ublksrv/nbd/nbd-client.c

*94c4a1e1SFrank Piva// SPDX-License-Identifier: GPL-2.0
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva/*
*94c4a1e1SFrank Piva * Open connection for network block device
*94c4a1e1SFrank Piva *
*94c4a1e1SFrank Piva * Copyright 1997,1998 Pavel Machek, distribute under GPL
*94c4a1e1SFrank Piva *  <[email protected]>
*94c4a1e1SFrank Piva * Copyright (c) 2002 - 2011 Wouter Verhelst <[email protected]>
*94c4a1e1SFrank Piva *
*94c4a1e1SFrank Piva * Version 1.0 - 64bit issues should be fixed, now
*94c4a1e1SFrank Piva * Version 1.1 - added bs (blocksize) option (Alexey Guzeev, [email protected])
*94c4a1e1SFrank Piva * Version 1.2 - I added new option '-d' to send the disconnect request
*94c4a1e1SFrank Piva * Version 2.0 - Version synchronised with server
*94c4a1e1SFrank Piva * Version 2.1 - Check for disconnection before INIT_PASSWD is received
*94c4a1e1SFrank Piva * 	to make errormsg a bit more helpful in case the server can't
*94c4a1e1SFrank Piva * 	open the exported file.
*94c4a1e1SFrank Piva * 16/03/2010 - Add IPv6 support.
*94c4a1e1SFrank Piva * 	Kitt Tientanopajai <[email protected]>
*94c4a1e1SFrank Piva *	Neutron Soutmun <[email protected]>
*94c4a1e1SFrank Piva *	Suriya Soutmun <[email protected]>
*94c4a1e1SFrank Piva */
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva#include <config.h>
*94c4a1e1SFrank Piva#include <sys/ioctl.h>
*94c4a1e1SFrank Piva#include <sys/socket.h>
*94c4a1e1SFrank Piva#include <sys/un.h>
*94c4a1e1SFrank Piva#include <sys/types.h>
*94c4a1e1SFrank Piva#include <unistd.h>
*94c4a1e1SFrank Piva#include <netinet/tcp.h>
*94c4a1e1SFrank Piva#include <netinet/in.h>
*94c4a1e1SFrank Piva#include <netdb.h>
*94c4a1e1SFrank Piva#include <inttypes.h>
*94c4a1e1SFrank Piva#include <stdio.h>
*94c4a1e1SFrank Piva#include <fcntl.h>
*94c4a1e1SFrank Piva#include <syslog.h>
*94c4a1e1SFrank Piva#include <stdlib.h>
*94c4a1e1SFrank Piva#include <sys/mount.h>
*94c4a1e1SFrank Piva#include <sys/mman.h>
*94c4a1e1SFrank Piva#include <signal.h>
*94c4a1e1SFrank Piva#include <errno.h>
*94c4a1e1SFrank Piva#include <getopt.h>
*94c4a1e1SFrank Piva#include <stdarg.h>
*94c4a1e1SFrank Piva#include <stdbool.h>
*94c4a1e1SFrank Piva#include <time.h>
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva#include <linux/ioctl.h>
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva#define MY_NAME "ublk_nbd"
*94c4a1e1SFrank Piva#include "cliserv.h"
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva#if HAVE_GNUTLS && !defined(NOTLS)
*94c4a1e1SFrank Piva#include "crypto-gnutls.h"
*94c4a1e1SFrank Piva#endif
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva#define NBDC_DO_LIST 1
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivaint opennet(const char *name, const char* portstr, int sdp) {
*94c4a1e1SFrank Piva	int sock;
*94c4a1e1SFrank Piva	struct addrinfo hints;
*94c4a1e1SFrank Piva	struct addrinfo *ai = NULL;
*94c4a1e1SFrank Piva	struct addrinfo *rp = NULL;
*94c4a1e1SFrank Piva	int e;
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	memset(&hints,'\0',sizeof(hints));
*94c4a1e1SFrank Piva	hints.ai_family = AF_UNSPEC;
*94c4a1e1SFrank Piva	hints.ai_socktype = SOCK_STREAM;
*94c4a1e1SFrank Piva	hints.ai_flags = AI_ADDRCONFIG | AI_NUMERICSERV;
*94c4a1e1SFrank Piva	hints.ai_protocol = IPPROTO_TCP;
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	e = getaddrinfo(name, portstr, &hints, &ai);
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if(e != 0) {
*94c4a1e1SFrank Piva		fprintf(stderr, "getaddrinfo failed: %s\n", gai_strerror(e));
*94c4a1e1SFrank Piva		freeaddrinfo(ai);
*94c4a1e1SFrank Piva		return -1;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if(sdp) {
*94c4a1e1SFrank Piva#ifdef WITH_SDP
*94c4a1e1SFrank Piva		if (ai->ai_family == AF_INET)
*94c4a1e1SFrank Piva			ai->ai_family = AF_INET_SDP;
*94c4a1e1SFrank Piva		else (ai->ai_family == AF_INET6)
*94c4a1e1SFrank Piva			ai->ai_family = AF_INET6_SDP;
*94c4a1e1SFrank Piva#else
*94c4a1e1SFrank Piva		err("Can't do SDP: I was not compiled with SDP support!");
*94c4a1e1SFrank Piva#endif
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	for(rp = ai; rp != NULL; rp = rp->ai_next) {
*94c4a1e1SFrank Piva		sock = socket(rp->ai_family, rp->ai_socktype, rp->ai_protocol);
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		if(sock == -1)
*94c4a1e1SFrank Piva			continue;	/* error */
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		if(connect(sock, rp->ai_addr, rp->ai_addrlen) != -1)
*94c4a1e1SFrank Piva			break;		/* success */
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		close(sock);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if (rp == NULL) {
*94c4a1e1SFrank Piva		err_nonfatal("Socket failed: %m");
*94c4a1e1SFrank Piva		sock = -1;
*94c4a1e1SFrank Piva		goto err;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	setmysockopt(sock);
*94c4a1e1SFrank Pivaerr:
*94c4a1e1SFrank Piva	freeaddrinfo(ai);
*94c4a1e1SFrank Piva	return sock;
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivaint openunix(const char *path) {
*94c4a1e1SFrank Piva	int sock;
*94c4a1e1SFrank Piva	struct sockaddr_un un_addr;
*94c4a1e1SFrank Piva	memset(&un_addr, 0, sizeof(un_addr));
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	un_addr.sun_family = AF_UNIX;
*94c4a1e1SFrank Piva	if (strnlen(path, sizeof(un_addr.sun_path)) == sizeof(un_addr.sun_path)) {
*94c4a1e1SFrank Piva		err_nonfatal("UNIX socket path too long");
*94c4a1e1SFrank Piva		return -1;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	strncpy(un_addr.sun_path, path, sizeof(un_addr.sun_path) - 1);
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if ((sock = socket(AF_UNIX, SOCK_STREAM, 0)) == -1) {
*94c4a1e1SFrank Piva		err_nonfatal("SOCKET failed");
*94c4a1e1SFrank Piva		return -1;
*94c4a1e1SFrank Piva	};
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if (connect(sock, &un_addr, sizeof(un_addr)) == -1) {
*94c4a1e1SFrank Piva		err_nonfatal("CONNECT failed");
*94c4a1e1SFrank Piva		close(sock);
*94c4a1e1SFrank Piva		return -1;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	return sock;
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastatic void send_request(int sock, uint32_t opt, ssize_t datasize, void* data) {
*94c4a1e1SFrank Piva	struct {
*94c4a1e1SFrank Piva		uint64_t magic;
*94c4a1e1SFrank Piva		uint32_t opt;
*94c4a1e1SFrank Piva		uint32_t datasize;
*94c4a1e1SFrank Piva	} __attribute__((packed)) header = {
*94c4a1e1SFrank Piva		ntohll(opts_magic),
*94c4a1e1SFrank Piva		ntohl(opt),
*94c4a1e1SFrank Piva		ntohl(datasize),
*94c4a1e1SFrank Piva	};
*94c4a1e1SFrank Piva	if(datasize < 0) {
*94c4a1e1SFrank Piva		datasize = strlen((char*)data);
*94c4a1e1SFrank Piva		header.datasize = htonl(datasize);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	writeit(sock, &header, sizeof(header));
*94c4a1e1SFrank Piva	if(data != NULL) {
*94c4a1e1SFrank Piva		writeit(sock, data, datasize);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastatic void send_info_request(int sock, uint32_t opt, int n_reqs,
*94c4a1e1SFrank Piva		uint16_t* reqs, char* name) {
*94c4a1e1SFrank Piva	uint16_t rlen = htons(n_reqs);
*94c4a1e1SFrank Piva	uint32_t nlen = htonl(strlen(name));
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	send_request(sock, opt, sizeof(uint32_t) + strlen(name) + sizeof(uint16_t) + n_reqs * sizeof(uint16_t), NULL);
*94c4a1e1SFrank Piva	writeit(sock, &nlen, sizeof(nlen));
*94c4a1e1SFrank Piva	writeit(sock, name, strlen(name));
*94c4a1e1SFrank Piva	writeit(sock, &rlen, sizeof(rlen));
*94c4a1e1SFrank Piva	if(n_reqs > 0) {
*94c4a1e1SFrank Piva		writeit(sock, reqs, n_reqs * sizeof(uint16_t));
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastruct reply {
*94c4a1e1SFrank Piva	uint64_t magic;
*94c4a1e1SFrank Piva	uint32_t opt;
*94c4a1e1SFrank Piva	uint32_t reply_type;
*94c4a1e1SFrank Piva	uint32_t datasize;
*94c4a1e1SFrank Piva	char data[];
*94c4a1e1SFrank Piva} __attribute__((packed));
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastatic struct reply* read_reply(int sock) {
*94c4a1e1SFrank Piva	struct reply *retval = (struct reply *)malloc(sizeof(struct reply));
*94c4a1e1SFrank Piva	readit(sock, retval, sizeof(*retval));
*94c4a1e1SFrank Piva	retval->magic = ntohll(retval->magic);
*94c4a1e1SFrank Piva	retval->opt = ntohl(retval->opt);
*94c4a1e1SFrank Piva	retval->reply_type = ntohl(retval->reply_type);
*94c4a1e1SFrank Piva	retval->datasize = ntohl(retval->datasize);
*94c4a1e1SFrank Piva	if (retval->magic != rep_magic) {
*94c4a1e1SFrank Piva		fprintf(stderr, "E: received invalid negotiation magic %" PRIu64 " (expected %" PRIu64 ")", retval->magic, rep_magic);
*94c4a1e1SFrank Piva		exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	if (retval->datasize > 0) {
*94c4a1e1SFrank Piva		retval = (struct reply *)realloc(retval, sizeof(struct reply) + retval->datasize);
*94c4a1e1SFrank Piva		readit(sock, &(retval->data), retval->datasize);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	return retval;
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastatic void ask_list(int sock) {
*94c4a1e1SFrank Piva	uint32_t opt_server;
*94c4a1e1SFrank Piva	uint32_t len;
*94c4a1e1SFrank Piva	uint32_t lenn;
*94c4a1e1SFrank Piva	uint32_t reptype;
*94c4a1e1SFrank Piva	uint64_t magic;
*94c4a1e1SFrank Piva	int rlen;
*94c4a1e1SFrank Piva#define BUF_SIZE 1024
*94c4a1e1SFrank Piva	char buf[BUF_SIZE];
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	send_request(sock, NBD_OPT_LIST, 0, NULL);
*94c4a1e1SFrank Piva	/* newline, move away from the "Negotiation:" line */
*94c4a1e1SFrank Piva	printf("\n");
*94c4a1e1SFrank Piva	do {
*94c4a1e1SFrank Piva		memset(buf, 0, 1024);
*94c4a1e1SFrank Piva		if(read(sock, &magic, sizeof(magic)) < 0) {
*94c4a1e1SFrank Piva			err("Reading magic from server: %m");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		if(read(sock, &opt_server, sizeof(opt_server)) < 0) {
*94c4a1e1SFrank Piva			err("Reading option: %m");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		if(read(sock, &reptype, sizeof(reptype)) <0) {
*94c4a1e1SFrank Piva			err("Reading reply from server: %m");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		if(read(sock, &len, sizeof(len)) < 0) {
*94c4a1e1SFrank Piva			err("Reading length from server: %m");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		magic=ntohll(magic);
*94c4a1e1SFrank Piva		len=ntohl(len);
*94c4a1e1SFrank Piva		reptype=ntohl(reptype);
*94c4a1e1SFrank Piva		if(magic != rep_magic) {
*94c4a1e1SFrank Piva			err("Not enough magic from server");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		if(reptype & NBD_REP_FLAG_ERROR) {
*94c4a1e1SFrank Piva			switch(reptype) {
*94c4a1e1SFrank Piva				case NBD_REP_ERR_POLICY:
*94c4a1e1SFrank Piva					fprintf(stderr, "\nE: listing not allowed by server.\n");
*94c4a1e1SFrank Piva					break;
*94c4a1e1SFrank Piva				default:
*94c4a1e1SFrank Piva					fprintf(stderr, "\nE: unexpected error from server.\n");
*94c4a1e1SFrank Piva					break;
*94c4a1e1SFrank Piva			}
*94c4a1e1SFrank Piva			if(len > 0 && len < BUF_SIZE) {
*94c4a1e1SFrank Piva				if((rlen=read(sock, buf, len)) < 0) {
*94c4a1e1SFrank Piva					fprintf(stderr, "\nE: could not read error message from server\n");
*94c4a1e1SFrank Piva				} else {
*94c4a1e1SFrank Piva					buf[rlen] = '\0';
*94c4a1e1SFrank Piva					fprintf(stderr, "Server said: %s\n", buf);
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva			}
*94c4a1e1SFrank Piva			exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva		} else {
*94c4a1e1SFrank Piva			if(reptype != NBD_REP_ACK) {
*94c4a1e1SFrank Piva				if(reptype != NBD_REP_SERVER) {
*94c4a1e1SFrank Piva					err("Server sent us a reply we don't understand!");
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva				if(read(sock, &lenn, sizeof(lenn)) < 0) {
*94c4a1e1SFrank Piva					fprintf(stderr, "\nE: could not read export name length from server\n");
*94c4a1e1SFrank Piva					exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva				lenn=ntohl(lenn);
*94c4a1e1SFrank Piva				if (lenn >= BUF_SIZE) {
*94c4a1e1SFrank Piva					fprintf(stderr, "\nE: export name on server too long\n");
*94c4a1e1SFrank Piva					exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva				if(read(sock, buf, lenn) < 0) {
*94c4a1e1SFrank Piva					fprintf(stderr, "\nE: could not read export name from server\n");
*94c4a1e1SFrank Piva					exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva				buf[lenn] = 0;
*94c4a1e1SFrank Piva				printf("%s", buf);
*94c4a1e1SFrank Piva				len -= lenn;
*94c4a1e1SFrank Piva				len -= sizeof(lenn);
*94c4a1e1SFrank Piva				if(len > 0) {
*94c4a1e1SFrank Piva					if(read(sock, buf, len) < 0) {
*94c4a1e1SFrank Piva						fprintf(stderr, "\nE: could not read export description from server\n");
*94c4a1e1SFrank Piva						exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva					}
*94c4a1e1SFrank Piva					buf[len] = 0;
*94c4a1e1SFrank Piva					printf(": %s\n", buf);
*94c4a1e1SFrank Piva				} else {
*94c4a1e1SFrank Piva					printf("\n");
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva			}
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva	} while(reptype != NBD_REP_ACK);
*94c4a1e1SFrank Piva	send_request(sock, NBD_OPT_ABORT, 0, NULL);
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastatic void parse_sizes(char *buf, uint64_t *size, uint16_t *flags) {
*94c4a1e1SFrank Piva	memcpy(size, buf, sizeof(*size));
*94c4a1e1SFrank Piva	*size = ntohll(*size);
*94c4a1e1SFrank Piva	buf += sizeof(*size);
*94c4a1e1SFrank Piva	memcpy(flags, buf, sizeof(*flags));
*94c4a1e1SFrank Piva	*flags = ntohs(*flags);
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if ((*size>>12) > (uint64_t)~0UL) {
*94c4a1e1SFrank Piva		printf("size = %luMB", (unsigned long)(*size>>20));
*94c4a1e1SFrank Piva		err("Exported device is too big for me. Get 64-bit machine :-(\n");
*94c4a1e1SFrank Piva	} else {
*94c4a1e1SFrank Piva		printf("size = %luMB", (unsigned long)(*size>>20));
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	printf("\n");
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivastatic void send_opt_exportname(int sock, u64 *rsize64, uint16_t *flags,
*94c4a1e1SFrank Piva		bool can_opt_go, char* name, uint16_t global_flags) {
*94c4a1e1SFrank Piva	send_request(sock, NBD_OPT_EXPORT_NAME, -1, name);
*94c4a1e1SFrank Piva	char b[sizeof(*flags) + sizeof(*rsize64)];
*94c4a1e1SFrank Piva	if(readit(sock, b, sizeof(b)) < 0 && can_opt_go) {
*94c4a1e1SFrank Piva		err("E: server does not support NBD_OPT_GO and dropped connection after sending NBD_OPT_EXPORT_NAME. Try -g.");
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	parse_sizes(b, rsize64, flags);
*94c4a1e1SFrank Piva	if(!(global_flags & NBD_FLAG_NO_ZEROES)) {
*94c4a1e1SFrank Piva		char buf[125];
*94c4a1e1SFrank Piva		readit(sock, buf, 124);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Pivavoid negotiate(int *sockp, u64 *rsize64, uint16_t *flags, char* name,
*94c4a1e1SFrank Piva		uint32_t needed_flags, uint32_t client_flags, uint32_t do_opts,
*94c4a1e1SFrank Piva		char *certfile, char *keyfile, char *cacertfile,
*94c4a1e1SFrank Piva		char *tlshostname, bool tls, bool can_opt_go) {
*94c4a1e1SFrank Piva	u64 magic;
*94c4a1e1SFrank Piva	uint16_t tmp;
*94c4a1e1SFrank Piva	uint16_t global_flags;
*94c4a1e1SFrank Piva	char buf[256] = "\0\0\0\0\0\0\0\0\0";
*94c4a1e1SFrank Piva	int sock = *sockp;
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	printf("Negotiation: ");
*94c4a1e1SFrank Piva	readit(sock, buf, 8);
*94c4a1e1SFrank Piva	if (strcmp(buf, INIT_PASSWD))
*94c4a1e1SFrank Piva		err("INIT_PASSWD bad");
*94c4a1e1SFrank Piva	printf(".");
*94c4a1e1SFrank Piva	readit(sock, &magic, sizeof(magic));
*94c4a1e1SFrank Piva	magic = ntohll(magic);
*94c4a1e1SFrank Piva	if (magic != opts_magic) {
*94c4a1e1SFrank Piva		if(magic == cliserv_magic) {
*94c4a1e1SFrank Piva			err("It looks like you're trying to connect to an oldstyle server. This is no longer supported since nbd 3.10.");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	printf(".");
*94c4a1e1SFrank Piva	readit(sock, &tmp, sizeof(uint16_t));
*94c4a1e1SFrank Piva	global_flags = ntohs(tmp);
*94c4a1e1SFrank Piva	if((needed_flags & global_flags) != needed_flags) {
*94c4a1e1SFrank Piva		/* There's currently really only one reason why this
*94c4a1e1SFrank Piva		 * check could possibly fail, but we may need to change
*94c4a1e1SFrank Piva		 * this error message in the future... */
*94c4a1e1SFrank Piva		fprintf(stderr, "\nE: Server does not support listing exports\n");
*94c4a1e1SFrank Piva		exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if (global_flags & NBD_FLAG_NO_ZEROES) {
*94c4a1e1SFrank Piva		client_flags |= NBD_FLAG_C_NO_ZEROES;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva	client_flags = htonl(client_flags);
*94c4a1e1SFrank Piva	if (write(sock, &client_flags, sizeof(client_flags)) < 0)
*94c4a1e1SFrank Piva		err("Failed/2.1: %m");
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva#if HAVE_GNUTLS && !defined(NOTLS)
*94c4a1e1SFrank Piva        /* TLS */
*94c4a1e1SFrank Piva        if (tls) {
*94c4a1e1SFrank Piva		int plainfd[2]; // [0] is used by the proxy, [1] is used by NBD
*94c4a1e1SFrank Piva		tlssession_t *s = NULL;
*94c4a1e1SFrank Piva		int ret;
*94c4a1e1SFrank Piva		uint32_t tmp32;
*94c4a1e1SFrank Piva		uint64_t tmp64;
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		send_request(sock, NBD_OPT_STARTTLS, 0, NULL);
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		if (read(sock, &tmp64, sizeof(tmp64)) < 0)
*94c4a1e1SFrank Piva			err("Could not read cliserv_magic: %m");
*94c4a1e1SFrank Piva		tmp64 = ntohll(tmp64);
*94c4a1e1SFrank Piva		if (tmp64 != NBD_OPT_REPLY_MAGIC) {
*94c4a1e1SFrank Piva			err("reply magic does not match");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		if (read(sock, &tmp32, sizeof(tmp32)) < 0)
*94c4a1e1SFrank Piva			err("Could not read option type: %m");
*94c4a1e1SFrank Piva		tmp32 = ntohl(tmp32);
*94c4a1e1SFrank Piva		if (tmp32 != NBD_OPT_STARTTLS)
*94c4a1e1SFrank Piva			err("Reply to wrong option");
*94c4a1e1SFrank Piva		if (read(sock, &tmp32, sizeof(tmp32)) < 0)
*94c4a1e1SFrank Piva			err("Could not read option reply type: %m");
*94c4a1e1SFrank Piva		tmp32 = ntohl(tmp32);
*94c4a1e1SFrank Piva		if (tmp32 != NBD_REP_ACK) {
*94c4a1e1SFrank Piva			err("Option reply type != NBD_REP_ACK");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		if (read(sock, &tmp32, sizeof(tmp32)) < 0) err(
*94c4a1e1SFrank Piva			"Could not read option data length: %m");
*94c4a1e1SFrank Piva		tmp32 = ntohl(tmp32);
*94c4a1e1SFrank Piva		if (tmp32 != 0) {
*94c4a1e1SFrank Piva			err("Option reply data length != 0");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		s = tlssession_new(0,
*94c4a1e1SFrank Piva				   keyfile,
*94c4a1e1SFrank Piva				   certfile,
*94c4a1e1SFrank Piva				   cacertfile,
*94c4a1e1SFrank Piva				   tlshostname,
*94c4a1e1SFrank Piva				   !cacertfile || !tlshostname, // insecure flag
*94c4a1e1SFrank Piva#ifdef DODBG
*94c4a1e1SFrank Piva				   1, // debug
*94c4a1e1SFrank Piva#else
*94c4a1e1SFrank Piva				   0, // debug
*94c4a1e1SFrank Piva#endif
*94c4a1e1SFrank Piva				   NULL, // quitfn
*94c4a1e1SFrank Piva				   NULL, // erroutfn
*94c4a1e1SFrank Piva				   NULL // opaque
*94c4a1e1SFrank Piva			);
*94c4a1e1SFrank Piva		if (!s)
*94c4a1e1SFrank Piva			err("Cannot establish TLS session");
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		if (socketpair(AF_UNIX, SOCK_STREAM, 0, plainfd) < 0)
*94c4a1e1SFrank Piva			err("Cannot get socket pair");
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		if (set_nonblocking(plainfd[0], 0) <0 ||
*94c4a1e1SFrank Piva		    set_nonblocking(plainfd[1], 0) <0 ||
*94c4a1e1SFrank Piva		    set_nonblocking(sock, 0) <0) {
*94c4a1e1SFrank Piva			close(plainfd[0]);
*94c4a1e1SFrank Piva			close(plainfd[1]);
*94c4a1e1SFrank Piva			err("Cannot set socket options");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva		ret = fork();
*94c4a1e1SFrank Piva		if (ret < 0)
*94c4a1e1SFrank Piva			err("Could not fork");
*94c4a1e1SFrank Piva		else if (ret == 0) {
*94c4a1e1SFrank Piva			// we are the child
*94c4a1e1SFrank Piva			if (daemon(0, 0) < 0) {
*94c4a1e1SFrank Piva				/* no one will see this */
*94c4a1e1SFrank Piva				fprintf(stderr, "Can't detach from the terminal");
*94c4a1e1SFrank Piva				exit(1);
*94c4a1e1SFrank Piva			}
*94c4a1e1SFrank Piva			signal (SIGPIPE, SIG_IGN);
*94c4a1e1SFrank Piva			close(plainfd[1]);
*94c4a1e1SFrank Piva			tlssession_mainloop(sock, plainfd[0], s);
*94c4a1e1SFrank Piva			close(sock);
*94c4a1e1SFrank Piva			close(plainfd[0]);
*94c4a1e1SFrank Piva			exit(0);
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		close(plainfd[0]);
*94c4a1e1SFrank Piva		close(sock);
*94c4a1e1SFrank Piva		sock = plainfd[1]; /* use the decrypted FD from now on */
*94c4a1e1SFrank Piva		*sockp = sock;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva#else
*94c4a1e1SFrank Piva	if (keyfile) {
*94c4a1e1SFrank Piva		err("TLS requested but support not compiled in");
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva#endif
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if(do_opts & NBDC_DO_LIST) {
*94c4a1e1SFrank Piva		ask_list(sock);
*94c4a1e1SFrank Piva		exit(EXIT_SUCCESS);
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	struct reply *rep = NULL;
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	if(!can_opt_go) {
*94c4a1e1SFrank Piva		send_opt_exportname(sock, rsize64, flags, can_opt_go, name, global_flags);
*94c4a1e1SFrank Piva		return;
*94c4a1e1SFrank Piva	}
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	send_info_request(sock, NBD_OPT_GO, 0, NULL, name);
*94c4a1e1SFrank Piva
*94c4a1e1SFrank Piva	do {
*94c4a1e1SFrank Piva		if(rep != NULL) free(rep);
*94c4a1e1SFrank Piva		rep = read_reply(sock);
*94c4a1e1SFrank Piva		if(rep && (rep->reply_type & NBD_REP_FLAG_ERROR)) {
*94c4a1e1SFrank Piva			switch(rep->reply_type) {
*94c4a1e1SFrank Piva				case NBD_REP_ERR_UNSUP:
*94c4a1e1SFrank Piva					/* server doesn't support NBD_OPT_GO or NBD_OPT_INFO,
*94c4a1e1SFrank Piva					 * fall back to NBD_OPT_EXPORT_NAME */
*94c4a1e1SFrank Piva					send_opt_exportname(sock, rsize64, flags, can_opt_go, name, global_flags);
*94c4a1e1SFrank Piva					free(rep);
*94c4a1e1SFrank Piva					return;
*94c4a1e1SFrank Piva				case NBD_REP_ERR_POLICY:
*94c4a1e1SFrank Piva					if(rep->datasize > 0) {
*94c4a1e1SFrank Piva						char errstr[1024];
*94c4a1e1SFrank Piva						snprintf(errstr, sizeof errstr, "Connection not allowed by server policy. Server said: %s", rep->data);
*94c4a1e1SFrank Piva						err(errstr);
*94c4a1e1SFrank Piva					} else {
*94c4a1e1SFrank Piva						err("Connection not allowed by server policy.");
*94c4a1e1SFrank Piva					}
*94c4a1e1SFrank Piva					free(rep);
*94c4a1e1SFrank Piva					exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva				default:
*94c4a1e1SFrank Piva					if(rep->datasize > 0) {
*94c4a1e1SFrank Piva						char errstr[1024];
*94c4a1e1SFrank Piva						snprintf(errstr, sizeof errstr, "Unknown error returned by server. Server said: %s", rep->data);
*94c4a1e1SFrank Piva						err(errstr);
*94c4a1e1SFrank Piva					} else {
*94c4a1e1SFrank Piva						err("Unknown error returned by server.");
*94c4a1e1SFrank Piva					}
*94c4a1e1SFrank Piva					free(rep);
*94c4a1e1SFrank Piva					exit(EXIT_FAILURE);
*94c4a1e1SFrank Piva			}
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva		uint16_t info_type;
*94c4a1e1SFrank Piva		switch(rep->reply_type) {
*94c4a1e1SFrank Piva			case NBD_REP_INFO:
*94c4a1e1SFrank Piva				memcpy(&info_type, rep->data, 2);
*94c4a1e1SFrank Piva				info_type = htons(info_type);
*94c4a1e1SFrank Piva				switch(info_type) {
*94c4a1e1SFrank Piva					case NBD_INFO_EXPORT:
*94c4a1e1SFrank Piva						parse_sizes(rep->data + 2, rsize64, flags);
*94c4a1e1SFrank Piva						break;
*94c4a1e1SFrank Piva					default:
*94c4a1e1SFrank Piva						// ignore these, don't need them
*94c4a1e1SFrank Piva						break;
*94c4a1e1SFrank Piva				}
*94c4a1e1SFrank Piva				break;
*94c4a1e1SFrank Piva			case NBD_REP_ACK:
*94c4a1e1SFrank Piva				break;
*94c4a1e1SFrank Piva			default:
*94c4a1e1SFrank Piva				err_nonfatal("Unknown reply to NBD_OPT_GO received, ignoring");
*94c4a1e1SFrank Piva		}
*94c4a1e1SFrank Piva	} while(rep->reply_type != NBD_REP_ACK);
*94c4a1e1SFrank Piva	free(rep);
*94c4a1e1SFrank Piva}