projects / deliverable / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
CIFS: Fix memory leak in cifs_do_mount
[deliverable/linux.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
488f1d2d 50#include "fscache.h"
1da177e4
LT		 51
52#define CIFS_PORT 445
53#define RFC1001_PORT 139
54
c74093b6
JL		 55/* SMB echo "timeout" -- FIXME: tunable? */
56#define SMB_ECHO_INTERVAL (60 * HZ)
57
1da177e4
LT		 58extern mempool_t *cifs_req_poolp;
59
60struct smb_vol {
61 char *username;
62 char *password;
63 char *domainname;
64 char *UNC;
65 char *UNCip;
1da177e4 66 char *iocharset; /* local code page for mapping to and from Unicode */
1397f2ee
JL		 67 char source_rfc1001_name[RFC1001_NAME_LEN_WITH_NULL]; /* clnt nb name */
68 char target_rfc1001_name[RFC1001_NAME_LEN_WITH_NULL]; /* srvr nb name */
3e4b3e1f 69 uid_t cred_uid;
1da177e4
LT		 70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
189acaae 74 unsigned secFlg;
4b18f2a9
SF		 75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
d0a9c078 80 bool dynperm:1;
4b18f2a9
SF		 81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
d39454ff 87 bool strict_io:1; /* strict cache behavior */
95b1cb90
SF		 88 bool remap:1; /* set to remap seven reserved chars in filenames */
89 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 90 bool no_linux_ext:1;
91 bool sfu_emul:1;
95b1cb90
SF		 92 bool nullauth:1; /* attempt to authenticate with null user */
93 bool nocase:1; /* request case insensitive filenames */
94 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 95 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 96 bool seal:1; /* request transport encryption on share */
84210e91
SF		 97 bool nodfs:1; /* Do not request DFS, even if available */
98 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 99 bool noblocksnd:1;
100 bool noautotune:1;
be652445 101 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
fa1df75d 102 bool fsc:1; /* enable fscache */
736a3320 103 bool mfsymlinks:1; /* use Minshall+French Symlinks */
0eb8a132 104 bool multiuser:1;
1da177e4
LT		 105 unsigned int rsize;
106 unsigned int wsize;
6a5fa236 107 bool sockopt_tcp_nodelay:1;
1da177e4 108 unsigned short int port;
6d20e840 109 unsigned long actimeo; /* attribute cache timeout (jiffies) */
fb8c4b14 110 char *prepath;
3eb9a889 111 struct sockaddr_storage srcaddr; /* allow binding to a local IP */
a5fc4ce0 112 struct nls_table *local_nls;
1da177e4
LT		 113};
114
2de970ff 115/* FIXME: should these be tunable? */
9d002df4 116#define TLINK_ERROR_EXPIRE (1 * HZ)
2de970ff 117#define TLINK_IDLE_EXPIRE (600 * HZ)
9d002df4 118
a9f1b85e
PS		 119static int ip_connect(struct TCP_Server_Info *server);
120static int generic_ip_connect(struct TCP_Server_Info *server);
b647c35f 121static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
2de970ff 122static void cifs_prune_tlinks(struct work_struct *work);
1da177e4 123
d5c5605c
JL		 124/*
125 * cifs tcp session reconnection
126 *
127 * mark tcp session as reconnecting so temporarily locked
128 * mark all smb sessions as reconnecting for tcp session
129 * reconnect tcp session
130 * wake up waiters on reconnection? - (not needed currently)
131 */
2cd646a2 132static int
1da177e4
LT		 133cifs_reconnect(struct TCP_Server_Info *server)
134{
135 int rc = 0;
f1987b44 136 struct list_head *tmp, *tmp2;
1da177e4
LT		 137 struct cifsSesInfo *ses;
138 struct cifsTconInfo *tcon;
fb8c4b14 139 struct mid_q_entry *mid_entry;
3c1105df 140 struct list_head retry_list;
50c2f753 141
1da177e4 142 spin_lock(&GlobalMid_Lock);
469ee614 143 if (server->tcpStatus == CifsExiting) {
fb8c4b14 144 /* the demux thread will exit normally
1da177e4
LT		 145 next time through the loop */
146 spin_unlock(&GlobalMid_Lock);
147 return rc;
148 } else
149 server->tcpStatus = CifsNeedReconnect;
150 spin_unlock(&GlobalMid_Lock);
151 server->maxBuf = 0;
152
b6b38f70 153 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 154
155 /* before reconnecting the tcp session, mark the smb session (uid)
156 and the tid bad so they are not used until reconnected */
2b84a36c 157 cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
3f9bcca7 158 spin_lock(&cifs_tcp_ses_lock);
14fbf50d
JL		 159 list_for_each(tmp, &server->smb_ses_list) {
160 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
161 ses->need_reconnect = true;
162 ses->ipc_tid = 0;
f1987b44
JL		 163 list_for_each(tmp2, &ses->tcon_list) {
164 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 165 tcon->need_reconnect = true;
1da177e4 166 }
1da177e4 167 }
3f9bcca7 168 spin_unlock(&cifs_tcp_ses_lock);
2b84a36c 169
1da177e4 170 /* do not want to be sending data on a socket we are freeing */
2b84a36c 171 cFYI(1, "%s: tearing down socket", __func__);
72ca545b 172 mutex_lock(&server->srv_mutex);
fb8c4b14 173 if (server->ssocket) {
b6b38f70
JP		 174 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
175 server->ssocket->flags);
91cf45f0 176 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 177 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 178 server->ssocket->state,
b6b38f70 179 server->ssocket->flags);
1da177e4
LT		 180 sock_release(server->ssocket);
181 server->ssocket = NULL;
182 }
5d0d2882
SP		 183 server->sequence_number = 0;
184 server->session_estab = false;
21e73393
SP		 185 kfree(server->session_key.response);
186 server->session_key.response = NULL;
187 server->session_key.len = 0;
fda35943 188 server->lstrp = jiffies;
2b84a36c 189 mutex_unlock(&server->srv_mutex);
1da177e4 190
2b84a36c 191 /* mark submitted MIDs for retry and issue callback */
3c1105df
JL		 192 INIT_LIST_HEAD(&retry_list);
193 cFYI(1, "%s: moving mids to private list", __func__);
1da177e4 194 spin_lock(&GlobalMid_Lock);
2b84a36c
JL		 195 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
196 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
197 if (mid_entry->midState == MID_REQUEST_SUBMITTED)
ad8b15f0 198 mid_entry->midState = MID_RETRY_NEEDED;
3c1105df
JL		 199 list_move(&mid_entry->qhead, &retry_list);
200 }
201 spin_unlock(&GlobalMid_Lock);
202
203 cFYI(1, "%s: issuing mid callbacks", __func__);
204 list_for_each_safe(tmp, tmp2, &retry_list) {
205 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
2b84a36c
JL		 206 list_del_init(&mid_entry->qhead);
207 mid_entry->callback(mid_entry);
1da177e4 208 }
1da177e4 209
fd88ce93 210 while (server->tcpStatus == CifsNeedReconnect) {
6c3d8909 211 try_to_freeze();
a9f1b85e
PS		 212
213 /* we should try only the port we connected to before */
214 rc = generic_ip_connect(server);
fb8c4b14 215 if (rc) {
b6b38f70 216 cFYI(1, "reconnect error %d", rc);
0cb766ae 217 msleep(3000);
1da177e4
LT		 218 } else {
219 atomic_inc(&tcpSesReconnectCount);
220 spin_lock(&GlobalMid_Lock);
469ee614 221 if (server->tcpStatus != CifsExiting)
fd88ce93 222 server->tcpStatus = CifsNeedNegotiate;
fb8c4b14 223 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 224 }
225 }
2b84a36c 226
1da177e4
LT		 227 return rc;
228}
229
fb8c4b14 230/*
e4eb295d
SF		 231 return codes:
232 0 not a transact2, or all data present
233 >0 transact2 with that much data missing
234 -EINVAL = invalid transact2
235
236 */
fb8c4b14 237static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 238{
fb8c4b14 239 struct smb_t2_rsp *pSMBt;
e4eb295d 240 int remaining;
26ec2548 241 __u16 total_data_size, data_in_this_rsp;
e4eb295d 242
fb8c4b14 243 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 244 return 0;
245
fb8c4b14
SF		 246 /* check for plausible wct, bcc and t2 data and parm sizes */
247 /* check for parm and data offset going beyond end of smb */
248 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 249 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 250 return -EINVAL;
251 }
252
253 pSMBt = (struct smb_t2_rsp *)pSMB;
254
26ec2548
JL		 255 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
256 data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
e4eb295d 257
c0c7b905 258 if (total_data_size == data_in_this_rsp)
e4eb295d 259 return 0;
c0c7b905 260 else if (total_data_size < data_in_this_rsp) {
b6b38f70
JP		 261 cFYI(1, "total data %d smaller than data in frame %d",
262 total_data_size, data_in_this_rsp);
e4eb295d 263 return -EINVAL;
e4eb295d 264 }
c0c7b905
JL		 265
266 remaining = total_data_size - data_in_this_rsp;
267
268 cFYI(1, "missing %d bytes from transact2, check next response",
269 remaining);
270 if (total_data_size > maxBufSize) {
271 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
272 total_data_size, maxBufSize);
273 return -EINVAL;
274 }
275 return remaining;
e4eb295d
SF		 276}
277
fb8c4b14 278static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 279{
280 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
281 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
fb8c4b14
SF		 282 char *data_area_of_target;
283 char *data_area_of_buf2;
26ec2548 284 int remaining;
2a2047bc
JL		 285 unsigned int byte_count, total_in_buf;
286 __u16 total_data_size, total_in_buf2;
e4eb295d 287
26ec2548 288 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
e4eb295d 289
26ec2548
JL		 290 if (total_data_size !=
291 get_unaligned_le16(&pSMB2->t2_rsp.TotalDataCount))
b6b38f70 292 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d 293
26ec2548 294 total_in_buf = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
e4eb295d
SF		 295
296 remaining = total_data_size - total_in_buf;
50c2f753 297
fb8c4b14 298 if (remaining < 0)
2a2047bc 299 return -EPROTO;
e4eb295d 300
fb8c4b14 301 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 302 return 0;
50c2f753 303
26ec2548 304 total_in_buf2 = get_unaligned_le16(&pSMB2->t2_rsp.DataCount);
fb8c4b14 305 if (remaining < total_in_buf2) {
b6b38f70 306 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 307 }
308
309 /* find end of first SMB data area */
fb8c4b14 310 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
26ec2548 311 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
e4eb295d
SF		 312 /* validate target area */
313
26ec2548
JL		 314 data_area_of_buf2 = (char *)&pSMB2->hdr.Protocol +
315 get_unaligned_le16(&pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 316
317 data_area_of_target += total_in_buf;
318
319 /* copy second buffer into end of first buffer */
e4eb295d 320 total_in_buf += total_in_buf2;
2a2047bc
JL		 321 /* is the result too big for the field? */
322 if (total_in_buf > USHRT_MAX)
323 return -EPROTO;
26ec2548 324 put_unaligned_le16(total_in_buf, &pSMBt->t2_rsp.DataCount);
2a2047bc
JL		 325
326 /* fix up the BCC */
820a803f 327 byte_count = get_bcc(pTargetSMB);
e4eb295d 328 byte_count += total_in_buf2;
2a2047bc
JL		 329 /* is the result too big for the field? */
330 if (byte_count > USHRT_MAX)
331 return -EPROTO;
820a803f 332 put_bcc(byte_count, pTargetSMB);
e4eb295d 333
be8e3b00 334 byte_count = be32_to_cpu(pTargetSMB->smb_buf_length);
e4eb295d 335 byte_count += total_in_buf2;
2a2047bc
JL		 336 /* don't allow buffer to overflow */
337 if (byte_count > CIFSMaxBufSize)
338 return -ENOBUFS;
be8e3b00 339 pTargetSMB->smb_buf_length = cpu_to_be32(byte_count);
e4eb295d 340
2a2047bc
JL		 341 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
342
fb8c4b14 343 if (remaining == total_in_buf2) {
b6b38f70 344 cFYI(1, "found the last secondary response");
e4eb295d
SF		 345 return 0; /* we are done */
346 } else /* more responses to go */
347 return 1;
e4eb295d
SF		 348}
349
c74093b6
JL		 350static void
351cifs_echo_request(struct work_struct *work)
352{
353 int rc;
354 struct TCP_Server_Info *server = container_of(work,
355 struct TCP_Server_Info, echo.work);
356
247ec9b4 357 /*
195291e6
JL		 358 * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
359 * done, which is indicated by maxBuf != 0. Also, no need to ping if
360 * we got a response recently
247ec9b4 361 */
195291e6 362 if (server->maxBuf == 0 ||
247ec9b4 363 time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
c74093b6
JL		 364 goto requeue_echo;
365
366 rc = CIFSSMBEcho(server);
367 if (rc)
368 cFYI(1, "Unable to send echo request to server: %s",
369 server->hostname);
370
371requeue_echo:
372 queue_delayed_work(system_nrt_wq, &server->echo, SMB_ECHO_INTERVAL);
373}
374
1da177e4
LT		 375static int
376cifs_demultiplex_thread(struct TCP_Server_Info *server)
377{
378 int length;
379 unsigned int pdu_length, total_read;
380 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 381 struct smb_hdr *bigbuf = NULL;
382 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 383 struct msghdr smb_msg;
384 struct kvec iov;
385 struct socket *csocket = server->ssocket;
2b84a36c 386 struct list_head *tmp, *tmp2;
1da177e4
LT		 387 struct task_struct *task_to_wake = NULL;
388 struct mid_q_entry *mid_entry;
70ca734a 389 char temp;
4b18f2a9
SF		 390 bool isLargeBuf = false;
391 bool isMultiRsp;
e4eb295d 392 int reconnect;
1da177e4 393
1da177e4 394 current->flags |= PF_MEMALLOC;
b6b38f70 395 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 396
397 length = atomic_inc_return(&tcpSesAllocCount);
398 if (length > 1)
26f57364
SF		 399 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
400 GFP_KERNEL);
1da177e4 401
83144186 402 set_freezable();
469ee614 403 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 404 if (try_to_freeze())
405 continue;
b8643e1b
SF		 406 if (bigbuf == NULL) {
407 bigbuf = cifs_buf_get();
0fd1ffe0 408 if (!bigbuf) {
b6b38f70 409 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 410 msleep(3000);
411 /* retry will check if exiting */
412 continue;
413 }
0fd1ffe0
PM		 414 } else if (isLargeBuf) {
415 /* we are reusing a dirty large buf, clear its start */
26f57364 416 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 417 }
b8643e1b
SF		 418
419 if (smallbuf == NULL) {
420 smallbuf = cifs_small_buf_get();
0fd1ffe0 421 if (!smallbuf) {
b6b38f70 422 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 423 msleep(1000);
424 /* retry will check if exiting */
425 continue;
426 }
427 /* beginning of smb buffer is cleared in our buf_get */
428 } else /* if existing small buf clear beginning */
26f57364 429 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 430
4b18f2a9
SF		 431 isLargeBuf = false;
432 isMultiRsp = false;
b8643e1b 433 smb_buffer = smallbuf;
1da177e4
LT		 434 iov.iov_base = smb_buffer;
435 iov.iov_len = 4;
436 smb_msg.msg_control = NULL;
437 smb_msg.msg_controllen = 0;
f01d5e14 438 pdu_length = 4; /* enough to get RFC1001 header */
fda35943 439
f01d5e14 440incomplete_rcv:
fd88ce93 441 if (echo_retries > 0 && server->tcpStatus == CifsGood &&
fda35943
SF		 442 time_after(jiffies, server->lstrp +
443 (echo_retries * SMB_ECHO_INTERVAL))) {
444 cERROR(1, "Server %s has not responded in %d seconds. "
445 "Reconnecting...", server->hostname,
446 (echo_retries * SMB_ECHO_INTERVAL / HZ));
447 cifs_reconnect(server);
448 csocket = server->ssocket;
449 wake_up(&server->response_q);
450 continue;
451 }
452
1da177e4
LT		 453 length =
454 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 455 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 456
469ee614 457 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 458 break;
459 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 460 cFYI(1, "Reconnect after server stopped responding");
1da177e4 461 cifs_reconnect(server);
b6b38f70 462 cFYI(1, "call to reconnect done");
1da177e4
LT		 463 csocket = server->ssocket;
464 continue;
522bbe65
JL		 465 } else if (length == -ERESTARTSYS ||
466 length == -EAGAIN ||
467 length == -EINTR) {
b8643e1b 468 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 469 allowing socket to clear and app threads to set
470 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 471 if (pdu_length < 4) {
472 iov.iov_base = (4 - pdu_length) +
473 (char *)smb_buffer;
474 iov.iov_len = pdu_length;
475 smb_msg.msg_control = NULL;
476 smb_msg.msg_controllen = 0;
c18c732e 477 goto incomplete_rcv;
c527c8a7 478 } else
c18c732e 479 continue;
1da177e4 480 } else if (length <= 0) {
b6b38f70
JP		 481 cFYI(1, "Reconnect after unexpected peek error %d",
482 length);
1da177e4
LT		 483 cifs_reconnect(server);
484 csocket = server->ssocket;
485 wake_up(&server->response_q);
486 continue;
2a974680 487 } else if (length < pdu_length) {
b6b38f70
JP		 488 cFYI(1, "requested %d bytes but only got %d bytes",
489 pdu_length, length);
f01d5e14 490 pdu_length -= length;
f01d5e14
SF		 491 msleep(1);
492 goto incomplete_rcv;
46810cbf 493 }
1da177e4 494
70ca734a
SF		 495 /* The right amount was read from socket - 4 bytes */
496 /* so we can now interpret the length field */
46810cbf 497
70ca734a
SF		 498 /* the first byte big endian of the length field,
499 is actually not part of the length but the type
500 with the most common, zero, as regular data */
501 temp = *((char *) smb_buffer);
46810cbf 502
fb8c4b14 503 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 504 but we convert it here so it is always manipulated
505 as host byte order */
be8e3b00 506 pdu_length = be32_to_cpu(smb_buffer->smb_buf_length);
70ca734a 507
b6b38f70 508 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 509
70ca734a 510 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 511 continue;
70ca734a 512 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 513 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 514 continue;
70ca734a 515 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 516 /* we get this from Windows 98 instead of
46810cbf 517 an error on SMB negprot response */
b6b38f70
JP		 518 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
519 pdu_length);
7332f2a6
JL		 520 /* give server a second to clean up */
521 msleep(1000);
522 /* always try 445 first on reconnect since we get NACK
523 * on some if we ever connected to port 139 (the NACK
524 * is since we do not begin with RFC1001 session
525 * initialize frame)
526 */
32670396 527 cifs_set_port((struct sockaddr *)
a9f1b85e 528 &server->dstaddr, CIFS_PORT);
7332f2a6
JL		 529 cifs_reconnect(server);
530 csocket = server->ssocket;
531 wake_up(&server->response_q);
532 continue;
70ca734a 533 } else if (temp != (char) 0) {
b6b38f70 534 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 535 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
536 length);
46810cbf
SF		 537 cifs_reconnect(server);
538 csocket = server->ssocket;
539 continue;
e4eb295d
SF		 540 }
541
542 /* else we have an SMB response */
fb8c4b14 543 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 544 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 545 cERROR(1, "Invalid size SMB length %d pdu_length %d",
546 length, pdu_length+4);
e4eb295d
SF		 547 cifs_reconnect(server);
548 csocket = server->ssocket;
549 wake_up(&server->response_q);
550 continue;
fb8c4b14 551 }
e4eb295d
SF		 552
553 /* else length ok */
554 reconnect = 0;
555
fb8c4b14 556 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 557 isLargeBuf = true;
e4eb295d
SF		 558 memcpy(bigbuf, smallbuf, 4);
559 smb_buffer = bigbuf;
560 }
561 length = 0;
562 iov.iov_base = 4 + (char *)smb_buffer;
563 iov.iov_len = pdu_length;
fb8c4b14 564 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 565 total_read += length) {
566 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
567 pdu_length - total_read, 0);
522bbe65 568 if (server->tcpStatus == CifsExiting) {
e4eb295d
SF		 569 /* then will exit */
570 reconnect = 2;
571 break;
572 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 573 cifs_reconnect(server);
574 csocket = server->ssocket;
fb8c4b14 575 /* Reconnect wakes up rspns q */
e4eb295d
SF		 576 /* Now we will reread sock */
577 reconnect = 1;
578 break;
522bbe65
JL		 579 } else if (length == -ERESTARTSYS ||
580 length == -EAGAIN ||
581 length == -EINTR) {
e4eb295d 582 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 583 allowing socket to clear and app
e4eb295d
SF		 584 threads to set tcpStatus
585 CifsNeedReconnect if server hung*/
c18c732e 586 length = 0;
46810cbf 587 continue;
e4eb295d 588 } else if (length <= 0) {
b6b38f70
JP		 589 cERROR(1, "Received no data, expecting %d",
590 pdu_length - total_read);
e4eb295d
SF		 591 cifs_reconnect(server);
592 csocket = server->ssocket;
593 reconnect = 1;
594 break;
46810cbf 595 }
e4eb295d 596 }
fb8c4b14 597 if (reconnect == 2)
e4eb295d 598 break;
fb8c4b14 599 else if (reconnect == 1)
e4eb295d 600 continue;
1da177e4 601
9587fcff 602 total_read += 4; /* account for rfc1002 hdr */
50c2f753 603
9587fcff 604 dump_smb(smb_buffer, total_read);
71823baf
JL		 605
606 /*
607 * We know that we received enough to get to the MID as we
608 * checked the pdu_length earlier. Now check to see
609 * if the rest of the header is OK. We borrow the length
610 * var for the rest of the loop to avoid a new stack var.
611 *
612 * 48 bytes is enough to display the header and a little bit
613 * into the payload for debugging purposes.
614 */
615 length = checkSMB(smb_buffer, smb_buffer->Mid, total_read);
616 if (length != 0)
9587fcff 617 cifs_dump_mem("Bad SMB: ", smb_buffer,
71823baf 618 min_t(unsigned int, total_read, 48));
1da177e4 619
2b84a36c 620 mid_entry = NULL;
fda35943
SF		 621 server->lstrp = jiffies;
622
e4eb295d 623 spin_lock(&GlobalMid_Lock);
2b84a36c 624 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
e4eb295d
SF		 625 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
626
146f9f65
JL		 627 if (mid_entry->mid != smb_buffer->Mid ||
628 mid_entry->midState != MID_REQUEST_SUBMITTED ||
629 mid_entry->command != smb_buffer->Command) {
630 mid_entry = NULL;
631 continue;
632 }
633
634 if (length == 0 &&
635 check2ndT2(smb_buffer, server->maxBuf) > 0) {
636 /* We have a multipart transact2 resp */
637 isMultiRsp = true;
638 if (mid_entry->resp_buf) {
639 /* merge response - fix up 1st*/
16541ba1
JL		 640 length = coalesce_t2(smb_buffer,
641 mid_entry->resp_buf);
642 if (length > 0) {
643 length = 0;
146f9f65
JL		 644 mid_entry->multiRsp = true;
645 break;
e4eb295d 646 } else {
16541ba1
JL		 647 /* all parts received or
648 * packet is malformed
649 */
146f9f65
JL		 650 mid_entry->multiEnd = true;
651 goto multi_t2_fnd;
652 }
653 } else {
654 if (!isLargeBuf) {
655 /*
656 * FIXME: switch to already
657 * allocated largebuf?
658 */
659 cERROR(1, "1st trans2 resp "
660 "needs bigbuf");
661 } else {
662 /* Have first buffer */
663 mid_entry->resp_buf =
664 smb_buffer;
665 mid_entry->largeBuf = true;
666 bigbuf = NULL;
e4eb295d 667 }
50c2f753 668 }
146f9f65
JL		 669 break;
670 }
671 mid_entry->resp_buf = smb_buffer;
672 mid_entry->largeBuf = isLargeBuf;
e4eb295d 673multi_t2_fnd:
146f9f65
JL		 674 if (length == 0)
675 mid_entry->midState = MID_RESPONSE_RECEIVED;
676 else
677 mid_entry->midState = MID_RESPONSE_MALFORMED;
1047abc1 678#ifdef CONFIG_CIFS_STATS2
146f9f65 679 mid_entry->when_received = jiffies;
1047abc1 680#endif
146f9f65 681 list_del_init(&mid_entry->qhead);
146f9f65 682 break;
1da177e4 683 }
e4eb295d 684 spin_unlock(&GlobalMid_Lock);
2b84a36c
JL		 685
686 if (mid_entry != NULL) {
3c1105df 687 mid_entry->callback(mid_entry);
cd63499c 688 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 689 if (!isMultiRsp) {
cd63499c 690 /* smb buffer will be freed by user thread */
26f57364 691 if (isLargeBuf)
cd63499c 692 bigbuf = NULL;
26f57364 693 else
cd63499c
SF		 694 smallbuf = NULL;
695 }
71823baf
JL		 696 } else if (length != 0) {
697 /* response sanity checks failed */
698 continue;
4b18f2a9
SF		 699 } else if (!is_valid_oplock_break(smb_buffer, server) &&
700 !isMultiRsp) {
b6b38f70 701 cERROR(1, "No task to wake, unknown frame received! "
8097531a 702 "NumMids %d", atomic_read(&midCount));
50c2f753 703 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 704 sizeof(struct smb_hdr));
3979877e
SF		 705#ifdef CONFIG_CIFS_DEBUG2
706 cifs_dump_detail(smb_buffer);
707 cifs_dump_mids(server);
708#endif /* CIFS_DEBUG2 */
50c2f753 709
e4eb295d
SF		 710 }
711 } /* end while !EXITING */
712
e7ddee90 713 /* take it off the list, if it's not already */
3f9bcca7 714 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 715 list_del_init(&server->tcp_ses_list);
3f9bcca7 716 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 717
1da177e4
LT		 718 spin_lock(&GlobalMid_Lock);
719 server->tcpStatus = CifsExiting;
e691b9d1 720 spin_unlock(&GlobalMid_Lock);
dbdbb876 721 wake_up_all(&server->response_q);
e691b9d1 722
31ca3bc3
SF		 723 /* check if we have blocked requests that need to free */
724 /* Note that cifs_max_pending is normally 50, but
725 can be set at module install time to as little as two */
e691b9d1 726 spin_lock(&GlobalMid_Lock);
fb8c4b14 727 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 728 atomic_set(&server->inFlight, cifs_max_pending - 1);
729 /* We do not want to set the max_pending too low or we
730 could end up with the counter going negative */
1da177e4 731 spin_unlock(&GlobalMid_Lock);
50c2f753 732 /* Although there should not be any requests blocked on
1da177e4 733 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 734 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 735 to the same server - they now will see the session is in exit state
736 and get out of SendReceive. */
737 wake_up_all(&server->request_q);
738 /* give those requests time to exit */
b8643e1b 739 msleep(125);
50c2f753 740
fb8c4b14 741 if (server->ssocket) {
1da177e4
LT		 742 sock_release(csocket);
743 server->ssocket = NULL;
744 }
fd62cb7e 745 /* buffer usually freed in free_mid - need to free it here on exit */
a8a11d39
MK		 746 cifs_buf_release(bigbuf);
747 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 748 cifs_small_buf_release(smallbuf);
1da177e4 749
9d78315b 750 if (!list_empty(&server->pending_mid_q)) {
3c1105df
JL		 751 struct list_head dispose_list;
752
753 INIT_LIST_HEAD(&dispose_list);
1da177e4 754 spin_lock(&GlobalMid_Lock);
2b84a36c 755 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
9d78315b 756 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
3c1105df
JL		 757 cFYI(1, "Clearing mid 0x%x", mid_entry->mid);
758 mid_entry->midState = MID_SHUTDOWN;
759 list_move(&mid_entry->qhead, &dispose_list);
760 }
761 spin_unlock(&GlobalMid_Lock);
762
763 /* now walk dispose list and issue callbacks */
764 list_for_each_safe(tmp, tmp2, &dispose_list) {
765 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
766 cFYI(1, "Callback mid 0x%x", mid_entry->mid);
2b84a36c
JL		 767 list_del_init(&mid_entry->qhead);
768 mid_entry->callback(mid_entry);
1da177e4 769 }
1da177e4 770 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 771 msleep(125);
1da177e4
LT		 772 }
773
f191401f 774 if (!list_empty(&server->pending_mid_q)) {
50c2f753 775 /* mpx threads have not exited yet give them
1da177e4 776 at least the smb send timeout time for long ops */
31ca3bc3
SF		 777 /* due to delays on oplock break requests, we need
778 to wait at least 45 seconds before giving up
779 on a request getting a response and going ahead
780 and killing cifsd */
b6b38f70 781 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 782 msleep(46000);
1da177e4
LT		 783 /* if threads still have not exited they are probably never
784 coming home not much else we can do but free the memory */
785 }
1da177e4 786
c359cf3c 787 kfree(server->hostname);
b1c8d2b4 788 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 789 kfree(server);
93d0ec85
JL		 790
791 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 792 if (length > 0)
793 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
794 GFP_KERNEL);
50c2f753 795
b1c8d2b4
JL		 796 /* if server->tsk was NULL then wait for a signal before exiting */
797 if (!task_to_wake) {
798 set_current_state(TASK_INTERRUPTIBLE);
799 while (!signal_pending(current)) {
800 schedule();
801 set_current_state(TASK_INTERRUPTIBLE);
802 }
803 set_current_state(TASK_RUNNING);
804 }
805
0468a2cf 806 module_put_and_exit(0);
1da177e4
LT		 807}
808
c359cf3c
JL		 809/* extract the host portion of the UNC string */
810static char *
811extract_hostname(const char *unc)
812{
813 const char *src;
814 char *dst, *delim;
815 unsigned int len;
816
817 /* skip double chars at beginning of string */
818 /* BB: check validity of these bytes? */
819 src = unc + 2;
820
821 /* delimiter between hostname and sharename is always '\\' now */
822 delim = strchr(src, '\\');
823 if (!delim)
824 return ERR_PTR(-EINVAL);
825
826 len = delim - src;
827 dst = kmalloc((len + 1), GFP_KERNEL);
828 if (dst == NULL)
829 return ERR_PTR(-ENOMEM);
830
831 memcpy(dst, src, len);
832 dst[len] = '\0';
833
834 return dst;
835}
836
1da177e4 837static int
b946845a 838cifs_parse_mount_options(const char *mountdata, const char *devname,
50c2f753 839 struct smb_vol *vol)
1da177e4 840{
4906e50b 841 char *value, *data, *end;
b946845a 842 char *mountdata_copy, *options;
1da177e4
LT		 843 unsigned int temp_len, i, j;
844 char separator[2];
9b9d6b24
JL		 845 short int override_uid = -1;
846 short int override_gid = -1;
847 bool uid_specified = false;
848 bool gid_specified = false;
88463999 849 char *nodename = utsname()->nodename;
1da177e4
LT		 850
851 separator[0] = ',';
50c2f753 852 separator[1] = 0;
1da177e4 853
88463999
JL		 854 /*
855 * does not have to be perfect mapping since field is
856 * informational, only used for servers that do not support
857 * port 445 and it can be overridden at mount time
858 */
1397f2ee
JL		 859 memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
860 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
88463999
JL		 861 vol->source_rfc1001_name[i] = toupper(nodename[i]);
862
1397f2ee 863 vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
a10faeb2
SF		 864 /* null target name indicates to use *SMBSERVR default called name
865 if we end up sending RFC1001 session initialize */
866 vol->target_rfc1001_name[0] = 0;
3e4b3e1f
JL		 867 vol->cred_uid = current_uid();
868 vol->linux_uid = current_uid();
a001e5b5 869 vol->linux_gid = current_gid();
f55ed1a8
JL		 870
871 /* default to only allowing write access to owner of the mount */
872 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 873
874 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 875 /* default is always to request posix paths. */
876 vol->posix_paths = 1;
a0c9217f
JL		 877 /* default to using server inode numbers where available */
878 vol->server_ino = 1;
ac67055e 879
6d20e840
SJ		 880 vol->actimeo = CIFS_DEF_ACTIMEO;
881
b946845a
SF		 882 if (!mountdata)
883 goto cifs_parse_mount_err;
884
885 mountdata_copy = kstrndup(mountdata, PAGE_SIZE, GFP_KERNEL);
886 if (!mountdata_copy)
887 goto cifs_parse_mount_err;
1da177e4 888
b946845a 889 options = mountdata_copy;
4906e50b 890 end = options + strlen(options);
50c2f753 891 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 892 if (options[4] != 0) {
1da177e4
LT		 893 separator[0] = options[4];
894 options += 5;
895 } else {
b6b38f70 896 cFYI(1, "Null separator not allowed");
1da177e4
LT		 897 }
898 }
50c2f753 899
1da177e4
LT		 900 while ((data = strsep(&options, separator)) != NULL) {
901 if (!*data)
902 continue;
903 if ((value = strchr(data, '=')) != NULL)
904 *value++ = '\0';
905
50c2f753
SF		 906 /* Have to parse this before we parse for "user" */
907 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 908 vol->no_xattr = 0;
50c2f753 909 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 910 vol->no_xattr = 1;
911 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 912 if (!value) {
1da177e4
LT		 913 printk(KERN_WARNING
914 "CIFS: invalid or missing username\n");
b946845a 915 goto cifs_parse_mount_err;
fb8c4b14 916 } else if (!*value) {
4b952a9b
SF		 917 /* null user, ie anonymous, authentication */
918 vol->nullauth = 1;
1da177e4 919 }
8727c8a8
SF		 920 if (strnlen(value, MAX_USERNAME_SIZE) <
921 MAX_USERNAME_SIZE) {
b946845a
SF		 922 vol->username = kstrdup(value, GFP_KERNEL);
923 if (!vol->username) {
924 printk(KERN_WARNING "CIFS: no memory "
925 "for username\n");
926 goto cifs_parse_mount_err;
927 }
1da177e4
LT		 928 } else {
929 printk(KERN_WARNING "CIFS: username too long\n");
b946845a 930 goto cifs_parse_mount_err;
1da177e4
LT		 931 }
932 } else if (strnicmp(data, "pass", 4) == 0) {
933 if (!value) {
934 vol->password = NULL;
935 continue;
fb8c4b14 936 } else if (value[0] == 0) {
1da177e4
LT		 937 /* check if string begins with double comma
938 since that would mean the password really
939 does start with a comma, and would not
940 indicate an empty string */
fb8c4b14 941 if (value[1] != separator[0]) {
1da177e4
LT		 942 vol->password = NULL;
943 continue;
944 }
945 }
946 temp_len = strlen(value);
947 /* removed password length check, NTLM passwords
948 can be arbitrarily long */
949
50c2f753 950 /* if comma in password, the string will be
1da177e4
LT		 951 prematurely null terminated. Commas in password are
952 specified across the cifs mount interface by a double
953 comma ie ,, and a comma used as in other cases ie ','
954 as a parameter delimiter/separator is single and due
955 to the strsep above is temporarily zeroed. */
956
957 /* NB: password legally can have multiple commas and
958 the only illegal character in a password is null */
959
50c2f753 960 if ((value[temp_len] == 0) &&
4906e50b 961 (value + temp_len < end) &&
09d1db5c 962 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 963 /* reinsert comma */
964 value[temp_len] = separator[0];
50c2f753
SF		 965 temp_len += 2; /* move after second comma */
966 while (value[temp_len] != 0) {
1da177e4 967 if (value[temp_len] == separator[0]) {
50c2f753 968 if (value[temp_len+1] ==
09d1db5c
SF		 969 separator[0]) {
970 /* skip second comma */
971 temp_len++;
50c2f753 972 } else {
1da177e4
LT		 973 /* single comma indicating start
974 of next parm */
975 break;
976 }
977 }
978 temp_len++;
979 }
fb8c4b14 980 if (value[temp_len] == 0) {
1da177e4
LT		 981 options = NULL;
982 } else {
983 value[temp_len] = 0;
984 /* point option to start of next parm */
985 options = value + temp_len + 1;
986 }
50c2f753 987 /* go from value to value + temp_len condensing
1da177e4
LT		 988 double commas to singles. Note that this ends up
989 allocating a few bytes too many, which is ok */
e915fc49 990 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 991 if (vol->password == NULL) {
50c2f753
SF		 992 printk(KERN_WARNING "CIFS: no memory "
993 "for password\n");
b946845a 994 goto cifs_parse_mount_err;
433dc24f 995 }
50c2f753 996 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 997 vol->password[j] = value[i];
fb8c4b14 998 if (value[i] == separator[0]
09d1db5c 999 && value[i+1] == separator[0]) {
1da177e4
LT		 1000 /* skip second comma */
1001 i++;
1002 }
1003 }
1004 vol->password[j] = 0;
1005 } else {
e915fc49 1006 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 1007 if (vol->password == NULL) {
50c2f753
SF		 1008 printk(KERN_WARNING "CIFS: no memory "
1009 "for password\n");
b946845a 1010 goto cifs_parse_mount_err;
433dc24f 1011 }
1da177e4
LT		 1012 strcpy(vol->password, value);
1013 }
58f7f68f
JL		 1014 } else if (!strnicmp(data, "ip", 2) ||
1015 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 1016 if (!value || !*value) {
1017 vol->UNCip = NULL;
50b64e3b
JL		 1018 } else if (strnlen(value, INET6_ADDRSTRLEN) <
1019 INET6_ADDRSTRLEN) {
b946845a
SF		 1020 vol->UNCip = kstrdup(value, GFP_KERNEL);
1021 if (!vol->UNCip) {
1022 printk(KERN_WARNING "CIFS: no memory "
1023 "for UNC IP\n");
1024 goto cifs_parse_mount_err;
1025 }
1da177e4 1026 } else {
50c2f753
SF		 1027 printk(KERN_WARNING "CIFS: ip address "
1028 "too long\n");
b946845a 1029 goto cifs_parse_mount_err;
1da177e4 1030 }
50c2f753
SF		 1031 } else if (strnicmp(data, "sec", 3) == 0) {
1032 if (!value || !*value) {
b6b38f70 1033 cERROR(1, "no security value specified");
50c2f753
SF		 1034 continue;
1035 } else if (strnicmp(value, "krb5i", 5) == 0) {
1036 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 1037 CIFSSEC_MUST_SIGN;
bf820679 1038 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 1039 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
1040 CIFSSEC_MAY_KRB5; */
b6b38f70 1041 cERROR(1, "Krb5 cifs privacy not supported");
b946845a 1042 goto cifs_parse_mount_err;
bf820679 1043 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 1044 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 1045 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
1046 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
1047 CIFSSEC_MUST_SIGN;
1048 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
1049 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
bf820679 1050 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 1051 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 1052 CIFSSEC_MUST_SIGN;
bf820679 1053 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1054 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1055 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1056 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1057 CIFSSEC_MUST_SIGN;
bf820679
SF		 1058 } else if (strnicmp(value, "ntlm", 4) == 0) {
1059 /* ntlm is default so can be turned off too */
750d1151 1060 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1061 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1062 /* BB is there a better way to do this? */
750d1151 1063 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1064#ifdef CONFIG_CIFS_WEAK_PW_HASH
1065 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1066 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1067#endif
bf820679 1068 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1069 vol->nullauth = 1;
50c2f753 1070 } else {
b6b38f70 1071 cERROR(1, "bad security option: %s", value);
b946845a 1072 goto cifs_parse_mount_err;
50c2f753 1073 }
1cb06d0b
SF		 1074 } else if (strnicmp(data, "vers", 3) == 0) {
1075 if (!value || !*value) {
1076 cERROR(1, "no protocol version specified"
1077 " after vers= mount option");
1078 } else if ((strnicmp(value, "cifs", 4) == 0) ||
1079 (strnicmp(value, "1", 1) == 0)) {
1080 /* this is the default */
1081 continue;
1cb06d0b 1082 }
1da177e4
LT		 1083 } else if ((strnicmp(data, "unc", 3) == 0)
1084 || (strnicmp(data, "target", 6) == 0)
1085 || (strnicmp(data, "path", 4) == 0)) {
1086 if (!value || !*value) {
50c2f753
SF		 1087 printk(KERN_WARNING "CIFS: invalid path to "
1088 "network resource\n");
b946845a 1089 goto cifs_parse_mount_err;
1da177e4
LT		 1090 }
1091 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1092 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1093 if (vol->UNC == NULL)
b946845a 1094 goto cifs_parse_mount_err;
50c2f753 1095 strcpy(vol->UNC, value);
1da177e4
LT		 1096 if (strncmp(vol->UNC, "//", 2) == 0) {
1097 vol->UNC[0] = '\\';
1098 vol->UNC[1] = '\\';
50c2f753 1099 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1100 printk(KERN_WARNING
50c2f753
SF		 1101 "CIFS: UNC Path does not begin "
1102 "with // or \\\\ \n");
b946845a 1103 goto cifs_parse_mount_err;
1da177e4
LT		 1104 }
1105 } else {
1106 printk(KERN_WARNING "CIFS: UNC name too long\n");
b946845a 1107 goto cifs_parse_mount_err;
1da177e4
LT		 1108 }
1109 } else if ((strnicmp(data, "domain", 3) == 0)
1110 || (strnicmp(data, "workgroup", 5) == 0)) {
1111 if (!value || !*value) {
1112 printk(KERN_WARNING "CIFS: invalid domain name\n");
b946845a 1113 goto cifs_parse_mount_err;
1da177e4
LT		 1114 }
1115 /* BB are there cases in which a comma can be valid in
1116 a domain name and need special handling? */
3979877e 1117 if (strnlen(value, 256) < 256) {
b946845a
SF		 1118 vol->domainname = kstrdup(value, GFP_KERNEL);
1119 if (!vol->domainname) {
1120 printk(KERN_WARNING "CIFS: no memory "
1121 "for domainname\n");
1122 goto cifs_parse_mount_err;
1123 }
b6b38f70 1124 cFYI(1, "Domain name set");
1da177e4 1125 } else {
50c2f753
SF		 1126 printk(KERN_WARNING "CIFS: domain name too "
1127 "long\n");
b946845a 1128 goto cifs_parse_mount_err;
1da177e4 1129 }
3eb9a889
BG		 1130 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1131 vol->srcaddr.ss_family = AF_UNSPEC;
1132
1133 if (!value || !*value) {
1134 printk(KERN_WARNING "CIFS: srcaddr value"
1135 " not specified.\n");
b946845a 1136 goto cifs_parse_mount_err;
3eb9a889
BG		 1137 }
1138 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1139 value, strlen(value));
b235f371 1140 if (i == 0) {
3eb9a889
BG		 1141 printk(KERN_WARNING "CIFS: Could not parse"
1142 " srcaddr: %s\n",
1143 value);
b946845a 1144 goto cifs_parse_mount_err;
3eb9a889 1145 }
50c2f753
SF		 1146 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1147 if (!value || !*value) {
1148 printk(KERN_WARNING
1149 "CIFS: invalid path prefix\n");
b946845a 1150 goto cifs_parse_mount_err;
50c2f753
SF		 1151 }
1152 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1153 if (value[0] != '/')
2fe87f02 1154 temp_len++; /* missing leading slash */
50c2f753
SF		 1155 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1156 if (vol->prepath == NULL)
b946845a 1157 goto cifs_parse_mount_err;
4523cc30 1158 if (value[0] != '/') {
2fe87f02 1159 vol->prepath[0] = '/';
50c2f753 1160 strcpy(vol->prepath+1, value);
2fe87f02 1161 } else
50c2f753 1162 strcpy(vol->prepath, value);
b6b38f70 1163 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1164 } else {
1165 printk(KERN_WARNING "CIFS: prefix too long\n");
b946845a 1166 goto cifs_parse_mount_err;
50c2f753 1167 }
1da177e4
LT		 1168 } else if (strnicmp(data, "iocharset", 9) == 0) {
1169 if (!value || !*value) {
63135e08
SF		 1170 printk(KERN_WARNING "CIFS: invalid iocharset "
1171 "specified\n");
b946845a 1172 goto cifs_parse_mount_err;
1da177e4
LT		 1173 }
1174 if (strnlen(value, 65) < 65) {
b946845a
SF		 1175 if (strnicmp(value, "default", 7)) {
1176 vol->iocharset = kstrdup(value,
1177 GFP_KERNEL);
1178
1179 if (!vol->iocharset) {
1180 printk(KERN_WARNING "CIFS: no "
1181 "memory for"
1182 "charset\n");
1183 goto cifs_parse_mount_err;
1184 }
1185 }
50c2f753
SF		 1186 /* if iocharset not set then load_nls_default
1187 is used by caller */
b6b38f70 1188 cFYI(1, "iocharset set to %s", value);
1da177e4 1189 } else {
63135e08
SF		 1190 printk(KERN_WARNING "CIFS: iocharset name "
1191 "too long.\n");
b946845a 1192 goto cifs_parse_mount_err;
1da177e4 1193 }
9b9d6b24
JL		 1194 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1195 vol->linux_uid = simple_strtoul(value, &value, 0);
1196 uid_specified = true;
bd763319
JL		 1197 } else if (!strnicmp(data, "cruid", 5) && value && *value) {
1198 vol->cred_uid = simple_strtoul(value, &value, 0);
9b9d6b24
JL		 1199 } else if (!strnicmp(data, "forceuid", 8)) {
1200 override_uid = 1;
1201 } else if (!strnicmp(data, "noforceuid", 10)) {
1202 override_uid = 0;
1203 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1204 vol->linux_gid = simple_strtoul(value, &value, 0);
1205 gid_specified = true;
1206 } else if (!strnicmp(data, "forcegid", 8)) {
1207 override_gid = 1;
1208 } else if (!strnicmp(data, "noforcegid", 10)) {
1209 override_gid = 0;
1da177e4
LT		 1210 } else if (strnicmp(data, "file_mode", 4) == 0) {
1211 if (value && *value) {
1212 vol->file_mode =
1213 simple_strtoul(value, &value, 0);
1214 }
1215 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1216 if (value && *value) {
1217 vol->dir_mode =
1218 simple_strtoul(value, &value, 0);
1219 }
1220 } else if (strnicmp(data, "dirmode", 4) == 0) {
1221 if (value && *value) {
1222 vol->dir_mode =
1223 simple_strtoul(value, &value, 0);
1224 }
1225 } else if (strnicmp(data, "port", 4) == 0) {
1226 if (value && *value) {
1227 vol->port =
1228 simple_strtoul(value, &value, 0);
1229 }
1230 } else if (strnicmp(data, "rsize", 5) == 0) {
1231 if (value && *value) {
1232 vol->rsize =
1233 simple_strtoul(value, &value, 0);
1234 }
1235 } else if (strnicmp(data, "wsize", 5) == 0) {
1236 if (value && *value) {
1237 vol->wsize =
1238 simple_strtoul(value, &value, 0);
1239 }
1240 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1241 if (!value || !*value) {
b6b38f70 1242 cERROR(1, "no socket option specified");
6a5fa236
SF		 1243 continue;
1244 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1245 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1246 }
1247 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1248 if (!value || !*value || (*value == ' ')) {
b6b38f70 1249 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1250 } else {
1397f2ee
JL		 1251 memset(vol->source_rfc1001_name, 0x20,
1252 RFC1001_NAME_LEN);
1253 /*
1254 * FIXME: are there cases in which a comma can
1255 * be valid in workstation netbios name (and
1256 * need special handling)?
1257 */
1258 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1259 /* don't ucase netbiosname for user */
50c2f753 1260 if (value[i] == 0)
1da177e4 1261 break;
1397f2ee 1262 vol->source_rfc1001_name[i] = value[i];
1da177e4
LT		 1263 }
1264 /* The string has 16th byte zero still from
1265 set at top of the function */
1397f2ee 1266 if (i == RFC1001_NAME_LEN && value[i] != 0)
50c2f753
SF		 1267 printk(KERN_WARNING "CIFS: netbiosname"
1268 " longer than 15 truncated.\n");
a10faeb2
SF		 1269 }
1270 } else if (strnicmp(data, "servern", 7) == 0) {
1271 /* servernetbiosname specified override *SMBSERVER */
1272 if (!value || !*value || (*value == ' ')) {
b6b38f70 1273 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1274 } else {
1275 /* last byte, type, is 0x20 for servr type */
1397f2ee
JL		 1276 memset(vol->target_rfc1001_name, 0x20,
1277 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 1278
50c2f753 1279 for (i = 0; i < 15; i++) {
a10faeb2 1280 /* BB are there cases in which a comma can be
50c2f753
SF		 1281 valid in this workstation netbios name
1282 (and need special handling)? */
a10faeb2 1283
50c2f753
SF		 1284 /* user or mount helper must uppercase
1285 the netbiosname */
1286 if (value[i] == 0)
a10faeb2
SF		 1287 break;
1288 else
50c2f753
SF		 1289 vol->target_rfc1001_name[i] =
1290 value[i];
a10faeb2
SF		 1291 }
1292 /* The string has 16th byte zero still from
1293 set at top of the function */
1397f2ee 1294 if (i == RFC1001_NAME_LEN && value[i] != 0)
50c2f753
SF		 1295 printk(KERN_WARNING "CIFS: server net"
1296 "biosname longer than 15 truncated.\n");
1da177e4 1297 }
6d20e840
SJ		 1298 } else if (strnicmp(data, "actimeo", 7) == 0) {
1299 if (value && *value) {
1300 vol->actimeo = HZ * simple_strtoul(value,
1301 &value, 0);
1302 if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1303 cERROR(1, "CIFS: attribute cache"
1304 "timeout too large");
b946845a 1305 goto cifs_parse_mount_err;
6d20e840
SJ		 1306 }
1307 }
1da177e4
LT		 1308 } else if (strnicmp(data, "credentials", 4) == 0) {
1309 /* ignore */
1310 } else if (strnicmp(data, "version", 3) == 0) {
1311 /* ignore */
50c2f753 1312 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1313 /* ignore */
71a394fa
SF		 1314 } else if (strnicmp(data, "rw", 2) == 0) {
1315 /* ignore */
1316 } else if (strnicmp(data, "ro", 2) == 0) {
1317 /* ignore */
edf1ae40
SF		 1318 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1319 vol->noblocksnd = 1;
1320 } else if (strnicmp(data, "noautotune", 10) == 0) {
1321 vol->noautotune = 1;
1da177e4
LT		 1322 } else if ((strnicmp(data, "suid", 4) == 0) ||
1323 (strnicmp(data, "nosuid", 6) == 0) ||
1324 (strnicmp(data, "exec", 4) == 0) ||
1325 (strnicmp(data, "noexec", 6) == 0) ||
1326 (strnicmp(data, "nodev", 5) == 0) ||
1327 (strnicmp(data, "noauto", 6) == 0) ||
1328 (strnicmp(data, "dev", 3) == 0)) {
1329 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1330 uses these opts to set flags, and the flags are read
1331 by the kernel vfs layer before we get here (ie
1332 before read super) so there is no point trying to
1333 parse these options again and set anything and it
1334 is ok to just ignore them */
1da177e4 1335 continue;
1da177e4
LT		 1336 } else if (strnicmp(data, "hard", 4) == 0) {
1337 vol->retry = 1;
1338 } else if (strnicmp(data, "soft", 4) == 0) {
1339 vol->retry = 0;
1340 } else if (strnicmp(data, "perm", 4) == 0) {
1341 vol->noperm = 0;
1342 } else if (strnicmp(data, "noperm", 6) == 0) {
1343 vol->noperm = 1;
6a0b4824
SF		 1344 } else if (strnicmp(data, "mapchars", 8) == 0) {
1345 vol->remap = 1;
1346 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1347 vol->remap = 0;
50c2f753
SF		 1348 } else if (strnicmp(data, "sfu", 3) == 0) {
1349 vol->sfu_emul = 1;
1350 } else if (strnicmp(data, "nosfu", 5) == 0) {
1351 vol->sfu_emul = 0;
2c1b8615
SF		 1352 } else if (strnicmp(data, "nodfs", 5) == 0) {
1353 vol->nodfs = 1;
ac67055e
JA		 1354 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1355 vol->posix_paths = 1;
1356 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1357 vol->posix_paths = 0;
c18c842b
SF		 1358 } else if (strnicmp(data, "nounix", 6) == 0) {
1359 vol->no_linux_ext = 1;
1360 } else if (strnicmp(data, "nolinux", 7) == 0) {
1361 vol->no_linux_ext = 1;
50c2f753 1362 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1363 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1364 vol->nocase = 1;
f636a348
JL		 1365 } else if (strnicmp(data, "mand", 4) == 0) {
1366 /* ignore */
1367 } else if (strnicmp(data, "nomand", 6) == 0) {
1368 /* ignore */
1369 } else if (strnicmp(data, "_netdev", 7) == 0) {
1370 /* ignore */
c46fa8ac
SF		 1371 } else if (strnicmp(data, "brl", 3) == 0) {
1372 vol->nobrl = 0;
50c2f753 1373 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1374 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1375 vol->nobrl = 1;
d3485d37
SF		 1376 /* turn off mandatory locking in mode
1377 if remote locking is turned off since the
1378 local vfs will do advisory */
50c2f753
SF		 1379 if (vol->file_mode ==
1380 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1381 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1382 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1383 /* will take the shorter form "forcemand" as well */
1384 /* This mount option will force use of mandatory
1385 (DOS/Windows style) byte range locks, instead of
1386 using posix advisory byte range locks, even if the
1387 Unix extensions are available and posix locks would
1388 be supported otherwise. If Unix extensions are not
1389 negotiated this has no effect since mandatory locks
1390 would be used (mandatory locks is all that those
1391 those servers support) */
1392 vol->mand_lock = 1;
1da177e4
LT		 1393 } else if (strnicmp(data, "setuids", 7) == 0) {
1394 vol->setuids = 1;
1395 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1396 vol->setuids = 0;
d0a9c078
JL		 1397 } else if (strnicmp(data, "dynperm", 7) == 0) {
1398 vol->dynperm = true;
1399 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1400 vol->dynperm = false;
1da177e4
LT		 1401 } else if (strnicmp(data, "nohard", 6) == 0) {
1402 vol->retry = 0;
1403 } else if (strnicmp(data, "nosoft", 6) == 0) {
1404 vol->retry = 1;
1405 } else if (strnicmp(data, "nointr", 6) == 0) {
1406 vol->intr = 0;
1407 } else if (strnicmp(data, "intr", 4) == 0) {
1408 vol->intr = 1;
be652445
SF		 1409 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1410 vol->nostrictsync = 1;
1411 } else if (strnicmp(data, "strictsync", 10) == 0) {
1412 vol->nostrictsync = 0;
50c2f753 1413 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1414 vol->server_ino = 1;
50c2f753 1415 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1416 vol->server_ino = 0;
50c2f753 1417 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1418 vol->cifs_acl = 1;
1419 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1420 vol->cifs_acl = 0;
50c2f753 1421 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1422 vol->no_psx_acl = 0;
50c2f753 1423 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1424 vol->no_psx_acl = 1;
84210e91
SF		 1425 } else if (strnicmp(data, "locallease", 6) == 0) {
1426 vol->local_lease = 1;
50c2f753 1427 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1428 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1429 } else if (strnicmp(data, "seal", 4) == 0) {
1430 /* we do not do the following in secFlags because seal
1431 is a per tree connection (mount) not a per socket
1432 or per-smb connection option in the protocol */
1433 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1434 vol->seal = 1;
50c2f753 1435 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1436 vol->direct_io = 1;
50c2f753 1437 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1438 vol->direct_io = 1;
d39454ff
PS		 1439 } else if (strnicmp(data, "strictcache", 11) == 0) {
1440 vol->strict_io = 1;
1da177e4 1441 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1442 printk(KERN_WARNING "CIFS: Mount option noac not "
1443 "supported. Instead set "
1444 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
fa1df75d 1445 } else if (strnicmp(data, "fsc", 3) == 0) {
607a569d
SJ		 1446#ifndef CONFIG_CIFS_FSCACHE
1447 cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE"
1448 "kernel config option set");
b946845a 1449 goto cifs_parse_mount_err;
607a569d 1450#endif
fa1df75d 1451 vol->fsc = true;
736a3320
SM		 1452 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1453 vol->mfsymlinks = true;
0eb8a132
JL		 1454 } else if (strnicmp(data, "multiuser", 8) == 0) {
1455 vol->multiuser = true;
1da177e4 1456 } else
50c2f753
SF		 1457 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1458 data);
1da177e4
LT		 1459 }
1460 if (vol->UNC == NULL) {
4523cc30 1461 if (devname == NULL) {
50c2f753
SF		 1462 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1463 "target\n");
b946845a 1464 goto cifs_parse_mount_err;
1da177e4
LT		 1465 }
1466 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1467 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1468 if (vol->UNC == NULL)
b946845a 1469 goto cifs_parse_mount_err;
50c2f753 1470 strcpy(vol->UNC, devname);
1da177e4
LT		 1471 if (strncmp(vol->UNC, "//", 2) == 0) {
1472 vol->UNC[0] = '\\';
1473 vol->UNC[1] = '\\';
1474 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1475 printk(KERN_WARNING "CIFS: UNC Path does not "
1476 "begin with // or \\\\ \n");
b946845a 1477 goto cifs_parse_mount_err;
1da177e4 1478 }
7c5e628f
IM		 1479 value = strpbrk(vol->UNC+2, "/\\");
1480 if (value)
1481 *value = '\\';
1da177e4
LT		 1482 } else {
1483 printk(KERN_WARNING "CIFS: UNC name too long\n");
b946845a 1484 goto cifs_parse_mount_err;
1da177e4
LT		 1485 }
1486 }
0eb8a132
JL		 1487
1488 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1489 cERROR(1, "Multiuser mounts currently require krb5 "
1490 "authentication!");
b946845a 1491 goto cifs_parse_mount_err;
0eb8a132
JL		 1492 }
1493
fb8c4b14 1494 if (vol->UNCip == NULL)
1da177e4
LT		 1495 vol->UNCip = &vol->UNC[2];
1496
9b9d6b24
JL		 1497 if (uid_specified)
1498 vol->override_uid = override_uid;
1499 else if (override_uid == 1)
1500 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1501 "specified with no uid= option.\n");
1502
1503 if (gid_specified)
1504 vol->override_gid = override_gid;
1505 else if (override_gid == 1)
1506 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1507 "specified with no gid= option.\n");
1508
b946845a 1509 kfree(mountdata_copy);
1da177e4 1510 return 0;
b946845a
SF		 1511
1512cifs_parse_mount_err:
1513 kfree(mountdata_copy);
1514 return 1;
1da177e4
LT		 1515}
1516
3eb9a889
BG		 1517/** Returns true if srcaddr isn't specified and rhs isn't
1518 * specified, or if srcaddr is specified and
1519 * matches the IP address of the rhs argument.
1520 */
1521static bool
1522srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1523{
1524 switch (srcaddr->sa_family) {
1525 case AF_UNSPEC:
1526 return (rhs->sa_family == AF_UNSPEC);
1527 case AF_INET: {
1528 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1529 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1530 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1531 }
1532 case AF_INET6: {
1533 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1534 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1535 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1536 }
1537 default:
1538 WARN_ON(1);
1539 return false; /* don't expect to be here */
1540 }
1541}
1542
4b886136
PS		 1543/*
1544 * If no port is specified in addr structure, we try to match with 445 port
1545 * and if it fails - with 139 ports. It should be called only if address
1546 * families of server and addr are equal.
1547 */
1548static bool
1549match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1550{
6da97910 1551 __be16 port, *sport;
4b886136
PS		 1552
1553 switch (addr->sa_family) {
1554 case AF_INET:
1555 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1556 port = ((struct sockaddr_in *) addr)->sin_port;
1557 break;
1558 case AF_INET6:
1559 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1560 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1561 break;
1562 default:
1563 WARN_ON(1);
1564 return false;
1565 }
1566
1567 if (!port) {
1568 port = htons(CIFS_PORT);
1569 if (port == *sport)
1570 return true;
1571
1572 port = htons(RFC1001_PORT);
1573 }
1574
1575 return port == *sport;
1576}
3eb9a889 1577
4515148e 1578static bool
3eb9a889
BG		 1579match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1580 struct sockaddr *srcaddr)
4515148e 1581{
4515148e 1582 switch (addr->sa_family) {
a9f1b85e
PS		 1583 case AF_INET: {
1584 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1585 struct sockaddr_in *srv_addr4 =
1586 (struct sockaddr_in *)&server->dstaddr;
1587
1588 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
4515148e 1589 return false;
4515148e 1590 break;
a9f1b85e
PS		 1591 }
1592 case AF_INET6: {
1593 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1594 struct sockaddr_in6 *srv_addr6 =
1595 (struct sockaddr_in6 *)&server->dstaddr;
1596
4515148e 1597 if (!ipv6_addr_equal(&addr6->sin6_addr,
a9f1b85e 1598 &srv_addr6->sin6_addr))
4515148e 1599 return false;
a9f1b85e 1600 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
4515148e 1601 return false;
4515148e
JL		 1602 break;
1603 }
a9f1b85e
PS		 1604 default:
1605 WARN_ON(1);
1606 return false; /* don't expect to be here */
1607 }
4515148e 1608
3eb9a889
BG		 1609 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1610 return false;
1611
4515148e
JL		 1612 return true;
1613}
1614
daf5b0b6
JL		 1615static bool
1616match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1617{
1618 unsigned int secFlags;
1619
1620 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1621 secFlags = vol->secFlg;
1622 else
1623 secFlags = global_secflags | vol->secFlg;
1624
1625 switch (server->secType) {
1626 case LANMAN:
1627 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1628 return false;
1629 break;
1630 case NTLMv2:
1631 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1632 return false;
1633 break;
1634 case NTLM:
1635 if (!(secFlags & CIFSSEC_MAY_NTLM))
1636 return false;
1637 break;
1638 case Kerberos:
1639 if (!(secFlags & CIFSSEC_MAY_KRB5))
1640 return false;
1641 break;
1642 case RawNTLMSSP:
1643 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1644 return false;
1645 break;
1646 default:
1647 /* shouldn't happen */
1648 return false;
1649 }
1650
25985edc 1651 /* now check if signing mode is acceptable */
daf5b0b6
JL		 1652 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1653 (server->secMode & SECMODE_SIGN_REQUIRED))
1654 return false;
1655 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1656 (server->secMode &
1657 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1658 return false;
1659
1660 return true;
1661}
1662
37bb04e5
PS		 1663static int match_server(struct TCP_Server_Info *server, struct sockaddr *addr,
1664 struct smb_vol *vol)
1665{
1666 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1667 return 0;
1668
1669 if (!match_address(server, addr,
1670 (struct sockaddr *)&vol->srcaddr))
1671 return 0;
1672
1673 if (!match_port(server, addr))
1674 return 0;
1675
1676 if (!match_security(server, vol))
1677 return 0;
1678
1679 return 1;
1680}
1681
e7ddee90 1682static struct TCP_Server_Info *
daf5b0b6 1683cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1684{
e7ddee90 1685 struct TCP_Server_Info *server;
e7ddee90 1686
3f9bcca7 1687 spin_lock(&cifs_tcp_ses_lock);
4515148e 1688 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
37bb04e5 1689 if (!match_server(server, addr, vol))
daf5b0b6
JL		 1690 continue;
1691
e7ddee90 1692 ++server->srv_count;
3f9bcca7 1693 spin_unlock(&cifs_tcp_ses_lock);
b6b38f70 1694 cFYI(1, "Existing tcp session with server found");
e7ddee90 1695 return server;
1da177e4 1696 }
3f9bcca7 1697 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1698 return NULL;
1699}
1b20d672 1700
14fbf50d 1701static void
e7ddee90 1702cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1703{
e7ddee90 1704 struct task_struct *task;
1b20d672 1705
3f9bcca7 1706 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 1707 if (--server->srv_count > 0) {
3f9bcca7 1708 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 1709 return;
1da177e4 1710 }
1b20d672 1711
f1d0c998
RL		 1712 put_net(cifs_net_ns(server));
1713
e7ddee90 1714 list_del_init(&server->tcp_ses_list);
3f9bcca7 1715 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1716
c74093b6
JL		 1717 cancel_delayed_work_sync(&server->echo);
1718
e7ddee90
JL		 1719 spin_lock(&GlobalMid_Lock);
1720 server->tcpStatus = CifsExiting;
1721 spin_unlock(&GlobalMid_Lock);
dea570e0 1722
d2b91521 1723 cifs_crypto_shash_release(server);
488f1d2d
SJ		 1724 cifs_fscache_release_client_cookie(server);
1725
21e73393
SP		 1726 kfree(server->session_key.response);
1727 server->session_key.response = NULL;
1728 server->session_key.len = 0;
1729
e7ddee90
JL		 1730 task = xchg(&server->tsk, NULL);
1731 if (task)
1732 force_sig(SIGKILL, task);
1da177e4
LT		 1733}
1734
63c038c2
JL		 1735static struct TCP_Server_Info *
1736cifs_get_tcp_session(struct smb_vol *volume_info)
1737{
1738 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1739 struct sockaddr_storage addr;
63c038c2
JL		 1740 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1741 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1742 int rc;
1743
a9ac49d3 1744 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1745
b6b38f70 1746 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1747
1e68b2b2 1748 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1749 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1750 volume_info->UNCip,
67b7626a 1751 strlen(volume_info->UNCip),
50d97160 1752 volume_info->port);
1e68b2b2 1753 if (!rc) {
63c038c2
JL		 1754 /* we failed translating address */
1755 rc = -EINVAL;
1756 goto out_err;
1757 }
63c038c2
JL		 1758 } else if (volume_info->UNCip) {
1759 /* BB using ip addr as tcp_ses name to connect to the
1760 DFS root below */
b6b38f70 1761 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1762 rc = -EINVAL;
1763 goto out_err;
1764 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1765 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1766 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1767 rc = -EINVAL;
1768 goto out_err;
1769 }
1770
1771 /* see if we already have a matching tcp_ses */
daf5b0b6 1772 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1773 if (tcp_ses)
1774 return tcp_ses;
1775
1776 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1777 if (!tcp_ses) {
1778 rc = -ENOMEM;
1779 goto out_err;
1780 }
1781
d2b91521
SP		 1782 rc = cifs_crypto_shash_allocate(tcp_ses);
1783 if (rc) {
1784 cERROR(1, "could not setup hash structures rc %d", rc);
1785 goto out_err;
1786 }
1787
f1d0c998 1788 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
63c038c2
JL		 1789 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1790 if (IS_ERR(tcp_ses->hostname)) {
1791 rc = PTR_ERR(tcp_ses->hostname);
f7c5445a 1792 goto out_err_crypto_release;
63c038c2
JL		 1793 }
1794
1795 tcp_ses->noblocksnd = volume_info->noblocksnd;
1796 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1797 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1798 atomic_set(&tcp_ses->inFlight, 0);
1799 init_waitqueue_head(&tcp_ses->response_q);
1800 init_waitqueue_head(&tcp_ses->request_q);
1801 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1802 mutex_init(&tcp_ses->srv_mutex);
1803 memcpy(tcp_ses->workstation_RFC1001_name,
1804 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1805 memcpy(tcp_ses->server_RFC1001_name,
1806 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
5d0d2882 1807 tcp_ses->session_estab = false;
63c038c2 1808 tcp_ses->sequence_number = 0;
fda35943 1809 tcp_ses->lstrp = jiffies;
63c038c2
JL		 1810 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1811 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
c74093b6 1812 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
63c038c2
JL		 1813
1814 /*
1815 * at this point we are the only ones with the pointer
1816 * to the struct since the kernel thread not created yet
1817 * no need to spinlock this init of tcpStatus or srv_count
1818 */
1819 tcp_ses->tcpStatus = CifsNew;
3eb9a889
BG		 1820 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1821 sizeof(tcp_ses->srcaddr));
63c038c2
JL		 1822 ++tcp_ses->srv_count;
1823
a9ac49d3 1824 if (addr.ss_family == AF_INET6) {
b6b38f70 1825 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1826 /* BB should we allow ipv6 on port 139? */
1827 /* other OS never observed in Wild doing 139 with v6 */
a9f1b85e
PS		 1828 memcpy(&tcp_ses->dstaddr, sin_server6,
1829 sizeof(struct sockaddr_in6));
1830 } else
1831 memcpy(&tcp_ses->dstaddr, sin_server,
1832 sizeof(struct sockaddr_in));
1833
1834 rc = ip_connect(tcp_ses);
63c038c2 1835 if (rc < 0) {
b6b38f70 1836 cERROR(1, "Error connecting to socket. Aborting operation");
f7c5445a 1837 goto out_err_crypto_release;
63c038c2
JL		 1838 }
1839
1840 /*
1841 * since we're in a cifs function already, we know that
1842 * this will succeed. No need for try_module_get().
1843 */
1844 __module_get(THIS_MODULE);
1845 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1846 tcp_ses, "cifsd");
1847 if (IS_ERR(tcp_ses->tsk)) {
1848 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1849 cERROR(1, "error %d create cifsd thread", rc);
63c038c2 1850 module_put(THIS_MODULE);
f7c5445a 1851 goto out_err_crypto_release;
63c038c2 1852 }
fd88ce93 1853 tcp_ses->tcpStatus = CifsNeedNegotiate;
63c038c2
JL		 1854
1855 /* thread spawned, put it on the list */
3f9bcca7 1856 spin_lock(&cifs_tcp_ses_lock);
63c038c2 1857 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
3f9bcca7 1858 spin_unlock(&cifs_tcp_ses_lock);
63c038c2 1859
488f1d2d
SJ		 1860 cifs_fscache_get_client_cookie(tcp_ses);
1861
c74093b6
JL		 1862 /* queue echo request delayed work */
1863 queue_delayed_work(system_nrt_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
1864
63c038c2
JL		 1865 return tcp_ses;
1866
f7c5445a 1867out_err_crypto_release:
d2b91521
SP		 1868 cifs_crypto_shash_release(tcp_ses);
1869
f1d0c998
RL		 1870 put_net(cifs_net_ns(tcp_ses));
1871
63c038c2
JL		 1872out_err:
1873 if (tcp_ses) {
8347a5cd
SF		 1874 if (!IS_ERR(tcp_ses->hostname))
1875 kfree(tcp_ses->hostname);
63c038c2
JL		 1876 if (tcp_ses->ssocket)
1877 sock_release(tcp_ses->ssocket);
1878 kfree(tcp_ses);
1879 }
1880 return ERR_PTR(rc);
1881}
1882
37bb04e5
PS		 1883static int match_session(struct cifsSesInfo *ses, struct smb_vol *vol)
1884{
1885 switch (ses->server->secType) {
1886 case Kerberos:
1887 if (vol->cred_uid != ses->cred_uid)
1888 return 0;
1889 break;
1890 default:
1891 /* anything else takes username/password */
1892 if (ses->user_name == NULL)
1893 return 0;
1894 if (strncmp(ses->user_name, vol->username,
1895 MAX_USERNAME_SIZE))
1896 return 0;
1897 if (strlen(vol->username) != 0 &&
1898 ses->password != NULL &&
1899 strncmp(ses->password,
1900 vol->password ? vol->password : "",
1901 MAX_PASSWORD_SIZE))
1902 return 0;
1903 }
1904 return 1;
1905}
1906
14fbf50d 1907static struct cifsSesInfo *
4ff67b72 1908cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 1909{
14fbf50d 1910 struct cifsSesInfo *ses;
dea570e0 1911
3f9bcca7 1912 spin_lock(&cifs_tcp_ses_lock);
4ff67b72 1913 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
37bb04e5
PS		 1914 if (!match_session(ses, vol))
1915 continue;
14fbf50d 1916 ++ses->ses_count;
3f9bcca7 1917 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1918 return ses;
1919 }
3f9bcca7 1920 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1921 return NULL;
1922}
dea570e0 1923
14fbf50d
JL		 1924static void
1925cifs_put_smb_ses(struct cifsSesInfo *ses)
1926{
1927 int xid;
1928 struct TCP_Server_Info *server = ses->server;
dea570e0 1929
36988c76 1930 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
3f9bcca7 1931 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 1932 if (--ses->ses_count > 0) {
3f9bcca7 1933 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1934 return;
1935 }
dea570e0 1936
14fbf50d 1937 list_del_init(&ses->smb_ses_list);
3f9bcca7 1938 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1939
14fbf50d
JL		 1940 if (ses->status == CifsGood) {
1941 xid = GetXid();
1942 CIFSSMBLogoff(xid, ses);
1943 _FreeXid(xid);
1944 }
1945 sesInfoFree(ses);
1946 cifs_put_tcp_session(server);
1947}
dea570e0 1948
d9b94201
SF		 1949static bool warned_on_ntlm; /* globals init to false automatically */
1950
36988c76
JL		 1951static struct cifsSesInfo *
1952cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1953{
1954 int rc = -ENOMEM, xid;
1955 struct cifsSesInfo *ses;
a9f1b85e
PS		 1956 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
1957 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
36988c76
JL		 1958
1959 xid = GetXid();
1960
4ff67b72 1961 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 1962 if (ses) {
1963 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1964
36988c76 1965 mutex_lock(&ses->session_mutex);
198b5682
JL		 1966 rc = cifs_negotiate_protocol(xid, ses);
1967 if (rc) {
1968 mutex_unlock(&ses->session_mutex);
1969 /* problem -- put our ses reference */
1970 cifs_put_smb_ses(ses);
1971 FreeXid(xid);
1972 return ERR_PTR(rc);
1973 }
36988c76
JL		 1974 if (ses->need_reconnect) {
1975 cFYI(1, "Session needs reconnect");
1976 rc = cifs_setup_session(xid, ses,
1977 volume_info->local_nls);
1978 if (rc) {
1979 mutex_unlock(&ses->session_mutex);
1980 /* problem -- put our reference */
1981 cifs_put_smb_ses(ses);
1982 FreeXid(xid);
1983 return ERR_PTR(rc);
1984 }
1985 }
1986 mutex_unlock(&ses->session_mutex);
460cf341
JL		 1987
1988 /* existing SMB ses has a server reference already */
1989 cifs_put_tcp_session(server);
36988c76
JL		 1990 FreeXid(xid);
1991 return ses;
1992 }
1993
1994 cFYI(1, "Existing smb sess not found");
1995 ses = sesInfoAlloc();
1996 if (ses == NULL)
1997 goto get_ses_fail;
1998
1999 /* new SMB session uses our server ref */
2000 ses->server = server;
a9f1b85e
PS		 2001 if (server->dstaddr.ss_family == AF_INET6)
2002 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
36988c76 2003 else
a9f1b85e 2004 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
36988c76 2005
8727c8a8
SF		 2006 if (volume_info->username) {
2007 ses->user_name = kstrdup(volume_info->username, GFP_KERNEL);
2008 if (!ses->user_name)
2009 goto get_ses_fail;
2010 }
36988c76
JL		 2011
2012 /* volume_info->password freed at unmount */
2013 if (volume_info->password) {
2014 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
2015 if (!ses->password)
2016 goto get_ses_fail;
2017 }
2018 if (volume_info->domainname) {
d3686d54
SP		 2019 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
2020 if (!ses->domainName)
2021 goto get_ses_fail;
36988c76 2022 }
3e4b3e1f 2023 ses->cred_uid = volume_info->cred_uid;
36988c76 2024 ses->linux_uid = volume_info->linux_uid;
d9b94201
SF		 2025
2026 /* ntlmv2 is much stronger than ntlm security, and has been broadly
2027 supported for many years, time to update default security mechanism */
2028 if ((volume_info->secFlg == 0) && warned_on_ntlm == false) {
2029 warned_on_ntlm = true;
2030 cERROR(1, "default security mechanism requested. The default "
2031 "security mechanism will be upgraded from ntlm to "
2032 "ntlmv2 in kernel release 2.6.41");
2033 }
36988c76
JL		 2034 ses->overrideSecFlg = volume_info->secFlg;
2035
2036 mutex_lock(&ses->session_mutex);
198b5682
JL		 2037 rc = cifs_negotiate_protocol(xid, ses);
2038 if (!rc)
2039 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76 2040 mutex_unlock(&ses->session_mutex);
c8e56f1f 2041 if (rc)
36988c76
JL		 2042 goto get_ses_fail;
2043
2044 /* success, put it on the list */
3f9bcca7 2045 spin_lock(&cifs_tcp_ses_lock);
36988c76 2046 list_add(&ses->smb_ses_list, &server->smb_ses_list);
3f9bcca7 2047 spin_unlock(&cifs_tcp_ses_lock);
36988c76
JL		 2048
2049 FreeXid(xid);
2050 return ses;
2051
2052get_ses_fail:
2053 sesInfoFree(ses);
2054 FreeXid(xid);
2055 return ERR_PTR(rc);
2056}
2057
37bb04e5
PS		 2058static int match_tcon(struct cifsTconInfo *tcon, const char *unc)
2059{
2060 if (tcon->tidStatus == CifsExiting)
2061 return 0;
2062 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
2063 return 0;
2064 return 1;
2065}
2066
f1987b44
JL		 2067static struct cifsTconInfo *
2068cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
2069{
2070 struct list_head *tmp;
2071 struct cifsTconInfo *tcon;
2072
3f9bcca7 2073 spin_lock(&cifs_tcp_ses_lock);
f1987b44
JL		 2074 list_for_each(tmp, &ses->tcon_list) {
2075 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
37bb04e5 2076 if (!match_tcon(tcon, unc))
f1987b44 2077 continue;
f1987b44 2078 ++tcon->tc_count;
3f9bcca7 2079 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 2080 return tcon;
1da177e4 2081 }
3f9bcca7 2082 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 2083 return NULL;
2084}
2085
f1987b44
JL		 2086static void
2087cifs_put_tcon(struct cifsTconInfo *tcon)
2088{
2089 int xid;
2090 struct cifsSesInfo *ses = tcon->ses;
2091
d00c28de 2092 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
3f9bcca7 2093 spin_lock(&cifs_tcp_ses_lock);
f1987b44 2094 if (--tcon->tc_count > 0) {
3f9bcca7 2095 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 2096 return;
2097 }
2098
2099 list_del_init(&tcon->tcon_list);
3f9bcca7 2100 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 2101
2102 xid = GetXid();
2103 CIFSSMBTDis(xid, tcon);
2104 _FreeXid(xid);
2105
d03382ce 2106 cifs_fscache_release_super_cookie(tcon);
9f841593 2107 tconInfoFree(tcon);
f1987b44
JL		 2108 cifs_put_smb_ses(ses);
2109}
2110
d00c28de
JL		 2111static struct cifsTconInfo *
2112cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
2113{
2114 int rc, xid;
2115 struct cifsTconInfo *tcon;
2116
2117 tcon = cifs_find_tcon(ses, volume_info->UNC);
2118 if (tcon) {
2119 cFYI(1, "Found match on UNC path");
2120 /* existing tcon already has a reference */
2121 cifs_put_smb_ses(ses);
2122 if (tcon->seal != volume_info->seal)
2123 cERROR(1, "transport encryption setting "
2124 "conflicts with existing tid");
2125 return tcon;
2126 }
2127
2128 tcon = tconInfoAlloc();
2129 if (tcon == NULL) {
2130 rc = -ENOMEM;
2131 goto out_fail;
2132 }
2133
2134 tcon->ses = ses;
2135 if (volume_info->password) {
2136 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2137 if (!tcon->password) {
2138 rc = -ENOMEM;
2139 goto out_fail;
2140 }
2141 }
2142
2143 if (strchr(volume_info->UNC + 3, '\\') == NULL
2144 && strchr(volume_info->UNC + 3, '/') == NULL) {
2145 cERROR(1, "Missing share name");
2146 rc = -ENODEV;
2147 goto out_fail;
2148 }
2149
2150 /* BB Do we need to wrap session_mutex around
2151 * this TCon call and Unix SetFS as
2152 * we do on SessSetup and reconnect? */
2153 xid = GetXid();
2154 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2155 FreeXid(xid);
2156 cFYI(1, "CIFS Tcon rc = %d", rc);
2157 if (rc)
2158 goto out_fail;
2159
2160 if (volume_info->nodfs) {
2161 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2162 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2163 }
2164 tcon->seal = volume_info->seal;
2165 /* we can have only one retry value for a connection
2166 to a share so for resources mounted more than once
2167 to the same server share the last value passed in
2168 for the retry flag is used */
2169 tcon->retry = volume_info->retry;
2170 tcon->nocase = volume_info->nocase;
2171 tcon->local_lease = volume_info->local_lease;
2172
3f9bcca7 2173 spin_lock(&cifs_tcp_ses_lock);
d00c28de 2174 list_add(&tcon->tcon_list, &ses->tcon_list);
3f9bcca7 2175 spin_unlock(&cifs_tcp_ses_lock);
d00c28de 2176
d03382ce
SJ		 2177 cifs_fscache_get_super_cookie(tcon);
2178
d00c28de
JL		 2179 return tcon;
2180
2181out_fail:
2182 tconInfoFree(tcon);
2183 return ERR_PTR(rc);
2184}
2185
9d002df4
JL		 2186void
2187cifs_put_tlink(struct tcon_link *tlink)
2188{
2189 if (!tlink || IS_ERR(tlink))
2190 return;
2191
2192 if (!atomic_dec_and_test(&tlink->tl_count) ||
2193 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2194 tlink->tl_time = jiffies;
2195 return;
2196 }
2197
2198 if (!IS_ERR(tlink_tcon(tlink)))
2199 cifs_put_tcon(tlink_tcon(tlink));
2200 kfree(tlink);
2201 return;
2202}
d00c28de 2203
1da177e4 2204int
50c2f753
SF		 2205get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
2206 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 2207 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 2208{
2209 char *temp_unc;
2210 int rc = 0;
2211
2212 *pnum_referrals = 0;
366781c1 2213 *preferrals = NULL;
1da177e4
LT		 2214
2215 if (pSesInfo->ipc_tid == 0) {
2216 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 2217 strnlen(pSesInfo->serverName,
2218 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 2219 + 1 + 4 /* slash IPC$ */ + 2,
2220 GFP_KERNEL);
2221 if (temp_unc == NULL)
2222 return -ENOMEM;
2223 temp_unc[0] = '\\';
2224 temp_unc[1] = '\\';
2225 strcpy(temp_unc + 2, pSesInfo->serverName);
2226 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2227 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 2228 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 2229 kfree(temp_unc);
2230 }
2231 if (rc == 0)
c2cf07d5 2232 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 2233 pnum_referrals, nls_codepage, remap);
366781c1
SF		 2234 /* BB map targetUNCs to dfs_info3 structures, here or
2235 in CIFSGetDFSRefer BB */
1da177e4
LT		 2236
2237 return rc;
2238}
2239
09e50d55
JL		 2240#ifdef CONFIG_DEBUG_LOCK_ALLOC
2241static struct lock_class_key cifs_key[2];
2242static struct lock_class_key cifs_slock_key[2];
2243
2244static inline void
2245cifs_reclassify_socket4(struct socket *sock)
2246{
2247 struct sock *sk = sock->sk;
2248 BUG_ON(sock_owned_by_user(sk));
2249 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2250 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2251}
2252
2253static inline void
2254cifs_reclassify_socket6(struct socket *sock)
2255{
2256 struct sock *sk = sock->sk;
2257 BUG_ON(sock_owned_by_user(sk));
2258 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2259 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2260}
2261#else
2262static inline void
2263cifs_reclassify_socket4(struct socket *sock)
2264{
2265}
2266
2267static inline void
2268cifs_reclassify_socket6(struct socket *sock)
2269{
2270}
2271#endif
2272
1da177e4 2273/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 2274static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 2275{
50c2f753 2276 unsigned int i, j;
1da177e4 2277
50c2f753 2278 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 2279 /* mask a nibble at a time and encode */
2280 target[j] = 'A' + (0x0F & (source[i] >> 4));
2281 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 2282 j += 2;
1da177e4
LT		 2283 }
2284
2285}
2286
3eb9a889
BG		 2287static int
2288bind_socket(struct TCP_Server_Info *server)
2289{
2290 int rc = 0;
2291 if (server->srcaddr.ss_family != AF_UNSPEC) {
2292 /* Bind to the specified local IP address */
2293 struct socket *socket = server->ssocket;
2294 rc = socket->ops->bind(socket,
2295 (struct sockaddr *) &server->srcaddr,
2296 sizeof(server->srcaddr));
2297 if (rc < 0) {
2298 struct sockaddr_in *saddr4;
2299 struct sockaddr_in6 *saddr6;
2300 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2301 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2302 if (saddr6->sin6_family == AF_INET6)
2303 cERROR(1, "cifs: "
2304 "Failed to bind to: %pI6c, error: %d\n",
2305 &saddr6->sin6_addr, rc);
2306 else
2307 cERROR(1, "cifs: "
2308 "Failed to bind to: %pI4, error: %d\n",
2309 &saddr4->sin_addr.s_addr, rc);
2310 }
2311 }
2312 return rc;
2313}
1da177e4
LT		 2314
2315static int
a9f1b85e 2316ip_rfc1001_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2317{
2318 int rc = 0;
a9f1b85e
PS		 2319 /*
2320 * some servers require RFC1001 sessinit before sending
2321 * negprot - BB check reconnection in case where second
2322 * sessinit is sent but no second negprot
2323 */
2324 struct rfc1002_session_packet *ses_init_buf;
2325 struct smb_hdr *smb_buf;
2326 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2327 GFP_KERNEL);
2328 if (ses_init_buf) {
2329 ses_init_buf->trailer.session_req.called_len = 32;
2330
2331 if (server->server_RFC1001_name &&
2332 server->server_RFC1001_name[0] != 0)
2333 rfc1002mangle(ses_init_buf->trailer.
2334 session_req.called_name,
2335 server->server_RFC1001_name,
2336 RFC1001_NAME_LEN_WITH_NULL);
2337 else
2338 rfc1002mangle(ses_init_buf->trailer.
2339 session_req.called_name,
2340 DEFAULT_CIFS_CALLED_NAME,
2341 RFC1001_NAME_LEN_WITH_NULL);
2342
2343 ses_init_buf->trailer.session_req.calling_len = 32;
2344
2345 /*
2346 * calling name ends in null (byte 16) from old smb
2347 * convention.
2348 */
2349 if (server->workstation_RFC1001_name &&
2350 server->workstation_RFC1001_name[0] != 0)
2351 rfc1002mangle(ses_init_buf->trailer.
2352 session_req.calling_name,
2353 server->workstation_RFC1001_name,
2354 RFC1001_NAME_LEN_WITH_NULL);
2355 else
2356 rfc1002mangle(ses_init_buf->trailer.
2357 session_req.calling_name,
2358 "LINUX_CIFS_CLNT",
2359 RFC1001_NAME_LEN_WITH_NULL);
2360
2361 ses_init_buf->trailer.session_req.scope1 = 0;
2362 ses_init_buf->trailer.session_req.scope2 = 0;
2363 smb_buf = (struct smb_hdr *)ses_init_buf;
2364
2365 /* sizeof RFC1002_SESSION_REQUEST with no scope */
be8e3b00 2366 smb_buf->smb_buf_length = cpu_to_be32(0x81000044);
a9f1b85e
PS		 2367 rc = smb_send(server, smb_buf, 0x44);
2368 kfree(ses_init_buf);
2369 /*
2370 * RFC1001 layer in at least one server
2371 * requires very short break before negprot
2372 * presumably because not expecting negprot
2373 * to follow so fast. This is a simple
2374 * solution that works without
2375 * complicating the code and causes no
2376 * significant slowing down on mount
2377 * for everyone else
2378 */
2379 usleep_range(1000, 2000);
2380 }
2381 /*
2382 * else the negprot may still work without this
2383 * even though malloc failed
2384 */
2385
2386 return rc;
2387}
2388
2389static int
2390generic_ip_connect(struct TCP_Server_Info *server)
2391{
2392 int rc = 0;
6da97910 2393 __be16 sport;
a9f1b85e 2394 int slen, sfamily;
bcf4b106 2395 struct socket *socket = server->ssocket;
a9f1b85e
PS		 2396 struct sockaddr *saddr;
2397
2398 saddr = (struct sockaddr *) &server->dstaddr;
2399
2400 if (server->dstaddr.ss_family == AF_INET6) {
2401 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
2402 slen = sizeof(struct sockaddr_in6);
2403 sfamily = AF_INET6;
2404 } else {
2405 sport = ((struct sockaddr_in *) saddr)->sin_port;
2406 slen = sizeof(struct sockaddr_in);
2407 sfamily = AF_INET;
2408 }
1da177e4 2409
bcf4b106 2410 if (socket == NULL) {
f1d0c998
RL		 2411 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2412 IPPROTO_TCP, &socket, 1);
1da177e4 2413 if (rc < 0) {
b6b38f70 2414 cERROR(1, "Error %d creating socket", rc);
a9f1b85e 2415 server->ssocket = NULL;
1da177e4 2416 return rc;
1da177e4 2417 }
bcf4b106
JL		 2418
2419 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2420 cFYI(1, "Socket created");
bcf4b106
JL		 2421 server->ssocket = socket;
2422 socket->sk->sk_allocation = GFP_NOFS;
a9f1b85e
PS		 2423 if (sfamily == AF_INET6)
2424 cifs_reclassify_socket6(socket);
2425 else
2426 cifs_reclassify_socket4(socket);
1da177e4
LT		 2427 }
2428
3eb9a889
BG		 2429 rc = bind_socket(server);
2430 if (rc < 0)
2431 return rc;
2432
a9f1b85e
PS		 2433 rc = socket->ops->connect(socket, saddr, slen, 0);
2434 if (rc < 0) {
2435 cFYI(1, "Error %d connecting to server", rc);
bcf4b106
JL		 2436 sock_release(socket);
2437 server->ssocket = NULL;
1da177e4
LT		 2438 return rc;
2439 }
bcf4b106 2440
bcf4b106
JL		 2441 /*
2442 * Eventually check for other socket options to change from
a9f1b85e
PS		 2443 * the default. sock_setsockopt not used because it expects
2444 * user space buffer
bcf4b106
JL		 2445 */
2446 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2447 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2448
b387eaeb 2449 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2450 if (server->noautotune) {
2451 if (socket->sk->sk_sndbuf < (200 * 1024))
2452 socket->sk->sk_sndbuf = 200 * 1024;
2453 if (socket->sk->sk_rcvbuf < (140 * 1024))
2454 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2455 }
1da177e4 2456
6a5fa236 2457 if (server->tcp_nodelay) {
a9f1b85e 2458 int val = 1;
6a5fa236
SF		 2459 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2460 (char *)&val, sizeof(val));
2461 if (rc)
b6b38f70 2462 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2463 }
2464
b6b38f70 2465 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2466 socket->sk->sk_sndbuf,
b6b38f70 2467 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2468
a9f1b85e
PS		 2469 if (sport == htons(RFC1001_PORT))
2470 rc = ip_rfc1001_connect(server);
50c2f753 2471
1da177e4
LT		 2472 return rc;
2473}
2474
2475static int
a9f1b85e 2476ip_connect(struct TCP_Server_Info *server)
1da177e4 2477{
6da97910 2478 __be16 *sport;
a9f1b85e
PS		 2479 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2480 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
1da177e4 2481
a9f1b85e
PS		 2482 if (server->dstaddr.ss_family == AF_INET6)
2483 sport = &addr6->sin6_port;
2484 else
2485 sport = &addr->sin_port;
1da177e4 2486
a9f1b85e
PS		 2487 if (*sport == 0) {
2488 int rc;
1da177e4 2489
a9f1b85e
PS		 2490 /* try with 445 port at first */
2491 *sport = htons(CIFS_PORT);
3eb9a889 2492
a9f1b85e 2493 rc = generic_ip_connect(server);
1da177e4 2494 if (rc >= 0)
a9f1b85e 2495 return rc;
6a5fa236 2496
a9f1b85e
PS		 2497 /* if it failed, try with 139 port */
2498 *sport = htons(RFC1001_PORT);
6a5fa236
SF		 2499 }
2500
a9f1b85e 2501 return generic_ip_connect(server);
1da177e4
LT		 2502}
2503
50c2f753
SF		 2504void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2505 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2506{
2507 /* if we are reconnecting then should we check to see if
2508 * any requested capabilities changed locally e.g. via
2509 * remount but we can not do much about it here
2510 * if they have (even if we could detect it by the following)
2511 * Perhaps we could add a backpointer to array of sb from tcon
2512 * or if we change to make all sb to same share the same
2513 * sb as NFS - then we only have one backpointer to sb.
2514 * What if we wanted to mount the server share twice once with
2515 * and once without posixacls or posix paths? */
2516 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2517
c18c842b
SF		 2518 if (vol_info && vol_info->no_linux_ext) {
2519 tcon->fsUnixInfo.Capability = 0;
2520 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2521 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2522 return;
2523 } else if (vol_info)
2524 tcon->unix_ext = 1; /* Unix Extensions supported */
2525
2526 if (tcon->unix_ext == 0) {
b6b38f70 2527 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2528 return;
2529 }
50c2f753 2530
fb8c4b14 2531 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2532 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
6848b733 2533 cFYI(1, "unix caps which server supports %lld", cap);
8af18971
SF		 2534 /* check for reconnect case in which we do not
2535 want to change the mount behavior if we can avoid it */
fb8c4b14 2536 if (vol_info == NULL) {
50c2f753 2537 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2538 originally at mount time */
2539 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2540 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2541 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2542 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2543 cERROR(1, "POSIXPATH support change");
8af18971 2544 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2545 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2546 cERROR(1, "possible reconnect error");
2547 cERROR(1, "server disabled POSIX path support");
11b6d645 2548 }
8af18971 2549 }
50c2f753 2550
6848b733
SF		 2551 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2552 cERROR(1, "per-share encryption not supported yet");
2553
8af18971 2554 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2555 if (vol_info && vol_info->no_psx_acl)
8af18971 2556 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2557 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2558 cFYI(1, "negotiated posix acl support");
fb8c4b14 2559 if (sb)
8af18971
SF		 2560 sb->s_flags |= MS_POSIXACL;
2561 }
2562
75865f8c 2563 if (vol_info && vol_info->posix_paths == 0)
8af18971 2564 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2565 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2566 cFYI(1, "negotiate posix pathnames");
75865f8c 2567 if (sb)
50c2f753 2568 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2569 CIFS_MOUNT_POSIX_PATHS;
2570 }
50c2f753 2571
984acfe1
SF		 2572 /* We might be setting the path sep back to a different
2573 form if we are reconnecting and the server switched its
50c2f753 2574 posix path capability for this share */
75865f8c 2575 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2576 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2577
2578 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2579 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2580 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2581 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2582 }
2583 }
50c2f753
SF		 2584
2585
b6b38f70 2586 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2587#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2588 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2589 cFYI(1, "FCNTL cap");
75865f8c 2590 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2591 cFYI(1, "EXTATTR cap");
75865f8c 2592 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2593 cFYI(1, "POSIX path cap");
75865f8c 2594 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2595 cFYI(1, "XATTR cap");
75865f8c 2596 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2597 cFYI(1, "POSIX ACL cap");
75865f8c 2598 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2599 cFYI(1, "very large read cap");
75865f8c 2600 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2601 cFYI(1, "very large write cap");
6848b733
SF		 2602 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP)
2603 cFYI(1, "transport encryption cap");
2604 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2605 cFYI(1, "mandatory transport encryption cap");
8af18971
SF		 2606#endif /* CIFS_DEBUG2 */
2607 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2608 if (vol_info == NULL) {
b6b38f70 2609 cFYI(1, "resetting capabilities failed");
442aa310 2610 } else
b6b38f70 2611 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2612 "with the server failed. Consider "
2613 "mounting with the Unix Extensions\n"
2614 "disabled, if problems are found, "
2615 "by specifying the nounix mount "
b6b38f70 2616 "option.");
5a44b319 2617
8af18971
SF		 2618 }
2619 }
2620}
2621
03a143c9
SF		 2622static void
2623convert_delimiter(char *path, char delim)
2624{
2625 int i;
c2d68ea6 2626 char old_delim;
03a143c9
SF		 2627
2628 if (path == NULL)
2629 return;
2630
582d21e5 2631 if (delim == '/')
c2d68ea6
SF		 2632 old_delim = '\\';
2633 else
2634 old_delim = '/';
2635
03a143c9 2636 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2637 if (path[i] == old_delim)
03a143c9
SF		 2638 path[i] = delim;
2639 }
2640}
2641
724d9f1c
PS		 2642void cifs_setup_cifs_sb(struct smb_vol *pvolume_info,
2643 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2644{
2de970ff
JL		 2645 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2646
3b795210 2647 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2648 cERROR(1, "rsize %d too large, using MaxBufSize",
2649 pvolume_info->rsize);
3b795210
SF		 2650 cifs_sb->rsize = CIFSMaxBufSize;
2651 } else if ((pvolume_info->rsize) &&
2652 (pvolume_info->rsize <= CIFSMaxBufSize))
2653 cifs_sb->rsize = pvolume_info->rsize;
2654 else /* default */
2655 cifs_sb->rsize = CIFSMaxBufSize;
2656
3b795210
SF		 2657 if (cifs_sb->rsize < 2048) {
2658 cifs_sb->rsize = 2048;
2659 /* Windows ME may prefer this */
b6b38f70 2660 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2661 }
2662 /* calculate prepath */
2663 cifs_sb->prepath = pvolume_info->prepath;
2664 if (cifs_sb->prepath) {
2665 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2666 /* we can not convert the / to \ in the path
2667 separators in the prefixpath yet because we do not
2668 know (until reset_cifs_unix_caps is called later)
2669 whether POSIX PATH CAP is available. We normalize
2670 the / to \ after reset_cifs_unix_caps is called */
2671 pvolume_info->prepath = NULL;
2672 } else
2673 cifs_sb->prepathlen = 0;
2674 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2675 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2676 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2677 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2678 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2679 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210 2680
6d20e840 2681 cifs_sb->actimeo = pvolume_info->actimeo;
724d9f1c 2682 cifs_sb->local_nls = pvolume_info->local_nls;
6d20e840 2683
3b795210
SF		 2684 if (pvolume_info->noperm)
2685 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2686 if (pvolume_info->setuids)
2687 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2688 if (pvolume_info->server_ino)
2689 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2690 if (pvolume_info->remap)
2691 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2692 if (pvolume_info->no_xattr)
2693 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2694 if (pvolume_info->sfu_emul)
2695 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2696 if (pvolume_info->nobrl)
2697 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2698 if (pvolume_info->nostrictsync)
4717bed6 2699 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2700 if (pvolume_info->mand_lock)
2701 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2702 if (pvolume_info->cifs_acl)
2703 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2704 if (pvolume_info->override_uid)
2705 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2706 if (pvolume_info->override_gid)
2707 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2708 if (pvolume_info->dynperm)
2709 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
fa1df75d
SJ		 2710 if (pvolume_info->fsc)
2711 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
0eb8a132
JL		 2712 if (pvolume_info->multiuser)
2713 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2714 CIFS_MOUNT_NO_PERM);
d39454ff
PS		 2715 if (pvolume_info->strict_io)
2716 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
3b795210 2717 if (pvolume_info->direct_io) {
b6b38f70 2718 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2719 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2720 }
736a3320
SM		 2721 if (pvolume_info->mfsymlinks) {
2722 if (pvolume_info->sfu_emul) {
2723 cERROR(1, "mount option mfsymlinks ignored if sfu "
2724 "mount option is used");
2725 } else {
2726 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2727 }
2728 }
3b795210
SF		 2729
2730 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2731 cERROR(1, "mount option dynperm ignored if cifsacl "
2732 "mount option supported");
b1c8d2b4
JL		 2733}
2734
f7910cbd
JL		 2735/*
2736 * When the server supports very large writes via POSIX extensions, we can
2737 * allow up to 2^24 - PAGE_CACHE_SIZE.
2738 *
2739 * Note that this might make for "interesting" allocation problems during
2740 * writeback however (as we have to allocate an array of pointers for the
2741 * pages). A 16M write means ~32kb page array with PAGE_CACHE_SIZE == 4096.
2742 */
2743#define CIFS_MAX_WSIZE ((1<<24) - PAGE_CACHE_SIZE)
2744
2745/*
2746 * When the server doesn't allow large posix writes, default to a wsize of
2747 * 128k - PAGE_CACHE_SIZE -- one page less than the largest frame size
2748 * described in RFC1001. This allows space for the header without going over
2749 * that by default.
2750 */
2751#define CIFS_MAX_RFC1001_WSIZE (128 * 1024 - PAGE_CACHE_SIZE)
2752
2753/*
2754 * The default wsize is 1M. find_get_pages seems to return a maximum of 256
2755 * pages in a single call. With PAGE_CACHE_SIZE == 4k, this means we can fill
2756 * a single wsize request with a single call.
2757 */
2758#define CIFS_DEFAULT_WSIZE (1024 * 1024)
2759
2760static unsigned int
2761cifs_negotiate_wsize(struct cifsTconInfo *tcon, struct smb_vol *pvolume_info)
2762{
2763 __u64 unix_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2764 struct TCP_Server_Info *server = tcon->ses->server;
2765 unsigned int wsize = pvolume_info->wsize ? pvolume_info->wsize :
2766 CIFS_DEFAULT_WSIZE;
2767
2768 /* can server support 24-bit write sizes? (via UNIX extensions) */
2769 if (!tcon->unix_ext || !(unix_cap & CIFS_UNIX_LARGE_WRITE_CAP))
2770 wsize = min_t(unsigned int, wsize, CIFS_MAX_RFC1001_WSIZE);
2771
2772 /* no CAP_LARGE_WRITE_X? Limit it to 16 bits */
2773 if (!(server->capabilities & CAP_LARGE_WRITE_X))
2774 wsize = min_t(unsigned int, wsize, USHRT_MAX);
2775
2776 /* hard limit of CIFS_MAX_WSIZE */
2777 wsize = min_t(unsigned int, wsize, CIFS_MAX_WSIZE);
2778
2779 return wsize;
2780}
2781
e4cce94c
IM		 2782static int
2783is_path_accessible(int xid, struct cifsTconInfo *tcon,
2784 struct cifs_sb_info *cifs_sb, const char *full_path)
2785{
2786 int rc;
e4cce94c
IM		 2787 FILE_ALL_INFO *pfile_info;
2788
e4cce94c
IM		 2789 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2790 if (pfile_info == NULL)
2791 return -ENOMEM;
2792
2793 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2794 0 /* not legacy */, cifs_sb->local_nls,
2795 cifs_sb->mnt_cifs_flags &
2796 CIFS_MOUNT_MAP_SPECIAL_CHR);
221d1d79
JL		 2797
2798 if (rc == -EOPNOTSUPP || rc == -EINVAL)
2799 rc = SMBQueryInformation(xid, tcon, full_path, pfile_info,
2800 cifs_sb->local_nls, cifs_sb->mnt_cifs_flags &
2801 CIFS_MOUNT_MAP_SPECIAL_CHR);
e4cce94c
IM		 2802 kfree(pfile_info);
2803 return rc;
2804}
2805
724d9f1c
PS		 2806void
2807cifs_cleanup_volume_info(struct smb_vol **pvolume_info)
1bfe73c2
IM		 2808{
2809 struct smb_vol *volume_info;
2810
ad6cca6d 2811 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2812 return;
2813
2814 volume_info = *pvolume_info;
b946845a 2815 kfree(volume_info->username);
1bfe73c2
IM		 2816 kzfree(volume_info->password);
2817 kfree(volume_info->UNC);
b946845a
SF		 2818 kfree(volume_info->UNCip);
2819 kfree(volume_info->domainname);
2820 kfree(volume_info->iocharset);
1bfe73c2
IM		 2821 kfree(volume_info->prepath);
2822 kfree(volume_info);
2823 *pvolume_info = NULL;
2824 return;
2825}
2826
2d6d589d 2827#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2828/* build_path_to_root returns full path to root when
2829 * we do not have an exiting connection (tcon) */
2830static char *
2831build_unc_path_to_root(const struct smb_vol *volume_info,
2832 const struct cifs_sb_info *cifs_sb)
2833{
2834 char *full_path;
2835
2836 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2837 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2838 if (full_path == NULL)
2839 return ERR_PTR(-ENOMEM);
2840
2841 strncpy(full_path, volume_info->UNC, unc_len);
2842 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2843 int i;
2844 for (i = 0; i < unc_len; i++) {
2845 if (full_path[i] == '\\')
2846 full_path[i] = '/';
2847 }
2848 }
2849
2850 if (cifs_sb->prepathlen)
2851 strncpy(full_path + unc_len, cifs_sb->prepath,
2852 cifs_sb->prepathlen);
2853
2854 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2855 return full_path;
2856}
dd613945
SF		 2857
2858/*
2859 * Perform a dfs referral query for a share and (optionally) prefix
2860 *
046462ab
SF		 2861 * If a referral is found, cifs_sb->mountdata will be (re-)allocated
2862 * to a string containing updated options for the submount. Otherwise it
2863 * will be left untouched.
dd613945
SF		 2864 *
2865 * Returns the rc from get_dfs_path to the caller, which can be used to
2866 * determine whether there were referrals.
2867 */
2868static int
2869expand_dfs_referral(int xid, struct cifsSesInfo *pSesInfo,
2870 struct smb_vol *volume_info, struct cifs_sb_info *cifs_sb,
046462ab 2871 int check_prefix)
dd613945
SF		 2872{
2873 int rc;
2874 unsigned int num_referrals = 0;
2875 struct dfs_info3_param *referrals = NULL;
2876 char *full_path = NULL, *ref_path = NULL, *mdata = NULL;
2877
2878 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2879 if (IS_ERR(full_path))
2880 return PTR_ERR(full_path);
2881
2882 /* For DFS paths, skip the first '\' of the UNC */
2883 ref_path = check_prefix ? full_path + 1 : volume_info->UNC + 1;
2884
2885 rc = get_dfs_path(xid, pSesInfo , ref_path, cifs_sb->local_nls,
2886 &num_referrals, &referrals,
2887 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2888
2889 if (!rc && num_referrals > 0) {
2890 char *fake_devname = NULL;
2891
2892 mdata = cifs_compose_mount_options(cifs_sb->mountdata,
2893 full_path + 1, referrals,
2894 &fake_devname);
2895
2896 free_dfs_info_array(referrals, num_referrals);
2897 kfree(fake_devname);
2898
046462ab
SF		 2899 if (cifs_sb->mountdata != NULL)
2900 kfree(cifs_sb->mountdata);
2901
dd613945
SF		 2902 if (IS_ERR(mdata)) {
2903 rc = PTR_ERR(mdata);
2904 mdata = NULL;
2905 }
046462ab 2906 cifs_sb->mountdata = mdata;
dd613945
SF		 2907 }
2908 kfree(full_path);
2909 return rc;
2910}
2d6d589d 2911#endif
1bfe73c2 2912
724d9f1c
PS		 2913int cifs_setup_volume_info(struct smb_vol **pvolume_info, char *mount_data,
2914 const char *devname)
1da177e4 2915{
7586b765 2916 struct smb_vol *volume_info;
724d9f1c 2917 int rc = 0;
1da177e4 2918
724d9f1c 2919 *pvolume_info = NULL;
1da177e4 2920
7586b765
JL		 2921 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2922 if (!volume_info) {
2923 rc = -ENOMEM;
2924 goto out;
2925 }
50c2f753 2926
724d9f1c 2927 if (cifs_parse_mount_options(mount_data, devname,
f14bcf71 2928 volume_info)) {
70fe7dc0
JL		 2929 rc = -EINVAL;
2930 goto out;
1da177e4
LT		 2931 }
2932
7586b765 2933 if (volume_info->nullauth) {
b6b38f70 2934 cFYI(1, "null user");
7586b765
JL		 2935 volume_info->username = "";
2936 } else if (volume_info->username) {
1da177e4 2937 /* BB fixme parse for domain name here */
b6b38f70 2938 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2939 } else {
bf820679 2940 cifserror("No username specified");
50c2f753
SF		 2941 /* In userspace mount helper we can get user name from alternate
2942 locations such as env variables and files on disk */
70fe7dc0
JL		 2943 rc = -EINVAL;
2944 goto out;
1da177e4
LT		 2945 }
2946
1da177e4 2947 /* this is needed for ASCII cp to Unicode converts */
7586b765 2948 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2949 /* load_nls_default cannot return null */
2950 volume_info->local_nls = load_nls_default();
1da177e4 2951 } else {
a5fc4ce0
JL		 2952 volume_info->local_nls = load_nls(volume_info->iocharset);
2953 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2954 cERROR(1, "CIFS mount error: iocharset %s not found",
2955 volume_info->iocharset);
70fe7dc0
JL		 2956 rc = -ELIBACC;
2957 goto out;
1da177e4
LT		 2958 }
2959 }
724d9f1c
PS		 2960
2961 *pvolume_info = volume_info;
2962 return rc;
2963out:
2964 cifs_cleanup_volume_info(&volume_info);
2965 return rc;
2966}
2967
2968int
2969cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
2970 struct smb_vol *volume_info, const char *devname)
2971{
2972 int rc = 0;
2973 int xid;
2974 struct cifsSesInfo *pSesInfo;
2975 struct cifsTconInfo *tcon;
2976 struct TCP_Server_Info *srvTcp;
2977 char *full_path;
2978 struct tcon_link *tlink;
2979#ifdef CONFIG_CIFS_DFS_UPCALL
2980 int referral_walks_count = 0;
2981try_mount_again:
2982 /* cleanup activities if we're chasing a referral */
2983 if (referral_walks_count) {
2984 if (tcon)
2985 cifs_put_tcon(tcon);
2986 else if (pSesInfo)
2987 cifs_put_smb_ses(pSesInfo);
2988
2989 cifs_cleanup_volume_info(&volume_info);
2990 FreeXid(xid);
2991 }
2992#endif
2993 tcon = NULL;
2994 pSesInfo = NULL;
2995 srvTcp = NULL;
2996 full_path = NULL;
2997 tlink = NULL;
2998
2999 xid = GetXid();
1da177e4 3000
63c038c2 3001 /* get a reference to a tcp session */
7586b765 3002 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 3003 if (IS_ERR(srvTcp)) {
3004 rc = PTR_ERR(srvTcp);
3005 goto out;
1da177e4
LT		 3006 }
3007
36988c76
JL		 3008 /* get a reference to a SMB session */
3009 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
3010 if (IS_ERR(pSesInfo)) {
3011 rc = PTR_ERR(pSesInfo);
3012 pSesInfo = NULL;
3013 goto mount_fail_check;
1da177e4 3014 }
50c2f753 3015
d00c28de
JL		 3016 if (pSesInfo->capabilities & CAP_LARGE_FILES)
3017 sb->s_maxbytes = MAX_LFS_FILESIZE;
3018 else
3019 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 3020
8af18971 3021 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 3022 sb->s_time_gran = 100;
3023
d00c28de
JL		 3024 /* search for existing tcon to this server share */
3025 tcon = cifs_get_tcon(pSesInfo, volume_info);
3026 if (IS_ERR(tcon)) {
3027 rc = PTR_ERR(tcon);
3028 tcon = NULL;
1bfe73c2 3029 goto remote_path_check;
d00c28de 3030 }
1bfe73c2 3031
d82c2df5 3032 /* tell server which Unix caps we support */
6848b733 3033 if (tcon->ses->capabilities & CAP_UNIX) {
d82c2df5
SF		 3034 /* reset of caps checks mount to see if unix extensions
3035 disabled for just this mount */
7586b765 3036 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
6848b733
SF		 3037 if ((tcon->ses->server->tcpStatus == CifsNeedReconnect) &&
3038 (le64_to_cpu(tcon->fsUnixInfo.Capability) &
3039 CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)) {
3040 rc = -EACCES;
3041 goto mount_fail_check;
3042 }
3043 } else
d82c2df5 3044 tcon->unix_ext = 0; /* server does not support them */
c18c842b 3045
6848b733
SF		 3046 /* do not care if following two calls succeed - informational */
3047 if (!tcon->ipc) {
3048 CIFSSMBQFSDeviceInfo(xid, tcon);
3049 CIFSSMBQFSAttributeInfo(xid, tcon);
3050 }
3051
d82c2df5
SF		 3052 /* convert forward to back slashes in prepath here if needed */
3053 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
3054 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 3055
d82c2df5
SF		 3056 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
3057 cifs_sb->rsize = 1024 * 127;
b6b38f70 3058 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 3059 }
d82c2df5
SF		 3060 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
3061 cifs_sb->rsize = min(cifs_sb->rsize,
3062 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 3063
f7910cbd
JL		 3064 cifs_sb->wsize = cifs_negotiate_wsize(tcon, volume_info);
3065
1bfe73c2 3066remote_path_check:
c1508ca2
SF		 3067#ifdef CONFIG_CIFS_DFS_UPCALL
3068 /*
3069 * Perform an unconditional check for whether there are DFS
3070 * referrals for this path without prefix, to provide support
3071 * for DFS referrals from w2k8 servers which don't seem to respond
3072 * with PATH_NOT_COVERED to requests that include the prefix.
3073 * Chase the referral if found, otherwise continue normally.
3074 */
3075 if (referral_walks_count == 0) {
3076 int refrc = expand_dfs_referral(xid, pSesInfo, volume_info,
046462ab 3077 cifs_sb, false);
c1508ca2
SF		 3078 if (!refrc) {
3079 referral_walks_count++;
3080 goto try_mount_again;
3081 }
3082 }
3083#endif
3084
1bfe73c2 3085 /* check if a whole path (including prepath) is not remote */
70945643 3086 if (!rc && tcon) {
e4cce94c 3087 /* build_path_to_root works only when we have a valid tcon */
7d161b7f 3088 full_path = cifs_build_path_to_root(cifs_sb, tcon);
e4cce94c
IM		 3089 if (full_path == NULL) {
3090 rc = -ENOMEM;
3091 goto mount_fail_check;
3092 }
3093 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
03ceace5 3094 if (rc != 0 && rc != -EREMOTE) {
e4cce94c
IM		 3095 kfree(full_path);
3096 goto mount_fail_check;
3097 }
3098 kfree(full_path);
3099 }
3100
1bfe73c2
IM		 3101 /* get referral if needed */
3102 if (rc == -EREMOTE) {
d036f50f 3103#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 3104 if (referral_walks_count > MAX_NESTED_LINKS) {
3105 /*
3106 * BB: when we implement proper loop detection,
3107 * we will remove this check. But now we need it
3108 * to prevent an indefinite loop if 'DFS tree' is
3109 * misconfigured (i.e. has loops).
3110 */
3111 rc = -ELOOP;
3112 goto mount_fail_check;
3113 }
1bfe73c2
IM		 3114 /* convert forward to back slashes in prepath here if needed */
3115 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
3116 convert_delimiter(cifs_sb->prepath,
3117 CIFS_DIR_SEP(cifs_sb));
1bfe73c2 3118
dd613945 3119 rc = expand_dfs_referral(xid, pSesInfo, volume_info, cifs_sb,
046462ab 3120 true);
7b91e266 3121
dd613945 3122 if (!rc) {
5c2503a8 3123 referral_walks_count++;
1bfe73c2
IM		 3124 goto try_mount_again;
3125 }
dd613945 3126 goto mount_fail_check;
d036f50f
SF		 3127#else /* No DFS support, return error on mount */
3128 rc = -EOPNOTSUPP;
3129#endif
1bfe73c2
IM		 3130 }
3131
9d002df4
JL		 3132 if (rc)
3133 goto mount_fail_check;
3134
3135 /* now, hang the tcon off of the superblock */
3136 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
3137 if (tlink == NULL) {
3138 rc = -ENOMEM;
3139 goto mount_fail_check;
3140 }
3141
b647c35f 3142 tlink->tl_uid = pSesInfo->linux_uid;
9d002df4
JL		 3143 tlink->tl_tcon = tcon;
3144 tlink->tl_time = jiffies;
3145 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
3146 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3147
b647c35f 3148 cifs_sb->master_tlink = tlink;
9d002df4 3149 spin_lock(&cifs_sb->tlink_tree_lock);
b647c35f 3150 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
9d002df4 3151 spin_unlock(&cifs_sb->tlink_tree_lock);
413e661c 3152
2de970ff
JL		 3153 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3154 TLINK_IDLE_EXPIRE);
3155
1bfe73c2
IM		 3156mount_fail_check:
3157 /* on error free sesinfo and tcon struct if needed */
3158 if (rc) {
1bfe73c2 3159 /* If find_unc succeeded then rc == 0 so we can not end */
25985edc 3160 /* up accidentally freeing someone elses tcon struct */
1bfe73c2
IM		 3161 if (tcon)
3162 cifs_put_tcon(tcon);
3163 else if (pSesInfo)
3164 cifs_put_smb_ses(pSesInfo);
3165 else
3166 cifs_put_tcp_session(srvTcp);
3167 goto out;
3168 }
3169
7586b765 3170 /* volume_info->password is freed above when existing session found
1da177e4
LT		 3171 (in which case it is not needed anymore) but when new sesion is created
3172 the password ptr is put in the new session structure (in which case the
3173 password will be freed at unmount time) */
70fe7dc0
JL		 3174out:
3175 /* zero out password before freeing */
1da177e4
LT		 3176 FreeXid(xid);
3177 return rc;
3178}
3179
1da177e4
LT		 3180int
3181CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
3182 const char *tree, struct cifsTconInfo *tcon,
3183 const struct nls_table *nls_codepage)
3184{
3185 struct smb_hdr *smb_buffer;
3186 struct smb_hdr *smb_buffer_response;
3187 TCONX_REQ *pSMB;
3188 TCONX_RSP *pSMBr;
3189 unsigned char *bcc_ptr;
3190 int rc = 0;
690c522f
JL		 3191 int length;
3192 __u16 bytes_left, count;
1da177e4
LT		 3193
3194 if (ses == NULL)
3195 return -EIO;
3196
3197 smb_buffer = cifs_buf_get();
ca43e3be 3198 if (smb_buffer == NULL)
1da177e4 3199 return -ENOMEM;
ca43e3be 3200
1da177e4
LT		 3201 smb_buffer_response = smb_buffer;
3202
3203 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
3204 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 3205
3206 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 3207 smb_buffer->Uid = ses->Suid;
3208 pSMB = (TCONX_REQ *) smb_buffer;
3209 pSMBr = (TCONX_RSP *) smb_buffer_response;
3210
3211 pSMB->AndXCommand = 0xFF;
3212 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 3213 bcc_ptr = &pSMB->Password[0];
fb8c4b14 3214 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 3215 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 3216 *bcc_ptr = 0; /* password is null byte */
eeac8047 3217 bcc_ptr++; /* skip password */
7c7b25bc 3218 /* already aligned so no need to do it below */
eeac8047 3219 } else {
540b2e37 3220 pSMB->PasswordLength = cpu_to_le16(CIFS_AUTH_RESP_SIZE);
eeac8047
SF		 3221 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
3222 specified as required (when that support is added to
3223 the vfs in the future) as only NTLM or the much
7c7b25bc 3224 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 3225 by Samba (not sure whether other servers allow
3226 NTLMv2 password here) */
7c7b25bc 3227#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 3228 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0 3229 (ses->server->secType == LANMAN))
d3ba50b1 3230 calc_lanman_hash(tcon->password, ses->server->cryptkey,
4e53a3fb
JL		 3231 ses->server->secMode &
3232 SECMODE_PW_ENCRYPT ? true : false,
3233 bcc_ptr);
7c7b25bc
SF		 3234 else
3235#endif /* CIFS_WEAK_PW_HASH */
ee2c9258
SP		 3236 rc = SMBNTencrypt(tcon->password, ses->server->cryptkey,
3237 bcc_ptr);
eeac8047 3238
540b2e37 3239 bcc_ptr += CIFS_AUTH_RESP_SIZE;
fb8c4b14 3240 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 3241 /* must align unicode strings */
3242 *bcc_ptr = 0; /* null byte password */
3243 bcc_ptr++;
3244 }
eeac8047 3245 }
1da177e4 3246
50c2f753 3247 if (ses->server->secMode &
a878fb22 3248 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 3249 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3250
3251 if (ses->capabilities & CAP_STATUS32) {
3252 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3253 }
3254 if (ses->capabilities & CAP_DFS) {
3255 smb_buffer->Flags2 |= SMBFLG2_DFS;
3256 }
3257 if (ses->capabilities & CAP_UNICODE) {
3258 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3259 length =
50c2f753
SF		 3260 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3261 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 3262 (/* server len*/ + 256 /* share len */), nls_codepage);
3263 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 3264 bcc_ptr += 2; /* skip trailing null */
3265 } else { /* ASCII */
1da177e4
LT		 3266 strcpy(bcc_ptr, tree);
3267 bcc_ptr += strlen(tree) + 1;
3268 }
3269 strcpy(bcc_ptr, "?????");
3270 bcc_ptr += strlen("?????");
3271 bcc_ptr += 1;
3272 count = bcc_ptr - &pSMB->Password[0];
be8e3b00
SF		 3273 pSMB->hdr.smb_buf_length = cpu_to_be32(be32_to_cpu(
3274 pSMB->hdr.smb_buf_length) + count);
1da177e4
LT		 3275 pSMB->ByteCount = cpu_to_le16(count);
3276
133672ef 3277 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
7749981e 3278 0);
1da177e4 3279
1da177e4
LT		 3280 /* above now done in SendReceive */
3281 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 3282 bool is_unicode;
3283
1da177e4 3284 tcon->tidStatus = CifsGood;
3b795210 3285 tcon->need_reconnect = false;
1da177e4
LT		 3286 tcon->tid = smb_buffer_response->Tid;
3287 bcc_ptr = pByteArea(smb_buffer_response);
690c522f 3288 bytes_left = get_bcc(smb_buffer_response);
cc20c031 3289 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 3290 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3291 is_unicode = true;
3292 else
3293 is_unicode = false;
3294
cc20c031 3295
50c2f753 3296 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 3297 if (length == 3) {
3298 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3299 (bcc_ptr[2] == 'C')) {
b6b38f70 3300 cFYI(1, "IPC connection");
7f8ed420
SF		 3301 tcon->ipc = 1;
3302 }
3303 } else if (length == 2) {
3304 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3305 /* the most common case */
b6b38f70 3306 cFYI(1, "disk share connection");
7f8ed420
SF		 3307 }
3308 }
50c2f753 3309 bcc_ptr += length + 1;
cc20c031 3310 bytes_left -= (length + 1);
1da177e4 3311 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 3312
3313 /* mostly informational -- no need to fail on error here */
90a98b2f 3314 kfree(tcon->nativeFileSystem);
d185cda7 3315 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 3316 bytes_left, is_unicode,
cc20c031
JL		 3317 nls_codepage);
3318
b6b38f70 3319 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 3320
fb8c4b14 3321 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 3322 (smb_buffer_response->WordCount == 7))
3323 /* field is in same location */
3979877e
SF		 3324 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3325 else
3326 tcon->Flags = 0;
b6b38f70 3327 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 3328 } else if ((rc == 0) && tcon == NULL) {
50c2f753 3329 /* all we need to save for IPC$ connection */
1da177e4
LT		 3330 ses->ipc_tid = smb_buffer_response->Tid;
3331 }
3332
a8a11d39 3333 cifs_buf_release(smb_buffer);
1da177e4
LT		 3334 return rc;
3335}
3336
3337int
3338cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
3339{
b647c35f
JL		 3340 struct rb_root *root = &cifs_sb->tlink_tree;
3341 struct rb_node *node;
3342 struct tcon_link *tlink;
50c2f753 3343 char *tmp;
9d002df4 3344
2de970ff
JL		 3345 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3346
b647c35f
JL		 3347 spin_lock(&cifs_sb->tlink_tree_lock);
3348 while ((node = rb_first(root))) {
3349 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3350 cifs_get_tlink(tlink);
3351 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3352 rb_erase(node, root);
1da177e4 3353
b647c35f
JL		 3354 spin_unlock(&cifs_sb->tlink_tree_lock);
3355 cifs_put_tlink(tlink);
3356 spin_lock(&cifs_sb->tlink_tree_lock);
3357 }
3358 spin_unlock(&cifs_sb->tlink_tree_lock);
50c2f753 3359
2fe87f02
SF		 3360 tmp = cifs_sb->prepath;
3361 cifs_sb->prepathlen = 0;
3362 cifs_sb->prepath = NULL;
3363 kfree(tmp);
1da177e4 3364
9d002df4 3365 return 0;
50c2f753 3366}
1da177e4 3367
198b5682 3368int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 3369{
3370 int rc = 0;
198b5682 3371 struct TCP_Server_Info *server = ses->server;
1da177e4 3372
198b5682
JL		 3373 /* only send once per connect */
3374 if (server->maxBuf != 0)
3375 return 0;
3376
3377 rc = CIFSSMBNegotiate(xid, ses);
3378 if (rc == -EAGAIN) {
3379 /* retry only once on 1st time connection */
3380 rc = CIFSSMBNegotiate(xid, ses);
3381 if (rc == -EAGAIN)
3382 rc = -EHOSTDOWN;
1da177e4 3383 }
198b5682
JL		 3384 if (rc == 0) {
3385 spin_lock(&GlobalMid_Lock);
3386 if (server->tcpStatus != CifsExiting)
3387 server->tcpStatus = CifsGood;
3388 else
3389 rc = -EHOSTDOWN;
3390 spin_unlock(&GlobalMid_Lock);
26b994fa 3391
198b5682
JL		 3392 }
3393
3394 return rc;
3395}
3396
3397
3398int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
3399 struct nls_table *nls_info)
3400{
3401 int rc = 0;
3402 struct TCP_Server_Info *server = ses->server;
26b994fa 3403
198b5682
JL		 3404 ses->flags = 0;
3405 ses->capabilities = server->capabilities;
26b994fa 3406 if (linuxExtEnabled == 0)
198b5682 3407 ses->capabilities &= (~CAP_UNIX);
20418acd 3408
b6b38f70
JP		 3409 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3410 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 3411
198b5682 3412 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 3413 if (rc) {
b6b38f70 3414 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 3415 } else {
5d0d2882
SP		 3416 mutex_lock(&ses->server->srv_mutex);
3417 if (!server->session_estab) {
21e73393 3418 server->session_key.response = ses->auth_key.response;
5d0d2882 3419 server->session_key.len = ses->auth_key.len;
21e73393
SP		 3420 server->sequence_number = 0x2;
3421 server->session_estab = true;
3422 ses->auth_key.response = NULL;
5d0d2882
SP		 3423 }
3424 mutex_unlock(&server->srv_mutex);
3425
b6b38f70 3426 cFYI(1, "CIFS Session Established successfully");
20418acd 3427 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3428 ses->status = CifsGood;
3429 ses->need_reconnect = false;
20418acd 3430 spin_unlock(&GlobalMid_Lock);
1da177e4 3431 }
26b994fa 3432
21e73393
SP		 3433 kfree(ses->auth_key.response);
3434 ses->auth_key.response = NULL;
3435 ses->auth_key.len = 0;
d3686d54
SP		 3436 kfree(ses->ntlmssp);
3437 ses->ntlmssp = NULL;
21e73393 3438
1da177e4
LT		 3439 return rc;
3440}
3441
d2445556 3442static struct cifsTconInfo *
9d002df4
JL		 3443cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3444{
3445 struct cifsTconInfo *master_tcon = cifs_sb_master_tcon(cifs_sb);
3446 struct cifsSesInfo *ses;
3447 struct cifsTconInfo *tcon = NULL;
3448 struct smb_vol *vol_info;
34c87901
SF		 3449 char username[28]; /* big enough for "krb50x" + hex of ULONG_MAX 6+16 */
3450 /* We used to have this as MAX_USERNAME which is */
3451 /* way too big now (256 instead of 32) */
9d002df4
JL		 3452
3453 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3454 if (vol_info == NULL) {
3455 tcon = ERR_PTR(-ENOMEM);
3456 goto out;
3457 }
3458
3459 snprintf(username, MAX_USERNAME_SIZE, "krb50x%x", fsuid);
3460 vol_info->username = username;
3461 vol_info->local_nls = cifs_sb->local_nls;
3462 vol_info->linux_uid = fsuid;
3463 vol_info->cred_uid = fsuid;
3464 vol_info->UNC = master_tcon->treeName;
3465 vol_info->retry = master_tcon->retry;
3466 vol_info->nocase = master_tcon->nocase;
3467 vol_info->local_lease = master_tcon->local_lease;
3468 vol_info->no_linux_ext = !master_tcon->unix_ext;
3469
3470 /* FIXME: allow for other secFlg settings */
3471 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3472
3473 /* get a reference for the same TCP session */
3f9bcca7 3474 spin_lock(&cifs_tcp_ses_lock);
9d002df4 3475 ++master_tcon->ses->server->srv_count;
3f9bcca7 3476 spin_unlock(&cifs_tcp_ses_lock);
9d002df4
JL		 3477
3478 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3479 if (IS_ERR(ses)) {
3480 tcon = (struct cifsTconInfo *)ses;
3481 cifs_put_tcp_session(master_tcon->ses->server);
3482 goto out;
3483 }
3484
3485 tcon = cifs_get_tcon(ses, vol_info);
3486 if (IS_ERR(tcon)) {
3487 cifs_put_smb_ses(ses);
3488 goto out;
3489 }
3490
3491 if (ses->capabilities & CAP_UNIX)
3492 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3493out:
3494 kfree(vol_info);
3495
3496 return tcon;
3497}
3498
413e661c 3499static inline struct tcon_link *
9d002df4
JL		 3500cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
3501{
413e661c 3502 return cifs_sb->master_tlink;
9d002df4
JL		 3503}
3504
3505struct cifsTconInfo *
3506cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3507{
3508 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3509}
3510
3511static int
3512cifs_sb_tcon_pending_wait(void *unused)
3513{
3514 schedule();
3515 return signal_pending(current) ? -ERESTARTSYS : 0;
3516}
3517
b647c35f
JL		 3518/* find and return a tlink with given uid */
3519static struct tcon_link *
3520tlink_rb_search(struct rb_root *root, uid_t uid)
3521{
3522 struct rb_node *node = root->rb_node;
3523 struct tcon_link *tlink;
3524
3525 while (node) {
3526 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3527
3528 if (tlink->tl_uid > uid)
3529 node = node->rb_left;
3530 else if (tlink->tl_uid < uid)
3531 node = node->rb_right;
3532 else
3533 return tlink;
3534 }
3535 return NULL;
3536}
3537
3538/* insert a tcon_link into the tree */
3539static void
3540tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
3541{
3542 struct rb_node **new = &(root->rb_node), *parent = NULL;
3543 struct tcon_link *tlink;
3544
3545 while (*new) {
3546 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
3547 parent = *new;
3548
3549 if (tlink->tl_uid > new_tlink->tl_uid)
3550 new = &((*new)->rb_left);
3551 else
3552 new = &((*new)->rb_right);
3553 }
3554
3555 rb_link_node(&new_tlink->tl_rbnode, parent, new);
3556 rb_insert_color(&new_tlink->tl_rbnode, root);
3557}
3558
9d002df4
JL		 3559/*
3560 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3561 * current task.
3562 *
3563 * If the superblock doesn't refer to a multiuser mount, then just return
3564 * the master tcon for the mount.
3565 *
6ef933a3 3566 * First, search the rbtree for an existing tcon for this fsuid. If one
9d002df4
JL		 3567 * exists, then check to see if it's pending construction. If it is then wait
3568 * for construction to complete. Once it's no longer pending, check to see if
3569 * it failed and either return an error or retry construction, depending on
3570 * the timeout.
3571 *
3572 * If one doesn't exist then insert a new tcon_link struct into the tree and
3573 * try to construct a new one.
3574 */
3575struct tcon_link *
3576cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3577{
3578 int ret;
b647c35f 3579 uid_t fsuid = current_fsuid();
9d002df4
JL		 3580 struct tcon_link *tlink, *newtlink;
3581
3582 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3583 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3584
3585 spin_lock(&cifs_sb->tlink_tree_lock);
b647c35f 3586 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
9d002df4
JL		 3587 if (tlink)
3588 cifs_get_tlink(tlink);
3589 spin_unlock(&cifs_sb->tlink_tree_lock);
3590
3591 if (tlink == NULL) {
3592 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3593 if (newtlink == NULL)
3594 return ERR_PTR(-ENOMEM);
b647c35f 3595 newtlink->tl_uid = fsuid;
9d002df4
JL		 3596 newtlink->tl_tcon = ERR_PTR(-EACCES);
3597 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3598 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3599 cifs_get_tlink(newtlink);
3600
9d002df4
JL		 3601 spin_lock(&cifs_sb->tlink_tree_lock);
3602 /* was one inserted after previous search? */
b647c35f 3603 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
9d002df4
JL		 3604 if (tlink) {
3605 cifs_get_tlink(tlink);
3606 spin_unlock(&cifs_sb->tlink_tree_lock);
9d002df4
JL		 3607 kfree(newtlink);
3608 goto wait_for_construction;
3609 }
9d002df4 3610 tlink = newtlink;
b647c35f
JL		 3611 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3612 spin_unlock(&cifs_sb->tlink_tree_lock);
9d002df4
JL		 3613 } else {
3614wait_for_construction:
3615 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3616 cifs_sb_tcon_pending_wait,
3617 TASK_INTERRUPTIBLE);
3618 if (ret) {
3619 cifs_put_tlink(tlink);
3620 return ERR_PTR(ret);
3621 }
3622
3623 /* if it's good, return it */
3624 if (!IS_ERR(tlink->tl_tcon))
3625 return tlink;
3626
3627 /* return error if we tried this already recently */
3628 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3629 cifs_put_tlink(tlink);
3630 return ERR_PTR(-EACCES);
3631 }
3632
3633 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3634 goto wait_for_construction;
3635 }
3636
3637 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3638 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3639 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3640
3641 if (IS_ERR(tlink->tl_tcon)) {
3642 cifs_put_tlink(tlink);
3643 return ERR_PTR(-EACCES);
3644 }
3645
3646 return tlink;
3647}
2de970ff
JL		 3648
3649/*
3650 * periodic workqueue job that scans tcon_tree for a superblock and closes
3651 * out tcons.
3652 */
3653static void
3654cifs_prune_tlinks(struct work_struct *work)
3655{
3656 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3657 prune_tlinks.work);
b647c35f
JL		 3658 struct rb_root *root = &cifs_sb->tlink_tree;
3659 struct rb_node *node = rb_first(root);
3660 struct rb_node *tmp;
3661 struct tcon_link *tlink;
2de970ff 3662
b647c35f
JL		 3663 /*
3664 * Because we drop the spinlock in the loop in order to put the tlink
3665 * it's not guarded against removal of links from the tree. The only
3666 * places that remove entries from the tree are this function and
3667 * umounts. Because this function is non-reentrant and is canceled
3668 * before umount can proceed, this is safe.
3669 */
3670 spin_lock(&cifs_sb->tlink_tree_lock);
3671 node = rb_first(root);
3672 while (node != NULL) {
3673 tmp = node;
3674 node = rb_next(tmp);
3675 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
3676
3677 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
3678 atomic_read(&tlink->tl_count) != 0 ||
3679 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
3680 continue;
2de970ff 3681
b647c35f
JL		 3682 cifs_get_tlink(tlink);
3683 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3684 rb_erase(tmp, root);
3685
3686 spin_unlock(&cifs_sb->tlink_tree_lock);
3687 cifs_put_tlink(tlink);
3688 spin_lock(&cifs_sb->tlink_tree_lock);
3689 }
3690 spin_unlock(&cifs_sb->tlink_tree_lock);
2de970ff
JL		 3691
3692 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3693 TLINK_IDLE_EXPIRE);
3694}
Linux kernel - Deliverables
This page took 0.847656 seconds and 5 git commands to generate.