void nlm_prog_0(struct svc_req *rqstp, SVCXPRT *transp) { union { struct nlm_sm_status nlm_sm_notify_0_arg; } argument; char result; bool_t retval; xdrproc_t xdr_argument, xdr_result; bool_t (*local)(char *, void *, struct svc_req *); switch (rqstp->rq_proc) { case NULLPROC: (void) svc_sendreply(rqstp, (xdrproc_t) xdr_void, (char *)NULL); svc_freereq(rqstp); return; case NLM_SM_NOTIFY: xdr_argument = (xdrproc_t) xdr_nlm_sm_status; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_sm_notify_0_svc; break; default: svcerr_noproc(rqstp); svc_freereq(rqstp); return; } (void) memset((char *)&argument, 0, sizeof (argument)); if (!svc_getargs(rqstp, xdr_argument, (char *)(caddr_t) &argument)) { svcerr_decode(rqstp); svc_freereq(rqstp); return; } retval = (bool_t) (*local)((char *)&argument, (void *)&result, rqstp); if (retval > 0 && !svc_sendreply(rqstp, xdr_result, (char *)&result)) { svcerr_systemerr(rqstp); } if (!svc_freeargs(rqstp, xdr_argument, (char *)(caddr_t) &argument)) { printf("unable to free arguments"); //exit(1); } svc_freereq(rqstp); return; }
static void nfssvc_program(struct svc_req *rqst, SVCXPRT *xprt) { struct nfsrv_descript nd; struct nfsrvcache *rp = NULL; int cacherep, credflavor; memset(&nd, 0, sizeof(nd)); if (rqst->rq_vers == NFS_VER2) { if (rqst->rq_proc > NFSV2PROC_STATFS) { svcerr_noproc(rqst); svc_freereq(rqst); goto out; } nd.nd_procnum = newnfs_nfsv3_procid[rqst->rq_proc]; nd.nd_flag = ND_NFSV2; } else if (rqst->rq_vers == NFS_VER3) { if (rqst->rq_proc >= NFS_V3NPROCS) { svcerr_noproc(rqst); svc_freereq(rqst); goto out; } nd.nd_procnum = rqst->rq_proc; nd.nd_flag = ND_NFSV3; } else { if (rqst->rq_proc != NFSPROC_NULL && rqst->rq_proc != NFSV4PROC_COMPOUND) { svcerr_noproc(rqst); svc_freereq(rqst); goto out; } nd.nd_procnum = rqst->rq_proc; nd.nd_flag = ND_NFSV4; } /* * Note: we want rq_addr, not svc_getrpccaller for nd_nam2 - * NFS_SRVMAXDATA uses a NULL value for nd_nam2 to detect TCP * mounts. */ nd.nd_mrep = rqst->rq_args; rqst->rq_args = NULL; newnfs_realign(&nd.nd_mrep, M_WAITOK); nd.nd_md = nd.nd_mrep; nd.nd_dpos = mtod(nd.nd_md, caddr_t); nd.nd_nam = svc_getrpccaller(rqst); nd.nd_nam2 = rqst->rq_addr; nd.nd_mreq = NULL; nd.nd_cred = NULL; if (nfs_privport && (nd.nd_flag & ND_NFSV4) == 0) { /* Check if source port is privileged */ u_short port; struct sockaddr *nam = nd.nd_nam; struct sockaddr_in *sin; sin = (struct sockaddr_in *)nam; /* * INET/INET6 - same code: * sin_port and sin6_port are at same offset */ port = ntohs(sin->sin_port); if (port >= IPPORT_RESERVED && nd.nd_procnum != NFSPROC_NULL) { #ifdef INET6 char b6[INET6_ADDRSTRLEN]; #if defined(KLD_MODULE) /* Do not use ip6_sprintf: the nfs module should work without INET6. */ #define ip6_sprintf(buf, a) \ (sprintf((buf), "%x:%x:%x:%x:%x:%x:%x:%x", \ (a)->s6_addr16[0], (a)->s6_addr16[1], \ (a)->s6_addr16[2], (a)->s6_addr16[3], \ (a)->s6_addr16[4], (a)->s6_addr16[5], \ (a)->s6_addr16[6], (a)->s6_addr16[7]), \ (buf)) #endif #endif printf("NFS request from unprivileged port (%s:%d)\n", #ifdef INET6 sin->sin_family == AF_INET6 ? ip6_sprintf(b6, &satosin6(sin)->sin6_addr) : #if defined(KLD_MODULE) #undef ip6_sprintf #endif #endif inet_ntoa(sin->sin_addr), port); svcerr_weakauth(rqst); svc_freereq(rqst); m_freem(nd.nd_mrep); goto out; } } if (nd.nd_procnum != NFSPROC_NULL) { if (!svc_getcred(rqst, &nd.nd_cred, &credflavor)) { svcerr_weakauth(rqst); svc_freereq(rqst); m_freem(nd.nd_mrep); goto out; } /* Set the flag based on credflavor */ if (credflavor == RPCSEC_GSS_KRB5) { nd.nd_flag |= ND_GSS; } else if (credflavor == RPCSEC_GSS_KRB5I) { nd.nd_flag |= (ND_GSS | ND_GSSINTEGRITY); } else if (credflavor == RPCSEC_GSS_KRB5P) { nd.nd_flag |= (ND_GSS | ND_GSSPRIVACY); } else if (credflavor != AUTH_SYS) { svcerr_weakauth(rqst); svc_freereq(rqst); m_freem(nd.nd_mrep); goto out; } #ifdef MAC mac_cred_associate_nfsd(nd.nd_cred); #endif /* * Get a refcnt (shared lock) on nfsd_suspend_lock. * NFSSVC_SUSPENDNFSD will take an exclusive lock on * nfsd_suspend_lock to suspend these threads. * This must be done here, before the check of * nfsv4root exports by nfsvno_v4rootexport(). */ NFSLOCKV4ROOTMUTEX(); nfsv4_getref(&nfsd_suspend_lock, NULL, NFSV4ROOTLOCKMUTEXPTR, NULL); NFSUNLOCKV4ROOTMUTEX(); if ((nd.nd_flag & ND_NFSV4) != 0) { nd.nd_repstat = nfsvno_v4rootexport(&nd); if (nd.nd_repstat != 0) { NFSLOCKV4ROOTMUTEX(); nfsv4_relref(&nfsd_suspend_lock); NFSUNLOCKV4ROOTMUTEX(); svcerr_weakauth(rqst); svc_freereq(rqst); m_freem(nd.nd_mrep); goto out; } } cacherep = nfs_proc(&nd, rqst->rq_xid, xprt, &rp); NFSLOCKV4ROOTMUTEX(); nfsv4_relref(&nfsd_suspend_lock); NFSUNLOCKV4ROOTMUTEX(); } else { NFSMGET(nd.nd_mreq); nd.nd_mreq->m_len = 0; cacherep = RC_REPLY; } if (nd.nd_mrep != NULL) m_freem(nd.nd_mrep); if (nd.nd_cred != NULL) crfree(nd.nd_cred); if (cacherep == RC_DROPIT) { if (nd.nd_mreq != NULL) m_freem(nd.nd_mreq); svc_freereq(rqst); goto out; } if (nd.nd_mreq == NULL) { svcerr_decode(rqst); svc_freereq(rqst); goto out; } if (nd.nd_repstat & NFSERR_AUTHERR) { svcerr_auth(rqst, nd.nd_repstat & ~NFSERR_AUTHERR); if (nd.nd_mreq != NULL) m_freem(nd.nd_mreq); } else if (!svc_sendreply_mbuf(rqst, nd.nd_mreq)) { svcerr_systemerr(rqst); } if (rp != NULL) { nfsrvd_sentcache(rp, (rqst->rq_reply_seq != 0 || SVC_ACK(xprt, NULL)), rqst->rq_reply_seq); } svc_freereq(rqst); out: NFSEXITCODE(0); }
/* * Handles server to client callbacks. */ static void nfscb_program(struct svc_req *rqst, SVCXPRT *xprt) { struct nfsrv_descript nd; int cacherep, credflavor; memset(&nd, 0, sizeof(nd)); if (rqst->rq_proc != NFSPROC_NULL && rqst->rq_proc != NFSV4PROC_CBCOMPOUND) { svcerr_noproc(rqst); svc_freereq(rqst); return; } nd.nd_procnum = rqst->rq_proc; nd.nd_flag = (ND_NFSCB | ND_NFSV4); /* * Note: we want rq_addr, not svc_getrpccaller for nd_nam2 - * NFS_SRVMAXDATA uses a NULL value for nd_nam2 to detect TCP * mounts. */ nd.nd_mrep = rqst->rq_args; rqst->rq_args = NULL; newnfs_realign(&nd.nd_mrep, M_WAITOK); nd.nd_md = nd.nd_mrep; nd.nd_dpos = mtod(nd.nd_md, caddr_t); nd.nd_nam = svc_getrpccaller(rqst); nd.nd_nam2 = rqst->rq_addr; nd.nd_mreq = NULL; nd.nd_cred = NULL; NFSCL_DEBUG(1, "cbproc=%d\n",nd.nd_procnum); if (nd.nd_procnum != NFSPROC_NULL) { if (!svc_getcred(rqst, &nd.nd_cred, &credflavor)) { svcerr_weakauth(rqst); svc_freereq(rqst); m_freem(nd.nd_mrep); return; } /* For now, I don't care what credential flavor was used. */ #ifdef notyet #ifdef MAC mac_cred_associate_nfsd(nd.nd_cred); #endif #endif cacherep = nfs_cbproc(&nd, rqst->rq_xid); } else { NFSMGET(nd.nd_mreq); nd.nd_mreq->m_len = 0; cacherep = RC_REPLY; } if (nd.nd_mrep != NULL) m_freem(nd.nd_mrep); if (nd.nd_cred != NULL) crfree(nd.nd_cred); if (cacherep == RC_DROPIT) { if (nd.nd_mreq != NULL) m_freem(nd.nd_mreq); svc_freereq(rqst); return; } if (nd.nd_mreq == NULL) { svcerr_decode(rqst); svc_freereq(rqst); return; } if (nd.nd_repstat & NFSERR_AUTHERR) { svcerr_auth(rqst, nd.nd_repstat & ~NFSERR_AUTHERR); if (nd.nd_mreq != NULL) m_freem(nd.nd_mreq); } else if (!svc_sendreply_mbuf(rqst, nd.nd_mreq)) svcerr_systemerr(rqst); else NFSCL_DEBUG(1, "cbrep sent\n"); svc_freereq(rqst); }
void nlm_prog_1(struct svc_req *rqstp, SVCXPRT *transp) { union { struct nlm_testargs nlm_test_1_arg; struct nlm_lockargs nlm_lock_1_arg; struct nlm_cancargs nlm_cancel_1_arg; struct nlm_unlockargs nlm_unlock_1_arg; struct nlm_testargs nlm_granted_1_arg; struct nlm_testargs nlm_test_msg_1_arg; struct nlm_lockargs nlm_lock_msg_1_arg; struct nlm_cancargs nlm_cancel_msg_1_arg; struct nlm_unlockargs nlm_unlock_msg_1_arg; struct nlm_testargs nlm_granted_msg_1_arg; nlm_testres nlm_test_res_1_arg; nlm_res nlm_lock_res_1_arg; nlm_res nlm_cancel_res_1_arg; nlm_res nlm_unlock_res_1_arg; nlm_res nlm_granted_res_1_arg; } argument; union { nlm_testres nlm_test_1_res; nlm_res nlm_lock_1_res; nlm_res nlm_cancel_1_res; nlm_res nlm_unlock_1_res; nlm_res nlm_granted_1_res; } result; bool_t retval; xdrproc_t xdr_argument, xdr_result; bool_t (*local)(char *, void *, struct svc_req *); switch (rqstp->rq_proc) { case NULLPROC: (void) svc_sendreply(rqstp, (xdrproc_t) xdr_void, (char *)NULL); svc_freereq(rqstp); return; case NLM_TEST: xdr_argument = (xdrproc_t) xdr_nlm_testargs; xdr_result = (xdrproc_t) xdr_nlm_testres; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_test_1_svc; break; case NLM_LOCK: xdr_argument = (xdrproc_t) xdr_nlm_lockargs; xdr_result = (xdrproc_t) xdr_nlm_res; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_lock_1_svc; break; case NLM_CANCEL: xdr_argument = (xdrproc_t) xdr_nlm_cancargs; xdr_result = (xdrproc_t) xdr_nlm_res; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_cancel_1_svc; break; case NLM_UNLOCK: xdr_argument = (xdrproc_t) xdr_nlm_unlockargs; xdr_result = (xdrproc_t) xdr_nlm_res; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_unlock_1_svc; break; case NLM_GRANTED: xdr_argument = (xdrproc_t) xdr_nlm_testargs; xdr_result = (xdrproc_t) xdr_nlm_res; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_granted_1_svc; break; case NLM_TEST_MSG: xdr_argument = (xdrproc_t) xdr_nlm_testargs; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_test_msg_1_svc; break; case NLM_LOCK_MSG: xdr_argument = (xdrproc_t) xdr_nlm_lockargs; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_lock_msg_1_svc; break; case NLM_CANCEL_MSG: xdr_argument = (xdrproc_t) xdr_nlm_cancargs; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_cancel_msg_1_svc; break; case NLM_UNLOCK_MSG: xdr_argument = (xdrproc_t) xdr_nlm_unlockargs; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_unlock_msg_1_svc; break; case NLM_GRANTED_MSG: xdr_argument = (xdrproc_t) xdr_nlm_testargs; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_granted_msg_1_svc; break; case NLM_TEST_RES: xdr_argument = (xdrproc_t) xdr_nlm_testres; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_test_res_1_svc; break; case NLM_LOCK_RES: xdr_argument = (xdrproc_t) xdr_nlm_res; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_lock_res_1_svc; break; case NLM_CANCEL_RES: xdr_argument = (xdrproc_t) xdr_nlm_res; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_cancel_res_1_svc; break; case NLM_UNLOCK_RES: xdr_argument = (xdrproc_t) xdr_nlm_res; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_unlock_res_1_svc; break; case NLM_GRANTED_RES: xdr_argument = (xdrproc_t) xdr_nlm_res; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_granted_res_1_svc; break; default: svcerr_noproc(rqstp); svc_freereq(rqstp); return; } (void) memset((char *)&argument, 0, sizeof (argument)); if (!svc_getargs(rqstp, xdr_argument, (char *)(caddr_t) &argument)) { svcerr_decode(rqstp); svc_freereq(rqstp); return; } retval = (bool_t) (*local)((char *)&argument, (void *)&result, rqstp); if (retval > 0 && !svc_sendreply(rqstp, xdr_result, (char *)&result)) { svcerr_systemerr(rqstp); } if (!svc_freeargs(rqstp, xdr_argument, (char *)(caddr_t) &argument)) { printf("unable to free arguments"); //exit(1); } svc_freereq(rqstp); if (!nlm_prog_1_freeresult(transp, xdr_result, (caddr_t) &result)) printf("unable to free results"); return; }
void nlm_prog_3(struct svc_req *rqstp, SVCXPRT *transp) { union { nlm_shareargs nlm_share_3_arg; nlm_shareargs nlm_unshare_3_arg; nlm_lockargs nlm_nm_lock_3_arg; nlm_notify nlm_free_all_3_arg; } argument; union { nlm_shareres nlm_share_3_res; nlm_shareres nlm_unshare_3_res; nlm_res nlm_nm_lock_3_res; } result; bool_t retval; xdrproc_t xdr_argument, xdr_result; bool_t (*local)(char *, void *, struct svc_req *); switch (rqstp->rq_proc) { case NULLPROC: (void) svc_sendreply(rqstp, (xdrproc_t) xdr_void, (char *)NULL); svc_freereq(rqstp); return; case NLM_TEST: case NLM_LOCK: case NLM_CANCEL: case NLM_UNLOCK: case NLM_GRANTED: case NLM_TEST_MSG: case NLM_LOCK_MSG: case NLM_CANCEL_MSG: case NLM_UNLOCK_MSG: case NLM_GRANTED_MSG: case NLM_TEST_RES: case NLM_LOCK_RES: case NLM_CANCEL_RES: case NLM_UNLOCK_RES: case NLM_GRANTED_RES: nlm_prog_1(rqstp, transp); return; case NLM_SHARE: xdr_argument = (xdrproc_t) xdr_nlm_shareargs; xdr_result = (xdrproc_t) xdr_nlm_shareres; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_share_3_svc; break; case NLM_UNSHARE: xdr_argument = (xdrproc_t) xdr_nlm_shareargs; xdr_result = (xdrproc_t) xdr_nlm_shareres; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_unshare_3_svc; break; case NLM_NM_LOCK: xdr_argument = (xdrproc_t) xdr_nlm_lockargs; xdr_result = (xdrproc_t) xdr_nlm_res; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_nm_lock_3_svc; break; case NLM_FREE_ALL: xdr_argument = (xdrproc_t) xdr_nlm_notify; xdr_result = (xdrproc_t) xdr_void; local = (bool_t (*) (char *, void *, struct svc_req *))nlm_free_all_3_svc; break; default: svcerr_noproc(rqstp); svc_freereq(rqstp); return; } (void) memset((char *)&argument, 0, sizeof (argument)); if (!svc_getargs(rqstp, xdr_argument, (char *)(caddr_t) &argument)) { svcerr_decode(rqstp); svc_freereq(rqstp); return; } retval = (bool_t) (*local)((char *)&argument, (void *)&result, rqstp); if (retval > 0 && !svc_sendreply(rqstp, xdr_result, (char *)&result)) { svcerr_systemerr(rqstp); } if (!svc_freeargs(rqstp, xdr_argument, (char *)(caddr_t) &argument)) { printf("unable to free arguments"); //exit(1); } svc_freereq(rqstp); if (!nlm_prog_3_freeresult(transp, xdr_result, (caddr_t) &result)) printf("unable to free results"); return; }