D48593.id149884.diff
No OneTemporary
Actions

Size

11 KB

Referenced Files

None

Subscribers

None

D48593.id149884.diff
View Options

	diff --git a/lib/libiscsiutil/libiscsiutil.h b/lib/libiscsiutil/libiscsiutil.h
	--- a/lib/libiscsiutil/libiscsiutil.h
	+++ b/lib/libiscsiutil/libiscsiutil.h
	@@ -154,6 +154,9 @@
	void connection_init(struct connection *conn,
	const struct connection_ops *ops, bool use_proxy);

	+bool valid_iscsi_name(const char *name,
	+ void (warn_fn)(const char , ...));
	+
	void log_init(int level);
	void log_set_peer_name(const char *name);
	void log_set_peer_addr(const char *addr);
	diff --git a/lib/libiscsiutil/utils.c b/lib/libiscsiutil/utils.c
	--- a/lib/libiscsiutil/utils.c
	+++ b/lib/libiscsiutil/utils.c
	@@ -28,10 +28,13 @@
	* SUCH DAMAGE.
	*/

	+#include <ctype.h>
	#include <string.h>

	#include "libiscsiutil.h"

	+#define MAX_NAME_LEN 223
	+
	char *
	checked_strdup(const char *s)
	{
	@@ -42,3 +45,71 @@
	log_err(1, "strdup");
	return (c);
	}
	+
	+bool
	+valid_iscsi_name(const char name, void (warn_fn)(const char *, ...))
	+{
	+ int i;
	+
	+ if (strlen(name) >= MAX_NAME_LEN) {
	+ warn_fn("overlong name for target \"%s\"; max length allowed "
	+ "by iSCSI specification is %d characters",
	+ name, MAX_NAME_LEN);
	+ return (false);
	+ }
	+
	+ /*
	+ * In the cases below, we don't return an error, just in case the admin
	+ * was right, and we're wrong.
	+ */
	+ if (strncasecmp(name, "iqn.", strlen("iqn.")) == 0) {
	+ for (i = strlen("iqn."); name[i] != '\0'; i++) {
	+ /*
	+ * XXX: We should verify UTF-8 normalisation, as defined
	+ * by 3.2.6.2: iSCSI Name Encoding.
	+ */
	+ if (isalnum(name[i]))
	+ continue;
	+ if (name[i] == '-' \|\| name[i] == '.' \|\| name[i] == ':')
	+ continue;
	+ warn_fn("invalid character \"%c\" in target name "
	+ "\"%s\"; allowed characters are letters, digits, "
	+ "'-', '.', and ':'", name[i], name);
	+ break;
	+ }
	+ /*
	+ * XXX: Check more stuff: valid date and a valid reversed domain.
	+ */
	+ } else if (strncasecmp(name, "eui.", strlen("eui.")) == 0) {
	+ if (strlen(name) != strlen("eui.") + 16)
	+ warn_fn("invalid target name \"%s\"; the \"eui.\" "
	+ "should be followed by exactly 16 hexadecimal "
	+ "digits", name);
	+ for (i = strlen("eui."); name[i] != '\0'; i++) {
	+ if (!isxdigit(name[i])) {
	+ warn_fn("invalid character \"%c\" in target "
	+ "name \"%s\"; allowed characters are 1-9 "
	+ "and A-F", name[i], name);
	+ break;
	+ }
	+ }
	+ } else if (strncasecmp(name, "naa.", strlen("naa.")) == 0) {
	+ if (strlen(name) > strlen("naa.") + 32)
	+ warn_fn("invalid target name \"%s\"; the \"naa.\" "
	+ "should be followed by at most 32 hexadecimal "
	+ "digits", name);
	+ for (i = strlen("naa."); name[i] != '\0'; i++) {
	+ if (!isxdigit(name[i])) {
	+ warn_fn("invalid character \"%c\" in target "
	+ "name \"%s\"; allowed characters are 1-9 "
	+ "and A-F", name[i], name);
	+ break;
	+ }
	+ }
	+ } else {
	+ warn_fn("invalid target name \"%s\"; should start with "
	+ "either \"iqn.\", \"eui.\", or \"naa.\"",
	+ name);
	+ }
	+ return (true);
	+}
	diff --git a/usr.bin/iscsictl/Makefile b/usr.bin/iscsictl/Makefile
	--- a/usr.bin/iscsictl/Makefile
	+++ b/usr.bin/iscsictl/Makefile
	@@ -3,9 +3,10 @@
	SRCS= iscsictl.c periphs.c parse.y token.l y.tab.h
	CFLAGS+= -I${.CURDIR}
	CFLAGS+= -I${SRCTOP}/sys/dev/iscsi
	+CFLAGS+= -I${SRCTOP}/lib/libiscsiutil
	MAN= iscsi.conf.5 iscsictl.8

	-LIBADD= util xo
	+LIBADD= iscsiutil util xo

	YFLAGS+= -v
	LFLAGS+= -i
	diff --git a/usr.bin/iscsictl/iscsictl.h b/usr.bin/iscsictl/iscsictl.h
	--- a/usr.bin/iscsictl/iscsictl.h
	+++ b/usr.bin/iscsictl/iscsictl.h
	@@ -40,8 +40,6 @@

	#define ISCSICTL_XO_VERSION "1"

	-#define MAX_NAME_LEN 223
	-
	#define AUTH_METHOD_UNSPECIFIED 0
	#define AUTH_METHOD_NONE 1
	#define AUTH_METHOD_CHAP 2
	@@ -103,7 +101,6 @@

	void print_periphs(int session_id);

	-bool valid_iscsi_name(const char *name);
	int parse_enable(const char *enable);

	#endif /* !ISCSICTL_H */
	diff --git a/usr.bin/iscsictl/iscsictl.c b/usr.bin/iscsictl/iscsictl.c
	--- a/usr.bin/iscsictl/iscsictl.c
	+++ b/usr.bin/iscsictl/iscsictl.c
	@@ -42,6 +42,7 @@
	#include <stdlib.h>
	#include <string.h>
	#include <unistd.h>
	+#include <libiscsiutil.h>
	#include <libxo/xo.h>

	#include <iscsi_ioctl.h>
	@@ -122,38 +123,6 @@
	return (name);
	}

	-static bool
	-valid_hex(const char ch)
	-{
	- switch (ch) {
	- case '0':
	- case '1':
	- case '2':
	- case '3':
	- case '4':
	- case '5':
	- case '6':
	- case '7':
	- case '8':
	- case '9':
	- case 'a':
	- case 'A':
	- case 'b':
	- case 'B':
	- case 'c':
	- case 'C':
	- case 'd':
	- case 'D':
	- case 'e':
	- case 'E':
	- case 'f':
	- case 'F':
	- return (true);
	- default:
	- return (false);
	- }
	-}
	-
	int
	parse_enable(const char *enable)
	{
	@@ -171,74 +140,6 @@
	return (ENABLE_UNSPECIFIED);
	}

	-bool
	-valid_iscsi_name(const char *name)
	-{
	- int i;
	-
	- if (strlen(name) >= MAX_NAME_LEN) {
	- xo_warnx("overlong name for \"%s\"; max length allowed "
	- "by iSCSI specification is %d characters",
	- name, MAX_NAME_LEN);
	- return (false);
	- }
	-
	- /*
	- * In the cases below, we don't return an error, just in case the admin
	- * was right, and we're wrong.
	- */
	- if (strncasecmp(name, "iqn.", strlen("iqn.")) == 0) {
	- for (i = strlen("iqn."); name[i] != '\0'; i++) {
	- /*
	- * XXX: We should verify UTF-8 normalisation, as defined
	- * by 3.2.6.2: iSCSI Name Encoding.
	- */
	- if (isalnum(name[i]))
	- continue;
	- if (name[i] == '-' \|\| name[i] == '.' \|\| name[i] == ':')
	- continue;
	- xo_warnx("invalid character \"%c\" in iSCSI name "
	- "\"%s\"; allowed characters are letters, digits, "
	- "'-', '.', and ':'", name[i], name);
	- break;
	- }
	- /*
	- * XXX: Check more stuff: valid date and a valid reversed domain.
	- */
	- } else if (strncasecmp(name, "eui.", strlen("eui.")) == 0) {
	- if (strlen(name) != strlen("eui.") + 16)
	- xo_warnx("invalid iSCSI name \"%s\"; the \"eui.\" "
	- "should be followed by exactly 16 hexadecimal "
	- "digits", name);
	- for (i = strlen("eui."); name[i] != '\0'; i++) {
	- if (!valid_hex(name[i])) {
	- xo_warnx("invalid character \"%c\" in iSCSI "
	- "name \"%s\"; allowed characters are 1-9 "
	- "and A-F", name[i], name);
	- break;
	- }
	- }
	- } else if (strncasecmp(name, "naa.", strlen("naa.")) == 0) {
	- if (strlen(name) > strlen("naa.") + 32)
	- xo_warnx("invalid iSCSI name \"%s\"; the \"naa.\" "
	- "should be followed by at most 32 hexadecimal "
	- "digits", name);
	- for (i = strlen("naa."); name[i] != '\0'; i++) {
	- if (!valid_hex(name[i])) {
	- xo_warnx("invalid character \"%c\" in ISCSI "
	- "name \"%s\"; allowed characters are 1-9 "
	- "and A-F", name[i], name);
	- break;
	- }
	- }
	- } else {
	- xo_warnx("invalid iSCSI name \"%s\"; should start with "
	- "either \".iqn\", \"eui.\", or \"naa.\"",
	- name);
	- }
	- return (true);
	-}
	-
	void
	conf_verify(struct conf *conf)
	{
	@@ -257,7 +158,7 @@
	xo_errx(1, "cannot specify TargetName for discovery "
	"sessions for target \"%s\"", targ->t_nickname);
	if (targ->t_name != NULL) {
	- if (valid_iscsi_name(targ->t_name) == false)
	+ if (valid_iscsi_name(targ->t_name, xo_warnx) == false)
	xo_errx(1, "invalid target name \"%s\"",
	targ->t_name);
	}
	@@ -268,7 +169,7 @@
	targ->t_nickname);
	if (targ->t_initiator_name == NULL)
	targ->t_initiator_name = default_initiator_name();
	- if (valid_iscsi_name(targ->t_initiator_name) == false)
	+ if (valid_iscsi_name(targ->t_initiator_name, xo_warnx) == false)
	xo_errx(1, "invalid initiator name \"%s\"",
	targ->t_initiator_name);
	if (targ->t_header_digest == DIGEST_UNSPECIFIED)
	@@ -1014,7 +915,7 @@
	user, secret, enable);
	} else {
	if (Aflag != 0 && target != NULL) {
	- if (valid_iscsi_name(target) == false)
	+ if (valid_iscsi_name(target, xo_warnx) == false)
	xo_errx(1, "invalid target name \"%s\"", target);
	}
	conf = conf_new();
	diff --git a/usr.sbin/ctld/ctld.h b/usr.sbin/ctld/ctld.h
	--- a/usr.sbin/ctld/ctld.h
	+++ b/usr.sbin/ctld/ctld.h
	@@ -46,7 +46,6 @@
	#define DEFAULT_CD_BLOCKSIZE 2048

	#define MAX_LUNS 1024
	-#define MAX_NAME_LEN 223
	#define MAX_DATA_SEGMENT_LENGTH (128 * 1024)
	#define SOCKBUF_SIZE 1048576

	@@ -387,7 +386,6 @@

	void discovery(struct ctld_connection *conn);

	-bool valid_iscsi_name(const char *name);
	void set_timeout(int timeout, int fatal);

	#endif /* !CTLD_H */
	diff --git a/usr.sbin/ctld/ctld.c b/usr.sbin/ctld/ctld.c
	--- a/usr.sbin/ctld/ctld.c
	+++ b/usr.sbin/ctld/ctld.c
	@@ -1072,106 +1072,6 @@
	return (0);
	}

	-static bool
	-valid_hex(const char ch)
	-{
	- switch (ch) {
	- case '0':
	- case '1':
	- case '2':
	- case '3':
	- case '4':
	- case '5':
	- case '6':
	- case '7':
	- case '8':
	- case '9':
	- case 'a':
	- case 'A':
	- case 'b':
	- case 'B':
	- case 'c':
	- case 'C':
	- case 'd':
	- case 'D':
	- case 'e':
	- case 'E':
	- case 'f':
	- case 'F':
	- return (true);
	- default:
	- return (false);
	- }
	-}
	-
	-bool
	-valid_iscsi_name(const char *name)
	-{
	- int i;
	-
	- if (strlen(name) >= MAX_NAME_LEN) {
	- log_warnx("overlong name for target \"%s\"; max length allowed "
	- "by iSCSI specification is %d characters",
	- name, MAX_NAME_LEN);
	- return (false);
	- }
	-
	- /*
	- * In the cases below, we don't return an error, just in case the admin
	- * was right, and we're wrong.
	- */
	- if (strncasecmp(name, "iqn.", strlen("iqn.")) == 0) {
	- for (i = strlen("iqn."); name[i] != '\0'; i++) {
	- /*
	- * XXX: We should verify UTF-8 normalisation, as defined
	- * by 3.2.6.2: iSCSI Name Encoding.
	- */
	- if (isalnum(name[i]))
	- continue;
	- if (name[i] == '-' \|\| name[i] == '.' \|\| name[i] == ':')
	- continue;
	- log_warnx("invalid character \"%c\" in target name "
	- "\"%s\"; allowed characters are letters, digits, "
	- "'-', '.', and ':'", name[i], name);
	- break;
	- }
	- /*
	- * XXX: Check more stuff: valid date and a valid reversed domain.
	- */
	- } else if (strncasecmp(name, "eui.", strlen("eui.")) == 0) {
	- if (strlen(name) != strlen("eui.") + 16)
	- log_warnx("invalid target name \"%s\"; the \"eui.\" "
	- "should be followed by exactly 16 hexadecimal "
	- "digits", name);
	- for (i = strlen("eui."); name[i] != '\0'; i++) {
	- if (!valid_hex(name[i])) {
	- log_warnx("invalid character \"%c\" in target "
	- "name \"%s\"; allowed characters are 1-9 "
	- "and A-F", name[i], name);
	- break;
	- }
	- }
	- } else if (strncasecmp(name, "naa.", strlen("naa.")) == 0) {
	- if (strlen(name) > strlen("naa.") + 32)
	- log_warnx("invalid target name \"%s\"; the \"naa.\" "
	- "should be followed by at most 32 hexadecimal "
	- "digits", name);
	- for (i = strlen("naa."); name[i] != '\0'; i++) {
	- if (!valid_hex(name[i])) {
	- log_warnx("invalid character \"%c\" in target "
	- "name \"%s\"; allowed characters are 1-9 "
	- "and A-F", name[i], name);
	- break;
	- }
	- }
	- } else {
	- log_warnx("invalid target name \"%s\"; should start with "
	- "either \"iqn.\", \"eui.\", or \"naa.\"",
	- name);
	- }
	- return (true);
	-}
	-
	struct pport *
	pport_new(struct kports kports, const char name, uint32_t ctl_port)
	{
	@@ -1389,8 +1289,7 @@
	log_warnx("duplicated target \"%s\"", name);
	return (NULL);
	}
	- if (valid_iscsi_name(name) == false) {
	- log_warnx("target name \"%s\" is invalid", name);
	+ if (valid_iscsi_name(name, log_warnx) == false) {
	return (NULL);
	}
	targ = calloc(1, sizeof(*targ));
	diff --git a/usr.sbin/ctld/login.c b/usr.sbin/ctld/login.c
	--- a/usr.sbin/ctld/login.c
	+++ b/usr.sbin/ctld/login.c
	@@ -874,7 +874,7 @@
	login_send_error(request, 0x02, 0x07);
	log_errx(1, "received Login PDU without InitiatorName");
	}
	- if (valid_iscsi_name(initiator_name) == false) {
	+ if (valid_iscsi_name(initiator_name, log_warnx) == false) {
	login_send_error(request, 0x02, 0x00);
	log_errx(1, "received Login PDU with invalid InitiatorName");
	}

File Metadata

Mime Type: text/plain
Expires: Thu, Jan 1, 9:40 PM (16 h, 32 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 27445263
Default Alt Text: D48593.id149884.diff (11 KB)

D48593.id149884.diffNo OneTemporaryActions

D48593.id149884.diffView Options

File Metadata

Event Timeline

D48593.id149884.diff
No OneTemporary
Actions

D48593.id149884.diff
View Options