jcs.org
jcs's openbsd hax
openbsd
1/* $OpenBSD: vnd.c,v 1.183 2025/11/17 14:27:43 jsg Exp $ */
2/* $NetBSD: vnd.c,v 1.26 1996/03/30 23:06:11 christos Exp $ */
3
4/*
5 * Copyright (c) 1988 University of Utah.
6 * Copyright (c) 1990, 1993
7 * The Regents of the University of California. All rights reserved.
8 *
9 * This code is derived from software contributed to Berkeley by
10 * the Systems Programming Group of the University of Utah Computer
11 * Science Department.
12 *
13 * Redistribution and use in source and binary forms, with or without
14 * modification, are permitted provided that the following conditions
15 * are met:
16 * 1. Redistributions of source code must retain the above copyright
17 * notice, this list of conditions and the following disclaimer.
18 * 2. Redistributions in binary form must reproduce the above copyright
19 * notice, this list of conditions and the following disclaimer in the
20 * documentation and/or other materials provided with the distribution.
21 * 3. Neither the name of the University nor the names of its contributors
22 * may be used to endorse or promote products derived from this software
23 * without specific prior written permission.
24 *
25 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
26 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
27 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
28 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
29 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
30 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
31 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
32 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
33 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
34 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 * SUCH DAMAGE.
36 */
37
38/*
39 * There is a security issue involved with this driver.
40 *
41 * Once mounted all access to the contents of the "mapped" file via
42 * the special file is controlled by the permissions on the special
43 * file, the protection of the mapped file is ignored (effectively,
44 * by using root credentials in all transactions).
45 *
46 */
47
48#include <sys/param.h>
49#include <sys/systm.h>
50#include <sys/namei.h>
51#include <sys/proc.h>
52#include <sys/errno.h>
53#include <sys/limits.h>
54#include <sys/buf.h>
55#include <sys/malloc.h>
56#include <sys/ioctl.h>
57#include <sys/disklabel.h>
58#include <sys/device.h>
59#include <sys/disk.h>
60#include <sys/stat.h>
61#include <sys/vnode.h>
62#include <sys/fcntl.h>
63#include <sys/uio.h>
64#include <sys/conf.h>
65#include <sys/dkio.h>
66#include <sys/specdev.h>
67
68#include <crypto/blf.h>
69
70#include <dev/vndioctl.h>
71
72#ifdef VNDDEBUG
73int vnddebug = 0x00;
74#define VDB_FOLLOW 0x01
75#define VDB_INIT 0x02
76#define VDB_IO 0x04
77#define DNPRINTF(f, p...) do { if ((f) & vnddebug) printf(p); } while (0)
78#else
79#define DNPRINTF(f, p...) /* nothing */
80#endif /* VNDDEBUG */
81
82struct vnd_softc {
83 struct device sc_dev;
84 struct disk sc_dk;
85
86 char sc_file[VNDNLEN]; /* file we're covering */
87 int sc_flags; /* flags */
88 uint16_t sc_type; /* d_type we are emulating */
89 size_t sc_size; /* size of vnd in sectors */
90 size_t sc_secsize; /* sector size in bytes */
91 size_t sc_nsectors; /* # of sectors per track */
92 size_t sc_ntracks; /* # of tracks per cylinder */
93 struct vnode *sc_vp; /* vnode */
94 struct ucred *sc_cred; /* credentials */
95 blf_ctx *sc_keyctx; /* key context */
96};
97
98/* sc_flags */
99#define VNF_INITED 0x0001
100#define VNF_HAVELABEL 0x0002
101#define VNF_READONLY 0x0004
102
103#define VNDRW(v) ((v)->sc_flags & VNF_READONLY ? FREAD : FREAD|FWRITE)
104
105struct vnd_softc *vnd_softc;
106int numvnd = 0;
107
108/* called by main() at boot time */
109void vndattach(int);
110
111void vndclear(struct vnd_softc *);
112int vndsetcred(struct proc *p, struct vnode *, struct vnd_ioctl *,
113 struct ucred **);
114int vndgetdisklabel(dev_t, struct vnd_softc *, struct disklabel *, int);
115void vndencrypt(struct vnd_softc *, caddr_t, size_t, daddr_t, int);
116void vndencryptbuf(struct vnd_softc *, struct buf *, int);
117size_t vndbdevsize(struct vnode *, struct proc *);
118
119void
120vndencrypt(struct vnd_softc *sc, caddr_t addr, size_t size, daddr_t off,
121 int encrypt)
122{
123 int i, bsize;
124 u_char iv[8];
125
126 bsize = dbtob(1);
127 for (i = 0; i < size/bsize; i++) {
128 memset(iv, 0, sizeof(iv));
129 memcpy(iv, &off, sizeof(off));
130 blf_ecb_encrypt(sc->sc_keyctx, iv, sizeof(iv));
131 if (encrypt)
132 blf_cbc_encrypt(sc->sc_keyctx, iv, addr, bsize);
133 else
134 blf_cbc_decrypt(sc->sc_keyctx, iv, addr, bsize);
135
136 addr += bsize;
137 off++;
138 }
139}
140
141void
142vndencryptbuf(struct vnd_softc *sc, struct buf *bp, int encrypt)
143{
144 vndencrypt(sc, bp->b_data, bp->b_bcount, bp->b_blkno, encrypt);
145}
146
147void
148vndattach(int num)
149{
150 char *mem;
151 int i;
152
153 if (num <= 0)
154 return;
155 mem = mallocarray(num, sizeof(struct vnd_softc), M_DEVBUF,
156 M_NOWAIT | M_ZERO);
157 if (mem == NULL) {
158 printf("WARNING: no memory for vnode disks\n");
159 return;
160 }
161 vnd_softc = (struct vnd_softc *)mem;
162 for (i = 0; i < num; i++) {
163 struct vnd_softc *sc = &vnd_softc[i];
164
165 sc->sc_dev.dv_unit = i;
166 snprintf(sc->sc_dev.dv_xname, sizeof(sc->sc_dev.dv_xname),
167 "vnd%d", i);
168 disk_construct(&sc->sc_dk);
169 device_ref(&sc->sc_dev);
170 }
171 numvnd = num;
172}
173
174int
175vndopen(dev_t dev, int flags, int mode, struct proc *p)
176{
177 int unit = DISKUNIT(dev);
178 struct vnd_softc *sc;
179 int error = 0, part;
180
181 DNPRINTF(VDB_FOLLOW, "vndopen(%x, %x, %x, %p)\n", dev, flags, mode, p);
182
183 if (unit >= numvnd)
184 return (ENXIO);
185 sc = &vnd_softc[unit];
186
187 if ((error = disk_lock(&sc->sc_dk)) != 0)
188 return (error);
189
190 if ((flags & FWRITE) && (sc->sc_flags & VNF_READONLY)) {
191 error = EROFS;
192 goto bad;
193 }
194
195 if ((sc->sc_flags & VNF_INITED) &&
196 (sc->sc_flags & VNF_HAVELABEL) == 0 &&
197 sc->sc_dk.dk_openmask == 0) {
198 sc->sc_flags |= VNF_HAVELABEL;
199 vndgetdisklabel(dev, sc, sc->sc_dk.dk_label, 0);
200 }
201
202 part = DISKPART(dev);
203 error = disk_openpart(&sc->sc_dk, part, mode,
204 (sc->sc_flags & VNF_HAVELABEL) != 0);
205
206bad:
207 disk_unlock(&sc->sc_dk);
208 return (error);
209}
210
211/*
212 * Load the label information on the named device
213 */
214int
215vndgetdisklabel(dev_t dev, struct vnd_softc *sc, struct disklabel *lp,
216 int spoofonly)
217{
218 memset(lp, 0, sizeof(struct disklabel));
219
220 lp->d_secsize = sc->sc_secsize;
221 lp->d_nsectors = sc->sc_nsectors;
222 lp->d_ntracks = sc->sc_ntracks;
223 lp->d_secpercyl = lp->d_ntracks * lp->d_nsectors;
224 if (lp->d_secpercyl)
225 lp->d_ncylinders = sc->sc_size / lp->d_secpercyl;
226
227 strncpy(lp->d_typename, "vnd device", sizeof(lp->d_typename));
228 lp->d_type = sc->sc_type;
229 strncpy(lp->d_packname, "fictitious", sizeof(lp->d_packname));
230 DL_SETDSIZE(lp, sc->sc_size);
231 lp->d_version = 1;
232
233 lp->d_magic = DISKMAGIC;
234 lp->d_magic2 = DISKMAGIC;
235 lp->d_checksum = dkcksum(lp);
236
237 /* Call the generic disklabel extraction routine */
238 return readdisklabel(DISKLABELDEV(dev), vndstrategy, lp, spoofonly);
239}
240
241int
242vndclose(dev_t dev, int flags, int mode, struct proc *p)
243{
244 int unit = DISKUNIT(dev);
245 struct vnd_softc *sc;
246 int part;
247
248 DNPRINTF(VDB_FOLLOW, "vndclose(%x, %x, %x, %p)\n", dev, flags, mode, p);
249
250 if (unit >= numvnd)
251 return (ENXIO);
252 sc = &vnd_softc[unit];
253
254 disk_lock_nointr(&sc->sc_dk);
255
256 part = DISKPART(dev);
257
258 disk_closepart(&sc->sc_dk, part, mode);
259
260#if 0
261 if (sc->sc_dk.dk_openmask == 0)
262 sc->sc_flags &= ~VNF_HAVELABEL;
263#endif
264
265 disk_unlock(&sc->sc_dk);
266 return (0);
267}
268
269void
270vndstrategy(struct buf *bp)
271{
272 int unit = DISKUNIT(bp->b_dev);
273 struct vnd_softc *sc;
274 struct partition *p;
275 off_t off;
276 long origbcount;
277 int s;
278
279 DNPRINTF(VDB_FOLLOW, "vndstrategy(%p): unit %d\n", bp, unit);
280
281 if (unit >= numvnd) {
282 bp->b_error = ENXIO;
283 goto bad;
284 }
285 sc = &vnd_softc[unit];
286
287 if ((sc->sc_flags & VNF_HAVELABEL) == 0) {
288 bp->b_error = ENXIO;
289 goto bad;
290 }
291
292 /*
293 * Many of the distrib scripts assume they can issue arbitrary
294 * sized requests to raw vnd devices irrespective of the
295 * emulated disk geometry.
296 *
297 * To continue supporting this, round the block count up to a
298 * multiple of d_secsize for bounds_check_with_label(), and
299 * then restore afterwards.
300 *
301 * We only do this for non-encrypted vnd, because encryption
302 * requires operating on blocks at a time.
303 */
304 origbcount = bp->b_bcount;
305 if (sc->sc_keyctx == NULL) {
306 u_int32_t secsize = sc->sc_dk.dk_label->d_secsize;
307 bp->b_bcount = ((origbcount + secsize - 1) & ~(secsize - 1));
308#ifdef DIAGNOSTIC
309 if (bp->b_bcount != origbcount) {
310 struct process *curpr = curproc->p_p;
311 printf("%s: sloppy %s from proc %d (%s): "
312 "blkno %lld bcount %ld\n", sc->sc_dev.dv_xname,
313 (bp->b_flags & B_READ) ? "read" : "write",
314 curpr->ps_pid, curpr->ps_comm,
315 (long long)bp->b_blkno, origbcount);
316 }
317#endif
318 }
319
320 if (bounds_check_with_label(bp, sc->sc_dk.dk_label) == -1) {
321 bp->b_resid = bp->b_bcount = origbcount;
322 goto done;
323 }
324
325 if (origbcount < bp->b_bcount)
326 bp->b_bcount = origbcount;
327
328 p = &sc->sc_dk.dk_label->d_partitions[DISKPART(bp->b_dev)];
329 off = DL_GETPOFFSET(p) * sc->sc_dk.dk_label->d_secsize +
330 (u_int64_t)bp->b_blkno * DEV_BSIZE;
331
332 if (sc->sc_keyctx && !(bp->b_flags & B_READ))
333 vndencryptbuf(sc, bp, 1);
334
335 /*
336 * Use IO_NOLIMIT because upper layer has already checked I/O
337 * for limits, so there is no need to do it again.
338 *
339 * We use IO_NOCACHE because this data should be cached at the
340 * upper layer, so there is no need to cache it again.
341 */
342 bp->b_error = vn_rdwr((bp->b_flags & B_READ) ? UIO_READ : UIO_WRITE,
343 sc->sc_vp, bp->b_data, bp->b_bcount, off, UIO_SYSSPACE,
344 IO_NOCACHE | IO_SYNC | IO_NOLIMIT, sc->sc_cred, &bp->b_resid, curproc);
345 if (bp->b_error)
346 bp->b_flags |= B_ERROR;
347
348 /* Data in buffer cache needs to be in clear */
349 if (sc->sc_keyctx)
350 vndencryptbuf(sc, bp, 0);
351
352 goto done;
353
354 bad:
355 bp->b_flags |= B_ERROR;
356 bp->b_resid = bp->b_bcount;
357 done:
358 s = splbio();
359 biodone(bp);
360 splx(s);
361}
362
363int
364vndread(dev_t dev, struct uio *uio, int flags)
365{
366 return (physio(vndstrategy, dev, B_READ, minphys, uio));
367}
368
369int
370vndwrite(dev_t dev, struct uio *uio, int flags)
371{
372 return (physio(vndstrategy, dev, B_WRITE, minphys, uio));
373}
374
375size_t
376vndbdevsize(struct vnode *vp, struct proc *p)
377{
378 struct partinfo pi;
379 struct bdevsw *bsw;
380 dev_t dev;
381
382 dev = vp->v_rdev;
383 bsw = bdevsw_lookup(dev);
384 if (bsw->d_ioctl == NULL)
385 return (0);
386 if (bsw->d_ioctl(dev, DIOCGPART, (caddr_t)&pi, FREAD, p))
387 return (0);
388 DNPRINTF(VDB_INIT, "vndbdevsize: size %llu secsize %u\n",
389 DL_GETPSIZE(pi.part), pi.disklab->d_secsize);
390 return (DL_GETPSIZE(pi.part));
391}
392
393int
394vndioctl(dev_t dev, u_long cmd, caddr_t addr, int flag, struct proc *p)
395{
396 int unit = DISKUNIT(dev);
397 struct disklabel *lp;
398 struct vnd_softc *sc;
399 struct vnd_ioctl *vio;
400 struct vnd_user *vnu;
401 struct vattr vattr;
402 uint64_t pmask;
403 int error, part;
404
405 DNPRINTF(VDB_FOLLOW, "vndioctl(%x, %lx, %p, %x, %p): unit %d\n",
406 dev, cmd, addr, flag, p, unit);
407
408 error = suser(p);
409 if (error)
410 return (error);
411 if (unit >= numvnd)
412 return (ENXIO);
413
414 sc = &vnd_softc[unit];
415 vio = (struct vnd_ioctl *)addr;
416 switch (cmd) {
417
418 case VNDIOCSET:
419 {
420 char name[VNDNLEN], key[BLF_MAXUTILIZED];
421 struct nameidata nd;
422 struct ucred *cred = NULL;
423 size_t size;
424 int vplocked;
425 int rw;
426
427 if (sc->sc_flags & VNF_INITED)
428 return (EBUSY);
429
430 /* Geometry eventually has to fit into label fields */
431 if (vio->vnd_secsize > UINT_MAX ||
432 vio->vnd_secsize == 0 ||
433 vio->vnd_ntracks > UINT_MAX ||
434 vio->vnd_nsectors > UINT_MAX)
435 return (EINVAL);
436
437 if ((error = copyinstr(vio->vnd_file, name,
438 sizeof(name), NULL)))
439 return (error);
440
441 if (vio->vnd_keylen > 0) {
442 if (vio->vnd_keylen > sizeof(key))
443 vio->vnd_keylen = sizeof(key);
444
445 if ((error = copyin(vio->vnd_key, key,
446 vio->vnd_keylen)) != 0)
447 return (error);
448 }
449
450 /*
451 * Open for read and write first. This lets vn_open() weed out
452 * directories, sockets, etc. so we don't have to worry about
453 * them.
454 */
455 NDINIT(&nd, 0, 0, UIO_SYSSPACE, name, p);
456 nd.ni_unveil = UNVEIL_READ | UNVEIL_WRITE;
457 rw = FREAD|FWRITE;
458 error = vn_open(&nd, FREAD|FWRITE, 0);
459 if (error == EROFS) {
460 NDINIT(&nd, 0, 0, UIO_SYSSPACE, name, p);
461 nd.ni_unveil = UNVEIL_READ | UNVEIL_WRITE;
462 rw = FREAD;
463 error = vn_open(&nd, FREAD, 0);
464 }
465 if (error)
466 return (error);
467 vplocked = 1;
468
469 error = VOP_GETATTR(nd.ni_vp, &vattr, p->p_ucred, p);
470 if (error) {
471fail:
472 if (vplocked)
473 VOP_UNLOCK(nd.ni_vp);
474 vn_close(nd.ni_vp, rw, p->p_ucred, p);
475 if (cred != NULL)
476 crfree(cred);
477 return (error);
478 }
479
480 /* Cannot put a vnd on top of a vnd */
481 if (major(vattr.va_fsid) == major(dev)) {
482 error = EINVAL;
483 goto fail;
484 }
485
486 if ((error = vndsetcred(p, nd.ni_vp, vio, &cred)) != 0)
487 goto fail;
488
489 VOP_UNLOCK(nd.ni_vp);
490 vplocked = 0;
491
492 if (nd.ni_vp->v_type == VBLK) {
493 size = vndbdevsize(nd.ni_vp, p);
494 /* XXX is size 0 ok? */
495 } else
496 size = vattr.va_size / vio->vnd_secsize;
497
498 if ((error = disk_lock(&sc->sc_dk)) != 0)
499 goto fail;
500 if (sc->sc_flags & VNF_INITED) {
501 disk_unlock(&sc->sc_dk);
502 error = EBUSY;
503 goto fail;
504 }
505
506 /* Set geometry for device. */
507 sc->sc_type = vio->vnd_type;
508 sc->sc_secsize = vio->vnd_secsize;
509 sc->sc_ntracks = vio->vnd_ntracks;
510 sc->sc_nsectors = vio->vnd_nsectors;
511 sc->sc_size = size;
512
513 if (rw == FREAD)
514 sc->sc_flags |= VNF_READONLY;
515 else
516 sc->sc_flags &= ~VNF_READONLY;
517
518 memcpy(sc->sc_file, name, sizeof(sc->sc_file));
519
520 if (vio->vnd_keylen > 0) {
521 sc->sc_keyctx = malloc(sizeof(*sc->sc_keyctx), M_DEVBUF,
522 M_WAITOK);
523 blf_key(sc->sc_keyctx, key, vio->vnd_keylen);
524 explicit_bzero(key, vio->vnd_keylen);
525 } else
526 sc->sc_keyctx = NULL;
527
528 sc->sc_vp = nd.ni_vp;
529 sc->sc_cred = cred;
530 vio->vnd_size = sc->sc_size * sc->sc_secsize;
531 sc->sc_flags |= VNF_INITED;
532
533 DNPRINTF(VDB_INIT, "vndioctl: SET vp %p size %llx\n",
534 sc->sc_vp, (unsigned long long)sc->sc_size);
535
536 /* Attach the disk. */
537 sc->sc_dk.dk_name = sc->sc_dev.dv_xname;
538 disk_attach(&sc->sc_dev, &sc->sc_dk);
539
540 disk_unlock(&sc->sc_dk);
541
542 break;
543 }
544 case VNDIOCCLR:
545 if ((error = disk_lock(&sc->sc_dk)) != 0)
546 return (error);
547 if ((sc->sc_flags & VNF_INITED) == 0) {
548 disk_unlock(&sc->sc_dk);
549 return (ENXIO);
550 }
551
552 /*
553 * Don't unconfigure if any other partitions are open
554 * or if both the character and block flavors of this
555 * partition are open.
556 */
557 part = DISKPART(dev);
558 pmask = (1ULL << part);
559 if ((sc->sc_dk.dk_openmask & ~pmask) ||
560 ((sc->sc_dk.dk_bopenmask & pmask) &&
561 (sc->sc_dk.dk_copenmask & pmask))) {
562 disk_unlock(&sc->sc_dk);
563 return (EBUSY);
564 }
565
566 vndclear(sc);
567 DNPRINTF(VDB_INIT, "vndioctl: CLRed\n");
568
569 /* Free crypto key */
570 if (sc->sc_keyctx) {
571 explicit_bzero(sc->sc_keyctx, sizeof(*sc->sc_keyctx));
572 free(sc->sc_keyctx, M_DEVBUF, sizeof(*sc->sc_keyctx));
573 }
574
575 /* Detach the disk. */
576 disk_detach(&sc->sc_dk);
577 disk_unlock(&sc->sc_dk);
578 break;
579
580 case VNDIOCGET:
581 vnu = (struct vnd_user *)addr;
582
583 if (vnu->vnu_unit == -1)
584 vnu->vnu_unit = unit;
585 if (vnu->vnu_unit >= numvnd)
586 return (ENXIO);
587 if (vnu->vnu_unit < 0)
588 return (EINVAL);
589
590 sc = &vnd_softc[vnu->vnu_unit];
591
592 if (sc->sc_flags & VNF_INITED) {
593 error = VOP_GETATTR(sc->sc_vp, &vattr, p->p_ucred, p);
594 if (error)
595 return (error);
596
597 strlcpy(vnu->vnu_file, sc->sc_file,
598 sizeof(vnu->vnu_file));
599 vnu->vnu_dev = vattr.va_fsid;
600 vnu->vnu_ino = vattr.va_fileid;
601 } else {
602 vnu->vnu_dev = 0;
603 vnu->vnu_ino = 0;
604 }
605
606 break;
607
608 case DIOCRLDINFO:
609 if ((sc->sc_flags & VNF_HAVELABEL) == 0)
610 return (ENOTTY);
611 lp = malloc(sizeof(*lp), M_TEMP, M_WAITOK);
612 vndgetdisklabel(dev, sc, lp, 0);
613 *(sc->sc_dk.dk_label) = *lp;
614 free(lp, M_TEMP, sizeof(*lp));
615 return (0);
616
617 case DIOCGPDINFO:
618 if ((sc->sc_flags & VNF_HAVELABEL) == 0)
619 return (ENOTTY);
620 vndgetdisklabel(dev, sc, (struct disklabel *)addr, 1);
621 return (0);
622
623 case DIOCGDINFO:
624 if ((sc->sc_flags & VNF_HAVELABEL) == 0)
625 return (ENOTTY);
626 *(struct disklabel *)addr = *(sc->sc_dk.dk_label);
627 return (0);
628
629 case DIOCGPART:
630 if ((sc->sc_flags & VNF_HAVELABEL) == 0)
631 return (ENOTTY);
632 ((struct partinfo *)addr)->disklab = sc->sc_dk.dk_label;
633 ((struct partinfo *)addr)->part =
634 &sc->sc_dk.dk_label->d_partitions[DISKPART(dev)];
635 return (0);
636
637 case DIOCWDINFO:
638 case DIOCSDINFO:
639 if ((sc->sc_flags & VNF_HAVELABEL) == 0)
640 return (ENOTTY);
641 if ((flag & FWRITE) == 0)
642 return (EBADF);
643
644 if ((error = disk_lock(&sc->sc_dk)) != 0)
645 return (error);
646
647 error = setdisklabel(sc->sc_dk.dk_label,
648 (struct disklabel *)addr, /* sc->sc_dk.dk_openmask */ 0);
649 if (error == 0) {
650 if (cmd == DIOCWDINFO)
651 error = writedisklabel(DISKLABELDEV(dev),
652 vndstrategy, sc->sc_dk.dk_label);
653 }
654
655 disk_unlock(&sc->sc_dk);
656 return (error);
657
658 default:
659 return (ENOTTY);
660 }
661
662 return (0);
663}
664
665/*
666 * Duplicate the current processes' credentials. Since we are called only
667 * as the result of a SET ioctl and only root can do that, any future access
668 * to this "disk" is essentially as root. Note that credentials may change
669 * if some other uid can write directly to the mapped file (NFS).
670 */
671int
672vndsetcred(struct proc *p, struct vnode *vp, struct vnd_ioctl *vio,
673 struct ucred **newcredp)
674{
675 void *buf;
676 size_t size;
677 struct ucred *new;
678 int error;
679
680 new = crdup(p->p_ucred);
681 buf = malloc(DEV_BSIZE, M_TEMP, M_WAITOK);
682 size = DEV_BSIZE;
683
684 /* XXX: Horrible kludge to establish credentials for NFS */
685 error = vn_rdwr(UIO_READ, vp, buf, size, 0, UIO_SYSSPACE, 0,
686 new, NULL, curproc);
687
688 free(buf, M_TEMP, DEV_BSIZE);
689 if (error == 0)
690 *newcredp = new;
691 else
692 crfree(new);
693 return (error);
694}
695
696void
697vndclear(struct vnd_softc *sc)
698{
699 struct vnode *vp = sc->sc_vp;
700 struct proc *p = curproc; /* XXX */
701
702 DNPRINTF(VDB_FOLLOW, "vndclear(%p): vp %p\n", sc, vp);
703
704 if (vp == NULL)
705 panic("vndioctl: null vp");
706 (void) vn_close(vp, VNDRW(sc), sc->sc_cred, p);
707 crfree(sc->sc_cred);
708 sc->sc_flags = 0;
709 sc->sc_vp = NULL;
710 sc->sc_cred = NULL;
711 sc->sc_size = 0;
712 memset(sc->sc_file, 0, sizeof(sc->sc_file));
713}
714
715daddr_t
716vndsize(dev_t dev)
717{
718 /* We don't support swapping to vnd anymore. */
719 return (-1);
720}
721
722int
723vnddump(dev_t dev, daddr_t blkno, caddr_t va, size_t size)
724{
725 /* Not implemented. */
726 return (ENXIO);
727}