]> git.saurik.com Git - apple/xnu.git/blob - bsd/nfs/nfs4_subs.c
projects / apple / xnu.git / blob
? search:


9cc410b44342c4bb42797f7d45fbd5f63249c2db
[apple/xnu.git] / bsd / nfs / nfs4_subs.c
1 /*
2 * Copyright (c) 2006-2019 Apple Inc. All rights reserved.
3 *
4 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. The rights granted to you under the License
10 * may not be used to create, or enable the creation or redistribution of,
11 * unlawful or unlicensed copies of an Apple operating system, or to
12 * circumvent, violate, or enable the circumvention or violation of, any
13 * terms of an Apple operating system software license agreement.
14 *
15 * Please obtain a copy of the License at
16 * http://www.opensource.apple.com/apsl/ and read it before using this file.
17 *
18 * The Original Code and all software distributed under the License are
19 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
20 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
21 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
23 * Please see the License for the specific language governing rights and
24 * limitations under the License.
25 *
26 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
27 */
28
29 #include <nfs/nfs_conf.h>
30 #if CONFIG_NFS_CLIENT
31
32 /*
33 * miscellaneous support functions for NFSv4
34 */
35 #include <sys/param.h>
36 #include <sys/proc.h>
37 #include <sys/kauth.h>
38 #include <sys/systm.h>
39 #include <sys/kernel.h>
40 #include <sys/mount_internal.h>
41 #include <sys/vnode_internal.h>
42 #include <sys/kpi_mbuf.h>
43 #include <sys/socket.h>
44 #include <sys/stat.h>
45 #include <sys/malloc.h>
46 #include <sys/syscall.h>
47 #include <sys/ubc_internal.h>
48 #include <sys/fcntl.h>
49 #include <sys/quota.h>
50 #include <sys/domain.h>
51 #include <libkern/OSAtomic.h>
52 #include <kern/thread_call.h>
53
54 #include <sys/vm.h>
55 #include <sys/vmparam.h>
56
57 #include <sys/time.h>
58 #include <kern/clock.h>
59
60 #include <nfs/rpcv2.h>
61 #include <nfs/nfsproto.h>
62 #include <nfs/nfs.h>
63 #include <nfs/nfsnode.h>
64 #include <nfs/xdr_subs.h>
65 #include <nfs/nfsm_subs.h>
66 #include <nfs/nfs_gss.h>
67 #include <nfs/nfsmount.h>
68 #include <nfs/nfs_lock.h>
69
70 #include <miscfs/specfs/specdev.h>
71
72 #include <netinet/in.h>
73 #include <net/kpi_interface.h>
74
75 #if CONFIG_NFS4
76 /*
77 * NFS_MAX_WHO is the maximum length of a string representation used
78 * in as an ace who, owner, or group. There is no explicit limit in the
79 * protocol, however the kauth routines have a limit of MAPATHLEN for
80 * strings including the trailing null character, so we impose that
81 * limit. This should be changed if kauth routines change.
82 *
83 * We also want some reasonable maximum, as 32 bits worth of string length
84 * is liable to cause problems. At the very least this limit must guarantee
85 * that any express that contains the 32 bit length from off the wire used in
86 * allocations does not overflow.
87 */
88 #define NFS_MAX_WHO MAXPATHLEN
89
90 /*
91 * Create the unique client ID to use for this mount.
92 *
93 * Format: unique ID + en0_address + server_address + mntfromname + mntonname
94 *
95 * We could possibly use one client ID for all mounts of the same server;
96 * however, that would complicate some aspects of state management.
97 *
98 * Each mount socket connection sends a SETCLIENTID. If the ID is the same but
99 * the verifier (mounttime) changes, then all previous (mounts') state gets dropped.
100 *
101 * State is typically managed per-mount and in order to keep it that way
102 * each mount needs to use a separate client ID. However, we also need to
103 * make sure that each mount uses the same client ID each time.
104 *
105 * In an attempt to differentiate mounts we include the mntfromname and mntonname
106 * strings to the client ID (as long as they fit). We also make sure that the
107 * value does not conflict with any existing values in use (changing the unique ID).
108 *
109 * Note that info such as the server's address may change over the lifetime of the
110 * mount. But the client ID will not be updated because we don't want it changing
111 * simply because we switched to a different server address.
112 */
113 int
114 nfs4_init_clientid(struct nfsmount *nmp)
115 {
116 struct nfs_client_id *ncip, *ncip2;
117 struct sockaddr *saddr;
118 int error, cmp;
119 long len, len2;
120 struct vfsstatfs *vsfs;
121
122 static uint8_t en0addr[6];
123 static uint8_t en0addr_set = 0;
124
125 lck_mtx_lock(&nfs_global_mutex);
126 if (!en0addr_set) {
127 ifnet_t interface = NULL;
128 error = ifnet_find_by_name("en0", &interface);
129 if (!error) {
130 error = ifnet_lladdr_copy_bytes(interface, en0addr, sizeof(en0addr));
131 }
132 if (error) {
133 printf("nfs4_init_clientid: error getting en0 address, %d\n", error);
134 }
135 if (!error) {
136 en0addr_set = 1;
137 }
138 if (interface) {
139 ifnet_release(interface);
140 }
141 }
142 lck_mtx_unlock(&nfs_global_mutex);
143
144 MALLOC(ncip, struct nfs_client_id *, sizeof(struct nfs_client_id), M_TEMP, M_WAITOK);
145 if (!ncip) {
146 return ENOMEM;
147 }
148
149 vsfs = vfs_statfs(nmp->nm_mountp);
150 saddr = nmp->nm_saddr;
151 ncip->nci_idlen = sizeof(uint32_t) + sizeof(en0addr) + saddr->sa_len +
152 strlen(vsfs->f_mntfromname) + 1 + strlen(vsfs->f_mntonname) + 1;
153 if (ncip->nci_idlen > NFS4_OPAQUE_LIMIT) {
154 ncip->nci_idlen = NFS4_OPAQUE_LIMIT;
155 }
156 MALLOC(ncip->nci_id, char *, ncip->nci_idlen, M_TEMP, M_WAITOK);
157 if (!ncip->nci_id) {
158 FREE(ncip, M_TEMP);
159 return ENOMEM;
160 }
161
162 *(uint32_t*)ncip->nci_id = 0;
163 len = sizeof(uint32_t);
164 len2 = lmin(sizeof(en0addr), ncip->nci_idlen - len);
165 bcopy(en0addr, &ncip->nci_id[len], len2);
166 len += sizeof(en0addr);
167 len2 = lmin(saddr->sa_len, ncip->nci_idlen - len);
168 bcopy(saddr, &ncip->nci_id[len], len2);
169 len += len2;
170 if (len < ncip->nci_idlen) {
171 len2 = strlcpy(&ncip->nci_id[len], vsfs->f_mntfromname, ncip->nci_idlen - len);
172 if (len2 < (ncip->nci_idlen - len)) {
173 len += len2 + 1;
174 } else {
175 len = ncip->nci_idlen;
176 }
177 }
178 if (len < ncip->nci_idlen) {
179 len2 = strlcpy(&ncip->nci_id[len], vsfs->f_mntonname, ncip->nci_idlen - len);
180 if (len2 < (ncip->nci_idlen - len)) {
181 len += len2 + 1;
182 } else {
183 len = ncip->nci_idlen;
184 }
185 }
186
187 /* make sure the ID is unique, and add it to the sorted list */
188 lck_mtx_lock(&nfs_global_mutex);
189 TAILQ_FOREACH(ncip2, &nfsclientids, nci_link) {
190 if (ncip->nci_idlen > ncip2->nci_idlen) {
191 continue;
192 }
193 if (ncip->nci_idlen < ncip2->nci_idlen) {
194 break;
195 }
196 cmp = bcmp(ncip->nci_id + sizeof(uint32_t),
197 ncip2->nci_id + sizeof(uint32_t),
198 ncip->nci_idlen - sizeof(uint32_t));
199 if (cmp > 0) {
200 continue;
201 }
202 if (cmp < 0) {
203 break;
204 }
205 if (*(uint32_t*)ncip->nci_id > *(uint32_t*)ncip2->nci_id) {
206 continue;
207 }
208 if (*(uint32_t*)ncip->nci_id < *(uint32_t*)ncip2->nci_id) {
209 break;
210 }
211 *(uint32_t*)ncip->nci_id += 1;
212 }
213 if (*(uint32_t*)ncip->nci_id) {
214 printf("nfs client ID collision (%d) for %s on %s\n", *(uint32_t*)ncip->nci_id,
215 vsfs->f_mntfromname, vsfs->f_mntonname);
216 }
217 if (ncip2) {
218 TAILQ_INSERT_BEFORE(ncip2, ncip, nci_link);
219 } else {
220 TAILQ_INSERT_TAIL(&nfsclientids, ncip, nci_link);
221 }
222 nmp->nm_longid = ncip;
223 lck_mtx_unlock(&nfs_global_mutex);
224
225 return 0;
226 }
227
228 /*
229 * NFSv4 SETCLIENTID
230 */
231 int
232 nfs4_setclientid(struct nfsmount *nmp)
233 {
234 uint64_t verifier, xid;
235 int error = 0, status, numops;
236 uint32_t bitmap[NFS_ATTR_BITMAP_LEN];
237 thread_t thd;
238 kauth_cred_t cred;
239 struct nfsm_chain nmreq, nmrep;
240 struct sockaddr_storage ss;
241 void *sinaddr = NULL;
242 char raddr[MAX_IPv6_STR_LEN];
243 char uaddr[MAX_IPv6_STR_LEN + 16];
244 int ualen = 0;
245 in_port_t port = 0;
246
247 thd = current_thread();
248 cred = IS_VALID_CRED(nmp->nm_mcred) ? nmp->nm_mcred : vfs_context_ucred(vfs_context_kernel());
249 kauth_cred_ref(cred);
250
251 nfsm_chain_null(&nmreq);
252 nfsm_chain_null(&nmrep);
253
254 if (!nmp->nm_longid) {
255 error = nfs4_init_clientid(nmp);
256 }
257
258 // SETCLIENTID
259 numops = 1;
260 nfsm_chain_build_alloc_init(error, &nmreq, 14 * NFSX_UNSIGNED + nmp->nm_longid->nci_idlen);
261 nfsm_chain_add_compound_header(error, &nmreq, "setclid", nmp->nm_minor_vers, numops);
262 numops--;
263 nfsm_chain_add_32(error, &nmreq, NFS_OP_SETCLIENTID);
264 /* nfs_client_id4 client; */
265 nfsm_chain_add_64(error, &nmreq, nmp->nm_mounttime);
266 nfsm_chain_add_32(error, &nmreq, nmp->nm_longid->nci_idlen);
267 nfsm_chain_add_opaque(error, &nmreq, nmp->nm_longid->nci_id, nmp->nm_longid->nci_idlen);
268 nfsmout_if(error);
269 /* cb_client4 callback; */
270 if (!NMFLAG(nmp, NOCALLBACK) && nmp->nm_cbid && nfs4_cb_port &&
271 !sock_getsockname(nmp->nm_nso->nso_so, (struct sockaddr*)&ss, sizeof(ss))) {
272 if (ss.ss_family == AF_INET) {
273 sinaddr = &((struct sockaddr_in*)&ss)->sin_addr;
274 port = nfs4_cb_port;
275 } else if (ss.ss_family == AF_INET6) {
276 sinaddr = &((struct sockaddr_in6*)&ss)->sin6_addr;
277 port = nfs4_cb_port6;
278 } else {
279 error = EINVAL;
280 nfsmout_if(error);
281 }
282 if (sinaddr && port && (inet_ntop(ss.ss_family, sinaddr, raddr, sizeof(raddr)) == raddr)) {
283 /* assemble r_addr = universal address (nmp->nm_nso->nso_so source IP addr + port) */
284 ualen = snprintf(uaddr, sizeof(uaddr), "%s.%d.%d", raddr,
285 ((port >> 8) & 0xff),
286 (port & 0xff));
287 /* make sure it fit, give up if it didn't */
288 if (ualen >= (int)sizeof(uaddr)) {
289 ualen = 0;
290 }
291 }
292 }
293 if (ualen > 0) {
294 /* add callback info */
295 nfsm_chain_add_32(error, &nmreq, NFS4_CALLBACK_PROG); /* callback program */
296 if (ss.ss_family == AF_INET) {
297 nfsm_chain_add_string(error, &nmreq, "tcp", 3); /* callback r_netid */
298 } else if (ss.ss_family == AF_INET6) {
299 nfsm_chain_add_string(error, &nmreq, "tcp6", 4); /* callback r_netid */
300 }
301 nfsm_chain_add_string(error, &nmreq, uaddr, ualen); /* callback r_addr */
302 nfsm_chain_add_32(error, &nmreq, nmp->nm_cbid); /* callback_ident */
303 } else {
304 /* don't provide valid callback info */
305 nfsm_chain_add_32(error, &nmreq, 0); /* callback program */
306 nfsm_chain_add_string(error, &nmreq, "", 0); /* callback r_netid */
307 nfsm_chain_add_string(error, &nmreq, "", 0); /* callback r_addr */
308 nfsm_chain_add_32(error, &nmreq, 0); /* callback_ident */
309 }
310 nfsm_chain_build_done(error, &nmreq);
311 nfsm_assert(error, (numops == 0), EPROTO);
312 nfsmout_if(error);
313 error = nfs_request2(NULL, nmp->nm_mountp, &nmreq, NFSPROC4_COMPOUND, thd, cred, NULL, R_SETUP, &nmrep, &xid, &status);
314 nfsm_chain_skip_tag(error, &nmrep);
315 nfsm_chain_get_32(error, &nmrep, numops);
316 if (!error && (numops != 1) && status) {
317 error = status;
318 }
319 nfsm_chain_op_check(error, &nmrep, NFS_OP_SETCLIENTID);
320 if (error == NFSERR_CLID_INUSE) {
321 printf("nfs4_setclientid: client ID in use?\n");
322 }
323 nfsmout_if(error);
324 nfsm_chain_get_64(error, &nmrep, nmp->nm_clientid);
325 nfsm_chain_get_64(error, &nmrep, verifier);
326 nfsm_chain_cleanup(&nmreq);
327 nfsm_chain_cleanup(&nmrep);
328
329 // SETCLIENTID_CONFIRM
330 numops = 1;
331 nfsm_chain_build_alloc_init(error, &nmreq, 15 * NFSX_UNSIGNED);
332 nfsm_chain_add_compound_header(error, &nmreq, "setclid_conf", nmp->nm_minor_vers, numops);
333 numops--;
334 nfsm_chain_add_32(error, &nmreq, NFS_OP_SETCLIENTID_CONFIRM);
335 nfsm_chain_add_64(error, &nmreq, nmp->nm_clientid);
336 nfsm_chain_add_64(error, &nmreq, verifier);
337 nfsm_chain_build_done(error, &nmreq);
338 nfsm_assert(error, (numops == 0), EPROTO);
339 nfsmout_if(error);
340 error = nfs_request2(NULL, nmp->nm_mountp, &nmreq, NFSPROC4_COMPOUND, thd, cred, NULL, R_SETUP, &nmrep, &xid, &status);
341 nfsm_chain_skip_tag(error, &nmrep);
342 nfsm_chain_get_32(error, &nmrep, numops);
343 nfsm_chain_op_check(error, &nmrep, NFS_OP_SETCLIENTID_CONFIRM);
344 if (error) {
345 printf("nfs4_setclientid: confirm error %d\n", error);
346 }
347 lck_mtx_lock(&nmp->nm_lock);
348 if (!error) {
349 nmp->nm_state |= NFSSTA_CLIENTID;
350 }
351 lck_mtx_unlock(&nmp->nm_lock);
352
353 nfsmout_if(error || !nmp->nm_dnp);
354
355 /* take the opportunity to refresh fs attributes too */
356 // PUTFH, GETATTR(FS)
357 numops = 2;
358 nfsm_chain_build_alloc_init(error, &nmreq, 23 * NFSX_UNSIGNED);
359 nfsm_chain_add_compound_header(error, &nmreq, "setclid_attr", nmp->nm_minor_vers, numops);
360 numops--;
361 nfsm_chain_add_32(error, &nmreq, NFS_OP_PUTFH);
362 nfsm_chain_add_fh(error, &nmreq, nmp->nm_vers, nmp->nm_dnp->n_fhp, nmp->nm_dnp->n_fhsize);
363 numops--;
364 nfsm_chain_add_32(error, &nmreq, NFS_OP_GETATTR);
365 NFS_CLEAR_ATTRIBUTES(bitmap);
366 NFS4_PER_FS_ATTRIBUTES(bitmap);
367 nfsm_chain_add_bitmap(error, &nmreq, bitmap, NFS_ATTR_BITMAP_LEN);
368 nfsm_chain_build_done(error, &nmreq);
369 nfsm_assert(error, (numops == 0), EPROTO);
370 nfsmout_if(error);
371 error = nfs_request2(NULL, nmp->nm_mountp, &nmreq, NFSPROC4_COMPOUND, thd, cred, NULL, R_SETUP, &nmrep, &xid, &status);
372 nfsm_chain_skip_tag(error, &nmrep);
373 nfsm_chain_get_32(error, &nmrep, numops);
374 lck_mtx_lock(&nmp->nm_lock);
375 nfsm_chain_op_check(error, &nmrep, NFS_OP_PUTFH);
376 nfsm_chain_op_check(error, &nmrep, NFS_OP_GETATTR);
377 if (!error) {
378 error = nfs4_parsefattr(&nmrep, &nmp->nm_fsattr, NULL, NULL, NULL, NULL);
379 }
380 lck_mtx_unlock(&nmp->nm_lock);
381 if (error) { /* ignore any error from the getattr */
382 error = 0;
383 }
384 nfsmout:
385 nfsm_chain_cleanup(&nmreq);
386 nfsm_chain_cleanup(&nmrep);
387 kauth_cred_unref(&cred);
388 if (error) {
389 printf("nfs4_setclientid failed, %d\n", error);
390 }
391 return error;
392 }
393
394 /*
395 * renew/check lease state on server
396 */
397 int
398 nfs4_renew(struct nfsmount *nmp, int rpcflag)
399 {
400 int error = 0, status, numops;
401 u_int64_t xid;
402 struct nfsm_chain nmreq, nmrep;
403 kauth_cred_t cred;
404
405 cred = IS_VALID_CRED(nmp->nm_mcred) ? nmp->nm_mcred : vfs_context_ucred(vfs_context_kernel());
406 kauth_cred_ref(cred);
407
408 nfsm_chain_null(&nmreq);
409 nfsm_chain_null(&nmrep);
410
411 // RENEW
412 numops = 1;
413 nfsm_chain_build_alloc_init(error, &nmreq, 8 * NFSX_UNSIGNED);
414 nfsm_chain_add_compound_header(error, &nmreq, "renew", nmp->nm_minor_vers, numops);
415 numops--;
416 nfsm_chain_add_32(error, &nmreq, NFS_OP_RENEW);
417 nfsm_chain_add_64(error, &nmreq, nmp->nm_clientid);
418 nfsm_chain_build_done(error, &nmreq);
419 nfsm_assert(error, (numops == 0), EPROTO);
420 nfsmout_if(error);
421 error = nfs_request2(NULL, nmp->nm_mountp, &nmreq, NFSPROC4_COMPOUND,
422 current_thread(), cred, NULL, rpcflag, &nmrep, &xid, &status);
423 nfsm_chain_skip_tag(error, &nmrep);
424 nfsm_chain_get_32(error, &nmrep, numops);
425 nfsm_chain_op_check(error, &nmrep, NFS_OP_RENEW);
426 nfsmout:
427 nfsm_chain_cleanup(&nmreq);
428 nfsm_chain_cleanup(&nmrep);
429 kauth_cred_unref(&cred);
430 return error;
431 }
432
433
434 /*
435 * periodic timer to renew lease state on server
436 */
437 void
438 nfs4_renew_timer(void *param0, __unused void *param1)
439 {
440 struct nfsmount *nmp = param0;
441 u_int64_t clientid;
442 int error = 0, interval;
443
444 lck_mtx_lock(&nmp->nm_lock);
445 clientid = nmp->nm_clientid;
446 if ((nmp->nm_state & NFSSTA_RECOVER) || !(nmp->nm_sockflags & NMSOCK_READY)) {
447 lck_mtx_unlock(&nmp->nm_lock);
448 goto out;
449 }
450 lck_mtx_unlock(&nmp->nm_lock);
451
452 error = nfs4_renew(nmp, R_RECOVER);
453 out:
454 if (error == ETIMEDOUT) {
455 nfs_need_reconnect(nmp);
456 } else if (error) {
457 printf("nfs4_renew_timer: error %d\n", error);
458 }
459 lck_mtx_lock(&nmp->nm_lock);
460 if (error && (error != ETIMEDOUT) &&
461 (nmp->nm_clientid == clientid) && !(nmp->nm_state & NFSSTA_RECOVER)) {
462 printf("nfs4_renew_timer: error %d, initiating recovery\n", error);
463 nfs_need_recover(nmp, error);
464 }
465
466 interval = nmp->nm_fsattr.nfsa_lease / (error ? 4 : 2);
467 if ((interval < 1) || (nmp->nm_state & NFSSTA_RECOVER)) {
468 interval = 1;
469 }
470 lck_mtx_unlock(&nmp->nm_lock);
471
472 lck_mtx_lock(&nmp->nm_timer_lock);
473 if (nmp->nm_renew_timer) {
474 nfs_interval_timer_start(nmp->nm_renew_timer, interval * 1000);
475 }
476 lck_mtx_unlock(&nmp->nm_timer_lock);
477 }
478
479 /*
480 * get the list of supported security flavors
481 *
482 * How we get them depends on what args we are given:
483 *
484 * FH? Name? Action
485 * ----- ----- ------
486 * YES YES Use the fh and name provided
487 * YES NO 4.1-only just use the fh provided
488 * NO YES Use the node's (or root) fh and the name provided
489 * NO NO Use the node's parent and the node's name (4.1 will just use node's fh)
490 */
491 int
492 nfs4_secinfo_rpc(struct nfsmount *nmp, struct nfsreq_secinfo_args *siap, kauth_cred_t cred, uint32_t *sec, int *seccountp)
493 {
494 int error = 0, status, nfsvers, numops, fhsize;
495 vnode_t dvp = NULLVP;
496 nfsnode_t np, dnp;
497 u_char *fhp;
498 const char *vname = NULL, *name;
499 uint64_t xid;
500 size_t namelen;
501 struct nfsm_chain nmreq, nmrep;
502
503 *seccountp = 0;
504 if (nfs_mount_gone(nmp)) {
505 return ENXIO;
506 }
507 nfsvers = nmp->nm_vers;
508 np = siap->rsia_np;
509
510 nfsm_chain_null(&nmreq);
511 nfsm_chain_null(&nmrep);
512
513 fhp = siap->rsia_fh;
514 fhsize = fhp ? siap->rsia_fhsize : 0;
515 name = siap->rsia_name;
516 namelen = name ? siap->rsia_namelen : 0;
517 if (name && !namelen) {
518 namelen = strlen(name);
519 }
520 if (!fhp && name) {
521 if (!np) { /* use PUTROOTFH */
522 goto gotargs;
523 }
524 fhp = np->n_fhp;
525 fhsize = np->n_fhsize;
526 }
527 if (fhp && name) {
528 goto gotargs;
529 }
530
531 if (!np) {
532 return EIO;
533 }
534 nfs_node_lock_force(np);
535 if ((vnode_vtype(NFSTOV(np)) != VDIR) && np->n_sillyrename) {
536 /*
537 * The node's been sillyrenamed, so we need to use
538 * the sillyrename directory/name to do the open.
539 */
540 struct nfs_sillyrename *nsp = np->n_sillyrename;
541 dnp = nsp->nsr_dnp;
542 dvp = NFSTOV(dnp);
543 if ((error = vnode_get(dvp))) {
544 dvp = NULLVP;
545 nfs_node_unlock(np);
546 goto nfsmout;
547 }
548 fhp = dnp->n_fhp;
549 fhsize = dnp->n_fhsize;
550 name = nsp->nsr_name;
551 namelen = nsp->nsr_namlen;
552 } else {
553 /*
554 * [sigh] We can't trust VFS to get the parent right for named
555 * attribute nodes. (It likes to reparent the nodes after we've
556 * created them.) Luckily we can probably get the right parent
557 * from the n_parent we have stashed away.
558 */
559 if ((np->n_vattr.nva_flags & NFS_FFLAG_IS_ATTR) &&
560 (((dvp = np->n_parent)) && (error = vnode_get(dvp)))) {
561 dvp = NULL;
562 }
563 if (!dvp) {
564 dvp = vnode_getparent(NFSTOV(np));
565 }
566 vname = vnode_getname(NFSTOV(np));
567 if (!dvp || !vname) {
568 if (!error) {
569 error = EIO;
570 }
571 nfs_node_unlock(np);
572 goto nfsmout;
573 }
574 dnp = VTONFS(dvp);
575 fhp = dnp->n_fhp;
576 fhsize = dnp->n_fhsize;
577 name = vname;
578 namelen = strnlen(vname, MAXPATHLEN);
579 }
580 nfs_node_unlock(np);
581
582 gotargs:
583 // PUT(ROOT)FH + SECINFO
584 numops = 2;
585 nfsm_chain_build_alloc_init(error, &nmreq,
586 4 * NFSX_UNSIGNED + NFSX_FH(nfsvers) + nfsm_rndup(namelen));
587 nfsm_chain_add_compound_header(error, &nmreq, "secinfo", nmp->nm_minor_vers, numops);
588 numops--;
589 if (fhp) {
590 nfsm_chain_add_32(error, &nmreq, NFS_OP_PUTFH);
591 nfsm_chain_add_fh(error, &nmreq, nfsvers, fhp, fhsize);
592 } else {
593 nfsm_chain_add_32(error, &nmreq, NFS_OP_PUTROOTFH);
594 }
595 numops--;
596 nfsm_chain_add_32(error, &nmreq, NFS_OP_SECINFO);
597 nfsm_chain_add_name(error, &nmreq, name, namelen, nmp);
598 nfsm_chain_build_done(error, &nmreq);
599 nfsm_assert(error, (numops == 0), EPROTO);
600 nfsmout_if(error);
601 error = nfs_request2(np, nmp->nm_mountp, &nmreq, NFSPROC4_COMPOUND,
602 current_thread(), cred, NULL, 0, &nmrep, &xid, &status);
603 nfsm_chain_skip_tag(error, &nmrep);
604 nfsm_chain_get_32(error, &nmrep, numops);
605 nfsm_chain_op_check(error, &nmrep, fhp ? NFS_OP_PUTFH : NFS_OP_PUTROOTFH);
606 nfsm_chain_op_check(error, &nmrep, NFS_OP_SECINFO);
607 nfsmout_if(error);
608 error = nfsm_chain_get_secinfo(&nmrep, sec, seccountp);
609 nfsmout:
610 nfsm_chain_cleanup(&nmreq);
611 nfsm_chain_cleanup(&nmrep);
612 if (vname) {
613 vnode_putname(vname);
614 }
615 if (dvp != NULLVP) {
616 vnode_put(dvp);
617 }
618 return error;
619 }
620 #endif /* CONFIG_NFS4 */
621
622 /*
623 * Parse an NFSv4 SECINFO array to an array of pseudo flavors.
624 * (Note: also works for MOUNTv3 security arrays.)
625 */
626 int
627 nfsm_chain_get_secinfo(struct nfsm_chain *nmc, uint32_t *sec, int *seccountp)
628 {
629 int error = 0, secmax, seccount, srvcount;
630 uint32_t flavor;
631
632 #if CONFIG_NFS_GSS
633 uint32_t val;
634 u_char oid[12];
635 #endif
636
637 seccount = srvcount = 0;
638 secmax = *seccountp;
639 *seccountp = 0;
640
641 nfsm_chain_get_32(error, nmc, srvcount);
642 while (!error && (srvcount > 0) && (seccount < secmax)) {
643 nfsm_chain_get_32(error, nmc, flavor);
644 nfsmout_if(error);
645 switch (flavor) {
646 case RPCAUTH_NONE:
647 case RPCAUTH_SYS:
648 #if CONFIG_NFS_GSS
649 case RPCAUTH_KRB5:
650 case RPCAUTH_KRB5I:
651 case RPCAUTH_KRB5P:
652 #endif /* CONFIG_NFS_GSS */
653 sec[seccount++] = flavor;
654 break;
655 #if CONFIG_NFS_GSS
656 case RPCSEC_GSS:
657 /* we only recognize KRB5, KRB5I, KRB5P */
658 nfsm_chain_get_32(error, nmc, val); /* OID length */
659 nfsmout_if(error);
660 if (val != sizeof(krb5_mech_oid)) {
661 nfsm_chain_adv(error, nmc, val);
662 nfsm_chain_adv(error, nmc, 2 * NFSX_UNSIGNED);
663 break;
664 }
665 nfsm_chain_get_opaque(error, nmc, val, oid); /* OID bytes */
666 nfsmout_if(error);
667 if (bcmp(oid, krb5_mech_oid, sizeof(krb5_mech_oid))) {
668 nfsm_chain_adv(error, nmc, 2 * NFSX_UNSIGNED);
669 break;
670 }
671 nfsm_chain_get_32(error, nmc, val); /* QOP */
672 nfsm_chain_get_32(error, nmc, val); /* SERVICE */
673 nfsmout_if(error);
674 switch (val) {
675 case RPCSEC_GSS_SVC_NONE:
676 sec[seccount++] = RPCAUTH_KRB5;
677 break;
678 case RPCSEC_GSS_SVC_INTEGRITY:
679 sec[seccount++] = RPCAUTH_KRB5I;
680 break;
681 case RPCSEC_GSS_SVC_PRIVACY:
682 sec[seccount++] = RPCAUTH_KRB5P;
683 break;
684 }
685 break;
686 #endif /* CONFIG_NFS_GSS */
687 }
688 srvcount--;
689 }
690 nfsmout:
691 if (!error) {
692 *seccountp = seccount;
693 }
694 return error;
695 }
696
697 #if CONFIG_NFS4
698 /*
699 * Fetch the FS_LOCATIONS attribute for the node found at directory/name.
700 */
701 int
702 nfs4_get_fs_locations(
703 struct nfsmount *nmp,
704 nfsnode_t dnp,
705 u_char *fhp,
706 int fhsize,
707 const char *name,
708 vfs_context_t ctx,
709 struct nfs_fs_locations *nfslsp)
710 {
711 int error = 0, numops, status;
712 uint32_t bitmap[NFS_ATTR_BITMAP_LEN];
713 struct nfsreq *req;
714 struct nfsreq_secinfo_args si;
715 struct nfsm_chain nmreq, nmrep;
716 uint64_t xid;
717
718 if (!fhp && dnp) {
719 fhp = dnp->n_fhp;
720 fhsize = dnp->n_fhsize;
721 }
722 if (!fhp) {
723 return EINVAL;
724 }
725
726 req = zalloc(nfs_req_zone);
727 nfsm_chain_null(&nmreq);
728 nfsm_chain_null(&nmrep);
729
730 NFSREQ_SECINFO_SET(&si, NULL, fhp, fhsize, name, 0);
731 numops = 3;
732 nfsm_chain_build_alloc_init(error, &nmreq, 18 * NFSX_UNSIGNED);
733 nfsm_chain_add_compound_header(error, &nmreq, "fs_locations", nmp->nm_minor_vers, numops);
734 numops--;
735 nfsm_chain_add_32(error, &nmreq, NFS_OP_PUTFH);
736 nfsm_chain_add_fh(error, &nmreq, NFS_VER4, fhp, fhsize);
737 numops--;
738 nfsm_chain_add_32(error, &nmreq, NFS_OP_LOOKUP);
739 nfsm_chain_add_name(error, &nmreq, name, strlen(name), nmp);
740 numops--;
741 nfsm_chain_add_32(error, &nmreq, NFS_OP_GETATTR);
742 NFS_CLEAR_ATTRIBUTES(bitmap);
743 NFS_BITMAP_SET(bitmap, NFS_FATTR_FS_LOCATIONS);
744 nfsm_chain_add_bitmap(error, &nmreq, bitmap, NFS_ATTR_BITMAP_LEN);
745 nfsm_chain_build_done(error, &nmreq);
746 nfsm_assert(error, (numops == 0), EPROTO);
747 nfsmout_if(error);
748 error = nfs_request_async(dnp, nmp->nm_mountp, &nmreq, NFSPROC4_COMPOUND,
749 vfs_context_thread(ctx), vfs_context_ucred(ctx), &si, 0, NULL, &req);
750 if (!error) {
751 error = nfs_request_async_finish(req, &nmrep, &xid, &status);
752 }
753 nfsm_chain_skip_tag(error, &nmrep);
754 nfsm_chain_get_32(error, &nmrep, numops);
755 nfsm_chain_op_check(error, &nmrep, NFS_OP_PUTFH);
756 nfsm_chain_op_check(error, &nmrep, NFS_OP_LOOKUP);
757 nfsm_chain_op_check(error, &nmrep, NFS_OP_GETATTR);
758 nfsmout_if(error);
759 error = nfs4_parsefattr(&nmrep, NULL, NULL, NULL, NULL, nfslsp);
760 nfsmout:
761 NFS_ZFREE(nfs_req_zone, req);
762 nfsm_chain_cleanup(&nmrep);
763 nfsm_chain_cleanup(&nmreq);
764 return error;
765 }
766
767 /*
768 * Referral trigger nodes may not have many attributes provided by the
769 * server, so put some default values in place.
770 */
771 void
772 nfs4_default_attrs_for_referral_trigger(
773 nfsnode_t dnp,
774 char *name,
775 int namelen,
776 struct nfs_vattr *nvap,
777 fhandle_t *fhp)
778 {
779 struct timespec now;
780 nanotime(&now);
781 int len;
782
783 nvap->nva_flags = NFS_FFLAG_TRIGGER | NFS_FFLAG_TRIGGER_REFERRAL;
784 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_TYPE)) {
785 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_TYPE);
786 nvap->nva_type = VDIR;
787 }
788 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_FSID)) {
789 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_FSID);
790 nvap->nva_fsid.major = 0;
791 nvap->nva_fsid.minor = 0;
792 }
793 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_OWNER) && dnp) {
794 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_OWNER);
795 nvap->nva_uid = dnp->n_vattr.nva_uid;
796 nvap->nva_uuuid = dnp->n_vattr.nva_uuuid;
797 }
798 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_OWNER_GROUP) && dnp) {
799 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_OWNER_GROUP);
800 nvap->nva_gid = dnp->n_vattr.nva_gid;
801 nvap->nva_guuid = dnp->n_vattr.nva_guuid;
802 }
803 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_MODE)) {
804 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_MODE);
805 nvap->nva_mode = 0777;
806 }
807 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_SIZE)) {
808 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_SIZE);
809 nvap->nva_size = 0;
810 }
811 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_SPACE_USED)) {
812 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_SPACE_USED);
813 nvap->nva_bytes = 0;
814 }
815 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_NUMLINKS)) {
816 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_NUMLINKS);
817 nvap->nva_nlink = 2;
818 }
819 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_TIME_ACCESS)) {
820 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_TIME_ACCESS);
821 nvap->nva_timesec[NFSTIME_ACCESS] = now.tv_sec;
822 nvap->nva_timensec[NFSTIME_ACCESS] = now.tv_nsec;
823 }
824 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_TIME_MODIFY)) {
825 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_TIME_MODIFY);
826 nvap->nva_timesec[NFSTIME_MODIFY] = now.tv_sec;
827 nvap->nva_timensec[NFSTIME_MODIFY] = now.tv_nsec;
828 }
829 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_TIME_METADATA)) {
830 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_TIME_METADATA);
831 nvap->nva_timesec[NFSTIME_CHANGE] = now.tv_sec;
832 nvap->nva_timensec[NFSTIME_CHANGE] = now.tv_nsec;
833 }
834 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_FILEID)) {
835 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_FILEID);
836 nvap->nva_fileid = 42;
837 }
838 if (!NFS_BITMAP_ISSET(nvap->nva_bitmap, NFS_FATTR_FILEHANDLE) && dnp && name && fhp) {
839 /* Build a fake filehandle made up of parent node pointer and name */
840 NFS_BITMAP_SET(nvap->nva_bitmap, NFS_FATTR_FILEHANDLE);
841 bcopy(&dnp, &fhp->fh_data[0], sizeof(dnp));
842 len = sizeof(fhp->fh_data) - sizeof(dnp);
843 bcopy(name, &fhp->fh_data[0] + sizeof(dnp), MIN(len, namelen));
844 fhp->fh_len = sizeof(dnp) + namelen;
845 if (fhp->fh_len > (int)sizeof(fhp->fh_data)) {
846 fhp->fh_len = sizeof(fhp->fh_data);
847 }
848 }
849 }
850
851 /*
852 * Set NFS bitmap according to what's set in vnode_attr (and supported by the server).
853 */
854 void
855 nfs_vattr_set_bitmap(struct nfsmount *nmp, uint32_t *bitmap, struct vnode_attr *vap)
856 {
857 int i;
858
859 NFS_CLEAR_ATTRIBUTES(bitmap);
860 if (VATTR_IS_ACTIVE(vap, va_data_size)) {
861 NFS_BITMAP_SET(bitmap, NFS_FATTR_SIZE);
862 }
863 if (VATTR_IS_ACTIVE(vap, va_acl) && (nmp->nm_fsattr.nfsa_flags & NFS_FSFLAG_ACL)) {
864 NFS_BITMAP_SET(bitmap, NFS_FATTR_ACL);
865 }
866 if (VATTR_IS_ACTIVE(vap, va_flags)) {
867 NFS_BITMAP_SET(bitmap, NFS_FATTR_ARCHIVE);
868 NFS_BITMAP_SET(bitmap, NFS_FATTR_HIDDEN);
869 }
870 // NFS_BITMAP_SET(bitmap, NFS_FATTR_MIMETYPE)
871 if (VATTR_IS_ACTIVE(vap, va_mode) && !NMFLAG(nmp, ACLONLY)) {
872 NFS_BITMAP_SET(bitmap, NFS_FATTR_MODE);
873 }
874 if (VATTR_IS_ACTIVE(vap, va_uid) || VATTR_IS_ACTIVE(vap, va_uuuid)) {
875 NFS_BITMAP_SET(bitmap, NFS_FATTR_OWNER);
876 }
877 if (VATTR_IS_ACTIVE(vap, va_gid) || VATTR_IS_ACTIVE(vap, va_guuid)) {
878 NFS_BITMAP_SET(bitmap, NFS_FATTR_OWNER_GROUP);
879 }
880 // NFS_BITMAP_SET(bitmap, NFS_FATTR_SYSTEM)
881 if (vap->va_vaflags & VA_UTIMES_NULL) {
882 NFS_BITMAP_SET(bitmap, NFS_FATTR_TIME_ACCESS_SET);
883 NFS_BITMAP_SET(bitmap, NFS_FATTR_TIME_MODIFY_SET);
884 } else {
885 if (VATTR_IS_ACTIVE(vap, va_access_time)) {
886 NFS_BITMAP_SET(bitmap, NFS_FATTR_TIME_ACCESS_SET);
887 }
888 if (VATTR_IS_ACTIVE(vap, va_modify_time)) {
889 NFS_BITMAP_SET(bitmap, NFS_FATTR_TIME_MODIFY_SET);
890 }
891 }
892 if (VATTR_IS_ACTIVE(vap, va_backup_time)) {
893 NFS_BITMAP_SET(bitmap, NFS_FATTR_TIME_BACKUP);
894 }
895 if (VATTR_IS_ACTIVE(vap, va_create_time)) {
896 NFS_BITMAP_SET(bitmap, NFS_FATTR_TIME_CREATE);
897 }
898 /* and limit to what is supported by server */
899 for (i = 0; i < NFS_ATTR_BITMAP_LEN; i++) {
900 bitmap[i] &= nmp->nm_fsattr.nfsa_supp_attr[i];
901 }
902 }
903
904 /*
905 * Convert between NFSv4 and VFS ACE types
906 */
907 uint32_t
908 nfs4_ace_nfstype_to_vfstype(uint32_t nfsacetype, int *errorp)
909 {
910 switch (nfsacetype) {
911 case NFS_ACE_ACCESS_ALLOWED_ACE_TYPE:
912 return KAUTH_ACE_PERMIT;
913 case NFS_ACE_ACCESS_DENIED_ACE_TYPE:
914 return KAUTH_ACE_DENY;
915 case NFS_ACE_SYSTEM_AUDIT_ACE_TYPE:
916 return KAUTH_ACE_AUDIT;
917 case NFS_ACE_SYSTEM_ALARM_ACE_TYPE:
918 return KAUTH_ACE_ALARM;
919 }
920 *errorp = EBADRPC;
921 return 0;
922 }
923
924 uint32_t
925 nfs4_ace_vfstype_to_nfstype(uint32_t vfstype, int *errorp)
926 {
927 switch (vfstype) {
928 case KAUTH_ACE_PERMIT:
929 return NFS_ACE_ACCESS_ALLOWED_ACE_TYPE;
930 case KAUTH_ACE_DENY:
931 return NFS_ACE_ACCESS_DENIED_ACE_TYPE;
932 case KAUTH_ACE_AUDIT:
933 return NFS_ACE_SYSTEM_AUDIT_ACE_TYPE;
934 case KAUTH_ACE_ALARM:
935 return NFS_ACE_SYSTEM_ALARM_ACE_TYPE;
936 }
937 *errorp = EINVAL;
938 return 0;
939 }
940
941 /*
942 * Convert between NFSv4 and VFS ACE flags
943 */
944 uint32_t
945 nfs4_ace_nfsflags_to_vfsflags(uint32_t nfsflags)
946 {
947 uint32_t vfsflags = 0;
948
949 if (nfsflags & NFS_ACE_FILE_INHERIT_ACE) {
950 vfsflags |= KAUTH_ACE_FILE_INHERIT;
951 }
952 if (nfsflags & NFS_ACE_DIRECTORY_INHERIT_ACE) {
953 vfsflags |= KAUTH_ACE_DIRECTORY_INHERIT;
954 }
955 if (nfsflags & NFS_ACE_NO_PROPAGATE_INHERIT_ACE) {
956 vfsflags |= KAUTH_ACE_LIMIT_INHERIT;
957 }
958 if (nfsflags & NFS_ACE_INHERIT_ONLY_ACE) {
959 vfsflags |= KAUTH_ACE_ONLY_INHERIT;
960 }
961 if (nfsflags & NFS_ACE_SUCCESSFUL_ACCESS_ACE_FLAG) {
962 vfsflags |= KAUTH_ACE_SUCCESS;
963 }
964 if (nfsflags & NFS_ACE_FAILED_ACCESS_ACE_FLAG) {
965 vfsflags |= KAUTH_ACE_FAILURE;
966 }
967 if (nfsflags & NFS_ACE_INHERITED_ACE) {
968 vfsflags |= KAUTH_ACE_INHERITED;
969 }
970
971 return vfsflags;
972 }
973
974 uint32_t
975 nfs4_ace_vfsflags_to_nfsflags(uint32_t vfsflags)
976 {
977 uint32_t nfsflags = 0;
978
979 if (vfsflags & KAUTH_ACE_FILE_INHERIT) {
980 nfsflags |= NFS_ACE_FILE_INHERIT_ACE;
981 }
982 if (vfsflags & KAUTH_ACE_DIRECTORY_INHERIT) {
983 nfsflags |= NFS_ACE_DIRECTORY_INHERIT_ACE;
984 }
985 if (vfsflags & KAUTH_ACE_LIMIT_INHERIT) {
986 nfsflags |= NFS_ACE_NO_PROPAGATE_INHERIT_ACE;
987 }
988 if (vfsflags & KAUTH_ACE_ONLY_INHERIT) {
989 nfsflags |= NFS_ACE_INHERIT_ONLY_ACE;
990 }
991 if (vfsflags & KAUTH_ACE_SUCCESS) {
992 nfsflags |= NFS_ACE_SUCCESSFUL_ACCESS_ACE_FLAG;
993 }
994 if (vfsflags & KAUTH_ACE_FAILURE) {
995 nfsflags |= NFS_ACE_FAILED_ACCESS_ACE_FLAG;
996 }
997 if (vfsflags & KAUTH_ACE_INHERITED) {
998 nfsflags |= NFS_ACE_INHERITED_ACE;
999 }
1000
1001 return nfsflags;
1002 }
1003
1004 /*
1005 * Convert between NFSv4 ACE access masks and VFS access rights
1006 */
1007 uint32_t
1008 nfs4_ace_nfsmask_to_vfsrights(uint32_t nfsmask)
1009 {
1010 uint32_t vfsrights = 0;
1011
1012 if (nfsmask & NFS_ACE_READ_DATA) {
1013 vfsrights |= KAUTH_VNODE_READ_DATA;
1014 }
1015 if (nfsmask & NFS_ACE_LIST_DIRECTORY) {
1016 vfsrights |= KAUTH_VNODE_LIST_DIRECTORY;
1017 }
1018 if (nfsmask & NFS_ACE_WRITE_DATA) {
1019 vfsrights |= KAUTH_VNODE_WRITE_DATA;
1020 }
1021 if (nfsmask & NFS_ACE_ADD_FILE) {
1022 vfsrights |= KAUTH_VNODE_ADD_FILE;
1023 }
1024 if (nfsmask & NFS_ACE_APPEND_DATA) {
1025 vfsrights |= KAUTH_VNODE_APPEND_DATA;
1026 }
1027 if (nfsmask & NFS_ACE_ADD_SUBDIRECTORY) {
1028 vfsrights |= KAUTH_VNODE_ADD_SUBDIRECTORY;
1029 }
1030 if (nfsmask & NFS_ACE_READ_NAMED_ATTRS) {
1031 vfsrights |= KAUTH_VNODE_READ_EXTATTRIBUTES;
1032 }
1033 if (nfsmask & NFS_ACE_WRITE_NAMED_ATTRS) {
1034 vfsrights |= KAUTH_VNODE_WRITE_EXTATTRIBUTES;
1035 }
1036 if (nfsmask & NFS_ACE_EXECUTE) {
1037 vfsrights |= KAUTH_VNODE_EXECUTE;
1038 }
1039 if (nfsmask & NFS_ACE_DELETE_CHILD) {
1040 vfsrights |= KAUTH_VNODE_DELETE_CHILD;
1041 }
1042 if (nfsmask & NFS_ACE_READ_ATTRIBUTES) {
1043 vfsrights |= KAUTH_VNODE_READ_ATTRIBUTES;
1044 }
1045 if (nfsmask & NFS_ACE_WRITE_ATTRIBUTES) {
1046 vfsrights |= KAUTH_VNODE_WRITE_ATTRIBUTES;
1047 }
1048 if (nfsmask & NFS_ACE_DELETE) {
1049 vfsrights |= KAUTH_VNODE_DELETE;
1050 }
1051 if (nfsmask & NFS_ACE_READ_ACL) {
1052 vfsrights |= KAUTH_VNODE_READ_SECURITY;
1053 }
1054 if (nfsmask & NFS_ACE_WRITE_ACL) {
1055 vfsrights |= KAUTH_VNODE_WRITE_SECURITY;
1056 }
1057 if (nfsmask & NFS_ACE_WRITE_OWNER) {
1058 vfsrights |= KAUTH_VNODE_CHANGE_OWNER;
1059 }
1060 if (nfsmask & NFS_ACE_SYNCHRONIZE) {
1061 vfsrights |= KAUTH_VNODE_SYNCHRONIZE;
1062 }
1063 if ((nfsmask & NFS_ACE_GENERIC_READ) == NFS_ACE_GENERIC_READ) {
1064 vfsrights |= KAUTH_ACE_GENERIC_READ;
1065 }
1066 if ((nfsmask & NFS_ACE_GENERIC_WRITE) == NFS_ACE_GENERIC_WRITE) {
1067 vfsrights |= KAUTH_ACE_GENERIC_WRITE;
1068 }
1069 if ((nfsmask & NFS_ACE_GENERIC_EXECUTE) == NFS_ACE_GENERIC_EXECUTE) {
1070 vfsrights |= KAUTH_ACE_GENERIC_EXECUTE;
1071 }
1072
1073 return vfsrights;
1074 }
1075
1076 uint32_t
1077 nfs4_ace_vfsrights_to_nfsmask(uint32_t vfsrights)
1078 {
1079 uint32_t nfsmask = 0;
1080
1081 if (vfsrights & KAUTH_VNODE_READ_DATA) {
1082 nfsmask |= NFS_ACE_READ_DATA;
1083 }
1084 if (vfsrights & KAUTH_VNODE_LIST_DIRECTORY) {
1085 nfsmask |= NFS_ACE_LIST_DIRECTORY;
1086 }
1087 if (vfsrights & KAUTH_VNODE_WRITE_DATA) {
1088 nfsmask |= NFS_ACE_WRITE_DATA;
1089 }
1090 if (vfsrights & KAUTH_VNODE_ADD_FILE) {
1091 nfsmask |= NFS_ACE_ADD_FILE;
1092 }
1093 if (vfsrights & KAUTH_VNODE_APPEND_DATA) {
1094 nfsmask |= NFS_ACE_APPEND_DATA;
1095 }
1096 if (vfsrights & KAUTH_VNODE_ADD_SUBDIRECTORY) {
1097 nfsmask |= NFS_ACE_ADD_SUBDIRECTORY;
1098 }
1099 if (vfsrights & KAUTH_VNODE_READ_EXTATTRIBUTES) {
1100 nfsmask |= NFS_ACE_READ_NAMED_ATTRS;
1101 }
1102 if (vfsrights & KAUTH_VNODE_WRITE_EXTATTRIBUTES) {
1103 nfsmask |= NFS_ACE_WRITE_NAMED_ATTRS;
1104 }
1105 if (vfsrights & KAUTH_VNODE_EXECUTE) {
1106 nfsmask |= NFS_ACE_EXECUTE;
1107 }
1108 if (vfsrights & KAUTH_VNODE_DELETE_CHILD) {
1109 nfsmask |= NFS_ACE_DELETE_CHILD;
1110 }
1111 if (vfsrights & KAUTH_VNODE_READ_ATTRIBUTES) {
1112 nfsmask |= NFS_ACE_READ_ATTRIBUTES;
1113 }
1114 if (vfsrights & KAUTH_VNODE_WRITE_ATTRIBUTES) {
1115 nfsmask |= NFS_ACE_WRITE_ATTRIBUTES;
1116 }
1117 if (vfsrights & KAUTH_VNODE_DELETE) {
1118 nfsmask |= NFS_ACE_DELETE;
1119 }
1120 if (vfsrights & KAUTH_VNODE_READ_SECURITY) {
1121 nfsmask |= NFS_ACE_READ_ACL;
1122 }
1123 if (vfsrights & KAUTH_VNODE_WRITE_SECURITY) {
1124 nfsmask |= NFS_ACE_WRITE_ACL;
1125 }
1126 if (vfsrights & KAUTH_VNODE_CHANGE_OWNER) {
1127 nfsmask |= NFS_ACE_WRITE_OWNER;
1128 }
1129 if (vfsrights & KAUTH_VNODE_SYNCHRONIZE) {
1130 nfsmask |= NFS_ACE_SYNCHRONIZE;
1131 }
1132 if (vfsrights & KAUTH_ACE_GENERIC_READ) {
1133 nfsmask |= NFS_ACE_GENERIC_READ;
1134 }
1135 if (vfsrights & KAUTH_ACE_GENERIC_WRITE) {
1136 nfsmask |= NFS_ACE_GENERIC_WRITE;
1137 }
1138 if (vfsrights & KAUTH_ACE_GENERIC_EXECUTE) {
1139 nfsmask |= NFS_ACE_GENERIC_EXECUTE;
1140 }
1141 if (vfsrights & KAUTH_ACE_GENERIC_ALL) {
1142 nfsmask |= (KAUTH_ACE_GENERIC_READ | KAUTH_ACE_GENERIC_WRITE | NFS_ACE_GENERIC_EXECUTE);
1143 }
1144
1145 return nfsmask;
1146 }
1147
1148 /*
1149 * nfs4_wkid2sidd::
1150 * mapid a wellknown identity to guid.
1151 * Return 0 on success ENOENT if id does not map and EINVAL if the id is not a well known name.
1152 */
1153 static int
1154 nfs4_wkid2sid(const char *id, ntsid_t *sp)
1155 {
1156 size_t len = strnlen(id, MAXIDNAMELEN);
1157
1158 if (len == MAXIDNAMELEN || id[len - 1] != '@') {
1159 return EINVAL;
1160 }
1161
1162 bzero(sp, sizeof(ntsid_t));
1163 sp->sid_kind = 1;
1164 sp->sid_authcount = 1;
1165 if (!strcmp(id, "OWNER@")) {
1166 // S-1-3-0
1167 sp->sid_authority[5] = 3;
1168 sp->sid_authorities[0] = 0;
1169 } else if (!strcmp(id, "GROUP@")) {
1170 // S-1-3-1
1171 sp->sid_authority[5] = 3;
1172 sp->sid_authorities[0] = 1;
1173 } else if (!strcmp(id, "EVERYONE@")) {
1174 // S-1-1-0
1175 sp->sid_authority[5] = 1;
1176 sp->sid_authorities[0] = 0;
1177 } else if (!strcmp(id, "INTERACTIVE@")) {
1178 // S-1-5-4
1179 sp->sid_authority[5] = 5;
1180 sp->sid_authorities[0] = 4;
1181 } else if (!strcmp(id, "NETWORK@")) {
1182 // S-1-5-2
1183 sp->sid_authority[5] = 5;
1184 sp->sid_authorities[0] = 2;
1185 } else if (!strcmp(id, "DIALUP@")) {
1186 // S-1-5-1
1187 sp->sid_authority[5] = 5;
1188 sp->sid_authorities[0] = 1;
1189 } else if (!strcmp(id, "BATCH@")) {
1190 // S-1-5-3
1191 sp->sid_authority[5] = 5;
1192 sp->sid_authorities[0] = 3;
1193 } else if (!strcmp(id, "ANONYMOUS@")) {
1194 // S-1-5-7
1195 sp->sid_authority[5] = 5;
1196 sp->sid_authorities[0] = 7;
1197 } else if (!strcmp(id, "AUTHENTICATED@")) {
1198 // S-1-5-11
1199 sp->sid_authority[5] = 5;
1200 sp->sid_authorities[0] = 11;
1201 } else if (!strcmp(id, "SERVICE@")) {
1202 // S-1-5-6
1203 sp->sid_authority[5] = 5;
1204 sp->sid_authorities[0] = 6;
1205 } else {
1206 // S-1-0-0 "NOBODY"
1207 sp->sid_authority[5] = 0;
1208 sp->sid_authorities[0] = 0;
1209 }
1210 return 0;
1211 }
1212
1213 static int
1214 nfs4_fallback_name(const char *id, int have_at)
1215 {
1216 if (have_at) {
1217 /* must be user@domain */
1218 /* try to identify some well-known IDs */
1219 if (!strncmp(id, "root@", 5)) {
1220 return 0;
1221 } else if (!strncmp(id, "wheel@", 6)) {
1222 return 0;
1223 } else if (!strncmp(id, "nobody@", 7)) {
1224 return -2;
1225 } else if (!strncmp(id, "nfsnobody@", 10)) {
1226 return -2;
1227 }
1228 }
1229 return -2;
1230 }
1231
1232 static void
1233 nfs4_mapid_log(int error, const char *idstr, int isgroup, guid_t *gp)
1234 {
1235 if (error && (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_FAILED_MAPPINGS)) {
1236 printf("nfs4_id2guid: idmap failed for %s %s error %d\n", idstr, isgroup ? "G" : " ", error);
1237 }
1238 if (!error && (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_SUCCESSFUL_MAPPINGS)) {
1239 printf("nfs4_id2guid: idmap for %s %s got guid "
1240 "%02x%02x%02x%02x_%02x%02x%02x%02x_%02x%02x%02x%02x_%02x%02x%02x%02x\n",
1241 idstr, isgroup ? "G" : " ",
1242 gp->g_guid[0], gp->g_guid[1], gp->g_guid[2], gp->g_guid[3],
1243 gp->g_guid[4], gp->g_guid[5], gp->g_guid[6], gp->g_guid[7],
1244 gp->g_guid[8], gp->g_guid[9], gp->g_guid[10], gp->g_guid[11],
1245 gp->g_guid[12], gp->g_guid[13], gp->g_guid[14], gp->g_guid[15]);
1246 }
1247 }
1248
1249 static char *
1250 nfs4_map_domain(char *id, char **atp)
1251 {
1252 char *at = *atp;
1253 char *dsnode, *otw_nfs4domain;
1254 char *new_id = NULL;
1255 size_t otw_domain_len;
1256 size_t otw_id_2_at_len;
1257 int error;
1258
1259 if (at == NULL) {
1260 at = strchr(id, '@');
1261 }
1262 if (at == NULL || *at != '@') {
1263 return NULL;
1264 }
1265
1266 otw_nfs4domain = at + 1;
1267 otw_domain_len = strnlen(otw_nfs4domain, MAXPATHLEN);
1268 otw_id_2_at_len = at - id + 1;
1269
1270 dsnode = zalloc(ZV_NAMEI);
1271 /* first try to map nfs4 domain to dsnode for scoped lookups */
1272 error = kauth_cred_nfs4domain2dsnode(otw_nfs4domain, dsnode);
1273 if (!error) {
1274 /* Success! Make new id be id@dsnode */
1275 size_t dsnode_len = strnlen(dsnode, MAXPATHLEN);
1276 size_t new_id_len = otw_id_2_at_len + dsnode_len + 1;
1277 char tmp;
1278
1279 MALLOC(new_id, char*, new_id_len, M_TEMP, M_WAITOK);
1280 tmp = *otw_nfs4domain;
1281 *otw_nfs4domain = '\0'; /* Chop of the old domain */
1282 strlcpy(new_id, id, MAXPATHLEN);
1283 *otw_nfs4domain = tmp; /* Be nice and preserve callers original id */
1284 strlcat(new_id, dsnode, MAXPATHLEN);
1285 at = strchr(new_id, '@');
1286 } else {
1287 /* Bummer:-( See if default nfs4 set for unscoped lookup */
1288 size_t default_domain_len = strnlen(nfs4_default_domain, MAXPATHLEN);
1289
1290 if ((otw_domain_len == default_domain_len) &&
1291 (strncmp(otw_nfs4domain, nfs4_default_domain, otw_domain_len) == 0)) {
1292 /* Woohoo! We have matching domains, do unscoped lookups */
1293 *at = '\0';
1294 }
1295 }
1296 NFS_ZFREE(ZV_NAMEI, dsnode);
1297
1298 if (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_SUCCESSFUL_MAPPINGS) {
1299 printf("nfs4_id2guid: after domain mapping id is %s\n", id);
1300 }
1301
1302 *atp = at;
1303 return new_id;
1304 }
1305
1306 /*
1307 * Map an NFSv4 ID string to a VFS guid.
1308 *
1309 * Try to use the ID mapping service... but we may fallback to trying to do it ourselves.
1310 */
1311 int
1312 nfs4_id2guid(/*const*/ char *id, guid_t *guidp, int isgroup)
1313 {
1314 int error = 0;
1315 ntsid_t sid;
1316 long num;
1317 char *p, *at, *new_id = NULL;
1318
1319 *guidp = kauth_null_guid;
1320
1321 /*
1322 * First check if it is just a simple numeric ID string or a special "XXX@" name.
1323 * If it's a number, there's no need trying to ask the IDMAP service to map it.
1324 * If it's a special "XXX@" name, we want to make sure to treat it as a group.
1325 */
1326 num = 1;
1327 at = NULL;
1328 p = id;
1329 while (*p) {
1330 if ((*p < '0') || (*p > '9')) {
1331 num = 0;
1332 }
1333 if (*p == '@') {
1334 at = p;
1335 }
1336 p++;
1337 }
1338
1339 if (num) {
1340 /* must be numeric ID (or empty) */
1341 num = *id ? strtol(id, NULL, 10) : -2;
1342 if (isgroup) {
1343 error = kauth_cred_gid2guid((gid_t)num, guidp);
1344 } else {
1345 error = kauth_cred_uid2guid((uid_t)num, guidp);
1346 }
1347 nfs4_mapid_log(error, id, isgroup, guidp);
1348 return error;
1349 }
1350
1351 /* See if this is a well known NFSv4 name */
1352 error = nfs4_wkid2sid(id, &sid);
1353 if (!error) {
1354 error = kauth_cred_ntsid2guid(&sid, guidp);
1355 nfs4_mapid_log(error, id, 1, guidp);
1356 return error;
1357 }
1358
1359 /* Handle nfs4 domain first */
1360 if (at && at[1]) {
1361 new_id = nfs4_map_domain(id, &at);
1362 if (new_id) {
1363 id = new_id;
1364 }
1365 }
1366
1367 /* Now try to do actual id mapping */
1368 if (nfs_idmap_ctrl & NFS_IDMAP_CTRL_USE_IDMAP_SERVICE) {
1369 /*
1370 * Ask the ID mapping service to map the ID string to a GUID.
1371 *
1372 * [sigh] this isn't a "pwnam/grnam" it's an NFS ID string!
1373 */
1374 if (isgroup) {
1375 error = kauth_cred_grnam2guid(id, guidp);
1376 } else {
1377 error = kauth_cred_pwnam2guid(id, guidp);
1378 }
1379 nfs4_mapid_log(error, id, isgroup, guidp);
1380 } else {
1381 error = ENOTSUP;
1382 }
1383
1384 if (error) {
1385 /*
1386 * fallback path... see if we can come up with an answer ourselves.
1387 */
1388 num = nfs4_fallback_name(id, at != NULL);
1389 if (isgroup) {
1390 error = kauth_cred_gid2guid((gid_t)num, guidp);
1391 } else {
1392 error = kauth_cred_uid2guid((uid_t)num, guidp);
1393 }
1394 nfs4_mapid_log(error, id, isgroup, guidp);
1395 }
1396
1397
1398 /* restore @ symbol in case we clobered for unscoped lookup */
1399 if (at && *at == '\0') {
1400 *at = '@';
1401 }
1402
1403 /* free mapped domain id string */
1404 if (new_id) {
1405 FREE(new_id, M_TEMP);
1406 }
1407
1408 return error;
1409 }
1410
1411 /*
1412 * nfs4_sid2wkid:
1413 * mapid a wellknown identity to guid.
1414 * returns well known name for the sid or NULL if sid does not map.
1415 */
1416 #define MAXWELLKNOWNID 18
1417
1418 static const char*
1419 nfs4_sid2wkid(ntsid_t *sp)
1420 {
1421 if ((sp->sid_kind == 1) && (sp->sid_authcount == 1)) {
1422 /* check if it's one of our well-known ACE WHO names */
1423 if (sp->sid_authority[5] == 0) {
1424 if (sp->sid_authorities[0] == 0) { // S-1-0-0
1425 return "nobody@localdomain";
1426 }
1427 } else if (sp->sid_authority[5] == 1) {
1428 if (sp->sid_authorities[0] == 0) { // S-1-1-0
1429 return "EVERYONE@";
1430 }
1431 } else if (sp->sid_authority[5] == 3) {
1432 if (sp->sid_authorities[0] == 0) { // S-1-3-0
1433 return "OWNER@";
1434 } else if (sp->sid_authorities[0] == 1) { // S-1-3-1
1435 return "GROUP@";
1436 }
1437 } else if (sp->sid_authority[5] == 5) {
1438 if (sp->sid_authorities[0] == 1) { // S-1-5-1
1439 return "DIALUP@";
1440 } else if (sp->sid_authorities[0] == 2) { // S-1-5-2
1441 return "NETWORK@";
1442 } else if (sp->sid_authorities[0] == 3) { // S-1-5-3
1443 return "BATCH@";
1444 } else if (sp->sid_authorities[0] == 4) { // S-1-5-4
1445 return "INTERACTIVE@";
1446 } else if (sp->sid_authorities[0] == 6) { // S-1-5-6
1447 return "SERVICE@";
1448 } else if (sp->sid_authorities[0] == 7) { // S-1-5-7
1449 return "ANONYMOUS@";
1450 } else if (sp->sid_authorities[0] == 11) { // S-1-5-11
1451 return "AUTHENTICATED@";
1452 }
1453 }
1454 }
1455 return NULL;
1456 }
1457
1458 static void
1459 nfs4_mapguid_log(int error, const char *where, guid_t *gp, int isgroup, const char *idstr)
1460 {
1461 if (error && (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_FAILED_MAPPINGS)) {
1462 printf("nfs4_guid2id: %s idmap failed for "
1463 "%02x%02x%02x%02x_%02x%02x%02x%02x_%02x%02x%02x%02x_%02x%02x%02x%02x %s "
1464 "error %d\n", where,
1465 gp->g_guid[0], gp->g_guid[1], gp->g_guid[2], gp->g_guid[3],
1466 gp->g_guid[4], gp->g_guid[5], gp->g_guid[6], gp->g_guid[7],
1467 gp->g_guid[8], gp->g_guid[9], gp->g_guid[10], gp->g_guid[11],
1468 gp->g_guid[12], gp->g_guid[13], gp->g_guid[14], gp->g_guid[15],
1469 isgroup ? "G" : " ", error);
1470 }
1471 if (!error && (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_SUCCESSFUL_MAPPINGS)) {
1472 printf("nfs4_guid2id: %s idmap for "
1473 "%02x%02x%02x%02x_%02x%02x%02x%02x_%02x%02x%02x%02x_%02x%02x%02x%02x %s "
1474 "got ID %s\n", where,
1475 gp->g_guid[0], gp->g_guid[1], gp->g_guid[2], gp->g_guid[3],
1476 gp->g_guid[4], gp->g_guid[5], gp->g_guid[6], gp->g_guid[7],
1477 gp->g_guid[8], gp->g_guid[9], gp->g_guid[10], gp->g_guid[11],
1478 gp->g_guid[12], gp->g_guid[13], gp->g_guid[14], gp->g_guid[15],
1479 isgroup ? "G" : " ", idstr);
1480 }
1481 }
1482
1483 static int
1484 nfs4_addv4domain(char *id, size_t *idlen)
1485 {
1486 char *at = NULL, *cp;
1487 int have_domain;
1488 int error = 0;
1489 size_t idsize;
1490
1491
1492 if (id == NULL || *id == '\0') {
1493 return EINVAL;
1494 }
1495
1496 for (cp = id; *cp != '\0'; cp++) {
1497 if (*cp == '@') {
1498 at = cp;
1499 break;
1500 }
1501 }
1502
1503 have_domain = (at && at[1] != '\0');
1504
1505 if (have_domain) {
1506 char *dsnode = at + 1;
1507 char *nfs4domain;
1508 size_t domain_len;
1509 char *mapped_domain;
1510
1511 nfs4domain = zalloc(ZV_NAMEI);
1512 error = kauth_cred_dsnode2nfs4domain(dsnode, nfs4domain);
1513 if (!error) {
1514 domain_len = strnlen(nfs4domain, MAXPATHLEN);
1515 mapped_domain = nfs4domain;
1516 } else {
1517 error = 0;
1518 domain_len = strnlen(nfs4_default_domain, MAXPATHLEN);
1519 mapped_domain = nfs4_default_domain;
1520 }
1521 if (domain_len) {
1522 /* chop off id after the '@' */
1523 at[1] = '\0';
1524 /* Add our mapped_domain */
1525 idsize = strlcat(id, mapped_domain, *idlen);
1526 if (*idlen > idsize) {
1527 *idlen = idsize;
1528 } else {
1529 error = ENOSPC;
1530 }
1531 }
1532 NFS_ZFREE(ZV_NAMEI, nfs4domain);
1533 } else if (at == NULL) {
1534 /*
1535 * If we didn't find an 'at' then cp points to the end of id passed in.
1536 * and if we have a nfs4_default_domain set. Try to append the
1537 * default domain if we have root or set ENOSPC.
1538 */
1539 size_t default_domain_len = strnlen(nfs4_default_domain, MAXPATHLEN);
1540
1541 if (default_domain_len) {
1542 strlcat(id, "@", *idlen);
1543 idsize = strlcat(id, nfs4_default_domain, *idlen);
1544 if (*idlen > idsize) {
1545 *idlen = idsize;
1546 } else {
1547 error = ENOSPC;
1548 }
1549 } else {
1550 ; /* Unscoped name otw */
1551 }
1552 }
1553
1554 if (!error && nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_SUCCESSFUL_MAPPINGS) {
1555 printf("nfs4_guid2id: id after nfs4 domain map: %s[%zd].\n", id, *idlen);
1556 }
1557
1558 return error;
1559 }
1560
1561 static char *
1562 nfs4_fallback_id(int numid, int isgrp, char *buf, size_t size)
1563 {
1564 const char *idp = NULL;
1565
1566 if (!(nfs_idmap_ctrl & NFS_IDMAP_CTRL_FALLBACK_NO_COMMON_IDS)) {
1567 /* map well known uid's to strings */
1568 if (numid == 0) {
1569 idp = isgrp ? "wheel" : "root";
1570 } else if (numid == -2) {
1571 idp = "nobody";
1572 }
1573 }
1574 if (!idp) {
1575 /* or just use a decimal number string. */
1576 snprintf(buf, size - 1, "%d", numid);
1577 buf[size - 1] = '\0';
1578 } else {
1579 size_t idplen = strlcpy(buf, idp, size);
1580 if (idplen >= size) {
1581 return NULL;
1582 }
1583 }
1584
1585 return buf;
1586 }
1587
1588 /*
1589 * Map a VFS guid to an NFSv4 ID string.
1590 *
1591 * Try to use the ID mapping service... but we may fallback to trying to do it ourselves.
1592 */
1593 int
1594 nfs4_guid2id(guid_t *guidp, char *id, size_t *idlen, int isgroup)
1595 {
1596 int error = 0;
1597 size_t id1len, len;
1598 char *id1buf, *id1;
1599 char numbuf[32];
1600 ntsid_t sid;
1601
1602 id1buf = id1 = NULL;
1603 id1len = 0;
1604
1605 /*
1606 * See if our guid maps to a well known NFSv4 name
1607 */
1608 error = kauth_cred_guid2ntsid(guidp, &sid);
1609 if (!error) {
1610 const char *wkid = nfs4_sid2wkid(&sid);
1611 if (wkid) {
1612 len = strnlen(wkid, MAXWELLKNOWNID);
1613 strlcpy(id, wkid, *idlen);
1614 error = (len < *idlen) ? 0 : ENOSPC;
1615 *idlen = len;
1616 nfs4_mapguid_log(error, "kauth_cred_guid2ntsid", guidp, 1, id);
1617 return error;
1618 }
1619 } else {
1620 nfs4_mapguid_log(error, "kauth_cred_guid2ntsid", guidp, isgroup, NULL);
1621 }
1622
1623 if (nfs_idmap_ctrl & NFS_IDMAP_CTRL_USE_IDMAP_SERVICE) {
1624 /*
1625 * Ask the ID mapping service to map the GUID to an ID string.
1626 *
1627 * [sigh] this isn't a "pwnam" it's an NFS id string!
1628 */
1629
1630 /*
1631 * Stupid kauth_cred_guid2pwnam() function requires that the buffer
1632 * be at least MAXPATHLEN bytes long even though most if not all ID
1633 * strings will be much much shorter than that.
1634 */
1635
1636 if (*idlen < MAXPATHLEN) {
1637 id1buf = zalloc(ZV_NAMEI);
1638 id1 = id1buf;
1639 id1len = MAXPATHLEN;
1640 } else {
1641 id1 = id;
1642 id1len = *idlen;
1643 }
1644
1645 if (isgroup) {
1646 error = kauth_cred_guid2grnam(guidp, id1);
1647 } else {
1648 error = kauth_cred_guid2pwnam(guidp, id1);
1649 }
1650 if (error) {
1651 nfs4_mapguid_log(error, "kauth_cred2[pw|gr]nam", guidp, isgroup, id1);
1652 }
1653 } else {
1654 error = ENOTSUP;
1655 }
1656
1657 if (error) {
1658 /*
1659 * fallback path... see if we can come up with an answer ourselves.
1660 */
1661 uid_t uid;
1662
1663 /* OK, let's just try mapping it to a UID/GID */
1664 if (isgroup) {
1665 error = kauth_cred_guid2gid(guidp, (gid_t*)&uid);
1666 } else {
1667 error = kauth_cred_guid2uid(guidp, &uid);
1668 }
1669 if (!error) {
1670 char *fbidp = nfs4_fallback_id(uid, isgroup, numbuf, sizeof(numbuf));
1671 if (fbidp == NULL) {
1672 error = ENOSPC;
1673 } else {
1674 id1 = fbidp;
1675 }
1676 }
1677 } else {
1678 error = nfs4_addv4domain(id1, &id1len);
1679 }
1680
1681 if (!error) {
1682 if (id1 != id) {
1683 /* copy idmap result to output buffer */
1684 len = strlcpy(id, id1, *idlen);
1685 if (len >= *idlen) {
1686 error = ENOSPC;
1687 } else {
1688 *idlen = len;
1689 }
1690 }
1691 }
1692 nfs4_mapguid_log(error, "End of routine", guidp, isgroup, id1);
1693
1694 if (id1buf) {
1695 NFS_ZFREE(ZV_NAMEI, id1buf);
1696 }
1697
1698 return error;
1699 }
1700
1701 /*
1702 * Set a vnode attr's supported bits according to the given bitmap
1703 */
1704 void
1705 nfs_vattr_set_supported(uint32_t *bitmap, struct vnode_attr *vap)
1706 {
1707 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TYPE)) {
1708 VATTR_SET_SUPPORTED(vap, va_type);
1709 }
1710 // if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_CHANGE))
1711 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SIZE)) {
1712 VATTR_SET_SUPPORTED(vap, va_data_size);
1713 }
1714 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FSID)) {
1715 VATTR_SET_SUPPORTED(vap, va_fsid);
1716 }
1717 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ACL)) {
1718 VATTR_SET_SUPPORTED(vap, va_acl);
1719 }
1720 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ARCHIVE)) {
1721 VATTR_SET_SUPPORTED(vap, va_flags);
1722 }
1723 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FILEID)) {
1724 VATTR_SET_SUPPORTED(vap, va_fileid);
1725 }
1726 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_HIDDEN)) {
1727 VATTR_SET_SUPPORTED(vap, va_flags);
1728 }
1729 // if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MIMETYPE))
1730 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MODE)) {
1731 VATTR_SET_SUPPORTED(vap, va_mode);
1732 }
1733 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_NUMLINKS)) {
1734 VATTR_SET_SUPPORTED(vap, va_nlink);
1735 }
1736 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_OWNER)) {
1737 VATTR_SET_SUPPORTED(vap, va_uid);
1738 VATTR_SET_SUPPORTED(vap, va_uuuid);
1739 }
1740 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_OWNER_GROUP)) {
1741 VATTR_SET_SUPPORTED(vap, va_gid);
1742 VATTR_SET_SUPPORTED(vap, va_guuid);
1743 }
1744 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_RAWDEV)) {
1745 VATTR_SET_SUPPORTED(vap, va_rdev);
1746 }
1747 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SPACE_USED)) {
1748 VATTR_SET_SUPPORTED(vap, va_total_alloc);
1749 }
1750 // if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SYSTEM))
1751 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_ACCESS)) {
1752 VATTR_SET_SUPPORTED(vap, va_access_time);
1753 }
1754 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_BACKUP)) {
1755 VATTR_SET_SUPPORTED(vap, va_backup_time);
1756 }
1757 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_CREATE)) {
1758 VATTR_SET_SUPPORTED(vap, va_create_time);
1759 }
1760 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_METADATA)) {
1761 VATTR_SET_SUPPORTED(vap, va_change_time);
1762 }
1763 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_MODIFY)) {
1764 VATTR_SET_SUPPORTED(vap, va_modify_time);
1765 }
1766 }
1767
1768 /*
1769 * Parse the attributes that are in the mbuf list and store them in
1770 * the given structures.
1771 */
1772 int
1773 nfs4_parsefattr(
1774 struct nfsm_chain *nmc,
1775 struct nfs_fsattr *nfsap,
1776 struct nfs_vattr *nvap,
1777 fhandle_t *fhp,
1778 struct dqblk *dqbp,
1779 struct nfs_fs_locations *nfslsp)
1780 {
1781 int error = 0, error2, rderror = 0, attrbytes;
1782 uint32_t val, val2, val3, i;
1783 uint32_t bitmap[NFS_ATTR_BITMAP_LEN], len;
1784 size_t slen;
1785 char sbuf[64], *s;
1786 struct nfs_fsattr nfsa_dummy;
1787 struct nfs_vattr *nva_dummy = NULL;
1788 struct dqblk dqb_dummy;
1789 kauth_acl_t acl = NULL;
1790 uint32_t ace_type, ace_flags, ace_mask;
1791 struct nfs_fs_locations nfsls_dummy;
1792 struct sockaddr_storage ss;
1793
1794 /* if not interested in some values... throw 'em into a local dummy variable */
1795 if (!nfsap) {
1796 nfsap = &nfsa_dummy;
1797 }
1798 if (!nvap) {
1799 MALLOC(nva_dummy, struct nfs_vattr *, sizeof(*nva_dummy), M_TEMP, M_WAITOK);
1800 nvap = nva_dummy;
1801 }
1802 if (!dqbp) {
1803 dqbp = &dqb_dummy;
1804 }
1805 if (!nfslsp) {
1806 nfslsp = &nfsls_dummy;
1807 }
1808 bzero(nfslsp, sizeof(*nfslsp));
1809
1810 attrbytes = val = val2 = val3 = 0;
1811 s = sbuf;
1812 slen = sizeof(sbuf);
1813 NVATTR_INIT(nvap);
1814
1815 len = NFS_ATTR_BITMAP_LEN;
1816 nfsm_chain_get_bitmap(error, nmc, bitmap, len);
1817 /* add bits to object/fs attr bitmaps */
1818 for (i = 0; i < NFS_ATTR_BITMAP_LEN; i++) {
1819 nvap->nva_bitmap[i] |= bitmap[i] & nfs_object_attr_bitmap[i];
1820 nfsap->nfsa_bitmap[i] |= bitmap[i] & nfs_fs_attr_bitmap[i];
1821 }
1822
1823 nfsm_chain_get_32(error, nmc, attrbytes);
1824 nfsmout_if(error);
1825
1826 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SUPPORTED_ATTRS)) {
1827 len = NFS_ATTR_BITMAP_LEN;
1828 nfsm_chain_get_bitmap(error, nmc, nfsap->nfsa_supp_attr, len);
1829 attrbytes -= (len + 1) * NFSX_UNSIGNED;
1830 }
1831 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TYPE)) {
1832 nfsm_chain_get_32(error, nmc, val);
1833 nvap->nva_type = nfstov_type(val, NFS_VER4);
1834 if ((val == NFATTRDIR) || (val == NFNAMEDATTR)) {
1835 nvap->nva_flags |= NFS_FFLAG_IS_ATTR;
1836 } else {
1837 nvap->nva_flags &= ~NFS_FFLAG_IS_ATTR;
1838 }
1839 attrbytes -= NFSX_UNSIGNED;
1840 }
1841 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FH_EXPIRE_TYPE)) {
1842 nfsm_chain_get_32(error, nmc, val);
1843 nfsmout_if(error);
1844 nfsap->nfsa_flags &= ~NFS_FSFLAG_FHTYPE_MASK;
1845 nfsap->nfsa_flags |= val << NFS_FSFLAG_FHTYPE_SHIFT;
1846 if (val & ~0xff) {
1847 printf("nfs: warning unknown fh type: 0x%x\n", val);
1848 }
1849 attrbytes -= NFSX_UNSIGNED;
1850 }
1851 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_CHANGE)) {
1852 nfsm_chain_get_64(error, nmc, nvap->nva_change);
1853 attrbytes -= 2 * NFSX_UNSIGNED;
1854 }
1855 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SIZE)) {
1856 nfsm_chain_get_64(error, nmc, nvap->nva_size);
1857 attrbytes -= 2 * NFSX_UNSIGNED;
1858 }
1859 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_LINK_SUPPORT)) {
1860 nfsm_chain_get_32(error, nmc, val);
1861 if (val) {
1862 nfsap->nfsa_flags |= NFS_FSFLAG_LINK;
1863 } else {
1864 nfsap->nfsa_flags &= ~NFS_FSFLAG_LINK;
1865 }
1866 attrbytes -= NFSX_UNSIGNED;
1867 }
1868 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SYMLINK_SUPPORT)) {
1869 nfsm_chain_get_32(error, nmc, val);
1870 if (val) {
1871 nfsap->nfsa_flags |= NFS_FSFLAG_SYMLINK;
1872 } else {
1873 nfsap->nfsa_flags &= ~NFS_FSFLAG_SYMLINK;
1874 }
1875 attrbytes -= NFSX_UNSIGNED;
1876 }
1877 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_NAMED_ATTR)) {
1878 nfsm_chain_get_32(error, nmc, val);
1879 if (val) {
1880 nvap->nva_flags |= NFS_FFLAG_HAS_NAMED_ATTRS;
1881 } else {
1882 nvap->nva_flags &= ~NFS_FFLAG_HAS_NAMED_ATTRS;
1883 }
1884 attrbytes -= NFSX_UNSIGNED;
1885 }
1886 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FSID)) {
1887 nfsm_chain_get_64(error, nmc, nvap->nva_fsid.major);
1888 nfsm_chain_get_64(error, nmc, nvap->nva_fsid.minor);
1889 attrbytes -= 4 * NFSX_UNSIGNED;
1890 }
1891 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_UNIQUE_HANDLES)) {
1892 nfsm_chain_get_32(error, nmc, val);
1893 if (val) {
1894 nfsap->nfsa_flags |= NFS_FSFLAG_UNIQUE_FH;
1895 } else {
1896 nfsap->nfsa_flags &= ~NFS_FSFLAG_UNIQUE_FH;
1897 }
1898 attrbytes -= NFSX_UNSIGNED;
1899 }
1900 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_LEASE_TIME)) {
1901 nfsm_chain_get_32(error, nmc, nfsap->nfsa_lease);
1902 attrbytes -= NFSX_UNSIGNED;
1903 }
1904 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_RDATTR_ERROR)) {
1905 nfsm_chain_get_32(error, nmc, rderror);
1906 attrbytes -= NFSX_UNSIGNED;
1907 if (!rderror) { /* no error */
1908 NFS_BITMAP_CLR(bitmap, NFS_FATTR_RDATTR_ERROR);
1909 NFS_BITMAP_CLR(nvap->nva_bitmap, NFS_FATTR_RDATTR_ERROR);
1910 }
1911 }
1912 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ACL)) {
1913 error2 = 0;
1914 ace_type = ace_flags = ace_mask = 0;
1915 nfsm_chain_get_32(error, nmc, val); /* ACE count */
1916 if (!error && (val > KAUTH_ACL_MAX_ENTRIES)) {
1917 error = EOVERFLOW;
1918 }
1919 if (!error && !((acl = kauth_acl_alloc(val)))) {
1920 error = ENOMEM;
1921 }
1922 if (!error && acl) {
1923 acl->acl_entrycount = val;
1924 acl->acl_flags = 0;
1925 }
1926 attrbytes -= NFSX_UNSIGNED;
1927 nfsm_assert(error, (attrbytes >= 0), EBADRPC);
1928 for (i = 0; !error && (i < val); i++) {
1929 nfsm_chain_get_32(error, nmc, ace_type);
1930 nfsm_chain_get_32(error, nmc, ace_flags);
1931 nfsm_chain_get_32(error, nmc, ace_mask);
1932 nfsm_chain_get_32(error, nmc, len);
1933 if (!error && len >= NFS_MAX_WHO) {
1934 error = EBADRPC;
1935 }
1936 acl->acl_ace[i].ace_flags = nfs4_ace_nfstype_to_vfstype(ace_type, &error);
1937 acl->acl_ace[i].ace_flags |= nfs4_ace_nfsflags_to_vfsflags(ace_flags);
1938 acl->acl_ace[i].ace_rights = nfs4_ace_nfsmask_to_vfsrights(ace_mask);
1939 if (!error && !error2 && (len >= slen)) {
1940 if (s != sbuf) {
1941 FREE(s, M_TEMP);
1942 s = sbuf;
1943 slen = sizeof(sbuf);
1944 }
1945 /* Let's add a bit more if we can to the allocation as to try and avoid future allocations */
1946 MALLOC(s, char*, (len + 16 < NFS_MAX_WHO) ? len + 16 : NFS_MAX_WHO, M_TEMP, M_WAITOK);
1947 if (s) {
1948 slen = (len + 16 < NFS_MAX_WHO) ? len + 16 : NFS_MAX_WHO;
1949 } else {
1950 error = ENOMEM;
1951 }
1952 }
1953 if (error2) {
1954 nfsm_chain_adv(error, nmc, nfsm_rndup(len));
1955 } else {
1956 nfsm_chain_get_opaque(error, nmc, len, s);
1957 }
1958 if (!error && !error2) {
1959 s[len] = '\0';
1960 error2 = nfs4_id2guid(s, &acl->acl_ace[i].ace_applicable,
1961 (ace_flags & NFS_ACE_IDENTIFIER_GROUP));
1962 if (error2 && (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_FAILED_MAPPINGS)) {
1963 printf("nfs4_parsefattr: ACE WHO %s is no one, no guid?, error %d\n", s, error2);
1964 }
1965 }
1966 attrbytes -= 4 * NFSX_UNSIGNED + nfsm_rndup(len);
1967 nfsm_assert(error, (attrbytes >= 0), EBADRPC);
1968 }
1969 nfsmout_if(error);
1970 if ((nvap != nva_dummy) && !error2) {
1971 nvap->nva_acl = acl;
1972 acl = NULL;
1973 }
1974 }
1975 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ACLSUPPORT)) {
1976 /*
1977 * Support ACLs if: the server supports DENY/ALLOC ACEs and
1978 * (just to be safe) FATTR_ACL is in the supported list too.
1979 */
1980 nfsm_chain_get_32(error, nmc, val);
1981 if ((val & (NFS_ACL_SUPPORT_ALLOW_ACL | NFS_ACL_SUPPORT_DENY_ACL)) &&
1982 NFS_BITMAP_ISSET(nfsap->nfsa_supp_attr, NFS_FATTR_ACL)) {
1983 nfsap->nfsa_flags |= NFS_FSFLAG_ACL;
1984 } else {
1985 nfsap->nfsa_flags &= ~NFS_FSFLAG_ACL;
1986 }
1987 attrbytes -= NFSX_UNSIGNED;
1988 }
1989 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ARCHIVE)) { /* SF_ARCHIVED */
1990 nfsm_chain_get_32(error, nmc, val);
1991 if (val) {
1992 nvap->nva_flags |= NFS_FFLAG_ARCHIVED;
1993 } else {
1994 nvap->nva_flags &= ~NFS_FFLAG_ARCHIVED;
1995 }
1996 attrbytes -= NFSX_UNSIGNED;
1997 }
1998 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_CANSETTIME)) {
1999 nfsm_chain_get_32(error, nmc, val);
2000 if (val) {
2001 nfsap->nfsa_flags |= NFS_FSFLAG_SET_TIME;
2002 } else {
2003 nfsap->nfsa_flags &= ~NFS_FSFLAG_SET_TIME;
2004 }
2005 attrbytes -= NFSX_UNSIGNED;
2006 }
2007 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_CASE_INSENSITIVE)) {
2008 nfsm_chain_get_32(error, nmc, val);
2009 if (val) {
2010 nfsap->nfsa_flags |= NFS_FSFLAG_CASE_INSENSITIVE;
2011 } else {
2012 nfsap->nfsa_flags &= ~NFS_FSFLAG_CASE_INSENSITIVE;
2013 }
2014 attrbytes -= NFSX_UNSIGNED;
2015 }
2016 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_CASE_PRESERVING)) {
2017 nfsm_chain_get_32(error, nmc, val);
2018 if (val) {
2019 nfsap->nfsa_flags |= NFS_FSFLAG_CASE_PRESERVING;
2020 } else {
2021 nfsap->nfsa_flags &= ~NFS_FSFLAG_CASE_PRESERVING;
2022 }
2023 attrbytes -= NFSX_UNSIGNED;
2024 }
2025 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_CHOWN_RESTRICTED)) {
2026 nfsm_chain_get_32(error, nmc, val);
2027 if (val) {
2028 nfsap->nfsa_flags |= NFS_FSFLAG_CHOWN_RESTRICTED;
2029 } else {
2030 nfsap->nfsa_flags &= ~NFS_FSFLAG_CHOWN_RESTRICTED;
2031 }
2032 attrbytes -= NFSX_UNSIGNED;
2033 }
2034 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FILEHANDLE)) {
2035 nfsm_chain_get_32(error, nmc, val);
2036 if (error == 0 && val > NFS_MAX_FH_SIZE) {
2037 error = EBADRPC;
2038 }
2039 nfsmout_if(error);
2040 if (fhp) {
2041 fhp->fh_len = val;
2042 nfsm_chain_get_opaque(error, nmc, nfsm_rndup(val), fhp->fh_data);
2043 } else {
2044 nfsm_chain_adv(error, nmc, nfsm_rndup(val));
2045 }
2046 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(val);
2047 }
2048 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FILEID)) {
2049 nfsm_chain_get_64(error, nmc, nvap->nva_fileid);
2050 attrbytes -= 2 * NFSX_UNSIGNED;
2051 }
2052 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FILES_AVAIL)) {
2053 nfsm_chain_get_64(error, nmc, nfsap->nfsa_files_avail);
2054 attrbytes -= 2 * NFSX_UNSIGNED;
2055 }
2056 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FILES_FREE)) {
2057 nfsm_chain_get_64(error, nmc, nfsap->nfsa_files_free);
2058 attrbytes -= 2 * NFSX_UNSIGNED;
2059 }
2060 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FILES_TOTAL)) {
2061 nfsm_chain_get_64(error, nmc, nfsap->nfsa_files_total);
2062 attrbytes -= 2 * NFSX_UNSIGNED;
2063 }
2064 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_FS_LOCATIONS)) {
2065 uint32_t loc, serv, comp;
2066 struct nfs_fs_location *fsl;
2067 struct nfs_fs_server *fss;
2068 struct nfs_fs_path *fsp;
2069
2070 /* get root pathname */
2071 fsp = &nfslsp->nl_root;
2072 nfsm_chain_get_32(error, nmc, fsp->np_compcount); /* component count */
2073 attrbytes -= NFSX_UNSIGNED;
2074 /* sanity check component count */
2075 if (!error && (fsp->np_compcount > MAXPATHLEN)) {
2076 error = EBADRPC;
2077 }
2078 nfsmout_if(error);
2079 if (fsp->np_compcount) {
2080 MALLOC(fsp->np_components, char **, fsp->np_compcount * sizeof(char*), M_TEMP, M_WAITOK | M_ZERO);
2081 if (!fsp->np_components) {
2082 error = ENOMEM;
2083 }
2084 }
2085 for (comp = 0; comp < fsp->np_compcount; comp++) {
2086 nfsm_chain_get_32(error, nmc, val); /* component length */
2087 /* sanity check component length */
2088 if (!error && (val == 0)) {
2089 /*
2090 * Apparently some people think a path with zero components should
2091 * be encoded with one zero-length component. So, just ignore any
2092 * zero length components.
2093 */
2094 comp--;
2095 fsp->np_compcount--;
2096 if (fsp->np_compcount == 0) {
2097 FREE(fsp->np_components, M_TEMP);
2098 fsp->np_components = NULL;
2099 }
2100 attrbytes -= NFSX_UNSIGNED;
2101 continue;
2102 }
2103 if (!error && ((val < 1) || (val > MAXPATHLEN))) {
2104 error = EBADRPC;
2105 }
2106 nfsmout_if(error);
2107 MALLOC(fsp->np_components[comp], char *, val + 1, M_TEMP, M_WAITOK | M_ZERO);
2108 if (!fsp->np_components[comp]) {
2109 error = ENOMEM;
2110 }
2111 nfsmout_if(error);
2112 nfsm_chain_get_opaque(error, nmc, val, fsp->np_components[comp]); /* component */
2113 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(val);
2114 }
2115 nfsm_chain_get_32(error, nmc, nfslsp->nl_numlocs); /* fs location count */
2116 attrbytes -= NFSX_UNSIGNED;
2117 /* sanity check location count */
2118 if (!error && (nfslsp->nl_numlocs > 256)) {
2119 error = EBADRPC;
2120 }
2121 nfsmout_if(error);
2122 if (nfslsp->nl_numlocs > 0) {
2123 MALLOC(nfslsp->nl_locations, struct nfs_fs_location **, nfslsp->nl_numlocs * sizeof(struct nfs_fs_location*), M_TEMP, M_WAITOK | M_ZERO);
2124 if (!nfslsp->nl_locations) {
2125 error = ENOMEM;
2126 }
2127 }
2128 nfsmout_if(error);
2129 for (loc = 0; loc < nfslsp->nl_numlocs; loc++) {
2130 nfsmout_if(error);
2131 MALLOC(fsl, struct nfs_fs_location *, sizeof(struct nfs_fs_location), M_TEMP, M_WAITOK | M_ZERO);
2132 if (!fsl) {
2133 error = ENOMEM;
2134 }
2135 nfslsp->nl_locations[loc] = fsl;
2136 nfsm_chain_get_32(error, nmc, fsl->nl_servcount); /* server count */
2137 attrbytes -= NFSX_UNSIGNED;
2138 /* sanity check server count */
2139 if (!error && ((fsl->nl_servcount < 1) || (fsl->nl_servcount > 256))) {
2140 error = EBADRPC;
2141 }
2142 nfsmout_if(error);
2143 MALLOC(fsl->nl_servers, struct nfs_fs_server **, fsl->nl_servcount * sizeof(struct nfs_fs_server*), M_TEMP, M_WAITOK | M_ZERO);
2144 if (!fsl->nl_servers) {
2145 error = ENOMEM;
2146 }
2147 for (serv = 0; serv < fsl->nl_servcount; serv++) {
2148 nfsmout_if(error);
2149 MALLOC(fss, struct nfs_fs_server *, sizeof(struct nfs_fs_server), M_TEMP, M_WAITOK | M_ZERO);
2150 if (!fss) {
2151 error = ENOMEM;
2152 }
2153 fsl->nl_servers[serv] = fss;
2154 nfsm_chain_get_32(error, nmc, val); /* server name length */
2155 /* sanity check server name length */
2156 if (!error && ((val < 1) || (val > MAXPATHLEN))) {
2157 error = EINVAL;
2158 }
2159 nfsmout_if(error);
2160 MALLOC(fss->ns_name, char *, val + 1, M_TEMP, M_WAITOK | M_ZERO);
2161 if (!fss->ns_name) {
2162 error = ENOMEM;
2163 }
2164 nfsm_chain_get_opaque(error, nmc, val, fss->ns_name); /* server name */
2165 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(val);
2166 nfsmout_if(error);
2167 /* copy name to address if it converts to a sockaddr */
2168 if (nfs_uaddr2sockaddr(fss->ns_name, (struct sockaddr*)&ss)) {
2169 fss->ns_addrcount = 1;
2170 MALLOC(fss->ns_addresses, char **, sizeof(char *), M_TEMP, M_WAITOK | M_ZERO);
2171 if (!fss->ns_addresses) {
2172 error = ENOMEM;
2173 }
2174 nfsmout_if(error);
2175 MALLOC(fss->ns_addresses[0], char *, val + 1, M_TEMP, M_WAITOK | M_ZERO);
2176 if (!fss->ns_addresses[0]) {
2177 error = ENOMEM;
2178 }
2179 nfsmout_if(error);
2180 strlcpy(fss->ns_addresses[0], fss->ns_name, val + 1);
2181 }
2182 }
2183 /* get pathname */
2184 fsp = &fsl->nl_path;
2185 nfsm_chain_get_32(error, nmc, fsp->np_compcount); /* component count */
2186 attrbytes -= NFSX_UNSIGNED;
2187 /* sanity check component count */
2188 if (!error && (fsp->np_compcount > MAXPATHLEN)) {
2189 error = EINVAL;
2190 }
2191 nfsmout_if(error);
2192 if (fsp->np_compcount) {
2193 MALLOC(fsp->np_components, char **, fsp->np_compcount * sizeof(char*), M_TEMP, M_WAITOK | M_ZERO);
2194 if (!fsp->np_components) {
2195 error = ENOMEM;
2196 }
2197 }
2198 for (comp = 0; comp < fsp->np_compcount; comp++) {
2199 nfsm_chain_get_32(error, nmc, val); /* component length */
2200 /* sanity check component length */
2201 if (!error && (val == 0)) {
2202 /*
2203 * Apparently some people think a path with zero components should
2204 * be encoded with one zero-length component. So, just ignore any
2205 * zero length components.
2206 */
2207 comp--;
2208 fsp->np_compcount--;
2209 if (fsp->np_compcount == 0) {
2210 FREE(fsp->np_components, M_TEMP);
2211 fsp->np_components = NULL;
2212 }
2213 attrbytes -= NFSX_UNSIGNED;
2214 continue;
2215 }
2216 if (!error && ((val < 1) || (val > MAXPATHLEN))) {
2217 error = EINVAL;
2218 }
2219 nfsmout_if(error);
2220 MALLOC(fsp->np_components[comp], char *, val + 1, M_TEMP, M_WAITOK | M_ZERO);
2221 if (!fsp->np_components[comp]) {
2222 error = ENOMEM;
2223 }
2224 nfsm_chain_get_opaque(error, nmc, val, fsp->np_components[comp]); /* component */
2225 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(val);
2226 }
2227 }
2228 nfsm_assert(error, (attrbytes >= 0), EBADRPC);
2229 }
2230 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_HIDDEN)) { /* UF_HIDDEN */
2231 nfsm_chain_get_32(error, nmc, val);
2232 if (val) {
2233 nvap->nva_flags |= NFS_FFLAG_HIDDEN;
2234 } else {
2235 nvap->nva_flags &= ~NFS_FFLAG_HIDDEN;
2236 }
2237 attrbytes -= NFSX_UNSIGNED;
2238 }
2239 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_HOMOGENEOUS)) {
2240 /* XXX If NOT homogeneous, we may need to clear flags on the mount */
2241 nfsm_chain_get_32(error, nmc, val);
2242 if (val) {
2243 nfsap->nfsa_flags |= NFS_FSFLAG_HOMOGENEOUS;
2244 } else {
2245 nfsap->nfsa_flags &= ~NFS_FSFLAG_HOMOGENEOUS;
2246 }
2247 attrbytes -= NFSX_UNSIGNED;
2248 }
2249 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MAXFILESIZE)) {
2250 nfsm_chain_get_64(error, nmc, nfsap->nfsa_maxfilesize);
2251 attrbytes -= 2 * NFSX_UNSIGNED;
2252 }
2253 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MAXLINK)) {
2254 nfsm_chain_get_32(error, nmc, nvap->nva_maxlink);
2255 if (!error && (nfsap->nfsa_maxlink > INT32_MAX)) {
2256 nfsap->nfsa_maxlink = INT32_MAX;
2257 }
2258 attrbytes -= NFSX_UNSIGNED;
2259 }
2260 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MAXNAME)) {
2261 nfsm_chain_get_32(error, nmc, nfsap->nfsa_maxname);
2262 if (!error && (nfsap->nfsa_maxname > INT32_MAX)) {
2263 nfsap->nfsa_maxname = INT32_MAX;
2264 }
2265 attrbytes -= NFSX_UNSIGNED;
2266 }
2267 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MAXREAD)) {
2268 nfsm_chain_get_64(error, nmc, nfsap->nfsa_maxread);
2269 attrbytes -= 2 * NFSX_UNSIGNED;
2270 }
2271 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MAXWRITE)) {
2272 nfsm_chain_get_64(error, nmc, nfsap->nfsa_maxwrite);
2273 attrbytes -= 2 * NFSX_UNSIGNED;
2274 }
2275 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MIMETYPE)) {
2276 nfsm_chain_get_32(error, nmc, val);
2277 nfsm_chain_adv(error, nmc, nfsm_rndup(val));
2278 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(val);
2279 }
2280 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MODE)) {
2281 nfsm_chain_get_32(error, nmc, val);
2282 if (val > ALLPERMS) {
2283 error = EBADRPC;
2284 } else {
2285 nvap->nva_mode = (mode_t)val;
2286 }
2287 attrbytes -= NFSX_UNSIGNED;
2288 }
2289 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_NO_TRUNC)) {
2290 nfsm_chain_get_32(error, nmc, val);
2291 if (val) {
2292 nfsap->nfsa_flags |= NFS_FSFLAG_NO_TRUNC;
2293 } else {
2294 nfsap->nfsa_flags &= ~NFS_FSFLAG_NO_TRUNC;
2295 }
2296 attrbytes -= NFSX_UNSIGNED;
2297 }
2298 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_NUMLINKS)) {
2299 nfsm_chain_get_32(error, nmc, val);
2300 nvap->nva_nlink = val;
2301 attrbytes -= NFSX_UNSIGNED;
2302 }
2303 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_OWNER)) {
2304 nfsm_chain_get_32(error, nmc, len);
2305 if (!error && len >= NFS_MAX_WHO) {
2306 error = EBADRPC;
2307 }
2308 if (!error && (len >= slen)) {
2309 if (s != sbuf) {
2310 FREE(s, M_TEMP);
2311 s = sbuf;
2312 slen = sizeof(sbuf);
2313 }
2314 /* Let's add a bit more if we can to the allocation as to try and avoid future allocations */
2315 MALLOC(s, char*, (len + 16 < NFS_MAX_WHO) ? len + 16 : NFS_MAX_WHO, M_TEMP, M_WAITOK);
2316 if (s) {
2317 slen = (len + 16 < NFS_MAX_WHO) ? len + 16 : NFS_MAX_WHO;
2318 } else {
2319 error = ENOMEM;
2320 }
2321 }
2322 nfsm_chain_get_opaque(error, nmc, len, s);
2323 if (!error) {
2324 s[len] = '\0';
2325 error = nfs4_id2guid(s, &nvap->nva_uuuid, 0);
2326 if (!error) {
2327 error = kauth_cred_guid2uid(&nvap->nva_uuuid, &nvap->nva_uid);
2328 }
2329 if (error) {
2330 /* unable to get either GUID or UID, set to default */
2331 nvap->nva_uid = (uid_t)(-2);
2332 if (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_FAILED_MAPPINGS) {
2333 printf("nfs4_parsefattr: owner %s is no one, no %s?, error %d\n", s,
2334 kauth_guid_equal(&nvap->nva_uuuid, &kauth_null_guid) ? "guid" : "uid",
2335 error);
2336 }
2337 error = 0;
2338 }
2339 }
2340 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(len);
2341 }
2342 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_OWNER_GROUP)) {
2343 nfsm_chain_get_32(error, nmc, len);
2344 if (!error && len >= NFS_MAX_WHO) {
2345 error = EBADRPC;
2346 }
2347 if (!error && (len >= slen)) {
2348 if (s != sbuf) {
2349 FREE(s, M_TEMP);
2350 s = sbuf;
2351 slen = sizeof(sbuf);
2352 }
2353 /* Let's add a bit more if we can to the allocation as to try and avoid future allocations */
2354 MALLOC(s, char*, (len + 16 < NFS_MAX_WHO) ? len + 16 : NFS_MAX_WHO, M_TEMP, M_WAITOK);
2355 if (s) {
2356 slen = (len + 16 < NFS_MAX_WHO) ? len + 16 : NFS_MAX_WHO;
2357 } else {
2358 error = ENOMEM;
2359 }
2360 }
2361 nfsm_chain_get_opaque(error, nmc, len, s);
2362 if (!error) {
2363 s[len] = '\0';
2364 error = nfs4_id2guid(s, &nvap->nva_guuid, 1);
2365 if (!error) {
2366 error = kauth_cred_guid2gid(&nvap->nva_guuid, &nvap->nva_gid);
2367 }
2368 if (error) {
2369 /* unable to get either GUID or GID, set to default */
2370 nvap->nva_gid = (gid_t)(-2);
2371 if (nfs_idmap_ctrl & NFS_IDMAP_CTRL_LOG_FAILED_MAPPINGS) {
2372 printf("nfs4_parsefattr: group %s is no one, no %s?, error %d\n", s,
2373 kauth_guid_equal(&nvap->nva_guuid, &kauth_null_guid) ? "guid" : "gid",
2374 error);
2375 }
2376 error = 0;
2377 }
2378 }
2379 attrbytes -= NFSX_UNSIGNED + nfsm_rndup(len);
2380 }
2381 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_QUOTA_AVAIL_HARD)) {
2382 nfsm_chain_get_64(error, nmc, dqbp->dqb_bhardlimit);
2383 attrbytes -= 2 * NFSX_UNSIGNED;
2384 }
2385 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_QUOTA_AVAIL_SOFT)) {
2386 nfsm_chain_get_64(error, nmc, dqbp->dqb_bsoftlimit);
2387 attrbytes -= 2 * NFSX_UNSIGNED;
2388 }
2389 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_QUOTA_USED)) {
2390 nfsm_chain_get_64(error, nmc, dqbp->dqb_curbytes);
2391 attrbytes -= 2 * NFSX_UNSIGNED;
2392 }
2393 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_RAWDEV)) {
2394 nfsm_chain_get_32(error, nmc, nvap->nva_rawdev.specdata1);
2395 nfsm_chain_get_32(error, nmc, nvap->nva_rawdev.specdata2);
2396 attrbytes -= 2 * NFSX_UNSIGNED;
2397 }
2398 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SPACE_AVAIL)) {
2399 nfsm_chain_get_64(error, nmc, nfsap->nfsa_space_avail);
2400 attrbytes -= 2 * NFSX_UNSIGNED;
2401 }
2402 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SPACE_FREE)) {
2403 nfsm_chain_get_64(error, nmc, nfsap->nfsa_space_free);
2404 attrbytes -= 2 * NFSX_UNSIGNED;
2405 }
2406 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SPACE_TOTAL)) {
2407 nfsm_chain_get_64(error, nmc, nfsap->nfsa_space_total);
2408 attrbytes -= 2 * NFSX_UNSIGNED;
2409 }
2410 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SPACE_USED)) {
2411 nfsm_chain_get_64(error, nmc, nvap->nva_bytes);
2412 attrbytes -= 2 * NFSX_UNSIGNED;
2413 }
2414 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SYSTEM)) {
2415 /* we'd support this if we had a flag to map it to... */
2416 nfsm_chain_adv(error, nmc, NFSX_UNSIGNED);
2417 attrbytes -= NFSX_UNSIGNED;
2418 }
2419 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_ACCESS)) {
2420 nfsm_chain_get_64(error, nmc, nvap->nva_timesec[NFSTIME_ACCESS]);
2421 nfsm_chain_get_32(error, nmc, nvap->nva_timensec[NFSTIME_ACCESS]);
2422 attrbytes -= 3 * NFSX_UNSIGNED;
2423 }
2424 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_ACCESS_SET)) {
2425 nfsm_chain_adv(error, nmc, 4 * NFSX_UNSIGNED); /* just skip it */
2426 attrbytes -= 4 * NFSX_UNSIGNED;
2427 }
2428 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_BACKUP)) {
2429 nfsm_chain_get_64(error, nmc, nvap->nva_timesec[NFSTIME_BACKUP]);
2430 nfsm_chain_get_32(error, nmc, nvap->nva_timensec[NFSTIME_BACKUP]);
2431 attrbytes -= 3 * NFSX_UNSIGNED;
2432 }
2433 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_CREATE)) {
2434 nfsm_chain_get_64(error, nmc, nvap->nva_timesec[NFSTIME_CREATE]);
2435 nfsm_chain_get_32(error, nmc, nvap->nva_timensec[NFSTIME_CREATE]);
2436 attrbytes -= 3 * NFSX_UNSIGNED;
2437 }
2438 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_DELTA)) { /* skip for now */
2439 nfsm_chain_adv(error, nmc, 3 * NFSX_UNSIGNED);
2440 attrbytes -= 3 * NFSX_UNSIGNED;
2441 }
2442 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_METADATA)) {
2443 nfsm_chain_get_64(error, nmc, nvap->nva_timesec[NFSTIME_CHANGE]);
2444 nfsm_chain_get_32(error, nmc, nvap->nva_timensec[NFSTIME_CHANGE]);
2445 attrbytes -= 3 * NFSX_UNSIGNED;
2446 }
2447 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_MODIFY)) {
2448 nfsm_chain_get_64(error, nmc, nvap->nva_timesec[NFSTIME_MODIFY]);
2449 nfsm_chain_get_32(error, nmc, nvap->nva_timensec[NFSTIME_MODIFY]);
2450 attrbytes -= 3 * NFSX_UNSIGNED;
2451 }
2452 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_MODIFY_SET)) {
2453 nfsm_chain_adv(error, nmc, 4 * NFSX_UNSIGNED); /* just skip it */
2454 attrbytes -= 4 * NFSX_UNSIGNED;
2455 }
2456 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MOUNTED_ON_FILEID)) {
2457 #if CONFIG_TRIGGERS
2458 /* we prefer the mounted on file ID, so just replace the fileid */
2459 nfsm_chain_get_64(error, nmc, nvap->nva_fileid);
2460 #else
2461 nfsm_chain_adv(error, nmc, 2 * NFSX_UNSIGNED);
2462 #endif
2463 attrbytes -= 2 * NFSX_UNSIGNED;
2464 }
2465 /* advance over any leftover attrbytes */
2466 nfsm_assert(error, (attrbytes >= 0), EBADRPC);
2467 nfsm_chain_adv(error, nmc, nfsm_rndup(attrbytes));
2468 nfsmout:
2469 if (error) {
2470 nfs_fs_locations_cleanup(nfslsp);
2471 }
2472 if (!error && rderror) {
2473 error = rderror;
2474 }
2475 /* free up temporary resources */
2476 if (s && (s != sbuf)) {
2477 FREE(s, M_TEMP);
2478 }
2479 if (acl) {
2480 kauth_acl_free(acl);
2481 }
2482 if (error && nvap->nva_acl) {
2483 kauth_acl_free(nvap->nva_acl);
2484 nvap->nva_acl = NULL;
2485 }
2486 FREE(nva_dummy, M_TEMP);
2487 return error;
2488 }
2489
2490 /*
2491 * Add an NFSv4 "sattr" structure to an mbuf chain
2492 */
2493 int
2494 nfsm_chain_add_fattr4_f(struct nfsm_chain *nmc, struct vnode_attr *vap, struct nfsmount *nmp)
2495 {
2496 int error = 0, attrbytes, i, isgroup;
2497 size_t slen, len;
2498 uint32_t *pattrbytes, val, acecount;;
2499 uint32_t bitmap[NFS_ATTR_BITMAP_LEN];
2500 char sbuf[64], *s;
2501 kauth_acl_t acl;
2502 gid_t gid;
2503
2504 s = sbuf;
2505 slen = sizeof(sbuf);
2506
2507 /* First calculate the bitmap... */
2508 nfs_vattr_set_bitmap(nmp, bitmap, vap);
2509
2510 /*
2511 * Now pack it all together:
2512 * BITMAP, #BYTES, ATTRS
2513 * Keep a pointer to the length so we can set it later.
2514 */
2515 nfsm_chain_add_bitmap(error, nmc, bitmap, NFS_ATTR_BITMAP_LEN);
2516 attrbytes = 0;
2517 nfsm_chain_add_32(error, nmc, attrbytes);
2518 pattrbytes = (uint32_t*)(nmc->nmc_ptr - NFSX_UNSIGNED);
2519
2520 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_SIZE)) {
2521 nfsm_chain_add_64(error, nmc, vap->va_data_size);
2522 attrbytes += 2 * NFSX_UNSIGNED;
2523 }
2524 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ACL)) {
2525 acl = vap->va_acl;
2526 if (!acl || (acl->acl_entrycount == KAUTH_FILESEC_NOACL)) {
2527 acecount = 0;
2528 } else {
2529 acecount = acl->acl_entrycount;
2530 }
2531 nfsm_chain_add_32(error, nmc, acecount);
2532 attrbytes += NFSX_UNSIGNED;
2533 for (i = 0; !error && (i < (int)acecount); i++) {
2534 val = (acl->acl_ace[i].ace_flags & KAUTH_ACE_KINDMASK);
2535 val = nfs4_ace_vfstype_to_nfstype(val, &error);
2536 nfsm_chain_add_32(error, nmc, val);
2537 val = nfs4_ace_vfsflags_to_nfsflags(acl->acl_ace[i].ace_flags);
2538 isgroup = (kauth_cred_guid2gid(&acl->acl_ace[i].ace_applicable, &gid) == 0);
2539 val |= (isgroup) ? NFS_ACE_IDENTIFIER_GROUP : 0;
2540 nfsm_chain_add_32(error, nmc, val);
2541 val = nfs4_ace_vfsrights_to_nfsmask(acl->acl_ace[i].ace_rights);
2542 nfsm_chain_add_32(error, nmc, val);
2543 len = slen;
2544 error = nfs4_guid2id(&acl->acl_ace[i].ace_applicable, s, &len, isgroup);
2545 if (error == ENOSPC) {
2546 if (s != sbuf) {
2547 FREE(s, M_TEMP);
2548 s = sbuf;
2549 }
2550 len += 8;
2551 MALLOC(s, char*, len, M_TEMP, M_WAITOK);
2552 if (s) {
2553 slen = len;
2554 error = nfs4_guid2id(&acl->acl_ace[i].ace_applicable, s, &len, isgroup);
2555 } else {
2556 error = ENOMEM;
2557 }
2558 }
2559 nfsm_chain_add_name(error, nmc, s, len, nmp);
2560 attrbytes += 4 * NFSX_UNSIGNED + nfsm_rndup(len);
2561 }
2562 }
2563 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_ARCHIVE)) {
2564 nfsm_chain_add_32(error, nmc, (vap->va_flags & SF_ARCHIVED) ? 1 : 0);
2565 attrbytes += NFSX_UNSIGNED;
2566 }
2567 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_HIDDEN)) {
2568 nfsm_chain_add_32(error, nmc, (vap->va_flags & UF_HIDDEN) ? 1 : 0);
2569 attrbytes += NFSX_UNSIGNED;
2570 }
2571 // NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MIMETYPE)
2572 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_MODE)) {
2573 nfsm_chain_add_32(error, nmc, vap->va_mode);
2574 attrbytes += NFSX_UNSIGNED;
2575 }
2576 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_OWNER)) {
2577 nfsmout_if(error);
2578 /* if we have va_uuuid use it, otherwise use uid */
2579 if (!VATTR_IS_ACTIVE(vap, va_uuuid)) {
2580 error = kauth_cred_uid2guid(vap->va_uid, &vap->va_uuuid);
2581 nfsmout_if(error);
2582 }
2583 len = slen;
2584 error = nfs4_guid2id(&vap->va_uuuid, s, &len, 0);
2585 if (error == ENOSPC) {
2586 if (s != sbuf) {
2587 FREE(s, M_TEMP);
2588 s = sbuf;
2589 }
2590 len += 8;
2591 MALLOC(s, char*, len, M_TEMP, M_WAITOK);
2592 if (s) {
2593 slen = len;
2594 error = nfs4_guid2id(&vap->va_uuuid, s, &len, 0);
2595 } else {
2596 error = ENOMEM;
2597 }
2598 }
2599 nfsm_chain_add_name(error, nmc, s, len, nmp);
2600 attrbytes += NFSX_UNSIGNED + nfsm_rndup(len);
2601 }
2602 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_OWNER_GROUP)) {
2603 nfsmout_if(error);
2604 /* if we have va_guuid use it, otherwise use gid */
2605 if (!VATTR_IS_ACTIVE(vap, va_guuid)) {
2606 error = kauth_cred_gid2guid(vap->va_gid, &vap->va_guuid);
2607 nfsmout_if(error);
2608 }
2609 len = slen;
2610 error = nfs4_guid2id(&vap->va_guuid, s, &len, 1);
2611 if (error == ENOSPC) {
2612 if (s != sbuf) {
2613 FREE(s, M_TEMP);
2614 s = sbuf;
2615 }
2616 len += 8;
2617 MALLOC(s, char*, len, M_TEMP, M_WAITOK);
2618 if (s) {
2619 slen = len;
2620 error = nfs4_guid2id(&vap->va_guuid, s, &len, 1);
2621 } else {
2622 error = ENOMEM;
2623 }
2624 }
2625 nfsm_chain_add_name(error, nmc, s, len, nmp);
2626 attrbytes += NFSX_UNSIGNED + nfsm_rndup(len);
2627 }
2628 // NFS_BITMAP_SET(bitmap, NFS_FATTR_SYSTEM)
2629 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_ACCESS_SET)) {
2630 if (vap->va_vaflags & VA_UTIMES_NULL) {
2631 nfsm_chain_add_32(error, nmc, NFS4_TIME_SET_TO_SERVER);
2632 attrbytes += NFSX_UNSIGNED;
2633 } else {
2634 nfsm_chain_add_32(error, nmc, NFS4_TIME_SET_TO_CLIENT);
2635 nfsm_chain_add_64(error, nmc, vap->va_access_time.tv_sec);
2636 nfsm_chain_add_32(error, nmc, vap->va_access_time.tv_nsec);
2637 attrbytes += 4 * NFSX_UNSIGNED;
2638 }
2639 }
2640 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_BACKUP)) {
2641 nfsm_chain_add_64(error, nmc, vap->va_backup_time.tv_sec);
2642 nfsm_chain_add_32(error, nmc, vap->va_backup_time.tv_nsec);
2643 attrbytes += 3 * NFSX_UNSIGNED;
2644 }
2645 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_CREATE)) {
2646 nfsm_chain_add_64(error, nmc, vap->va_create_time.tv_sec);
2647 nfsm_chain_add_32(error, nmc, vap->va_create_time.tv_nsec);
2648 attrbytes += 3 * NFSX_UNSIGNED;
2649 }
2650 if (NFS_BITMAP_ISSET(bitmap, NFS_FATTR_TIME_MODIFY_SET)) {
2651 if (vap->va_vaflags & VA_UTIMES_NULL) {
2652 nfsm_chain_add_32(error, nmc, NFS4_TIME_SET_TO_SERVER);
2653 attrbytes += NFSX_UNSIGNED;
2654 } else {
2655 nfsm_chain_add_32(error, nmc, NFS4_TIME_SET_TO_CLIENT);
2656 nfsm_chain_add_64(error, nmc, vap->va_modify_time.tv_sec);
2657 nfsm_chain_add_32(error, nmc, vap->va_modify_time.tv_nsec);
2658 attrbytes += 4 * NFSX_UNSIGNED;
2659 }
2660 }
2661 nfsmout_if(error);
2662 /* Now, set the attribute data length */
2663 *pattrbytes = txdr_unsigned(attrbytes);
2664 nfsmout:
2665 if (s && (s != sbuf)) {
2666 FREE(s, M_TEMP);
2667 }
2668 return error;
2669 }
2670 #endif /* CONFIG_NFS4 */
2671
2672 /*
2673 * Got the given error and need to start recovery (if not already started).
2674 * Note: nmp must be locked!
2675 */
2676 void
2677 nfs_need_recover(struct nfsmount *nmp, int error)
2678 {
2679 int wake = !(nmp->nm_state & NFSSTA_RECOVER);
2680
2681 nmp->nm_state |= NFSSTA_RECOVER;
2682 if ((error == NFSERR_ADMIN_REVOKED) ||
2683 (error == NFSERR_EXPIRED) ||
2684 (error == NFSERR_STALE_CLIENTID)) {
2685 nmp->nm_state |= NFSSTA_RECOVER_EXPIRED;
2686 }
2687 if (wake) {
2688 nfs_mount_sock_thread_wake(nmp);
2689 }
2690 }
2691
2692 #if CONFIG_NFS4
2693 /*
2694 * After recovery due to state expiry, check each node and
2695 * drop any lingering delegation we thought we had.
2696 *
2697 * If a node has an open that is not lost and is not marked
2698 * for reopen, then we hold onto any delegation because it is
2699 * likely newly-granted.
2700 */
2701 static void
2702 nfs4_expired_check_delegation(nfsnode_t np, vfs_context_t ctx)
2703 {
2704 struct nfsmount *nmp = NFSTONMP(np);
2705 struct nfs_open_file *nofp;
2706 int drop = 1;
2707
2708 if ((np->n_flag & NREVOKE) || !(np->n_openflags & N_DELEG_MASK)) {
2709 return;
2710 }
2711
2712 lck_mtx_lock(&np->n_openlock);
2713
2714 TAILQ_FOREACH(nofp, &np->n_opens, nof_link) {
2715 if (!nofp->nof_opencnt) {
2716 continue;
2717 }
2718 if (nofp->nof_flags & NFS_OPEN_FILE_LOST) {
2719 continue;
2720 }
2721 if (nofp->nof_flags & NFS_OPEN_FILE_REOPEN) {
2722 continue;
2723 }
2724 /* we have an open that is not lost and not marked for reopen */
2725 // XXX print out what's keeping this node from dropping the delegation.
2726 NP(nofp->nof_np, "nfs4_expired_check_delegation: !drop: opencnt %d flags 0x%x access %d %d mmap %d %d",
2727 nofp->nof_opencnt, nofp->nof_flags,
2728 nofp->nof_access, nofp->nof_deny,
2729 nofp->nof_mmap_access, nofp->nof_mmap_deny);
2730 drop = 0;
2731 break;
2732 }
2733
2734 if (drop) {
2735 /* need to drop a delegation */
2736 if (np->n_dreturn.tqe_next != NFSNOLIST) {
2737 /* remove this node from the delegation return list */
2738 lck_mtx_lock(&nmp->nm_lock);
2739 if (np->n_dreturn.tqe_next != NFSNOLIST) {
2740 TAILQ_REMOVE(&nmp->nm_dreturnq, np, n_dreturn);
2741 np->n_dreturn.tqe_next = NFSNOLIST;
2742 }
2743 lck_mtx_unlock(&nmp->nm_lock);
2744 }
2745 if (np->n_openflags & N_DELEG_MASK) {
2746 np->n_openflags &= ~N_DELEG_MASK;
2747 lck_mtx_lock(&nmp->nm_lock);
2748 if (np->n_dlink.tqe_next != NFSNOLIST) {
2749 TAILQ_REMOVE(&nmp->nm_delegations, np, n_dlink);
2750 np->n_dlink.tqe_next = NFSNOLIST;
2751 }
2752 lck_mtx_unlock(&nmp->nm_lock);
2753 nfs4_delegreturn_rpc(nmp, np->n_fhp, np->n_fhsize, &np->n_dstateid,
2754 0, vfs_context_thread(ctx), vfs_context_ucred(ctx));
2755 }
2756 }
2757
2758 lck_mtx_unlock(&np->n_openlock);
2759 }
2760 #endif /* CONFIG_NFS4*/
2761
2762 /*
2763 * Recover state for an NFS mount.
2764 *
2765 * Iterates over all open files, reclaiming opens and lock state.
2766 */
2767 void
2768 nfs_recover(struct nfsmount *nmp)
2769 {
2770 struct timespec ts = { .tv_sec = 1, .tv_nsec = 0 };
2771 int error, lost, reopen;
2772 struct nfs_open_owner *noop;
2773 struct nfs_open_file *nofp;
2774 struct nfs_file_lock *nflp, *nextnflp;
2775 struct nfs_lock_owner *nlop;
2776 thread_t thd = current_thread();
2777 #if CONFIG_NFS4
2778 nfsnode_t np, nextnp;
2779 #endif
2780 struct timeval now;
2781
2782 restart:
2783 error = 0;
2784 lck_mtx_lock(&nmp->nm_lock);
2785 /*
2786 * First, wait for the state inuse count to go to zero so
2787 * we know there are no state operations in progress.
2788 */
2789 do {
2790 if ((error = nfs_sigintr(nmp, NULL, NULL, 1))) {
2791 break;
2792 }
2793 if (!(nmp->nm_sockflags & NMSOCK_READY)) {
2794 error = EPIPE;
2795 }
2796 if (nmp->nm_state & (NFSSTA_FORCE | NFSSTA_DEAD)) {
2797 error = ENXIO;
2798 }
2799 if (nmp->nm_sockflags & NMSOCK_UNMOUNT) {
2800 error = ENXIO;
2801 }
2802 if (error) {
2803 break;
2804 }
2805 if (nmp->nm_stateinuse) {
2806 msleep(&nmp->nm_stateinuse, &nmp->nm_lock, (PZERO - 1), "nfsrecoverstartwait", &ts);
2807 }
2808 } while (nmp->nm_stateinuse);
2809 if (error) {
2810 if (error == EPIPE) {
2811 printf("nfs recovery reconnecting for %s, 0x%x\n", vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid);
2812 } else {
2813 printf("nfs recovery aborted for %s, 0x%x\n", vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid);
2814 }
2815 lck_mtx_unlock(&nmp->nm_lock);
2816 return;
2817 }
2818
2819 microuptime(&now);
2820 if (now.tv_sec == nmp->nm_recover_start) {
2821 printf("nfs recovery throttled for %s, 0x%x\n", vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid);
2822 lck_mtx_unlock(&nmp->nm_lock);
2823 tsleep(nfs_recover, (PZERO - 1), "nfsrecoverrestart", hz);
2824 goto restart;
2825 }
2826 nmp->nm_recover_start = now.tv_sec;
2827 if (++nmp->nm_stategenid == 0) {
2828 ++nmp->nm_stategenid;
2829 }
2830 printf("nfs recovery started for %s, 0x%x\n", vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid);
2831 lck_mtx_unlock(&nmp->nm_lock);
2832
2833 /* for each open owner... */
2834 TAILQ_FOREACH(noop, &nmp->nm_open_owners, noo_link) {
2835 /* for each of its opens... */
2836 TAILQ_FOREACH(nofp, &noop->noo_opens, nof_oolink) {
2837 if (!nofp->nof_access || (nofp->nof_flags & NFS_OPEN_FILE_LOST) || (nofp->nof_np->n_flag & NREVOKE)) {
2838 continue;
2839 }
2840 lost = reopen = 0;
2841 /* for NFSv2/v3, just skip straight to lock reclaim */
2842 if (nmp->nm_vers < NFS_VER4) {
2843 goto reclaim_locks;
2844 }
2845 #if CONFIG_NFS4
2846 if (nofp->nof_rw_drw) {
2847 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_BOTH, NFS_OPEN_SHARE_DENY_BOTH);
2848 }
2849 if (!error && nofp->nof_w_drw) {
2850 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_WRITE, NFS_OPEN_SHARE_DENY_BOTH);
2851 }
2852 if (!error && nofp->nof_r_drw) {
2853 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_READ, NFS_OPEN_SHARE_DENY_BOTH);
2854 }
2855 if (!error && nofp->nof_rw_dw) {
2856 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_BOTH, NFS_OPEN_SHARE_DENY_WRITE);
2857 }
2858 if (!error && nofp->nof_w_dw) {
2859 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_WRITE, NFS_OPEN_SHARE_DENY_WRITE);
2860 }
2861 if (!error && nofp->nof_r_dw) {
2862 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_READ, NFS_OPEN_SHARE_DENY_WRITE);
2863 }
2864 /*
2865 * deny-none opens with no locks can just be reopened (later) if reclaim fails.
2866 */
2867 if (!error && nofp->nof_rw) {
2868 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_BOTH, NFS_OPEN_SHARE_DENY_NONE);
2869 if ((error == NFSERR_ADMIN_REVOKED) || (error == NFSERR_EXPIRED) || (error == NFSERR_NO_GRACE)) {
2870 reopen = error;
2871 error = 0;
2872 }
2873 }
2874 if (!error && !reopen && nofp->nof_w) {
2875 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_WRITE, NFS_OPEN_SHARE_DENY_NONE);
2876 if ((error == NFSERR_ADMIN_REVOKED) || (error == NFSERR_EXPIRED) || (error == NFSERR_NO_GRACE)) {
2877 reopen = error;
2878 error = 0;
2879 }
2880 }
2881 if (!error && !reopen && nofp->nof_r) {
2882 error = nfs4_open_reclaim_rpc(nofp, NFS_OPEN_SHARE_ACCESS_READ, NFS_OPEN_SHARE_DENY_NONE);
2883 if ((error == NFSERR_ADMIN_REVOKED) || (error == NFSERR_EXPIRED) || (error == NFSERR_NO_GRACE)) {
2884 reopen = error;
2885 error = 0;
2886 }
2887 }
2888
2889 /*
2890 * If we hold delegated state but we don't have any non-delegated opens,
2891 * then we should attempt to claim that state now (but don't return the
2892 * delegation unless asked to).
2893 */
2894 if ((nofp->nof_d_rw_drw || nofp->nof_d_w_drw || nofp->nof_d_r_drw ||
2895 nofp->nof_d_rw_dw || nofp->nof_d_w_dw || nofp->nof_d_r_dw ||
2896 nofp->nof_d_rw || nofp->nof_d_w || nofp->nof_d_r) &&
2897 (!nofp->nof_rw_drw && !nofp->nof_w_drw && !nofp->nof_r_drw &&
2898 !nofp->nof_rw_dw && !nofp->nof_w_dw && !nofp->nof_r_dw &&
2899 !nofp->nof_rw && !nofp->nof_w && !nofp->nof_r)) {
2900 if (!error && !nfs_open_state_set_busy(nofp->nof_np, NULL)) {
2901 error = nfs4_claim_delegated_state_for_node(nofp->nof_np, R_RECOVER);
2902 if (!error && (nofp->nof_flags & NFS_OPEN_FILE_REOPEN)) {
2903 reopen = EAGAIN;
2904 }
2905 nfs_open_state_clear_busy(nofp->nof_np);
2906 /* if claim didn't go well, we may need to return delegation now */
2907 if (nofp->nof_np->n_openflags & N_DELEG_RETURN) {
2908 nfs4_delegation_return(nofp->nof_np, R_RECOVER, thd, noop->noo_cred);
2909 if (!(nmp->nm_sockflags & NMSOCK_READY)) {
2910 error = ETIMEDOUT; /* looks like we need a reconnect */
2911 }
2912 }
2913 }
2914 }
2915
2916 /*
2917 * Handle any issue claiming open state.
2918 * Potential reopens need to first confirm that there are no locks.
2919 */
2920 if (error || reopen) {
2921 /* restart recovery? */
2922 if ((error == ETIMEDOUT) || nfs_mount_state_error_should_restart(error)) {
2923 if (error == ETIMEDOUT) {
2924 nfs_need_reconnect(nmp);
2925 }
2926 tsleep(nfs_recover, (PZERO - 1), "nfsrecoverrestart", hz);
2927 printf("nfs recovery restarting for %s, 0x%x, error %d\n",
2928 vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid, error);
2929 goto restart;
2930 }
2931 if (reopen && (nfs_check_for_locks(noop, nofp) == 0)) {
2932 /* just reopen the file on next access */
2933 NP(nofp->nof_np, "nfs_recover: %d, need reopen for %d %p 0x%x", reopen,
2934 kauth_cred_getuid(noop->noo_cred), nofp->nof_np, nofp->nof_np->n_flag);
2935 lck_mtx_lock(&nofp->nof_lock);
2936 nofp->nof_flags |= NFS_OPEN_FILE_REOPEN;
2937 lck_mtx_unlock(&nofp->nof_lock);
2938 } else {
2939 /* open file state lost */
2940 if (reopen) {
2941 NP(nofp->nof_np, "nfs_recover: %d, can't reopen because of locks %d %p", reopen,
2942 kauth_cred_getuid(noop->noo_cred), nofp->nof_np);
2943 }
2944 lost = 1;
2945 error = 0;
2946 reopen = 0;
2947 }
2948 } else {
2949 /* no error, so make sure the reopen flag isn't set */
2950 lck_mtx_lock(&nofp->nof_lock);
2951 nofp->nof_flags &= ~NFS_OPEN_FILE_REOPEN;
2952 lck_mtx_unlock(&nofp->nof_lock);
2953 }
2954 #endif /* CONFIG_NFS4 */
2955 /*
2956 * Scan this node's lock owner list for entries with this open owner,
2957 * then walk the lock owner's held lock list recovering each lock.
2958 */
2959 reclaim_locks:
2960 TAILQ_FOREACH(nlop, &nofp->nof_np->n_lock_owners, nlo_link) {
2961 if (lost || reopen) {
2962 break;
2963 }
2964 if (nlop->nlo_open_owner != noop) {
2965 continue;
2966 }
2967 TAILQ_FOREACH_SAFE(nflp, &nlop->nlo_locks, nfl_lolink, nextnflp) {
2968 /* skip dead & blocked lock requests (shouldn't be any in the held lock list) */
2969 if (nflp->nfl_flags & (NFS_FILE_LOCK_DEAD | NFS_FILE_LOCK_BLOCKED)) {
2970 continue;
2971 }
2972 /* skip delegated locks */
2973 if (nflp->nfl_flags & NFS_FILE_LOCK_DELEGATED) {
2974 continue;
2975 }
2976 error = nmp->nm_funcs->nf_setlock_rpc(nofp->nof_np, nofp, nflp, 1, R_RECOVER, thd, noop->noo_cred);
2977 if (error) {
2978 NP(nofp->nof_np, "nfs: lock reclaim (0x%llx, 0x%llx) %s %d",
2979 nflp->nfl_start, nflp->nfl_end,
2980 error ? "failed" : "succeeded", error);
2981 }
2982 if (!error) {
2983 continue;
2984 }
2985 /* restart recovery? */
2986 if ((error == ETIMEDOUT) || nfs_mount_state_error_should_restart(error)) {
2987 if (error == ETIMEDOUT) {
2988 nfs_need_reconnect(nmp);
2989 }
2990 tsleep(nfs_recover, (PZERO - 1), "nfsrecoverrestart", hz);
2991 printf("nfs recovery restarting for %s, 0x%x, error %d\n",
2992 vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid, error);
2993 goto restart;
2994 }
2995 /* lock state lost - attempt to close file */
2996 lost = 1;
2997 error = 0;
2998 break;
2999 }
3000 }
3001 #if CONFIG_NFS4
3002 /*
3003 * If we've determined that we need to reopen the file then we probably
3004 * didn't receive any delegation we think we hold. We should attempt to
3005 * return that delegation (and claim any delegated state).
3006 *
3007 * If we hold a delegation that is marked for return, then we should
3008 * return it now.
3009 */
3010 if ((nofp->nof_np->n_openflags & N_DELEG_RETURN) ||
3011 (reopen && (nofp->nof_np->n_openflags & N_DELEG_MASK))) {
3012 nfs4_delegation_return(nofp->nof_np, R_RECOVER, thd, noop->noo_cred);
3013 if (!(nmp->nm_sockflags & NMSOCK_READY)) {
3014 /* looks like we need a reconnect */
3015 tsleep(nfs_recover, (PZERO - 1), "nfsrecoverrestart", hz);
3016 printf("nfs recovery restarting for %s, 0x%x, error %d\n",
3017 vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid, error);
3018 goto restart;
3019 }
3020 }
3021 #endif
3022 if (lost) {
3023 /* revoke open file state */
3024 NP(nofp->nof_np, "nfs_recover: state lost for %d %p 0x%x",
3025 kauth_cred_getuid(noop->noo_cred), nofp->nof_np, nofp->nof_np->n_flag);
3026 nfs_revoke_open_state_for_node(nofp->nof_np);
3027 }
3028 }
3029 }
3030
3031 if (!error) {
3032 /* If state expired, make sure we're not holding onto any stale delegations */
3033 lck_mtx_lock(&nmp->nm_lock);
3034 #if CONFIG_NFS4
3035 if ((nmp->nm_vers >= NFS_VER4) && (nmp->nm_state & NFSSTA_RECOVER_EXPIRED)) {
3036 recheckdeleg:
3037 TAILQ_FOREACH_SAFE(np, &nmp->nm_delegations, n_dlink, nextnp) {
3038 lck_mtx_unlock(&nmp->nm_lock);
3039 nfs4_expired_check_delegation(np, vfs_context_kernel());
3040 lck_mtx_lock(&nmp->nm_lock);
3041 if (nextnp == NFSNOLIST) {
3042 goto recheckdeleg;
3043 }
3044 }
3045 }
3046 #endif
3047 nmp->nm_state &= ~(NFSSTA_RECOVER | NFSSTA_RECOVER_EXPIRED);
3048 wakeup(&nmp->nm_state);
3049 printf("nfs recovery completed for %s, 0x%x\n",
3050 vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid);
3051 lck_mtx_unlock(&nmp->nm_lock);
3052 } else {
3053 printf("nfs recovery failed for %s, 0x%x, error %d\n",
3054 vfs_statfs(nmp->nm_mountp)->f_mntfromname, nmp->nm_stategenid, error);
3055 }
3056 }
3057
3058 #endif /* CONFIG_NFS_CLIENT */
mirror of XNU