search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
[CPUFREQ] Fix cast warning in pcc driver.
[linux-2.6.git] / fs / nfsd / export.c
blobc487810a2366feed1d7018085296ccf371ab0947
1 #define MSNFS /* HACK HACK */
2 /*
3 * NFS exporting and validation.
4 *
5 * We maintain a list of clients, each of which has a list of
6 * exports. To export an fs to a given client, you first have
7 * to create the client entry with NFSCTL_ADDCLIENT, which
8 * creates a client control block and adds it to the hash
9 * table. Then, you call NFSCTL_EXPORT for each fs.
10 *
11 *
12 * Copyright (C) 1995, 1996 Olaf Kirch, <okir@monad.swb.de>
13 */
14
15 #include <linux/namei.h>
16 #include <linux/module.h>
17 #include <linux/exportfs.h>
18
19 #include <linux/nfsd/syscall.h>
20 #include <net/ipv6.h>
21
22 #include "nfsd.h"
23 #include "nfsfh.h"
24
25 #define NFSDDBG_FACILITY NFSDDBG_EXPORT
26
27 typedef struct auth_domain svc_client;
28 typedef struct svc_export svc_export;
29
30 static void exp_do_unexport(svc_export *unexp);
31 static int exp_verify_string(char *cp, int max);
32
33 /*
34 * We have two caches.
35 * One maps client+vfsmnt+dentry to export options - the export map
36 * The other maps client+filehandle-fragment to export options. - the expkey map
37 *
38 * The export options are actually stored in the first map, and the
39 * second map contains a reference to the entry in the first map.
40 */
41
42 #define EXPKEY_HASHBITS 8
43 #define EXPKEY_HASHMAX (1 << EXPKEY_HASHBITS)
44 #define EXPKEY_HASHMASK (EXPKEY_HASHMAX -1)
45 static struct cache_head *expkey_table[EXPKEY_HASHMAX];
46
47 static void expkey_put(struct kref *ref)
48 {
49 struct svc_expkey *key = container_of(ref, struct svc_expkey, h.ref);
50
51 if (test_bit(CACHE_VALID, &key->h.flags) &&
52 !test_bit(CACHE_NEGATIVE, &key->h.flags))
53 path_put(&key->ek_path);
54 auth_domain_put(key->ek_client);
55 kfree(key);
56 }
57
58 static void expkey_request(struct cache_detail *cd,
59 struct cache_head *h,
60 char **bpp, int *blen)
61 {
62 /* client fsidtype \xfsid */
63 struct svc_expkey *ek = container_of(h, struct svc_expkey, h);
64 char type[5];
65
66 qword_add(bpp, blen, ek->ek_client->name);
67 snprintf(type, 5, "%d", ek->ek_fsidtype);
68 qword_add(bpp, blen, type);
69 qword_addhex(bpp, blen, (char*)ek->ek_fsid, key_len(ek->ek_fsidtype));
70 (*bpp)[-1] = '\n';
71 }
72
73 static int expkey_upcall(struct cache_detail *cd, struct cache_head *h)
74 {
75 return sunrpc_cache_pipe_upcall(cd, h, expkey_request);
76 }
77
78 static struct svc_expkey *svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old);
79 static struct svc_expkey *svc_expkey_lookup(struct svc_expkey *);
80 static struct cache_detail svc_expkey_cache;
81
82 static int expkey_parse(struct cache_detail *cd, char *mesg, int mlen)
83 {
84 /* client fsidtype fsid [path] */
85 char *buf;
86 int len;
87 struct auth_domain *dom = NULL;
88 int err;
89 int fsidtype;
90 char *ep;
91 struct svc_expkey key;
92 struct svc_expkey *ek = NULL;
93
94 if (mesg[mlen-1] != '\n')
95 return -EINVAL;
96 mesg[mlen-1] = 0;
97
98 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
99 err = -ENOMEM;
100 if (!buf)
101 goto out;
102
103 err = -EINVAL;
104 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
105 goto out;
106
107 err = -ENOENT;
108 dom = auth_domain_find(buf);
109 if (!dom)
110 goto out;
111 dprintk("found domain %s\n", buf);
112
113 err = -EINVAL;
114 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
115 goto out;
116 fsidtype = simple_strtoul(buf, &ep, 10);
117 if (*ep)
118 goto out;
119 dprintk("found fsidtype %d\n", fsidtype);
120 if (key_len(fsidtype)==0) /* invalid type */
121 goto out;
122 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
123 goto out;
124 dprintk("found fsid length %d\n", len);
125 if (len != key_len(fsidtype))
126 goto out;
127
128 /* OK, we seem to have a valid key */
129 key.h.flags = 0;
130 key.h.expiry_time = get_expiry(&mesg);
131 if (key.h.expiry_time == 0)
132 goto out;
133
134 key.ek_client = dom;
135 key.ek_fsidtype = fsidtype;
136 memcpy(key.ek_fsid, buf, len);
137
138 ek = svc_expkey_lookup(&key);
139 err = -ENOMEM;
140 if (!ek)
141 goto out;
142
143 /* now we want a pathname, or empty meaning NEGATIVE */
144 err = -EINVAL;
145 len = qword_get(&mesg, buf, PAGE_SIZE);
146 if (len < 0)
147 goto out;
148 dprintk("Path seems to be <%s>\n", buf);
149 err = 0;
150 if (len == 0) {
151 set_bit(CACHE_NEGATIVE, &key.h.flags);
152 ek = svc_expkey_update(&key, ek);
153 if (!ek)
154 err = -ENOMEM;
155 } else {
156 err = kern_path(buf, 0, &key.ek_path);
157 if (err)
158 goto out;
159
160 dprintk("Found the path %s\n", buf);
161
162 ek = svc_expkey_update(&key, ek);
163 if (!ek)
164 err = -ENOMEM;
165 path_put(&key.ek_path);
166 }
167 cache_flush();
168 out:
169 if (ek)
170 cache_put(&ek->h, &svc_expkey_cache);
171 if (dom)
172 auth_domain_put(dom);
173 kfree(buf);
174 return err;
175 }
176
177 static int expkey_show(struct seq_file *m,
178 struct cache_detail *cd,
179 struct cache_head *h)
180 {
181 struct svc_expkey *ek ;
182 int i;
183
184 if (h ==NULL) {
185 seq_puts(m, "#domain fsidtype fsid [path]\n");
186 return 0;
187 }
188 ek = container_of(h, struct svc_expkey, h);
189 seq_printf(m, "%s %d 0x", ek->ek_client->name,
190 ek->ek_fsidtype);
191 for (i=0; i < key_len(ek->ek_fsidtype)/4; i++)
192 seq_printf(m, "%08x", ek->ek_fsid[i]);
193 if (test_bit(CACHE_VALID, &h->flags) &&
194 !test_bit(CACHE_NEGATIVE, &h->flags)) {
195 seq_printf(m, " ");
196 seq_path(m, &ek->ek_path, "\\ \t\n");
197 }
198 seq_printf(m, "\n");
199 return 0;
200 }
201
202 static inline int expkey_match (struct cache_head *a, struct cache_head *b)
203 {
204 struct svc_expkey *orig = container_of(a, struct svc_expkey, h);
205 struct svc_expkey *new = container_of(b, struct svc_expkey, h);
206
207 if (orig->ek_fsidtype != new->ek_fsidtype ||
208 orig->ek_client != new->ek_client ||
209 memcmp(orig->ek_fsid, new->ek_fsid, key_len(orig->ek_fsidtype)) != 0)
210 return 0;
211 return 1;
212 }
213
214 static inline void expkey_init(struct cache_head *cnew,
215 struct cache_head *citem)
216 {
217 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
218 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
219
220 kref_get(&item->ek_client->ref);
221 new->ek_client = item->ek_client;
222 new->ek_fsidtype = item->ek_fsidtype;
223
224 memcpy(new->ek_fsid, item->ek_fsid, sizeof(new->ek_fsid));
225 }
226
227 static inline void expkey_update(struct cache_head *cnew,
228 struct cache_head *citem)
229 {
230 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
231 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
232
233 new->ek_path = item->ek_path;
234 path_get(&item->ek_path);
235 }
236
237 static struct cache_head *expkey_alloc(void)
238 {
239 struct svc_expkey *i = kmalloc(sizeof(*i), GFP_KERNEL);
240 if (i)
241 return &i->h;
242 else
243 return NULL;
244 }
245
246 static struct cache_detail svc_expkey_cache = {
247 .owner = THIS_MODULE,
248 .hash_size = EXPKEY_HASHMAX,
249 .hash_table = expkey_table,
250 .name = "nfsd.fh",
251 .cache_put = expkey_put,
252 .cache_upcall = expkey_upcall,
253 .cache_parse = expkey_parse,
254 .cache_show = expkey_show,
255 .match = expkey_match,
256 .init = expkey_init,
257 .update = expkey_update,
258 .alloc = expkey_alloc,
259 };
260
261 static struct svc_expkey *
262 svc_expkey_lookup(struct svc_expkey *item)
263 {
264 struct cache_head *ch;
265 int hash = item->ek_fsidtype;
266 char * cp = (char*)item->ek_fsid;
267 int len = key_len(item->ek_fsidtype);
268
269 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
270 hash ^= hash_ptr(item->ek_client, EXPKEY_HASHBITS);
271 hash &= EXPKEY_HASHMASK;
272
273 ch = sunrpc_cache_lookup(&svc_expkey_cache, &item->h,
274 hash);
275 if (ch)
276 return container_of(ch, struct svc_expkey, h);
277 else
278 return NULL;
279 }
280
281 static struct svc_expkey *
282 svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old)
283 {
284 struct cache_head *ch;
285 int hash = new->ek_fsidtype;
286 char * cp = (char*)new->ek_fsid;
287 int len = key_len(new->ek_fsidtype);
288
289 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
290 hash ^= hash_ptr(new->ek_client, EXPKEY_HASHBITS);
291 hash &= EXPKEY_HASHMASK;
292
293 ch = sunrpc_cache_update(&svc_expkey_cache, &new->h,
294 &old->h, hash);
295 if (ch)
296 return container_of(ch, struct svc_expkey, h);
297 else
298 return NULL;
299 }
300
301
302 #define EXPORT_HASHBITS 8
303 #define EXPORT_HASHMAX (1<< EXPORT_HASHBITS)
304 #define EXPORT_HASHMASK (EXPORT_HASHMAX -1)
305
306 static struct cache_head *export_table[EXPORT_HASHMAX];
307
308 static void nfsd4_fslocs_free(struct nfsd4_fs_locations *fsloc)
309 {
310 int i;
311
312 for (i = 0; i < fsloc->locations_count; i++) {
313 kfree(fsloc->locations[i].path);
314 kfree(fsloc->locations[i].hosts);
315 }
316 kfree(fsloc->locations);
317 }
318
319 static void svc_export_put(struct kref *ref)
320 {
321 struct svc_export *exp = container_of(ref, struct svc_export, h.ref);
322 path_put(&exp->ex_path);
323 auth_domain_put(exp->ex_client);
324 kfree(exp->ex_pathname);
325 nfsd4_fslocs_free(&exp->ex_fslocs);
326 kfree(exp);
327 }
328
329 static void svc_export_request(struct cache_detail *cd,
330 struct cache_head *h,
331 char **bpp, int *blen)
332 {
333 /* client path */
334 struct svc_export *exp = container_of(h, struct svc_export, h);
335 char *pth;
336
337 qword_add(bpp, blen, exp->ex_client->name);
338 pth = d_path(&exp->ex_path, *bpp, *blen);
339 if (IS_ERR(pth)) {
340 /* is this correct? */
341 (*bpp)[0] = '\n';
342 return;
343 }
344 qword_add(bpp, blen, pth);
345 (*bpp)[-1] = '\n';
346 }
347
348 static int svc_export_upcall(struct cache_detail *cd, struct cache_head *h)
349 {
350 return sunrpc_cache_pipe_upcall(cd, h, svc_export_request);
351 }
352
353 static struct svc_export *svc_export_update(struct svc_export *new,
354 struct svc_export *old);
355 static struct svc_export *svc_export_lookup(struct svc_export *);
356
357 static int check_export(struct inode *inode, int *flags, unsigned char *uuid)
358 {
359
360 /*
361 * We currently export only dirs, regular files, and (for v4
362 * pseudoroot) symlinks.
363 */
364 if (!S_ISDIR(inode->i_mode) &&
365 !S_ISLNK(inode->i_mode) &&
366 !S_ISREG(inode->i_mode))
367 return -ENOTDIR;
368
369 /*
370 * Mountd should never pass down a writeable V4ROOT export, but,
371 * just to make sure:
372 */
373 if (*flags & NFSEXP_V4ROOT)
374 *flags |= NFSEXP_READONLY;
375
376 /* There are two requirements on a filesystem to be exportable.
377 * 1: We must be able to identify the filesystem from a number.
378 * either a device number (so FS_REQUIRES_DEV needed)
379 * or an FSID number (so NFSEXP_FSID or ->uuid is needed).
380 * 2: We must be able to find an inode from a filehandle.
381 * This means that s_export_op must be set.
382 */
383 if (!(inode->i_sb->s_type->fs_flags & FS_REQUIRES_DEV) &&
384 !(*flags & NFSEXP_FSID) &&
385 uuid == NULL) {
386 dprintk("exp_export: export of non-dev fs without fsid\n");
387 return -EINVAL;
388 }
389
390 if (!inode->i_sb->s_export_op ||
391 !inode->i_sb->s_export_op->fh_to_dentry) {
392 dprintk("exp_export: export of invalid fs type.\n");
393 return -EINVAL;
394 }
395
396 return 0;
397
398 }
399
400 #ifdef CONFIG_NFSD_V4
401
402 static int
403 fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc)
404 {
405 int len;
406 int migrated, i, err;
407
408 /* listsize */
409 err = get_int(mesg, &fsloc->locations_count);
410 if (err)
411 return err;
412 if (fsloc->locations_count > MAX_FS_LOCATIONS)
413 return -EINVAL;
414 if (fsloc->locations_count == 0)
415 return 0;
416
417 fsloc->locations = kzalloc(fsloc->locations_count
418 * sizeof(struct nfsd4_fs_location), GFP_KERNEL);
419 if (!fsloc->locations)
420 return -ENOMEM;
421 for (i=0; i < fsloc->locations_count; i++) {
422 /* colon separated host list */
423 err = -EINVAL;
424 len = qword_get(mesg, buf, PAGE_SIZE);
425 if (len <= 0)
426 goto out_free_all;
427 err = -ENOMEM;
428 fsloc->locations[i].hosts = kstrdup(buf, GFP_KERNEL);
429 if (!fsloc->locations[i].hosts)
430 goto out_free_all;
431 err = -EINVAL;
432 /* slash separated path component list */
433 len = qword_get(mesg, buf, PAGE_SIZE);
434 if (len <= 0)
435 goto out_free_all;
436 err = -ENOMEM;
437 fsloc->locations[i].path = kstrdup(buf, GFP_KERNEL);
438 if (!fsloc->locations[i].path)
439 goto out_free_all;
440 }
441 /* migrated */
442 err = get_int(mesg, &migrated);
443 if (err)
444 goto out_free_all;
445 err = -EINVAL;
446 if (migrated < 0 || migrated > 1)
447 goto out_free_all;
448 fsloc->migrated = migrated;
449 return 0;
450 out_free_all:
451 nfsd4_fslocs_free(fsloc);
452 return err;
453 }
454
455 static int secinfo_parse(char **mesg, char *buf, struct svc_export *exp)
456 {
457 int listsize, err;
458 struct exp_flavor_info *f;
459
460 err = get_int(mesg, &listsize);
461 if (err)
462 return err;
463 if (listsize < 0 || listsize > MAX_SECINFO_LIST)
464 return -EINVAL;
465
466 for (f = exp->ex_flavors; f < exp->ex_flavors + listsize; f++) {
467 err = get_int(mesg, &f->pseudoflavor);
468 if (err)
469 return err;
470 /*
471 * XXX: It would be nice to also check whether this
472 * pseudoflavor is supported, so we can discover the
473 * problem at export time instead of when a client fails
474 * to authenticate.
475 */
476 err = get_int(mesg, &f->flags);
477 if (err)
478 return err;
479 /* Only some flags are allowed to differ between flavors: */
480 if (~NFSEXP_SECINFO_FLAGS & (f->flags ^ exp->ex_flags))
481 return -EINVAL;
482 }
483 exp->ex_nflavors = listsize;
484 return 0;
485 }
486
487 #else /* CONFIG_NFSD_V4 */
488 static inline int
489 fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc){return 0;}
490 static inline int
491 secinfo_parse(char **mesg, char *buf, struct svc_export *exp) { return 0; }
492 #endif
493
494 static int svc_export_parse(struct cache_detail *cd, char *mesg, int mlen)
495 {
496 /* client path expiry [flags anonuid anongid fsid] */
497 char *buf;
498 int len;
499 int err;
500 struct auth_domain *dom = NULL;
501 struct svc_export exp = {}, *expp;
502 int an_int;
503
504 if (mesg[mlen-1] != '\n')
505 return -EINVAL;
506 mesg[mlen-1] = 0;
507
508 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
509 if (!buf)
510 return -ENOMEM;
511
512 /* client */
513 err = -EINVAL;
514 len = qword_get(&mesg, buf, PAGE_SIZE);
515 if (len <= 0)
516 goto out;
517
518 err = -ENOENT;
519 dom = auth_domain_find(buf);
520 if (!dom)
521 goto out;
522
523 /* path */
524 err = -EINVAL;
525 if ((len = qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
526 goto out1;
527
528 err = kern_path(buf, 0, &exp.ex_path);
529 if (err)
530 goto out1;
531
532 exp.ex_client = dom;
533
534 err = -ENOMEM;
535 exp.ex_pathname = kstrdup(buf, GFP_KERNEL);
536 if (!exp.ex_pathname)
537 goto out2;
538
539 /* expiry */
540 err = -EINVAL;
541 exp.h.expiry_time = get_expiry(&mesg);
542 if (exp.h.expiry_time == 0)
543 goto out3;
544
545 /* flags */
546 err = get_int(&mesg, &an_int);
547 if (err == -ENOENT) {
548 err = 0;
549 set_bit(CACHE_NEGATIVE, &exp.h.flags);
550 } else {
551 if (err || an_int < 0)
552 goto out3;
553 exp.ex_flags= an_int;
554
555 /* anon uid */
556 err = get_int(&mesg, &an_int);
557 if (err)
558 goto out3;
559 exp.ex_anon_uid= an_int;
560
561 /* anon gid */
562 err = get_int(&mesg, &an_int);
563 if (err)
564 goto out3;
565 exp.ex_anon_gid= an_int;
566
567 /* fsid */
568 err = get_int(&mesg, &an_int);
569 if (err)
570 goto out3;
571 exp.ex_fsid = an_int;
572
573 while ((len = qword_get(&mesg, buf, PAGE_SIZE)) > 0) {
574 if (strcmp(buf, "fsloc") == 0)
575 err = fsloc_parse(&mesg, buf, &exp.ex_fslocs);
576 else if (strcmp(buf, "uuid") == 0) {
577 /* expect a 16 byte uuid encoded as \xXXXX... */
578 len = qword_get(&mesg, buf, PAGE_SIZE);
579 if (len != 16)
580 err = -EINVAL;
581 else {
582 exp.ex_uuid =
583 kmemdup(buf, 16, GFP_KERNEL);
584 if (exp.ex_uuid == NULL)
585 err = -ENOMEM;
586 }
587 } else if (strcmp(buf, "secinfo") == 0)
588 err = secinfo_parse(&mesg, buf, &exp);
589 else
590 /* quietly ignore unknown words and anything
591 * following. Newer user-space can try to set
592 * new values, then see what the result was.
593 */
594 break;
595 if (err)
596 goto out4;
597 }
598
599 err = check_export(exp.ex_path.dentry->d_inode, &exp.ex_flags,
600 exp.ex_uuid);
601 if (err)
602 goto out4;
603 }
604
605 expp = svc_export_lookup(&exp);
606 if (expp)
607 expp = svc_export_update(&exp, expp);
608 else
609 err = -ENOMEM;
610 cache_flush();
611 if (expp == NULL)
612 err = -ENOMEM;
613 else
614 exp_put(expp);
615 out4:
616 nfsd4_fslocs_free(&exp.ex_fslocs);
617 kfree(exp.ex_uuid);
618 out3:
619 kfree(exp.ex_pathname);
620 out2:
621 path_put(&exp.ex_path);
622 out1:
623 auth_domain_put(dom);
624 out:
625 kfree(buf);
626 return err;
627 }
628
629 static void exp_flags(struct seq_file *m, int flag, int fsid,
630 uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fslocs);
631 static void show_secinfo(struct seq_file *m, struct svc_export *exp);
632
633 static int svc_export_show(struct seq_file *m,
634 struct cache_detail *cd,
635 struct cache_head *h)
636 {
637 struct svc_export *exp ;
638
639 if (h ==NULL) {
640 seq_puts(m, "#path domain(flags)\n");
641 return 0;
642 }
643 exp = container_of(h, struct svc_export, h);
644 seq_path(m, &exp->ex_path, " \t\n\\");
645 seq_putc(m, '\t');
646 seq_escape(m, exp->ex_client->name, " \t\n\\");
647 seq_putc(m, '(');
648 if (test_bit(CACHE_VALID, &h->flags) &&
649 !test_bit(CACHE_NEGATIVE, &h->flags)) {
650 exp_flags(m, exp->ex_flags, exp->ex_fsid,
651 exp->ex_anon_uid, exp->ex_anon_gid, &exp->ex_fslocs);
652 if (exp->ex_uuid) {
653 int i;
654 seq_puts(m, ",uuid=");
655 for (i=0; i<16; i++) {
656 if ((i&3) == 0 && i)
657 seq_putc(m, ':');
658 seq_printf(m, "%02x", exp->ex_uuid[i]);
659 }
660 }
661 show_secinfo(m, exp);
662 }
663 seq_puts(m, ")\n");
664 return 0;
665 }
666 static int svc_export_match(struct cache_head *a, struct cache_head *b)
667 {
668 struct svc_export *orig = container_of(a, struct svc_export, h);
669 struct svc_export *new = container_of(b, struct svc_export, h);
670 return orig->ex_client == new->ex_client &&
671 orig->ex_path.dentry == new->ex_path.dentry &&
672 orig->ex_path.mnt == new->ex_path.mnt;
673 }
674
675 static void svc_export_init(struct cache_head *cnew, struct cache_head *citem)
676 {
677 struct svc_export *new = container_of(cnew, struct svc_export, h);
678 struct svc_export *item = container_of(citem, struct svc_export, h);
679
680 kref_get(&item->ex_client->ref);
681 new->ex_client = item->ex_client;
682 new->ex_path.dentry = dget(item->ex_path.dentry);
683 new->ex_path.mnt = mntget(item->ex_path.mnt);
684 new->ex_pathname = NULL;
685 new->ex_fslocs.locations = NULL;
686 new->ex_fslocs.locations_count = 0;
687 new->ex_fslocs.migrated = 0;
688 }
689
690 static void export_update(struct cache_head *cnew, struct cache_head *citem)
691 {
692 struct svc_export *new = container_of(cnew, struct svc_export, h);
693 struct svc_export *item = container_of(citem, struct svc_export, h);
694 int i;
695
696 new->ex_flags = item->ex_flags;
697 new->ex_anon_uid = item->ex_anon_uid;
698 new->ex_anon_gid = item->ex_anon_gid;
699 new->ex_fsid = item->ex_fsid;
700 new->ex_uuid = item->ex_uuid;
701 item->ex_uuid = NULL;
702 new->ex_pathname = item->ex_pathname;
703 item->ex_pathname = NULL;
704 new->ex_fslocs.locations = item->ex_fslocs.locations;
705 item->ex_fslocs.locations = NULL;
706 new->ex_fslocs.locations_count = item->ex_fslocs.locations_count;
707 item->ex_fslocs.locations_count = 0;
708 new->ex_fslocs.migrated = item->ex_fslocs.migrated;
709 item->ex_fslocs.migrated = 0;
710 new->ex_nflavors = item->ex_nflavors;
711 for (i = 0; i < MAX_SECINFO_LIST; i++) {
712 new->ex_flavors[i] = item->ex_flavors[i];
713 }
714 }
715
716 static struct cache_head *svc_export_alloc(void)
717 {
718 struct svc_export *i = kmalloc(sizeof(*i), GFP_KERNEL);
719 if (i)
720 return &i->h;
721 else
722 return NULL;
723 }
724
725 struct cache_detail svc_export_cache = {
726 .owner = THIS_MODULE,
727 .hash_size = EXPORT_HASHMAX,
728 .hash_table = export_table,
729 .name = "nfsd.export",
730 .cache_put = svc_export_put,
731 .cache_upcall = svc_export_upcall,
732 .cache_parse = svc_export_parse,
733 .cache_show = svc_export_show,
734 .match = svc_export_match,
735 .init = svc_export_init,
736 .update = export_update,
737 .alloc = svc_export_alloc,
738 };
739
740 static struct svc_export *
741 svc_export_lookup(struct svc_export *exp)
742 {
743 struct cache_head *ch;
744 int hash;
745 hash = hash_ptr(exp->ex_client, EXPORT_HASHBITS);
746 hash ^= hash_ptr(exp->ex_path.dentry, EXPORT_HASHBITS);
747 hash ^= hash_ptr(exp->ex_path.mnt, EXPORT_HASHBITS);
748
749 ch = sunrpc_cache_lookup(&svc_export_cache, &exp->h,
750 hash);
751 if (ch)
752 return container_of(ch, struct svc_export, h);
753 else
754 return NULL;
755 }
756
757 static struct svc_export *
758 svc_export_update(struct svc_export *new, struct svc_export *old)
759 {
760 struct cache_head *ch;
761 int hash;
762 hash = hash_ptr(old->ex_client, EXPORT_HASHBITS);
763 hash ^= hash_ptr(old->ex_path.dentry, EXPORT_HASHBITS);
764 hash ^= hash_ptr(old->ex_path.mnt, EXPORT_HASHBITS);
765
766 ch = sunrpc_cache_update(&svc_export_cache, &new->h,
767 &old->h,
768 hash);
769 if (ch)
770 return container_of(ch, struct svc_export, h);
771 else
772 return NULL;
773 }
774
775
776 static struct svc_expkey *
777 exp_find_key(svc_client *clp, int fsid_type, u32 *fsidv, struct cache_req *reqp)
778 {
779 struct svc_expkey key, *ek;
780 int err;
781
782 if (!clp)
783 return ERR_PTR(-ENOENT);
784
785 key.ek_client = clp;
786 key.ek_fsidtype = fsid_type;
787 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
788
789 ek = svc_expkey_lookup(&key);
790 if (ek == NULL)
791 return ERR_PTR(-ENOMEM);
792 err = cache_check(&svc_expkey_cache, &ek->h, reqp);
793 if (err)
794 return ERR_PTR(err);
795 return ek;
796 }
797
798 static int exp_set_key(svc_client *clp, int fsid_type, u32 *fsidv,
799 struct svc_export *exp)
800 {
801 struct svc_expkey key, *ek;
802
803 key.ek_client = clp;
804 key.ek_fsidtype = fsid_type;
805 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
806 key.ek_path = exp->ex_path;
807 key.h.expiry_time = NEVER;
808 key.h.flags = 0;
809
810 ek = svc_expkey_lookup(&key);
811 if (ek)
812 ek = svc_expkey_update(&key,ek);
813 if (ek) {
814 cache_put(&ek->h, &svc_expkey_cache);
815 return 0;
816 }
817 return -ENOMEM;
818 }
819
820 /*
821 * Find the client's export entry matching xdev/xino.
822 */
823 static inline struct svc_expkey *
824 exp_get_key(svc_client *clp, dev_t dev, ino_t ino)
825 {
826 u32 fsidv[3];
827
828 if (old_valid_dev(dev)) {
829 mk_fsid(FSID_DEV, fsidv, dev, ino, 0, NULL);
830 return exp_find_key(clp, FSID_DEV, fsidv, NULL);
831 }
832 mk_fsid(FSID_ENCODE_DEV, fsidv, dev, ino, 0, NULL);
833 return exp_find_key(clp, FSID_ENCODE_DEV, fsidv, NULL);
834 }
835
836 /*
837 * Find the client's export entry matching fsid
838 */
839 static inline struct svc_expkey *
840 exp_get_fsid_key(svc_client *clp, int fsid)
841 {
842 u32 fsidv[2];
843
844 mk_fsid(FSID_NUM, fsidv, 0, 0, fsid, NULL);
845
846 return exp_find_key(clp, FSID_NUM, fsidv, NULL);
847 }
848
849 static svc_export *exp_get_by_name(svc_client *clp, const struct path *path,
850 struct cache_req *reqp)
851 {
852 struct svc_export *exp, key;
853 int err;
854
855 if (!clp)
856 return ERR_PTR(-ENOENT);
857
858 key.ex_client = clp;
859 key.ex_path = *path;
860
861 exp = svc_export_lookup(&key);
862 if (exp == NULL)
863 return ERR_PTR(-ENOMEM);
864 err = cache_check(&svc_export_cache, &exp->h, reqp);
865 if (err)
866 return ERR_PTR(err);
867 return exp;
868 }
869
870 /*
871 * Find the export entry for a given dentry.
872 */
873 static struct svc_export *exp_parent(svc_client *clp, struct path *path)
874 {
875 struct dentry *saved = dget(path->dentry);
876 svc_export *exp = exp_get_by_name(clp, path, NULL);
877
878 while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(path->dentry)) {
879 struct dentry *parent = dget_parent(path->dentry);
880 dput(path->dentry);
881 path->dentry = parent;
882 exp = exp_get_by_name(clp, path, NULL);
883 }
884 dput(path->dentry);
885 path->dentry = saved;
886 return exp;
887 }
888
889 /*
890 * Hashtable locking. Write locks are placed only by user processes
891 * wanting to modify export information.
892 * Write locking only done in this file. Read locking
893 * needed externally.
894 */
895
896 static DECLARE_RWSEM(hash_sem);
897
898 void
899 exp_readlock(void)
900 {
901 down_read(&hash_sem);
902 }
903
904 static inline void
905 exp_writelock(void)
906 {
907 down_write(&hash_sem);
908 }
909
910 void
911 exp_readunlock(void)
912 {
913 up_read(&hash_sem);
914 }
915
916 static inline void
917 exp_writeunlock(void)
918 {
919 up_write(&hash_sem);
920 }
921
922 static void exp_fsid_unhash(struct svc_export *exp)
923 {
924 struct svc_expkey *ek;
925
926 if ((exp->ex_flags & NFSEXP_FSID) == 0)
927 return;
928
929 ek = exp_get_fsid_key(exp->ex_client, exp->ex_fsid);
930 if (!IS_ERR(ek)) {
931 ek->h.expiry_time = get_seconds()-1;
932 cache_put(&ek->h, &svc_expkey_cache);
933 }
934 svc_expkey_cache.nextcheck = get_seconds();
935 }
936
937 static int exp_fsid_hash(svc_client *clp, struct svc_export *exp)
938 {
939 u32 fsid[2];
940
941 if ((exp->ex_flags & NFSEXP_FSID) == 0)
942 return 0;
943
944 mk_fsid(FSID_NUM, fsid, 0, 0, exp->ex_fsid, NULL);
945 return exp_set_key(clp, FSID_NUM, fsid, exp);
946 }
947
948 static int exp_hash(struct auth_domain *clp, struct svc_export *exp)
949 {
950 u32 fsid[2];
951 struct inode *inode = exp->ex_path.dentry->d_inode;
952 dev_t dev = inode->i_sb->s_dev;
953
954 if (old_valid_dev(dev)) {
955 mk_fsid(FSID_DEV, fsid, dev, inode->i_ino, 0, NULL);
956 return exp_set_key(clp, FSID_DEV, fsid, exp);
957 }
958 mk_fsid(FSID_ENCODE_DEV, fsid, dev, inode->i_ino, 0, NULL);
959 return exp_set_key(clp, FSID_ENCODE_DEV, fsid, exp);
960 }
961
962 static void exp_unhash(struct svc_export *exp)
963 {
964 struct svc_expkey *ek;
965 struct inode *inode = exp->ex_path.dentry->d_inode;
966
967 ek = exp_get_key(exp->ex_client, inode->i_sb->s_dev, inode->i_ino);
968 if (!IS_ERR(ek)) {
969 ek->h.expiry_time = get_seconds()-1;
970 cache_put(&ek->h, &svc_expkey_cache);
971 }
972 svc_expkey_cache.nextcheck = get_seconds();
973 }
974
975 /*
976 * Export a file system.
977 */
978 int
979 exp_export(struct nfsctl_export *nxp)
980 {
981 svc_client *clp;
982 struct svc_export *exp = NULL;
983 struct svc_export new;
984 struct svc_expkey *fsid_key = NULL;
985 struct path path;
986 int err;
987
988 /* Consistency check */
989 err = -EINVAL;
990 if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
991 !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
992 goto out;
993
994 dprintk("exp_export called for %s:%s (%x/%ld fl %x).\n",
995 nxp->ex_client, nxp->ex_path,
996 (unsigned)nxp->ex_dev, (long)nxp->ex_ino,
997 nxp->ex_flags);
998
999 /* Try to lock the export table for update */
1000 exp_writelock();
1001
1002 /* Look up client info */
1003 if (!(clp = auth_domain_find(nxp->ex_client)))
1004 goto out_unlock;
1005
1006
1007 /* Look up the dentry */
1008 err = kern_path(nxp->ex_path, 0, &path);
1009 if (err)
1010 goto out_put_clp;
1011 err = -EINVAL;
1012
1013 exp = exp_get_by_name(clp, &path, NULL);
1014
1015 memset(&new, 0, sizeof(new));
1016
1017 /* must make sure there won't be an ex_fsid clash */
1018 if ((nxp->ex_flags & NFSEXP_FSID) &&
1019 (!IS_ERR(fsid_key = exp_get_fsid_key(clp, nxp->ex_dev))) &&
1020 fsid_key->ek_path.mnt &&
1021 (fsid_key->ek_path.mnt != path.mnt ||
1022 fsid_key->ek_path.dentry != path.dentry))
1023 goto finish;
1024
1025 if (!IS_ERR(exp)) {
1026 /* just a flags/id/fsid update */
1027
1028 exp_fsid_unhash(exp);
1029 exp->ex_flags = nxp->ex_flags;
1030 exp->ex_anon_uid = nxp->ex_anon_uid;
1031 exp->ex_anon_gid = nxp->ex_anon_gid;
1032 exp->ex_fsid = nxp->ex_dev;
1033
1034 err = exp_fsid_hash(clp, exp);
1035 goto finish;
1036 }
1037
1038 err = check_export(path.dentry->d_inode, &nxp->ex_flags, NULL);
1039 if (err) goto finish;
1040
1041 err = -ENOMEM;
1042
1043 dprintk("nfsd: creating export entry %p for client %p\n", exp, clp);
1044
1045 new.h.expiry_time = NEVER;
1046 new.h.flags = 0;
1047 new.ex_pathname = kstrdup(nxp->ex_path, GFP_KERNEL);
1048 if (!new.ex_pathname)
1049 goto finish;
1050 new.ex_client = clp;
1051 new.ex_path = path;
1052 new.ex_flags = nxp->ex_flags;
1053 new.ex_anon_uid = nxp->ex_anon_uid;
1054 new.ex_anon_gid = nxp->ex_anon_gid;
1055 new.ex_fsid = nxp->ex_dev;
1056
1057 exp = svc_export_lookup(&new);
1058 if (exp)
1059 exp = svc_export_update(&new, exp);
1060
1061 if (!exp)
1062 goto finish;
1063
1064 if (exp_hash(clp, exp) ||
1065 exp_fsid_hash(clp, exp)) {
1066 /* failed to create at least one index */
1067 exp_do_unexport(exp);
1068 cache_flush();
1069 } else
1070 err = 0;
1071 finish:
1072 kfree(new.ex_pathname);
1073 if (exp)
1074 exp_put(exp);
1075 if (fsid_key && !IS_ERR(fsid_key))
1076 cache_put(&fsid_key->h, &svc_expkey_cache);
1077 path_put(&path);
1078 out_put_clp:
1079 auth_domain_put(clp);
1080 out_unlock:
1081 exp_writeunlock();
1082 out:
1083 return err;
1084 }
1085
1086 /*
1087 * Unexport a file system. The export entry has already
1088 * been removed from the client's list of exported fs's.
1089 */
1090 static void
1091 exp_do_unexport(svc_export *unexp)
1092 {
1093 unexp->h.expiry_time = get_seconds()-1;
1094 svc_export_cache.nextcheck = get_seconds();
1095 exp_unhash(unexp);
1096 exp_fsid_unhash(unexp);
1097 }
1098
1099
1100 /*
1101 * unexport syscall.
1102 */
1103 int
1104 exp_unexport(struct nfsctl_export *nxp)
1105 {
1106 struct auth_domain *dom;
1107 svc_export *exp;
1108 struct path path;
1109 int err;
1110
1111 /* Consistency check */
1112 if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
1113 !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
1114 return -EINVAL;
1115
1116 exp_writelock();
1117
1118 err = -EINVAL;
1119 dom = auth_domain_find(nxp->ex_client);
1120 if (!dom) {
1121 dprintk("nfsd: unexport couldn't find %s\n", nxp->ex_client);
1122 goto out_unlock;
1123 }
1124
1125 err = kern_path(nxp->ex_path, 0, &path);
1126 if (err)
1127 goto out_domain;
1128
1129 err = -EINVAL;
1130 exp = exp_get_by_name(dom, &path, NULL);
1131 path_put(&path);
1132 if (IS_ERR(exp))
1133 goto out_domain;
1134
1135 exp_do_unexport(exp);
1136 exp_put(exp);
1137 err = 0;
1138
1139 out_domain:
1140 auth_domain_put(dom);
1141 cache_flush();
1142 out_unlock:
1143 exp_writeunlock();
1144 return err;
1145 }
1146
1147 /*
1148 * Obtain the root fh on behalf of a client.
1149 * This could be done in user space, but I feel that it adds some safety
1150 * since its harder to fool a kernel module than a user space program.
1151 */
1152 int
1153 exp_rootfh(svc_client *clp, char *name, struct knfsd_fh *f, int maxsize)
1154 {
1155 struct svc_export *exp;
1156 struct path path;
1157 struct inode *inode;
1158 struct svc_fh fh;
1159 int err;
1160
1161 err = -EPERM;
1162 /* NB: we probably ought to check that it's NUL-terminated */
1163 if (kern_path(name, 0, &path)) {
1164 printk("nfsd: exp_rootfh path not found %s", name);
1165 return err;
1166 }
1167 inode = path.dentry->d_inode;
1168
1169 dprintk("nfsd: exp_rootfh(%s [%p] %s:%s/%ld)\n",
1170 name, path.dentry, clp->name,
1171 inode->i_sb->s_id, inode->i_ino);
1172 exp = exp_parent(clp, &path);
1173 if (IS_ERR(exp)) {
1174 err = PTR_ERR(exp);
1175 goto out;
1176 }
1177
1178 /*
1179 * fh must be initialized before calling fh_compose
1180 */
1181 fh_init(&fh, maxsize);
1182 if (fh_compose(&fh, exp, path.dentry, NULL))
1183 err = -EINVAL;
1184 else
1185 err = 0;
1186 memcpy(f, &fh.fh_handle, sizeof(struct knfsd_fh));
1187 fh_put(&fh);
1188 exp_put(exp);
1189 out:
1190 path_put(&path);
1191 return err;
1192 }
1193
1194 static struct svc_export *exp_find(struct auth_domain *clp, int fsid_type,
1195 u32 *fsidv, struct cache_req *reqp)
1196 {
1197 struct svc_export *exp;
1198 struct svc_expkey *ek = exp_find_key(clp, fsid_type, fsidv, reqp);
1199 if (IS_ERR(ek))
1200 return ERR_CAST(ek);
1201
1202 exp = exp_get_by_name(clp, &ek->ek_path, reqp);
1203 cache_put(&ek->h, &svc_expkey_cache);
1204
1205 if (IS_ERR(exp))
1206 return ERR_CAST(exp);
1207 return exp;
1208 }
1209
1210 __be32 check_nfsd_access(struct svc_export *exp, struct svc_rqst *rqstp)
1211 {
1212 struct exp_flavor_info *f;
1213 struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1214
1215 /* legacy gss-only clients are always OK: */
1216 if (exp->ex_client == rqstp->rq_gssclient)
1217 return 0;
1218 /* ip-address based client; check sec= export option: */
1219 for (f = exp->ex_flavors; f < end; f++) {
1220 if (f->pseudoflavor == rqstp->rq_flavor)
1221 return 0;
1222 }
1223 /* defaults in absence of sec= options: */
1224 if (exp->ex_nflavors == 0) {
1225 if (rqstp->rq_flavor == RPC_AUTH_NULL ||
1226 rqstp->rq_flavor == RPC_AUTH_UNIX)
1227 return 0;
1228 }
1229 return nfserr_wrongsec;
1230 }
1231
1232 /*
1233 * Uses rq_client and rq_gssclient to find an export; uses rq_client (an
1234 * auth_unix client) if it's available and has secinfo information;
1235 * otherwise, will try to use rq_gssclient.
1236 *
1237 * Called from functions that handle requests; functions that do work on
1238 * behalf of mountd are passed a single client name to use, and should
1239 * use exp_get_by_name() or exp_find().
1240 */
1241 struct svc_export *
1242 rqst_exp_get_by_name(struct svc_rqst *rqstp, struct path *path)
1243 {
1244 struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
1245
1246 if (rqstp->rq_client == NULL)
1247 goto gss;
1248
1249 /* First try the auth_unix client: */
1250 exp = exp_get_by_name(rqstp->rq_client, path, &rqstp->rq_chandle);
1251 if (PTR_ERR(exp) == -ENOENT)
1252 goto gss;
1253 if (IS_ERR(exp))
1254 return exp;
1255 /* If it has secinfo, assume there are no gss/... clients */
1256 if (exp->ex_nflavors > 0)
1257 return exp;
1258 gss:
1259 /* Otherwise, try falling back on gss client */
1260 if (rqstp->rq_gssclient == NULL)
1261 return exp;
1262 gssexp = exp_get_by_name(rqstp->rq_gssclient, path, &rqstp->rq_chandle);
1263 if (PTR_ERR(gssexp) == -ENOENT)
1264 return exp;
1265 if (!IS_ERR(exp))
1266 exp_put(exp);
1267 return gssexp;
1268 }
1269
1270 struct svc_export *
1271 rqst_exp_find(struct svc_rqst *rqstp, int fsid_type, u32 *fsidv)
1272 {
1273 struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
1274
1275 if (rqstp->rq_client == NULL)
1276 goto gss;
1277
1278 /* First try the auth_unix client: */
1279 exp = exp_find(rqstp->rq_client, fsid_type, fsidv, &rqstp->rq_chandle);
1280 if (PTR_ERR(exp) == -ENOENT)
1281 goto gss;
1282 if (IS_ERR(exp))
1283 return exp;
1284 /* If it has secinfo, assume there are no gss/... clients */
1285 if (exp->ex_nflavors > 0)
1286 return exp;
1287 gss:
1288 /* Otherwise, try falling back on gss client */
1289 if (rqstp->rq_gssclient == NULL)
1290 return exp;
1291 gssexp = exp_find(rqstp->rq_gssclient, fsid_type, fsidv,
1292 &rqstp->rq_chandle);
1293 if (PTR_ERR(gssexp) == -ENOENT)
1294 return exp;
1295 if (!IS_ERR(exp))
1296 exp_put(exp);
1297 return gssexp;
1298 }
1299
1300 struct svc_export *
1301 rqst_exp_parent(struct svc_rqst *rqstp, struct path *path)
1302 {
1303 struct dentry *saved = dget(path->dentry);
1304 struct svc_export *exp = rqst_exp_get_by_name(rqstp, path);
1305
1306 while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(path->dentry)) {
1307 struct dentry *parent = dget_parent(path->dentry);
1308 dput(path->dentry);
1309 path->dentry = parent;
1310 exp = rqst_exp_get_by_name(rqstp, path);
1311 }
1312 dput(path->dentry);
1313 path->dentry = saved;
1314 return exp;
1315 }
1316
1317 static struct svc_export *find_fsidzero_export(struct svc_rqst *rqstp)
1318 {
1319 struct svc_export *exp;
1320 u32 fsidv[2];
1321
1322 mk_fsid(FSID_NUM, fsidv, 0, 0, 0, NULL);
1323
1324 exp = rqst_exp_find(rqstp, FSID_NUM, fsidv);
1325 /*
1326 * We shouldn't have accepting an nfsv4 request at all if we
1327 * don't have a pseudoexport!:
1328 */
1329 if (IS_ERR(exp) && PTR_ERR(exp) == -ENOENT)
1330 exp = ERR_PTR(-ESERVERFAULT);
1331 return exp;
1332 }
1333
1334 /*
1335 * Called when we need the filehandle for the root of the pseudofs,
1336 * for a given NFSv4 client. The root is defined to be the
1337 * export point with fsid==0
1338 */
1339 __be32
1340 exp_pseudoroot(struct svc_rqst *rqstp, struct svc_fh *fhp)
1341 {
1342 struct svc_export *exp;
1343 __be32 rv;
1344
1345 exp = find_fsidzero_export(rqstp);
1346 if (IS_ERR(exp))
1347 return nfserrno(PTR_ERR(exp));
1348 rv = fh_compose(fhp, exp, exp->ex_path.dentry, NULL);
1349 if (rv)
1350 goto out;
1351 rv = check_nfsd_access(exp, rqstp);
1352 if (rv)
1353 fh_put(fhp);
1354 out:
1355 exp_put(exp);
1356 return rv;
1357 }
1358
1359 /* Iterator */
1360
1361 static void *e_start(struct seq_file *m, loff_t *pos)
1362 __acquires(svc_export_cache.hash_lock)
1363 {
1364 loff_t n = *pos;
1365 unsigned hash, export;
1366 struct cache_head *ch;
1367
1368 exp_readlock();
1369 read_lock(&svc_export_cache.hash_lock);
1370 if (!n--)
1371 return SEQ_START_TOKEN;
1372 hash = n >> 32;
1373 export = n & ((1LL<<32) - 1);
1374
1375
1376 for (ch=export_table[hash]; ch; ch=ch->next)
1377 if (!export--)
1378 return ch;
1379 n &= ~((1LL<<32) - 1);
1380 do {
1381 hash++;
1382 n += 1LL<<32;
1383 } while(hash < EXPORT_HASHMAX && export_table[hash]==NULL);
1384 if (hash >= EXPORT_HASHMAX)
1385 return NULL;
1386 *pos = n+1;
1387 return export_table[hash];
1388 }
1389
1390 static void *e_next(struct seq_file *m, void *p, loff_t *pos)
1391 {
1392 struct cache_head *ch = p;
1393 int hash = (*pos >> 32);
1394
1395 if (p == SEQ_START_TOKEN)
1396 hash = 0;
1397 else if (ch->next == NULL) {
1398 hash++;
1399 *pos += 1LL<<32;
1400 } else {
1401 ++*pos;
1402 return ch->next;
1403 }
1404 *pos &= ~((1LL<<32) - 1);
1405 while (hash < EXPORT_HASHMAX && export_table[hash] == NULL) {
1406 hash++;
1407 *pos += 1LL<<32;
1408 }
1409 if (hash >= EXPORT_HASHMAX)
1410 return NULL;
1411 ++*pos;
1412 return export_table[hash];
1413 }
1414
1415 static void e_stop(struct seq_file *m, void *p)
1416 __releases(svc_export_cache.hash_lock)
1417 {
1418 read_unlock(&svc_export_cache.hash_lock);
1419 exp_readunlock();
1420 }
1421
1422 static struct flags {
1423 int flag;
1424 char *name[2];
1425 } expflags[] = {
1426 { NFSEXP_READONLY, {"ro", "rw"}},
1427 { NFSEXP_INSECURE_PORT, {"insecure", ""}},
1428 { NFSEXP_ROOTSQUASH, {"root_squash", "no_root_squash"}},
1429 { NFSEXP_ALLSQUASH, {"all_squash", ""}},
1430 { NFSEXP_ASYNC, {"async", "sync"}},
1431 { NFSEXP_GATHERED_WRITES, {"wdelay", "no_wdelay"}},
1432 { NFSEXP_NOHIDE, {"nohide", ""}},
1433 { NFSEXP_CROSSMOUNT, {"crossmnt", ""}},
1434 { NFSEXP_NOSUBTREECHECK, {"no_subtree_check", ""}},
1435 { NFSEXP_NOAUTHNLM, {"insecure_locks", ""}},
1436 { NFSEXP_V4ROOT, {"v4root", ""}},
1437 #ifdef MSNFS
1438 { NFSEXP_MSNFS, {"msnfs", ""}},
1439 #endif
1440 { 0, {"", ""}}
1441 };
1442
1443 static void show_expflags(struct seq_file *m, int flags, int mask)
1444 {
1445 struct flags *flg;
1446 int state, first = 0;
1447
1448 for (flg = expflags; flg->flag; flg++) {
1449 if (flg->flag & ~mask)
1450 continue;
1451 state = (flg->flag & flags) ? 0 : 1;
1452 if (*flg->name[state])
1453 seq_printf(m, "%s%s", first++?",":"", flg->name[state]);
1454 }
1455 }
1456
1457 static void show_secinfo_flags(struct seq_file *m, int flags)
1458 {
1459 seq_printf(m, ",");
1460 show_expflags(m, flags, NFSEXP_SECINFO_FLAGS);
1461 }
1462
1463 static void show_secinfo(struct seq_file *m, struct svc_export *exp)
1464 {
1465 struct exp_flavor_info *f;
1466 struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1467 int lastflags = 0, first = 0;
1468
1469 if (exp->ex_nflavors == 0)
1470 return;
1471 for (f = exp->ex_flavors; f < end; f++) {
1472 if (first || f->flags != lastflags) {
1473 if (!first)
1474 show_secinfo_flags(m, lastflags);
1475 seq_printf(m, ",sec=%d", f->pseudoflavor);
1476 lastflags = f->flags;
1477 } else {
1478 seq_printf(m, ":%d", f->pseudoflavor);
1479 }
1480 }
1481 show_secinfo_flags(m, lastflags);
1482 }
1483
1484 static void exp_flags(struct seq_file *m, int flag, int fsid,
1485 uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fsloc)
1486 {
1487 show_expflags(m, flag, NFSEXP_ALLFLAGS);
1488 if (flag & NFSEXP_FSID)
1489 seq_printf(m, ",fsid=%d", fsid);
1490 if (anonu != (uid_t)-2 && anonu != (0x10000-2))
1491 seq_printf(m, ",anonuid=%u", anonu);
1492 if (anong != (gid_t)-2 && anong != (0x10000-2))
1493 seq_printf(m, ",anongid=%u", anong);
1494 if (fsloc && fsloc->locations_count > 0) {
1495 char *loctype = (fsloc->migrated) ? "refer" : "replicas";
1496 int i;
1497
1498 seq_printf(m, ",%s=", loctype);
1499 seq_escape(m, fsloc->locations[0].path, ",;@ \t\n\\");
1500 seq_putc(m, '@');
1501 seq_escape(m, fsloc->locations[0].hosts, ",;@ \t\n\\");
1502 for (i = 1; i < fsloc->locations_count; i++) {
1503 seq_putc(m, ';');
1504 seq_escape(m, fsloc->locations[i].path, ",;@ \t\n\\");
1505 seq_putc(m, '@');
1506 seq_escape(m, fsloc->locations[i].hosts, ",;@ \t\n\\");
1507 }
1508 }
1509 }
1510
1511 static int e_show(struct seq_file *m, void *p)
1512 {
1513 struct cache_head *cp = p;
1514 struct svc_export *exp = container_of(cp, struct svc_export, h);
1515
1516 if (p == SEQ_START_TOKEN) {
1517 seq_puts(m, "# Version 1.1\n");
1518 seq_puts(m, "# Path Client(Flags) # IPs\n");
1519 return 0;
1520 }
1521
1522 cache_get(&exp->h);
1523 if (cache_check(&svc_export_cache, &exp->h, NULL))
1524 return 0;
1525 cache_put(&exp->h, &svc_export_cache);
1526 return svc_export_show(m, &svc_export_cache, cp);
1527 }
1528
1529 const struct seq_operations nfs_exports_op = {
1530 .start = e_start,
1531 .next = e_next,
1532 .stop = e_stop,
1533 .show = e_show,
1534 };
1535
1536 /*
1537 * Add or modify a client.
1538 * Change requests may involve the list of host addresses. The list of
1539 * exports and possibly existing uid maps are left untouched.
1540 */
1541 int
1542 exp_addclient(struct nfsctl_client *ncp)
1543 {
1544 struct auth_domain *dom;
1545 int i, err;
1546 struct in6_addr addr6;
1547
1548 /* First, consistency check. */
1549 err = -EINVAL;
1550 if (! exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1551 goto out;
1552 if (ncp->cl_naddr > NFSCLNT_ADDRMAX)
1553 goto out;
1554
1555 /* Lock the hashtable */
1556 exp_writelock();
1557
1558 dom = unix_domain_find(ncp->cl_ident);
1559
1560 err = -ENOMEM;
1561 if (!dom)
1562 goto out_unlock;
1563
1564 /* Insert client into hashtable. */
1565 for (i = 0; i < ncp->cl_naddr; i++) {
1566 ipv6_addr_set_v4mapped(ncp->cl_addrlist[i].s_addr, &addr6);
1567 auth_unix_add_addr(&addr6, dom);
1568 }
1569 auth_unix_forget_old(dom);
1570 auth_domain_put(dom);
1571
1572 err = 0;
1573
1574 out_unlock:
1575 exp_writeunlock();
1576 out:
1577 return err;
1578 }
1579
1580 /*
1581 * Delete a client given an identifier.
1582 */
1583 int
1584 exp_delclient(struct nfsctl_client *ncp)
1585 {
1586 int err;
1587 struct auth_domain *dom;
1588
1589 err = -EINVAL;
1590 if (!exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1591 goto out;
1592
1593 /* Lock the hashtable */
1594 exp_writelock();
1595
1596 dom = auth_domain_find(ncp->cl_ident);
1597 /* just make sure that no addresses work
1598 * and that it will expire soon
1599 */
1600 if (dom) {
1601 err = auth_unix_forget_old(dom);
1602 auth_domain_put(dom);
1603 }
1604
1605 exp_writeunlock();
1606 out:
1607 return err;
1608 }
1609
1610 /*
1611 * Verify that string is non-empty and does not exceed max length.
1612 */
1613 static int
1614 exp_verify_string(char *cp, int max)
1615 {
1616 int i;
1617
1618 for (i = 0; i < max; i++)
1619 if (!cp[i])
1620 return i;
1621 cp[i] = 0;
1622 printk(KERN_NOTICE "nfsd: couldn't validate string %s\n", cp);
1623 return 0;
1624 }
1625
1626 /*
1627 * Initialize the exports module.
1628 */
1629 int
1630 nfsd_export_init(void)
1631 {
1632 int rv;
1633 dprintk("nfsd: initializing export module.\n");
1634
1635 rv = cache_register(&svc_export_cache);
1636 if (rv)
1637 return rv;
1638 rv = cache_register(&svc_expkey_cache);
1639 if (rv)
1640 cache_unregister(&svc_export_cache);
1641 return rv;
1642
1643 }
1644
1645 /*
1646 * Flush exports table - called when last nfsd thread is killed
1647 */
1648 void
1649 nfsd_export_flush(void)
1650 {
1651 exp_writelock();
1652 cache_purge(&svc_expkey_cache);
1653 cache_purge(&svc_export_cache);
1654 exp_writeunlock();
1655 }
1656
1657 /*
1658 * Shutdown the exports module.
1659 */
1660 void
1661 nfsd_export_shutdown(void)
1662 {
1663
1664 dprintk("nfsd: shutting down export module.\n");
1665
1666 exp_writelock();
1667
1668 cache_unregister(&svc_expkey_cache);
1669 cache_unregister(&svc_export_cache);
1670 svcauth_unix_purge();
1671
1672 exp_writeunlock();
1673 dprintk("nfsd: export shutdown complete.\n");
1674 }
Linus' kernel tree