1 /* 2 * Copyright (c) 1995 3 * Bill Paul <wpaul@ctr.columbia.edu>. All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 3. All advertising materials mentioning features or use of this software 14 * must display the following acknowledgement: 15 * This product includes software developed by Bill Paul. 16 * 4. Neither the name of the author nor the names of any co-contributors 17 * may be used to endorse or promote products derived from this software 18 * without specific prior written permission. 19 * 20 * THIS SOFTWARE IS PROVIDED BY Bill Paul AND CONTRIBUTORS ``AS IS'' AND 21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 23 * ARE DISCLAIMED. IN NO EVENT SHALL Bill Paul OR CONTRIBUTORS BE LIABLE 24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 30 * SUCH DAMAGE. 31 */ 32 33 #include <sys/cdefs.h> 34 __FBSDID("$FreeBSD$"); 35 36 #include <errno.h> 37 #include <stdio.h> 38 #include <stdlib.h> 39 #include <string.h> 40 #include <syslog.h> 41 #include <unistd.h> 42 #include <sys/types.h> 43 #include <sys/param.h> 44 #include <sys/socket.h> 45 #include <netinet/in.h> 46 #include <arpa/inet.h> 47 #include <rpc/rpc.h> 48 #include <rpc/clnt.h> 49 #include <rpcsvc/yp.h> 50 struct dom_binding {}; 51 #include <rpcsvc/ypclnt.h> 52 #include <rpcsvc/ypxfrd.h> 53 #include "ypxfr_extern.h" 54 55 char *progname = "ypxfr"; 56 char *yp_dir = _PATH_YP; 57 int _rpcpmstart = 0; 58 int ypxfr_use_yplib = 0; /* Assume the worst. */ 59 int ypxfr_clear = 1; 60 int ypxfr_prognum = 0; 61 struct sockaddr_in ypxfr_callback_addr; 62 struct yppushresp_xfr ypxfr_resp; 63 DB *dbp; 64 65 static void 66 ypxfr_exit(ypxfrstat retval, char *temp) 67 { 68 CLIENT *clnt; 69 int sock = RPC_ANYSOCK; 70 struct timeval timeout; 71 72 /* Clean up no matter what happened previously. */ 73 if (temp != NULL) { 74 if (dbp != NULL) 75 (void)(dbp->close)(dbp); 76 if (unlink(temp) == -1) { 77 yp_error("failed to unlink %s",strerror(errno)); 78 } 79 } 80 81 if (ypxfr_prognum) { 82 timeout.tv_sec = 20; 83 timeout.tv_usec = 0; 84 85 if ((clnt = clntudp_create(&ypxfr_callback_addr, ypxfr_prognum, 86 1, timeout, &sock)) == NULL) { 87 yp_error("%s", clnt_spcreateerror("failed to " 88 "establish callback handle")); 89 exit(1); 90 } 91 92 ypxfr_resp.status = retval; 93 94 if (yppushproc_xfrresp_1(&ypxfr_resp, clnt) == NULL) { 95 yp_error("%s", clnt_sperror(clnt, "callback failed")); 96 clnt_destroy(clnt); 97 exit(1); 98 } 99 clnt_destroy(clnt); 100 } else { 101 yp_error("Exiting: %s", ypxfrerr_string(retval)); 102 } 103 104 exit(0); 105 } 106 107 static void 108 usage(void) 109 { 110 if (_rpcpmstart) { 111 ypxfr_exit(YPXFR_BADARGS,NULL); 112 } else { 113 fprintf(stderr, "%s\n%s\n%s\n", 114 "usage: ypxfr [-f] [-c] [-d target domain] [-h source host]", 115 " [-s source domain] [-p path]", 116 " [-C taskid program-number ipaddr port] mapname"); 117 exit(1); 118 } 119 } 120 121 int 122 ypxfr_foreach(int status, char *key, int keylen, char *val, int vallen, 123 char *data) 124 { 125 DBT dbkey, dbval; 126 127 if (status != YP_TRUE) 128 return (status); 129 130 /* 131 * XXX Do not attempt to write zero-length keys or 132 * data into a Berkeley DB hash database. It causes a 133 * strange failure mode where sequential searches get 134 * caught in an infinite loop. 135 */ 136 if (keylen) { 137 dbkey.data = key; 138 dbkey.size = keylen; 139 } else { 140 dbkey.data = ""; 141 dbkey.size = 1; 142 } 143 if (vallen) { 144 dbval.data = val; 145 dbval.size = vallen; 146 } else { 147 dbval.data = ""; 148 dbval.size = 1; 149 } 150 151 if (yp_put_record(dbp, &dbkey, &dbval, 0) != YP_TRUE) 152 return(yp_errno); 153 154 return (0); 155 } 156 157 int 158 main(int argc, char *argv[]) 159 { 160 int ch; 161 int ypxfr_force = 0; 162 char *ypxfr_dest_domain = NULL; 163 char *ypxfr_source_host = NULL; 164 char *ypxfr_source_domain = NULL; 165 char *ypxfr_local_domain = NULL; 166 char *ypxfr_master = NULL; 167 unsigned long ypxfr_order = -1, ypxfr_skew_check = -1; 168 char *ypxfr_mapname = NULL; 169 int ypxfr_args = 0; 170 char ypxfr_temp_map[MAXPATHLEN + 2]; 171 char tempmap[MAXPATHLEN + 2]; 172 char buf[MAXPATHLEN + 2]; 173 DBT key, data; 174 int remoteport; 175 int interdom = 0; 176 int secure = 0; 177 178 debug = 1; 179 180 if (!isatty(fileno(stderr))) { 181 openlog("ypxfr", LOG_PID, LOG_DAEMON); 182 _rpcpmstart = 1; 183 } 184 185 if (argc < 2) 186 usage(); 187 188 while ((ch = getopt(argc, argv, "fcd:h:s:p:C:")) != -1) { 189 int my_optind; 190 switch (ch) { 191 case 'f': 192 ypxfr_force++; 193 ypxfr_args++; 194 break; 195 case 'c': 196 ypxfr_clear = 0; 197 ypxfr_args++; 198 break; 199 case 'd': 200 ypxfr_dest_domain = optarg; 201 ypxfr_args += 2; 202 break; 203 case 'h': 204 ypxfr_source_host = optarg; 205 ypxfr_args += 2; 206 break; 207 case 's': 208 ypxfr_source_domain = optarg; 209 ypxfr_args += 2; 210 break; 211 case 'p': 212 yp_dir = optarg; 213 ypxfr_args += 2; 214 break; 215 case 'C': 216 /* 217 * Whoever decided that the -C flag should take 218 * four arguments is a twit. 219 */ 220 my_optind = optind - 1; 221 if (argv[my_optind] == NULL || !strlen(argv[my_optind])) { 222 yp_error("transaction ID not specified"); 223 usage(); 224 } 225 ypxfr_resp.transid = atol(argv[my_optind]); 226 my_optind++; 227 if (argv[my_optind] == NULL || !strlen(argv[my_optind])) { 228 yp_error("RPC program number not specified"); 229 usage(); 230 } 231 ypxfr_prognum = atol(argv[my_optind]); 232 my_optind++; 233 if (argv[my_optind] == NULL || !strlen(argv[my_optind])) { 234 yp_error("address not specified"); 235 usage(); 236 } 237 if (!inet_aton(argv[my_optind], &ypxfr_callback_addr.sin_addr)) { 238 yp_error("failed to convert '%s' to IP addr", 239 argv[my_optind]); 240 exit(1); 241 } 242 my_optind++; 243 if (argv[my_optind] == NULL || !strlen(argv[my_optind])) { 244 yp_error("port not specified"); 245 usage(); 246 } 247 ypxfr_callback_addr.sin_port = htons((u_short)atoi(argv[my_optind])); 248 ypxfr_args += 5; 249 break; 250 default: 251 usage(); 252 break; 253 } 254 } 255 256 ypxfr_mapname = argv[ypxfr_args + 1]; 257 258 if (ypxfr_mapname == NULL) { 259 yp_error("no map name specified"); 260 usage(); 261 } 262 263 /* Always the case. */ 264 ypxfr_callback_addr.sin_family = AF_INET; 265 266 /* Determine if local NIS client facilities are turned on. */ 267 if (!yp_get_default_domain(&ypxfr_local_domain) && 268 _yp_check(&ypxfr_local_domain)) 269 ypxfr_use_yplib = 1; 270 271 /* 272 * If no destination domain is specified, assume that the 273 * local default domain is to be used and try to obtain it. 274 * Fails if NIS client facilities are turned off. 275 */ 276 if (ypxfr_dest_domain == NULL) { 277 if (ypxfr_use_yplib) { 278 yp_get_default_domain(&ypxfr_dest_domain); 279 } else { 280 yp_error("no destination domain specified and \ 281 the local domain name isn't set"); 282 ypxfr_exit(YPXFR_BADARGS,NULL); 283 } 284 } 285 286 /* 287 * If a source domain is not specified, assume it to 288 * be the same as the destination domain. 289 */ 290 if (ypxfr_source_domain == NULL) { 291 ypxfr_source_domain = ypxfr_dest_domain; 292 } 293 294 /* 295 * If the source host is not specified, assume it to be the 296 * master for the specified map. If local NIS client facilities 297 * are turned on, we can figure this out using yp_master(). 298 * If not, we have to see if a local copy of the map exists 299 * and extract its YP_MASTER_NAME record. If _that_ fails, 300 * we are stuck and must ask the user for more information. 301 */ 302 if (ypxfr_source_host == NULL) { 303 if (!ypxfr_use_yplib) { 304 /* 305 * Double whammy: NIS isn't turned on and the user 306 * didn't specify a source host. 307 */ 308 char *dptr; 309 key.data = "YP_MASTER_NAME"; 310 key.size = sizeof("YP_MASTER_NAME") - 1; 311 312 if (yp_get_record(ypxfr_dest_domain, ypxfr_mapname, 313 &key, &data, 1) != YP_TRUE) { 314 yp_error("no source host specified"); 315 ypxfr_exit(YPXFR_BADARGS,NULL); 316 } 317 dptr = data.data; 318 dptr[data.size] = '\0'; 319 ypxfr_master = ypxfr_source_host = strdup(dptr); 320 } 321 } else { 322 if (ypxfr_use_yplib) 323 ypxfr_use_yplib = 0; 324 } 325 326 if (ypxfr_master == NULL) { 327 if ((ypxfr_master = ypxfr_get_master(ypxfr_source_domain, 328 ypxfr_mapname, 329 ypxfr_source_host, 330 ypxfr_use_yplib)) == NULL) { 331 yp_error("failed to find master of %s in domain %s: %s", 332 ypxfr_mapname, ypxfr_source_domain, 333 ypxfrerr_string(yp_errno)); 334 ypxfr_exit(YPXFR_MADDR,NULL); 335 } 336 } 337 338 /* 339 * If we got here and ypxfr_source_host is still undefined, 340 * it means we had to resort to using yp_master() to find the 341 * master server for the map. The source host and master should 342 * be identical. 343 */ 344 if (ypxfr_source_host == NULL) 345 ypxfr_source_host = ypxfr_master; 346 347 /* 348 * Don't talk to ypservs on unprivileged ports. 349 */ 350 remoteport = getrpcport(ypxfr_source_host, YPPROG, YPVERS, IPPROTO_UDP); 351 if (remoteport >= IPPORT_RESERVED) { 352 yp_error("ypserv on %s not running on reserved port", 353 ypxfr_source_host); 354 ypxfr_exit(YPXFR_REFUSED, NULL); 355 } 356 357 if ((ypxfr_order = ypxfr_get_order(ypxfr_source_domain, 358 ypxfr_mapname, 359 ypxfr_master, 0)) == 0) { 360 yp_error("failed to get order number of %s: %s", 361 ypxfr_mapname, yp_errno == YPXFR_SUCC ? 362 "map has order 0" : ypxfrerr_string(yp_errno)); 363 ypxfr_exit(YPXFR_YPERR,NULL); 364 } 365 366 if (ypxfr_match(ypxfr_master, ypxfr_source_domain, ypxfr_mapname, 367 "YP_INTERDOMAIN", sizeof("YP_INTERDOMAIN") - 1)) 368 interdom++; 369 370 if (ypxfr_match(ypxfr_master, ypxfr_source_domain, ypxfr_mapname, 371 "YP_SECURE", sizeof("YP_SECURE") - 1)) 372 secure++; 373 374 key.data = "YP_LAST_MODIFIED"; 375 key.size = sizeof("YP_LAST_MODIFIED") - 1; 376 377 /* The order number is immaterial when the 'force' flag is set. */ 378 379 if (!ypxfr_force) { 380 int ignore = 0; 381 if (yp_get_record(ypxfr_dest_domain,ypxfr_mapname,&key,&data,1) != YP_TRUE) { 382 switch (yp_errno) { 383 case YP_NOKEY: 384 ypxfr_exit(YPXFR_FORCE,NULL); 385 break; 386 case YP_NOMAP: 387 /* 388 * If the map doesn't exist, we're 389 * creating it. Ignore the error. 390 */ 391 ignore++; 392 break; 393 case YP_BADDB: 394 default: 395 ypxfr_exit(YPXFR_DBM,NULL); 396 break; 397 } 398 } 399 if (!ignore && ypxfr_order <= atoi(data.data)) 400 ypxfr_exit(YPXFR_AGE, NULL); 401 402 } 403 404 /* Construct a temporary map file name */ 405 snprintf(tempmap, sizeof(tempmap), "%s.%d",ypxfr_mapname, getpid()); 406 snprintf(ypxfr_temp_map, sizeof(ypxfr_temp_map), "%s/%s/%s", yp_dir, 407 ypxfr_dest_domain, tempmap); 408 409 if ((remoteport = getrpcport(ypxfr_source_host, YPXFRD_FREEBSD_PROG, 410 YPXFRD_FREEBSD_VERS, IPPROTO_TCP))) { 411 412 /* Don't talk to rpc.ypxfrds on unprovileged ports. */ 413 if (remoteport >= IPPORT_RESERVED) { 414 yp_error("rpc.ypxfrd on %s not using privileged port", 415 ypxfr_source_host); 416 ypxfr_exit(YPXFR_REFUSED, NULL); 417 } 418 419 /* Try to send using ypxfrd. If it fails, use old method. */ 420 if (!ypxfrd_get_map(ypxfr_source_host, ypxfr_mapname, 421 ypxfr_source_domain, ypxfr_temp_map)) 422 goto leave; 423 } 424 425 /* Open the temporary map read/write. */ 426 if ((dbp = yp_open_db_rw(ypxfr_dest_domain, tempmap, 0)) == NULL) { 427 yp_error("failed to open temporary map file"); 428 ypxfr_exit(YPXFR_DBM,NULL); 429 } 430 431 /* 432 * Fill in the keys we already know, such as the order number, 433 * master name, input file name (we actually make up a bogus 434 * name for that) and output file name. 435 */ 436 snprintf(buf, sizeof(buf), "%lu", ypxfr_order); 437 data.data = buf; 438 data.size = strlen(buf); 439 440 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 441 yp_error("failed to write order number to database"); 442 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 443 } 444 445 key.data = "YP_MASTER_NAME"; 446 key.size = sizeof("YP_MASTER_NAME") - 1; 447 data.data = ypxfr_master; 448 data.size = strlen(ypxfr_master); 449 450 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 451 yp_error("failed to write master name to database"); 452 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 453 } 454 455 key.data = "YP_DOMAIN_NAME"; 456 key.size = sizeof("YP_DOMAIN_NAME") - 1; 457 data.data = ypxfr_dest_domain; 458 data.size = strlen(ypxfr_dest_domain); 459 460 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 461 yp_error("failed to write domain name to database"); 462 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 463 } 464 465 snprintf (buf, sizeof(buf), "%s:%s", ypxfr_source_host, ypxfr_mapname); 466 467 key.data = "YP_INPUT_NAME"; 468 key.size = sizeof("YP_INPUT_NAME") - 1; 469 data.data = &buf; 470 data.size = strlen(buf); 471 472 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 473 yp_error("failed to write input name to database"); 474 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 475 476 } 477 478 snprintf(buf, sizeof(buf), "%s/%s/%s", yp_dir, ypxfr_dest_domain, 479 ypxfr_mapname); 480 481 key.data = "YP_OUTPUT_NAME"; 482 key.size = sizeof("YP_OUTPUT_NAME") - 1; 483 data.data = &buf; 484 data.size = strlen(buf); 485 486 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 487 yp_error("failed to write output name to database"); 488 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 489 } 490 491 if (interdom) { 492 key.data = "YP_INTERDOMAIN"; 493 key.size = sizeof("YP_INTERDOMAIN") - 1; 494 data.data = ""; 495 data.size = 0; 496 497 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 498 yp_error("failed to add interdomain flag to database"); 499 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 500 } 501 } 502 503 if (secure) { 504 key.data = "YP_SECURE"; 505 key.size = sizeof("YP_SECURE") - 1; 506 data.data = ""; 507 data.size = 0; 508 509 if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) { 510 yp_error("failed to add secure flag to database"); 511 ypxfr_exit(YPXFR_DBM,ypxfr_temp_map); 512 } 513 } 514 515 /* Now suck over the contents of the map from the master. */ 516 517 if (ypxfr_get_map(ypxfr_mapname,ypxfr_source_domain, 518 ypxfr_source_host, ypxfr_foreach)){ 519 yp_error("failed to retrieve map from source host"); 520 ypxfr_exit(YPXFR_YPERR,ypxfr_temp_map); 521 } 522 523 (void)(dbp->close)(dbp); 524 dbp = NULL; /* <- yes, it seems this is necessary. */ 525 526 leave: 527 528 snprintf(buf, sizeof(buf), "%s/%s/%s", yp_dir, ypxfr_dest_domain, 529 ypxfr_mapname); 530 531 /* Peek at the order number again and check for skew. */ 532 if ((ypxfr_skew_check = ypxfr_get_order(ypxfr_source_domain, 533 ypxfr_mapname, 534 ypxfr_master, 0)) == 0) { 535 yp_error("failed to get order number of %s: %s", 536 ypxfr_mapname, yp_errno == YPXFR_SUCC ? 537 "map has order 0" : ypxfrerr_string(yp_errno)); 538 ypxfr_exit(YPXFR_YPERR,ypxfr_temp_map); 539 } 540 541 if (ypxfr_order != ypxfr_skew_check) 542 ypxfr_exit(YPXFR_SKEW,ypxfr_temp_map); 543 544 /* 545 * Send a YPPROC_CLEAR to the local ypserv. 546 */ 547 if (ypxfr_clear) { 548 char in = 0; 549 char *out = NULL; 550 int stat; 551 if ((stat = callrpc("localhost",YPPROG,YPVERS,YPPROC_CLEAR, 552 (xdrproc_t)xdr_void, (void *)&in, 553 (xdrproc_t)xdr_void, (void *)out)) != RPC_SUCCESS) { 554 yp_error("failed to send 'clear' to local ypserv: %s", 555 clnt_sperrno((enum clnt_stat) stat)); 556 ypxfr_exit(YPXFR_CLEAR, ypxfr_temp_map); 557 } 558 } 559 560 /* 561 * Put the new map in place immediately. I'm not sure if the 562 * kernel does an unlink() and rename() atomically in the event 563 * that we move a new copy of a map over the top of an existing 564 * one, but there's less chance of a race condition happening 565 * than if we were to do the unlink() ourselves. 566 */ 567 if (rename(ypxfr_temp_map, buf) == -1) { 568 yp_error("rename(%s,%s) failed: %s", ypxfr_temp_map, buf, 569 strerror(errno)); 570 ypxfr_exit(YPXFR_FILE,NULL); 571 } 572 573 ypxfr_exit(YPXFR_SUCC,NULL); 574 575 return(1); 576 } 577