1 /* -*- mode: c; c-basic-offset: 8; indent-tabs-mode: nil; -*-
2 * vim:expandtab:shiftwidth=8:tabstop=8:
6 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
8 * This program is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU General Public License version 2 only,
10 * as published by the Free Software Foundation.
12 * This program is distributed in the hope that it will be useful, but
13 * WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * General Public License version 2 for more details (a copy is included
16 * in the LICENSE file that accompanied this code).
18 * You should have received a copy of the GNU General Public License
19 * version 2 along with this program; If not, see
20 * http://www.sun.com/software/products/lustre/docs/GPLv2.pdf
22 * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
23 * CA 95054 USA or visit www.sun.com if you need additional information or
29 * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
30 * Use is subject to license terms.
32 * Copyright (c) 2011, Whamcloud, Inc.
35 * This file is part of Lustre, http://www.lustre.org/
36 * Lustre is a trademark of Sun Microsystems, Inc.
38 * lustre/ptlrpc/gss/gss_cli_upcall.c
40 * Author: Eric Mei <ericm@clusterfs.com>
44 # define EXPORT_SYMTAB
46 #define DEBUG_SUBSYSTEM S_SEC
48 #include <linux/init.h>
49 #include <linux/module.h>
50 #include <linux/slab.h>
51 #include <linux/dcache.h>
53 #include <linux/mutex.h>
55 #include <liblustre.h>
59 #include <obd_class.h>
60 #include <obd_support.h>
61 #include <lustre/lustre_idl.h>
62 #include <lustre_net.h>
63 #include <lustre_import.h>
64 #include <lustre_sec.h>
67 #include "gss_internal.h"
70 /**********************************************
71 * gss context init/fini helper *
72 **********************************************/
75 int ctx_init_pack_request(struct obd_import *imp,
76 struct ptlrpc_request *req,
82 struct lustre_msg *msg = req->rq_reqbuf;
84 struct gss_header *ghdr;
85 struct ptlrpc_user_desc *pud;
86 __u32 *p, size, offset = 2;
89 LASSERT(msg->lm_bufcount <= 4);
90 LASSERT(req->rq_cli_ctx);
91 LASSERT(req->rq_cli_ctx->cc_sec);
94 ghdr = lustre_msg_buf(msg, 0, sizeof(*ghdr));
95 ghdr->gh_version = PTLRPC_GSS_VERSION;
96 ghdr->gh_sp = (__u8) imp->imp_sec->ps_part;
98 ghdr->gh_proc = PTLRPC_GSS_PROC_INIT;
100 ghdr->gh_svc = SPTLRPC_SVC_NULL;
101 ghdr->gh_handle.len = 0;
103 /* fix the user desc */
104 if (req->rq_pack_udesc) {
105 ghdr->gh_flags |= LUSTRE_GSS_PACK_USER;
107 pud = lustre_msg_buf(msg, offset, sizeof(*pud));
109 pud->pud_uid = pud->pud_fsuid = uid;
110 pud->pud_gid = pud->pud_fsgid = gid;
112 pud->pud_ngroups = 0;
116 /* security payload */
117 p = lustre_msg_buf(msg, offset, 0);
118 size = msg->lm_buflens[offset];
121 /* 1. lustre svc type */
123 *p++ = cpu_to_le32(lustre_srv);
127 obj.len = strlen(imp->imp_obd->u.cli.cl_target_uuid.uuid) + 1;
128 obj.data = imp->imp_obd->u.cli.cl_target_uuid.uuid;
129 if (rawobj_serialize(&obj, &p, &size))
132 /* 3. reverse context handle. actually only needed by root user,
133 * but we send it anyway. */
134 gsec = sec2gsec(req->rq_cli_ctx->cc_sec);
135 obj.len = sizeof(gsec->gs_rvs_hdl);
136 obj.data = (__u8 *) &gsec->gs_rvs_hdl;
137 if (rawobj_serialize(&obj, &p, &size))
140 /* 4. now the token */
141 LASSERT(size >= (sizeof(__u32) + token_size));
142 *p++ = cpu_to_le32(((__u32) token_size));
143 if (cfs_copy_from_user(p, token, token_size)) {
144 CERROR("can't copy token\n");
147 size -= sizeof(__u32) + cfs_size_round4(token_size);
149 req->rq_reqdata_len = lustre_shrink_msg(req->rq_reqbuf, offset,
150 msg->lm_buflens[offset] - size, 0);
155 int ctx_init_parse_reply(struct lustre_msg *msg, int swabbed,
156 char __user *outbuf, long outlen)
158 struct gss_rep_header *ghdr;
159 __u32 obj_len, round_len;
160 __u32 status, effective = 0;
162 if (msg->lm_bufcount != 3) {
163 CERROR("unexpected bufcount %u\n", msg->lm_bufcount);
167 ghdr = (struct gss_rep_header *) gss_swab_header(msg, 0, swabbed);
169 CERROR("unable to extract gss reply header\n");
173 if (ghdr->gh_version != PTLRPC_GSS_VERSION) {
174 CERROR("invalid gss version %u\n", ghdr->gh_version);
178 if (outlen < (4 + 2) * 4 + cfs_size_round4(ghdr->gh_handle.len) +
179 cfs_size_round4(msg->lm_buflens[2])) {
180 CERROR("output buffer size %ld too small\n", outlen);
187 if (cfs_copy_to_user(outbuf, &status, 4))
190 if (cfs_copy_to_user(outbuf, &ghdr->gh_major, 4))
193 if (cfs_copy_to_user(outbuf, &ghdr->gh_minor, 4))
196 if (cfs_copy_to_user(outbuf, &ghdr->gh_seqwin, 4))
202 obj_len = ghdr->gh_handle.len;
203 round_len = (obj_len + 3) & ~ 3;
204 if (cfs_copy_to_user(outbuf, &obj_len, 4))
207 if (cfs_copy_to_user(outbuf, (char *) ghdr->gh_handle.data, round_len))
210 effective += 4 + round_len;
213 obj_len = msg->lm_buflens[2];
214 round_len = (obj_len + 3) & ~ 3;
215 if (cfs_copy_to_user(outbuf, &obj_len, 4))
218 if (cfs_copy_to_user(outbuf, lustre_msg_buf(msg, 2, 0), round_len))
221 effective += 4 + round_len;
226 /* XXX move to where lgssd could see */
227 struct lgssd_ioctl_param {
228 int version; /* in */
231 int lustre_svc; /* in */
234 long send_token_size;/* in */
235 char *send_token; /* in */
236 long reply_buf_size; /* in */
237 char *reply_buf; /* in */
238 long status; /* out */
239 long reply_length; /* out */
242 int gss_do_ctx_init_rpc(__user char *buffer, unsigned long count)
244 struct obd_import *imp;
245 struct ptlrpc_request *req;
246 struct lgssd_ioctl_param param;
247 struct obd_device *obd;
252 if (count != sizeof(param)) {
253 CERROR("ioctl size %lu, expect %lu, please check lgss_keyring "
254 "version\n", count, (unsigned long) sizeof(param));
257 if (cfs_copy_from_user(¶m, buffer, sizeof(param))) {
258 CERROR("failed copy data from lgssd\n");
262 if (param.version != GSSD_INTERFACE_VERSION) {
263 CERROR("gssd interface version %d (expect %d)\n",
264 param.version, GSSD_INTERFACE_VERSION);
269 if (strncpy_from_user(obdname, param.uuid, sizeof(obdname)) <= 0) {
270 CERROR("Invalid obdname pointer\n");
274 obd = class_name2obd(obdname);
276 CERROR("no such obd %s\n", obdname);
280 if (unlikely(!obd->obd_set_up)) {
281 CERROR("obd %s not setup\n", obdname);
285 cfs_spin_lock(&obd->obd_dev_lock);
286 if (obd->obd_stopping) {
287 CERROR("obd %s has stopped\n", obdname);
288 cfs_spin_unlock(&obd->obd_dev_lock);
292 if (strcmp(obd->obd_type->typ_name, LUSTRE_MDC_NAME) &&
293 strcmp(obd->obd_type->typ_name, LUSTRE_OSC_NAME) &&
294 strcmp(obd->obd_type->typ_name, LUSTRE_MGC_NAME)) {
295 CERROR("obd %s is not a client device\n", obdname);
296 cfs_spin_unlock(&obd->obd_dev_lock);
299 cfs_spin_unlock(&obd->obd_dev_lock);
301 cfs_down_read(&obd->u.cli.cl_sem);
302 if (obd->u.cli.cl_import == NULL) {
303 CERROR("obd %s: import has gone\n", obd->obd_name);
304 cfs_up_read(&obd->u.cli.cl_sem);
307 imp = class_import_get(obd->u.cli.cl_import);
308 cfs_up_read(&obd->u.cli.cl_sem);
310 if (imp->imp_deactive) {
311 CERROR("import has been deactivated\n");
312 class_import_put(imp);
316 req = ptlrpc_request_alloc_pack(imp, &RQF_SEC_CTX, LUSTRE_OBD_VERSION,
319 param.status = -ENOMEM;
323 if (req->rq_cli_ctx->cc_sec->ps_id != param.secid) {
324 CWARN("original secid %d, now has changed to %d, "
325 "cancel this negotiation\n", param.secid,
326 req->rq_cli_ctx->cc_sec->ps_id);
327 param.status = -EINVAL;
332 rc = ctx_init_pack_request(imp, req,
334 param.uid, param.gid,
335 param.send_token_size,
342 ptlrpc_request_set_replen(req);
344 rc = ptlrpc_queue_wait(req);
346 /* If any _real_ denial be made, we expect server return
347 * -EACCES reply or return success but indicate gss error
348 * inside reply messsage. All other errors are treated as
349 * timeout, caller might try the negotiation repeatedly,
350 * leave recovery decisions to general ptlrpc layer.
352 * FIXME maybe some other error code shouldn't be treated
356 param.status = -ETIMEDOUT;
360 LASSERT(req->rq_repdata);
361 lsize = ctx_init_parse_reply(req->rq_repdata,
362 ptlrpc_rep_need_swab(req),
363 param.reply_buf, param.reply_buf_size);
365 param.status = (int) lsize;
370 param.reply_length = lsize;
373 if (cfs_copy_to_user(buffer, ¶m, sizeof(param)))
378 class_import_put(imp);
379 ptlrpc_req_finished(req);
383 int gss_do_ctx_fini_rpc(struct gss_cli_ctx *gctx)
385 struct ptlrpc_cli_ctx *ctx = &gctx->gc_base;
386 struct obd_import *imp = ctx->cc_sec->ps_import;
387 struct ptlrpc_request *req;
388 struct ptlrpc_user_desc *pud;
392 LASSERT(cfs_atomic_read(&ctx->cc_refcount) > 0);
394 if (cli_ctx_is_error(ctx) || !cli_ctx_is_uptodate(ctx)) {
395 CDEBUG(D_SEC, "ctx %p(%u->%s) not uptodate, "
396 "don't send destroy rpc\n", ctx,
397 ctx->cc_vcred.vc_uid, sec2target_str(ctx->cc_sec));
403 CWARN("%s ctx %p idx "LPX64" (%u->%s)\n",
404 sec_is_reverse(ctx->cc_sec) ?
405 "server finishing reverse" : "client finishing forward",
406 ctx, gss_handle_to_u64(&gctx->gc_handle),
407 ctx->cc_vcred.vc_uid, sec2target_str(ctx->cc_sec));
409 gctx->gc_proc = PTLRPC_GSS_PROC_DESTROY;
411 req = ptlrpc_request_alloc(imp, &RQF_SEC_CTX);
413 CWARN("ctx %p(%u): fail to prepare rpc, destroy locally\n",
414 ctx, ctx->cc_vcred.vc_uid);
415 GOTO(out, rc = -ENOMEM);
418 rc = ptlrpc_request_bufs_pack(req, LUSTRE_OBD_VERSION, SEC_CTX_FINI,
421 ptlrpc_request_free(req);
425 /* fix the user desc */
426 if (req->rq_pack_udesc) {
427 /* we rely the fact that this request is in AUTH mode,
428 * and user_desc at offset 2. */
429 pud = lustre_msg_buf(req->rq_reqbuf, 2, sizeof(*pud));
431 pud->pud_uid = pud->pud_fsuid = ctx->cc_vcred.vc_uid;
432 pud->pud_gid = pud->pud_fsgid = ctx->cc_vcred.vc_gid;
434 pud->pud_ngroups = 0;
437 req->rq_phase = RQ_PHASE_RPC;
438 rc = ptl_send_rpc(req, 1);
440 CWARN("ctx %p(%u->%s): rpc error %d, destroy locally\n", ctx,
441 ctx->cc_vcred.vc_uid, sec2target_str(ctx->cc_sec), rc);
444 ptlrpc_req_finished(req);
449 int __init gss_init_cli_upcall(void)
454 void __exit gss_exit_cli_upcall(void)
git://git.whamcloud.com / fs / lustre-release.git / blob