summaryrefslogtreecommitdiffstats
path: root/0006-Dispatch-style-protocol-switching-for-transport.patch
diff options
context:
space:
mode:
Diffstat (limited to '0006-Dispatch-style-protocol-switching-for-transport.patch')
-rw-r--r--0006-Dispatch-style-protocol-switching-for-transport.patch506
1 files changed, 506 insertions, 0 deletions
diff --git a/0006-Dispatch-style-protocol-switching-for-transport.patch b/0006-Dispatch-style-protocol-switching-for-transport.patch
new file mode 100644
index 0000000..e36544e
--- /dev/null
+++ b/0006-Dispatch-style-protocol-switching-for-transport.patch
@@ -0,0 +1,506 @@
+From 606e2ccc0a2546a23761f910482a55c5bf0f98ac Mon Sep 17 00:00:00 2001
+From: "Robbie Harwood (frozencemetery)" <rharwood@club.cc.cmu.edu>
+Date: Fri, 16 Aug 2013 14:48:55 -0400
+Subject: [PATCH 06/13] Dispatch-style protocol switching for transport
+
+Switch to using per-transport-type functions when a socket that we're
+using to communicate with a server becomes readable or writable, and add
+them as pointers to the connection state. The functions are passed the
+name of the realm of the server being contacted, as we expect to need
+this in the near future.
+
+[nalin@redhat.com: replace macros with typedefs]
+[nalin@redhat.com: compare transports with TCP_OR_UDP rather than with 0]
+
+ticket: 7929
+---
+ src/lib/krb5/os/changepw.c | 6 +-
+ src/lib/krb5/os/os-proto.h | 1 +
+ src/lib/krb5/os/sendto_kdc.c | 297 ++++++++++++++++++++++++-------------------
+ 3 files changed, 171 insertions(+), 133 deletions(-)
+
+diff --git a/src/lib/krb5/os/changepw.c b/src/lib/krb5/os/changepw.c
+index a1c9885..0ee427d 100644
+--- a/src/lib/krb5/os/changepw.c
++++ b/src/lib/krb5/os/changepw.c
+@@ -261,9 +261,9 @@ change_set_password(krb5_context context,
+ callback_info.pfn_cleanup = kpasswd_sendto_msg_cleanup;
+ krb5_free_data_contents(callback_ctx.context, &chpw_rep);
+
+- code = k5_sendto(callback_ctx.context, NULL, &sl, strategy,
+- &callback_info, &chpw_rep, ss2sa(&remote_addr),
+- &addrlen, NULL, NULL, NULL);
++ code = k5_sendto(callback_ctx.context, NULL, &creds->server->realm,
++ &sl, strategy, &callback_info, &chpw_rep,
++ ss2sa(&remote_addr), &addrlen, NULL, NULL, NULL);
+ if (code) {
+ /*
+ * Here we may want to switch to TCP on some errors.
+diff --git a/src/lib/krb5/os/os-proto.h b/src/lib/krb5/os/os-proto.h
+index f23dda5..e60ccd0 100644
+--- a/src/lib/krb5/os/os-proto.h
++++ b/src/lib/krb5/os/os-proto.h
+@@ -115,6 +115,7 @@ int _krb5_use_dns_kdc (krb5_context);
+ int _krb5_conf_boolean (const char *);
+
+ krb5_error_code k5_sendto(krb5_context context, const krb5_data *message,
++ const krb5_data *realm,
+ const struct serverlist *addrs,
+ k5_transport_strategy strategy,
+ struct sendto_callback_info *callback_info,
+diff --git a/src/lib/krb5/os/sendto_kdc.c b/src/lib/krb5/os/sendto_kdc.c
+index c6aae8e..28f1c4d 100644
+--- a/src/lib/krb5/os/sendto_kdc.c
++++ b/src/lib/krb5/os/sendto_kdc.c
+@@ -96,11 +96,18 @@ struct outgoing_message {
+ unsigned char msg_len_buf[4];
+ };
+
++struct conn_state;
++typedef krb5_boolean fd_handler_fn(krb5_context context,
++ const krb5_data *realm,
++ struct conn_state *conn,
++ struct select_state *selstate);
++
+ struct conn_state {
+ SOCKET fd;
+ enum conn_states state;
+- int (*service)(krb5_context context, struct conn_state *,
+- struct select_state *, int);
++ fd_handler_fn *service_connect;
++ fd_handler_fn *service_write;
++ fd_handler_fn *service_read;
+ struct remote_address addr;
+ struct incoming_message in;
+ struct outgoing_message out;
+@@ -409,9 +416,9 @@ krb5_sendto_kdc(krb5_context context, const krb5_data *message,
+ return retval;
+
+ err = 0;
+- retval = k5_sendto(context, message, &servers, strategy, NULL, reply,
+- NULL, NULL, &server_used, check_for_svc_unavailable,
+- &err);
++ retval = k5_sendto(context, message, realm, &servers, strategy, NULL,
++ reply, NULL, NULL, &server_used,
++ check_for_svc_unavailable, &err);
+ if (retval == KRB5_KDC_UNREACH) {
+ if (err == KDC_ERR_SVC_UNAVAILABLE) {
+ retval = KRB5KDC_ERR_SVC_UNAVAILABLE;
+@@ -457,10 +464,10 @@ cleanup:
+ * connections already in progress
+ */
+
+-static int service_tcp_fd(krb5_context context, struct conn_state *conn,
+- struct select_state *selstate, int ssflags);
+-static int service_udp_fd(krb5_context context, struct conn_state *conn,
+- struct select_state *selstate, int ssflags);
++static fd_handler_fn service_tcp_connect;
++static fd_handler_fn service_tcp_write;
++static fd_handler_fn service_tcp_read;
++static fd_handler_fn service_udp_read;
+
+ /* Set up the actual message we will send across the underlying transport to
+ * communicate the payload message, using one or both of state->out.sgbuf. */
+@@ -505,9 +512,13 @@ add_connection(struct conn_state **conns, k5_transport transport,
+ state->server_index = server_index;
+ SG_SET(&state->out.sgbuf[1], NULL, 0);
+ if (transport == TCP) {
+- state->service = service_tcp_fd;
++ state->service_connect = service_tcp_connect;
++ state->service_write = service_tcp_write;
++ state->service_read = service_tcp_read;
+ } else {
+- state->service = service_udp_fd;
++ state->service_connect = NULL;
++ state->service_write = NULL;
++ state->service_read = service_udp_read;
+
+ if (*udpbufp == NULL) {
+ *udpbufp = malloc(MAX_DGRAM_SIZE);
+@@ -788,9 +799,13 @@ maybe_send(krb5_context context, struct conn_state *conn,
+ }
+
+ static void
+-kill_conn(struct conn_state *conn, struct select_state *selstate)
++kill_conn(krb5_context context, struct conn_state *conn,
++ struct select_state *selstate)
+ {
++ if (socktype_for_transport(conn->addr.transport) == SOCK_STREAM)
++ TRACE_SENDTO_KDC_TCP_DISCONNECT(context, &conn->addr);
+ cm_remove_fd(selstate, conn->fd);
++
+ closesocket(conn->fd);
+ conn->fd = INVALID_SOCKET;
+ conn->state = FAILED;
+@@ -814,136 +829,157 @@ get_so_error(int fd)
+ return sockerr;
+ }
+
+-/* Process events on a TCP socket. Return 1 if we get a complete reply. */
+-static int
+-service_tcp_fd(krb5_context context, struct conn_state *conn,
+- struct select_state *selstate, int ssflags)
++/* Perform next step in sending. Return true on usable data. */
++static krb5_boolean
++service_dispatch(krb5_context context, const krb5_data *realm,
++ struct conn_state *conn, struct select_state *selstate,
++ int ssflags)
+ {
+- int e = 0;
+- ssize_t nwritten, nread;
+- SOCKET_WRITEV_TEMP tmp;
+- struct incoming_message *in = &conn->in;
+- struct outgoing_message *out = &conn->out;
+-
+ /* Check for a socket exception. */
+- if (ssflags & SSF_EXCEPTION)
+- goto kill_conn;
++ if (ssflags & SSF_EXCEPTION) {
++ kill_conn(context, conn, selstate);
++ return FALSE;
++ }
+
+ switch (conn->state) {
+ case CONNECTING:
+- /* Check whether the connection succeeded. */
+- e = get_so_error(conn->fd);
+- if (e) {
+- TRACE_SENDTO_KDC_TCP_ERROR_CONNECT(context, &conn->addr, e);
+- goto kill_conn;
+- }
+- conn->state = WRITING;
++ assert(conn->service_connect != NULL);
++ return conn->service_connect(context, realm, conn, selstate);
++ case WRITING:
++ assert(conn->service_write != NULL);
++ return conn->service_write(context, realm, conn, selstate);
++ case READING:
++ assert(conn->service_read != NULL);
++ return conn->service_read(context, realm, conn, selstate);
++ default:
++ abort();
++ }
++}
+
+- /* Record this connection's timeout for service_fds. */
+- if (get_curtime_ms(&conn->endtime) == 0)
+- conn->endtime += 10000;
++/* Initialize TCP transport. */
++static krb5_boolean
++service_tcp_connect(krb5_context context, const krb5_data *realm,
++ struct conn_state *conn, struct select_state *selstate)
++{
++ /* Check whether the connection succeeded. */
++ int e = get_so_error(conn->fd);
+
+- /* Fall through. */
+- case WRITING:
+- TRACE_SENDTO_KDC_TCP_SEND(context, &conn->addr);
+- nwritten = SOCKET_WRITEV(conn->fd, out->sgp, out->sg_count, tmp);
+- if (nwritten < 0) {
+- TRACE_SENDTO_KDC_TCP_ERROR_SEND(context, &conn->addr,
+- SOCKET_ERRNO);
+- goto kill_conn;
++ if (e) {
++ TRACE_SENDTO_KDC_TCP_ERROR_CONNECT(context, &conn->addr, e);
++ kill_conn(context, conn, selstate);
++ return FALSE;
++ }
++
++ conn->state = WRITING;
++
++ /* Record this connection's timeout for service_fds. */
++ if (get_curtime_ms(&conn->endtime) == 0)
++ conn->endtime += 10000;
++
++ return service_tcp_write(context, realm, conn, selstate);
++}
++
++/* Sets conn->state to READING when done. */
++static krb5_boolean
++service_tcp_write(krb5_context context, const krb5_data *realm,
++ struct conn_state *conn, struct select_state *selstate)
++{
++ ssize_t nwritten;
++ SOCKET_WRITEV_TEMP tmp;
++
++ TRACE_SENDTO_KDC_TCP_SEND(context, &conn->addr);
++ nwritten = SOCKET_WRITEV(conn->fd, conn->out.sgp, conn->out.sg_count, tmp);
++ if (nwritten < 0) {
++ TRACE_SENDTO_KDC_TCP_ERROR_SEND(context, &conn->addr, SOCKET_ERRNO);
++ kill_conn(context, conn, selstate);
++ return FALSE;
++ }
++ while (nwritten) {
++ sg_buf *sgp = conn->out.sgp;
++ if ((size_t)nwritten < SG_LEN(sgp)) {
++ SG_ADVANCE(sgp, (size_t)nwritten);
++ nwritten = 0;
++ } else {
++ nwritten -= SG_LEN(sgp);
++ conn->out.sgp++;
++ conn->out.sg_count--;
+ }
+- while (nwritten) {
+- sg_buf *sgp = out->sgp;
+- if ((size_t) nwritten < SG_LEN(sgp)) {
+- SG_ADVANCE(sgp, (size_t) nwritten);
+- nwritten = 0;
+- } else {
+- nwritten -= SG_LEN(sgp);
+- out->sgp++;
+- out->sg_count--;
+- }
++ }
++ if (conn->out.sg_count == 0) {
++ /* Done writing, switch to reading. */
++ cm_read(selstate, conn->fd);
++ conn->state = READING;
++ }
++ return FALSE;
++}
++
++/* Return true on usable data. */
++static krb5_boolean
++service_tcp_read(krb5_context context, const krb5_data *realm,
++ struct conn_state *conn, struct select_state *selstate)
++{
++ ssize_t nread;
++ int e = 0;
++ struct incoming_message *in = &conn->in;
++
++ if (in->bufsizebytes_read == 4) {
++ /* Reading data. */
++ nread = SOCKET_READ(conn->fd, &in->buf[in->pos], in->n_left);
++ if (nread <= 0) {
++ e = nread ? SOCKET_ERRNO : ECONNRESET;
++ TRACE_SENDTO_KDC_TCP_ERROR_RECV(context, &conn->addr, e);
++ kill_conn(context, conn, selstate);
++ return FALSE;
+ }
+- if (out->sg_count == 0) {
+- /* Done writing, switch to reading. */
+- cm_read(selstate, conn->fd);
+- conn->state = READING;
+- in->bufsizebytes_read = 0;
+- in->bufsize = 0;
+- in->pos = 0;
+- in->buf = NULL;
+- in->n_left = 0;
++ in->n_left -= nread;
++ in->pos += nread;
++ if (in->n_left <= 0)
++ return TRUE;
++ } else {
++ /* Reading length. */
++ nread = SOCKET_READ(conn->fd, in->bufsizebytes + in->bufsizebytes_read,
++ 4 - in->bufsizebytes_read);
++ if (nread <= 0) {
++ e = nread ? SOCKET_ERRNO : ECONNRESET;
++ TRACE_SENDTO_KDC_TCP_ERROR_RECV_LEN(context, &conn->addr, e);
++ kill_conn(context, conn, selstate);
++ return FALSE;
+ }
+- return 0;
+-
+- case READING:
++ in->bufsizebytes_read += nread;
+ if (in->bufsizebytes_read == 4) {
+- /* Reading data. */
+- nread = SOCKET_READ(conn->fd, &in->buf[in->pos], in->n_left);
+- if (nread <= 0) {
+- e = nread ? SOCKET_ERRNO : ECONNRESET;
+- TRACE_SENDTO_KDC_TCP_ERROR_RECV(context, &conn->addr, e);
+- goto kill_conn;
+- }
+- in->n_left -= nread;
+- in->pos += nread;
+- if (in->n_left <= 0)
+- return 1;
+- } else {
+- /* Reading length. */
+- nread = SOCKET_READ(conn->fd,
+- in->bufsizebytes + in->bufsizebytes_read,
+- 4 - in->bufsizebytes_read);
+- if (nread <= 0) {
+- e = nread ? SOCKET_ERRNO : ECONNRESET;
+- TRACE_SENDTO_KDC_TCP_ERROR_RECV_LEN(context, &conn->addr, e);
+- goto kill_conn;
++ unsigned long len = load_32_be(in->bufsizebytes);
++ /* Arbitrary 1M cap. */
++ if (len > 1 * 1024 * 1024) {
++ kill_conn(context, conn, selstate);
++ return FALSE;
+ }
+- in->bufsizebytes_read += nread;
+- if (in->bufsizebytes_read == 4) {
+- unsigned long len = load_32_be(in->bufsizebytes);
+- /* Arbitrary 1M cap. */
+- if (len > 1 * 1024 * 1024)
+- goto kill_conn;
+- in->bufsize = in->n_left = len;
+- in->pos = 0;
+- in->buf = malloc(len);
+- if (in->buf == NULL)
+- goto kill_conn;
++ in->bufsize = in->n_left = len;
++ in->pos = 0;
++ in->buf = malloc(len);
++ if (in->buf == NULL) {
++ kill_conn(context, conn, selstate);
++ return FALSE;
+ }
+ }
+- break;
+-
+- default:
+- abort();
+ }
+- return 0;
+-
+-kill_conn:
+- TRACE_SENDTO_KDC_TCP_DISCONNECT(context, &conn->addr);
+- kill_conn(conn, selstate);
+- return 0;
++ return FALSE;
+ }
+
+-/* Process events on a UDP socket. Return 1 if we get a reply. */
+-static int
+-service_udp_fd(krb5_context context, struct conn_state *conn,
+- struct select_state *selstate, int ssflags)
++/* Process events on a UDP socket. Return true if we get a reply. */
++static krb5_boolean
++service_udp_read(krb5_context context, const krb5_data *realm,
++ struct conn_state *conn, struct select_state *selstate)
+ {
+ int nread;
+
+- if (!(ssflags & (SSF_READ|SSF_EXCEPTION)))
+- abort();
+- if (conn->state != READING)
+- abort();
+-
+ nread = recv(conn->fd, conn->in.buf, conn->in.bufsize, 0);
+ if (nread < 0) {
+ TRACE_SENDTO_KDC_UDP_ERROR_RECV(context, &conn->addr, SOCKET_ERRNO);
+- kill_conn(conn, selstate);
+- return 0;
++ kill_conn(context, conn, selstate);
++ return FALSE;
+ }
+ conn->in.pos = nread;
+- return 1;
++ return TRUE;
+ }
+
+ /* Return the maximum of endtime and the endtime fields of all currently active
+@@ -965,7 +1001,7 @@ get_endtime(time_ms endtime, struct conn_state *conns)
+ static krb5_boolean
+ service_fds(krb5_context context, struct select_state *selstate,
+ time_ms interval, struct conn_state *conns,
+- struct select_state *seltemp,
++ struct select_state *seltemp, const krb5_data *realm,
+ int (*msg_handler)(krb5_context, const krb5_data *, void *),
+ void *msg_handler_data, struct conn_state **winner_out)
+ {
+@@ -977,7 +1013,7 @@ service_fds(krb5_context context, struct select_state *selstate,
+
+ e = get_curtime_ms(&endtime);
+ if (e)
+- return 1;
++ return TRUE;
+ endtime += interval;
+
+ e = 0;
+@@ -991,7 +1027,7 @@ service_fds(krb5_context context, struct select_state *selstate,
+
+ if (selret == 0)
+ /* Timeout, return to caller. */
+- return 0;
++ return FALSE;
+
+ /* Got something on a socket, process it. */
+ for (state = conns; state != NULL; state = state->next) {
+@@ -1003,7 +1039,7 @@ service_fds(krb5_context context, struct select_state *selstate,
+ if (!ssflags)
+ continue;
+
+- if (state->service(context, state, selstate, ssflags)) {
++ if (service_dispatch(context, realm, state, selstate, ssflags)) {
+ int stop = 1;
+
+ if (msg_handler != NULL) {
+@@ -1014,14 +1050,14 @@ service_fds(krb5_context context, struct select_state *selstate,
+
+ if (stop) {
+ *winner_out = state;
+- return 1;
++ return TRUE;
+ }
+ }
+ }
+ }
+ if (e != 0)
+- return 1;
+- return 0;
++ return TRUE;
++ return FALSE;
+ }
+
+ /*
+@@ -1052,7 +1088,8 @@ service_fds(krb5_context context, struct select_state *selstate,
+
+ krb5_error_code
+ k5_sendto(krb5_context context, const krb5_data *message,
+- const struct serverlist *servers, k5_transport_strategy strategy,
++ const krb5_data *realm, const struct serverlist *servers,
++ k5_transport_strategy strategy,
+ struct sendto_callback_info* callback_info, krb5_data *reply,
+ struct sockaddr *remoteaddr, socklen_t *remoteaddrlen,
+ int *server_used,
+@@ -1098,7 +1135,7 @@ k5_sendto(krb5_context context, const krb5_data *message,
+ if (maybe_send(context, state, message, sel_state, callback_info))
+ continue;
+ done = service_fds(context, sel_state, 1000, conns, seltemp,
+- msg_handler, msg_handler_data, &winner);
++ realm, msg_handler, msg_handler_data, &winner);
+ }
+ }
+
+@@ -1110,13 +1147,13 @@ k5_sendto(krb5_context context, const krb5_data *message,
+ if (maybe_send(context, state, message, sel_state, callback_info))
+ continue;
+ done = service_fds(context, sel_state, 1000, conns, seltemp,
+- msg_handler, msg_handler_data, &winner);
++ realm, msg_handler, msg_handler_data, &winner);
+ }
+
+ /* Wait for two seconds at the end of the first pass. */
+ if (!done) {
+ done = service_fds(context, sel_state, 2000, conns, seltemp,
+- msg_handler, msg_handler_data, &winner);
++ realm, msg_handler, msg_handler_data, &winner);
+ }
+
+ /* Make remaining passes over all of the connections. */
+@@ -1126,14 +1163,14 @@ k5_sendto(krb5_context context, const krb5_data *message,
+ if (maybe_send(context, state, message, sel_state, callback_info))
+ continue;
+ done = service_fds(context, sel_state, 1000, conns, seltemp,
+- msg_handler, msg_handler_data, &winner);
++ realm, msg_handler, msg_handler_data, &winner);
+ if (sel_state->nfds == 0)
+ break;
+ }
+ /* Wait for the delay backoff at the end of this pass. */
+ if (!done) {
+ done = service_fds(context, sel_state, delay, conns, seltemp,
+- msg_handler, msg_handler_data, &winner);
++ realm, msg_handler, msg_handler_data, &winner);
+ }
+ if (sel_state->nfds == 0)
+ break;
+--
+2.1.0
+
generated by cgit (git 2.34.1) at 2024-05-11 23:30:47 +0000