search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
cifs: handle errors from coalesce_t2
[linux-2.6/linux-acpi-2.6/ibm-acpi-2.6.git] / fs / cifs / connect.c
blob0fd3855a161ab41847448f3a7cb5e9d0bc5404ad
1 /*
2 * fs/cifs/connect.c
3 *
4 * Copyright (C) International Business Machines Corp., 2002,2009
5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 */
21 #include <linux/fs.h>
22 #include <linux/net.h>
23 #include <linux/string.h>
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/slab.h>
27 #include <linux/pagemap.h>
28 #include <linux/ctype.h>
29 #include <linux/utsname.h>
30 #include <linux/mempool.h>
31 #include <linux/delay.h>
32 #include <linux/completion.h>
33 #include <linux/kthread.h>
34 #include <linux/pagevec.h>
35 #include <linux/freezer.h>
36 #include <linux/namei.h>
37 #include <asm/uaccess.h>
38 #include <asm/processor.h>
39 #include <linux/inet.h>
40 #include <net/ipv6.h>
41 #include "cifspdu.h"
42 #include "cifsglob.h"
43 #include "cifsproto.h"
44 #include "cifs_unicode.h"
45 #include "cifs_debug.h"
46 #include "cifs_fs_sb.h"
47 #include "ntlmssp.h"
48 #include "nterr.h"
49 #include "rfc1002pdu.h"
50 #include "fscache.h"
51
52 #define CIFS_PORT 445
53 #define RFC1001_PORT 139
54
55 /* SMB echo "timeout" -- FIXME: tunable? */
56 #define SMB_ECHO_INTERVAL (60 * HZ)
57
58 extern mempool_t *cifs_req_poolp;
59
60 struct smb_vol {
61 char *username;
62 char *password;
63 char *domainname;
64 char *UNC;
65 char *UNCip;
66 char *iocharset; /* local code page for mapping to and from Unicode */
67 char source_rfc1001_name[RFC1001_NAME_LEN_WITH_NULL]; /* clnt nb name */
68 char target_rfc1001_name[RFC1001_NAME_LEN_WITH_NULL]; /* srvr nb name */
69 uid_t cred_uid;
70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
74 unsigned secFlg;
75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
80 bool dynperm:1;
81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
87 bool strict_io:1; /* strict cache behavior */
88 bool remap:1; /* set to remap seven reserved chars in filenames */
89 bool posix_paths:1; /* unset to not ask for posix pathnames. */
90 bool no_linux_ext:1;
91 bool sfu_emul:1;
92 bool nullauth:1; /* attempt to authenticate with null user */
93 bool nocase:1; /* request case insensitive filenames */
94 bool nobrl:1; /* disable sending byte range locks to srv */
95 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
96 bool seal:1; /* request transport encryption on share */
97 bool nodfs:1; /* Do not request DFS, even if available */
98 bool local_lease:1; /* check leases only on local system, not remote */
99 bool noblocksnd:1;
100 bool noautotune:1;
101 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
102 bool fsc:1; /* enable fscache */
103 bool mfsymlinks:1; /* use Minshall+French Symlinks */
104 bool multiuser:1;
105 unsigned int rsize;
106 unsigned int wsize;
107 bool sockopt_tcp_nodelay:1;
108 unsigned short int port;
109 unsigned long actimeo; /* attribute cache timeout (jiffies) */
110 char *prepath;
111 struct sockaddr_storage srcaddr; /* allow binding to a local IP */
112 struct nls_table *local_nls;
113 };
114
115 /* FIXME: should these be tunable? */
116 #define TLINK_ERROR_EXPIRE (1 * HZ)
117 #define TLINK_IDLE_EXPIRE (600 * HZ)
118
119 static int ip_connect(struct TCP_Server_Info *server);
120 static int generic_ip_connect(struct TCP_Server_Info *server);
121 static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
122 static void cifs_prune_tlinks(struct work_struct *work);
123
124 /*
125 * cifs tcp session reconnection
126 *
127 * mark tcp session as reconnecting so temporarily locked
128 * mark all smb sessions as reconnecting for tcp session
129 * reconnect tcp session
130 * wake up waiters on reconnection? - (not needed currently)
131 */
132 static int
133 cifs_reconnect(struct TCP_Server_Info *server)
134 {
135 int rc = 0;
136 struct list_head *tmp, *tmp2;
137 struct cifsSesInfo *ses;
138 struct cifsTconInfo *tcon;
139 struct mid_q_entry *mid_entry;
140
141 spin_lock(&GlobalMid_Lock);
142 if (server->tcpStatus == CifsExiting) {
143 /* the demux thread will exit normally
144 next time through the loop */
145 spin_unlock(&GlobalMid_Lock);
146 return rc;
147 } else
148 server->tcpStatus = CifsNeedReconnect;
149 spin_unlock(&GlobalMid_Lock);
150 server->maxBuf = 0;
151
152 cFYI(1, "Reconnecting tcp session");
153
154 /* before reconnecting the tcp session, mark the smb session (uid)
155 and the tid bad so they are not used until reconnected */
156 cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
157 spin_lock(&cifs_tcp_ses_lock);
158 list_for_each(tmp, &server->smb_ses_list) {
159 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
160 ses->need_reconnect = true;
161 ses->ipc_tid = 0;
162 list_for_each(tmp2, &ses->tcon_list) {
163 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
164 tcon->need_reconnect = true;
165 }
166 }
167 spin_unlock(&cifs_tcp_ses_lock);
168
169 /* do not want to be sending data on a socket we are freeing */
170 cFYI(1, "%s: tearing down socket", __func__);
171 mutex_lock(&server->srv_mutex);
172 if (server->ssocket) {
173 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
174 server->ssocket->flags);
175 kernel_sock_shutdown(server->ssocket, SHUT_WR);
176 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
177 server->ssocket->state,
178 server->ssocket->flags);
179 sock_release(server->ssocket);
180 server->ssocket = NULL;
181 }
182 server->sequence_number = 0;
183 server->session_estab = false;
184 kfree(server->session_key.response);
185 server->session_key.response = NULL;
186 server->session_key.len = 0;
187 server->lstrp = jiffies;
188 mutex_unlock(&server->srv_mutex);
189
190 /* mark submitted MIDs for retry and issue callback */
191 cFYI(1, "%s: issuing mid callbacks", __func__);
192 spin_lock(&GlobalMid_Lock);
193 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
194 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
195 if (mid_entry->midState == MID_REQUEST_SUBMITTED)
196 mid_entry->midState = MID_RETRY_NEEDED;
197 list_del_init(&mid_entry->qhead);
198 mid_entry->callback(mid_entry);
199 }
200 spin_unlock(&GlobalMid_Lock);
201
202 while ((server->tcpStatus != CifsExiting) &&
203 (server->tcpStatus != CifsGood)) {
204 try_to_freeze();
205
206 /* we should try only the port we connected to before */
207 rc = generic_ip_connect(server);
208 if (rc) {
209 cFYI(1, "reconnect error %d", rc);
210 msleep(3000);
211 } else {
212 atomic_inc(&tcpSesReconnectCount);
213 spin_lock(&GlobalMid_Lock);
214 if (server->tcpStatus != CifsExiting)
215 server->tcpStatus = CifsGood;
216 spin_unlock(&GlobalMid_Lock);
217 }
218 }
219
220 return rc;
221 }
222
223 /*
224 return codes:
225 0 not a transact2, or all data present
226 >0 transact2 with that much data missing
227 -EINVAL = invalid transact2
228
229 */
230 static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
231 {
232 struct smb_t2_rsp *pSMBt;
233 int remaining;
234 __u16 total_data_size, data_in_this_rsp;
235
236 if (pSMB->Command != SMB_COM_TRANSACTION2)
237 return 0;
238
239 /* check for plausible wct, bcc and t2 data and parm sizes */
240 /* check for parm and data offset going beyond end of smb */
241 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
242 cFYI(1, "invalid transact2 word count");
243 return -EINVAL;
244 }
245
246 pSMBt = (struct smb_t2_rsp *)pSMB;
247
248 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
249 data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
250
251 remaining = total_data_size - data_in_this_rsp;
252
253 if (remaining == 0)
254 return 0;
255 else if (remaining < 0) {
256 cFYI(1, "total data %d smaller than data in frame %d",
257 total_data_size, data_in_this_rsp);
258 return -EINVAL;
259 } else {
260 cFYI(1, "missing %d bytes from transact2, check next response",
261 remaining);
262 if (total_data_size > maxBufSize) {
263 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
264 total_data_size, maxBufSize);
265 return -EINVAL;
266 }
267 return remaining;
268 }
269 }
270
271 static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
272 {
273 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
274 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
275 char *data_area_of_target;
276 char *data_area_of_buf2;
277 int remaining;
278 unsigned int byte_count, total_in_buf;
279 __u16 total_data_size, total_in_buf2;
280
281 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
282
283 if (total_data_size !=
284 get_unaligned_le16(&pSMB2->t2_rsp.TotalDataCount))
285 cFYI(1, "total data size of primary and secondary t2 differ");
286
287 total_in_buf = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
288
289 remaining = total_data_size - total_in_buf;
290
291 if (remaining < 0)
292 return -EPROTO;
293
294 if (remaining == 0) /* nothing to do, ignore */
295 return 0;
296
297 total_in_buf2 = get_unaligned_le16(&pSMB2->t2_rsp.DataCount);
298 if (remaining < total_in_buf2) {
299 cFYI(1, "transact2 2nd response contains too much data");
300 }
301
302 /* find end of first SMB data area */
303 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
304 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
305 /* validate target area */
306
307 data_area_of_buf2 = (char *)&pSMB2->hdr.Protocol +
308 get_unaligned_le16(&pSMB2->t2_rsp.DataOffset);
309
310 data_area_of_target += total_in_buf;
311
312 /* copy second buffer into end of first buffer */
313 total_in_buf += total_in_buf2;
314 /* is the result too big for the field? */
315 if (total_in_buf > USHRT_MAX)
316 return -EPROTO;
317 put_unaligned_le16(total_in_buf, &pSMBt->t2_rsp.DataCount);
318
319 /* fix up the BCC */
320 byte_count = get_bcc_le(pTargetSMB);
321 byte_count += total_in_buf2;
322 /* is the result too big for the field? */
323 if (byte_count > USHRT_MAX)
324 return -EPROTO;
325 put_bcc_le(byte_count, pTargetSMB);
326
327 byte_count = pTargetSMB->smb_buf_length;
328 byte_count += total_in_buf2;
329 /* don't allow buffer to overflow */
330 if (byte_count > CIFSMaxBufSize)
331 return -ENOBUFS;
332 pTargetSMB->smb_buf_length = byte_count;
333
334 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
335
336 if (remaining == total_in_buf2) {
337 cFYI(1, "found the last secondary response");
338 return 0; /* we are done */
339 } else /* more responses to go */
340 return 1;
341 }
342
343 static void
344 cifs_echo_request(struct work_struct *work)
345 {
346 int rc;
347 struct TCP_Server_Info *server = container_of(work,
348 struct TCP_Server_Info, echo.work);
349
350 /*
351 * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
352 * done, which is indicated by maxBuf != 0. Also, no need to ping if
353 * we got a response recently
354 */
355 if (server->maxBuf == 0 ||
356 time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
357 goto requeue_echo;
358
359 rc = CIFSSMBEcho(server);
360 if (rc)
361 cFYI(1, "Unable to send echo request to server: %s",
362 server->hostname);
363
364 requeue_echo:
365 queue_delayed_work(system_nrt_wq, &server->echo, SMB_ECHO_INTERVAL);
366 }
367
368 static int
369 cifs_demultiplex_thread(struct TCP_Server_Info *server)
370 {
371 int length;
372 unsigned int pdu_length, total_read;
373 struct smb_hdr *smb_buffer = NULL;
374 struct smb_hdr *bigbuf = NULL;
375 struct smb_hdr *smallbuf = NULL;
376 struct msghdr smb_msg;
377 struct kvec iov;
378 struct socket *csocket = server->ssocket;
379 struct list_head *tmp, *tmp2;
380 struct task_struct *task_to_wake = NULL;
381 struct mid_q_entry *mid_entry;
382 char temp;
383 bool isLargeBuf = false;
384 bool isMultiRsp;
385 int reconnect;
386
387 current->flags |= PF_MEMALLOC;
388 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
389
390 length = atomic_inc_return(&tcpSesAllocCount);
391 if (length > 1)
392 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
393 GFP_KERNEL);
394
395 set_freezable();
396 while (server->tcpStatus != CifsExiting) {
397 if (try_to_freeze())
398 continue;
399 if (bigbuf == NULL) {
400 bigbuf = cifs_buf_get();
401 if (!bigbuf) {
402 cERROR(1, "No memory for large SMB response");
403 msleep(3000);
404 /* retry will check if exiting */
405 continue;
406 }
407 } else if (isLargeBuf) {
408 /* we are reusing a dirty large buf, clear its start */
409 memset(bigbuf, 0, sizeof(struct smb_hdr));
410 }
411
412 if (smallbuf == NULL) {
413 smallbuf = cifs_small_buf_get();
414 if (!smallbuf) {
415 cERROR(1, "No memory for SMB response");
416 msleep(1000);
417 /* retry will check if exiting */
418 continue;
419 }
420 /* beginning of smb buffer is cleared in our buf_get */
421 } else /* if existing small buf clear beginning */
422 memset(smallbuf, 0, sizeof(struct smb_hdr));
423
424 isLargeBuf = false;
425 isMultiRsp = false;
426 smb_buffer = smallbuf;
427 iov.iov_base = smb_buffer;
428 iov.iov_len = 4;
429 smb_msg.msg_control = NULL;
430 smb_msg.msg_controllen = 0;
431 pdu_length = 4; /* enough to get RFC1001 header */
432
433 incomplete_rcv:
434 if (echo_retries > 0 &&
435 time_after(jiffies, server->lstrp +
436 (echo_retries * SMB_ECHO_INTERVAL))) {
437 cERROR(1, "Server %s has not responded in %d seconds. "
438 "Reconnecting...", server->hostname,
439 (echo_retries * SMB_ECHO_INTERVAL / HZ));
440 cifs_reconnect(server);
441 csocket = server->ssocket;
442 wake_up(&server->response_q);
443 continue;
444 }
445
446 length =
447 kernel_recvmsg(csocket, &smb_msg,
448 &iov, 1, pdu_length, 0 /* BB other flags? */);
449
450 if (server->tcpStatus == CifsExiting) {
451 break;
452 } else if (server->tcpStatus == CifsNeedReconnect) {
453 cFYI(1, "Reconnect after server stopped responding");
454 cifs_reconnect(server);
455 cFYI(1, "call to reconnect done");
456 csocket = server->ssocket;
457 continue;
458 } else if (length == -ERESTARTSYS ||
459 length == -EAGAIN ||
460 length == -EINTR) {
461 msleep(1); /* minimum sleep to prevent looping
462 allowing socket to clear and app threads to set
463 tcpStatus CifsNeedReconnect if server hung */
464 if (pdu_length < 4) {
465 iov.iov_base = (4 - pdu_length) +
466 (char *)smb_buffer;
467 iov.iov_len = pdu_length;
468 smb_msg.msg_control = NULL;
469 smb_msg.msg_controllen = 0;
470 goto incomplete_rcv;
471 } else
472 continue;
473 } else if (length <= 0) {
474 cFYI(1, "Reconnect after unexpected peek error %d",
475 length);
476 cifs_reconnect(server);
477 csocket = server->ssocket;
478 wake_up(&server->response_q);
479 continue;
480 } else if (length < pdu_length) {
481 cFYI(1, "requested %d bytes but only got %d bytes",
482 pdu_length, length);
483 pdu_length -= length;
484 msleep(1);
485 goto incomplete_rcv;
486 }
487
488 /* The right amount was read from socket - 4 bytes */
489 /* so we can now interpret the length field */
490
491 /* the first byte big endian of the length field,
492 is actually not part of the length but the type
493 with the most common, zero, as regular data */
494 temp = *((char *) smb_buffer);
495
496 /* Note that FC 1001 length is big endian on the wire,
497 but we convert it here so it is always manipulated
498 as host byte order */
499 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
500 smb_buffer->smb_buf_length = pdu_length;
501
502 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
503
504 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
505 continue;
506 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
507 cFYI(1, "Good RFC 1002 session rsp");
508 continue;
509 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
510 /* we get this from Windows 98 instead of
511 an error on SMB negprot response */
512 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
513 pdu_length);
514 /* give server a second to clean up */
515 msleep(1000);
516 /* always try 445 first on reconnect since we get NACK
517 * on some if we ever connected to port 139 (the NACK
518 * is since we do not begin with RFC1001 session
519 * initialize frame)
520 */
521 cifs_set_port((struct sockaddr *)
522 &server->dstaddr, CIFS_PORT);
523 cifs_reconnect(server);
524 csocket = server->ssocket;
525 wake_up(&server->response_q);
526 continue;
527 } else if (temp != (char) 0) {
528 cERROR(1, "Unknown RFC 1002 frame");
529 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
530 length);
531 cifs_reconnect(server);
532 csocket = server->ssocket;
533 continue;
534 }
535
536 /* else we have an SMB response */
537 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
538 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
539 cERROR(1, "Invalid size SMB length %d pdu_length %d",
540 length, pdu_length+4);
541 cifs_reconnect(server);
542 csocket = server->ssocket;
543 wake_up(&server->response_q);
544 continue;
545 }
546
547 /* else length ok */
548 reconnect = 0;
549
550 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
551 isLargeBuf = true;
552 memcpy(bigbuf, smallbuf, 4);
553 smb_buffer = bigbuf;
554 }
555 length = 0;
556 iov.iov_base = 4 + (char *)smb_buffer;
557 iov.iov_len = pdu_length;
558 for (total_read = 0; total_read < pdu_length;
559 total_read += length) {
560 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
561 pdu_length - total_read, 0);
562 if (server->tcpStatus == CifsExiting) {
563 /* then will exit */
564 reconnect = 2;
565 break;
566 } else if (server->tcpStatus == CifsNeedReconnect) {
567 cifs_reconnect(server);
568 csocket = server->ssocket;
569 /* Reconnect wakes up rspns q */
570 /* Now we will reread sock */
571 reconnect = 1;
572 break;
573 } else if (length == -ERESTARTSYS ||
574 length == -EAGAIN ||
575 length == -EINTR) {
576 msleep(1); /* minimum sleep to prevent looping,
577 allowing socket to clear and app
578 threads to set tcpStatus
579 CifsNeedReconnect if server hung*/
580 length = 0;
581 continue;
582 } else if (length <= 0) {
583 cERROR(1, "Received no data, expecting %d",
584 pdu_length - total_read);
585 cifs_reconnect(server);
586 csocket = server->ssocket;
587 reconnect = 1;
588 break;
589 }
590 }
591 if (reconnect == 2)
592 break;
593 else if (reconnect == 1)
594 continue;
595
596 total_read += 4; /* account for rfc1002 hdr */
597
598 dump_smb(smb_buffer, total_read);
599
600 /*
601 * We know that we received enough to get to the MID as we
602 * checked the pdu_length earlier. Now check to see
603 * if the rest of the header is OK. We borrow the length
604 * var for the rest of the loop to avoid a new stack var.
605 *
606 * 48 bytes is enough to display the header and a little bit
607 * into the payload for debugging purposes.
608 */
609 length = checkSMB(smb_buffer, smb_buffer->Mid, total_read);
610 if (length != 0)
611 cifs_dump_mem("Bad SMB: ", smb_buffer,
612 min_t(unsigned int, total_read, 48));
613
614 mid_entry = NULL;
615 server->lstrp = jiffies;
616
617 spin_lock(&GlobalMid_Lock);
618 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
619 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
620
621 if (mid_entry->mid != smb_buffer->Mid ||
622 mid_entry->midState != MID_REQUEST_SUBMITTED ||
623 mid_entry->command != smb_buffer->Command) {
624 mid_entry = NULL;
625 continue;
626 }
627
628 if (length == 0 &&
629 check2ndT2(smb_buffer, server->maxBuf) > 0) {
630 /* We have a multipart transact2 resp */
631 isMultiRsp = true;
632 if (mid_entry->resp_buf) {
633 /* merge response - fix up 1st*/
634 length = coalesce_t2(smb_buffer,
635 mid_entry->resp_buf);
636 if (length > 0) {
637 length = 0;
638 mid_entry->multiRsp = true;
639 break;
640 } else {
641 /* all parts received or
642 * packet is malformed
643 */
644 mid_entry->multiEnd = true;
645 goto multi_t2_fnd;
646 }
647 } else {
648 if (!isLargeBuf) {
649 /*
650 * FIXME: switch to already
651 * allocated largebuf?
652 */
653 cERROR(1, "1st trans2 resp "
654 "needs bigbuf");
655 } else {
656 /* Have first buffer */
657 mid_entry->resp_buf =
658 smb_buffer;
659 mid_entry->largeBuf = true;
660 bigbuf = NULL;
661 }
662 }
663 break;
664 }
665 mid_entry->resp_buf = smb_buffer;
666 mid_entry->largeBuf = isLargeBuf;
667 multi_t2_fnd:
668 if (length == 0)
669 mid_entry->midState = MID_RESPONSE_RECEIVED;
670 else
671 mid_entry->midState = MID_RESPONSE_MALFORMED;
672 #ifdef CONFIG_CIFS_STATS2
673 mid_entry->when_received = jiffies;
674 #endif
675 list_del_init(&mid_entry->qhead);
676 mid_entry->callback(mid_entry);
677 break;
678 }
679 spin_unlock(&GlobalMid_Lock);
680
681 if (mid_entry != NULL) {
682 /* Was previous buf put in mpx struct for multi-rsp? */
683 if (!isMultiRsp) {
684 /* smb buffer will be freed by user thread */
685 if (isLargeBuf)
686 bigbuf = NULL;
687 else
688 smallbuf = NULL;
689 }
690 } else if (length != 0) {
691 /* response sanity checks failed */
692 continue;
693 } else if (!is_valid_oplock_break(smb_buffer, server) &&
694 !isMultiRsp) {
695 cERROR(1, "No task to wake, unknown frame received! "
696 "NumMids %d", atomic_read(&midCount));
697 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
698 sizeof(struct smb_hdr));
699 #ifdef CONFIG_CIFS_DEBUG2
700 cifs_dump_detail(smb_buffer);
701 cifs_dump_mids(server);
702 #endif /* CIFS_DEBUG2 */
703
704 }
705 } /* end while !EXITING */
706
707 /* take it off the list, if it's not already */
708 spin_lock(&cifs_tcp_ses_lock);
709 list_del_init(&server->tcp_ses_list);
710 spin_unlock(&cifs_tcp_ses_lock);
711
712 spin_lock(&GlobalMid_Lock);
713 server->tcpStatus = CifsExiting;
714 spin_unlock(&GlobalMid_Lock);
715 wake_up_all(&server->response_q);
716
717 /* check if we have blocked requests that need to free */
718 /* Note that cifs_max_pending is normally 50, but
719 can be set at module install time to as little as two */
720 spin_lock(&GlobalMid_Lock);
721 if (atomic_read(&server->inFlight) >= cifs_max_pending)
722 atomic_set(&server->inFlight, cifs_max_pending - 1);
723 /* We do not want to set the max_pending too low or we
724 could end up with the counter going negative */
725 spin_unlock(&GlobalMid_Lock);
726 /* Although there should not be any requests blocked on
727 this queue it can not hurt to be paranoid and try to wake up requests
728 that may haven been blocked when more than 50 at time were on the wire
729 to the same server - they now will see the session is in exit state
730 and get out of SendReceive. */
731 wake_up_all(&server->request_q);
732 /* give those requests time to exit */
733 msleep(125);
734
735 if (server->ssocket) {
736 sock_release(csocket);
737 server->ssocket = NULL;
738 }
739 /* buffer usuallly freed in free_mid - need to free it here on exit */
740 cifs_buf_release(bigbuf);
741 if (smallbuf) /* no sense logging a debug message if NULL */
742 cifs_small_buf_release(smallbuf);
743
744 if (!list_empty(&server->pending_mid_q)) {
745 spin_lock(&GlobalMid_Lock);
746 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
747 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
748 cFYI(1, "Clearing Mid 0x%x - issuing callback",
749 mid_entry->mid);
750 list_del_init(&mid_entry->qhead);
751 mid_entry->callback(mid_entry);
752 }
753 spin_unlock(&GlobalMid_Lock);
754 /* 1/8th of sec is more than enough time for them to exit */
755 msleep(125);
756 }
757
758 if (!list_empty(&server->pending_mid_q)) {
759 /* mpx threads have not exited yet give them
760 at least the smb send timeout time for long ops */
761 /* due to delays on oplock break requests, we need
762 to wait at least 45 seconds before giving up
763 on a request getting a response and going ahead
764 and killing cifsd */
765 cFYI(1, "Wait for exit from demultiplex thread");
766 msleep(46000);
767 /* if threads still have not exited they are probably never
768 coming home not much else we can do but free the memory */
769 }
770
771 kfree(server->hostname);
772 task_to_wake = xchg(&server->tsk, NULL);
773 kfree(server);
774
775 length = atomic_dec_return(&tcpSesAllocCount);
776 if (length > 0)
777 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
778 GFP_KERNEL);
779
780 /* if server->tsk was NULL then wait for a signal before exiting */
781 if (!task_to_wake) {
782 set_current_state(TASK_INTERRUPTIBLE);
783 while (!signal_pending(current)) {
784 schedule();
785 set_current_state(TASK_INTERRUPTIBLE);
786 }
787 set_current_state(TASK_RUNNING);
788 }
789
790 module_put_and_exit(0);
791 }
792
793 /* extract the host portion of the UNC string */
794 static char *
795 extract_hostname(const char *unc)
796 {
797 const char *src;
798 char *dst, *delim;
799 unsigned int len;
800
801 /* skip double chars at beginning of string */
802 /* BB: check validity of these bytes? */
803 src = unc + 2;
804
805 /* delimiter between hostname and sharename is always '\\' now */
806 delim = strchr(src, '\\');
807 if (!delim)
808 return ERR_PTR(-EINVAL);
809
810 len = delim - src;
811 dst = kmalloc((len + 1), GFP_KERNEL);
812 if (dst == NULL)
813 return ERR_PTR(-ENOMEM);
814
815 memcpy(dst, src, len);
816 dst[len] = '\0';
817
818 return dst;
819 }
820
821 static int
822 cifs_parse_mount_options(char *options, const char *devname,
823 struct smb_vol *vol)
824 {
825 char *value;
826 char *data;
827 unsigned int temp_len, i, j;
828 char separator[2];
829 short int override_uid = -1;
830 short int override_gid = -1;
831 bool uid_specified = false;
832 bool gid_specified = false;
833 char *nodename = utsname()->nodename;
834
835 separator[0] = ',';
836 separator[1] = 0;
837
838 /*
839 * does not have to be perfect mapping since field is
840 * informational, only used for servers that do not support
841 * port 445 and it can be overridden at mount time
842 */
843 memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
844 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
845 vol->source_rfc1001_name[i] = toupper(nodename[i]);
846
847 vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
848 /* null target name indicates to use *SMBSERVR default called name
849 if we end up sending RFC1001 session initialize */
850 vol->target_rfc1001_name[0] = 0;
851 vol->cred_uid = current_uid();
852 vol->linux_uid = current_uid();
853 vol->linux_gid = current_gid();
854
855 /* default to only allowing write access to owner of the mount */
856 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
857
858 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
859 /* default is always to request posix paths. */
860 vol->posix_paths = 1;
861 /* default to using server inode numbers where available */
862 vol->server_ino = 1;
863
864 vol->actimeo = CIFS_DEF_ACTIMEO;
865
866 if (!options)
867 return 1;
868
869 if (strncmp(options, "sep=", 4) == 0) {
870 if (options[4] != 0) {
871 separator[0] = options[4];
872 options += 5;
873 } else {
874 cFYI(1, "Null separator not allowed");
875 }
876 }
877
878 while ((data = strsep(&options, separator)) != NULL) {
879 if (!*data)
880 continue;
881 if ((value = strchr(data, '=')) != NULL)
882 *value++ = '\0';
883
884 /* Have to parse this before we parse for "user" */
885 if (strnicmp(data, "user_xattr", 10) == 0) {
886 vol->no_xattr = 0;
887 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
888 vol->no_xattr = 1;
889 } else if (strnicmp(data, "user", 4) == 0) {
890 if (!value) {
891 printk(KERN_WARNING
892 "CIFS: invalid or missing username\n");
893 return 1; /* needs_arg; */
894 } else if (!*value) {
895 /* null user, ie anonymous, authentication */
896 vol->nullauth = 1;
897 }
898 if (strnlen(value, 200) < 200) {
899 vol->username = value;
900 } else {
901 printk(KERN_WARNING "CIFS: username too long\n");
902 return 1;
903 }
904 } else if (strnicmp(data, "pass", 4) == 0) {
905 if (!value) {
906 vol->password = NULL;
907 continue;
908 } else if (value[0] == 0) {
909 /* check if string begins with double comma
910 since that would mean the password really
911 does start with a comma, and would not
912 indicate an empty string */
913 if (value[1] != separator[0]) {
914 vol->password = NULL;
915 continue;
916 }
917 }
918 temp_len = strlen(value);
919 /* removed password length check, NTLM passwords
920 can be arbitrarily long */
921
922 /* if comma in password, the string will be
923 prematurely null terminated. Commas in password are
924 specified across the cifs mount interface by a double
925 comma ie ,, and a comma used as in other cases ie ','
926 as a parameter delimiter/separator is single and due
927 to the strsep above is temporarily zeroed. */
928
929 /* NB: password legally can have multiple commas and
930 the only illegal character in a password is null */
931
932 if ((value[temp_len] == 0) &&
933 (value[temp_len+1] == separator[0])) {
934 /* reinsert comma */
935 value[temp_len] = separator[0];
936 temp_len += 2; /* move after second comma */
937 while (value[temp_len] != 0) {
938 if (value[temp_len] == separator[0]) {
939 if (value[temp_len+1] ==
940 separator[0]) {
941 /* skip second comma */
942 temp_len++;
943 } else {
944 /* single comma indicating start
945 of next parm */
946 break;
947 }
948 }
949 temp_len++;
950 }
951 if (value[temp_len] == 0) {
952 options = NULL;
953 } else {
954 value[temp_len] = 0;
955 /* point option to start of next parm */
956 options = value + temp_len + 1;
957 }
958 /* go from value to value + temp_len condensing
959 double commas to singles. Note that this ends up
960 allocating a few bytes too many, which is ok */
961 vol->password = kzalloc(temp_len, GFP_KERNEL);
962 if (vol->password == NULL) {
963 printk(KERN_WARNING "CIFS: no memory "
964 "for password\n");
965 return 1;
966 }
967 for (i = 0, j = 0; i < temp_len; i++, j++) {
968 vol->password[j] = value[i];
969 if (value[i] == separator[0]
970 && value[i+1] == separator[0]) {
971 /* skip second comma */
972 i++;
973 }
974 }
975 vol->password[j] = 0;
976 } else {
977 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
978 if (vol->password == NULL) {
979 printk(KERN_WARNING "CIFS: no memory "
980 "for password\n");
981 return 1;
982 }
983 strcpy(vol->password, value);
984 }
985 } else if (!strnicmp(data, "ip", 2) ||
986 !strnicmp(data, "addr", 4)) {
987 if (!value || !*value) {
988 vol->UNCip = NULL;
989 } else if (strnlen(value, INET6_ADDRSTRLEN) <
990 INET6_ADDRSTRLEN) {
991 vol->UNCip = value;
992 } else {
993 printk(KERN_WARNING "CIFS: ip address "
994 "too long\n");
995 return 1;
996 }
997 } else if (strnicmp(data, "sec", 3) == 0) {
998 if (!value || !*value) {
999 cERROR(1, "no security value specified");
1000 continue;
1001 } else if (strnicmp(value, "krb5i", 5) == 0) {
1002 vol->secFlg |= CIFSSEC_MAY_KRB5 |
1003 CIFSSEC_MUST_SIGN;
1004 } else if (strnicmp(value, "krb5p", 5) == 0) {
1005 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
1006 CIFSSEC_MAY_KRB5; */
1007 cERROR(1, "Krb5 cifs privacy not supported");
1008 return 1;
1009 } else if (strnicmp(value, "krb5", 4) == 0) {
1010 vol->secFlg |= CIFSSEC_MAY_KRB5;
1011 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
1012 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
1013 CIFSSEC_MUST_SIGN;
1014 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
1015 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
1016 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
1017 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
1018 CIFSSEC_MUST_SIGN;
1019 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
1020 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1021 } else if (strnicmp(value, "ntlmi", 5) == 0) {
1022 vol->secFlg |= CIFSSEC_MAY_NTLM |
1023 CIFSSEC_MUST_SIGN;
1024 } else if (strnicmp(value, "ntlm", 4) == 0) {
1025 /* ntlm is default so can be turned off too */
1026 vol->secFlg |= CIFSSEC_MAY_NTLM;
1027 } else if (strnicmp(value, "nontlm", 6) == 0) {
1028 /* BB is there a better way to do this? */
1029 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1030 #ifdef CONFIG_CIFS_WEAK_PW_HASH
1031 } else if (strnicmp(value, "lanman", 6) == 0) {
1032 vol->secFlg |= CIFSSEC_MAY_LANMAN;
1033 #endif
1034 } else if (strnicmp(value, "none", 4) == 0) {
1035 vol->nullauth = 1;
1036 } else {
1037 cERROR(1, "bad security option: %s", value);
1038 return 1;
1039 }
1040 } else if ((strnicmp(data, "unc", 3) == 0)
1041 || (strnicmp(data, "target", 6) == 0)
1042 || (strnicmp(data, "path", 4) == 0)) {
1043 if (!value || !*value) {
1044 printk(KERN_WARNING "CIFS: invalid path to "
1045 "network resource\n");
1046 return 1; /* needs_arg; */
1047 }
1048 if ((temp_len = strnlen(value, 300)) < 300) {
1049 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1050 if (vol->UNC == NULL)
1051 return 1;
1052 strcpy(vol->UNC, value);
1053 if (strncmp(vol->UNC, "//", 2) == 0) {
1054 vol->UNC[0] = '\\';
1055 vol->UNC[1] = '\\';
1056 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1057 printk(KERN_WARNING
1058 "CIFS: UNC Path does not begin "
1059 "with // or \\\\ \n");
1060 return 1;
1061 }
1062 } else {
1063 printk(KERN_WARNING "CIFS: UNC name too long\n");
1064 return 1;
1065 }
1066 } else if ((strnicmp(data, "domain", 3) == 0)
1067 || (strnicmp(data, "workgroup", 5) == 0)) {
1068 if (!value || !*value) {
1069 printk(KERN_WARNING "CIFS: invalid domain name\n");
1070 return 1; /* needs_arg; */
1071 }
1072 /* BB are there cases in which a comma can be valid in
1073 a domain name and need special handling? */
1074 if (strnlen(value, 256) < 256) {
1075 vol->domainname = value;
1076 cFYI(1, "Domain name set");
1077 } else {
1078 printk(KERN_WARNING "CIFS: domain name too "
1079 "long\n");
1080 return 1;
1081 }
1082 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1083 vol->srcaddr.ss_family = AF_UNSPEC;
1084
1085 if (!value || !*value) {
1086 printk(KERN_WARNING "CIFS: srcaddr value"
1087 " not specified.\n");
1088 return 1; /* needs_arg; */
1089 }
1090 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1091 value, strlen(value));
1092 if (i == 0) {
1093 printk(KERN_WARNING "CIFS: Could not parse"
1094 " srcaddr: %s\n",
1095 value);
1096 return 1;
1097 }
1098 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1099 if (!value || !*value) {
1100 printk(KERN_WARNING
1101 "CIFS: invalid path prefix\n");
1102 return 1; /* needs_argument */
1103 }
1104 if ((temp_len = strnlen(value, 1024)) < 1024) {
1105 if (value[0] != '/')
1106 temp_len++; /* missing leading slash */
1107 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1108 if (vol->prepath == NULL)
1109 return 1;
1110 if (value[0] != '/') {
1111 vol->prepath[0] = '/';
1112 strcpy(vol->prepath+1, value);
1113 } else
1114 strcpy(vol->prepath, value);
1115 cFYI(1, "prefix path %s", vol->prepath);
1116 } else {
1117 printk(KERN_WARNING "CIFS: prefix too long\n");
1118 return 1;
1119 }
1120 } else if (strnicmp(data, "iocharset", 9) == 0) {
1121 if (!value || !*value) {
1122 printk(KERN_WARNING "CIFS: invalid iocharset "
1123 "specified\n");
1124 return 1; /* needs_arg; */
1125 }
1126 if (strnlen(value, 65) < 65) {
1127 if (strnicmp(value, "default", 7))
1128 vol->iocharset = value;
1129 /* if iocharset not set then load_nls_default
1130 is used by caller */
1131 cFYI(1, "iocharset set to %s", value);
1132 } else {
1133 printk(KERN_WARNING "CIFS: iocharset name "
1134 "too long.\n");
1135 return 1;
1136 }
1137 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1138 vol->linux_uid = simple_strtoul(value, &value, 0);
1139 uid_specified = true;
1140 } else if (!strnicmp(data, "cruid", 5) && value && *value) {
1141 vol->cred_uid = simple_strtoul(value, &value, 0);
1142 } else if (!strnicmp(data, "forceuid", 8)) {
1143 override_uid = 1;
1144 } else if (!strnicmp(data, "noforceuid", 10)) {
1145 override_uid = 0;
1146 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1147 vol->linux_gid = simple_strtoul(value, &value, 0);
1148 gid_specified = true;
1149 } else if (!strnicmp(data, "forcegid", 8)) {
1150 override_gid = 1;
1151 } else if (!strnicmp(data, "noforcegid", 10)) {
1152 override_gid = 0;
1153 } else if (strnicmp(data, "file_mode", 4) == 0) {
1154 if (value && *value) {
1155 vol->file_mode =
1156 simple_strtoul(value, &value, 0);
1157 }
1158 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1159 if (value && *value) {
1160 vol->dir_mode =
1161 simple_strtoul(value, &value, 0);
1162 }
1163 } else if (strnicmp(data, "dirmode", 4) == 0) {
1164 if (value && *value) {
1165 vol->dir_mode =
1166 simple_strtoul(value, &value, 0);
1167 }
1168 } else if (strnicmp(data, "port", 4) == 0) {
1169 if (value && *value) {
1170 vol->port =
1171 simple_strtoul(value, &value, 0);
1172 }
1173 } else if (strnicmp(data, "rsize", 5) == 0) {
1174 if (value && *value) {
1175 vol->rsize =
1176 simple_strtoul(value, &value, 0);
1177 }
1178 } else if (strnicmp(data, "wsize", 5) == 0) {
1179 if (value && *value) {
1180 vol->wsize =
1181 simple_strtoul(value, &value, 0);
1182 }
1183 } else if (strnicmp(data, "sockopt", 5) == 0) {
1184 if (!value || !*value) {
1185 cERROR(1, "no socket option specified");
1186 continue;
1187 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1188 vol->sockopt_tcp_nodelay = 1;
1189 }
1190 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1191 if (!value || !*value || (*value == ' ')) {
1192 cFYI(1, "invalid (empty) netbiosname");
1193 } else {
1194 memset(vol->source_rfc1001_name, 0x20,
1195 RFC1001_NAME_LEN);
1196 /*
1197 * FIXME: are there cases in which a comma can
1198 * be valid in workstation netbios name (and
1199 * need special handling)?
1200 */
1201 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1202 /* don't ucase netbiosname for user */
1203 if (value[i] == 0)
1204 break;
1205 vol->source_rfc1001_name[i] = value[i];
1206 }
1207 /* The string has 16th byte zero still from
1208 set at top of the function */
1209 if (i == RFC1001_NAME_LEN && value[i] != 0)
1210 printk(KERN_WARNING "CIFS: netbiosname"
1211 " longer than 15 truncated.\n");
1212 }
1213 } else if (strnicmp(data, "servern", 7) == 0) {
1214 /* servernetbiosname specified override *SMBSERVER */
1215 if (!value || !*value || (*value == ' ')) {
1216 cFYI(1, "empty server netbiosname specified");
1217 } else {
1218 /* last byte, type, is 0x20 for servr type */
1219 memset(vol->target_rfc1001_name, 0x20,
1220 RFC1001_NAME_LEN_WITH_NULL);
1221
1222 for (i = 0; i < 15; i++) {
1223 /* BB are there cases in which a comma can be
1224 valid in this workstation netbios name
1225 (and need special handling)? */
1226
1227 /* user or mount helper must uppercase
1228 the netbiosname */
1229 if (value[i] == 0)
1230 break;
1231 else
1232 vol->target_rfc1001_name[i] =
1233 value[i];
1234 }
1235 /* The string has 16th byte zero still from
1236 set at top of the function */
1237 if (i == RFC1001_NAME_LEN && value[i] != 0)
1238 printk(KERN_WARNING "CIFS: server net"
1239 "biosname longer than 15 truncated.\n");
1240 }
1241 } else if (strnicmp(data, "actimeo", 7) == 0) {
1242 if (value && *value) {
1243 vol->actimeo = HZ * simple_strtoul(value,
1244 &value, 0);
1245 if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1246 cERROR(1, "CIFS: attribute cache"
1247 "timeout too large");
1248 return 1;
1249 }
1250 }
1251 } else if (strnicmp(data, "credentials", 4) == 0) {
1252 /* ignore */
1253 } else if (strnicmp(data, "version", 3) == 0) {
1254 /* ignore */
1255 } else if (strnicmp(data, "guest", 5) == 0) {
1256 /* ignore */
1257 } else if (strnicmp(data, "rw", 2) == 0) {
1258 /* ignore */
1259 } else if (strnicmp(data, "ro", 2) == 0) {
1260 /* ignore */
1261 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1262 vol->noblocksnd = 1;
1263 } else if (strnicmp(data, "noautotune", 10) == 0) {
1264 vol->noautotune = 1;
1265 } else if ((strnicmp(data, "suid", 4) == 0) ||
1266 (strnicmp(data, "nosuid", 6) == 0) ||
1267 (strnicmp(data, "exec", 4) == 0) ||
1268 (strnicmp(data, "noexec", 6) == 0) ||
1269 (strnicmp(data, "nodev", 5) == 0) ||
1270 (strnicmp(data, "noauto", 6) == 0) ||
1271 (strnicmp(data, "dev", 3) == 0)) {
1272 /* The mount tool or mount.cifs helper (if present)
1273 uses these opts to set flags, and the flags are read
1274 by the kernel vfs layer before we get here (ie
1275 before read super) so there is no point trying to
1276 parse these options again and set anything and it
1277 is ok to just ignore them */
1278 continue;
1279 } else if (strnicmp(data, "hard", 4) == 0) {
1280 vol->retry = 1;
1281 } else if (strnicmp(data, "soft", 4) == 0) {
1282 vol->retry = 0;
1283 } else if (strnicmp(data, "perm", 4) == 0) {
1284 vol->noperm = 0;
1285 } else if (strnicmp(data, "noperm", 6) == 0) {
1286 vol->noperm = 1;
1287 } else if (strnicmp(data, "mapchars", 8) == 0) {
1288 vol->remap = 1;
1289 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1290 vol->remap = 0;
1291 } else if (strnicmp(data, "sfu", 3) == 0) {
1292 vol->sfu_emul = 1;
1293 } else if (strnicmp(data, "nosfu", 5) == 0) {
1294 vol->sfu_emul = 0;
1295 } else if (strnicmp(data, "nodfs", 5) == 0) {
1296 vol->nodfs = 1;
1297 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1298 vol->posix_paths = 1;
1299 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1300 vol->posix_paths = 0;
1301 } else if (strnicmp(data, "nounix", 6) == 0) {
1302 vol->no_linux_ext = 1;
1303 } else if (strnicmp(data, "nolinux", 7) == 0) {
1304 vol->no_linux_ext = 1;
1305 } else if ((strnicmp(data, "nocase", 6) == 0) ||
1306 (strnicmp(data, "ignorecase", 10) == 0)) {
1307 vol->nocase = 1;
1308 } else if (strnicmp(data, "mand", 4) == 0) {
1309 /* ignore */
1310 } else if (strnicmp(data, "nomand", 6) == 0) {
1311 /* ignore */
1312 } else if (strnicmp(data, "_netdev", 7) == 0) {
1313 /* ignore */
1314 } else if (strnicmp(data, "brl", 3) == 0) {
1315 vol->nobrl = 0;
1316 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1317 (strnicmp(data, "nolock", 6) == 0)) {
1318 vol->nobrl = 1;
1319 /* turn off mandatory locking in mode
1320 if remote locking is turned off since the
1321 local vfs will do advisory */
1322 if (vol->file_mode ==
1323 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1324 vol->file_mode = S_IALLUGO;
1325 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1326 /* will take the shorter form "forcemand" as well */
1327 /* This mount option will force use of mandatory
1328 (DOS/Windows style) byte range locks, instead of
1329 using posix advisory byte range locks, even if the
1330 Unix extensions are available and posix locks would
1331 be supported otherwise. If Unix extensions are not
1332 negotiated this has no effect since mandatory locks
1333 would be used (mandatory locks is all that those
1334 those servers support) */
1335 vol->mand_lock = 1;
1336 } else if (strnicmp(data, "setuids", 7) == 0) {
1337 vol->setuids = 1;
1338 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1339 vol->setuids = 0;
1340 } else if (strnicmp(data, "dynperm", 7) == 0) {
1341 vol->dynperm = true;
1342 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1343 vol->dynperm = false;
1344 } else if (strnicmp(data, "nohard", 6) == 0) {
1345 vol->retry = 0;
1346 } else if (strnicmp(data, "nosoft", 6) == 0) {
1347 vol->retry = 1;
1348 } else if (strnicmp(data, "nointr", 6) == 0) {
1349 vol->intr = 0;
1350 } else if (strnicmp(data, "intr", 4) == 0) {
1351 vol->intr = 1;
1352 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1353 vol->nostrictsync = 1;
1354 } else if (strnicmp(data, "strictsync", 10) == 0) {
1355 vol->nostrictsync = 0;
1356 } else if (strnicmp(data, "serverino", 7) == 0) {
1357 vol->server_ino = 1;
1358 } else if (strnicmp(data, "noserverino", 9) == 0) {
1359 vol->server_ino = 0;
1360 } else if (strnicmp(data, "cifsacl", 7) == 0) {
1361 vol->cifs_acl = 1;
1362 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1363 vol->cifs_acl = 0;
1364 } else if (strnicmp(data, "acl", 3) == 0) {
1365 vol->no_psx_acl = 0;
1366 } else if (strnicmp(data, "noacl", 5) == 0) {
1367 vol->no_psx_acl = 1;
1368 } else if (strnicmp(data, "locallease", 6) == 0) {
1369 vol->local_lease = 1;
1370 } else if (strnicmp(data, "sign", 4) == 0) {
1371 vol->secFlg |= CIFSSEC_MUST_SIGN;
1372 } else if (strnicmp(data, "seal", 4) == 0) {
1373 /* we do not do the following in secFlags because seal
1374 is a per tree connection (mount) not a per socket
1375 or per-smb connection option in the protocol */
1376 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1377 vol->seal = 1;
1378 } else if (strnicmp(data, "direct", 6) == 0) {
1379 vol->direct_io = 1;
1380 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1381 vol->direct_io = 1;
1382 } else if (strnicmp(data, "strictcache", 11) == 0) {
1383 vol->strict_io = 1;
1384 } else if (strnicmp(data, "noac", 4) == 0) {
1385 printk(KERN_WARNING "CIFS: Mount option noac not "
1386 "supported. Instead set "
1387 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1388 } else if (strnicmp(data, "fsc", 3) == 0) {
1389 #ifndef CONFIG_CIFS_FSCACHE
1390 cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE"
1391 "kernel config option set");
1392 return 1;
1393 #endif
1394 vol->fsc = true;
1395 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1396 vol->mfsymlinks = true;
1397 } else if (strnicmp(data, "multiuser", 8) == 0) {
1398 vol->multiuser = true;
1399 } else
1400 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1401 data);
1402 }
1403 if (vol->UNC == NULL) {
1404 if (devname == NULL) {
1405 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1406 "target\n");
1407 return 1;
1408 }
1409 if ((temp_len = strnlen(devname, 300)) < 300) {
1410 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1411 if (vol->UNC == NULL)
1412 return 1;
1413 strcpy(vol->UNC, devname);
1414 if (strncmp(vol->UNC, "//", 2) == 0) {
1415 vol->UNC[0] = '\\';
1416 vol->UNC[1] = '\\';
1417 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1418 printk(KERN_WARNING "CIFS: UNC Path does not "
1419 "begin with // or \\\\ \n");
1420 return 1;
1421 }
1422 value = strpbrk(vol->UNC+2, "/\\");
1423 if (value)
1424 *value = '\\';
1425 } else {
1426 printk(KERN_WARNING "CIFS: UNC name too long\n");
1427 return 1;
1428 }
1429 }
1430
1431 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1432 cERROR(1, "Multiuser mounts currently require krb5 "
1433 "authentication!");
1434 return 1;
1435 }
1436
1437 if (vol->UNCip == NULL)
1438 vol->UNCip = &vol->UNC[2];
1439
1440 if (uid_specified)
1441 vol->override_uid = override_uid;
1442 else if (override_uid == 1)
1443 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1444 "specified with no uid= option.\n");
1445
1446 if (gid_specified)
1447 vol->override_gid = override_gid;
1448 else if (override_gid == 1)
1449 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1450 "specified with no gid= option.\n");
1451
1452 return 0;
1453 }
1454
1455 /** Returns true if srcaddr isn't specified and rhs isn't
1456 * specified, or if srcaddr is specified and
1457 * matches the IP address of the rhs argument.
1458 */
1459 static bool
1460 srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1461 {
1462 switch (srcaddr->sa_family) {
1463 case AF_UNSPEC:
1464 return (rhs->sa_family == AF_UNSPEC);
1465 case AF_INET: {
1466 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1467 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1468 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1469 }
1470 case AF_INET6: {
1471 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1472 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1473 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1474 }
1475 default:
1476 WARN_ON(1);
1477 return false; /* don't expect to be here */
1478 }
1479 }
1480
1481 /*
1482 * If no port is specified in addr structure, we try to match with 445 port
1483 * and if it fails - with 139 ports. It should be called only if address
1484 * families of server and addr are equal.
1485 */
1486 static bool
1487 match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1488 {
1489 unsigned short int port, *sport;
1490
1491 switch (addr->sa_family) {
1492 case AF_INET:
1493 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1494 port = ((struct sockaddr_in *) addr)->sin_port;
1495 break;
1496 case AF_INET6:
1497 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1498 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1499 break;
1500 default:
1501 WARN_ON(1);
1502 return false;
1503 }
1504
1505 if (!port) {
1506 port = htons(CIFS_PORT);
1507 if (port == *sport)
1508 return true;
1509
1510 port = htons(RFC1001_PORT);
1511 }
1512
1513 return port == *sport;
1514 }
1515
1516 static bool
1517 match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1518 struct sockaddr *srcaddr)
1519 {
1520 switch (addr->sa_family) {
1521 case AF_INET: {
1522 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1523 struct sockaddr_in *srv_addr4 =
1524 (struct sockaddr_in *)&server->dstaddr;
1525
1526 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
1527 return false;
1528 break;
1529 }
1530 case AF_INET6: {
1531 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1532 struct sockaddr_in6 *srv_addr6 =
1533 (struct sockaddr_in6 *)&server->dstaddr;
1534
1535 if (!ipv6_addr_equal(&addr6->sin6_addr,
1536 &srv_addr6->sin6_addr))
1537 return false;
1538 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
1539 return false;
1540 break;
1541 }
1542 default:
1543 WARN_ON(1);
1544 return false; /* don't expect to be here */
1545 }
1546
1547 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1548 return false;
1549
1550 return true;
1551 }
1552
1553 static bool
1554 match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1555 {
1556 unsigned int secFlags;
1557
1558 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1559 secFlags = vol->secFlg;
1560 else
1561 secFlags = global_secflags | vol->secFlg;
1562
1563 switch (server->secType) {
1564 case LANMAN:
1565 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1566 return false;
1567 break;
1568 case NTLMv2:
1569 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1570 return false;
1571 break;
1572 case NTLM:
1573 if (!(secFlags & CIFSSEC_MAY_NTLM))
1574 return false;
1575 break;
1576 case Kerberos:
1577 if (!(secFlags & CIFSSEC_MAY_KRB5))
1578 return false;
1579 break;
1580 case RawNTLMSSP:
1581 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1582 return false;
1583 break;
1584 default:
1585 /* shouldn't happen */
1586 return false;
1587 }
1588
1589 /* now check if signing mode is acceptible */
1590 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1591 (server->secMode & SECMODE_SIGN_REQUIRED))
1592 return false;
1593 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1594 (server->secMode &
1595 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1596 return false;
1597
1598 return true;
1599 }
1600
1601 static struct TCP_Server_Info *
1602 cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1603 {
1604 struct TCP_Server_Info *server;
1605
1606 spin_lock(&cifs_tcp_ses_lock);
1607 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
1608 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1609 continue;
1610
1611 if (!match_address(server, addr,
1612 (struct sockaddr *)&vol->srcaddr))
1613 continue;
1614
1615 if (!match_port(server, addr))
1616 continue;
1617
1618 if (!match_security(server, vol))
1619 continue;
1620
1621 ++server->srv_count;
1622 spin_unlock(&cifs_tcp_ses_lock);
1623 cFYI(1, "Existing tcp session with server found");
1624 return server;
1625 }
1626 spin_unlock(&cifs_tcp_ses_lock);
1627 return NULL;
1628 }
1629
1630 static void
1631 cifs_put_tcp_session(struct TCP_Server_Info *server)
1632 {
1633 struct task_struct *task;
1634
1635 spin_lock(&cifs_tcp_ses_lock);
1636 if (--server->srv_count > 0) {
1637 spin_unlock(&cifs_tcp_ses_lock);
1638 return;
1639 }
1640
1641 put_net(cifs_net_ns(server));
1642
1643 list_del_init(&server->tcp_ses_list);
1644 spin_unlock(&cifs_tcp_ses_lock);
1645
1646 cancel_delayed_work_sync(&server->echo);
1647
1648 spin_lock(&GlobalMid_Lock);
1649 server->tcpStatus = CifsExiting;
1650 spin_unlock(&GlobalMid_Lock);
1651
1652 cifs_crypto_shash_release(server);
1653 cifs_fscache_release_client_cookie(server);
1654
1655 kfree(server->session_key.response);
1656 server->session_key.response = NULL;
1657 server->session_key.len = 0;
1658
1659 task = xchg(&server->tsk, NULL);
1660 if (task)
1661 force_sig(SIGKILL, task);
1662 }
1663
1664 static struct TCP_Server_Info *
1665 cifs_get_tcp_session(struct smb_vol *volume_info)
1666 {
1667 struct TCP_Server_Info *tcp_ses = NULL;
1668 struct sockaddr_storage addr;
1669 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1670 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1671 int rc;
1672
1673 memset(&addr, 0, sizeof(struct sockaddr_storage));
1674
1675 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
1676
1677 if (volume_info->UNCip && volume_info->UNC) {
1678 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1679 volume_info->UNCip,
1680 strlen(volume_info->UNCip),
1681 volume_info->port);
1682 if (!rc) {
1683 /* we failed translating address */
1684 rc = -EINVAL;
1685 goto out_err;
1686 }
1687 } else if (volume_info->UNCip) {
1688 /* BB using ip addr as tcp_ses name to connect to the
1689 DFS root below */
1690 cERROR(1, "Connecting to DFS root not implemented yet");
1691 rc = -EINVAL;
1692 goto out_err;
1693 } else /* which tcp_sess DFS root would we conect to */ {
1694 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1695 "unc=//192.168.1.100/public) specified");
1696 rc = -EINVAL;
1697 goto out_err;
1698 }
1699
1700 /* see if we already have a matching tcp_ses */
1701 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
1702 if (tcp_ses)
1703 return tcp_ses;
1704
1705 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1706 if (!tcp_ses) {
1707 rc = -ENOMEM;
1708 goto out_err;
1709 }
1710
1711 rc = cifs_crypto_shash_allocate(tcp_ses);
1712 if (rc) {
1713 cERROR(1, "could not setup hash structures rc %d", rc);
1714 goto out_err;
1715 }
1716
1717 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
1718 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1719 if (IS_ERR(tcp_ses->hostname)) {
1720 rc = PTR_ERR(tcp_ses->hostname);
1721 goto out_err_crypto_release;
1722 }
1723
1724 tcp_ses->noblocksnd = volume_info->noblocksnd;
1725 tcp_ses->noautotune = volume_info->noautotune;
1726 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
1727 atomic_set(&tcp_ses->inFlight, 0);
1728 init_waitqueue_head(&tcp_ses->response_q);
1729 init_waitqueue_head(&tcp_ses->request_q);
1730 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1731 mutex_init(&tcp_ses->srv_mutex);
1732 memcpy(tcp_ses->workstation_RFC1001_name,
1733 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1734 memcpy(tcp_ses->server_RFC1001_name,
1735 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1736 tcp_ses->session_estab = false;
1737 tcp_ses->sequence_number = 0;
1738 tcp_ses->lstrp = jiffies;
1739 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1740 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1741 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
1742
1743 /*
1744 * at this point we are the only ones with the pointer
1745 * to the struct since the kernel thread not created yet
1746 * no need to spinlock this init of tcpStatus or srv_count
1747 */
1748 tcp_ses->tcpStatus = CifsNew;
1749 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1750 sizeof(tcp_ses->srcaddr));
1751 ++tcp_ses->srv_count;
1752
1753 if (addr.ss_family == AF_INET6) {
1754 cFYI(1, "attempting ipv6 connect");
1755 /* BB should we allow ipv6 on port 139? */
1756 /* other OS never observed in Wild doing 139 with v6 */
1757 memcpy(&tcp_ses->dstaddr, sin_server6,
1758 sizeof(struct sockaddr_in6));
1759 } else
1760 memcpy(&tcp_ses->dstaddr, sin_server,
1761 sizeof(struct sockaddr_in));
1762
1763 rc = ip_connect(tcp_ses);
1764 if (rc < 0) {
1765 cERROR(1, "Error connecting to socket. Aborting operation");
1766 goto out_err_crypto_release;
1767 }
1768
1769 /*
1770 * since we're in a cifs function already, we know that
1771 * this will succeed. No need for try_module_get().
1772 */
1773 __module_get(THIS_MODULE);
1774 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1775 tcp_ses, "cifsd");
1776 if (IS_ERR(tcp_ses->tsk)) {
1777 rc = PTR_ERR(tcp_ses->tsk);
1778 cERROR(1, "error %d create cifsd thread", rc);
1779 module_put(THIS_MODULE);
1780 goto out_err_crypto_release;
1781 }
1782
1783 /* thread spawned, put it on the list */
1784 spin_lock(&cifs_tcp_ses_lock);
1785 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1786 spin_unlock(&cifs_tcp_ses_lock);
1787
1788 cifs_fscache_get_client_cookie(tcp_ses);
1789
1790 /* queue echo request delayed work */
1791 queue_delayed_work(system_nrt_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
1792
1793 return tcp_ses;
1794
1795 out_err_crypto_release:
1796 cifs_crypto_shash_release(tcp_ses);
1797
1798 put_net(cifs_net_ns(tcp_ses));
1799
1800 out_err:
1801 if (tcp_ses) {
1802 if (!IS_ERR(tcp_ses->hostname))
1803 kfree(tcp_ses->hostname);
1804 if (tcp_ses->ssocket)
1805 sock_release(tcp_ses->ssocket);
1806 kfree(tcp_ses);
1807 }
1808 return ERR_PTR(rc);
1809 }
1810
1811 static struct cifsSesInfo *
1812 cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1813 {
1814 struct cifsSesInfo *ses;
1815
1816 spin_lock(&cifs_tcp_ses_lock);
1817 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1818 switch (server->secType) {
1819 case Kerberos:
1820 if (vol->cred_uid != ses->cred_uid)
1821 continue;
1822 break;
1823 default:
1824 /* anything else takes username/password */
1825 if (strncmp(ses->userName, vol->username,
1826 MAX_USERNAME_SIZE))
1827 continue;
1828 if (strlen(vol->username) != 0 &&
1829 ses->password != NULL &&
1830 strncmp(ses->password,
1831 vol->password ? vol->password : "",
1832 MAX_PASSWORD_SIZE))
1833 continue;
1834 }
1835 ++ses->ses_count;
1836 spin_unlock(&cifs_tcp_ses_lock);
1837 return ses;
1838 }
1839 spin_unlock(&cifs_tcp_ses_lock);
1840 return NULL;
1841 }
1842
1843 static void
1844 cifs_put_smb_ses(struct cifsSesInfo *ses)
1845 {
1846 int xid;
1847 struct TCP_Server_Info *server = ses->server;
1848
1849 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
1850 spin_lock(&cifs_tcp_ses_lock);
1851 if (--ses->ses_count > 0) {
1852 spin_unlock(&cifs_tcp_ses_lock);
1853 return;
1854 }
1855
1856 list_del_init(&ses->smb_ses_list);
1857 spin_unlock(&cifs_tcp_ses_lock);
1858
1859 if (ses->status == CifsGood) {
1860 xid = GetXid();
1861 CIFSSMBLogoff(xid, ses);
1862 _FreeXid(xid);
1863 }
1864 sesInfoFree(ses);
1865 cifs_put_tcp_session(server);
1866 }
1867
1868 static struct cifsSesInfo *
1869 cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1870 {
1871 int rc = -ENOMEM, xid;
1872 struct cifsSesInfo *ses;
1873 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
1874 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
1875
1876 xid = GetXid();
1877
1878 ses = cifs_find_smb_ses(server, volume_info);
1879 if (ses) {
1880 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1881
1882 mutex_lock(&ses->session_mutex);
1883 rc = cifs_negotiate_protocol(xid, ses);
1884 if (rc) {
1885 mutex_unlock(&ses->session_mutex);
1886 /* problem -- put our ses reference */
1887 cifs_put_smb_ses(ses);
1888 FreeXid(xid);
1889 return ERR_PTR(rc);
1890 }
1891 if (ses->need_reconnect) {
1892 cFYI(1, "Session needs reconnect");
1893 rc = cifs_setup_session(xid, ses,
1894 volume_info->local_nls);
1895 if (rc) {
1896 mutex_unlock(&ses->session_mutex);
1897 /* problem -- put our reference */
1898 cifs_put_smb_ses(ses);
1899 FreeXid(xid);
1900 return ERR_PTR(rc);
1901 }
1902 }
1903 mutex_unlock(&ses->session_mutex);
1904
1905 /* existing SMB ses has a server reference already */
1906 cifs_put_tcp_session(server);
1907 FreeXid(xid);
1908 return ses;
1909 }
1910
1911 cFYI(1, "Existing smb sess not found");
1912 ses = sesInfoAlloc();
1913 if (ses == NULL)
1914 goto get_ses_fail;
1915
1916 /* new SMB session uses our server ref */
1917 ses->server = server;
1918 if (server->dstaddr.ss_family == AF_INET6)
1919 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
1920 else
1921 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
1922
1923 if (volume_info->username)
1924 strncpy(ses->userName, volume_info->username,
1925 MAX_USERNAME_SIZE);
1926
1927 /* volume_info->password freed at unmount */
1928 if (volume_info->password) {
1929 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1930 if (!ses->password)
1931 goto get_ses_fail;
1932 }
1933 if (volume_info->domainname) {
1934 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
1935 if (!ses->domainName)
1936 goto get_ses_fail;
1937 }
1938 ses->cred_uid = volume_info->cred_uid;
1939 ses->linux_uid = volume_info->linux_uid;
1940 ses->overrideSecFlg = volume_info->secFlg;
1941
1942 mutex_lock(&ses->session_mutex);
1943 rc = cifs_negotiate_protocol(xid, ses);
1944 if (!rc)
1945 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
1946 mutex_unlock(&ses->session_mutex);
1947 if (rc)
1948 goto get_ses_fail;
1949
1950 /* success, put it on the list */
1951 spin_lock(&cifs_tcp_ses_lock);
1952 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1953 spin_unlock(&cifs_tcp_ses_lock);
1954
1955 FreeXid(xid);
1956 return ses;
1957
1958 get_ses_fail:
1959 sesInfoFree(ses);
1960 FreeXid(xid);
1961 return ERR_PTR(rc);
1962 }
1963
1964 static struct cifsTconInfo *
1965 cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1966 {
1967 struct list_head *tmp;
1968 struct cifsTconInfo *tcon;
1969
1970 spin_lock(&cifs_tcp_ses_lock);
1971 list_for_each(tmp, &ses->tcon_list) {
1972 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1973 if (tcon->tidStatus == CifsExiting)
1974 continue;
1975 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
1976 continue;
1977
1978 ++tcon->tc_count;
1979 spin_unlock(&cifs_tcp_ses_lock);
1980 return tcon;
1981 }
1982 spin_unlock(&cifs_tcp_ses_lock);
1983 return NULL;
1984 }
1985
1986 static void
1987 cifs_put_tcon(struct cifsTconInfo *tcon)
1988 {
1989 int xid;
1990 struct cifsSesInfo *ses = tcon->ses;
1991
1992 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
1993 spin_lock(&cifs_tcp_ses_lock);
1994 if (--tcon->tc_count > 0) {
1995 spin_unlock(&cifs_tcp_ses_lock);
1996 return;
1997 }
1998
1999 list_del_init(&tcon->tcon_list);
2000 spin_unlock(&cifs_tcp_ses_lock);
2001
2002 xid = GetXid();
2003 CIFSSMBTDis(xid, tcon);
2004 _FreeXid(xid);
2005
2006 cifs_fscache_release_super_cookie(tcon);
2007 tconInfoFree(tcon);
2008 cifs_put_smb_ses(ses);
2009 }
2010
2011 static struct cifsTconInfo *
2012 cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
2013 {
2014 int rc, xid;
2015 struct cifsTconInfo *tcon;
2016
2017 tcon = cifs_find_tcon(ses, volume_info->UNC);
2018 if (tcon) {
2019 cFYI(1, "Found match on UNC path");
2020 /* existing tcon already has a reference */
2021 cifs_put_smb_ses(ses);
2022 if (tcon->seal != volume_info->seal)
2023 cERROR(1, "transport encryption setting "
2024 "conflicts with existing tid");
2025 return tcon;
2026 }
2027
2028 tcon = tconInfoAlloc();
2029 if (tcon == NULL) {
2030 rc = -ENOMEM;
2031 goto out_fail;
2032 }
2033
2034 tcon->ses = ses;
2035 if (volume_info->password) {
2036 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2037 if (!tcon->password) {
2038 rc = -ENOMEM;
2039 goto out_fail;
2040 }
2041 }
2042
2043 if (strchr(volume_info->UNC + 3, '\\') == NULL
2044 && strchr(volume_info->UNC + 3, '/') == NULL) {
2045 cERROR(1, "Missing share name");
2046 rc = -ENODEV;
2047 goto out_fail;
2048 }
2049
2050 /* BB Do we need to wrap session_mutex around
2051 * this TCon call and Unix SetFS as
2052 * we do on SessSetup and reconnect? */
2053 xid = GetXid();
2054 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2055 FreeXid(xid);
2056 cFYI(1, "CIFS Tcon rc = %d", rc);
2057 if (rc)
2058 goto out_fail;
2059
2060 if (volume_info->nodfs) {
2061 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2062 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2063 }
2064 tcon->seal = volume_info->seal;
2065 /* we can have only one retry value for a connection
2066 to a share so for resources mounted more than once
2067 to the same server share the last value passed in
2068 for the retry flag is used */
2069 tcon->retry = volume_info->retry;
2070 tcon->nocase = volume_info->nocase;
2071 tcon->local_lease = volume_info->local_lease;
2072
2073 spin_lock(&cifs_tcp_ses_lock);
2074 list_add(&tcon->tcon_list, &ses->tcon_list);
2075 spin_unlock(&cifs_tcp_ses_lock);
2076
2077 cifs_fscache_get_super_cookie(tcon);
2078
2079 return tcon;
2080
2081 out_fail:
2082 tconInfoFree(tcon);
2083 return ERR_PTR(rc);
2084 }
2085
2086 void
2087 cifs_put_tlink(struct tcon_link *tlink)
2088 {
2089 if (!tlink || IS_ERR(tlink))
2090 return;
2091
2092 if (!atomic_dec_and_test(&tlink->tl_count) ||
2093 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2094 tlink->tl_time = jiffies;
2095 return;
2096 }
2097
2098 if (!IS_ERR(tlink_tcon(tlink)))
2099 cifs_put_tcon(tlink_tcon(tlink));
2100 kfree(tlink);
2101 return;
2102 }
2103
2104 int
2105 get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
2106 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
2107 struct dfs_info3_param **preferrals, int remap)
2108 {
2109 char *temp_unc;
2110 int rc = 0;
2111
2112 *pnum_referrals = 0;
2113 *preferrals = NULL;
2114
2115 if (pSesInfo->ipc_tid == 0) {
2116 temp_unc = kmalloc(2 /* for slashes */ +
2117 strnlen(pSesInfo->serverName,
2118 SERVER_NAME_LEN_WITH_NULL * 2)
2119 + 1 + 4 /* slash IPC$ */ + 2,
2120 GFP_KERNEL);
2121 if (temp_unc == NULL)
2122 return -ENOMEM;
2123 temp_unc[0] = '\\';
2124 temp_unc[1] = '\\';
2125 strcpy(temp_unc + 2, pSesInfo->serverName);
2126 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2127 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
2128 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
2129 kfree(temp_unc);
2130 }
2131 if (rc == 0)
2132 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
2133 pnum_referrals, nls_codepage, remap);
2134 /* BB map targetUNCs to dfs_info3 structures, here or
2135 in CIFSGetDFSRefer BB */
2136
2137 return rc;
2138 }
2139
2140 #ifdef CONFIG_DEBUG_LOCK_ALLOC
2141 static struct lock_class_key cifs_key[2];
2142 static struct lock_class_key cifs_slock_key[2];
2143
2144 static inline void
2145 cifs_reclassify_socket4(struct socket *sock)
2146 {
2147 struct sock *sk = sock->sk;
2148 BUG_ON(sock_owned_by_user(sk));
2149 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2150 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2151 }
2152
2153 static inline void
2154 cifs_reclassify_socket6(struct socket *sock)
2155 {
2156 struct sock *sk = sock->sk;
2157 BUG_ON(sock_owned_by_user(sk));
2158 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2159 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2160 }
2161 #else
2162 static inline void
2163 cifs_reclassify_socket4(struct socket *sock)
2164 {
2165 }
2166
2167 static inline void
2168 cifs_reclassify_socket6(struct socket *sock)
2169 {
2170 }
2171 #endif
2172
2173 /* See RFC1001 section 14 on representation of Netbios names */
2174 static void rfc1002mangle(char *target, char *source, unsigned int length)
2175 {
2176 unsigned int i, j;
2177
2178 for (i = 0, j = 0; i < (length); i++) {
2179 /* mask a nibble at a time and encode */
2180 target[j] = 'A' + (0x0F & (source[i] >> 4));
2181 target[j+1] = 'A' + (0x0F & source[i]);
2182 j += 2;
2183 }
2184
2185 }
2186
2187 static int
2188 bind_socket(struct TCP_Server_Info *server)
2189 {
2190 int rc = 0;
2191 if (server->srcaddr.ss_family != AF_UNSPEC) {
2192 /* Bind to the specified local IP address */
2193 struct socket *socket = server->ssocket;
2194 rc = socket->ops->bind(socket,
2195 (struct sockaddr *) &server->srcaddr,
2196 sizeof(server->srcaddr));
2197 if (rc < 0) {
2198 struct sockaddr_in *saddr4;
2199 struct sockaddr_in6 *saddr6;
2200 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2201 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2202 if (saddr6->sin6_family == AF_INET6)
2203 cERROR(1, "cifs: "
2204 "Failed to bind to: %pI6c, error: %d\n",
2205 &saddr6->sin6_addr, rc);
2206 else
2207 cERROR(1, "cifs: "
2208 "Failed to bind to: %pI4, error: %d\n",
2209 &saddr4->sin_addr.s_addr, rc);
2210 }
2211 }
2212 return rc;
2213 }
2214
2215 static int
2216 ip_rfc1001_connect(struct TCP_Server_Info *server)
2217 {
2218 int rc = 0;
2219 /*
2220 * some servers require RFC1001 sessinit before sending
2221 * negprot - BB check reconnection in case where second
2222 * sessinit is sent but no second negprot
2223 */
2224 struct rfc1002_session_packet *ses_init_buf;
2225 struct smb_hdr *smb_buf;
2226 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2227 GFP_KERNEL);
2228 if (ses_init_buf) {
2229 ses_init_buf->trailer.session_req.called_len = 32;
2230
2231 if (server->server_RFC1001_name &&
2232 server->server_RFC1001_name[0] != 0)
2233 rfc1002mangle(ses_init_buf->trailer.
2234 session_req.called_name,
2235 server->server_RFC1001_name,
2236 RFC1001_NAME_LEN_WITH_NULL);
2237 else
2238 rfc1002mangle(ses_init_buf->trailer.
2239 session_req.called_name,
2240 DEFAULT_CIFS_CALLED_NAME,
2241 RFC1001_NAME_LEN_WITH_NULL);
2242
2243 ses_init_buf->trailer.session_req.calling_len = 32;
2244
2245 /*
2246 * calling name ends in null (byte 16) from old smb
2247 * convention.
2248 */
2249 if (server->workstation_RFC1001_name &&
2250 server->workstation_RFC1001_name[0] != 0)
2251 rfc1002mangle(ses_init_buf->trailer.
2252 session_req.calling_name,
2253 server->workstation_RFC1001_name,
2254 RFC1001_NAME_LEN_WITH_NULL);
2255 else
2256 rfc1002mangle(ses_init_buf->trailer.
2257 session_req.calling_name,
2258 "LINUX_CIFS_CLNT",
2259 RFC1001_NAME_LEN_WITH_NULL);
2260
2261 ses_init_buf->trailer.session_req.scope1 = 0;
2262 ses_init_buf->trailer.session_req.scope2 = 0;
2263 smb_buf = (struct smb_hdr *)ses_init_buf;
2264
2265 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2266 smb_buf->smb_buf_length = 0x81000044;
2267 rc = smb_send(server, smb_buf, 0x44);
2268 kfree(ses_init_buf);
2269 /*
2270 * RFC1001 layer in at least one server
2271 * requires very short break before negprot
2272 * presumably because not expecting negprot
2273 * to follow so fast. This is a simple
2274 * solution that works without
2275 * complicating the code and causes no
2276 * significant slowing down on mount
2277 * for everyone else
2278 */
2279 usleep_range(1000, 2000);
2280 }
2281 /*
2282 * else the negprot may still work without this
2283 * even though malloc failed
2284 */
2285
2286 return rc;
2287 }
2288
2289 static int
2290 generic_ip_connect(struct TCP_Server_Info *server)
2291 {
2292 int rc = 0;
2293 unsigned short int sport;
2294 int slen, sfamily;
2295 struct socket *socket = server->ssocket;
2296 struct sockaddr *saddr;
2297
2298 saddr = (struct sockaddr *) &server->dstaddr;
2299
2300 if (server->dstaddr.ss_family == AF_INET6) {
2301 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
2302 slen = sizeof(struct sockaddr_in6);
2303 sfamily = AF_INET6;
2304 } else {
2305 sport = ((struct sockaddr_in *) saddr)->sin_port;
2306 slen = sizeof(struct sockaddr_in);
2307 sfamily = AF_INET;
2308 }
2309
2310 if (socket == NULL) {
2311 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2312 IPPROTO_TCP, &socket, 1);
2313 if (rc < 0) {
2314 cERROR(1, "Error %d creating socket", rc);
2315 server->ssocket = NULL;
2316 return rc;
2317 }
2318
2319 /* BB other socket options to set KEEPALIVE, NODELAY? */
2320 cFYI(1, "Socket created");
2321 server->ssocket = socket;
2322 socket->sk->sk_allocation = GFP_NOFS;
2323 if (sfamily == AF_INET6)
2324 cifs_reclassify_socket6(socket);
2325 else
2326 cifs_reclassify_socket4(socket);
2327 }
2328
2329 rc = bind_socket(server);
2330 if (rc < 0)
2331 return rc;
2332
2333 rc = socket->ops->connect(socket, saddr, slen, 0);
2334 if (rc < 0) {
2335 cFYI(1, "Error %d connecting to server", rc);
2336 sock_release(socket);
2337 server->ssocket = NULL;
2338 return rc;
2339 }
2340
2341 /*
2342 * Eventually check for other socket options to change from
2343 * the default. sock_setsockopt not used because it expects
2344 * user space buffer
2345 */
2346 socket->sk->sk_rcvtimeo = 7 * HZ;
2347 socket->sk->sk_sndtimeo = 5 * HZ;
2348
2349 /* make the bufsizes depend on wsize/rsize and max requests */
2350 if (server->noautotune) {
2351 if (socket->sk->sk_sndbuf < (200 * 1024))
2352 socket->sk->sk_sndbuf = 200 * 1024;
2353 if (socket->sk->sk_rcvbuf < (140 * 1024))
2354 socket->sk->sk_rcvbuf = 140 * 1024;
2355 }
2356
2357 if (server->tcp_nodelay) {
2358 int val = 1;
2359 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2360 (char *)&val, sizeof(val));
2361 if (rc)
2362 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
2363 }
2364
2365 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
2366 socket->sk->sk_sndbuf,
2367 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
2368
2369 if (sport == htons(RFC1001_PORT))
2370 rc = ip_rfc1001_connect(server);
2371
2372 return rc;
2373 }
2374
2375 static int
2376 ip_connect(struct TCP_Server_Info *server)
2377 {
2378 unsigned short int *sport;
2379 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2380 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2381
2382 if (server->dstaddr.ss_family == AF_INET6)
2383 sport = &addr6->sin6_port;
2384 else
2385 sport = &addr->sin_port;
2386
2387 if (*sport == 0) {
2388 int rc;
2389
2390 /* try with 445 port at first */
2391 *sport = htons(CIFS_PORT);
2392
2393 rc = generic_ip_connect(server);
2394 if (rc >= 0)
2395 return rc;
2396
2397 /* if it failed, try with 139 port */
2398 *sport = htons(RFC1001_PORT);
2399 }
2400
2401 return generic_ip_connect(server);
2402 }
2403
2404 void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2405 struct super_block *sb, struct smb_vol *vol_info)
2406 {
2407 /* if we are reconnecting then should we check to see if
2408 * any requested capabilities changed locally e.g. via
2409 * remount but we can not do much about it here
2410 * if they have (even if we could detect it by the following)
2411 * Perhaps we could add a backpointer to array of sb from tcon
2412 * or if we change to make all sb to same share the same
2413 * sb as NFS - then we only have one backpointer to sb.
2414 * What if we wanted to mount the server share twice once with
2415 * and once without posixacls or posix paths? */
2416 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2417
2418 if (vol_info && vol_info->no_linux_ext) {
2419 tcon->fsUnixInfo.Capability = 0;
2420 tcon->unix_ext = 0; /* Unix Extensions disabled */
2421 cFYI(1, "Linux protocol extensions disabled");
2422 return;
2423 } else if (vol_info)
2424 tcon->unix_ext = 1; /* Unix Extensions supported */
2425
2426 if (tcon->unix_ext == 0) {
2427 cFYI(1, "Unix extensions disabled so not set on reconnect");
2428 return;
2429 }
2430
2431 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
2432 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2433
2434 /* check for reconnect case in which we do not
2435 want to change the mount behavior if we can avoid it */
2436 if (vol_info == NULL) {
2437 /* turn off POSIX ACL and PATHNAMES if not set
2438 originally at mount time */
2439 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2440 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2441 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2442 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2443 cERROR(1, "POSIXPATH support change");
2444 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2445 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2446 cERROR(1, "possible reconnect error");
2447 cERROR(1, "server disabled POSIX path support");
2448 }
2449 }
2450
2451 cap &= CIFS_UNIX_CAP_MASK;
2452 if (vol_info && vol_info->no_psx_acl)
2453 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2454 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
2455 cFYI(1, "negotiated posix acl support");
2456 if (sb)
2457 sb->s_flags |= MS_POSIXACL;
2458 }
2459
2460 if (vol_info && vol_info->posix_paths == 0)
2461 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2462 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
2463 cFYI(1, "negotiate posix pathnames");
2464 if (sb)
2465 CIFS_SB(sb)->mnt_cifs_flags |=
2466 CIFS_MOUNT_POSIX_PATHS;
2467 }
2468
2469 /* We might be setting the path sep back to a different
2470 form if we are reconnecting and the server switched its
2471 posix path capability for this share */
2472 if (sb && (CIFS_SB(sb)->prepathlen > 0))
2473 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
2474
2475 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2476 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2477 CIFS_SB(sb)->rsize = 127 * 1024;
2478 cFYI(DBG2, "larger reads not supported by srv");
2479 }
2480 }
2481
2482
2483 cFYI(1, "Negotiate caps 0x%x", (int)cap);
2484 #ifdef CONFIG_CIFS_DEBUG2
2485 if (cap & CIFS_UNIX_FCNTL_CAP)
2486 cFYI(1, "FCNTL cap");
2487 if (cap & CIFS_UNIX_EXTATTR_CAP)
2488 cFYI(1, "EXTATTR cap");
2489 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2490 cFYI(1, "POSIX path cap");
2491 if (cap & CIFS_UNIX_XATTR_CAP)
2492 cFYI(1, "XATTR cap");
2493 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
2494 cFYI(1, "POSIX ACL cap");
2495 if (cap & CIFS_UNIX_LARGE_READ_CAP)
2496 cFYI(1, "very large read cap");
2497 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
2498 cFYI(1, "very large write cap");
2499 #endif /* CIFS_DEBUG2 */
2500 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
2501 if (vol_info == NULL) {
2502 cFYI(1, "resetting capabilities failed");
2503 } else
2504 cERROR(1, "Negotiating Unix capabilities "
2505 "with the server failed. Consider "
2506 "mounting with the Unix Extensions\n"
2507 "disabled, if problems are found, "
2508 "by specifying the nounix mount "
2509 "option.");
2510
2511 }
2512 }
2513 }
2514
2515 static void
2516 convert_delimiter(char *path, char delim)
2517 {
2518 int i;
2519 char old_delim;
2520
2521 if (path == NULL)
2522 return;
2523
2524 if (delim == '/')
2525 old_delim = '\\';
2526 else
2527 old_delim = '/';
2528
2529 for (i = 0; path[i] != '\0'; i++) {
2530 if (path[i] == old_delim)
2531 path[i] = delim;
2532 }
2533 }
2534
2535 static void setup_cifs_sb(struct smb_vol *pvolume_info,
2536 struct cifs_sb_info *cifs_sb)
2537 {
2538 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2539
2540 if (pvolume_info->rsize > CIFSMaxBufSize) {
2541 cERROR(1, "rsize %d too large, using MaxBufSize",
2542 pvolume_info->rsize);
2543 cifs_sb->rsize = CIFSMaxBufSize;
2544 } else if ((pvolume_info->rsize) &&
2545 (pvolume_info->rsize <= CIFSMaxBufSize))
2546 cifs_sb->rsize = pvolume_info->rsize;
2547 else /* default */
2548 cifs_sb->rsize = CIFSMaxBufSize;
2549
2550 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
2551 cERROR(1, "wsize %d too large, using 4096 instead",
2552 pvolume_info->wsize);
2553 cifs_sb->wsize = 4096;
2554 } else if (pvolume_info->wsize)
2555 cifs_sb->wsize = pvolume_info->wsize;
2556 else
2557 cifs_sb->wsize = min_t(const int,
2558 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2559 127*1024);
2560 /* old default of CIFSMaxBufSize was too small now
2561 that SMB Write2 can send multiple pages in kvec.
2562 RFC1001 does not describe what happens when frame
2563 bigger than 128K is sent so use that as max in
2564 conjunction with 52K kvec constraint on arch with 4K
2565 page size */
2566
2567 if (cifs_sb->rsize < 2048) {
2568 cifs_sb->rsize = 2048;
2569 /* Windows ME may prefer this */
2570 cFYI(1, "readsize set to minimum: 2048");
2571 }
2572 /* calculate prepath */
2573 cifs_sb->prepath = pvolume_info->prepath;
2574 if (cifs_sb->prepath) {
2575 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2576 /* we can not convert the / to \ in the path
2577 separators in the prefixpath yet because we do not
2578 know (until reset_cifs_unix_caps is called later)
2579 whether POSIX PATH CAP is available. We normalize
2580 the / to \ after reset_cifs_unix_caps is called */
2581 pvolume_info->prepath = NULL;
2582 } else
2583 cifs_sb->prepathlen = 0;
2584 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2585 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2586 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2587 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
2588 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2589 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
2590
2591 cifs_sb->actimeo = pvolume_info->actimeo;
2592
2593 if (pvolume_info->noperm)
2594 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2595 if (pvolume_info->setuids)
2596 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2597 if (pvolume_info->server_ino)
2598 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2599 if (pvolume_info->remap)
2600 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2601 if (pvolume_info->no_xattr)
2602 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2603 if (pvolume_info->sfu_emul)
2604 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2605 if (pvolume_info->nobrl)
2606 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
2607 if (pvolume_info->nostrictsync)
2608 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
2609 if (pvolume_info->mand_lock)
2610 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
2611 if (pvolume_info->cifs_acl)
2612 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2613 if (pvolume_info->override_uid)
2614 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2615 if (pvolume_info->override_gid)
2616 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2617 if (pvolume_info->dynperm)
2618 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2619 if (pvolume_info->fsc)
2620 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
2621 if (pvolume_info->multiuser)
2622 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2623 CIFS_MOUNT_NO_PERM);
2624 if (pvolume_info->strict_io)
2625 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
2626 if (pvolume_info->direct_io) {
2627 cFYI(1, "mounting share using direct i/o");
2628 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2629 }
2630 if (pvolume_info->mfsymlinks) {
2631 if (pvolume_info->sfu_emul) {
2632 cERROR(1, "mount option mfsymlinks ignored if sfu "
2633 "mount option is used");
2634 } else {
2635 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2636 }
2637 }
2638
2639 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
2640 cERROR(1, "mount option dynperm ignored if cifsacl "
2641 "mount option supported");
2642 }
2643
2644 static int
2645 is_path_accessible(int xid, struct cifsTconInfo *tcon,
2646 struct cifs_sb_info *cifs_sb, const char *full_path)
2647 {
2648 int rc;
2649 FILE_ALL_INFO *pfile_info;
2650
2651 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2652 if (pfile_info == NULL)
2653 return -ENOMEM;
2654
2655 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2656 0 /* not legacy */, cifs_sb->local_nls,
2657 cifs_sb->mnt_cifs_flags &
2658 CIFS_MOUNT_MAP_SPECIAL_CHR);
2659 kfree(pfile_info);
2660 return rc;
2661 }
2662
2663 static void
2664 cleanup_volume_info(struct smb_vol **pvolume_info)
2665 {
2666 struct smb_vol *volume_info;
2667
2668 if (!pvolume_info || !*pvolume_info)
2669 return;
2670
2671 volume_info = *pvolume_info;
2672 kzfree(volume_info->password);
2673 kfree(volume_info->UNC);
2674 kfree(volume_info->prepath);
2675 kfree(volume_info);
2676 *pvolume_info = NULL;
2677 return;
2678 }
2679
2680 #ifdef CONFIG_CIFS_DFS_UPCALL
2681 /* build_path_to_root returns full path to root when
2682 * we do not have an exiting connection (tcon) */
2683 static char *
2684 build_unc_path_to_root(const struct smb_vol *volume_info,
2685 const struct cifs_sb_info *cifs_sb)
2686 {
2687 char *full_path;
2688
2689 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2690 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2691 if (full_path == NULL)
2692 return ERR_PTR(-ENOMEM);
2693
2694 strncpy(full_path, volume_info->UNC, unc_len);
2695 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2696 int i;
2697 for (i = 0; i < unc_len; i++) {
2698 if (full_path[i] == '\\')
2699 full_path[i] = '/';
2700 }
2701 }
2702
2703 if (cifs_sb->prepathlen)
2704 strncpy(full_path + unc_len, cifs_sb->prepath,
2705 cifs_sb->prepathlen);
2706
2707 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2708 return full_path;
2709 }
2710 #endif
2711
2712 int
2713 cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
2714 char *mount_data_global, const char *devname)
2715 {
2716 int rc;
2717 int xid;
2718 struct smb_vol *volume_info;
2719 struct cifsSesInfo *pSesInfo;
2720 struct cifsTconInfo *tcon;
2721 struct TCP_Server_Info *srvTcp;
2722 char *full_path;
2723 char *mount_data = mount_data_global;
2724 struct tcon_link *tlink;
2725 #ifdef CONFIG_CIFS_DFS_UPCALL
2726 struct dfs_info3_param *referrals = NULL;
2727 unsigned int num_referrals = 0;
2728 int referral_walks_count = 0;
2729 try_mount_again:
2730 #endif
2731 rc = 0;
2732 tcon = NULL;
2733 pSesInfo = NULL;
2734 srvTcp = NULL;
2735 full_path = NULL;
2736 tlink = NULL;
2737
2738 xid = GetXid();
2739
2740 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2741 if (!volume_info) {
2742 rc = -ENOMEM;
2743 goto out;
2744 }
2745
2746 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
2747 rc = -EINVAL;
2748 goto out;
2749 }
2750
2751 if (volume_info->nullauth) {
2752 cFYI(1, "null user");
2753 volume_info->username = "";
2754 } else if (volume_info->username) {
2755 /* BB fixme parse for domain name here */
2756 cFYI(1, "Username: %s", volume_info->username);
2757 } else {
2758 cifserror("No username specified");
2759 /* In userspace mount helper we can get user name from alternate
2760 locations such as env variables and files on disk */
2761 rc = -EINVAL;
2762 goto out;
2763 }
2764
2765 /* this is needed for ASCII cp to Unicode converts */
2766 if (volume_info->iocharset == NULL) {
2767 /* load_nls_default cannot return null */
2768 volume_info->local_nls = load_nls_default();
2769 } else {
2770 volume_info->local_nls = load_nls(volume_info->iocharset);
2771 if (volume_info->local_nls == NULL) {
2772 cERROR(1, "CIFS mount error: iocharset %s not found",
2773 volume_info->iocharset);
2774 rc = -ELIBACC;
2775 goto out;
2776 }
2777 }
2778 cifs_sb->local_nls = volume_info->local_nls;
2779
2780 /* get a reference to a tcp session */
2781 srvTcp = cifs_get_tcp_session(volume_info);
2782 if (IS_ERR(srvTcp)) {
2783 rc = PTR_ERR(srvTcp);
2784 goto out;
2785 }
2786
2787 /* get a reference to a SMB session */
2788 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2789 if (IS_ERR(pSesInfo)) {
2790 rc = PTR_ERR(pSesInfo);
2791 pSesInfo = NULL;
2792 goto mount_fail_check;
2793 }
2794
2795 setup_cifs_sb(volume_info, cifs_sb);
2796 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2797 sb->s_maxbytes = MAX_LFS_FILESIZE;
2798 else
2799 sb->s_maxbytes = MAX_NON_LFS;
2800
2801 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
2802 sb->s_time_gran = 100;
2803
2804 /* search for existing tcon to this server share */
2805 tcon = cifs_get_tcon(pSesInfo, volume_info);
2806 if (IS_ERR(tcon)) {
2807 rc = PTR_ERR(tcon);
2808 tcon = NULL;
2809 goto remote_path_check;
2810 }
2811
2812 /* do not care if following two calls succeed - informational */
2813 if (!tcon->ipc) {
2814 CIFSSMBQFSDeviceInfo(xid, tcon);
2815 CIFSSMBQFSAttributeInfo(xid, tcon);
2816 }
2817
2818 /* tell server which Unix caps we support */
2819 if (tcon->ses->capabilities & CAP_UNIX)
2820 /* reset of caps checks mount to see if unix extensions
2821 disabled for just this mount */
2822 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
2823 else
2824 tcon->unix_ext = 0; /* server does not support them */
2825
2826 /* convert forward to back slashes in prepath here if needed */
2827 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2828 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
2829
2830 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2831 cifs_sb->rsize = 1024 * 127;
2832 cFYI(DBG2, "no very large read support, rsize now 127K");
2833 }
2834 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2835 cifs_sb->wsize = min(cifs_sb->wsize,
2836 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2837 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2838 cifs_sb->rsize = min(cifs_sb->rsize,
2839 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2840
2841 remote_path_check:
2842 /* check if a whole path (including prepath) is not remote */
2843 if (!rc && tcon) {
2844 /* build_path_to_root works only when we have a valid tcon */
2845 full_path = cifs_build_path_to_root(cifs_sb, tcon);
2846 if (full_path == NULL) {
2847 rc = -ENOMEM;
2848 goto mount_fail_check;
2849 }
2850 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
2851 if (rc != 0 && rc != -EREMOTE) {
2852 kfree(full_path);
2853 goto mount_fail_check;
2854 }
2855 kfree(full_path);
2856 }
2857
2858 /* get referral if needed */
2859 if (rc == -EREMOTE) {
2860 #ifdef CONFIG_CIFS_DFS_UPCALL
2861 if (referral_walks_count > MAX_NESTED_LINKS) {
2862 /*
2863 * BB: when we implement proper loop detection,
2864 * we will remove this check. But now we need it
2865 * to prevent an indefinite loop if 'DFS tree' is
2866 * misconfigured (i.e. has loops).
2867 */
2868 rc = -ELOOP;
2869 goto mount_fail_check;
2870 }
2871 /* convert forward to back slashes in prepath here if needed */
2872 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2873 convert_delimiter(cifs_sb->prepath,
2874 CIFS_DIR_SEP(cifs_sb));
2875 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2876 if (IS_ERR(full_path)) {
2877 rc = PTR_ERR(full_path);
2878 goto mount_fail_check;
2879 }
2880
2881 cFYI(1, "Getting referral for: %s", full_path);
2882 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2883 cifs_sb->local_nls, &num_referrals, &referrals,
2884 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2885 if (!rc && num_referrals > 0) {
2886 char *fake_devname = NULL;
2887
2888 if (mount_data != mount_data_global)
2889 kfree(mount_data);
2890
2891 mount_data = cifs_compose_mount_options(
2892 cifs_sb->mountdata, full_path + 1,
2893 referrals, &fake_devname);
2894
2895 free_dfs_info_array(referrals, num_referrals);
2896 kfree(fake_devname);
2897 kfree(full_path);
2898
2899 if (IS_ERR(mount_data)) {
2900 rc = PTR_ERR(mount_data);
2901 mount_data = NULL;
2902 goto mount_fail_check;
2903 }
2904
2905 if (tcon)
2906 cifs_put_tcon(tcon);
2907 else if (pSesInfo)
2908 cifs_put_smb_ses(pSesInfo);
2909
2910 cleanup_volume_info(&volume_info);
2911 referral_walks_count++;
2912 FreeXid(xid);
2913 goto try_mount_again;
2914 }
2915 #else /* No DFS support, return error on mount */
2916 rc = -EOPNOTSUPP;
2917 #endif
2918 }
2919
2920 if (rc)
2921 goto mount_fail_check;
2922
2923 /* now, hang the tcon off of the superblock */
2924 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
2925 if (tlink == NULL) {
2926 rc = -ENOMEM;
2927 goto mount_fail_check;
2928 }
2929
2930 tlink->tl_uid = pSesInfo->linux_uid;
2931 tlink->tl_tcon = tcon;
2932 tlink->tl_time = jiffies;
2933 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
2934 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
2935
2936 cifs_sb->master_tlink = tlink;
2937 spin_lock(&cifs_sb->tlink_tree_lock);
2938 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
2939 spin_unlock(&cifs_sb->tlink_tree_lock);
2940
2941 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
2942 TLINK_IDLE_EXPIRE);
2943
2944 mount_fail_check:
2945 /* on error free sesinfo and tcon struct if needed */
2946 if (rc) {
2947 if (mount_data != mount_data_global)
2948 kfree(mount_data);
2949 /* If find_unc succeeded then rc == 0 so we can not end */
2950 /* up accidently freeing someone elses tcon struct */
2951 if (tcon)
2952 cifs_put_tcon(tcon);
2953 else if (pSesInfo)
2954 cifs_put_smb_ses(pSesInfo);
2955 else
2956 cifs_put_tcp_session(srvTcp);
2957 goto out;
2958 }
2959
2960 /* volume_info->password is freed above when existing session found
2961 (in which case it is not needed anymore) but when new sesion is created
2962 the password ptr is put in the new session structure (in which case the
2963 password will be freed at unmount time) */
2964 out:
2965 /* zero out password before freeing */
2966 cleanup_volume_info(&volume_info);
2967 FreeXid(xid);
2968 return rc;
2969 }
2970
2971 int
2972 CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2973 const char *tree, struct cifsTconInfo *tcon,
2974 const struct nls_table *nls_codepage)
2975 {
2976 struct smb_hdr *smb_buffer;
2977 struct smb_hdr *smb_buffer_response;
2978 TCONX_REQ *pSMB;
2979 TCONX_RSP *pSMBr;
2980 unsigned char *bcc_ptr;
2981 int rc = 0;
2982 int length;
2983 __u16 bytes_left, count;
2984
2985 if (ses == NULL)
2986 return -EIO;
2987
2988 smb_buffer = cifs_buf_get();
2989 if (smb_buffer == NULL)
2990 return -ENOMEM;
2991
2992 smb_buffer_response = smb_buffer;
2993
2994 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2995 NULL /*no tid */ , 4 /*wct */ );
2996
2997 smb_buffer->Mid = GetNextMid(ses->server);
2998 smb_buffer->Uid = ses->Suid;
2999 pSMB = (TCONX_REQ *) smb_buffer;
3000 pSMBr = (TCONX_RSP *) smb_buffer_response;
3001
3002 pSMB->AndXCommand = 0xFF;
3003 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
3004 bcc_ptr = &pSMB->Password[0];
3005 if ((ses->server->secMode) & SECMODE_USER) {
3006 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
3007 *bcc_ptr = 0; /* password is null byte */
3008 bcc_ptr++; /* skip password */
3009 /* already aligned so no need to do it below */
3010 } else {
3011 pSMB->PasswordLength = cpu_to_le16(CIFS_AUTH_RESP_SIZE);
3012 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
3013 specified as required (when that support is added to
3014 the vfs in the future) as only NTLM or the much
3015 weaker LANMAN (which we do not send by default) is accepted
3016 by Samba (not sure whether other servers allow
3017 NTLMv2 password here) */
3018 #ifdef CONFIG_CIFS_WEAK_PW_HASH
3019 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
3020 (ses->server->secType == LANMAN))
3021 calc_lanman_hash(tcon->password, ses->server->cryptkey,
3022 ses->server->secMode &
3023 SECMODE_PW_ENCRYPT ? true : false,
3024 bcc_ptr);
3025 else
3026 #endif /* CIFS_WEAK_PW_HASH */
3027 rc = SMBNTencrypt(tcon->password, ses->server->cryptkey,
3028 bcc_ptr);
3029
3030 bcc_ptr += CIFS_AUTH_RESP_SIZE;
3031 if (ses->capabilities & CAP_UNICODE) {
3032 /* must align unicode strings */
3033 *bcc_ptr = 0; /* null byte password */
3034 bcc_ptr++;
3035 }
3036 }
3037
3038 if (ses->server->secMode &
3039 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
3040 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3041
3042 if (ses->capabilities & CAP_STATUS32) {
3043 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3044 }
3045 if (ses->capabilities & CAP_DFS) {
3046 smb_buffer->Flags2 |= SMBFLG2_DFS;
3047 }
3048 if (ses->capabilities & CAP_UNICODE) {
3049 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3050 length =
3051 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3052 6 /* max utf8 char length in bytes */ *
3053 (/* server len*/ + 256 /* share len */), nls_codepage);
3054 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
3055 bcc_ptr += 2; /* skip trailing null */
3056 } else { /* ASCII */
3057 strcpy(bcc_ptr, tree);
3058 bcc_ptr += strlen(tree) + 1;
3059 }
3060 strcpy(bcc_ptr, "?????");
3061 bcc_ptr += strlen("?????");
3062 bcc_ptr += 1;
3063 count = bcc_ptr - &pSMB->Password[0];
3064 pSMB->hdr.smb_buf_length += count;
3065 pSMB->ByteCount = cpu_to_le16(count);
3066
3067 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
3068 0);
3069
3070 /* above now done in SendReceive */
3071 if ((rc == 0) && (tcon != NULL)) {
3072 bool is_unicode;
3073
3074 tcon->tidStatus = CifsGood;
3075 tcon->need_reconnect = false;
3076 tcon->tid = smb_buffer_response->Tid;
3077 bcc_ptr = pByteArea(smb_buffer_response);
3078 bytes_left = get_bcc(smb_buffer_response);
3079 length = strnlen(bcc_ptr, bytes_left - 2);
3080 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3081 is_unicode = true;
3082 else
3083 is_unicode = false;
3084
3085
3086 /* skip service field (NB: this field is always ASCII) */
3087 if (length == 3) {
3088 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3089 (bcc_ptr[2] == 'C')) {
3090 cFYI(1, "IPC connection");
3091 tcon->ipc = 1;
3092 }
3093 } else if (length == 2) {
3094 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3095 /* the most common case */
3096 cFYI(1, "disk share connection");
3097 }
3098 }
3099 bcc_ptr += length + 1;
3100 bytes_left -= (length + 1);
3101 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
3102
3103 /* mostly informational -- no need to fail on error here */
3104 kfree(tcon->nativeFileSystem);
3105 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
3106 bytes_left, is_unicode,
3107 nls_codepage);
3108
3109 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
3110
3111 if ((smb_buffer_response->WordCount == 3) ||
3112 (smb_buffer_response->WordCount == 7))
3113 /* field is in same location */
3114 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3115 else
3116 tcon->Flags = 0;
3117 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
3118 } else if ((rc == 0) && tcon == NULL) {
3119 /* all we need to save for IPC$ connection */
3120 ses->ipc_tid = smb_buffer_response->Tid;
3121 }
3122
3123 cifs_buf_release(smb_buffer);
3124 return rc;
3125 }
3126
3127 int
3128 cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
3129 {
3130 struct rb_root *root = &cifs_sb->tlink_tree;
3131 struct rb_node *node;
3132 struct tcon_link *tlink;
3133 char *tmp;
3134
3135 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3136
3137 spin_lock(&cifs_sb->tlink_tree_lock);
3138 while ((node = rb_first(root))) {
3139 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3140 cifs_get_tlink(tlink);
3141 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3142 rb_erase(node, root);
3143
3144 spin_unlock(&cifs_sb->tlink_tree_lock);
3145 cifs_put_tlink(tlink);
3146 spin_lock(&cifs_sb->tlink_tree_lock);
3147 }
3148 spin_unlock(&cifs_sb->tlink_tree_lock);
3149
3150 tmp = cifs_sb->prepath;
3151 cifs_sb->prepathlen = 0;
3152 cifs_sb->prepath = NULL;
3153 kfree(tmp);
3154
3155 return 0;
3156 }
3157
3158 int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
3159 {
3160 int rc = 0;
3161 struct TCP_Server_Info *server = ses->server;
3162
3163 /* only send once per connect */
3164 if (server->maxBuf != 0)
3165 return 0;
3166
3167 rc = CIFSSMBNegotiate(xid, ses);
3168 if (rc == -EAGAIN) {
3169 /* retry only once on 1st time connection */
3170 rc = CIFSSMBNegotiate(xid, ses);
3171 if (rc == -EAGAIN)
3172 rc = -EHOSTDOWN;
3173 }
3174 if (rc == 0) {
3175 spin_lock(&GlobalMid_Lock);
3176 if (server->tcpStatus != CifsExiting)
3177 server->tcpStatus = CifsGood;
3178 else
3179 rc = -EHOSTDOWN;
3180 spin_unlock(&GlobalMid_Lock);
3181
3182 }
3183
3184 return rc;
3185 }
3186
3187
3188 int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
3189 struct nls_table *nls_info)
3190 {
3191 int rc = 0;
3192 struct TCP_Server_Info *server = ses->server;
3193
3194 ses->flags = 0;
3195 ses->capabilities = server->capabilities;
3196 if (linuxExtEnabled == 0)
3197 ses->capabilities &= (~CAP_UNIX);
3198
3199 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3200 server->secMode, server->capabilities, server->timeAdj);
3201
3202 rc = CIFS_SessSetup(xid, ses, nls_info);
3203 if (rc) {
3204 cERROR(1, "Send error in SessSetup = %d", rc);
3205 } else {
3206 mutex_lock(&ses->server->srv_mutex);
3207 if (!server->session_estab) {
3208 server->session_key.response = ses->auth_key.response;
3209 server->session_key.len = ses->auth_key.len;
3210 server->sequence_number = 0x2;
3211 server->session_estab = true;
3212 ses->auth_key.response = NULL;
3213 }
3214 mutex_unlock(&server->srv_mutex);
3215
3216 cFYI(1, "CIFS Session Established successfully");
3217 spin_lock(&GlobalMid_Lock);
3218 ses->status = CifsGood;
3219 ses->need_reconnect = false;
3220 spin_unlock(&GlobalMid_Lock);
3221 }
3222
3223 kfree(ses->auth_key.response);
3224 ses->auth_key.response = NULL;
3225 ses->auth_key.len = 0;
3226 kfree(ses->ntlmssp);
3227 ses->ntlmssp = NULL;
3228
3229 return rc;
3230 }
3231
3232 static struct cifsTconInfo *
3233 cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3234 {
3235 struct cifsTconInfo *master_tcon = cifs_sb_master_tcon(cifs_sb);
3236 struct cifsSesInfo *ses;
3237 struct cifsTconInfo *tcon = NULL;
3238 struct smb_vol *vol_info;
3239 char username[MAX_USERNAME_SIZE + 1];
3240
3241 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3242 if (vol_info == NULL) {
3243 tcon = ERR_PTR(-ENOMEM);
3244 goto out;
3245 }
3246
3247 snprintf(username, MAX_USERNAME_SIZE, "krb50x%x", fsuid);
3248 vol_info->username = username;
3249 vol_info->local_nls = cifs_sb->local_nls;
3250 vol_info->linux_uid = fsuid;
3251 vol_info->cred_uid = fsuid;
3252 vol_info->UNC = master_tcon->treeName;
3253 vol_info->retry = master_tcon->retry;
3254 vol_info->nocase = master_tcon->nocase;
3255 vol_info->local_lease = master_tcon->local_lease;
3256 vol_info->no_linux_ext = !master_tcon->unix_ext;
3257
3258 /* FIXME: allow for other secFlg settings */
3259 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3260
3261 /* get a reference for the same TCP session */
3262 spin_lock(&cifs_tcp_ses_lock);
3263 ++master_tcon->ses->server->srv_count;
3264 spin_unlock(&cifs_tcp_ses_lock);
3265
3266 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3267 if (IS_ERR(ses)) {
3268 tcon = (struct cifsTconInfo *)ses;
3269 cifs_put_tcp_session(master_tcon->ses->server);
3270 goto out;
3271 }
3272
3273 tcon = cifs_get_tcon(ses, vol_info);
3274 if (IS_ERR(tcon)) {
3275 cifs_put_smb_ses(ses);
3276 goto out;
3277 }
3278
3279 if (ses->capabilities & CAP_UNIX)
3280 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3281 out:
3282 kfree(vol_info);
3283
3284 return tcon;
3285 }
3286
3287 static inline struct tcon_link *
3288 cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
3289 {
3290 return cifs_sb->master_tlink;
3291 }
3292
3293 struct cifsTconInfo *
3294 cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3295 {
3296 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3297 }
3298
3299 static int
3300 cifs_sb_tcon_pending_wait(void *unused)
3301 {
3302 schedule();
3303 return signal_pending(current) ? -ERESTARTSYS : 0;
3304 }
3305
3306 /* find and return a tlink with given uid */
3307 static struct tcon_link *
3308 tlink_rb_search(struct rb_root *root, uid_t uid)
3309 {
3310 struct rb_node *node = root->rb_node;
3311 struct tcon_link *tlink;
3312
3313 while (node) {
3314 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3315
3316 if (tlink->tl_uid > uid)
3317 node = node->rb_left;
3318 else if (tlink->tl_uid < uid)
3319 node = node->rb_right;
3320 else
3321 return tlink;
3322 }
3323 return NULL;
3324 }
3325
3326 /* insert a tcon_link into the tree */
3327 static void
3328 tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
3329 {
3330 struct rb_node **new = &(root->rb_node), *parent = NULL;
3331 struct tcon_link *tlink;
3332
3333 while (*new) {
3334 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
3335 parent = *new;
3336
3337 if (tlink->tl_uid > new_tlink->tl_uid)
3338 new = &((*new)->rb_left);
3339 else
3340 new = &((*new)->rb_right);
3341 }
3342
3343 rb_link_node(&new_tlink->tl_rbnode, parent, new);
3344 rb_insert_color(&new_tlink->tl_rbnode, root);
3345 }
3346
3347 /*
3348 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3349 * current task.
3350 *
3351 * If the superblock doesn't refer to a multiuser mount, then just return
3352 * the master tcon for the mount.
3353 *
3354 * First, search the rbtree for an existing tcon for this fsuid. If one
3355 * exists, then check to see if it's pending construction. If it is then wait
3356 * for construction to complete. Once it's no longer pending, check to see if
3357 * it failed and either return an error or retry construction, depending on
3358 * the timeout.
3359 *
3360 * If one doesn't exist then insert a new tcon_link struct into the tree and
3361 * try to construct a new one.
3362 */
3363 struct tcon_link *
3364 cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3365 {
3366 int ret;
3367 uid_t fsuid = current_fsuid();
3368 struct tcon_link *tlink, *newtlink;
3369
3370 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3371 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3372
3373 spin_lock(&cifs_sb->tlink_tree_lock);
3374 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
3375 if (tlink)
3376 cifs_get_tlink(tlink);
3377 spin_unlock(&cifs_sb->tlink_tree_lock);
3378
3379 if (tlink == NULL) {
3380 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3381 if (newtlink == NULL)
3382 return ERR_PTR(-ENOMEM);
3383 newtlink->tl_uid = fsuid;
3384 newtlink->tl_tcon = ERR_PTR(-EACCES);
3385 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3386 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3387 cifs_get_tlink(newtlink);
3388
3389 spin_lock(&cifs_sb->tlink_tree_lock);
3390 /* was one inserted after previous search? */
3391 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
3392 if (tlink) {
3393 cifs_get_tlink(tlink);
3394 spin_unlock(&cifs_sb->tlink_tree_lock);
3395 kfree(newtlink);
3396 goto wait_for_construction;
3397 }
3398 tlink = newtlink;
3399 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3400 spin_unlock(&cifs_sb->tlink_tree_lock);
3401 } else {
3402 wait_for_construction:
3403 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3404 cifs_sb_tcon_pending_wait,
3405 TASK_INTERRUPTIBLE);
3406 if (ret) {
3407 cifs_put_tlink(tlink);
3408 return ERR_PTR(ret);
3409 }
3410
3411 /* if it's good, return it */
3412 if (!IS_ERR(tlink->tl_tcon))
3413 return tlink;
3414
3415 /* return error if we tried this already recently */
3416 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3417 cifs_put_tlink(tlink);
3418 return ERR_PTR(-EACCES);
3419 }
3420
3421 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3422 goto wait_for_construction;
3423 }
3424
3425 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3426 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3427 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3428
3429 if (IS_ERR(tlink->tl_tcon)) {
3430 cifs_put_tlink(tlink);
3431 return ERR_PTR(-EACCES);
3432 }
3433
3434 return tlink;
3435 }
3436
3437 /*
3438 * periodic workqueue job that scans tcon_tree for a superblock and closes
3439 * out tcons.
3440 */
3441 static void
3442 cifs_prune_tlinks(struct work_struct *work)
3443 {
3444 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3445 prune_tlinks.work);
3446 struct rb_root *root = &cifs_sb->tlink_tree;
3447 struct rb_node *node = rb_first(root);
3448 struct rb_node *tmp;
3449 struct tcon_link *tlink;
3450
3451 /*
3452 * Because we drop the spinlock in the loop in order to put the tlink
3453 * it's not guarded against removal of links from the tree. The only
3454 * places that remove entries from the tree are this function and
3455 * umounts. Because this function is non-reentrant and is canceled
3456 * before umount can proceed, this is safe.
3457 */
3458 spin_lock(&cifs_sb->tlink_tree_lock);
3459 node = rb_first(root);
3460 while (node != NULL) {
3461 tmp = node;
3462 node = rb_next(tmp);
3463 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
3464
3465 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
3466 atomic_read(&tlink->tl_count) != 0 ||
3467 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
3468 continue;
3469
3470 cifs_get_tlink(tlink);
3471 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3472 rb_erase(tmp, root);
3473
3474 spin_unlock(&cifs_sb->tlink_tree_lock);
3475 cifs_put_tlink(tlink);
3476 spin_lock(&cifs_sb->tlink_tree_lock);
3477 }
3478 spin_unlock(&cifs_sb->tlink_tree_lock);
3479
3480 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3481 TLINK_IDLE_EXPIRE);
3482 }
Linux 2.6 ibm-acpi/thinkpad-acpi driver git tree