1 /* $OpenBSD: krpc_subr.c,v 1.29 2015/08/24 14:00:29 bluhm Exp $ */ 2 /* $NetBSD: krpc_subr.c,v 1.12.4.1 1996/06/07 00:52:26 cgd Exp $ */ 3 4 /* 5 * Copyright (c) 1995 Gordon Ross, Adam Glass 6 * Copyright (c) 1992 Regents of the University of California. 7 * All rights reserved. 8 * 9 * This software was developed by the Computer Systems Engineering group 10 * at Lawrence Berkeley Laboratory under DARPA contract BG 91-66 and 11 * contributed to Berkeley. 12 * 13 * Redistribution and use in source and binary forms, with or without 14 * modification, are permitted provided that the following conditions 15 * are met: 16 * 1. Redistributions of source code must retain the above copyright 17 * notice, this list of conditions and the following disclaimer. 18 * 2. Redistributions in binary form must reproduce the above copyright 19 * notice, this list of conditions and the following disclaimer in the 20 * documentation and/or other materials provided with the distribution. 21 * 3. All advertising materials mentioning features or use of this software 22 * must display the following acknowledgement: 23 * This product includes software developed by the University of 24 * California, Lawrence Berkeley Laboratory and its contributors. 25 * 4. Neither the name of the University nor the names of its contributors 26 * may be used to endorse or promote products derived from this software 27 * without specific prior written permission. 28 * 29 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 30 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 31 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 32 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 33 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 34 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 35 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 36 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 37 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 38 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 39 * SUCH DAMAGE. 40 * 41 * partially based on: 42 * libnetboot/rpc.c 43 * @(#) Header: rpc.c,v 1.12 93/09/28 08:31:56 leres Exp (LBL) 44 */ 45 46 #include <sys/param.h> 47 #include <sys/systm.h> 48 #include <sys/conf.h> 49 #include <sys/ioctl.h> 50 #include <sys/proc.h> 51 #include <sys/mount.h> 52 #include <sys/mbuf.h> 53 #include <sys/reboot.h> 54 #include <sys/socket.h> 55 #include <sys/socketvar.h> 56 57 #include <netinet/in.h> 58 59 #include <nfs/rpcv2.h> 60 #include <nfs/krpc.h> 61 #include <nfs/xdr_subs.h> 62 #include <crypto/idgen.h> 63 64 /* 65 * Kernel support for Sun RPC 66 * 67 * Used currently for bootstrapping in nfs diskless configurations. 68 */ 69 70 /* 71 * Generic RPC headers 72 */ 73 74 struct auth_info { 75 u_int32_t authtype; /* auth type */ 76 u_int32_t authlen; /* auth length */ 77 }; 78 79 struct auth_unix { 80 int32_t ua_time; 81 int32_t ua_hostname; /* null */ 82 int32_t ua_uid; 83 int32_t ua_gid; 84 int32_t ua_gidlist; /* null */ 85 }; 86 87 struct rpc_call { 88 u_int32_t rp_xid; /* request transaction id */ 89 int32_t rp_direction; /* call direction (0) */ 90 u_int32_t rp_rpcvers; /* rpc version (2) */ 91 u_int32_t rp_prog; /* program */ 92 u_int32_t rp_vers; /* version */ 93 u_int32_t rp_proc; /* procedure */ 94 struct auth_info rpc_auth; 95 struct auth_unix rpc_unix; 96 struct auth_info rpc_verf; 97 }; 98 99 struct rpc_reply { 100 u_int32_t rp_xid; /* request transaction id */ 101 int32_t rp_direction; /* call direction (1) */ 102 int32_t rp_astatus; /* accept status (0: accepted) */ 103 union { 104 u_int32_t rpu_errno; 105 struct { 106 struct auth_info rok_auth; 107 u_int32_t rok_status; 108 } rpu_rok; 109 } rp_u; 110 }; 111 #define rp_errno rp_u.rpu_errno 112 #define rp_auth rp_u.rpu_rok.rok_auth 113 #define rp_status rp_u.rpu_rok.rok_status 114 115 #define MIN_REPLY_HDR 16 /* xid, dir, astat, errno */ 116 117 u_int32_t krpc_get_xid(void); 118 119 /* 120 * Return an unpredictable XID. 121 */ 122 u_int32_t 123 krpc_get_xid(void) 124 { 125 static struct idgen32_ctx krpc_xid_ctx; 126 static int called = 0; 127 128 if (!called) { 129 called = 1; 130 idgen32_init(&krpc_xid_ctx); 131 } 132 return idgen32(&krpc_xid_ctx); 133 } 134 135 /* 136 * What is the longest we will wait before re-sending a request? 137 * Note this is also the frequency of "RPC timeout" messages. 138 * The re-send loop count sup linearly to this maximum, so the 139 * first complaint will happen after (1+2+3+4+5)=15 seconds. 140 */ 141 #define MAX_RESEND_DELAY 5 /* seconds */ 142 143 /* 144 * Call portmap to lookup a port number for a particular rpc program 145 * Returns non-zero error on failure. 146 */ 147 int 148 krpc_portmap(struct sockaddr_in *sin, u_int prog, u_int vers, u_int16_t *portp) 149 { 150 struct sdata { 151 u_int32_t prog; /* call program */ 152 u_int32_t vers; /* call version */ 153 u_int32_t proto; /* call protocol */ 154 u_int32_t port; /* call port (unused) */ 155 } *sdata; 156 struct rdata { 157 u_int16_t pad; 158 u_int16_t port; 159 } *rdata; 160 struct mbuf *m; 161 int error; 162 163 /* The portmapper port is fixed. */ 164 if (prog == PMAPPROG) { 165 *portp = htons(PMAPPORT); 166 return 0; 167 } 168 169 m = m_get(M_WAIT, MT_DATA); 170 sdata = mtod(m, struct sdata *); 171 m->m_len = sizeof(*sdata); 172 173 /* Do the RPC to get it. */ 174 sdata->prog = txdr_unsigned(prog); 175 sdata->vers = txdr_unsigned(vers); 176 sdata->proto = txdr_unsigned(IPPROTO_UDP); 177 sdata->port = 0; 178 179 sin->sin_port = htons(PMAPPORT); 180 error = krpc_call(sin, PMAPPROG, PMAPVERS, 181 PMAPPROC_GETPORT, &m, NULL, -1); 182 if (error) 183 return error; 184 185 if (m->m_len < sizeof(*rdata)) { 186 m = m_pullup(m, sizeof(*rdata)); 187 if (m == NULL) 188 return ENOBUFS; 189 } 190 rdata = mtod(m, struct rdata *); 191 *portp = rdata->port; 192 193 m_freem(m); 194 return 0; 195 } 196 197 /* 198 * Do a remote procedure call (RPC) and wait for its reply. 199 * If from_p is non-null, then we are doing broadcast, and 200 * the address from whence the response came is saved there. 201 * data: input/output 202 * from_p: output 203 */ 204 int 205 krpc_call(struct sockaddr_in *sa, u_int prog, u_int vers, u_int func, 206 struct mbuf **data, struct mbuf **from_p, int retries) 207 { 208 struct socket *so; 209 struct sockaddr_in *sin; 210 struct mbuf *m, *nam, *mhead, *from, *mopt; 211 struct rpc_call *call; 212 struct rpc_reply *reply; 213 struct uio auio; 214 int error, rcvflg, timo, secs, len; 215 static u_int32_t xid = 0; 216 char addr[INET_ADDRSTRLEN]; 217 int *ip; 218 struct timeval tv; 219 220 /* 221 * Validate address family. 222 * Sorry, this is INET specific... 223 */ 224 if (sa->sin_family != AF_INET) 225 return (EAFNOSUPPORT); 226 227 /* Free at end if not null. */ 228 nam = mhead = NULL; 229 from = NULL; 230 231 /* 232 * Create socket and set its receive timeout. 233 */ 234 if ((error = socreate(AF_INET, &so, SOCK_DGRAM, 0))) 235 goto out; 236 237 m = m_get(M_WAIT, MT_SOOPTS); 238 tv.tv_sec = 1; 239 tv.tv_usec = 0; 240 memcpy(mtod(m, struct timeval *), &tv, sizeof tv); 241 m->m_len = sizeof(tv); 242 if ((error = sosetopt(so, SOL_SOCKET, SO_RCVTIMEO, m))) 243 goto out; 244 245 /* 246 * Enable broadcast if necessary. 247 */ 248 if (from_p) { 249 int32_t *on; 250 m = m_get(M_WAIT, MT_SOOPTS); 251 on = mtod(m, int32_t *); 252 m->m_len = sizeof(*on); 253 *on = 1; 254 if ((error = sosetopt(so, SOL_SOCKET, SO_BROADCAST, m))) 255 goto out; 256 } 257 258 /* 259 * Bind the local endpoint to a reserved port, 260 * because some NFS servers refuse requests from 261 * non-reserved (non-privileged) ports. 262 */ 263 MGET(mopt, M_WAIT, MT_SOOPTS); 264 mopt->m_len = sizeof(int); 265 ip = mtod(mopt, int *); 266 *ip = IP_PORTRANGE_LOW; 267 error = sosetopt(so, IPPROTO_IP, IP_PORTRANGE, mopt); 268 if (error) 269 goto out; 270 271 MGET(m, M_WAIT, MT_SONAME); 272 sin = mtod(m, struct sockaddr_in *); 273 memset(sin, 0, sizeof(*sin)); 274 sin->sin_len = m->m_len = sizeof(struct sockaddr_in); 275 sin->sin_family = AF_INET; 276 sin->sin_addr.s_addr = INADDR_ANY; 277 sin->sin_port = htons(0); 278 error = sobind(so, m, &proc0); 279 m_freem(m); 280 if (error) { 281 printf("bind failed\n"); 282 goto out; 283 } 284 285 MGET(mopt, M_WAIT, MT_SOOPTS); 286 mopt->m_len = sizeof(int); 287 ip = mtod(mopt, int *); 288 *ip = IP_PORTRANGE_DEFAULT; 289 error = sosetopt(so, IPPROTO_IP, IP_PORTRANGE, mopt); 290 if (error) 291 goto out; 292 293 /* 294 * Setup socket address for the server. 295 */ 296 nam = m_get(M_WAIT, MT_SONAME); 297 sin = mtod(nam, struct sockaddr_in *); 298 bcopy(sa, sin, (nam->m_len = sa->sin_len)); 299 300 /* 301 * Prepend RPC message header. 302 */ 303 mhead = m_gethdr(M_WAIT, MT_DATA); 304 mhead->m_next = *data; 305 call = mtod(mhead, struct rpc_call *); 306 mhead->m_len = sizeof(*call); 307 memset(call, 0, sizeof(*call)); 308 /* rpc_call part */ 309 xid = krpc_get_xid(); 310 call->rp_xid = txdr_unsigned(xid); 311 /* call->rp_direction = 0; */ 312 call->rp_rpcvers = txdr_unsigned(2); 313 call->rp_prog = txdr_unsigned(prog); 314 call->rp_vers = txdr_unsigned(vers); 315 call->rp_proc = txdr_unsigned(func); 316 /* rpc_auth part (auth_unix as root) */ 317 call->rpc_auth.authtype = txdr_unsigned(RPCAUTH_UNIX); 318 call->rpc_auth.authlen = txdr_unsigned(sizeof(struct auth_unix)); 319 /* rpc_verf part (auth_null) */ 320 call->rpc_verf.authtype = 0; 321 call->rpc_verf.authlen = 0; 322 323 /* 324 * Setup packet header 325 */ 326 len = 0; 327 m = mhead; 328 while (m) { 329 len += m->m_len; 330 m = m->m_next; 331 } 332 mhead->m_pkthdr.len = len; 333 mhead->m_pkthdr.ph_ifidx = 0; 334 335 /* 336 * Send it, repeatedly, until a reply is received, 337 * but delay each re-send by an increasing amount. 338 * If the delay hits the maximum, start complaining. 339 */ 340 for (timo = 0; retries; retries--) { 341 /* Send RPC request (or re-send). */ 342 m = m_copym(mhead, 0, M_COPYALL, M_WAIT); 343 if (m == NULL) { 344 error = ENOBUFS; 345 goto out; 346 } 347 error = sosend(so, nam, NULL, m, NULL, 0); 348 if (error) { 349 printf("krpc_call: sosend: %d\n", error); 350 goto out; 351 } 352 m = NULL; 353 354 /* Determine new timeout. */ 355 if (timo < MAX_RESEND_DELAY) 356 timo++; 357 else 358 printf("RPC timeout for server %s (0x%x) prog %u\n", 359 inet_ntop(AF_INET, &sin->sin_addr, 360 addr, sizeof(addr)), 361 ntohl(sin->sin_addr.s_addr), prog); 362 363 /* 364 * Wait for up to timo seconds for a reply. 365 * The socket receive timeout was set to 1 second. 366 */ 367 secs = timo; 368 while (secs > 0) { 369 m_freem(from); 370 from = NULL; 371 372 m_freem(m); 373 m = NULL; 374 375 auio.uio_resid = len = 1<<16; 376 auio.uio_procp = NULL; 377 rcvflg = 0; 378 error = soreceive(so, &from, &auio, &m, NULL, &rcvflg, 379 0); 380 if (error == EWOULDBLOCK) { 381 secs--; 382 continue; 383 } 384 if (error) 385 goto out; 386 len -= auio.uio_resid; 387 388 /* Does the reply contain at least a header? */ 389 if (len < MIN_REPLY_HDR) 390 continue; 391 if (m->m_len < MIN_REPLY_HDR) 392 continue; 393 reply = mtod(m, struct rpc_reply *); 394 395 /* Is it the right reply? */ 396 if (reply->rp_direction != txdr_unsigned(RPC_REPLY)) 397 continue; 398 399 if (reply->rp_xid != txdr_unsigned(xid)) 400 continue; 401 402 /* Was RPC accepted? (authorization OK) */ 403 if (reply->rp_astatus != 0) { 404 error = fxdr_unsigned(u_int32_t, reply->rp_errno); 405 printf("rpc denied, error=%d\n", error); 406 continue; 407 } 408 409 /* Did the call succeed? */ 410 if (reply->rp_status != 0) { 411 error = fxdr_unsigned(u_int32_t, reply->rp_status); 412 printf("rpc denied, status=%d\n", error); 413 continue; 414 } 415 416 goto gotreply; /* break two levels */ 417 418 } /* while secs */ 419 } /* forever send/receive */ 420 421 error = ETIMEDOUT; 422 goto out; 423 424 gotreply: 425 426 /* 427 * Get RPC reply header into first mbuf, 428 * get its length, then strip it off. 429 */ 430 len = sizeof(*reply); 431 if (m->m_len < len) { 432 m = m_pullup(m, len); 433 if (m == NULL) { 434 error = ENOBUFS; 435 goto out; 436 } 437 } 438 reply = mtod(m, struct rpc_reply *); 439 if (reply->rp_auth.authtype != 0) { 440 len += fxdr_unsigned(u_int32_t, reply->rp_auth.authlen); 441 len = (len + 3) & ~3; /* XXX? */ 442 } 443 m_adj(m, len); 444 445 /* result */ 446 *data = m; 447 if (from_p && error == 0) { 448 *from_p = from; 449 from = NULL; 450 } 451 452 out: 453 m_freem(nam); 454 m_freem(mhead); 455 m_freem(from); 456 soclose(so); 457 return error; 458 } 459 460 /* 461 * eXternal Data Representation routines. 462 * (but with non-standard args...) 463 */ 464 465 /* 466 * String representation for RPC. 467 */ 468 struct xdr_string { 469 u_int32_t len; /* length without null or padding */ 470 char data[4]; /* data (longer, of course) */ 471 /* data is padded to a long-word boundary */ 472 }; 473 474 struct mbuf * 475 xdr_string_encode(char *str, int len) 476 { 477 struct mbuf *m; 478 struct xdr_string *xs; 479 int dlen; /* padded string length */ 480 int mlen; /* message length */ 481 482 dlen = (len + 3) & ~3; 483 mlen = dlen + 4; 484 485 if (mlen > MCLBYTES) /* If too big, we just can't do it. */ 486 return (NULL); 487 488 m = m_get(M_WAIT, MT_DATA); 489 if (mlen > MLEN) { 490 MCLGET(m, M_WAIT); 491 if ((m->m_flags & M_EXT) == 0) { 492 (void) m_free(m); /* There can be only one. */ 493 return (NULL); 494 } 495 } 496 xs = mtod(m, struct xdr_string *); 497 m->m_len = mlen; 498 xs->len = txdr_unsigned(len); 499 bcopy(str, xs->data, len); 500 return (m); 501 } 502 503 struct mbuf * 504 xdr_string_decode(struct mbuf *m, char *str, int *len_p) 505 { 506 struct xdr_string *xs; 507 int mlen; /* message length */ 508 int slen; /* string length */ 509 510 if (m->m_len < 4) { 511 m = m_pullup(m, 4); 512 if (m == NULL) 513 return (NULL); 514 } 515 xs = mtod(m, struct xdr_string *); 516 slen = fxdr_unsigned(u_int32_t, xs->len); 517 mlen = 4 + ((slen + 3) & ~3); 518 519 if (slen > *len_p) 520 slen = *len_p; 521 if (slen > m->m_pkthdr.len) { 522 m_freem(m); 523 return (NULL); 524 } 525 m_copydata(m, 4, slen, str); 526 m_adj(m, mlen); 527 528 str[slen] = '\0'; 529 *len_p = slen; 530 531 return (m); 532 } 533 534 535 /* 536 * Inet address in RPC messages 537 * (Note, really four ints, NOT chars. Blech.) 538 */ 539 struct xdr_inaddr { 540 u_int32_t atype; 541 u_int32_t addr[4]; 542 }; 543 544 struct mbuf * 545 xdr_inaddr_encode(struct in_addr *ia) 546 { 547 struct mbuf *m; 548 struct xdr_inaddr *xi; 549 u_int8_t *cp; 550 u_int32_t *ip; 551 552 m = m_get(M_WAIT, MT_DATA); 553 xi = mtod(m, struct xdr_inaddr *); 554 m->m_len = sizeof(*xi); 555 xi->atype = txdr_unsigned(1); 556 ip = xi->addr; 557 cp = (u_int8_t *)&ia->s_addr; 558 *ip++ = txdr_unsigned(*cp++); 559 *ip++ = txdr_unsigned(*cp++); 560 *ip++ = txdr_unsigned(*cp++); 561 *ip++ = txdr_unsigned(*cp++); 562 563 return (m); 564 } 565 566 struct mbuf * 567 xdr_inaddr_decode(struct mbuf *m, struct in_addr *ia) 568 { 569 struct xdr_inaddr *xi; 570 u_int8_t *cp; 571 u_int32_t *ip; 572 573 if (m->m_len < sizeof(*xi)) { 574 m = m_pullup(m, sizeof(*xi)); 575 if (m == NULL) 576 return (NULL); 577 } 578 xi = mtod(m, struct xdr_inaddr *); 579 if (xi->atype != txdr_unsigned(1)) { 580 ia->s_addr = INADDR_ANY; 581 goto out; 582 } 583 ip = xi->addr; 584 cp = (u_int8_t *)&ia->s_addr; 585 *cp++ = fxdr_unsigned(u_int8_t, *ip++); 586 *cp++ = fxdr_unsigned(u_int8_t, *ip++); 587 *cp++ = fxdr_unsigned(u_int8_t, *ip++); 588 *cp++ = fxdr_unsigned(u_int8_t, *ip++); 589 590 out: 591 m_adj(m, sizeof(*xi)); 592 return (m); 593 } 594