File: [local] / sys / dev / vnd.c (download)
Revision 1.1, Tue Mar 4 16:09:34 2008 UTC (16 years, 4 months ago) by nbrk
Branch point for: MAIN
Initial revision
|
/* $OpenBSD: vnd.c,v 1.79 2007/06/20 18:15:46 deraadt Exp $ */
/* $NetBSD: vnd.c,v 1.26 1996/03/30 23:06:11 christos Exp $ */
/*
* Copyright (c) 1988 University of Utah.
* Copyright (c) 1990, 1993
* The Regents of the University of California. All rights reserved.
*
* This code is derived from software contributed to Berkeley by
* the Systems Programming Group of the University of Utah Computer
* Science Department.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. Neither the name of the University nor the names of its contributors
* may be used to endorse or promote products derived from this software
* without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*
* from: Utah $Hdr: vn.c 1.13 94/04/02$
*
* @(#)vn.c 8.6 (Berkeley) 4/1/94
*/
/*
* Vnode disk driver.
*
* Block/character interface to a vnode. Allows one to treat a file
* as a disk (e.g. build a filesystem in it, mount it, etc.).
*
* NOTE 1: This uses either the VOP_BMAP/VOP_STRATEGY interface to the
* vnode or simple VOP_READ/VOP_WRITE. The former is suitable for swapping
* as it doesn't distort the local buffer cache. The latter is good for
* building disk images as it keeps the cache consistent after the block
* device is closed.
*
* NOTE 2: There is a security issue involved with this driver.
* Once mounted all access to the contents of the "mapped" file via
* the special file is controlled by the permissions on the special
* file, the protection of the mapped file is ignored (effectively,
* by using root credentials in all transactions).
*
* NOTE 3: Doesn't interact with leases, should it?
*/
#include <sys/param.h>
#include <sys/systm.h>
#include <sys/namei.h>
#include <sys/proc.h>
#include <sys/errno.h>
#include <sys/buf.h>
#include <sys/malloc.h>
#include <sys/pool.h>
#include <sys/ioctl.h>
#include <sys/disklabel.h>
#include <sys/device.h>
#include <sys/disk.h>
#include <sys/stat.h>
#include <sys/mount.h>
#include <sys/vnode.h>
#include <sys/file.h>
#include <sys/rwlock.h>
#include <sys/uio.h>
#include <sys/conf.h>
#include <crypto/blf.h>
#include <miscfs/specfs/specdev.h>
#include <dev/vndioctl.h>
#ifdef VNDDEBUG
int dovndcluster = 1;
int vnddebug = 0x00;
#define VDB_FOLLOW 0x01
#define VDB_INIT 0x02
#define VDB_IO 0x04
#define DNPRINTF(f, p...) do { if ((f) & vnddebug) printf(p); } while (0)
#else
#define DNPRINTF(f, p...) /* nothing */
#endif /* VNDDEBUG */
/*
* vndunit is a bit weird. have to reconstitute the dev_t for
* DISKUNIT(), but with the minor masked off.
*/
#define vndunit(x) DISKUNIT(makedev(major(x), minor(x) & 0x7ff))
#define vndsimple(x) (minor(x) & 0x800)
/* same as MAKEDISKDEV, preserving the vndsimple() property */
#define VNDLABELDEV(dev) \
makedev(major(dev), DISKMINOR(vndunit(dev), RAW_PART) | \
(vndsimple(dev) ? 0x800 : 0))
struct vndbuf {
struct buf vb_buf;
struct buf *vb_obp;
};
/*
* struct vndbuf allocator
*/
struct pool vndbufpl;
#define getvndbuf() pool_get(&vndbufpl, PR_WAITOK)
#define putvndbuf(vbp) pool_put(&vndbufpl, vbp);
struct vnd_softc {
struct device sc_dev;
struct disk sc_dk;
char sc_file[VNDNLEN]; /* file we're covering */
int sc_flags; /* flags */
size_t sc_size; /* size of vnd in blocks */
struct vnode *sc_vp; /* vnode */
struct ucred *sc_cred; /* credentials */
struct buf sc_tab; /* transfer queue */
blf_ctx *sc_keyctx; /* key context */
struct rwlock sc_rwlock;
};
/* sc_flags */
#define VNF_ALIVE 0x0001
#define VNF_INITED 0x0002
#define VNF_LABELLING 0x0100
#define VNF_WLABEL 0x0200
#define VNF_HAVELABEL 0x0400
#define VNF_SIMPLE 0x1000
#define VNF_READONLY 0x2000
#define VNDRW(v) ((v)->sc_flags & VNF_READONLY ? FREAD : FREAD|FWRITE)
struct vnd_softc *vnd_softc;
int numvnd = 0;
struct dkdriver vnddkdriver = { vndstrategy };
/* called by main() at boot time */
void vndattach(int);
void vndclear(struct vnd_softc *);
void vndstart(struct vnd_softc *);
int vndsetcred(struct vnd_softc *, struct ucred *);
void vndiodone(struct buf *);
void vndshutdown(void);
void vndgetdisklabel(dev_t, struct vnd_softc *);
void vndencrypt(struct vnd_softc *, caddr_t, size_t, daddr64_t, int);
#define vndlock(sc) rw_enter(&sc->sc_rwlock, RW_WRITE|RW_INTR)
#define vndunlock(sc) rw_exit_write(&sc->sc_rwlock)
void
vndencrypt(struct vnd_softc *vnd, caddr_t addr, size_t size, daddr64_t off,
int encrypt)
{
int i, bsize;
u_char iv[8];
bsize = dbtob(1);
for (i = 0; i < size/bsize; i++) {
bzero(iv, sizeof(iv));
bcopy((u_char *)&off, iv, sizeof(off));
blf_ecb_encrypt(vnd->sc_keyctx, iv, sizeof(iv));
if (encrypt)
blf_cbc_encrypt(vnd->sc_keyctx, iv, addr, bsize);
else
blf_cbc_decrypt(vnd->sc_keyctx, iv, addr, bsize);
addr += bsize;
off++;
}
}
void
vndattach(int num)
{
char *mem;
u_long size;
int i;
if (num <= 0)
return;
size = num * sizeof(struct vnd_softc);
mem = malloc(size, M_DEVBUF, M_NOWAIT);
if (mem == NULL) {
printf("WARNING: no memory for vnode disks\n");
return;
}
bzero(mem, size);
vnd_softc = (struct vnd_softc *)mem;
for (i = 0; i < num; i++) {
rw_init(&vnd_softc[i].sc_rwlock, "vndlock");
}
numvnd = num;
pool_init(&vndbufpl, sizeof(struct vndbuf), 0, 0, 0, "vndbufpl", NULL);
pool_setlowat(&vndbufpl, 16);
pool_sethiwat(&vndbufpl, 1024);
}
int
vndopen(dev_t dev, int flags, int mode, struct proc *p)
{
int unit = vndunit(dev);
struct vnd_softc *sc;
int error = 0, part, pmask;
DNPRINTF(VDB_FOLLOW, "vndopen(%x, %x, %x, %p)\n", dev, flags, mode, p);
if (unit >= numvnd)
return (ENXIO);
sc = &vnd_softc[unit];
if ((error = vndlock(sc)) != 0)
return (error);
if ((flags & FWRITE) && (sc->sc_flags & VNF_READONLY)) {
error = EROFS;
goto bad;
}
if ((sc->sc_flags & VNF_INITED) &&
(sc->sc_flags & VNF_HAVELABEL) == 0) {
sc->sc_flags |= VNF_HAVELABEL;
vndgetdisklabel(dev, sc);
}
part = DISKPART(dev);
pmask = 1 << part;
/*
* If any partition is open, all succeeding openings must be of the
* same type or read-only.
*/
if (sc->sc_dk.dk_openmask) {
if (((sc->sc_flags & VNF_SIMPLE) != 0) !=
(vndsimple(dev) != 0) && (flags & FWRITE)) {
error = EBUSY;
goto bad;
}
} else if (vndsimple(dev))
sc->sc_flags |= VNF_SIMPLE;
else
sc->sc_flags &= ~VNF_SIMPLE;
/* Check that the partition exists. */
if (part != RAW_PART &&
((sc->sc_flags & VNF_HAVELABEL) == 0 ||
part >= sc->sc_dk.dk_label->d_npartitions ||
sc->sc_dk.dk_label->d_partitions[part].p_fstype == FS_UNUSED)) {
error = ENXIO;
goto bad;
}
/* Prevent our unit from being unconfigured while open. */
switch (mode) {
case S_IFCHR:
sc->sc_dk.dk_copenmask |= pmask;
break;
case S_IFBLK:
sc->sc_dk.dk_bopenmask |= pmask;
break;
}
sc->sc_dk.dk_openmask =
sc->sc_dk.dk_copenmask | sc->sc_dk.dk_bopenmask;
error = 0;
bad:
vndunlock(sc);
return (error);
}
/*
* Load the label information on the named device
*/
void
vndgetdisklabel(dev_t dev, struct vnd_softc *sc)
{
struct disklabel *lp = sc->sc_dk.dk_label;
char *errstring = NULL;
bzero(lp, sizeof(struct disklabel));
lp->d_secsize = 512;
lp->d_ntracks = 1;
lp->d_nsectors = 100;
lp->d_ncylinders = sc->sc_size / 100;
lp->d_secpercyl = 100; /* lp->d_ntracks * lp->d_nsectors */
strncpy(lp->d_typename, "vnd device", sizeof(lp->d_typename));
lp->d_type = DTYPE_VND;
strncpy(lp->d_packname, "fictitious", sizeof(lp->d_packname));
DL_SETDSIZE(lp, sc->sc_size);
lp->d_rpm = 3600;
lp->d_interleave = 1;
lp->d_flags = 0;
lp->d_version = 1;
lp->d_magic = DISKMAGIC;
lp->d_magic2 = DISKMAGIC;
lp->d_checksum = dkcksum(lp);
/* Call the generic disklabel extraction routine */
errstring = readdisklabel(VNDLABELDEV(dev), vndstrategy, lp, 0);
if (errstring) {
DNPRINTF(VDB_IO, "%s: %s\n", sc->sc_dev.dv_xname,
errstring);
return;
}
}
int
vndclose(dev_t dev, int flags, int mode, struct proc *p)
{
int unit = vndunit(dev);
struct vnd_softc *sc;
int error = 0, part;
DNPRINTF(VDB_FOLLOW, "vndclose(%x, %x, %x, %p)\n", dev, flags, mode, p);
if (unit >= numvnd)
return (ENXIO);
sc = &vnd_softc[unit];
if ((error = vndlock(sc)) != 0)
return (error);
part = DISKPART(dev);
/* ...that much closer to allowing unconfiguration... */
switch (mode) {
case S_IFCHR:
sc->sc_dk.dk_copenmask &= ~(1 << part);
break;
case S_IFBLK:
sc->sc_dk.dk_bopenmask &= ~(1 << part);
break;
}
sc->sc_dk.dk_openmask =
sc->sc_dk.dk_copenmask | sc->sc_dk.dk_bopenmask;
vndunlock(sc);
return (0);
}
/*
* Two methods are used, the traditional buffercache bypassing and the
* newer, cache-coherent on unmount, one.
*
* Former method:
* Break the request into bsize pieces and submit using VOP_BMAP/VOP_STRATEGY.
* Note that this driver can only be used for swapping over NFS on the hp
* since nfs_strategy on the vax cannot handle u-areas and page tables.
*
* Latter method:
* Repack the buffer into an uio structure and use VOP_READ/VOP_WRITE to
* access the underlying file.
*/
void
vndstrategy(struct buf *bp)
{
int unit = vndunit(bp->b_dev);
struct vnd_softc *vnd = &vnd_softc[unit];
struct vndbuf *nbp;
int bsize;
off_t bn;
caddr_t addr;
size_t resid;
int sz, flags, error, s;
struct iovec aiov;
struct uio auio;
struct proc *p = curproc;
DNPRINTF(VDB_FOLLOW, "vndstrategy(%p): unit %d\n", bp, unit);
if ((vnd->sc_flags & VNF_INITED) == 0) {
bp->b_error = ENXIO;
bp->b_flags |= B_ERROR;
s = splbio();
biodone(bp);
splx(s);
return;
}
bn = bp->b_blkno;
bp->b_resid = bp->b_bcount;
if (bn < 0) {
bp->b_error = EINVAL;
bp->b_flags |= B_ERROR;
s = splbio();
biodone(bp);
splx(s);
return;
}
/* If we have a label, do a boundary check. */
if (vnd->sc_flags & VNF_HAVELABEL) {
if (bounds_check_with_label(bp, vnd->sc_dk.dk_label, 1) <= 0) {
s = splbio();
biodone(bp);
splx(s);
return;
}
/*
* bounds_check_with_label() changes bp->b_resid, reset it
*/
bp->b_resid = bp->b_bcount;
}
sz = howmany(bp->b_bcount, DEV_BSIZE);
/* No bypassing of buffer cache? */
if (vndsimple(bp->b_dev)) {
/* Loop until all queued requests are handled. */
for (;;) {
int part = DISKPART(bp->b_dev);
daddr64_t off = DL_GETPOFFSET(&vnd->sc_dk.dk_label->d_partitions[part]);
aiov.iov_base = bp->b_data;
auio.uio_resid = aiov.iov_len = bp->b_bcount;
auio.uio_iov = &aiov;
auio.uio_iovcnt = 1;
auio.uio_offset = dbtob((off_t)(bp->b_blkno + off));
auio.uio_segflg = UIO_SYSSPACE;
auio.uio_procp = p;
vn_lock(vnd->sc_vp, LK_EXCLUSIVE | LK_RETRY, p);
if (bp->b_flags & B_READ) {
auio.uio_rw = UIO_READ;
bp->b_error = VOP_READ(vnd->sc_vp, &auio, 0,
vnd->sc_cred);
if (vnd->sc_keyctx)
vndencrypt(vnd, bp->b_data,
bp->b_bcount, bp->b_blkno, 0);
} else {
if (vnd->sc_keyctx)
vndencrypt(vnd, bp->b_data,
bp->b_bcount, bp->b_blkno, 1);
auio.uio_rw = UIO_WRITE;
/*
* Upper layer has already checked I/O for
* limits, so there is no need to do it again.
*/
bp->b_error = VOP_WRITE(vnd->sc_vp, &auio,
IO_NOLIMIT, vnd->sc_cred);
/* Data in buffer cache needs to be in clear */
if (vnd->sc_keyctx)
vndencrypt(vnd, bp->b_data,
bp->b_bcount, bp->b_blkno, 0);
}
VOP_UNLOCK(vnd->sc_vp, 0, p);
if (bp->b_error)
bp->b_flags |= B_ERROR;
bp->b_resid = auio.uio_resid;
s = splbio();
biodone(bp);
splx(s);
/* If nothing more is queued, we are done. */
if (!vnd->sc_tab.b_active)
return;
/*
* Dequeue now since lower level strategy
* routine might queue using same links.
*/
s = splbio();
bp = vnd->sc_tab.b_actf;
vnd->sc_tab.b_actf = bp->b_actf;
vnd->sc_tab.b_active--;
splx(s);
}
}
/* The old-style buffercache bypassing method. */
bn += DL_GETPOFFSET(&vnd->sc_dk.dk_label->d_partitions[DISKPART(bp->b_dev)]);
bn = dbtob(bn);
bsize = vnd->sc_vp->v_mount->mnt_stat.f_iosize;
addr = bp->b_data;
flags = bp->b_flags | B_CALL;
for (resid = bp->b_resid; resid; resid -= sz) {
struct vnode *vp;
daddr64_t nbn;
int off, s, nra;
nra = 0;
vn_lock(vnd->sc_vp, LK_RETRY | LK_EXCLUSIVE, p);
error = VOP_BMAP(vnd->sc_vp, bn / bsize, &vp, &nbn, &nra);
VOP_UNLOCK(vnd->sc_vp, 0, p);
if (error == 0 && (long)nbn == -1)
error = EIO;
#ifdef VNDDEBUG
if (!dovndcluster)
nra = 0;
#endif
if ((off = bn % bsize) != 0)
sz = bsize - off;
else
sz = (1 + nra) * bsize;
if (resid < sz)
sz = resid;
DNPRINTF(VDB_IO, "vndstrategy: vp %p/%p bn %x/%x sz %x\n",
vnd->sc_vp, vp, bn, nbn, sz);
s = splbio();
nbp = getvndbuf();
splx(s);
nbp->vb_buf.b_flags = flags;
nbp->vb_buf.b_bcount = sz;
nbp->vb_buf.b_bufsize = bp->b_bufsize;
nbp->vb_buf.b_error = 0;
if (vp->v_type == VBLK || vp->v_type == VCHR)
nbp->vb_buf.b_dev = vp->v_rdev;
else
nbp->vb_buf.b_dev = NODEV;
nbp->vb_buf.b_data = addr;
nbp->vb_buf.b_blkno = nbn + btodb(off);
nbp->vb_buf.b_proc = bp->b_proc;
nbp->vb_buf.b_iodone = vndiodone;
nbp->vb_buf.b_vp = vp;
nbp->vb_buf.b_dirtyoff = bp->b_dirtyoff;
nbp->vb_buf.b_dirtyend = bp->b_dirtyend;
nbp->vb_buf.b_validoff = bp->b_validoff;
nbp->vb_buf.b_validend = bp->b_validend;
LIST_INIT(&nbp->vb_buf.b_dep);
/* save a reference to the old buffer */
nbp->vb_obp = bp;
/*
* If there was an error or a hole in the file...punt.
* Note that we deal with this after the nbp allocation.
* This ensures that we properly clean up any operations
* that we have already fired off.
*
* XXX we could deal with holes here but it would be
* a hassle (in the write case).
* We must still however charge for the write even if there
* was an error.
*/
if (error) {
nbp->vb_buf.b_error = error;
nbp->vb_buf.b_flags |= B_ERROR;
bp->b_resid -= (resid - sz);
s = splbio();
/* charge for the write */
if ((nbp->vb_buf.b_flags & B_READ) == 0)
nbp->vb_buf.b_vp->v_numoutput++;
biodone(&nbp->vb_buf);
splx(s);
return;
}
/*
* Just sort by block number
*/
nbp->vb_buf.b_cylinder = nbp->vb_buf.b_blkno;
s = splbio();
disksort(&vnd->sc_tab, &nbp->vb_buf);
vnd->sc_tab.b_active++;
vndstart(vnd);
splx(s);
bn += sz;
addr += sz;
}
}
/*
* Feed requests sequentially.
* We do it this way to keep from flooding NFS servers if we are connected
* to an NFS file. This places the burden on the client rather than the
* server.
*/
void
vndstart(struct vnd_softc *vnd)
{
struct buf *bp;
/*
* Dequeue now since lower level strategy routine might
* queue using same links
*/
bp = vnd->sc_tab.b_actf;
vnd->sc_tab.b_actf = bp->b_actf;
DNPRINTF(VDB_IO,
"vndstart(%d): bp %p vp %p blkno %x addr %p cnt %lx\n",
vnd-vnd_softc, bp, bp->b_vp, bp->b_blkno, bp->b_data,
bp->b_bcount);
/* Instrumentation. */
disk_busy(&vnd->sc_dk);
if ((bp->b_flags & B_READ) == 0)
bp->b_vp->v_numoutput++;
VOP_STRATEGY(bp);
}
void
vndiodone(struct buf *bp)
{
struct vndbuf *vbp = (struct vndbuf *) bp;
struct buf *pbp = vbp->vb_obp;
struct vnd_softc *vnd = &vnd_softc[vndunit(pbp->b_dev)];
splassert(IPL_BIO);
DNPRINTF(VDB_IO,
"vndiodone(%d): vbp %p vp %p blkno %x addr %p cnt %lx\n",
vnd-vnd_softc, vbp, vbp->vb_buf.b_vp, vbp->vb_buf.b_blkno,
vbp->vb_buf.b_data, vbp->vb_buf.b_bcount);
if (vbp->vb_buf.b_error) {
DNPRINTF(VDB_IO, "vndiodone: vbp %p error %d\n", vbp,
vbp->vb_buf.b_error);
pbp->b_flags |= B_ERROR;
pbp->b_error = biowait(&vbp->vb_buf);
}
pbp->b_resid -= vbp->vb_buf.b_bcount;
putvndbuf(vbp);
if (vnd->sc_tab.b_active) {
disk_unbusy(&vnd->sc_dk, (pbp->b_bcount - pbp->b_resid),
(pbp->b_flags & B_READ));
if (!vnd->sc_tab.b_actf)
vnd->sc_tab.b_active--;
}
if (pbp->b_resid == 0) {
DNPRINTF(VDB_IO, "vndiodone: pbp %p iodone\n", pbp);
biodone(pbp);
}
}
/* ARGSUSED */
int
vndread(dev_t dev, struct uio *uio, int flags)
{
int unit = vndunit(dev);
struct vnd_softc *sc;
DNPRINTF(VDB_FOLLOW, "vndread(%x, %p)\n", dev, uio);
if (unit >= numvnd)
return (ENXIO);
sc = &vnd_softc[unit];
if ((sc->sc_flags & VNF_INITED) == 0)
return (ENXIO);
return (physio(vndstrategy, NULL, dev, B_READ, minphys, uio));
}
/* ARGSUSED */
int
vndwrite(dev_t dev, struct uio *uio, int flags)
{
int unit = vndunit(dev);
struct vnd_softc *sc;
DNPRINTF(VDB_FOLLOW, "vndwrite(%x, %p)\n", dev, uio);
if (unit >= numvnd)
return (ENXIO);
sc = &vnd_softc[unit];
if ((sc->sc_flags & VNF_INITED) == 0)
return (ENXIO);
return (physio(vndstrategy, NULL, dev, B_WRITE, minphys, uio));
}
/* ARGSUSED */
int
vndioctl(dev_t dev, u_long cmd, caddr_t addr, int flag, struct proc *p)
{
int unit = vndunit(dev);
struct vnd_softc *vnd;
struct vnd_ioctl *vio;
struct vnd_user *vnu;
struct vattr vattr;
struct nameidata nd;
int error, part, pmask, s;
DNPRINTF(VDB_FOLLOW, "vndioctl(%x, %lx, %p, %x, %p): unit %d\n",
dev, cmd, addr, flag, p, unit);
error = suser(p, 0);
if (error)
return (error);
if (unit >= numvnd)
return (ENXIO);
vnd = &vnd_softc[unit];
vio = (struct vnd_ioctl *)addr;
switch (cmd) {
case VNDIOCSET:
if (vnd->sc_flags & VNF_INITED)
return (EBUSY);
if (!(vnd->sc_flags & VNF_SIMPLE) && vio->vnd_keylen)
return (EINVAL);
if ((error = vndlock(vnd)) != 0)
return (error);
if ((error = copyinstr(vio->vnd_file, vnd->sc_file,
sizeof(vnd->sc_file), NULL))) {
vndunlock(vnd);
return (error);
}
bzero(vnd->sc_dev.dv_xname, sizeof(vnd->sc_dev.dv_xname));
if (snprintf(vnd->sc_dev.dv_xname, sizeof(vnd->sc_dev.dv_xname),
"vnd%d", unit) >= sizeof(vnd->sc_dev.dv_xname)) {
printf("VNDIOCSET: device name too long\n");
vndunlock(vnd);
return(ENXIO);
}
/*
* Open for read and write first. This lets vn_open() weed out
* directories, sockets, etc. so we don't have to worry about
* them.
*/
NDINIT(&nd, LOOKUP, FOLLOW, UIO_USERSPACE, vio->vnd_file, p);
vnd->sc_flags &= ~VNF_READONLY;
error = vn_open(&nd, FREAD|FWRITE, 0);
if (error == EROFS) {
vnd->sc_flags |= VNF_READONLY;
error = vn_open(&nd, FREAD, 0);
}
if (error) {
vndunlock(vnd);
return (error);
}
error = VOP_GETATTR(nd.ni_vp, &vattr, p->p_ucred, p);
if (error) {
VOP_UNLOCK(nd.ni_vp, 0, p);
(void) vn_close(nd.ni_vp, VNDRW(vnd), p->p_ucred, p);
vndunlock(vnd);
return (error);
}
VOP_UNLOCK(nd.ni_vp, 0, p);
vnd->sc_vp = nd.ni_vp;
vnd->sc_size = btodb(vattr.va_size); /* note truncation */
if ((error = vndsetcred(vnd, p->p_ucred)) != 0) {
(void) vn_close(nd.ni_vp, VNDRW(vnd), p->p_ucred, p);
vndunlock(vnd);
return (error);
}
if (vio->vnd_keylen > 0) {
char key[BLF_MAXUTILIZED];
if (vio->vnd_keylen > sizeof(key))
vio->vnd_keylen = sizeof(key);
if ((error = copyin(vio->vnd_key, key,
vio->vnd_keylen)) != 0) {
(void) vn_close(nd.ni_vp, VNDRW(vnd),
p->p_ucred, p);
vndunlock(vnd);
return (error);
}
vnd->sc_keyctx = malloc(sizeof(*vnd->sc_keyctx), M_DEVBUF,
M_WAITOK);
blf_key(vnd->sc_keyctx, key, vio->vnd_keylen);
bzero(key, vio->vnd_keylen);
} else
vnd->sc_keyctx = NULL;
vio->vnd_size = dbtob((off_t)vnd->sc_size);
vnd->sc_flags |= VNF_INITED;
DNPRINTF(VDB_INIT, "vndioctl: SET vp %p size %llx\n",
vnd->sc_vp, (unsigned long long)vnd->sc_size);
/* Attach the disk. */
vnd->sc_dk.dk_driver = &vnddkdriver;
vnd->sc_dk.dk_name = vnd->sc_dev.dv_xname;
disk_attach(&vnd->sc_dk);
vndunlock(vnd);
break;
case VNDIOCCLR:
if ((vnd->sc_flags & VNF_INITED) == 0)
return (ENXIO);
if ((error = vndlock(vnd)) != 0)
return (error);
/*
* Don't unconfigure if any other partitions are open
* or if both the character and block flavors of this
* partition are open.
*/
part = DISKPART(dev);
pmask = (1 << part);
if ((vnd->sc_dk.dk_openmask & ~pmask) ||
((vnd->sc_dk.dk_bopenmask & pmask) &&
(vnd->sc_dk.dk_copenmask & pmask))) {
vndunlock(vnd);
return (EBUSY);
}
vndclear(vnd);
DNPRINTF(VDB_INIT, "vndioctl: CLRed\n");
/* Free crypto key */
if (vnd->sc_keyctx) {
bzero(vnd->sc_keyctx, sizeof(*vnd->sc_keyctx));
free(vnd->sc_keyctx, M_DEVBUF);
}
/* Detatch the disk. */
disk_detach(&vnd->sc_dk);
/* This must be atomic. */
s = splhigh();
vndunlock(vnd);
bzero(vnd, sizeof(struct vnd_softc));
splx(s);
break;
case VNDIOCGET:
vnu = (struct vnd_user *)addr;
if (vnu->vnu_unit == -1)
vnu->vnu_unit = unit;
if (vnu->vnu_unit >= numvnd)
return (ENXIO);
if (vnu->vnu_unit < 0)
return (EINVAL);
vnd = &vnd_softc[vnu->vnu_unit];
if (vnd->sc_flags & VNF_INITED) {
error = VOP_GETATTR(vnd->sc_vp, &vattr, p->p_ucred, p);
if (error)
return (error);
strlcpy(vnu->vnu_file, vnd->sc_file,
sizeof(vnu->vnu_file));
vnu->vnu_dev = vattr.va_fsid;
vnu->vnu_ino = vattr.va_fileid;
} else {
vnu->vnu_dev = 0;
vnu->vnu_ino = 0;
}
break;
case DIOCGDINFO:
if ((vnd->sc_flags & VNF_HAVELABEL) == 0)
return (ENOTTY);
*(struct disklabel *)addr = *(vnd->sc_dk.dk_label);
return (0);
case DIOCGPART:
if ((vnd->sc_flags & VNF_HAVELABEL) == 0)
return (ENOTTY);
((struct partinfo *)addr)->disklab = vnd->sc_dk.dk_label;
((struct partinfo *)addr)->part =
&vnd->sc_dk.dk_label->d_partitions[DISKPART(dev)];
return (0);
case DIOCWDINFO:
case DIOCSDINFO:
if ((vnd->sc_flags & VNF_HAVELABEL) == 0)
return (ENOTTY);
if ((flag & FWRITE) == 0)
return (EBADF);
if ((error = vndlock(vnd)) != 0)
return (error);
vnd->sc_flags |= VNF_LABELLING;
error = setdisklabel(vnd->sc_dk.dk_label,
(struct disklabel *)addr, /*vnd->sc_dk.dk_openmask : */0);
if (error == 0) {
if (cmd == DIOCWDINFO)
error = writedisklabel(VNDLABELDEV(dev),
vndstrategy, vnd->sc_dk.dk_label);
}
vnd->sc_flags &= ~VNF_LABELLING;
vndunlock(vnd);
return (error);
case DIOCWLABEL:
if ((flag & FWRITE) == 0)
return (EBADF);
if (*(int *)addr)
vnd->sc_flags |= VNF_WLABEL;
else
vnd->sc_flags &= ~VNF_WLABEL;
return (0);
default:
return (ENOTTY);
}
return (0);
}
/*
* Duplicate the current processes' credentials. Since we are called only
* as the result of a SET ioctl and only root can do that, any future access
* to this "disk" is essentially as root. Note that credentials may change
* if some other uid can write directly to the mapped file (NFS).
*/
int
vndsetcred(struct vnd_softc *vnd, struct ucred *cred)
{
struct uio auio;
struct iovec aiov;
char *tmpbuf;
int error;
struct proc *p = curproc;
vnd->sc_cred = crdup(cred);
tmpbuf = malloc(DEV_BSIZE, M_TEMP, M_WAITOK);
/* XXX: Horrible kludge to establish credentials for NFS */
aiov.iov_base = tmpbuf;
aiov.iov_len = MIN(DEV_BSIZE, dbtob((off_t)vnd->sc_size));
auio.uio_iov = &aiov;
auio.uio_iovcnt = 1;
auio.uio_offset = 0;
auio.uio_rw = UIO_READ;
auio.uio_segflg = UIO_SYSSPACE;
auio.uio_resid = aiov.iov_len;
vn_lock(vnd->sc_vp, LK_RETRY | LK_EXCLUSIVE, p);
error = VOP_READ(vnd->sc_vp, &auio, 0, vnd->sc_cred);
VOP_UNLOCK(vnd->sc_vp, 0, p);
free(tmpbuf, M_TEMP);
return (error);
}
void
vndshutdown(void)
{
struct vnd_softc *vnd;
for (vnd = &vnd_softc[0]; vnd < &vnd_softc[numvnd]; vnd++)
if (vnd->sc_flags & VNF_INITED)
vndclear(vnd);
}
void
vndclear(struct vnd_softc *vnd)
{
struct vnode *vp = vnd->sc_vp;
struct proc *p = curproc; /* XXX */
DNPRINTF(VDB_FOLLOW, "vndclear(%p): vp %p\n", vnd, vp);
vnd->sc_flags &= ~VNF_INITED;
if (vp == NULL)
panic("vndioctl: null vp");
(void) vn_close(vp, VNDRW(vnd), vnd->sc_cred, p);
crfree(vnd->sc_cred);
vnd->sc_vp = NULL;
vnd->sc_cred = NULL;
vnd->sc_size = 0;
}
daddr64_t
vndsize(dev_t dev)
{
int unit = vndunit(dev);
struct vnd_softc *vnd = &vnd_softc[unit];
if (unit >= numvnd || (vnd->sc_flags & VNF_INITED) == 0)
return (-1);
return (vnd->sc_size);
}
int
vnddump(dev_t dev, daddr64_t blkno, caddr_t va, size_t size)
{
/* Not implemented. */
return (ENXIO);
}