usr.sbin/mountd/mountd.c

8a16b7a1SPedro F. Giffuni/*-
8a16b7a1SPedro F. Giffuni * SPDX-License-Identifier: BSD-3-Clause
8a16b7a1SPedro F. Giffuni *
8fae3551SRodney W. Grimes * Copyright (c) 1989, 1993
8fae3551SRodney W. Grimes *	The Regents of the University of California.  All rights reserved.
8fae3551SRodney W. Grimes *
8fae3551SRodney W. Grimes * This code is derived from software contributed to Berkeley by
8fae3551SRodney W. Grimes * Herb Hasler and Rick Macklem at The University of Guelph.
8fae3551SRodney W. Grimes *
8fae3551SRodney W. Grimes * Redistribution and use in source and binary forms, with or without
8fae3551SRodney W. Grimes * modification, are permitted provided that the following conditions
8fae3551SRodney W. Grimes * are met:
8fae3551SRodney W. Grimes * 1. Redistributions of source code must retain the above copyright
8fae3551SRodney W. Grimes *    notice, this list of conditions and the following disclaimer.
8fae3551SRodney W. Grimes * 2. Redistributions in binary form must reproduce the above copyright
8fae3551SRodney W. Grimes *    notice, this list of conditions and the following disclaimer in the
8fae3551SRodney W. Grimes *    documentation and/or other materials provided with the distribution.
fbbd9655SWarner Losh * 3. Neither the name of the University nor the names of its contributors
8fae3551SRodney W. Grimes *    may be used to endorse or promote products derived from this software
8fae3551SRodney W. Grimes *    without specific prior written permission.
8fae3551SRodney W. Grimes *
8fae3551SRodney W. Grimes * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
8fae3551SRodney W. Grimes * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
8fae3551SRodney W. Grimes * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
8fae3551SRodney W. Grimes * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
8fae3551SRodney W. Grimes * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
8fae3551SRodney W. Grimes * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
8fae3551SRodney W. Grimes * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
8fae3551SRodney W. Grimes * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
8fae3551SRodney W. Grimes * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
8fae3551SRodney W. Grimes * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
8fae3551SRodney W. Grimes * SUCH DAMAGE.
8fae3551SRodney W. Grimes */
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#ifndef lint
74853402SPhilippe Charnierstatic const char copyright[] =
8fae3551SRodney W. Grimes"@(#) Copyright (c) 1989, 1993\n\
8fae3551SRodney W. Grimes	The Regents of the University of California.  All rights reserved.\n";
d599144dSGarrett Wollman#endif /*not lint*/
8fae3551SRodney W. Grimes
74853402SPhilippe Charnier#if 0
75201fa4SPhilippe Charnier#ifndef lint
74853402SPhilippe Charnierstatic char sccsid[] = "@(#)mountd.c	8.15 (Berkeley) 5/1/95";
d599144dSGarrett Wollman#endif /*not lint*/
75201fa4SPhilippe Charnier#endif
75201fa4SPhilippe Charnier
75201fa4SPhilippe Charnier#include <sys/cdefs.h>
75201fa4SPhilippe Charnier__FBSDID("$FreeBSD$");
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#include <sys/param.h>
3e2d36ffSRick Macklem#include <sys/conf.h>
8360efbdSAlfred Perlstein#include <sys/fcntl.h>
46a6b5c4SRick Macklem#include <sys/fnv_hash.h>
91ca1a91SIan Dowse#include <sys/linker.h>
91ca1a91SIan Dowse#include <sys/module.h>
bcc1d071SRick Macklem#include <sys/mount.h>
c9ac0f71SEmmanuel Vadot#include <sys/queue.h>
bcc1d071SRick Macklem#include <sys/stat.h>
bcc1d071SRick Macklem#include <sys/sysctl.h>
bcc1d071SRick Macklem#include <sys/syslog.h>
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#include <rpc/rpc.h>
bcb53b16SMartin Blapp#include <rpc/rpc_com.h>
8fae3551SRodney W. Grimes#include <rpc/pmap_clnt.h>
8360efbdSAlfred Perlstein#include <rpc/pmap_prot.h>
8360efbdSAlfred Perlstein#include <rpcsvc/mount.h>
a62dc406SDoug Rabson#include <nfs/nfsproto.h>
bcc1d071SRick Macklem#include <nfs/nfssvc.h>
91196234SPeter Wemm#include <nfsserver/nfs.h>
8fae3551SRodney W. Grimes
bcc1d071SRick Macklem#include <fs/nfs/nfsport.h>
bcc1d071SRick Macklem
8fae3551SRodney W. Grimes#include <arpa/inet.h>
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#include <ctype.h>
74853402SPhilippe Charnier#include <err.h>
8fae3551SRodney W. Grimes#include <errno.h>
8fae3551SRodney W. Grimes#include <grp.h>
a032b226SPawel Jakub Dawidek#include <libutil.h>
89fdc4e1SMike Barcroft#include <limits.h>
8fae3551SRodney W. Grimes#include <netdb.h>
8fae3551SRodney W. Grimes#include <pwd.h>
8fae3551SRodney W. Grimes#include <signal.h>
8fae3551SRodney W. Grimes#include <stdio.h>
8fae3551SRodney W. Grimes#include <stdlib.h>
8fae3551SRodney W. Grimes#include <string.h>
8fae3551SRodney W. Grimes#include <unistd.h>
8fae3551SRodney W. Grimes#include "pathnames.h"
6a09faf2SCraig Rodrigues#include "mntopts.h"
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#ifdef DEBUG
8fae3551SRodney W. Grimes#include <stdarg.h>
8fae3551SRodney W. Grimes#endif
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Structures for keeping the mount list and export list
8fae3551SRodney W. Grimes */
8fae3551SRodney W. Grimesstruct mountlist {
0775314bSDoug Rabson	char	ml_host[MNTNAMLEN+1];
0775314bSDoug Rabson	char	ml_dirp[MNTPATHLEN+1];
1da3e8b0SEmmanuel Vadot
1da3e8b0SEmmanuel Vadot	SLIST_ENTRY(mountlist)	next;
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimesstruct dirlist {
8fae3551SRodney W. Grimes	struct dirlist	*dp_left;
8fae3551SRodney W. Grimes	struct dirlist	*dp_right;
8fae3551SRodney W. Grimes	int		dp_flag;
8fae3551SRodney W. Grimes	struct hostlist	*dp_hosts;	/* List of hosts this dir exported to */
380a3fcdSEmmanuel Vadot	char		*dp_dirp;
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes/* dp_flag bits */
8fae3551SRodney W. Grimes#define	DP_DEFSET	0x1
a62dc406SDoug Rabson#define DP_HOSTSET	0x2
8fae3551SRodney W. Grimes
cc5efddeSRick Macklem/*
cc5efddeSRick Macklem * maproot/mapall credentials.
*2ffad162SRick Macklem * cr_smallgrps can be used for a group list up to SMALLNGROUPS in size.
*2ffad162SRick Macklem * Larger group lists are malloc'd/free'd.
cc5efddeSRick Macklem */
*2ffad162SRick Macklem#define	SMALLNGROUPS	32
cc5efddeSRick Macklemstruct expcred {
cc5efddeSRick Macklem	uid_t		cr_uid;
cc5efddeSRick Macklem	int		cr_ngroups;
*2ffad162SRick Macklem	gid_t		cr_smallgrps[SMALLNGROUPS];
*2ffad162SRick Macklem	gid_t		*cr_groups;
cc5efddeSRick Macklem};
cc5efddeSRick Macklem
8fae3551SRodney W. Grimesstruct exportlist {
8fae3551SRodney W. Grimes	struct dirlist	*ex_dirl;
8fae3551SRodney W. Grimes	struct dirlist	*ex_defdir;
711d44eeSRick Macklem	struct grouplist *ex_grphead;
8fae3551SRodney W. Grimes	int		ex_flag;
8fae3551SRodney W. Grimes	fsid_t		ex_fs;
8fae3551SRodney W. Grimes	char		*ex_fsdir;
cb3923e0SDoug Rabson	char		*ex_indexfile;
cc5efddeSRick Macklem	struct expcred	ex_defanon;
cc5efddeSRick Macklem	uint64_t	ex_defexflags;
a9148abdSDoug Rabson	int		ex_numsecflavors;
a9148abdSDoug Rabson	int		ex_secflavors[MAXSECFLAVORS];
c3f86a25SRick Macklem	int		ex_defnumsecflavors;
c3f86a25SRick Macklem	int		ex_defsecflavors[MAXSECFLAVORS];
c9ac0f71SEmmanuel Vadot
c9ac0f71SEmmanuel Vadot	SLIST_ENTRY(exportlist) entries;
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes/* ex_flag bits */
8fae3551SRodney W. Grimes#define	EX_LINKED	0x1
0f0869bcSRick Macklem#define	EX_DONE		0x2
0f0869bcSRick Macklem#define	EX_DEFSET	0x4
0f0869bcSRick Macklem#define	EX_PUBLICFH	0x8
8fae3551SRodney W. Grimes
1a9a992fSRick MacklemSLIST_HEAD(exportlisthead, exportlist);
1a9a992fSRick Macklem
8fae3551SRodney W. Grimesstruct netmsk {
8360efbdSAlfred Perlstein	struct sockaddr_storage nt_net;
60caaee2SIan Dowse	struct sockaddr_storage nt_mask;
8fae3551SRodney W. Grimes	char		*nt_name;
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimesunion grouptypes {
8360efbdSAlfred Perlstein	struct addrinfo *gt_addrinfo;
8fae3551SRodney W. Grimes	struct netmsk	gt_net;
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimesstruct grouplist {
8fae3551SRodney W. Grimes	int gr_type;
8fae3551SRodney W. Grimes	union grouptypes gr_ptr;
8fae3551SRodney W. Grimes	struct grouplist *gr_next;
cc5efddeSRick Macklem	struct expcred gr_anon;
cc5efddeSRick Macklem	uint64_t gr_exflags;
0f0869bcSRick Macklem	int gr_flag;
c3f86a25SRick Macklem	int gr_numsecflavors;
c3f86a25SRick Macklem	int gr_secflavors[MAXSECFLAVORS];
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes/* Group types */
8fae3551SRodney W. Grimes#define	GT_NULL		0x0
8fae3551SRodney W. Grimes#define	GT_HOST		0x1
8fae3551SRodney W. Grimes#define	GT_NET		0x2
6d359f31SIan Dowse#define	GT_DEFAULT	0x3
8b5a6d67SBill Paul#define GT_IGNORE	0x5
8fae3551SRodney W. Grimes
0f0869bcSRick Macklem/* Group flags */
0f0869bcSRick Macklem#define	GR_FND		0x1
0f0869bcSRick Macklem
8fae3551SRodney W. Grimesstruct hostlist {
a62dc406SDoug Rabson	int		 ht_flag;	/* Uses DP_xx bits */
8fae3551SRodney W. Grimes	struct grouplist *ht_grp;
8fae3551SRodney W. Grimes	struct hostlist	 *ht_next;
8fae3551SRodney W. Grimes};
8fae3551SRodney W. Grimes
a62dc406SDoug Rabsonstruct fhreturn {
a62dc406SDoug Rabson	int	fhr_flag;
a62dc406SDoug Rabson	int	fhr_vers;
a62dc406SDoug Rabson	nfsfh_t	fhr_fh;
a9148abdSDoug Rabson	int	fhr_numsecflavors;
a9148abdSDoug Rabson	int	*fhr_secflavors;
a62dc406SDoug Rabson};
a62dc406SDoug Rabson
8fb6ad5dSRick Macklem#define	GETPORT_MAXTRY	20	/* Max tries to get a port # */
8fb6ad5dSRick Macklem
7674d489SRick Macklem/*
7674d489SRick Macklem * How long to delay a reload of exports when there are RPC request(s)
7674d489SRick Macklem * to process, in usec.  Must be less than 1second.
7674d489SRick Macklem */
7674d489SRick Macklem#define	RELOADDELAY	250000
7674d489SRick Macklem
8fae3551SRodney W. Grimes/* Global defs */
19c46d8cSEdward Tomasz Napieralastatic char	*add_expdir(struct dirlist **, char *, int);
19c46d8cSEdward Tomasz Napieralastatic void	add_dlist(struct dirlist **, struct dirlist *,
0f0869bcSRick Macklem		    struct grouplist *, int, struct exportlist *,
cc5efddeSRick Macklem		    struct expcred *, uint64_t);
19c46d8cSEdward Tomasz Napieralastatic void	add_mlist(char *, char *);
19c46d8cSEdward Tomasz Napieralastatic int	check_dirpath(char *);
19c46d8cSEdward Tomasz Napieralastatic int	check_options(struct dirlist *);
19c46d8cSEdward Tomasz Napieralastatic int	checkmask(struct sockaddr *sa);
19c46d8cSEdward Tomasz Napieralastatic int	chk_host(struct dirlist *, struct sockaddr *, int *, int *,
19c46d8cSEdward Tomasz Napierala		    int *, int **);
b875c2e9SJosh Paetzelstatic char	*strsep_quote(char **stringp, const char *delim);
8fb6ad5dSRick Macklemstatic int	create_service(struct netconfig *nconf);
8fb6ad5dSRick Macklemstatic void	complete_service(struct netconfig *nconf, char *port_str);
8fb6ad5dSRick Macklemstatic void	clearout_service(void);
19c46d8cSEdward Tomasz Napieralastatic void	del_mlist(char *hostp, char *dirp);
19c46d8cSEdward Tomasz Napieralastatic struct dirlist	*dirp_search(struct dirlist *, char *);
0f0869bcSRick Macklemstatic int	do_export_mount(struct exportlist *, struct statfs *);
cc5efddeSRick Macklemstatic int	do_mount(struct exportlist *, struct grouplist *, uint64_t,
cc5efddeSRick Macklem		    struct expcred *, char *, int, struct statfs *, int, int *);
19c46d8cSEdward Tomasz Napieralastatic int	do_opt(char **, char **, struct exportlist *,
cc5efddeSRick Macklem		    struct grouplist *, int *, uint64_t *, struct expcred *);
1a9a992fSRick Macklemstatic struct exportlist	*ex_search(fsid_t *, struct exportlisthead *);
19c46d8cSEdward Tomasz Napieralastatic struct exportlist	*get_exp(void);
19c46d8cSEdward Tomasz Napieralastatic void	free_dir(struct dirlist *);
19c46d8cSEdward Tomasz Napieralastatic void	free_exp(struct exportlist *);
19c46d8cSEdward Tomasz Napieralastatic void	free_grp(struct grouplist *);
19c46d8cSEdward Tomasz Napieralastatic void	free_host(struct hostlist *);
0f0869bcSRick Macklemstatic void	free_v4rootexp(void);
0f0869bcSRick Macklemstatic void	get_exportlist_one(int);
0f0869bcSRick Macklemstatic void	get_exportlist(int);
1a9a992fSRick Macklemstatic void	insert_exports(struct exportlist *, struct exportlisthead *);
1a9a992fSRick Macklemstatic void	free_exports(struct exportlisthead *);
0f0869bcSRick Macklemstatic void	read_exportfile(int);
0f0869bcSRick Macklemstatic int	compare_nmount_exportlist(struct iovec *, int, char *);
0f0869bcSRick Macklemstatic int	compare_export(struct exportlist *, struct exportlist *);
cc5efddeSRick Macklemstatic int	compare_cred(struct expcred *, struct expcred *);
0f0869bcSRick Macklemstatic int	compare_secflavor(int *, int *, int);
3e08dc74SRick Macklemstatic void	delete_export(struct iovec *, int, struct statfs *, char *);
19c46d8cSEdward Tomasz Napieralastatic int	get_host(char *, struct grouplist *, struct grouplist *);
19c46d8cSEdward Tomasz Napieralastatic struct hostlist *get_ht(void);
19c46d8cSEdward Tomasz Napieralastatic int	get_line(void);
19c46d8cSEdward Tomasz Napieralastatic void	get_mountlist(void);
19c46d8cSEdward Tomasz Napieralastatic int	get_net(char *, struct netmsk *, int);
354fce28SConrad Meyerstatic void	getexp_err(struct exportlist *, struct grouplist *, const char *);
19c46d8cSEdward Tomasz Napieralastatic struct grouplist	*get_grp(void);
19c46d8cSEdward Tomasz Napieralastatic void	hang_dirp(struct dirlist *, struct grouplist *,
cc5efddeSRick Macklem		    struct exportlist *, int, struct expcred *, uint64_t);
19c46d8cSEdward Tomasz Napieralastatic void	huphandler(int sig);
19c46d8cSEdward Tomasz Napieralastatic int	makemask(struct sockaddr_storage *ssp, int bitlen);
19c46d8cSEdward Tomasz Napieralastatic void	mntsrv(struct svc_req *, SVCXPRT *);
19c46d8cSEdward Tomasz Napieralastatic void	nextfield(char **, char **);
19c46d8cSEdward Tomasz Napieralastatic void	out_of_mem(void);
cc5efddeSRick Macklemstatic void	parsecred(char *, struct expcred *);
19c46d8cSEdward Tomasz Napieralastatic int	parsesec(char *, struct exportlist *);
19c46d8cSEdward Tomasz Napieralastatic int	put_exlist(struct dirlist *, XDR *, struct dirlist *,
19c46d8cSEdward Tomasz Napierala		    int *, int);
19c46d8cSEdward Tomasz Napieralastatic void	*sa_rawaddr(struct sockaddr *sa, int *nbytes);
19c46d8cSEdward Tomasz Napieralastatic int	sacmp(struct sockaddr *sa1, struct sockaddr *sa2,
60caaee2SIan Dowse		    struct sockaddr *samask);
19c46d8cSEdward Tomasz Napieralastatic int	scan_tree(struct dirlist *, struct sockaddr *);
85429990SWarner Loshstatic void	usage(void);
19c46d8cSEdward Tomasz Napieralastatic int	xdr_dir(XDR *, char *);
19c46d8cSEdward Tomasz Napieralastatic int	xdr_explist(XDR *, caddr_t);
19c46d8cSEdward Tomasz Napieralastatic int	xdr_explist_brief(XDR *, caddr_t);
19c46d8cSEdward Tomasz Napieralastatic int	xdr_explist_common(XDR *, caddr_t, int);
19c46d8cSEdward Tomasz Napieralastatic int	xdr_fhs(XDR *, caddr_t);
19c46d8cSEdward Tomasz Napieralastatic int	xdr_mlist(XDR *, caddr_t);
19c46d8cSEdward Tomasz Napieralastatic void	terminate(int);
cc5efddeSRick Macklemstatic void	cp_cred(struct expcred *, struct expcred *);
8fae3551SRodney W. Grimes
46a6b5c4SRick Macklem#define	EXPHASH(f)	(fnv_32_buf((f), sizeof(fsid_t), 0) % exphashsize)
46a6b5c4SRick Macklemstatic struct exportlisthead *exphead = NULL;
0f0869bcSRick Macklemstatic struct exportlisthead *oldexphead = NULL;
46a6b5c4SRick Macklemstatic int exphashsize = 0;
1a9a992fSRick Macklemstatic SLIST_HEAD(, mountlist) mlhead = SLIST_HEAD_INITIALIZER(&mlhead);
19c46d8cSEdward Tomasz Napieralastatic char *exnames_default[2] = { _PATH_EXPORTS, NULL };
19c46d8cSEdward Tomasz Napieralastatic char **exnames;
19c46d8cSEdward Tomasz Napieralastatic char **hosts = NULL;
19c46d8cSEdward Tomasz Napieralastatic int force_v2 = 0;
19c46d8cSEdward Tomasz Napieralastatic int resvport_only = 1;
19c46d8cSEdward Tomasz Napieralastatic int nhosts = 0;
19c46d8cSEdward Tomasz Napieralastatic int dir_only = 1;
19c46d8cSEdward Tomasz Napieralastatic int dolog = 0;
19c46d8cSEdward Tomasz Napieralastatic int got_sighup = 0;
19c46d8cSEdward Tomasz Napieralastatic int xcreated = 0;
d11e3645SMatteo Riondato
19c46d8cSEdward Tomasz Napieralastatic char *svcport_str = NULL;
8fb6ad5dSRick Macklemstatic int mallocd_svcport = 0;
8fb6ad5dSRick Macklemstatic int *sock_fd;
8fb6ad5dSRick Macklemstatic int sock_fdcnt;
8fb6ad5dSRick Macklemstatic int sock_fdpos;
c548eb5cSRick Macklemstatic int suspend_nfsd = 0;
8360efbdSAlfred Perlstein
19c46d8cSEdward Tomasz Napieralastatic int opt_flags;
8360efbdSAlfred Perlsteinstatic int have_v6 = 1;
8360efbdSAlfred Perlstein
19c46d8cSEdward Tomasz Napieralastatic int v4root_phase = 0;
19c46d8cSEdward Tomasz Napieralastatic char v4root_dirpath[PATH_MAX + 1];
0f0869bcSRick Macklemstatic struct exportlist *v4root_ep = NULL;
19c46d8cSEdward Tomasz Napieralastatic int has_publicfh = 0;
0f0869bcSRick Macklemstatic int has_set_publicfh = 0;
bcc1d071SRick Macklem
19c46d8cSEdward Tomasz Napieralastatic struct pidfh *pfh = NULL;
60caaee2SIan Dowse/* Bits for opt_flags above */
8fae3551SRodney W. Grimes#define	OP_MAPROOT	0x01
8fae3551SRodney W. Grimes#define	OP_MAPALL	0x02
91196234SPeter Wemm/* 0x4 free */
8fae3551SRodney W. Grimes#define	OP_MASK		0x08
8fae3551SRodney W. Grimes#define	OP_NET		0x10
8fae3551SRodney W. Grimes#define	OP_ALLDIRS	0x40
60caaee2SIan Dowse#define	OP_HAVEMASK	0x80	/* A mask was specified or inferred. */
288fa14aSJoerg Wunsch#define	OP_QUIET	0x100
8360efbdSAlfred Perlstein#define OP_MASKLEN	0x200
a9148abdSDoug Rabson#define OP_SEC		0x400
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#ifdef DEBUG
19c46d8cSEdward Tomasz Napieralastatic int debug = 1;
19c46d8cSEdward Tomasz Napieralastatic void	SYSLOG(int, const char *, ...) __printflike(2, 3);
8fae3551SRodney W. Grimes#define syslog SYSLOG
8fae3551SRodney W. Grimes#else
19c46d8cSEdward Tomasz Napieralastatic int debug = 0;
8fae3551SRodney W. Grimes#endif
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
0f0869bcSRick Macklem * The LOGDEBUG() syslog() calls are always compiled into the daemon.
0f0869bcSRick Macklem * To enable them, create a file at _PATH_MOUNTDDEBUG. This file can be empty.
0f0869bcSRick Macklem * To disable the logging, just delete the file at _PATH_MOUNTDDEBUG.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic int logdebug = 0;
0f0869bcSRick Macklem#define	LOGDEBUG(format, ...)						\
0f0869bcSRick Macklem    (logdebug ? syslog(LOG_DEBUG, format, ## __VA_ARGS__) : 0)
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
b875c2e9SJosh Paetzel * Similar to strsep(), but it allows for quoted strings
b875c2e9SJosh Paetzel * and escaped characters.
b875c2e9SJosh Paetzel *
b875c2e9SJosh Paetzel * It returns the string (or NULL, if *stringp is NULL),
b875c2e9SJosh Paetzel * which is a de-quoted version of the string if necessary.
b875c2e9SJosh Paetzel *
b875c2e9SJosh Paetzel * It modifies *stringp in place.
b875c2e9SJosh Paetzel */
b875c2e9SJosh Paetzelstatic char *
b875c2e9SJosh Paetzelstrsep_quote(char **stringp, const char *delim)
b875c2e9SJosh Paetzel{
b875c2e9SJosh Paetzel	char *srcptr, *dstptr, *retval;
b875c2e9SJosh Paetzel	char quot = 0;
b875c2e9SJosh Paetzel
b875c2e9SJosh Paetzel	if (stringp == NULL || *stringp == NULL)
b875c2e9SJosh Paetzel		return (NULL);
b875c2e9SJosh Paetzel
b875c2e9SJosh Paetzel	srcptr = dstptr = retval = *stringp;
b875c2e9SJosh Paetzel
b875c2e9SJosh Paetzel	while (*srcptr) {
b875c2e9SJosh Paetzel		/*
b875c2e9SJosh Paetzel		 * We're looking for several edge cases here.
b875c2e9SJosh Paetzel		 * First:  if we're in quote state (quot != 0),
b875c2e9SJosh Paetzel		 * then we ignore the delim characters, but otherwise
b875c2e9SJosh Paetzel		 * process as normal, unless it is the quote character.
b875c2e9SJosh Paetzel		 * Second:  if the current character is a backslash,
b875c2e9SJosh Paetzel		 * we take the next character as-is, without checking
b875c2e9SJosh Paetzel		 * for delim, quote, or backslash.  Exception:  if the
b875c2e9SJosh Paetzel		 * next character is a NUL, that's the end of the string.
b875c2e9SJosh Paetzel		 * Third:  if the character is a quote character, we toggle
b875c2e9SJosh Paetzel		 * quote state.
b875c2e9SJosh Paetzel		 * Otherwise:  check the current character for NUL, or
b875c2e9SJosh Paetzel		 * being in delim, and end the string if either is true.
b875c2e9SJosh Paetzel		 */
b875c2e9SJosh Paetzel		if (*srcptr == '\\') {
b875c2e9SJosh Paetzel			srcptr++;
b875c2e9SJosh Paetzel			/*
b875c2e9SJosh Paetzel			 * The edge case here is if the next character
b875c2e9SJosh Paetzel			 * is NUL, we want to stop processing.  But if
b875c2e9SJosh Paetzel			 * it's not NUL, then we simply want to copy it.
b875c2e9SJosh Paetzel			 */
b875c2e9SJosh Paetzel			if (*srcptr) {
b875c2e9SJosh Paetzel				*dstptr++ = *srcptr++;
b875c2e9SJosh Paetzel			}
b875c2e9SJosh Paetzel			continue;
b875c2e9SJosh Paetzel		}
b875c2e9SJosh Paetzel		if (quot == 0 && (*srcptr == '\'' || *srcptr == '"')) {
b875c2e9SJosh Paetzel			quot = *srcptr++;
b875c2e9SJosh Paetzel			continue;
b875c2e9SJosh Paetzel		}
b875c2e9SJosh Paetzel		if (quot && *srcptr == quot) {
b875c2e9SJosh Paetzel			/* End of the quoted part */
b875c2e9SJosh Paetzel			quot = 0;
b875c2e9SJosh Paetzel			srcptr++;
b875c2e9SJosh Paetzel			continue;
b875c2e9SJosh Paetzel		}
b875c2e9SJosh Paetzel		if (!quot && strchr(delim, *srcptr))
b875c2e9SJosh Paetzel			break;
b875c2e9SJosh Paetzel		*dstptr++ = *srcptr++;
b875c2e9SJosh Paetzel	}
b875c2e9SJosh Paetzel
b875c2e9SJosh Paetzel	*stringp = (*srcptr == '\0') ? NULL : srcptr + 1;
4ae6e084SAlexander Motin	*dstptr = 0; /* Terminate the string */
b875c2e9SJosh Paetzel	return (retval);
b875c2e9SJosh Paetzel}
b875c2e9SJosh Paetzel
b875c2e9SJosh Paetzel/*
8fae3551SRodney W. Grimes * Mountd server for NFS mount protocol as described in:
8fae3551SRodney W. Grimes * NFS: Network File System Protocol Specification, RFC1094, Appendix A
8fae3551SRodney W. Grimes * The optional arguments are the exports file name
8fae3551SRodney W. Grimes * default: _PATH_EXPORTS
8fae3551SRodney W. Grimes * and "-n" to allow nonroot mount.
8fae3551SRodney W. Grimes */
8fae3551SRodney W. Grimesint
a7a7d96cSPhilippe Charniermain(int argc, char **argv)
8fae3551SRodney W. Grimes{
69d65572SIan Dowse	fd_set readfds;
d11e3645SMatteo Riondato	struct netconfig *nconf;
d11e3645SMatteo Riondato	char *endptr, **hosts_bak;
d11e3645SMatteo Riondato	void *nc_handle;
a032b226SPawel Jakub Dawidek	pid_t otherpid;
d11e3645SMatteo Riondato	in_port_t svcport;
d11e3645SMatteo Riondato	int c, k, s;
bcb53b16SMartin Blapp	int maxrec = RPC_MAXDATASIZE;
8fb6ad5dSRick Macklem	int attempt_cnt, port_len, port_pos, ret;
8fb6ad5dSRick Macklem	char **port_list;
7674d489SRick Macklem	uint64_t curtime, nexttime;
7674d489SRick Macklem	struct timeval tv;
7674d489SRick Macklem	struct timespec tp;
7674d489SRick Macklem	sigset_t sighup_mask;
8360efbdSAlfred Perlstein
01709abfSIan Dowse	/* Check that another mountd isn't already running. */
8b28aef2SPawel Jakub Dawidek	pfh = pidfile_open(_PATH_MOUNTDPID, 0600, &otherpid);
a032b226SPawel Jakub Dawidek	if (pfh == NULL) {
a032b226SPawel Jakub Dawidek		if (errno == EEXIST)
a032b226SPawel Jakub Dawidek			errx(1, "mountd already running, pid: %d.", otherpid);
a032b226SPawel Jakub Dawidek		warn("cannot open or create pidfile");
a032b226SPawel Jakub Dawidek	}
8360efbdSAlfred Perlstein
8360efbdSAlfred Perlstein	s = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);
8360efbdSAlfred Perlstein	if (s < 0)
8360efbdSAlfred Perlstein		have_v6 = 0;
8360efbdSAlfred Perlstein	else
8360efbdSAlfred Perlstein		close(s);
8fae3551SRodney W. Grimes
79b86807SEdward Tomasz Napierala	while ((c = getopt(argc, argv, "2deh:lnp:rS")) != -1)
8fae3551SRodney W. Grimes		switch (c) {
2a66cfc5SDoug Rabson		case '2':
2a66cfc5SDoug Rabson			force_v2 = 1;
2a66cfc5SDoug Rabson			break;
2179ae1eSRick Macklem		case 'e':
2a85df8cSRick Macklem			/* now a no-op, since this is the default */
bcc1d071SRick Macklem			break;
a62dc406SDoug Rabson		case 'n':
a62dc406SDoug Rabson			resvport_only = 0;
a62dc406SDoug Rabson			break;
a62dc406SDoug Rabson		case 'r':
a62dc406SDoug Rabson			dir_only = 0;
a62dc406SDoug Rabson			break;
6444ef3bSPoul-Henning Kamp		case 'd':
6444ef3bSPoul-Henning Kamp			debug = debug ? 0 : 1;
6444ef3bSPoul-Henning Kamp			break;
f51631d7SGuido van Rooij		case 'l':
c903443aSPeter Wemm			dolog = 1;
f51631d7SGuido van Rooij			break;
c203da27SBruce M Simpson		case 'p':
c203da27SBruce M Simpson			endptr = NULL;
c203da27SBruce M Simpson			svcport = (in_port_t)strtoul(optarg, &endptr, 10);
c203da27SBruce M Simpson			if (endptr == NULL || *endptr != '\0' ||
c203da27SBruce M Simpson			    svcport == 0 || svcport >= IPPORT_MAX)
c203da27SBruce M Simpson				usage();
d11e3645SMatteo Riondato			svcport_str = strdup(optarg);
d11e3645SMatteo Riondato			break;
d11e3645SMatteo Riondato		case 'h':
d11e3645SMatteo Riondato			++nhosts;
d11e3645SMatteo Riondato			hosts_bak = hosts;
d11e3645SMatteo Riondato			hosts_bak = realloc(hosts, nhosts * sizeof(char *));
d11e3645SMatteo Riondato			if (hosts_bak == NULL) {
d11e3645SMatteo Riondato				if (hosts != NULL) {
d11e3645SMatteo Riondato					for (k = 0; k < nhosts; k++)
d11e3645SMatteo Riondato						free(hosts[k]);
d11e3645SMatteo Riondato					free(hosts);
d11e3645SMatteo Riondato					out_of_mem();
d11e3645SMatteo Riondato				}
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato			hosts = hosts_bak;
d11e3645SMatteo Riondato			hosts[nhosts - 1] = strdup(optarg);
d11e3645SMatteo Riondato			if (hosts[nhosts - 1] == NULL) {
d11e3645SMatteo Riondato				for (k = 0; k < (nhosts - 1); k++)
d11e3645SMatteo Riondato					free(hosts[k]);
d11e3645SMatteo Riondato				free(hosts);
d11e3645SMatteo Riondato				out_of_mem();
d11e3645SMatteo Riondato			}
c203da27SBruce M Simpson			break;
c548eb5cSRick Macklem		case 'S':
c548eb5cSRick Macklem			suspend_nfsd = 1;
c548eb5cSRick Macklem			break;
8fae3551SRodney W. Grimes		default:
74853402SPhilippe Charnier			usage();
80c7cc1cSPedro F. Giffuni		}
bcc1d071SRick Macklem
bcc1d071SRick Macklem	if (modfind("nfsd") < 0) {
bcc1d071SRick Macklem		/* Not present in kernel, try loading it */
bcc1d071SRick Macklem		if (kldload("nfsd") < 0 || modfind("nfsd") < 0)
bcc1d071SRick Macklem			errx(1, "NFS server is not available");
bcc1d071SRick Macklem	}
bcc1d071SRick Macklem
8fae3551SRodney W. Grimes	argc -= optind;
8fae3551SRodney W. Grimes	argv += optind;
96968c22SPawel Jakub Dawidek	if (argc > 0)
96968c22SPawel Jakub Dawidek		exnames = argv;
96968c22SPawel Jakub Dawidek	else
96968c22SPawel Jakub Dawidek		exnames = exnames_default;
8fae3551SRodney W. Grimes	openlog("mountd", LOG_PID, LOG_DAEMON);
8fae3551SRodney W. Grimes	if (debug)
74853402SPhilippe Charnier		warnx("getting export list");
0f0869bcSRick Macklem	get_exportlist(0);
8fae3551SRodney W. Grimes	if (debug)
74853402SPhilippe Charnier		warnx("getting mount list");
8fae3551SRodney W. Grimes	get_mountlist();
8fae3551SRodney W. Grimes	if (debug)
74853402SPhilippe Charnier		warnx("here we go");
8fae3551SRodney W. Grimes	if (debug == 0) {
8fae3551SRodney W. Grimes		daemon(0, 0);
8fae3551SRodney W. Grimes		signal(SIGINT, SIG_IGN);
8fae3551SRodney W. Grimes		signal(SIGQUIT, SIG_IGN);
8fae3551SRodney W. Grimes	}
69d65572SIan Dowse	signal(SIGHUP, huphandler);
8360efbdSAlfred Perlstein	signal(SIGTERM, terminate);
09fc9dc6SCraig Rodrigues	signal(SIGPIPE, SIG_IGN);
a032b226SPawel Jakub Dawidek
a032b226SPawel Jakub Dawidek	pidfile_write(pfh);
a032b226SPawel Jakub Dawidek
0775314bSDoug Rabson	rpcb_unset(MOUNTPROG, MOUNTVERS, NULL);
0775314bSDoug Rabson	rpcb_unset(MOUNTPROG, MOUNTVERS3, NULL);
bcb53b16SMartin Blapp	rpc_control(RPC_SVC_CONNMAXREC_SET, &maxrec);
bcb53b16SMartin Blapp
c6e5e158SGuido van Rooij	if (!resvport_only) {
5ebee88dSRick Macklem		if (sysctlbyname("vfs.nfsd.nfs_privport", NULL, NULL,
4a0785aaSPeter Wemm		    &resvport_only, sizeof(resvport_only)) != 0 &&
4a0785aaSPeter Wemm		    errno != ENOENT) {
394da4c1SGuido van Rooij			syslog(LOG_ERR, "sysctl: %m");
394da4c1SGuido van Rooij			exit(1);
394da4c1SGuido van Rooij		}
c6e5e158SGuido van Rooij	}
c203da27SBruce M Simpson
d11e3645SMatteo Riondato	/*
d11e3645SMatteo Riondato	 * If no hosts were specified, add a wildcard entry to bind to
d11e3645SMatteo Riondato	 * INADDR_ANY. Otherwise make sure 127.0.0.1 and ::1 are added to the
d11e3645SMatteo Riondato	 * list.
d11e3645SMatteo Riondato	 */
d11e3645SMatteo Riondato	if (nhosts == 0) {
c9e1c304SUlrich Spörlein		hosts = malloc(sizeof(char *));
d11e3645SMatteo Riondato		if (hosts == NULL)
d11e3645SMatteo Riondato			out_of_mem();
d11e3645SMatteo Riondato		hosts[0] = "*";
d11e3645SMatteo Riondato		nhosts = 1;
d11e3645SMatteo Riondato	} else {
d11e3645SMatteo Riondato		hosts_bak = hosts;
d11e3645SMatteo Riondato		if (have_v6) {
d11e3645SMatteo Riondato			hosts_bak = realloc(hosts, (nhosts + 2) *
d11e3645SMatteo Riondato			    sizeof(char *));
d11e3645SMatteo Riondato			if (hosts_bak == NULL) {
d11e3645SMatteo Riondato				for (k = 0; k < nhosts; k++)
d11e3645SMatteo Riondato					free(hosts[k]);
d11e3645SMatteo Riondato		    		free(hosts);
d11e3645SMatteo Riondato		    		out_of_mem();
c203da27SBruce M Simpson			} else
d11e3645SMatteo Riondato				hosts = hosts_bak;
d11e3645SMatteo Riondato			nhosts += 2;
d11e3645SMatteo Riondato			hosts[nhosts - 2] = "::1";
d11e3645SMatteo Riondato		} else {
d11e3645SMatteo Riondato			hosts_bak = realloc(hosts, (nhosts + 1) * sizeof(char *));
d11e3645SMatteo Riondato			if (hosts_bak == NULL) {
d11e3645SMatteo Riondato				for (k = 0; k < nhosts; k++)
d11e3645SMatteo Riondato					free(hosts[k]);
d11e3645SMatteo Riondato				free(hosts);
d11e3645SMatteo Riondato				out_of_mem();
d11e3645SMatteo Riondato			} else {
d11e3645SMatteo Riondato				nhosts += 1;
d11e3645SMatteo Riondato				hosts = hosts_bak;
8fae3551SRodney W. Grimes			}
d11e3645SMatteo Riondato		}
8360efbdSAlfred Perlstein
d11e3645SMatteo Riondato		hosts[nhosts - 1] = "127.0.0.1";
8360efbdSAlfred Perlstein	}
8360efbdSAlfred Perlstein
8fb6ad5dSRick Macklem	attempt_cnt = 1;
8fb6ad5dSRick Macklem	sock_fdcnt = 0;
8fb6ad5dSRick Macklem	sock_fd = NULL;
8fb6ad5dSRick Macklem	port_list = NULL;
8fb6ad5dSRick Macklem	port_len = 0;
d11e3645SMatteo Riondato	nc_handle = setnetconfig();
d11e3645SMatteo Riondato	while ((nconf = getnetconfig(nc_handle))) {
d11e3645SMatteo Riondato		if (nconf->nc_flag & NC_VISIBLE) {
d11e3645SMatteo Riondato			if (have_v6 == 0 && strcmp(nconf->nc_protofmly,
d11e3645SMatteo Riondato			    "inet6") == 0) {
d11e3645SMatteo Riondato				/* DO NOTHING */
8fb6ad5dSRick Macklem			} else {
8fb6ad5dSRick Macklem				ret = create_service(nconf);
8fb6ad5dSRick Macklem				if (ret == 1)
8fb6ad5dSRick Macklem					/* Ignore this call */
8fb6ad5dSRick Macklem					continue;
8fb6ad5dSRick Macklem				if (ret < 0) {
8fb6ad5dSRick Macklem					/*
8fb6ad5dSRick Macklem					 * Failed to bind port, so close off
8fb6ad5dSRick Macklem					 * all sockets created and try again
8fb6ad5dSRick Macklem					 * if the port# was dynamically
8fb6ad5dSRick Macklem					 * assigned via bind(2).
8fb6ad5dSRick Macklem					 */
8fb6ad5dSRick Macklem					clearout_service();
8fb6ad5dSRick Macklem					if (mallocd_svcport != 0 &&
8fb6ad5dSRick Macklem					    attempt_cnt < GETPORT_MAXTRY) {
8fb6ad5dSRick Macklem						free(svcport_str);
8fb6ad5dSRick Macklem						svcport_str = NULL;
8fb6ad5dSRick Macklem						mallocd_svcport = 0;
8fb6ad5dSRick Macklem					} else {
8fb6ad5dSRick Macklem						errno = EADDRINUSE;
8fb6ad5dSRick Macklem						syslog(LOG_ERR,
8fb6ad5dSRick Macklem						    "bindresvport_sa: %m");
8fb6ad5dSRick Macklem						exit(1);
8fb6ad5dSRick Macklem					}
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem					/* Start over at the first service. */
8fb6ad5dSRick Macklem					free(sock_fd);
8fb6ad5dSRick Macklem					sock_fdcnt = 0;
8fb6ad5dSRick Macklem					sock_fd = NULL;
8fb6ad5dSRick Macklem					nc_handle = setnetconfig();
8fb6ad5dSRick Macklem					attempt_cnt++;
8fb6ad5dSRick Macklem				} else if (mallocd_svcport != 0 &&
8fb6ad5dSRick Macklem				    attempt_cnt == GETPORT_MAXTRY) {
8fb6ad5dSRick Macklem					/*
8fb6ad5dSRick Macklem					 * For the last attempt, allow
8fb6ad5dSRick Macklem					 * different port #s for each nconf
8fb6ad5dSRick Macklem					 * by saving the svcport_str and
8fb6ad5dSRick Macklem					 * setting it back to NULL.
8fb6ad5dSRick Macklem					 */
8fb6ad5dSRick Macklem					port_list = realloc(port_list,
8fb6ad5dSRick Macklem					    (port_len + 1) * sizeof(char *));
8fb6ad5dSRick Macklem					if (port_list == NULL)
8fb6ad5dSRick Macklem						out_of_mem();
8fb6ad5dSRick Macklem					port_list[port_len++] = svcport_str;
8fb6ad5dSRick Macklem					svcport_str = NULL;
8fb6ad5dSRick Macklem					mallocd_svcport = 0;
8fb6ad5dSRick Macklem				}
8fb6ad5dSRick Macklem			}
8fb6ad5dSRick Macklem		}
8fb6ad5dSRick Macklem	}
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem	/*
8fb6ad5dSRick Macklem	 * Successfully bound the ports, so call complete_service() to
8fb6ad5dSRick Macklem	 * do the rest of the setup on the service(s).
8fb6ad5dSRick Macklem	 */
8fb6ad5dSRick Macklem	sock_fdpos = 0;
8fb6ad5dSRick Macklem	port_pos = 0;
8fb6ad5dSRick Macklem	nc_handle = setnetconfig();
8fb6ad5dSRick Macklem	while ((nconf = getnetconfig(nc_handle))) {
8fb6ad5dSRick Macklem		if (nconf->nc_flag & NC_VISIBLE) {
8fb6ad5dSRick Macklem			if (have_v6 == 0 && strcmp(nconf->nc_protofmly,
8fb6ad5dSRick Macklem			    "inet6") == 0) {
8fb6ad5dSRick Macklem				/* DO NOTHING */
8fb6ad5dSRick Macklem			} else if (port_list != NULL) {
8fb6ad5dSRick Macklem				if (port_pos >= port_len) {
8fb6ad5dSRick Macklem					syslog(LOG_ERR, "too many port#s");
8fb6ad5dSRick Macklem					exit(1);
8fb6ad5dSRick Macklem				}
8fb6ad5dSRick Macklem				complete_service(nconf, port_list[port_pos++]);
c203da27SBruce M Simpson			} else
8fb6ad5dSRick Macklem				complete_service(nconf, svcport_str);
8360efbdSAlfred Perlstein		}
d11e3645SMatteo Riondato	}
d11e3645SMatteo Riondato	endnetconfig(nc_handle);
8fb6ad5dSRick Macklem	free(sock_fd);
8fb6ad5dSRick Macklem	if (port_list != NULL) {
8fb6ad5dSRick Macklem		for (port_pos = 0; port_pos < port_len; port_pos++)
8fb6ad5dSRick Macklem			free(port_list[port_pos]);
8fb6ad5dSRick Macklem		free(port_list);
8fb6ad5dSRick Macklem	}
8360efbdSAlfred Perlstein
8360efbdSAlfred Perlstein	if (xcreated == 0) {
8360efbdSAlfred Perlstein		syslog(LOG_ERR, "could not create any services");
2a66cfc5SDoug Rabson		exit(1);
2a66cfc5SDoug Rabson	}
69d65572SIan Dowse
69d65572SIan Dowse	/* Expand svc_run() here so that we can call get_exportlist(). */
7674d489SRick Macklem	curtime = nexttime = 0;
7674d489SRick Macklem	sigemptyset(&sighup_mask);
7674d489SRick Macklem	sigaddset(&sighup_mask, SIGHUP);
69d65572SIan Dowse	for (;;) {
7674d489SRick Macklem		clock_gettime(CLOCK_MONOTONIC, &tp);
7674d489SRick Macklem		curtime = tp.tv_sec;
7674d489SRick Macklem		curtime = curtime * 1000000 + tp.tv_nsec / 1000;
7674d489SRick Macklem		sigprocmask(SIG_BLOCK, &sighup_mask, NULL);
7674d489SRick Macklem		if (got_sighup && curtime >= nexttime) {
69d65572SIan Dowse			got_sighup = 0;
7674d489SRick Macklem			sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
7674d489SRick Macklem			get_exportlist(1);
7674d489SRick Macklem			clock_gettime(CLOCK_MONOTONIC, &tp);
7674d489SRick Macklem			nexttime = tp.tv_sec;
7674d489SRick Macklem			nexttime = nexttime * 1000000 + tp.tv_nsec / 1000 +
7674d489SRick Macklem			    RELOADDELAY;
7674d489SRick Macklem		} else
7674d489SRick Macklem			sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
7674d489SRick Macklem
7674d489SRick Macklem		/*
7674d489SRick Macklem		 * If a reload is pending, poll for received request(s),
7674d489SRick Macklem		 * otherwise set a RELOADDELAY timeout, since a SIGHUP
7674d489SRick Macklem		 * could be processed between the got_sighup test and
7674d489SRick Macklem		 * the select() system call.
7674d489SRick Macklem		 */
7674d489SRick Macklem		tv.tv_sec = 0;
7674d489SRick Macklem		if (got_sighup)
7674d489SRick Macklem			tv.tv_usec = 0;
7674d489SRick Macklem		else
7674d489SRick Macklem			tv.tv_usec = RELOADDELAY;
69d65572SIan Dowse		readfds = svc_fdset;
7674d489SRick Macklem		switch (select(svc_maxfd + 1, &readfds, NULL, NULL, &tv)) {
69d65572SIan Dowse		case -1:
7674d489SRick Macklem			if (errno == EINTR) {
7674d489SRick Macklem				/* Allow a reload now. */
7674d489SRick Macklem				nexttime = 0;
69d65572SIan Dowse				continue;
7674d489SRick Macklem			}
69d65572SIan Dowse			syslog(LOG_ERR, "mountd died: select: %m");
74853402SPhilippe Charnier			exit(1);
69d65572SIan Dowse		case 0:
7674d489SRick Macklem			/* Allow a reload now. */
7674d489SRick Macklem			nexttime = 0;
69d65572SIan Dowse			continue;
69d65572SIan Dowse		default:
69d65572SIan Dowse			svc_getreqset(&readfds);
69d65572SIan Dowse		}
69d65572SIan Dowse	}
74853402SPhilippe Charnier}
74853402SPhilippe Charnier
d11e3645SMatteo Riondato/*
d11e3645SMatteo Riondato * This routine creates and binds sockets on the appropriate
8fb6ad5dSRick Macklem * addresses. It gets called one time for each transport.
8fb6ad5dSRick Macklem * It returns 0 upon success, 1 for ingore the call and -1 to indicate
8fb6ad5dSRick Macklem * bind failed with EADDRINUSE.
8fb6ad5dSRick Macklem * Any file descriptors that have been created are stored in sock_fd and
8fb6ad5dSRick Macklem * the total count of them is maintained in sock_fdcnt.
d11e3645SMatteo Riondato */
8fb6ad5dSRick Macklemstatic int
d11e3645SMatteo Riondatocreate_service(struct netconfig *nconf)
d11e3645SMatteo Riondato{
d11e3645SMatteo Riondato	struct addrinfo hints, *res = NULL;
d11e3645SMatteo Riondato	struct sockaddr_in *sin;
d11e3645SMatteo Riondato	struct sockaddr_in6 *sin6;
d11e3645SMatteo Riondato	struct __rpc_sockinfo si;
d11e3645SMatteo Riondato	int aicode;
d11e3645SMatteo Riondato	int fd;
d11e3645SMatteo Riondato	int nhostsbak;
d11e3645SMatteo Riondato	int one = 1;
d11e3645SMatteo Riondato	int r;
d11e3645SMatteo Riondato	u_int32_t host_addr[4];  /* IPv4 or IPv6 */
8fb6ad5dSRick Macklem	int mallocd_res;
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato	if ((nconf->nc_semantics != NC_TPI_CLTS) &&
d11e3645SMatteo Riondato	    (nconf->nc_semantics != NC_TPI_COTS) &&
d11e3645SMatteo Riondato	    (nconf->nc_semantics != NC_TPI_COTS_ORD))
8fb6ad5dSRick Macklem		return (1);	/* not my type */
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato	/*
d11e3645SMatteo Riondato	 * XXX - using RPC library internal functions.
d11e3645SMatteo Riondato	 */
d11e3645SMatteo Riondato	if (!__rpc_nconf2sockinfo(nconf, &si)) {
d11e3645SMatteo Riondato		syslog(LOG_ERR, "cannot get information for %s",
d11e3645SMatteo Riondato		    nconf->nc_netid);
8fb6ad5dSRick Macklem		return (1);
d11e3645SMatteo Riondato	}
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato	/* Get mountd's address on this transport */
d11e3645SMatteo Riondato	memset(&hints, 0, sizeof hints);
d11e3645SMatteo Riondato	hints.ai_family = si.si_af;
d11e3645SMatteo Riondato	hints.ai_socktype = si.si_socktype;
d11e3645SMatteo Riondato	hints.ai_protocol = si.si_proto;
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato	/*
d11e3645SMatteo Riondato	 * Bind to specific IPs if asked to
d11e3645SMatteo Riondato	 */
d11e3645SMatteo Riondato	nhostsbak = nhosts;
d11e3645SMatteo Riondato	while (nhostsbak > 0) {
d11e3645SMatteo Riondato		--nhostsbak;
8fb6ad5dSRick Macklem		sock_fd = realloc(sock_fd, (sock_fdcnt + 1) * sizeof(int));
8fb6ad5dSRick Macklem		if (sock_fd == NULL)
8fb6ad5dSRick Macklem			out_of_mem();
8fb6ad5dSRick Macklem		sock_fd[sock_fdcnt++] = -1;	/* Set invalid for now. */
8fb6ad5dSRick Macklem		mallocd_res = 0;
8fb6ad5dSRick Macklem
9745de4cSRyan Stone		hints.ai_flags = AI_PASSIVE;
9745de4cSRyan Stone
d11e3645SMatteo Riondato		/*
d11e3645SMatteo Riondato		 * XXX - using RPC library internal functions.
d11e3645SMatteo Riondato		 */
d11e3645SMatteo Riondato		if ((fd = __rpc_nconf2fd(nconf)) < 0) {
d11e3645SMatteo Riondato			int non_fatal = 0;
a5752d55SKevin Lo	    		if (errno == EAFNOSUPPORT &&
d11e3645SMatteo Riondato			    nconf->nc_semantics != NC_TPI_CLTS)
d11e3645SMatteo Riondato				non_fatal = 1;
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato			syslog(non_fatal ? LOG_DEBUG : LOG_ERR,
d11e3645SMatteo Riondato			    "cannot create socket for %s", nconf->nc_netid);
8fb6ad5dSRick Macklem			if (non_fatal != 0)
8fb6ad5dSRick Macklem				continue;
8fb6ad5dSRick Macklem			exit(1);
d11e3645SMatteo Riondato		}
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato		switch (hints.ai_family) {
d11e3645SMatteo Riondato		case AF_INET:
d11e3645SMatteo Riondato			if (inet_pton(AF_INET, hosts[nhostsbak],
d11e3645SMatteo Riondato			    host_addr) == 1) {
8fb6ad5dSRick Macklem				hints.ai_flags |= AI_NUMERICHOST;
d11e3645SMatteo Riondato			} else {
d11e3645SMatteo Riondato				/*
d11e3645SMatteo Riondato				 * Skip if we have an AF_INET6 address.
d11e3645SMatteo Riondato				 */
d11e3645SMatteo Riondato				if (inet_pton(AF_INET6, hosts[nhostsbak],
d11e3645SMatteo Riondato				    host_addr) == 1) {
d11e3645SMatteo Riondato					close(fd);
d11e3645SMatteo Riondato					continue;
d11e3645SMatteo Riondato				}
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato			break;
d11e3645SMatteo Riondato		case AF_INET6:
d11e3645SMatteo Riondato			if (inet_pton(AF_INET6, hosts[nhostsbak],
d11e3645SMatteo Riondato			    host_addr) == 1) {
8fb6ad5dSRick Macklem				hints.ai_flags |= AI_NUMERICHOST;
d11e3645SMatteo Riondato			} else {
d11e3645SMatteo Riondato				/*
d11e3645SMatteo Riondato				 * Skip if we have an AF_INET address.
d11e3645SMatteo Riondato				 */
d11e3645SMatteo Riondato				if (inet_pton(AF_INET, hosts[nhostsbak],
d11e3645SMatteo Riondato				    host_addr) == 1) {
d11e3645SMatteo Riondato					close(fd);
d11e3645SMatteo Riondato					continue;
d11e3645SMatteo Riondato				}
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato			/*
d11e3645SMatteo Riondato			 * We're doing host-based access checks here, so don't
d11e3645SMatteo Riondato			 * allow v4-in-v6 to confuse things. The kernel will
d11e3645SMatteo Riondato			 * disable it by default on NFS sockets too.
d11e3645SMatteo Riondato			 */
d11e3645SMatteo Riondato			if (setsockopt(fd, IPPROTO_IPV6, IPV6_V6ONLY, &one,
d11e3645SMatteo Riondato			    sizeof one) < 0) {
d11e3645SMatteo Riondato				syslog(LOG_ERR,
d11e3645SMatteo Riondato				    "can't disable v4-in-v6 on IPv6 socket");
d11e3645SMatteo Riondato				exit(1);
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato			break;
d11e3645SMatteo Riondato		default:
d11e3645SMatteo Riondato			break;
d11e3645SMatteo Riondato		}
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato		/*
d11e3645SMatteo Riondato		 * If no hosts were specified, just bind to INADDR_ANY
d11e3645SMatteo Riondato		 */
d11e3645SMatteo Riondato		if (strcmp("*", hosts[nhostsbak]) == 0) {
d11e3645SMatteo Riondato			if (svcport_str == NULL) {
d11e3645SMatteo Riondato				res = malloc(sizeof(struct addrinfo));
d11e3645SMatteo Riondato				if (res == NULL)
d11e3645SMatteo Riondato					out_of_mem();
8fb6ad5dSRick Macklem				mallocd_res = 1;
d11e3645SMatteo Riondato				res->ai_flags = hints.ai_flags;
d11e3645SMatteo Riondato				res->ai_family = hints.ai_family;
d11e3645SMatteo Riondato				res->ai_protocol = hints.ai_protocol;
d11e3645SMatteo Riondato				switch (res->ai_family) {
d11e3645SMatteo Riondato				case AF_INET:
d11e3645SMatteo Riondato					sin = malloc(sizeof(struct sockaddr_in));
d11e3645SMatteo Riondato					if (sin == NULL)
d11e3645SMatteo Riondato						out_of_mem();
d11e3645SMatteo Riondato					sin->sin_family = AF_INET;
d11e3645SMatteo Riondato					sin->sin_port = htons(0);
d11e3645SMatteo Riondato					sin->sin_addr.s_addr = htonl(INADDR_ANY);
d11e3645SMatteo Riondato					res->ai_addr = (struct sockaddr*) sin;
d11e3645SMatteo Riondato					res->ai_addrlen = (socklen_t)
8fb6ad5dSRick Macklem					    sizeof(struct sockaddr_in);
d11e3645SMatteo Riondato					break;
d11e3645SMatteo Riondato				case AF_INET6:
d11e3645SMatteo Riondato					sin6 = malloc(sizeof(struct sockaddr_in6));
89ca9145SSimon L. B. Nielsen					if (sin6 == NULL)
d11e3645SMatteo Riondato						out_of_mem();
d11e3645SMatteo Riondato					sin6->sin6_family = AF_INET6;
d11e3645SMatteo Riondato					sin6->sin6_port = htons(0);
d11e3645SMatteo Riondato					sin6->sin6_addr = in6addr_any;
d11e3645SMatteo Riondato					res->ai_addr = (struct sockaddr*) sin6;
d11e3645SMatteo Riondato					res->ai_addrlen = (socklen_t)
8fb6ad5dSRick Macklem					    sizeof(struct sockaddr_in6);
d11e3645SMatteo Riondato					break;
d11e3645SMatteo Riondato				default:
8fb6ad5dSRick Macklem					syslog(LOG_ERR, "bad addr fam %d",
8fb6ad5dSRick Macklem					    res->ai_family);
8fb6ad5dSRick Macklem					exit(1);
d11e3645SMatteo Riondato				}
d11e3645SMatteo Riondato			} else {
d11e3645SMatteo Riondato				if ((aicode = getaddrinfo(NULL, svcport_str,
d11e3645SMatteo Riondato				    &hints, &res)) != 0) {
d11e3645SMatteo Riondato					syslog(LOG_ERR,
d11e3645SMatteo Riondato					    "cannot get local address for %s: %s",
d11e3645SMatteo Riondato					    nconf->nc_netid,
d11e3645SMatteo Riondato					    gai_strerror(aicode));
8fb6ad5dSRick Macklem					close(fd);
d11e3645SMatteo Riondato					continue;
d11e3645SMatteo Riondato				}
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato		} else {
d11e3645SMatteo Riondato			if ((aicode = getaddrinfo(hosts[nhostsbak], svcport_str,
d11e3645SMatteo Riondato			    &hints, &res)) != 0) {
d11e3645SMatteo Riondato				syslog(LOG_ERR,
d11e3645SMatteo Riondato				    "cannot get local address for %s: %s",
d11e3645SMatteo Riondato				    nconf->nc_netid, gai_strerror(aicode));
8fb6ad5dSRick Macklem				close(fd);
d11e3645SMatteo Riondato				continue;
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato		}
d11e3645SMatteo Riondato
8fb6ad5dSRick Macklem		/* Store the fd. */
8fb6ad5dSRick Macklem		sock_fd[sock_fdcnt - 1] = fd;
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem		/* Now, attempt the bind. */
d11e3645SMatteo Riondato		r = bindresvport_sa(fd, res->ai_addr);
d11e3645SMatteo Riondato		if (r != 0) {
8fb6ad5dSRick Macklem			if (errno == EADDRINUSE && mallocd_svcport != 0) {
8fb6ad5dSRick Macklem				if (mallocd_res != 0) {
8fb6ad5dSRick Macklem					free(res->ai_addr);
8fb6ad5dSRick Macklem					free(res);
8fb6ad5dSRick Macklem				} else
8fb6ad5dSRick Macklem					freeaddrinfo(res);
8fb6ad5dSRick Macklem				return (-1);
8fb6ad5dSRick Macklem			}
d11e3645SMatteo Riondato			syslog(LOG_ERR, "bindresvport_sa: %m");
d11e3645SMatteo Riondato			exit(1);
d11e3645SMatteo Riondato		}
d11e3645SMatteo Riondato
8fb6ad5dSRick Macklem		if (svcport_str == NULL) {
8fb6ad5dSRick Macklem			svcport_str = malloc(NI_MAXSERV * sizeof(char));
8fb6ad5dSRick Macklem			if (svcport_str == NULL)
8fb6ad5dSRick Macklem				out_of_mem();
8fb6ad5dSRick Macklem			mallocd_svcport = 1;
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem			if (getnameinfo(res->ai_addr,
8fb6ad5dSRick Macklem			    res->ai_addr->sa_len, NULL, NI_MAXHOST,
8fb6ad5dSRick Macklem			    svcport_str, NI_MAXSERV * sizeof(char),
8fb6ad5dSRick Macklem			    NI_NUMERICHOST | NI_NUMERICSERV))
8fb6ad5dSRick Macklem				errx(1, "Cannot get port number");
8fb6ad5dSRick Macklem		}
8fb6ad5dSRick Macklem		if (mallocd_res != 0) {
8fb6ad5dSRick Macklem			free(res->ai_addr);
8fb6ad5dSRick Macklem			free(res);
8fb6ad5dSRick Macklem		} else
8fb6ad5dSRick Macklem			freeaddrinfo(res);
8fb6ad5dSRick Macklem		res = NULL;
8fb6ad5dSRick Macklem	}
8fb6ad5dSRick Macklem	return (0);
8fb6ad5dSRick Macklem}
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem/*
8fb6ad5dSRick Macklem * Called after all the create_service() calls have succeeded, to complete
8fb6ad5dSRick Macklem * the setup and registration.
8fb6ad5dSRick Macklem */
8fb6ad5dSRick Macklemstatic void
8fb6ad5dSRick Macklemcomplete_service(struct netconfig *nconf, char *port_str)
8fb6ad5dSRick Macklem{
8fb6ad5dSRick Macklem	struct addrinfo hints, *res = NULL;
8fb6ad5dSRick Macklem	struct __rpc_sockinfo si;
8fb6ad5dSRick Macklem	struct netbuf servaddr;
8fb6ad5dSRick Macklem	SVCXPRT	*transp = NULL;
8fb6ad5dSRick Macklem	int aicode, fd, nhostsbak;
8fb6ad5dSRick Macklem	int registered = 0;
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem	if ((nconf->nc_semantics != NC_TPI_CLTS) &&
8fb6ad5dSRick Macklem	    (nconf->nc_semantics != NC_TPI_COTS) &&
8fb6ad5dSRick Macklem	    (nconf->nc_semantics != NC_TPI_COTS_ORD))
8fb6ad5dSRick Macklem		return;	/* not my type */
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem	/*
8fb6ad5dSRick Macklem	 * XXX - using RPC library internal functions.
8fb6ad5dSRick Macklem	 */
8fb6ad5dSRick Macklem	if (!__rpc_nconf2sockinfo(nconf, &si)) {
8fb6ad5dSRick Macklem		syslog(LOG_ERR, "cannot get information for %s",
8fb6ad5dSRick Macklem		    nconf->nc_netid);
8fb6ad5dSRick Macklem		return;
8fb6ad5dSRick Macklem	}
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem	nhostsbak = nhosts;
8fb6ad5dSRick Macklem	while (nhostsbak > 0) {
8fb6ad5dSRick Macklem		--nhostsbak;
8fb6ad5dSRick Macklem		if (sock_fdpos >= sock_fdcnt) {
8fb6ad5dSRick Macklem			/* Should never happen. */
8fb6ad5dSRick Macklem			syslog(LOG_ERR, "Ran out of socket fd's");
8fb6ad5dSRick Macklem			return;
8fb6ad5dSRick Macklem		}
8fb6ad5dSRick Macklem		fd = sock_fd[sock_fdpos++];
8fb6ad5dSRick Macklem		if (fd < 0)
8fb6ad5dSRick Macklem			continue;
8fb6ad5dSRick Macklem
93840fdeSSean Eric Fagan		/*
93840fdeSSean Eric Fagan		 * Using -1 tells listen(2) to use
93840fdeSSean Eric Fagan		 * kern.ipc.soacceptqueue for the backlog.
93840fdeSSean Eric Fagan		 */
d11e3645SMatteo Riondato		if (nconf->nc_semantics != NC_TPI_CLTS)
93840fdeSSean Eric Fagan			listen(fd, -1);
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato		if (nconf->nc_semantics == NC_TPI_CLTS )
d11e3645SMatteo Riondato			transp = svc_dg_create(fd, 0, 0);
d11e3645SMatteo Riondato		else
d11e3645SMatteo Riondato			transp = svc_vc_create(fd, RPC_MAXDATASIZE,
d11e3645SMatteo Riondato			    RPC_MAXDATASIZE);
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato		if (transp != (SVCXPRT *) NULL) {
0775314bSDoug Rabson			if (!svc_reg(transp, MOUNTPROG, MOUNTVERS, mntsrv,
d11e3645SMatteo Riondato			    NULL))
d11e3645SMatteo Riondato				syslog(LOG_ERR,
0775314bSDoug Rabson				    "can't register %s MOUNTVERS service",
d11e3645SMatteo Riondato				    nconf->nc_netid);
d11e3645SMatteo Riondato			if (!force_v2) {
0775314bSDoug Rabson				if (!svc_reg(transp, MOUNTPROG, MOUNTVERS3,
d11e3645SMatteo Riondato				    mntsrv, NULL))
d11e3645SMatteo Riondato					syslog(LOG_ERR,
0775314bSDoug Rabson					    "can't register %s MOUNTVERS3 service",
d11e3645SMatteo Riondato					    nconf->nc_netid);
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato		} else
d11e3645SMatteo Riondato			syslog(LOG_WARNING, "can't create %s services",
d11e3645SMatteo Riondato			    nconf->nc_netid);
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato		if (registered == 0) {
d11e3645SMatteo Riondato			registered = 1;
d11e3645SMatteo Riondato			memset(&hints, 0, sizeof hints);
d11e3645SMatteo Riondato			hints.ai_flags = AI_PASSIVE;
d11e3645SMatteo Riondato			hints.ai_family = si.si_af;
d11e3645SMatteo Riondato			hints.ai_socktype = si.si_socktype;
d11e3645SMatteo Riondato			hints.ai_protocol = si.si_proto;
d11e3645SMatteo Riondato
8fb6ad5dSRick Macklem			if ((aicode = getaddrinfo(NULL, port_str, &hints,
d11e3645SMatteo Riondato			    &res)) != 0) {
d11e3645SMatteo Riondato				syslog(LOG_ERR, "cannot get local address: %s",
d11e3645SMatteo Riondato				    gai_strerror(aicode));
d11e3645SMatteo Riondato				exit(1);
d11e3645SMatteo Riondato			}
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato			servaddr.buf = malloc(res->ai_addrlen);
d11e3645SMatteo Riondato			memcpy(servaddr.buf, res->ai_addr, res->ai_addrlen);
d11e3645SMatteo Riondato			servaddr.len = res->ai_addrlen;
d11e3645SMatteo Riondato
0775314bSDoug Rabson			rpcb_set(MOUNTPROG, MOUNTVERS, nconf, &servaddr);
0775314bSDoug Rabson			rpcb_set(MOUNTPROG, MOUNTVERS3, nconf, &servaddr);
d11e3645SMatteo Riondato
d11e3645SMatteo Riondato			xcreated++;
d11e3645SMatteo Riondato			freeaddrinfo(res);
d11e3645SMatteo Riondato		}
d11e3645SMatteo Riondato	} /* end while */
d11e3645SMatteo Riondato}
d11e3645SMatteo Riondato
8fb6ad5dSRick Macklem/*
8fb6ad5dSRick Macklem * Clear out sockets after a failure to bind one of them, so that the
8fb6ad5dSRick Macklem * cycle of socket creation/binding can start anew.
8fb6ad5dSRick Macklem */
8fb6ad5dSRick Macklemstatic void
8fb6ad5dSRick Macklemclearout_service(void)
8fb6ad5dSRick Macklem{
8fb6ad5dSRick Macklem	int i;
8fb6ad5dSRick Macklem
8fb6ad5dSRick Macklem	for (i = 0; i < sock_fdcnt; i++) {
8fb6ad5dSRick Macklem		if (sock_fd[i] >= 0) {
8fb6ad5dSRick Macklem			shutdown(sock_fd[i], SHUT_RDWR);
8fb6ad5dSRick Macklem			close(sock_fd[i]);
8fb6ad5dSRick Macklem		}
8fb6ad5dSRick Macklem	}
8fb6ad5dSRick Macklem}
8fb6ad5dSRick Macklem
74853402SPhilippe Charnierstatic void
a7a7d96cSPhilippe Charnierusage(void)
74853402SPhilippe Charnier{
74853402SPhilippe Charnier	fprintf(stderr,
2179ae1eSRick Macklem		"usage: mountd [-2] [-d] [-e] [-l] [-n] [-p <port>] [-r] "
c548eb5cSRick Macklem		"[-S] [-h <bindip>] [export_file ...]\n");
8fae3551SRodney W. Grimes	exit(1);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * The mount rpc service
8fae3551SRodney W. Grimes */
8fae3551SRodney W. Grimesvoid
a7a7d96cSPhilippe Charniermntsrv(struct svc_req *rqstp, SVCXPRT *transp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct exportlist *ep;
8fae3551SRodney W. Grimes	struct dirlist *dp;
a62dc406SDoug Rabson	struct fhreturn fhr;
8fae3551SRodney W. Grimes	struct stat stb;
8fae3551SRodney W. Grimes	struct statfs fsb;
8360efbdSAlfred Perlstein	char host[NI_MAXHOST], numerichost[NI_MAXHOST];
8360efbdSAlfred Perlstein	int lookup_failed = 1;
8360efbdSAlfred Perlstein	struct sockaddr *saddr;
a62dc406SDoug Rabson	u_short sport;
0775314bSDoug Rabson	char rpcpath[MNTPATHLEN + 1], dirpath[MAXPATHLEN];
e9b21d43SBrooks Davis	int defset, hostset;
e9b21d43SBrooks Davis	long bad = 0;
a62dc406SDoug Rabson	sigset_t sighup_mask;
c3f86a25SRick Macklem	int numsecflavors, *secflavorsp;
8fae3551SRodney W. Grimes
a62dc406SDoug Rabson	sigemptyset(&sighup_mask);
a62dc406SDoug Rabson	sigaddset(&sighup_mask, SIGHUP);
8360efbdSAlfred Perlstein	saddr = svc_getrpccaller(transp)->buf;
8360efbdSAlfred Perlstein	switch (saddr->sa_family) {
8360efbdSAlfred Perlstein	case AF_INET6:
01709abfSIan Dowse		sport = ntohs(((struct sockaddr_in6 *)saddr)->sin6_port);
8360efbdSAlfred Perlstein		break;
8360efbdSAlfred Perlstein	case AF_INET:
01709abfSIan Dowse		sport = ntohs(((struct sockaddr_in *)saddr)->sin_port);
8360efbdSAlfred Perlstein		break;
8360efbdSAlfred Perlstein	default:
8360efbdSAlfred Perlstein		syslog(LOG_ERR, "request from unknown address family");
8360efbdSAlfred Perlstein		return;
8360efbdSAlfred Perlstein	}
54ff4a6aSSean Eric Fagan	switch (rqstp->rq_proc) {
54ff4a6aSSean Eric Fagan	case MOUNTPROC_MNT:
54ff4a6aSSean Eric Fagan	case MOUNTPROC_UMNT:
54ff4a6aSSean Eric Fagan	case MOUNTPROC_UMNTALL:
54ff4a6aSSean Eric Fagan		lookup_failed = getnameinfo(saddr, saddr->sa_len, host,
54ff4a6aSSean Eric Fagan		    sizeof host, NULL, 0, 0);
54ff4a6aSSean Eric Fagan	}
8360efbdSAlfred Perlstein	getnameinfo(saddr, saddr->sa_len, numerichost,
8360efbdSAlfred Perlstein	    sizeof numerichost, NULL, 0, NI_NUMERICHOST);
8fae3551SRodney W. Grimes	switch (rqstp->rq_proc) {
8fae3551SRodney W. Grimes	case NULLPROC:
389b8446SPeter Wemm		if (!svc_sendreply(transp, (xdrproc_t)xdr_void, NULL))
74853402SPhilippe Charnier			syslog(LOG_ERR, "can't send reply");
8fae3551SRodney W. Grimes		return;
0775314bSDoug Rabson	case MOUNTPROC_MNT:
a62dc406SDoug Rabson		if (sport >= IPPORT_RESERVED && resvport_only) {
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "mount request from %s from unprivileged port",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes			svcerr_weakauth(transp);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
389b8446SPeter Wemm		if (!svc_getargs(transp, (xdrproc_t)xdr_dir, rpcpath)) {
f51631d7SGuido van Rooij			syslog(LOG_NOTICE, "undecodable mount request from %s",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes			svcerr_decode(transp);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
8fae3551SRodney W. Grimes		 * Get the real pathname and make sure it is a directory
a62dc406SDoug Rabson		 * or a regular file if the -r option was specified
a62dc406SDoug Rabson		 * and it exists.
8fae3551SRodney W. Grimes		 */
cb479b11SAlfred Perlstein		if (realpath(rpcpath, dirpath) == NULL ||
8fae3551SRodney W. Grimes		    stat(dirpath, &stb) < 0 ||
8fae3551SRodney W. Grimes		    statfs(dirpath, &fsb) < 0) {
8fae3551SRodney W. Grimes			chdir("/");	/* Just in case realpath doesn't */
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
74853402SPhilippe Charnier			    "mount request from %s for non existent path %s",
8360efbdSAlfred Perlstein			    numerichost, dirpath);
8fae3551SRodney W. Grimes			if (debug)
74853402SPhilippe Charnier				warnx("stat failed on %s", dirpath);
e90cdb54SGuido van Rooij			bad = ENOENT;	/* We will send error reply later */
8fae3551SRodney W. Grimes		}
b235f015SRavi Pokala		if (!bad &&
b235f015SRavi Pokala		    !S_ISDIR(stb.st_mode) &&
b235f015SRavi Pokala		    (dir_only || !S_ISREG(stb.st_mode))) {
b235f015SRavi Pokala			syslog(LOG_NOTICE,
b235f015SRavi Pokala			    "mount request from %s for non-directory path %s",
b235f015SRavi Pokala			    numerichost, dirpath);
b235f015SRavi Pokala			if (debug)
b235f015SRavi Pokala				warnx("mounting non-directory %s", dirpath);
b235f015SRavi Pokala			bad = ENOTDIR;	/* We will send error reply later */
b235f015SRavi Pokala		}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/* Check in the exports list */
a62dc406SDoug Rabson		sigprocmask(SIG_BLOCK, &sighup_mask, NULL);
b235f015SRavi Pokala		if (bad)
b235f015SRavi Pokala			ep = NULL;
b235f015SRavi Pokala		else
46a6b5c4SRick Macklem			ep = ex_search(&fsb.f_fsid, exphead);
a62dc406SDoug Rabson		hostset = defset = 0;
c3f86a25SRick Macklem		if (ep && (chk_host(ep->ex_defdir, saddr, &defset, &hostset,
c3f86a25SRick Macklem		    &numsecflavors, &secflavorsp) ||
8fae3551SRodney W. Grimes		    ((dp = dirp_search(ep->ex_dirl, dirpath)) &&
c3f86a25SRick Macklem		      chk_host(dp, saddr, &defset, &hostset, &numsecflavors,
c3f86a25SRick Macklem		       &secflavorsp)) ||
8fae3551SRodney W. Grimes		    (defset && scan_tree(ep->ex_defdir, saddr) == 0 &&
8fae3551SRodney W. Grimes		     scan_tree(ep->ex_dirl, saddr) == 0))) {
e90cdb54SGuido van Rooij			if (bad) {
389b8446SPeter Wemm				if (!svc_sendreply(transp, (xdrproc_t)xdr_long,
e90cdb54SGuido van Rooij				    (caddr_t)&bad))
74853402SPhilippe Charnier					syslog(LOG_ERR, "can't send reply");
e90cdb54SGuido van Rooij				sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
e90cdb54SGuido van Rooij				return;
e90cdb54SGuido van Rooij			}
c3f86a25SRick Macklem			if (hostset & DP_HOSTSET) {
a62dc406SDoug Rabson				fhr.fhr_flag = hostset;
c3f86a25SRick Macklem				fhr.fhr_numsecflavors = numsecflavors;
c3f86a25SRick Macklem				fhr.fhr_secflavors = secflavorsp;
c3f86a25SRick Macklem			} else {
a62dc406SDoug Rabson				fhr.fhr_flag = defset;
c3f86a25SRick Macklem				fhr.fhr_numsecflavors = ep->ex_defnumsecflavors;
c3f86a25SRick Macklem				fhr.fhr_secflavors = ep->ex_defsecflavors;
c3f86a25SRick Macklem			}
a62dc406SDoug Rabson			fhr.fhr_vers = rqstp->rq_vers;
8fae3551SRodney W. Grimes			/* Get the file handle */
87564113SPeter Wemm			memset(&fhr.fhr_fh, 0, sizeof(nfsfh_t));
a62dc406SDoug Rabson			if (getfh(dirpath, (fhandle_t *)&fhr.fhr_fh) < 0) {
8fae3551SRodney W. Grimes				bad = errno;
74853402SPhilippe Charnier				syslog(LOG_ERR, "can't get fh for %s", dirpath);
389b8446SPeter Wemm				if (!svc_sendreply(transp, (xdrproc_t)xdr_long,
8fae3551SRodney W. Grimes				    (caddr_t)&bad))
74853402SPhilippe Charnier					syslog(LOG_ERR, "can't send reply");
a62dc406SDoug Rabson				sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
8fae3551SRodney W. Grimes				return;
8fae3551SRodney W. Grimes			}
389b8446SPeter Wemm			if (!svc_sendreply(transp, (xdrproc_t)xdr_fhs,
389b8446SPeter Wemm			    (caddr_t)&fhr))
74853402SPhilippe Charnier				syslog(LOG_ERR, "can't send reply");
8360efbdSAlfred Perlstein			if (!lookup_failed)
8360efbdSAlfred Perlstein				add_mlist(host, dirpath);
8fae3551SRodney W. Grimes			else
8360efbdSAlfred Perlstein				add_mlist(numerichost, dirpath);
8fae3551SRodney W. Grimes			if (debug)
74853402SPhilippe Charnier				warnx("mount successful");
c903443aSPeter Wemm			if (dolog)
f51631d7SGuido van Rooij				syslog(LOG_NOTICE,
f51631d7SGuido van Rooij				    "mount request succeeded from %s for %s",
8360efbdSAlfred Perlstein				    numerichost, dirpath);
f51631d7SGuido van Rooij		} else {
b235f015SRavi Pokala			if (!bad)
8fae3551SRodney W. Grimes				bad = EACCES;
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "mount request denied from %s for %s",
8360efbdSAlfred Perlstein			    numerichost, dirpath);
f51631d7SGuido van Rooij		}
e90cdb54SGuido van Rooij
389b8446SPeter Wemm		if (bad && !svc_sendreply(transp, (xdrproc_t)xdr_long,
389b8446SPeter Wemm		    (caddr_t)&bad))
74853402SPhilippe Charnier			syslog(LOG_ERR, "can't send reply");
a62dc406SDoug Rabson		sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
8fae3551SRodney W. Grimes		return;
0775314bSDoug Rabson	case MOUNTPROC_DUMP:
389b8446SPeter Wemm		if (!svc_sendreply(transp, (xdrproc_t)xdr_mlist, (caddr_t)NULL))
74853402SPhilippe Charnier			syslog(LOG_ERR, "can't send reply");
c903443aSPeter Wemm		else if (dolog)
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "dump request succeeded from %s",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes		return;
0775314bSDoug Rabson	case MOUNTPROC_UMNT:
a62dc406SDoug Rabson		if (sport >= IPPORT_RESERVED && resvport_only) {
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "umount request from %s from unprivileged port",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes			svcerr_weakauth(transp);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
389b8446SPeter Wemm		if (!svc_getargs(transp, (xdrproc_t)xdr_dir, rpcpath)) {
f51631d7SGuido van Rooij			syslog(LOG_NOTICE, "undecodable umount request from %s",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes			svcerr_decode(transp);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
cb479b11SAlfred Perlstein		if (realpath(rpcpath, dirpath) == NULL) {
cb479b11SAlfred Perlstein			syslog(LOG_NOTICE, "umount request from %s "
cb479b11SAlfred Perlstein			    "for non existent path %s",
8360efbdSAlfred Perlstein			    numerichost, dirpath);
cb479b11SAlfred Perlstein		}
389b8446SPeter Wemm		if (!svc_sendreply(transp, (xdrproc_t)xdr_void, (caddr_t)NULL))
74853402SPhilippe Charnier			syslog(LOG_ERR, "can't send reply");
8360efbdSAlfred Perlstein		if (!lookup_failed)
01709abfSIan Dowse			del_mlist(host, dirpath);
01709abfSIan Dowse		del_mlist(numerichost, dirpath);
c903443aSPeter Wemm		if (dolog)
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "umount request succeeded from %s for %s",
8360efbdSAlfred Perlstein			    numerichost, dirpath);
8fae3551SRodney W. Grimes		return;
0775314bSDoug Rabson	case MOUNTPROC_UMNTALL:
a62dc406SDoug Rabson		if (sport >= IPPORT_RESERVED && resvport_only) {
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "umountall request from %s from unprivileged port",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes			svcerr_weakauth(transp);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
389b8446SPeter Wemm		if (!svc_sendreply(transp, (xdrproc_t)xdr_void, (caddr_t)NULL))
74853402SPhilippe Charnier			syslog(LOG_ERR, "can't send reply");
8360efbdSAlfred Perlstein		if (!lookup_failed)
01709abfSIan Dowse			del_mlist(host, NULL);
01709abfSIan Dowse		del_mlist(numerichost, NULL);
c903443aSPeter Wemm		if (dolog)
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "umountall request succeeded from %s",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes		return;
0775314bSDoug Rabson	case MOUNTPROC_EXPORT:
389b8446SPeter Wemm		if (!svc_sendreply(transp, (xdrproc_t)xdr_explist, (caddr_t)NULL))
389b8446SPeter Wemm			if (!svc_sendreply(transp, (xdrproc_t)xdr_explist_brief,
389b8446SPeter Wemm			    (caddr_t)NULL))
74853402SPhilippe Charnier				syslog(LOG_ERR, "can't send reply");
c903443aSPeter Wemm		if (dolog)
f51631d7SGuido van Rooij			syslog(LOG_NOTICE,
f51631d7SGuido van Rooij			    "export request succeeded from %s",
8360efbdSAlfred Perlstein			    numerichost);
8fae3551SRodney W. Grimes		return;
8fae3551SRodney W. Grimes	default:
8fae3551SRodney W. Grimes		svcerr_noproc(transp);
8fae3551SRodney W. Grimes		return;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Xdr conversion for a dirpath string
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierxdr_dir(XDR *xdrsp, char *dirp)
8fae3551SRodney W. Grimes{
0775314bSDoug Rabson	return (xdr_string(xdrsp, &dirp, MNTPATHLEN));
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
a62dc406SDoug Rabson * Xdr routine to generate file handle reply
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierxdr_fhs(XDR *xdrsp, caddr_t cp)
8fae3551SRodney W. Grimes{
3d438ad6SDavid E. O'Brien	struct fhreturn *fhrp = (struct fhreturn *)cp;
a62dc406SDoug Rabson	u_long ok = 0, len, auth;
a9148abdSDoug Rabson	int i;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (!xdr_long(xdrsp, &ok))
8fae3551SRodney W. Grimes		return (0);
a62dc406SDoug Rabson	switch (fhrp->fhr_vers) {
a62dc406SDoug Rabson	case 1:
a62dc406SDoug Rabson		return (xdr_opaque(xdrsp, (caddr_t)&fhrp->fhr_fh, NFSX_V2FH));
a62dc406SDoug Rabson	case 3:
a62dc406SDoug Rabson		len = NFSX_V3FH;
a62dc406SDoug Rabson		if (!xdr_long(xdrsp, &len))
a62dc406SDoug Rabson			return (0);
a62dc406SDoug Rabson		if (!xdr_opaque(xdrsp, (caddr_t)&fhrp->fhr_fh, len))
a62dc406SDoug Rabson			return (0);
a9148abdSDoug Rabson		if (fhrp->fhr_numsecflavors) {
a9148abdSDoug Rabson			if (!xdr_int(xdrsp, &fhrp->fhr_numsecflavors))
a9148abdSDoug Rabson				return (0);
a9148abdSDoug Rabson			for (i = 0; i < fhrp->fhr_numsecflavors; i++)
a9148abdSDoug Rabson				if (!xdr_int(xdrsp, &fhrp->fhr_secflavors[i]))
a9148abdSDoug Rabson					return (0);
a9148abdSDoug Rabson			return (1);
a9148abdSDoug Rabson		} else {
a9148abdSDoug Rabson			auth = AUTH_SYS;
a62dc406SDoug Rabson			len = 1;
a62dc406SDoug Rabson			if (!xdr_long(xdrsp, &len))
a62dc406SDoug Rabson				return (0);
a62dc406SDoug Rabson			return (xdr_long(xdrsp, &auth));
a9148abdSDoug Rabson		}
80c7cc1cSPedro F. Giffuni	}
a62dc406SDoug Rabson	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierxdr_mlist(XDR *xdrsp, caddr_t cp __unused)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct mountlist *mlp;
8fae3551SRodney W. Grimes	int true = 1;
8fae3551SRodney W. Grimes	int false = 0;
8fae3551SRodney W. Grimes	char *strp;
8fae3551SRodney W. Grimes
1da3e8b0SEmmanuel Vadot	SLIST_FOREACH(mlp, &mlhead, next) {
8fae3551SRodney W. Grimes		if (!xdr_bool(xdrsp, &true))
8fae3551SRodney W. Grimes			return (0);
8fae3551SRodney W. Grimes		strp = &mlp->ml_host[0];
0775314bSDoug Rabson		if (!xdr_string(xdrsp, &strp, MNTNAMLEN))
8fae3551SRodney W. Grimes			return (0);
8fae3551SRodney W. Grimes		strp = &mlp->ml_dirp[0];
0775314bSDoug Rabson		if (!xdr_string(xdrsp, &strp, MNTPATHLEN))
8fae3551SRodney W. Grimes			return (0);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	if (!xdr_bool(xdrsp, &false))
8fae3551SRodney W. Grimes		return (0);
8fae3551SRodney W. Grimes	return (1);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Xdr conversion for export list
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierxdr_explist_common(XDR *xdrsp, caddr_t cp __unused, int brief)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct exportlist *ep;
8fae3551SRodney W. Grimes	int false = 0;
a62dc406SDoug Rabson	int putdef;
a62dc406SDoug Rabson	sigset_t sighup_mask;
46a6b5c4SRick Macklem	int i;
8fae3551SRodney W. Grimes
a62dc406SDoug Rabson	sigemptyset(&sighup_mask);
a62dc406SDoug Rabson	sigaddset(&sighup_mask, SIGHUP);
a62dc406SDoug Rabson	sigprocmask(SIG_BLOCK, &sighup_mask, NULL);
c9ac0f71SEmmanuel Vadot
46a6b5c4SRick Macklem	for (i = 0; i < exphashsize; i++)
46a6b5c4SRick Macklem		SLIST_FOREACH(ep, &exphead[i], entries) {
8fae3551SRodney W. Grimes			putdef = 0;
91acb349SAlfred Perlstein			if (put_exlist(ep->ex_dirl, xdrsp, ep->ex_defdir,
91acb349SAlfred Perlstein				       &putdef, brief))
8fae3551SRodney W. Grimes				goto errout;
8fae3551SRodney W. Grimes			if (ep->ex_defdir && putdef == 0 &&
46a6b5c4SRick Macklem				put_exlist(ep->ex_defdir, xdrsp, NULL,
91acb349SAlfred Perlstein				&putdef, brief))
8fae3551SRodney W. Grimes				goto errout;
8fae3551SRodney W. Grimes		}
a62dc406SDoug Rabson	sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
8fae3551SRodney W. Grimes	if (!xdr_bool(xdrsp, &false))
8fae3551SRodney W. Grimes		return (0);
8fae3551SRodney W. Grimes	return (1);
8fae3551SRodney W. Grimeserrout:
a62dc406SDoug Rabson	sigprocmask(SIG_UNBLOCK, &sighup_mask, NULL);
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Called from xdr_explist() to traverse the tree and export the
8fae3551SRodney W. Grimes * directory paths.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierput_exlist(struct dirlist *dp, XDR *xdrsp, struct dirlist *adp, int *putdefp,
a7a7d96cSPhilippe Charnier	int brief)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct grouplist *grp;
8fae3551SRodney W. Grimes	struct hostlist *hp;
8fae3551SRodney W. Grimes	int true = 1;
8fae3551SRodney W. Grimes	int false = 0;
8fae3551SRodney W. Grimes	int gotalldir = 0;
8fae3551SRodney W. Grimes	char *strp;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (dp) {
91acb349SAlfred Perlstein		if (put_exlist(dp->dp_left, xdrsp, adp, putdefp, brief))
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes		if (!xdr_bool(xdrsp, &true))
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes		strp = dp->dp_dirp;
0775314bSDoug Rabson		if (!xdr_string(xdrsp, &strp, MNTPATHLEN))
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes		if (adp && !strcmp(dp->dp_dirp, adp->dp_dirp)) {
8fae3551SRodney W. Grimes			gotalldir = 1;
8fae3551SRodney W. Grimes			*putdefp = 1;
8fae3551SRodney W. Grimes		}
91acb349SAlfred Perlstein		if (brief) {
91acb349SAlfred Perlstein			if (!xdr_bool(xdrsp, &true))
91acb349SAlfred Perlstein				return (1);
91acb349SAlfred Perlstein			strp = "(...)";
0775314bSDoug Rabson			if (!xdr_string(xdrsp, &strp, MNTPATHLEN))
91acb349SAlfred Perlstein				return (1);
91acb349SAlfred Perlstein		} else if ((dp->dp_flag & DP_DEFSET) == 0 &&
8fae3551SRodney W. Grimes		    (gotalldir == 0 || (adp->dp_flag & DP_DEFSET) == 0)) {
8fae3551SRodney W. Grimes			hp = dp->dp_hosts;
8fae3551SRodney W. Grimes			while (hp) {
8fae3551SRodney W. Grimes				grp = hp->ht_grp;
8fae3551SRodney W. Grimes				if (grp->gr_type == GT_HOST) {
8fae3551SRodney W. Grimes					if (!xdr_bool(xdrsp, &true))
8fae3551SRodney W. Grimes						return (1);
8360efbdSAlfred Perlstein					strp = grp->gr_ptr.gt_addrinfo->ai_canonname;
8fae3551SRodney W. Grimes					if (!xdr_string(xdrsp, &strp,
0775314bSDoug Rabson					    MNTNAMLEN))
8fae3551SRodney W. Grimes						return (1);
8fae3551SRodney W. Grimes				} else if (grp->gr_type == GT_NET) {
8fae3551SRodney W. Grimes					if (!xdr_bool(xdrsp, &true))
8fae3551SRodney W. Grimes						return (1);
8fae3551SRodney W. Grimes					strp = grp->gr_ptr.gt_net.nt_name;
8fae3551SRodney W. Grimes					if (!xdr_string(xdrsp, &strp,
0775314bSDoug Rabson					    MNTNAMLEN))
8fae3551SRodney W. Grimes						return (1);
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				hp = hp->ht_next;
8fae3551SRodney W. Grimes				if (gotalldir && hp == (struct hostlist *)NULL) {
8fae3551SRodney W. Grimes					hp = adp->dp_hosts;
8fae3551SRodney W. Grimes					gotalldir = 0;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		if (!xdr_bool(xdrsp, &false))
8fae3551SRodney W. Grimes			return (1);
91acb349SAlfred Perlstein		if (put_exlist(dp->dp_right, xdrsp, adp, putdefp, brief))
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierxdr_explist(XDR *xdrsp, caddr_t cp)
91acb349SAlfred Perlstein{
91acb349SAlfred Perlstein
91acb349SAlfred Perlstein	return xdr_explist_common(xdrsp, cp, 0);
91acb349SAlfred Perlstein}
91acb349SAlfred Perlstein
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierxdr_explist_brief(XDR *xdrsp, caddr_t cp)
91acb349SAlfred Perlstein{
91acb349SAlfred Perlstein
91acb349SAlfred Perlstein	return xdr_explist_common(xdrsp, cp, 1);
91acb349SAlfred Perlstein}
91acb349SAlfred Perlstein
19c46d8cSEdward Tomasz Napieralastatic char *line;
19c46d8cSEdward Tomasz Napieralastatic size_t linesize;
19c46d8cSEdward Tomasz Napieralastatic FILE *exp_file;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
96968c22SPawel Jakub Dawidek * Get the export list from one, currently open file
8fae3551SRodney W. Grimes */
96968c22SPawel Jakub Dawidekstatic void
0f0869bcSRick Macklemget_exportlist_one(int passno)
8fae3551SRodney W. Grimes{
c9ac0f71SEmmanuel Vadot	struct exportlist *ep;
0f0869bcSRick Macklem	struct grouplist *grp, *tgrp, *savgrp;
8fae3551SRodney W. Grimes	struct dirlist *dirhead;
96968c22SPawel Jakub Dawidek	struct statfs fsb;
cc5efddeSRick Macklem	struct expcred anon;
8fae3551SRodney W. Grimes	char *cp, *endcp, *dirp, *hst, *usr, *dom, savedc;
cc5efddeSRick Macklem	int len, has_host, got_nondir, dirplen, netgrp;
cc5efddeSRick Macklem	uint64_t exflags;
8fae3551SRodney W. Grimes
bcc1d071SRick Macklem	v4root_phase = 0;
*2ffad162SRick Macklem	anon.cr_groups = NULL;
8fae3551SRodney W. Grimes	dirhead = (struct dirlist *)NULL;
8fae3551SRodney W. Grimes	while (get_line()) {
8fae3551SRodney W. Grimes		if (debug)
74853402SPhilippe Charnier			warnx("got line %s", line);
8fae3551SRodney W. Grimes		cp = line;
8fae3551SRodney W. Grimes		nextfield(&cp, &endcp);
8fae3551SRodney W. Grimes		if (*cp == '#')
8fae3551SRodney W. Grimes			goto nextline;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
8fae3551SRodney W. Grimes		 * Set defaults.
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		has_host = FALSE;
*2ffad162SRick Macklem		anon.cr_groups = anon.cr_smallgrps;
3e2d36ffSRick Macklem		anon.cr_uid = UID_NOBODY;
cc5efddeSRick Macklem		anon.cr_ngroups = 1;
3e2d36ffSRick Macklem		anon.cr_groups[0] = GID_NOGROUP;
8fae3551SRodney W. Grimes		exflags = MNT_EXPORTED;
8fae3551SRodney W. Grimes		got_nondir = 0;
8fae3551SRodney W. Grimes		opt_flags = 0;
8fae3551SRodney W. Grimes		ep = (struct exportlist *)NULL;
bcc1d071SRick Macklem		dirp = NULL;
bcc1d071SRick Macklem
bcc1d071SRick Macklem		/*
bcc1d071SRick Macklem		 * Handle the V4 root dir.
bcc1d071SRick Macklem		 */
bcc1d071SRick Macklem		if (*cp == 'V' && *(cp + 1) == '4' && *(cp + 2) == ':') {
bcc1d071SRick Macklem			/*
bcc1d071SRick Macklem			 * V4: just indicates that it is the v4 root point,
bcc1d071SRick Macklem			 * so skip over that and set v4root_phase.
bcc1d071SRick Macklem			 */
bcc1d071SRick Macklem			if (v4root_phase > 0) {
bcc1d071SRick Macklem				syslog(LOG_ERR, "V4:duplicate line, ignored");
bcc1d071SRick Macklem				goto nextline;
bcc1d071SRick Macklem			}
bcc1d071SRick Macklem			v4root_phase = 1;
bcc1d071SRick Macklem			cp += 3;
bcc1d071SRick Macklem			nextfield(&cp, &endcp);
bcc1d071SRick Macklem		}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
8fae3551SRodney W. Grimes		 * Create new exports list entry
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		len = endcp-cp;
8fae3551SRodney W. Grimes		tgrp = grp = get_grp();
8fae3551SRodney W. Grimes		while (len > 0) {
0775314bSDoug Rabson			if (len > MNTNAMLEN) {
354fce28SConrad Meyer			    getexp_err(ep, tgrp, "mountpoint too long");
8fae3551SRodney W. Grimes			    goto nextline;
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes			if (*cp == '-') {
8fae3551SRodney W. Grimes			    if (ep == (struct exportlist *)NULL) {
354fce28SConrad Meyer				getexp_err(ep, tgrp,
354fce28SConrad Meyer				    "flag before export path definition");
8fae3551SRodney W. Grimes				goto nextline;
8fae3551SRodney W. Grimes			    }
8fae3551SRodney W. Grimes			    if (debug)
74853402SPhilippe Charnier				warnx("doing opt %s", cp);
8fae3551SRodney W. Grimes			    got_nondir = 1;
8fae3551SRodney W. Grimes			    if (do_opt(&cp, &endcp, ep, grp, &has_host,
8fae3551SRodney W. Grimes				&exflags, &anon)) {
354fce28SConrad Meyer				getexp_err(ep, tgrp, NULL);
8fae3551SRodney W. Grimes				goto nextline;
8fae3551SRodney W. Grimes			    }
8fae3551SRodney W. Grimes			} else if (*cp == '/') {
8fae3551SRodney W. Grimes			    savedc = *endcp;
8fae3551SRodney W. Grimes			    *endcp = '\0';
bcc1d071SRick Macklem			    if (v4root_phase > 1) {
bcc1d071SRick Macklem				    if (dirp != NULL) {
354fce28SConrad Meyer					getexp_err(ep, tgrp, "Multiple V4 dirs");
bcc1d071SRick Macklem					goto nextline;
bcc1d071SRick Macklem				    }
bcc1d071SRick Macklem			    }
8fae3551SRodney W. Grimes			    if (check_dirpath(cp) &&
8fae3551SRodney W. Grimes				statfs(cp, &fsb) >= 0) {
9896584aSRick Macklem				if ((fsb.f_flags & MNT_AUTOMOUNTED) != 0)
9896584aSRick Macklem				    syslog(LOG_ERR, "Warning: exporting of "
9896584aSRick Macklem					"automounted fs %s not supported", cp);
8fae3551SRodney W. Grimes				if (got_nondir) {
354fce28SConrad Meyer				    getexp_err(ep, tgrp, "dirs must be first");
8fae3551SRodney W. Grimes				    goto nextline;
8fae3551SRodney W. Grimes				}
bcc1d071SRick Macklem				if (v4root_phase == 1) {
bcc1d071SRick Macklem				    if (dirp != NULL) {
354fce28SConrad Meyer					getexp_err(ep, tgrp, "Multiple V4 dirs");
bcc1d071SRick Macklem					goto nextline;
bcc1d071SRick Macklem				    }
bcc1d071SRick Macklem				    if (strlen(v4root_dirpath) == 0) {
bcc1d071SRick Macklem					strlcpy(v4root_dirpath, cp,
bcc1d071SRick Macklem					    sizeof (v4root_dirpath));
bcc1d071SRick Macklem				    } else if (strcmp(v4root_dirpath, cp)
bcc1d071SRick Macklem					!= 0) {
bcc1d071SRick Macklem					syslog(LOG_ERR,
bcc1d071SRick Macklem					    "different V4 dirpath %s", cp);
354fce28SConrad Meyer					getexp_err(ep, tgrp, NULL);
bcc1d071SRick Macklem					goto nextline;
bcc1d071SRick Macklem				    }
bcc1d071SRick Macklem				    dirp = cp;
bcc1d071SRick Macklem				    v4root_phase = 2;
bcc1d071SRick Macklem				    got_nondir = 1;
bcc1d071SRick Macklem				    ep = get_exp();
bcc1d071SRick Macklem				} else {
8fae3551SRodney W. Grimes				    if (ep) {
245bfd34SRyan Moeller					if (fsidcmp(&ep->ex_fs, &fsb.f_fsid)
245bfd34SRyan Moeller					    != 0) {
354fce28SConrad Meyer						getexp_err(ep, tgrp,
354fce28SConrad Meyer						    "fsid mismatch");
8fae3551SRodney W. Grimes						goto nextline;
8fae3551SRodney W. Grimes					}
8fae3551SRodney W. Grimes				    } else {
8fae3551SRodney W. Grimes					/*
8fae3551SRodney W. Grimes					 * See if this directory is already
8fae3551SRodney W. Grimes					 * in the list.
8fae3551SRodney W. Grimes					 */
46a6b5c4SRick Macklem					ep = ex_search(&fsb.f_fsid, exphead);
8fae3551SRodney W. Grimes					if (ep == (struct exportlist *)NULL) {
8fae3551SRodney W. Grimes					    ep = get_exp();
8fae3551SRodney W. Grimes					    ep->ex_fs = fsb.f_fsid;
380a3fcdSEmmanuel Vadot					    ep->ex_fsdir = strdup(fsb.f_mntonname);
380a3fcdSEmmanuel Vadot					    if (ep->ex_fsdir == NULL)
8fae3551SRodney W. Grimes						out_of_mem();
8fae3551SRodney W. Grimes					    if (debug)
bcc1d071SRick Macklem						warnx(
bcc1d071SRick Macklem						  "making new ep fs=0x%x,0x%x",
8fae3551SRodney W. Grimes						  fsb.f_fsid.val[0],
8fae3551SRodney W. Grimes						  fsb.f_fsid.val[1]);
8fae3551SRodney W. Grimes					} else if (debug)
74853402SPhilippe Charnier					    warnx("found ep fs=0x%x,0x%x",
8fae3551SRodney W. Grimes						fsb.f_fsid.val[0],
8fae3551SRodney W. Grimes						fsb.f_fsid.val[1]);
8fae3551SRodney W. Grimes				    }
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes				    /*
8fae3551SRodney W. Grimes				     * Add dirpath to export mount point.
8fae3551SRodney W. Grimes				     */
8fae3551SRodney W. Grimes				    dirp = add_expdir(&dirhead, cp, len);
8fae3551SRodney W. Grimes				    dirplen = len;
bcc1d071SRick Macklem				}
8fae3551SRodney W. Grimes			    } else {
354fce28SConrad Meyer				getexp_err(ep, tgrp,
354fce28SConrad Meyer				    "symbolic link in export path or statfs failed");
8fae3551SRodney W. Grimes				goto nextline;
8fae3551SRodney W. Grimes			    }
8fae3551SRodney W. Grimes			    *endcp = savedc;
8fae3551SRodney W. Grimes			} else {
8fae3551SRodney W. Grimes			    savedc = *endcp;
8fae3551SRodney W. Grimes			    *endcp = '\0';
8fae3551SRodney W. Grimes			    got_nondir = 1;
8fae3551SRodney W. Grimes			    if (ep == (struct exportlist *)NULL) {
354fce28SConrad Meyer				getexp_err(ep, tgrp,
354fce28SConrad Meyer				    "host(s) before export path definition");
8fae3551SRodney W. Grimes				goto nextline;
8fae3551SRodney W. Grimes			    }
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes			    /*
8fae3551SRodney W. Grimes			     * Get the host or netgroup.
8fae3551SRodney W. Grimes			     */
8fae3551SRodney W. Grimes			    setnetgrent(cp);
8fae3551SRodney W. Grimes			    netgrp = getnetgrent(&hst, &usr, &dom);
8fae3551SRodney W. Grimes			    do {
8fae3551SRodney W. Grimes				if (has_host) {
8fae3551SRodney W. Grimes				    grp->gr_next = get_grp();
8fae3551SRodney W. Grimes				    grp = grp->gr_next;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				if (netgrp) {
9d70a156SJoerg Wunsch				    if (hst == 0) {
74853402SPhilippe Charnier					syslog(LOG_ERR,
74853402SPhilippe Charnier				"null hostname in netgroup %s, skipping", cp);
01d48801SJoerg Wunsch					grp->gr_type = GT_IGNORE;
9d70a156SJoerg Wunsch				    } else if (get_host(hst, grp, tgrp)) {
74853402SPhilippe Charnier					syslog(LOG_ERR,
74853402SPhilippe Charnier			"bad host %s in netgroup %s, skipping", hst, cp);
a968cfd8SJonathan Lemon					grp->gr_type = GT_IGNORE;
8fae3551SRodney W. Grimes				    }
8b5a6d67SBill Paul				} else if (get_host(cp, grp, tgrp)) {
74853402SPhilippe Charnier				    syslog(LOG_ERR, "bad host %s, skipping", cp);
a968cfd8SJonathan Lemon				    grp->gr_type = GT_IGNORE;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				has_host = TRUE;
8fae3551SRodney W. Grimes			    } while (netgrp && getnetgrent(&hst, &usr, &dom));
8fae3551SRodney W. Grimes			    endnetgrent();
8fae3551SRodney W. Grimes			    *endcp = savedc;
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes			cp = endcp;
8fae3551SRodney W. Grimes			nextfield(&cp, &endcp);
8fae3551SRodney W. Grimes			len = endcp - cp;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		if (check_options(dirhead)) {
354fce28SConrad Meyer			getexp_err(ep, tgrp, NULL);
8fae3551SRodney W. Grimes			goto nextline;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		if (!has_host) {
6d359f31SIan Dowse			grp->gr_type = GT_DEFAULT;
8fae3551SRodney W. Grimes			if (debug)
74853402SPhilippe Charnier				warnx("adding a default entry");
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
8fae3551SRodney W. Grimes		 * Don't allow a network export coincide with a list of
8fae3551SRodney W. Grimes		 * host(s) on the same line.
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		} else if ((opt_flags & OP_NET) && tgrp->gr_next) {
354fce28SConrad Meyer			getexp_err(ep, tgrp, "network/host conflict");
8fae3551SRodney W. Grimes			goto nextline;
a968cfd8SJonathan Lemon
a968cfd8SJonathan Lemon		/*
a968cfd8SJonathan Lemon		 * If an export list was specified on this line, make sure
a968cfd8SJonathan Lemon		 * that we have at least one valid entry, otherwise skip it.
a968cfd8SJonathan Lemon		 */
a968cfd8SJonathan Lemon		} else {
a968cfd8SJonathan Lemon			grp = tgrp;
a968cfd8SJonathan Lemon			while (grp && grp->gr_type == GT_IGNORE)
a968cfd8SJonathan Lemon				grp = grp->gr_next;
a968cfd8SJonathan Lemon			if (! grp) {
354fce28SConrad Meyer			    getexp_err(ep, tgrp, "no valid entries");
a968cfd8SJonathan Lemon			    goto nextline;
a968cfd8SJonathan Lemon			}
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes
bcc1d071SRick Macklem		if (v4root_phase == 1) {
354fce28SConrad Meyer			getexp_err(ep, tgrp, "V4:root, no dirp, ignored");
bcc1d071SRick Macklem			goto nextline;
bcc1d071SRick Macklem		}
bcc1d071SRick Macklem
8fae3551SRodney W. Grimes		/*
8fae3551SRodney W. Grimes		 * Loop through hosts, pushing the exports into the kernel.
8fae3551SRodney W. Grimes		 * After loop, tgrp points to the start of the list and
8fae3551SRodney W. Grimes		 * grp points to the last entry in the list.
0f0869bcSRick Macklem		 * Do not do the do_mount() for passno == 1, since the
0f0869bcSRick Macklem		 * second pass will do it, as required.
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		grp = tgrp;
8fae3551SRodney W. Grimes		do {
0f0869bcSRick Macklem			grp->gr_exflags = exflags;
cc5efddeSRick Macklem			cp_cred(&grp->gr_anon, &anon);
0f0869bcSRick Macklem			if (v4root_phase == 2 && passno == 0)
0f0869bcSRick Macklem				LOGDEBUG("do_mount v4root");
0f0869bcSRick Macklem			if (passno == 0 && do_mount(ep, grp, exflags, &anon,
0f0869bcSRick Macklem			    dirp, dirplen, &fsb, ep->ex_numsecflavors,
0f0869bcSRick Macklem			    ep->ex_secflavors)) {
354fce28SConrad Meyer				getexp_err(ep, tgrp, NULL);
8fae3551SRodney W. Grimes				goto nextline;
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes		} while (grp->gr_next && (grp = grp->gr_next));
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
bcc1d071SRick Macklem		 * For V4: don't enter in mount lists.
bcc1d071SRick Macklem		 */
73f4ccbdSRick Macklem		if (v4root_phase > 0 && v4root_phase <= 2) {
73f4ccbdSRick Macklem			/*
c2ec1113SRick Macklem			 * These structures are used for the reload,
0f0869bcSRick Macklem			 * so save them for that case.  Otherwise, just
73f4ccbdSRick Macklem			 * free them up now.
73f4ccbdSRick Macklem			 */
0f0869bcSRick Macklem			if (passno == 1 && ep != NULL) {
0f0869bcSRick Macklem				savgrp = tgrp;
0f0869bcSRick Macklem				while (tgrp != NULL) {
0f0869bcSRick Macklem					/*
0f0869bcSRick Macklem					 * Save the security flavors and exflags
0f0869bcSRick Macklem					 * for this host set in the groups.
0f0869bcSRick Macklem					 */
0f0869bcSRick Macklem					tgrp->gr_numsecflavors =
0f0869bcSRick Macklem					    ep->ex_numsecflavors;
0f0869bcSRick Macklem					if (ep->ex_numsecflavors > 0)
0f0869bcSRick Macklem						memcpy(tgrp->gr_secflavors,
0f0869bcSRick Macklem						    ep->ex_secflavors,
0f0869bcSRick Macklem						    sizeof(ep->ex_secflavors));
0f0869bcSRick Macklem					tgrp = tgrp->gr_next;
0f0869bcSRick Macklem				}
0f0869bcSRick Macklem				if (v4root_ep == NULL) {
0f0869bcSRick Macklem					v4root_ep = ep;
0f0869bcSRick Macklem					ep = NULL;	/* Don't free below. */
0f0869bcSRick Macklem				}
0f0869bcSRick Macklem				grp->gr_next = v4root_ep->ex_grphead;
0f0869bcSRick Macklem				v4root_ep->ex_grphead = savgrp;
0f0869bcSRick Macklem			}
73f4ccbdSRick Macklem			if (ep != NULL)
73f4ccbdSRick Macklem				free_exp(ep);
73f4ccbdSRick Macklem			while (tgrp != NULL) {
73f4ccbdSRick Macklem				grp = tgrp;
73f4ccbdSRick Macklem				tgrp = tgrp->gr_next;
73f4ccbdSRick Macklem				free_grp(grp);
73f4ccbdSRick Macklem			}
bcc1d071SRick Macklem			goto nextline;
73f4ccbdSRick Macklem		}
bcc1d071SRick Macklem
bcc1d071SRick Macklem		/*
8fae3551SRodney W. Grimes		 * Success. Update the data structures.
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		if (has_host) {
0f0869bcSRick Macklem			hang_dirp(dirhead, tgrp, ep, opt_flags, &anon, exflags);
711d44eeSRick Macklem			grp->gr_next = ep->ex_grphead;
711d44eeSRick Macklem			ep->ex_grphead = tgrp;
8fae3551SRodney W. Grimes		} else {
8fae3551SRodney W. Grimes			hang_dirp(dirhead, (struct grouplist *)NULL, ep,
0f0869bcSRick Macklem				opt_flags, &anon, exflags);
8fae3551SRodney W. Grimes			free_grp(grp);
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		dirhead = (struct dirlist *)NULL;
8fae3551SRodney W. Grimes		if ((ep->ex_flag & EX_LINKED) == 0) {
46a6b5c4SRick Macklem			insert_exports(ep, exphead);
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes			ep->ex_flag |= EX_LINKED;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimesnextline:
bcc1d071SRick Macklem		v4root_phase = 0;
8fae3551SRodney W. Grimes		if (dirhead) {
8fae3551SRodney W. Grimes			free_dir(dirhead);
8fae3551SRodney W. Grimes			dirhead = (struct dirlist *)NULL;
8fae3551SRodney W. Grimes		}
*2ffad162SRick Macklem		if (anon.cr_groups != anon.cr_smallgrps) {
*2ffad162SRick Macklem			free(anon.cr_groups);
*2ffad162SRick Macklem			anon.cr_groups = NULL;
*2ffad162SRick Macklem		}
8fae3551SRodney W. Grimes	}
96968c22SPawel Jakub Dawidek}
96968c22SPawel Jakub Dawidek
96968c22SPawel Jakub Dawidek/*
96968c22SPawel Jakub Dawidek * Get the export list from all specified files
96968c22SPawel Jakub Dawidek */
19c46d8cSEdward Tomasz Napieralastatic void
0f0869bcSRick Macklemget_exportlist(int passno)
96968c22SPawel Jakub Dawidek{
96968c22SPawel Jakub Dawidek	struct export_args export;
96968c22SPawel Jakub Dawidek	struct iovec *iov;
3e08dc74SRick Macklem	struct statfs *mntbufp;
96968c22SPawel Jakub Dawidek	char errmsg[255];
e0bcf086SEitan Adler	int num, i;
96968c22SPawel Jakub Dawidek	int iovlen;
bcc1d071SRick Macklem	struct nfsex_args eargs;
0f0869bcSRick Macklem	FILE *debug_file;
96968c22SPawel Jakub Dawidek
0f0869bcSRick Macklem	if ((debug_file = fopen(_PATH_MOUNTDDEBUG, "r")) != NULL) {
0f0869bcSRick Macklem		fclose(debug_file);
0f0869bcSRick Macklem		logdebug = 1;
0f0869bcSRick Macklem	} else
0f0869bcSRick Macklem		logdebug = 0;
0f0869bcSRick Macklem	LOGDEBUG("passno=%d", passno);
bcc1d071SRick Macklem	v4root_dirpath[0] = '\0';
0f0869bcSRick Macklem	free_v4rootexp();
0f0869bcSRick Macklem	if (passno == 1) {
0f0869bcSRick Macklem		/*
0f0869bcSRick Macklem		 * Save the current lists as old ones, so that the new lists
0f0869bcSRick Macklem		 * can be compared with the old ones in the 2nd pass.
0f0869bcSRick Macklem		 */
0f0869bcSRick Macklem		for (i = 0; i < exphashsize; i++) {
0f0869bcSRick Macklem			SLIST_FIRST(&oldexphead[i]) = SLIST_FIRST(&exphead[i]);
0f0869bcSRick Macklem			SLIST_INIT(&exphead[i]);
0f0869bcSRick Macklem		}
0f0869bcSRick Macklem
0f0869bcSRick Macklem		/* Note that the public fh has not yet been set. */
0f0869bcSRick Macklem		has_set_publicfh = 0;
0f0869bcSRick Macklem
0f0869bcSRick Macklem		/* Read the export file(s) and process them */
0f0869bcSRick Macklem		read_exportfile(passno);
0f0869bcSRick Macklem	} else {
0f0869bcSRick Macklem		/*
0f0869bcSRick Macklem		 * Just make the old lists empty.
0f0869bcSRick Macklem		 * exphashsize == 0 for the first call, before oldexphead
0f0869bcSRick Macklem		 * has been initialized-->loop won't be executed.
0f0869bcSRick Macklem		 */
0f0869bcSRick Macklem		for (i = 0; i < exphashsize; i++)
0f0869bcSRick Macklem			SLIST_INIT(&oldexphead[i]);
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem
96968c22SPawel Jakub Dawidek	bzero(&export, sizeof(export));
96968c22SPawel Jakub Dawidek	export.ex_flags = MNT_DELEXPORT;
96968c22SPawel Jakub Dawidek	iov = NULL;
96968c22SPawel Jakub Dawidek	iovlen = 0;
96968c22SPawel Jakub Dawidek	bzero(errmsg, sizeof(errmsg));
96968c22SPawel Jakub Dawidek
0f0869bcSRick Macklem	if (suspend_nfsd != 0)
0f0869bcSRick Macklem		(void)nfssvc(NFSSVC_SUSPENDNFSD, NULL);
96968c22SPawel Jakub Dawidek	/*
0f0869bcSRick Macklem	 * Delete the old V4 root dir.
bcc1d071SRick Macklem	 */
bcc1d071SRick Macklem	bzero(&eargs, sizeof (eargs));
bcc1d071SRick Macklem	eargs.export.ex_flags = MNT_DELEXPORT;
cc5efddeSRick Macklem	if (nfssvc(NFSSVC_V4ROOTEXPORT | NFSSVC_NEWSTRUCT, (caddr_t)&eargs) < 0 &&
bcc1d071SRick Macklem	    errno != ENOENT)
bcc1d071SRick Macklem		syslog(LOG_ERR, "Can't delete exports for V4:");
bcc1d071SRick Macklem
0f0869bcSRick Macklem	build_iovec(&iov, &iovlen, "fstype", NULL, 0);
0f0869bcSRick Macklem	build_iovec(&iov, &iovlen, "fspath", NULL, 0);
0f0869bcSRick Macklem	build_iovec(&iov, &iovlen, "from", NULL, 0);
0f0869bcSRick Macklem	build_iovec(&iov, &iovlen, "update", NULL, 0);
0f0869bcSRick Macklem	build_iovec(&iov, &iovlen, "export", &export,
0f0869bcSRick Macklem	    sizeof(export));
0f0869bcSRick Macklem	build_iovec(&iov, &iovlen, "errmsg", errmsg,
0f0869bcSRick Macklem	    sizeof(errmsg));
0f0869bcSRick Macklem
bcc1d071SRick Macklem	/*
0f0869bcSRick Macklem	 * For passno == 1, compare the old and new lists updating the kernel
0f0869bcSRick Macklem	 * exports for any cases that have changed.
0f0869bcSRick Macklem	 * This call is doing the second pass through the lists.
0f0869bcSRick Macklem	 * If it fails, fall back on the bulk reload.
0f0869bcSRick Macklem	 */
0f0869bcSRick Macklem	if (passno == 1 && compare_nmount_exportlist(iov, iovlen, errmsg) ==
0f0869bcSRick Macklem	    0) {
0f0869bcSRick Macklem		LOGDEBUG("compareok");
0f0869bcSRick Macklem		/* Free up the old lists. */
0f0869bcSRick Macklem		free_exports(oldexphead);
0f0869bcSRick Macklem	} else {
0f0869bcSRick Macklem		LOGDEBUG("doing passno=0");
0f0869bcSRick Macklem		/*
0f0869bcSRick Macklem		 * Clear flag that notes if a public fh has been exported.
0f0869bcSRick Macklem		 * It is set by do_mount() if MNT_EXPUBLIC is set for the entry.
bcc1d071SRick Macklem		 */
bcc1d071SRick Macklem		has_publicfh = 0;
bcc1d071SRick Macklem
0f0869bcSRick Macklem		/* exphead == NULL if not yet allocated (first call). */
0f0869bcSRick Macklem		if (exphead != NULL) {
0f0869bcSRick Macklem			/*
0f0869bcSRick Macklem			 * First, get rid of the old lists.
0f0869bcSRick Macklem			 */
0f0869bcSRick Macklem			free_exports(exphead);
0f0869bcSRick Macklem			free_exports(oldexphead);
0f0869bcSRick Macklem		}
0f0869bcSRick Macklem
bcc1d071SRick Macklem		/*
96968c22SPawel Jakub Dawidek		 * And delete exports that are in the kernel for all local
96968c22SPawel Jakub Dawidek		 * filesystems.
0f0869bcSRick Macklem		 * XXX: Should know how to handle all local exportable
0f0869bcSRick Macklem		 * filesystems.
96968c22SPawel Jakub Dawidek		 */
96968c22SPawel Jakub Dawidek		num = getmntinfo(&mntbufp, MNT_NOWAIT);
96968c22SPawel Jakub Dawidek
46a6b5c4SRick Macklem		/* Allocate hash tables, for first call. */
46a6b5c4SRick Macklem		if (exphead == NULL) {
46a6b5c4SRick Macklem			/* Target an average linked list length of 10. */
46a6b5c4SRick Macklem			exphashsize = num / 10;
46a6b5c4SRick Macklem			if (exphashsize < 1)
46a6b5c4SRick Macklem				exphashsize = 1;
46a6b5c4SRick Macklem			else if (exphashsize > 100000)
46a6b5c4SRick Macklem				exphashsize = 100000;
46a6b5c4SRick Macklem			exphead = malloc(exphashsize * sizeof(*exphead));
0f0869bcSRick Macklem			oldexphead = malloc(exphashsize * sizeof(*oldexphead));
0f0869bcSRick Macklem			if (exphead == NULL || oldexphead == NULL)
0f0869bcSRick Macklem				errx(1, "Can't malloc hash tables");
46a6b5c4SRick Macklem
0f0869bcSRick Macklem			for (i = 0; i < exphashsize; i++) {
46a6b5c4SRick Macklem				SLIST_INIT(&exphead[i]);
0f0869bcSRick Macklem				SLIST_INIT(&oldexphead[i]);
46a6b5c4SRick Macklem			}
96968c22SPawel Jakub Dawidek		}
96968c22SPawel Jakub Dawidek
3e08dc74SRick Macklem		for (i = 0; i < num; i++)
3e08dc74SRick Macklem			delete_export(iov, iovlen, &mntbufp[i], errmsg);
96968c22SPawel Jakub Dawidek
0f0869bcSRick Macklem
0f0869bcSRick Macklem		/* Read the export file(s) and process them */
0f0869bcSRick Macklem		read_exportfile(0);
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem
96968c22SPawel Jakub Dawidek	if (iov != NULL) {
96968c22SPawel Jakub Dawidek		/* Free strings allocated by strdup() in getmntopts.c */
96968c22SPawel Jakub Dawidek		free(iov[0].iov_base); /* fstype */
96968c22SPawel Jakub Dawidek		free(iov[2].iov_base); /* fspath */
96968c22SPawel Jakub Dawidek		free(iov[4].iov_base); /* from */
96968c22SPawel Jakub Dawidek		free(iov[6].iov_base); /* update */
96968c22SPawel Jakub Dawidek		free(iov[8].iov_base); /* export */
96968c22SPawel Jakub Dawidek		free(iov[10].iov_base); /* errmsg */
96968c22SPawel Jakub Dawidek
96968c22SPawel Jakub Dawidek		/* free iov, allocated by realloc() */
96968c22SPawel Jakub Dawidek		free(iov);
96968c22SPawel Jakub Dawidek		iovlen = 0;
96968c22SPawel Jakub Dawidek	}
96968c22SPawel Jakub Dawidek
bcc1d071SRick Macklem	/*
bcc1d071SRick Macklem	 * If there was no public fh, clear any previous one set.
bcc1d071SRick Macklem	 */
0f0869bcSRick Macklem	if (has_publicfh == 0) {
0f0869bcSRick Macklem		LOGDEBUG("clear public fh");
bcc1d071SRick Macklem		(void) nfssvc(NFSSVC_NOPUBLICFH, NULL);
0f0869bcSRick Macklem	}
c548eb5cSRick Macklem
c548eb5cSRick Macklem	/* Resume the nfsd. If they weren't suspended, this is harmless. */
c548eb5cSRick Macklem	(void)nfssvc(NFSSVC_RESUMENFSD, NULL);
0f0869bcSRick Macklem	LOGDEBUG("eo get_exportlist");
96968c22SPawel Jakub Dawidek}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
1a9a992fSRick Macklem * Insert an export entry in the appropriate list.
1a9a992fSRick Macklem */
1a9a992fSRick Macklemstatic void
1a9a992fSRick Mackleminsert_exports(struct exportlist *ep, struct exportlisthead *exhp)
1a9a992fSRick Macklem{
46a6b5c4SRick Macklem	uint32_t i;
1a9a992fSRick Macklem
46a6b5c4SRick Macklem	i = EXPHASH(&ep->ex_fs);
0f0869bcSRick Macklem	LOGDEBUG("fs=%s hash=%i", ep->ex_fsdir, i);
46a6b5c4SRick Macklem	SLIST_INSERT_HEAD(&exhp[i], ep, entries);
1a9a992fSRick Macklem}
1a9a992fSRick Macklem
1a9a992fSRick Macklem/*
1a9a992fSRick Macklem * Free up the exports lists passed in as arguments.
1a9a992fSRick Macklem */
1a9a992fSRick Macklemstatic void
1a9a992fSRick Macklemfree_exports(struct exportlisthead *exhp)
1a9a992fSRick Macklem{
1a9a992fSRick Macklem	struct exportlist *ep, *ep2;
46a6b5c4SRick Macklem	int i;
1a9a992fSRick Macklem
46a6b5c4SRick Macklem	for (i = 0; i < exphashsize; i++) {
46a6b5c4SRick Macklem		SLIST_FOREACH_SAFE(ep, &exhp[i], entries, ep2) {
46a6b5c4SRick Macklem			SLIST_REMOVE(&exhp[i], ep, exportlist, entries);
1a9a992fSRick Macklem			free_exp(ep);
1a9a992fSRick Macklem		}
46a6b5c4SRick Macklem		SLIST_INIT(&exhp[i]);
46a6b5c4SRick Macklem	}
1a9a992fSRick Macklem}
1a9a992fSRick Macklem
1a9a992fSRick Macklem/*
3e08dc74SRick Macklem * Read the exports file(s) and call get_exportlist_one() for each line.
3e08dc74SRick Macklem */
3e08dc74SRick Macklemstatic void
0f0869bcSRick Macklemread_exportfile(int passno)
3e08dc74SRick Macklem{
3e08dc74SRick Macklem	int done, i;
3e08dc74SRick Macklem
3e08dc74SRick Macklem	/*
3e08dc74SRick Macklem	 * Read in the exports file and build the list, calling
3e08dc74SRick Macklem	 * nmount() as we go along to push the export rules into the kernel.
3e08dc74SRick Macklem	 */
3e08dc74SRick Macklem	done = 0;
3e08dc74SRick Macklem	for (i = 0; exnames[i] != NULL; i++) {
3e08dc74SRick Macklem		if (debug)
3e08dc74SRick Macklem			warnx("reading exports from %s", exnames[i]);
3e08dc74SRick Macklem		if ((exp_file = fopen(exnames[i], "r")) == NULL) {
3e08dc74SRick Macklem			syslog(LOG_WARNING, "can't open %s", exnames[i]);
3e08dc74SRick Macklem			continue;
3e08dc74SRick Macklem		}
0f0869bcSRick Macklem		get_exportlist_one(passno);
3e08dc74SRick Macklem		fclose(exp_file);
3e08dc74SRick Macklem		done++;
3e08dc74SRick Macklem	}
3e08dc74SRick Macklem	if (done == 0) {
3e08dc74SRick Macklem		syslog(LOG_ERR, "can't open any exports file");
3e08dc74SRick Macklem		exit(2);
3e08dc74SRick Macklem	}
3e08dc74SRick Macklem}
3e08dc74SRick Macklem
3e08dc74SRick Macklem/*
0f0869bcSRick Macklem * Compare the export lists against the old ones and do nmount() operations
0f0869bcSRick Macklem * for any cases that have changed.  This avoids doing nmount() for entries
0f0869bcSRick Macklem * that have not changed.
0f0869bcSRick Macklem * Return 0 upon success, 1 otherwise.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic int
0f0869bcSRick Macklemcompare_nmount_exportlist(struct iovec *iov, int iovlen, char *errmsg)
0f0869bcSRick Macklem{
0f0869bcSRick Macklem	struct exportlist *ep, *oep;
0f0869bcSRick Macklem	struct grouplist *grp;
0f0869bcSRick Macklem	struct statfs fs, ofs;
0f0869bcSRick Macklem	int i, ret;
0f0869bcSRick Macklem
0f0869bcSRick Macklem	/*
0f0869bcSRick Macklem	 * Loop through the current list and look for an entry in the old
0f0869bcSRick Macklem	 * list.
0f0869bcSRick Macklem	 * If found, check to see if it the same.
0f0869bcSRick Macklem	 *        If it is not the same, delete and re-export.
0f0869bcSRick Macklem	 *        Then mark it done on the old list.
0f0869bcSRick Macklem	 * else (not found)
0f0869bcSRick Macklem	 *        export it.
0f0869bcSRick Macklem	 * Any entries left in the old list after processing must have their
0f0869bcSRick Macklem	 * exports deleted.
0f0869bcSRick Macklem	 */
0f0869bcSRick Macklem	for (i = 0; i < exphashsize; i++)
0f0869bcSRick Macklem		SLIST_FOREACH(ep, &exphead[i], entries) {
0f0869bcSRick Macklem			LOGDEBUG("foreach ep=%s", ep->ex_fsdir);
0f0869bcSRick Macklem			oep = ex_search(&ep->ex_fs, oldexphead);
0f0869bcSRick Macklem			if (oep != NULL) {
0f0869bcSRick Macklem				/*
0f0869bcSRick Macklem				 * Check the mount paths are the same.
0f0869bcSRick Macklem				 * If not, return 1 so that the reload of the
0f0869bcSRick Macklem				 * exports will be done in bulk, the
0f0869bcSRick Macklem				 * passno == 0 way.
0f0869bcSRick Macklem				 */
0f0869bcSRick Macklem				LOGDEBUG("found old exp");
0f0869bcSRick Macklem				if (strcmp(ep->ex_fsdir, oep->ex_fsdir) != 0)
0f0869bcSRick Macklem					return (1);
0f0869bcSRick Macklem				LOGDEBUG("same fsdir");
0f0869bcSRick Macklem				/*
0f0869bcSRick Macklem				 * Test to see if the entry is the same.
0f0869bcSRick Macklem				 * If not the same delete exports and
0f0869bcSRick Macklem				 * re-export.
0f0869bcSRick Macklem				 */
0f0869bcSRick Macklem				if (compare_export(ep, oep) != 0) {
0f0869bcSRick Macklem					/*
0f0869bcSRick Macklem					 * Clear has_publicfh if if was set
0f0869bcSRick Macklem					 * in the old exports, but only if it
0f0869bcSRick Macklem					 * has not been set during processing of
0f0869bcSRick Macklem					 * the exports for this pass, as
0f0869bcSRick Macklem					 * indicated by has_set_publicfh.
0f0869bcSRick Macklem					 */
0f0869bcSRick Macklem					if (has_set_publicfh == 0 &&
0f0869bcSRick Macklem					    (oep->ex_flag & EX_PUBLICFH) != 0)
0f0869bcSRick Macklem						has_publicfh = 0;
0f0869bcSRick Macklem
0f0869bcSRick Macklem					/* Delete and re-export. */
0f0869bcSRick Macklem					if (statfs(ep->ex_fsdir, &fs) < 0)
0f0869bcSRick Macklem						return (1);
0f0869bcSRick Macklem					delete_export(iov, iovlen, &fs, errmsg);
0f0869bcSRick Macklem					ret = do_export_mount(ep, &fs);
0f0869bcSRick Macklem					if (ret != 0)
0f0869bcSRick Macklem						return (ret);
0f0869bcSRick Macklem				}
0f0869bcSRick Macklem				oep->ex_flag |= EX_DONE;
0f0869bcSRick Macklem				LOGDEBUG("exdone");
0f0869bcSRick Macklem			} else {
0f0869bcSRick Macklem				LOGDEBUG("not found so export");
0f0869bcSRick Macklem				/* Not found, so do export. */
0f0869bcSRick Macklem				if (statfs(ep->ex_fsdir, &fs) < 0)
0f0869bcSRick Macklem					return (1);
0f0869bcSRick Macklem				ret = do_export_mount(ep, &fs);
0f0869bcSRick Macklem				if (ret != 0)
0f0869bcSRick Macklem					return (ret);
0f0869bcSRick Macklem			}
0f0869bcSRick Macklem		}
0f0869bcSRick Macklem
0f0869bcSRick Macklem	/* Delete exports not done. */
0f0869bcSRick Macklem	for (i = 0; i < exphashsize; i++)
0f0869bcSRick Macklem		SLIST_FOREACH(oep, &oldexphead[i], entries) {
0f0869bcSRick Macklem			if ((oep->ex_flag & EX_DONE) == 0) {
0f0869bcSRick Macklem				LOGDEBUG("not done delete=%s", oep->ex_fsdir);
0f0869bcSRick Macklem				if (statfs(oep->ex_fsdir, &ofs) >= 0 &&
245bfd34SRyan Moeller				    fsidcmp(&oep->ex_fs, &ofs.f_fsid) == 0) {
0f0869bcSRick Macklem					LOGDEBUG("do delete");
0f0869bcSRick Macklem					/*
0f0869bcSRick Macklem					 * Clear has_publicfh if if was set
0f0869bcSRick Macklem					 * in the old exports, but only if it
0f0869bcSRick Macklem					 * has not been set during processing of
0f0869bcSRick Macklem					 * the exports for this pass, as
0f0869bcSRick Macklem					 * indicated by has_set_publicfh.
0f0869bcSRick Macklem					 */
0f0869bcSRick Macklem					if (has_set_publicfh == 0 &&
0f0869bcSRick Macklem					    (oep->ex_flag & EX_PUBLICFH) != 0)
0f0869bcSRick Macklem						has_publicfh = 0;
0f0869bcSRick Macklem
0f0869bcSRick Macklem					delete_export(iov, iovlen, &ofs,
0f0869bcSRick Macklem					    errmsg);
0f0869bcSRick Macklem				}
0f0869bcSRick Macklem			}
0f0869bcSRick Macklem		}
0f0869bcSRick Macklem
0f0869bcSRick Macklem	/* Do the V4 root exports, as required. */
0f0869bcSRick Macklem	grp = NULL;
0f0869bcSRick Macklem	if (v4root_ep != NULL)
0f0869bcSRick Macklem		grp = v4root_ep->ex_grphead;
0f0869bcSRick Macklem	v4root_phase = 2;
0f0869bcSRick Macklem	while (v4root_ep != NULL && grp != NULL) {
0f0869bcSRick Macklem		LOGDEBUG("v4root expath=%s", v4root_dirpath);
0f0869bcSRick Macklem		ret = do_mount(v4root_ep, grp, grp->gr_exflags, &grp->gr_anon,
0f0869bcSRick Macklem		    v4root_dirpath, strlen(v4root_dirpath), &fs,
0f0869bcSRick Macklem		    grp->gr_numsecflavors, grp->gr_secflavors);
0f0869bcSRick Macklem		if (ret != 0) {
0f0869bcSRick Macklem			v4root_phase = 0;
0f0869bcSRick Macklem			return (ret);
0f0869bcSRick Macklem		}
0f0869bcSRick Macklem		grp = grp->gr_next;
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem	v4root_phase = 0;
0f0869bcSRick Macklem	free_v4rootexp();
0f0869bcSRick Macklem	return (0);
0f0869bcSRick Macklem}
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
0f0869bcSRick Macklem * Compare old and current exportlist entries for the fsid and return 0
0f0869bcSRick Macklem * if they are the same, 1 otherwise.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic int
0f0869bcSRick Macklemcompare_export(struct exportlist *ep, struct exportlist *oep)
0f0869bcSRick Macklem{
0f0869bcSRick Macklem	struct grouplist *grp, *ogrp;
0f0869bcSRick Macklem
0f0869bcSRick Macklem	if (strcmp(ep->ex_fsdir, oep->ex_fsdir) != 0)
0f0869bcSRick Macklem		return (1);
0f0869bcSRick Macklem	if ((ep->ex_flag & EX_DEFSET) != (oep->ex_flag & EX_DEFSET))
0f0869bcSRick Macklem		return (1);
0f0869bcSRick Macklem	if ((ep->ex_defdir != NULL && oep->ex_defdir == NULL) ||
0f0869bcSRick Macklem	    (ep->ex_defdir == NULL && oep->ex_defdir != NULL))
0f0869bcSRick Macklem		return (1);
0f0869bcSRick Macklem	if (ep->ex_defdir != NULL && (ep->ex_defdir->dp_flag & DP_DEFSET) !=
0f0869bcSRick Macklem	    (oep->ex_defdir->dp_flag & DP_DEFSET))
0f0869bcSRick Macklem		return (1);
0f0869bcSRick Macklem	if ((ep->ex_flag & EX_DEFSET) != 0 && (ep->ex_defnumsecflavors !=
0f0869bcSRick Macklem	    oep->ex_defnumsecflavors || ep->ex_defexflags !=
0f0869bcSRick Macklem	    oep->ex_defexflags || compare_cred(&ep->ex_defanon,
0f0869bcSRick Macklem	    &oep->ex_defanon) != 0 || compare_secflavor(ep->ex_defsecflavors,
0f0869bcSRick Macklem	    oep->ex_defsecflavors, ep->ex_defnumsecflavors) != 0))
0f0869bcSRick Macklem		return (1);
0f0869bcSRick Macklem
0f0869bcSRick Macklem	/* Now, check all the groups. */
0f0869bcSRick Macklem	for (ogrp = oep->ex_grphead; ogrp != NULL; ogrp = ogrp->gr_next)
0f0869bcSRick Macklem		ogrp->gr_flag = 0;
0f0869bcSRick Macklem	for (grp = ep->ex_grphead; grp != NULL; grp = grp->gr_next) {
0f0869bcSRick Macklem		for (ogrp = oep->ex_grphead; ogrp != NULL; ogrp =
0f0869bcSRick Macklem		    ogrp->gr_next)
0f0869bcSRick Macklem			if ((ogrp->gr_flag & GR_FND) == 0 &&
0f0869bcSRick Macklem			    grp->gr_numsecflavors == ogrp->gr_numsecflavors &&
0f0869bcSRick Macklem			    grp->gr_exflags == ogrp->gr_exflags &&
0f0869bcSRick Macklem			    compare_cred(&grp->gr_anon, &ogrp->gr_anon) == 0 &&
0f0869bcSRick Macklem			    compare_secflavor(grp->gr_secflavors,
0f0869bcSRick Macklem			    ogrp->gr_secflavors, grp->gr_numsecflavors) == 0)
0f0869bcSRick Macklem				break;
0f0869bcSRick Macklem		if (ogrp != NULL)
0f0869bcSRick Macklem			ogrp->gr_flag |= GR_FND;
0f0869bcSRick Macklem		else
0f0869bcSRick Macklem			return (1);
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem	for (ogrp = oep->ex_grphead; ogrp != NULL; ogrp = ogrp->gr_next)
0f0869bcSRick Macklem		if ((ogrp->gr_flag & GR_FND) == 0)
0f0869bcSRick Macklem			return (1);
0f0869bcSRick Macklem	return (0);
0f0869bcSRick Macklem}
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
0f0869bcSRick Macklem * This algorithm compares two arrays of "n" items. It returns 0 if they are
0f0869bcSRick Macklem * the "same" and 1 otherwise.  Although suboptimal, it is always safe to
0f0869bcSRick Macklem * return 1, which makes compare_nmount_export() reload the exports entry.
0f0869bcSRick Macklem * "same" refers to having the same set of values in the two arrays.
0f0869bcSRick Macklem * The arrays are in no particular order and duplicates (multiple entries
0f0869bcSRick Macklem * in an array with the same value) is allowed.
0f0869bcSRick Macklem * The algorithm is inefficient, but the common case of indentical arrays is
0f0869bcSRick Macklem * handled first and "n" is normally fairly small.
0f0869bcSRick Macklem * Since the two functions need the same algorithm but for arrays of
0f0869bcSRick Macklem * different types (gid_t vs int), this is done as a macro.
0f0869bcSRick Macklem */
0f0869bcSRick Macklem#define	COMPARE_ARRAYS(a1, a2, n)					\
0f0869bcSRick Macklem	do {								\
0f0869bcSRick Macklem		int fnd, fndarray[(n)], i, j;				\
0f0869bcSRick Macklem		/* Handle common case of identical arrays. */		\
0f0869bcSRick Macklem		for (i = 0; i < (n); i++)				\
0f0869bcSRick Macklem			if ((a1)[i] != (a2)[i])				\
0f0869bcSRick Macklem				break;					\
0f0869bcSRick Macklem		if (i == (n))						\
0f0869bcSRick Macklem			return (0);					\
0f0869bcSRick Macklem		for (i = 0; i < (n); i++)				\
0f0869bcSRick Macklem			fndarray[i] = 0;				\
0f0869bcSRick Macklem		for (i = 0; i < (n); i++) {				\
0f0869bcSRick Macklem			fnd = 0;					\
0f0869bcSRick Macklem			for (j = 0; j < (n); j++) {			\
0f0869bcSRick Macklem				if ((a1)[i] == (a2)[j]) {		\
0f0869bcSRick Macklem					fndarray[j] = 1;		\
0f0869bcSRick Macklem					fnd = 1;			\
0f0869bcSRick Macklem				}					\
0f0869bcSRick Macklem			}						\
0f0869bcSRick Macklem			if (fnd == 0)					\
0f0869bcSRick Macklem				return (1);				\
0f0869bcSRick Macklem		}							\
0f0869bcSRick Macklem		for (i = 0; i < (n); i++)				\
0f0869bcSRick Macklem			if (fndarray[i] == 0)				\
0f0869bcSRick Macklem				return (1);				\
0f0869bcSRick Macklem		return (0);						\
0f0869bcSRick Macklem	} while (0)
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
cc5efddeSRick Macklem * Compare two struct expcred's.  Return 0 if the same and 1 otherwise.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic int
cc5efddeSRick Macklemcompare_cred(struct expcred *cr0, struct expcred *cr1)
0f0869bcSRick Macklem{
0f0869bcSRick Macklem
0f0869bcSRick Macklem	if (cr0->cr_uid != cr1->cr_uid || cr0->cr_ngroups != cr1->cr_ngroups)
0f0869bcSRick Macklem		return (1);
0f0869bcSRick Macklem
0f0869bcSRick Macklem	COMPARE_ARRAYS(cr0->cr_groups, cr1->cr_groups, cr0->cr_ngroups);
0f0869bcSRick Macklem}
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
0f0869bcSRick Macklem * Compare two lists of security flavors.  Return 0 if the same and 1 otherwise.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic int
0f0869bcSRick Macklemcompare_secflavor(int *sec1, int *sec2, int nsec)
0f0869bcSRick Macklem{
0f0869bcSRick Macklem
0f0869bcSRick Macklem	COMPARE_ARRAYS(sec1, sec2, nsec);
0f0869bcSRick Macklem}
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
3e08dc74SRick Macklem * Delete an exports entry.
3e08dc74SRick Macklem */
3e08dc74SRick Macklemstatic void
3e08dc74SRick Macklemdelete_export(struct iovec *iov, int iovlen, struct statfs *fsp, char *errmsg)
3e08dc74SRick Macklem{
3e08dc74SRick Macklem	struct xvfsconf vfc;
3e08dc74SRick Macklem
3e08dc74SRick Macklem	if (getvfsbyname(fsp->f_fstypename, &vfc) != 0) {
3e08dc74SRick Macklem		syslog(LOG_ERR, "getvfsbyname() failed for %s",
3e08dc74SRick Macklem		    fsp->f_fstypename);
3e08dc74SRick Macklem		return;
3e08dc74SRick Macklem	}
3e08dc74SRick Macklem
3e08dc74SRick Macklem	/*
3e08dc74SRick Macklem	 * We do not need to delete "export" flag from
3e08dc74SRick Macklem	 * filesystems that do not have it set.
3e08dc74SRick Macklem	 */
3e08dc74SRick Macklem	if (!(fsp->f_flags & MNT_EXPORTED))
3e08dc74SRick Macklem		return;
3e08dc74SRick Macklem	/*
3e08dc74SRick Macklem	 * Do not delete export for network filesystem by
3e08dc74SRick Macklem	 * passing "export" arg to nmount().
3e08dc74SRick Macklem	 * It only makes sense to do this for local filesystems.
3e08dc74SRick Macklem	 */
3e08dc74SRick Macklem	if (vfc.vfc_flags & VFCF_NETWORK)
3e08dc74SRick Macklem		return;
3e08dc74SRick Macklem
3e08dc74SRick Macklem	iov[1].iov_base = fsp->f_fstypename;
3e08dc74SRick Macklem	iov[1].iov_len = strlen(fsp->f_fstypename) + 1;
3e08dc74SRick Macklem	iov[3].iov_base = fsp->f_mntonname;
3e08dc74SRick Macklem	iov[3].iov_len = strlen(fsp->f_mntonname) + 1;
3e08dc74SRick Macklem	iov[5].iov_base = fsp->f_mntfromname;
3e08dc74SRick Macklem	iov[5].iov_len = strlen(fsp->f_mntfromname) + 1;
3e08dc74SRick Macklem	errmsg[0] = '\0';
3e08dc74SRick Macklem
3e08dc74SRick Macklem	/*
3e08dc74SRick Macklem	 * EXDEV is returned when path exists but is not a
3e08dc74SRick Macklem	 * mount point.  May happens if raced with unmount.
3e08dc74SRick Macklem	 */
3e08dc74SRick Macklem	if (nmount(iov, iovlen, fsp->f_flags) < 0 && errno != ENOENT &&
3e08dc74SRick Macklem	    errno != ENOTSUP && errno != EXDEV) {
3e08dc74SRick Macklem		syslog(LOG_ERR,
3e08dc74SRick Macklem		    "can't delete exports for %s: %m %s",
3e08dc74SRick Macklem		    fsp->f_mntonname, errmsg);
3e08dc74SRick Macklem	}
3e08dc74SRick Macklem}
3e08dc74SRick Macklem
3e08dc74SRick Macklem/*
8fae3551SRodney W. Grimes * Allocate an export list element
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic struct exportlist *
a7a7d96cSPhilippe Charnierget_exp(void)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct exportlist *ep;
8fae3551SRodney W. Grimes
53750151SXin LI	ep = (struct exportlist *)calloc(1, sizeof (struct exportlist));
8fae3551SRodney W. Grimes	if (ep == (struct exportlist *)NULL)
8fae3551SRodney W. Grimes		out_of_mem();
8fae3551SRodney W. Grimes	return (ep);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Allocate a group list element
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic struct grouplist *
a7a7d96cSPhilippe Charnierget_grp(void)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct grouplist *gp;
8fae3551SRodney W. Grimes
53750151SXin LI	gp = (struct grouplist *)calloc(1, sizeof (struct grouplist));
8fae3551SRodney W. Grimes	if (gp == (struct grouplist *)NULL)
8fae3551SRodney W. Grimes		out_of_mem();
8fae3551SRodney W. Grimes	return (gp);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Clean up upon an error in get_exportlist().
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
354fce28SConrad Meyergetexp_err(struct exportlist *ep, struct grouplist *grp, const char *reason)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct grouplist *tgrp;
8fae3551SRodney W. Grimes
354fce28SConrad Meyer	if (!(opt_flags & OP_QUIET)) {
354fce28SConrad Meyer		if (reason != NULL)
354fce28SConrad Meyer			syslog(LOG_ERR, "bad exports list line '%s': %s", line,
354fce28SConrad Meyer			    reason);
354fce28SConrad Meyer		else
354fce28SConrad Meyer			syslog(LOG_ERR, "bad exports list line '%s'", line);
354fce28SConrad Meyer	}
8fae3551SRodney W. Grimes	if (ep && (ep->ex_flag & EX_LINKED) == 0)
8fae3551SRodney W. Grimes		free_exp(ep);
8fae3551SRodney W. Grimes	while (grp) {
8fae3551SRodney W. Grimes		tgrp = grp;
8fae3551SRodney W. Grimes		grp = grp->gr_next;
8fae3551SRodney W. Grimes		free_grp(tgrp);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Search the export list for a matching fs.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic struct exportlist *
1a9a992fSRick Macklemex_search(fsid_t *fsid, struct exportlisthead *exhp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct exportlist *ep;
46a6b5c4SRick Macklem	uint32_t i;
8fae3551SRodney W. Grimes
46a6b5c4SRick Macklem	i = EXPHASH(fsid);
46a6b5c4SRick Macklem	SLIST_FOREACH(ep, &exhp[i], entries) {
245bfd34SRyan Moeller		if (fsidcmp(&ep->ex_fs, fsid) == 0)
8fae3551SRodney W. Grimes			return (ep);
8fae3551SRodney W. Grimes	}
c9ac0f71SEmmanuel Vadot
8fae3551SRodney W. Grimes	return (ep);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Add a directory path to the list.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic char *
a7a7d96cSPhilippe Charnieradd_expdir(struct dirlist **dpp, char *cp, int len)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct dirlist *dp;
8fae3551SRodney W. Grimes
89b859e3SEmmanuel Vadot	dp = malloc(sizeof (struct dirlist));
74853402SPhilippe Charnier	if (dp == (struct dirlist *)NULL)
74853402SPhilippe Charnier		out_of_mem();
8fae3551SRodney W. Grimes	dp->dp_left = *dpp;
8fae3551SRodney W. Grimes	dp->dp_right = (struct dirlist *)NULL;
8fae3551SRodney W. Grimes	dp->dp_flag = 0;
8fae3551SRodney W. Grimes	dp->dp_hosts = (struct hostlist *)NULL;
380a3fcdSEmmanuel Vadot	dp->dp_dirp = strndup(cp, len);
380a3fcdSEmmanuel Vadot	if (dp->dp_dirp == NULL)
380a3fcdSEmmanuel Vadot		out_of_mem();
8fae3551SRodney W. Grimes	*dpp = dp;
8fae3551SRodney W. Grimes	return (dp->dp_dirp);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Hang the dir list element off the dirpath binary tree as required
8fae3551SRodney W. Grimes * and update the entry for host.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierhang_dirp(struct dirlist *dp, struct grouplist *grp, struct exportlist *ep,
cc5efddeSRick Macklem	int flags, struct expcred *anoncrp, uint64_t exflags)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct hostlist *hp;
8fae3551SRodney W. Grimes	struct dirlist *dp2;
8fae3551SRodney W. Grimes
a62dc406SDoug Rabson	if (flags & OP_ALLDIRS) {
8fae3551SRodney W. Grimes		if (ep->ex_defdir)
8fae3551SRodney W. Grimes			free((caddr_t)dp);
8fae3551SRodney W. Grimes		else
8fae3551SRodney W. Grimes			ep->ex_defdir = dp;
a62dc406SDoug Rabson		if (grp == (struct grouplist *)NULL) {
0f0869bcSRick Macklem			ep->ex_flag |= EX_DEFSET;
8fae3551SRodney W. Grimes			ep->ex_defdir->dp_flag |= DP_DEFSET;
c3f86a25SRick Macklem			/* Save the default security flavors list. */
c3f86a25SRick Macklem			ep->ex_defnumsecflavors = ep->ex_numsecflavors;
c3f86a25SRick Macklem			if (ep->ex_numsecflavors > 0)
c3f86a25SRick Macklem				memcpy(ep->ex_defsecflavors, ep->ex_secflavors,
c3f86a25SRick Macklem				    sizeof(ep->ex_secflavors));
cc5efddeSRick Macklem			cp_cred(&ep->ex_defanon, anoncrp);
0f0869bcSRick Macklem			ep->ex_defexflags = exflags;
a62dc406SDoug Rabson		} else while (grp) {
8fae3551SRodney W. Grimes			hp = get_ht();
8fae3551SRodney W. Grimes			hp->ht_grp = grp;
8fae3551SRodney W. Grimes			hp->ht_next = ep->ex_defdir->dp_hosts;
8fae3551SRodney W. Grimes			ep->ex_defdir->dp_hosts = hp;
c3f86a25SRick Macklem			/* Save the security flavors list for this host set. */
c3f86a25SRick Macklem			grp->gr_numsecflavors = ep->ex_numsecflavors;
c3f86a25SRick Macklem			if (ep->ex_numsecflavors > 0)
c3f86a25SRick Macklem				memcpy(grp->gr_secflavors, ep->ex_secflavors,
c3f86a25SRick Macklem				    sizeof(ep->ex_secflavors));
8fae3551SRodney W. Grimes			grp = grp->gr_next;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes	} else {
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
74853402SPhilippe Charnier		 * Loop through the directories adding them to the tree.
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		while (dp) {
8fae3551SRodney W. Grimes			dp2 = dp->dp_left;
0f0869bcSRick Macklem			add_dlist(&ep->ex_dirl, dp, grp, flags, ep, anoncrp,
0f0869bcSRick Macklem			    exflags);
8fae3551SRodney W. Grimes			dp = dp2;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Traverse the binary tree either updating a node that is already there
8fae3551SRodney W. Grimes * for the new directory or adding the new node.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnieradd_dlist(struct dirlist **dpp, struct dirlist *newdp, struct grouplist *grp,
cc5efddeSRick Macklem	int flags, struct exportlist *ep, struct expcred *anoncrp,
cc5efddeSRick Macklem	uint64_t exflags)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct dirlist *dp;
8fae3551SRodney W. Grimes	struct hostlist *hp;
8fae3551SRodney W. Grimes	int cmp;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	dp = *dpp;
8fae3551SRodney W. Grimes	if (dp) {
8fae3551SRodney W. Grimes		cmp = strcmp(dp->dp_dirp, newdp->dp_dirp);
8fae3551SRodney W. Grimes		if (cmp > 0) {
0f0869bcSRick Macklem			add_dlist(&dp->dp_left, newdp, grp, flags, ep, anoncrp,
0f0869bcSRick Macklem			    exflags);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		} else if (cmp < 0) {
0f0869bcSRick Macklem			add_dlist(&dp->dp_right, newdp, grp, flags, ep, anoncrp,
0f0869bcSRick Macklem			    exflags);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		} else
8fae3551SRodney W. Grimes			free((caddr_t)newdp);
8fae3551SRodney W. Grimes	} else {
8fae3551SRodney W. Grimes		dp = newdp;
8fae3551SRodney W. Grimes		dp->dp_left = (struct dirlist *)NULL;
8fae3551SRodney W. Grimes		*dpp = dp;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	if (grp) {
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
8fae3551SRodney W. Grimes		 * Hang all of the host(s) off of the directory point.
8fae3551SRodney W. Grimes		 */
8fae3551SRodney W. Grimes		do {
8fae3551SRodney W. Grimes			hp = get_ht();
8fae3551SRodney W. Grimes			hp->ht_grp = grp;
8fae3551SRodney W. Grimes			hp->ht_next = dp->dp_hosts;
8fae3551SRodney W. Grimes			dp->dp_hosts = hp;
c3f86a25SRick Macklem			/* Save the security flavors list for this host set. */
c3f86a25SRick Macklem			grp->gr_numsecflavors = ep->ex_numsecflavors;
c3f86a25SRick Macklem			if (ep->ex_numsecflavors > 0)
c3f86a25SRick Macklem				memcpy(grp->gr_secflavors, ep->ex_secflavors,
c3f86a25SRick Macklem				    sizeof(ep->ex_secflavors));
8fae3551SRodney W. Grimes			grp = grp->gr_next;
8fae3551SRodney W. Grimes		} while (grp);
a62dc406SDoug Rabson	} else {
0f0869bcSRick Macklem		ep->ex_flag |= EX_DEFSET;
8fae3551SRodney W. Grimes		dp->dp_flag |= DP_DEFSET;
c3f86a25SRick Macklem		/* Save the default security flavors list. */
c3f86a25SRick Macklem		ep->ex_defnumsecflavors = ep->ex_numsecflavors;
c3f86a25SRick Macklem		if (ep->ex_numsecflavors > 0)
c3f86a25SRick Macklem			memcpy(ep->ex_defsecflavors, ep->ex_secflavors,
c3f86a25SRick Macklem			    sizeof(ep->ex_secflavors));
cc5efddeSRick Macklem		cp_cred(&ep->ex_defanon, anoncrp);
0f0869bcSRick Macklem		ep->ex_defexflags = exflags;
a62dc406SDoug Rabson	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Search for a dirpath on the export point.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic struct dirlist *
a7a7d96cSPhilippe Charnierdirp_search(struct dirlist *dp, char *dirp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	int cmp;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (dp) {
8360efbdSAlfred Perlstein		cmp = strcmp(dp->dp_dirp, dirp);
8fae3551SRodney W. Grimes		if (cmp > 0)
8360efbdSAlfred Perlstein			return (dirp_search(dp->dp_left, dirp));
8fae3551SRodney W. Grimes		else if (cmp < 0)
8360efbdSAlfred Perlstein			return (dirp_search(dp->dp_right, dirp));
8fae3551SRodney W. Grimes		else
8fae3551SRodney W. Grimes			return (dp);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	return (dp);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Scan for a host match in a directory tree.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierchk_host(struct dirlist *dp, struct sockaddr *saddr, int *defsetp,
c3f86a25SRick Macklem	int *hostsetp, int *numsecflavors, int **secflavorsp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct hostlist *hp;
8fae3551SRodney W. Grimes	struct grouplist *grp;
8360efbdSAlfred Perlstein	struct addrinfo *ai;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (dp) {
8fae3551SRodney W. Grimes		if (dp->dp_flag & DP_DEFSET)
a62dc406SDoug Rabson			*defsetp = dp->dp_flag;
8fae3551SRodney W. Grimes		hp = dp->dp_hosts;
8fae3551SRodney W. Grimes		while (hp) {
8fae3551SRodney W. Grimes			grp = hp->ht_grp;
8fae3551SRodney W. Grimes			switch (grp->gr_type) {
8fae3551SRodney W. Grimes			case GT_HOST:
8360efbdSAlfred Perlstein				ai = grp->gr_ptr.gt_addrinfo;
8360efbdSAlfred Perlstein				for (; ai; ai = ai->ai_next) {
60caaee2SIan Dowse					if (!sacmp(ai->ai_addr, saddr, NULL)) {
8360efbdSAlfred Perlstein						*hostsetp =
8360efbdSAlfred Perlstein						    (hp->ht_flag | DP_HOSTSET);
c3f86a25SRick Macklem						if (numsecflavors != NULL) {
c3f86a25SRick Macklem							*numsecflavors =
c3f86a25SRick Macklem							    grp->gr_numsecflavors;
c3f86a25SRick Macklem							*secflavorsp =
c3f86a25SRick Macklem							    grp->gr_secflavors;
c3f86a25SRick Macklem						}
8fae3551SRodney W. Grimes						return (1);
a62dc406SDoug Rabson					}
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				break;
8fae3551SRodney W. Grimes			case GT_NET:
60caaee2SIan Dowse				if (!sacmp(saddr, (struct sockaddr *)
60caaee2SIan Dowse				    &grp->gr_ptr.gt_net.nt_net,
60caaee2SIan Dowse				    (struct sockaddr *)
60caaee2SIan Dowse				    &grp->gr_ptr.gt_net.nt_mask)) {
a62dc406SDoug Rabson					*hostsetp = (hp->ht_flag | DP_HOSTSET);
c3f86a25SRick Macklem					if (numsecflavors != NULL) {
c3f86a25SRick Macklem						*numsecflavors =
c3f86a25SRick Macklem						    grp->gr_numsecflavors;
c3f86a25SRick Macklem						*secflavorsp =
c3f86a25SRick Macklem						    grp->gr_secflavors;
c3f86a25SRick Macklem					}
8fae3551SRodney W. Grimes					return (1);
a62dc406SDoug Rabson				}
8fae3551SRodney W. Grimes				break;
60caaee2SIan Dowse			}
8fae3551SRodney W. Grimes			hp = hp->ht_next;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Scan tree for a host that matches the address.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierscan_tree(struct dirlist *dp, struct sockaddr *saddr)
8fae3551SRodney W. Grimes{
a62dc406SDoug Rabson	int defset, hostset;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (dp) {
8fae3551SRodney W. Grimes		if (scan_tree(dp->dp_left, saddr))
8fae3551SRodney W. Grimes			return (1);
c3f86a25SRick Macklem		if (chk_host(dp, saddr, &defset, &hostset, NULL, NULL))
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes		if (scan_tree(dp->dp_right, saddr))
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Traverse the dirlist tree and free it up.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierfree_dir(struct dirlist *dp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (dp) {
8fae3551SRodney W. Grimes		free_dir(dp->dp_left);
8fae3551SRodney W. Grimes		free_dir(dp->dp_right);
8fae3551SRodney W. Grimes		free_host(dp->dp_hosts);
92e73cccSEmmanuel Vadot		free(dp->dp_dirp);
92e73cccSEmmanuel Vadot		free(dp);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
a9148abdSDoug Rabson * Parse a colon separated list of security flavors
a9148abdSDoug Rabson */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierparsesec(char *seclist, struct exportlist *ep)
a9148abdSDoug Rabson{
a9148abdSDoug Rabson	char *cp, savedc;
a9148abdSDoug Rabson	int flavor;
a9148abdSDoug Rabson
a9148abdSDoug Rabson	ep->ex_numsecflavors = 0;
a9148abdSDoug Rabson	for (;;) {
a9148abdSDoug Rabson		cp = strchr(seclist, ':');
a9148abdSDoug Rabson		if (cp) {
a9148abdSDoug Rabson			savedc = *cp;
a9148abdSDoug Rabson			*cp = '\0';
a9148abdSDoug Rabson		}
a9148abdSDoug Rabson
a9148abdSDoug Rabson		if (!strcmp(seclist, "sys"))
a9148abdSDoug Rabson			flavor = AUTH_SYS;
a9148abdSDoug Rabson		else if (!strcmp(seclist, "krb5"))
a9148abdSDoug Rabson			flavor = RPCSEC_GSS_KRB5;
a9148abdSDoug Rabson		else if (!strcmp(seclist, "krb5i"))
a9148abdSDoug Rabson			flavor = RPCSEC_GSS_KRB5I;
a9148abdSDoug Rabson		else if (!strcmp(seclist, "krb5p"))
a9148abdSDoug Rabson			flavor = RPCSEC_GSS_KRB5P;
a9148abdSDoug Rabson		else {
a9148abdSDoug Rabson			if (cp)
a9148abdSDoug Rabson				*cp = savedc;
a9148abdSDoug Rabson			syslog(LOG_ERR, "bad sec flavor: %s", seclist);
a9148abdSDoug Rabson			return (1);
a9148abdSDoug Rabson		}
a9148abdSDoug Rabson		if (ep->ex_numsecflavors == MAXSECFLAVORS) {
a9148abdSDoug Rabson			if (cp)
a9148abdSDoug Rabson				*cp = savedc;
a9148abdSDoug Rabson			syslog(LOG_ERR, "too many sec flavors: %s", seclist);
a9148abdSDoug Rabson			return (1);
a9148abdSDoug Rabson		}
a9148abdSDoug Rabson		ep->ex_secflavors[ep->ex_numsecflavors] = flavor;
a9148abdSDoug Rabson		ep->ex_numsecflavors++;
a9148abdSDoug Rabson		if (cp) {
a9148abdSDoug Rabson			*cp = savedc;
a9148abdSDoug Rabson			seclist = cp + 1;
a9148abdSDoug Rabson		} else {
a9148abdSDoug Rabson			break;
a9148abdSDoug Rabson		}
a9148abdSDoug Rabson	}
a9148abdSDoug Rabson	return (0);
a9148abdSDoug Rabson}
a9148abdSDoug Rabson
a9148abdSDoug Rabson/*
8fae3551SRodney W. Grimes * Parse the option string and update fields.
8fae3551SRodney W. Grimes * Option arguments may either be -<option>=<value> or
8fae3551SRodney W. Grimes * -<option> <value>
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierdo_opt(char **cpp, char **endcpp, struct exportlist *ep, struct grouplist *grp,
cc5efddeSRick Macklem	int *has_hostp, uint64_t *exflagsp, struct expcred *cr)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	char *cpoptarg, *cpoptend;
8fae3551SRodney W. Grimes	char *cp, *endcp, *cpopt, savedc, savedc2;
8fae3551SRodney W. Grimes	int allflag, usedarg;
8fae3551SRodney W. Grimes
cb479b11SAlfred Perlstein	savedc2 = '\0';
8fae3551SRodney W. Grimes	cpopt = *cpp;
8fae3551SRodney W. Grimes	cpopt++;
8fae3551SRodney W. Grimes	cp = *endcpp;
8fae3551SRodney W. Grimes	savedc = *cp;
8fae3551SRodney W. Grimes	*cp = '\0';
8fae3551SRodney W. Grimes	while (cpopt && *cpopt) {
8fae3551SRodney W. Grimes		allflag = 1;
8fae3551SRodney W. Grimes		usedarg = -2;
74853402SPhilippe Charnier		if ((cpoptend = strchr(cpopt, ','))) {
8fae3551SRodney W. Grimes			*cpoptend++ = '\0';
74853402SPhilippe Charnier			if ((cpoptarg = strchr(cpopt, '=')))
8fae3551SRodney W. Grimes				*cpoptarg++ = '\0';
8fae3551SRodney W. Grimes		} else {
74853402SPhilippe Charnier			if ((cpoptarg = strchr(cpopt, '=')))
8fae3551SRodney W. Grimes				*cpoptarg++ = '\0';
8fae3551SRodney W. Grimes			else {
8fae3551SRodney W. Grimes				*cp = savedc;
8fae3551SRodney W. Grimes				nextfield(&cp, &endcp);
8fae3551SRodney W. Grimes				**endcpp = '\0';
8fae3551SRodney W. Grimes				if (endcp > cp && *cp != '-') {
8fae3551SRodney W. Grimes					cpoptarg = cp;
8fae3551SRodney W. Grimes					savedc2 = *endcp;
8fae3551SRodney W. Grimes					*endcp = '\0';
8fae3551SRodney W. Grimes					usedarg = 0;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		if (!strcmp(cpopt, "ro") || !strcmp(cpopt, "o")) {
8fae3551SRodney W. Grimes			*exflagsp |= MNT_EXRDONLY;
8fae3551SRodney W. Grimes		} else if (cpoptarg && (!strcmp(cpopt, "maproot") ||
8fae3551SRodney W. Grimes		    !(allflag = strcmp(cpopt, "mapall")) ||
8fae3551SRodney W. Grimes		    !strcmp(cpopt, "root") || !strcmp(cpopt, "r"))) {
8fae3551SRodney W. Grimes			usedarg++;
8fae3551SRodney W. Grimes			parsecred(cpoptarg, cr);
8fae3551SRodney W. Grimes			if (allflag == 0) {
8fae3551SRodney W. Grimes				*exflagsp |= MNT_EXPORTANON;
8fae3551SRodney W. Grimes				opt_flags |= OP_MAPALL;
8fae3551SRodney W. Grimes			} else
8fae3551SRodney W. Grimes				opt_flags |= OP_MAPROOT;
8fae3551SRodney W. Grimes		} else if (cpoptarg && (!strcmp(cpopt, "mask") ||
8fae3551SRodney W. Grimes		    !strcmp(cpopt, "m"))) {
8fae3551SRodney W. Grimes			if (get_net(cpoptarg, &grp->gr_ptr.gt_net, 1)) {
74853402SPhilippe Charnier				syslog(LOG_ERR, "bad mask: %s", cpoptarg);
8fae3551SRodney W. Grimes				return (1);
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes			usedarg++;
8fae3551SRodney W. Grimes			opt_flags |= OP_MASK;
8fae3551SRodney W. Grimes		} else if (cpoptarg && (!strcmp(cpopt, "network") ||
8fae3551SRodney W. Grimes			!strcmp(cpopt, "n"))) {
8360efbdSAlfred Perlstein			if (strchr(cpoptarg, '/') != NULL) {
8360efbdSAlfred Perlstein				if (debug)
8360efbdSAlfred Perlstein					fprintf(stderr, "setting OP_MASKLEN\n");
8360efbdSAlfred Perlstein				opt_flags |= OP_MASKLEN;
8360efbdSAlfred Perlstein			}
8fae3551SRodney W. Grimes			if (grp->gr_type != GT_NULL) {
74853402SPhilippe Charnier				syslog(LOG_ERR, "network/host conflict");
8fae3551SRodney W. Grimes				return (1);
8fae3551SRodney W. Grimes			} else if (get_net(cpoptarg, &grp->gr_ptr.gt_net, 0)) {
74853402SPhilippe Charnier				syslog(LOG_ERR, "bad net: %s", cpoptarg);
8fae3551SRodney W. Grimes				return (1);
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes			grp->gr_type = GT_NET;
8fae3551SRodney W. Grimes			*has_hostp = 1;
8fae3551SRodney W. Grimes			usedarg++;
8fae3551SRodney W. Grimes			opt_flags |= OP_NET;
8fae3551SRodney W. Grimes		} else if (!strcmp(cpopt, "alldirs")) {
8fae3551SRodney W. Grimes			opt_flags |= OP_ALLDIRS;
cb3923e0SDoug Rabson		} else if (!strcmp(cpopt, "public")) {
cb3923e0SDoug Rabson			*exflagsp |= MNT_EXPUBLIC;
cb3923e0SDoug Rabson		} else if (!strcmp(cpopt, "webnfs")) {
cb3923e0SDoug Rabson			*exflagsp |= (MNT_EXPUBLIC|MNT_EXRDONLY|MNT_EXPORTANON);
cb3923e0SDoug Rabson			opt_flags |= OP_MAPALL;
cb3923e0SDoug Rabson		} else if (cpoptarg && !strcmp(cpopt, "index")) {
cb3923e0SDoug Rabson			ep->ex_indexfile = strdup(cpoptarg);
288fa14aSJoerg Wunsch		} else if (!strcmp(cpopt, "quiet")) {
288fa14aSJoerg Wunsch			opt_flags |= OP_QUIET;
dcdc127bSSergey Kandaurov		} else if (cpoptarg && !strcmp(cpopt, "sec")) {
a9148abdSDoug Rabson			if (parsesec(cpoptarg, ep))
a9148abdSDoug Rabson				return (1);
a9148abdSDoug Rabson			opt_flags |= OP_SEC;
a9148abdSDoug Rabson			usedarg++;
813837baSRick Macklem		} else if (!strcmp(cpopt, "tls")) {
813837baSRick Macklem			*exflagsp |= MNT_EXTLS;
813837baSRick Macklem		} else if (!strcmp(cpopt, "tlscert")) {
813837baSRick Macklem			*exflagsp |= (MNT_EXTLS | MNT_EXTLSCERT);
813837baSRick Macklem		} else if (!strcmp(cpopt, "tlscertuser")) {
813837baSRick Macklem			*exflagsp |= (MNT_EXTLS | MNT_EXTLSCERT |
813837baSRick Macklem			    MNT_EXTLSCERTUSER);
8fae3551SRodney W. Grimes		} else {
74853402SPhilippe Charnier			syslog(LOG_ERR, "bad opt %s", cpopt);
8fae3551SRodney W. Grimes			return (1);
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		if (usedarg >= 0) {
8fae3551SRodney W. Grimes			*endcp = savedc2;
8fae3551SRodney W. Grimes			**endcpp = savedc;
8fae3551SRodney W. Grimes			if (usedarg > 0) {
8fae3551SRodney W. Grimes				*cpp = cp;
8fae3551SRodney W. Grimes				*endcpp = endcp;
8fae3551SRodney W. Grimes			}
8fae3551SRodney W. Grimes			return (0);
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		cpopt = cpoptend;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	**endcpp = savedc;
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Translate a character string to the corresponding list of network
8fae3551SRodney W. Grimes * addresses for a hostname.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierget_host(char *cp, struct grouplist *grp, struct grouplist *tgrp)
8fae3551SRodney W. Grimes{
8b5a6d67SBill Paul	struct grouplist *checkgrp;
01709abfSIan Dowse	struct addrinfo *ai, *tai, hints;
8360efbdSAlfred Perlstein	int ecode;
8360efbdSAlfred Perlstein	char host[NI_MAXHOST];
8fae3551SRodney W. Grimes
8360efbdSAlfred Perlstein	if (grp->gr_type != GT_NULL) {
8360efbdSAlfred Perlstein		syslog(LOG_ERR, "Bad netgroup type for ip host %s", cp);
8fae3551SRodney W. Grimes		return (1);
8fae3551SRodney W. Grimes	}
8360efbdSAlfred Perlstein	memset(&hints, 0, sizeof hints);
8360efbdSAlfred Perlstein	hints.ai_flags = AI_CANONNAME;
8360efbdSAlfred Perlstein	hints.ai_protocol = IPPROTO_UDP;
8360efbdSAlfred Perlstein	ecode = getaddrinfo(cp, NULL, &hints, &ai);
8360efbdSAlfred Perlstein	if (ecode != 0) {
01709abfSIan Dowse		syslog(LOG_ERR,"can't get address info for host %s", cp);
8360efbdSAlfred Perlstein		return 1;
8fae3551SRodney W. Grimes	}
8360efbdSAlfred Perlstein	grp->gr_ptr.gt_addrinfo = ai;
8360efbdSAlfred Perlstein	while (ai != NULL) {
8360efbdSAlfred Perlstein		if (ai->ai_canonname == NULL) {
8360efbdSAlfred Perlstein			if (getnameinfo(ai->ai_addr, ai->ai_addrlen, host,
4f101318SHajimu UMEMOTO			    sizeof host, NULL, 0, NI_NUMERICHOST) != 0)
8360efbdSAlfred Perlstein				strlcpy(host, "?", sizeof(host));
8360efbdSAlfred Perlstein			ai->ai_canonname = strdup(host);
8360efbdSAlfred Perlstein			ai->ai_flags |= AI_CANONNAME;
6d359f31SIan Dowse		}
8fae3551SRodney W. Grimes		if (debug)
01709abfSIan Dowse			fprintf(stderr, "got host %s\n", ai->ai_canonname);
01709abfSIan Dowse		/*
01709abfSIan Dowse		 * Sanity check: make sure we don't already have an entry
01709abfSIan Dowse		 * for this host in the grouplist.
01709abfSIan Dowse		 */
01709abfSIan Dowse		for (checkgrp = tgrp; checkgrp != NULL;
01709abfSIan Dowse		    checkgrp = checkgrp->gr_next) {
01709abfSIan Dowse			if (checkgrp->gr_type != GT_HOST)
01709abfSIan Dowse				continue;
01709abfSIan Dowse			for (tai = checkgrp->gr_ptr.gt_addrinfo; tai != NULL;
01709abfSIan Dowse			    tai = tai->ai_next) {
60caaee2SIan Dowse				if (sacmp(tai->ai_addr, ai->ai_addr, NULL) != 0)
01709abfSIan Dowse					continue;
01709abfSIan Dowse				if (debug)
01709abfSIan Dowse					fprintf(stderr,
01709abfSIan Dowse					    "ignoring duplicate host %s\n",
01709abfSIan Dowse					    ai->ai_canonname);
01709abfSIan Dowse				grp->gr_type = GT_IGNORE;
01709abfSIan Dowse				return (0);
01709abfSIan Dowse			}
01709abfSIan Dowse		}
8360efbdSAlfred Perlstein		ai = ai->ai_next;
8360efbdSAlfred Perlstein	}
01709abfSIan Dowse	grp->gr_type = GT_HOST;
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Free up an exports list component
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierfree_exp(struct exportlist *ep)
8fae3551SRodney W. Grimes{
711d44eeSRick Macklem	struct grouplist *grp, *tgrp;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if (ep->ex_defdir) {
8fae3551SRodney W. Grimes		free_host(ep->ex_defdir->dp_hosts);
8fae3551SRodney W. Grimes		free((caddr_t)ep->ex_defdir);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	if (ep->ex_fsdir)
8fae3551SRodney W. Grimes		free(ep->ex_fsdir);
cb3923e0SDoug Rabson	if (ep->ex_indexfile)
cb3923e0SDoug Rabson		free(ep->ex_indexfile);
8fae3551SRodney W. Grimes	free_dir(ep->ex_dirl);
711d44eeSRick Macklem	grp = ep->ex_grphead;
711d44eeSRick Macklem	while (grp) {
711d44eeSRick Macklem		tgrp = grp;
711d44eeSRick Macklem		grp = grp->gr_next;
711d44eeSRick Macklem		free_grp(tgrp);
711d44eeSRick Macklem	}
*2ffad162SRick Macklem	if (ep->ex_defanon.cr_groups != ep->ex_defanon.cr_smallgrps)
*2ffad162SRick Macklem		free(ep->ex_defanon.cr_groups);
8fae3551SRodney W. Grimes	free((caddr_t)ep);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
0f0869bcSRick Macklem * Free up the v4root exports.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic void
0f0869bcSRick Macklemfree_v4rootexp(void)
0f0869bcSRick Macklem{
0f0869bcSRick Macklem
0f0869bcSRick Macklem	if (v4root_ep != NULL) {
0f0869bcSRick Macklem		free_exp(v4root_ep);
0f0869bcSRick Macklem		v4root_ep = NULL;
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem}
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
8fae3551SRodney W. Grimes * Free hosts.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierfree_host(struct hostlist *hp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct hostlist *hp2;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	while (hp) {
8fae3551SRodney W. Grimes		hp2 = hp;
8fae3551SRodney W. Grimes		hp = hp->ht_next;
8fae3551SRodney W. Grimes		free((caddr_t)hp2);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
19c46d8cSEdward Tomasz Napieralastatic struct hostlist *
a7a7d96cSPhilippe Charnierget_ht(void)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	struct hostlist *hp;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	hp = (struct hostlist *)malloc(sizeof (struct hostlist));
8fae3551SRodney W. Grimes	if (hp == (struct hostlist *)NULL)
8fae3551SRodney W. Grimes		out_of_mem();
8fae3551SRodney W. Grimes	hp->ht_next = (struct hostlist *)NULL;
a62dc406SDoug Rabson	hp->ht_flag = 0;
8fae3551SRodney W. Grimes	return (hp);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Out of memory, fatal
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierout_of_mem(void)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes
74853402SPhilippe Charnier	syslog(LOG_ERR, "out of memory");
8fae3551SRodney W. Grimes	exit(2);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
0f0869bcSRick Macklem * Call do_mount() from the struct exportlist, for each case needed.
0f0869bcSRick Macklem */
0f0869bcSRick Macklemstatic int
0f0869bcSRick Macklemdo_export_mount(struct exportlist *ep, struct statfs *fsp)
0f0869bcSRick Macklem{
0f0869bcSRick Macklem	struct grouplist *grp, defgrp;
0f0869bcSRick Macklem	int ret;
0f0869bcSRick Macklem	size_t dirlen;
0f0869bcSRick Macklem
0f0869bcSRick Macklem	LOGDEBUG("do_export_mount=%s", ep->ex_fsdir);
0f0869bcSRick Macklem	dirlen = strlen(ep->ex_fsdir);
0f0869bcSRick Macklem	if ((ep->ex_flag & EX_DEFSET) != 0) {
0f0869bcSRick Macklem		defgrp.gr_type = GT_DEFAULT;
0f0869bcSRick Macklem		defgrp.gr_next = NULL;
0f0869bcSRick Macklem		/* We have an entry for all other hosts/nets. */
cc5efddeSRick Macklem		LOGDEBUG("ex_defexflags=0x%jx", (uintmax_t)ep->ex_defexflags);
0f0869bcSRick Macklem		ret = do_mount(ep, &defgrp, ep->ex_defexflags, &ep->ex_defanon,
0f0869bcSRick Macklem		    ep->ex_fsdir, dirlen, fsp, ep->ex_defnumsecflavors,
0f0869bcSRick Macklem		    ep->ex_defsecflavors);
0f0869bcSRick Macklem		if (ret != 0)
0f0869bcSRick Macklem			return (ret);
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem
0f0869bcSRick Macklem	/* Do a mount for each group. */
0f0869bcSRick Macklem	grp = ep->ex_grphead;
0f0869bcSRick Macklem	while (grp != NULL) {
cc5efddeSRick Macklem		LOGDEBUG("do mount gr_type=0x%x gr_exflags=0x%jx",
cc5efddeSRick Macklem		    grp->gr_type, (uintmax_t)grp->gr_exflags);
0f0869bcSRick Macklem		ret = do_mount(ep, grp, grp->gr_exflags, &grp->gr_anon,
0f0869bcSRick Macklem		    ep->ex_fsdir, dirlen, fsp, grp->gr_numsecflavors,
0f0869bcSRick Macklem		    grp->gr_secflavors);
0f0869bcSRick Macklem		if (ret != 0)
0f0869bcSRick Macklem			return (ret);
0f0869bcSRick Macklem		grp = grp->gr_next;
0f0869bcSRick Macklem	}
0f0869bcSRick Macklem	return (0);
0f0869bcSRick Macklem}
0f0869bcSRick Macklem
0f0869bcSRick Macklem/*
6a09faf2SCraig Rodrigues * Do the nmount() syscall with the update flag to push the export info into
8fae3551SRodney W. Grimes * the kernel.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
cc5efddeSRick Macklemdo_mount(struct exportlist *ep, struct grouplist *grp, uint64_t exflags,
cc5efddeSRick Macklem    struct expcred *anoncrp, char *dirp, int dirplen, struct statfs *fsb,
0f0869bcSRick Macklem    int numsecflavors, int *secflavors)
8fae3551SRodney W. Grimes{
f93caef2SIan Dowse	struct statfs fsb1;
8360efbdSAlfred Perlstein	struct addrinfo *ai;
79b86807SEdward Tomasz Napierala	struct export_args *eap;
6a09faf2SCraig Rodrigues	char errmsg[255];
6a09faf2SCraig Rodrigues	char *cp;
8fae3551SRodney W. Grimes	int done;
6a09faf2SCraig Rodrigues	char savedc;
6a09faf2SCraig Rodrigues	struct iovec *iov;
a9148abdSDoug Rabson	int i, iovlen;
6a09faf2SCraig Rodrigues	int ret;
bcc1d071SRick Macklem	struct nfsex_args nfsea;
bcc1d071SRick Macklem
bcc1d071SRick Macklem	eap = &nfsea.export;
8fae3551SRodney W. Grimes
6a09faf2SCraig Rodrigues	cp = NULL;
6a09faf2SCraig Rodrigues	savedc = '\0';
6a09faf2SCraig Rodrigues	iov = NULL;
6a09faf2SCraig Rodrigues	iovlen = 0;
6a09faf2SCraig Rodrigues	ret = 0;
60caaee2SIan Dowse
bcc1d071SRick Macklem	bzero(eap, sizeof (struct export_args));
6a09faf2SCraig Rodrigues	bzero(errmsg, sizeof(errmsg));
bcc1d071SRick Macklem	eap->ex_flags = exflags;
cc5efddeSRick Macklem	eap->ex_uid = anoncrp->cr_uid;
cc5efddeSRick Macklem	eap->ex_ngroups = anoncrp->cr_ngroups;
cc5efddeSRick Macklem	if (eap->ex_ngroups > 0) {
cc5efddeSRick Macklem		eap->ex_groups = malloc(eap->ex_ngroups * sizeof(gid_t));
cc5efddeSRick Macklem		memcpy(eap->ex_groups, anoncrp->cr_groups, eap->ex_ngroups *
cc5efddeSRick Macklem		    sizeof(gid_t));
cc5efddeSRick Macklem	}
cc5efddeSRick Macklem	LOGDEBUG("do_mount exflags=0x%jx", (uintmax_t)exflags);
bcc1d071SRick Macklem	eap->ex_indexfile = ep->ex_indexfile;
6d359f31SIan Dowse	if (grp->gr_type == GT_HOST)
8360efbdSAlfred Perlstein		ai = grp->gr_ptr.gt_addrinfo;
6d359f31SIan Dowse	else
6d359f31SIan Dowse		ai = NULL;
0f0869bcSRick Macklem	eap->ex_numsecflavors = numsecflavors;
0f0869bcSRick Macklem	LOGDEBUG("do_mount numsec=%d", numsecflavors);
bcc1d071SRick Macklem	for (i = 0; i < eap->ex_numsecflavors; i++)
0f0869bcSRick Macklem		eap->ex_secflavors[i] = secflavors[i];
bcc1d071SRick Macklem	if (eap->ex_numsecflavors == 0) {
bcc1d071SRick Macklem		eap->ex_numsecflavors = 1;
bcc1d071SRick Macklem		eap->ex_secflavors[0] = AUTH_SYS;
a9148abdSDoug Rabson	}
8fae3551SRodney W. Grimes	done = FALSE;
6a09faf2SCraig Rodrigues
bcc1d071SRick Macklem	if (v4root_phase == 0) {
6a09faf2SCraig Rodrigues		build_iovec(&iov, &iovlen, "fstype", NULL, 0);
6a09faf2SCraig Rodrigues		build_iovec(&iov, &iovlen, "fspath", NULL, 0);
6a09faf2SCraig Rodrigues		build_iovec(&iov, &iovlen, "from", NULL, 0);
6a09faf2SCraig Rodrigues		build_iovec(&iov, &iovlen, "update", NULL, 0);
bcc1d071SRick Macklem		build_iovec(&iov, &iovlen, "export", eap,
bcc1d071SRick Macklem		    sizeof (struct export_args));
6a09faf2SCraig Rodrigues		build_iovec(&iov, &iovlen, "errmsg", errmsg, sizeof(errmsg));
bcc1d071SRick Macklem	}
6a09faf2SCraig Rodrigues
8fae3551SRodney W. Grimes	while (!done) {
8fae3551SRodney W. Grimes		switch (grp->gr_type) {
8fae3551SRodney W. Grimes		case GT_HOST:
6d359f31SIan Dowse			if (ai->ai_addr->sa_family == AF_INET6 && have_v6 == 0)
8360efbdSAlfred Perlstein				goto skip;
bcc1d071SRick Macklem			eap->ex_addr = ai->ai_addr;
bcc1d071SRick Macklem			eap->ex_addrlen = ai->ai_addrlen;
bcc1d071SRick Macklem			eap->ex_masklen = 0;
8fae3551SRodney W. Grimes			break;
8fae3551SRodney W. Grimes		case GT_NET:
60caaee2SIan Dowse			if (grp->gr_ptr.gt_net.nt_net.ss_family == AF_INET6 &&
8360efbdSAlfred Perlstein			    have_v6 == 0)
8360efbdSAlfred Perlstein				goto skip;
bcc1d071SRick Macklem			eap->ex_addr =
60caaee2SIan Dowse			    (struct sockaddr *)&grp->gr_ptr.gt_net.nt_net;
bcc1d071SRick Macklem			eap->ex_addrlen =
6a09faf2SCraig Rodrigues			    ((struct sockaddr *)&grp->gr_ptr.gt_net.nt_net)->sa_len;
bcc1d071SRick Macklem			eap->ex_mask =
60caaee2SIan Dowse			    (struct sockaddr *)&grp->gr_ptr.gt_net.nt_mask;
bcc1d071SRick Macklem			eap->ex_masklen = ((struct sockaddr *)&grp->gr_ptr.gt_net.nt_mask)->sa_len;
8fae3551SRodney W. Grimes			break;
6d359f31SIan Dowse		case GT_DEFAULT:
bcc1d071SRick Macklem			eap->ex_addr = NULL;
bcc1d071SRick Macklem			eap->ex_addrlen = 0;
bcc1d071SRick Macklem			eap->ex_mask = NULL;
bcc1d071SRick Macklem			eap->ex_masklen = 0;
6d359f31SIan Dowse			break;
8b5a6d67SBill Paul		case GT_IGNORE:
6a09faf2SCraig Rodrigues			ret = 0;
6a09faf2SCraig Rodrigues			goto error_exit;
8b5a6d67SBill Paul			break;
8fae3551SRodney W. Grimes		default:
74853402SPhilippe Charnier			syslog(LOG_ERR, "bad grouptype");
8fae3551SRodney W. Grimes			if (cp)
8fae3551SRodney W. Grimes				*cp = savedc;
6a09faf2SCraig Rodrigues			ret = 1;
6a09faf2SCraig Rodrigues			goto error_exit;
80c7cc1cSPedro F. Giffuni		}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes		/*
bcc1d071SRick Macklem		 * For V4:, use the nfssvc() syscall, instead of mount().
bcc1d071SRick Macklem		 */
bcc1d071SRick Macklem		if (v4root_phase == 2) {
bcc1d071SRick Macklem			nfsea.fspec = v4root_dirpath;
cc5efddeSRick Macklem			if (nfssvc(NFSSVC_V4ROOTEXPORT | NFSSVC_NEWSTRUCT,
cc5efddeSRick Macklem			    (caddr_t)&nfsea) < 0) {
bcc1d071SRick Macklem				syslog(LOG_ERR, "Exporting V4: failed");
cc5efddeSRick Macklem				ret = 2;
cc5efddeSRick Macklem				goto error_exit;
bcc1d071SRick Macklem			}
bcc1d071SRick Macklem		} else {
bcc1d071SRick Macklem			/*
8fae3551SRodney W. Grimes			 * XXX:
bcc1d071SRick Macklem			 * Maybe I should just use the fsb->f_mntonname path
bcc1d071SRick Macklem			 * instead of looping back up the dirp to the mount
bcc1d071SRick Macklem			 * point??
8fae3551SRodney W. Grimes			 * Also, needs to know how to export all types of local
87564113SPeter Wemm			 * exportable filesystems and not just "ufs".
8fae3551SRodney W. Grimes			 */
6a09faf2SCraig Rodrigues			iov[1].iov_base = fsb->f_fstypename; /* "fstype" */
6a09faf2SCraig Rodrigues			iov[1].iov_len = strlen(fsb->f_fstypename) + 1;
6a09faf2SCraig Rodrigues			iov[3].iov_base = fsb->f_mntonname; /* "fspath" */
6a09faf2SCraig Rodrigues			iov[3].iov_len = strlen(fsb->f_mntonname) + 1;
6a09faf2SCraig Rodrigues			iov[5].iov_base = fsb->f_mntfromname; /* "from" */
6a09faf2SCraig Rodrigues			iov[5].iov_len = strlen(fsb->f_mntfromname) + 1;
4a185fa6SBryan Drewery			errmsg[0] = '\0';
6a09faf2SCraig Rodrigues
55dd1327SCraig Rodrigues			while (nmount(iov, iovlen, fsb->f_flags) < 0) {
8fae3551SRodney W. Grimes				if (cp)
8fae3551SRodney W. Grimes					*cp-- = savedc;
8fae3551SRodney W. Grimes				else
8fae3551SRodney W. Grimes					cp = dirp + dirplen - 1;
6a09faf2SCraig Rodrigues				if (opt_flags & OP_QUIET) {
6a09faf2SCraig Rodrigues					ret = 1;
6a09faf2SCraig Rodrigues					goto error_exit;
6a09faf2SCraig Rodrigues				}
8fae3551SRodney W. Grimes				if (errno == EPERM) {
01709abfSIan Dowse					if (debug)
77909162SXin LI						warnx("can't change attributes for %s: %s",
77909162SXin LI						    dirp, errmsg);
8fae3551SRodney W. Grimes					syslog(LOG_ERR,
77909162SXin LI					   "can't change attributes for %s: %s",
77909162SXin LI					    dirp, errmsg);
6a09faf2SCraig Rodrigues					ret = 1;
6a09faf2SCraig Rodrigues					goto error_exit;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				if (opt_flags & OP_ALLDIRS) {
288fa14aSJoerg Wunsch					if (errno == EINVAL)
288fa14aSJoerg Wunsch						syslog(LOG_ERR,
288fa14aSJoerg Wunsch		"-alldirs requested but %s is not a filesystem mountpoint",
288fa14aSJoerg Wunsch						    dirp);
288fa14aSJoerg Wunsch					else
288fa14aSJoerg Wunsch						syslog(LOG_ERR,
288fa14aSJoerg Wunsch						    "could not remount %s: %m",
3980ac4fSGarrett Wollman						    dirp);
6a09faf2SCraig Rodrigues					ret = 1;
6a09faf2SCraig Rodrigues					goto error_exit;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				/* back up over the last component */
d90b3641SBrooks Davis				while (cp > dirp && *cp == '/')
8fae3551SRodney W. Grimes					cp--;
d90b3641SBrooks Davis				while (cp > dirp && *(cp - 1) != '/')
8fae3551SRodney W. Grimes					cp--;
8fae3551SRodney W. Grimes				if (cp == dirp) {
8fae3551SRodney W. Grimes					if (debug)
74853402SPhilippe Charnier						warnx("mnt unsucc");
bcc1d071SRick Macklem					syslog(LOG_ERR, "can't export %s %s",
bcc1d071SRick Macklem					    dirp, errmsg);
6a09faf2SCraig Rodrigues					ret = 1;
6a09faf2SCraig Rodrigues					goto error_exit;
8fae3551SRodney W. Grimes				}
8fae3551SRodney W. Grimes				savedc = *cp;
8fae3551SRodney W. Grimes				*cp = '\0';
bcc1d071SRick Macklem				/*
bcc1d071SRick Macklem				 * Check that we're still on the same
bcc1d071SRick Macklem				 * filesystem.
bcc1d071SRick Macklem				 */
bcc1d071SRick Macklem				if (statfs(dirp, &fsb1) != 0 ||
245bfd34SRyan Moeller				    fsidcmp(&fsb1.f_fsid, &fsb->f_fsid) != 0) {
f93caef2SIan Dowse					*cp = savedc;
bcc1d071SRick Macklem					syslog(LOG_ERR,
bcc1d071SRick Macklem					    "can't export %s %s", dirp,
37518a88SCraig Rodrigues					    errmsg);
6a09faf2SCraig Rodrigues					ret = 1;
6a09faf2SCraig Rodrigues					goto error_exit;
f93caef2SIan Dowse				}
8fae3551SRodney W. Grimes			}
bcc1d071SRick Macklem		}
bcc1d071SRick Macklem
bcc1d071SRick Macklem		/*
bcc1d071SRick Macklem		 * For the experimental server:
bcc1d071SRick Macklem		 * If this is the public directory, get the file handle
bcc1d071SRick Macklem		 * and load it into the kernel via the nfssvc() syscall.
bcc1d071SRick Macklem		 */
79b86807SEdward Tomasz Napierala		if ((exflags & MNT_EXPUBLIC) != 0) {
bcc1d071SRick Macklem			fhandle_t fh;
bcc1d071SRick Macklem			char *public_name;
bcc1d071SRick Macklem
bcc1d071SRick Macklem			if (eap->ex_indexfile != NULL)
bcc1d071SRick Macklem				public_name = eap->ex_indexfile;
bcc1d071SRick Macklem			else
bcc1d071SRick Macklem				public_name = dirp;
bcc1d071SRick Macklem			if (getfh(public_name, &fh) < 0)
bcc1d071SRick Macklem				syslog(LOG_ERR,
bcc1d071SRick Macklem				    "Can't get public fh for %s", public_name);
bcc1d071SRick Macklem			else if (nfssvc(NFSSVC_PUBLICFH, (caddr_t)&fh) < 0)
bcc1d071SRick Macklem				syslog(LOG_ERR,
bcc1d071SRick Macklem				    "Can't set public fh for %s", public_name);
0f0869bcSRick Macklem			else {
bcc1d071SRick Macklem				has_publicfh = 1;
0f0869bcSRick Macklem				has_set_publicfh = 1;
0f0869bcSRick Macklem				ep->ex_flag |= EX_PUBLICFH;
0f0869bcSRick Macklem			}
bcc1d071SRick Macklem		}
8360efbdSAlfred Perlsteinskip:
6d359f31SIan Dowse		if (ai != NULL)
8360efbdSAlfred Perlstein			ai = ai->ai_next;
8360efbdSAlfred Perlstein		if (ai == NULL)
8fae3551SRodney W. Grimes			done = TRUE;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	if (cp)
8fae3551SRodney W. Grimes		*cp = savedc;
6a09faf2SCraig Rodrigueserror_exit:
cc5efddeSRick Macklem	free(eap->ex_groups);
6a09faf2SCraig Rodrigues	/* free strings allocated by strdup() in getmntopts.c */
6a09faf2SCraig Rodrigues	if (iov != NULL) {
6a09faf2SCraig Rodrigues		free(iov[0].iov_base); /* fstype */
6a09faf2SCraig Rodrigues		free(iov[2].iov_base); /* fspath */
6a09faf2SCraig Rodrigues		free(iov[4].iov_base); /* from */
6a09faf2SCraig Rodrigues		free(iov[6].iov_base); /* update */
6a09faf2SCraig Rodrigues		free(iov[8].iov_base); /* export */
6a09faf2SCraig Rodrigues		free(iov[10].iov_base); /* errmsg */
6a09faf2SCraig Rodrigues
6a09faf2SCraig Rodrigues		/* free iov, allocated by realloc() */
6a09faf2SCraig Rodrigues		free(iov);
6a09faf2SCraig Rodrigues	}
6a09faf2SCraig Rodrigues	return (ret);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Translate a net address.
60caaee2SIan Dowse *
60caaee2SIan Dowse * If `maskflg' is nonzero, then `cp' is a netmask, not a network address.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierget_net(char *cp, struct netmsk *net, int maskflg)
8fae3551SRodney W. Grimes{
931c04f1SIan Dowse	struct netent *np = NULL;
8360efbdSAlfred Perlstein	char *name, *p, *prefp;
60caaee2SIan Dowse	struct sockaddr_in sin;
931c04f1SIan Dowse	struct sockaddr *sa = NULL;
8360efbdSAlfred Perlstein	struct addrinfo hints, *ai = NULL;
8360efbdSAlfred Perlstein	char netname[NI_MAXHOST];
8360efbdSAlfred Perlstein	long preflen;
8fae3551SRodney W. Grimes
01709abfSIan Dowse	p = prefp = NULL;
8360efbdSAlfred Perlstein	if ((opt_flags & OP_MASKLEN) && !maskflg) {
8360efbdSAlfred Perlstein		p = strchr(cp, '/');
8360efbdSAlfred Perlstein		*p = '\0';
8360efbdSAlfred Perlstein		prefp = p + 1;
8360efbdSAlfred Perlstein	}
8360efbdSAlfred Perlstein
931c04f1SIan Dowse	/*
931c04f1SIan Dowse	 * Check for a numeric address first. We wish to avoid
931c04f1SIan Dowse	 * possible DNS lookups in getnetbyname().
931c04f1SIan Dowse	 */
931c04f1SIan Dowse	if (isxdigit(*cp) || *cp == ':') {
8360efbdSAlfred Perlstein		memset(&hints, 0, sizeof hints);
60caaee2SIan Dowse		/* Ensure the mask and the network have the same family. */
60caaee2SIan Dowse		if (maskflg && (opt_flags & OP_NET))
60caaee2SIan Dowse			hints.ai_family = net->nt_net.ss_family;
60caaee2SIan Dowse		else if (!maskflg && (opt_flags & OP_HAVEMASK))
60caaee2SIan Dowse			hints.ai_family = net->nt_mask.ss_family;
60caaee2SIan Dowse		else
8360efbdSAlfred Perlstein			hints.ai_family = AF_UNSPEC;
8360efbdSAlfred Perlstein		hints.ai_flags = AI_NUMERICHOST;
931c04f1SIan Dowse		if (getaddrinfo(cp, NULL, &hints, &ai) == 0)
931c04f1SIan Dowse			sa = ai->ai_addr;
931c04f1SIan Dowse		if (sa != NULL && ai->ai_family == AF_INET) {
8fae3551SRodney W. Grimes			/*
60caaee2SIan Dowse			 * The address in `cp' is really a network address, so
60caaee2SIan Dowse			 * use inet_network() to re-interpret this correctly.
60caaee2SIan Dowse			 * e.g. "127.1" means 127.1.0.0, not 127.0.0.1.
8fae3551SRodney W. Grimes			 */
60caaee2SIan Dowse			bzero(&sin, sizeof sin);
8360efbdSAlfred Perlstein			sin.sin_family = AF_INET;
8360efbdSAlfred Perlstein			sin.sin_len = sizeof sin;
8360efbdSAlfred Perlstein			sin.sin_addr = inet_makeaddr(inet_network(cp), 0);
8360efbdSAlfred Perlstein			if (debug)
60caaee2SIan Dowse				fprintf(stderr, "get_net: v4 addr %s\n",
60caaee2SIan Dowse				    inet_ntoa(sin.sin_addr));
8360efbdSAlfred Perlstein			sa = (struct sockaddr *)&sin;
931c04f1SIan Dowse		}
931c04f1SIan Dowse	}
931c04f1SIan Dowse	if (sa == NULL && (np = getnetbyname(cp)) != NULL) {
931c04f1SIan Dowse		bzero(&sin, sizeof sin);
931c04f1SIan Dowse		sin.sin_family = AF_INET;
931c04f1SIan Dowse		sin.sin_len = sizeof sin;
931c04f1SIan Dowse		sin.sin_addr = inet_makeaddr(np->n_net, 0);
931c04f1SIan Dowse		sa = (struct sockaddr *)&sin;
931c04f1SIan Dowse	}
931c04f1SIan Dowse	if (sa == NULL)
8360efbdSAlfred Perlstein		goto fail;
8360efbdSAlfred Perlstein
60caaee2SIan Dowse	if (maskflg) {
60caaee2SIan Dowse		/* The specified sockaddr is a mask. */
60caaee2SIan Dowse		if (checkmask(sa) != 0)
8360efbdSAlfred Perlstein			goto fail;
60caaee2SIan Dowse		bcopy(sa, &net->nt_mask, sa->sa_len);
60caaee2SIan Dowse		opt_flags |= OP_HAVEMASK;
60caaee2SIan Dowse	} else {
60caaee2SIan Dowse		/* The specified sockaddr is a network address. */
60caaee2SIan Dowse		bcopy(sa, &net->nt_net, sa->sa_len);
0f4b7baaSPaul Traina
60caaee2SIan Dowse		/* Get a network name for the export list. */
60caaee2SIan Dowse		if (np) {
60caaee2SIan Dowse			name = np->n_name;
60caaee2SIan Dowse		} else if (getnameinfo(sa, sa->sa_len, netname, sizeof netname,
4f101318SHajimu UMEMOTO		   NULL, 0, NI_NUMERICHOST) == 0) {
60caaee2SIan Dowse			name = netname;
60caaee2SIan Dowse		} else {
60caaee2SIan Dowse			goto fail;
60caaee2SIan Dowse		}
60caaee2SIan Dowse		if ((net->nt_name = strdup(name)) == NULL)
60caaee2SIan Dowse			out_of_mem();
60caaee2SIan Dowse
60caaee2SIan Dowse		/*
60caaee2SIan Dowse		 * Extract a mask from either a "/<masklen>" suffix, or
60caaee2SIan Dowse		 * from the class of an IPv4 address.
60caaee2SIan Dowse		 */
8360efbdSAlfred Perlstein		if (opt_flags & OP_MASKLEN) {
8360efbdSAlfred Perlstein			preflen = strtol(prefp, NULL, 10);
60caaee2SIan Dowse			if (preflen < 0L || preflen == LONG_MAX)
8360efbdSAlfred Perlstein				goto fail;
60caaee2SIan Dowse			bcopy(sa, &net->nt_mask, sa->sa_len);
60caaee2SIan Dowse			if (makemask(&net->nt_mask, (int)preflen) != 0)
60caaee2SIan Dowse				goto fail;
60caaee2SIan Dowse			opt_flags |= OP_HAVEMASK;
8360efbdSAlfred Perlstein			*p = '/';
60caaee2SIan Dowse		} else if (sa->sa_family == AF_INET &&
60caaee2SIan Dowse		    (opt_flags & OP_MASK) == 0) {
60caaee2SIan Dowse			in_addr_t addr;
8360efbdSAlfred Perlstein
60caaee2SIan Dowse			addr = ((struct sockaddr_in *)sa)->sin_addr.s_addr;
60caaee2SIan Dowse			if (IN_CLASSA(addr))
60caaee2SIan Dowse				preflen = 8;
60caaee2SIan Dowse			else if (IN_CLASSB(addr))
60caaee2SIan Dowse				preflen = 16;
60caaee2SIan Dowse			else if (IN_CLASSC(addr))
60caaee2SIan Dowse				preflen = 24;
60caaee2SIan Dowse			else if (IN_CLASSD(addr))
60caaee2SIan Dowse				preflen = 28;
8360efbdSAlfred Perlstein			else
60caaee2SIan Dowse				preflen = 32;	/* XXX */
60caaee2SIan Dowse
60caaee2SIan Dowse			bcopy(sa, &net->nt_mask, sa->sa_len);
60caaee2SIan Dowse			makemask(&net->nt_mask, (int)preflen);
60caaee2SIan Dowse			opt_flags |= OP_HAVEMASK;
60caaee2SIan Dowse		}
8360efbdSAlfred Perlstein	}
8360efbdSAlfred Perlstein
8360efbdSAlfred Perlstein	if (ai)
8360efbdSAlfred Perlstein		freeaddrinfo(ai);
8360efbdSAlfred Perlstein	return 0;
8360efbdSAlfred Perlstein
8360efbdSAlfred Perlsteinfail:
8360efbdSAlfred Perlstein	if (ai)
8360efbdSAlfred Perlstein		freeaddrinfo(ai);
8360efbdSAlfred Perlstein	return 1;
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Parse out the next white space separated field
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charniernextfield(char **cp, char **endcp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	char *p;
eb1f7f43SAlexander Motin	char quot = 0;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	p = *cp;
8fae3551SRodney W. Grimes	while (*p == ' ' || *p == '\t')
8fae3551SRodney W. Grimes		p++;
eb1f7f43SAlexander Motin	*cp = p;
eb1f7f43SAlexander Motin	while (*p != '\0') {
eb1f7f43SAlexander Motin		if (quot) {
eb1f7f43SAlexander Motin			if (*p == quot)
eb1f7f43SAlexander Motin				quot = 0;
eb1f7f43SAlexander Motin		} else {
eb1f7f43SAlexander Motin			if (*p == '\\' && *(p + 1) != '\0')
8fae3551SRodney W. Grimes				p++;
eb1f7f43SAlexander Motin			else if (*p == '\'' || *p == '"')
eb1f7f43SAlexander Motin				quot = *p;
eb1f7f43SAlexander Motin			else if (*p == ' ' || *p == '\t')
eb1f7f43SAlexander Motin				break;
8fae3551SRodney W. Grimes		}
eb1f7f43SAlexander Motin		p++;
eb1f7f43SAlexander Motin	};
eb1f7f43SAlexander Motin	*endcp = p;
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Get an exports file line. Skip over blank lines and handle line
8fae3551SRodney W. Grimes * continuations.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charnierget_line(void)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	char *p, *cp;
91ca1a91SIan Dowse	size_t len;
8fae3551SRodney W. Grimes	int totlen, cont_line;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	/*
8fae3551SRodney W. Grimes	 * Loop around ignoring blank lines and getting all continuation lines.
8fae3551SRodney W. Grimes	 */
8fae3551SRodney W. Grimes	p = line;
8fae3551SRodney W. Grimes	totlen = 0;
8fae3551SRodney W. Grimes	do {
91ca1a91SIan Dowse		if ((p = fgetln(exp_file, &len)) == NULL)
8fae3551SRodney W. Grimes			return (0);
8fae3551SRodney W. Grimes		cp = p + len - 1;
8fae3551SRodney W. Grimes		cont_line = 0;
8fae3551SRodney W. Grimes		while (cp >= p &&
8fae3551SRodney W. Grimes		    (*cp == ' ' || *cp == '\t' || *cp == '\n' || *cp == '\\')) {
8fae3551SRodney W. Grimes			if (*cp == '\\')
8fae3551SRodney W. Grimes				cont_line = 1;
8fae3551SRodney W. Grimes			cp--;
8fae3551SRodney W. Grimes			len--;
8fae3551SRodney W. Grimes		}
376f8390SDima Dorfman		if (cont_line) {
376f8390SDima Dorfman			*++cp = ' ';
376f8390SDima Dorfman			len++;
376f8390SDima Dorfman		}
91ca1a91SIan Dowse		if (linesize < len + totlen + 1) {
91ca1a91SIan Dowse			linesize = len + totlen + 1;
91ca1a91SIan Dowse			line = realloc(line, linesize);
91ca1a91SIan Dowse			if (line == NULL)
91ca1a91SIan Dowse				out_of_mem();
91ca1a91SIan Dowse		}
91ca1a91SIan Dowse		memcpy(line + totlen, p, len);
8fae3551SRodney W. Grimes		totlen += len;
91ca1a91SIan Dowse		line[totlen] = '\0';
8fae3551SRodney W. Grimes	} while (totlen == 0 || cont_line);
8fae3551SRodney W. Grimes	return (1);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Parse a description of a credential.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
cc5efddeSRick Macklemparsecred(char *namelist, struct expcred *cr)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	char *name;
*2ffad162SRick Macklem	int inpos;
8fae3551SRodney W. Grimes	char *names;
8fae3551SRodney W. Grimes	struct passwd *pw;
8fae3551SRodney W. Grimes	struct group *gr;
*2ffad162SRick Macklem	gid_t groups[NGROUPS_MAX + 1];
*2ffad162SRick Macklem	int ngroups;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	/*
74853402SPhilippe Charnier	 * Set up the unprivileged user.
8fae3551SRodney W. Grimes	 */
*2ffad162SRick Macklem	cr->cr_groups = cr->cr_smallgrps;
3e2d36ffSRick Macklem	cr->cr_uid = UID_NOBODY;
3e2d36ffSRick Macklem	cr->cr_groups[0] = GID_NOGROUP;
8fae3551SRodney W. Grimes	cr->cr_ngroups = 1;
8fae3551SRodney W. Grimes	/*
8fae3551SRodney W. Grimes	 * Get the user's password table entry.
8fae3551SRodney W. Grimes	 */
eb1f7f43SAlexander Motin	names = namelist;
eb1f7f43SAlexander Motin	name = strsep_quote(&names, ":");
b875c2e9SJosh Paetzel	/* Bug?  name could be NULL here */
8fae3551SRodney W. Grimes	if (isdigit(*name) || *name == '-')
8fae3551SRodney W. Grimes		pw = getpwuid(atoi(name));
8fae3551SRodney W. Grimes	else
8fae3551SRodney W. Grimes		pw = getpwnam(name);
8fae3551SRodney W. Grimes	/*
8fae3551SRodney W. Grimes	 * Credentials specified as those of a user.
8fae3551SRodney W. Grimes	 */
8fae3551SRodney W. Grimes	if (names == NULL) {
8fae3551SRodney W. Grimes		if (pw == NULL) {
74853402SPhilippe Charnier			syslog(LOG_ERR, "unknown user: %s", name);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		cr->cr_uid = pw->pw_uid;
*2ffad162SRick Macklem		ngroups = NGROUPS_MAX + 1;
*2ffad162SRick Macklem		if (getgrouplist(pw->pw_name, pw->pw_gid, groups, &ngroups)) {
74853402SPhilippe Charnier			syslog(LOG_ERR, "too many groups");
*2ffad162SRick Macklem			ngroups = NGROUPS_MAX + 1;
020d6f96SAndriy Gapon		}
020d6f96SAndriy Gapon
8fae3551SRodney W. Grimes		/*
950cc395SStefan Farfeleder		 * Compress out duplicate.
8fae3551SRodney W. Grimes		 */
*2ffad162SRick Macklem		if (ngroups > 1 && groups[0] == groups[1]) {
*2ffad162SRick Macklem			ngroups--;
*2ffad162SRick Macklem			inpos = 2;
*2ffad162SRick Macklem		} else
*2ffad162SRick Macklem			inpos = 1;
*2ffad162SRick Macklem		if (ngroups > NGROUPS_MAX)
*2ffad162SRick Macklem			ngroups = NGROUPS_MAX;
*2ffad162SRick Macklem		if (ngroups > SMALLNGROUPS)
*2ffad162SRick Macklem			cr->cr_groups = malloc(ngroups * sizeof(gid_t));
*2ffad162SRick Macklem		cr->cr_ngroups = ngroups;
*2ffad162SRick Macklem		cr->cr_groups[0] = groups[0];
*2ffad162SRick Macklem		memcpy(&cr->cr_groups[1], &groups[inpos], (ngroups - 1) *
*2ffad162SRick Macklem		    sizeof(gid_t));
8fae3551SRodney W. Grimes		return;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	/*
8fae3551SRodney W. Grimes	 * Explicit credential specified as a colon separated list:
8fae3551SRodney W. Grimes	 *	uid:gid:gid:...
8fae3551SRodney W. Grimes	 */
8fae3551SRodney W. Grimes	if (pw != NULL)
8fae3551SRodney W. Grimes		cr->cr_uid = pw->pw_uid;
8fae3551SRodney W. Grimes	else if (isdigit(*name) || *name == '-')
8fae3551SRodney W. Grimes		cr->cr_uid = atoi(name);
8fae3551SRodney W. Grimes	else {
74853402SPhilippe Charnier		syslog(LOG_ERR, "unknown user: %s", name);
8fae3551SRodney W. Grimes		return;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	cr->cr_ngroups = 0;
cc5efddeSRick Macklem	while (names != NULL && *names != '\0' && cr->cr_ngroups < NGROUPS_MAX) {
eb1f7f43SAlexander Motin		name = strsep_quote(&names, ":");
8fae3551SRodney W. Grimes		if (isdigit(*name) || *name == '-') {
*2ffad162SRick Macklem			groups[cr->cr_ngroups++] = atoi(name);
8fae3551SRodney W. Grimes		} else {
8fae3551SRodney W. Grimes			if ((gr = getgrnam(name)) == NULL) {
74853402SPhilippe Charnier				syslog(LOG_ERR, "unknown group: %s", name);
8fae3551SRodney W. Grimes				continue;
8fae3551SRodney W. Grimes			}
*2ffad162SRick Macklem			groups[cr->cr_ngroups++] = gr->gr_gid;
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes	}
cc5efddeSRick Macklem	if (names != NULL && *names != '\0' && cr->cr_ngroups == NGROUPS_MAX)
74853402SPhilippe Charnier		syslog(LOG_ERR, "too many groups");
*2ffad162SRick Macklem	if (cr->cr_ngroups > SMALLNGROUPS)
*2ffad162SRick Macklem		cr->cr_groups = malloc(cr->cr_ngroups * sizeof(gid_t));
*2ffad162SRick Macklem	memcpy(cr->cr_groups, groups, cr->cr_ngroups * sizeof(gid_t));
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
0775314bSDoug Rabson#define	STRSIZ	(MNTNAMLEN+MNTPATHLEN+50)
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Routines that maintain the remote mounttab
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierget_mountlist(void)
8fae3551SRodney W. Grimes{
1da3e8b0SEmmanuel Vadot	struct mountlist *mlp;
87564113SPeter Wemm	char *host, *dirp, *cp;
8fae3551SRodney W. Grimes	char str[STRSIZ];
8fae3551SRodney W. Grimes	FILE *mlfile;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	if ((mlfile = fopen(_PATH_RMOUNTLIST, "r")) == NULL) {
39539916SBill Fumerola		if (errno == ENOENT)
39539916SBill Fumerola			return;
39539916SBill Fumerola		else {
74853402SPhilippe Charnier			syslog(LOG_ERR, "can't open %s", _PATH_RMOUNTLIST);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
39539916SBill Fumerola	}
8fae3551SRodney W. Grimes	while (fgets(str, STRSIZ, mlfile) != NULL) {
87564113SPeter Wemm		cp = str;
87564113SPeter Wemm		host = strsep(&cp, " \t\n");
87564113SPeter Wemm		dirp = strsep(&cp, " \t\n");
87564113SPeter Wemm		if (host == NULL || dirp == NULL)
8fae3551SRodney W. Grimes			continue;
8fae3551SRodney W. Grimes		mlp = (struct mountlist *)malloc(sizeof (*mlp));
74853402SPhilippe Charnier		if (mlp == (struct mountlist *)NULL)
74853402SPhilippe Charnier			out_of_mem();
0775314bSDoug Rabson		strncpy(mlp->ml_host, host, MNTNAMLEN);
0775314bSDoug Rabson		mlp->ml_host[MNTNAMLEN] = '\0';
0775314bSDoug Rabson		strncpy(mlp->ml_dirp, dirp, MNTPATHLEN);
0775314bSDoug Rabson		mlp->ml_dirp[MNTPATHLEN] = '\0';
1da3e8b0SEmmanuel Vadot
1da3e8b0SEmmanuel Vadot		SLIST_INSERT_HEAD(&mlhead, mlp, next);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	fclose(mlfile);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
19c46d8cSEdward Tomasz Napieralastatic void
01709abfSIan Dowsedel_mlist(char *hostp, char *dirp)
8fae3551SRodney W. Grimes{
1da3e8b0SEmmanuel Vadot	struct mountlist *mlp, *mlp2;
8fae3551SRodney W. Grimes	FILE *mlfile;
8fae3551SRodney W. Grimes	int fnd = 0;
8fae3551SRodney W. Grimes
1da3e8b0SEmmanuel Vadot	SLIST_FOREACH_SAFE(mlp, &mlhead, next, mlp2) {
8fae3551SRodney W. Grimes		if (!strcmp(mlp->ml_host, hostp) &&
8fae3551SRodney W. Grimes		    (!dirp || !strcmp(mlp->ml_dirp, dirp))) {
8fae3551SRodney W. Grimes			fnd = 1;
1da3e8b0SEmmanuel Vadot			SLIST_REMOVE(&mlhead, mlp, mountlist, next);
1da3e8b0SEmmanuel Vadot			free((caddr_t)mlp);
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	if (fnd) {
8fae3551SRodney W. Grimes		if ((mlfile = fopen(_PATH_RMOUNTLIST, "w")) == NULL) {
74853402SPhilippe Charnier			syslog(LOG_ERR,"can't update %s", _PATH_RMOUNTLIST);
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes		}
1da3e8b0SEmmanuel Vadot		SLIST_FOREACH(mlp, &mlhead, next) {
8fae3551SRodney W. Grimes			fprintf(mlfile, "%s %s\n", mlp->ml_host, mlp->ml_dirp);
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		fclose(mlfile);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnieradd_mlist(char *hostp, char *dirp)
8fae3551SRodney W. Grimes{
1da3e8b0SEmmanuel Vadot	struct mountlist *mlp;
8fae3551SRodney W. Grimes	FILE *mlfile;
8fae3551SRodney W. Grimes
1da3e8b0SEmmanuel Vadot	SLIST_FOREACH(mlp, &mlhead, next) {
8fae3551SRodney W. Grimes		if (!strcmp(mlp->ml_host, hostp) && !strcmp(mlp->ml_dirp, dirp))
8fae3551SRodney W. Grimes			return;
8fae3551SRodney W. Grimes	}
1da3e8b0SEmmanuel Vadot
8fae3551SRodney W. Grimes	mlp = (struct mountlist *)malloc(sizeof (*mlp));
74853402SPhilippe Charnier	if (mlp == (struct mountlist *)NULL)
74853402SPhilippe Charnier		out_of_mem();
0775314bSDoug Rabson	strncpy(mlp->ml_host, hostp, MNTNAMLEN);
0775314bSDoug Rabson	mlp->ml_host[MNTNAMLEN] = '\0';
0775314bSDoug Rabson	strncpy(mlp->ml_dirp, dirp, MNTPATHLEN);
0775314bSDoug Rabson	mlp->ml_dirp[MNTPATHLEN] = '\0';
1da3e8b0SEmmanuel Vadot	SLIST_INSERT_HEAD(&mlhead, mlp, next);
8fae3551SRodney W. Grimes	if ((mlfile = fopen(_PATH_RMOUNTLIST, "a")) == NULL) {
74853402SPhilippe Charnier		syslog(LOG_ERR, "can't update %s", _PATH_RMOUNTLIST);
8fae3551SRodney W. Grimes		return;
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	fprintf(mlfile, "%s %s\n", mlp->ml_host, mlp->ml_dirp);
8fae3551SRodney W. Grimes	fclose(mlfile);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Free up a group list.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierfree_grp(struct grouplist *grp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	if (grp->gr_type == GT_HOST) {
8360efbdSAlfred Perlstein		if (grp->gr_ptr.gt_addrinfo != NULL)
8360efbdSAlfred Perlstein			freeaddrinfo(grp->gr_ptr.gt_addrinfo);
8fae3551SRodney W. Grimes	} else if (grp->gr_type == GT_NET) {
8fae3551SRodney W. Grimes		if (grp->gr_ptr.gt_net.nt_name)
8fae3551SRodney W. Grimes			free(grp->gr_ptr.gt_net.nt_name);
8fae3551SRodney W. Grimes	}
*2ffad162SRick Macklem	if (grp->gr_anon.cr_groups != grp->gr_anon.cr_smallgrps)
*2ffad162SRick Macklem		free(grp->gr_anon.cr_groups);
8fae3551SRodney W. Grimes	free((caddr_t)grp);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes#ifdef DEBUG
19c46d8cSEdward Tomasz Napieralastatic void
8fae3551SRodney W. GrimesSYSLOG(int pri, const char *fmt, ...)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	va_list ap;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	va_start(ap, fmt);
8fae3551SRodney W. Grimes	vfprintf(stderr, fmt, ap);
8fae3551SRodney W. Grimes	va_end(ap);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes#endif /* DEBUG */
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Check options for consistency.
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charniercheck_options(struct dirlist *dp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes
bcc1d071SRick Macklem	if (v4root_phase == 0 && dp == NULL)
8fae3551SRodney W. Grimes	    return (1);
91196234SPeter Wemm	if ((opt_flags & (OP_MAPROOT | OP_MAPALL)) == (OP_MAPROOT | OP_MAPALL)) {
91196234SPeter Wemm	    syslog(LOG_ERR, "-mapall and -maproot mutually exclusive");
8fae3551SRodney W. Grimes	    return (1);
8fae3551SRodney W. Grimes	}
8fae3551SRodney W. Grimes	if ((opt_flags & OP_MASK) && (opt_flags & OP_NET) == 0) {
60caaee2SIan Dowse		syslog(LOG_ERR, "-mask requires -network");
60caaee2SIan Dowse		return (1);
60caaee2SIan Dowse	}
60caaee2SIan Dowse	if ((opt_flags & OP_NET) && (opt_flags & OP_HAVEMASK) == 0) {
60caaee2SIan Dowse		syslog(LOG_ERR, "-network requires mask specification");
60caaee2SIan Dowse		return (1);
60caaee2SIan Dowse	}
60caaee2SIan Dowse	if ((opt_flags & OP_MASK) && (opt_flags & OP_MASKLEN)) {
60caaee2SIan Dowse		syslog(LOG_ERR, "-mask and /masklen are mutually exclusive");
8fae3551SRodney W. Grimes		return (1);
8fae3551SRodney W. Grimes	}
bcc1d071SRick Macklem	if (v4root_phase > 0 &&
bcc1d071SRick Macklem	    (opt_flags &
bcc1d071SRick Macklem	     ~(OP_SEC | OP_MASK | OP_NET | OP_HAVEMASK | OP_MASKLEN)) != 0) {
bcc1d071SRick Macklem	    syslog(LOG_ERR,"only -sec,-net,-mask options allowed on V4:");
bcc1d071SRick Macklem	    return (1);
bcc1d071SRick Macklem	}
56cfc5edSRick Macklem	if ((opt_flags & OP_ALLDIRS) && dp->dp_left) {
56cfc5edSRick Macklem	    syslog(LOG_ERR, "-alldirs has multiple directories");
56cfc5edSRick Macklem	    return (1);
56cfc5edSRick Macklem	}
8fae3551SRodney W. Grimes	return (0);
8fae3551SRodney W. Grimes}
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes/*
8fae3551SRodney W. Grimes * Check an absolute directory path for any symbolic links. Return true
8fae3551SRodney W. Grimes */
19c46d8cSEdward Tomasz Napieralastatic int
a7a7d96cSPhilippe Charniercheck_dirpath(char *dirp)
8fae3551SRodney W. Grimes{
8fae3551SRodney W. Grimes	char *cp;
8fae3551SRodney W. Grimes	int ret = 1;
8fae3551SRodney W. Grimes	struct stat sb;
8fae3551SRodney W. Grimes
8fae3551SRodney W. Grimes	cp = dirp + 1;
8fae3551SRodney W. Grimes	while (*cp && ret) {
8fae3551SRodney W. Grimes		if (*cp == '/') {
8fae3551SRodney W. Grimes			*cp = '\0';
a62dc406SDoug Rabson			if (lstat(dirp, &sb) < 0 || !S_ISDIR(sb.st_mode))
8fae3551SRodney W. Grimes				ret = 0;
8fae3551SRodney W. Grimes			*cp = '/';
8fae3551SRodney W. Grimes		}
8fae3551SRodney W. Grimes		cp++;
8fae3551SRodney W. Grimes	}
a62dc406SDoug Rabson	if (lstat(dirp, &sb) < 0 || !S_ISDIR(sb.st_mode))
8fae3551SRodney W. Grimes		ret = 0;
8fae3551SRodney W. Grimes	return (ret);
8fae3551SRodney W. Grimes}
a62dc406SDoug Rabson
60caaee2SIan Dowse/*
60caaee2SIan Dowse * Make a netmask according to the specified prefix length. The ss_family
60caaee2SIan Dowse * and other non-address fields must be initialised before calling this.
60caaee2SIan Dowse */
19c46d8cSEdward Tomasz Napieralastatic int
60caaee2SIan Dowsemakemask(struct sockaddr_storage *ssp, int bitlen)
8360efbdSAlfred Perlstein{
60caaee2SIan Dowse	u_char *p;
60caaee2SIan Dowse	int bits, i, len;
8360efbdSAlfred Perlstein
60caaee2SIan Dowse	if ((p = sa_rawaddr((struct sockaddr *)ssp, &len)) == NULL)
60caaee2SIan Dowse		return (-1);
89fdc4e1SMike Barcroft	if (bitlen > len * CHAR_BIT)
60caaee2SIan Dowse		return (-1);
8360efbdSAlfred Perlstein
60caaee2SIan Dowse	for (i = 0; i < len; i++) {
a175f065SMarcelo Araujo		bits = MIN(CHAR_BIT, bitlen);
58202d89SRuslan Ermilov		*p++ = (u_char)~0 << (CHAR_BIT - bits);
60caaee2SIan Dowse		bitlen -= bits;
8360efbdSAlfred Perlstein	}
8360efbdSAlfred Perlstein	return 0;
8360efbdSAlfred Perlstein}
8360efbdSAlfred Perlstein
60caaee2SIan Dowse/*
60caaee2SIan Dowse * Check that the sockaddr is a valid netmask. Returns 0 if the mask
60caaee2SIan Dowse * is acceptable (i.e. of the form 1...10....0).
60caaee2SIan Dowse */
19c46d8cSEdward Tomasz Napieralastatic int
60caaee2SIan Dowsecheckmask(struct sockaddr *sa)
8360efbdSAlfred Perlstein{
60caaee2SIan Dowse	u_char *mask;
60caaee2SIan Dowse	int i, len;
60caaee2SIan Dowse
60caaee2SIan Dowse	if ((mask = sa_rawaddr(sa, &len)) == NULL)
60caaee2SIan Dowse		return (-1);
60caaee2SIan Dowse
60caaee2SIan Dowse	for (i = 0; i < len; i++)
60caaee2SIan Dowse		if (mask[i] != 0xff)
60caaee2SIan Dowse			break;
60caaee2SIan Dowse	if (i < len) {
60caaee2SIan Dowse		if (~mask[i] & (u_char)(~mask[i] + 1))
60caaee2SIan Dowse			return (-1);
60caaee2SIan Dowse		i++;
60caaee2SIan Dowse	}
60caaee2SIan Dowse	for (; i < len; i++)
60caaee2SIan Dowse		if (mask[i] != 0)
60caaee2SIan Dowse			return (-1);
60caaee2SIan Dowse	return (0);
60caaee2SIan Dowse}
60caaee2SIan Dowse
60caaee2SIan Dowse/*
60caaee2SIan Dowse * Compare two sockaddrs according to a specified mask. Return zero if
60caaee2SIan Dowse * `sa1' matches `sa2' when filtered by the netmask in `samask'.
3df5ecacSUlrich Spörlein * If samask is NULL, perform a full comparison.
60caaee2SIan Dowse */
19c46d8cSEdward Tomasz Napieralastatic int
60caaee2SIan Dowsesacmp(struct sockaddr *sa1, struct sockaddr *sa2, struct sockaddr *samask)
60caaee2SIan Dowse{
60caaee2SIan Dowse	unsigned char *p1, *p2, *mask;
60caaee2SIan Dowse	int len, i;
60caaee2SIan Dowse
60caaee2SIan Dowse	if (sa1->sa_family != sa2->sa_family ||
60caaee2SIan Dowse	    (p1 = sa_rawaddr(sa1, &len)) == NULL ||
60caaee2SIan Dowse	    (p2 = sa_rawaddr(sa2, NULL)) == NULL)
60caaee2SIan Dowse		return (1);
60caaee2SIan Dowse
60caaee2SIan Dowse	switch (sa1->sa_family) {
60caaee2SIan Dowse	case AF_INET6:
60caaee2SIan Dowse		if (((struct sockaddr_in6 *)sa1)->sin6_scope_id !=
60caaee2SIan Dowse		    ((struct sockaddr_in6 *)sa2)->sin6_scope_id)
60caaee2SIan Dowse			return (1);
60caaee2SIan Dowse		break;
60caaee2SIan Dowse	}
60caaee2SIan Dowse
60caaee2SIan Dowse	/* Simple binary comparison if no mask specified. */
60caaee2SIan Dowse	if (samask == NULL)
60caaee2SIan Dowse		return (memcmp(p1, p2, len));
60caaee2SIan Dowse
60caaee2SIan Dowse	/* Set up the mask, and do a mask-based comparison. */
60caaee2SIan Dowse	if (sa1->sa_family != samask->sa_family ||
60caaee2SIan Dowse	    (mask = sa_rawaddr(samask, NULL)) == NULL)
60caaee2SIan Dowse		return (1);
60caaee2SIan Dowse
60caaee2SIan Dowse	for (i = 0; i < len; i++)
60caaee2SIan Dowse		if ((p1[i] & mask[i]) != (p2[i] & mask[i]))
60caaee2SIan Dowse			return (1);
60caaee2SIan Dowse	return (0);
60caaee2SIan Dowse}
60caaee2SIan Dowse
60caaee2SIan Dowse/*
60caaee2SIan Dowse * Return a pointer to the part of the sockaddr that contains the
60caaee2SIan Dowse * raw address, and set *nbytes to its length in bytes. Returns
60caaee2SIan Dowse * NULL if the address family is unknown.
60caaee2SIan Dowse */
19c46d8cSEdward Tomasz Napieralastatic void *
60caaee2SIan Dowsesa_rawaddr(struct sockaddr *sa, int *nbytes) {
60caaee2SIan Dowse	void *p;
60caaee2SIan Dowse	int len;
8360efbdSAlfred Perlstein
8360efbdSAlfred Perlstein	switch (sa->sa_family) {
8360efbdSAlfred Perlstein	case AF_INET:
60caaee2SIan Dowse		len = sizeof(((struct sockaddr_in *)sa)->sin_addr);
60caaee2SIan Dowse		p = &((struct sockaddr_in *)sa)->sin_addr;
8360efbdSAlfred Perlstein		break;
8360efbdSAlfred Perlstein	case AF_INET6:
60caaee2SIan Dowse		len = sizeof(((struct sockaddr_in6 *)sa)->sin6_addr);
60caaee2SIan Dowse		p = &((struct sockaddr_in6 *)sa)->sin6_addr;
8360efbdSAlfred Perlstein		break;
8360efbdSAlfred Perlstein	default:
60caaee2SIan Dowse		p = NULL;
60caaee2SIan Dowse		len = 0;
8360efbdSAlfred Perlstein	}
8360efbdSAlfred Perlstein
60caaee2SIan Dowse	if (nbytes != NULL)
60caaee2SIan Dowse		*nbytes = len;
60caaee2SIan Dowse	return (p);
8360efbdSAlfred Perlstein}
8360efbdSAlfred Perlstein
19c46d8cSEdward Tomasz Napieralastatic void
a7a7d96cSPhilippe Charnierhuphandler(int sig __unused)
69d65572SIan Dowse{
19c46d8cSEdward Tomasz Napierala
69d65572SIan Dowse	got_sighup = 1;
69d65572SIan Dowse}
69d65572SIan Dowse
19c46d8cSEdward Tomasz Napieralastatic void
19c46d8cSEdward Tomasz Napieralaterminate(int sig __unused)
8360efbdSAlfred Perlstein{
a032b226SPawel Jakub Dawidek	pidfile_remove(pfh);
0775314bSDoug Rabson	rpcb_unset(MOUNTPROG, MOUNTVERS, NULL);
0775314bSDoug Rabson	rpcb_unset(MOUNTPROG, MOUNTVERS3, NULL);
8360efbdSAlfred Perlstein	exit (0);
8360efbdSAlfred Perlstein}
cc5efddeSRick Macklem
cc5efddeSRick Macklemstatic void
cc5efddeSRick Macklemcp_cred(struct expcred *outcr, struct expcred *incr)
cc5efddeSRick Macklem{
cc5efddeSRick Macklem
cc5efddeSRick Macklem	outcr->cr_uid = incr->cr_uid;
cc5efddeSRick Macklem	outcr->cr_ngroups = incr->cr_ngroups;
*2ffad162SRick Macklem	if (outcr->cr_ngroups > SMALLNGROUPS)
*2ffad162SRick Macklem		outcr->cr_groups = malloc(outcr->cr_ngroups * sizeof(gid_t));
*2ffad162SRick Macklem	else
*2ffad162SRick Macklem		outcr->cr_groups = outcr->cr_smallgrps;
cc5efddeSRick Macklem	memcpy(outcr->cr_groups, incr->cr_groups, incr->cr_ngroups *
cc5efddeSRick Macklem	    sizeof(gid_t));
cc5efddeSRick Macklem}