NSM: move to xdr_stream-based XDR encoders and decoders

Introduce xdr_stream-based XDR encoder and decoder functions, which are more careful about preventing RPC buffer overflows. Signed-off-by: Chuck Lever <chuck.lever@oracle.com> Signed-off-by: J. Bruce Fields <bfields@citi.umich.edu>
author: Chuck Lever <chuck.lever@oracle.com> 2008-12-05 19:02:15 -0500
committer: J. Bruce Fields <bfields@citi.umich.edu> 2009-01-06 11:53:53 -0500
commit: 03eb1dcbb799304b58730f4dba65812f49fb305e (patch)
tree: 310306a570ae554fd420bdde1fdabe7f1157c255 /fs/lockd/mon.c
parent: 36e8e668d3e6a61848a8921ddeb663b417299fa5 (diff)
1 files changed, 78 insertions, 52 deletions
diff --git a/fs/lockd/mon.c b/fs/lockd/mon.c
index 0fc9836db4e7..81e1cc14246f 100644
--- a/fs/lockd/mon.c
+++ b/fs/lockd/mon.c
@@ -193,21 +193,26 @@ nsm_create(void)
 * Status Monitor wire protocol.
 */
-static __be32 *xdr_encode_nsm_string(__be32 *p, char *string)
+static int encode_nsm_string(struct xdr_stream *xdr, const char *string)
 {
-        size_t len = strlen(string);
+        const u32 len = strlen(string);
+        __be32 *p;
-        if (len > SM_MAXSTRLEN)
-                len = SM_MAXSTRLEN;
+        if (unlikely(len > SM_MAXSTRLEN))
-        return xdr_encode_opaque(p, string, len);
+                return -EIO;
+        p = xdr_reserve_space(xdr, sizeof(u32) + len);
+        if (unlikely(p == NULL))
+                return -EIO;
+        xdr_encode_opaque(p, string, len);
+        return 0;
 }
 /*
 * "mon_name" specifies the host to be monitored.
 */
-static __be32 *xdr_encode_mon_name(__be32 *p, struct nsm_args *argp)
+static int encode_mon_name(struct xdr_stream *xdr, const struct nsm_args *argp)
 {
-        return xdr_encode_nsm_string(p, argp->mon_name);
+        return encode_nsm_string(xdr, argp->mon_name);
 }
 /*
@@ -216,30 +221,35 @@ static __be32 *xdr_encode_mon_name(__be32 *p, struct nsm_args *argp)
 * (via the NLMPROC_SM_NOTIFY call) that the state of host "mon_name"
 * has changed.
 */
-static __be32 *xdr_encode_my_id(__be32 *p, struct nsm_args *argp)
+static int encode_my_id(struct xdr_stream *xdr, const struct nsm_args *argp)
 {
-        p = xdr_encode_nsm_string(p, utsname()->nodename);
+        int status;
-        if (!p)
+        __be32 *p;
-                return ERR_PTR(-EIO);
+        status = encode_nsm_string(xdr, utsname()->nodename);
+        if (unlikely(status != 0))
+                return status;
+        p = xdr_reserve_space(xdr, 3 * sizeof(u32));
+        if (unlikely(p == NULL))
+                return -EIO;
        *p++ = htonl(argp->prog);
        *p++ = htonl(argp->vers);
        *p++ = htonl(argp->proc);
+        return 0;
-        return p;
 }
 /*
 * The "mon_id" argument specifies the non-private arguments
 * of an NSMPROC_MON or NSMPROC_UNMON call.
 */
-static __be32 *xdr_encode_mon_id(__be32 *p, struct nsm_args *argp)
+static int encode_mon_id(struct xdr_stream *xdr, const struct nsm_args *argp)
 {
-        p = xdr_encode_mon_name(p, argp);
+        int status;
-        if (!p)
-                return ERR_PTR(-EIO);
-        return xdr_encode_my_id(p, argp);
+        status = encode_mon_name(xdr, argp);
+        if (unlikely(status != 0))
+                return status;
+        return encode_my_id(xdr, argp);
 }
 /*
@@ -250,55 +260,71 @@ static __be32 *xdr_encode_mon_id(__be32 *p, struct nsm_args *argp)
 * Linux provides the raw IP address of the monitored host,
 * left in network byte order.
 */
-static __be32 *xdr_encode_priv(__be32 *p, struct nsm_args *argp)
+static int encode_priv(struct xdr_stream *xdr, const struct nsm_args *argp)
 {
+        __be32 *p;
+        p = xdr_reserve_space(xdr, SM_PRIV_SIZE);
+        if (unlikely(p == NULL))
+                return -EIO;
        *p++ = argp->addr;
        *p++ = 0;
        *p++ = 0;
        *p++ = 0;
+        return 0;
-        return p;
 }
-static int
+static int xdr_enc_mon(struct rpc_rqst *req, __be32 *p,
-xdr_encode_mon(struct rpc_rqst *rqstp, __be32 *p, struct nsm_args *argp)
+                       const struct nsm_args *argp)
 {
-        p = xdr_encode_mon_id(p, argp);
+        struct xdr_stream xdr;
-        if (IS_ERR(p))
+        int status;
-                return PTR_ERR(p);
-        p = xdr_encode_priv(p, argp);
-        if (IS_ERR(p))
-                return PTR_ERR(p);
-        rqstp->rq_slen = xdr_adjust_iovec(rqstp->rq_svec, p);
+        xdr_init_encode(&xdr, &req->rq_snd_buf, p);
-        return 0;
+        status = encode_mon_id(&xdr, argp);
+        if (unlikely(status))
+                return status;
+        return encode_priv(&xdr, argp);
 }
-static int
+static int xdr_enc_unmon(struct rpc_rqst *req, __be32 *p,
-xdr_encode_unmon(struct rpc_rqst *rqstp, __be32 *p, struct nsm_args *argp)
+                         const struct nsm_args *argp)
 {
-        p = xdr_encode_mon_id(p, argp);
+        struct xdr_stream xdr;
-        if (IS_ERR(p))
-                return PTR_ERR(p);
+        xdr_init_encode(&xdr, &req->rq_snd_buf, p);
-        rqstp->rq_slen = xdr_adjust_iovec(rqstp->rq_svec, p);
+        return encode_mon_id(&xdr, argp);
-        return 0;
 }
-static int
+static int xdr_dec_stat_res(struct rpc_rqst *rqstp, __be32 *p,
-xdr_decode_stat_res(struct rpc_rqst *rqstp, __be32 *p, struct nsm_res *resp)
+                            struct nsm_res *resp)
 {
+        struct xdr_stream xdr;
+        xdr_init_decode(&xdr, &rqstp->rq_rcv_buf, p);
+        p = xdr_inline_decode(&xdr, 2 * sizeof(u32));
+        if (unlikely(p == NULL))
+                return -EIO;
        resp->status = ntohl(*p++);
-        resp->state = ntohl(*p++);
+        resp->state = ntohl(*p);
-        dprintk("nsm: xdr_decode_stat_res status %d state %d\n",
+        dprintk("lockd: xdr_dec_stat_res status %d state %d\n",
                        resp->status, resp->state);
        return 0;
 }
-static int
+static int xdr_dec_stat(struct rpc_rqst *rqstp, __be32 *p,
-xdr_decode_stat(struct rpc_rqst *rqstp, __be32 *p, struct nsm_res *resp)
+                        struct nsm_res *resp)
 {
-        resp->state = ntohl(*p++);
+        struct xdr_stream xdr;
+        xdr_init_decode(&xdr, &rqstp->rq_rcv_buf, p);
+        p = xdr_inline_decode(&xdr, sizeof(u32));
+        if (unlikely(p == NULL))
+                return -EIO;
+        resp->state = ntohl(*p);
+        dprintk("lockd: xdr_dec_stat state %d\n", resp->state);
        return 0;
 }
@@ -314,8 +340,8 @@ xdr_decode_stat(struct rpc_rqst *rqstp, __be32 *p, struct nsm_res *resp)
 static struct rpc_procinfo      nsm_procedures[] = {
 [NSMPROC_MON] = {
                .p_proc         = NSMPROC_MON,
-                .p_encode       = (kxdrproc_t) xdr_encode_mon,
+                .p_encode       = (kxdrproc_t)xdr_enc_mon,
-                .p_decode       = (kxdrproc_t) xdr_decode_stat_res,
+                .p_decode       = (kxdrproc_t)xdr_dec_stat_res,
                .p_arglen       = SM_mon_sz,
                .p_replen       = SM_monres_sz,
                .p_statidx      = NSMPROC_MON,
@@ -323,8 +349,8 @@ static struct rpc_procinfo	nsm_procedures[] = {
        },
 [NSMPROC_UNMON] = {
                .p_proc         = NSMPROC_UNMON,
-                .p_encode       = (kxdrproc_t) xdr_encode_unmon,
+                .p_encode       = (kxdrproc_t)xdr_enc_unmon,
-                .p_decode       = (kxdrproc_t) xdr_decode_stat,
+                .p_decode       = (kxdrproc_t)xdr_dec_stat,
                .p_arglen       = SM_mon_id_sz,
                .p_replen       = SM_unmonres_sz,
                .p_statidx      = NSMPROC_UNMON,
author	Chuck Lever <chuck.lever@oracle.com>	2008-12-05 19:02:15 -0500
committer	J. Bruce Fields <bfields@citi.umich.edu>	2009-01-06 11:53:53 -0500
commit	03eb1dcbb799304b58730f4dba65812f49fb305e (patch)
tree	310306a570ae554fd420bdde1fdabe7f1157c255 /fs/lockd/mon.c
parent	36e8e668d3e6a61848a8921ddeb663b417299fa5 (diff)

diff --git a/fs/lockd/mon.c b/fs/lockd/mon.c index 0fc9836db4e7..81e1cc14246f 100644 --- a/fs/lockd/mon.c +++ b/fs/lockd/mon.c
@@ -193,21 +193,26 @@ nsm_create(void)
193	* Status Monitor wire protocol.	193	* Status Monitor wire protocol.
194	*/	194	*/
195		195
196	static __be32 xdr_encode_nsm_string(__be32 p, char *string)	196	static int encode_nsm_string(struct xdr_stream xdr, const char string)
197	{	197	{
198	size_t len = strlen(string);	198	const u32 len = strlen(string);
199		199	__be32 *p;
200	if (len > SM_MAXSTRLEN)	200
201	len = SM_MAXSTRLEN;	201	if (unlikely(len > SM_MAXSTRLEN))
202	return xdr_encode_opaque(p, string, len);	202	return -EIO;
		203	p = xdr_reserve_space(xdr, sizeof(u32) + len);
		204	if (unlikely(p == NULL))
		205	return -EIO;
		206	xdr_encode_opaque(p, string, len);
		207	return 0;
203	}	208	}
204		209
205	/*	210	/*
206	* "mon_name" specifies the host to be monitored.	211	* "mon_name" specifies the host to be monitored.
207	*/	212	*/
208	static __be32 xdr_encode_mon_name(__be32 p, struct nsm_args *argp)	213	static int encode_mon_name(struct xdr_stream xdr, const struct nsm_args argp)
209	{	214	{
210	return xdr_encode_nsm_string(p, argp->mon_name);	215	return encode_nsm_string(xdr, argp->mon_name);
211	}	216	}
212		217
213	/*	218	/*
@@ -216,30 +221,35 @@ static __be32 xdr_encode_mon_name(__be32 p, struct nsm_args *argp)
216	* (via the NLMPROC_SM_NOTIFY call) that the state of host "mon_name"	221	* (via the NLMPROC_SM_NOTIFY call) that the state of host "mon_name"
217	* has changed.	222	* has changed.
218	*/	223	*/
219	static __be32 xdr_encode_my_id(__be32 p, struct nsm_args *argp)	224	static int encode_my_id(struct xdr_stream xdr, const struct nsm_args argp)
220	{	225	{
221	p = xdr_encode_nsm_string(p, utsname()->nodename);	226	int status;
222	if (!p)	227	__be32 *p;
223	return ERR_PTR(-EIO);	228
224		229	status = encode_nsm_string(xdr, utsname()->nodename);
		230	if (unlikely(status != 0))
		231	return status;
		232	p = xdr_reserve_space(xdr, 3 * sizeof(u32));
		233	if (unlikely(p == NULL))
		234	return -EIO;
225	*p++ = htonl(argp->prog);	235	*p++ = htonl(argp->prog);
226	*p++ = htonl(argp->vers);	236	*p++ = htonl(argp->vers);
227	*p++ = htonl(argp->proc);	237	*p++ = htonl(argp->proc);
228		238	return 0;
229	return p;
230	}	239	}
231		240
232	/*	241	/*
233	* The "mon_id" argument specifies the non-private arguments	242	* The "mon_id" argument specifies the non-private arguments
234	* of an NSMPROC_MON or NSMPROC_UNMON call.	243	* of an NSMPROC_MON or NSMPROC_UNMON call.
235	*/	244	*/
236	static __be32 xdr_encode_mon_id(__be32 p, struct nsm_args *argp)	245	static int encode_mon_id(struct xdr_stream xdr, const struct nsm_args argp)
237	{	246	{
238	p = xdr_encode_mon_name(p, argp);	247	int status;
239	if (!p)
240	return ERR_PTR(-EIO);
241		248
242	return xdr_encode_my_id(p, argp);	249	status = encode_mon_name(xdr, argp);
		250	if (unlikely(status != 0))
		251	return status;
		252	return encode_my_id(xdr, argp);
243	}	253	}
244		254
245	/*	255	/*
@@ -250,55 +260,71 @@ static __be32 xdr_encode_mon_id(__be32 p, struct nsm_args *argp)
250	* Linux provides the raw IP address of the monitored host,	260	* Linux provides the raw IP address of the monitored host,
251	* left in network byte order.	261	* left in network byte order.
252	*/	262	*/
253	static __be32 xdr_encode_priv(__be32 p, struct nsm_args *argp)	263	static int encode_priv(struct xdr_stream xdr, const struct nsm_args argp)
254	{	264	{
		265	__be32 *p;
		266
		267	p = xdr_reserve_space(xdr, SM_PRIV_SIZE);
		268	if (unlikely(p == NULL))
		269	return -EIO;
255	*p++ = argp->addr;	270	*p++ = argp->addr;
256	*p++ = 0;	271	*p++ = 0;
257	*p++ = 0;	272	*p++ = 0;
258	*p++ = 0;	273	*p++ = 0;
259		274	return 0;
260	return p;
261	}	275	}
262		276
263	static int	277	static int xdr_enc_mon(struct rpc_rqst req, __be32 p,
264	xdr_encode_mon(struct rpc_rqst rqstp, __be32 p, struct nsm_args *argp)	278	const struct nsm_args *argp)
265	{	279	{
266	p = xdr_encode_mon_id(p, argp);	280	struct xdr_stream xdr;
267	if (IS_ERR(p))	281	int status;
268	return PTR_ERR(p);
269
270	p = xdr_encode_priv(p, argp);
271	if (IS_ERR(p))
272	return PTR_ERR(p);
273		282
274	rqstp->rq_slen = xdr_adjust_iovec(rqstp->rq_svec, p);	283	xdr_init_encode(&xdr, &req->rq_snd_buf, p);
275	return 0;	284	status = encode_mon_id(&xdr, argp);
		285	if (unlikely(status))
		286	return status;
		287	return encode_priv(&xdr, argp);
276	}	288	}
277		289
278	static int	290	static int xdr_enc_unmon(struct rpc_rqst req, __be32 p,
279	xdr_encode_unmon(struct rpc_rqst rqstp, __be32 p, struct nsm_args *argp)	291	const struct nsm_args *argp)
280	{	292	{
281	p = xdr_encode_mon_id(p, argp);	293	struct xdr_stream xdr;
282	if (IS_ERR(p))	294
283	return PTR_ERR(p);	295	xdr_init_encode(&xdr, &req->rq_snd_buf, p);
284	rqstp->rq_slen = xdr_adjust_iovec(rqstp->rq_svec, p);	296	return encode_mon_id(&xdr, argp);
285	return 0;
286	}	297	}
287		298
288	static int	299	static int xdr_dec_stat_res(struct rpc_rqst rqstp, __be32 p,
289	xdr_decode_stat_res(struct rpc_rqst rqstp, __be32 p, struct nsm_res *resp)	300	struct nsm_res *resp)
290	{	301	{
		302	struct xdr_stream xdr;
		303
		304	xdr_init_decode(&xdr, &rqstp->rq_rcv_buf, p);
		305	p = xdr_inline_decode(&xdr, 2 * sizeof(u32));
		306	if (unlikely(p == NULL))
		307	return -EIO;
291	resp->status = ntohl(*p++);	308	resp->status = ntohl(*p++);
292	resp->state = ntohl(*p++);	309	resp->state = ntohl(*p);
293	dprintk("nsm: xdr_decode_stat_res status %d state %d\n",	310
		311	dprintk("lockd: xdr_dec_stat_res status %d state %d\n",
294	resp->status, resp->state);	312	resp->status, resp->state);
295	return 0;	313	return 0;
296	}	314	}
297		315
298	static int	316	static int xdr_dec_stat(struct rpc_rqst rqstp, __be32 p,
299	xdr_decode_stat(struct rpc_rqst rqstp, __be32 p, struct nsm_res *resp)	317	struct nsm_res *resp)
300	{	318	{
301	resp->state = ntohl(*p++);	319	struct xdr_stream xdr;
		320
		321	xdr_init_decode(&xdr, &rqstp->rq_rcv_buf, p);
		322	p = xdr_inline_decode(&xdr, sizeof(u32));
		323	if (unlikely(p == NULL))
		324	return -EIO;
		325	resp->state = ntohl(*p);
		326
		327	dprintk("lockd: xdr_dec_stat state %d\n", resp->state);
302	return 0;	328	return 0;
303	}	329	}
304		330
@@ -314,8 +340,8 @@ xdr_decode_stat(struct rpc_rqst rqstp, __be32 p, struct nsm_res *resp)
314	static struct rpc_procinfo nsm_procedures[] = {	340	static struct rpc_procinfo nsm_procedures[] = {
315	[NSMPROC_MON] = {	341	[NSMPROC_MON] = {
316	.p_proc = NSMPROC_MON,	342	.p_proc = NSMPROC_MON,
317	.p_encode = (kxdrproc_t) xdr_encode_mon,	343	.p_encode = (kxdrproc_t)xdr_enc_mon,
318	.p_decode = (kxdrproc_t) xdr_decode_stat_res,	344	.p_decode = (kxdrproc_t)xdr_dec_stat_res,
319	.p_arglen = SM_mon_sz,	345	.p_arglen = SM_mon_sz,
320	.p_replen = SM_monres_sz,	346	.p_replen = SM_monres_sz,
321	.p_statidx = NSMPROC_MON,	347	.p_statidx = NSMPROC_MON,
@@ -323,8 +349,8 @@ static struct rpc_procinfo nsm_procedures[] = {
323	},	349	},
324	[NSMPROC_UNMON] = {	350	[NSMPROC_UNMON] = {
325	.p_proc = NSMPROC_UNMON,	351	.p_proc = NSMPROC_UNMON,
326	.p_encode = (kxdrproc_t) xdr_encode_unmon,	352	.p_encode = (kxdrproc_t)xdr_enc_unmon,
327	.p_decode = (kxdrproc_t) xdr_decode_stat,	353	.p_decode = (kxdrproc_t)xdr_dec_stat,
328	.p_arglen = SM_mon_id_sz,	354	.p_arglen = SM_mon_id_sz,
329	.p_replen = SM_unmonres_sz,	355	.p_replen = SM_unmonres_sz,
330	.p_statidx = NSMPROC_UNMON,	356	.p_statidx = NSMPROC_UNMON,