4 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 only,
8 * as published by the Free Software Foundation.
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * General Public License version 2 for more details (a copy is included
14 * in the LICENSE file that accompanied this code).
16 * You should have received a copy of the GNU General Public License
17 * version 2 along with this program; If not, see
18 * http://www.sun.com/software/products/lustre/docs/GPLv2.pdf
20 * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
21 * CA 95054 USA or visit www.sun.com if you need additional information or
27 * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
28 * Use is subject to license terms.
30 * Copyright (c) 2014, Intel Corporation.
33 * This file is part of Lustre, http://www.lustre.org/
34 * Lustre is a trademark of Sun Microsystems, Inc.
41 #include <sys/param.h>
42 #include <sys/utsname.h>
44 #include <sys/socket.h>
45 #include <arpa/inet.h>
46 #include <sys/types.h>
66 #include <lnet/nidstr.h>
68 # include "lgss_utils.h"
70 # include "err_util.h"
75 const char * lustre_svc_name[] =
77 [LUSTRE_GSS_SVC_MGS] = "MGS",
78 [LUSTRE_GSS_SVC_MDS] = "MDS",
79 [LUSTRE_GSS_SVC_OSS] = "OSS",
82 /****************************************
84 ****************************************/
86 static struct __sem_s {
91 [GSSD_CLI] = { "client", 0x3a92d473, 0 },
92 [GSSD_SVC] = { "server", 0x3b92d473, 0 },
95 void gssd_init_unique(int type)
97 struct __sem_s *sem = &sems[type];
100 assert(type == GSSD_CLI || type == GSSD_SVC);
103 sem->sem_id = semget(sem->sem_key, 1, IPC_CREAT | IPC_EXCL | 0700);
104 if (sem->sem_id == -1) {
105 if (errno != EEXIST) {
106 printerr(0, "Create sem: %s\n", strerror(errno));
110 /* already exist. Note there's still a small window racing
111 * with other processes, due to the stupid semaphore semantics.
113 sem->sem_id = semget(sem->sem_key, 0, 0700);
114 if (sem->sem_id == -1) {
115 if (errno == ENOENT) {
116 printerr(0, "another instance just exit, "
121 printerr(0, "Obtain sem: %s\n", strerror(errno));
127 if (semctl(sem->sem_id, 0, SETVAL, val) == -1) {
128 printerr(0, "Initialize sem: %s\n",
136 sembuf.sem_flg = IPC_NOWAIT | SEM_UNDO;
138 if (semop(sem->sem_id, &sembuf, 1) != 0) {
139 if (errno == EAGAIN) {
140 printerr(0, "Another instance is running, exit\n");
143 printerr(0, "Grab sem: %s\n", strerror(errno));
147 printerr(2, "Successfully created %s global identity\n", sem->name);
150 void gssd_exit_unique(int type)
152 assert(type == GSSD_CLI || type == GSSD_SVC);
155 * do nothing. we can't remove the sem here, otherwise the race
156 * window would be much bigger. So it's sad we have to leave the
157 * sem in the system forever.
161 /****************************************
162 * client side resolvation: *
163 * lnd/netid/nid => hostname *
164 ****************************************/
166 char gethostname_ex[PATH_MAX] = GSSD_DEFAULT_GETHOSTNAME_EX;
168 typedef int lnd_nid2hostname_t(char *lnd, uint32_t net, uint32_t addr,
169 char *buf, int buflen);
171 /* FIXME what about IPv6? */
173 int ipv4_nid2hostname(char *lnd, uint32_t net, uint32_t addr,
174 char *buf, int buflen)
179 ent = gethostbyaddr(&addr, sizeof(addr), AF_INET);
181 printerr(0, "%s: can't resolve 0x%x\n", lnd, addr);
184 if (strlen(ent->h_name) >= buflen) {
185 printerr(0, "%s: name too long: %s\n", lnd, ent->h_name);
188 strcpy(buf, ent->h_name);
190 printerr(2, "%s: net 0x%x, addr 0x%x => %s\n",
191 lnd, net, addr, buf);
196 int lolnd_nid2hostname(char *lnd, uint32_t net, uint32_t addr,
197 char *buf, int buflen)
203 printerr(0, "%s: addr is 0x%x, we expect 0\n", lnd, addr);
208 printerr(0, "%s: failed obtain local machine name\n", lnd);
212 ent = gethostbyname(uts.nodename);
214 printerr(0, "%s: failed obtain canonical name of %s\n",
219 if (strlen(ent->h_name) >= buflen) {
220 printerr(0, "%s: name too long: %s\n", lnd, ent->h_name);
223 strcpy(buf, ent->h_name);
225 printerr(3, "%s: addr 0x%x => %s\n", lnd, addr, buf);
229 static int is_space(char c)
231 return (c == ' ' || c == '\t' || c == '\n');
235 int external_nid2hostname(char *lnd, uint32_t net, uint32_t addr,
236 char *namebuf, int namebuflen)
238 const int bufsize = PATH_MAX + 256;
239 char buf[bufsize], *head, *tail;
242 sprintf(buf, "%s %s 0x%x 0x%x", gethostname_ex, lnd, net, addr);
243 printerr(2, "cmd: %s\n", buf);
245 fghn = popen(buf, "r");
247 printerr(0, "failed to call %s\n", gethostname_ex);
251 head = fgets(buf, bufsize, fghn);
253 printerr(0, "can't read from %s\n", gethostname_ex);
256 if (pclose(fghn) == -1)
257 printerr(1, "pclose failed, continue\n");
259 /* trim head/tail space */
260 while (is_space(*head))
263 tail = head + strlen(head);
265 printerr(0, "no output from %s\n", gethostname_ex);
268 while (is_space(*(tail - 1)))
271 printerr(0, "output are all space from %s\n", gethostname_ex);
276 /* start with '@' means error msg */
277 if (head[0] == '@') {
278 printerr(0, "error from %s: %s\n", gethostname_ex, &head[1]);
282 if (tail - head > namebuflen) {
283 printerr(0, "external hostname too long: %s\n", head);
287 printerr(2, "%s: net 0x%x, addr 0x%x => %s\n",
288 lnd, net, addr, head);
289 strcpy(namebuf, head);
293 struct convert_struct {
295 lnd_nid2hostname_t *nid2name;
298 static struct convert_struct converter[] = {
299 [0] = { "UNUSED0", NULL},
300 [QSWLND] = { "QSWLND", external_nid2hostname},
301 [SOCKLND] = { "SOCKLND", ipv4_nid2hostname },
302 [GMLND] = { "GMLND", external_nid2hostname},
303 [PTLLND] = { "PTLLND", external_nid2hostname },
304 [O2IBLND] = { "O2IBLND", ipv4_nid2hostname },
305 [LOLND] = { "LOLND", lolnd_nid2hostname },
306 [RALND] = { "RALND", external_nid2hostname },
307 [MXLND] = { "MXLND", external_nid2hostname },
310 #define LND_MAX (sizeof(converter) / sizeof(converter[0]))
312 int lnet_nid2hostname(lnet_nid_t nid, char *buf, int buflen)
314 uint32_t lnd, net, addr;
316 addr = LNET_NIDADDR(nid);
317 net = LNET_NIDNET(nid);
318 lnd = LNET_NETTYP(net);
320 if (lnd >= LND_MAX) {
321 printerr(0, "ERROR: Unrecognized LND %u\n", lnd);
325 if (converter[lnd].nid2name == NULL) {
326 printerr(0, "ERROR: %s converter not ready\n",
327 converter[lnd].name);
331 return converter[lnd].nid2name(converter[lnd].name, net, addr,
336 /****************************************
337 * user mapping database handling *
339 ****************************************/
341 #define MAPPING_GROW_SIZE 512
342 #define MAX_LINE_LEN 256
344 struct user_map_item {
345 char *principal; /* NULL means match all */
350 struct user_mapping {
352 struct user_map_item *items;
355 static struct user_mapping mapping = {0, NULL};
356 /* FIXME to be finished: monitor change of mapping database */
357 static int mapping_mtime = 0;
359 void cleanup_mapping(void)
362 for (; mapping.nitems > 0; mapping.nitems--)
363 if (mapping.items[mapping.nitems-1].principal)
364 free(mapping.items[mapping.nitems-1].principal);
367 mapping.items = NULL;
371 static int grow_mapping(int nitems)
373 struct user_map_item *new;
374 int oldsize, newsize;
376 oldsize = (mapping.nitems * sizeof(struct user_map_item) +
377 MAPPING_GROW_SIZE - 1) / MAPPING_GROW_SIZE;
378 newsize = (nitems * sizeof(struct user_map_item) +
379 MAPPING_GROW_SIZE - 1) / MAPPING_GROW_SIZE;
380 while (newsize <= oldsize)
383 newsize *= MAPPING_GROW_SIZE;
384 new = malloc(newsize);
386 printerr(0, "can't alloc mapping size %d\n", newsize);
391 memcpy(new, mapping.items,
392 mapping.nitems * sizeof(struct user_map_item));
399 uid_t parse_uid(char *uidstr)
405 pw = getpwnam(uidstr);
409 uid = strtol(uidstr, &p, 0);
416 static int read_mapping_db(void)
418 char princ[MAX_LINE_LEN];
419 char nid_str[MAX_LINE_LEN];
420 char dest[MAX_LINE_LEN];
421 char linebuf[MAX_LINE_LEN];
427 /* cleanup old mappings */
430 f = fopen(MAPPING_DATABASE_FILE, "r");
432 printerr(0, "can't open mapping database: %s\n",
433 MAPPING_DATABASE_FILE);
437 while ((line = fgets(linebuf, MAX_LINE_LEN, f)) != NULL) {
440 if (sscanf(line, "%s %s %s", princ, nid_str, dest) != 3) {
441 printerr(0, "mapping db: syntax error\n");
445 if (!strcmp(princ, "*")) {
448 name = strdup(princ);
450 printerr(0, "fail to dup str %s\n", princ);
455 if (!strcmp(nid_str, "*")) {
458 nid = libcfs_str2nid(nid_str);
459 if (nid == LNET_NID_ANY) {
460 printerr(0, "fail to parse nid %s\n", nid_str);
467 dest_uid = parse_uid(dest);
468 if (dest_uid == -1) {
469 printerr(0, "no valid user: %s\n", dest);
475 if (grow_mapping(mapping.nitems + 1)) {
476 printerr(0, "fail to grow mapping to %d\n",
484 mapping.items[mapping.nitems].principal = name;
485 mapping.items[mapping.nitems].nid = nid;
486 mapping.items[mapping.nitems].uid = dest_uid;
488 printerr(1, "add mapping: %s(%s/0x%llx) ==> %d\n",
489 name, nid_str, nid, dest_uid);
496 static inline int mapping_changed(void)
500 if (stat(MAPPING_DATABASE_FILE, &st) == -1) {
501 /* stat failed, treat it like doesn't exist or be removed */
502 if (mapping_mtime == 0) {
505 printerr(0, "Warning: stat %s failed: %s\n",
506 MAPPING_DATABASE_FILE, strerror(errno));
513 if (st.st_mtime != mapping_mtime) {
514 mapping_mtime = st.st_mtime;
521 int lookup_mapping(char *princ, lnet_nid_t nid, uid_t *uid)
527 /* FIXME race condition here */
528 if (mapping_changed()) {
529 if (read_mapping_db())
530 printerr(0, "all remote users will be denied\n");
533 for (n = 0; n < mapping.nitems; n++) {
534 struct user_map_item *entry = &mapping.items[n];
536 if (entry->nid != LNET_NID_ANY && entry->nid != nid)
538 if (!entry->principal || !strcasecmp(entry->principal, princ)) {
539 printerr(1, "found mapping: %s ==> %d\n",
546 printerr(2, "no mapping for %s/%#Lx\n", princ, nid);
git://git.whamcloud.com / fs / lustre-release.git / blob