_resource_domain;
5696432Sas200622 		old_dom = smbd.s_kcfg.skc_resource_domain;
5706432Sas200622 		len = strlen(old_dom);
5716432Sas200622 		new_secmod = smb_config_get_secmode();
5726432Sas200622 		if ((len != strlen(new_dom)) ||
5736432Sas200622 		    (strncasecmp(new_dom, old_dom, len)) ||
5746432Sas200622 		    (new_secmod != smbd.s_secmode) ||
5756432Sas200622 		    (smbd.s_drv_fd == -1)) {
5766432Sas200622 			/*
5776432Sas200622 			 * The active sessions have to be disconnected.
5786432Sas200622 			 */
5796432Sas200622 			smbd_kernel_unbind();
5806432Sas200622 			if (smbd_kernel_bind()) {
5816432Sas200622 				smbd_report("kernel bind error: %s",
5826432Sas200622 				    strerror(errno));
5836432Sas200622 			}
5846432Sas200622 			continue;
5856432Sas200622 		}
5866432Sas200622 
5876432Sas200622 		bcopy(&smb_io.sio_data.cfg, &smbd.s_kcfg, sizeof (smbd.s_kcfg));
5886432Sas200622 		if (ioctl(smbd.s_drv_fd, SMB_IOC_CONFIG, &smb_io) < 0) {
5895331Samw 			smbd_report("configuration update ioctl: %s",
5905331Samw 			    strerror(errno));
5915331Samw 		}
5925331Samw 	}
5935331Samw 	return (NULL);
5945331Samw }
5955331Samw 
5965331Samw 
5975331Samw /*
5985331Samw  * If the door has already been opened by another process (non-zero pid
5995331Samw  * in target), we assume that another smbd is already running.  If there
6005331Samw  * is a race here, it will be caught later when smbsrv is opened because
6015331Samw  * only one process is allowed to open the device at a time.
6025331Samw  */
6035331Samw static int
6045331Samw smbd_already_running(void)
6055331Samw {
6065331Samw 	door_info_t info;
6075331Samw 	int door;
6085331Samw 
6096139Sjb150015 	if ((door = open(SMB_DR_SVC_NAME, O_RDONLY)) < 0)
6105331Samw 		return (0);
6115331Samw 
6125331Samw 	if (door_info(door, &info) < 0)
6135331Samw 		return (0);
6145331Samw 
6155331Samw 	if (info.di_target > 0) {
6165331Samw 		smbd_report("already running: pid %ld\n", info.di_target);
6175331Samw 		(void) close(door);
6185331Samw 		return (1);
6195331Samw 	}
6205331Samw 
6215331Samw 	(void) close(door);
6225331Samw 	return (0);
6235331Samw }
6245331Samw 
6256139Sjb150015 /*
6266139Sjb150015  * smbd_kernel_bind
6276432Sas200622  *
6286432Sas200622  * This function open the smbsrv device and start the kernel service.
6296139Sjb150015  */
6305331Samw static int
6316432Sas200622 smbd_kernel_bind(void)
6325331Samw {
6336139Sjb150015 	smb_io_t	smb_io;
6346139Sjb150015 	int		rc;
6356139Sjb150015 
6366139Sjb150015 	bzero(&smb_io, sizeof (smb_io));
6376139Sjb150015 	smb_io.sio_version = SMB_IOC_VERSION;
6386139Sjb150015 
6395331Samw 	if (smbd.s_drv_fd != -1)
6405331Samw 		(void) close(smbd.s_drv_fd);
6415331Samw 
6425331Samw 	if ((smbd.s_drv_fd = open(DRV_DEVICE_PATH, 0)) < 0) {
6435331Samw 		smbd.s_drv_fd = -1;
6446139Sjb150015 		return (errno);
6456139Sjb150015 	}
6466432Sas200622 	smb_load_kconfig(&smbd.s_kcfg);
6476432Sas200622 	bcopy(&smbd.s_kcfg, &smb_io.sio_data.cfg, sizeof (smb_io.sio_data.cfg));
6486139Sjb150015 	if (ioctl(smbd.s_drv_fd, SMB_IOC_CONFIG, &smb_io) < 0) {
6496139Sjb150015 		(void) close(smbd.s_drv_fd);
6506139Sjb150015 		smbd.s_drv_fd = -1;
6516139Sjb150015 		return (errno);
6526139Sjb150015 	}
6536139Sjb150015 	smb_io.sio_data.gmtoff = (uint32_t)(-altzone);
6546139Sjb150015 	if (ioctl(smbd.s_drv_fd, SMB_IOC_GMTOFF, &smb_io) < 0) {
6556139Sjb150015 		(void) close(smbd.s_drv_fd);
6566139Sjb150015 		smbd.s_drv_fd = -1;
6576139Sjb150015 		return (errno);
6585331Samw 	}
659*7052Samw 	smb_io.sio_data.start.opipe = smbd.s_door_opipe;
6606432Sas200622 	smb_io.sio_data.start.lmshrd = smbd.s_door_lmshr;
6616432Sas200622 	smb_io.sio_data.start.udoor = smbd.s_door_srv;
6626139Sjb150015 	if (ioctl(smbd.s_drv_fd, SMB_IOC_START, &smb_io) < 0) {
6636139Sjb150015 		(void) close(smbd.s_drv_fd);
6646139Sjb150015 		smbd.s_drv_fd = -1;
6656139Sjb150015 		return (errno);
6666139Sjb150015 	}
6676139Sjb150015 
6686139Sjb150015 	rc = pthread_create(&nbt_listener, NULL, smbd_nbt_listener, NULL);
6696139Sjb150015 	if (rc == 0) {
6706139Sjb150015 		rc = pthread_create(&tcp_listener, NULL, smbd_tcp_listener,
6716139Sjb150015 		    NULL);
6726432Sas200622 		if (rc == 0) {
6736432Sas200622 			smbd.s_kbound = B_TRUE;
6746139Sjb150015 			return (0);
6756432Sas200622 		}
6766432Sas200622 	}
6776432Sas200622 
6786432Sas200622 	rc = pthread_create(&nbt_listener, NULL, smbd_nbt_listener, NULL);
6796432Sas200622 	if (rc == 0) {
6806432Sas200622 		rc = pthread_create(&tcp_listener, NULL, smbd_tcp_listener,
6816432Sas200622 		    NULL);
6826432Sas200622 		if (rc == 0) {
6836432Sas200622 			smbd.s_kbound = B_TRUE;
6846432Sas200622 			return (0);
6856432Sas200622 		}
6866139Sjb150015 	}
6876139Sjb150015 	(void) close(smbd.s_drv_fd);
6886139Sjb150015 	smbd.s_drv_fd = -1;
6896139Sjb150015 	return (rc);
6905331Samw }
6915331Samw 
6926139Sjb150015 /*
6936139Sjb150015  * smbd_kernel_unbind
6946139Sjb150015  */
6956139Sjb150015 static void
6966139Sjb150015 smbd_kernel_unbind(void)
6976139Sjb150015 {
6986139Sjb150015 	if (smbd.s_drv_fd != -1) {
6996139Sjb150015 		(void) close(smbd.s_drv_fd);
7006139Sjb150015 		smbd.s_drv_fd = -1;
7016432Sas200622 		smbd.s_kbound = B_FALSE;
7026139Sjb150015 	}
7036139Sjb150015 }
7045331Samw 
7055331Samw /*
7065331Samw  * Initialization of the localtime thread.
7075331Samw  * Returns 0 on success, an error number if thread creation fails.
7085331Samw  */
7095331Samw 
7105331Samw int
7115331Samw smbd_localtime_init(void)
7125331Samw {
7135331Samw 	pthread_attr_t tattr;
7145331Samw 	int rc;
7155331Samw 
7165331Samw 	(void) pthread_attr_init(&tattr);
7175331Samw 	(void) pthread_attr_setdetachstate(&tattr, PTHREAD_CREATE_DETACHED);
7185331Samw 	rc = pthread_create(&localtime_thr, &tattr, smbd_localtime_monitor, 0);
7195331Samw 	(void) pthread_attr_destroy(&tattr);
7205331Samw 	return (rc);
7215331Samw }
7225331Samw 
7235331Samw /*
7245331Samw  * Local time thread to kernel land.
7255331Samw  * Send local gmtoff to kernel module one time at startup
7265331Samw  * and each time it changes (up to twice a year).
7275331Samw  * Local gmtoff is checked once every 15 minutes and
7285331Samw  * since some timezones are aligned on half and qtr hour boundaries,
7295331Samw  * once an hour would likely suffice.
7305331Samw  */
7315331Samw 
7325331Samw /*ARGSUSED*/
7335331Samw static void *
7345331Samw smbd_localtime_monitor(void *arg)
7355331Samw {
7365331Samw 	struct tm local_tm;
7375331Samw 	time_t secs, gmtoff;
7385331Samw 	time_t last_gmtoff = -1;
7395331Samw 	int timeout;
7405331Samw 
7415331Samw 	for (;;) {
7425331Samw 		gmtoff = -altzone;
7435331Samw 
7445331Samw 		if ((last_gmtoff != gmtoff) && (smbd.s_drv_fd != -1)) {
7455331Samw 			if (ioctl(smbd.s_drv_fd, SMB_IOC_GMTOFF, &gmtoff) < 0) {
7465331Samw 				smbd_report("localtime ioctl: %s",
7475331Samw 				    strerror(errno));
7485331Samw 			}
7495331Samw 		}
7505331Samw 
7515331Samw 		/*
7525331Samw 		 * Align the next iteration on a fifteen minute boundary.
7535331Samw 		 */
7545331Samw 		secs = time(0);
7555331Samw 		(void) localtime_r(&secs, &local_tm);
7565331Samw 		timeout = ((15 - (local_tm.tm_min % 15)) * SECSPERMIN);
7575331Samw 		(void) sleep(timeout);
7585331Samw 
7595331Samw 		last_gmtoff = gmtoff;
7605331Samw 	}
7615331Samw 
7625331Samw 	/*NOTREACHED*/
7635331Samw 	return (NULL);
7645331Samw }
7655331Samw 
7665331Samw static void
7675331Samw smbd_sig_handler(int sigval)
7685331Samw {
7695331Samw 	if (smbd.s_sigval == 0)
7705331Samw 		smbd.s_sigval = sigval;
7715331Samw }
7725331Samw 
7735331Samw /*
7745331Samw  * Set up configuration options and parse the command line.
7755331Samw  * This function will determine if we will run as a daemon
7765331Samw  * or in the foreground.
7775331Samw  *
7785331Samw  * Failure to find a uid or gid results in using the default (0).
7795331Samw  */
7805331Samw static int
7815331Samw smbd_setup_options(int argc, char *argv[])
7825331Samw {
7835331Samw 	struct passwd *pwd;
7845331Samw 	struct group *grp;
7855331Samw 	int c;
7865331Samw 
7875331Samw 	if ((pwd = getpwnam("root")) != NULL)
7885331Samw 		smbd.s_uid = pwd->pw_uid;
7895331Samw 
7905331Samw 	if ((grp = getgrnam("sys")) != NULL)
7915331Samw 		smbd.s_gid = grp->gr_gid;
7925331Samw 
7935772Sas200622 	smbd.s_fg = smb_config_get_fg_flag();
7945331Samw 
7955331Samw 	while ((c = getopt(argc, argv, ":f")) != -1) {
7965331Samw 		switch (c) {
7975331Samw 		case 'f':
7985331Samw 			smbd.s_fg = 1;
7995331Samw 			break;
8005331Samw 
8015331Samw 		case ':':
8025331Samw 		case '?':
8035331Samw 		default:
8045331Samw 			smbd_usage(stderr);
8055331Samw 			return (-1);
8065331Samw 		}
8075331Samw 	}
8085331Samw 
8095331Samw 	return (0);
8105331Samw }
8115331Samw 
8125331Samw static void
8135331Samw smbd_usage(FILE *fp)
8145331Samw {
8155331Samw 	static char *help[] = {
8165331Samw 		"-f  run program in foreground"
8175331Samw 	};
8185331Samw 
8195331Samw 	int i;
8205331Samw 
8215331Samw 	(void) fprintf(fp, "Usage: %s [-f]\n", smbd.s_pname);
8225331Samw 
8235331Samw 	for (i = 0; i < sizeof (help)/sizeof (help[0]); ++i)
8245331Samw 		(void) fprintf(fp, "    %s\n", help[i]);
8255331Samw }
8265331Samw 
8275331Samw static void
8285331Samw smbd_report(const char *fmt, ...)
8295331Samw {
8305331Samw 	char buf[128];
8315331Samw 	va_list ap;
8325331Samw 
8335331Samw 	if (fmt == NULL)
8345331Samw 		return;
8355331Samw 
8365331Samw 	va_start(ap, fmt);
8375331Samw 	(void) vsnprintf(buf, 128, fmt, ap);
8385331Samw 	va_end(ap);
8395331Samw 
8405331Samw 	(void) fprintf(stderr, "smbd: %s\n", buf);
8415331Samw }
8425331Samw 
8435331Samw /*
8445331Samw  * Enable libumem debugging by default on DEBUG builds.
8455331Samw  */
8465331Samw #ifdef DEBUG
8475331Samw const char *
8485331Samw _umem_debug_init(void)
8495331Samw {
8505331Samw 	return ("default,verbose"); /* $UMEM_DEBUG setting */
8515331Samw }
8525331Samw 
8535331Samw const char *
8545331Samw _umem_logging_init(void)
8555331Samw {
8565331Samw 	return ("fail,contents"); /* $UMEM_LOGGING setting */
8575331Samw }
8585331Samw #endif
859