Date: Sun, 5 Mar 2006 19:55:37 GMT From: Robert Watson <rwatson@FreeBSD.org> To: Perforce Change Reviews <perforce@freebsd.org> Subject: PERFORCE change 92809 for review Message-ID: <200603051955.k25Jtbsu079498@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
http://perforce.freebsd.org/chv.cgi?CH=92809 Change 92809 by rwatson@rwatson_peppercorn on 2006/03/05 19:54:48 When decoding the following token types, assume that the consumer wants network byte order IP addresses and port numbers, and in some cases other multi-byte IP header fields: - AUT_IN_ADDR - AUT_IP - AUT_IPORT - AUT_SOCKINET32 - AUT_SOCKET - AUT_SOCKET32_EX When printing these fields, convert from network byte order. When encoding the following token types, assume the consumer provides IP addresses and port numbers in network byte order: - AUT_IN_ADDR - AUT_IN_ADDR_EX - AUT_SOCKINET32 - AUT_SOCKINET128 In general, prefer to hard-code the size of fields in terms of the sizes they are defined in in the BSM spec. It's not clear whether this is really better or worse than defining it in terms of local data types, since we will break nastily either way. Affected files ... .. //depot/projects/trustedbsd/openbsm/libbsm/bsm_io.c#37 edit .. //depot/projects/trustedbsd/openbsm/libbsm/bsm_token.c#47 edit Differences ... ==== //depot/projects/trustedbsd/openbsm/libbsm/bsm_io.c#37 (text+ko) ==== @@ -31,7 +31,7 @@ * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE * POSSIBILITY OF SUCH DAMAGE. * - * $P4: //depot/projects/trustedbsd/openbsm/libbsm/bsm_io.c#36 $ + * $P4: //depot/projects/trustedbsd/openbsm/libbsm/bsm_io.c#37 $ */ #include <sys/types.h> @@ -1356,7 +1356,8 @@ { int err = 0; - READ_TOKEN_U_INT32(buf, len, tok->tt.inaddr.addr, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.inaddr.addr, sizeof(uint32_t), + tok->len, err); if (err) return (-1); @@ -1430,15 +1431,18 @@ if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.ip.len, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.ip.len, sizeof(uint16_t), + tok->len, err); if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.ip.id, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.ip.id, sizeof(uint16_t), + tok->len, err); if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.ip.offset, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.ip.offset, sizeof(uint16_t), + tok->len, err); if (err) return (-1); @@ -1450,7 +1454,8 @@ if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.ip.chksm, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.ip.chksm, sizeof(uint16_t), + tok->len, err); if (err) return (-1); @@ -1478,17 +1483,17 @@ print_delim(fp, del); print_mem(fp, (u_char *)(&tok->tt.ip.tos), sizeof(u_char)); print_delim(fp, del); - print_2_bytes(fp, tok->tt.ip.len, "%u"); + print_2_bytes(fp, ntohs(tok->tt.ip.len), "%u"); print_delim(fp, del); - print_2_bytes(fp, tok->tt.ip.id, "%u"); + print_2_bytes(fp, ntohs(tok->tt.ip.id), "%u"); print_delim(fp, del); - print_2_bytes(fp, tok->tt.ip.offset, "%u"); + print_2_bytes(fp, ntohs(tok->tt.ip.offset), "%u"); print_delim(fp, del); print_mem(fp, (u_char *)(&tok->tt.ip.ttl), sizeof(u_char)); print_delim(fp, del); print_mem(fp, (u_char *)(&tok->tt.ip.prot), sizeof(u_char)); print_delim(fp, del); - print_2_bytes(fp, tok->tt.ip.chksm, "%u"); + print_2_bytes(fp, ntohs(tok->tt.ip.chksm), "%u"); print_delim(fp, del); print_ip_address(fp, tok->tt.ip.src); print_delim(fp, del); @@ -1602,7 +1607,8 @@ { int err = 0; - READ_TOKEN_U_INT16(buf, len, tok->tt.iport.port, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.iport.port, sizeof(uint16_t), + tok->len, err); if (err) return (-1); @@ -1616,7 +1622,7 @@ print_tok_type(fp, tok->id, "ip port", raw); print_delim(fp, del); - print_2_bytes(fp, tok->tt.iport.port, "%#x"); + print_2_bytes(fp, ntohs(tok->tt.iport.port), "%#x"); } /* @@ -1952,7 +1958,8 @@ if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.sockinet32.port, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.sockinet32.port, + sizeof(uint16_t), tok->len, err); if (err) return (-1); @@ -1973,7 +1980,7 @@ print_delim(fp, del); print_2_bytes(fp, tok->tt.sockinet32.family, "%u"); print_delim(fp, del); - print_2_bytes(fp, tok->tt.sockinet32.port, "%u"); + print_2_bytes(fp, ntohs(tok->tt.sockinet32.port), "%u"); print_delim(fp, del); print_ip_address(fp, tok->tt.sockinet32.addr); } @@ -1982,7 +1989,8 @@ * socket family 2 bytes * path 104 bytes */ -static int fetch_sock_unix_tok(tokenstr_t *tok, char *buf, int len) +static int +fetch_sock_unix_tok(tokenstr_t *tok, char *buf, int len) { int err = 0; @@ -2018,7 +2026,8 @@ * remote port 2 bytes * remote address 4 bytes */ -static int fetch_socket_tok(tokenstr_t *tok, char *buf, int len) +static int +fetch_socket_tok(tokenstr_t *tok, char *buf, int len) { int err = 0; @@ -2026,7 +2035,8 @@ if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.socket.l_port, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.socket.l_port, sizeof(uint16_t), + tok->len, err); if (err) return (-1); @@ -2035,7 +2045,8 @@ if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.socket.r_port, tok->len, err); + READ_TOKEN_BYTES(buf, len, &tok->tt.socket.r_port, sizeof(uint16_t), + tok->len, err); if (err) return (-1); @@ -2056,11 +2067,11 @@ print_delim(fp, del); print_2_bytes(fp, tok->tt.socket.type, "%u"); print_delim(fp, del); - print_2_bytes(fp, tok->tt.socket.l_port, "%u"); + print_2_bytes(fp, ntohs(tok->tt.socket.l_port), "%u"); print_delim(fp, del); print_ip_address(fp, tok->tt.socket.l_addr); print_delim(fp, del); - print_2_bytes(fp, tok->tt.socket.r_port, "%u"); + print_2_bytes(fp, ntohs(tok->tt.socket.r_port), "%u"); print_delim(fp, del); print_ip_address(fp, tok->tt.socket.r_addr); } @@ -2380,8 +2391,8 @@ if (err) return (-1); - READ_TOKEN_U_INT16(buf, len, tok->tt.socket_ex32.l_port, tok->len, - err); + READ_TOKEN_BYTES(buf, len, &tok->tt.socket_ex32.l_port, + sizeof(uint16_t), tok->len, err); if (err) return (-1); @@ -2395,8 +2406,8 @@ if (err) return (-1); - READ_TOKEN_U_INT32(buf, len, tok->tt.socket_ex32.r_port, tok->len, - err); + READ_TOKEN_BYTES(buf, len, &tok->tt.socket_ex32.r_port, + sizeof(uint16_t), tok->len, err); if (err) return (-1); @@ -2422,11 +2433,11 @@ print_delim(fp, del); print_2_bytes(fp, tok->tt.socket_ex32.type, "%#x"); print_delim(fp, del); - print_2_bytes(fp, tok->tt.socket_ex32.l_port, "%#x"); + print_2_bytes(fp, ntohs(tok->tt.socket_ex32.l_port), "%#x"); print_delim(fp, del); print_ip_address(fp, tok->tt.socket_ex32.l_addr); print_delim(fp, del); - print_4_bytes(fp, tok->tt.socket_ex32.r_port, "%#x"); + print_4_bytes(fp, ntohs(tok->tt.socket_ex32.r_port), "%#x"); print_delim(fp, del); print_ip_address(fp, tok->tt.socket_ex32.r_addr); } ==== //depot/projects/trustedbsd/openbsm/libbsm/bsm_token.c#47 (text+ko) ==== @@ -30,7 +30,7 @@ * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE * POSSIBILITY OF SUCH DAMAGE. * - * $P4: //depot/projects/trustedbsd/openbsm/libbsm/bsm_token.c#46 $ + * $P4: //depot/projects/trustedbsd/openbsm/libbsm/bsm_token.c#47 $ */ #include <sys/types.h> @@ -347,12 +347,12 @@ token_t *t; u_char *dptr = NULL; - GET_TOKEN_AREA(t, dptr, sizeof(u_char) + sizeof(u_int32_t)); + GET_TOKEN_AREA(t, dptr, sizeof(u_char) + sizeof(uint32_t)); if (t == NULL) return (NULL); ADD_U_CHAR(dptr, AUT_IN_ADDR); - ADD_U_INT32(dptr, internet_addr->s_addr); + ADD_MEM(dptr, &internet_addr->s_addr, sizeof(uint32_t)); return (t); } @@ -369,13 +369,13 @@ u_char *dptr = NULL; u_int32_t type = AF_INET6; - GET_TOKEN_AREA(t, dptr, sizeof(u_char) + 5 * sizeof(u_int32_t)); + GET_TOKEN_AREA(t, dptr, sizeof(u_char) + 5 * sizeof(uint32_t)); if (t == NULL) return (NULL); ADD_U_CHAR(dptr, AUT_IN_ADDR_EX); ADD_U_INT32(dptr, type); - ADD_MEM(dptr, internet_addr, sizeof(*internet_addr)); + ADD_MEM(dptr, internet_addr, 5 * sizeof(uint32_t)); return (t); } @@ -832,21 +832,28 @@ { token_t *t; u_char *dptr = NULL; + uint16_t family; - GET_TOKEN_AREA(t, dptr, 3 * sizeof(u_char) + sizeof(u_int16_t) + - sizeof(u_int32_t)); + GET_TOKEN_AREA(t, dptr, sizeof(u_char) + 2 * sizeof(uint16_t) + + sizeof(uint32_t)); if (t == NULL) return (NULL); ADD_U_CHAR(dptr, AUT_SOCKINET32); /* - * In Darwin, sin_family is one octet, but BSM defines the token - * to store two. So we copy in a 0 first. + * BSM defines the family field as 16 bits, but many operating + * systems have an 8-bit sin_family field. Extend to 16 bits before + * writing into the token. Assume that both the port and the address + * in the sockaddr_in are already in network byte order, but family + * is in local byte order. + * + * XXXRW: Should a name space conversion be taking place on the value + * of sin_family? */ - ADD_U_CHAR(dptr, 0); - ADD_U_CHAR(dptr, so->sin_family); - ADD_U_INT16(dptr, so->sin_port); - ADD_U_INT32(dptr, so->sin_addr.s_addr); + family = so->sin_family; + ADD_U_INT16(dptr, family); + ADD_MEM(dptr, &so->sin_port, sizeof(uint16_t)); + ADD_MEM(dptr, &so->sin_addr.s_addr, sizeof(uint32_t)); return (t); @@ -872,7 +879,7 @@ ADD_U_CHAR(dptr, so->sin6_family); ADD_U_INT16(dptr, so->sin6_port); - ADD_MEM(dptr, &so->sin6_addr, sizeof(so->sin6_addr)); + ADD_MEM(dptr, &so->sin6_addr, 4 * sizeof(uint32_t)); return (t);
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200603051955.k25Jtbsu079498>