nfs_iod.c revision 1.3.2.2
1 1.3.2.2 yamt /* $NetBSD: nfs_iod.c,v 1.3.2.2 2009/05/04 08:14:22 yamt Exp $ */ 2 1.3.2.2 yamt 3 1.3.2.2 yamt /* 4 1.3.2.2 yamt * Copyright (c) 1989, 1993 5 1.3.2.2 yamt * The Regents of the University of California. All rights reserved. 6 1.3.2.2 yamt * 7 1.3.2.2 yamt * This code is derived from software contributed to Berkeley by 8 1.3.2.2 yamt * Rick Macklem at The University of Guelph. 9 1.3.2.2 yamt * 10 1.3.2.2 yamt * Redistribution and use in source and binary forms, with or without 11 1.3.2.2 yamt * modification, are permitted provided that the following conditions 12 1.3.2.2 yamt * are met: 13 1.3.2.2 yamt * 1. Redistributions of source code must retain the above copyright 14 1.3.2.2 yamt * notice, this list of conditions and the following disclaimer. 15 1.3.2.2 yamt * 2. Redistributions in binary form must reproduce the above copyright 16 1.3.2.2 yamt * notice, this list of conditions and the following disclaimer in the 17 1.3.2.2 yamt * documentation and/or other materials provided with the distribution. 18 1.3.2.2 yamt * 3. Neither the name of the University nor the names of its contributors 19 1.3.2.2 yamt * may be used to endorse or promote products derived from this software 20 1.3.2.2 yamt * without specific prior written permission. 21 1.3.2.2 yamt * 22 1.3.2.2 yamt * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 23 1.3.2.2 yamt * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 24 1.3.2.2 yamt * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 25 1.3.2.2 yamt * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 26 1.3.2.2 yamt * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 1.3.2.2 yamt * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 1.3.2.2 yamt * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 1.3.2.2 yamt * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 1.3.2.2 yamt * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 1.3.2.2 yamt * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 1.3.2.2 yamt * SUCH DAMAGE. 33 1.3.2.2 yamt * 34 1.3.2.2 yamt * @(#)nfs_syscalls.c 8.5 (Berkeley) 3/30/95 35 1.3.2.2 yamt */ 36 1.3.2.2 yamt 37 1.3.2.2 yamt #include <sys/cdefs.h> 38 1.3.2.2 yamt __KERNEL_RCSID(0, "$NetBSD: nfs_iod.c,v 1.3.2.2 2009/05/04 08:14:22 yamt Exp $"); 39 1.3.2.2 yamt 40 1.3.2.2 yamt #include <sys/param.h> 41 1.3.2.2 yamt #include <sys/systm.h> 42 1.3.2.2 yamt #include <sys/kernel.h> 43 1.3.2.2 yamt #include <sys/file.h> 44 1.3.2.2 yamt #include <sys/stat.h> 45 1.3.2.2 yamt #include <sys/vnode.h> 46 1.3.2.2 yamt #include <sys/mount.h> 47 1.3.2.2 yamt #include <sys/proc.h> 48 1.3.2.2 yamt #include <sys/uio.h> 49 1.3.2.2 yamt #include <sys/malloc.h> 50 1.3.2.2 yamt #include <sys/kmem.h> 51 1.3.2.2 yamt #include <sys/buf.h> 52 1.3.2.2 yamt #include <sys/mbuf.h> 53 1.3.2.2 yamt #include <sys/socket.h> 54 1.3.2.2 yamt #include <sys/socketvar.h> 55 1.3.2.2 yamt #include <sys/signalvar.h> 56 1.3.2.2 yamt #include <sys/domain.h> 57 1.3.2.2 yamt #include <sys/protosw.h> 58 1.3.2.2 yamt #include <sys/namei.h> 59 1.3.2.2 yamt #include <sys/syslog.h> 60 1.3.2.2 yamt #include <sys/filedesc.h> 61 1.3.2.2 yamt #include <sys/kthread.h> 62 1.3.2.2 yamt #include <sys/kauth.h> 63 1.3.2.2 yamt #include <sys/syscallargs.h> 64 1.3.2.2 yamt 65 1.3.2.2 yamt #include <netinet/in.h> 66 1.3.2.2 yamt #include <netinet/tcp.h> 67 1.3.2.2 yamt #include <nfs/xdr_subs.h> 68 1.3.2.2 yamt #include <nfs/rpcv2.h> 69 1.3.2.2 yamt #include <nfs/nfsproto.h> 70 1.3.2.2 yamt #include <nfs/nfs.h> 71 1.3.2.2 yamt #include <nfs/nfsm_subs.h> 72 1.3.2.2 yamt #include <nfs/nfsrvcache.h> 73 1.3.2.2 yamt #include <nfs/nfsmount.h> 74 1.3.2.2 yamt #include <nfs/nfsnode.h> 75 1.3.2.2 yamt #include <nfs/nfsrtt.h> 76 1.3.2.2 yamt #include <nfs/nfs_var.h> 77 1.3.2.2 yamt 78 1.3.2.2 yamt int nuidhash_max = NFS_MAXUIDHASH; 79 1.3.2.2 yamt 80 1.3.2.2 yamt /* 81 1.3.2.2 yamt * locking order: 82 1.3.2.2 yamt * nfs_iodlist_lock -> nid_lock -> nm_lock 83 1.3.2.2 yamt */ 84 1.3.2.2 yamt kmutex_t nfs_iodlist_lock; 85 1.3.2.2 yamt struct nfs_iodlist nfs_iodlist_idle; 86 1.3.2.2 yamt struct nfs_iodlist nfs_iodlist_all; 87 1.3.2.2 yamt int nfs_niothreads = -1; /* == "0, and has never been set" */ 88 1.3.2.2 yamt int nfs_defect = 0; 89 1.3.2.2 yamt 90 1.3.2.2 yamt /* 91 1.3.2.2 yamt * Asynchronous I/O threads for client nfs. 92 1.3.2.2 yamt * They do read-ahead and write-behind operations on the block I/O cache. 93 1.3.2.2 yamt * Never returns unless it fails or gets killed. 94 1.3.2.2 yamt */ 95 1.3.2.2 yamt 96 1.3.2.2 yamt static void 97 1.3.2.2 yamt nfssvc_iod(void *arg) 98 1.3.2.2 yamt { 99 1.3.2.2 yamt struct buf *bp; 100 1.3.2.2 yamt struct nfs_iod *myiod; 101 1.3.2.2 yamt struct nfsmount *nmp; 102 1.3.2.2 yamt 103 1.3.2.2 yamt myiod = kmem_alloc(sizeof(*myiod), KM_SLEEP); 104 1.3.2.2 yamt mutex_init(&myiod->nid_lock, MUTEX_DEFAULT, IPL_NONE); 105 1.3.2.2 yamt cv_init(&myiod->nid_cv, "nfsiod"); 106 1.3.2.2 yamt myiod->nid_exiting = false; 107 1.3.2.2 yamt myiod->nid_mount = NULL; 108 1.3.2.2 yamt mutex_enter(&nfs_iodlist_lock); 109 1.3.2.2 yamt LIST_INSERT_HEAD(&nfs_iodlist_all, myiod, nid_all); 110 1.3.2.2 yamt mutex_exit(&nfs_iodlist_lock); 111 1.3.2.2 yamt 112 1.3.2.2 yamt for (;;) { 113 1.3.2.2 yamt mutex_enter(&nfs_iodlist_lock); 114 1.3.2.2 yamt LIST_INSERT_HEAD(&nfs_iodlist_idle, myiod, nid_idle); 115 1.3.2.2 yamt mutex_exit(&nfs_iodlist_lock); 116 1.3.2.2 yamt 117 1.3.2.2 yamt mutex_enter(&myiod->nid_lock); 118 1.3.2.2 yamt while (/*CONSTCOND*/ true) { 119 1.3.2.2 yamt nmp = myiod->nid_mount; 120 1.3.2.2 yamt if (nmp) { 121 1.3.2.2 yamt myiod->nid_mount = NULL; 122 1.3.2.2 yamt break; 123 1.3.2.2 yamt } 124 1.3.2.2 yamt if (__predict_false(myiod->nid_exiting)) { 125 1.3.2.2 yamt /* 126 1.3.2.2 yamt * drop nid_lock to preserve locking order. 127 1.3.2.2 yamt */ 128 1.3.2.2 yamt mutex_exit(&myiod->nid_lock); 129 1.3.2.2 yamt mutex_enter(&nfs_iodlist_lock); 130 1.3.2.2 yamt mutex_enter(&myiod->nid_lock); 131 1.3.2.2 yamt /* 132 1.3.2.2 yamt * recheck nid_mount because nfs_asyncio can 133 1.3.2.2 yamt * pick us in the meantime as we are still on 134 1.3.2.2 yamt * nfs_iodlist_lock. 135 1.3.2.2 yamt */ 136 1.3.2.2 yamt if (myiod->nid_mount != NULL) { 137 1.3.2.2 yamt mutex_exit(&nfs_iodlist_lock); 138 1.3.2.2 yamt continue; 139 1.3.2.2 yamt } 140 1.3.2.2 yamt LIST_REMOVE(myiod, nid_idle); 141 1.3.2.2 yamt mutex_exit(&nfs_iodlist_lock); 142 1.3.2.2 yamt goto quit; 143 1.3.2.2 yamt } 144 1.3.2.2 yamt cv_wait(&myiod->nid_cv, &myiod->nid_lock); 145 1.3.2.2 yamt } 146 1.3.2.2 yamt mutex_exit(&myiod->nid_lock); 147 1.3.2.2 yamt 148 1.3.2.2 yamt mutex_enter(&nmp->nm_lock); 149 1.3.2.2 yamt while ((bp = TAILQ_FIRST(&nmp->nm_bufq)) != NULL) { 150 1.3.2.2 yamt /* Take one off the front of the list */ 151 1.3.2.2 yamt TAILQ_REMOVE(&nmp->nm_bufq, bp, b_freelist); 152 1.3.2.2 yamt nmp->nm_bufqlen--; 153 1.3.2.2 yamt if (nmp->nm_bufqlen < 2 * nmp->nm_bufqiods) { 154 1.3.2.2 yamt cv_broadcast(&nmp->nm_aiocv); 155 1.3.2.2 yamt } 156 1.3.2.2 yamt mutex_exit(&nmp->nm_lock); 157 1.3.2.2 yamt KERNEL_LOCK(1, curlwp); 158 1.3.2.2 yamt (void)nfs_doio(bp); 159 1.3.2.2 yamt KERNEL_UNLOCK_LAST(curlwp); 160 1.3.2.2 yamt mutex_enter(&nmp->nm_lock); 161 1.3.2.2 yamt /* 162 1.3.2.2 yamt * If there are more than one iod on this mount, 163 1.3.2.2 yamt * then defect so that the iods can be shared out 164 1.3.2.2 yamt * fairly between the mounts 165 1.3.2.2 yamt */ 166 1.3.2.2 yamt if (nfs_defect && nmp->nm_bufqiods > 1) { 167 1.3.2.2 yamt break; 168 1.3.2.2 yamt } 169 1.3.2.2 yamt } 170 1.3.2.2 yamt KASSERT(nmp->nm_bufqiods > 0); 171 1.3.2.2 yamt nmp->nm_bufqiods--; 172 1.3.2.2 yamt mutex_exit(&nmp->nm_lock); 173 1.3.2.2 yamt } 174 1.3.2.2 yamt quit: 175 1.3.2.2 yamt KASSERT(myiod->nid_mount == NULL); 176 1.3.2.2 yamt mutex_exit(&myiod->nid_lock); 177 1.3.2.2 yamt 178 1.3.2.2 yamt cv_destroy(&myiod->nid_cv); 179 1.3.2.2 yamt mutex_destroy(&myiod->nid_lock); 180 1.3.2.2 yamt kmem_free(myiod, sizeof(*myiod)); 181 1.3.2.2 yamt 182 1.3.2.2 yamt kthread_exit(0); 183 1.3.2.2 yamt } 184 1.3.2.2 yamt 185 1.3.2.2 yamt void 186 1.3.2.2 yamt nfs_iodinit(void) 187 1.3.2.2 yamt { 188 1.3.2.2 yamt 189 1.3.2.2 yamt mutex_init(&nfs_iodlist_lock, MUTEX_DEFAULT, IPL_NONE); 190 1.3.2.2 yamt LIST_INIT(&nfs_iodlist_all); 191 1.3.2.2 yamt LIST_INIT(&nfs_iodlist_idle); 192 1.3.2.2 yamt } 193 1.3.2.2 yamt 194 1.3.2.2 yamt void 195 1.3.2.2 yamt nfs_iodfini(void) 196 1.3.2.2 yamt { 197 1.3.2.2 yamt int error; 198 1.3.2.2 yamt 199 1.3.2.2 yamt error = nfs_set_niothreads(0); 200 1.3.2.2 yamt KASSERT(error == 0); 201 1.3.2.2 yamt mutex_destroy(&nfs_iodlist_lock); 202 1.3.2.2 yamt } 203 1.3.2.2 yamt 204 1.3.2.2 yamt int 205 1.3.2.2 yamt nfs_set_niothreads(int newval) 206 1.3.2.2 yamt { 207 1.3.2.2 yamt struct nfs_iod *nid; 208 1.3.2.2 yamt int error = 0; 209 1.3.2.2 yamt int hold_count; 210 1.3.2.2 yamt 211 1.3.2.2 yamt KERNEL_UNLOCK_ALL(curlwp, &hold_count); 212 1.3.2.2 yamt 213 1.3.2.2 yamt mutex_enter(&nfs_iodlist_lock); 214 1.3.2.2 yamt /* clamp to sane range */ 215 1.3.2.2 yamt nfs_niothreads = max(0, min(newval, NFS_MAXASYNCDAEMON)); 216 1.3.2.2 yamt 217 1.3.2.2 yamt while (nfs_numasync != nfs_niothreads && error == 0) { 218 1.3.2.2 yamt while (nfs_numasync < nfs_niothreads) { 219 1.3.2.2 yamt 220 1.3.2.2 yamt /* 221 1.3.2.2 yamt * kthread_create can wait for pagedaemon and 222 1.3.2.2 yamt * pagedaemon can wait for nfsiod which needs to acquire 223 1.3.2.2 yamt * nfs_iodlist_lock. 224 1.3.2.2 yamt */ 225 1.3.2.2 yamt 226 1.3.2.2 yamt mutex_exit(&nfs_iodlist_lock); 227 1.3.2.2 yamt error = kthread_create(PRI_NONE, KTHREAD_MPSAFE, NULL, 228 1.3.2.2 yamt nfssvc_iod, NULL, NULL, "nfsio"); 229 1.3.2.2 yamt mutex_enter(&nfs_iodlist_lock); 230 1.3.2.2 yamt if (error) { 231 1.3.2.2 yamt /* give up */ 232 1.3.2.2 yamt nfs_niothreads = nfs_numasync; 233 1.3.2.2 yamt break; 234 1.3.2.2 yamt } 235 1.3.2.2 yamt nfs_numasync++; 236 1.3.2.2 yamt } 237 1.3.2.2 yamt while (nfs_numasync > nfs_niothreads) { 238 1.3.2.2 yamt nid = LIST_FIRST(&nfs_iodlist_all); 239 1.3.2.2 yamt if (nid == NULL) { 240 1.3.2.2 yamt /* iod has not started yet. */ 241 1.3.2.2 yamt kpause("nfsiorm", false, hz, &nfs_iodlist_lock); 242 1.3.2.2 yamt continue; 243 1.3.2.2 yamt } 244 1.3.2.2 yamt LIST_REMOVE(nid, nid_all); 245 1.3.2.2 yamt mutex_enter(&nid->nid_lock); 246 1.3.2.2 yamt KASSERT(!nid->nid_exiting); 247 1.3.2.2 yamt nid->nid_exiting = true; 248 1.3.2.2 yamt cv_signal(&nid->nid_cv); 249 1.3.2.2 yamt mutex_exit(&nid->nid_lock); 250 1.3.2.2 yamt nfs_numasync--; 251 1.3.2.2 yamt } 252 1.3.2.2 yamt } 253 1.3.2.2 yamt mutex_exit(&nfs_iodlist_lock); 254 1.3.2.2 yamt 255 1.3.2.2 yamt KERNEL_LOCK(hold_count, curlwp); 256 1.3.2.2 yamt return error; 257 1.3.2.2 yamt } 258 1.3.2.2 yamt 259 1.3.2.2 yamt /* 260 1.3.2.2 yamt * Get an authorization string for the uid by having the mount_nfs sitting 261 1.3.2.2 yamt * on this mount point porpous out of the kernel and do it. 262 1.3.2.2 yamt */ 263 1.3.2.2 yamt int 264 1.3.2.2 yamt nfs_getauth(struct nfsmount *nmp, struct nfsreq *rep, kauth_cred_t cred, char **auth_str, int *auth_len, char *verf_str, int *verf_len, NFSKERBKEY_T key) 265 1.3.2.2 yamt /* key: return session key */ 266 1.3.2.2 yamt { 267 1.3.2.2 yamt int error = 0; 268 1.3.2.2 yamt 269 1.3.2.2 yamt while ((nmp->nm_iflag & NFSMNT_WAITAUTH) == 0) { 270 1.3.2.2 yamt nmp->nm_iflag |= NFSMNT_WANTAUTH; 271 1.3.2.2 yamt (void) tsleep((void *)&nmp->nm_authtype, PSOCK, 272 1.3.2.2 yamt "nfsauth1", 2 * hz); 273 1.3.2.2 yamt error = nfs_sigintr(nmp, rep, rep->r_lwp); 274 1.3.2.2 yamt if (error) { 275 1.3.2.2 yamt nmp->nm_iflag &= ~NFSMNT_WANTAUTH; 276 1.3.2.2 yamt return (error); 277 1.3.2.2 yamt } 278 1.3.2.2 yamt } 279 1.3.2.2 yamt nmp->nm_iflag &= ~(NFSMNT_WAITAUTH | NFSMNT_WANTAUTH); 280 1.3.2.2 yamt nmp->nm_authstr = *auth_str = (char *)malloc(RPCAUTH_MAXSIZ, M_TEMP, M_WAITOK); 281 1.3.2.2 yamt nmp->nm_authlen = RPCAUTH_MAXSIZ; 282 1.3.2.2 yamt nmp->nm_verfstr = verf_str; 283 1.3.2.2 yamt nmp->nm_verflen = *verf_len; 284 1.3.2.2 yamt nmp->nm_authuid = kauth_cred_geteuid(cred); 285 1.3.2.2 yamt wakeup((void *)&nmp->nm_authstr); 286 1.3.2.2 yamt 287 1.3.2.2 yamt /* 288 1.3.2.2 yamt * And wait for mount_nfs to do its stuff. 289 1.3.2.2 yamt */ 290 1.3.2.2 yamt while ((nmp->nm_iflag & NFSMNT_HASAUTH) == 0 && error == 0) { 291 1.3.2.2 yamt (void) tsleep((void *)&nmp->nm_authlen, PSOCK, 292 1.3.2.2 yamt "nfsauth2", 2 * hz); 293 1.3.2.2 yamt error = nfs_sigintr(nmp, rep, rep->r_lwp); 294 1.3.2.2 yamt } 295 1.3.2.2 yamt if (nmp->nm_iflag & NFSMNT_AUTHERR) { 296 1.3.2.2 yamt nmp->nm_iflag &= ~NFSMNT_AUTHERR; 297 1.3.2.2 yamt error = EAUTH; 298 1.3.2.2 yamt } 299 1.3.2.2 yamt if (error) 300 1.3.2.2 yamt free((void *)*auth_str, M_TEMP); 301 1.3.2.2 yamt else { 302 1.3.2.2 yamt *auth_len = nmp->nm_authlen; 303 1.3.2.2 yamt *verf_len = nmp->nm_verflen; 304 1.3.2.2 yamt memcpy(key, nmp->nm_key, sizeof (NFSKERBKEY_T)); 305 1.3.2.2 yamt } 306 1.3.2.2 yamt nmp->nm_iflag &= ~NFSMNT_HASAUTH; 307 1.3.2.2 yamt nmp->nm_iflag |= NFSMNT_WAITAUTH; 308 1.3.2.2 yamt if (nmp->nm_iflag & NFSMNT_WANTAUTH) { 309 1.3.2.2 yamt nmp->nm_iflag &= ~NFSMNT_WANTAUTH; 310 1.3.2.2 yamt wakeup((void *)&nmp->nm_authtype); 311 1.3.2.2 yamt } 312 1.3.2.2 yamt return (error); 313 1.3.2.2 yamt } 314 1.3.2.2 yamt 315 1.3.2.2 yamt /* 316 1.3.2.2 yamt * Get a nickname authenticator and verifier. 317 1.3.2.2 yamt */ 318 1.3.2.2 yamt int 319 1.3.2.2 yamt nfs_getnickauth(struct nfsmount *nmp, kauth_cred_t cred, char **auth_str, 320 1.3.2.2 yamt int *auth_len, char *verf_str, int verf_len) 321 1.3.2.2 yamt { 322 1.3.2.2 yamt struct timeval ktvin, ktvout, tv; 323 1.3.2.2 yamt struct nfsuid *nuidp; 324 1.3.2.2 yamt u_int32_t *nickp, *verfp; 325 1.3.2.2 yamt 326 1.3.2.2 yamt memset(&ktvout, 0, sizeof ktvout); /* XXX gcc */ 327 1.3.2.2 yamt 328 1.3.2.2 yamt #ifdef DIAGNOSTIC 329 1.3.2.2 yamt if (verf_len < (4 * NFSX_UNSIGNED)) 330 1.3.2.2 yamt panic("nfs_getnickauth verf too small"); 331 1.3.2.2 yamt #endif 332 1.3.2.2 yamt LIST_FOREACH(nuidp, NMUIDHASH(nmp, kauth_cred_geteuid(cred)), nu_hash) { 333 1.3.2.2 yamt if (kauth_cred_geteuid(nuidp->nu_cr) == kauth_cred_geteuid(cred)) 334 1.3.2.2 yamt break; 335 1.3.2.2 yamt } 336 1.3.2.2 yamt if (!nuidp || nuidp->nu_expire < time_second) 337 1.3.2.2 yamt return (EACCES); 338 1.3.2.2 yamt 339 1.3.2.2 yamt /* 340 1.3.2.2 yamt * Move to the end of the lru list (end of lru == most recently used). 341 1.3.2.2 yamt */ 342 1.3.2.2 yamt TAILQ_REMOVE(&nmp->nm_uidlruhead, nuidp, nu_lru); 343 1.3.2.2 yamt TAILQ_INSERT_TAIL(&nmp->nm_uidlruhead, nuidp, nu_lru); 344 1.3.2.2 yamt 345 1.3.2.2 yamt nickp = (u_int32_t *)malloc(2 * NFSX_UNSIGNED, M_TEMP, M_WAITOK); 346 1.3.2.2 yamt *nickp++ = txdr_unsigned(RPCAKN_NICKNAME); 347 1.3.2.2 yamt *nickp = txdr_unsigned(nuidp->nu_nickname); 348 1.3.2.2 yamt *auth_str = (char *)nickp; 349 1.3.2.2 yamt *auth_len = 2 * NFSX_UNSIGNED; 350 1.3.2.2 yamt 351 1.3.2.2 yamt /* 352 1.3.2.2 yamt * Now we must encrypt the verifier and package it up. 353 1.3.2.2 yamt */ 354 1.3.2.2 yamt verfp = (u_int32_t *)verf_str; 355 1.3.2.2 yamt *verfp++ = txdr_unsigned(RPCAKN_NICKNAME); 356 1.3.2.2 yamt getmicrotime(&tv); 357 1.3.2.2 yamt if (tv.tv_sec > nuidp->nu_timestamp.tv_sec || 358 1.3.2.2 yamt (tv.tv_sec == nuidp->nu_timestamp.tv_sec && 359 1.3.2.2 yamt tv.tv_usec > nuidp->nu_timestamp.tv_usec)) 360 1.3.2.2 yamt nuidp->nu_timestamp = tv; 361 1.3.2.2 yamt else 362 1.3.2.2 yamt nuidp->nu_timestamp.tv_usec++; 363 1.3.2.2 yamt ktvin.tv_sec = txdr_unsigned(nuidp->nu_timestamp.tv_sec); 364 1.3.2.2 yamt ktvin.tv_usec = txdr_unsigned(nuidp->nu_timestamp.tv_usec); 365 1.3.2.2 yamt 366 1.3.2.2 yamt /* 367 1.3.2.2 yamt * Now encrypt the timestamp verifier in ecb mode using the session 368 1.3.2.2 yamt * key. 369 1.3.2.2 yamt */ 370 1.3.2.2 yamt #ifdef NFSKERB 371 1.3.2.2 yamt XXX 372 1.3.2.2 yamt #endif 373 1.3.2.2 yamt 374 1.3.2.2 yamt *verfp++ = ktvout.tv_sec; 375 1.3.2.2 yamt *verfp++ = ktvout.tv_usec; 376 1.3.2.2 yamt *verfp = 0; 377 1.3.2.2 yamt return (0); 378 1.3.2.2 yamt } 379 1.3.2.2 yamt 380 1.3.2.2 yamt /* 381 1.3.2.2 yamt * Save the current nickname in a hash list entry on the mount point. 382 1.3.2.2 yamt */ 383 1.3.2.2 yamt int 384 1.3.2.2 yamt nfs_savenickauth(struct nfsmount *nmp, kauth_cred_t cred, int len, NFSKERBKEY_T key, struct mbuf **mdp, char **dposp, struct mbuf *mrep) 385 1.3.2.2 yamt { 386 1.3.2.2 yamt struct nfsuid *nuidp; 387 1.3.2.2 yamt u_int32_t *tl; 388 1.3.2.2 yamt int32_t t1; 389 1.3.2.2 yamt struct mbuf *md = *mdp; 390 1.3.2.2 yamt struct timeval ktvin, ktvout; 391 1.3.2.2 yamt u_int32_t nick; 392 1.3.2.2 yamt char *dpos = *dposp, *cp2; 393 1.3.2.2 yamt int deltasec, error = 0; 394 1.3.2.2 yamt 395 1.3.2.2 yamt memset(&ktvout, 0, sizeof ktvout); /* XXX gcc */ 396 1.3.2.2 yamt 397 1.3.2.2 yamt if (len == (3 * NFSX_UNSIGNED)) { 398 1.3.2.2 yamt nfsm_dissect(tl, u_int32_t *, 3 * NFSX_UNSIGNED); 399 1.3.2.2 yamt ktvin.tv_sec = *tl++; 400 1.3.2.2 yamt ktvin.tv_usec = *tl++; 401 1.3.2.2 yamt nick = fxdr_unsigned(u_int32_t, *tl); 402 1.3.2.2 yamt 403 1.3.2.2 yamt /* 404 1.3.2.2 yamt * Decrypt the timestamp in ecb mode. 405 1.3.2.2 yamt */ 406 1.3.2.2 yamt #ifdef NFSKERB 407 1.3.2.2 yamt XXX 408 1.3.2.2 yamt #endif 409 1.3.2.2 yamt ktvout.tv_sec = fxdr_unsigned(long, ktvout.tv_sec); 410 1.3.2.2 yamt ktvout.tv_usec = fxdr_unsigned(long, ktvout.tv_usec); 411 1.3.2.2 yamt deltasec = time_second - ktvout.tv_sec; 412 1.3.2.2 yamt if (deltasec < 0) 413 1.3.2.2 yamt deltasec = -deltasec; 414 1.3.2.2 yamt /* 415 1.3.2.2 yamt * If ok, add it to the hash list for the mount point. 416 1.3.2.2 yamt */ 417 1.3.2.2 yamt if (deltasec <= NFS_KERBCLOCKSKEW) { 418 1.3.2.2 yamt if (nmp->nm_numuids < nuidhash_max) { 419 1.3.2.2 yamt nmp->nm_numuids++; 420 1.3.2.2 yamt nuidp = kmem_alloc(sizeof(*nuidp), KM_SLEEP); 421 1.3.2.2 yamt } else { 422 1.3.2.2 yamt nuidp = TAILQ_FIRST(&nmp->nm_uidlruhead); 423 1.3.2.2 yamt LIST_REMOVE(nuidp, nu_hash); 424 1.3.2.2 yamt TAILQ_REMOVE(&nmp->nm_uidlruhead, nuidp, 425 1.3.2.2 yamt nu_lru); 426 1.3.2.2 yamt } 427 1.3.2.2 yamt nuidp->nu_flag = 0; 428 1.3.2.2 yamt kauth_cred_seteuid(nuidp->nu_cr, kauth_cred_geteuid(cred)); 429 1.3.2.2 yamt nuidp->nu_expire = time_second + NFS_KERBTTL; 430 1.3.2.2 yamt nuidp->nu_timestamp = ktvout; 431 1.3.2.2 yamt nuidp->nu_nickname = nick; 432 1.3.2.2 yamt memcpy(nuidp->nu_key, key, sizeof (NFSKERBKEY_T)); 433 1.3.2.2 yamt TAILQ_INSERT_TAIL(&nmp->nm_uidlruhead, nuidp, 434 1.3.2.2 yamt nu_lru); 435 1.3.2.2 yamt LIST_INSERT_HEAD(NMUIDHASH(nmp, kauth_cred_geteuid(cred)), 436 1.3.2.2 yamt nuidp, nu_hash); 437 1.3.2.2 yamt } 438 1.3.2.2 yamt } else 439 1.3.2.2 yamt nfsm_adv(nfsm_rndup(len)); 440 1.3.2.2 yamt nfsmout: 441 1.3.2.2 yamt *mdp = md; 442 1.3.2.2 yamt *dposp = dpos; 443 1.3.2.2 yamt return (error); 444 1.3.2.2 yamt } 445
Indexes created Tue Sep 30 11:09:46 GMT 2025