From: Chuck Lever <chuck.lever@oracle.com>
To: Jeff Layton <jlayton@redhat.com>
Cc: linux-nfs@vger.kernel.org, nfsv4@linux-nfs.org, kwc@citi.umich.edu
Subject: Re: [PATCH 3/6] nfs-utils: skip getaddrinfo in create_auth_rpc_client unless we need port
Date: Wed, 11 Mar 2009 18:09:11 -0400 [thread overview]
Message-ID: <7350E3A4-435F-4041-B18E-5453FB2F1B59@oracle.com> (raw)
In-Reply-To: <1236789782-8867-4-git-send-email-jlayton@redhat.com>
On Mar 11, 2009, at 12:42 PM, Jeff Layton wrote:
> We already have the server's address from the upcall, so we don't
> really
> need to look it up again. Move the getaddrinfo call in
> create_auth_rpc_client to a new function. Skip it if we already have
> the
> port in the sockaddr that we saved from the info in the upcall. If
> we need to get the port, don't bother looking up the hostname, just do
> the getaddrinfo with AI_NUMERICHOST set.
>
> This should reduce the amount of lookups that are needed.
>
>
> Signed-off-by: Jeff Layton <jlayton@redhat.com>
> ---
> utils/gssd/gssd_proc.c | 137 ++++++++++++++++++++++++++++
> +------------------
> 1 files changed, 84 insertions(+), 53 deletions(-)
>
> diff --git a/utils/gssd/gssd_proc.c b/utils/gssd/gssd_proc.c
> index 4f05040..349ed99 100644
> --- a/utils/gssd/gssd_proc.c
> +++ b/utils/gssd/gssd_proc.c
> @@ -553,6 +553,80 @@ out_err:
> }
>
> /*
> + * Determine the port from the servicename and set the right field
> in the
> + * sockaddr. This is mostly a no-op with newer kernels that send
> the port
> + * in the upcall. Returns true on success and false on failure.
> + */
> +static int
> +populate_port(struct sockaddr_storage *ss, char *servicename, int
> socktype,
> + int protocol)
Pointers to socket addresses are "struct sockaddr *" not "struct
sockaddr_storage *".
> +{
> + struct sockaddr_in *s4 = (struct sockaddr_in *) ss;
> + struct addrinfo ai_hints, *a = NULL;
> + char node[INET_ADDRSTRLEN];
> + char service[64];
> + char *at_sign;
> + int errcode;
> +
> + memset(&ai_hints, '\0', sizeof(ai_hints));
A C99 structure initializer would zero the structure, and you can
initialize the fields at the same time.
> +
> + switch (ss->ss_family) {
> + case AF_INET:
> + if (s4->sin_port != 0) {
> + printerr(2, "DEBUG: port already set to %d\n",
> + ntohs(s4->sin_port));
> + return 1;
> + }
> + if (!inet_ntop(AF_INET, &s4->sin_addr, node,
> + sizeof(struct sockaddr_in)))
> + return 0;
I know you are copying this mostly verbatim, but I'm not sure exactly
what this is doing. You can pass a C string containing the port
number, or a C string containing the service name, to getaddrinfo(3)
and have it fill in the port, I think.
> + break;
> + default:
> + printerr(0, "ERROR: unsupported address family %d\n",
> + ss->ss_family);
> + return 0;
> + }
> +
> + /* extract the service name from clp->servicename */
> + if ((at_sign = strchr(servicename, '@')) == NULL) {
> + printerr(0, "WARNING: servicename (%s) not formatted as "
> + "expected with service@host\n", servicename);
> + return 0;
> + }
> + if ((at_sign - servicename) >= sizeof(service)) {
> + printerr(0, "WARNING: service portion of servicename (%s) "
> + "is too long!\n", servicename);
> + return 0;
> + }
> + strncpy(service, servicename, at_sign - servicename);
> + service[at_sign - servicename] = '\0';
> +
> + ai_hints.ai_family = ss->ss_family;
> + ai_hints.ai_socktype = socktype;
> + ai_hints.ai_protocol = protocol;
> + ai_hints.ai_flags |= AI_NUMERICHOST;
I don't think we need to fill in ai_socktype.
AI_NUMERICHOST means we're not doing a DNS resolution here at all,
we're just building a sockaddr.
> +
> + errcode = getaddrinfo(node, service, &ai_hints, &a);
> + if (errcode) {
> + printerr(0, "WARNING: Error from getaddrinfo for service "
> + "'%s': %s\n", service, gai_strerror(errcode));
If the error code is EAI_SYSTEM then you should use strerror(errno).
I usually use a switch statement to sort this out.
> + return 0;
> + }
> +
> + /* XXX: walk all of the returned addrinfo list until we get port? */
Not sure we need to look at more than the first result.
getaddrinfo(3) ought to fill in the port of all the returned addrinfo
structures.
>
> + if (a->ai_family == AF_INET) {
> + s4->sin_port = ((struct sockaddr_in *) a->ai_addr)->sin_port;
> + } else {
> + printerr(0, "ERROR: unrecognized address family returned by "
> + "getaddrinfo %d\n", a->ai_family,
> + gai_strerror(errcode));
> + }
> +
> + freeaddrinfo(a);
> + return 1;
> +}
> +
> +/*
> * Create an RPC connection and establish an authenticated
> * gss context with a server.
> */
> @@ -567,14 +641,11 @@ int create_auth_rpc_client(struct clnt_info
> *clp,
> AUTH *auth = NULL;
> uid_t save_uid = -1;
> int retval = -1;
> - int errcode;
> OM_uint32 min_stat;
> char rpc_errmsg[1024];
> int sockp = RPC_ANYSOCK;
> int sendsz = 32768, recvsz = 32768;
> - struct addrinfo ai_hints, *a = NULL;
> - char service[64];
> - char *at_sign;
> + int socktype, protocol;
>
> /* Create the context as the user (not as root) */
> save_uid = geteuid();
> @@ -628,15 +699,12 @@ int create_auth_rpc_client(struct clnt_info
> *clp,
> printerr(2, "creating %s client for server %s\n", clp->protocol,
> clp->servername);
>
> - memset(&ai_hints, '\0', sizeof(ai_hints));
> - ai_hints.ai_family = PF_INET;
> - ai_hints.ai_flags |= AI_CANONNAME;
> if ((strcmp(clp->protocol, "tcp")) == 0) {
> - ai_hints.ai_socktype = SOCK_STREAM;
> - ai_hints.ai_protocol = IPPROTO_TCP;
> + socktype = SOCK_STREAM;
> + protocol = IPPROTO_TCP;
> } else if ((strcmp(clp->protocol, "udp")) == 0) {
> - ai_hints.ai_socktype = SOCK_DGRAM;
> - ai_hints.ai_protocol = IPPROTO_UDP;
> + socktype = SOCK_DGRAM;
> + protocol = IPPROTO_UDP;
> } else {
> printerr(0, "WARNING: unrecognized protocol, '%s', requested "
> "for connection to server %s for user with uid %d\n",
> @@ -644,39 +712,12 @@ int create_auth_rpc_client(struct clnt_info
> *clp,
> goto out_fail;
> }
>
>
> - /* extract the service name from clp->servicename */
> - if ((at_sign = strchr(clp->servicename, '@')) == NULL) {
> - printerr(0, "WARNING: servicename (%s) not formatted as "
> - "expected with service@host\n", clp->servicename);
> + if (!populate_port(clp->addr, clp->servicename, socktype, protocol))
> goto out_fail;
> - }
> - if ((at_sign - clp->servicename) >= sizeof(service)) {
> - printerr(0, "WARNING: service portion of servicename (%s) "
> - "is too long!\n", clp->servicename);
> - goto out_fail;
> - }
> - strncpy(service, clp->servicename, at_sign - clp->servicename);
> - service[at_sign - clp->servicename] = '\0';
>
> - errcode = getaddrinfo(clp->servername, service, &ai_hints, &a);
> - if (errcode) {
> - printerr(0, "WARNING: Error from getaddrinfo for server "
> - "'%s': %s\n", clp->servername, gai_strerror(errcode));
> - goto out_fail;
> - }
> -
> - if (a == NULL) {
> - printerr(0, "WARNING: No address information found for "
> - "connection to server %s for user with uid %d\n",
> - clp->servername, uid);
> - goto out_fail;
> - }
> - if (((struct sockaddr_in *) clp->addr)->sin_port != 0)
> - ((struct sockaddr_in *) a->ai_addr)->sin_port =
> - ((struct sockaddr_in *) clp->addr)->sin_port;
> - if (a->ai_protocol == IPPROTO_TCP) {
> + if (protocol == IPPROTO_TCP) {
> if ((rpc_clnt = clnttcp_create(
> - (struct sockaddr_in *) a->ai_addr,
> + (struct sockaddr_in *) clp->addr,
> clp->prog, clp->vers, &sockp,
> sendsz, recvsz)) == NULL) {
> snprintf(rpc_errmsg, sizeof(rpc_errmsg),
> @@ -687,10 +728,10 @@ int create_auth_rpc_client(struct clnt_info
> *clp,
> clnt_spcreateerror(rpc_errmsg));
> goto out_fail;
> }
> - } else if (a->ai_protocol == IPPROTO_UDP) {
> + } else if (protocol == IPPROTO_UDP) {
> const struct timeval timeout = {5, 0};
> if ((rpc_clnt = clntudp_bufcreate(
> - (struct sockaddr_in *) a->ai_addr,
> + (struct sockaddr_in *) clp->addr,
> clp->prog, clp->vers, timeout,
> &sockp, sendsz, recvsz)) == NULL) {
> snprintf(rpc_errmsg, sizeof(rpc_errmsg),
> @@ -701,16 +742,7 @@ int create_auth_rpc_client(struct clnt_info *clp,
> clnt_spcreateerror(rpc_errmsg));
> goto out_fail;
> }
> - } else {
> - /* Shouldn't happen! */
> - printerr(0, "ERROR: requested protocol '%s', but "
> - "got addrinfo with protocol %d\n",
> - clp->protocol, a->ai_protocol);
> - goto out_fail;
> }
> - /* We're done with this */
> - freeaddrinfo(a);
> - a = NULL;
>
> printerr(2, "creating context with server %s\n", clp->servicename);
> auth = authgss_create_default(rpc_clnt, clp->servicename, &sec);
> @@ -732,7 +764,6 @@ int create_auth_rpc_client(struct clnt_info *clp,
> out:
> if (sec.cred != GSS_C_NO_CREDENTIAL)
> gss_release_cred(&min_stat, &sec.cred);
> - if (a != NULL) freeaddrinfo(a);
> /* Restore euid to original value */
> if ((save_uid != -1) && (setfsuid(save_uid) != uid)) {
> printerr(0, "WARNING: Failed to restore fsuid"
> --
> 1.6.0.6
>
--
Chuck Lever
chuck[dot]lever[at]oracle[dot]com
next prev parent reply other threads:[~2009-03-11 22:09 UTC|newest]
Thread overview: 21+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-03-11 16:42 [PATCH 0/6] nfs-utils: convert gssd to TI-RPC and add IPv6 support (RFC) Jeff Layton
2009-03-11 16:42 ` [PATCH 1/6] nfs-utils: make getnameinfo() required for --enable-gss Jeff Layton
2009-03-11 16:42 ` [PATCH 2/6] nfs-utils: store the address given in the upcall for later use Jeff Layton
2009-03-11 21:41 ` Chuck Lever
2009-03-11 16:42 ` [PATCH 3/6] nfs-utils: skip getaddrinfo in create_auth_rpc_client unless we need port Jeff Layton
2009-03-11 22:09 ` Chuck Lever [this message]
2009-03-12 21:48 ` Jeff Layton
2009-03-11 16:43 ` [PATCH 4/6] nfs-utils: split out gssd rpc client creation into separate function Jeff Layton
2009-03-11 16:43 ` [PATCH 5/6] nfs-utils: when TIRPC is enabled, use new API to create RPC client Jeff Layton
2009-03-11 16:43 ` [PATCH 6/6] nfs-utils: add IPv6 code to gssd Jeff Layton
2009-04-01 14:23 [PATCH 0/6] nfs-utils: convert gssd to TI-RPC and add IPv6 support (try #2) Jeff Layton
2009-04-01 14:24 ` [PATCH 3/6] nfs-utils: skip getaddrinfo in create_auth_rpc_client unless we need port Jeff Layton
2009-04-01 17:11 ` Chuck Lever
2009-04-01 17:47 ` Jeff Layton
2009-04-01 18:01 ` Chuck Lever
2009-04-03 19:04 ` Jeff Layton
2009-04-06 15:03 ` Chuck Lever
2009-04-06 15:21 ` Jeff Layton
2009-04-06 15:46 ` Chuck Lever
2009-04-06 16:33 ` Jeff Layton
2009-04-06 22:33 ` Kevin Coffman
2009-04-06 22:59 ` Chuck Lever
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=7350E3A4-435F-4041-B18E-5453FB2F1B59@oracle.com \
--to=chuck.lever@oracle.com \
--cc=jlayton@redhat.com \
--cc=kwc@citi.umich.edu \
--cc=linux-nfs@vger.kernel.org \
--cc=nfsv4@linux-nfs.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.