4 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 only,
8 * as published by the Free Software Foundation.
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * General Public License version 2 for more details (a copy is included
14 * in the LICENSE file that accompanied this code).
16 * You should have received a copy of the GNU General Public License
17 * version 2 along with this program; If not, see
18 * http://www.sun.com/software/products/lustre/docs/GPLv2.pdf
20 * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
21 * CA 95054 USA or visit www.sun.com if you need additional information or
27 * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
28 * Use is subject to license terms.
31 * This file is part of Lustre, http://www.lustre.org/
32 * Lustre is a trademark of Sun Microsystems, Inc.
39 #include <sys/param.h>
40 #include <sys/utsname.h>
42 #include <sys/socket.h>
43 #include <arpa/inet.h>
44 #include <sys/types.h>
60 #ifdef HAVE_GETHOSTBYNAME
63 #include <lnet/nidstr.h>
65 # include "lgss_utils.h"
67 # include "err_util.h"
72 const char * lustre_svc_name[] =
74 [LUSTRE_GSS_SVC_MGS] = "MGS",
75 [LUSTRE_GSS_SVC_MDS] = "MDS",
76 [LUSTRE_GSS_SVC_OSS] = "OSS",
79 /****************************************
81 ****************************************/
83 static struct __sem_s {
88 [GSSD_CLI] = { "client", 0x3a92d473, 0 },
89 [GSSD_SVC] = { "server", 0x3b92d473, 0 },
92 void gssd_init_unique(int type)
94 struct __sem_s *sem = &sems[type];
97 assert(type == GSSD_CLI || type == GSSD_SVC);
100 sem->sem_id = semget(sem->sem_key, 1, IPC_CREAT | IPC_EXCL | 0700);
101 if (sem->sem_id == -1) {
102 if (errno != EEXIST) {
103 printerr(0, "Create sem: %s\n", strerror(errno));
107 /* already exist. Note there's still a small window racing
108 * with other processes, due to the stupid semaphore semantics.
110 sem->sem_id = semget(sem->sem_key, 0, 0700);
111 if (sem->sem_id == -1) {
112 if (errno == ENOENT) {
113 printerr(0, "another instance just exit, "
118 printerr(0, "Obtain sem: %s\n", strerror(errno));
124 if (semctl(sem->sem_id, 0, SETVAL, val) == -1) {
125 printerr(0, "Initialize sem: %s\n",
133 sembuf.sem_flg = IPC_NOWAIT | SEM_UNDO;
135 if (semop(sem->sem_id, &sembuf, 1) != 0) {
136 if (errno == EAGAIN) {
137 printerr(0, "Another instance is running, exit\n");
140 printerr(0, "Grab sem: %s\n", strerror(errno));
144 printerr(2, "Successfully created %s global identity\n", sem->name);
147 void gssd_exit_unique(int type)
149 assert(type == GSSD_CLI || type == GSSD_SVC);
152 * do nothing. we can't remove the sem here, otherwise the race
153 * window would be much bigger. So it's sad we have to leave the
154 * sem in the system forever.
158 /****************************************
159 * client side resolvation: *
160 * lnd/netid/nid => hostname *
161 ****************************************/
163 char gethostname_ex[PATH_MAX] = GSSD_DEFAULT_GETHOSTNAME_EX;
165 typedef int lnd_nid2hostname_t(char *lnd, uint32_t net, uint32_t addr,
166 char *buf, int buflen);
168 /* FIXME what about IPv6? */
170 int ipv4_nid2hostname(char *lnd, uint32_t net, uint32_t addr,
171 char *buf, int buflen)
176 ent = gethostbyaddr(&addr, sizeof(addr), AF_INET);
178 printerr(0, "%s: can't resolve 0x%x\n", lnd, addr);
181 if (strlen(ent->h_name) >= buflen) {
182 printerr(0, "%s: name too long: %s\n", lnd, ent->h_name);
185 strcpy(buf, ent->h_name);
187 printerr(2, "%s: net 0x%x, addr 0x%x => %s\n",
188 lnd, net, addr, buf);
193 int lolnd_nid2hostname(char *lnd, uint32_t net, uint32_t addr,
194 char *buf, int buflen)
200 printerr(0, "%s: addr is 0x%x, we expect 0\n", lnd, addr);
205 printerr(0, "%s: failed obtain local machine name\n", lnd);
209 ent = gethostbyname(uts.nodename);
211 printerr(0, "%s: failed obtain canonical name of %s\n",
216 if (strlen(ent->h_name) >= buflen) {
217 printerr(0, "%s: name too long: %s\n", lnd, ent->h_name);
220 strcpy(buf, ent->h_name);
222 printerr(3, "%s: addr 0x%x => %s\n", lnd, addr, buf);
226 static int is_space(char c)
228 return (c == ' ' || c == '\t' || c == '\n');
232 int external_nid2hostname(char *lnd, uint32_t net, uint32_t addr,
233 char *namebuf, int namebuflen)
235 const int bufsize = PATH_MAX + 256;
236 char buf[bufsize], *head, *tail;
239 sprintf(buf, "%s %s 0x%x 0x%x", gethostname_ex, lnd, net, addr);
240 printerr(2, "cmd: %s\n", buf);
242 fghn = popen(buf, "r");
244 printerr(0, "failed to call %s\n", gethostname_ex);
248 head = fgets(buf, bufsize, fghn);
250 printerr(0, "can't read from %s\n", gethostname_ex);
253 if (pclose(fghn) == -1)
254 printerr(1, "pclose failed, continue\n");
256 /* trim head/tail space */
257 while (is_space(*head))
260 tail = head + strlen(head);
262 printerr(0, "no output from %s\n", gethostname_ex);
265 while (is_space(*(tail - 1)))
268 printerr(0, "output are all space from %s\n", gethostname_ex);
273 /* start with '@' means error msg */
274 if (head[0] == '@') {
275 printerr(0, "error from %s: %s\n", gethostname_ex, &head[1]);
279 if (tail - head > namebuflen) {
280 printerr(0, "external hostname too long: %s\n", head);
284 printerr(2, "%s: net 0x%x, addr 0x%x => %s\n",
285 lnd, net, addr, head);
286 strcpy(namebuf, head);
290 struct convert_struct {
292 lnd_nid2hostname_t *nid2name;
295 static struct convert_struct converter[] = {
296 [0] = { "UNUSED0", NULL},
297 [QSWLND] = { "QSWLND", external_nid2hostname},
298 [SOCKLND] = { "SOCKLND", ipv4_nid2hostname },
299 [GMLND] = { "GMLND", external_nid2hostname},
300 [PTLLND] = { "PTLLND", external_nid2hostname },
301 [O2IBLND] = { "O2IBLND", ipv4_nid2hostname },
302 [LOLND] = { "LOLND", lolnd_nid2hostname },
303 [RALND] = { "RALND", external_nid2hostname },
304 [MXLND] = { "MXLND", external_nid2hostname },
307 #define LND_MAX (sizeof(converter) / sizeof(converter[0]))
309 int lnet_nid2hostname(lnet_nid_t nid, char *buf, int buflen)
311 uint32_t lnd, net, addr;
313 addr = LNET_NIDADDR(nid);
314 net = LNET_NIDNET(nid);
315 lnd = LNET_NETTYP(net);
317 if (lnd >= LND_MAX) {
318 printerr(0, "ERROR: Unrecognized LND %u\n", lnd);
322 if (converter[lnd].nid2name == NULL) {
323 printerr(0, "ERROR: %s converter not ready\n",
324 converter[lnd].name);
328 return converter[lnd].nid2name(converter[lnd].name, net, addr,
333 /****************************************
334 * user mapping database handling *
336 ****************************************/
338 #define MAPPING_GROW_SIZE 512
339 #define MAX_LINE_LEN 256
341 struct user_map_item {
342 char *principal; /* NULL means match all */
347 struct user_mapping {
349 struct user_map_item *items;
352 static struct user_mapping mapping = {0, NULL};
353 /* FIXME to be finished: monitor change of mapping database */
354 static int mapping_mtime = 0;
356 void cleanup_mapping(void)
359 for (; mapping.nitems > 0; mapping.nitems--)
360 if (mapping.items[mapping.nitems-1].principal)
361 free(mapping.items[mapping.nitems-1].principal);
364 mapping.items = NULL;
368 static int grow_mapping(int nitems)
370 struct user_map_item *new;
371 int oldsize, newsize;
373 oldsize = (mapping.nitems * sizeof(struct user_map_item) +
374 MAPPING_GROW_SIZE - 1) / MAPPING_GROW_SIZE;
375 newsize = (nitems * sizeof(struct user_map_item) +
376 MAPPING_GROW_SIZE - 1) / MAPPING_GROW_SIZE;
377 while (newsize <= oldsize)
380 newsize *= MAPPING_GROW_SIZE;
381 new = malloc(newsize);
383 printerr(0, "can't alloc mapping size %d\n", newsize);
388 memcpy(new, mapping.items,
389 mapping.nitems * sizeof(struct user_map_item));
396 uid_t parse_uid(char *uidstr)
402 pw = getpwnam(uidstr);
406 uid = strtol(uidstr, &p, 0);
413 static int read_mapping_db(void)
415 char princ[MAX_LINE_LEN];
416 char nid_str[MAX_LINE_LEN];
417 char dest[MAX_LINE_LEN];
418 char linebuf[MAX_LINE_LEN];
424 /* cleanup old mappings */
427 f = fopen(MAPPING_DATABASE_FILE, "r");
429 printerr(0, "can't open mapping database: %s\n",
430 MAPPING_DATABASE_FILE);
434 while ((line = fgets(linebuf, MAX_LINE_LEN, f)) != NULL) {
437 if (sscanf(line, "%s %s %s", princ, nid_str, dest) != 3) {
438 printerr(0, "mapping db: syntax error\n");
442 if (!strcmp(princ, "*")) {
445 name = strdup(princ);
447 printerr(0, "fail to dup str %s\n", princ);
452 if (!strcmp(nid_str, "*")) {
455 nid = libcfs_str2nid(nid_str);
456 if (nid == LNET_NID_ANY) {
457 printerr(0, "fail to parse nid %s\n", nid_str);
464 dest_uid = parse_uid(dest);
465 if (dest_uid == -1) {
466 printerr(0, "no valid user: %s\n", dest);
472 if (grow_mapping(mapping.nitems + 1)) {
473 printerr(0, "fail to grow mapping to %d\n",
481 mapping.items[mapping.nitems].principal = name;
482 mapping.items[mapping.nitems].nid = nid;
483 mapping.items[mapping.nitems].uid = dest_uid;
485 printerr(1, "add mapping: %s(%s/0x%llx) ==> %d\n",
486 name, nid_str, nid, dest_uid);
493 static inline int mapping_changed(void)
497 if (stat(MAPPING_DATABASE_FILE, &st) == -1) {
498 /* stat failed, treat it like doesn't exist or be removed */
499 if (mapping_mtime == 0) {
502 printerr(0, "Warning: stat %s failed: %s\n",
503 MAPPING_DATABASE_FILE, strerror(errno));
510 if (st.st_mtime != mapping_mtime) {
511 mapping_mtime = st.st_mtime;
518 int lookup_mapping(char *princ, lnet_nid_t nid, uid_t *uid)
524 /* FIXME race condition here */
525 if (mapping_changed()) {
526 if (read_mapping_db())
527 printerr(0, "all remote users will be denied\n");
530 for (n = 0; n < mapping.nitems; n++) {
531 struct user_map_item *entry = &mapping.items[n];
533 if (entry->nid != LNET_NID_ANY && entry->nid != nid)
535 if (!entry->principal || !strcasecmp(entry->principal, princ)) {
536 printerr(1, "found mapping: %s ==> %d\n",
543 printerr(2, "no mapping for %s/%#Lx\n", princ, nid);
git://git.whamcloud.com / fs / lustre-release.git / blob