Blame SOURCES/autofs-5.0.9-amd-lookup-add-selector-handling.patch

6bbd11
autofs-5.0.9 - amd lookup add selector handling
6bbd11
6bbd11
From: Ian Kent <raven@themaw.net>
6bbd11
6bbd11
6bbd11
---
6bbd11
 include/parse_subs.h |    2 
6bbd11
 lib/parse_subs.c     |  127 ++++++++++++++++++
6bbd11
 modules/amd_parse.y  |   49 ++++++-
6bbd11
 modules/amd_tok.l    |   73 ++++++++++
6bbd11
 modules/parse_amd.c  |  348 ++++++++++++++++++++++++++++++++++++++++++++++++++
6bbd11
 5 files changed, 586 insertions(+), 13 deletions(-)
6bbd11
6bbd11
diff --git a/include/parse_subs.h b/include/parse_subs.h
6bbd11
index a416c59..43da182 100644
6bbd11
--- a/include/parse_subs.h
6bbd11
+++ b/include/parse_subs.h
6bbd11
@@ -111,6 +111,8 @@ struct map_type_info {
6bbd11
 };
6bbd11
 
6bbd11
 unsigned int get_proximity(struct sockaddr *);
6bbd11
+unsigned int get_network_proximity(const char *);
6bbd11
+unsigned int in_network(char *);
6bbd11
 const char *skipspace(const char *);
6bbd11
 int check_colon(const char *);
6bbd11
 int chunklen(const char *, int);
6bbd11
diff --git a/lib/parse_subs.c b/lib/parse_subs.c
6bbd11
index f485a4c..de5319f 100644
6bbd11
--- a/lib/parse_subs.c
6bbd11
+++ b/lib/parse_subs.c
6bbd11
@@ -19,9 +19,13 @@
6bbd11
 #include <string.h>
6bbd11
 #include <ctype.h>
6bbd11
 #include <sys/types.h>
6bbd11
+#include <sys/socket.h>
6bbd11
 #include <ifaddrs.h>
6bbd11
 #include <libgen.h>
6bbd11
 #include <net/if.h>
6bbd11
+#include <arpa/inet.h>
6bbd11
+#include <netdb.h>
6bbd11
+
6bbd11
 #include "automount.h"
6bbd11
 
6bbd11
 #define MAX_OPTIONS_LEN		256
6bbd11
@@ -370,6 +374,129 @@ unsigned int get_proximity(struct sockaddr *host_addr)
6bbd11
 	return PROXIMITY_OTHER;
6bbd11
 }
6bbd11
 
6bbd11
+static char *inet_fill_net(const char *net_num, char *net)
6bbd11
+{
6bbd11
+	char *np;
6bbd11
+	unsigned int dots = 3;
6bbd11
+
6bbd11
+	if (strlen(net_num) > INET_ADDRSTRLEN)
6bbd11
+		return NULL;
6bbd11
+
6bbd11
+	if (!isdigit(*net_num))
6bbd11
+		return NULL;
6bbd11
+
6bbd11
+	*net = '\0';
6bbd11
+	strcpy(net, net_num);
6bbd11
+
6bbd11
+	np = net;
6bbd11
+	while (*np++) {
6bbd11
+		if (*np == '.') {
6bbd11
+			np++;
6bbd11
+			dots--;
6bbd11
+			if (!*np && dots)
6bbd11
+				strcat(net, "0");
6bbd11
+			continue;
6bbd11
+		}
6bbd11
+
6bbd11
+		if ((*np && !isdigit(*np)) || dots < 0) {
6bbd11
+			*net = '\0';
6bbd11
+			return NULL;
6bbd11
+		}
6bbd11
+	}
6bbd11
+
6bbd11
+	while (dots--)
6bbd11
+		strcat(net, ".0");
6bbd11
+
6bbd11
+	return net;
6bbd11
+}
6bbd11
+
6bbd11
+static char *get_network_number(const char *network)
6bbd11
+{
6bbd11
+	struct netent *netent;
6bbd11
+	char cnet[MAX_NETWORK_LEN];
6bbd11
+	uint32_t h_net;
6bbd11
+	size_t len;
6bbd11
+
6bbd11
+	len = strlen(network) + 1;
6bbd11
+	if (len > MAX_NETWORK_LEN)
6bbd11
+		return NULL;
6bbd11
+
6bbd11
+	netent = getnetbyname(network);
6bbd11
+	if (!netent)
6bbd11
+		return NULL;
6bbd11
+	h_net = ntohl(netent->n_net);
6bbd11
+
6bbd11
+	if (!inet_ntop(AF_INET, &h_net, cnet, INET_ADDRSTRLEN))
6bbd11
+		return NULL;
6bbd11
+
6bbd11
+	return strdup(cnet);
6bbd11
+}
6bbd11
+
6bbd11
+unsigned int get_network_proximity(const char *name)
6bbd11
+{
6bbd11
+	struct addrinfo hints;
6bbd11
+	struct addrinfo *ni, *this;
6bbd11
+	char name_or_num[NI_MAXHOST];
6bbd11
+	unsigned int proximity;
6bbd11
+	char *net;
6bbd11
+	int ret;
6bbd11
+
6bbd11
+	if (!name)
6bbd11
+		return PROXIMITY_ERROR;
6bbd11
+
6bbd11
+	net = get_network_number(name);
6bbd11
+	if (net)
6bbd11
+		strcpy(name_or_num, net);
6bbd11
+	else {
6bbd11
+		char this[NI_MAXHOST];
6bbd11
+		char *mask;
6bbd11
+
6bbd11
+		strcpy(this, name);
6bbd11
+		if ((mask = strchr(this, '/')))
6bbd11
+			*mask++ = '\0';
6bbd11
+		if (!strchr(this, '.'))
6bbd11
+			strcpy(name_or_num, this);
6bbd11
+		else {
6bbd11
+			char buf[NI_MAXHOST], *new;
6bbd11
+			new = inet_fill_net(this, buf);
6bbd11
+			if (!new)
6bbd11
+				return PROXIMITY_ERROR;
6bbd11
+			strcpy(name_or_num, new);
6bbd11
+		}
6bbd11
+	}
6bbd11
+
6bbd11
+	memset(&hints, 0, sizeof(struct addrinfo));
6bbd11
+	hints.ai_family = AF_UNSPEC;
6bbd11
+	hints.ai_socktype = SOCK_DGRAM;
6bbd11
+
6bbd11
+	ret = getaddrinfo(name_or_num, NULL, &hints, &ni);
6bbd11
+	if (ret) {
6bbd11
+		logerr("getaddrinfo: %s", gai_strerror(ret));
6bbd11
+		return PROXIMITY_ERROR;
6bbd11
+	}
6bbd11
+
6bbd11
+	proximity = PROXIMITY_OTHER;
6bbd11
+
6bbd11
+	this = ni;
6bbd11
+	while (this) {
6bbd11
+		unsigned int prx = get_proximity(this->ai_addr);
6bbd11
+		if (prx < proximity)
6bbd11
+			proximity = prx;
6bbd11
+		this = this->ai_next;
6bbd11
+	}
6bbd11
+
6bbd11
+	return proximity;
6bbd11
+}
6bbd11
+
6bbd11
+unsigned int in_network(char *network)
6bbd11
+{
6bbd11
+	unsigned int proximity = get_network_proximity(network);
6bbd11
+	if (proximity == PROXIMITY_ERROR ||
6bbd11
+	    proximity > PROXIMITY_SUBNET)
6bbd11
+		return 0;
6bbd11
+	return 1;
6bbd11
+}
6bbd11
+
6bbd11
 /*
6bbd11
  * Skip whitespace in a string; if we hit a #, consider the rest of the
6bbd11
  * entry a comment.
6bbd11
diff --git a/modules/amd_parse.y b/modules/amd_parse.y
6bbd11
index 33106a1..71fd569 100644
6bbd11
--- a/modules/amd_parse.y
6bbd11
+++ b/modules/amd_parse.y
6bbd11
@@ -92,6 +92,9 @@ static int amd_fprintf(FILE *, char *, ...);
6bbd11
 %token NOT_EQUAL
6bbd11
 %token COMMA
6bbd11
 %token OPTION_ASSIGN
6bbd11
+%token LBRACKET
6bbd11
+%token RBRACKET
6bbd11
+%token NOT
6bbd11
 %token NILL
6bbd11
 
6bbd11
 %token <strtype> MAP_OPTION
6bbd11
@@ -102,6 +105,7 @@ static int amd_fprintf(FILE *, char *, ...);
6bbd11
 %token <strtype> MNT_OPTION
6bbd11
 %token <strtype> SELECTOR
6bbd11
 %token <strtype> SELECTOR_VALUE
6bbd11
+%token <strtype> SEL_ARG_VALUE
6bbd11
 %token <strtype> OPTION
6bbd11
 %token <strtype> MACRO
6bbd11
 %token <strtype> OTHER
6bbd11
@@ -187,18 +191,46 @@ selector_or_option: selection
6bbd11
 
6bbd11
 selection: SELECTOR IS_EQUAL SELECTOR_VALUE
6bbd11
 	{
6bbd11
-		if (!make_selector($1, $3, NULL, SEL_TYPE_EQUAL)) {
6bbd11
+		if (!make_selector($1, $3, NULL, SEL_COMP_EQUAL)) {
6bbd11
 			amd_notify($1);
6bbd11
 			YYABORT;
6bbd11
 		}
6bbd11
 	}
6bbd11
 	| SELECTOR NOT_EQUAL SELECTOR_VALUE
6bbd11
 	{
6bbd11
-		if (!make_selector($1, $3, NULL, SEL_TYPE_NOTEQUAL)) {
6bbd11
+		if (!make_selector($1, $3, NULL, SEL_COMP_NOTEQUAL)) {
6bbd11
 			amd_notify($1);
6bbd11
 			YYABORT;
6bbd11
 		}
6bbd11
 	}
6bbd11
+	| SELECTOR LBRACKET SEL_ARG_VALUE RBRACKET
6bbd11
+	{
6bbd11
+		if (!make_selector($1, $3, NULL, SEL_COMP_NONE)) {
6bbd11
+			amd_notify($1);
6bbd11
+			YYABORT;
6bbd11
+		}
6bbd11
+	}
6bbd11
+	| SELECTOR LBRACKET SEL_ARG_VALUE COMMA SEL_ARG_VALUE RBRACKET
6bbd11
+	{
6bbd11
+		if (!make_selector($1, $3, $5, SEL_COMP_NONE)) {
6bbd11
+			amd_notify($1);
6bbd11
+			YYABORT;
6bbd11
+		}
6bbd11
+	}
6bbd11
+	| NOT SELECTOR LBRACKET SEL_ARG_VALUE RBRACKET
6bbd11
+	{
6bbd11
+		if (!make_selector($2, $4, NULL, SEL_COMP_NOT)) {
6bbd11
+			amd_notify($2);
6bbd11
+			YYABORT;
6bbd11
+		}
6bbd11
+	}
6bbd11
+	| NOT SELECTOR LBRACKET SEL_ARG_VALUE COMMA SEL_ARG_VALUE RBRACKET
6bbd11
+	{
6bbd11
+		if (!make_selector($2, $4, $6, SEL_COMP_NOT)) {
6bbd11
+			amd_notify($2);
6bbd11
+			YYABORT;
6bbd11
+		}
6bbd11
+	}
6bbd11
 	;
6bbd11
 
6bbd11
 option_assignment: MAP_OPTION OPTION_ASSIGN FS_TYPE
6bbd11
@@ -388,9 +420,6 @@ static int make_selector(char *name,
6bbd11
 	if (!sel_lookup(name))
6bbd11
 		return 0;
6bbd11
 
6bbd11
-	if (!value1)
6bbd11
-		return 0;
6bbd11
-
6bbd11
 	s = get_selector(name);
6bbd11
 	if (!s)
6bbd11
 		return 0;
6bbd11
@@ -401,9 +430,13 @@ static int make_selector(char *name,
6bbd11
 			goto error;
6bbd11
 		s->comp.value = tmp;
6bbd11
 	} else if (s->sel->flags & SEL_FLAG_FUNC1) {
6bbd11
-		char *tmp = amd_strdup(value1);
6bbd11
-		if (!tmp)
6bbd11
-			goto error;
6bbd11
+		if (!value1)
6bbd11
+			tmp = NULL;
6bbd11
+		else {
6bbd11
+			char *tmp = amd_strdup(value1);
6bbd11
+			if (!tmp)
6bbd11
+				goto error;
6bbd11
+		}
6bbd11
 		s->func.arg1 = tmp;
6bbd11
 	} else if (s->sel->flags & SEL_FLAG_FUNC2) {
6bbd11
 		char *tmp = amd_strdup(value1);
6bbd11
diff --git a/modules/amd_tok.l b/modules/amd_tok.l
6bbd11
index afa3a87..cea9ea5 100644
6bbd11
--- a/modules/amd_tok.l
6bbd11
+++ b/modules/amd_tok.l
6bbd11
@@ -70,22 +70,29 @@ int amd_yyinput(char *, int);
6bbd11
 
6bbd11
 %option nounput
6bbd11
 
6bbd11
-%x MAPOPTVAL FSOPTVAL MNTOPTVAL SELOPTVAL
6bbd11
+%x MAPOPTVAL FSOPTVAL MNTOPTVAL SELOPTVAL SELARGVAL
6bbd11
 
6bbd11
 NL		\r?\n
6bbd11
 OPTWS		[[:blank:]]*
6bbd11
 OTHR		[^!;:=/|\- \t\r\n#]*
6bbd11
 
6bbd11
+V4NUM		([01]?[0-9][0-9]?|2[0-4][0-9]|25[0-5])
6bbd11
+
6bbd11
 MACRO		(\$\{([[:alpha:]_/]([[:alnum:]_\-])([[:alnum:]_\-/])*)\})
6bbd11
 QSTR		(\"([^"\\]|\\.)*\")
6bbd11
 OSTR		([[:alpha:]]([[:alnum:]_\-])+)
6bbd11
 FSTR		([[:alnum:]_/\.]([[:alnum:]_\-/\.]|(\\.))*)
6bbd11
 VSTR		(([[:alnum:]_\-\:/\.])+)
6bbd11
 SSTR		([[:alpha:]]([[:alnum:]\-\.])+)
6bbd11
+IP4ADDR		({V4NUM}\.((({V4NUM}\.){0,2}){V4NUM}?))
6bbd11
+V4MASK		({IP4ADDR}|([1-2][0-9]|3[0-2]|[1-9]))
6bbd11
+IP6ADDR		((([A-Fa-f0-9]{1,4}\:\:?){1,7}[A-Fa-f0-9]{1,4})|(\:\:1))
6bbd11
+V6MASK		(12[0-8]|1[0-1][0-9]|[1-9][0-9]|[1-9])
6bbd11
 
6bbd11
 FOPT		(({QSTR}|{FSTR}|{MACRO})+)
6bbd11
 OPTS		({OSTR}(=({VSTR}|{QSTR}|{MACRO})+)?)
6bbd11
 SOPT		(({SSTR}|{QSTR}|{MACRO})+)
6bbd11
+NOPT		({SSTR}|(({IP4ADDR}(\/{V4MASK})?)|({IP6ADDR}(\/{V6MASK})?)))
6bbd11
 
6bbd11
 MAPOPT		(fs|type|maptype|pref|sublink|delay)
6bbd11
 MNTOPT		(opts|addopts|remopts)
6bbd11
@@ -94,13 +101,16 @@ MAPTYPE		(file|nis|nisplus|ldap|hesiod|exec|ndbm|passwd|union)
6bbd11
 FSTYPE		(auto|nfs|link|host|nfsx|ufs|xfs|efs)
6bbd11
 
6bbd11
 OSSEL		(arch|karch|os|osver|full_os|vendor)
6bbd11
-HSTSEL		(host|hostd|xhost|domain|byte|cluster)
6bbd11
-NETSEL		(netnumber|network|wire|netgrp|netgrpd|in_network)
6bbd11
+HSTSEL		(host|hostd|domain|byte|cluster)
6bbd11
+NETSEL		(netnumber|network|wire|in_network)
6bbd11
 USRSEL		(uid|gid)
6bbd11
 MAPSEL		(key|map|path)
6bbd11
-OTRSEL		(exists|autodir|dollar)
6bbd11
+OTRSEL		(autodir|dollar)
6bbd11
 BOLSEL		(true|false)
6bbd11
-SELOPT		({OSSEL}|{HSTSEL}|{NETSEL}|{BOLSEL}|{USRSEL}|{MAPSEL}|{OTRSEL})
6bbd11
+
6bbd11
+SELOPT		({OSSEL}|{HSTSEL}|{USRSEL}|{MAPSEL}|{OTRSEL})
6bbd11
+SEL1ARG		(xhost|exists|{NETSEL}|{BOLSEL})
6bbd11
+SEL2ARG		(netgrp|netgrpd)
6bbd11
 
6bbd11
 CUTSEP		(\|\||\/)
6bbd11
 
6bbd11
@@ -135,6 +145,20 @@ CUTSEP		(\|\||\/)
6bbd11
 		return SELECTOR;
6bbd11
 	}
6bbd11
 
6bbd11
+	"!"/({SEL1ARG}|{SEL2ARG}) { return NOT; }
6bbd11
+
6bbd11
+	{SEL1ARG} {
6bbd11
+		BEGIN(SELARGVAL);
6bbd11
+		strcpy(amd_lval.strtype, amd_text);
6bbd11
+		return SELECTOR;
6bbd11
+	}
6bbd11
+
6bbd11
+	{SEL2ARG} {
6bbd11
+		BEGIN(SELARGVAL);
6bbd11
+		strcpy(amd_lval.strtype, amd_text);
6bbd11
+		return SELECTOR;
6bbd11
+	}
6bbd11
+
6bbd11
 	{CUTSEP} { return CUT; }
6bbd11
 
6bbd11
 	"-" { return HYPHEN; }
6bbd11
@@ -263,6 +287,45 @@ CUTSEP		(\|\||\/)
6bbd11
 	}
6bbd11
 }
6bbd11
 
6bbd11
+<SELARGVAL>{
6bbd11
+	{NL} |
6bbd11
+	\x00 {
6bbd11
+		BEGIN(INITIAL);
6bbd11
+		yyless(1);
6bbd11
+	}
6bbd11
+
6bbd11
+	";" {
6bbd11
+		BEGIN(INITIAL);
6bbd11
+		return SEPERATOR;
6bbd11
+	}
6bbd11
+
6bbd11
+	"(" { return LBRACKET; }
6bbd11
+
6bbd11
+	{NOPT} {
6bbd11
+		strcpy(amd_lval.strtype, amd_text);
6bbd11
+		return SEL_ARG_VALUE;
6bbd11
+	}
6bbd11
+
6bbd11
+	{SOPT}/"," {
6bbd11
+		strcpy(amd_lval.strtype, amd_text);
6bbd11
+		return SEL_ARG_VALUE;
6bbd11
+	}
6bbd11
+
6bbd11
+	"," { return COMMA; }
6bbd11
+
6bbd11
+	{SOPT} {
6bbd11
+		strcpy(amd_lval.strtype, amd_text);
6bbd11
+		return SEL_ARG_VALUE;
6bbd11
+	}
6bbd11
+
6bbd11
+	{FOPT} {
6bbd11
+		strcpy(amd_lval.strtype, amd_text);
6bbd11
+		return SEL_ARG_VALUE;
6bbd11
+	}
6bbd11
+
6bbd11
+	")" { return RBRACKET; }
6bbd11
+}
6bbd11
+
6bbd11
 %%
6bbd11
 
6bbd11
 #include "automount.h"
6bbd11
diff --git a/modules/parse_amd.c b/modules/parse_amd.c
6bbd11
index 35cc5dc..d9c7d9b 100644
6bbd11
--- a/modules/parse_amd.c
6bbd11
+++ b/modules/parse_amd.c
6bbd11
@@ -223,6 +223,307 @@ static struct substvar *add_lookup_vars(struct autofs_point *ap,
6bbd11
 	return list;
6bbd11
 }
6bbd11
 
6bbd11
+static int match_my_name(unsigned int logopt, const char *name, struct substvar *sv)
6bbd11
+{
6bbd11
+	struct addrinfo hints, *cni, *ni, *haddr;
6bbd11
+	char host[NI_MAXHOST + 1], numeric[NI_MAXHOST + 1];
6bbd11
+	const struct substvar *v;
6bbd11
+	int rv = 0, ret;
6bbd11
+
6bbd11
+	v = macro_findvar(sv, "host", 4);
6bbd11
+	if (v) {
6bbd11
+		if (!strcmp(v->val, name))
6bbd11
+			return 1;
6bbd11
+	}
6bbd11
+
6bbd11
+	/* Check if comparison value is an alias */
6bbd11
+
6bbd11
+	memset(&hints, 0, sizeof(hints));
6bbd11
+	hints.ai_flags = AI_CANONNAME;
6bbd11
+	hints.ai_family = AF_UNSPEC;
6bbd11
+	hints.ai_socktype = SOCK_DGRAM;
6bbd11
+
6bbd11
+	/* Get host canonical name */
6bbd11
+	ret = getaddrinfo(v->val, NULL, &hints, &cni);
6bbd11
+	if (ret) {
6bbd11
+		error(logopt,
6bbd11
+		      "hostname lookup failed: %s\n", gai_strerror(ret));
6bbd11
+		goto out;
6bbd11
+	}
6bbd11
+
6bbd11
+	hints.ai_flags = 0;
6bbd11
+
6bbd11
+	/* Resolve comparison name to its names and compare */
6bbd11
+	ret = getaddrinfo(name, NULL, &hints, &ni);
6bbd11
+	if (ret) {
6bbd11
+		error(logopt,
6bbd11
+		      "hostname lookup failed: %s\n", gai_strerror(ret));
6bbd11
+		freeaddrinfo(cni);
6bbd11
+		goto out;
6bbd11
+	}
6bbd11
+
6bbd11
+	haddr = ni;
6bbd11
+	while (haddr) {
6bbd11
+		/* Translate the host address into a numeric string form */
6bbd11
+		ret = getnameinfo(haddr->ai_addr, haddr->ai_addrlen,
6bbd11
+				  numeric, sizeof(numeric), NULL, 0,
6bbd11
+				  NI_NUMERICHOST);
6bbd11
+		if (ret) {
6bbd11
+			error(logopt,
6bbd11
+			      "host address info lookup failed: %s\n",
6bbd11
+			      gai_strerror(ret));
6bbd11
+			freeaddrinfo(cni);
6bbd11
+			goto next;
6bbd11
+		}
6bbd11
+
6bbd11
+		/* Try to resolve back again to get the canonical name */
6bbd11
+		ret = getnameinfo(haddr->ai_addr, haddr->ai_addrlen,
6bbd11
+				  host, NI_MAXHOST, NULL, 0, 0);
6bbd11
+		if (ret) {
6bbd11
+			error(logopt,
6bbd11
+			      "host address info lookup failed: %s\n",
6bbd11
+			      gai_strerror(ret));
6bbd11
+			freeaddrinfo(cni);
6bbd11
+			goto next;
6bbd11
+		}
6bbd11
+
6bbd11
+		if (!strcmp(host, cni->ai_canonname)) {
6bbd11
+			rv = 1;
6bbd11
+			break;
6bbd11
+		}
6bbd11
+next:
6bbd11
+		haddr = haddr->ai_next;
6bbd11
+	}
6bbd11
+	freeaddrinfo(ni);
6bbd11
+	freeaddrinfo(cni);
6bbd11
+out:
6bbd11
+	return rv;
6bbd11
+}
6bbd11
+
6bbd11
+static int eval_selector(unsigned int logopt,
6bbd11
+			 struct amd_entry *this, struct substvar *sv)
6bbd11
+{
6bbd11
+	struct selector *s = this->selector;
6bbd11
+	const struct substvar *v;
6bbd11
+	unsigned int s_type;
6bbd11
+	unsigned int v_type;
6bbd11
+	struct stat st;
6bbd11
+	char *host;
6bbd11
+	int res, val, ret = 0;
6bbd11
+
6bbd11
+	s_type = s->sel->flags & SEL_FLAGS_TYPE_MASK;
6bbd11
+
6bbd11
+	switch (s_type) {
6bbd11
+	case SEL_FLAG_MACRO:
6bbd11
+		v = macro_findvar(sv, s->sel->name, strlen(s->sel->name));
6bbd11
+		if (!v) {
6bbd11
+			error(logopt, "failed to get selector %s", s->sel->name);
6bbd11
+			return 0;
6bbd11
+		}
6bbd11
+
6bbd11
+		v_type = s->sel->flags & SEL_FLAGS_VALUE_MASK;
6bbd11
+
6bbd11
+		switch (v_type) {
6bbd11
+		case SEL_FLAG_STR:
6bbd11
+			res = strcmp(v->val, s->comp.value);
6bbd11
+			if (s->compare & SEL_COMP_EQUAL && !res) {
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s) == %s",
6bbd11
+				      v->def, v->val, s->comp.value);
6bbd11
+				ret = 1;
6bbd11
+				break;
6bbd11
+			} else if (s->compare & SEL_COMP_NOTEQUAL && res) {
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s) != %s",
6bbd11
+				      v->def, v->val, s->comp.value);
6bbd11
+				ret = 1;
6bbd11
+				break;
6bbd11
+			}
6bbd11
+
6bbd11
+			debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s) %s %s",
6bbd11
+				      v->def, v->val,
6bbd11
+				      (s->compare & SEL_COMP_EQUAL ? "==" : "!="),
6bbd11
+				      s->comp.value);
6bbd11
+			break;
6bbd11
+
6bbd11
+		case SEL_FLAG_NUM:
6bbd11
+			res = atoi(v->val);
6bbd11
+			val = atoi(s->comp.value);
6bbd11
+			if (s->compare & SEL_COMP_EQUAL && res == val) {
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s) equal to %s",
6bbd11
+				      v->def, v->val, s->comp.value);
6bbd11
+				ret = 1;
6bbd11
+				break;
6bbd11
+			} else if (s->compare & SEL_COMP_NOTEQUAL && res != val) {
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s) not equal to %s",
6bbd11
+				      v->def, v->val, s->comp.value);
6bbd11
+				ret = 1;
6bbd11
+				break;
6bbd11
+			}
6bbd11
+
6bbd11
+			debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s) %s %s",
6bbd11
+				      v->def, v->val,
6bbd11
+				      (s->compare & SEL_COMP_EQUAL ? "==" : "!="),
6bbd11
+				      s->comp.value);
6bbd11
+			break;
6bbd11
+
6bbd11
+		default:
6bbd11
+			break;
6bbd11
+		}
6bbd11
+		break;
6bbd11
+
6bbd11
+	case SEL_FLAG_FUNC1:
6bbd11
+		if (s->sel->selector != SEL_TRUE &&
6bbd11
+		    s->sel->selector != SEL_FALSE &&
6bbd11
+		    !s->func.arg1) {
6bbd11
+			error(logopt, MODPREFIX
6bbd11
+			      "expected argument missing for selector %s",
6bbd11
+			      s->sel->name);
6bbd11
+			break;
6bbd11
+		}
6bbd11
+
6bbd11
+		switch (s->sel->selector) {
6bbd11
+		case SEL_TRUE:
6bbd11
+			ret = 1;
6bbd11
+			if (s->compare == SEL_COMP_NOT)
6bbd11
+				ret = !ret;
6bbd11
+			if (ret)
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			else
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			break;
6bbd11
+
6bbd11
+		case SEL_FALSE:
6bbd11
+			if (s->compare == SEL_COMP_NOT)
6bbd11
+				ret = !ret;
6bbd11
+			if (ret)
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			else
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			break;
6bbd11
+
6bbd11
+		case SEL_XHOST:
6bbd11
+			ret = match_my_name(logopt, s->func.arg1, sv);
6bbd11
+			if (s->compare == SEL_COMP_NOT)
6bbd11
+				ret = !ret;
6bbd11
+			if (ret)
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s) to host name",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			else
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s) to host name",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			break;
6bbd11
+
6bbd11
+		case SEL_EXISTS:
6bbd11
+			/* Sould be OK to fail on any error here */
6bbd11
+			ret = !lstat(s->func.arg1, &st);
6bbd11
+			if (s->compare == SEL_COMP_NOT)
6bbd11
+				ret = !ret;
6bbd11
+			if (ret)
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			else
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			break;
6bbd11
+
6bbd11
+		case SEL_IN_NETWORK:
6bbd11
+			ret = in_network(s->func.arg1);
6bbd11
+			if (s->compare == SEL_COMP_NOT)
6bbd11
+				ret = !ret;
6bbd11
+			if (ret)
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "matched selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			else
6bbd11
+				debug(logopt, MODPREFIX
6bbd11
+				      "did not match selector %s(%s)",
6bbd11
+				      s->sel->name, s->func.arg1);
6bbd11
+			break;
6bbd11
+
6bbd11
+		default:
6bbd11
+			break;
6bbd11
+		}
6bbd11
+		break;
6bbd11
+
6bbd11
+	case SEL_FLAG_FUNC2:
6bbd11
+		if (!s->func.arg1) {
6bbd11
+			error(logopt, MODPREFIX
6bbd11
+			      "expected argument missing for selector %s",
6bbd11
+			      s->sel->name);
6bbd11
+			break;
6bbd11
+		}
6bbd11
+
6bbd11
+		switch (s->sel->selector) {
6bbd11
+		case SEL_NETGRP:
6bbd11
+		case SEL_NETGRPD:
6bbd11
+			if (s->func.arg2)
6bbd11
+				host = s->func.arg2;
6bbd11
+			else {
6bbd11
+				if (s->sel->selector == SEL_NETGRP)
6bbd11
+					v = macro_findvar(sv, "host", 4);
6bbd11
+				else
6bbd11
+					v = macro_findvar(sv, "hostd", 5);
6bbd11
+				if (!v || !*v->val) {
6bbd11
+					error(logopt,
6bbd11
+					     "failed to get value of ${host}");
6bbd11
+					break;
6bbd11
+				}
6bbd11
+				host = v->val;
6bbd11
+			}
6bbd11
+			ret = innetgr(s->func.arg1, host, NULL, NULL);
6bbd11
+			if (s->compare == SEL_COMP_NOT)
6bbd11
+				ret = !ret;
6bbd11
+			if (ret) {
6bbd11
+				if (!s->func.arg2)
6bbd11
+					debug(logopt, MODPREFIX
6bbd11
+					      "matched selector %s(%s)",
6bbd11
+					      s->sel->name, s->func.arg1);
6bbd11
+				else
6bbd11
+					debug(logopt, MODPREFIX
6bbd11
+					      "matched selector %s(%s,%s)",
6bbd11
+					      s->sel->name, s->func.arg1,
6bbd11
+					      s->func.arg2);
6bbd11
+			} else {
6bbd11
+				if (!s->func.arg2)
6bbd11
+					debug(logopt, MODPREFIX
6bbd11
+					      "did not match selector %s(%s)",
6bbd11
+					      s->sel->name, s->func.arg1);
6bbd11
+				else
6bbd11
+					debug(logopt, MODPREFIX
6bbd11
+					      "did not match selector %s(%s,%s)",
6bbd11
+					      s->sel->name, s->func.arg1, s->func.arg2);
6bbd11
+			}
6bbd11
+			break;
6bbd11
+
6bbd11
+		default:
6bbd11
+			break;
6bbd11
+		}
6bbd11
+		break;
6bbd11
+
6bbd11
+	default:
6bbd11
+		break;
6bbd11
+	}
6bbd11
+
6bbd11
+	return ret;
6bbd11
+}
6bbd11
+
6bbd11
 static void update_with_defaults(struct amd_entry *defaults,
6bbd11
 				 struct amd_entry *entry,
6bbd11
 				 struct substvar *sv)
6bbd11
@@ -884,6 +1185,33 @@ static void update_prefix(struct autofs_point *ap,
6bbd11
 	return;
6bbd11
 }
6bbd11
 
6bbd11
+static int match_selectors(unsigned int logopt,
6bbd11
+			   struct amd_entry *entry, struct substvar *sv)
6bbd11
+{
6bbd11
+	struct selector *s = entry->selector;
6bbd11
+	int ret;
6bbd11
+
6bbd11
+	/* No selectors, always match */
6bbd11
+	if (!s) {
6bbd11
+		debug(logopt, "no selectors found in location");
6bbd11
+		return 1;
6bbd11
+	}
6bbd11
+
6bbd11
+	ret = 0;
6bbd11
+
6bbd11
+	/* All selectors must match */
6bbd11
+	while (s) {
6bbd11
+		ret = eval_selector(logopt, entry, sv);
6bbd11
+		if (!ret)
6bbd11
+			break;
6bbd11
+		s = s->next;
6bbd11
+	}
6bbd11
+	if (!s)
6bbd11
+		ret = 1;
6bbd11
+
6bbd11
+	return ret;
6bbd11
+}
6bbd11
+
6bbd11
 static struct amd_entry *dup_defaults_entry(struct amd_entry *defaults)
6bbd11
 {
6bbd11
 	struct amd_entry *entry;
6bbd11
@@ -1008,6 +1336,23 @@ static struct amd_entry *select_default_entry(struct autofs_point *ap,
6bbd11
 			free_amd_entry(this);
6bbd11
 			continue;
6bbd11
 		}
6bbd11
+
6bbd11
+		/*
6bbd11
+		 * This probably should be a fail since we expect
6bbd11
+		 * selectors to pick the default entry.
6bbd11
+		 */
6bbd11
+		if (!this->selector)
6bbd11
+			continue;
6bbd11
+
6bbd11
+		if (match_selectors(ap->logopt, this, sv)) {
6bbd11
+			if (entry_default) {
6bbd11
+				/*update_with_defaults(entry_default, this, sv);*/
6bbd11
+				free_amd_entry(entry_default);
6bbd11
+			}
6bbd11
+			list_del_init(&this->list);
6bbd11
+			defaults_entry = this;
6bbd11
+			break;
6bbd11
+		}
6bbd11
 	}
6bbd11
 
6bbd11
 	/* Not strickly amd semantics but ... */
6bbd11
@@ -1195,6 +1540,9 @@ int parse_mount(struct autofs_point *ap, const char *name,
6bbd11
 			continue;
6bbd11
 		}
6bbd11
 
6bbd11
+		if (!match_selectors(ap->logopt, this, sv))
6bbd11
+			continue;
6bbd11
+
6bbd11
 		update_with_defaults(cur_defaults, this, sv);
6bbd11
 		sv = expand_entry(ap, this, flags, sv);
6bbd11
 		sv = merge_entry_options(ap, this, sv);