fs.d/reparsed/reparsed.c

*7a286c47SDai Ngo/*
*7a286c47SDai Ngo * CDDL HEADER START
*7a286c47SDai Ngo *
*7a286c47SDai Ngo * The contents of this file are subject to the terms of the
*7a286c47SDai Ngo * Common Development and Distribution License (the "License").
*7a286c47SDai Ngo * You may not use this file except in compliance with the License.
*7a286c47SDai Ngo *
*7a286c47SDai Ngo * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
*7a286c47SDai Ngo * or http://www.opensolaris.org/os/licensing.
*7a286c47SDai Ngo * See the License for the specific language governing permissions
*7a286c47SDai Ngo * and limitations under the License.
*7a286c47SDai Ngo *
*7a286c47SDai Ngo * When distributing Covered Code, include this CDDL HEADER in each
*7a286c47SDai Ngo * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
*7a286c47SDai Ngo * If applicable, add the following below this CDDL HEADER, with the
*7a286c47SDai Ngo * fields enclosed by brackets "[]" replaced with your own identifying
*7a286c47SDai Ngo * information: Portions Copyright [yyyy] [name of copyright owner]
*7a286c47SDai Ngo *
*7a286c47SDai Ngo * CDDL HEADER END
*7a286c47SDai Ngo */
*7a286c47SDai Ngo/*
*7a286c47SDai Ngo * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
*7a286c47SDai Ngo * Use is subject to license terms.
*7a286c47SDai Ngo */
*7a286c47SDai Ngo
*7a286c47SDai Ngo/*
*7a286c47SDai Ngo * Reparsed daemon
*7a286c47SDai Ngo */
*7a286c47SDai Ngo
*7a286c47SDai Ngo#include <stdio.h>
*7a286c47SDai Ngo#include <stdio_ext.h>
*7a286c47SDai Ngo#include <stdlib.h>
*7a286c47SDai Ngo#include <unistd.h>
*7a286c47SDai Ngo#include <signal.h>
*7a286c47SDai Ngo#include <sys/types.h>
*7a286c47SDai Ngo#include <sys/stat.h>
*7a286c47SDai Ngo#include <fcntl.h>
*7a286c47SDai Ngo#include <memory.h>
*7a286c47SDai Ngo#include <alloca.h>
*7a286c47SDai Ngo#include <ucontext.h>
*7a286c47SDai Ngo#include <errno.h>
*7a286c47SDai Ngo#include <syslog.h>
*7a286c47SDai Ngo#include <string.h>
*7a286c47SDai Ngo#include <strings.h>
*7a286c47SDai Ngo#include <door.h>
*7a286c47SDai Ngo#include <wait.h>
*7a286c47SDai Ngo#include <libintl.h>
*7a286c47SDai Ngo#include <locale.h>
*7a286c47SDai Ngo#include <sys/param.h>
*7a286c47SDai Ngo#include <sys/systeminfo.h>
*7a286c47SDai Ngo#include <sys/thread.h>
*7a286c47SDai Ngo#include <rpc/xdr.h>
*7a286c47SDai Ngo#include <priv.h>
*7a286c47SDai Ngo#include <sys/fs_reparse.h>
*7a286c47SDai Ngo#include <priv_utils.h>
*7a286c47SDai Ngo#include <rpcsvc/daemon_utils.h>
*7a286c47SDai Ngo
*7a286c47SDai Ngo#define	REPARSED_CMD_OPTS	"v"
*7a286c47SDai Ngo#define	DOOR_RESULT_BUFSZ	(MAXPATHLEN + sizeof (reparsed_door_res_t))
*7a286c47SDai Ngo#define	SAFETY_BUFFER		8*1024
*7a286c47SDai Ngo
*7a286c47SDai Ngostatic char *MyName;
*7a286c47SDai Ngostatic int verbose = 0;
*7a286c47SDai Ngo
*7a286c47SDai Ngostatic int start_reparsed_svcs();
*7a286c47SDai Ngostatic void daemonize(void);
*7a286c47SDai Ngostatic void reparsed_door_call_error(int error, int buflen);
*7a286c47SDai Ngostatic void reparsed_doorfunc(void *cookie, char *argp, size_t arg_size,
*7a286c47SDai Ngo			door_desc_t *dp, uint_t n_desc);
*7a286c47SDai Ngo
*7a286c47SDai Ngostatic void
*7a286c47SDai Ngousage()
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	syslog(LOG_ERR, "Usage: %s", MyName);
*7a286c47SDai Ngo	syslog(LOG_ERR, "\t[-v]\t\tverbose error messages)");
*7a286c47SDai Ngo	exit(1);
*7a286c47SDai Ngo}
*7a286c47SDai Ngo
*7a286c47SDai Ngostatic void
*7a286c47SDai Ngowarn_hup(int i)
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	syslog(LOG_ERR, "SIGHUP received: ignored");
*7a286c47SDai Ngo	(void) signal(SIGHUP, warn_hup);
*7a286c47SDai Ngo}
*7a286c47SDai Ngo
*7a286c47SDai Ngo/*
*7a286c47SDai Ngo * Processing for daemonization
*7a286c47SDai Ngo */
*7a286c47SDai Ngostatic void
*7a286c47SDai Ngodaemonize(void)
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	switch (fork()) {
*7a286c47SDai Ngo	case -1:
*7a286c47SDai Ngo		syslog(LOG_ERR, "reparsed: can't fork - errno %d", errno);
*7a286c47SDai Ngo		exit(2);
*7a286c47SDai Ngo		/* NOTREACHED */
*7a286c47SDai Ngo	case 0:		/* child */
*7a286c47SDai Ngo		break;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	default:	/* parent */
*7a286c47SDai Ngo		_exit(0);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo	(void) chdir("/");
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Close stdin, stdout, and stderr.
*7a286c47SDai Ngo	 * Open again to redirect input+output
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	(void) close(0);
*7a286c47SDai Ngo	(void) close(1);
*7a286c47SDai Ngo	(void) close(2);
*7a286c47SDai Ngo	(void) open("/dev/null", O_RDONLY);
*7a286c47SDai Ngo	(void) open("/dev/null", O_WRONLY);
*7a286c47SDai Ngo	(void) dup(1);
*7a286c47SDai Ngo	(void) setsid();
*7a286c47SDai Ngo}
*7a286c47SDai Ngo
*7a286c47SDai Ngoint
*7a286c47SDai Ngomain(int argc, char *argv[])
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	pid_t pid;
*7a286c47SDai Ngo	int c, error;
*7a286c47SDai Ngo	struct rlimit rlset;
*7a286c47SDai Ngo	char *defval;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * There is no check for non-global zone and Trusted Extensions.
*7a286c47SDai Ngo	 * Reparsed works in both of these environments as long as the
*7a286c47SDai Ngo	 * services that use reparsed are supported.
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo
*7a286c47SDai Ngo	MyName = argv[0];
*7a286c47SDai Ngo	if (geteuid() != 0) {
*7a286c47SDai Ngo		syslog(LOG_ERR, "%s must be run as root", MyName);
*7a286c47SDai Ngo		exit(1);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	while ((c = getopt(argc, argv, REPARSED_CMD_OPTS)) != EOF) {
*7a286c47SDai Ngo		switch (c) {
*7a286c47SDai Ngo		case 'v':
*7a286c47SDai Ngo			verbose++;
*7a286c47SDai Ngo			break;
*7a286c47SDai Ngo		default:
*7a286c47SDai Ngo			usage();
*7a286c47SDai Ngo		}
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	daemonize();
*7a286c47SDai Ngo	openlog(MyName, LOG_PID | LOG_NDELAY, LOG_DAEMON);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	(void) _create_daemon_lock(REPARSED, DAEMON_UID, DAEMON_GID);
*7a286c47SDai Ngo	(void) enable_extended_FILE_stdio(-1, -1);
*7a286c47SDai Ngo	switch (_enter_daemon_lock(REPARSED)) {
*7a286c47SDai Ngo	case 0:
*7a286c47SDai Ngo		break;
*7a286c47SDai Ngo	case -1:
*7a286c47SDai Ngo		syslog(LOG_ERR, "Error locking for %s", REPARSED);
*7a286c47SDai Ngo		exit(2);
*7a286c47SDai Ngo	default:
*7a286c47SDai Ngo		/* daemon was already running */
*7a286c47SDai Ngo		exit(0);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	(void) signal(SIGHUP, warn_hup);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Make the process a privilege aware daemon.
*7a286c47SDai Ngo	 * Only "basic" privileges are required.
*7a286c47SDai Ngo	 *
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	if (__init_daemon_priv(PU_RESETGROUPS|PU_CLEARLIMITSET, 0, 0,
*7a286c47SDai Ngo	    (char *)NULL) == -1) {
*7a286c47SDai Ngo		syslog(LOG_ERR, "should be run with sufficient privileges");
*7a286c47SDai Ngo		exit(3);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Clear basic privileges not required by reparsed.
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	__fini_daemon_priv(PRIV_PROC_FORK, PRIV_PROC_EXEC, PRIV_PROC_SESSION,
*7a286c47SDai Ngo	    PRIV_FILE_LINK_ANY, PRIV_PROC_INFO, (char *)NULL);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	return (start_reparsed_svcs());
*7a286c47SDai Ngo}
*7a286c47SDai Ngo
*7a286c47SDai Ngostatic void
*7a286c47SDai Ngoreparsed_door_call_error(int error, int buflen)
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	reparsed_door_res_t rpd_res;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	memset(&rpd_res, 0, sizeof (reparsed_door_res_t));
*7a286c47SDai Ngo	rpd_res.res_status = error;
*7a286c47SDai Ngo	rpd_res.res_len = buflen;
*7a286c47SDai Ngo	door_return((char *)&rpd_res, sizeof (reparsed_door_res_t), NULL, 0);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	(void) door_return(NULL, 0, NULL, 0);
*7a286c47SDai Ngo	/* NOTREACHED */
*7a286c47SDai Ngo}
*7a286c47SDai Ngo
*7a286c47SDai Ngo/*
*7a286c47SDai Ngo *  reparsed_doorfunc
*7a286c47SDai Ngo *
*7a286c47SDai Ngo *  argp:  "service_type:service_data" string
*7a286c47SDai Ngo *  dp & n_desc: not used.
*7a286c47SDai Ngo */
*7a286c47SDai Ngostatic void
*7a286c47SDai Ngoreparsed_doorfunc(void *cookie, char *argp, size_t arg_size,
*7a286c47SDai Ngo    door_desc_t *dp, uint_t n_desc)
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	int err;
*7a286c47SDai Ngo	size_t bufsz;
*7a286c47SDai Ngo	char *svc_type, *svc_data;
*7a286c47SDai Ngo	char *cp, *buf, *sbuf, res_buf[DOOR_RESULT_BUFSZ];
*7a286c47SDai Ngo	reparsed_door_res_t *resp;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	if ((argp == NULL) || (arg_size == 0)) {
*7a286c47SDai Ngo		reparsed_door_call_error(EINVAL, 0);
*7a286c47SDai Ngo		/* NOTREACHED */
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	if (verbose)
*7a286c47SDai Ngo		syslog(LOG_NOTICE, "reparsed_door: [%s, %d]", argp, arg_size);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	if ((svc_type = strdup(argp)) == NULL) {
*7a286c47SDai Ngo		reparsed_door_call_error(ENOMEM, 0);
*7a286c47SDai Ngo		/* NOTREACHED */
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Door argument string comes in "service_type:service_data" format.
*7a286c47SDai Ngo	 * Need to break it into separate "service_type" and "service_data"
*7a286c47SDai Ngo	 * string before passing them to reparse_deref() to process them.
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	if ((cp = strchr(svc_type, ':')) == NULL) {
*7a286c47SDai Ngo		free(svc_type);
*7a286c47SDai Ngo		reparsed_door_call_error(EINVAL, 0);
*7a286c47SDai Ngo		/* NOTREACHED */
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo	*cp++ = '\0';
*7a286c47SDai Ngo	svc_data = cp;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Setup buffer for reparse_deref(). 'bufsz' is the actual
*7a286c47SDai Ngo	 * buffer size to hold the result returned by reparse_deref().
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	resp = (reparsed_door_res_t *)res_buf;
*7a286c47SDai Ngo	buf = resp->res_data;
*7a286c47SDai Ngo	bufsz = sizeof (res_buf) - sizeof (reparsed_door_res_t);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * reparse_deref() calls the service type plugin library to process
*7a286c47SDai Ngo	 * the service data. The plugin library function should understand
*7a286c47SDai Ngo	 * the context of the service data and should be the one to XDR the
*7a286c47SDai Ngo	 * results before returning it to the caller.
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	err = reparse_deref(svc_type, svc_data, buf, &bufsz);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	if (verbose)
*7a286c47SDai Ngo		syslog(LOG_NOTICE,
*7a286c47SDai Ngo		    "reparsed_deref(svc_type: %s, data: %s, size: %d) -> %d",
*7a286c47SDai Ngo		    svc_type, svc_data, bufsz, err);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	switch (err) {
*7a286c47SDai Ngo	case 0:
*7a286c47SDai Ngo		break;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	case EOVERFLOW:
*7a286c47SDai Ngo		/*
*7a286c47SDai Ngo		 * bufsz was returned with size needed by reparse_deref().
*7a286c47SDai Ngo		 *
*7a286c47SDai Ngo		 * We cannot use malloc() here because door_return() never
*7a286c47SDai Ngo		 * returns, and memory allocated by malloc() would get leaked.
*7a286c47SDai Ngo		 */
*7a286c47SDai Ngo		sbuf = alloca(bufsz + sizeof (reparsed_door_res_t));
*7a286c47SDai Ngo		if (sbuf == NULL || stack_inbounds(buf) == 0 ||
*7a286c47SDai Ngo		    stack_inbounds(buf + sizeof (reparsed_door_res_t) +
*7a286c47SDai Ngo		    SAFETY_BUFFER - 1) == 0) {
*7a286c47SDai Ngo			free(svc_type);
*7a286c47SDai Ngo			reparsed_door_call_error(ENOMEM, 0);
*7a286c47SDai Ngo			/* NOTREACHED */
*7a286c47SDai Ngo		}
*7a286c47SDai Ngo
*7a286c47SDai Ngo		resp = (reparsed_door_res_t *)sbuf;
*7a286c47SDai Ngo		if ((err = reparse_deref(svc_type, svc_data, resp->res_data,
*7a286c47SDai Ngo		    &bufsz)) == 0)
*7a286c47SDai Ngo			break;
*7a286c47SDai Ngo
*7a286c47SDai Ngo		/* fall through */
*7a286c47SDai Ngo
*7a286c47SDai Ngo	default:
*7a286c47SDai Ngo		free(svc_type);
*7a286c47SDai Ngo		reparsed_door_call_error(err, 0);
*7a286c47SDai Ngo		/* NOTREACHED */
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	free(svc_type);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	if (verbose)
*7a286c47SDai Ngo		syslog(LOG_NOTICE, "reparsed_door_return <buf=%s> size=%d",
*7a286c47SDai Ngo		    buf, bufsz);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	resp->res_status = 0;
*7a286c47SDai Ngo	resp->res_len = bufsz;
*7a286c47SDai Ngo	(void) door_return((char *)resp, bufsz + sizeof (reparsed_door_res_t),
*7a286c47SDai Ngo	    NULL, 0);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	(void) door_return(NULL, 0, NULL, 0);
*7a286c47SDai Ngo	/* NOTREACHED */
*7a286c47SDai Ngo}
*7a286c47SDai Ngo
*7a286c47SDai Ngostatic int
*7a286c47SDai Ngostart_reparsed_svcs()
*7a286c47SDai Ngo{
*7a286c47SDai Ngo	int doorfd;
*7a286c47SDai Ngo	int dfd;
*7a286c47SDai Ngo
*7a286c47SDai Ngo	if ((doorfd = door_create(reparsed_doorfunc, NULL,
*7a286c47SDai Ngo	    DOOR_REFUSE_DESC|DOOR_NO_CANCEL)) == -1) {
*7a286c47SDai Ngo		syslog(LOG_ERR, "Unable to create door");
*7a286c47SDai Ngo		return (1);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Create a file system path for the door
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	if ((dfd = open(REPARSED_DOOR, O_RDWR|O_CREAT|O_TRUNC,
*7a286c47SDai Ngo	    S_IRUSR|S_IWUSR|S_IRGRP|S_IROTH)) == -1) {
*7a286c47SDai Ngo		syslog(LOG_ERR, "unable to open %s", REPARSED_DOOR);
*7a286c47SDai Ngo		(void) close(doorfd);
*7a286c47SDai Ngo		return (1);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Clean up any stale associations
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	(void) fdetach(REPARSED_DOOR);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Register in the kernel namespace for door_ki_open().
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	if (fattach(doorfd, REPARSED_DOOR) == -1) {
*7a286c47SDai Ngo		syslog(LOG_ERR, "Unable to fattach door %s", REPARSED_DOOR);
*7a286c47SDai Ngo		(void) close(doorfd);
*7a286c47SDai Ngo		(void) close(dfd);
*7a286c47SDai Ngo		return (1);
*7a286c47SDai Ngo	}
*7a286c47SDai Ngo	(void) close(dfd);
*7a286c47SDai Ngo
*7a286c47SDai Ngo	/*
*7a286c47SDai Ngo	 * Wait for incoming calls
*7a286c47SDai Ngo	 */
*7a286c47SDai Ngo	/*CONSTCOND*/
*7a286c47SDai Ngo	while (1)
*7a286c47SDai Ngo		(void) pause();
*7a286c47SDai Ngo
*7a286c47SDai Ngo	syslog(LOG_ERR, "Door server exited");
*7a286c47SDai Ngo	return (10);
*7a286c47SDai Ngo}