4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
22 * Copyright 2009 Sun Microsystems, Inc. All rights reserved.
23 * Use is subject to license terms.
31 #define __NSS_PRIVATE_INTERFACE
32 #include "nsswitch_priv.h"
33 #undef __NSS_PRIVATE_INTERFACE
35 #define islabel(c) (isalnum(c) || (c) == '_')
38 * The _nsw_getoneconfig_v1() in this file parses the switch policy
39 * configuration for a switch database, e.g.,
41 * hosts: nis [NOTFOUND=return] files
43 * printers: user files nis
49 static char *skip(char **, char);
50 static char *labelskip(char *);
51 static char *spaceskip(char *);
52 static void freeconf_v1(struct __nsw_switchconfig_v1
*);
53 static int alldigits(char *);
57 * With the "lookup control" feature, the default criteria for NIS
58 * and any new services (e.g. ldap) will be:
59 * [SUCCESS=return NOTFOUND=continue UNAVAIL=continue TRYAGAIN=forever]
61 * For backward compat, NIS via NIS server in DNS forwarding mode will be:
62 * [SUCCESS=return NOTFOUND=continue UNAVAIL=continue TRYAGAIN=continue]
64 * And also for backward compat, the default criteria for DNS will be:
65 * [SUCCESS=return NOTFOUND=continue UNAVAIL=continue TRYAGAIN=continue]
71 * The BIND resolver normally will retry several times on server non-response.
72 * But now with the "lookup control" feature, we don't want the resolver doing
73 * many retries, rather we want it to return control (reasonably) quickly back
74 * to the switch engine. However, when TRYAGAIN=N or TRYAGAIN=forever is
75 * not explicitly set by the admin in the conf file, we want the old "resolver
76 * retry a few times" rather than no retries at all.
78 static int dns_tryagain_retry
= 3;
81 * For backward compat (pre "lookup control"), the dns default behavior is
85 set_dns_default_lkp(struct __nsw_lookup_v1
*lkp
)
87 if (strcasecmp(lkp
->service_name
, "dns") == 0) {
88 lkp
->actions
[__NSW_TRYAGAIN
] =
89 __NSW_TRYAGAIN_NTIMES
;
90 lkp
->max_retries
= dns_tryagain_retry
;
95 freeconf_v1(struct __nsw_switchconfig_v1
*cfp
)
100 struct __nsw_lookup_v1
*nex
, *cur
;
101 for (cur
= cfp
->lookups
; cur
; cur
= nex
) {
102 free(cur
->service_name
);
111 /* give the next non-alpha character */
121 /* give the next non-space character */
126 while (*p
== ' ' || *p
== '\t')
132 * terminate the *cur pointed string by null only if it is
133 * followed by "key" surrounded by zero or more spaces and
134 * return value is the same as the original *cur pointer and
135 * *cur pointer is advanced to the first non {space, key} char
136 * followed by the key. Otherwise, return NULL and keep
140 skip(char **cur
, char key
)
146 tmp
= labelskip(*cur
);
150 *p
++ = '\0'; /* overwrite the key */
153 while (*p
== ' ' || *p
== '\t') {
154 tmpfound
= (*++p
== key
);
157 /* null terminate the return token */
159 p
++; /* skip the key */
164 return (NULL
); /* *cur unchanged */
169 /* Return 1 if the string contains all digits, else return 0. */
179 struct __nsw_switchconfig_v1
*
180 _nsw_getoneconfig_v1(const char *name
, char *linep
, enum __nsw_parse_err
*errp
)
181 /* linep Nota Bene: not const char * */
182 /* errp Meanings are abused a bit */
184 struct __nsw_switchconfig_v1
*cfp
;
185 struct __nsw_lookup_v1
*lkp
, **lkq
;
190 *errp
= __NSW_CONF_PARSE_SUCCESS
;
192 if ((cfp
= calloc(1, sizeof (struct __nsw_switchconfig_v1
)))
194 *errp
= __NSW_CONF_PARSE_SYSERR
;
197 cfp
->dbase
= strdup(name
);
200 /* linep points to a naming service name */
204 /* white space following the last service */
205 if (*linep
== '\0' || *linep
== '\n') {
208 if ((lkp
= calloc(1, sizeof (struct __nsw_lookup_v1
)))
210 *errp
= __NSW_CONF_PARSE_SYSERR
;
218 for (i
= 0; i
< __NSW_STD_ERRS_V1
; i
++)
219 if (i
== __NSW_SUCCESS
)
220 lkp
->actions
[i
] = __NSW_RETURN
;
221 else if (i
== __NSW_TRYAGAIN
)
222 lkp
->actions
[i
] = __NSW_TRYAGAIN_FOREVER
;
224 lkp
->actions
[i
] = __NSW_CONTINUE
;
226 /* get criteria for the naming service */
227 if (tokenp
= skip(&linep
, '[')) { /* got criteria */
229 /* premature end, illegal char following [ */
230 if (!islabel(*linep
))
232 lkp
->service_name
= strdup(tokenp
);
235 set_dns_default_lkp(lkp
);
239 /* linep points to a switch_err */
241 int ntimes
= 0; /* try again max N times */
242 int dns_continue
= 0;
244 if ((tokenp
= skip(&linep
, '=')) == NULL
) {
248 /* premature end, ill char following = */
249 if (!islabel(*linep
))
252 /* linep points to the string following '=' */
253 p
= labelskip(linep
);
256 else if (*p
!= ' ' && *p
!= '\t')
258 *p
++ = '\0'; /* null terminate linep */
264 } else if (*p
== '\0' || *p
== '\n') {
266 } else if (!islabel(*p
))
267 /* p better be the next switch_err */
270 if (strcasecmp(linep
, __NSW_STR_RETURN
) == 0)
272 else if (strcasecmp(linep
,
273 __NSW_STR_CONTINUE
) == 0) {
274 if (strcasecmp(lkp
->service_name
,
280 * Add one more condition
281 * so it retries only if it's
282 * "dns [TRYAGAIN=continue]"
285 act
= __NSW_TRYAGAIN_NTIMES
;
287 act
= __NSW_CONTINUE
;
288 } else if (strcasecmp(linep
,
289 __NSW_STR_FOREVER
) == 0)
290 act
= __NSW_TRYAGAIN_FOREVER
;
291 else if (alldigits(linep
)) {
292 act
= __NSW_TRYAGAIN_NTIMES
;
293 ntimes
= atoi(linep
);
294 if (ntimes
< 0 || ntimes
> INT_MAX
)
300 if (__NSW_SUCCESS_ACTION(act
) &&
302 __NSW_STR_SUCCESS
) == 0) {
303 lkp
->actions
[__NSW_SUCCESS
] = act
;
304 } else if (__NSW_NOTFOUND_ACTION(act
) &&
306 __NSW_STR_NOTFOUND
) == 0) {
307 lkp
->actions
[__NSW_NOTFOUND
] = act
;
308 } else if (__NSW_UNAVAIL_ACTION(act
) &&
310 __NSW_STR_UNAVAIL
) == 0) {
311 lkp
->actions
[__NSW_UNAVAIL
] = act
;
312 } else if (__NSW_TRYAGAIN_ACTION(act
) &&
314 __NSW_STR_TRYAGAIN
) == 0) {
315 lkp
->actions
[__NSW_TRYAGAIN
] = act
;
316 if (strcasecmp(lkp
->service_name
,
319 __NSW_NISSERVDNS_TRYAGAIN
]
321 if (act
== __NSW_TRYAGAIN_NTIMES
)
324 dns_tryagain_retry
: ntimes
;
328 * convert string tokenp to integer
329 * and put in long_errs
333 linep
= spaceskip(p
);
334 if (*linep
== '\0' || *linep
== '\n')
336 break; /* process next naming service */
339 } /* end of while loop for a name service's criteria */
342 * no criteria for this naming service.
343 * linep points to name service, but not null
346 p
= labelskip(linep
);
347 if (*p
== '\0' || *p
== '\n') {
349 lkp
->service_name
= strdup(linep
);
350 set_dns_default_lkp(lkp
);
354 if (*p
!= ' ' && *p
!= '\t')
357 lkp
->service_name
= strdup(linep
);
358 set_dns_default_lkp(lkp
);
360 linep
= spaceskip(p
);
362 } /* end of while(1) loop for a name service */
366 *errp
= __NSW_CONF_PARSE_NOPOLICY
;
372 struct __nsw_switchconfig_v1
*conf
)