1*61145dc2SMartin Matuska // SPDX-License-Identifier: CDDL-1.0
216038816SMartin Matuska /*
316038816SMartin Matuska * CDDL HEADER START
416038816SMartin Matuska *
516038816SMartin Matuska * The contents of this file are subject to the terms of the
616038816SMartin Matuska * Common Development and Distribution License (the "License").
716038816SMartin Matuska * You may not use this file except in compliance with the License.
816038816SMartin Matuska *
916038816SMartin Matuska * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10271171e0SMartin Matuska * or https://opensource.org/licenses/CDDL-1.0.
1116038816SMartin Matuska * See the License for the specific language governing permissions
1216038816SMartin Matuska * and limitations under the License.
1316038816SMartin Matuska *
1416038816SMartin Matuska * When distributing Covered Code, include this CDDL HEADER in each
1516038816SMartin Matuska * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
1616038816SMartin Matuska * If applicable, add the following below this CDDL HEADER, with the
1716038816SMartin Matuska * fields enclosed by brackets "[]" replaced with your own identifying
1816038816SMartin Matuska * information: Portions Copyright [yyyy] [name of copyright owner]
1916038816SMartin Matuska *
2016038816SMartin Matuska * CDDL HEADER END
2116038816SMartin Matuska */
2216038816SMartin Matuska
2316038816SMartin Matuska
2416038816SMartin Matuska #include <sys/types.h>
2516038816SMartin Matuska #include <sys/stat.h>
2616038816SMartin Matuska #include <sys/file.h>
2716038816SMartin Matuska #include <fcntl.h>
28716fd348SMartin Matuska #include <ctype.h>
2916038816SMartin Matuska #include <stdio.h>
3016038816SMartin Matuska #include <errno.h>
3116038816SMartin Matuska #include <libshare.h>
32c7046f76SMartin Matuska #include <unistd.h>
33fd45b686SMartin Matuska #include <libzutil.h>
3416038816SMartin Matuska #include "nfs.h"
3516038816SMartin Matuska
3616038816SMartin Matuska
3716038816SMartin Matuska /*
3816038816SMartin Matuska * nfs_exports_[lock|unlock] are used to guard against conconcurrent
3916038816SMartin Matuska * updates to the exports file. Each protocol is responsible for
4016038816SMartin Matuska * providing the necessary locking to ensure consistency.
4116038816SMartin Matuska */
4216038816SMartin Matuska static int
nfs_exports_lock(const char * name,int * nfs_lock_fd)43716fd348SMartin Matuska nfs_exports_lock(const char *name, int *nfs_lock_fd)
4416038816SMartin Matuska {
4516038816SMartin Matuska int err;
4616038816SMartin Matuska
47716fd348SMartin Matuska *nfs_lock_fd = open(name, O_RDWR | O_CREAT | O_CLOEXEC, 0600);
48716fd348SMartin Matuska if (*nfs_lock_fd == -1) {
4916038816SMartin Matuska err = errno;
50fd45b686SMartin Matuska fprintf(stderr, "failed to lock %s: %s\n", name,
51fd45b686SMartin Matuska zfs_strerror(err));
5216038816SMartin Matuska return (err);
5316038816SMartin Matuska }
5416038816SMartin Matuska
55716fd348SMartin Matuska while ((err = flock(*nfs_lock_fd, LOCK_EX)) != 0 && errno == EINTR)
56e92ffd9bSMartin Matuska ;
57e92ffd9bSMartin Matuska if (err != 0) {
5816038816SMartin Matuska err = errno;
59fd45b686SMartin Matuska fprintf(stderr, "failed to lock %s: %s\n", name,
60fd45b686SMartin Matuska zfs_strerror(err));
61716fd348SMartin Matuska (void) close(*nfs_lock_fd);
62716fd348SMartin Matuska *nfs_lock_fd = -1;
6316038816SMartin Matuska return (err);
6416038816SMartin Matuska }
6516038816SMartin Matuska
6616038816SMartin Matuska return (0);
6716038816SMartin Matuska }
6816038816SMartin Matuska
6916038816SMartin Matuska static void
nfs_exports_unlock(const char * name,int * nfs_lock_fd)70716fd348SMartin Matuska nfs_exports_unlock(const char *name, int *nfs_lock_fd)
7116038816SMartin Matuska {
72716fd348SMartin Matuska verify(*nfs_lock_fd > 0);
7316038816SMartin Matuska
74716fd348SMartin Matuska if (flock(*nfs_lock_fd, LOCK_UN) != 0)
7516038816SMartin Matuska fprintf(stderr, "failed to unlock %s: %s\n",
76fd45b686SMartin Matuska name, zfs_strerror(errno));
7716038816SMartin Matuska
78716fd348SMartin Matuska (void) close(*nfs_lock_fd);
79716fd348SMartin Matuska *nfs_lock_fd = -1;
8016038816SMartin Matuska }
8116038816SMartin Matuska
82e92ffd9bSMartin Matuska struct tmpfile {
83e92ffd9bSMartin Matuska /*
84e92ffd9bSMartin Matuska * This only needs to be as wide as ZFS_EXPORTS_FILE and mktemp suffix,
85e92ffd9bSMartin Matuska * 64 is more than enough.
86e92ffd9bSMartin Matuska */
87e92ffd9bSMartin Matuska char name[64];
88e92ffd9bSMartin Matuska FILE *fp;
89e92ffd9bSMartin Matuska };
9016038816SMartin Matuska
91e92ffd9bSMartin Matuska static boolean_t
nfs_init_tmpfile(const char * prefix,const char * mdir,struct tmpfile * tmpf)92e92ffd9bSMartin Matuska nfs_init_tmpfile(const char *prefix, const char *mdir, struct tmpfile *tmpf)
93e92ffd9bSMartin Matuska {
9416038816SMartin Matuska if (mdir != NULL &&
95e92ffd9bSMartin Matuska mkdir(mdir, 0755) < 0 &&
96e92ffd9bSMartin Matuska errno != EEXIST) {
9716038816SMartin Matuska fprintf(stderr, "failed to create %s: %s\n",
98bb2d13b6SMartin Matuska // cppcheck-suppress uninitvar
99fd45b686SMartin Matuska mdir, zfs_strerror(errno));
100e92ffd9bSMartin Matuska return (B_FALSE);
10116038816SMartin Matuska }
10216038816SMartin Matuska
103be181ee2SMartin Matuska strlcpy(tmpf->name, prefix, sizeof (tmpf->name));
104c9539b89SMartin Matuska strlcat(tmpf->name, ".XXXXXXXX", sizeof (tmpf->name));
10516038816SMartin Matuska
106e92ffd9bSMartin Matuska int fd = mkostemp(tmpf->name, O_CLOEXEC);
10716038816SMartin Matuska if (fd == -1) {
10816038816SMartin Matuska fprintf(stderr, "Unable to create temporary file: %s",
109fd45b686SMartin Matuska zfs_strerror(errno));
110e92ffd9bSMartin Matuska return (B_FALSE);
11116038816SMartin Matuska }
112e92ffd9bSMartin Matuska
113e92ffd9bSMartin Matuska tmpf->fp = fdopen(fd, "w+");
114e92ffd9bSMartin Matuska if (tmpf->fp == NULL) {
115e92ffd9bSMartin Matuska fprintf(stderr, "Unable to reopen temporary file: %s",
116fd45b686SMartin Matuska zfs_strerror(errno));
11716038816SMartin Matuska close(fd);
118e92ffd9bSMartin Matuska return (B_FALSE);
119e92ffd9bSMartin Matuska }
120e92ffd9bSMartin Matuska
121e92ffd9bSMartin Matuska return (B_TRUE);
122e92ffd9bSMartin Matuska }
123e92ffd9bSMartin Matuska
124e92ffd9bSMartin Matuska static void
nfs_abort_tmpfile(struct tmpfile * tmpf)125e92ffd9bSMartin Matuska nfs_abort_tmpfile(struct tmpfile *tmpf)
126e92ffd9bSMartin Matuska {
127e92ffd9bSMartin Matuska unlink(tmpf->name);
128e92ffd9bSMartin Matuska fclose(tmpf->fp);
12916038816SMartin Matuska }
13016038816SMartin Matuska
13116038816SMartin Matuska static int
nfs_fini_tmpfile(const char * exports,struct tmpfile * tmpf)132e92ffd9bSMartin Matuska nfs_fini_tmpfile(const char *exports, struct tmpfile *tmpf)
13316038816SMartin Matuska {
134e92ffd9bSMartin Matuska if (fflush(tmpf->fp) != 0) {
135e92ffd9bSMartin Matuska fprintf(stderr, "Failed to write to temporary file: %s\n",
136fd45b686SMartin Matuska zfs_strerror(errno));
137e92ffd9bSMartin Matuska nfs_abort_tmpfile(tmpf);
13816038816SMartin Matuska return (SA_SYSTEM_ERR);
13916038816SMartin Matuska }
140e92ffd9bSMartin Matuska
141e92ffd9bSMartin Matuska if (rename(tmpf->name, exports) == -1) {
142e92ffd9bSMartin Matuska fprintf(stderr, "Unable to rename %s -> %s: %s\n",
143fd45b686SMartin Matuska tmpf->name, exports, zfs_strerror(errno));
144e92ffd9bSMartin Matuska nfs_abort_tmpfile(tmpf);
145e92ffd9bSMartin Matuska return (SA_SYSTEM_ERR);
146e92ffd9bSMartin Matuska }
147e92ffd9bSMartin Matuska
148e92ffd9bSMartin Matuska (void) fchmod(fileno(tmpf->fp), 0644);
149e92ffd9bSMartin Matuska fclose(tmpf->fp);
15016038816SMartin Matuska return (SA_OK);
15116038816SMartin Matuska }
15216038816SMartin Matuska
153716fd348SMartin Matuska int
nfs_escape_mountpoint(const char * mp,char ** out,boolean_t * need_free)154716fd348SMartin Matuska nfs_escape_mountpoint(const char *mp, char **out, boolean_t *need_free)
155716fd348SMartin Matuska {
156716fd348SMartin Matuska if (strpbrk(mp, "\t\n\v\f\r \\") == NULL) {
157716fd348SMartin Matuska *out = (char *)mp;
158716fd348SMartin Matuska *need_free = B_FALSE;
159716fd348SMartin Matuska return (SA_OK);
160716fd348SMartin Matuska } else {
161716fd348SMartin Matuska size_t len = strlen(mp);
162716fd348SMartin Matuska *out = malloc(len * 4 + 1);
163716fd348SMartin Matuska if (!*out)
164716fd348SMartin Matuska return (SA_NO_MEMORY);
165716fd348SMartin Matuska *need_free = B_TRUE;
166716fd348SMartin Matuska
167716fd348SMartin Matuska char *oc = *out;
168716fd348SMartin Matuska for (const char *c = mp; c < mp + len; ++c)
169716fd348SMartin Matuska if (memchr("\t\n\v\f\r \\", *c,
170716fd348SMartin Matuska strlen("\t\n\v\f\r \\"))) {
171716fd348SMartin Matuska sprintf(oc, "\\%03hho", *c);
172716fd348SMartin Matuska oc += 4;
173716fd348SMartin Matuska } else
174716fd348SMartin Matuska *oc++ = *c;
175716fd348SMartin Matuska *oc = '\0';
176716fd348SMartin Matuska }
177716fd348SMartin Matuska
178716fd348SMartin Matuska return (SA_OK);
179716fd348SMartin Matuska }
180716fd348SMartin Matuska
181e92ffd9bSMartin Matuska static int
nfs_process_exports(const char * exports,const char * mountpoint,boolean_t (* cbk)(void * userdata,char * line,boolean_t found_mountpoint),void * userdata)182e92ffd9bSMartin Matuska nfs_process_exports(const char *exports, const char *mountpoint,
183e92ffd9bSMartin Matuska boolean_t (*cbk)(void *userdata, char *line, boolean_t found_mountpoint),
184e92ffd9bSMartin Matuska void *userdata)
185e92ffd9bSMartin Matuska {
186e92ffd9bSMartin Matuska int error = SA_OK;
187e92ffd9bSMartin Matuska boolean_t cont = B_TRUE;
188e92ffd9bSMartin Matuska
189e92ffd9bSMartin Matuska FILE *oldfp = fopen(exports, "re");
190e92ffd9bSMartin Matuska if (oldfp != NULL) {
191716fd348SMartin Matuska boolean_t need_mp_free;
192716fd348SMartin Matuska char *mp;
193716fd348SMartin Matuska if ((error = nfs_escape_mountpoint(mountpoint,
194716fd348SMartin Matuska &mp, &need_mp_free)) != SA_OK) {
195716fd348SMartin Matuska (void) fclose(oldfp);
196716fd348SMartin Matuska return (error);
197716fd348SMartin Matuska }
198716fd348SMartin Matuska
199e92ffd9bSMartin Matuska char *buf = NULL, *sep;
200716fd348SMartin Matuska size_t buflen = 0, mplen = strlen(mp);
201e92ffd9bSMartin Matuska
202e92ffd9bSMartin Matuska while (cont && getline(&buf, &buflen, oldfp) != -1) {
203e92ffd9bSMartin Matuska if (buf[0] == '\n' || buf[0] == '#')
204e92ffd9bSMartin Matuska continue;
205e92ffd9bSMartin Matuska
206e92ffd9bSMartin Matuska cont = cbk(userdata, buf,
207e92ffd9bSMartin Matuska (sep = strpbrk(buf, "\t \n")) != NULL &&
208e92ffd9bSMartin Matuska sep - buf == mplen &&
209716fd348SMartin Matuska strncmp(buf, mp, mplen) == 0);
210e92ffd9bSMartin Matuska }
211e92ffd9bSMartin Matuska free(buf);
212716fd348SMartin Matuska if (need_mp_free)
213716fd348SMartin Matuska free(mp);
214e92ffd9bSMartin Matuska
215e92ffd9bSMartin Matuska if (ferror(oldfp) != 0)
216e92ffd9bSMartin Matuska error = ferror(oldfp);
217e92ffd9bSMartin Matuska
218e92ffd9bSMartin Matuska if (fclose(oldfp) != 0) {
219e92ffd9bSMartin Matuska fprintf(stderr, "Unable to close file %s: %s\n",
220fd45b686SMartin Matuska exports, zfs_strerror(errno));
221e92ffd9bSMartin Matuska error = error != SA_OK ? error : SA_SYSTEM_ERR;
222e92ffd9bSMartin Matuska }
223e92ffd9bSMartin Matuska }
224e92ffd9bSMartin Matuska
225e92ffd9bSMartin Matuska return (error);
226e92ffd9bSMartin Matuska }
227e92ffd9bSMartin Matuska
228e92ffd9bSMartin Matuska static boolean_t
nfs_copy_entries_cb(void * userdata,char * line,boolean_t found_mountpoint)229e92ffd9bSMartin Matuska nfs_copy_entries_cb(void *userdata, char *line, boolean_t found_mountpoint)
230e92ffd9bSMartin Matuska {
231e92ffd9bSMartin Matuska FILE *newfp = userdata;
232e92ffd9bSMartin Matuska if (!found_mountpoint)
233e92ffd9bSMartin Matuska fputs(line, newfp);
234e92ffd9bSMartin Matuska return (B_TRUE);
235e92ffd9bSMartin Matuska }
236e92ffd9bSMartin Matuska
237e92ffd9bSMartin Matuska /*
238e92ffd9bSMartin Matuska * Copy all entries from the exports file (if it exists) to newfp,
239e92ffd9bSMartin Matuska * omitting any entries for the specified mountpoint.
240e92ffd9bSMartin Matuska */
241e92ffd9bSMartin Matuska static int
nfs_copy_entries(FILE * newfp,const char * exports,const char * mountpoint)242e92ffd9bSMartin Matuska nfs_copy_entries(FILE *newfp, const char *exports, const char *mountpoint)
243e92ffd9bSMartin Matuska {
244e92ffd9bSMartin Matuska fputs(FILE_HEADER, newfp);
245e92ffd9bSMartin Matuska
246e92ffd9bSMartin Matuska int error = nfs_process_exports(
247e92ffd9bSMartin Matuska exports, mountpoint, nfs_copy_entries_cb, newfp);
248e92ffd9bSMartin Matuska
249e92ffd9bSMartin Matuska if (error == SA_OK && ferror(newfp) != 0)
250e92ffd9bSMartin Matuska error = ferror(newfp);
251e92ffd9bSMartin Matuska
252e92ffd9bSMartin Matuska return (error);
253e92ffd9bSMartin Matuska }
254e92ffd9bSMartin Matuska
2553ff01b23SMartin Matuska int
nfs_toggle_share(const char * lockfile,const char * exports,const char * expdir,sa_share_impl_t impl_share,int (* cbk)(sa_share_impl_t impl_share,FILE * tmpfile))25616038816SMartin Matuska nfs_toggle_share(const char *lockfile, const char *exports,
25716038816SMartin Matuska const char *expdir, sa_share_impl_t impl_share,
258e92ffd9bSMartin Matuska int(*cbk)(sa_share_impl_t impl_share, FILE *tmpfile))
25916038816SMartin Matuska {
260716fd348SMartin Matuska int error, nfs_lock_fd = -1;
261e92ffd9bSMartin Matuska struct tmpfile tmpf;
26216038816SMartin Matuska
263e92ffd9bSMartin Matuska if (!nfs_init_tmpfile(exports, expdir, &tmpf))
26416038816SMartin Matuska return (SA_SYSTEM_ERR);
26516038816SMartin Matuska
266716fd348SMartin Matuska error = nfs_exports_lock(lockfile, &nfs_lock_fd);
26716038816SMartin Matuska if (error != 0) {
268e92ffd9bSMartin Matuska nfs_abort_tmpfile(&tmpf);
26916038816SMartin Matuska return (error);
27016038816SMartin Matuska }
27116038816SMartin Matuska
272e92ffd9bSMartin Matuska error = nfs_copy_entries(tmpf.fp, exports, impl_share->sa_mountpoint);
27316038816SMartin Matuska if (error != SA_OK)
27416038816SMartin Matuska goto fullerr;
27516038816SMartin Matuska
276e92ffd9bSMartin Matuska error = cbk(impl_share, tmpf.fp);
27716038816SMartin Matuska if (error != SA_OK)
27816038816SMartin Matuska goto fullerr;
27916038816SMartin Matuska
280e92ffd9bSMartin Matuska error = nfs_fini_tmpfile(exports, &tmpf);
281716fd348SMartin Matuska nfs_exports_unlock(lockfile, &nfs_lock_fd);
28216038816SMartin Matuska return (error);
28316038816SMartin Matuska
28416038816SMartin Matuska fullerr:
285e92ffd9bSMartin Matuska nfs_abort_tmpfile(&tmpf);
286716fd348SMartin Matuska nfs_exports_unlock(lockfile, &nfs_lock_fd);
28716038816SMartin Matuska return (error);
28816038816SMartin Matuska }
289e92ffd9bSMartin Matuska
290c7046f76SMartin Matuska void
nfs_reset_shares(const char * lockfile,const char * exports)291c7046f76SMartin Matuska nfs_reset_shares(const char *lockfile, const char *exports)
292c7046f76SMartin Matuska {
293c7046f76SMartin Matuska int nfs_lock_fd = -1;
294c7046f76SMartin Matuska
295c7046f76SMartin Matuska if (nfs_exports_lock(lockfile, &nfs_lock_fd) == 0) {
296c7046f76SMartin Matuska (void) ! truncate(exports, 0);
297c7046f76SMartin Matuska nfs_exports_unlock(lockfile, &nfs_lock_fd);
298c7046f76SMartin Matuska }
299c7046f76SMartin Matuska }
300c7046f76SMartin Matuska
301e92ffd9bSMartin Matuska static boolean_t
nfs_is_shared_cb(void * userdata,char * line,boolean_t found_mountpoint)302e92ffd9bSMartin Matuska nfs_is_shared_cb(void *userdata, char *line, boolean_t found_mountpoint)
303e92ffd9bSMartin Matuska {
304e92ffd9bSMartin Matuska (void) line;
305e92ffd9bSMartin Matuska
306e92ffd9bSMartin Matuska boolean_t *found = userdata;
307e92ffd9bSMartin Matuska *found = found_mountpoint;
308e92ffd9bSMartin Matuska return (!found_mountpoint);
309e92ffd9bSMartin Matuska }
310e92ffd9bSMartin Matuska
311e92ffd9bSMartin Matuska boolean_t
nfs_is_shared_impl(const char * exports,sa_share_impl_t impl_share)312e92ffd9bSMartin Matuska nfs_is_shared_impl(const char *exports, sa_share_impl_t impl_share)
313e92ffd9bSMartin Matuska {
314e92ffd9bSMartin Matuska boolean_t found = B_FALSE;
315e92ffd9bSMartin Matuska nfs_process_exports(exports, impl_share->sa_mountpoint,
316e92ffd9bSMartin Matuska nfs_is_shared_cb, &found);
317e92ffd9bSMartin Matuska return (found);
318e92ffd9bSMartin Matuska }
319