From: "J. Bruce Fields" <bfields@fieldses.org>
To: andros@netapp.com
Cc: trond.myklebust@primarydata.com, schumaker.anna@gmail.com,
linux-nfs@vger.kernel.org
Subject: Re: [PATCH Version 5 07/17] SUNRPC AUTH_GSS RPCSEC_GSS_CREATE with no payload
Date: Fri, 10 Mar 2017 12:25:29 -0500 [thread overview]
Message-ID: <20170310172529.GD29791@fieldses.org> (raw)
In-Reply-To: <20170224221953.5502-8-andros@netapp.com>
On Fri, Feb 24, 2017 at 05:19:43PM -0500, andros@netapp.com wrote:
> From: Andy Adamson <andros@netapp.com>
>
> Signed-off-by: Andy Adamson <andros@netapp.com>
> ---
> include/linux/sunrpc/auth_gss.h | 54 ++++++++++++
> net/sunrpc/auth_gss/auth_gss.c | 182 ++++++++++++++++++++++++++++++++++++++++
> 2 files changed, 236 insertions(+)
>
> diff --git a/include/linux/sunrpc/auth_gss.h b/include/linux/sunrpc/auth_gss.h
> index 4ab63a9..b2a5a61 100644
> --- a/include/linux/sunrpc/auth_gss.h
> +++ b/include/linux/sunrpc/auth_gss.h
> @@ -93,6 +93,60 @@ struct gss_cred {
> unsigned long gc_upcall_timestamp;
> };
>
> +/** GSS3 */
> +enum gss3_type {
> + GSS3_LABEL = 0,
> + GSS3_PRIVS = 1,
> +};
> +
> +struct gss3_chan_binding {
> + u32 cb_len;
> + void *cb_binding;
> +};
> +
> +struct gss3_mp_auth {
> + u32 mp_handle_len;
> + void *mp_handle;
> + u32 *mp_mic_len;
> + void *mp_mic; /* header mic */
> +};
> +
> +struct gss3_label {
> + u32 la_lfs;
> + u32 la_pi;
> + struct xdr_netobj la_label;
> +};
> +
> +struct gss3_privs {
> + char *pr_name;
> + u32 pr_num;
> + void *pr_data;
> +};
> +
> +struct gss3_assertion_u {
> + u32 au_type;
> + union {
> + struct gss3_label au_label;
> + struct gss3_privs au_privs;
> + } u;
> +};
> +
> +struct gss3_create_args {
> + struct gss3_mp_auth *ca_mp_auth;
> + struct gss3_chan_binding *ca_chan_bind;
> + u32 ca_num;
> + struct gss3_assertion_u *ca_assertions;
> +};
> +
> +struct gss3_create_res {
> + u32 cr_hlen;
> + void *cr_handle;
> + struct gss3_mp_auth *cr_mp_auth;
> + struct gss3_chan_binding *cr_chan_bind;
> + u32 cr_num;
> + struct gss3_assertion_u *cr_assertions;
> +};
> +
> #endif /* __KERNEL__ */
> #endif /* _LINUX_SUNRPC_AUTH_GSS_H */
>
> diff --git a/net/sunrpc/auth_gss/auth_gss.c b/net/sunrpc/auth_gss/auth_gss.c
> index 499cf99..6ffb16d 100644
> --- a/net/sunrpc/auth_gss/auth_gss.c
> +++ b/net/sunrpc/auth_gss/auth_gss.c
> @@ -1591,6 +1591,188 @@ static int gss_cred_is_negative_entry(struct rpc_cred *cred)
> return 0;
> }
>
> +/**
> + * GSS3_createargs_maxsz and GSS3_createres_maxsz
> + * include no rgss3_assertion_u payload.
> + */
> +#define GSS3_createargs_maxsz (1 /* empty ca_mp_auth */ + \
> + 1 /* empty ca_chan_bind */ + \
> + 1 /* ca_num */ + \
> + 1 /* au_type */)
> +#define GSS3_createres_maxsz (1 /* cr_hlen */ + \
> + XDR_QUADLEN(1024) /* cr_handle*/ + \
> + GSS3_createargs_maxsz)
> +
> +static void
> +gss3_enc_create(struct rpc_rqst *req, struct xdr_stream *xdr,
> + const struct gss3_create_args *g3ca)
> +{
> + u32 type;
> + __be32 *p;
> +
> + p = xdr_reserve_space(xdr, GSS3_createargs_maxsz << 2);
> + *p++ = cpu_to_be32(0); /* NULL ca_mp_auth */
> + *p++ = cpu_to_be32(0); /* NULL ca_chan_bind */
> + *p++ = cpu_to_be32(g3ca->ca_num);
> + type = cpu_to_be32(g3ca->ca_assertions->au_type);
> + *p++ = type;
> + switch (type) {
> + case GSS3_LABEL:
> + case GSS3_PRIVS:
> + default:
> + /* drop through to return */
> + pr_warn("RPC Unsupported gss3 create assertion %d\n", type);
> + }
> +}
> +
> +static int
> +gss3_dec_create(struct rpc_rqst *req, struct xdr_stream *xdr,
> + struct gss3_create_res *g3cr)
> +{
> + u32 dummy, type;
> + __be32 *p;
> +
> + p = xdr_inline_decode(xdr, 4);
> + if (unlikely(!p))
> + goto out_overflow;
> + g3cr->cr_hlen = be32_to_cpup(p++);
> +
> + p = xdr_inline_decode(xdr, g3cr->cr_hlen + 16);
> + if (unlikely(!p))
> + goto out_overflow;
> +
> + g3cr->cr_handle = kmemdup(p, g3cr->cr_hlen, GFP_KERNEL);
> + if (!g3cr->cr_handle)
> + goto out_err;
> +
> + p += XDR_QUADLEN(g3cr->cr_hlen);
> +
> + /* cr_mp_auth: not supported */
> + dummy = be32_to_cpup(p++);
> + if (dummy != 0) {
> + pr_warn("RPC gss3 create cr_mp_auth not supported\n");
> + goto out_free_handle;
> + }
> +
> + /* cr_chan_bind: not supported */
> + dummy = be32_to_cpup(p++);
> + if (dummy != 0) {
> + pr_warn("RPC gss3 create cr_chan_bind not supported\n");
> + goto out_free_handle;
> + }
> +
> + /* XXX Support one assertion */
> + g3cr->cr_num = be32_to_cpup(p++);
> + if (g3cr->cr_num != 1) {
> + pr_warn("RPC gss3 multiple assertions %d unspported\n",
> + g3cr->cr_num);
> + goto out_free_handle;
> + }
> +
> + /* au_type */
> + type = be32_to_cpup(p++);
> + switch (type) {
> + case GSS3_LABEL:
> + case GSS3_PRIVS:
> + default:
> + pr_warn("RPC Unsupported gss3 create assertion %d\n", type);
> + goto out_free_handle;
> + }
It's a little confusing to have a decode routine that always fails;
maybe just squash this patch together with the following one?
--b.
> + return 0;
> +
> +out_free_handle:
> + kfree(g3cr->cr_handle);
> +out_err:
> + return -EIO;
> +out_overflow:
> + pr_warn("RPC %s End of receive buffer. Remaining len: %tu words.\n",
> + __func__, xdr->end - xdr->p);
> + goto out_err;
> +}
> +
> +#define RPC_PROC_NULL 0
> +
> +struct rpc_procinfo gss3_label_assertion[] = {
> + [RPC_GSS_PROC_CREATE] = {
> + .p_proc = RPC_PROC_NULL,
> + .p_encode = (kxdreproc_t)gss3_enc_create,
> + .p_decode = (kxdrdproc_t)gss3_dec_create,
> + .p_arglen = GSS3_createargs_maxsz,
> + .p_replen = GSS3_createres_maxsz,
> + .p_statidx = RPC_GSS_PROC_CREATE,
> + .p_timer = 0,
> + .p_name = "GSS_PROC_CREATE",
> + },
> +};
> +
> +/**
> + * RPC_GSS_PROC_CREATE operation
> + *
> + * Notes:
> + * 1) Spec says we MUST use integrity or privacy security service.
> + * First pass; use rpc_gss_svc_none.
> + * 2) asserts are allocated by caller, and freed here.
> + */
> +static int
> +gss3_proc_create(struct rpc_cred *cred, struct gss3_assertion_u *asserts,
> + int numasserts)
> +{
> + struct gss_auth *gss_auth = container_of(cred->cr_auth, struct gss_auth,
> + rpc_auth);
> + struct gss_cl_ctx *ctx = gss_cred_get_ctx(cred);
> + struct rpc_task *task;
> + struct gss3_create_res cres = {
> + .cr_mp_auth = 0,
> + };
> + struct gss3_create_args *cargs = NULL;
> + int ret = -EINVAL;
> +
> + if (!ctx || !asserts)
> + goto out;
> + /**
> + * Take a reference to ensure the cred sticks around as we create
> + * a child context
> + * XXX does grabbing a reference to the context (gss_cred_get_ctx)
> + * also keep the cred from being removed?
> + * XXX do we need to keep this cred reference until the child context
> + * handle and associated assertion is removed?
> + */
> + get_rpccred(cred);
> +
> + ret = -ENOMEM;
> + cargs = kzalloc(sizeof(*cargs), GFP_NOFS);
> + if (!cargs)
> + goto out_err;
> +
> + cargs->ca_assertions = asserts;
> + cargs->ca_num = numasserts;
> + ctx->gc_proc = RPC_GSS_PROC_CREATE;
> + cred->cr_ops = &gss_credops;
> +
> + /* Want a sync rpc call */
> + task = rpc_call_null_payload(gss_auth->client, cred, 0, cargs, &cres,
> + &gss3_label_assertion[RPC_GSS_PROC_CREATE]);
> + if (IS_ERR(task)) {
> + ret = PTR_ERR(task);
> + goto out_free_assert;
> + }
> + if (task->tk_status != 0) {
> + ret = task->tk_status;
> + goto out_free_assert;
> + }
> + rpc_put_task(task);
> +
> +out_free_assert:
> + kfree(cargs->ca_assertions);
> + kfree(cargs);
> +out_err:
> + ctx->gc_proc = RPC_GSS_PROC_DATA;
> + gss_put_ctx(ctx);
> + put_rpccred(cred);
> +out:
> + return ret;
> +}
> +
> /*
> * Refresh credentials. XXX - finish
> */
> --
> 2.9.3
next prev parent reply other threads:[~2017-03-10 17:25 UTC|newest]
Thread overview: 29+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-02-24 22:19 [PATCH Version 5 00/17] RPCSEC_GSS3 full mode label kernel patch set andros
2017-02-24 22:19 ` [PATCH Version 5 01/17] SUNRPC handle unsupported RPCSEC_GSS security service andros
2017-03-09 21:54 ` J. Bruce Fields
2017-02-24 22:19 ` [PATCH Version 5 02/17] SUNRPC: RPCNULL call with payload for GSSv3 andros
2017-03-09 22:11 ` J. Bruce Fields
2017-02-24 22:19 ` [PATCH Version 5 03/17] SELINUX export security_current_sid_to_context andros
2017-02-24 22:19 ` [PATCH Version 5 04/17] SUNRPC GSSv3: base definitions andros
2017-02-24 22:19 ` [PATCH Version 5 05/17] SUNRPC AUTH_GSS get RPCSEC_GSS version from gssd downcall andros
2017-03-10 16:18 ` J. Bruce Fields
2017-02-24 22:19 ` [PATCH Version 5 06/17] SUNRPC AUTH_GSS gss3 reply verifier andros
2017-03-10 16:51 ` J. Bruce Fields
2017-02-24 22:19 ` [PATCH Version 5 07/17] SUNRPC AUTH_GSS RPCSEC_GSS_CREATE with no payload andros
2017-03-10 17:25 ` J. Bruce Fields [this message]
2017-02-24 22:19 ` [PATCH Version 5 08/17] SUNRPC AUTH_GSS RPCSEC_GSS_CREATE with label payload andros
2017-02-27 21:47 ` Anna Schumaker
2017-03-10 17:31 ` J. Bruce Fields
2017-03-10 17:33 ` J. Bruce Fields
2017-02-24 22:19 ` [PATCH Version 5 09/17] SUNRPC AUTH_GSS store GSS3 assertions in parent gss_cl_ctx andros
2017-02-24 22:19 ` [PATCH Version 5 10/17] SUNRPC AUTH_GSS store and use gss3 label assertion andros
2017-02-24 22:19 ` [PATCH Version 5 11/17] SUNRPC AUTH_GSS free assertions andros
2017-02-24 22:19 ` [PATCH Version 5 12/17] SUNRPC: AUTH_GSS add RPC_GSS_PROC_CREATE case for wrap and unwrap andros
2017-02-24 22:19 ` [PATCH Version 5 13/17] SUNRPC SVCAUTH_GSS allow RPCSEC_GSS version 1 or 3 andros
2017-02-24 22:19 ` [PATCH Version 5 14/17] SUNRPC SVCAUTH_GSS gss3 reply verifier andros
2017-02-24 22:19 ` [PATCH Version 5 15/17] SUNRPC SVCAUTH_GSS gss3 create label andros
2017-02-24 22:19 ` [PATCH Version 5 16/17] SUNRPC SVCAUTH_GSS set gss3 label on nfsd thread andros
2017-02-24 22:19 ` [PATCH Version 5 17/17] SUNRPC SVCAUTH_gss store gss3 child handles in parent rsc andros
2017-03-09 21:47 ` [PATCH Version 5 00/17] RPCSEC_GSS3 full mode label kernel patch set J. Bruce Fields
2017-03-10 14:48 ` Andy Adamson
2017-03-10 16:36 ` J. Bruce Fields
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170310172529.GD29791@fieldses.org \
--to=bfields@fieldses.org \
--cc=andros@netapp.com \
--cc=linux-nfs@vger.kernel.org \
--cc=schumaker.anna@gmail.com \
--cc=trond.myklebust@primarydata.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).