116038816SMartin Matuska /* 216038816SMartin Matuska * CDDL HEADER START 316038816SMartin Matuska * 416038816SMartin Matuska * The contents of this file are subject to the terms of the 516038816SMartin Matuska * Common Development and Distribution License (the "License"). 616038816SMartin Matuska * You may not use this file except in compliance with the License. 716038816SMartin Matuska * 816038816SMartin Matuska * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9271171e0SMartin Matuska * or https://opensource.org/licenses/CDDL-1.0. 1016038816SMartin Matuska * See the License for the specific language governing permissions 1116038816SMartin Matuska * and limitations under the License. 1216038816SMartin Matuska * 1316038816SMartin Matuska * When distributing Covered Code, include this CDDL HEADER in each 1416038816SMartin Matuska * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 1516038816SMartin Matuska * If applicable, add the following below this CDDL HEADER, with the 1616038816SMartin Matuska * fields enclosed by brackets "[]" replaced with your own identifying 1716038816SMartin Matuska * information: Portions Copyright [yyyy] [name of copyright owner] 1816038816SMartin Matuska * 1916038816SMartin Matuska * CDDL HEADER END 2016038816SMartin Matuska */ 2116038816SMartin Matuska 2216038816SMartin Matuska 2316038816SMartin Matuska #include <sys/types.h> 2416038816SMartin Matuska #include <sys/stat.h> 2516038816SMartin Matuska #include <sys/file.h> 2616038816SMartin Matuska #include <fcntl.h> 27716fd348SMartin Matuska #include <ctype.h> 2816038816SMartin Matuska #include <stdio.h> 2916038816SMartin Matuska #include <errno.h> 3016038816SMartin Matuska #include <libshare.h> 31c7046f76SMartin Matuska #include <unistd.h> 3216038816SMartin Matuska #include "nfs.h" 3316038816SMartin Matuska 3416038816SMartin Matuska 3516038816SMartin Matuska /* 3616038816SMartin Matuska * nfs_exports_[lock|unlock] are used to guard against conconcurrent 3716038816SMartin Matuska * updates to the exports file. Each protocol is responsible for 3816038816SMartin Matuska * providing the necessary locking to ensure consistency. 3916038816SMartin Matuska */ 4016038816SMartin Matuska static int 41716fd348SMartin Matuska nfs_exports_lock(const char *name, int *nfs_lock_fd) 4216038816SMartin Matuska { 4316038816SMartin Matuska int err; 4416038816SMartin Matuska 45716fd348SMartin Matuska *nfs_lock_fd = open(name, O_RDWR | O_CREAT | O_CLOEXEC, 0600); 46716fd348SMartin Matuska if (*nfs_lock_fd == -1) { 4716038816SMartin Matuska err = errno; 4816038816SMartin Matuska fprintf(stderr, "failed to lock %s: %s\n", name, strerror(err)); 4916038816SMartin Matuska return (err); 5016038816SMartin Matuska } 5116038816SMartin Matuska 52716fd348SMartin Matuska while ((err = flock(*nfs_lock_fd, LOCK_EX)) != 0 && errno == EINTR) 53e92ffd9bSMartin Matuska ; 54e92ffd9bSMartin Matuska if (err != 0) { 5516038816SMartin Matuska err = errno; 5616038816SMartin Matuska fprintf(stderr, "failed to lock %s: %s\n", name, strerror(err)); 57716fd348SMartin Matuska (void) close(*nfs_lock_fd); 58716fd348SMartin Matuska *nfs_lock_fd = -1; 5916038816SMartin Matuska return (err); 6016038816SMartin Matuska } 6116038816SMartin Matuska 6216038816SMartin Matuska return (0); 6316038816SMartin Matuska } 6416038816SMartin Matuska 6516038816SMartin Matuska static void 66716fd348SMartin Matuska nfs_exports_unlock(const char *name, int *nfs_lock_fd) 6716038816SMartin Matuska { 68716fd348SMartin Matuska verify(*nfs_lock_fd > 0); 6916038816SMartin Matuska 70716fd348SMartin Matuska if (flock(*nfs_lock_fd, LOCK_UN) != 0) 7116038816SMartin Matuska fprintf(stderr, "failed to unlock %s: %s\n", 7216038816SMartin Matuska name, strerror(errno)); 7316038816SMartin Matuska 74716fd348SMartin Matuska (void) close(*nfs_lock_fd); 75716fd348SMartin Matuska *nfs_lock_fd = -1; 7616038816SMartin Matuska } 7716038816SMartin Matuska 78e92ffd9bSMartin Matuska struct tmpfile { 79e92ffd9bSMartin Matuska /* 80e92ffd9bSMartin Matuska * This only needs to be as wide as ZFS_EXPORTS_FILE and mktemp suffix, 81e92ffd9bSMartin Matuska * 64 is more than enough. 82e92ffd9bSMartin Matuska */ 83e92ffd9bSMartin Matuska char name[64]; 84e92ffd9bSMartin Matuska FILE *fp; 85e92ffd9bSMartin Matuska }; 8616038816SMartin Matuska 87e92ffd9bSMartin Matuska static boolean_t 88e92ffd9bSMartin Matuska nfs_init_tmpfile(const char *prefix, const char *mdir, struct tmpfile *tmpf) 89e92ffd9bSMartin Matuska { 9016038816SMartin Matuska if (mdir != NULL && 91e92ffd9bSMartin Matuska mkdir(mdir, 0755) < 0 && 92e92ffd9bSMartin Matuska errno != EEXIST) { 9316038816SMartin Matuska fprintf(stderr, "failed to create %s: %s\n", 94*bb2d13b6SMartin Matuska // cppcheck-suppress uninitvar 9516038816SMartin Matuska mdir, strerror(errno)); 96e92ffd9bSMartin Matuska return (B_FALSE); 9716038816SMartin Matuska } 9816038816SMartin Matuska 99be181ee2SMartin Matuska strlcpy(tmpf->name, prefix, sizeof (tmpf->name)); 100be181ee2SMartin Matuska strlcat(tmpf->name, ".XXXXXXXX", sizeof (tmpf->name) - strlen(prefix)); 10116038816SMartin Matuska 102e92ffd9bSMartin Matuska int fd = mkostemp(tmpf->name, O_CLOEXEC); 10316038816SMartin Matuska if (fd == -1) { 10416038816SMartin Matuska fprintf(stderr, "Unable to create temporary file: %s", 10516038816SMartin Matuska strerror(errno)); 106e92ffd9bSMartin Matuska return (B_FALSE); 10716038816SMartin Matuska } 108e92ffd9bSMartin Matuska 109e92ffd9bSMartin Matuska tmpf->fp = fdopen(fd, "w+"); 110e92ffd9bSMartin Matuska if (tmpf->fp == NULL) { 111e92ffd9bSMartin Matuska fprintf(stderr, "Unable to reopen temporary file: %s", 112e92ffd9bSMartin Matuska strerror(errno)); 11316038816SMartin Matuska close(fd); 114e92ffd9bSMartin Matuska return (B_FALSE); 115e92ffd9bSMartin Matuska } 116e92ffd9bSMartin Matuska 117e92ffd9bSMartin Matuska return (B_TRUE); 118e92ffd9bSMartin Matuska } 119e92ffd9bSMartin Matuska 120e92ffd9bSMartin Matuska static void 121e92ffd9bSMartin Matuska nfs_abort_tmpfile(struct tmpfile *tmpf) 122e92ffd9bSMartin Matuska { 123e92ffd9bSMartin Matuska unlink(tmpf->name); 124e92ffd9bSMartin Matuska fclose(tmpf->fp); 12516038816SMartin Matuska } 12616038816SMartin Matuska 12716038816SMartin Matuska static int 128e92ffd9bSMartin Matuska nfs_fini_tmpfile(const char *exports, struct tmpfile *tmpf) 12916038816SMartin Matuska { 130e92ffd9bSMartin Matuska if (fflush(tmpf->fp) != 0) { 131e92ffd9bSMartin Matuska fprintf(stderr, "Failed to write to temporary file: %s\n", 13216038816SMartin Matuska strerror(errno)); 133e92ffd9bSMartin Matuska nfs_abort_tmpfile(tmpf); 13416038816SMartin Matuska return (SA_SYSTEM_ERR); 13516038816SMartin Matuska } 136e92ffd9bSMartin Matuska 137e92ffd9bSMartin Matuska if (rename(tmpf->name, exports) == -1) { 138e92ffd9bSMartin Matuska fprintf(stderr, "Unable to rename %s -> %s: %s\n", 139e92ffd9bSMartin Matuska tmpf->name, exports, strerror(errno)); 140e92ffd9bSMartin Matuska nfs_abort_tmpfile(tmpf); 141e92ffd9bSMartin Matuska return (SA_SYSTEM_ERR); 142e92ffd9bSMartin Matuska } 143e92ffd9bSMartin Matuska 144e92ffd9bSMartin Matuska (void) fchmod(fileno(tmpf->fp), 0644); 145e92ffd9bSMartin Matuska fclose(tmpf->fp); 14616038816SMartin Matuska return (SA_OK); 14716038816SMartin Matuska } 14816038816SMartin Matuska 149716fd348SMartin Matuska int 150716fd348SMartin Matuska nfs_escape_mountpoint(const char *mp, char **out, boolean_t *need_free) 151716fd348SMartin Matuska { 152716fd348SMartin Matuska if (strpbrk(mp, "\t\n\v\f\r \\") == NULL) { 153716fd348SMartin Matuska *out = (char *)mp; 154716fd348SMartin Matuska *need_free = B_FALSE; 155716fd348SMartin Matuska return (SA_OK); 156716fd348SMartin Matuska } else { 157716fd348SMartin Matuska size_t len = strlen(mp); 158716fd348SMartin Matuska *out = malloc(len * 4 + 1); 159716fd348SMartin Matuska if (!*out) 160716fd348SMartin Matuska return (SA_NO_MEMORY); 161716fd348SMartin Matuska *need_free = B_TRUE; 162716fd348SMartin Matuska 163716fd348SMartin Matuska char *oc = *out; 164716fd348SMartin Matuska for (const char *c = mp; c < mp + len; ++c) 165716fd348SMartin Matuska if (memchr("\t\n\v\f\r \\", *c, 166716fd348SMartin Matuska strlen("\t\n\v\f\r \\"))) { 167716fd348SMartin Matuska sprintf(oc, "\\%03hho", *c); 168716fd348SMartin Matuska oc += 4; 169716fd348SMartin Matuska } else 170716fd348SMartin Matuska *oc++ = *c; 171716fd348SMartin Matuska *oc = '\0'; 172716fd348SMartin Matuska } 173716fd348SMartin Matuska 174716fd348SMartin Matuska return (SA_OK); 175716fd348SMartin Matuska } 176716fd348SMartin Matuska 177e92ffd9bSMartin Matuska static int 178e92ffd9bSMartin Matuska nfs_process_exports(const char *exports, const char *mountpoint, 179e92ffd9bSMartin Matuska boolean_t (*cbk)(void *userdata, char *line, boolean_t found_mountpoint), 180e92ffd9bSMartin Matuska void *userdata) 181e92ffd9bSMartin Matuska { 182e92ffd9bSMartin Matuska int error = SA_OK; 183e92ffd9bSMartin Matuska boolean_t cont = B_TRUE; 184e92ffd9bSMartin Matuska 185e92ffd9bSMartin Matuska FILE *oldfp = fopen(exports, "re"); 186e92ffd9bSMartin Matuska if (oldfp != NULL) { 187716fd348SMartin Matuska boolean_t need_mp_free; 188716fd348SMartin Matuska char *mp; 189716fd348SMartin Matuska if ((error = nfs_escape_mountpoint(mountpoint, 190716fd348SMartin Matuska &mp, &need_mp_free)) != SA_OK) { 191716fd348SMartin Matuska (void) fclose(oldfp); 192716fd348SMartin Matuska return (error); 193716fd348SMartin Matuska } 194716fd348SMartin Matuska 195e92ffd9bSMartin Matuska char *buf = NULL, *sep; 196716fd348SMartin Matuska size_t buflen = 0, mplen = strlen(mp); 197e92ffd9bSMartin Matuska 198e92ffd9bSMartin Matuska while (cont && getline(&buf, &buflen, oldfp) != -1) { 199e92ffd9bSMartin Matuska if (buf[0] == '\n' || buf[0] == '#') 200e92ffd9bSMartin Matuska continue; 201e92ffd9bSMartin Matuska 202e92ffd9bSMartin Matuska cont = cbk(userdata, buf, 203e92ffd9bSMartin Matuska (sep = strpbrk(buf, "\t \n")) != NULL && 204e92ffd9bSMartin Matuska sep - buf == mplen && 205716fd348SMartin Matuska strncmp(buf, mp, mplen) == 0); 206e92ffd9bSMartin Matuska } 207e92ffd9bSMartin Matuska free(buf); 208716fd348SMartin Matuska if (need_mp_free) 209716fd348SMartin Matuska free(mp); 210e92ffd9bSMartin Matuska 211e92ffd9bSMartin Matuska if (ferror(oldfp) != 0) 212e92ffd9bSMartin Matuska error = ferror(oldfp); 213e92ffd9bSMartin Matuska 214e92ffd9bSMartin Matuska if (fclose(oldfp) != 0) { 215e92ffd9bSMartin Matuska fprintf(stderr, "Unable to close file %s: %s\n", 216e92ffd9bSMartin Matuska exports, strerror(errno)); 217e92ffd9bSMartin Matuska error = error != SA_OK ? error : SA_SYSTEM_ERR; 218e92ffd9bSMartin Matuska } 219e92ffd9bSMartin Matuska } 220e92ffd9bSMartin Matuska 221e92ffd9bSMartin Matuska return (error); 222e92ffd9bSMartin Matuska } 223e92ffd9bSMartin Matuska 224e92ffd9bSMartin Matuska static boolean_t 225e92ffd9bSMartin Matuska nfs_copy_entries_cb(void *userdata, char *line, boolean_t found_mountpoint) 226e92ffd9bSMartin Matuska { 227e92ffd9bSMartin Matuska FILE *newfp = userdata; 228e92ffd9bSMartin Matuska if (!found_mountpoint) 229e92ffd9bSMartin Matuska fputs(line, newfp); 230e92ffd9bSMartin Matuska return (B_TRUE); 231e92ffd9bSMartin Matuska } 232e92ffd9bSMartin Matuska 233e92ffd9bSMartin Matuska /* 234e92ffd9bSMartin Matuska * Copy all entries from the exports file (if it exists) to newfp, 235e92ffd9bSMartin Matuska * omitting any entries for the specified mountpoint. 236e92ffd9bSMartin Matuska */ 237e92ffd9bSMartin Matuska static int 238e92ffd9bSMartin Matuska nfs_copy_entries(FILE *newfp, const char *exports, const char *mountpoint) 239e92ffd9bSMartin Matuska { 240e92ffd9bSMartin Matuska fputs(FILE_HEADER, newfp); 241e92ffd9bSMartin Matuska 242e92ffd9bSMartin Matuska int error = nfs_process_exports( 243e92ffd9bSMartin Matuska exports, mountpoint, nfs_copy_entries_cb, newfp); 244e92ffd9bSMartin Matuska 245e92ffd9bSMartin Matuska if (error == SA_OK && ferror(newfp) != 0) 246e92ffd9bSMartin Matuska error = ferror(newfp); 247e92ffd9bSMartin Matuska 248e92ffd9bSMartin Matuska return (error); 249e92ffd9bSMartin Matuska } 250e92ffd9bSMartin Matuska 2513ff01b23SMartin Matuska int 25216038816SMartin Matuska nfs_toggle_share(const char *lockfile, const char *exports, 25316038816SMartin Matuska const char *expdir, sa_share_impl_t impl_share, 254e92ffd9bSMartin Matuska int(*cbk)(sa_share_impl_t impl_share, FILE *tmpfile)) 25516038816SMartin Matuska { 256716fd348SMartin Matuska int error, nfs_lock_fd = -1; 257e92ffd9bSMartin Matuska struct tmpfile tmpf; 25816038816SMartin Matuska 259e92ffd9bSMartin Matuska if (!nfs_init_tmpfile(exports, expdir, &tmpf)) 26016038816SMartin Matuska return (SA_SYSTEM_ERR); 26116038816SMartin Matuska 262716fd348SMartin Matuska error = nfs_exports_lock(lockfile, &nfs_lock_fd); 26316038816SMartin Matuska if (error != 0) { 264e92ffd9bSMartin Matuska nfs_abort_tmpfile(&tmpf); 26516038816SMartin Matuska return (error); 26616038816SMartin Matuska } 26716038816SMartin Matuska 268e92ffd9bSMartin Matuska error = nfs_copy_entries(tmpf.fp, exports, impl_share->sa_mountpoint); 26916038816SMartin Matuska if (error != SA_OK) 27016038816SMartin Matuska goto fullerr; 27116038816SMartin Matuska 272e92ffd9bSMartin Matuska error = cbk(impl_share, tmpf.fp); 27316038816SMartin Matuska if (error != SA_OK) 27416038816SMartin Matuska goto fullerr; 27516038816SMartin Matuska 276e92ffd9bSMartin Matuska error = nfs_fini_tmpfile(exports, &tmpf); 277716fd348SMartin Matuska nfs_exports_unlock(lockfile, &nfs_lock_fd); 27816038816SMartin Matuska return (error); 27916038816SMartin Matuska 28016038816SMartin Matuska fullerr: 281e92ffd9bSMartin Matuska nfs_abort_tmpfile(&tmpf); 282716fd348SMartin Matuska nfs_exports_unlock(lockfile, &nfs_lock_fd); 28316038816SMartin Matuska return (error); 28416038816SMartin Matuska } 285e92ffd9bSMartin Matuska 286c7046f76SMartin Matuska void 287c7046f76SMartin Matuska nfs_reset_shares(const char *lockfile, const char *exports) 288c7046f76SMartin Matuska { 289c7046f76SMartin Matuska int nfs_lock_fd = -1; 290c7046f76SMartin Matuska 291c7046f76SMartin Matuska if (nfs_exports_lock(lockfile, &nfs_lock_fd) == 0) { 292c7046f76SMartin Matuska (void) ! truncate(exports, 0); 293c7046f76SMartin Matuska nfs_exports_unlock(lockfile, &nfs_lock_fd); 294c7046f76SMartin Matuska } 295c7046f76SMartin Matuska } 296c7046f76SMartin Matuska 297e92ffd9bSMartin Matuska static boolean_t 298e92ffd9bSMartin Matuska nfs_is_shared_cb(void *userdata, char *line, boolean_t found_mountpoint) 299e92ffd9bSMartin Matuska { 300e92ffd9bSMartin Matuska (void) line; 301e92ffd9bSMartin Matuska 302e92ffd9bSMartin Matuska boolean_t *found = userdata; 303e92ffd9bSMartin Matuska *found = found_mountpoint; 304e92ffd9bSMartin Matuska return (!found_mountpoint); 305e92ffd9bSMartin Matuska } 306e92ffd9bSMartin Matuska 307e92ffd9bSMartin Matuska boolean_t 308e92ffd9bSMartin Matuska nfs_is_shared_impl(const char *exports, sa_share_impl_t impl_share) 309e92ffd9bSMartin Matuska { 310e92ffd9bSMartin Matuska boolean_t found = B_FALSE; 311e92ffd9bSMartin Matuska nfs_process_exports(exports, impl_share->sa_mountpoint, 312e92ffd9bSMartin Matuska nfs_is_shared_cb, &found); 313e92ffd9bSMartin Matuska return (found); 314e92ffd9bSMartin Matuska } 315