projects / GitHub / LineageOS / android_kernel_samsung_universal7580.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
cifs: clean up cifs_find_smb_ses (try #2)
[GitHub/LineageOS/android_kernel_samsung_universal7580.git] / fs / cifs / connect.c
1 /*
2 * fs/cifs/connect.c
3 *
4 * Copyright (C) International Business Machines Corp., 2002,2009
5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 */
21 #include <linux/fs.h>
22 #include <linux/net.h>
23 #include <linux/string.h>
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/slab.h>
27 #include <linux/pagemap.h>
28 #include <linux/ctype.h>
29 #include <linux/utsname.h>
30 #include <linux/mempool.h>
31 #include <linux/delay.h>
32 #include <linux/completion.h>
33 #include <linux/kthread.h>
34 #include <linux/pagevec.h>
35 #include <linux/freezer.h>
36 #include <linux/namei.h>
37 #include <asm/uaccess.h>
38 #include <asm/processor.h>
39 #include <linux/inet.h>
40 #include <net/ipv6.h>
41 #include "cifspdu.h"
42 #include "cifsglob.h"
43 #include "cifsproto.h"
44 #include "cifs_unicode.h"
45 #include "cifs_debug.h"
46 #include "cifs_fs_sb.h"
47 #include "ntlmssp.h"
48 #include "nterr.h"
49 #include "rfc1002pdu.h"
50 #include "cn_cifs.h"
51 #include "fscache.h"
52
53 #define CIFS_PORT 445
54 #define RFC1001_PORT 139
55
56 extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
57 unsigned char *p24);
58
59 extern mempool_t *cifs_req_poolp;
60
61 struct smb_vol {
62 char *username;
63 char *password;
64 char *domainname;
65 char *UNC;
66 char *UNCip;
67 char *iocharset; /* local code page for mapping to and from Unicode */
68 char source_rfc1001_name[16]; /* netbios name of client */
69 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
74 unsigned secFlg;
75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
80 bool dynperm:1;
81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
87 bool remap:1; /* set to remap seven reserved chars in filenames */
88 bool posix_paths:1; /* unset to not ask for posix pathnames. */
89 bool no_linux_ext:1;
90 bool sfu_emul:1;
91 bool nullauth:1; /* attempt to authenticate with null user */
92 bool nocase:1; /* request case insensitive filenames */
93 bool nobrl:1; /* disable sending byte range locks to srv */
94 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95 bool seal:1; /* request transport encryption on share */
96 bool nodfs:1; /* Do not request DFS, even if available */
97 bool local_lease:1; /* check leases only on local system, not remote */
98 bool noblocksnd:1;
99 bool noautotune:1;
100 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
101 unsigned int rsize;
102 unsigned int wsize;
103 bool sockopt_tcp_nodelay:1;
104 unsigned short int port;
105 char *prepath;
106 struct nls_table *local_nls;
107 };
108
109 static int ipv4_connect(struct TCP_Server_Info *server);
110 static int ipv6_connect(struct TCP_Server_Info *server);
111
112 /*
113 * cifs tcp session reconnection
114 *
115 * mark tcp session as reconnecting so temporarily locked
116 * mark all smb sessions as reconnecting for tcp session
117 * reconnect tcp session
118 * wake up waiters on reconnection? - (not needed currently)
119 */
120 static int
121 cifs_reconnect(struct TCP_Server_Info *server)
122 {
123 int rc = 0;
124 struct list_head *tmp, *tmp2;
125 struct cifsSesInfo *ses;
126 struct cifsTconInfo *tcon;
127 struct mid_q_entry *mid_entry;
128
129 spin_lock(&GlobalMid_Lock);
130 if (server->tcpStatus == CifsExiting) {
131 /* the demux thread will exit normally
132 next time through the loop */
133 spin_unlock(&GlobalMid_Lock);
134 return rc;
135 } else
136 server->tcpStatus = CifsNeedReconnect;
137 spin_unlock(&GlobalMid_Lock);
138 server->maxBuf = 0;
139
140 cFYI(1, "Reconnecting tcp session");
141
142 /* before reconnecting the tcp session, mark the smb session (uid)
143 and the tid bad so they are not used until reconnected */
144 read_lock(&cifs_tcp_ses_lock);
145 list_for_each(tmp, &server->smb_ses_list) {
146 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
147 ses->need_reconnect = true;
148 ses->ipc_tid = 0;
149 list_for_each(tmp2, &ses->tcon_list) {
150 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
151 tcon->need_reconnect = true;
152 }
153 }
154 read_unlock(&cifs_tcp_ses_lock);
155 /* do not want to be sending data on a socket we are freeing */
156 mutex_lock(&server->srv_mutex);
157 if (server->ssocket) {
158 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
159 server->ssocket->flags);
160 kernel_sock_shutdown(server->ssocket, SHUT_WR);
161 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
162 server->ssocket->state,
163 server->ssocket->flags);
164 sock_release(server->ssocket);
165 server->ssocket = NULL;
166 }
167
168 spin_lock(&GlobalMid_Lock);
169 list_for_each(tmp, &server->pending_mid_q) {
170 mid_entry = list_entry(tmp, struct
171 mid_q_entry,
172 qhead);
173 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
174 /* Mark other intransit requests as needing
175 retry so we do not immediately mark the
176 session bad again (ie after we reconnect
177 below) as they timeout too */
178 mid_entry->midState = MID_RETRY_NEEDED;
179 }
180 }
181 spin_unlock(&GlobalMid_Lock);
182 mutex_unlock(&server->srv_mutex);
183
184 while ((server->tcpStatus != CifsExiting) &&
185 (server->tcpStatus != CifsGood)) {
186 try_to_freeze();
187 if (server->addr.sockAddr6.sin6_family == AF_INET6)
188 rc = ipv6_connect(server);
189 else
190 rc = ipv4_connect(server);
191 if (rc) {
192 cFYI(1, "reconnect error %d", rc);
193 msleep(3000);
194 } else {
195 atomic_inc(&tcpSesReconnectCount);
196 spin_lock(&GlobalMid_Lock);
197 if (server->tcpStatus != CifsExiting)
198 server->tcpStatus = CifsGood;
199 server->sequence_number = 0;
200 spin_unlock(&GlobalMid_Lock);
201 /* atomic_set(&server->inFlight,0);*/
202 wake_up(&server->response_q);
203 }
204 }
205 return rc;
206 }
207
208 /*
209 return codes:
210 0 not a transact2, or all data present
211 >0 transact2 with that much data missing
212 -EINVAL = invalid transact2
213
214 */
215 static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
216 {
217 struct smb_t2_rsp *pSMBt;
218 int total_data_size;
219 int data_in_this_rsp;
220 int remaining;
221
222 if (pSMB->Command != SMB_COM_TRANSACTION2)
223 return 0;
224
225 /* check for plausible wct, bcc and t2 data and parm sizes */
226 /* check for parm and data offset going beyond end of smb */
227 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
228 cFYI(1, "invalid transact2 word count");
229 return -EINVAL;
230 }
231
232 pSMBt = (struct smb_t2_rsp *)pSMB;
233
234 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
235 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
236
237 remaining = total_data_size - data_in_this_rsp;
238
239 if (remaining == 0)
240 return 0;
241 else if (remaining < 0) {
242 cFYI(1, "total data %d smaller than data in frame %d",
243 total_data_size, data_in_this_rsp);
244 return -EINVAL;
245 } else {
246 cFYI(1, "missing %d bytes from transact2, check next response",
247 remaining);
248 if (total_data_size > maxBufSize) {
249 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
250 total_data_size, maxBufSize);
251 return -EINVAL;
252 }
253 return remaining;
254 }
255 }
256
257 static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
258 {
259 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
260 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
261 int total_data_size;
262 int total_in_buf;
263 int remaining;
264 int total_in_buf2;
265 char *data_area_of_target;
266 char *data_area_of_buf2;
267 __u16 byte_count;
268
269 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
270
271 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
272 cFYI(1, "total data size of primary and secondary t2 differ");
273 }
274
275 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
276
277 remaining = total_data_size - total_in_buf;
278
279 if (remaining < 0)
280 return -EINVAL;
281
282 if (remaining == 0) /* nothing to do, ignore */
283 return 0;
284
285 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
286 if (remaining < total_in_buf2) {
287 cFYI(1, "transact2 2nd response contains too much data");
288 }
289
290 /* find end of first SMB data area */
291 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
292 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
293 /* validate target area */
294
295 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
296 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
297
298 data_area_of_target += total_in_buf;
299
300 /* copy second buffer into end of first buffer */
301 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
302 total_in_buf += total_in_buf2;
303 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
304 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
305 byte_count += total_in_buf2;
306 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
307
308 byte_count = pTargetSMB->smb_buf_length;
309 byte_count += total_in_buf2;
310
311 /* BB also add check that we are not beyond maximum buffer size */
312
313 pTargetSMB->smb_buf_length = byte_count;
314
315 if (remaining == total_in_buf2) {
316 cFYI(1, "found the last secondary response");
317 return 0; /* we are done */
318 } else /* more responses to go */
319 return 1;
320
321 }
322
323 static int
324 cifs_demultiplex_thread(struct TCP_Server_Info *server)
325 {
326 int length;
327 unsigned int pdu_length, total_read;
328 struct smb_hdr *smb_buffer = NULL;
329 struct smb_hdr *bigbuf = NULL;
330 struct smb_hdr *smallbuf = NULL;
331 struct msghdr smb_msg;
332 struct kvec iov;
333 struct socket *csocket = server->ssocket;
334 struct list_head *tmp;
335 struct cifsSesInfo *ses;
336 struct task_struct *task_to_wake = NULL;
337 struct mid_q_entry *mid_entry;
338 char temp;
339 bool isLargeBuf = false;
340 bool isMultiRsp;
341 int reconnect;
342
343 current->flags |= PF_MEMALLOC;
344 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
345
346 length = atomic_inc_return(&tcpSesAllocCount);
347 if (length > 1)
348 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
349 GFP_KERNEL);
350
351 set_freezable();
352 while (server->tcpStatus != CifsExiting) {
353 if (try_to_freeze())
354 continue;
355 if (bigbuf == NULL) {
356 bigbuf = cifs_buf_get();
357 if (!bigbuf) {
358 cERROR(1, "No memory for large SMB response");
359 msleep(3000);
360 /* retry will check if exiting */
361 continue;
362 }
363 } else if (isLargeBuf) {
364 /* we are reusing a dirty large buf, clear its start */
365 memset(bigbuf, 0, sizeof(struct smb_hdr));
366 }
367
368 if (smallbuf == NULL) {
369 smallbuf = cifs_small_buf_get();
370 if (!smallbuf) {
371 cERROR(1, "No memory for SMB response");
372 msleep(1000);
373 /* retry will check if exiting */
374 continue;
375 }
376 /* beginning of smb buffer is cleared in our buf_get */
377 } else /* if existing small buf clear beginning */
378 memset(smallbuf, 0, sizeof(struct smb_hdr));
379
380 isLargeBuf = false;
381 isMultiRsp = false;
382 smb_buffer = smallbuf;
383 iov.iov_base = smb_buffer;
384 iov.iov_len = 4;
385 smb_msg.msg_control = NULL;
386 smb_msg.msg_controllen = 0;
387 pdu_length = 4; /* enough to get RFC1001 header */
388 incomplete_rcv:
389 length =
390 kernel_recvmsg(csocket, &smb_msg,
391 &iov, 1, pdu_length, 0 /* BB other flags? */);
392
393 if (server->tcpStatus == CifsExiting) {
394 break;
395 } else if (server->tcpStatus == CifsNeedReconnect) {
396 cFYI(1, "Reconnect after server stopped responding");
397 cifs_reconnect(server);
398 cFYI(1, "call to reconnect done");
399 csocket = server->ssocket;
400 continue;
401 } else if ((length == -ERESTARTSYS) || (length == -EAGAIN)) {
402 msleep(1); /* minimum sleep to prevent looping
403 allowing socket to clear and app threads to set
404 tcpStatus CifsNeedReconnect if server hung */
405 if (pdu_length < 4) {
406 iov.iov_base = (4 - pdu_length) +
407 (char *)smb_buffer;
408 iov.iov_len = pdu_length;
409 smb_msg.msg_control = NULL;
410 smb_msg.msg_controllen = 0;
411 goto incomplete_rcv;
412 } else
413 continue;
414 } else if (length <= 0) {
415 if (server->tcpStatus == CifsNew) {
416 cFYI(1, "tcp session abend after SMBnegprot");
417 /* some servers kill the TCP session rather than
418 returning an SMB negprot error, in which
419 case reconnecting here is not going to help,
420 and so simply return error to mount */
421 break;
422 }
423 if (!try_to_freeze() && (length == -EINTR)) {
424 cFYI(1, "cifsd thread killed");
425 break;
426 }
427 cFYI(1, "Reconnect after unexpected peek error %d",
428 length);
429 cifs_reconnect(server);
430 csocket = server->ssocket;
431 wake_up(&server->response_q);
432 continue;
433 } else if (length < pdu_length) {
434 cFYI(1, "requested %d bytes but only got %d bytes",
435 pdu_length, length);
436 pdu_length -= length;
437 msleep(1);
438 goto incomplete_rcv;
439 }
440
441 /* The right amount was read from socket - 4 bytes */
442 /* so we can now interpret the length field */
443
444 /* the first byte big endian of the length field,
445 is actually not part of the length but the type
446 with the most common, zero, as regular data */
447 temp = *((char *) smb_buffer);
448
449 /* Note that FC 1001 length is big endian on the wire,
450 but we convert it here so it is always manipulated
451 as host byte order */
452 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
453 smb_buffer->smb_buf_length = pdu_length;
454
455 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
456
457 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
458 continue;
459 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
460 cFYI(1, "Good RFC 1002 session rsp");
461 continue;
462 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
463 /* we get this from Windows 98 instead of
464 an error on SMB negprot response */
465 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
466 pdu_length);
467 if (server->tcpStatus == CifsNew) {
468 /* if nack on negprot (rather than
469 ret of smb negprot error) reconnecting
470 not going to help, ret error to mount */
471 break;
472 } else {
473 /* give server a second to
474 clean up before reconnect attempt */
475 msleep(1000);
476 /* always try 445 first on reconnect
477 since we get NACK on some if we ever
478 connected to port 139 (the NACK is
479 since we do not begin with RFC1001
480 session initialize frame) */
481 server->addr.sockAddr.sin_port =
482 htons(CIFS_PORT);
483 cifs_reconnect(server);
484 csocket = server->ssocket;
485 wake_up(&server->response_q);
486 continue;
487 }
488 } else if (temp != (char) 0) {
489 cERROR(1, "Unknown RFC 1002 frame");
490 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
491 length);
492 cifs_reconnect(server);
493 csocket = server->ssocket;
494 continue;
495 }
496
497 /* else we have an SMB response */
498 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
499 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
500 cERROR(1, "Invalid size SMB length %d pdu_length %d",
501 length, pdu_length+4);
502 cifs_reconnect(server);
503 csocket = server->ssocket;
504 wake_up(&server->response_q);
505 continue;
506 }
507
508 /* else length ok */
509 reconnect = 0;
510
511 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
512 isLargeBuf = true;
513 memcpy(bigbuf, smallbuf, 4);
514 smb_buffer = bigbuf;
515 }
516 length = 0;
517 iov.iov_base = 4 + (char *)smb_buffer;
518 iov.iov_len = pdu_length;
519 for (total_read = 0; total_read < pdu_length;
520 total_read += length) {
521 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
522 pdu_length - total_read, 0);
523 if ((server->tcpStatus == CifsExiting) ||
524 (length == -EINTR)) {
525 /* then will exit */
526 reconnect = 2;
527 break;
528 } else if (server->tcpStatus == CifsNeedReconnect) {
529 cifs_reconnect(server);
530 csocket = server->ssocket;
531 /* Reconnect wakes up rspns q */
532 /* Now we will reread sock */
533 reconnect = 1;
534 break;
535 } else if ((length == -ERESTARTSYS) ||
536 (length == -EAGAIN)) {
537 msleep(1); /* minimum sleep to prevent looping,
538 allowing socket to clear and app
539 threads to set tcpStatus
540 CifsNeedReconnect if server hung*/
541 length = 0;
542 continue;
543 } else if (length <= 0) {
544 cERROR(1, "Received no data, expecting %d",
545 pdu_length - total_read);
546 cifs_reconnect(server);
547 csocket = server->ssocket;
548 reconnect = 1;
549 break;
550 }
551 }
552 if (reconnect == 2)
553 break;
554 else if (reconnect == 1)
555 continue;
556
557 length += 4; /* account for rfc1002 hdr */
558
559
560 dump_smb(smb_buffer, length);
561 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
562 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
563 continue;
564 }
565
566
567 task_to_wake = NULL;
568 spin_lock(&GlobalMid_Lock);
569 list_for_each(tmp, &server->pending_mid_q) {
570 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
571
572 if ((mid_entry->mid == smb_buffer->Mid) &&
573 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
574 (mid_entry->command == smb_buffer->Command)) {
575 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
576 /* We have a multipart transact2 resp */
577 isMultiRsp = true;
578 if (mid_entry->resp_buf) {
579 /* merge response - fix up 1st*/
580 if (coalesce_t2(smb_buffer,
581 mid_entry->resp_buf)) {
582 mid_entry->multiRsp =
583 true;
584 break;
585 } else {
586 /* all parts received */
587 mid_entry->multiEnd =
588 true;
589 goto multi_t2_fnd;
590 }
591 } else {
592 if (!isLargeBuf) {
593 cERROR(1, "1st trans2 resp needs bigbuf");
594 /* BB maybe we can fix this up, switch
595 to already allocated large buffer? */
596 } else {
597 /* Have first buffer */
598 mid_entry->resp_buf =
599 smb_buffer;
600 mid_entry->largeBuf =
601 true;
602 bigbuf = NULL;
603 }
604 }
605 break;
606 }
607 mid_entry->resp_buf = smb_buffer;
608 mid_entry->largeBuf = isLargeBuf;
609 multi_t2_fnd:
610 task_to_wake = mid_entry->tsk;
611 mid_entry->midState = MID_RESPONSE_RECEIVED;
612 #ifdef CONFIG_CIFS_STATS2
613 mid_entry->when_received = jiffies;
614 #endif
615 /* so we do not time out requests to server
616 which is still responding (since server could
617 be busy but not dead) */
618 server->lstrp = jiffies;
619 break;
620 }
621 }
622 spin_unlock(&GlobalMid_Lock);
623 if (task_to_wake) {
624 /* Was previous buf put in mpx struct for multi-rsp? */
625 if (!isMultiRsp) {
626 /* smb buffer will be freed by user thread */
627 if (isLargeBuf)
628 bigbuf = NULL;
629 else
630 smallbuf = NULL;
631 }
632 wake_up_process(task_to_wake);
633 } else if (!is_valid_oplock_break(smb_buffer, server) &&
634 !isMultiRsp) {
635 cERROR(1, "No task to wake, unknown frame received! "
636 "NumMids %d", midCount.counter);
637 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
638 sizeof(struct smb_hdr));
639 #ifdef CONFIG_CIFS_DEBUG2
640 cifs_dump_detail(smb_buffer);
641 cifs_dump_mids(server);
642 #endif /* CIFS_DEBUG2 */
643
644 }
645 } /* end while !EXITING */
646
647 /* take it off the list, if it's not already */
648 write_lock(&cifs_tcp_ses_lock);
649 list_del_init(&server->tcp_ses_list);
650 write_unlock(&cifs_tcp_ses_lock);
651
652 spin_lock(&GlobalMid_Lock);
653 server->tcpStatus = CifsExiting;
654 spin_unlock(&GlobalMid_Lock);
655 wake_up_all(&server->response_q);
656
657 /* check if we have blocked requests that need to free */
658 /* Note that cifs_max_pending is normally 50, but
659 can be set at module install time to as little as two */
660 spin_lock(&GlobalMid_Lock);
661 if (atomic_read(&server->inFlight) >= cifs_max_pending)
662 atomic_set(&server->inFlight, cifs_max_pending - 1);
663 /* We do not want to set the max_pending too low or we
664 could end up with the counter going negative */
665 spin_unlock(&GlobalMid_Lock);
666 /* Although there should not be any requests blocked on
667 this queue it can not hurt to be paranoid and try to wake up requests
668 that may haven been blocked when more than 50 at time were on the wire
669 to the same server - they now will see the session is in exit state
670 and get out of SendReceive. */
671 wake_up_all(&server->request_q);
672 /* give those requests time to exit */
673 msleep(125);
674
675 if (server->ssocket) {
676 sock_release(csocket);
677 server->ssocket = NULL;
678 }
679 /* buffer usuallly freed in free_mid - need to free it here on exit */
680 cifs_buf_release(bigbuf);
681 if (smallbuf) /* no sense logging a debug message if NULL */
682 cifs_small_buf_release(smallbuf);
683
684 /*
685 * BB: we shouldn't have to do any of this. It shouldn't be
686 * possible to exit from the thread with active SMB sessions
687 */
688 read_lock(&cifs_tcp_ses_lock);
689 if (list_empty(&server->pending_mid_q)) {
690 /* loop through server session structures attached to this and
691 mark them dead */
692 list_for_each(tmp, &server->smb_ses_list) {
693 ses = list_entry(tmp, struct cifsSesInfo,
694 smb_ses_list);
695 ses->status = CifsExiting;
696 ses->server = NULL;
697 }
698 read_unlock(&cifs_tcp_ses_lock);
699 } else {
700 /* although we can not zero the server struct pointer yet,
701 since there are active requests which may depnd on them,
702 mark the corresponding SMB sessions as exiting too */
703 list_for_each(tmp, &server->smb_ses_list) {
704 ses = list_entry(tmp, struct cifsSesInfo,
705 smb_ses_list);
706 ses->status = CifsExiting;
707 }
708
709 spin_lock(&GlobalMid_Lock);
710 list_for_each(tmp, &server->pending_mid_q) {
711 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
712 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
713 cFYI(1, "Clearing Mid 0x%x - waking up ",
714 mid_entry->mid);
715 task_to_wake = mid_entry->tsk;
716 if (task_to_wake)
717 wake_up_process(task_to_wake);
718 }
719 }
720 spin_unlock(&GlobalMid_Lock);
721 read_unlock(&cifs_tcp_ses_lock);
722 /* 1/8th of sec is more than enough time for them to exit */
723 msleep(125);
724 }
725
726 if (!list_empty(&server->pending_mid_q)) {
727 /* mpx threads have not exited yet give them
728 at least the smb send timeout time for long ops */
729 /* due to delays on oplock break requests, we need
730 to wait at least 45 seconds before giving up
731 on a request getting a response and going ahead
732 and killing cifsd */
733 cFYI(1, "Wait for exit from demultiplex thread");
734 msleep(46000);
735 /* if threads still have not exited they are probably never
736 coming home not much else we can do but free the memory */
737 }
738
739 /* last chance to mark ses pointers invalid
740 if there are any pointing to this (e.g
741 if a crazy root user tried to kill cifsd
742 kernel thread explicitly this might happen) */
743 /* BB: This shouldn't be necessary, see above */
744 read_lock(&cifs_tcp_ses_lock);
745 list_for_each(tmp, &server->smb_ses_list) {
746 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
747 ses->server = NULL;
748 }
749 read_unlock(&cifs_tcp_ses_lock);
750
751 kfree(server->hostname);
752 task_to_wake = xchg(&server->tsk, NULL);
753 kfree(server);
754
755 length = atomic_dec_return(&tcpSesAllocCount);
756 if (length > 0)
757 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
758 GFP_KERNEL);
759
760 /* if server->tsk was NULL then wait for a signal before exiting */
761 if (!task_to_wake) {
762 set_current_state(TASK_INTERRUPTIBLE);
763 while (!signal_pending(current)) {
764 schedule();
765 set_current_state(TASK_INTERRUPTIBLE);
766 }
767 set_current_state(TASK_RUNNING);
768 }
769
770 module_put_and_exit(0);
771 }
772
773 /* extract the host portion of the UNC string */
774 static char *
775 extract_hostname(const char *unc)
776 {
777 const char *src;
778 char *dst, *delim;
779 unsigned int len;
780
781 /* skip double chars at beginning of string */
782 /* BB: check validity of these bytes? */
783 src = unc + 2;
784
785 /* delimiter between hostname and sharename is always '\\' now */
786 delim = strchr(src, '\\');
787 if (!delim)
788 return ERR_PTR(-EINVAL);
789
790 len = delim - src;
791 dst = kmalloc((len + 1), GFP_KERNEL);
792 if (dst == NULL)
793 return ERR_PTR(-ENOMEM);
794
795 memcpy(dst, src, len);
796 dst[len] = '\0';
797
798 return dst;
799 }
800
801 static int
802 cifs_parse_mount_options(char *options, const char *devname,
803 struct smb_vol *vol)
804 {
805 char *value;
806 char *data;
807 unsigned int temp_len, i, j;
808 char separator[2];
809 short int override_uid = -1;
810 short int override_gid = -1;
811 bool uid_specified = false;
812 bool gid_specified = false;
813
814 separator[0] = ',';
815 separator[1] = 0;
816
817 if (Local_System_Name[0] != 0)
818 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
819 else {
820 char *nodename = utsname()->nodename;
821 int n = strnlen(nodename, 15);
822 memset(vol->source_rfc1001_name, 0x20, 15);
823 for (i = 0; i < n; i++) {
824 /* does not have to be perfect mapping since field is
825 informational, only used for servers that do not support
826 port 445 and it can be overridden at mount time */
827 vol->source_rfc1001_name[i] = toupper(nodename[i]);
828 }
829 }
830 vol->source_rfc1001_name[15] = 0;
831 /* null target name indicates to use *SMBSERVR default called name
832 if we end up sending RFC1001 session initialize */
833 vol->target_rfc1001_name[0] = 0;
834 vol->linux_uid = current_uid(); /* use current_euid() instead? */
835 vol->linux_gid = current_gid();
836
837 /* default to only allowing write access to owner of the mount */
838 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
839
840 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
841 /* default is always to request posix paths. */
842 vol->posix_paths = 1;
843 /* default to using server inode numbers where available */
844 vol->server_ino = 1;
845
846 if (!options)
847 return 1;
848
849 if (strncmp(options, "sep=", 4) == 0) {
850 if (options[4] != 0) {
851 separator[0] = options[4];
852 options += 5;
853 } else {
854 cFYI(1, "Null separator not allowed");
855 }
856 }
857
858 while ((data = strsep(&options, separator)) != NULL) {
859 if (!*data)
860 continue;
861 if ((value = strchr(data, '=')) != NULL)
862 *value++ = '\0';
863
864 /* Have to parse this before we parse for "user" */
865 if (strnicmp(data, "user_xattr", 10) == 0) {
866 vol->no_xattr = 0;
867 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
868 vol->no_xattr = 1;
869 } else if (strnicmp(data, "user", 4) == 0) {
870 if (!value) {
871 printk(KERN_WARNING
872 "CIFS: invalid or missing username\n");
873 return 1; /* needs_arg; */
874 } else if (!*value) {
875 /* null user, ie anonymous, authentication */
876 vol->nullauth = 1;
877 }
878 if (strnlen(value, 200) < 200) {
879 vol->username = value;
880 } else {
881 printk(KERN_WARNING "CIFS: username too long\n");
882 return 1;
883 }
884 } else if (strnicmp(data, "pass", 4) == 0) {
885 if (!value) {
886 vol->password = NULL;
887 continue;
888 } else if (value[0] == 0) {
889 /* check if string begins with double comma
890 since that would mean the password really
891 does start with a comma, and would not
892 indicate an empty string */
893 if (value[1] != separator[0]) {
894 vol->password = NULL;
895 continue;
896 }
897 }
898 temp_len = strlen(value);
899 /* removed password length check, NTLM passwords
900 can be arbitrarily long */
901
902 /* if comma in password, the string will be
903 prematurely null terminated. Commas in password are
904 specified across the cifs mount interface by a double
905 comma ie ,, and a comma used as in other cases ie ','
906 as a parameter delimiter/separator is single and due
907 to the strsep above is temporarily zeroed. */
908
909 /* NB: password legally can have multiple commas and
910 the only illegal character in a password is null */
911
912 if ((value[temp_len] == 0) &&
913 (value[temp_len+1] == separator[0])) {
914 /* reinsert comma */
915 value[temp_len] = separator[0];
916 temp_len += 2; /* move after second comma */
917 while (value[temp_len] != 0) {
918 if (value[temp_len] == separator[0]) {
919 if (value[temp_len+1] ==
920 separator[0]) {
921 /* skip second comma */
922 temp_len++;
923 } else {
924 /* single comma indicating start
925 of next parm */
926 break;
927 }
928 }
929 temp_len++;
930 }
931 if (value[temp_len] == 0) {
932 options = NULL;
933 } else {
934 value[temp_len] = 0;
935 /* point option to start of next parm */
936 options = value + temp_len + 1;
937 }
938 /* go from value to value + temp_len condensing
939 double commas to singles. Note that this ends up
940 allocating a few bytes too many, which is ok */
941 vol->password = kzalloc(temp_len, GFP_KERNEL);
942 if (vol->password == NULL) {
943 printk(KERN_WARNING "CIFS: no memory "
944 "for password\n");
945 return 1;
946 }
947 for (i = 0, j = 0; i < temp_len; i++, j++) {
948 vol->password[j] = value[i];
949 if (value[i] == separator[0]
950 && value[i+1] == separator[0]) {
951 /* skip second comma */
952 i++;
953 }
954 }
955 vol->password[j] = 0;
956 } else {
957 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
958 if (vol->password == NULL) {
959 printk(KERN_WARNING "CIFS: no memory "
960 "for password\n");
961 return 1;
962 }
963 strcpy(vol->password, value);
964 }
965 } else if (!strnicmp(data, "ip", 2) ||
966 !strnicmp(data, "addr", 4)) {
967 if (!value || !*value) {
968 vol->UNCip = NULL;
969 } else if (strnlen(value, INET6_ADDRSTRLEN) <
970 INET6_ADDRSTRLEN) {
971 vol->UNCip = value;
972 } else {
973 printk(KERN_WARNING "CIFS: ip address "
974 "too long\n");
975 return 1;
976 }
977 } else if (strnicmp(data, "sec", 3) == 0) {
978 if (!value || !*value) {
979 cERROR(1, "no security value specified");
980 continue;
981 } else if (strnicmp(value, "krb5i", 5) == 0) {
982 vol->secFlg |= CIFSSEC_MAY_KRB5 |
983 CIFSSEC_MUST_SIGN;
984 } else if (strnicmp(value, "krb5p", 5) == 0) {
985 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
986 CIFSSEC_MAY_KRB5; */
987 cERROR(1, "Krb5 cifs privacy not supported");
988 return 1;
989 } else if (strnicmp(value, "krb5", 4) == 0) {
990 vol->secFlg |= CIFSSEC_MAY_KRB5;
991 #ifdef CONFIG_CIFS_EXPERIMENTAL
992 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
993 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
994 CIFSSEC_MUST_SIGN;
995 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
996 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
997 #endif
998 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
999 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
1000 CIFSSEC_MUST_SIGN;
1001 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
1002 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1003 } else if (strnicmp(value, "ntlmi", 5) == 0) {
1004 vol->secFlg |= CIFSSEC_MAY_NTLM |
1005 CIFSSEC_MUST_SIGN;
1006 } else if (strnicmp(value, "ntlm", 4) == 0) {
1007 /* ntlm is default so can be turned off too */
1008 vol->secFlg |= CIFSSEC_MAY_NTLM;
1009 } else if (strnicmp(value, "nontlm", 6) == 0) {
1010 /* BB is there a better way to do this? */
1011 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1012 #ifdef CONFIG_CIFS_WEAK_PW_HASH
1013 } else if (strnicmp(value, "lanman", 6) == 0) {
1014 vol->secFlg |= CIFSSEC_MAY_LANMAN;
1015 #endif
1016 } else if (strnicmp(value, "none", 4) == 0) {
1017 vol->nullauth = 1;
1018 } else {
1019 cERROR(1, "bad security option: %s", value);
1020 return 1;
1021 }
1022 } else if ((strnicmp(data, "unc", 3) == 0)
1023 || (strnicmp(data, "target", 6) == 0)
1024 || (strnicmp(data, "path", 4) == 0)) {
1025 if (!value || !*value) {
1026 printk(KERN_WARNING "CIFS: invalid path to "
1027 "network resource\n");
1028 return 1; /* needs_arg; */
1029 }
1030 if ((temp_len = strnlen(value, 300)) < 300) {
1031 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1032 if (vol->UNC == NULL)
1033 return 1;
1034 strcpy(vol->UNC, value);
1035 if (strncmp(vol->UNC, "//", 2) == 0) {
1036 vol->UNC[0] = '\\';
1037 vol->UNC[1] = '\\';
1038 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1039 printk(KERN_WARNING
1040 "CIFS: UNC Path does not begin "
1041 "with // or \\\\ \n");
1042 return 1;
1043 }
1044 } else {
1045 printk(KERN_WARNING "CIFS: UNC name too long\n");
1046 return 1;
1047 }
1048 } else if ((strnicmp(data, "domain", 3) == 0)
1049 || (strnicmp(data, "workgroup", 5) == 0)) {
1050 if (!value || !*value) {
1051 printk(KERN_WARNING "CIFS: invalid domain name\n");
1052 return 1; /* needs_arg; */
1053 }
1054 /* BB are there cases in which a comma can be valid in
1055 a domain name and need special handling? */
1056 if (strnlen(value, 256) < 256) {
1057 vol->domainname = value;
1058 cFYI(1, "Domain name set");
1059 } else {
1060 printk(KERN_WARNING "CIFS: domain name too "
1061 "long\n");
1062 return 1;
1063 }
1064 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1065 if (!value || !*value) {
1066 printk(KERN_WARNING
1067 "CIFS: invalid path prefix\n");
1068 return 1; /* needs_argument */
1069 }
1070 if ((temp_len = strnlen(value, 1024)) < 1024) {
1071 if (value[0] != '/')
1072 temp_len++; /* missing leading slash */
1073 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1074 if (vol->prepath == NULL)
1075 return 1;
1076 if (value[0] != '/') {
1077 vol->prepath[0] = '/';
1078 strcpy(vol->prepath+1, value);
1079 } else
1080 strcpy(vol->prepath, value);
1081 cFYI(1, "prefix path %s", vol->prepath);
1082 } else {
1083 printk(KERN_WARNING "CIFS: prefix too long\n");
1084 return 1;
1085 }
1086 } else if (strnicmp(data, "iocharset", 9) == 0) {
1087 if (!value || !*value) {
1088 printk(KERN_WARNING "CIFS: invalid iocharset "
1089 "specified\n");
1090 return 1; /* needs_arg; */
1091 }
1092 if (strnlen(value, 65) < 65) {
1093 if (strnicmp(value, "default", 7))
1094 vol->iocharset = value;
1095 /* if iocharset not set then load_nls_default
1096 is used by caller */
1097 cFYI(1, "iocharset set to %s", value);
1098 } else {
1099 printk(KERN_WARNING "CIFS: iocharset name "
1100 "too long.\n");
1101 return 1;
1102 }
1103 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1104 vol->linux_uid = simple_strtoul(value, &value, 0);
1105 uid_specified = true;
1106 } else if (!strnicmp(data, "forceuid", 8)) {
1107 override_uid = 1;
1108 } else if (!strnicmp(data, "noforceuid", 10)) {
1109 override_uid = 0;
1110 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1111 vol->linux_gid = simple_strtoul(value, &value, 0);
1112 gid_specified = true;
1113 } else if (!strnicmp(data, "forcegid", 8)) {
1114 override_gid = 1;
1115 } else if (!strnicmp(data, "noforcegid", 10)) {
1116 override_gid = 0;
1117 } else if (strnicmp(data, "file_mode", 4) == 0) {
1118 if (value && *value) {
1119 vol->file_mode =
1120 simple_strtoul(value, &value, 0);
1121 }
1122 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1123 if (value && *value) {
1124 vol->dir_mode =
1125 simple_strtoul(value, &value, 0);
1126 }
1127 } else if (strnicmp(data, "dirmode", 4) == 0) {
1128 if (value && *value) {
1129 vol->dir_mode =
1130 simple_strtoul(value, &value, 0);
1131 }
1132 } else if (strnicmp(data, "port", 4) == 0) {
1133 if (value && *value) {
1134 vol->port =
1135 simple_strtoul(value, &value, 0);
1136 }
1137 } else if (strnicmp(data, "rsize", 5) == 0) {
1138 if (value && *value) {
1139 vol->rsize =
1140 simple_strtoul(value, &value, 0);
1141 }
1142 } else if (strnicmp(data, "wsize", 5) == 0) {
1143 if (value && *value) {
1144 vol->wsize =
1145 simple_strtoul(value, &value, 0);
1146 }
1147 } else if (strnicmp(data, "sockopt", 5) == 0) {
1148 if (!value || !*value) {
1149 cERROR(1, "no socket option specified");
1150 continue;
1151 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1152 vol->sockopt_tcp_nodelay = 1;
1153 }
1154 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1155 if (!value || !*value || (*value == ' ')) {
1156 cFYI(1, "invalid (empty) netbiosname");
1157 } else {
1158 memset(vol->source_rfc1001_name, 0x20, 15);
1159 for (i = 0; i < 15; i++) {
1160 /* BB are there cases in which a comma can be
1161 valid in this workstation netbios name (and need
1162 special handling)? */
1163
1164 /* We do not uppercase netbiosname for user */
1165 if (value[i] == 0)
1166 break;
1167 else
1168 vol->source_rfc1001_name[i] =
1169 value[i];
1170 }
1171 /* The string has 16th byte zero still from
1172 set at top of the function */
1173 if ((i == 15) && (value[i] != 0))
1174 printk(KERN_WARNING "CIFS: netbiosname"
1175 " longer than 15 truncated.\n");
1176 }
1177 } else if (strnicmp(data, "servern", 7) == 0) {
1178 /* servernetbiosname specified override *SMBSERVER */
1179 if (!value || !*value || (*value == ' ')) {
1180 cFYI(1, "empty server netbiosname specified");
1181 } else {
1182 /* last byte, type, is 0x20 for servr type */
1183 memset(vol->target_rfc1001_name, 0x20, 16);
1184
1185 for (i = 0; i < 15; i++) {
1186 /* BB are there cases in which a comma can be
1187 valid in this workstation netbios name
1188 (and need special handling)? */
1189
1190 /* user or mount helper must uppercase
1191 the netbiosname */
1192 if (value[i] == 0)
1193 break;
1194 else
1195 vol->target_rfc1001_name[i] =
1196 value[i];
1197 }
1198 /* The string has 16th byte zero still from
1199 set at top of the function */
1200 if ((i == 15) && (value[i] != 0))
1201 printk(KERN_WARNING "CIFS: server net"
1202 "biosname longer than 15 truncated.\n");
1203 }
1204 } else if (strnicmp(data, "credentials", 4) == 0) {
1205 /* ignore */
1206 } else if (strnicmp(data, "version", 3) == 0) {
1207 /* ignore */
1208 } else if (strnicmp(data, "guest", 5) == 0) {
1209 /* ignore */
1210 } else if (strnicmp(data, "rw", 2) == 0) {
1211 /* ignore */
1212 } else if (strnicmp(data, "ro", 2) == 0) {
1213 /* ignore */
1214 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1215 vol->noblocksnd = 1;
1216 } else if (strnicmp(data, "noautotune", 10) == 0) {
1217 vol->noautotune = 1;
1218 } else if ((strnicmp(data, "suid", 4) == 0) ||
1219 (strnicmp(data, "nosuid", 6) == 0) ||
1220 (strnicmp(data, "exec", 4) == 0) ||
1221 (strnicmp(data, "noexec", 6) == 0) ||
1222 (strnicmp(data, "nodev", 5) == 0) ||
1223 (strnicmp(data, "noauto", 6) == 0) ||
1224 (strnicmp(data, "dev", 3) == 0)) {
1225 /* The mount tool or mount.cifs helper (if present)
1226 uses these opts to set flags, and the flags are read
1227 by the kernel vfs layer before we get here (ie
1228 before read super) so there is no point trying to
1229 parse these options again and set anything and it
1230 is ok to just ignore them */
1231 continue;
1232 } else if (strnicmp(data, "hard", 4) == 0) {
1233 vol->retry = 1;
1234 } else if (strnicmp(data, "soft", 4) == 0) {
1235 vol->retry = 0;
1236 } else if (strnicmp(data, "perm", 4) == 0) {
1237 vol->noperm = 0;
1238 } else if (strnicmp(data, "noperm", 6) == 0) {
1239 vol->noperm = 1;
1240 } else if (strnicmp(data, "mapchars", 8) == 0) {
1241 vol->remap = 1;
1242 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1243 vol->remap = 0;
1244 } else if (strnicmp(data, "sfu", 3) == 0) {
1245 vol->sfu_emul = 1;
1246 } else if (strnicmp(data, "nosfu", 5) == 0) {
1247 vol->sfu_emul = 0;
1248 } else if (strnicmp(data, "nodfs", 5) == 0) {
1249 vol->nodfs = 1;
1250 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1251 vol->posix_paths = 1;
1252 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1253 vol->posix_paths = 0;
1254 } else if (strnicmp(data, "nounix", 6) == 0) {
1255 vol->no_linux_ext = 1;
1256 } else if (strnicmp(data, "nolinux", 7) == 0) {
1257 vol->no_linux_ext = 1;
1258 } else if ((strnicmp(data, "nocase", 6) == 0) ||
1259 (strnicmp(data, "ignorecase", 10) == 0)) {
1260 vol->nocase = 1;
1261 } else if (strnicmp(data, "brl", 3) == 0) {
1262 vol->nobrl = 0;
1263 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1264 (strnicmp(data, "nolock", 6) == 0)) {
1265 vol->nobrl = 1;
1266 /* turn off mandatory locking in mode
1267 if remote locking is turned off since the
1268 local vfs will do advisory */
1269 if (vol->file_mode ==
1270 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1271 vol->file_mode = S_IALLUGO;
1272 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1273 /* will take the shorter form "forcemand" as well */
1274 /* This mount option will force use of mandatory
1275 (DOS/Windows style) byte range locks, instead of
1276 using posix advisory byte range locks, even if the
1277 Unix extensions are available and posix locks would
1278 be supported otherwise. If Unix extensions are not
1279 negotiated this has no effect since mandatory locks
1280 would be used (mandatory locks is all that those
1281 those servers support) */
1282 vol->mand_lock = 1;
1283 } else if (strnicmp(data, "setuids", 7) == 0) {
1284 vol->setuids = 1;
1285 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1286 vol->setuids = 0;
1287 } else if (strnicmp(data, "dynperm", 7) == 0) {
1288 vol->dynperm = true;
1289 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1290 vol->dynperm = false;
1291 } else if (strnicmp(data, "nohard", 6) == 0) {
1292 vol->retry = 0;
1293 } else if (strnicmp(data, "nosoft", 6) == 0) {
1294 vol->retry = 1;
1295 } else if (strnicmp(data, "nointr", 6) == 0) {
1296 vol->intr = 0;
1297 } else if (strnicmp(data, "intr", 4) == 0) {
1298 vol->intr = 1;
1299 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1300 vol->nostrictsync = 1;
1301 } else if (strnicmp(data, "strictsync", 10) == 0) {
1302 vol->nostrictsync = 0;
1303 } else if (strnicmp(data, "serverino", 7) == 0) {
1304 vol->server_ino = 1;
1305 } else if (strnicmp(data, "noserverino", 9) == 0) {
1306 vol->server_ino = 0;
1307 } else if (strnicmp(data, "cifsacl", 7) == 0) {
1308 vol->cifs_acl = 1;
1309 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1310 vol->cifs_acl = 0;
1311 } else if (strnicmp(data, "acl", 3) == 0) {
1312 vol->no_psx_acl = 0;
1313 } else if (strnicmp(data, "noacl", 5) == 0) {
1314 vol->no_psx_acl = 1;
1315 #ifdef CONFIG_CIFS_EXPERIMENTAL
1316 } else if (strnicmp(data, "locallease", 6) == 0) {
1317 vol->local_lease = 1;
1318 #endif
1319 } else if (strnicmp(data, "sign", 4) == 0) {
1320 vol->secFlg |= CIFSSEC_MUST_SIGN;
1321 } else if (strnicmp(data, "seal", 4) == 0) {
1322 /* we do not do the following in secFlags because seal
1323 is a per tree connection (mount) not a per socket
1324 or per-smb connection option in the protocol */
1325 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1326 vol->seal = 1;
1327 } else if (strnicmp(data, "direct", 6) == 0) {
1328 vol->direct_io = 1;
1329 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1330 vol->direct_io = 1;
1331 } else if (strnicmp(data, "noac", 4) == 0) {
1332 printk(KERN_WARNING "CIFS: Mount option noac not "
1333 "supported. Instead set "
1334 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1335 } else
1336 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1337 data);
1338 }
1339 if (vol->UNC == NULL) {
1340 if (devname == NULL) {
1341 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1342 "target\n");
1343 return 1;
1344 }
1345 if ((temp_len = strnlen(devname, 300)) < 300) {
1346 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1347 if (vol->UNC == NULL)
1348 return 1;
1349 strcpy(vol->UNC, devname);
1350 if (strncmp(vol->UNC, "//", 2) == 0) {
1351 vol->UNC[0] = '\\';
1352 vol->UNC[1] = '\\';
1353 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1354 printk(KERN_WARNING "CIFS: UNC Path does not "
1355 "begin with // or \\\\ \n");
1356 return 1;
1357 }
1358 value = strpbrk(vol->UNC+2, "/\\");
1359 if (value)
1360 *value = '\\';
1361 } else {
1362 printk(KERN_WARNING "CIFS: UNC name too long\n");
1363 return 1;
1364 }
1365 }
1366 if (vol->UNCip == NULL)
1367 vol->UNCip = &vol->UNC[2];
1368
1369 if (uid_specified)
1370 vol->override_uid = override_uid;
1371 else if (override_uid == 1)
1372 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1373 "specified with no uid= option.\n");
1374
1375 if (gid_specified)
1376 vol->override_gid = override_gid;
1377 else if (override_gid == 1)
1378 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1379 "specified with no gid= option.\n");
1380
1381 return 0;
1382 }
1383
1384 static bool
1385 match_address(struct TCP_Server_Info *server, struct sockaddr *addr)
1386 {
1387 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1388 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1389
1390 switch (addr->sa_family) {
1391 case AF_INET:
1392 if (addr4->sin_addr.s_addr !=
1393 server->addr.sockAddr.sin_addr.s_addr)
1394 return false;
1395 if (addr4->sin_port &&
1396 addr4->sin_port != server->addr.sockAddr.sin_port)
1397 return false;
1398 break;
1399 case AF_INET6:
1400 if (!ipv6_addr_equal(&addr6->sin6_addr,
1401 &server->addr.sockAddr6.sin6_addr))
1402 return false;
1403 if (addr6->sin6_scope_id !=
1404 server->addr.sockAddr6.sin6_scope_id)
1405 return false;
1406 if (addr6->sin6_port &&
1407 addr6->sin6_port != server->addr.sockAddr6.sin6_port)
1408 return false;
1409 break;
1410 }
1411
1412 return true;
1413 }
1414
1415 static bool
1416 match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1417 {
1418 unsigned int secFlags;
1419
1420 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1421 secFlags = vol->secFlg;
1422 else
1423 secFlags = global_secflags | vol->secFlg;
1424
1425 switch (server->secType) {
1426 case LANMAN:
1427 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1428 return false;
1429 break;
1430 case NTLMv2:
1431 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1432 return false;
1433 break;
1434 case NTLM:
1435 if (!(secFlags & CIFSSEC_MAY_NTLM))
1436 return false;
1437 break;
1438 case Kerberos:
1439 if (!(secFlags & CIFSSEC_MAY_KRB5))
1440 return false;
1441 break;
1442 case RawNTLMSSP:
1443 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1444 return false;
1445 break;
1446 default:
1447 /* shouldn't happen */
1448 return false;
1449 }
1450
1451 /* now check if signing mode is acceptible */
1452 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1453 (server->secMode & SECMODE_SIGN_REQUIRED))
1454 return false;
1455 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1456 (server->secMode &
1457 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1458 return false;
1459
1460 return true;
1461 }
1462
1463 static struct TCP_Server_Info *
1464 cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1465 {
1466 struct TCP_Server_Info *server;
1467
1468 write_lock(&cifs_tcp_ses_lock);
1469 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
1470 /*
1471 * the demux thread can exit on its own while still in CifsNew
1472 * so don't accept any sockets in that state. Since the
1473 * tcpStatus never changes back to CifsNew it's safe to check
1474 * for this without a lock.
1475 */
1476 if (server->tcpStatus == CifsNew)
1477 continue;
1478
1479 if (!match_address(server, addr))
1480 continue;
1481
1482 if (!match_security(server, vol))
1483 continue;
1484
1485 ++server->srv_count;
1486 write_unlock(&cifs_tcp_ses_lock);
1487 cFYI(1, "Existing tcp session with server found");
1488 return server;
1489 }
1490 write_unlock(&cifs_tcp_ses_lock);
1491 return NULL;
1492 }
1493
1494 static void
1495 cifs_put_tcp_session(struct TCP_Server_Info *server)
1496 {
1497 struct task_struct *task;
1498
1499 write_lock(&cifs_tcp_ses_lock);
1500 if (--server->srv_count > 0) {
1501 write_unlock(&cifs_tcp_ses_lock);
1502 return;
1503 }
1504
1505 list_del_init(&server->tcp_ses_list);
1506 write_unlock(&cifs_tcp_ses_lock);
1507
1508 spin_lock(&GlobalMid_Lock);
1509 server->tcpStatus = CifsExiting;
1510 spin_unlock(&GlobalMid_Lock);
1511
1512 cifs_fscache_release_client_cookie(server);
1513
1514 task = xchg(&server->tsk, NULL);
1515 if (task)
1516 force_sig(SIGKILL, task);
1517 }
1518
1519 static struct TCP_Server_Info *
1520 cifs_get_tcp_session(struct smb_vol *volume_info)
1521 {
1522 struct TCP_Server_Info *tcp_ses = NULL;
1523 struct sockaddr_storage addr;
1524 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1525 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1526 int rc;
1527
1528 memset(&addr, 0, sizeof(struct sockaddr_storage));
1529
1530 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
1531
1532 if (volume_info->UNCip && volume_info->UNC) {
1533 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1534 volume_info->UNCip,
1535 volume_info->port);
1536 if (!rc) {
1537 /* we failed translating address */
1538 rc = -EINVAL;
1539 goto out_err;
1540 }
1541 } else if (volume_info->UNCip) {
1542 /* BB using ip addr as tcp_ses name to connect to the
1543 DFS root below */
1544 cERROR(1, "Connecting to DFS root not implemented yet");
1545 rc = -EINVAL;
1546 goto out_err;
1547 } else /* which tcp_sess DFS root would we conect to */ {
1548 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1549 "unc=//192.168.1.100/public) specified");
1550 rc = -EINVAL;
1551 goto out_err;
1552 }
1553
1554 /* see if we already have a matching tcp_ses */
1555 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
1556 if (tcp_ses)
1557 return tcp_ses;
1558
1559 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1560 if (!tcp_ses) {
1561 rc = -ENOMEM;
1562 goto out_err;
1563 }
1564
1565 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1566 if (IS_ERR(tcp_ses->hostname)) {
1567 rc = PTR_ERR(tcp_ses->hostname);
1568 goto out_err;
1569 }
1570
1571 tcp_ses->noblocksnd = volume_info->noblocksnd;
1572 tcp_ses->noautotune = volume_info->noautotune;
1573 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
1574 atomic_set(&tcp_ses->inFlight, 0);
1575 init_waitqueue_head(&tcp_ses->response_q);
1576 init_waitqueue_head(&tcp_ses->request_q);
1577 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1578 mutex_init(&tcp_ses->srv_mutex);
1579 memcpy(tcp_ses->workstation_RFC1001_name,
1580 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1581 memcpy(tcp_ses->server_RFC1001_name,
1582 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1583 tcp_ses->sequence_number = 0;
1584 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1585 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1586
1587 /*
1588 * at this point we are the only ones with the pointer
1589 * to the struct since the kernel thread not created yet
1590 * no need to spinlock this init of tcpStatus or srv_count
1591 */
1592 tcp_ses->tcpStatus = CifsNew;
1593 ++tcp_ses->srv_count;
1594
1595 if (addr.ss_family == AF_INET6) {
1596 cFYI(1, "attempting ipv6 connect");
1597 /* BB should we allow ipv6 on port 139? */
1598 /* other OS never observed in Wild doing 139 with v6 */
1599 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1600 sizeof(struct sockaddr_in6));
1601 rc = ipv6_connect(tcp_ses);
1602 } else {
1603 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1604 sizeof(struct sockaddr_in));
1605 rc = ipv4_connect(tcp_ses);
1606 }
1607 if (rc < 0) {
1608 cERROR(1, "Error connecting to socket. Aborting operation");
1609 goto out_err;
1610 }
1611
1612 /*
1613 * since we're in a cifs function already, we know that
1614 * this will succeed. No need for try_module_get().
1615 */
1616 __module_get(THIS_MODULE);
1617 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1618 tcp_ses, "cifsd");
1619 if (IS_ERR(tcp_ses->tsk)) {
1620 rc = PTR_ERR(tcp_ses->tsk);
1621 cERROR(1, "error %d create cifsd thread", rc);
1622 module_put(THIS_MODULE);
1623 goto out_err;
1624 }
1625
1626 /* thread spawned, put it on the list */
1627 write_lock(&cifs_tcp_ses_lock);
1628 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1629 write_unlock(&cifs_tcp_ses_lock);
1630
1631 cifs_fscache_get_client_cookie(tcp_ses);
1632
1633 return tcp_ses;
1634
1635 out_err:
1636 if (tcp_ses) {
1637 if (!IS_ERR(tcp_ses->hostname))
1638 kfree(tcp_ses->hostname);
1639 if (tcp_ses->ssocket)
1640 sock_release(tcp_ses->ssocket);
1641 kfree(tcp_ses);
1642 }
1643 return ERR_PTR(rc);
1644 }
1645
1646 static struct cifsSesInfo *
1647 cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1648 {
1649 struct cifsSesInfo *ses;
1650
1651 write_lock(&cifs_tcp_ses_lock);
1652 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1653 switch (server->secType) {
1654 case Kerberos:
1655 if (vol->linux_uid != ses->linux_uid)
1656 continue;
1657 break;
1658 default:
1659 /* anything else takes username/password */
1660 if (strncmp(ses->userName, vol->username,
1661 MAX_USERNAME_SIZE))
1662 continue;
1663 if (strlen(vol->username) != 0 &&
1664 strncmp(ses->password, vol->password,
1665 MAX_PASSWORD_SIZE))
1666 continue;
1667 }
1668 ++ses->ses_count;
1669 write_unlock(&cifs_tcp_ses_lock);
1670 return ses;
1671 }
1672 write_unlock(&cifs_tcp_ses_lock);
1673 return NULL;
1674 }
1675
1676 static void
1677 cifs_put_smb_ses(struct cifsSesInfo *ses)
1678 {
1679 int xid;
1680 struct TCP_Server_Info *server = ses->server;
1681
1682 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
1683 write_lock(&cifs_tcp_ses_lock);
1684 if (--ses->ses_count > 0) {
1685 write_unlock(&cifs_tcp_ses_lock);
1686 return;
1687 }
1688
1689 list_del_init(&ses->smb_ses_list);
1690 write_unlock(&cifs_tcp_ses_lock);
1691
1692 if (ses->status == CifsGood) {
1693 xid = GetXid();
1694 CIFSSMBLogoff(xid, ses);
1695 _FreeXid(xid);
1696 }
1697 sesInfoFree(ses);
1698 cifs_put_tcp_session(server);
1699 }
1700
1701 static struct cifsSesInfo *
1702 cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1703 {
1704 int rc = -ENOMEM, xid;
1705 struct cifsSesInfo *ses;
1706
1707 xid = GetXid();
1708
1709 ses = cifs_find_smb_ses(server, volume_info);
1710 if (ses) {
1711 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1712
1713 /* existing SMB ses has a server reference already */
1714 cifs_put_tcp_session(server);
1715
1716 mutex_lock(&ses->session_mutex);
1717 rc = cifs_negotiate_protocol(xid, ses);
1718 if (rc) {
1719 mutex_unlock(&ses->session_mutex);
1720 /* problem -- put our ses reference */
1721 cifs_put_smb_ses(ses);
1722 FreeXid(xid);
1723 return ERR_PTR(rc);
1724 }
1725 if (ses->need_reconnect) {
1726 cFYI(1, "Session needs reconnect");
1727 rc = cifs_setup_session(xid, ses,
1728 volume_info->local_nls);
1729 if (rc) {
1730 mutex_unlock(&ses->session_mutex);
1731 /* problem -- put our reference */
1732 cifs_put_smb_ses(ses);
1733 FreeXid(xid);
1734 return ERR_PTR(rc);
1735 }
1736 }
1737 mutex_unlock(&ses->session_mutex);
1738 FreeXid(xid);
1739 return ses;
1740 }
1741
1742 cFYI(1, "Existing smb sess not found");
1743 ses = sesInfoAlloc();
1744 if (ses == NULL)
1745 goto get_ses_fail;
1746
1747 /* new SMB session uses our server ref */
1748 ses->server = server;
1749 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1750 sprintf(ses->serverName, "%pI6",
1751 &server->addr.sockAddr6.sin6_addr);
1752 else
1753 sprintf(ses->serverName, "%pI4",
1754 &server->addr.sockAddr.sin_addr.s_addr);
1755
1756 if (volume_info->username)
1757 strncpy(ses->userName, volume_info->username,
1758 MAX_USERNAME_SIZE);
1759
1760 /* volume_info->password freed at unmount */
1761 if (volume_info->password) {
1762 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1763 if (!ses->password)
1764 goto get_ses_fail;
1765 }
1766 if (volume_info->domainname) {
1767 int len = strlen(volume_info->domainname);
1768 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1769 if (ses->domainName)
1770 strcpy(ses->domainName, volume_info->domainname);
1771 }
1772 ses->linux_uid = volume_info->linux_uid;
1773 ses->overrideSecFlg = volume_info->secFlg;
1774
1775 mutex_lock(&ses->session_mutex);
1776 rc = cifs_negotiate_protocol(xid, ses);
1777 if (!rc)
1778 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
1779 mutex_unlock(&ses->session_mutex);
1780 if (rc)
1781 goto get_ses_fail;
1782
1783 /* success, put it on the list */
1784 write_lock(&cifs_tcp_ses_lock);
1785 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1786 write_unlock(&cifs_tcp_ses_lock);
1787
1788 FreeXid(xid);
1789 return ses;
1790
1791 get_ses_fail:
1792 sesInfoFree(ses);
1793 FreeXid(xid);
1794 return ERR_PTR(rc);
1795 }
1796
1797 static struct cifsTconInfo *
1798 cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1799 {
1800 struct list_head *tmp;
1801 struct cifsTconInfo *tcon;
1802
1803 write_lock(&cifs_tcp_ses_lock);
1804 list_for_each(tmp, &ses->tcon_list) {
1805 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1806 if (tcon->tidStatus == CifsExiting)
1807 continue;
1808 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
1809 continue;
1810
1811 ++tcon->tc_count;
1812 write_unlock(&cifs_tcp_ses_lock);
1813 return tcon;
1814 }
1815 write_unlock(&cifs_tcp_ses_lock);
1816 return NULL;
1817 }
1818
1819 static void
1820 cifs_put_tcon(struct cifsTconInfo *tcon)
1821 {
1822 int xid;
1823 struct cifsSesInfo *ses = tcon->ses;
1824
1825 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
1826 write_lock(&cifs_tcp_ses_lock);
1827 if (--tcon->tc_count > 0) {
1828 write_unlock(&cifs_tcp_ses_lock);
1829 return;
1830 }
1831
1832 list_del_init(&tcon->tcon_list);
1833 write_unlock(&cifs_tcp_ses_lock);
1834
1835 xid = GetXid();
1836 CIFSSMBTDis(xid, tcon);
1837 _FreeXid(xid);
1838
1839 tconInfoFree(tcon);
1840 cifs_put_smb_ses(ses);
1841 }
1842
1843 static struct cifsTconInfo *
1844 cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1845 {
1846 int rc, xid;
1847 struct cifsTconInfo *tcon;
1848
1849 tcon = cifs_find_tcon(ses, volume_info->UNC);
1850 if (tcon) {
1851 cFYI(1, "Found match on UNC path");
1852 /* existing tcon already has a reference */
1853 cifs_put_smb_ses(ses);
1854 if (tcon->seal != volume_info->seal)
1855 cERROR(1, "transport encryption setting "
1856 "conflicts with existing tid");
1857 return tcon;
1858 }
1859
1860 tcon = tconInfoAlloc();
1861 if (tcon == NULL) {
1862 rc = -ENOMEM;
1863 goto out_fail;
1864 }
1865
1866 tcon->ses = ses;
1867 if (volume_info->password) {
1868 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1869 if (!tcon->password) {
1870 rc = -ENOMEM;
1871 goto out_fail;
1872 }
1873 }
1874
1875 if (strchr(volume_info->UNC + 3, '\\') == NULL
1876 && strchr(volume_info->UNC + 3, '/') == NULL) {
1877 cERROR(1, "Missing share name");
1878 rc = -ENODEV;
1879 goto out_fail;
1880 }
1881
1882 /* BB Do we need to wrap session_mutex around
1883 * this TCon call and Unix SetFS as
1884 * we do on SessSetup and reconnect? */
1885 xid = GetXid();
1886 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1887 FreeXid(xid);
1888 cFYI(1, "CIFS Tcon rc = %d", rc);
1889 if (rc)
1890 goto out_fail;
1891
1892 if (volume_info->nodfs) {
1893 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1894 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1895 }
1896 tcon->seal = volume_info->seal;
1897 /* we can have only one retry value for a connection
1898 to a share so for resources mounted more than once
1899 to the same server share the last value passed in
1900 for the retry flag is used */
1901 tcon->retry = volume_info->retry;
1902 tcon->nocase = volume_info->nocase;
1903 tcon->local_lease = volume_info->local_lease;
1904
1905 write_lock(&cifs_tcp_ses_lock);
1906 list_add(&tcon->tcon_list, &ses->tcon_list);
1907 write_unlock(&cifs_tcp_ses_lock);
1908
1909 return tcon;
1910
1911 out_fail:
1912 tconInfoFree(tcon);
1913 return ERR_PTR(rc);
1914 }
1915
1916
1917 int
1918 get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
1919 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
1920 struct dfs_info3_param **preferrals, int remap)
1921 {
1922 char *temp_unc;
1923 int rc = 0;
1924
1925 *pnum_referrals = 0;
1926 *preferrals = NULL;
1927
1928 if (pSesInfo->ipc_tid == 0) {
1929 temp_unc = kmalloc(2 /* for slashes */ +
1930 strnlen(pSesInfo->serverName,
1931 SERVER_NAME_LEN_WITH_NULL * 2)
1932 + 1 + 4 /* slash IPC$ */ + 2,
1933 GFP_KERNEL);
1934 if (temp_unc == NULL)
1935 return -ENOMEM;
1936 temp_unc[0] = '\\';
1937 temp_unc[1] = '\\';
1938 strcpy(temp_unc + 2, pSesInfo->serverName);
1939 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
1940 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
1941 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1942 kfree(temp_unc);
1943 }
1944 if (rc == 0)
1945 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
1946 pnum_referrals, nls_codepage, remap);
1947 /* BB map targetUNCs to dfs_info3 structures, here or
1948 in CIFSGetDFSRefer BB */
1949
1950 return rc;
1951 }
1952
1953 #ifdef CONFIG_DEBUG_LOCK_ALLOC
1954 static struct lock_class_key cifs_key[2];
1955 static struct lock_class_key cifs_slock_key[2];
1956
1957 static inline void
1958 cifs_reclassify_socket4(struct socket *sock)
1959 {
1960 struct sock *sk = sock->sk;
1961 BUG_ON(sock_owned_by_user(sk));
1962 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
1963 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
1964 }
1965
1966 static inline void
1967 cifs_reclassify_socket6(struct socket *sock)
1968 {
1969 struct sock *sk = sock->sk;
1970 BUG_ON(sock_owned_by_user(sk));
1971 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
1972 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
1973 }
1974 #else
1975 static inline void
1976 cifs_reclassify_socket4(struct socket *sock)
1977 {
1978 }
1979
1980 static inline void
1981 cifs_reclassify_socket6(struct socket *sock)
1982 {
1983 }
1984 #endif
1985
1986 /* See RFC1001 section 14 on representation of Netbios names */
1987 static void rfc1002mangle(char *target, char *source, unsigned int length)
1988 {
1989 unsigned int i, j;
1990
1991 for (i = 0, j = 0; i < (length); i++) {
1992 /* mask a nibble at a time and encode */
1993 target[j] = 'A' + (0x0F & (source[i] >> 4));
1994 target[j+1] = 'A' + (0x0F & source[i]);
1995 j += 2;
1996 }
1997
1998 }
1999
2000
2001 static int
2002 ipv4_connect(struct TCP_Server_Info *server)
2003 {
2004 int rc = 0;
2005 int val;
2006 bool connected = false;
2007 __be16 orig_port = 0;
2008 struct socket *socket = server->ssocket;
2009
2010 if (socket == NULL) {
2011 rc = sock_create_kern(PF_INET, SOCK_STREAM,
2012 IPPROTO_TCP, &socket);
2013 if (rc < 0) {
2014 cERROR(1, "Error %d creating socket", rc);
2015 return rc;
2016 }
2017
2018 /* BB other socket options to set KEEPALIVE, NODELAY? */
2019 cFYI(1, "Socket created");
2020 server->ssocket = socket;
2021 socket->sk->sk_allocation = GFP_NOFS;
2022 cifs_reclassify_socket4(socket);
2023 }
2024
2025 /* user overrode default port */
2026 if (server->addr.sockAddr.sin_port) {
2027 rc = socket->ops->connect(socket, (struct sockaddr *)
2028 &server->addr.sockAddr,
2029 sizeof(struct sockaddr_in), 0);
2030 if (rc >= 0)
2031 connected = true;
2032 }
2033
2034 if (!connected) {
2035 /* save original port so we can retry user specified port
2036 later if fall back ports fail this time */
2037 orig_port = server->addr.sockAddr.sin_port;
2038
2039 /* do not retry on the same port we just failed on */
2040 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
2041 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
2042 rc = socket->ops->connect(socket,
2043 (struct sockaddr *)
2044 &server->addr.sockAddr,
2045 sizeof(struct sockaddr_in), 0);
2046 if (rc >= 0)
2047 connected = true;
2048 }
2049 }
2050 if (!connected) {
2051 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
2052 rc = socket->ops->connect(socket, (struct sockaddr *)
2053 &server->addr.sockAddr,
2054 sizeof(struct sockaddr_in), 0);
2055 if (rc >= 0)
2056 connected = true;
2057 }
2058
2059 /* give up here - unless we want to retry on different
2060 protocol families some day */
2061 if (!connected) {
2062 if (orig_port)
2063 server->addr.sockAddr.sin_port = orig_port;
2064 cFYI(1, "Error %d connecting to server via ipv4", rc);
2065 sock_release(socket);
2066 server->ssocket = NULL;
2067 return rc;
2068 }
2069
2070
2071 /*
2072 * Eventually check for other socket options to change from
2073 * the default. sock_setsockopt not used because it expects
2074 * user space buffer
2075 */
2076 socket->sk->sk_rcvtimeo = 7 * HZ;
2077 socket->sk->sk_sndtimeo = 5 * HZ;
2078
2079 /* make the bufsizes depend on wsize/rsize and max requests */
2080 if (server->noautotune) {
2081 if (socket->sk->sk_sndbuf < (200 * 1024))
2082 socket->sk->sk_sndbuf = 200 * 1024;
2083 if (socket->sk->sk_rcvbuf < (140 * 1024))
2084 socket->sk->sk_rcvbuf = 140 * 1024;
2085 }
2086
2087 if (server->tcp_nodelay) {
2088 val = 1;
2089 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2090 (char *)&val, sizeof(val));
2091 if (rc)
2092 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
2093 }
2094
2095 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
2096 socket->sk->sk_sndbuf,
2097 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
2098
2099 /* send RFC1001 sessinit */
2100 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
2101 /* some servers require RFC1001 sessinit before sending
2102 negprot - BB check reconnection in case where second
2103 sessinit is sent but no second negprot */
2104 struct rfc1002_session_packet *ses_init_buf;
2105 struct smb_hdr *smb_buf;
2106 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2107 GFP_KERNEL);
2108 if (ses_init_buf) {
2109 ses_init_buf->trailer.session_req.called_len = 32;
2110 if (server->server_RFC1001_name &&
2111 server->server_RFC1001_name[0] != 0)
2112 rfc1002mangle(ses_init_buf->trailer.
2113 session_req.called_name,
2114 server->server_RFC1001_name,
2115 RFC1001_NAME_LEN_WITH_NULL);
2116 else
2117 rfc1002mangle(ses_init_buf->trailer.
2118 session_req.called_name,
2119 DEFAULT_CIFS_CALLED_NAME,
2120 RFC1001_NAME_LEN_WITH_NULL);
2121
2122 ses_init_buf->trailer.session_req.calling_len = 32;
2123
2124 /* calling name ends in null (byte 16) from old smb
2125 convention. */
2126 if (server->workstation_RFC1001_name &&
2127 server->workstation_RFC1001_name[0] != 0)
2128 rfc1002mangle(ses_init_buf->trailer.
2129 session_req.calling_name,
2130 server->workstation_RFC1001_name,
2131 RFC1001_NAME_LEN_WITH_NULL);
2132 else
2133 rfc1002mangle(ses_init_buf->trailer.
2134 session_req.calling_name,
2135 "LINUX_CIFS_CLNT",
2136 RFC1001_NAME_LEN_WITH_NULL);
2137
2138 ses_init_buf->trailer.session_req.scope1 = 0;
2139 ses_init_buf->trailer.session_req.scope2 = 0;
2140 smb_buf = (struct smb_hdr *)ses_init_buf;
2141 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2142 smb_buf->smb_buf_length = 0x81000044;
2143 rc = smb_send(server, smb_buf, 0x44);
2144 kfree(ses_init_buf);
2145 msleep(1); /* RFC1001 layer in at least one server
2146 requires very short break before negprot
2147 presumably because not expecting negprot
2148 to follow so fast. This is a simple
2149 solution that works without
2150 complicating the code and causes no
2151 significant slowing down on mount
2152 for everyone else */
2153 }
2154 /* else the negprot may still work without this
2155 even though malloc failed */
2156
2157 }
2158
2159 return rc;
2160 }
2161
2162 static int
2163 ipv6_connect(struct TCP_Server_Info *server)
2164 {
2165 int rc = 0;
2166 int val;
2167 bool connected = false;
2168 __be16 orig_port = 0;
2169 struct socket *socket = server->ssocket;
2170
2171 if (socket == NULL) {
2172 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
2173 IPPROTO_TCP, &socket);
2174 if (rc < 0) {
2175 cERROR(1, "Error %d creating ipv6 socket", rc);
2176 socket = NULL;
2177 return rc;
2178 }
2179
2180 /* BB other socket options to set KEEPALIVE, NODELAY? */
2181 cFYI(1, "ipv6 Socket created");
2182 server->ssocket = socket;
2183 socket->sk->sk_allocation = GFP_NOFS;
2184 cifs_reclassify_socket6(socket);
2185 }
2186
2187 /* user overrode default port */
2188 if (server->addr.sockAddr6.sin6_port) {
2189 rc = socket->ops->connect(socket,
2190 (struct sockaddr *) &server->addr.sockAddr6,
2191 sizeof(struct sockaddr_in6), 0);
2192 if (rc >= 0)
2193 connected = true;
2194 }
2195
2196 if (!connected) {
2197 /* save original port so we can retry user specified port
2198 later if fall back ports fail this time */
2199
2200 orig_port = server->addr.sockAddr6.sin6_port;
2201 /* do not retry on the same port we just failed on */
2202 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2203 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2204 rc = socket->ops->connect(socket, (struct sockaddr *)
2205 &server->addr.sockAddr6,
2206 sizeof(struct sockaddr_in6), 0);
2207 if (rc >= 0)
2208 connected = true;
2209 }
2210 }
2211 if (!connected) {
2212 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2213 rc = socket->ops->connect(socket, (struct sockaddr *)
2214 &server->addr.sockAddr6,
2215 sizeof(struct sockaddr_in6), 0);
2216 if (rc >= 0)
2217 connected = true;
2218 }
2219
2220 /* give up here - unless we want to retry on different
2221 protocol families some day */
2222 if (!connected) {
2223 if (orig_port)
2224 server->addr.sockAddr6.sin6_port = orig_port;
2225 cFYI(1, "Error %d connecting to server via ipv6", rc);
2226 sock_release(socket);
2227 server->ssocket = NULL;
2228 return rc;
2229 }
2230
2231 /*
2232 * Eventually check for other socket options to change from
2233 * the default. sock_setsockopt not used because it expects
2234 * user space buffer
2235 */
2236 socket->sk->sk_rcvtimeo = 7 * HZ;
2237 socket->sk->sk_sndtimeo = 5 * HZ;
2238
2239 if (server->tcp_nodelay) {
2240 val = 1;
2241 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2242 (char *)&val, sizeof(val));
2243 if (rc)
2244 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
2245 }
2246
2247 server->ssocket = socket;
2248
2249 return rc;
2250 }
2251
2252 void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2253 struct super_block *sb, struct smb_vol *vol_info)
2254 {
2255 /* if we are reconnecting then should we check to see if
2256 * any requested capabilities changed locally e.g. via
2257 * remount but we can not do much about it here
2258 * if they have (even if we could detect it by the following)
2259 * Perhaps we could add a backpointer to array of sb from tcon
2260 * or if we change to make all sb to same share the same
2261 * sb as NFS - then we only have one backpointer to sb.
2262 * What if we wanted to mount the server share twice once with
2263 * and once without posixacls or posix paths? */
2264 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2265
2266 if (vol_info && vol_info->no_linux_ext) {
2267 tcon->fsUnixInfo.Capability = 0;
2268 tcon->unix_ext = 0; /* Unix Extensions disabled */
2269 cFYI(1, "Linux protocol extensions disabled");
2270 return;
2271 } else if (vol_info)
2272 tcon->unix_ext = 1; /* Unix Extensions supported */
2273
2274 if (tcon->unix_ext == 0) {
2275 cFYI(1, "Unix extensions disabled so not set on reconnect");
2276 return;
2277 }
2278
2279 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
2280 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2281
2282 /* check for reconnect case in which we do not
2283 want to change the mount behavior if we can avoid it */
2284 if (vol_info == NULL) {
2285 /* turn off POSIX ACL and PATHNAMES if not set
2286 originally at mount time */
2287 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2288 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2289 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2290 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2291 cERROR(1, "POSIXPATH support change");
2292 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2293 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2294 cERROR(1, "possible reconnect error");
2295 cERROR(1, "server disabled POSIX path support");
2296 }
2297 }
2298
2299 cap &= CIFS_UNIX_CAP_MASK;
2300 if (vol_info && vol_info->no_psx_acl)
2301 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2302 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
2303 cFYI(1, "negotiated posix acl support");
2304 if (sb)
2305 sb->s_flags |= MS_POSIXACL;
2306 }
2307
2308 if (vol_info && vol_info->posix_paths == 0)
2309 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2310 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
2311 cFYI(1, "negotiate posix pathnames");
2312 if (sb)
2313 CIFS_SB(sb)->mnt_cifs_flags |=
2314 CIFS_MOUNT_POSIX_PATHS;
2315 }
2316
2317 /* We might be setting the path sep back to a different
2318 form if we are reconnecting and the server switched its
2319 posix path capability for this share */
2320 if (sb && (CIFS_SB(sb)->prepathlen > 0))
2321 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
2322
2323 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2324 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2325 CIFS_SB(sb)->rsize = 127 * 1024;
2326 cFYI(DBG2, "larger reads not supported by srv");
2327 }
2328 }
2329
2330
2331 cFYI(1, "Negotiate caps 0x%x", (int)cap);
2332 #ifdef CONFIG_CIFS_DEBUG2
2333 if (cap & CIFS_UNIX_FCNTL_CAP)
2334 cFYI(1, "FCNTL cap");
2335 if (cap & CIFS_UNIX_EXTATTR_CAP)
2336 cFYI(1, "EXTATTR cap");
2337 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2338 cFYI(1, "POSIX path cap");
2339 if (cap & CIFS_UNIX_XATTR_CAP)
2340 cFYI(1, "XATTR cap");
2341 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
2342 cFYI(1, "POSIX ACL cap");
2343 if (cap & CIFS_UNIX_LARGE_READ_CAP)
2344 cFYI(1, "very large read cap");
2345 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
2346 cFYI(1, "very large write cap");
2347 #endif /* CIFS_DEBUG2 */
2348 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
2349 if (vol_info == NULL) {
2350 cFYI(1, "resetting capabilities failed");
2351 } else
2352 cERROR(1, "Negotiating Unix capabilities "
2353 "with the server failed. Consider "
2354 "mounting with the Unix Extensions\n"
2355 "disabled, if problems are found, "
2356 "by specifying the nounix mount "
2357 "option.");
2358
2359 }
2360 }
2361 }
2362
2363 static void
2364 convert_delimiter(char *path, char delim)
2365 {
2366 int i;
2367 char old_delim;
2368
2369 if (path == NULL)
2370 return;
2371
2372 if (delim == '/')
2373 old_delim = '\\';
2374 else
2375 old_delim = '/';
2376
2377 for (i = 0; path[i] != '\0'; i++) {
2378 if (path[i] == old_delim)
2379 path[i] = delim;
2380 }
2381 }
2382
2383 static void setup_cifs_sb(struct smb_vol *pvolume_info,
2384 struct cifs_sb_info *cifs_sb)
2385 {
2386 if (pvolume_info->rsize > CIFSMaxBufSize) {
2387 cERROR(1, "rsize %d too large, using MaxBufSize",
2388 pvolume_info->rsize);
2389 cifs_sb->rsize = CIFSMaxBufSize;
2390 } else if ((pvolume_info->rsize) &&
2391 (pvolume_info->rsize <= CIFSMaxBufSize))
2392 cifs_sb->rsize = pvolume_info->rsize;
2393 else /* default */
2394 cifs_sb->rsize = CIFSMaxBufSize;
2395
2396 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
2397 cERROR(1, "wsize %d too large, using 4096 instead",
2398 pvolume_info->wsize);
2399 cifs_sb->wsize = 4096;
2400 } else if (pvolume_info->wsize)
2401 cifs_sb->wsize = pvolume_info->wsize;
2402 else
2403 cifs_sb->wsize = min_t(const int,
2404 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2405 127*1024);
2406 /* old default of CIFSMaxBufSize was too small now
2407 that SMB Write2 can send multiple pages in kvec.
2408 RFC1001 does not describe what happens when frame
2409 bigger than 128K is sent so use that as max in
2410 conjunction with 52K kvec constraint on arch with 4K
2411 page size */
2412
2413 if (cifs_sb->rsize < 2048) {
2414 cifs_sb->rsize = 2048;
2415 /* Windows ME may prefer this */
2416 cFYI(1, "readsize set to minimum: 2048");
2417 }
2418 /* calculate prepath */
2419 cifs_sb->prepath = pvolume_info->prepath;
2420 if (cifs_sb->prepath) {
2421 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2422 /* we can not convert the / to \ in the path
2423 separators in the prefixpath yet because we do not
2424 know (until reset_cifs_unix_caps is called later)
2425 whether POSIX PATH CAP is available. We normalize
2426 the / to \ after reset_cifs_unix_caps is called */
2427 pvolume_info->prepath = NULL;
2428 } else
2429 cifs_sb->prepathlen = 0;
2430 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2431 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2432 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2433 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
2434 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2435 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
2436
2437 if (pvolume_info->noperm)
2438 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2439 if (pvolume_info->setuids)
2440 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2441 if (pvolume_info->server_ino)
2442 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2443 if (pvolume_info->remap)
2444 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2445 if (pvolume_info->no_xattr)
2446 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2447 if (pvolume_info->sfu_emul)
2448 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2449 if (pvolume_info->nobrl)
2450 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
2451 if (pvolume_info->nostrictsync)
2452 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
2453 if (pvolume_info->mand_lock)
2454 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
2455 if (pvolume_info->cifs_acl)
2456 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2457 if (pvolume_info->override_uid)
2458 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2459 if (pvolume_info->override_gid)
2460 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2461 if (pvolume_info->dynperm)
2462 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2463 if (pvolume_info->direct_io) {
2464 cFYI(1, "mounting share using direct i/o");
2465 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2466 }
2467
2468 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
2469 cERROR(1, "mount option dynperm ignored if cifsacl "
2470 "mount option supported");
2471 }
2472
2473 static int
2474 is_path_accessible(int xid, struct cifsTconInfo *tcon,
2475 struct cifs_sb_info *cifs_sb, const char *full_path)
2476 {
2477 int rc;
2478 FILE_ALL_INFO *pfile_info;
2479
2480 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2481 if (pfile_info == NULL)
2482 return -ENOMEM;
2483
2484 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2485 0 /* not legacy */, cifs_sb->local_nls,
2486 cifs_sb->mnt_cifs_flags &
2487 CIFS_MOUNT_MAP_SPECIAL_CHR);
2488 kfree(pfile_info);
2489 return rc;
2490 }
2491
2492 static void
2493 cleanup_volume_info(struct smb_vol **pvolume_info)
2494 {
2495 struct smb_vol *volume_info;
2496
2497 if (!pvolume_info || !*pvolume_info)
2498 return;
2499
2500 volume_info = *pvolume_info;
2501 kzfree(volume_info->password);
2502 kfree(volume_info->UNC);
2503 kfree(volume_info->prepath);
2504 kfree(volume_info);
2505 *pvolume_info = NULL;
2506 return;
2507 }
2508
2509 #ifdef CONFIG_CIFS_DFS_UPCALL
2510 /* build_path_to_root returns full path to root when
2511 * we do not have an exiting connection (tcon) */
2512 static char *
2513 build_unc_path_to_root(const struct smb_vol *volume_info,
2514 const struct cifs_sb_info *cifs_sb)
2515 {
2516 char *full_path;
2517
2518 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2519 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2520 if (full_path == NULL)
2521 return ERR_PTR(-ENOMEM);
2522
2523 strncpy(full_path, volume_info->UNC, unc_len);
2524 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2525 int i;
2526 for (i = 0; i < unc_len; i++) {
2527 if (full_path[i] == '\\')
2528 full_path[i] = '/';
2529 }
2530 }
2531
2532 if (cifs_sb->prepathlen)
2533 strncpy(full_path + unc_len, cifs_sb->prepath,
2534 cifs_sb->prepathlen);
2535
2536 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2537 return full_path;
2538 }
2539 #endif
2540
2541 int
2542 cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
2543 char *mount_data_global, const char *devname)
2544 {
2545 int rc;
2546 int xid;
2547 struct smb_vol *volume_info;
2548 struct cifsSesInfo *pSesInfo;
2549 struct cifsTconInfo *tcon;
2550 struct TCP_Server_Info *srvTcp;
2551 char *full_path;
2552 char *mount_data = mount_data_global;
2553 #ifdef CONFIG_CIFS_DFS_UPCALL
2554 struct dfs_info3_param *referrals = NULL;
2555 unsigned int num_referrals = 0;
2556 int referral_walks_count = 0;
2557 try_mount_again:
2558 #endif
2559 rc = 0;
2560 tcon = NULL;
2561 pSesInfo = NULL;
2562 srvTcp = NULL;
2563 full_path = NULL;
2564
2565 xid = GetXid();
2566
2567 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2568 if (!volume_info) {
2569 rc = -ENOMEM;
2570 goto out;
2571 }
2572
2573 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
2574 rc = -EINVAL;
2575 goto out;
2576 }
2577
2578 if (volume_info->nullauth) {
2579 cFYI(1, "null user");
2580 volume_info->username = "";
2581 } else if (volume_info->username) {
2582 /* BB fixme parse for domain name here */
2583 cFYI(1, "Username: %s", volume_info->username);
2584 } else {
2585 cifserror("No username specified");
2586 /* In userspace mount helper we can get user name from alternate
2587 locations such as env variables and files on disk */
2588 rc = -EINVAL;
2589 goto out;
2590 }
2591
2592 /* this is needed for ASCII cp to Unicode converts */
2593 if (volume_info->iocharset == NULL) {
2594 /* load_nls_default cannot return null */
2595 volume_info->local_nls = load_nls_default();
2596 } else {
2597 volume_info->local_nls = load_nls(volume_info->iocharset);
2598 if (volume_info->local_nls == NULL) {
2599 cERROR(1, "CIFS mount error: iocharset %s not found",
2600 volume_info->iocharset);
2601 rc = -ELIBACC;
2602 goto out;
2603 }
2604 }
2605 cifs_sb->local_nls = volume_info->local_nls;
2606
2607 /* get a reference to a tcp session */
2608 srvTcp = cifs_get_tcp_session(volume_info);
2609 if (IS_ERR(srvTcp)) {
2610 rc = PTR_ERR(srvTcp);
2611 goto out;
2612 }
2613
2614 /* get a reference to a SMB session */
2615 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2616 if (IS_ERR(pSesInfo)) {
2617 rc = PTR_ERR(pSesInfo);
2618 pSesInfo = NULL;
2619 goto mount_fail_check;
2620 }
2621
2622 setup_cifs_sb(volume_info, cifs_sb);
2623 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2624 sb->s_maxbytes = MAX_LFS_FILESIZE;
2625 else
2626 sb->s_maxbytes = MAX_NON_LFS;
2627
2628 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
2629 sb->s_time_gran = 100;
2630
2631 /* search for existing tcon to this server share */
2632 tcon = cifs_get_tcon(pSesInfo, volume_info);
2633 if (IS_ERR(tcon)) {
2634 rc = PTR_ERR(tcon);
2635 tcon = NULL;
2636 goto remote_path_check;
2637 }
2638
2639 cifs_sb->tcon = tcon;
2640
2641 /* do not care if following two calls succeed - informational */
2642 if (!tcon->ipc) {
2643 CIFSSMBQFSDeviceInfo(xid, tcon);
2644 CIFSSMBQFSAttributeInfo(xid, tcon);
2645 }
2646
2647 /* tell server which Unix caps we support */
2648 if (tcon->ses->capabilities & CAP_UNIX)
2649 /* reset of caps checks mount to see if unix extensions
2650 disabled for just this mount */
2651 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
2652 else
2653 tcon->unix_ext = 0; /* server does not support them */
2654
2655 /* convert forward to back slashes in prepath here if needed */
2656 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2657 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
2658
2659 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2660 cifs_sb->rsize = 1024 * 127;
2661 cFYI(DBG2, "no very large read support, rsize now 127K");
2662 }
2663 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2664 cifs_sb->wsize = min(cifs_sb->wsize,
2665 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2666 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2667 cifs_sb->rsize = min(cifs_sb->rsize,
2668 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2669
2670 remote_path_check:
2671 /* check if a whole path (including prepath) is not remote */
2672 if (!rc && cifs_sb->prepathlen && tcon) {
2673 /* build_path_to_root works only when we have a valid tcon */
2674 full_path = cifs_build_path_to_root(cifs_sb);
2675 if (full_path == NULL) {
2676 rc = -ENOMEM;
2677 goto mount_fail_check;
2678 }
2679 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
2680 if (rc != -EREMOTE) {
2681 kfree(full_path);
2682 goto mount_fail_check;
2683 }
2684 kfree(full_path);
2685 }
2686
2687 /* get referral if needed */
2688 if (rc == -EREMOTE) {
2689 #ifdef CONFIG_CIFS_DFS_UPCALL
2690 if (referral_walks_count > MAX_NESTED_LINKS) {
2691 /*
2692 * BB: when we implement proper loop detection,
2693 * we will remove this check. But now we need it
2694 * to prevent an indefinite loop if 'DFS tree' is
2695 * misconfigured (i.e. has loops).
2696 */
2697 rc = -ELOOP;
2698 goto mount_fail_check;
2699 }
2700 /* convert forward to back slashes in prepath here if needed */
2701 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2702 convert_delimiter(cifs_sb->prepath,
2703 CIFS_DIR_SEP(cifs_sb));
2704 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2705 if (IS_ERR(full_path)) {
2706 rc = PTR_ERR(full_path);
2707 goto mount_fail_check;
2708 }
2709
2710 cFYI(1, "Getting referral for: %s", full_path);
2711 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2712 cifs_sb->local_nls, &num_referrals, &referrals,
2713 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2714 if (!rc && num_referrals > 0) {
2715 char *fake_devname = NULL;
2716
2717 if (mount_data != mount_data_global)
2718 kfree(mount_data);
2719
2720 mount_data = cifs_compose_mount_options(
2721 cifs_sb->mountdata, full_path + 1,
2722 referrals, &fake_devname);
2723
2724 free_dfs_info_array(referrals, num_referrals);
2725 kfree(fake_devname);
2726 kfree(full_path);
2727
2728 if (IS_ERR(mount_data)) {
2729 rc = PTR_ERR(mount_data);
2730 mount_data = NULL;
2731 goto mount_fail_check;
2732 }
2733
2734 if (tcon)
2735 cifs_put_tcon(tcon);
2736 else if (pSesInfo)
2737 cifs_put_smb_ses(pSesInfo);
2738
2739 cleanup_volume_info(&volume_info);
2740 referral_walks_count++;
2741 FreeXid(xid);
2742 goto try_mount_again;
2743 }
2744 #else /* No DFS support, return error on mount */
2745 rc = -EOPNOTSUPP;
2746 #endif
2747 }
2748
2749 mount_fail_check:
2750 /* on error free sesinfo and tcon struct if needed */
2751 if (rc) {
2752 if (mount_data != mount_data_global)
2753 kfree(mount_data);
2754 /* If find_unc succeeded then rc == 0 so we can not end */
2755 /* up accidently freeing someone elses tcon struct */
2756 if (tcon)
2757 cifs_put_tcon(tcon);
2758 else if (pSesInfo)
2759 cifs_put_smb_ses(pSesInfo);
2760 else
2761 cifs_put_tcp_session(srvTcp);
2762 goto out;
2763 }
2764
2765 /* volume_info->password is freed above when existing session found
2766 (in which case it is not needed anymore) but when new sesion is created
2767 the password ptr is put in the new session structure (in which case the
2768 password will be freed at unmount time) */
2769 out:
2770 /* zero out password before freeing */
2771 cleanup_volume_info(&volume_info);
2772 FreeXid(xid);
2773 return rc;
2774 }
2775
2776 int
2777 CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2778 const char *tree, struct cifsTconInfo *tcon,
2779 const struct nls_table *nls_codepage)
2780 {
2781 struct smb_hdr *smb_buffer;
2782 struct smb_hdr *smb_buffer_response;
2783 TCONX_REQ *pSMB;
2784 TCONX_RSP *pSMBr;
2785 unsigned char *bcc_ptr;
2786 int rc = 0;
2787 int length, bytes_left;
2788 __u16 count;
2789
2790 if (ses == NULL)
2791 return -EIO;
2792
2793 smb_buffer = cifs_buf_get();
2794 if (smb_buffer == NULL)
2795 return -ENOMEM;
2796
2797 smb_buffer_response = smb_buffer;
2798
2799 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2800 NULL /*no tid */ , 4 /*wct */ );
2801
2802 smb_buffer->Mid = GetNextMid(ses->server);
2803 smb_buffer->Uid = ses->Suid;
2804 pSMB = (TCONX_REQ *) smb_buffer;
2805 pSMBr = (TCONX_RSP *) smb_buffer_response;
2806
2807 pSMB->AndXCommand = 0xFF;
2808 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
2809 bcc_ptr = &pSMB->Password[0];
2810 if ((ses->server->secMode) & SECMODE_USER) {
2811 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
2812 *bcc_ptr = 0; /* password is null byte */
2813 bcc_ptr++; /* skip password */
2814 /* already aligned so no need to do it below */
2815 } else {
2816 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
2817 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2818 specified as required (when that support is added to
2819 the vfs in the future) as only NTLM or the much
2820 weaker LANMAN (which we do not send by default) is accepted
2821 by Samba (not sure whether other servers allow
2822 NTLMv2 password here) */
2823 #ifdef CONFIG_CIFS_WEAK_PW_HASH
2824 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
2825 (ses->server->secType == LANMAN))
2826 calc_lanman_hash(tcon->password, ses->server->cryptKey,
2827 ses->server->secMode &
2828 SECMODE_PW_ENCRYPT ? true : false,
2829 bcc_ptr);
2830 else
2831 #endif /* CIFS_WEAK_PW_HASH */
2832 SMBNTencrypt(tcon->password, ses->server->cryptKey,
2833 bcc_ptr);
2834
2835 bcc_ptr += CIFS_SESS_KEY_SIZE;
2836 if (ses->capabilities & CAP_UNICODE) {
2837 /* must align unicode strings */
2838 *bcc_ptr = 0; /* null byte password */
2839 bcc_ptr++;
2840 }
2841 }
2842
2843 if (ses->server->secMode &
2844 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
2845 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
2846
2847 if (ses->capabilities & CAP_STATUS32) {
2848 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
2849 }
2850 if (ses->capabilities & CAP_DFS) {
2851 smb_buffer->Flags2 |= SMBFLG2_DFS;
2852 }
2853 if (ses->capabilities & CAP_UNICODE) {
2854 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
2855 length =
2856 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
2857 6 /* max utf8 char length in bytes */ *
2858 (/* server len*/ + 256 /* share len */), nls_codepage);
2859 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
2860 bcc_ptr += 2; /* skip trailing null */
2861 } else { /* ASCII */
2862 strcpy(bcc_ptr, tree);
2863 bcc_ptr += strlen(tree) + 1;
2864 }
2865 strcpy(bcc_ptr, "?????");
2866 bcc_ptr += strlen("?????");
2867 bcc_ptr += 1;
2868 count = bcc_ptr - &pSMB->Password[0];
2869 pSMB->hdr.smb_buf_length += count;
2870 pSMB->ByteCount = cpu_to_le16(count);
2871
2872 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
2873 CIFS_STD_OP);
2874
2875 /* above now done in SendReceive */
2876 if ((rc == 0) && (tcon != NULL)) {
2877 bool is_unicode;
2878
2879 tcon->tidStatus = CifsGood;
2880 tcon->need_reconnect = false;
2881 tcon->tid = smb_buffer_response->Tid;
2882 bcc_ptr = pByteArea(smb_buffer_response);
2883 bytes_left = BCC(smb_buffer_response);
2884 length = strnlen(bcc_ptr, bytes_left - 2);
2885 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
2886 is_unicode = true;
2887 else
2888 is_unicode = false;
2889
2890
2891 /* skip service field (NB: this field is always ASCII) */
2892 if (length == 3) {
2893 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
2894 (bcc_ptr[2] == 'C')) {
2895 cFYI(1, "IPC connection");
2896 tcon->ipc = 1;
2897 }
2898 } else if (length == 2) {
2899 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
2900 /* the most common case */
2901 cFYI(1, "disk share connection");
2902 }
2903 }
2904 bcc_ptr += length + 1;
2905 bytes_left -= (length + 1);
2906 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
2907
2908 /* mostly informational -- no need to fail on error here */
2909 kfree(tcon->nativeFileSystem);
2910 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
2911 bytes_left, is_unicode,
2912 nls_codepage);
2913
2914 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
2915
2916 if ((smb_buffer_response->WordCount == 3) ||
2917 (smb_buffer_response->WordCount == 7))
2918 /* field is in same location */
2919 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
2920 else
2921 tcon->Flags = 0;
2922 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
2923 } else if ((rc == 0) && tcon == NULL) {
2924 /* all we need to save for IPC$ connection */
2925 ses->ipc_tid = smb_buffer_response->Tid;
2926 }
2927
2928 cifs_buf_release(smb_buffer);
2929 return rc;
2930 }
2931
2932 int
2933 cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
2934 {
2935 int rc = 0;
2936 char *tmp;
2937
2938 if (cifs_sb->tcon)
2939 cifs_put_tcon(cifs_sb->tcon);
2940
2941 cifs_sb->tcon = NULL;
2942 tmp = cifs_sb->prepath;
2943 cifs_sb->prepathlen = 0;
2944 cifs_sb->prepath = NULL;
2945 kfree(tmp);
2946
2947 return rc;
2948 }
2949
2950 int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
2951 {
2952 int rc = 0;
2953 struct TCP_Server_Info *server = ses->server;
2954
2955 /* only send once per connect */
2956 if (server->maxBuf != 0)
2957 return 0;
2958
2959 rc = CIFSSMBNegotiate(xid, ses);
2960 if (rc == -EAGAIN) {
2961 /* retry only once on 1st time connection */
2962 rc = CIFSSMBNegotiate(xid, ses);
2963 if (rc == -EAGAIN)
2964 rc = -EHOSTDOWN;
2965 }
2966 if (rc == 0) {
2967 spin_lock(&GlobalMid_Lock);
2968 if (server->tcpStatus != CifsExiting)
2969 server->tcpStatus = CifsGood;
2970 else
2971 rc = -EHOSTDOWN;
2972 spin_unlock(&GlobalMid_Lock);
2973
2974 }
2975
2976 return rc;
2977 }
2978
2979
2980 int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
2981 struct nls_table *nls_info)
2982 {
2983 int rc = 0;
2984 struct TCP_Server_Info *server = ses->server;
2985
2986 ses->flags = 0;
2987 ses->capabilities = server->capabilities;
2988 if (linuxExtEnabled == 0)
2989 ses->capabilities &= (~CAP_UNIX);
2990
2991 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
2992 server->secMode, server->capabilities, server->timeAdj);
2993
2994 rc = CIFS_SessSetup(xid, ses, nls_info);
2995 if (rc) {
2996 cERROR(1, "Send error in SessSetup = %d", rc);
2997 } else {
2998 cFYI(1, "CIFS Session Established successfully");
2999 spin_lock(&GlobalMid_Lock);
3000 ses->status = CifsGood;
3001 ses->need_reconnect = false;
3002 spin_unlock(&GlobalMid_Lock);
3003 }
3004
3005 return rc;
3006 }
3007