2 * Copyright (c) 1989, 1993
3 * The Regents of the University of California. All rights reserved.
5 * This code is derived from software contributed to Berkeley by
6 * Rick Macklem at The University of Guelph.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 4. Neither the name of the University nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include <sys/cdefs.h>
35 __FBSDID("$FreeBSD$");
39 * These functions support the macros and help fiddle mbuf chains for
40 * the nfs op functions. They do things like create the rpc header and
41 * copy data between mbuf chains and uio lists.
43 #include <fs/nfs/nfsport.h>
45 extern u_int32_t newnfs_true, newnfs_false;
46 extern int nfs_pubfhset;
47 extern struct nfsclienthashhead nfsclienthash[NFSCLIENTHASHSIZE];
48 extern struct nfslockhashhead nfslockhash[NFSLOCKHASHSIZE];
49 extern int nfsrv_useacl;
50 extern uid_t nfsrv_defaultuid;
51 extern gid_t nfsrv_defaultgid;
53 char nfs_v2pubfh[NFSX_V2FH];
54 static nfstype newnfsv2_type[9] = { NFNON, NFREG, NFDIR, NFBLK, NFCHR, NFLNK,
55 NFNON, NFCHR, NFNON };
56 extern nfstype nfsv34_type[9];
57 #endif /* !APPLEKEXT */
59 SYSCTL_DECL(_vfs_nfsd);
61 static int disable_checkutf8 = 0;
62 SYSCTL_INT(_vfs_nfsd, OID_AUTO, disable_checkutf8, CTLFLAG_RW,
63 &disable_checkutf8, 0,
64 "Disable the NFSv4 check for a UTF8 compliant name");
66 static char nfsrv_hexdigit(char, int *);
69 * Maps errno values to nfs error numbers.
70 * Use NFSERR_IO as the catch all for ones not specifically defined in
73 static u_char nfsrv_v2errmap[ELAST] = {
74 NFSERR_PERM, NFSERR_NOENT, NFSERR_IO, NFSERR_IO, NFSERR_IO,
75 NFSERR_NXIO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
76 NFSERR_IO, NFSERR_IO, NFSERR_ACCES, NFSERR_IO, NFSERR_IO,
77 NFSERR_IO, NFSERR_EXIST, NFSERR_IO, NFSERR_NODEV, NFSERR_NOTDIR,
78 NFSERR_ISDIR, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
79 NFSERR_IO, NFSERR_FBIG, NFSERR_NOSPC, NFSERR_IO, NFSERR_ROFS,
80 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
81 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
82 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
83 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
84 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
85 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
86 NFSERR_IO, NFSERR_IO, NFSERR_NAMETOL, NFSERR_IO, NFSERR_IO,
87 NFSERR_NOTEMPTY, NFSERR_IO, NFSERR_IO, NFSERR_DQUOT, NFSERR_STALE,
88 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
89 NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO, NFSERR_IO,
94 * Maps errno values to nfs error numbers.
95 * Although it is not obvious whether or not NFS clients really care if
96 * a returned error value is in the specified list for the procedure, the
97 * safest thing to do is filter them appropriately. For Version 2, the
98 * X/Open XNFS document is the only specification that defines error values
99 * for each RPC (The RFC simply lists all possible error values for all RPCs),
100 * so I have decided to not do this for Version 2.
101 * The first entry is the default error return and the rest are the valid
102 * errors for that RPC in increasing numeric order.
104 static short nfsv3err_null[] = {
109 static short nfsv3err_getattr[] = {
119 static short nfsv3err_setattr[] = {
136 static short nfsv3err_lookup[] = {
150 static short nfsv3err_access[] = {
160 static short nfsv3err_readlink[] = {
173 static short nfsv3err_read[] = {
186 static short nfsv3err_write[] = {
202 static short nfsv3err_create[] = {
220 static short nfsv3err_mkdir[] = {
238 static short nfsv3err_symlink[] = {
256 static short nfsv3err_mknod[] = {
275 static short nfsv3err_remove[] = {
290 static short nfsv3err_rmdir[] = {
309 static short nfsv3err_rename[] = {
333 static short nfsv3err_link[] = {
354 static short nfsv3err_readdir[] = {
368 static short nfsv3err_readdirplus[] = {
383 static short nfsv3err_fsstat[] = {
393 static short nfsv3err_fsinfo[] = {
402 static short nfsv3err_pathconf[] = {
411 static short nfsv3err_commit[] = {
421 static short *nfsrv_v3errmap[] = {
439 nfsv3err_readdirplus,
447 * And the same for V4.
449 static short nfsv4err_null[] = {
454 static short nfsv4err_access[] = {
471 static short nfsv4err_close[] = {
495 static short nfsv4err_commit[] = {
513 static short nfsv4err_create[] = {
542 static short nfsv4err_delegpurge[] = {
550 NFSERR_STALECLIENTID,
554 static short nfsv4err_delegreturn[] = {
573 static short nfsv4err_getattr[] = {
590 static short nfsv4err_getfh[] = {
602 static short nfsv4err_link[] = {
634 static short nfsv4err_lock[] = {
660 NFSERR_RECLAIMCONFLICT,
664 NFSERR_STALECLIENTID,
669 static short nfsv4err_lockt[] = {
688 NFSERR_STALECLIENTID,
692 static short nfsv4err_locku[] = {
718 static short nfsv4err_lookup[] = {
741 static short nfsv4err_lookupp[] = {
757 static short nfsv4err_nverify[] = {
777 static short nfsv4err_open[] = {
808 NFSERR_RECLAIMCONFLICT,
814 NFSERR_STALECLIENTID,
820 static short nfsv4err_openattr[] = {
841 static short nfsv4err_openconfirm[] = {
862 static short nfsv4err_opendowngrade[] = {
882 static short nfsv4err_putfh[] = {
895 static short nfsv4err_putpubfh[] = {
903 static short nfsv4err_putrootfh[] = {
911 static short nfsv4err_read[] = {
939 static short nfsv4err_readdir[] = {
960 static short nfsv4err_readlink[] = {
978 static short nfsv4err_remove[] = {
1003 static short nfsv4err_rename[] = {
1020 NFSERR_NOFILEHANDLE,
1033 static short nfsv4err_renew[] = {
1036 NFSERR_ADMINREVOKED,
1043 NFSERR_STALECLIENTID,
1047 static short nfsv4err_restorefh[] = {
1060 static short nfsv4err_savefh[] = {
1065 NFSERR_NOFILEHANDLE,
1072 static short nfsv4err_secinfo[] = {
1084 NFSERR_NOFILEHANDLE,
1092 static short nfsv4err_setattr[] = {
1095 NFSERR_ADMINREVOKED,
1113 NFSERR_NOFILEHANDLE,
1122 NFSERR_STALESTATEID,
1126 static short nfsv4err_setclientid[] = {
1136 static short nfsv4err_setclientidconfirm[] = {
1142 NFSERR_STALECLIENTID,
1146 static short nfsv4err_verify[] = {
1157 NFSERR_NOFILEHANDLE,
1165 static short nfsv4err_write[] = {
1168 NFSERR_ADMINREVOKED,
1184 NFSERR_NOFILEHANDLE,
1193 NFSERR_STALESTATEID,
1197 static short nfsv4err_releaselockowner[] = {
1199 NFSERR_ADMINREVOKED,
1206 NFSERR_STALECLIENTID,
1210 static short *nfsrv_v4errmap[] = {
1218 nfsv4err_delegpurge,
1219 nfsv4err_delegreturn,
1231 nfsv4err_openconfirm,
1232 nfsv4err_opendowngrade,
1246 nfsv4err_setclientid,
1247 nfsv4err_setclientidconfirm,
1250 nfsv4err_releaselockowner,
1254 * A fiddled version of m_adj() that ensures null fill to a long
1255 * boundary and only trims off the back end
1258 nfsrv_adj(mbuf_t mp, int len, int nul)
1265 * Trim from tail. Scan the mbuf chain,
1266 * calculating its length and finding the last mbuf.
1267 * If the adjustment only affects this mbuf, then just
1268 * adjust and return. Otherwise, rescan and truncate
1269 * after the remaining size.
1274 count += mbuf_len(m);
1275 if (mbuf_next(m) == NULL)
1279 if (mbuf_len(m) > len) {
1280 mbuf_setlen(m, mbuf_len(m) - len);
1282 cp = NFSMTOD(m, caddr_t) + mbuf_len(m) - nul;
1283 for (i = 0; i < nul; i++)
1292 * Correct length for chain is "count".
1293 * Find the mbuf with last data, adjust its length,
1294 * and toss data from remaining mbufs on chain.
1296 for (m = mp; m; m = mbuf_next(m)) {
1297 if (mbuf_len(m) >= count) {
1298 mbuf_setlen(m, count);
1300 cp = NFSMTOD(m, caddr_t) + mbuf_len(m) - nul;
1301 for (i = 0; i < nul; i++)
1306 count -= mbuf_len(m);
1308 for (m = mbuf_next(m); m; m = mbuf_next(m))
1313 * Make these functions instead of macros, so that the kernel text size
1314 * doesn't get too big...
1317 nfsrv_wcc(struct nfsrv_descript *nd, int before_ret,
1318 struct nfsvattr *before_nvap, int after_ret, struct nfsvattr *after_nvap)
1323 NFSM_BUILD(tl, u_int32_t *, NFSX_UNSIGNED);
1326 NFSM_BUILD(tl, u_int32_t *, 7 * NFSX_UNSIGNED);
1327 *tl++ = newnfs_true;
1328 txdr_hyper(before_nvap->na_size, tl);
1330 txdr_nfsv3time(&(before_nvap->na_mtime), tl);
1332 txdr_nfsv3time(&(before_nvap->na_ctime), tl);
1334 nfsrv_postopattr(nd, after_ret, after_nvap);
1338 nfsrv_postopattr(struct nfsrv_descript *nd, int after_ret,
1339 struct nfsvattr *after_nvap)
1343 NFSM_BUILD(tl, u_int32_t *, NFSX_UNSIGNED);
1348 nfsrv_fillattr(nd, after_nvap);
1353 * Fill in file attributes for V2 and 3. For V4, call a separate
1354 * routine that sifts through all the attribute bits.
1357 nfsrv_fillattr(struct nfsrv_descript *nd, struct nfsvattr *nvap)
1359 struct nfs_fattr *fp;
1363 * Build space for the attribute structure.
1365 if (nd->nd_flag & ND_NFSV3)
1366 fattr_size = NFSX_V3FATTR;
1368 fattr_size = NFSX_V2FATTR;
1369 NFSM_BUILD(fp, struct nfs_fattr *, fattr_size);
1372 * Now just fill it all in.
1374 fp->fa_nlink = txdr_unsigned(nvap->na_nlink);
1375 fp->fa_uid = txdr_unsigned(nvap->na_uid);
1376 fp->fa_gid = txdr_unsigned(nvap->na_gid);
1377 if (nd->nd_flag & ND_NFSV3) {
1378 fp->fa_type = vtonfsv34_type(nvap->na_type);
1379 fp->fa_mode = vtonfsv34_mode(nvap->na_mode);
1380 txdr_hyper(nvap->na_size, &fp->fa3_size);
1381 txdr_hyper(nvap->na_bytes, &fp->fa3_used);
1382 fp->fa3_rdev.specdata1 = txdr_unsigned(NFSMAJOR(nvap->na_rdev));
1383 fp->fa3_rdev.specdata2 = txdr_unsigned(NFSMINOR(nvap->na_rdev));
1384 fp->fa3_fsid.nfsuquad[0] = 0;
1385 fp->fa3_fsid.nfsuquad[1] = txdr_unsigned(nvap->na_fsid);
1386 fp->fa3_fileid.nfsuquad[0] = 0;
1387 fp->fa3_fileid.nfsuquad[1] = txdr_unsigned(nvap->na_fileid);
1388 txdr_nfsv3time(&nvap->na_atime, &fp->fa3_atime);
1389 txdr_nfsv3time(&nvap->na_mtime, &fp->fa3_mtime);
1390 txdr_nfsv3time(&nvap->na_ctime, &fp->fa3_ctime);
1392 fp->fa_type = vtonfsv2_type(nvap->na_type);
1393 fp->fa_mode = vtonfsv2_mode(nvap->na_type, nvap->na_mode);
1394 fp->fa2_size = txdr_unsigned(nvap->na_size);
1395 fp->fa2_blocksize = txdr_unsigned(nvap->na_blocksize);
1396 if (nvap->na_type == VFIFO)
1397 fp->fa2_rdev = 0xffffffff;
1399 fp->fa2_rdev = txdr_unsigned(nvap->na_rdev);
1400 fp->fa2_blocks = txdr_unsigned(nvap->na_bytes / NFS_FABLKSIZE);
1401 fp->fa2_fsid = txdr_unsigned(nvap->na_fsid);
1402 fp->fa2_fileid = txdr_unsigned(nvap->na_fileid);
1403 txdr_nfsv2time(&nvap->na_atime, &fp->fa2_atime);
1404 txdr_nfsv2time(&nvap->na_mtime, &fp->fa2_mtime);
1405 txdr_nfsv2time(&nvap->na_ctime, &fp->fa2_ctime);
1410 * This function gets a file handle out of an mbuf list.
1411 * It returns 0 for success, EBADRPC otherwise.
1412 * If sets the third flagp argument to 1 if the file handle is
1413 * the public file handle.
1414 * For NFSv4, if the length is incorrect, set nd_repstat == NFSERR_BADHANDLE
1417 nfsrv_mtofh(struct nfsrv_descript *nd, struct nfsrvfh *fhp)
1420 int error = 0, len, copylen;
1422 if (nd->nd_flag & (ND_NFSV3 | ND_NFSV4)) {
1423 NFSM_DISSECT(tl, u_int32_t *, NFSX_UNSIGNED);
1424 len = fxdr_unsigned(int, *tl);
1425 if (len == 0 && nfs_pubfhset && (nd->nd_flag & ND_NFSV3) &&
1426 nd->nd_procnum == NFSPROC_LOOKUP) {
1427 nd->nd_flag |= ND_PUBLOOKUP;
1430 if (len < NFSRV_MINFH || len > NFSRV_MAXFH) {
1431 if (nd->nd_flag & ND_NFSV4) {
1432 if (len > 0 && len <= NFSX_V4FHMAX) {
1433 error = nfsm_advance(nd, NFSM_RNDUP(len), -1);
1436 nd->nd_repstat = NFSERR_BADHANDLE;
1450 * For NFSv2, the file handle is always 32 bytes on the
1451 * wire, but this server only cares about the first
1452 * NFSRV_MAXFH bytes.
1455 copylen = NFSRV_MAXFH;
1457 NFSM_DISSECT(tl, u_int32_t *, len);
1458 if ((nd->nd_flag & ND_NFSV2) && nfs_pubfhset &&
1459 nd->nd_procnum == NFSPROC_LOOKUP &&
1460 !NFSBCMP((caddr_t)tl, nfs_v2pubfh, NFSX_V2FH)) {
1461 nd->nd_flag |= ND_PUBLOOKUP;
1464 NFSBCOPY(tl, (caddr_t)fhp->nfsrvfh_data, copylen);
1465 fhp->nfsrvfh_len = copylen;
1467 NFSEXITCODE2(error, nd);
1472 * Map errnos to NFS error numbers. For Version 3 and 4 also filter out error
1473 * numbers not specified for the associated procedure.
1474 * NFSPROC_NOOP is a special case, where the high order bits of nd_repstat
1475 * should be cleared. NFSPROC_NOOP is used to return errors when a valid
1476 * RPC procedure is not involved.
1477 * Returns the error number in XDR.
1480 nfsd_errmap(struct nfsrv_descript *nd)
1482 short *defaulterrp, *errp;
1484 if (!nd->nd_repstat)
1486 if (nd->nd_flag & (ND_NFSV3 | ND_NFSV4)) {
1487 if (nd->nd_procnum == NFSPROC_NOOP)
1488 return (txdr_unsigned(nd->nd_repstat & 0xffff));
1489 if (nd->nd_flag & ND_NFSV3)
1490 errp = defaulterrp = nfsrv_v3errmap[nd->nd_procnum];
1491 else if (nd->nd_repstat == EBADRPC)
1492 return (txdr_unsigned(NFSERR_BADXDR));
1493 else if (nd->nd_repstat == NFSERR_MINORVERMISMATCH ||
1494 nd->nd_repstat == NFSERR_OPILLEGAL)
1495 return (txdr_unsigned(nd->nd_repstat));
1497 errp = defaulterrp = nfsrv_v4errmap[nd->nd_procnum];
1499 if (*errp == nd->nd_repstat)
1500 return (txdr_unsigned(nd->nd_repstat));
1501 return (txdr_unsigned(*defaulterrp));
1503 if (nd->nd_repstat <= ELAST)
1504 return (txdr_unsigned(nfsrv_v2errmap[nd->nd_repstat - 1]));
1505 return (txdr_unsigned(NFSERR_IO));
1509 * Check to see if setting a uid/gid is permitted when creating a new
1510 * file object. (Called when uid and/or gid is specified in the
1511 * settable attributes for V4.
1514 nfsrv_checkuidgid(struct nfsrv_descript *nd, struct nfsvattr *nvap)
1519 * If not setting either uid nor gid, it's OK.
1521 if (NFSVNO_NOTSETUID(nvap) && NFSVNO_NOTSETGID(nvap))
1523 if ((NFSVNO_ISSETUID(nvap) && nvap->na_uid == nfsrv_defaultuid)
1524 || (NFSVNO_ISSETGID(nvap) && nvap->na_gid == nfsrv_defaultgid)) {
1525 error = NFSERR_BADOWNER;
1528 if (nd->nd_cred->cr_uid == 0)
1530 if ((NFSVNO_ISSETUID(nvap) && nvap->na_uid != nd->nd_cred->cr_uid) ||
1531 (NFSVNO_ISSETGID(nvap) && nvap->na_gid != nd->nd_cred->cr_gid &&
1532 !groupmember(nvap->na_gid, nd->nd_cred)))
1533 error = NFSERR_PERM;
1536 NFSEXITCODE2(error, nd);
1541 * and this routine fixes up the settable attributes for V4 if allowed
1542 * by nfsrv_checkuidgid().
1545 nfsrv_fixattr(struct nfsrv_descript *nd, vnode_t vp,
1546 struct nfsvattr *nvap, NFSACL_T *aclp, NFSPROC_T *p, nfsattrbit_t *attrbitp,
1547 struct nfsexstuff *exp)
1550 struct nfsvattr nva;
1553 nfsattrbit_t nattrbits;
1556 * Maybe this should be done for V2 and 3 but it never has been
1557 * and nobody seems to be upset, so I think it's best not to change
1558 * the V2 and 3 semantics.
1560 if ((nd->nd_flag & ND_NFSV4) == 0)
1562 NFSVNO_ATTRINIT(&nva);
1563 NFSZERO_ATTRBIT(&nattrbits);
1564 tuid = nd->nd_cred->cr_uid;
1565 if (NFSISSET_ATTRBIT(attrbitp, NFSATTRBIT_OWNER) &&
1566 NFSVNO_ISSETUID(nvap) &&
1567 nvap->na_uid != nd->nd_cred->cr_uid) {
1568 if (nd->nd_cred->cr_uid == 0) {
1569 nva.na_uid = nvap->na_uid;
1571 NFSSETBIT_ATTRBIT(&nattrbits, NFSATTRBIT_OWNER);
1573 NFSCLRBIT_ATTRBIT(attrbitp, NFSATTRBIT_OWNER);
1576 if (NFSISSET_ATTRBIT(attrbitp, NFSATTRBIT_TIMEACCESSSET) &&
1577 NFSVNO_ISSETATIME(nvap)) {
1578 nva.na_atime = nvap->na_atime;
1580 NFSSETBIT_ATTRBIT(&nattrbits, NFSATTRBIT_TIMEACCESSSET);
1582 if (NFSISSET_ATTRBIT(attrbitp, NFSATTRBIT_TIMEMODIFYSET) &&
1583 NFSVNO_ISSETMTIME(nvap)) {
1584 nva.na_mtime = nvap->na_mtime;
1586 NFSSETBIT_ATTRBIT(&nattrbits, NFSATTRBIT_TIMEMODIFYSET);
1588 if (NFSISSET_ATTRBIT(attrbitp, NFSATTRBIT_OWNERGROUP) &&
1589 NFSVNO_ISSETGID(nvap)) {
1590 if (nvap->na_gid == nd->nd_cred->cr_gid ||
1591 groupmember(nvap->na_gid, nd->nd_cred)) {
1592 nd->nd_cred->cr_uid = 0;
1593 nva.na_gid = nvap->na_gid;
1595 NFSSETBIT_ATTRBIT(&nattrbits, NFSATTRBIT_OWNERGROUP);
1597 NFSCLRBIT_ATTRBIT(attrbitp, NFSATTRBIT_OWNERGROUP);
1601 error = nfsvno_setattr(vp, &nva, nd->nd_cred, p, exp);
1603 NFSCLRALL_ATTRBIT(attrbitp, &nattrbits);
1606 if (NFSISSET_ATTRBIT(attrbitp, NFSATTRBIT_SIZE) &&
1607 NFSVNO_ISSETSIZE(nvap) && nvap->na_size != (u_quad_t)0) {
1608 NFSCLRBIT_ATTRBIT(attrbitp, NFSATTRBIT_SIZE);
1610 #ifdef NFS4_ACL_EXTATTR_NAME
1611 if (NFSISSET_ATTRBIT(attrbitp, NFSATTRBIT_ACL) &&
1612 nfsrv_useacl != 0 && aclp != NULL) {
1613 if (aclp->acl_cnt > 0) {
1614 error = nfsrv_setacl(vp, aclp, nd->nd_cred, p);
1616 NFSCLRBIT_ATTRBIT(attrbitp, NFSATTRBIT_ACL);
1621 NFSCLRBIT_ATTRBIT(attrbitp, NFSATTRBIT_ACL);
1622 nd->nd_cred->cr_uid = tuid;
1625 NFSEXITCODE2(0, nd);
1629 * Translate an ASCII hex digit to it's binary value. Return -1 if the
1630 * char isn't a hex digit.
1633 nfsrv_hexdigit(char c, int *err)
1637 if (c >= '0' && c <= '9')
1639 if (c >= 'a' && c <= 'f')
1640 return (c - 'a' + ((char)10));
1641 if (c >= 'A' && c <= 'F')
1642 return (c - 'A' + ((char)10));
1645 return (1); /* BOGUS */
1649 * Check to see if NFSERR_MOVED can be returned for this op. Return 1 iff
1653 nfsrv_errmoved(int op)
1657 errp = nfsrv_v4errmap[op];
1658 while (*errp != 0) {
1659 if (*errp == NFSERR_MOVED)
1667 * Fill in attributes for a Referral.
1668 * (Return the number of bytes of XDR created.)
1671 nfsrv_putreferralattr(struct nfsrv_descript *nd, nfsattrbit_t *retbitp,
1672 struct nfsreferral *refp, int getattr, int *reterrp)
1674 u_int32_t *tl, *retnump;
1676 int prefixnum, retnum = 0, i, len, bitpos, rderrbit = 0, nonrefbit = 0;
1677 int fslocationsbit = 0;
1678 nfsattrbit_t tmpbits, refbits;
1680 NFSREFERRAL_ATTRBIT(&refbits);
1682 NFSCLRBIT_ATTRBIT(&refbits, NFSATTRBIT_RDATTRERROR);
1683 else if (NFSISSET_ATTRBIT(retbitp, NFSATTRBIT_RDATTRERROR))
1685 if (NFSISSET_ATTRBIT(retbitp, NFSATTRBIT_FSLOCATIONS))
1689 * Check for the case where unsupported referral attributes are
1692 NFSSET_ATTRBIT(&tmpbits, retbitp);
1693 NFSCLRALL_ATTRBIT(&tmpbits, &refbits);
1694 if (NFSNONZERO_ATTRBIT(&tmpbits))
1697 if (nonrefbit && !fslocationsbit && (getattr || !rderrbit)) {
1698 *reterrp = NFSERR_MOVED;
1703 * Now we can fill in the attributes.
1705 NFSSET_ATTRBIT(&tmpbits, retbitp);
1706 NFSCLRNOT_ATTRBIT(&tmpbits, &refbits);
1709 * Put out the attribute bitmap for the ones being filled in
1710 * and get the field for the number of attributes returned.
1712 prefixnum = nfsrv_putattrbit(nd, &tmpbits);
1713 NFSM_BUILD(retnump, u_int32_t *, NFSX_UNSIGNED);
1714 prefixnum += NFSX_UNSIGNED;
1717 * Now, loop around filling in the attributes for each bit set.
1719 for (bitpos = 0; bitpos < NFSATTRBIT_MAX; bitpos++) {
1720 if (NFSISSET_ATTRBIT(&tmpbits, bitpos)) {
1722 case NFSATTRBIT_TYPE:
1723 NFSM_BUILD(tl, u_int32_t *, NFSX_UNSIGNED);
1724 *tl = txdr_unsigned(NFDIR);
1725 retnum += NFSX_UNSIGNED;
1727 case NFSATTRBIT_FSID:
1728 NFSM_BUILD(tl, u_int32_t *, NFSX_V4FSID);
1730 *tl++ = txdr_unsigned(NFSV4ROOT_FSID0);
1732 *tl = txdr_unsigned(NFSV4ROOT_REFERRAL);
1733 retnum += NFSX_V4FSID;
1735 case NFSATTRBIT_RDATTRERROR:
1736 NFSM_BUILD(tl, u_int32_t *, NFSX_UNSIGNED);
1738 *tl = txdr_unsigned(NFSERR_MOVED);
1741 retnum += NFSX_UNSIGNED;
1743 case NFSATTRBIT_FSLOCATIONS:
1744 retnum += nfsm_strtom(nd, "/", 1);
1745 NFSM_BUILD(tl, u_int32_t *, NFSX_UNSIGNED);
1746 *tl = txdr_unsigned(refp->nfr_srvcnt);
1747 retnum += NFSX_UNSIGNED;
1748 cp = refp->nfr_srvlist;
1749 for (i = 0; i < refp->nfr_srvcnt; i++) {
1750 NFSM_BUILD(tl, u_int32_t *, NFSX_UNSIGNED);
1751 *tl = txdr_unsigned(1);
1752 retnum += NFSX_UNSIGNED;
1753 cp2 = STRCHR(cp, ':');
1758 retnum += nfsm_strtom(nd, cp, len);
1761 cp2 = STRCHR(cp, ',');
1766 retnum += nfsm_strtom(nd, cp, len);
1771 case NFSATTRBIT_MOUNTEDONFILEID:
1772 NFSM_BUILD(tl, u_int32_t *, NFSX_HYPER);
1774 *tl = txdr_unsigned(refp->nfr_dfileno);
1775 retnum += NFSX_HYPER;
1778 printf("EEK! Bad V4 refattr bitpos=%d\n", bitpos);
1782 *retnump = txdr_unsigned(retnum);
1783 return (retnum + prefixnum);
1787 * Parse a file name out of a request.
1790 nfsrv_parsename(struct nfsrv_descript *nd, char *bufp, u_long *hashp,
1791 NFSPATHLEN_T *outlenp)
1793 char *fromcp, *tocp, val = '\0';
1796 int rem, len, error = 0, pubtype = 0, outlen = 0, percent = 0;
1805 * For V4, check for lookup parent.
1806 * Otherwise, get the component name.
1808 if ((nd->nd_flag & ND_NFSV4) && nd->nd_procnum == NFSV4OP_LOOKUPP) {
1810 hash += ((u_char)'.');
1812 hash += ((u_char)'.');
1816 * First, get the name length.
1818 NFSM_DISSECT(tl, u_int32_t *, NFSX_UNSIGNED);
1819 len = fxdr_unsigned(int, *tl);
1820 if (len > NFS_MAXNAMLEN) {
1821 nd->nd_repstat = NFSERR_NAMETOL;
1824 } else if (len <= 0) {
1825 nd->nd_repstat = NFSERR_INVAL;
1831 * Now, copy the component name into the buffer.
1833 fromcp = nd->nd_dpos;
1835 rem = NFSMTOD(md, caddr_t) + mbuf_len(md) - fromcp;
1836 for (i = 0; i < len; i++) {
1843 fromcp = NFSMTOD(md, caddr_t);
1846 if (*fromcp == '\0') {
1847 nd->nd_repstat = EACCES;
1852 * For lookups on the public filehandle, do some special
1853 * processing on the name. (The public file handle is the
1854 * root of the public file system for this server.)
1856 if (nd->nd_flag & ND_PUBLOOKUP) {
1858 * If the first char is ASCII, it is a canonical
1859 * path, otherwise it is a native path. (RFC2054
1860 * doesn't actually state what it is if the first
1861 * char isn't ASCII or 0x80, so I assume native.)
1862 * pubtype == 1 -> native path
1863 * pubtype == 2 -> canonical path
1866 if (*fromcp & 0x80) {
1868 * Since RFC2054 doesn't indicate
1869 * that a native path of just 0x80
1870 * isn't allowed, I'll replace the
1871 * 0x80 with '/' instead of just
1881 * '/' only allowed in a native path
1883 if (*fromcp == '/' && pubtype != 1) {
1884 nd->nd_repstat = EACCES;
1890 * For the special case of 2 hex digits after a
1891 * '%' in an absolute path, calculate the value.
1892 * percent == 1 -> indicates "get first hex digit"
1893 * percent == 2 -> indicates "get second hex digit"
1896 digit = nfsrv_hexdigit(*fromcp, &error);
1898 nd->nd_repstat = EACCES;
1909 hash += ((u_char)val);
1913 if (*fromcp == '%' && pubtype == 2) {
1915 * Must be followed by 2 hex digits
1917 if ((len - i) < 3) {
1918 nd->nd_repstat = EACCES;
1925 hash += ((u_char)*fromcp);
1931 * Normal, non lookup on public, name.
1933 if (*fromcp == '/') {
1934 if (nd->nd_flag & ND_NFSV4)
1935 nd->nd_repstat = NFSERR_BADNAME;
1937 nd->nd_repstat = EACCES;
1941 hash += ((u_char)*fromcp);
1949 nd->nd_dpos = fromcp;
1950 i = NFSM_RNDUP(len) - len;
1955 error = nfsm_advance(nd, i, rem);
1962 * For v4, don't allow lookups of '.' or '..' and
1963 * also check for non-utf8 strings.
1965 if (nd->nd_flag & ND_NFSV4) {
1966 if ((outlen == 1 && bufp[0] == '.') ||
1967 (outlen == 2 && bufp[0] == '.' &&
1969 nd->nd_repstat = NFSERR_BADNAME;
1973 if (disable_checkutf8 == 0 &&
1974 nfsrv_checkutf8((u_int8_t *)bufp, outlen)) {
1975 nd->nd_repstat = NFSERR_INVAL;
1982 *outlenp = (size_t)outlen;
1986 NFSEXITCODE2(error, nd);
1991 * Check the tcp socket sequence number has been acknowledged.
1994 nfsrv_checksockseqnum(struct socket *so, tcp_seq tcpseqval)
1996 tcp_seq maxseq, unaseq;
1999 error = nfsrv_getsocksndseq(so, &maxseq, &unaseq);
2002 ret = SEQ_GEQ(unaseq, tcpseqval);
2007 * Get the tcp sequence number to be acknowledged.
2010 nfsrv_getsockseqnum(struct socket *so, tcp_seq *tcpseqp)
2012 tcp_seq maxseq, unaseq;
2016 sbcc = so->so_snd.sb_cc;
2017 error = nfsrv_getsocksndseq(so, &maxseq, &unaseq);
2021 * Set the seq# to a value that will
2022 * be at least the end of the reply.
2023 * When this sequence# is acknowledged
2024 * by the client, the client has received
2027 *tcpseqp = sbcc + maxseq;
2035 static int inited = 0;
2042 * Initialize client queues. Don't free/reinitialize
2043 * them when nfsds are restarted.
2045 for (i = 0; i < NFSCLIENTHASHSIZE; i++)
2046 LIST_INIT(&nfsclienthash[i]);
2047 for (i = 0; i < NFSLOCKHASHSIZE; i++)
2048 LIST_INIT(&nfslockhash[i]);
2050 /* and the v2 pubfh should be all zeros */
2051 NFSBZERO(nfs_v2pubfh, NFSX_V2FH);
2055 * Check the v4 root exports.
2056 * Return 0 if ok, 1 otherwise.
2059 nfsd_checkrootexp(struct nfsrv_descript *nd)
2062 if ((nd->nd_flag & (ND_GSS | ND_EXAUTHSYS)) == ND_EXAUTHSYS)
2064 if ((nd->nd_flag & (ND_GSSINTEGRITY | ND_EXGSSINTEGRITY)) ==
2065 (ND_GSSINTEGRITY | ND_EXGSSINTEGRITY))
2067 if ((nd->nd_flag & (ND_GSSPRIVACY | ND_EXGSSPRIVACY)) ==
2068 (ND_GSSPRIVACY | ND_EXGSSPRIVACY))
2070 if ((nd->nd_flag & (ND_GSS | ND_GSSINTEGRITY | ND_GSSPRIVACY |
2071 ND_EXGSS)) == (ND_GSS | ND_EXGSS))