2 * Copyright (c) 1989, 1993
3 * The Regents of the University of California. All rights reserved.
5 * This code is derived from software contributed to Berkeley by
6 * Herb Hasler and Rick Macklem at The University of Guelph.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the University nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 * @(#) Copyright (c) 1989, 1993 The Regents of the University of California. All rights reserved.
33 * @(#)mountd.c 8.15 (Berkeley) 5/1/95
34 * $FreeBSD: src/sbin/mountd/mountd.c,v 1.39.2.5 2002/09/13 15:57:43 joerg Exp $
37 #include <sys/param.h>
38 #include <sys/mount.h>
39 #include <sys/mountctl.h>
40 #include <sys/fcntl.h>
42 #include <sys/syslog.h>
43 #include <sys/sysctl.h>
46 #include <rpc/pmap_clnt.h>
47 #include <rpc/pmap_prot.h>
48 #include <rpcsvc/mount.h>
49 #include <vfs/nfs/rpcv2.h>
50 #include <vfs/nfs/nfsproto.h>
51 #include <vfs/nfs/nfs.h>
52 #include <vfs/ufs/ufsmount.h>
53 #include <vfs/msdosfs/msdosfsmount.h>
54 #include <vfs/ntfs/ntfsmount.h>
55 #include <vfs/isofs/cd9660/cd9660_mount.h> /* XXX need isofs in include */
57 #include <arpa/inet.h>
71 #include "pathnames.h"
78 * Structures for keeping the mount list and export list
81 struct mountlist *ml_next;
82 char ml_host[RPCMNT_NAMELEN+1];
83 char ml_dirp[RPCMNT_PATHLEN+1];
87 struct dirlist *dp_left;
88 struct dirlist *dp_right;
90 struct hostlist *dp_hosts; /* List of hosts this dir exported to */
91 char dp_dirp[1]; /* Actually malloc'd to size of dir */
95 #define DP_HOSTSET 0x2
98 struct exportlist *ex_next;
99 struct dirlist *ex_dirl;
100 struct dirlist *ex_defdir;
107 #define EX_LINKED 0x1
110 struct sockaddr_storage nt_net;
111 struct sockaddr_storage nt_mask;
116 struct addrinfo *gt_addrinfo;
117 struct netmsk gt_net;
122 union grouptypes gr_ptr;
123 struct grouplist *gr_next;
129 #define GT_DEFAULT 0x3
130 #define GT_IGNORE 0x5
133 int ht_flag; /* Uses DP_xx bits */
134 struct grouplist *ht_grp;
135 struct hostlist *ht_next;
145 char *add_expdir(struct dirlist **, char *, int);
146 void add_dlist(struct dirlist **, struct dirlist *,
147 struct grouplist *, int);
148 void add_mlist(char *, char *);
149 int check_dirpath(char *);
150 int check_options(struct dirlist *);
151 int checkmask(struct sockaddr *sa);
152 int chk_host(struct dirlist *, struct sockaddr *, int *, int *);
153 void del_mlist(char *, char *);
154 struct dirlist *dirp_search(struct dirlist *, char *);
155 int do_mount(struct exportlist *, struct grouplist *, int,
156 struct ucred *, char *, int, struct statfs *);
157 int do_opt(char **, char **, struct exportlist *, struct grouplist *,
158 int *, int *, struct ucred *);
159 struct exportlist *ex_search(fsid_t *);
160 struct exportlist *get_exp(void);
161 void free_dir(struct dirlist *);
162 void free_exp(struct exportlist *);
163 void free_grp(struct grouplist *);
164 void free_host(struct hostlist *);
165 void get_exportlist(void);
166 int get_host(char *, struct grouplist *, struct grouplist *);
167 struct hostlist *get_ht(void);
169 void get_mountlist(void);
170 int get_net(char *, struct netmsk *, int);
171 void getexp_err(struct exportlist *, struct grouplist *);
172 struct grouplist *get_grp(void);
173 void hang_dirp(struct dirlist *, struct grouplist *,
174 struct exportlist *, int);
175 void huphandler(int sig);
176 int makemask(struct sockaddr_storage *ssp, int bitlen);
177 void mntsrv(struct svc_req *, SVCXPRT *);
178 void nextfield(char **, char **);
179 void out_of_mem(void);
180 void parsecred(char *, struct ucred *);
181 int put_exlist(struct dirlist *, XDR *, struct dirlist *, int *);
182 void *sa_rawaddr(struct sockaddr *sa, int *nbytes);
183 int sacmp(struct sockaddr *sa1, struct sockaddr *sa2,
184 struct sockaddr *samask);
185 int scan_tree(struct dirlist *, struct sockaddr *);
186 static void usage(void);
187 int xdr_dir(XDR *, char *);
188 int xdr_explist(XDR *, caddr_t);
189 int xdr_fhs(XDR *, caddr_t);
190 int xdr_mlist(XDR *, caddr_t);
193 struct exportlist *exphead;
194 struct mountlist *mlhead;
195 struct grouplist *grphead;
196 char exname[MAXPATHLEN];
197 struct ucred def_anon = {
204 int resvport_only = 1;
210 static int have_v6 = 1;
211 #ifdef NI_WITHSCOPEID
212 static const int ninumeric = NI_NUMERICHOST | NI_WITHSCOPEID;
214 static const int ninumeric = NI_NUMERICHOST;
217 struct pidfh *pfh = NULL;
218 /* Bits for the opt_flags above */
219 #define OP_MAPROOT 0x01
220 #define OP_MAPALL 0x02
224 #define OP_ALLDIRS 0x40
225 #define OP_HAVEMASK 0x80 /* A mask was specified or inferred. */
226 #define OP_QUIET 0x100
227 #define OP_MASKLEN 0x200
231 void SYSLOG(int, const char *, ...);
232 #define syslog SYSLOG
238 * Mountd server for NFS mount protocol as described in:
239 * NFS: Network File System Protocol Specification, RFC1094, Appendix A
240 * The optional arguments are the exports file name
241 * default: _PATH_EXPORTS
242 * and "-n" to allow nonroot mount.
245 main(int argc, char **argv)
248 SVCXPRT *udptransp, *tcptransp, *udp6transp, *tcp6transp;
249 struct netconfig *udpconf, *tcpconf, *udp6conf, *tcp6conf;
251 int udpsock, tcpsock, udp6sock, tcp6sock;
254 int c, error, mib[3];
257 udp6conf = tcp6conf = NULL;
258 udp6sock = tcp6sock = 0;
260 /* Check that another mountd isn't already running. */
261 pfh = pidfile_open(_PATH_MOUNTDPID, 0600, &otherpid);
264 errx(1, "mountd already running, pid: %d.", otherpid);
265 warn("cannot open or create pidfile");
268 s = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);
273 error = getvfsbyname("nfs", &vfc);
274 if (error && vfsisloadable("nfs")) {
276 err(1, "vfsload(nfs)");
277 endvfsent(); /* flush cache */
278 error = getvfsbyname("nfs", &vfc);
281 errx(1, "NFS support is not available in the running kernel");
283 while ((c = getopt(argc, argv, "2dlnr")) != -1) {
295 debug = debug ? 0 : 1;
306 signal(SIGINT, SIG_IGN);
307 signal(SIGQUIT, SIG_IGN);
315 strncpy(exname, *argv, MAXPATHLEN-1);
316 exname[MAXPATHLEN-1] = '\0';
318 strcpy(exname, _PATH_EXPORTS);
319 openlog("mountd", LOG_PID, LOG_DAEMON);
321 warnx("getting export list");
324 warnx("getting mount list");
328 signal(SIGHUP, huphandler);
329 signal(SIGTERM, terminate);
333 rpcb_unset(RPCPROG_MNT, RPCMNT_VER1, NULL);
334 rpcb_unset(RPCPROG_MNT, RPCMNT_VER3, NULL);
335 udpsock = socket(AF_INET, SOCK_DGRAM, IPPROTO_UDP);
336 tcpsock = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP);
337 udpconf = getnetconfigent("udp");
338 tcpconf = getnetconfigent("tcp");
341 udp6sock = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);
342 tcp6sock = socket(AF_INET6, SOCK_STREAM, IPPROTO_TCP);
344 * We're doing host-based access checks here, so don't allow
345 * v4-in-v6 to confuse things. The kernel will disable it
346 * by default on NFS sockets too.
348 if (udp6sock != -1 && setsockopt(udp6sock, IPPROTO_IPV6,
349 IPV6_BINDV6ONLY, &one, sizeof one) < 0){
350 syslog(LOG_ERR, "can't disable v4-in-v6 on UDP socket");
353 if (tcp6sock != -1 && setsockopt(tcp6sock, IPPROTO_IPV6,
354 IPV6_BINDV6ONLY, &one, sizeof one) < 0){
355 syslog(LOG_ERR, "can't disable v4-in-v6 on UDP socket");
358 udp6conf = getnetconfigent("udp6");
359 tcp6conf = getnetconfigent("tcp6");
362 if (!resvport_only) {
364 mib[1] = vfc.vfc_typenum;
365 mib[2] = NFS_NFSPRIVPORT;
366 if (sysctl(mib, 3, NULL, NULL, &resvport_only,
367 sizeof(resvport_only)) != 0 && errno != ENOENT) {
368 syslog(LOG_ERR, "sysctl: %m");
372 if ((udptransp = svcudp_create(RPC_ANYSOCK)) == NULL ||
373 (tcptransp = svctcp_create(RPC_ANYSOCK, 0, 0)) == NULL) {
374 syslog(LOG_ERR, "can't create socket");
377 if (udpsock != -1 && udpconf != NULL) {
378 bindresvport(udpsock, NULL);
379 udptransp = svc_dg_create(udpsock, 0, 0);
380 if (udptransp != NULL) {
381 if (!svc_reg(udptransp, RPCPROG_MNT, RPCMNT_VER1,
383 syslog(LOG_WARNING, "can't register UDP RPCMNT_VER1 service");
387 if (!svc_reg(udptransp, RPCPROG_MNT, RPCMNT_VER3,
389 syslog(LOG_WARNING, "can't register UDP RPCMNT_VER3 service");
394 syslog(LOG_WARNING, "can't create UDP services");
397 if (tcpsock != -1 && tcpconf != NULL) {
398 bindresvport(tcpsock, NULL);
399 listen(tcpsock, SOMAXCONN);
400 tcptransp = svc_vc_create(tcpsock, 0, 0);
401 if (tcptransp != NULL) {
402 if (!svc_reg(tcptransp, RPCPROG_MNT, RPCMNT_VER1,
404 syslog(LOG_WARNING, "can't register TCP RPCMNT_VER1 service");
408 if (!svc_reg(tcptransp, RPCPROG_MNT, RPCMNT_VER3,
410 syslog(LOG_WARNING, "can't register TCP RPCMNT_VER3 service");
415 syslog(LOG_WARNING, "can't create TCP service");
418 if (have_v6 && udp6sock != -1 && udp6conf != NULL) {
419 bindresvport(udp6sock, NULL);
420 udp6transp = svc_dg_create(udp6sock, 0, 0);
421 if (udp6transp != NULL) {
422 if (!svc_reg(udp6transp, RPCPROG_MNT, RPCMNT_VER1,
424 syslog(LOG_WARNING, "can't register UDP6 RPCMNT_VER1 service");
428 if (!svc_reg(udp6transp, RPCPROG_MNT, RPCMNT_VER3,
430 syslog(LOG_WARNING, "can't register UDP6 RPCMNT_VER3 service");
435 syslog(LOG_WARNING, "can't create UDP6 service");
438 if (have_v6 && tcp6sock != -1 && tcp6conf != NULL) {
439 bindresvport(tcp6sock, NULL);
440 listen(tcp6sock, SOMAXCONN);
441 tcp6transp = svc_vc_create(tcp6sock, 0, 0);
442 if (tcp6transp != NULL) {
443 if (!svc_reg(tcp6transp, RPCPROG_MNT, RPCMNT_VER1,
445 syslog(LOG_WARNING, "can't register TCP6 RPCMNT_VER1 service");
449 if (!svc_reg(tcp6transp, RPCPROG_MNT, RPCMNT_VER3,
451 syslog(LOG_WARNING, "can't register TCP6 RPCMNT_VER3 service");
456 syslog(LOG_WARNING, "can't create TCP6 service");
460 syslog(LOG_ERR, "could not create any services");
464 /* Expand svc_run() here so that we can call get_exportlist(). */
471 switch (select(svc_maxfd + 1, &readfds, NULL, NULL, NULL)) {
475 syslog(LOG_ERR, "mountd died: select: %m");
480 svc_getreqset(&readfds);
489 "usage: mountd [-2] [-d] [-l] [-n] [-r] [export_file]\n");
494 * The mount rpc service
497 mntsrv(struct svc_req *rqstp, SVCXPRT *transp)
499 struct exportlist *ep;
504 char host[NI_MAXHOST], numerichost[NI_MAXHOST];
505 int lookup_failed = 1;
506 struct sockaddr *saddr;
508 char rpcpath[RPCMNT_PATHLEN + 1], dirpath[MAXPATHLEN];
509 int bad = 0, defset, hostset;
510 sigset_t sighup_mask;
512 sigemptyset(&sighup_mask);
513 sigaddset(&sighup_mask, SIGHUP);
514 saddr = svc_getrpccaller(transp)->buf;
515 switch (saddr->sa_family) {
517 sport = ntohs(((struct sockaddr_in6 *)saddr)->sin6_port);
520 sport = ntohs(((struct sockaddr_in *)saddr)->sin_port);
523 syslog(LOG_ERR, "request from unknown address family");
526 lookup_failed = getnameinfo(saddr, saddr->sa_len, host, sizeof host,
528 getnameinfo(saddr, saddr->sa_len, numerichost,
529 sizeof numerichost, NULL, 0, NI_NUMERICHOST);
530 switch (rqstp->rq_proc) {
532 if (!svc_sendreply(transp, (xdrproc_t)xdr_void, NULL))
533 syslog(LOG_ERR, "can't send reply");
536 if (sport >= IPPORT_RESERVED && resvport_only) {
538 "mount request from %s from unprivileged port",
540 svcerr_weakauth(transp);
543 if (!svc_getargs(transp, (xdrproc_t)xdr_dir, rpcpath)) {
544 syslog(LOG_NOTICE, "undecodable mount request from %s",
546 svcerr_decode(transp);
551 * Get the real pathname and make sure it is a directory
552 * or a regular file if the -r option was specified
555 if (realpath(rpcpath, dirpath) == NULL ||
556 stat(dirpath, &stb) < 0 ||
557 (!S_ISDIR(stb.st_mode) &&
558 (dir_only || !S_ISREG(stb.st_mode))) ||
559 statfs(dirpath, &fsb) < 0) {
560 chdir("/"); /* Just in case realpath doesn't */
562 "mount request from %s for non existent path %s",
563 numerichost, dirpath);
565 warnx("stat failed on %s", dirpath);
566 bad = ENOENT; /* We will send error reply later */
569 /* Check in the exports list */
570 sigprocmask(SIG_BLOCK, &sighup_mask, NULL);
571 ep = ex_search(&fsb.f_fsid);
572 hostset = defset = 0;
573 if (ep && (chk_host(ep->ex_defdir, saddr, &defset, &hostset) ||
574 ((dp = dirp_search(ep->ex_dirl, dirpath)) &&
575 chk_host(dp, saddr, &defset, &hostset)) ||
576 (defset && scan_tree(ep->ex_defdir, saddr) == 0 &&
577 scan_tree(ep->ex_dirl, saddr) == 0))) {
579 if (!svc_sendreply(transp, (xdrproc_t)xdr_long,
581 syslog(LOG_ERR, "can't send reply");
582 sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
585 if (hostset & DP_HOSTSET)
586 fhr.fhr_flag = hostset;
588 fhr.fhr_flag = defset;
589 fhr.fhr_vers = rqstp->rq_vers;
590 /* Get the file handle */
591 memset(&fhr.fhr_fh, 0, sizeof(nfsfh_t));
592 if (getfh(dirpath, (fhandle_t *)&fhr.fhr_fh) < 0) {
594 syslog(LOG_ERR, "can't get fh for %s", dirpath);
595 if (!svc_sendreply(transp, (xdrproc_t)xdr_long,
597 syslog(LOG_ERR, "can't send reply");
598 sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
601 if (!svc_sendreply(transp, (xdrproc_t)xdr_fhs, &fhr))
602 syslog(LOG_ERR, "can't send reply");
604 add_mlist(host, dirpath);
606 add_mlist(numerichost, dirpath);
608 warnx("mount successful");
611 "mount request succeeded from %s for %s",
612 numerichost, dirpath);
616 "mount request denied from %s for %s",
617 numerichost, dirpath);
620 if (bad && !svc_sendreply(transp, (xdrproc_t)xdr_long, &bad))
621 syslog(LOG_ERR, "can't send reply");
622 sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
625 if (!svc_sendreply(transp, (xdrproc_t)xdr_mlist, NULL))
626 syslog(LOG_ERR, "can't send reply");
629 "dump request succeeded from %s",
633 if (sport >= IPPORT_RESERVED && resvport_only) {
635 "umount request from %s from unprivileged port",
637 svcerr_weakauth(transp);
640 if (!svc_getargs(transp, (xdrproc_t)xdr_dir, rpcpath)) {
641 syslog(LOG_NOTICE, "undecodable umount request from %s",
643 svcerr_decode(transp);
646 if (realpath(rpcpath, dirpath) == NULL) {
647 syslog(LOG_NOTICE, "umount request from %s "
648 "for non existent path %s",
649 numerichost, dirpath);
651 if (!svc_sendreply(transp, (xdrproc_t)xdr_void, NULL))
652 syslog(LOG_ERR, "can't send reply");
654 del_mlist(host, dirpath);
655 del_mlist(numerichost, dirpath);
658 "umount request succeeded from %s for %s",
659 numerichost, dirpath);
662 if (sport >= IPPORT_RESERVED && resvport_only) {
664 "umountall request from %s from unprivileged port",
666 svcerr_weakauth(transp);
669 if (!svc_sendreply(transp, (xdrproc_t)xdr_void, NULL))
670 syslog(LOG_ERR, "can't send reply");
672 del_mlist(host, NULL);
673 del_mlist(numerichost, NULL);
676 "umountall request succeeded from %s",
680 if (!svc_sendreply(transp, (xdrproc_t)xdr_explist, NULL))
681 syslog(LOG_ERR, "can't send reply");
684 "export request succeeded from %s",
688 svcerr_noproc(transp);
694 * Xdr conversion for a dirpath string
697 xdr_dir(XDR *xdrsp, char *dirp)
699 return (xdr_string(xdrsp, &dirp, RPCMNT_PATHLEN));
703 * Xdr routine to generate file handle reply
706 xdr_fhs(XDR *xdrsp, caddr_t cp)
708 struct fhreturn *fhrp = (struct fhreturn *)cp;
709 u_long ok = 0, len, auth;
711 if (!xdr_long(xdrsp, &ok))
713 switch (fhrp->fhr_vers) {
715 return (xdr_opaque(xdrsp, (caddr_t)&fhrp->fhr_fh, NFSX_V2FH));
718 if (!xdr_long(xdrsp, &len))
720 if (!xdr_opaque(xdrsp, (caddr_t)&fhrp->fhr_fh, len))
724 if (!xdr_long(xdrsp, &len))
726 return (xdr_long(xdrsp, &auth));
732 xdr_mlist(XDR *xdrsp, caddr_t cp)
734 struct mountlist *mlp;
741 if (!xdr_bool(xdrsp, &true))
743 strp = &mlp->ml_host[0];
744 if (!xdr_string(xdrsp, &strp, RPCMNT_NAMELEN))
746 strp = &mlp->ml_dirp[0];
747 if (!xdr_string(xdrsp, &strp, RPCMNT_PATHLEN))
751 if (!xdr_bool(xdrsp, &false))
757 * Xdr conversion for export list
760 xdr_explist(XDR *xdrsp, caddr_t cp)
762 struct exportlist *ep;
765 sigset_t sighup_mask;
767 sigemptyset(&sighup_mask);
768 sigaddset(&sighup_mask, SIGHUP);
769 sigprocmask(SIG_BLOCK, &sighup_mask, NULL);
773 if (put_exlist(ep->ex_dirl, xdrsp, ep->ex_defdir, &putdef))
775 if (ep->ex_defdir && putdef == 0 &&
776 put_exlist(ep->ex_defdir, xdrsp, NULL,
781 sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
782 if (!xdr_bool(xdrsp, &false))
786 sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
791 * Called from xdr_explist() to traverse the tree and export the
795 put_exlist(struct dirlist *dp, XDR *xdrsp, struct dirlist *adp, int *putdefp)
797 struct grouplist *grp;
805 if (put_exlist(dp->dp_left, xdrsp, adp, putdefp))
807 if (!xdr_bool(xdrsp, &true))
810 if (!xdr_string(xdrsp, &strp, RPCMNT_PATHLEN))
812 if (adp && !strcmp(dp->dp_dirp, adp->dp_dirp)) {
816 if ((dp->dp_flag & DP_DEFSET) == 0 &&
817 (gotalldir == 0 || (adp->dp_flag & DP_DEFSET) == 0)) {
821 if (grp->gr_type == GT_HOST) {
822 if (!xdr_bool(xdrsp, &true))
824 strp = grp->gr_ptr.gt_addrinfo->ai_canonname;
825 if (!xdr_string(xdrsp, &strp,
828 } else if (grp->gr_type == GT_NET) {
829 if (!xdr_bool(xdrsp, &true))
831 strp = grp->gr_ptr.gt_net.nt_name;
832 if (!xdr_string(xdrsp, &strp,
837 if (gotalldir && hp == NULL) {
843 if (!xdr_bool(xdrsp, &false))
845 if (put_exlist(dp->dp_right, xdrsp, adp, putdefp))
851 #define LINESIZ 10240
856 * Get the export list
861 struct exportlist *ep, *ep2;
862 struct grouplist *grp, *tgrp;
863 struct exportlist **epp;
864 struct dirlist *dirhead;
865 struct statfs fsb, *fsp;
867 char *cp, *endcp, *dirp, *hst, *usr, *dom, savedc;
868 int len, has_host, exflags, got_nondir, dirplen, num, i, netgrp;
874 * First, get rid of the old list
893 * And delete exports that are in the kernel for all local
895 * XXX: Should know how to handle all local exportable file systems
896 * instead of just "ufs".
898 num = getmntinfo(&fsp, MNT_NOWAIT);
899 for (i = 0; i < num; i++) {
904 struct msdosfs_args da;
907 struct export_args export;
909 export.ex_flags = MNT_DELEXPORT;
910 if (mountctl(fsp->f_mntonname, MOUNTCTL_SET_EXPORT, -1,
911 &export, sizeof(export), NULL, 0) == 0) {
912 } else if (!strcmp(fsp->f_fstypename, "mfs") ||
913 !strcmp(fsp->f_fstypename, "ufs") ||
914 !strcmp(fsp->f_fstypename, "msdos") ||
915 !strcmp(fsp->f_fstypename, "ntfs") ||
916 !strcmp(fsp->f_fstypename, "cd9660")) {
917 targs.ua.fspec = NULL;
918 targs.ua.export.ex_flags = MNT_DELEXPORT;
919 if (mount(fsp->f_fstypename, fsp->f_mntonname,
920 fsp->f_flags | MNT_UPDATE,
921 (caddr_t)&targs) < 0)
922 syslog(LOG_ERR, "can't delete exports for %s",
929 * Read in the exports file and build the list, calling
930 * mount() as we go along to push the export rules into the kernel.
932 if ((exp_file = fopen(exname, "r")) == NULL) {
933 syslog(LOG_ERR, "can't open %s", exname);
939 warnx("got line %s", line);
941 nextfield(&cp, &endcp);
950 exflags = MNT_EXPORTED;
956 * Create new exports list entry
959 tgrp = grp = get_grp();
961 if (len > RPCMNT_NAMELEN) {
962 getexp_err(ep, tgrp);
967 getexp_err(ep, tgrp);
971 warnx("doing opt %s", cp);
973 if (do_opt(&cp, &endcp, ep, grp, &has_host,
975 getexp_err(ep, tgrp);
978 } else if (*cp == '/') {
981 if (check_dirpath(cp) &&
982 statfs(cp, &fsb) >= 0) {
984 syslog(LOG_ERR, "dirs must be first");
985 getexp_err(ep, tgrp);
989 if (ep->ex_fs.val[0] != fsb.f_fsid.val[0] ||
990 ep->ex_fs.val[1] != fsb.f_fsid.val[1]) {
991 getexp_err(ep, tgrp);
996 * See if this directory is already
999 ep = ex_search(&fsb.f_fsid);
1002 ep->ex_fs = fsb.f_fsid;
1003 ep->ex_fsdir = (char *)
1004 malloc(strlen(fsb.f_mntonname) + 1);
1006 strcpy(ep->ex_fsdir,
1011 warnx("making new ep fs=0x%x,0x%x",
1015 warnx("found ep fs=0x%x,0x%x",
1021 * Add dirpath to export mount point.
1023 dirp = add_expdir(&dirhead, cp, len);
1026 getexp_err(ep, tgrp);
1035 getexp_err(ep, tgrp);
1040 * Get the host or netgroup.
1043 netgrp = getnetgrent(&hst, &usr, &dom);
1046 grp->gr_next = get_grp();
1052 "null hostname in netgroup %s, skipping", cp);
1053 grp->gr_type = GT_IGNORE;
1054 } else if (get_host(hst, grp, tgrp)) {
1056 "bad host %s in netgroup %s, skipping", hst, cp);
1057 grp->gr_type = GT_IGNORE;
1059 } else if (get_host(cp, grp, tgrp)) {
1060 syslog(LOG_ERR, "bad host %s, skipping", cp);
1061 grp->gr_type = GT_IGNORE;
1064 } while (netgrp && getnetgrent(&hst, &usr, &dom));
1069 nextfield(&cp, &endcp);
1072 if (check_options(dirhead)) {
1073 getexp_err(ep, tgrp);
1077 grp->gr_type = GT_DEFAULT;
1079 warnx("adding a default entry");
1082 * Don't allow a network export coincide with a list of
1083 * host(s) on the same line.
1085 } else if ((opt_flags & OP_NET) && tgrp->gr_next) {
1086 syslog(LOG_ERR, "network/host conflict");
1087 getexp_err(ep, tgrp);
1091 * If an export list was specified on this line, make sure
1092 * that we have at least one valid entry, otherwise skip it.
1096 while (grp && grp->gr_type == GT_IGNORE)
1099 getexp_err(ep, tgrp);
1105 * Loop through hosts, pushing the exports into the kernel.
1106 * After loop, tgrp points to the start of the list and
1107 * grp points to the last entry in the list.
1111 if (do_mount(ep, grp, exflags, &anon, dirp, dirplen,
1113 getexp_err(ep, tgrp);
1116 } while (grp->gr_next && (grp = grp->gr_next));
1119 * Success. Update the data structures.
1122 hang_dirp(dirhead, tgrp, ep, opt_flags);
1123 grp->gr_next = grphead;
1126 hang_dirp(dirhead, NULL, ep,
1131 if ((ep->ex_flag & EX_LINKED) == 0) {
1136 * Insert in the list in alphabetical order.
1138 while (ep2 && strcmp(ep2->ex_fsdir, ep->ex_fsdir) < 0) {
1139 epp = &ep2->ex_next;
1145 ep->ex_flag |= EX_LINKED;
1157 * Allocate an export list element
1162 struct exportlist *ep;
1164 ep = (struct exportlist *)malloc(sizeof (struct exportlist));
1167 memset(ep, 0, sizeof(struct exportlist));
1172 * Allocate a group list element
1177 struct grouplist *gp;
1179 gp = (struct grouplist *)malloc(sizeof (struct grouplist));
1182 memset(gp, 0, sizeof(struct grouplist));
1187 * Clean up upon an error in get_exportlist().
1190 getexp_err(struct exportlist *ep, struct grouplist *grp)
1192 struct grouplist *tgrp;
1194 if (!(opt_flags & OP_QUIET))
1195 syslog(LOG_ERR, "bad exports list line %s", line);
1196 if (ep && (ep->ex_flag & EX_LINKED) == 0)
1206 * Search the export list for a matching fs.
1209 ex_search(fsid_t *fsid)
1211 struct exportlist *ep;
1215 if (ep->ex_fs.val[0] == fsid->val[0] &&
1216 ep->ex_fs.val[1] == fsid->val[1])
1224 * Add a directory path to the list.
1227 add_expdir(struct dirlist **dpp, char *cp, int len)
1231 dp = (struct dirlist *)malloc(sizeof (struct dirlist) + len);
1235 dp->dp_right = NULL;
1237 dp->dp_hosts = NULL;
1238 strcpy(dp->dp_dirp, cp);
1240 return (dp->dp_dirp);
1244 * Hang the dir list element off the dirpath binary tree as required
1245 * and update the entry for host.
1248 hang_dirp(struct dirlist *dp, struct grouplist *grp, struct exportlist *ep,
1251 struct hostlist *hp;
1252 struct dirlist *dp2;
1254 if (flags & OP_ALLDIRS) {
1260 ep->ex_defdir->dp_flag |= DP_DEFSET;
1261 } else while (grp) {
1264 hp->ht_next = ep->ex_defdir->dp_hosts;
1265 ep->ex_defdir->dp_hosts = hp;
1271 * Loop through the directories adding them to the tree.
1275 add_dlist(&ep->ex_dirl, dp, grp, flags);
1282 * Traverse the binary tree either updating a node that is already there
1283 * for the new directory or adding the new node.
1286 add_dlist(struct dirlist **dpp, struct dirlist *newdp, struct grouplist *grp,
1290 struct hostlist *hp;
1295 cmp = strcmp(dp->dp_dirp, newdp->dp_dirp);
1297 add_dlist(&dp->dp_left, newdp, grp, flags);
1299 } else if (cmp < 0) {
1300 add_dlist(&dp->dp_right, newdp, grp, flags);
1303 free((caddr_t)newdp);
1312 * Hang all of the host(s) off of the directory point.
1317 hp->ht_next = dp->dp_hosts;
1322 dp->dp_flag |= DP_DEFSET;
1327 * Search for a dirpath on the export point.
1330 dirp_search(struct dirlist *dp, char *dirp)
1335 cmp = strcmp(dp->dp_dirp, dirp);
1337 return (dirp_search(dp->dp_left, dirp));
1339 return (dirp_search(dp->dp_right, dirp));
1347 * Scan for a host match in a directory tree.
1350 chk_host(struct dirlist *dp, struct sockaddr *saddr, int *defsetp,
1353 struct hostlist *hp;
1354 struct grouplist *grp;
1355 struct addrinfo *ai;
1358 if (dp->dp_flag & DP_DEFSET)
1359 *defsetp = dp->dp_flag;
1363 switch (grp->gr_type) {
1365 ai = grp->gr_ptr.gt_addrinfo;
1366 for (; ai; ai = ai->ai_next) {
1367 if (!sacmp(ai->ai_addr, saddr, NULL)) {
1369 (hp->ht_flag | DP_HOSTSET);
1375 if (!sacmp(saddr, (struct sockaddr *)
1376 &grp->gr_ptr.gt_net.nt_net,
1378 &grp->gr_ptr.gt_net.nt_mask)) {
1379 *hostsetp = (hp->ht_flag | DP_HOSTSET);
1391 * Scan tree for a host that matches the address.
1394 scan_tree(struct dirlist *dp, struct sockaddr *saddr)
1396 int defset, hostset;
1399 if (scan_tree(dp->dp_left, saddr))
1401 if (chk_host(dp, saddr, &defset, &hostset))
1403 if (scan_tree(dp->dp_right, saddr))
1410 * Traverse the dirlist tree and free it up.
1413 free_dir(struct dirlist *dp)
1417 free_dir(dp->dp_left);
1418 free_dir(dp->dp_right);
1419 free_host(dp->dp_hosts);
1425 * Parse the option string and update fields.
1426 * Option arguments may either be -<option>=<value> or
1430 do_opt(char **cpp, char **endcpp, struct exportlist *ep, struct grouplist *grp,
1431 int *has_hostp, int *exflagsp, struct ucred *cr)
1433 char *cpoptarg, *cpoptend;
1434 char *cp, *endcp, *cpopt, savedc, savedc2;
1435 int allflag, usedarg;
1443 while (cpopt && *cpopt) {
1446 if ((cpoptend = strchr(cpopt, ','))) {
1448 if ((cpoptarg = strchr(cpopt, '=')))
1451 if ((cpoptarg = strchr(cpopt, '=')))
1455 nextfield(&cp, &endcp);
1457 if (endcp > cp && *cp != '-') {
1465 if (!strcmp(cpopt, "ro") || !strcmp(cpopt, "o")) {
1466 *exflagsp |= MNT_EXRDONLY;
1467 } else if (cpoptarg && (!strcmp(cpopt, "maproot") ||
1468 !(allflag = strcmp(cpopt, "mapall")) ||
1469 !strcmp(cpopt, "root") || !strcmp(cpopt, "r"))) {
1471 parsecred(cpoptarg, cr);
1473 *exflagsp |= MNT_EXPORTANON;
1474 opt_flags |= OP_MAPALL;
1476 opt_flags |= OP_MAPROOT;
1477 } else if (cpoptarg && (!strcmp(cpopt, "mask") ||
1478 !strcmp(cpopt, "m"))) {
1479 if (get_net(cpoptarg, &grp->gr_ptr.gt_net, 1)) {
1480 syslog(LOG_ERR, "bad mask: %s", cpoptarg);
1484 opt_flags |= OP_MASK;
1485 } else if (cpoptarg && (!strcmp(cpopt, "network") ||
1486 !strcmp(cpopt, "n"))) {
1487 if (strchr(cpoptarg, '/') != NULL) {
1489 fprintf(stderr, "setting OP_MASKLEN\n");
1490 opt_flags |= OP_MASKLEN;
1492 if (grp->gr_type != GT_NULL) {
1493 syslog(LOG_ERR, "network/host conflict");
1495 } else if (get_net(cpoptarg, &grp->gr_ptr.gt_net, 0)) {
1496 syslog(LOG_ERR, "bad net: %s", cpoptarg);
1499 grp->gr_type = GT_NET;
1502 opt_flags |= OP_NET;
1503 } else if (!strcmp(cpopt, "alldirs")) {
1504 opt_flags |= OP_ALLDIRS;
1505 } else if (!strcmp(cpopt, "public")) {
1506 *exflagsp |= MNT_EXPUBLIC;
1507 } else if (!strcmp(cpopt, "webnfs")) {
1508 *exflagsp |= (MNT_EXPUBLIC|MNT_EXRDONLY|MNT_EXPORTANON);
1509 opt_flags |= OP_MAPALL;
1510 } else if (cpoptarg && !strcmp(cpopt, "index")) {
1511 ep->ex_indexfile = strdup(cpoptarg);
1512 } else if (!strcmp(cpopt, "quiet")) {
1513 opt_flags |= OP_QUIET;
1515 syslog(LOG_ERR, "bad opt %s", cpopt);
1534 * Translate a character string to the corresponding list of network
1535 * addresses for a hostname.
1538 get_host(char *cp, struct grouplist *grp, struct grouplist *tgrp)
1540 struct grouplist *checkgrp;
1541 struct addrinfo *ai, *tai, hints;
1543 char host[NI_MAXHOST];
1545 if (grp->gr_type != GT_NULL) {
1546 syslog(LOG_ERR, "Bad netgroup type for ip host %s", cp);
1549 memset(&hints, 0, sizeof hints);
1550 hints.ai_flags = AI_CANONNAME;
1551 hints.ai_protocol = IPPROTO_UDP;
1552 ecode = getaddrinfo(cp, NULL, &hints, &ai);
1554 syslog(LOG_ERR,"can't get address info for host %s", cp);
1557 grp->gr_ptr.gt_addrinfo = ai;
1558 while (ai != NULL) {
1559 if (ai->ai_canonname == NULL) {
1560 if (getnameinfo(ai->ai_addr, ai->ai_addrlen, host,
1561 sizeof host, NULL, 0, ninumeric) != 0)
1562 strlcpy(host, "?", sizeof(host));
1563 ai->ai_canonname = strdup(host);
1564 ai->ai_flags |= AI_CANONNAME;
1567 fprintf(stderr, "got host %s\n", ai->ai_canonname);
1569 * Sanity check: make sure we don't already have an entry
1570 * for this host in the grouplist.
1572 for (checkgrp = tgrp; checkgrp != NULL;
1573 checkgrp = checkgrp->gr_next) {
1574 if (checkgrp->gr_type != GT_HOST)
1576 for (tai = checkgrp->gr_ptr.gt_addrinfo; tai != NULL;
1577 tai = tai->ai_next) {
1578 if (sacmp(tai->ai_addr, ai->ai_addr, NULL) != 0)
1582 "ignoring duplicate host %s\n",
1584 grp->gr_type = GT_IGNORE;
1590 grp->gr_type = GT_HOST;
1595 * Free up an exports list component
1598 free_exp(struct exportlist *ep)
1601 if (ep->ex_defdir) {
1602 free_host(ep->ex_defdir->dp_hosts);
1603 free((caddr_t)ep->ex_defdir);
1607 if (ep->ex_indexfile)
1608 free(ep->ex_indexfile);
1609 free_dir(ep->ex_dirl);
1617 free_host(struct hostlist *hp)
1619 struct hostlist *hp2;
1631 struct hostlist *hp;
1633 hp = (struct hostlist *)malloc(sizeof (struct hostlist));
1642 * Out of memory, fatal
1648 syslog(LOG_ERR, "out of memory");
1653 * Do the mount syscall with the update flag to push the export info into
1657 do_mount(struct exportlist *ep, struct grouplist *grp, int exflags,
1658 struct ucred *anoncrp, char *dirp, int dirplen, struct statfs *fsb)
1661 struct addrinfo *ai;
1662 struct export_args *eap;
1670 struct msdosfs_args da;
1671 struct ntfs_args na;
1674 bzero(&args, sizeof args);
1675 /* XXX, we assume that all xx_args look like ufs_args. */
1677 eap = &args.ua.export;
1679 eap->ex_flags = exflags;
1680 eap->ex_anon = *anoncrp;
1681 eap->ex_indexfile = ep->ex_indexfile;
1682 if (grp->gr_type == GT_HOST)
1683 ai = grp->gr_ptr.gt_addrinfo;
1688 switch (grp->gr_type) {
1690 if (ai->ai_addr->sa_family == AF_INET6 && have_v6 == 0)
1692 eap->ex_addr = ai->ai_addr;
1693 eap->ex_addrlen = ai->ai_addrlen;
1694 eap->ex_masklen = 0;
1697 if (grp->gr_ptr.gt_net.nt_net.ss_family == AF_INET6 &&
1701 (struct sockaddr *)&grp->gr_ptr.gt_net.nt_net;
1702 eap->ex_addrlen = args.ua.export.ex_addr->sa_len;
1704 (struct sockaddr *)&grp->gr_ptr.gt_net.nt_mask;
1705 eap->ex_masklen = args.ua.export.ex_mask->sa_len;
1708 eap->ex_addr = NULL;
1709 eap->ex_addrlen = 0;
1710 eap->ex_mask = NULL;
1711 eap->ex_masklen = 0;
1717 syslog(LOG_ERR, "bad grouptype");
1725 * Maybe I should just use the fsb->f_mntonname path instead
1726 * of looping back up the dirp to the mount point??
1727 * Also, needs to know how to export all types of local
1728 * exportable file systems and not just "ufs".
1733 r = mountctl(fsb->f_mntonname, MOUNTCTL_SET_EXPORT,
1735 &args.ua.export, sizeof(args.ua.export),
1737 if (r < 0 && errno == EOPNOTSUPP) {
1738 r = mount(fsb->f_fstypename, dirp,
1739 fsb->f_flags | MNT_UPDATE,
1747 cp = dirp + dirplen - 1;
1748 if (opt_flags & OP_QUIET)
1750 if (errno == EPERM) {
1752 warnx("can't change attributes for %s",
1755 "can't change attributes for %s", dirp);
1758 if (opt_flags & OP_ALLDIRS) {
1759 if (errno == EINVAL)
1761 "-alldirs requested but %s is not a filesystem mountpoint",
1765 "could not remount %s: %m",
1769 /* back up over the last component */
1770 while (*cp == '/' && cp > dirp)
1772 while (*(cp - 1) != '/' && cp > dirp)
1776 warnx("mnt unsucc");
1777 syslog(LOG_ERR, "can't export %s", dirp);
1782 /* Check that we're still on the same filesystem. */
1783 if (statfs(dirp, &fsb1) != 0 || bcmp(&fsb1.f_fsid,
1784 &fsb->f_fsid, sizeof(fsb1.f_fsid)) != 0) {
1786 syslog(LOG_ERR, "can't export %s", dirp);
1802 * Translate a net address.
1804 * If `maskflg' is nonzero, then `cp' is a netmask, not a network address.
1807 get_net(char *cp, struct netmsk *net, int maskflg)
1809 struct netent *np = NULL;
1810 char *name, *p, *prefp;
1811 struct sockaddr_in sin;
1812 struct sockaddr *sa = NULL;
1813 struct addrinfo hints, *ai = NULL;
1814 char netname[NI_MAXHOST];
1818 if ((opt_flags & OP_MASKLEN) && !maskflg) {
1819 p = strchr(cp, '/');
1825 * Check for a numeric address first. We wish to avoid
1826 * possible DNS lookups in getnetbyname().
1828 if (isxdigit(*cp) || *cp == ':') {
1829 memset(&hints, 0, sizeof hints);
1830 /* Ensure the mask and the network have the same family. */
1831 if (maskflg && (opt_flags & OP_NET))
1832 hints.ai_family = net->nt_net.ss_family;
1833 else if (!maskflg && (opt_flags & OP_HAVEMASK))
1834 hints.ai_family = net->nt_mask.ss_family;
1836 hints.ai_family = AF_UNSPEC;
1837 hints.ai_flags = AI_NUMERICHOST;
1838 if (getaddrinfo(cp, NULL, &hints, &ai) == 0)
1840 if (sa != NULL && ai->ai_family == AF_INET) {
1842 * The address in `cp' is really a network address, so
1843 * use inet_network() to re-interpret this correctly.
1844 * e.g. "127.1" means 127.1.0.0, not 127.0.0.1.
1846 bzero(&sin, sizeof sin);
1847 sin.sin_family = AF_INET;
1848 sin.sin_len = sizeof sin;
1849 sin.sin_addr = inet_makeaddr(inet_network(cp), 0);
1851 fprintf(stderr, "get_net: v4 addr %s\n",
1852 inet_ntoa(sin.sin_addr));
1853 sa = (struct sockaddr *)&sin;
1856 if (sa == NULL && (np = getnetbyname(cp)) != NULL) {
1857 bzero(&sin, sizeof sin);
1858 sin.sin_family = AF_INET;
1859 sin.sin_len = sizeof sin;
1860 sin.sin_addr = inet_makeaddr(np->n_net, 0);
1861 sa = (struct sockaddr *)&sin;
1867 /* The specified sockaddr is a mask. */
1868 if (checkmask(sa) != 0)
1870 bcopy(sa, &net->nt_mask, sa->sa_len);
1871 opt_flags |= OP_HAVEMASK;
1873 /* The specified sockaddr is a network address. */
1874 bcopy(sa, &net->nt_net, sa->sa_len);
1876 /* Get a network name for the export list. */
1879 } else if (getnameinfo(sa, sa->sa_len, netname, sizeof netname,
1880 NULL, 0, ninumeric) == 0) {
1885 if ((net->nt_name = strdup(name)) == NULL)
1889 * Extract a mask from either a "/<masklen>" suffix, or
1890 * from the class of an IPv4 address.
1892 if (opt_flags & OP_MASKLEN) {
1893 preflen = strtol(prefp, NULL, 10);
1894 if (preflen < 0L || preflen == LONG_MAX)
1896 bcopy(sa, &net->nt_mask, sa->sa_len);
1897 if (makemask(&net->nt_mask, (int)preflen) != 0)
1899 opt_flags |= OP_HAVEMASK;
1901 } else if (sa->sa_family == AF_INET &&
1902 (opt_flags & OP_MASK) == 0) {
1905 addr = ((struct sockaddr_in *)sa)->sin_addr.s_addr;
1906 if (IN_CLASSA(addr))
1908 else if (IN_CLASSB(addr))
1910 else if (IN_CLASSC(addr))
1912 else if (IN_CLASSD(addr))
1915 preflen = 32; /* XXX */
1917 bcopy(sa, &net->nt_mask, sa->sa_len);
1918 makemask(&net->nt_mask, (int)preflen);
1919 opt_flags |= OP_HAVEMASK;
1934 * Parse out the next white space separated field
1937 nextfield(char **cp, char **endcp)
1942 while (*p == ' ' || *p == '\t')
1944 if (*p == '\n' || *p == '\0')
1948 while (*p != ' ' && *p != '\t' && *p != '\n' && *p != '\0')
1955 * Get an exports file line. Skip over blank lines and handle line
1963 int totlen, cont_line;
1966 * Loop around ignoring blank lines and getting all continuation lines.
1971 if (fgets(p, LINESIZ - totlen, exp_file) == NULL)
1977 (*cp == ' ' || *cp == '\t' || *cp == '\n' || *cp == '\\')) {
1990 if (totlen >= LINESIZ) {
1991 syslog(LOG_ERR, "exports line too long");
1996 } while (totlen == 0 || cont_line);
2001 * Parse a description of a credential.
2004 parsecred(char *namelist, struct ucred *cr)
2011 int ngroups, groups[NGROUPS + 1];
2014 * Set up the unprivileged user.
2018 cr->cr_groups[0] = -2;
2021 * Get the user's password table entry.
2023 names = strsep(&namelist, " \t\n");
2024 name = strsep(&names, ":");
2025 if (isdigit(*name) || *name == '-')
2026 pw = getpwuid(atoi(name));
2028 pw = getpwnam(name);
2030 * Credentials specified as those of a user.
2032 if (names == NULL) {
2034 syslog(LOG_ERR, "unknown user: %s", name);
2037 cr->cr_uid = pw->pw_uid;
2038 ngroups = NGROUPS + 1;
2039 if (getgrouplist(pw->pw_name, pw->pw_gid, groups, &ngroups))
2040 syslog(LOG_ERR, "too many groups");
2042 * Convert from int's to gid_t's and compress out duplicate
2044 cr->cr_ngroups = ngroups - 1;
2045 cr->cr_groups[0] = groups[0];
2046 for (cnt = 2; cnt < ngroups; cnt++)
2047 cr->cr_groups[cnt - 1] = groups[cnt];
2051 * Explicit credential specified as a colon separated list:
2055 cr->cr_uid = pw->pw_uid;
2056 else if (isdigit(*name) || *name == '-')
2057 cr->cr_uid = atoi(name);
2059 syslog(LOG_ERR, "unknown user: %s", name);
2063 while (names != NULL && *names != '\0' && cr->cr_ngroups < NGROUPS) {
2064 name = strsep(&names, ":");
2065 if (isdigit(*name) || *name == '-') {
2066 cr->cr_groups[cr->cr_ngroups++] = atoi(name);
2068 if ((gr = getgrnam(name)) == NULL) {
2069 syslog(LOG_ERR, "unknown group: %s", name);
2072 cr->cr_groups[cr->cr_ngroups++] = gr->gr_gid;
2075 if (names != NULL && *names != '\0' && cr->cr_ngroups == NGROUPS)
2076 syslog(LOG_ERR, "too many groups");
2079 #define STRSIZ (RPCMNT_NAMELEN+RPCMNT_PATHLEN+50)
2081 * Routines that maintain the remote mounttab
2086 struct mountlist *mlp, **mlpp;
2087 char *host, *dirp, *cp;
2091 if ((mlfile = fopen(_PATH_RMOUNTLIST, "r")) == NULL) {
2092 if (errno == ENOENT)
2095 syslog(LOG_ERR, "can't open %s", _PATH_RMOUNTLIST);
2100 while (fgets(str, STRSIZ, mlfile) != NULL) {
2102 host = strsep(&cp, " \t\n");
2103 dirp = strsep(&cp, " \t\n");
2104 if (host == NULL || dirp == NULL)
2106 mlp = (struct mountlist *)malloc(sizeof (*mlp));
2109 strncpy(mlp->ml_host, host, RPCMNT_NAMELEN);
2110 mlp->ml_host[RPCMNT_NAMELEN] = '\0';
2111 strncpy(mlp->ml_dirp, dirp, RPCMNT_PATHLEN);
2112 mlp->ml_dirp[RPCMNT_PATHLEN] = '\0';
2113 mlp->ml_next = NULL;
2115 mlpp = &mlp->ml_next;
2121 del_mlist(char *hostp, char *dirp)
2123 struct mountlist *mlp, **mlpp;
2124 struct mountlist *mlp2;
2131 if (!strcmp(mlp->ml_host, hostp) &&
2132 (!dirp || !strcmp(mlp->ml_dirp, dirp))) {
2135 *mlpp = mlp = mlp->ml_next;
2136 free((caddr_t)mlp2);
2138 mlpp = &mlp->ml_next;
2143 if ((mlfile = fopen(_PATH_RMOUNTLIST, "w")) == NULL) {
2144 syslog(LOG_ERR,"can't update %s", _PATH_RMOUNTLIST);
2149 fprintf(mlfile, "%s %s\n", mlp->ml_host, mlp->ml_dirp);
2157 add_mlist(char *hostp, char *dirp)
2159 struct mountlist *mlp, **mlpp;
2165 if (!strcmp(mlp->ml_host, hostp) && !strcmp(mlp->ml_dirp, dirp))
2167 mlpp = &mlp->ml_next;
2170 mlp = (struct mountlist *)malloc(sizeof (*mlp));
2173 strncpy(mlp->ml_host, hostp, RPCMNT_NAMELEN);
2174 mlp->ml_host[RPCMNT_NAMELEN] = '\0';
2175 strncpy(mlp->ml_dirp, dirp, RPCMNT_PATHLEN);
2176 mlp->ml_dirp[RPCMNT_PATHLEN] = '\0';
2177 mlp->ml_next = NULL;
2179 if ((mlfile = fopen(_PATH_RMOUNTLIST, "a")) == NULL) {
2180 syslog(LOG_ERR, "can't update %s", _PATH_RMOUNTLIST);
2183 fprintf(mlfile, "%s %s\n", mlp->ml_host, mlp->ml_dirp);
2188 * Free up a group list.
2191 free_grp(struct grouplist *grp)
2193 if (grp->gr_type == GT_HOST) {
2194 if (grp->gr_ptr.gt_addrinfo != NULL)
2195 freeaddrinfo(grp->gr_ptr.gt_addrinfo);
2196 } else if (grp->gr_type == GT_NET) {
2197 if (grp->gr_ptr.gt_net.nt_name)
2198 free(grp->gr_ptr.gt_net.nt_name);
2205 SYSLOG(int pri, const char *fmt, ...)
2210 vfprintf(stderr, fmt, ap);
2216 * Check options for consistency.
2219 check_options(struct dirlist *dp)
2224 if ((opt_flags & (OP_MAPROOT | OP_MAPALL)) == (OP_MAPROOT | OP_MAPALL)) {
2225 syslog(LOG_ERR, "-mapall and -maproot mutually exclusive");
2228 if ((opt_flags & OP_MASK) && (opt_flags & OP_NET) == 0) {
2229 syslog(LOG_ERR, "-mask requires -network");
2232 if ((opt_flags & OP_NET) && (opt_flags & OP_HAVEMASK) == 0) {
2233 syslog(LOG_ERR, "-network requires mask specification");
2236 if ((opt_flags & OP_MASK) && (opt_flags & OP_MASKLEN)) {
2237 syslog(LOG_ERR, "-mask and /masklen are mutually exclusive");
2240 if ((opt_flags & OP_ALLDIRS) && dp->dp_left) {
2241 syslog(LOG_ERR, "-alldirs has multiple directories");
2248 * Check an absolute directory path for any symbolic links. Return true
2251 check_dirpath(char *dirp)
2258 while (*cp && ret) {
2261 if (lstat(dirp, &sb) < 0 || !S_ISDIR(sb.st_mode))
2267 if (lstat(dirp, &sb) < 0 || !S_ISDIR(sb.st_mode))
2273 * Make a netmask according to the specified prefix length. The ss_family
2274 * and other non-address fields must be initialised before calling this.
2277 makemask(struct sockaddr_storage *ssp, int bitlen)
2282 if ((p = sa_rawaddr((struct sockaddr *)ssp, &len)) == NULL)
2284 if (bitlen > len * NBBY)
2286 for (i = 0; i < len; i++) {
2287 bits = (bitlen > NBBY) ? NBBY : bitlen;
2288 *p++ = (1 << bits) - 1;
2295 * Check that the sockaddr is a valid netmask. Returns 0 if the mask
2296 * is acceptable (i.e. of the form 1...10....0).
2299 checkmask(struct sockaddr *sa)
2304 if ((mask = sa_rawaddr(sa, &len)) == NULL)
2307 for (i = 0; i < len; i++)
2308 if (mask[i] != 0xff)
2311 if (~mask[i] & (u_char)(~mask[i] + 1))
2315 for (; i < len; i++)
2322 * Compare two sockaddrs according to a specified mask. Return zero if
2323 * `sa1' matches `sa2' when filtered by the netmask in `samask'.
2324 * If samask is NULL, perform a full comparision.
2327 sacmp(struct sockaddr *sa1, struct sockaddr *sa2, struct sockaddr *samask)
2329 unsigned char *p1, *p2, *mask;
2332 if (sa1->sa_family != sa2->sa_family ||
2333 (p1 = sa_rawaddr(sa1, &len)) == NULL ||
2334 (p2 = sa_rawaddr(sa2, NULL)) == NULL)
2337 switch (sa1->sa_family) {
2339 if (((struct sockaddr_in6 *)sa1)->sin6_scope_id !=
2340 ((struct sockaddr_in6 *)sa2)->sin6_scope_id)
2345 /* Simple binary comparison if no mask specified. */
2347 return (memcmp(p1, p2, len));
2349 /* Set up the mask, and do a mask-based comparison. */
2350 if (sa1->sa_family != samask->sa_family ||
2351 (mask = sa_rawaddr(samask, NULL)) == NULL)
2354 for (i = 0; i < len; i++)
2355 if ((p1[i] & mask[i]) != (p2[i] & mask[i]))
2361 * Return a pointer to the part of the sockaddr that contains the
2362 * raw address, and set *nbytes to its length in bytes. Returns
2363 * NULL if the address family is unknown.
2366 sa_rawaddr(struct sockaddr *sa, int *nbytes) {
2370 switch (sa->sa_family) {
2372 len = sizeof(((struct sockaddr_in *)sa)->sin_addr);
2373 p = &((struct sockaddr_in *)sa)->sin_addr;
2376 len = sizeof(((struct sockaddr_in6 *)sa)->sin6_addr);
2377 p = &((struct sockaddr_in6 *)sa)->sin6_addr;
2395 void terminate(int sig)
2397 pidfile_remove(pfh);
2398 rpcb_unset(RPCPROG_MNT, RPCMNT_VER1, NULL);
2399 rpcb_unset(RPCPROG_MNT, RPCMNT_VER3, NULL);
nant's projects / dragonfly.git / blob