| blob | 7245445a5eb855e20c79dc95097f8ba286a8b497 |
1 /*
2 * Copyright (c) 1995
3 * A.R. Gordon (andrew.gordon@net-tel.co.uk). All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. All advertising materials mentioning features or use of this software
14 * must display the following acknowledgement:
15 * This product includes software developed for the FreeBSD project
16 * 4. Neither the name of the author nor the names of any co-contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
19 *
20 * THIS SOFTWARE IS PROVIDED BY ANDREW GORDON AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30 * SUCH DAMAGE.
31 *
32 * $FreeBSD: src/usr.sbin/rpc.lockd/procs.c,v 1.4.2.2 2001/08/01 06:39:36 alfred Exp $
33 * $DragonFly: src/usr.sbin/rpc.lockd/procs.c,v 1.3 2005/11/25 00:32:49 swildner Exp $
34 */
36 #include <string.h>
40 #include <sys/socket.h>
41 #include <netinet/in.h>
42 #include <arpa/inet.h>
43 #include <netdb.h>
49 #if 0
50 #undef LOG_DEBUG
51 #undef LOG_ERR
52 #define LOG_DEBUG stderr
53 #define LOG_ERR stderr
54 #define syslog fprintf
55 #endif
57 /* log_from_addr ----------------------------------------------------------- */
58 /*
59 Purpose: Log name of function called and source address
60 Returns: Nothing
61 Notes: Extracts the source address from the transport handle
62 passed in as part of the called procedure specification
63 */
65 static void
67 {
75 {
78 }
80 {
82 }
85 }
88 /* get_client -------------------------------------------------------------- */
89 /*
90 Purpose: Get a CLIENT* for making RPC calls to lockd on given host
91 Returns: CLIENT* pointer, from clnt_udp_create, or NULL if error
92 Notes: Creating a CLIENT* is quite expensive, involving a
93 conversation with the remote portmapper to get the
94 port number. Since a given client is quite likely
95 to make several locking requests in succession, it is
96 desirable to cache the created CLIENT*.
98 Since we are using UDP rather than TCP, there is no cost
99 to the remote system in keeping these cached indefinitely.
100 Unfortunately there is a snag: if the remote system
101 reboots, the cached portmapper results will be invalid,
102 and we will never detect this since all of the xxx_msg()
103 calls return no result - we just fire off a udp packet
104 and hope for the best.
106 We solve this by discarding cached values after two
107 minutes, regardless of whether they have been used
108 in the meanwhile (since a bad one might have been used
109 plenty of times, as the host keeps retrying the request
110 and we keep sending the reply back to the wrong port).
112 Given that the entries will always expire in the order
113 that they were created, there is no point in a LRU
114 algorithm for when the cache gets full - entries are
115 always re-used in sequence.
116 */
125 {
133 /* Search for the given client in the cache, zapping any expired */
134 /* entries that we happen to notice in passing. */
136 {
140 {
141 /* Cache entry has expired. */
147 }
151 {
152 /* Found it! */
155 }
156 }
158 /* Not found in cache. Free the next entry if it is in use */
160 {
163 }
165 /* Create the new client handle */
173 {
178 }
180 /* Success - update the cache entry */
187 /* Disable the default timeout, so we can specify our own in calls */
188 /* to clnt_call(). [note that the timeout is a different concept */
189 /* from the retry period set in clnt_udp_create() above.] */
197 }
200 /* transmit_result --------------------------------------------------------- */
201 /*
202 Purpose: Transmit result for nlm_xxx_msg pseudo-RPCs
203 Returns: Nothing - we have no idea if the datagram got there
204 Notes: clnt_call() will always fail (with timeout) as we are
205 calling it with timeout 0 as a hack to just issue a datagram
206 without expecting a result
207 */
209 static void
211 {
220 {
228 }
229 }
231 /* ------------------------------------------------------------------------- */
232 /*
233 Functions for Unix<->Unix locking (ie. monitored locking, with rpc.statd
234 involved to ensure reclaim of locks after a crash of the "stateless"
235 server.
237 These all come in two flavours - nlm_xxx() and nlm_xxx_msg().
238 The first are standard RPCs with argument and result.
239 The nlm_xxx_msg() calls implement exactly the same functions, but
240 use two pseudo-RPCs (one in each direction). These calls are NOT
241 standard use of the RPC protocol in that they do not return a result
242 at all (NB. this is quite different from returning a void result).
243 The effect of this is to make the nlm_xxx_msg() calls simple unacknowledged
244 datagrams, requiring higher-level code to perform retries.
246 Despite the disadvantages of the nlm_xxx_msg() approach (some of which
247 are documented in the comments to get_client() above), this is the
248 interface used by all current commercial NFS implementations
249 [Solaris, SCO, AIX etc.]. This is presumed to be because these allow
250 implementations to continue using the standard RPC libraries, while
251 avoiding the block-until-result nature of the library interface.
253 No client implementations have been identified so far that make use
254 of the true RPC version (early SunOS releases would be a likely candidate
255 for testing).
256 */
259 /* nlm_test ---------------------------------------------------------------- */
260 /*
261 Purpose: Test whether a specified lock would be granted if requested
262 Returns: nlm_granted (or error code)
263 Notes:
264 */
266 nlm_testres *
268 {
272 /* Copy the cookie from the argument into the result. Note that this */
273 /* is slightly hazardous, as the structure contains a pointer to a */
274 /* malloc()ed buffer that will get freed by the caller. However, the */
275 /* main function transmits the result before freeing the argument */
276 /* so it is in fact safe. */
280 }
282 nlm4_testres *
284 {
288 /* Copy the cookie from the argument into the result. Note that this */
289 /* is slightly hazardous, as the structure contains a pointer to a */
290 /* malloc()ed buffer that will get freed by the caller. However, the */
291 /* main function transmits the result before freeing the argument */
292 /* so it is in fact safe. */
296 }
300 {
301 nlm_testres res;
313 /* nlm_test has different result type to the other operations, so */
314 /* can't use transmit_result() in this case */
317 {
325 }
327 }
331 {
332 nlm4_testres res;
344 /* nlm_test has different result type to the other operations, so */
345 /* can't use transmit_result() in this case */
348 {
356 }
358 }
362 /* nlm_lock ---------------------------------------------------------------- */
363 /*
364 Purposes: Establish a lock
365 Returns: granted, denied or blocked
366 Notes: *** grace period support missing
367 */
369 nlm_res *
371 {
375 /* copy cookie from arg to result. See comment in nlm_test_1() */
380 }
382 nlm4_res *
384 {
389 /* copy cookie from arg to result. See comment in nlm_test_1() */
394 }
398 {
408 }
412 {
422 }
425 /* nlm_cancel -------------------------------------------------------------- */
426 /*
427 Purpose: Cancel a blocked lock request
428 Returns: granted or denied
429 Notes:
430 */
432 nlm_res *
434 {
438 /* copy cookie from arg to result. See comment in nlm_test_1() */
441 /* Since at present we never return 'nlm_blocked', there can never be */
442 /* a lock to cancel, so this call always fails. */
445 }
447 nlm4_res *
449 {
453 /* copy cookie from arg to result. See comment in nlm_test_1() */
456 /* Since at present we never return 'nlm_blocked', there can never be */
457 /* a lock to cancel, so this call always fails. */
460 }
464 {
469 /* Since at present we never return 'nlm_blocked', there can never be */
470 /* a lock to cancel, so this call always fails. */
474 }
478 {
483 /* Since at present we never return 'nlm_blocked', there can never be */
484 /* a lock to cancel, so this call always fails. */
488 }
490 /* nlm_unlock -------------------------------------------------------------- */
491 /*
492 Purpose: Release an existing lock
493 Returns: Always granted, unless during grace period
494 Notes: "no such lock" error condition is ignored, as the
495 protocol uses unreliable UDP datagrams, and may well
496 re-try an unlock that has already succeeded.
497 */
499 nlm_res *
501 {
509 }
511 nlm4_res *
513 {
521 }
525 {
534 }
538 {
547 }
549 /* ------------------------------------------------------------------------- */
550 /*
551 Client-side pseudo-RPCs for results. Note that for the client there
552 are only nlm_xxx_msg() versions of each call, since the 'real RPC'
553 version returns the results in the RPC result, and so the client
554 does not normally receive incoming RPCs.
556 The exception to this is nlm_granted(), which is genuinely an RPC
557 call from the server to the client - a 'call-back' in normal procedure
558 call terms.
559 */
561 /* nlm_granted ------------------------------------------------------------- */
562 /*
563 Purpose: Receive notification that formerly blocked lock now granted
564 Returns: always success ('granted')
565 Notes:
566 */
568 nlm_res *
570 {
574 /* copy cookie from arg to result. See comment in nlm_test_1() */
579 }
581 nlm4_res *
583 {
587 /* copy cookie from arg to result. See comment in nlm_test_1() */
592 }
596 {
597 nlm_res res;
604 }
608 {
609 nlm4_res res;
616 }
618 /* nlm_test_res ------------------------------------------------------------ */
619 /*
620 Purpose: Accept result from earlier nlm_test_msg() call
621 Returns: Nothing
622 */
626 {
629 }
633 {
636 }
638 /* nlm_lock_res ------------------------------------------------------------ */
639 /*
640 Purpose: Accept result from earlier nlm_lock_msg() call
641 Returns: Nothing
642 */
646 {
650 }
654 {
658 }
660 /* nlm_cancel_res ---------------------------------------------------------- */
661 /*
662 Purpose: Accept result from earlier nlm_cancel_msg() call
663 Returns: Nothing
664 */
668 {
671 }
675 {
678 }
680 /* nlm_unlock_res ---------------------------------------------------------- */
681 /*
682 Purpose: Accept result from earlier nlm_unlock_msg() call
683 Returns: Nothing
684 */
688 {
691 }
695 {
698 }
700 /* nlm_granted_res --------------------------------------------------------- */
701 /*
702 Purpose: Accept result from earlier nlm_granted_msg() call
703 Returns: Nothing
704 */
708 {
711 }
715 {
718 }
720 /* ------------------------------------------------------------------------- */
721 /*
722 Calls for PCNFS locking (aka non-monitored locking, no involvement
723 of rpc.statd).
725 These are all genuine RPCs - no nlm_xxx_msg() nonsense here.
726 */
729 /* nlm_share --------------------------------------------------------------- */
730 /*
731 Purpose: Establish a DOS-style lock
732 Returns: success or failure
733 Notes: Blocking locks are not supported - client is expected
734 to retry if required.
735 */
737 nlm_shareres *
739 {
747 }
749 nlm4_shareres *
751 {
759 }
761 /* nlm_unshare ------------------------------------------------------------ */
762 /*
763 Purpose: Release a DOS-style lock
764 Returns: nlm_granted, unless in grace period
765 Notes:
766 */
768 nlm_shareres *
770 {
778 }
780 nlm4_shareres *
782 {
790 }
792 /* nlm_nm_lock ------------------------------------------------------------ */
793 /*
794 Purpose: non-monitored version of nlm_lock()
795 Returns: as for nlm_lock()
796 Notes: These locks are in the same style as the standard nlm_lock,
797 but the rpc.statd should not be called to establish a
798 monitor for the client machine, since that machine is
799 declared not to be running a rpc.statd, and so would not
800 respond to the statd protocol.
801 */
803 nlm_res *
805 {
809 /* copy cookie from arg to result. See comment in nlm_test_1() */
813 }
815 nlm4_res *
817 {
821 /* copy cookie from arg to result. See comment in nlm_test_1() */
825 }
827 /* nlm_free_all ------------------------------------------------------------ */
828 /*
829 Purpose: Release all locks held by a named client
830 Returns: Nothing
831 Notes: Potential denial of service security problem here - the
832 locks to be released are specified by a host name, independent
833 of the address from which the request has arrived.
834 Should probably be rejected if the named host has been
835 using monitored locks.
836 */
840 {
845 }
849 {
854 }
858 {
863 }