summaryrefslogtreecommitdiff
path: root/usr/src
diff options
context:
space:
mode:
Diffstat (limited to 'usr/src')
-rw-r--r--usr/src/cmd/mdb/common/modules/genunix/Makefile.files2
-rw-r--r--usr/src/cmd/mdb/common/modules/genunix/cred.c264
-rw-r--r--usr/src/cmd/mdb/common/modules/genunix/cred.h34
-rw-r--r--usr/src/cmd/mdb/common/modules/genunix/genunix.c8
-rw-r--r--usr/src/uts/common/os/cred.c7
-rw-r--r--usr/src/uts/common/sys/cred_impl.h10
6 files changed, 317 insertions, 8 deletions
diff --git a/usr/src/cmd/mdb/common/modules/genunix/Makefile.files b/usr/src/cmd/mdb/common/modules/genunix/Makefile.files
index cbf2f35b6a..37f7a984da 100644
--- a/usr/src/cmd/mdb/common/modules/genunix/Makefile.files
+++ b/usr/src/cmd/mdb/common/modules/genunix/Makefile.files
@@ -19,6 +19,7 @@
# CDDL HEADER END
#
#
+# Copyright 2011 Nexenta Systems, Inc. All rights reserved.
# Copyright (c) 1999, 2010, Oracle and/or its affiliates. All rights reserved.
#
@@ -34,6 +35,7 @@ GENUNIX_SRCS = \
combined.c \
contract.c \
cpupart.c \
+ cred.c \
ctxop.c \
cyclic.c \
damap.c \
diff --git a/usr/src/cmd/mdb/common/modules/genunix/cred.c b/usr/src/cmd/mdb/common/modules/genunix/cred.c
new file mode 100644
index 0000000000..63c9462638
--- /dev/null
+++ b/usr/src/cmd/mdb/common/modules/genunix/cred.c
@@ -0,0 +1,264 @@
+/*
+ * This file and its contents are supplied under the terms of the
+ * Common Development and Distribution License ("CDDL"), version 1.0.
+ * You may only use this file in accordance with the terms of version
+ * 1.0 of the CDDL.
+ *
+ * A full copy of the text of the CDDL should have accompanied this
+ * source. A copy of the CDDL is also available via the Internet at
+ * http://www.illumos.org/license/CDDL.
+ */
+
+/*
+ * Copyright 2011 Nexenta Systems, Inc. All rights reserved.
+ */
+
+#include <mdb/mdb_modapi.h>
+#include <sys/types.h>
+#include <sys/cred_impl.h>
+#include <sys/sid.h>
+
+#include "cred.h"
+
+#define OPT_VERBOSE 1
+
+static void print_ksid(const ksid_t *);
+
+/*
+ * dcmd ::cred - display a credential (cred_t)
+ */
+int
+cmd_cred(uintptr_t addr, uint_t flags, int argc, const mdb_arg_t *argv)
+{
+ credgrp_t cr_grps;
+ cred_t *cr;
+ mdb_arg_t cmdarg;
+ uint_t opts = FALSE;
+
+ if (mdb_getopts(argc, argv,
+ 'v', MDB_OPT_SETBITS, OPT_VERBOSE, &opts, NULL) != argc)
+ return (DCMD_USAGE);
+
+ if (!(flags & DCMD_ADDRSPEC)) {
+ return (DCMD_USAGE);
+ }
+
+ cr = mdb_alloc(sizeof (*cr), UM_SLEEP | UM_GC);
+ if (mdb_vread(cr, sizeof (*cr), addr) == -1) {
+ mdb_warn("error reading cred_t at %p", addr);
+ return (DCMD_ERR);
+ }
+
+ if (cr->cr_grps == NULL) {
+ bzero(&cr_grps, sizeof (cr_grps));
+ } else {
+ if (mdb_vread(&cr_grps, sizeof (cr_grps),
+ (uintptr_t)cr->cr_grps) == -1) {
+ mdb_warn("error reading credgrp_t at %p",
+ cr->cr_grps);
+ return (DCMD_ERR);
+ }
+ }
+
+ if (opts & OPT_VERBOSE) {
+ cmdarg.a_type = MDB_TYPE_STRING;
+ cmdarg.a_un.a_str = "cred_t";
+ (void) mdb_call_dcmd("print", addr, flags, 1, &cmdarg);
+ cmdarg.a_un.a_str = "-v";
+
+ mdb_printf("%<u>cr_grps:%</u>\n");
+ mdb_inc_indent(4);
+ if (cr->cr_grps == NULL) {
+ mdb_printf("(null)\n");
+ } else {
+ (void) mdb_call_dcmd("credgrp",
+ (uintptr_t)cr->cr_grps, flags, 1, &cmdarg);
+ }
+ mdb_dec_indent(4);
+
+ mdb_printf("%<u>cr_ksid:%</u>\n");
+ mdb_inc_indent(4);
+ if (cr->cr_ksid == NULL) {
+ mdb_printf("(null)\n");
+ } else {
+ (void) mdb_call_dcmd("credsid",
+ (uintptr_t)cr->cr_ksid, flags, 1, &cmdarg);
+ }
+ mdb_dec_indent(4);
+
+ return (DCMD_OK);
+ }
+
+ if (DCMD_HDRSPEC(flags))
+ mdb_printf("%<u>%?s %8s %8s %8s %8s% %8s%</u>\n",
+ "ADDR", "UID", "GID", "RUID", "RGID", "#GRP(+SIDS)");
+
+ mdb_printf("%0?p %8u %8u %8u %8u %4u%s\n", addr,
+ cr->cr_uid, cr->cr_gid,
+ cr->cr_ruid, cr->cr_rgid,
+ cr_grps.crg_ngroups,
+ (cr->cr_ksid == NULL) ? "" : "+");
+
+ return (DCMD_OK);
+}
+
+/*
+ * dcmd ::credgrp - display cred_t groups
+ */
+int
+cmd_credgrp(uintptr_t addr, uint_t flags, int argc, const mdb_arg_t *argv)
+{
+ credgrp_t grps;
+ gid_t gid;
+ uint_t i, opts = FALSE;
+ int rv = DCMD_OK;
+
+ if (mdb_getopts(argc, argv,
+ 'v', MDB_OPT_SETBITS, OPT_VERBOSE, &opts, NULL) != argc)
+ return (DCMD_USAGE);
+
+ if (!(flags & DCMD_ADDRSPEC)) {
+ return (DCMD_USAGE);
+ }
+
+ if (mdb_vread(&grps, sizeof (grps), addr) == -1) {
+ mdb_warn("error reading credgrp_t at %p", addr);
+ return (DCMD_ERR);
+ }
+
+ if (opts & OPT_VERBOSE) {
+ mdb_printf("crg_ref = 0x%x\n", grps.crg_ref);
+ mdb_printf("crg_ngroups = 0x%x\n", grps.crg_ngroups);
+ }
+ mdb_printf("crg_groups = [\n");
+
+ addr += OFFSETOF(credgrp_t, crg_groups);
+ mdb_inc_indent(4);
+ for (i = 0; i < grps.crg_ngroups; i++, addr += sizeof (gid_t)) {
+ if (mdb_vread(&gid, sizeof (gid), addr) == -1) {
+ mdb_warn("error reading gid_t at %p", addr);
+ rv = DCMD_ERR;
+ break;
+ }
+ mdb_printf("\t%u,", gid);
+ }
+ mdb_dec_indent(4);
+ mdb_printf("\n]\n");
+
+ return (rv);
+}
+
+/*
+ * dcmd ::credsid - display a credsid_t
+ */
+int
+cmd_credsid(uintptr_t addr, uint_t flags, int argc, const mdb_arg_t *argv)
+{
+ credsid_t kr;
+ uint_t opts = FALSE;
+ int rv = DCMD_OK;
+
+ if (mdb_getopts(argc, argv,
+ 'v', MDB_OPT_SETBITS, OPT_VERBOSE, &opts, NULL) != argc)
+ return (DCMD_USAGE);
+
+ if (!(flags & DCMD_ADDRSPEC)) {
+ return (DCMD_USAGE);
+ }
+
+ if (mdb_vread(&kr, sizeof (kr), addr) == -1) {
+ mdb_warn("error reading credsid_t at %p", addr);
+ return (DCMD_ERR);
+ }
+
+ if (opts & OPT_VERBOSE)
+ mdb_printf("kr_ref = 0x%x\n", kr.kr_ref);
+
+ mdb_printf("kr_sidx[USER] = ");
+ print_ksid(&kr.kr_sidx[KSID_USER]);
+
+ mdb_printf("kr_sidx[GROUP] = ");
+ print_ksid(&kr.kr_sidx[KSID_GROUP]);
+
+ mdb_printf("kr_sidx[OWNER] = ");
+ print_ksid(&kr.kr_sidx[KSID_OWNER]);
+
+ mdb_printf("kr_sidlist = %p\n", kr.kr_sidlist);
+ if (kr.kr_sidlist != NULL && (opts & OPT_VERBOSE) != 0) {
+ mdb_printf("*kr_sidlist = {\n");
+ mdb_inc_indent(4);
+ rv = mdb_call_dcmd("ksidlist",
+ (uintptr_t)kr.kr_sidlist, flags, argc, argv);
+ mdb_dec_indent(4);
+ mdb_printf("}\n");
+ }
+
+ return (rv);
+}
+
+/*
+ * dcmd ::ksidlist - display a ksidlist_t
+ */
+int
+cmd_ksidlist(uintptr_t addr, uint_t flags, int argc, const mdb_arg_t *argv)
+{
+ ksidlist_t ksl;
+ ksid_t ks;
+ uint_t i, opts = FALSE;
+ int rv = DCMD_OK;
+
+ if (mdb_getopts(argc, argv,
+ 'v', MDB_OPT_SETBITS, OPT_VERBOSE, &opts, NULL) != argc)
+ return (DCMD_USAGE);
+
+ if (!(flags & DCMD_ADDRSPEC)) {
+ return (DCMD_USAGE);
+ }
+
+ if (mdb_vread(&ksl, sizeof (ksl), addr) == -1) {
+ mdb_warn("error reading ksidlist_t at %p", addr);
+ return (DCMD_ERR);
+ }
+
+ if (opts & OPT_VERBOSE) {
+ mdb_printf("ksl_ref = 0x%x\n", ksl.ksl_ref);
+ mdb_printf("ksl_nsid = 0x%x\n", ksl.ksl_nsid);
+ mdb_printf("ksl_neid = 0x%x\n", ksl.ksl_neid);
+ }
+
+ mdb_printf("ksl_sids = [\n");
+ addr += OFFSETOF(ksidlist_t, ksl_sids);
+ mdb_inc_indent(4);
+ for (i = 0; i < ksl.ksl_nsid; i++, addr += sizeof (ksid_t)) {
+ if (mdb_vread(&ks, sizeof (ks), addr) == -1) {
+ mdb_warn("error reading ksid_t at %p", addr);
+ rv = DCMD_ERR;
+ break;
+ }
+ print_ksid(&ks);
+ }
+ mdb_dec_indent(4);
+ mdb_printf("]\n");
+
+ return (rv);
+}
+
+static void
+print_ksid(const ksid_t *ks)
+{
+ char str[80];
+ ksiddomain_t kd;
+ uintptr_t da, sa;
+
+ /* in case of errors */
+ strcpy(str, "(domain?)");
+
+ da = (uintptr_t)ks->ks_domain;
+ if (da == 0 || mdb_vread(&kd, sizeof (kd), da) < 0)
+ bzero(&kd, sizeof (kd));
+ sa = (uintptr_t)kd.kd_name;
+ if (sa != 0)
+ (void) mdb_readstr(str, sizeof (str), sa);
+
+ mdb_printf("%s-%u,\n", str, ks->ks_rid);
+}
diff --git a/usr/src/cmd/mdb/common/modules/genunix/cred.h b/usr/src/cmd/mdb/common/modules/genunix/cred.h
new file mode 100644
index 0000000000..eaef4861c5
--- /dev/null
+++ b/usr/src/cmd/mdb/common/modules/genunix/cred.h
@@ -0,0 +1,34 @@
+/*
+ * This file and its contents are supplied under the terms of the
+ * Common Development and Distribution License ("CDDL"), version 1.0.
+ * You may only use this file in accordance with the terms of version
+ * 1.0 of the CDDL.
+ *
+ * A full copy of the text of the CDDL should have accompanied this
+ * source. A copy of the CDDL is also available via the Internet at
+ * http://www.illumos.org/license/CDDL.
+ */
+
+/*
+ * Copyright 2011 Nexenta Systems, Inc. All rights reserved.
+ */
+
+#ifndef _MDB_CRED_H
+#define _MDB_CRED_H
+
+#include <mdb/mdb_modapi.h>
+
+#ifdef __cplusplus
+extern "C" {
+#endif
+
+int cmd_cred(uintptr_t, uint_t, int, const mdb_arg_t *);
+int cmd_credgrp(uintptr_t, uint_t, int, const mdb_arg_t *);
+int cmd_credsid(uintptr_t, uint_t, int, const mdb_arg_t *);
+int cmd_ksidlist(uintptr_t, uint_t, int, const mdb_arg_t *);
+
+#ifdef __cplusplus
+}
+#endif
+
+#endif /* _MDB_CRED_H */
diff --git a/usr/src/cmd/mdb/common/modules/genunix/genunix.c b/usr/src/cmd/mdb/common/modules/genunix/genunix.c
index 3004495d6b..d54d11e8ce 100644
--- a/usr/src/cmd/mdb/common/modules/genunix/genunix.c
+++ b/usr/src/cmd/mdb/common/modules/genunix/genunix.c
@@ -19,6 +19,7 @@
* CDDL HEADER END
*/
/*
+ * Copyright 2011 Nexenta Systems, Inc. All rights reserved.
* Copyright (c) 1999, 2010, Oracle and/or its affiliates. All rights reserved.
*/
@@ -65,6 +66,7 @@
#include "combined.h"
#include "contract.h"
#include "cpupart_mdb.h"
+#include "cred.h"
#include "ctxop.h"
#include "cyclic.h"
#include "damap.h"
@@ -3893,6 +3895,12 @@ static const mdb_dcmd_t dcmds[] = {
/* from cpupart.c */
{ "cpupart", "?[-v]", "print cpu partition info", cpupart },
+ /* from cred.c */
+ { "cred", ":[-v]", "display a credential", cmd_cred },
+ { "credgrp", ":[-v]", "display cred_t groups", cmd_credgrp },
+ { "credsid", ":[-v]", "display a credsid_t", cmd_credsid },
+ { "ksidlist", ":[-v]", "display a ksidlist_t", cmd_ksidlist },
+
/* from cyclic.c */
{ "cyccover", NULL, "dump cyclic coverage information", cyccover },
{ "cycid", "?", "dump a cyclic id", cycid },
diff --git a/usr/src/uts/common/os/cred.c b/usr/src/uts/common/os/cred.c
index 93a274f2d1..1ec63249ab 100644
--- a/usr/src/uts/common/os/cred.c
+++ b/usr/src/uts/common/os/cred.c
@@ -75,13 +75,6 @@ typedef struct ephemeral_zsd {
cred_t *eph_nobody;
} ephemeral_zsd_t;
-/* Supplemental groups list. */
-typedef struct credgrp {
- uint_t crg_ref;
- uint_t crg_ngroups;
- gid_t crg_groups[1];
-} credgrp_t;
-
static void crgrphold(credgrp_t *);
#define CREDGRPSZ(ngrp) (sizeof (credgrp_t) + ((ngrp - 1) * sizeof (gid_t)))
diff --git a/usr/src/uts/common/sys/cred_impl.h b/usr/src/uts/common/sys/cred_impl.h
index fc2fa34e43..e102f60e7a 100644
--- a/usr/src/uts/common/sys/cred_impl.h
+++ b/usr/src/uts/common/sys/cred_impl.h
@@ -19,6 +19,7 @@
* CDDL HEADER END
*/
/*
+ * Copyright 2011 Nexenta Systems, Inc. All rights reserved.
* Copyright 2009 Sun Microsystems, Inc. All rights reserved.
* Use is subject to license terms.
*/
@@ -64,6 +65,13 @@ struct zone; /* forward reference */
struct ts_label_s; /* forward reference */
struct credklpd; /* forward reference */
+/* Supplemental groups list. */
+typedef struct credgrp {
+ uint_t crg_ref;
+ uint_t crg_ngroups;
+ gid_t crg_groups[1];
+} credgrp_t;
+
struct cred {
uint_t cr_ref; /* reference count */
uid_t cr_uid; /* effective user id */
@@ -78,7 +86,7 @@ struct cred {
struct ts_label_s *cr_label; /* pointer to the effective label */
struct credklpd *cr_klpd; /* pointer to the cred's klpd */
credsid_t *cr_ksid; /* pointer to SIDs */
- struct credgrp *cr_grps; /* supplemental groups */
+ credgrp_t *cr_grps; /* supplemental groups */
/* audit info is defined dynamically */
/* and valid only when audit enabled */
/* auditinfo_addr_t cr_auinfo; audit info */
generated by cgit v1.2.3 (git 2.39.1) at 2025-06-02 02:33:44 +0000