fs/smbsrv/smb_opipe.c

3db3f65cSamw/*
3db3f65cSamw * CDDL HEADER START
3db3f65cSamw *
3db3f65cSamw * The contents of this file are subject to the terms of the
3db3f65cSamw * Common Development and Distribution License (the "License").
3db3f65cSamw * You may not use this file except in compliance with the License.
3db3f65cSamw *
3db3f65cSamw * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
3db3f65cSamw * or http://www.opensolaris.org/os/licensing.
3db3f65cSamw * See the License for the specific language governing permissions
3db3f65cSamw * and limitations under the License.
3db3f65cSamw *
3db3f65cSamw * When distributing Covered Code, include this CDDL HEADER in each
3db3f65cSamw * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
3db3f65cSamw * If applicable, add the following below this CDDL HEADER, with the
3db3f65cSamw * fields enclosed by brackets "[]" replaced with your own identifying
3db3f65cSamw * information: Portions Copyright [yyyy] [name of copyright owner]
3db3f65cSamw *
3db3f65cSamw * CDDL HEADER END
3db3f65cSamw */
3db3f65cSamw/*
148c5f43SAlan Wright * Copyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved.
*68b2bbf2SGordon Ross * Copyright 2015 Nexenta Systems, Inc.  All rights reserved.
3db3f65cSamw */
3db3f65cSamw
3db3f65cSamw/*
3db3f65cSamw * This module provides the interface to NDR RPC.
3db3f65cSamw */
3db3f65cSamw
3db3f65cSamw#include <sys/stat.h>
3db3f65cSamw#include <sys/uio.h>
3db3f65cSamw#include <sys/ksynch.h>
*68b2bbf2SGordon Ross#include <sys/stropts.h>
*68b2bbf2SGordon Ross#include <sys/socket.h>
*68b2bbf2SGordon Ross#include <sys/filio.h>
bbf6f00cSJordan Brown#include <smbsrv/smb_kproto.h>
3db3f65cSamw#include <smbsrv/smb_xdr.h>
3db3f65cSamw
*68b2bbf2SGordon Ross/*
*68b2bbf2SGordon Ross * Allocate a new opipe and return it, or NULL, in which case
*68b2bbf2SGordon Ross * the caller will report "internal error".
*68b2bbf2SGordon Ross */
*68b2bbf2SGordon Rossstatic smb_opipe_t *
*68b2bbf2SGordon Rosssmb_opipe_alloc(smb_request_t *sr)
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States{
*68b2bbf2SGordon Ross	smb_server_t	*sv = sr->sr_server;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	smb_opipe_t	*opipe;
*68b2bbf2SGordon Ross	ksocket_t	sock;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	if (ksocket_socket(&sock, AF_UNIX, SOCK_STREAM, 0,
*68b2bbf2SGordon Ross	    KSOCKET_SLEEP, sr->user_cr) != 0)
*68b2bbf2SGordon Ross		return (NULL);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
8622ec45SGordon Ross	opipe = kmem_cache_alloc(smb_cache_opipe, KM_SLEEP);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	bzero(opipe, sizeof (smb_opipe_t));
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	mutex_init(&opipe->p_mutex, NULL, MUTEX_DEFAULT, NULL);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	cv_init(&opipe->p_cv, NULL, CV_DEFAULT, NULL);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	opipe->p_magic = SMB_OPIPE_MAGIC;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	opipe->p_server = sv;
*68b2bbf2SGordon Ross	opipe->p_refcnt = 1;
*68b2bbf2SGordon Ross	opipe->p_socket = sock;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	return (opipe);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States}
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
*68b2bbf2SGordon Ross/*
*68b2bbf2SGordon Ross * Destroy an opipe.  This is normally called from smb_ofile_delete
*68b2bbf2SGordon Ross * when the ofile has no more references and is about to be free'd.
*68b2bbf2SGordon Ross * This is also called here in error handling code paths, before
*68b2bbf2SGordon Ross * the opipe is installed under an ofile.
*68b2bbf2SGordon Ross */
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United Statesvoid
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United Statessmb_opipe_dealloc(smb_opipe_t *opipe)
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States{
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	smb_server_t *sv;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	SMB_OPIPE_VALID(opipe);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	sv = opipe->p_server;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	SMB_SERVER_VALID(sv);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
*68b2bbf2SGordon Ross	/*
*68b2bbf2SGordon Ross	 * This is called in the error path when opening,
*68b2bbf2SGordon Ross	 * in which case we close the socket here.
*68b2bbf2SGordon Ross	 */
*68b2bbf2SGordon Ross	if (opipe->p_socket != NULL)
*68b2bbf2SGordon Ross		(void) ksocket_close(opipe->p_socket, zone_kcred());
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	opipe->p_magic = (uint32_t)~SMB_OPIPE_MAGIC;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	cv_destroy(&opipe->p_cv);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	mutex_destroy(&opipe->p_mutex);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
8622ec45SGordon Ross	kmem_cache_free(smb_cache_opipe, opipe);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States}
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
3db3f65cSamw/*
*68b2bbf2SGordon Ross * Helper for open: build pipe name and connect.
*68b2bbf2SGordon Ross */
*68b2bbf2SGordon Rossstatic int
*68b2bbf2SGordon Rosssmb_opipe_connect(smb_request_t *sr, smb_opipe_t *opipe)
*68b2bbf2SGordon Ross{
*68b2bbf2SGordon Ross	struct sockaddr_un saddr;
*68b2bbf2SGordon Ross	smb_arg_open_t	*op = &sr->sr_open;
*68b2bbf2SGordon Ross	const char *name;
*68b2bbf2SGordon Ross	int rc;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	name = op->fqi.fq_path.pn_path;
*68b2bbf2SGordon Ross	name += strspn(name, "\\");
*68b2bbf2SGordon Ross	if (smb_strcasecmp(name, "PIPE", 4) == 0) {
*68b2bbf2SGordon Ross		name += 4;
*68b2bbf2SGordon Ross		name += strspn(name, "\\");
*68b2bbf2SGordon Ross	}
*68b2bbf2SGordon Ross	(void) strlcpy(opipe->p_name, name, SMB_OPIPE_MAXNAME);
*68b2bbf2SGordon Ross	(void) smb_strlwr(opipe->p_name);
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	bzero(&saddr, sizeof (saddr));
*68b2bbf2SGordon Ross	saddr.sun_family = AF_UNIX;
*68b2bbf2SGordon Ross	(void) snprintf(saddr.sun_path, sizeof (saddr.sun_path),
*68b2bbf2SGordon Ross	    "%s/%s", SMB_PIPE_DIR, opipe->p_name);
*68b2bbf2SGordon Ross	rc = ksocket_connect(opipe->p_socket, (struct sockaddr *)&saddr,
*68b2bbf2SGordon Ross	    sizeof (saddr), sr->user_cr);
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	return (rc);
*68b2bbf2SGordon Ross}
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross/*
*68b2bbf2SGordon Ross * Helper for open: encode and send the user info.
*68b2bbf2SGordon Ross *
*68b2bbf2SGordon Ross * We send information about this client + user to the
*68b2bbf2SGordon Ross * pipe service so it can use it for access checks.
*68b2bbf2SGordon Ross * The service MAY deny the open based on this info,
*68b2bbf2SGordon Ross * (i.e. anonymous session trying to open a pipe that
*68b2bbf2SGordon Ross * requires authentication) in which case we will read
*68b2bbf2SGordon Ross * an error status from the service and return that.
*68b2bbf2SGordon Ross */
*68b2bbf2SGordon Rossstatic void
*68b2bbf2SGordon Rosssmb_opipe_send_userinfo(smb_request_t *sr, smb_opipe_t *opipe,
*68b2bbf2SGordon Ross    smb_error_t *errp)
*68b2bbf2SGordon Ross{
*68b2bbf2SGordon Ross	XDR xdrs;
*68b2bbf2SGordon Ross	smb_netuserinfo_t nui;
*68b2bbf2SGordon Ross	smb_pipehdr_t phdr;
*68b2bbf2SGordon Ross	char *buf;
*68b2bbf2SGordon Ross	uint32_t buflen;
*68b2bbf2SGordon Ross	uint32_t status;
*68b2bbf2SGordon Ross	size_t iocnt = 0;
*68b2bbf2SGordon Ross	int rc;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	/*
*68b2bbf2SGordon Ross	 * Any errors building the XDR message etc.
*68b2bbf2SGordon Ross	 */
*68b2bbf2SGordon Ross	errp->status = NT_STATUS_INTERNAL_ERROR;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	smb_user_netinfo_init(sr->uid_user, &nui);
*68b2bbf2SGordon Ross	phdr.ph_magic = SMB_PIPE_HDR_MAGIC;
*68b2bbf2SGordon Ross	phdr.ph_uilen = xdr_sizeof(smb_netuserinfo_xdr, &nui);
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	buflen = sizeof (phdr) + phdr.ph_uilen;
*68b2bbf2SGordon Ross	buf = kmem_alloc(buflen, KM_SLEEP);
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	bcopy(&phdr, buf, sizeof (phdr));
*68b2bbf2SGordon Ross	xdrmem_create(&xdrs, buf + sizeof (phdr),
*68b2bbf2SGordon Ross	    buflen - (sizeof (phdr)), XDR_ENCODE);
*68b2bbf2SGordon Ross	if (!smb_netuserinfo_xdr(&xdrs, &nui))
*68b2bbf2SGordon Ross		goto out;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	/*
*68b2bbf2SGordon Ross	 * If we fail sending the netuserinfo or recv'ing the
*68b2bbf2SGordon Ross	 * status reponse, we have probably run into the limit
*68b2bbf2SGordon Ross	 * on the number of open pipes.  That's this status:
*68b2bbf2SGordon Ross	 */
*68b2bbf2SGordon Ross	errp->status = NT_STATUS_PIPE_NOT_AVAILABLE;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	rc = ksocket_send(opipe->p_socket, buf, buflen, 0,
*68b2bbf2SGordon Ross	    &iocnt, sr->user_cr);
*68b2bbf2SGordon Ross	if (rc == 0 && iocnt != buflen)
*68b2bbf2SGordon Ross		rc = EIO;
*68b2bbf2SGordon Ross	if (rc != 0)
*68b2bbf2SGordon Ross		goto out;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	rc = ksocket_recv(opipe->p_socket, &status, sizeof (status), 0,
*68b2bbf2SGordon Ross	    &iocnt, sr->user_cr);
*68b2bbf2SGordon Ross	if (rc != 0 || iocnt != sizeof (status))
*68b2bbf2SGordon Ross		goto out;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	/*
*68b2bbf2SGordon Ross	 * Return the status we read from the pipe service,
*68b2bbf2SGordon Ross	 * normally NT_STATUS_SUCCESS, but could be something
*68b2bbf2SGordon Ross	 * else like NT_STATUS_ACCESS_DENIED.
*68b2bbf2SGordon Ross	 */
*68b2bbf2SGordon Ross	errp->status = status;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Rossout:
*68b2bbf2SGordon Ross	xdr_destroy(&xdrs);
*68b2bbf2SGordon Ross	kmem_free(buf, buflen);
*68b2bbf2SGordon Ross	smb_user_netinfo_fini(&nui);
*68b2bbf2SGordon Ross}
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross/*
3db3f65cSamw * smb_opipe_open
3db3f65cSamw *
*68b2bbf2SGordon Ross * Open an RPC named pipe. This routine should be called if
3db3f65cSamw * a file open is requested on a share of type STYPE_IPC.
3db3f65cSamw * If we recognize the pipe, we setup a new ofile.
3db3f65cSamw *
*68b2bbf2SGordon Ross * Returns 0 on success, Otherwise an NT status code.
3db3f65cSamw */
3db3f65cSamwint
*68b2bbf2SGordon Rosssmb_opipe_open(smb_request_t *sr, uint32_t uniqid)
3db3f65cSamw{
148c5f43SAlan Wright	smb_arg_open_t	*op = &sr->sr_open;
*68b2bbf2SGordon Ross	smb_ofile_t *ofile;
3db3f65cSamw	smb_opipe_t *opipe;
3db3f65cSamw	smb_error_t err;
3db3f65cSamw
*68b2bbf2SGordon Ross	opipe = smb_opipe_alloc(sr);
*68b2bbf2SGordon Ross	if (opipe == NULL)
*68b2bbf2SGordon Ross		return (NT_STATUS_INTERNAL_ERROR);
3db3f65cSamw
*68b2bbf2SGordon Ross	if (smb_opipe_connect(sr, opipe) != 0) {
*68b2bbf2SGordon Ross		smb_opipe_dealloc(opipe);
8b2cc8acSafshin salek ardakani - Sun Microsystems - Irvine United States		return (NT_STATUS_OBJECT_NAME_NOT_FOUND);
8b2cc8acSafshin salek ardakani - Sun Microsystems - Irvine United States	}
8b2cc8acSafshin salek ardakani - Sun Microsystems - Irvine United States
*68b2bbf2SGordon Ross	smb_opipe_send_userinfo(sr, opipe, &err);
*68b2bbf2SGordon Ross	if (err.status != 0) {
*68b2bbf2SGordon Ross		smb_opipe_dealloc(opipe);
*68b2bbf2SGordon Ross		return (err.status);
*68b2bbf2SGordon Ross	}
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	/*
*68b2bbf2SGordon Ross	 * Note: If smb_ofile_open succeeds, the new ofile is
*68b2bbf2SGordon Ross	 * in the FID lists can can be used by I/O requests.
*68b2bbf2SGordon Ross	 */
*68b2bbf2SGordon Ross	op->create_options = 0;
*68b2bbf2SGordon Ross	op->pipe = opipe;
*68b2bbf2SGordon Ross	ofile = smb_ofile_open(sr, NULL, op,
*68b2bbf2SGordon Ross	    SMB_FTYPE_MESG_PIPE, uniqid, &err);
*68b2bbf2SGordon Ross	op->pipe = NULL;
*68b2bbf2SGordon Ross	if (ofile == NULL) {
*68b2bbf2SGordon Ross		smb_opipe_dealloc(opipe);
*68b2bbf2SGordon Ross		return (err.status);
*68b2bbf2SGordon Ross	}
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	/* An "up" pointer, for debug. */
*68b2bbf2SGordon Ross	opipe->p_ofile = ofile;
*68b2bbf2SGordon Ross
3db3f65cSamw	op->dsize = 0x01000;
3db3f65cSamw	op->dattr = FILE_ATTRIBUTE_NORMAL;
3db3f65cSamw	op->ftype = SMB_FTYPE_MESG_PIPE;
3db3f65cSamw	op->action_taken = SMB_OACT_LOCK | SMB_OACT_OPENED; /* 0x8001 */
3db3f65cSamw	op->devstate = SMB_PIPE_READMODE_MESSAGE
3db3f65cSamw	    | SMB_PIPE_TYPE_MESSAGE
3db3f65cSamw	    | SMB_PIPE_UNLIMITED_INSTANCES; /* 0x05ff */
*68b2bbf2SGordon Ross	op->fileid = ofile->f_fid;
3db3f65cSamw
*68b2bbf2SGordon Ross	sr->smb_fid = ofile->f_fid;
*68b2bbf2SGordon Ross	sr->fid_ofile = ofile;
3db3f65cSamw
3db3f65cSamw	return (NT_STATUS_SUCCESS);
3db3f65cSamw}
3db3f65cSamw
3db3f65cSamw/*
3db3f65cSamw * smb_opipe_close
3db3f65cSamw *
*68b2bbf2SGordon Ross * Called by smb_ofile_close for pipes.
*68b2bbf2SGordon Ross *
*68b2bbf2SGordon Ross * Note: ksocket_close may block while waiting for
*68b2bbf2SGordon Ross * any I/O threads with a hold to get out.
3db3f65cSamw */
3db3f65cSamwvoid
3db3f65cSamwsmb_opipe_close(smb_ofile_t *of)
3db3f65cSamw{
3db3f65cSamw	smb_opipe_t *opipe;
*68b2bbf2SGordon Ross	ksocket_t sock;
3db3f65cSamw
*68b2bbf2SGordon Ross	ASSERT(of->f_state == SMB_OFILE_STATE_CLOSING);
3db3f65cSamw	ASSERT(of->f_ftype == SMB_FTYPE_MESG_PIPE);
3db3f65cSamw	opipe = of->f_pipe;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	SMB_OPIPE_VALID(opipe);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
*68b2bbf2SGordon Ross	mutex_enter(&opipe->p_mutex);
*68b2bbf2SGordon Ross	sock = opipe->p_socket;
*68b2bbf2SGordon Ross	opipe->p_socket = NULL;
*68b2bbf2SGordon Ross	mutex_exit(&opipe->p_mutex);
3db3f65cSamw
*68b2bbf2SGordon Ross	(void) ksocket_shutdown(sock, SHUT_RDWR, of->f_cr);
*68b2bbf2SGordon Ross	(void) ksocket_close(sock, of->f_cr);
3db3f65cSamw}
3db3f65cSamw
3db3f65cSamw/*
3db3f65cSamw * smb_opipe_write
3db3f65cSamw *
3db3f65cSamw * Write RPC request data to the pipe.  The client should call smb_opipe_read
3db3f65cSamw * to complete the exchange and obtain the RPC response.
3db3f65cSamw *
3db3f65cSamw * Returns 0 on success or an errno on failure.
3db3f65cSamw */
3db3f65cSamwint
3db3f65cSamwsmb_opipe_write(smb_request_t *sr, struct uio *uio)
3db3f65cSamw{
*68b2bbf2SGordon Ross	struct nmsghdr msghdr;
*68b2bbf2SGordon Ross	smb_ofile_t *ofile;
3db3f65cSamw	smb_opipe_t *opipe;
*68b2bbf2SGordon Ross	ksocket_t sock;
*68b2bbf2SGordon Ross	size_t sent = 0;
*68b2bbf2SGordon Ross	int rc = 0;
3db3f65cSamw
*68b2bbf2SGordon Ross	ofile = sr->fid_ofile;
*68b2bbf2SGordon Ross	ASSERT(ofile->f_ftype == SMB_FTYPE_MESG_PIPE);
*68b2bbf2SGordon Ross	opipe = ofile->f_pipe;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	SMB_OPIPE_VALID(opipe);
3db3f65cSamw
*68b2bbf2SGordon Ross	mutex_enter(&opipe->p_mutex);
*68b2bbf2SGordon Ross	sock = opipe->p_socket;
*68b2bbf2SGordon Ross	if (sock != NULL)
*68b2bbf2SGordon Ross		ksocket_hold(sock);
*68b2bbf2SGordon Ross	mutex_exit(&opipe->p_mutex);
*68b2bbf2SGordon Ross	if (sock == NULL)
3db3f65cSamw		return (EBADF);
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	bzero(&msghdr, sizeof (msghdr));
*68b2bbf2SGordon Ross	msghdr.msg_iov = uio->uio_iov;
*68b2bbf2SGordon Ross	msghdr.msg_iovlen = uio->uio_iovcnt;
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	/*
*68b2bbf2SGordon Ross	 * This should block until we've sent it all,
*68b2bbf2SGordon Ross	 * or given up due to errors (pipe closed).
*68b2bbf2SGordon Ross	 */
*68b2bbf2SGordon Ross	while (uio->uio_resid > 0) {
*68b2bbf2SGordon Ross		rc = ksocket_sendmsg(sock, &msghdr, 0, &sent, ofile->f_cr);
*68b2bbf2SGordon Ross		if (rc != 0)
*68b2bbf2SGordon Ross			break;
*68b2bbf2SGordon Ross		uio->uio_resid -= sent;
3db3f65cSamw	}
3db3f65cSamw
*68b2bbf2SGordon Ross	ksocket_rele(sock);
3db3f65cSamw
*68b2bbf2SGordon Ross	return (rc);
3db3f65cSamw}
3db3f65cSamw
3db3f65cSamw/*
3db3f65cSamw * smb_opipe_read
3db3f65cSamw *
*68b2bbf2SGordon Ross * This interface may be called from smb_opipe_transact (write, read)
*68b2bbf2SGordon Ross * or from smb_read / smb2_read to get the rest of an RPC response.
*68b2bbf2SGordon Ross * The response data (and length) are returned via the uio.
3db3f65cSamw */
3db3f65cSamwint
3db3f65cSamwsmb_opipe_read(smb_request_t *sr, struct uio *uio)
3db3f65cSamw{
*68b2bbf2SGordon Ross	struct nmsghdr msghdr;
*68b2bbf2SGordon Ross	smb_ofile_t *ofile;
3db3f65cSamw	smb_opipe_t *opipe;
*68b2bbf2SGordon Ross	ksocket_t sock;
*68b2bbf2SGordon Ross	size_t recvcnt = 0;
3db3f65cSamw	int rc;
3db3f65cSamw
*68b2bbf2SGordon Ross	ofile = sr->fid_ofile;
*68b2bbf2SGordon Ross	ASSERT(ofile->f_ftype == SMB_FTYPE_MESG_PIPE);
*68b2bbf2SGordon Ross	opipe = ofile->f_pipe;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	SMB_OPIPE_VALID(opipe);
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
*68b2bbf2SGordon Ross	mutex_enter(&opipe->p_mutex);
*68b2bbf2SGordon Ross	sock = opipe->p_socket;
*68b2bbf2SGordon Ross	if (sock != NULL)
*68b2bbf2SGordon Ross		ksocket_hold(sock);
*68b2bbf2SGordon Ross	mutex_exit(&opipe->p_mutex);
*68b2bbf2SGordon Ross	if (sock == NULL)
3db3f65cSamw		return (EBADF);
3db3f65cSamw
*68b2bbf2SGordon Ross	bzero(&msghdr, sizeof (msghdr));
*68b2bbf2SGordon Ross	msghdr.msg_iov = uio->uio_iov;
*68b2bbf2SGordon Ross	msghdr.msg_iovlen = uio->uio_iovcnt;
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States
3db3f65cSamw	/*
*68b2bbf2SGordon Ross	 * This should block only if there's no data.
*68b2bbf2SGordon Ross	 * A single call to recvmsg does just that.
*68b2bbf2SGordon Ross	 * (Intentionaly no recv loop here.)
3db3f65cSamw	 */
*68b2bbf2SGordon Ross	rc = ksocket_recvmsg(sock, &msghdr, 0,
*68b2bbf2SGordon Ross	    &recvcnt, ofile->f_cr);
*68b2bbf2SGordon Ross	if (rc != 0)
*68b2bbf2SGordon Ross		goto out;
3db3f65cSamw
*68b2bbf2SGordon Ross	if (recvcnt == 0) {
*68b2bbf2SGordon Ross		/* Other side closed. */
*68b2bbf2SGordon Ross		rc = EPIPE;
*68b2bbf2SGordon Ross		goto out;
3db3f65cSamw	}
*68b2bbf2SGordon Ross	uio->uio_resid -= recvcnt;
3db3f65cSamw
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	/*
*68b2bbf2SGordon Ross	 * If we filled the user's buffer,
*68b2bbf2SGordon Ross	 * find out if there's more data.
9fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States	 */
*68b2bbf2SGordon Ross	if (uio->uio_resid == 0) {
*68b2bbf2SGordon Ross		int rc2, nread, trval;
*68b2bbf2SGordon Ross		rc2 = ksocket_ioctl(sock, FIONREAD, (intptr_t)&nread,
*68b2bbf2SGordon Ross		    &trval, ofile->f_cr);
*68b2bbf2SGordon Ross		if (rc2 == 0 && nread != 0)
*68b2bbf2SGordon Ross			rc = E2BIG;	/* more data */
*68b2bbf2SGordon Ross	}
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Rossout:
*68b2bbf2SGordon Ross	ksocket_rele(sock);
*68b2bbf2SGordon Ross
*68b2bbf2SGordon Ross	return (rc);
3db3f65cSamw}