mirror of git://sourceware.org/git/glibc.git
				
				
				
			
		
			
				
	
	
		
			689 lines
		
	
	
		
			19 KiB
		
	
	
	
		
			C
		
	
	
	
			
		
		
	
	
			689 lines
		
	
	
		
			19 KiB
		
	
	
	
		
			C
		
	
	
	
| /* Cache handling for netgroup lookup.
 | |
|    Copyright (C) 2011-2024 Free Software Foundation, Inc.
 | |
|    This file is part of the GNU C Library.
 | |
| 
 | |
|    This program is free software; you can redistribute it and/or modify
 | |
|    it under the terms of the GNU General Public License as published
 | |
|    by the Free Software Foundation; version 2 of the License, or
 | |
|    (at your option) any later version.
 | |
| 
 | |
|    This program is distributed in the hope that it will be useful,
 | |
|    but WITHOUT ANY WARRANTY; without even the implied warranty of
 | |
|    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 | |
|    GNU General Public License for more details.
 | |
| 
 | |
|    You should have received a copy of the GNU General Public License
 | |
|    along with this program; if not, see <https://www.gnu.org/licenses/>.  */
 | |
| 
 | |
| #include <alloca.h>
 | |
| #include <assert.h>
 | |
| #include <errno.h>
 | |
| #include <libintl.h>
 | |
| #include <stdbool.h>
 | |
| #include <stdlib.h>
 | |
| #include <unistd.h>
 | |
| #include <sys/mman.h>
 | |
| #include <scratch_buffer.h>
 | |
| 
 | |
| #include "../nss/netgroup.h"
 | |
| #include "nscd.h"
 | |
| #include "dbg_log.h"
 | |
| 
 | |
| #include <kernel-features.h>
 | |
| 
 | |
| 
 | |
| /* This is the standard reply in case the service is disabled.  */
 | |
| static const netgroup_response_header disabled =
 | |
| {
 | |
|   .version = NSCD_VERSION,
 | |
|   .found = -1,
 | |
|   .nresults = 0,
 | |
|   .result_len = 0
 | |
| };
 | |
| 
 | |
| /* This is the struct describing how to write this record.  */
 | |
| const struct iovec netgroup_iov_disabled =
 | |
| {
 | |
|   .iov_base = (void *) &disabled,
 | |
|   .iov_len = sizeof (disabled)
 | |
| };
 | |
| 
 | |
| 
 | |
| /* This is the standard reply in case we haven't found the dataset.  */
 | |
| static const netgroup_response_header notfound =
 | |
| {
 | |
|   .version = NSCD_VERSION,
 | |
|   .found = 0,
 | |
|   .nresults = 0,
 | |
|   .result_len = 0
 | |
| };
 | |
| 
 | |
| 
 | |
| struct dataset
 | |
| {
 | |
|   struct datahead head;
 | |
|   netgroup_response_header resp;
 | |
|   char strdata[0];
 | |
| };
 | |
| 
 | |
| /* Send a notfound response to FD.  Always returns -1 to indicate an
 | |
|    ephemeral error.  */
 | |
| static time_t
 | |
| send_notfound (int fd)
 | |
| {
 | |
|   if (fd != -1)
 | |
|     TEMP_FAILURE_RETRY (send (fd, ¬found, sizeof (notfound), MSG_NOSIGNAL));
 | |
|   return -1;
 | |
| }
 | |
| 
 | |
| /* Sends a notfound message and prepares a notfound dataset to write to the
 | |
|    cache.  Returns true if there was enough memory to allocate the dataset and
 | |
|    returns the dataset in DATASETP, total bytes to write in TOTALP and the
 | |
|    timeout in TIMEOUTP.  KEY_COPY is set to point to the copy of the key in the
 | |
|    dataset. */
 | |
| static bool
 | |
| do_notfound (struct database_dyn *db, int fd, request_header *req,
 | |
| 	       const char *key, struct dataset **datasetp, ssize_t *totalp,
 | |
| 	       time_t *timeoutp, char **key_copy)
 | |
| {
 | |
|   struct dataset *dataset;
 | |
|   ssize_t total;
 | |
|   time_t timeout;
 | |
|   bool cacheable = false;
 | |
| 
 | |
|   total = sizeof (notfound);
 | |
|   timeout = time (NULL) + db->negtimeout;
 | |
| 
 | |
|   send_notfound (fd);
 | |
| 
 | |
|   dataset = mempool_alloc (db, sizeof (struct dataset) + req->key_len, 1);
 | |
|   /* If we cannot permanently store the result, so be it.  */
 | |
|   if (dataset != NULL)
 | |
|     {
 | |
|       timeout = datahead_init_neg (&dataset->head,
 | |
| 				   sizeof (struct dataset) + req->key_len,
 | |
| 				   total, db->negtimeout);
 | |
| 
 | |
|       /* This is the reply.  */
 | |
|       memcpy (&dataset->resp, ¬found, total);
 | |
| 
 | |
|       /* Copy the key data.  */
 | |
|       memcpy (dataset->strdata, key, req->key_len);
 | |
|       *key_copy = dataset->strdata;
 | |
| 
 | |
|       cacheable = true;
 | |
|     }
 | |
|   *timeoutp = timeout;
 | |
|   *totalp = total;
 | |
|   *datasetp = dataset;
 | |
|   return cacheable;
 | |
| }
 | |
| 
 | |
| struct addgetnetgrentX_scratch
 | |
| {
 | |
|   /* This is the result that the caller should use.  It can be NULL,
 | |
|      point into buffer, or it can be in the cache.  */
 | |
|   struct dataset *dataset;
 | |
| 
 | |
|   struct scratch_buffer buffer;
 | |
| 
 | |
|   /* Used internally in addgetnetgrentX as a staging area.  */
 | |
|   struct scratch_buffer tmp;
 | |
| 
 | |
|   /* Number of bytes in buffer that are actually used.  */
 | |
|   size_t buffer_used;
 | |
| };
 | |
| 
 | |
| static void
 | |
| addgetnetgrentX_scratch_init (struct addgetnetgrentX_scratch *scratch)
 | |
| {
 | |
|   scratch->dataset = NULL;
 | |
|   scratch_buffer_init (&scratch->buffer);
 | |
|   scratch_buffer_init (&scratch->tmp);
 | |
| 
 | |
|   /* Reserve space for the header.  */
 | |
|   scratch->buffer_used = sizeof (struct dataset);
 | |
|   static_assert (sizeof (struct dataset) < sizeof (scratch->tmp.__space),
 | |
| 		 "initial buffer space");
 | |
|   memset (scratch->tmp.data, 0, sizeof (struct dataset));
 | |
| }
 | |
| 
 | |
| static void
 | |
| addgetnetgrentX_scratch_free (struct addgetnetgrentX_scratch *scratch)
 | |
| {
 | |
|   scratch_buffer_free (&scratch->buffer);
 | |
|   scratch_buffer_free (&scratch->tmp);
 | |
| }
 | |
| 
 | |
| /* Copy LENGTH bytes from S into SCRATCH.  Returns NULL if SCRATCH
 | |
|    could not be resized, otherwise a pointer to the copy.  */
 | |
| static char *
 | |
| addgetnetgrentX_append_n (struct addgetnetgrentX_scratch *scratch,
 | |
| 			  const char *s, size_t length)
 | |
| {
 | |
|   while (true)
 | |
|     {
 | |
|       size_t remaining = scratch->buffer.length - scratch->buffer_used;
 | |
|       if (remaining >= length)
 | |
| 	break;
 | |
|       if (!scratch_buffer_grow_preserve (&scratch->buffer))
 | |
| 	return NULL;
 | |
|     }
 | |
|   char *copy = scratch->buffer.data + scratch->buffer_used;
 | |
|   memcpy (copy, s, length);
 | |
|   scratch->buffer_used += length;
 | |
|   return copy;
 | |
| }
 | |
| 
 | |
| /* Copy S into SCRATCH, including its null terminator.  Returns false
 | |
|    if SCRATCH could not be resized.  */
 | |
| static bool
 | |
| addgetnetgrentX_append (struct addgetnetgrentX_scratch *scratch, const char *s)
 | |
| {
 | |
|   if (s == NULL)
 | |
|     s = "";
 | |
|   return addgetnetgrentX_append_n (scratch, s, strlen (s) + 1) != NULL;
 | |
| }
 | |
| 
 | |
| /* Caller must initialize and free *SCRATCH.  If the return value is
 | |
|    negative, this function has sent a notfound response.  */
 | |
| static time_t
 | |
| addgetnetgrentX (struct database_dyn *db, int fd, request_header *req,
 | |
| 		 const char *key, uid_t uid, struct hashentry *he,
 | |
| 		 struct datahead *dh, struct addgetnetgrentX_scratch *scratch)
 | |
| {
 | |
|   if (__glibc_unlikely (debug_level > 0))
 | |
|     {
 | |
|       if (he == NULL)
 | |
| 	dbg_log (_("Haven't found \"%s\" in netgroup cache!"), key);
 | |
|       else
 | |
| 	dbg_log (_("Reloading \"%s\" in netgroup cache!"), key);
 | |
|     }
 | |
| 
 | |
|   static nss_action_list netgroup_database;
 | |
|   time_t timeout;
 | |
|   struct dataset *dataset;
 | |
|   bool cacheable = false;
 | |
|   ssize_t total;
 | |
|   bool found = false;
 | |
| 
 | |
|   char *key_copy = NULL;
 | |
|   struct __netgrent data;
 | |
|   size_t nentries = 0;
 | |
|   size_t group_len = strlen (key) + 1;
 | |
|   struct name_list *first_needed
 | |
|     = alloca (sizeof (struct name_list) + group_len);
 | |
| 
 | |
|   if (netgroup_database == NULL
 | |
|       && !__nss_database_get (nss_database_netgroup, &netgroup_database))
 | |
|     {
 | |
|       /* No such service.  */
 | |
|       cacheable = do_notfound (db, fd, req, key, &dataset, &total, &timeout,
 | |
| 			       &key_copy);
 | |
|       goto maybe_cache_add;
 | |
|     }
 | |
| 
 | |
|   memset (&data, '\0', sizeof (data));
 | |
|   first_needed->next = first_needed;
 | |
|   memcpy (first_needed->name, key, group_len);
 | |
|   data.needed_groups = first_needed;
 | |
| 
 | |
|   while (data.needed_groups != NULL)
 | |
|     {
 | |
|       /* Add the next group to the list of those which are known.  */
 | |
|       struct name_list *this_group = data.needed_groups->next;
 | |
|       if (this_group == data.needed_groups)
 | |
| 	data.needed_groups = NULL;
 | |
|       else
 | |
| 	data.needed_groups->next = this_group->next;
 | |
|       this_group->next = data.known_groups;
 | |
|       data.known_groups = this_group;
 | |
| 
 | |
|       union
 | |
|       {
 | |
| 	enum nss_status (*f) (const char *, struct __netgrent *);
 | |
| 	void *ptr;
 | |
|       } setfct;
 | |
| 
 | |
|       nss_action_list nip = netgroup_database;
 | |
|       int no_more = __nss_lookup (&nip, "setnetgrent", NULL, &setfct.ptr);
 | |
|       while (!no_more)
 | |
| 	{
 | |
| 	  enum nss_status status
 | |
| 	    = DL_CALL_FCT (*setfct.f, (data.known_groups->name, &data));
 | |
| 
 | |
| 	  if (status == NSS_STATUS_SUCCESS)
 | |
| 	    {
 | |
| 	      found = true;
 | |
| 	      union
 | |
| 	      {
 | |
| 		enum nss_status (*f) (struct __netgrent *, char *, size_t,
 | |
| 				      int *);
 | |
| 		void *ptr;
 | |
| 	      } getfct;
 | |
| 	      getfct.ptr = __nss_lookup_function (nip, "getnetgrent_r");
 | |
| 	      if (getfct.f != NULL)
 | |
| 		while (1)
 | |
| 		  {
 | |
| 		    int e;
 | |
| 		    status = getfct.f (&data, scratch->tmp.data,
 | |
| 				       scratch->tmp.length, &e);
 | |
| 		    if (status == NSS_STATUS_SUCCESS)
 | |
| 		      {
 | |
| 			if (data.type == triple_val)
 | |
| 			  {
 | |
| 			    const char *nhost = data.val.triple.host;
 | |
| 			    const char *nuser = data.val.triple.user;
 | |
| 			    const char *ndomain = data.val.triple.domain;
 | |
| 			    if (!(addgetnetgrentX_append (scratch, nhost)
 | |
| 				  && addgetnetgrentX_append (scratch, nuser)
 | |
| 				  && addgetnetgrentX_append (scratch, ndomain)))
 | |
| 			      return send_notfound (fd);
 | |
| 			    ++nentries;
 | |
| 			  }
 | |
| 			else
 | |
| 			  {
 | |
| 			    /* Check that the group has not been
 | |
| 			       requested before.  */
 | |
| 			    struct name_list *runp = data.needed_groups;
 | |
| 			    if (runp != NULL)
 | |
| 			      while (1)
 | |
| 				{
 | |
| 				  if (strcmp (runp->name, data.val.group) == 0)
 | |
| 				    break;
 | |
| 
 | |
| 				  runp = runp->next;
 | |
| 				  if (runp == data.needed_groups)
 | |
| 				    {
 | |
| 				      runp = NULL;
 | |
| 				      break;
 | |
| 				    }
 | |
| 				}
 | |
| 
 | |
| 			    if (runp == NULL)
 | |
| 			      {
 | |
| 				runp = data.known_groups;
 | |
| 				while (runp != NULL)
 | |
| 				  if (strcmp (runp->name, data.val.group) == 0)
 | |
| 				    break;
 | |
| 				  else
 | |
| 				    runp = runp->next;
 | |
| 				}
 | |
| 
 | |
| 			    if (runp == NULL)
 | |
| 			      {
 | |
| 				/* A new group is requested.  */
 | |
| 				size_t namelen = strlen (data.val.group) + 1;
 | |
| 				struct name_list *newg = alloca (sizeof (*newg)
 | |
| 								 + namelen);
 | |
| 				memcpy (newg->name, data.val.group, namelen);
 | |
| 				if (data.needed_groups == NULL)
 | |
| 				  data.needed_groups = newg->next = newg;
 | |
| 				else
 | |
| 				  {
 | |
| 				    newg->next = data.needed_groups->next;
 | |
| 				    data.needed_groups->next = newg;
 | |
| 				    data.needed_groups = newg;
 | |
| 				  }
 | |
| 			      }
 | |
| 			  }
 | |
| 		      }
 | |
| 		    else if (status == NSS_STATUS_TRYAGAIN && e == ERANGE)
 | |
| 		      {
 | |
| 			if (!scratch_buffer_grow (&scratch->tmp))
 | |
| 			  return send_notfound (fd);
 | |
| 		      }
 | |
| 		    else if (status == NSS_STATUS_RETURN
 | |
| 			     || status == NSS_STATUS_NOTFOUND
 | |
| 			     || status == NSS_STATUS_UNAVAIL)
 | |
| 		      /* This was either the last one for this group or the
 | |
| 			 group was empty or the NSS module had an internal
 | |
| 			 failure.  Look at next group if available.  */
 | |
| 		      break;
 | |
| 		  }
 | |
| 
 | |
| 	      enum nss_status (*endfct) (struct __netgrent *);
 | |
| 	      endfct = __nss_lookup_function (nip, "endnetgrent");
 | |
| 	      if (endfct != NULL)
 | |
| 		(void) DL_CALL_FCT (*endfct, (&data));
 | |
| 
 | |
| 	      break;
 | |
| 	    }
 | |
| 
 | |
| 	  no_more = __nss_next2 (&nip, "setnetgrent", NULL, &setfct.ptr,
 | |
| 				 status, 0);
 | |
| 	}
 | |
|     }
 | |
| 
 | |
|   /* No results.  Return a failure and write out a notfound record in the
 | |
|      cache.  */
 | |
|   if (!found)
 | |
|     {
 | |
|       cacheable = do_notfound (db, fd, req, key, &dataset, &total, &timeout,
 | |
| 			       &key_copy);
 | |
|       goto maybe_cache_add;
 | |
|     }
 | |
| 
 | |
|   /* Capture the result size without the key appended.   */
 | |
|   total = scratch->buffer_used;
 | |
| 
 | |
|   /* Make a copy of the key.  The scratch buffer must not move after
 | |
|      this point.  */
 | |
|   key_copy = addgetnetgrentX_append_n (scratch, key, req->key_len);
 | |
|   if (key_copy == NULL)
 | |
|     return send_notfound (fd);
 | |
| 
 | |
|   /* Fill in the dataset.  */
 | |
|   dataset = scratch->buffer.data;
 | |
|   timeout = datahead_init_pos (&dataset->head, total + req->key_len,
 | |
| 			       total - offsetof (struct dataset, resp),
 | |
| 			       he == NULL ? 0 : dh->nreloads + 1,
 | |
| 			       db->postimeout);
 | |
| 
 | |
|   dataset->resp.version = NSCD_VERSION;
 | |
|   dataset->resp.found = 1;
 | |
|   dataset->resp.nresults = nentries;
 | |
|   dataset->resp.result_len = total - sizeof (*dataset);
 | |
| 
 | |
|   /* Now we can determine whether on refill we have to create a new
 | |
|      record or not.  */
 | |
|   if (he != NULL)
 | |
|     {
 | |
|       assert (fd == -1);
 | |
| 
 | |
|       if (dataset->head.allocsize == dh->allocsize
 | |
| 	  && dataset->head.recsize == dh->recsize
 | |
| 	  && memcmp (&dataset->resp, dh->data,
 | |
| 		     dh->allocsize - offsetof (struct dataset, resp)) == 0)
 | |
| 	{
 | |
| 	  /* The data has not changed.  We will just bump the timeout
 | |
| 	     value.  Note that the new record has been allocated on
 | |
| 	     the stack and need not be freed.  */
 | |
| 	  dh->timeout = dataset->head.timeout;
 | |
| 	  dh->ttl = dataset->head.ttl;
 | |
| 	  ++dh->nreloads;
 | |
| 	  dataset = (struct dataset *) dh;
 | |
| 
 | |
| 	  goto out;
 | |
| 	}
 | |
|     }
 | |
| 
 | |
|   {
 | |
|     struct dataset *newp
 | |
|       = (struct dataset *) mempool_alloc (db, total + req->key_len, 1);
 | |
|     if (__glibc_likely (newp != NULL))
 | |
|       {
 | |
| 	/* Adjust pointer into the memory block.  */
 | |
| 	key_copy = (char *) newp + (key_copy - (char *) dataset);
 | |
| 
 | |
| 	dataset = memcpy (newp, dataset, total + req->key_len);
 | |
| 	cacheable = true;
 | |
| 
 | |
| 	if (he != NULL)
 | |
| 	  /* Mark the old record as obsolete.  */
 | |
| 	  dh->usable = false;
 | |
|       }
 | |
|   }
 | |
| 
 | |
|   if (he == NULL && fd != -1)
 | |
|     /* We write the dataset before inserting it to the database since
 | |
|        while inserting this thread might block and so would
 | |
|        unnecessarily let the receiver wait.  */
 | |
|       writeall (fd, &dataset->resp, dataset->head.recsize);
 | |
| 
 | |
|  maybe_cache_add:
 | |
|   if (cacheable)
 | |
|     {
 | |
|       /* If necessary, we also propagate the data to disk.  */
 | |
|       if (db->persistent)
 | |
| 	{
 | |
| 	  // XXX async OK?
 | |
| 	  uintptr_t pval = (uintptr_t) dataset & ~pagesize_m1;
 | |
| 	  msync ((void *) pval,
 | |
| 		 ((uintptr_t) dataset & pagesize_m1) + total + req->key_len,
 | |
| 		 MS_ASYNC);
 | |
| 	}
 | |
| 
 | |
|       (void) cache_add (req->type, key_copy, req->key_len, &dataset->head,
 | |
| 			true, db, uid, he == NULL);
 | |
| 
 | |
|       pthread_rwlock_unlock (&db->lock);
 | |
| 
 | |
|       /* Mark the old entry as obsolete.  */
 | |
|       if (dh != NULL)
 | |
| 	dh->usable = false;
 | |
|     }
 | |
| 
 | |
|  out:
 | |
|   scratch->dataset = dataset;
 | |
| 
 | |
|   return timeout;
 | |
| }
 | |
| 
 | |
| 
 | |
| static time_t
 | |
| addinnetgrX (struct database_dyn *db, int fd, request_header *req,
 | |
| 	     char *key, uid_t uid, struct hashentry *he,
 | |
| 	     struct datahead *dh)
 | |
| {
 | |
|   const char *group = key;
 | |
|   key = strchr (key, '\0') + 1;
 | |
|   size_t group_len = key - group;
 | |
|   const char *host = *key++ ? key : NULL;
 | |
|   if (host != NULL)
 | |
|     key = strchr (key, '\0') + 1;
 | |
|   const char *user = *key++ ? key : NULL;
 | |
|   if (user != NULL)
 | |
|     key = strchr (key, '\0') + 1;
 | |
|   const char *domain = *key++ ? key : NULL;
 | |
|   struct addgetnetgrentX_scratch scratch;
 | |
| 
 | |
|   addgetnetgrentX_scratch_init (&scratch);
 | |
| 
 | |
|   if (__glibc_unlikely (debug_level > 0))
 | |
|     {
 | |
|       if (he == NULL)
 | |
| 	dbg_log (_("Haven't found \"%s (%s,%s,%s)\" in netgroup cache!"),
 | |
| 		 group, host ?: "", user ?: "", domain ?: "");
 | |
|       else
 | |
| 	dbg_log (_("Reloading \"%s (%s,%s,%s)\" in netgroup cache!"),
 | |
| 		 group, host ?: "", user ?: "", domain ?: "");
 | |
|     }
 | |
| 
 | |
|   struct dataset *result = (struct dataset *) cache_search (GETNETGRENT,
 | |
| 							    group, group_len,
 | |
| 							    db, uid);
 | |
|   time_t timeout;
 | |
|   if (result != NULL)
 | |
|     timeout = result->head.timeout;
 | |
|   else
 | |
|     {
 | |
|       request_header req_get =
 | |
| 	{
 | |
| 	  .type = GETNETGRENT,
 | |
| 	  .key_len = group_len
 | |
| 	};
 | |
|       timeout = addgetnetgrentX (db, -1, &req_get, group, uid, NULL, NULL,
 | |
| 				 &scratch);
 | |
|       result = scratch.dataset;
 | |
|       if (timeout < 0)
 | |
| 	goto out;
 | |
|     }
 | |
| 
 | |
|   struct indataset
 | |
|   {
 | |
|     struct datahead head;
 | |
|     innetgroup_response_header resp;
 | |
|   } *dataset
 | |
|       = (struct indataset *) mempool_alloc (db,
 | |
| 					    sizeof (*dataset) + req->key_len,
 | |
| 					    1);
 | |
|   bool cacheable = true;
 | |
|   if (__glibc_unlikely (dataset == NULL))
 | |
|     {
 | |
|       cacheable = false;
 | |
|       /* The alloca is safe because nscd_run_worker verifies that
 | |
| 	 key_len is not larger than MAXKEYLEN.  */
 | |
|       dataset = alloca (sizeof (*dataset) + req->key_len);
 | |
|     }
 | |
| 
 | |
|   datahead_init_pos (&dataset->head, sizeof (*dataset) + req->key_len,
 | |
| 		     sizeof (innetgroup_response_header),
 | |
| 		     he == NULL ? 0 : dh->nreloads + 1,
 | |
| 		     result == NULL ? db->negtimeout : result->head.ttl);
 | |
|   /* Set the notfound status and timeout based on the result from
 | |
|      getnetgrent.  */
 | |
|   dataset->head.notfound = result == NULL || result->head.notfound;
 | |
|   dataset->head.timeout = timeout;
 | |
| 
 | |
|   dataset->resp.version = NSCD_VERSION;
 | |
|   dataset->resp.found = result != NULL && result->resp.found;
 | |
|   /* Until we find a matching entry the result is 0.  */
 | |
|   dataset->resp.result = 0;
 | |
| 
 | |
|   char *key_copy = memcpy ((char *) (dataset + 1), group, req->key_len);
 | |
| 
 | |
|   if (dataset->resp.found)
 | |
|     {
 | |
|       const char *triplets = (const char *) (&result->resp + 1);
 | |
| 
 | |
|       for (nscd_ssize_t i = result->resp.nresults; i > 0; --i)
 | |
| 	{
 | |
| 	  bool success = true;
 | |
| 
 | |
| 	  /* For the host, user and domain in each triplet, we assume success
 | |
| 	     if the value is blank because that is how the wildcard entry to
 | |
| 	     match anything is stored in the netgroup cache.  */
 | |
| 	  if (host != NULL && *triplets != '\0')
 | |
| 	    success = strcmp (host, triplets) == 0;
 | |
| 	  triplets = strchr (triplets, '\0') + 1;
 | |
| 
 | |
| 	  if (success && user != NULL && *triplets != '\0')
 | |
| 	    success = strcmp (user, triplets) == 0;
 | |
| 	  triplets = strchr (triplets, '\0') + 1;
 | |
| 
 | |
| 	  if (success && (domain == NULL || *triplets == '\0'
 | |
| 			  || strcmp (domain, triplets) == 0))
 | |
| 	    {
 | |
| 	      dataset->resp.result = 1;
 | |
| 	      break;
 | |
| 	    }
 | |
| 	  triplets = strchr (triplets, '\0') + 1;
 | |
| 	}
 | |
|     }
 | |
| 
 | |
|   if (he != NULL && dh->data[0].innetgroupdata.result == dataset->resp.result)
 | |
|     {
 | |
|       /* The data has not changed.  We will just bump the timeout
 | |
| 	 value.  Note that the new record has been allocated on
 | |
| 	 the stack and need not be freed.  */
 | |
|       dh->timeout = timeout;
 | |
|       dh->ttl = dataset->head.ttl;
 | |
|       ++dh->nreloads;
 | |
|       if (cacheable)
 | |
|         pthread_rwlock_unlock (&db->lock);
 | |
|       goto out;
 | |
|     }
 | |
| 
 | |
|   /* addgetnetgrentX may have already sent a notfound response.  Do
 | |
|      not send another one.  */
 | |
|   if (he == NULL && dataset->resp.found)
 | |
|     {
 | |
|       /* We write the dataset before inserting it to the database
 | |
| 	 since while inserting this thread might block and so would
 | |
| 	 unnecessarily let the receiver wait.  */
 | |
|       assert (fd != -1);
 | |
| 
 | |
|       writeall (fd, &dataset->resp, sizeof (innetgroup_response_header));
 | |
|     }
 | |
| 
 | |
|   if (cacheable)
 | |
|     {
 | |
|       /* If necessary, we also propagate the data to disk.  */
 | |
|       if (db->persistent)
 | |
| 	{
 | |
| 	  // XXX async OK?
 | |
| 	  uintptr_t pval = (uintptr_t) dataset & ~pagesize_m1;
 | |
| 	  msync ((void *) pval,
 | |
| 		 ((uintptr_t) dataset & pagesize_m1) + sizeof (*dataset)
 | |
| 		 + req->key_len,
 | |
| 		 MS_ASYNC);
 | |
| 	}
 | |
| 
 | |
|       (void) cache_add (req->type, key_copy, req->key_len, &dataset->head,
 | |
| 			true, db, uid, he == NULL);
 | |
| 
 | |
|       pthread_rwlock_unlock (&db->lock);
 | |
| 
 | |
|       /* Mark the old entry as obsolete.  */
 | |
|       if (dh != NULL)
 | |
| 	dh->usable = false;
 | |
|     }
 | |
| 
 | |
|  out:
 | |
|   addgetnetgrentX_scratch_free (&scratch);
 | |
|   return timeout;
 | |
| }
 | |
| 
 | |
| 
 | |
| static time_t
 | |
| addgetnetgrentX_ignore (struct database_dyn *db, int fd, request_header *req,
 | |
| 			const char *key, uid_t uid, struct hashentry *he,
 | |
| 			struct datahead *dh)
 | |
| {
 | |
|   struct addgetnetgrentX_scratch scratch;
 | |
|   addgetnetgrentX_scratch_init (&scratch);
 | |
|   time_t timeout = addgetnetgrentX (db, fd, req, key, uid, he, dh, &scratch);
 | |
|   addgetnetgrentX_scratch_free (&scratch);
 | |
|   if (timeout < 0)
 | |
|     timeout = 0;
 | |
|   return timeout;
 | |
| }
 | |
| 
 | |
| void
 | |
| addgetnetgrent (struct database_dyn *db, int fd, request_header *req,
 | |
| 		void *key, uid_t uid)
 | |
| {
 | |
|   addgetnetgrentX_ignore (db, fd, req, key, uid, NULL, NULL);
 | |
| }
 | |
| 
 | |
| 
 | |
| time_t
 | |
| readdgetnetgrent (struct database_dyn *db, struct hashentry *he,
 | |
| 		  struct datahead *dh)
 | |
| {
 | |
|   request_header req =
 | |
|     {
 | |
|       .type = GETNETGRENT,
 | |
|       .key_len = he->len
 | |
|     };
 | |
|   return addgetnetgrentX_ignore
 | |
|     (db, -1, &req, db->data + he->key, he->owner, he, dh);
 | |
| }
 | |
| 
 | |
| 
 | |
| void
 | |
| addinnetgr (struct database_dyn *db, int fd, request_header *req,
 | |
| 	    void *key, uid_t uid)
 | |
| {
 | |
|   addinnetgrX (db, fd, req, key, uid, NULL, NULL);
 | |
| }
 | |
| 
 | |
| 
 | |
| time_t
 | |
| readdinnetgr (struct database_dyn *db, struct hashentry *he,
 | |
| 	      struct datahead *dh)
 | |
| {
 | |
|   request_header req =
 | |
|     {
 | |
|       .type = INNETGR,
 | |
|       .key_len = he->len
 | |
|     };
 | |
| 
 | |
|   time_t timeout = addinnetgrX (db, -1, &req, db->data + he->key, he->owner,
 | |
| 				he, dh);
 | |
|   if (timeout < 0)
 | |
|     timeout = 0;
 | |
|   return timeout;
 | |
| }
 |