projects / deliverable / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
keys: add a "logon" key type
[deliverable/linux.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
143cb494 40#include <linux/module.h>
0e2bedaa 41#include <net/ipv6.h>
1da177e4
LT		 42#include "cifspdu.h"
43#include "cifsglob.h"
44#include "cifsproto.h"
45#include "cifs_unicode.h"
46#include "cifs_debug.h"
47#include "cifs_fs_sb.h"
48#include "ntlmssp.h"
49#include "nterr.h"
50#include "rfc1002pdu.h"
488f1d2d 51#include "fscache.h"
1da177e4
LT		 52
53#define CIFS_PORT 445
54#define RFC1001_PORT 139
55
c74093b6
JL		 56/* SMB echo "timeout" -- FIXME: tunable? */
57#define SMB_ECHO_INTERVAL (60 * HZ)
58
1da177e4
LT		 59extern mempool_t *cifs_req_poolp;
60
2de970ff 61/* FIXME: should these be tunable? */
9d002df4 62#define TLINK_ERROR_EXPIRE (1 * HZ)
2de970ff 63#define TLINK_IDLE_EXPIRE (600 * HZ)
9d002df4 64
a9f1b85e
PS		 65static int ip_connect(struct TCP_Server_Info *server);
66static int generic_ip_connect(struct TCP_Server_Info *server);
b647c35f 67static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
2de970ff 68static void cifs_prune_tlinks(struct work_struct *work);
b9bce2e9
JL		 69static int cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
70 const char *devname);
1da177e4 71
d5c5605c
JL		 72/*
73 * cifs tcp session reconnection
74 *
75 * mark tcp session as reconnecting so temporarily locked
76 * mark all smb sessions as reconnecting for tcp session
77 * reconnect tcp session
78 * wake up waiters on reconnection? - (not needed currently)
79 */
2cd646a2 80static int
1da177e4
LT		 81cifs_reconnect(struct TCP_Server_Info *server)
82{
83 int rc = 0;
f1987b44 84 struct list_head *tmp, *tmp2;
96daf2b0
SF		 85 struct cifs_ses *ses;
86 struct cifs_tcon *tcon;
fb8c4b14 87 struct mid_q_entry *mid_entry;
3c1105df 88 struct list_head retry_list;
50c2f753 89
1da177e4 90 spin_lock(&GlobalMid_Lock);
469ee614 91 if (server->tcpStatus == CifsExiting) {
fb8c4b14 92 /* the demux thread will exit normally
1da177e4
LT		 93 next time through the loop */
94 spin_unlock(&GlobalMid_Lock);
95 return rc;
96 } else
97 server->tcpStatus = CifsNeedReconnect;
98 spin_unlock(&GlobalMid_Lock);
99 server->maxBuf = 0;
100
b6b38f70 101 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 102
103 /* before reconnecting the tcp session, mark the smb session (uid)
104 and the tid bad so they are not used until reconnected */
2b84a36c 105 cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
3f9bcca7 106 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 107 list_for_each(tmp, &server->smb_ses_list) {
96daf2b0 108 ses = list_entry(tmp, struct cifs_ses, smb_ses_list);
14fbf50d
JL		 109 ses->need_reconnect = true;
110 ses->ipc_tid = 0;
f1987b44 111 list_for_each(tmp2, &ses->tcon_list) {
96daf2b0 112 tcon = list_entry(tmp2, struct cifs_tcon, tcon_list);
3b795210 113 tcon->need_reconnect = true;
1da177e4 114 }
1da177e4 115 }
3f9bcca7 116 spin_unlock(&cifs_tcp_ses_lock);
2b84a36c 117
1da177e4 118 /* do not want to be sending data on a socket we are freeing */
2b84a36c 119 cFYI(1, "%s: tearing down socket", __func__);
72ca545b 120 mutex_lock(&server->srv_mutex);
fb8c4b14 121 if (server->ssocket) {
b6b38f70
JP		 122 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
123 server->ssocket->flags);
91cf45f0 124 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 125 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 126 server->ssocket->state,
b6b38f70 127 server->ssocket->flags);
1da177e4
LT		 128 sock_release(server->ssocket);
129 server->ssocket = NULL;
130 }
5d0d2882
SP		 131 server->sequence_number = 0;
132 server->session_estab = false;
21e73393
SP		 133 kfree(server->session_key.response);
134 server->session_key.response = NULL;
135 server->session_key.len = 0;
fda35943 136 server->lstrp = jiffies;
2b84a36c 137 mutex_unlock(&server->srv_mutex);
1da177e4 138
2b84a36c 139 /* mark submitted MIDs for retry and issue callback */
3c1105df
JL		 140 INIT_LIST_HEAD(&retry_list);
141 cFYI(1, "%s: moving mids to private list", __func__);
1da177e4 142 spin_lock(&GlobalMid_Lock);
2b84a36c
JL		 143 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
144 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
145 if (mid_entry->midState == MID_REQUEST_SUBMITTED)
ad8b15f0 146 mid_entry->midState = MID_RETRY_NEEDED;
3c1105df
JL		 147 list_move(&mid_entry->qhead, &retry_list);
148 }
149 spin_unlock(&GlobalMid_Lock);
150
151 cFYI(1, "%s: issuing mid callbacks", __func__);
152 list_for_each_safe(tmp, tmp2, &retry_list) {
153 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
2b84a36c
JL		 154 list_del_init(&mid_entry->qhead);
155 mid_entry->callback(mid_entry);
1da177e4 156 }
1da177e4 157
7fdbaa1b 158 do {
6c3d8909 159 try_to_freeze();
a9f1b85e
PS		 160
161 /* we should try only the port we connected to before */
162 rc = generic_ip_connect(server);
fb8c4b14 163 if (rc) {
b6b38f70 164 cFYI(1, "reconnect error %d", rc);
0cb766ae 165 msleep(3000);
1da177e4
LT		 166 } else {
167 atomic_inc(&tcpSesReconnectCount);
168 spin_lock(&GlobalMid_Lock);
469ee614 169 if (server->tcpStatus != CifsExiting)
fd88ce93 170 server->tcpStatus = CifsNeedNegotiate;
fb8c4b14 171 spin_unlock(&GlobalMid_Lock);
1da177e4 172 }
7fdbaa1b 173 } while (server->tcpStatus == CifsNeedReconnect);
2b84a36c 174
1da177e4
LT		 175 return rc;
176}
177
fb8c4b14 178/*
e4eb295d
SF		 179 return codes:
180 0 not a transact2, or all data present
181 >0 transact2 with that much data missing
182 -EINVAL = invalid transact2
183
184 */
c974befa 185static int check2ndT2(struct smb_hdr *pSMB)
e4eb295d 186{
fb8c4b14 187 struct smb_t2_rsp *pSMBt;
e4eb295d 188 int remaining;
26ec2548 189 __u16 total_data_size, data_in_this_rsp;
e4eb295d 190
fb8c4b14 191 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 192 return 0;
193
fb8c4b14
SF		 194 /* check for plausible wct, bcc and t2 data and parm sizes */
195 /* check for parm and data offset going beyond end of smb */
196 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 197 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 198 return -EINVAL;
199 }
200
201 pSMBt = (struct smb_t2_rsp *)pSMB;
202
26ec2548
JL		 203 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
204 data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
e4eb295d 205
c0c7b905 206 if (total_data_size == data_in_this_rsp)
e4eb295d 207 return 0;
c0c7b905 208 else if (total_data_size < data_in_this_rsp) {
b6b38f70
JP		 209 cFYI(1, "total data %d smaller than data in frame %d",
210 total_data_size, data_in_this_rsp);
e4eb295d 211 return -EINVAL;
e4eb295d 212 }
c0c7b905
JL		 213
214 remaining = total_data_size - data_in_this_rsp;
215
216 cFYI(1, "missing %d bytes from transact2, check next response",
217 remaining);
c974befa 218 if (total_data_size > CIFSMaxBufSize) {
c0c7b905 219 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
c974befa 220 total_data_size, CIFSMaxBufSize);
c0c7b905
JL		 221 return -EINVAL;
222 }
223 return remaining;
e4eb295d
SF		 224}
225
fb8c4b14 226static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d 227{
f5fffcee 228 struct smb_t2_rsp *pSMBs = (struct smb_t2_rsp *)psecond;
e4eb295d 229 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
f5fffcee
JL		 230 char *data_area_of_tgt;
231 char *data_area_of_src;
26ec2548 232 int remaining;
f5fffcee
JL		 233 unsigned int byte_count, total_in_tgt;
234 __u16 tgt_total_cnt, src_total_cnt, total_in_src;
e4eb295d 235
f5fffcee
JL		 236 src_total_cnt = get_unaligned_le16(&pSMBs->t2_rsp.TotalDataCount);
237 tgt_total_cnt = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
e4eb295d 238
f5fffcee
JL		 239 if (tgt_total_cnt != src_total_cnt)
240 cFYI(1, "total data count of primary and secondary t2 differ "
241 "source=%hu target=%hu", src_total_cnt, tgt_total_cnt);
e4eb295d 242
f5fffcee 243 total_in_tgt = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
e4eb295d 244
f5fffcee 245 remaining = tgt_total_cnt - total_in_tgt;
50c2f753 246
f5fffcee
JL		 247 if (remaining < 0) {
248 cFYI(1, "Server sent too much data. tgt_total_cnt=%hu "
249 "total_in_tgt=%hu", tgt_total_cnt, total_in_tgt);
2a2047bc 250 return -EPROTO;
f5fffcee 251 }
e4eb295d 252
f5fffcee
JL		 253 if (remaining == 0) {
254 /* nothing to do, ignore */
255 cFYI(1, "no more data remains");
e4eb295d 256 return 0;
f5fffcee 257 }
50c2f753 258
f5fffcee
JL		 259 total_in_src = get_unaligned_le16(&pSMBs->t2_rsp.DataCount);
260 if (remaining < total_in_src)
b6b38f70 261 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 262
263 /* find end of first SMB data area */
f5fffcee 264 data_area_of_tgt = (char *)&pSMBt->hdr.Protocol +
26ec2548 265 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
e4eb295d 266
f5fffcee
JL		 267 /* validate target area */
268 data_area_of_src = (char *)&pSMBs->hdr.Protocol +
269 get_unaligned_le16(&pSMBs->t2_rsp.DataOffset);
e4eb295d 270
f5fffcee 271 data_area_of_tgt += total_in_tgt;
e4eb295d 272
f5fffcee 273 total_in_tgt += total_in_src;
2a2047bc 274 /* is the result too big for the field? */
f5fffcee
JL		 275 if (total_in_tgt > USHRT_MAX) {
276 cFYI(1, "coalesced DataCount too large (%u)", total_in_tgt);
2a2047bc 277 return -EPROTO;
f5fffcee
JL		 278 }
279 put_unaligned_le16(total_in_tgt, &pSMBt->t2_rsp.DataCount);
2a2047bc
JL		 280
281 /* fix up the BCC */
820a803f 282 byte_count = get_bcc(pTargetSMB);
f5fffcee 283 byte_count += total_in_src;
2a2047bc 284 /* is the result too big for the field? */
f5fffcee
JL		 285 if (byte_count > USHRT_MAX) {
286 cFYI(1, "coalesced BCC too large (%u)", byte_count);
2a2047bc 287 return -EPROTO;
f5fffcee 288 }
820a803f 289 put_bcc(byte_count, pTargetSMB);
e4eb295d 290
be8e3b00 291 byte_count = be32_to_cpu(pTargetSMB->smb_buf_length);
f5fffcee 292 byte_count += total_in_src;
2a2047bc 293 /* don't allow buffer to overflow */
f5fffcee
JL		 294 if (byte_count > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
295 cFYI(1, "coalesced BCC exceeds buffer size (%u)", byte_count);
2a2047bc 296 return -ENOBUFS;
f5fffcee 297 }
be8e3b00 298 pTargetSMB->smb_buf_length = cpu_to_be32(byte_count);
e4eb295d 299
f5fffcee
JL		 300 /* copy second buffer into end of first buffer */
301 memcpy(data_area_of_tgt, data_area_of_src, total_in_src);
2a2047bc 302
f5fffcee
JL		 303 if (remaining != total_in_src) {
304 /* more responses to go */
305 cFYI(1, "waiting for more secondary responses");
e4eb295d 306 return 1;
f5fffcee
JL		 307 }
308
309 /* we are done */
310 cFYI(1, "found the last secondary response");
311 return 0;
e4eb295d
SF		 312}
313
c74093b6
JL		 314static void
315cifs_echo_request(struct work_struct *work)
316{
317 int rc;
318 struct TCP_Server_Info *server = container_of(work,
319 struct TCP_Server_Info, echo.work);
320
247ec9b4 321 /*
195291e6
JL		 322 * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
323 * done, which is indicated by maxBuf != 0. Also, no need to ping if
324 * we got a response recently
247ec9b4 325 */
195291e6 326 if (server->maxBuf == 0 ||
247ec9b4 327 time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
c74093b6
JL		 328 goto requeue_echo;
329
330 rc = CIFSSMBEcho(server);
331 if (rc)
332 cFYI(1, "Unable to send echo request to server: %s",
333 server->hostname);
334
335requeue_echo:
336 queue_delayed_work(system_nrt_wq, &server->echo, SMB_ECHO_INTERVAL);
337}
338
3d9c2472 339static bool
2a37ef94 340allocate_buffers(struct TCP_Server_Info *server)
3d9c2472 341{
2a37ef94
JL		 342 if (!server->bigbuf) {
343 server->bigbuf = (char *)cifs_buf_get();
344 if (!server->bigbuf) {
3d9c2472
PS		 345 cERROR(1, "No memory for large SMB response");
346 msleep(3000);
347 /* retry will check if exiting */
348 return false;
349 }
2a37ef94 350 } else if (server->large_buf) {
3d9c2472 351 /* we are reusing a dirty large buf, clear its start */
2a37ef94 352 memset(server->bigbuf, 0, sizeof(struct smb_hdr));
3d9c2472
PS		 353 }
354
2a37ef94
JL		 355 if (!server->smallbuf) {
356 server->smallbuf = (char *)cifs_small_buf_get();
357 if (!server->smallbuf) {
3d9c2472
PS		 358 cERROR(1, "No memory for SMB response");
359 msleep(1000);
360 /* retry will check if exiting */
361 return false;
362 }
363 /* beginning of smb buffer is cleared in our buf_get */
364 } else {
365 /* if existing small buf clear beginning */
2a37ef94 366 memset(server->smallbuf, 0, sizeof(struct smb_hdr));
3d9c2472
PS		 367 }
368
3d9c2472
PS		 369 return true;
370}
371
ba749e6d
JL		 372static bool
373server_unresponsive(struct TCP_Server_Info *server)
374{
375 if (echo_retries > 0 && server->tcpStatus == CifsGood &&
376 time_after(jiffies, server->lstrp +
377 (echo_retries * SMB_ECHO_INTERVAL))) {
378 cERROR(1, "Server %s has not responded in %d seconds. "
379 "Reconnecting...", server->hostname,
380 (echo_retries * SMB_ECHO_INTERVAL / HZ));
381 cifs_reconnect(server);
382 wake_up(&server->response_q);
383 return true;
384 }
385
386 return false;
387}
388
42c4dfc2
JL		 389/*
390 * kvec_array_init - clone a kvec array, and advance into it
391 * @new: pointer to memory for cloned array
392 * @iov: pointer to original array
393 * @nr_segs: number of members in original array
394 * @bytes: number of bytes to advance into the cloned array
395 *
396 * This function will copy the array provided in iov to a section of memory
397 * and advance the specified number of bytes into the new array. It returns
398 * the number of segments in the new array. "new" must be at least as big as
399 * the original iov array.
400 */
401static unsigned int
402kvec_array_init(struct kvec *new, struct kvec *iov, unsigned int nr_segs,
403 size_t bytes)
404{
405 size_t base = 0;
406
407 while (bytes || !iov->iov_len) {
408 int copy = min(bytes, iov->iov_len);
409
410 bytes -= copy;
411 base += copy;
412 if (iov->iov_len == base) {
413 iov++;
414 nr_segs--;
415 base = 0;
416 }
417 }
418 memcpy(new, iov, sizeof(*iov) * nr_segs);
419 new->iov_base += base;
420 new->iov_len -= base;
421 return nr_segs;
422}
423
1041e3f9
JL		 424static struct kvec *
425get_server_iovec(struct TCP_Server_Info *server, unsigned int nr_segs)
e7015fb1 426{
1041e3f9
JL		 427 struct kvec *new_iov;
428
429 if (server->iov && nr_segs <= server->nr_iov)
430 return server->iov;
431
432 /* not big enough -- allocate a new one and release the old */
433 new_iov = kmalloc(sizeof(*new_iov) * nr_segs, GFP_NOFS);
434 if (new_iov) {
435 kfree(server->iov);
436 server->iov = new_iov;
437 server->nr_iov = nr_segs;
438 }
439 return new_iov;
440}
441
e28bc5b1
JL		 442int
443cifs_readv_from_socket(struct TCP_Server_Info *server, struct kvec *iov_orig,
444 unsigned int nr_segs, unsigned int to_read)
e7015fb1 445{
a52c1eb7
JL		 446 int length = 0;
447 int total_read;
42c4dfc2 448 unsigned int segs;
e831e6cf 449 struct msghdr smb_msg;
42c4dfc2
JL		 450 struct kvec *iov;
451
1041e3f9 452 iov = get_server_iovec(server, nr_segs);
42c4dfc2
JL		 453 if (!iov)
454 return -ENOMEM;
e7015fb1 455
e831e6cf
JL		 456 smb_msg.msg_control = NULL;
457 smb_msg.msg_controllen = 0;
458
a52c1eb7 459 for (total_read = 0; to_read; total_read += length, to_read -= length) {
95edcff4
JL		 460 try_to_freeze();
461
ba749e6d 462 if (server_unresponsive(server)) {
a52c1eb7 463 total_read = -EAGAIN;
ba749e6d
JL		 464 break;
465 }
466
42c4dfc2
JL		 467 segs = kvec_array_init(iov, iov_orig, nr_segs, total_read);
468
469 length = kernel_recvmsg(server->ssocket, &smb_msg,
470 iov, segs, to_read, 0);
e7015fb1 471
e7015fb1 472 if (server->tcpStatus == CifsExiting) {
a52c1eb7 473 total_read = -ESHUTDOWN;
e7015fb1
PS		 474 break;
475 } else if (server->tcpStatus == CifsNeedReconnect) {
476 cifs_reconnect(server);
a52c1eb7 477 total_read = -EAGAIN;
e7015fb1
PS		 478 break;
479 } else if (length == -ERESTARTSYS ||
480 length == -EAGAIN ||
481 length == -EINTR) {
482 /*
483 * Minimum sleep to prevent looping, allowing socket
484 * to clear and app threads to set tcpStatus
485 * CifsNeedReconnect if server hung.
486 */
487 usleep_range(1000, 2000);
488 length = 0;
a52c1eb7 489 continue;
e7015fb1 490 } else if (length <= 0) {
a52c1eb7
JL		 491 cFYI(1, "Received no data or error: expecting %d "
492 "got %d", to_read, length);
e7015fb1 493 cifs_reconnect(server);
a52c1eb7 494 total_read = -EAGAIN;
e7015fb1
PS		 495 break;
496 }
497 }
a52c1eb7 498 return total_read;
e7015fb1 499}
e7015fb1 500
e28bc5b1
JL		 501int
502cifs_read_from_socket(struct TCP_Server_Info *server, char *buf,
503 unsigned int to_read)
42c4dfc2
JL		 504{
505 struct kvec iov;
506
507 iov.iov_base = buf;
508 iov.iov_len = to_read;
509
e28bc5b1 510 return cifs_readv_from_socket(server, &iov, 1, to_read);
e7015fb1
PS		 511}
512
98bac62c 513static bool
fe11e4cc 514is_smb_response(struct TCP_Server_Info *server, unsigned char type)
98bac62c 515{
98bac62c
PS		 516 /*
517 * The first byte big endian of the length field,
518 * is actually not part of the length but the type
519 * with the most common, zero, as regular data.
520 */
fe11e4cc
JL		 521 switch (type) {
522 case RFC1002_SESSION_MESSAGE:
523 /* Regular SMB response */
524 return true;
525 case RFC1002_SESSION_KEEP_ALIVE:
526 cFYI(1, "RFC 1002 session keep alive");
527 break;
528 case RFC1002_POSITIVE_SESSION_RESPONSE:
529 cFYI(1, "RFC 1002 positive session response");
530 break;
531 case RFC1002_NEGATIVE_SESSION_RESPONSE:
98bac62c
PS		 532 /*
533 * We get this from Windows 98 instead of an error on
534 * SMB negprot response.
535 */
fe11e4cc 536 cFYI(1, "RFC 1002 negative session response");
98bac62c
PS		 537 /* give server a second to clean up */
538 msleep(1000);
539 /*
540 * Always try 445 first on reconnect since we get NACK
541 * on some if we ever connected to port 139 (the NACK
542 * is since we do not begin with RFC1001 session
543 * initialize frame).
544 */
fe11e4cc 545 cifs_set_port((struct sockaddr *)&server->dstaddr, CIFS_PORT);
98bac62c
PS		 546 cifs_reconnect(server);
547 wake_up(&server->response_q);
fe11e4cc
JL		 548 break;
549 default:
550 cERROR(1, "RFC 1002 unknown response type 0x%x", type);
98bac62c 551 cifs_reconnect(server);
98bac62c
PS		 552 }
553
fe11e4cc 554 return false;
98bac62c
PS		 555}
556
ad69bae1 557static struct mid_q_entry *
ea1f4502 558find_mid(struct TCP_Server_Info *server, struct smb_hdr *buf)
ad69bae1 559{
ea1f4502 560 struct mid_q_entry *mid;
ad69bae1
PS		 561
562 spin_lock(&GlobalMid_Lock);
ea1f4502
JL		 563 list_for_each_entry(mid, &server->pending_mid_q, qhead) {
564 if (mid->mid == buf->Mid &&
565 mid->midState == MID_REQUEST_SUBMITTED &&
566 mid->command == buf->Command) {
567 spin_unlock(&GlobalMid_Lock);
568 return mid;
ad69bae1 569 }
ea1f4502
JL		 570 }
571 spin_unlock(&GlobalMid_Lock);
572 return NULL;
573}
574
e28bc5b1
JL		 575void
576dequeue_mid(struct mid_q_entry *mid, bool malformed)
ea1f4502 577{
ad69bae1 578#ifdef CONFIG_CIFS_STATS2
ea1f4502 579 mid->when_received = jiffies;
ad69bae1 580#endif
ea1f4502
JL		 581 spin_lock(&GlobalMid_Lock);
582 if (!malformed)
583 mid->midState = MID_RESPONSE_RECEIVED;
584 else
585 mid->midState = MID_RESPONSE_MALFORMED;
586 list_del_init(&mid->qhead);
ad69bae1 587 spin_unlock(&GlobalMid_Lock);
ea1f4502 588}
ad69bae1 589
c8054ebd
JL		 590static void
591handle_mid(struct mid_q_entry *mid, struct TCP_Server_Info *server,
592 struct smb_hdr *buf, int malformed)
ea1f4502 593{
ffc00e27
JL		 594 if (malformed == 0 && check2ndT2(buf) > 0) {
595 mid->multiRsp = true;
ea1f4502
JL		 596 if (mid->resp_buf) {
597 /* merge response - fix up 1st*/
ffc00e27
JL		 598 malformed = coalesce_t2(buf, mid->resp_buf);
599 if (malformed > 0)
c8054ebd 600 return;
ffc00e27 601
ea1f4502
JL		 602 /* All parts received or packet is malformed. */
603 mid->multiEnd = true;
c8054ebd 604 return dequeue_mid(mid, malformed);
ea1f4502 605 }
2a37ef94 606 if (!server->large_buf) {
ea1f4502
JL		 607 /*FIXME: switch to already allocated largebuf?*/
608 cERROR(1, "1st trans2 resp needs bigbuf");
609 } else {
610 /* Have first buffer */
611 mid->resp_buf = buf;
612 mid->largeBuf = true;
2a37ef94 613 server->bigbuf = NULL;
ea1f4502 614 }
c8054ebd 615 return;
ea1f4502
JL		 616 }
617 mid->resp_buf = buf;
2a37ef94
JL		 618 mid->largeBuf = server->large_buf;
619 /* Was previous buf put in mpx struct for multi-rsp? */
620 if (!mid->multiRsp) {
621 /* smb buffer will be freed by user thread */
622 if (server->large_buf)
623 server->bigbuf = NULL;
624 else
625 server->smallbuf = NULL;
626 }
ffc00e27 627 dequeue_mid(mid, malformed);
ad69bae1
PS		 628}
629
762dfd10
PS		 630static void clean_demultiplex_info(struct TCP_Server_Info *server)
631{
632 int length;
633
634 /* take it off the list, if it's not already */
635 spin_lock(&cifs_tcp_ses_lock);
636 list_del_init(&server->tcp_ses_list);
637 spin_unlock(&cifs_tcp_ses_lock);
638
639 spin_lock(&GlobalMid_Lock);
640 server->tcpStatus = CifsExiting;
641 spin_unlock(&GlobalMid_Lock);
642 wake_up_all(&server->response_q);
643
644 /*
645 * Check if we have blocked requests that need to free. Note that
646 * cifs_max_pending is normally 50, but can be set at module install
647 * time to as little as two.
648 */
649 spin_lock(&GlobalMid_Lock);
650 if (atomic_read(&server->inFlight) >= cifs_max_pending)
651 atomic_set(&server->inFlight, cifs_max_pending - 1);
652 /*
653 * We do not want to set the max_pending too low or we could end up
654 * with the counter going negative.
655 */
656 spin_unlock(&GlobalMid_Lock);
657 /*
658 * Although there should not be any requests blocked on this queue it
659 * can not hurt to be paranoid and try to wake up requests that may
660 * haven been blocked when more than 50 at time were on the wire to the
661 * same server - they now will see the session is in exit state and get
662 * out of SendReceive.
663 */
664 wake_up_all(&server->request_q);
665 /* give those requests time to exit */
666 msleep(125);
667
668 if (server->ssocket) {
669 sock_release(server->ssocket);
670 server->ssocket = NULL;
671 }
672
673 if (!list_empty(&server->pending_mid_q)) {
674 struct list_head dispose_list;
675 struct mid_q_entry *mid_entry;
676 struct list_head *tmp, *tmp2;
677
678 INIT_LIST_HEAD(&dispose_list);
679 spin_lock(&GlobalMid_Lock);
680 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
681 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
682 cFYI(1, "Clearing mid 0x%x", mid_entry->mid);
683 mid_entry->midState = MID_SHUTDOWN;
684 list_move(&mid_entry->qhead, &dispose_list);
685 }
686 spin_unlock(&GlobalMid_Lock);
687
688 /* now walk dispose list and issue callbacks */
689 list_for_each_safe(tmp, tmp2, &dispose_list) {
690 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
691 cFYI(1, "Callback mid 0x%x", mid_entry->mid);
692 list_del_init(&mid_entry->qhead);
693 mid_entry->callback(mid_entry);
694 }
695 /* 1/8th of sec is more than enough time for them to exit */
696 msleep(125);
697 }
698
699 if (!list_empty(&server->pending_mid_q)) {
700 /*
701 * mpx threads have not exited yet give them at least the smb
702 * send timeout time for long ops.
703 *
704 * Due to delays on oplock break requests, we need to wait at
705 * least 45 seconds before giving up on a request getting a
706 * response and going ahead and killing cifsd.
707 */
708 cFYI(1, "Wait for exit from demultiplex thread");
709 msleep(46000);
710 /*
711 * If threads still have not exited they are probably never
712 * coming home not much else we can do but free the memory.
713 */
714 }
715
716 kfree(server->hostname);
1041e3f9 717 kfree(server->iov);
762dfd10
PS		 718 kfree(server);
719
720 length = atomic_dec_return(&tcpSesAllocCount);
721 if (length > 0)
722 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
723 GFP_KERNEL);
724}
725
e9097ab4
JL		 726static int
727standard_receive3(struct TCP_Server_Info *server, struct mid_q_entry *mid)
728{
729 int length;
730 char *buf = server->smallbuf;
731 struct smb_hdr *smb_buffer = (struct smb_hdr *)buf;
732 unsigned int pdu_length = be32_to_cpu(smb_buffer->smb_buf_length);
733
734 /* make sure this will fit in a large buffer */
735 if (pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
736 cERROR(1, "SMB response too long (%u bytes)",
737 pdu_length);
738 cifs_reconnect(server);
739 wake_up(&server->response_q);
740 return -EAGAIN;
741 }
742
743 /* switch to large buffer if too big for a small one */
744 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
745 server->large_buf = true;
746 memcpy(server->bigbuf, server->smallbuf, server->total_read);
747 buf = server->bigbuf;
748 smb_buffer = (struct smb_hdr *)buf;
749 }
750
751 /* now read the rest */
e28bc5b1 752 length = cifs_read_from_socket(server,
e9097ab4
JL		 753 buf + sizeof(struct smb_hdr) - 1,
754 pdu_length - sizeof(struct smb_hdr) + 1 + 4);
755 if (length < 0)
756 return length;
757 server->total_read += length;
758
759 dump_smb(smb_buffer, server->total_read);
760
761 /*
762 * We know that we received enough to get to the MID as we
763 * checked the pdu_length earlier. Now check to see
764 * if the rest of the header is OK. We borrow the length
765 * var for the rest of the loop to avoid a new stack var.
766 *
767 * 48 bytes is enough to display the header and a little bit
768 * into the payload for debugging purposes.
769 */
770 length = checkSMB(smb_buffer, smb_buffer->Mid, server->total_read);
771 if (length != 0)
772 cifs_dump_mem("Bad SMB: ", buf,
773 min_t(unsigned int, server->total_read, 48));
774
775 if (mid)
776 handle_mid(mid, server, smb_buffer, length);
777
778 return length;
779}
780
1da177e4 781static int
7c97c200 782cifs_demultiplex_thread(void *p)
1da177e4
LT		 783{
784 int length;
7c97c200 785 struct TCP_Server_Info *server = p;
2a37ef94
JL		 786 unsigned int pdu_length;
787 char *buf = NULL;
1da177e4 788 struct smb_hdr *smb_buffer = NULL;
1da177e4
LT		 789 struct task_struct *task_to_wake = NULL;
790 struct mid_q_entry *mid_entry;
1da177e4 791
1da177e4 792 current->flags |= PF_MEMALLOC;
b6b38f70 793 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 794
795 length = atomic_inc_return(&tcpSesAllocCount);
796 if (length > 1)
26f57364
SF		 797 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
798 GFP_KERNEL);
1da177e4 799
83144186 800 set_freezable();
469ee614 801 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 802 if (try_to_freeze())
803 continue;
b8643e1b 804
2a37ef94 805 if (!allocate_buffers(server))
3d9c2472 806 continue;
b8643e1b 807
2a37ef94
JL		 808 server->large_buf = false;
809 smb_buffer = (struct smb_hdr *)server->smallbuf;
810 buf = server->smallbuf;
f01d5e14 811 pdu_length = 4; /* enough to get RFC1001 header */
fda35943 812
e28bc5b1 813 length = cifs_read_from_socket(server, buf, pdu_length);
a52c1eb7 814 if (length < 0)
1da177e4 815 continue;
2a37ef94 816 server->total_read = length;
1da177e4 817
98bac62c
PS		 818 /*
819 * The right amount was read from socket - 4 bytes,
820 * so we can now interpret the length field.
821 */
be8e3b00 822 pdu_length = be32_to_cpu(smb_buffer->smb_buf_length);
70ca734a 823
fe11e4cc
JL		 824 cFYI(1, "RFC1002 header 0x%x", pdu_length);
825 if (!is_smb_response(server, buf[0]))
fb8c4b14 826 continue;
e4eb295d 827
89482a56
JL		 828 /* make sure we have enough to get to the MID */
829 if (pdu_length < sizeof(struct smb_hdr) - 1 - 4) {
830 cERROR(1, "SMB response too short (%u bytes)",
831 pdu_length);
832 cifs_reconnect(server);
833 wake_up(&server->response_q);
834 continue;
e4eb295d 835 }
e7015fb1 836
89482a56 837 /* read down to the MID */
e28bc5b1
JL		 838 length = cifs_read_from_socket(server, buf + 4,
839 sizeof(struct smb_hdr) - 1 - 4);
89482a56 840 if (length < 0)
e4eb295d 841 continue;
2a37ef94 842 server->total_read += length;
1da177e4 843
c8054ebd 844 mid_entry = find_mid(server, smb_buffer);
50c2f753 845
44d22d84
JL		 846 if (!mid_entry || !mid_entry->receive)
847 length = standard_receive3(server, mid_entry);
848 else
849 length = mid_entry->receive(server, mid_entry);
71823baf 850
e9097ab4 851 if (length < 0)
fe11e4cc 852 continue;
1da177e4 853
e9097ab4 854 if (server->large_buf) {
2a37ef94 855 buf = server->bigbuf;
e9097ab4 856 smb_buffer = (struct smb_hdr *)buf;
e4eb295d 857 }
fda35943 858
fda35943 859 server->lstrp = jiffies;
2b84a36c 860 if (mid_entry != NULL) {
2a37ef94
JL		 861 if (!mid_entry->multiRsp || mid_entry->multiEnd)
862 mid_entry->callback(mid_entry);
ffc00e27 863 } else if (!is_valid_oplock_break(smb_buffer, server)) {
b6b38f70 864 cERROR(1, "No task to wake, unknown frame received! "
8097531a 865 "NumMids %d", atomic_read(&midCount));
3d9c2472 866 cifs_dump_mem("Received Data is: ", buf,
70ca734a 867 sizeof(struct smb_hdr));
3979877e
SF		 868#ifdef CONFIG_CIFS_DEBUG2
869 cifs_dump_detail(smb_buffer);
870 cifs_dump_mids(server);
871#endif /* CIFS_DEBUG2 */
50c2f753 872
e4eb295d
SF		 873 }
874 } /* end while !EXITING */
875
fd62cb7e 876 /* buffer usually freed in free_mid - need to free it here on exit */
2a37ef94
JL		 877 cifs_buf_release(server->bigbuf);
878 if (server->smallbuf) /* no sense logging a debug message if NULL */
879 cifs_small_buf_release(server->smallbuf);
1da177e4 880
b1c8d2b4 881 task_to_wake = xchg(&server->tsk, NULL);
762dfd10 882 clean_demultiplex_info(server);
50c2f753 883
b1c8d2b4
JL		 884 /* if server->tsk was NULL then wait for a signal before exiting */
885 if (!task_to_wake) {
886 set_current_state(TASK_INTERRUPTIBLE);
887 while (!signal_pending(current)) {
888 schedule();
889 set_current_state(TASK_INTERRUPTIBLE);
890 }
891 set_current_state(TASK_RUNNING);
892 }
893
0468a2cf 894 module_put_and_exit(0);
1da177e4
LT		 895}
896
c359cf3c
JL		 897/* extract the host portion of the UNC string */
898static char *
899extract_hostname(const char *unc)
900{
901 const char *src;
902 char *dst, *delim;
903 unsigned int len;
904
905 /* skip double chars at beginning of string */
906 /* BB: check validity of these bytes? */
907 src = unc + 2;
908
909 /* delimiter between hostname and sharename is always '\\' now */
910 delim = strchr(src, '\\');
911 if (!delim)
912 return ERR_PTR(-EINVAL);
913
914 len = delim - src;
915 dst = kmalloc((len + 1), GFP_KERNEL);
916 if (dst == NULL)
917 return ERR_PTR(-ENOMEM);
918
919 memcpy(dst, src, len);
920 dst[len] = '\0';
921
922 return dst;
923}
924
1da177e4 925static int
b946845a 926cifs_parse_mount_options(const char *mountdata, const char *devname,
50c2f753 927 struct smb_vol *vol)
1da177e4 928{
4906e50b 929 char *value, *data, *end;
957df453 930 char *mountdata_copy = NULL, *options;
3d3ea8e6 931 int err;
1da177e4
LT		 932 unsigned int temp_len, i, j;
933 char separator[2];
9b9d6b24
JL		 934 short int override_uid = -1;
935 short int override_gid = -1;
936 bool uid_specified = false;
937 bool gid_specified = false;
88463999 938 char *nodename = utsname()->nodename;
1da177e4
LT		 939
940 separator[0] = ',';
50c2f753 941 separator[1] = 0;
1da177e4 942
88463999
JL		 943 /*
944 * does not have to be perfect mapping since field is
945 * informational, only used for servers that do not support
946 * port 445 and it can be overridden at mount time
947 */
1397f2ee
JL		 948 memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
949 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
88463999
JL		 950 vol->source_rfc1001_name[i] = toupper(nodename[i]);
951
1397f2ee 952 vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
a10faeb2
SF		 953 /* null target name indicates to use *SMBSERVR default called name
954 if we end up sending RFC1001 session initialize */
955 vol->target_rfc1001_name[0] = 0;
3e4b3e1f
JL		 956 vol->cred_uid = current_uid();
957 vol->linux_uid = current_uid();
a001e5b5 958 vol->linux_gid = current_gid();
f55ed1a8
JL		 959
960 /* default to only allowing write access to owner of the mount */
961 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 962
963 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 964 /* default is always to request posix paths. */
965 vol->posix_paths = 1;
a0c9217f
JL		 966 /* default to using server inode numbers where available */
967 vol->server_ino = 1;
ac67055e 968
6d20e840
SJ		 969 vol->actimeo = CIFS_DEF_ACTIMEO;
970
b946845a
SF		 971 if (!mountdata)
972 goto cifs_parse_mount_err;
973
974 mountdata_copy = kstrndup(mountdata, PAGE_SIZE, GFP_KERNEL);
975 if (!mountdata_copy)
976 goto cifs_parse_mount_err;
1da177e4 977
b946845a 978 options = mountdata_copy;
4906e50b 979 end = options + strlen(options);
50c2f753 980 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 981 if (options[4] != 0) {
1da177e4
LT		 982 separator[0] = options[4];
983 options += 5;
984 } else {
b6b38f70 985 cFYI(1, "Null separator not allowed");
1da177e4
LT		 986 }
987 }
3d3ea8e6
SP		 988 vol->backupuid_specified = false; /* no backup intent for a user */
989 vol->backupgid_specified = false; /* no backup intent for a group */
50c2f753 990
1da177e4
LT		 991 while ((data = strsep(&options, separator)) != NULL) {
992 if (!*data)
993 continue;
994 if ((value = strchr(data, '=')) != NULL)
995 *value++ = '\0';
996
50c2f753
SF		 997 /* Have to parse this before we parse for "user" */
998 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 999 vol->no_xattr = 0;
50c2f753 1000 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 1001 vol->no_xattr = 1;
1002 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 1003 if (!value) {
1da177e4
LT		 1004 printk(KERN_WARNING
1005 "CIFS: invalid or missing username\n");
b946845a 1006 goto cifs_parse_mount_err;
fb8c4b14 1007 } else if (!*value) {
4b952a9b
SF		 1008 /* null user, ie anonymous, authentication */
1009 vol->nullauth = 1;
1da177e4 1010 }
8727c8a8
SF		 1011 if (strnlen(value, MAX_USERNAME_SIZE) <
1012 MAX_USERNAME_SIZE) {
b946845a
SF		 1013 vol->username = kstrdup(value, GFP_KERNEL);
1014 if (!vol->username) {
1015 printk(KERN_WARNING "CIFS: no memory "
1016 "for username\n");
1017 goto cifs_parse_mount_err;
1018 }
1da177e4
LT		 1019 } else {
1020 printk(KERN_WARNING "CIFS: username too long\n");
b946845a 1021 goto cifs_parse_mount_err;
1da177e4
LT		 1022 }
1023 } else if (strnicmp(data, "pass", 4) == 0) {
1024 if (!value) {
1025 vol->password = NULL;
1026 continue;
fb8c4b14 1027 } else if (value[0] == 0) {
1da177e4
LT		 1028 /* check if string begins with double comma
1029 since that would mean the password really
1030 does start with a comma, and would not
1031 indicate an empty string */
fb8c4b14 1032 if (value[1] != separator[0]) {
1da177e4
LT		 1033 vol->password = NULL;
1034 continue;
1035 }
1036 }
1037 temp_len = strlen(value);
1038 /* removed password length check, NTLM passwords
1039 can be arbitrarily long */
1040
50c2f753 1041 /* if comma in password, the string will be
1da177e4
LT		 1042 prematurely null terminated. Commas in password are
1043 specified across the cifs mount interface by a double
1044 comma ie ,, and a comma used as in other cases ie ','
1045 as a parameter delimiter/separator is single and due
1046 to the strsep above is temporarily zeroed. */
1047
1048 /* NB: password legally can have multiple commas and
1049 the only illegal character in a password is null */
1050
50c2f753 1051 if ((value[temp_len] == 0) &&
4906e50b 1052 (value + temp_len < end) &&
09d1db5c 1053 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 1054 /* reinsert comma */
1055 value[temp_len] = separator[0];
50c2f753
SF		 1056 temp_len += 2; /* move after second comma */
1057 while (value[temp_len] != 0) {
1da177e4 1058 if (value[temp_len] == separator[0]) {
50c2f753 1059 if (value[temp_len+1] ==
09d1db5c
SF		 1060 separator[0]) {
1061 /* skip second comma */
1062 temp_len++;
50c2f753 1063 } else {
1da177e4
LT		 1064 /* single comma indicating start
1065 of next parm */
1066 break;
1067 }
1068 }
1069 temp_len++;
1070 }
fb8c4b14 1071 if (value[temp_len] == 0) {
1da177e4
LT		 1072 options = NULL;
1073 } else {
1074 value[temp_len] = 0;
1075 /* point option to start of next parm */
1076 options = value + temp_len + 1;
1077 }
50c2f753 1078 /* go from value to value + temp_len condensing
1da177e4
LT		 1079 double commas to singles. Note that this ends up
1080 allocating a few bytes too many, which is ok */
e915fc49 1081 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 1082 if (vol->password == NULL) {
50c2f753
SF		 1083 printk(KERN_WARNING "CIFS: no memory "
1084 "for password\n");
b946845a 1085 goto cifs_parse_mount_err;
433dc24f 1086 }
50c2f753 1087 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 1088 vol->password[j] = value[i];
fb8c4b14 1089 if (value[i] == separator[0]
09d1db5c 1090 && value[i+1] == separator[0]) {
1da177e4
LT		 1091 /* skip second comma */
1092 i++;
1093 }
1094 }
1095 vol->password[j] = 0;
1096 } else {
e915fc49 1097 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 1098 if (vol->password == NULL) {
50c2f753
SF		 1099 printk(KERN_WARNING "CIFS: no memory "
1100 "for password\n");
b946845a 1101 goto cifs_parse_mount_err;
433dc24f 1102 }
1da177e4
LT		 1103 strcpy(vol->password, value);
1104 }
58f7f68f
JL		 1105 } else if (!strnicmp(data, "ip", 2) ||
1106 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 1107 if (!value || !*value) {
1108 vol->UNCip = NULL;
50b64e3b
JL		 1109 } else if (strnlen(value, INET6_ADDRSTRLEN) <
1110 INET6_ADDRSTRLEN) {
b946845a
SF		 1111 vol->UNCip = kstrdup(value, GFP_KERNEL);
1112 if (!vol->UNCip) {
1113 printk(KERN_WARNING "CIFS: no memory "
1114 "for UNC IP\n");
1115 goto cifs_parse_mount_err;
1116 }
1da177e4 1117 } else {
50c2f753
SF		 1118 printk(KERN_WARNING "CIFS: ip address "
1119 "too long\n");
b946845a 1120 goto cifs_parse_mount_err;
1da177e4 1121 }
50c2f753
SF		 1122 } else if (strnicmp(data, "sec", 3) == 0) {
1123 if (!value || !*value) {
b6b38f70 1124 cERROR(1, "no security value specified");
50c2f753
SF		 1125 continue;
1126 } else if (strnicmp(value, "krb5i", 5) == 0) {
1127 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 1128 CIFSSEC_MUST_SIGN;
bf820679 1129 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 1130 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
1131 CIFSSEC_MAY_KRB5; */
b6b38f70 1132 cERROR(1, "Krb5 cifs privacy not supported");
b946845a 1133 goto cifs_parse_mount_err;
bf820679 1134 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 1135 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 1136 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
1137 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
1138 CIFSSEC_MUST_SIGN;
1139 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
1140 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
bf820679 1141 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 1142 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 1143 CIFSSEC_MUST_SIGN;
bf820679 1144 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1145 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1146 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1147 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1148 CIFSSEC_MUST_SIGN;
bf820679
SF		 1149 } else if (strnicmp(value, "ntlm", 4) == 0) {
1150 /* ntlm is default so can be turned off too */
750d1151 1151 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1152 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1153 /* BB is there a better way to do this? */
750d1151 1154 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1155#ifdef CONFIG_CIFS_WEAK_PW_HASH
1156 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1157 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1158#endif
bf820679 1159 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1160 vol->nullauth = 1;
50c2f753 1161 } else {
b6b38f70 1162 cERROR(1, "bad security option: %s", value);
b946845a 1163 goto cifs_parse_mount_err;
50c2f753 1164 }
1cb06d0b
SF		 1165 } else if (strnicmp(data, "vers", 3) == 0) {
1166 if (!value || !*value) {
1167 cERROR(1, "no protocol version specified"
1168 " after vers= mount option");
1169 } else if ((strnicmp(value, "cifs", 4) == 0) ||
1170 (strnicmp(value, "1", 1) == 0)) {
1171 /* this is the default */
1172 continue;
1cb06d0b 1173 }
1da177e4
LT		 1174 } else if ((strnicmp(data, "unc", 3) == 0)
1175 || (strnicmp(data, "target", 6) == 0)
1176 || (strnicmp(data, "path", 4) == 0)) {
1177 if (!value || !*value) {
50c2f753
SF		 1178 printk(KERN_WARNING "CIFS: invalid path to "
1179 "network resource\n");
b946845a 1180 goto cifs_parse_mount_err;
1da177e4
LT		 1181 }
1182 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1183 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1184 if (vol->UNC == NULL)
b946845a 1185 goto cifs_parse_mount_err;
50c2f753 1186 strcpy(vol->UNC, value);
1da177e4
LT		 1187 if (strncmp(vol->UNC, "//", 2) == 0) {
1188 vol->UNC[0] = '\\';
1189 vol->UNC[1] = '\\';
50c2f753 1190 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1191 printk(KERN_WARNING
50c2f753
SF		 1192 "CIFS: UNC Path does not begin "
1193 "with // or \\\\ \n");
b946845a 1194 goto cifs_parse_mount_err;
1da177e4
LT		 1195 }
1196 } else {
1197 printk(KERN_WARNING "CIFS: UNC name too long\n");
b946845a 1198 goto cifs_parse_mount_err;
1da177e4
LT		 1199 }
1200 } else if ((strnicmp(data, "domain", 3) == 0)
1201 || (strnicmp(data, "workgroup", 5) == 0)) {
1202 if (!value || !*value) {
1203 printk(KERN_WARNING "CIFS: invalid domain name\n");
b946845a 1204 goto cifs_parse_mount_err;
1da177e4
LT		 1205 }
1206 /* BB are there cases in which a comma can be valid in
1207 a domain name and need special handling? */
3979877e 1208 if (strnlen(value, 256) < 256) {
b946845a
SF		 1209 vol->domainname = kstrdup(value, GFP_KERNEL);
1210 if (!vol->domainname) {
1211 printk(KERN_WARNING "CIFS: no memory "
1212 "for domainname\n");
1213 goto cifs_parse_mount_err;
1214 }
b6b38f70 1215 cFYI(1, "Domain name set");
1da177e4 1216 } else {
50c2f753
SF		 1217 printk(KERN_WARNING "CIFS: domain name too "
1218 "long\n");
b946845a 1219 goto cifs_parse_mount_err;
1da177e4 1220 }
3eb9a889
BG		 1221 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1222 vol->srcaddr.ss_family = AF_UNSPEC;
1223
1224 if (!value || !*value) {
1225 printk(KERN_WARNING "CIFS: srcaddr value"
1226 " not specified.\n");
b946845a 1227 goto cifs_parse_mount_err;
3eb9a889
BG		 1228 }
1229 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1230 value, strlen(value));
b235f371 1231 if (i == 0) {
3eb9a889
BG		 1232 printk(KERN_WARNING "CIFS: Could not parse"
1233 " srcaddr: %s\n",
1234 value);
b946845a 1235 goto cifs_parse_mount_err;
3eb9a889 1236 }
50c2f753
SF		 1237 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1238 if (!value || !*value) {
1239 printk(KERN_WARNING
1240 "CIFS: invalid path prefix\n");
b946845a 1241 goto cifs_parse_mount_err;
50c2f753
SF		 1242 }
1243 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1244 if (value[0] != '/')
2fe87f02 1245 temp_len++; /* missing leading slash */
50c2f753
SF		 1246 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1247 if (vol->prepath == NULL)
b946845a 1248 goto cifs_parse_mount_err;
4523cc30 1249 if (value[0] != '/') {
2fe87f02 1250 vol->prepath[0] = '/';
50c2f753 1251 strcpy(vol->prepath+1, value);
2fe87f02 1252 } else
50c2f753 1253 strcpy(vol->prepath, value);
b6b38f70 1254 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1255 } else {
1256 printk(KERN_WARNING "CIFS: prefix too long\n");
b946845a 1257 goto cifs_parse_mount_err;
50c2f753 1258 }
1da177e4
LT		 1259 } else if (strnicmp(data, "iocharset", 9) == 0) {
1260 if (!value || !*value) {
63135e08
SF		 1261 printk(KERN_WARNING "CIFS: invalid iocharset "
1262 "specified\n");
b946845a 1263 goto cifs_parse_mount_err;
1da177e4
LT		 1264 }
1265 if (strnlen(value, 65) < 65) {
b946845a
SF		 1266 if (strnicmp(value, "default", 7)) {
1267 vol->iocharset = kstrdup(value,
1268 GFP_KERNEL);
1269
1270 if (!vol->iocharset) {
1271 printk(KERN_WARNING "CIFS: no "
1272 "memory for"
1273 "charset\n");
1274 goto cifs_parse_mount_err;
1275 }
1276 }
50c2f753
SF		 1277 /* if iocharset not set then load_nls_default
1278 is used by caller */
b6b38f70 1279 cFYI(1, "iocharset set to %s", value);
1da177e4 1280 } else {
63135e08
SF		 1281 printk(KERN_WARNING "CIFS: iocharset name "
1282 "too long.\n");
b946845a 1283 goto cifs_parse_mount_err;
1da177e4 1284 }
9b9d6b24
JL		 1285 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1286 vol->linux_uid = simple_strtoul(value, &value, 0);
1287 uid_specified = true;
bd763319
JL		 1288 } else if (!strnicmp(data, "cruid", 5) && value && *value) {
1289 vol->cred_uid = simple_strtoul(value, &value, 0);
9b9d6b24
JL		 1290 } else if (!strnicmp(data, "forceuid", 8)) {
1291 override_uid = 1;
1292 } else if (!strnicmp(data, "noforceuid", 10)) {
1293 override_uid = 0;
1294 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1295 vol->linux_gid = simple_strtoul(value, &value, 0);
1296 gid_specified = true;
1297 } else if (!strnicmp(data, "forcegid", 8)) {
1298 override_gid = 1;
1299 } else if (!strnicmp(data, "noforcegid", 10)) {
1300 override_gid = 0;
1da177e4
LT		 1301 } else if (strnicmp(data, "file_mode", 4) == 0) {
1302 if (value && *value) {
1303 vol->file_mode =
1304 simple_strtoul(value, &value, 0);
1305 }
1306 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1307 if (value && *value) {
1308 vol->dir_mode =
1309 simple_strtoul(value, &value, 0);
1310 }
1311 } else if (strnicmp(data, "dirmode", 4) == 0) {
1312 if (value && *value) {
1313 vol->dir_mode =
1314 simple_strtoul(value, &value, 0);
1315 }
1316 } else if (strnicmp(data, "port", 4) == 0) {
1317 if (value && *value) {
1318 vol->port =
1319 simple_strtoul(value, &value, 0);
1320 }
1321 } else if (strnicmp(data, "rsize", 5) == 0) {
1322 if (value && *value) {
1323 vol->rsize =
1324 simple_strtoul(value, &value, 0);
1325 }
1326 } else if (strnicmp(data, "wsize", 5) == 0) {
1327 if (value && *value) {
1328 vol->wsize =
1329 simple_strtoul(value, &value, 0);
1330 }
1331 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1332 if (!value || !*value) {
b6b38f70 1333 cERROR(1, "no socket option specified");
6a5fa236
SF		 1334 continue;
1335 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1336 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1337 }
1338 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1339 if (!value || !*value || (*value == ' ')) {
b6b38f70 1340 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1341 } else {
1397f2ee
JL		 1342 memset(vol->source_rfc1001_name, 0x20,
1343 RFC1001_NAME_LEN);
1344 /*
1345 * FIXME: are there cases in which a comma can
1346 * be valid in workstation netbios name (and
1347 * need special handling)?
1348 */
1349 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1350 /* don't ucase netbiosname for user */
50c2f753 1351 if (value[i] == 0)
1da177e4 1352 break;
1397f2ee 1353 vol->source_rfc1001_name[i] = value[i];
1da177e4
LT		 1354 }
1355 /* The string has 16th byte zero still from
1356 set at top of the function */
1397f2ee 1357 if (i == RFC1001_NAME_LEN && value[i] != 0)
50c2f753
SF		 1358 printk(KERN_WARNING "CIFS: netbiosname"
1359 " longer than 15 truncated.\n");
a10faeb2
SF		 1360 }
1361 } else if (strnicmp(data, "servern", 7) == 0) {
1362 /* servernetbiosname specified override *SMBSERVER */
1363 if (!value || !*value || (*value == ' ')) {
b6b38f70 1364 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1365 } else {
1366 /* last byte, type, is 0x20 for servr type */
1397f2ee
JL		 1367 memset(vol->target_rfc1001_name, 0x20,
1368 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 1369
50c2f753 1370 for (i = 0; i < 15; i++) {
a10faeb2 1371 /* BB are there cases in which a comma can be
50c2f753
SF		 1372 valid in this workstation netbios name
1373 (and need special handling)? */
a10faeb2 1374
50c2f753
SF		 1375 /* user or mount helper must uppercase
1376 the netbiosname */
1377 if (value[i] == 0)
a10faeb2
SF		 1378 break;
1379 else
50c2f753
SF		 1380 vol->target_rfc1001_name[i] =
1381 value[i];
a10faeb2
SF		 1382 }
1383 /* The string has 16th byte zero still from
1384 set at top of the function */
1397f2ee 1385 if (i == RFC1001_NAME_LEN && value[i] != 0)
50c2f753
SF		 1386 printk(KERN_WARNING "CIFS: server net"
1387 "biosname longer than 15 truncated.\n");
1da177e4 1388 }
6d20e840
SJ		 1389 } else if (strnicmp(data, "actimeo", 7) == 0) {
1390 if (value && *value) {
1391 vol->actimeo = HZ * simple_strtoul(value,
1392 &value, 0);
1393 if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1394 cERROR(1, "CIFS: attribute cache"
1395 "timeout too large");
b946845a 1396 goto cifs_parse_mount_err;
6d20e840
SJ		 1397 }
1398 }
1da177e4
LT		 1399 } else if (strnicmp(data, "credentials", 4) == 0) {
1400 /* ignore */
1401 } else if (strnicmp(data, "version", 3) == 0) {
1402 /* ignore */
50c2f753 1403 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1404 /* ignore */
c9c7fa00 1405 } else if (strnicmp(data, "rw", 2) == 0 && strlen(data) == 2) {
71a394fa
SF		 1406 /* ignore */
1407 } else if (strnicmp(data, "ro", 2) == 0) {
1408 /* ignore */
edf1ae40
SF		 1409 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1410 vol->noblocksnd = 1;
1411 } else if (strnicmp(data, "noautotune", 10) == 0) {
1412 vol->noautotune = 1;
1da177e4
LT		 1413 } else if ((strnicmp(data, "suid", 4) == 0) ||
1414 (strnicmp(data, "nosuid", 6) == 0) ||
1415 (strnicmp(data, "exec", 4) == 0) ||
1416 (strnicmp(data, "noexec", 6) == 0) ||
1417 (strnicmp(data, "nodev", 5) == 0) ||
1418 (strnicmp(data, "noauto", 6) == 0) ||
1419 (strnicmp(data, "dev", 3) == 0)) {
1420 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1421 uses these opts to set flags, and the flags are read
1422 by the kernel vfs layer before we get here (ie
1423 before read super) so there is no point trying to
1424 parse these options again and set anything and it
1425 is ok to just ignore them */
1da177e4 1426 continue;
1da177e4
LT		 1427 } else if (strnicmp(data, "hard", 4) == 0) {
1428 vol->retry = 1;
1429 } else if (strnicmp(data, "soft", 4) == 0) {
1430 vol->retry = 0;
1431 } else if (strnicmp(data, "perm", 4) == 0) {
1432 vol->noperm = 0;
1433 } else if (strnicmp(data, "noperm", 6) == 0) {
1434 vol->noperm = 1;
6a0b4824
SF		 1435 } else if (strnicmp(data, "mapchars", 8) == 0) {
1436 vol->remap = 1;
1437 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1438 vol->remap = 0;
50c2f753
SF		 1439 } else if (strnicmp(data, "sfu", 3) == 0) {
1440 vol->sfu_emul = 1;
1441 } else if (strnicmp(data, "nosfu", 5) == 0) {
1442 vol->sfu_emul = 0;
2c1b8615
SF		 1443 } else if (strnicmp(data, "nodfs", 5) == 0) {
1444 vol->nodfs = 1;
ac67055e
JA		 1445 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1446 vol->posix_paths = 1;
1447 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1448 vol->posix_paths = 0;
c18c842b
SF		 1449 } else if (strnicmp(data, "nounix", 6) == 0) {
1450 vol->no_linux_ext = 1;
1451 } else if (strnicmp(data, "nolinux", 7) == 0) {
1452 vol->no_linux_ext = 1;
50c2f753 1453 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1454 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1455 vol->nocase = 1;
f636a348
JL		 1456 } else if (strnicmp(data, "mand", 4) == 0) {
1457 /* ignore */
1458 } else if (strnicmp(data, "nomand", 6) == 0) {
1459 /* ignore */
1460 } else if (strnicmp(data, "_netdev", 7) == 0) {
1461 /* ignore */
c46fa8ac
SF		 1462 } else if (strnicmp(data, "brl", 3) == 0) {
1463 vol->nobrl = 0;
50c2f753 1464 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1465 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1466 vol->nobrl = 1;
d3485d37
SF		 1467 /* turn off mandatory locking in mode
1468 if remote locking is turned off since the
1469 local vfs will do advisory */
50c2f753
SF		 1470 if (vol->file_mode ==
1471 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1472 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1473 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1474 /* will take the shorter form "forcemand" as well */
1475 /* This mount option will force use of mandatory
1476 (DOS/Windows style) byte range locks, instead of
1477 using posix advisory byte range locks, even if the
1478 Unix extensions are available and posix locks would
1479 be supported otherwise. If Unix extensions are not
1480 negotiated this has no effect since mandatory locks
1481 would be used (mandatory locks is all that those
1482 those servers support) */
1483 vol->mand_lock = 1;
1da177e4
LT		 1484 } else if (strnicmp(data, "setuids", 7) == 0) {
1485 vol->setuids = 1;
1486 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1487 vol->setuids = 0;
d0a9c078
JL		 1488 } else if (strnicmp(data, "dynperm", 7) == 0) {
1489 vol->dynperm = true;
1490 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1491 vol->dynperm = false;
1da177e4
LT		 1492 } else if (strnicmp(data, "nohard", 6) == 0) {
1493 vol->retry = 0;
1494 } else if (strnicmp(data, "nosoft", 6) == 0) {
1495 vol->retry = 1;
1496 } else if (strnicmp(data, "nointr", 6) == 0) {
1497 vol->intr = 0;
1498 } else if (strnicmp(data, "intr", 4) == 0) {
1499 vol->intr = 1;
be652445
SF		 1500 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1501 vol->nostrictsync = 1;
1502 } else if (strnicmp(data, "strictsync", 10) == 0) {
1503 vol->nostrictsync = 0;
50c2f753 1504 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1505 vol->server_ino = 1;
50c2f753 1506 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1507 vol->server_ino = 0;
c9c7fa00 1508 } else if (strnicmp(data, "rwpidforward", 12) == 0) {
d4ffff1f 1509 vol->rwpidforward = 1;
50c2f753 1510 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1511 vol->cifs_acl = 1;
1512 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1513 vol->cifs_acl = 0;
50c2f753 1514 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1515 vol->no_psx_acl = 0;
50c2f753 1516 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1517 vol->no_psx_acl = 1;
84210e91
SF		 1518 } else if (strnicmp(data, "locallease", 6) == 0) {
1519 vol->local_lease = 1;
50c2f753 1520 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1521 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1522 } else if (strnicmp(data, "seal", 4) == 0) {
1523 /* we do not do the following in secFlags because seal
1524 is a per tree connection (mount) not a per socket
1525 or per-smb connection option in the protocol */
1526 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1527 vol->seal = 1;
50c2f753 1528 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1529 vol->direct_io = 1;
50c2f753 1530 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1531 vol->direct_io = 1;
d39454ff
PS		 1532 } else if (strnicmp(data, "strictcache", 11) == 0) {
1533 vol->strict_io = 1;
1da177e4 1534 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1535 printk(KERN_WARNING "CIFS: Mount option noac not "
1536 "supported. Instead set "
1537 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
fa1df75d 1538 } else if (strnicmp(data, "fsc", 3) == 0) {
607a569d 1539#ifndef CONFIG_CIFS_FSCACHE
83fb086e 1540 cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE "
607a569d 1541 "kernel config option set");
b946845a 1542 goto cifs_parse_mount_err;
607a569d 1543#endif
fa1df75d 1544 vol->fsc = true;
736a3320
SM		 1545 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1546 vol->mfsymlinks = true;
0eb8a132
JL		 1547 } else if (strnicmp(data, "multiuser", 8) == 0) {
1548 vol->multiuser = true;
3d3ea8e6
SP		 1549 } else if (!strnicmp(data, "backupuid", 9) && value && *value) {
1550 err = kstrtouint(value, 0, &vol->backupuid);
1551 if (err < 0) {
1552 cERROR(1, "%s: Invalid backupuid value",
1553 __func__);
1554 goto cifs_parse_mount_err;
1555 }
1556 vol->backupuid_specified = true;
1557 } else if (!strnicmp(data, "backupgid", 9) && value && *value) {
1558 err = kstrtouint(value, 0, &vol->backupgid);
1559 if (err < 0) {
1560 cERROR(1, "%s: Invalid backupgid value",
1561 __func__);
1562 goto cifs_parse_mount_err;
1563 }
1564 vol->backupgid_specified = true;
1da177e4 1565 } else
50c2f753
SF		 1566 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1567 data);
1da177e4
LT		 1568 }
1569 if (vol->UNC == NULL) {
4523cc30 1570 if (devname == NULL) {
50c2f753
SF		 1571 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1572 "target\n");
b946845a 1573 goto cifs_parse_mount_err;
1da177e4
LT		 1574 }
1575 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1576 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1577 if (vol->UNC == NULL)
b946845a 1578 goto cifs_parse_mount_err;
50c2f753 1579 strcpy(vol->UNC, devname);
1da177e4
LT		 1580 if (strncmp(vol->UNC, "//", 2) == 0) {
1581 vol->UNC[0] = '\\';
1582 vol->UNC[1] = '\\';
1583 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1584 printk(KERN_WARNING "CIFS: UNC Path does not "
1585 "begin with // or \\\\ \n");
b946845a 1586 goto cifs_parse_mount_err;
1da177e4 1587 }
7c5e628f
IM		 1588 value = strpbrk(vol->UNC+2, "/\\");
1589 if (value)
1590 *value = '\\';
1da177e4
LT		 1591 } else {
1592 printk(KERN_WARNING "CIFS: UNC name too long\n");
b946845a 1593 goto cifs_parse_mount_err;
1da177e4
LT		 1594 }
1595 }
0eb8a132
JL		 1596
1597 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1598 cERROR(1, "Multiuser mounts currently require krb5 "
1599 "authentication!");
b946845a 1600 goto cifs_parse_mount_err;
0eb8a132
JL		 1601 }
1602
fb8c4b14 1603 if (vol->UNCip == NULL)
1da177e4
LT		 1604 vol->UNCip = &vol->UNC[2];
1605
9b9d6b24
JL		 1606 if (uid_specified)
1607 vol->override_uid = override_uid;
1608 else if (override_uid == 1)
1609 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1610 "specified with no uid= option.\n");
1611
1612 if (gid_specified)
1613 vol->override_gid = override_gid;
1614 else if (override_gid == 1)
1615 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1616 "specified with no gid= option.\n");
1617
b946845a 1618 kfree(mountdata_copy);
1da177e4 1619 return 0;
b946845a
SF		 1620
1621cifs_parse_mount_err:
1622 kfree(mountdata_copy);
1623 return 1;
1da177e4
LT		 1624}
1625
3eb9a889
BG		 1626/** Returns true if srcaddr isn't specified and rhs isn't
1627 * specified, or if srcaddr is specified and
1628 * matches the IP address of the rhs argument.
1629 */
1630static bool
1631srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1632{
1633 switch (srcaddr->sa_family) {
1634 case AF_UNSPEC:
1635 return (rhs->sa_family == AF_UNSPEC);
1636 case AF_INET: {
1637 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1638 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1639 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1640 }
1641 case AF_INET6: {
1642 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1643 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1644 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1645 }
1646 default:
1647 WARN_ON(1);
1648 return false; /* don't expect to be here */
1649 }
1650}
1651
4b886136
PS		 1652/*
1653 * If no port is specified in addr structure, we try to match with 445 port
1654 * and if it fails - with 139 ports. It should be called only if address
1655 * families of server and addr are equal.
1656 */
1657static bool
1658match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1659{
6da97910 1660 __be16 port, *sport;
4b886136
PS		 1661
1662 switch (addr->sa_family) {
1663 case AF_INET:
1664 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1665 port = ((struct sockaddr_in *) addr)->sin_port;
1666 break;
1667 case AF_INET6:
1668 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1669 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1670 break;
1671 default:
1672 WARN_ON(1);
1673 return false;
1674 }
1675
1676 if (!port) {
1677 port = htons(CIFS_PORT);
1678 if (port == *sport)
1679 return true;
1680
1681 port = htons(RFC1001_PORT);
1682 }
1683
1684 return port == *sport;
1685}
3eb9a889 1686
4515148e 1687static bool
3eb9a889
BG		 1688match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1689 struct sockaddr *srcaddr)
4515148e 1690{
4515148e 1691 switch (addr->sa_family) {
a9f1b85e
PS		 1692 case AF_INET: {
1693 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1694 struct sockaddr_in *srv_addr4 =
1695 (struct sockaddr_in *)&server->dstaddr;
1696
1697 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
4515148e 1698 return false;
4515148e 1699 break;
a9f1b85e
PS		 1700 }
1701 case AF_INET6: {
1702 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1703 struct sockaddr_in6 *srv_addr6 =
1704 (struct sockaddr_in6 *)&server->dstaddr;
1705
4515148e 1706 if (!ipv6_addr_equal(&addr6->sin6_addr,
a9f1b85e 1707 &srv_addr6->sin6_addr))
4515148e 1708 return false;
a9f1b85e 1709 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
4515148e 1710 return false;
4515148e
JL		 1711 break;
1712 }
a9f1b85e
PS		 1713 default:
1714 WARN_ON(1);
1715 return false; /* don't expect to be here */
1716 }
4515148e 1717
3eb9a889
BG		 1718 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1719 return false;
1720
4515148e
JL		 1721 return true;
1722}
1723
daf5b0b6
JL		 1724static bool
1725match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1726{
1727 unsigned int secFlags;
1728
1729 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1730 secFlags = vol->secFlg;
1731 else
1732 secFlags = global_secflags | vol->secFlg;
1733
1734 switch (server->secType) {
1735 case LANMAN:
1736 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1737 return false;
1738 break;
1739 case NTLMv2:
1740 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1741 return false;
1742 break;
1743 case NTLM:
1744 if (!(secFlags & CIFSSEC_MAY_NTLM))
1745 return false;
1746 break;
1747 case Kerberos:
1748 if (!(secFlags & CIFSSEC_MAY_KRB5))
1749 return false;
1750 break;
1751 case RawNTLMSSP:
1752 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1753 return false;
1754 break;
1755 default:
1756 /* shouldn't happen */
1757 return false;
1758 }
1759
25985edc 1760 /* now check if signing mode is acceptable */
daf5b0b6 1761 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
96daf2b0 1762 (server->sec_mode & SECMODE_SIGN_REQUIRED))
daf5b0b6
JL		 1763 return false;
1764 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
96daf2b0 1765 (server->sec_mode &
daf5b0b6
JL		 1766 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1767 return false;
1768
1769 return true;
1770}
1771
37bb04e5
PS		 1772static int match_server(struct TCP_Server_Info *server, struct sockaddr *addr,
1773 struct smb_vol *vol)
1774{
1775 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1776 return 0;
1777
1778 if (!match_address(server, addr,
1779 (struct sockaddr *)&vol->srcaddr))
1780 return 0;
1781
1782 if (!match_port(server, addr))
1783 return 0;
1784
1785 if (!match_security(server, vol))
1786 return 0;
1787
1788 return 1;
1789}
1790
e7ddee90 1791static struct TCP_Server_Info *
daf5b0b6 1792cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1793{
e7ddee90 1794 struct TCP_Server_Info *server;
e7ddee90 1795
3f9bcca7 1796 spin_lock(&cifs_tcp_ses_lock);
4515148e 1797 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
37bb04e5 1798 if (!match_server(server, addr, vol))
daf5b0b6
JL		 1799 continue;
1800
e7ddee90 1801 ++server->srv_count;
3f9bcca7 1802 spin_unlock(&cifs_tcp_ses_lock);
b6b38f70 1803 cFYI(1, "Existing tcp session with server found");
e7ddee90 1804 return server;
1da177e4 1805 }
3f9bcca7 1806 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1807 return NULL;
1808}
1b20d672 1809
14fbf50d 1810static void
e7ddee90 1811cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1812{
e7ddee90 1813 struct task_struct *task;
1b20d672 1814
3f9bcca7 1815 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 1816 if (--server->srv_count > 0) {
3f9bcca7 1817 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 1818 return;
1da177e4 1819 }
1b20d672 1820
f1d0c998
RL		 1821 put_net(cifs_net_ns(server));
1822
e7ddee90 1823 list_del_init(&server->tcp_ses_list);
3f9bcca7 1824 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1825
c74093b6
JL		 1826 cancel_delayed_work_sync(&server->echo);
1827
e7ddee90
JL		 1828 spin_lock(&GlobalMid_Lock);
1829 server->tcpStatus = CifsExiting;
1830 spin_unlock(&GlobalMid_Lock);
dea570e0 1831
d2b91521 1832 cifs_crypto_shash_release(server);
488f1d2d
SJ		 1833 cifs_fscache_release_client_cookie(server);
1834
21e73393
SP		 1835 kfree(server->session_key.response);
1836 server->session_key.response = NULL;
1837 server->session_key.len = 0;
1838
e7ddee90
JL		 1839 task = xchg(&server->tsk, NULL);
1840 if (task)
1841 force_sig(SIGKILL, task);
1da177e4
LT		 1842}
1843
63c038c2
JL		 1844static struct TCP_Server_Info *
1845cifs_get_tcp_session(struct smb_vol *volume_info)
1846{
1847 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1848 struct sockaddr_storage addr;
63c038c2
JL		 1849 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1850 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1851 int rc;
1852
a9ac49d3 1853 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1854
b6b38f70 1855 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1856
1e68b2b2 1857 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1858 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1859 volume_info->UNCip,
67b7626a 1860 strlen(volume_info->UNCip),
50d97160 1861 volume_info->port);
1e68b2b2 1862 if (!rc) {
63c038c2
JL		 1863 /* we failed translating address */
1864 rc = -EINVAL;
1865 goto out_err;
1866 }
63c038c2
JL		 1867 } else if (volume_info->UNCip) {
1868 /* BB using ip addr as tcp_ses name to connect to the
1869 DFS root below */
b6b38f70 1870 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1871 rc = -EINVAL;
1872 goto out_err;
1873 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1874 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1875 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1876 rc = -EINVAL;
1877 goto out_err;
1878 }
1879
1880 /* see if we already have a matching tcp_ses */
daf5b0b6 1881 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1882 if (tcp_ses)
1883 return tcp_ses;
1884
1885 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1886 if (!tcp_ses) {
1887 rc = -ENOMEM;
1888 goto out_err;
1889 }
1890
d2b91521
SP		 1891 rc = cifs_crypto_shash_allocate(tcp_ses);
1892 if (rc) {
1893 cERROR(1, "could not setup hash structures rc %d", rc);
1894 goto out_err;
1895 }
1896
f1d0c998 1897 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
63c038c2
JL		 1898 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1899 if (IS_ERR(tcp_ses->hostname)) {
1900 rc = PTR_ERR(tcp_ses->hostname);
f7c5445a 1901 goto out_err_crypto_release;
63c038c2
JL		 1902 }
1903
1904 tcp_ses->noblocksnd = volume_info->noblocksnd;
1905 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1906 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1907 atomic_set(&tcp_ses->inFlight, 0);
1908 init_waitqueue_head(&tcp_ses->response_q);
1909 init_waitqueue_head(&tcp_ses->request_q);
1910 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1911 mutex_init(&tcp_ses->srv_mutex);
1912 memcpy(tcp_ses->workstation_RFC1001_name,
1913 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1914 memcpy(tcp_ses->server_RFC1001_name,
1915 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
5d0d2882 1916 tcp_ses->session_estab = false;
63c038c2 1917 tcp_ses->sequence_number = 0;
fda35943 1918 tcp_ses->lstrp = jiffies;
63c038c2
JL		 1919 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1920 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
c74093b6 1921 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
63c038c2
JL		 1922
1923 /*
1924 * at this point we are the only ones with the pointer
1925 * to the struct since the kernel thread not created yet
1926 * no need to spinlock this init of tcpStatus or srv_count
1927 */
1928 tcp_ses->tcpStatus = CifsNew;
3eb9a889
BG		 1929 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1930 sizeof(tcp_ses->srcaddr));
63c038c2
JL		 1931 ++tcp_ses->srv_count;
1932
a9ac49d3 1933 if (addr.ss_family == AF_INET6) {
b6b38f70 1934 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1935 /* BB should we allow ipv6 on port 139? */
1936 /* other OS never observed in Wild doing 139 with v6 */
a9f1b85e
PS		 1937 memcpy(&tcp_ses->dstaddr, sin_server6,
1938 sizeof(struct sockaddr_in6));
1939 } else
1940 memcpy(&tcp_ses->dstaddr, sin_server,
1941 sizeof(struct sockaddr_in));
1942
1943 rc = ip_connect(tcp_ses);
63c038c2 1944 if (rc < 0) {
b6b38f70 1945 cERROR(1, "Error connecting to socket. Aborting operation");
f7c5445a 1946 goto out_err_crypto_release;
63c038c2
JL		 1947 }
1948
1949 /*
1950 * since we're in a cifs function already, we know that
1951 * this will succeed. No need for try_module_get().
1952 */
1953 __module_get(THIS_MODULE);
7c97c200 1954 tcp_ses->tsk = kthread_run(cifs_demultiplex_thread,
63c038c2
JL		 1955 tcp_ses, "cifsd");
1956 if (IS_ERR(tcp_ses->tsk)) {
1957 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1958 cERROR(1, "error %d create cifsd thread", rc);
63c038c2 1959 module_put(THIS_MODULE);
f7c5445a 1960 goto out_err_crypto_release;
63c038c2 1961 }
fd88ce93 1962 tcp_ses->tcpStatus = CifsNeedNegotiate;
63c038c2
JL		 1963
1964 /* thread spawned, put it on the list */
3f9bcca7 1965 spin_lock(&cifs_tcp_ses_lock);
63c038c2 1966 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
3f9bcca7 1967 spin_unlock(&cifs_tcp_ses_lock);
63c038c2 1968
488f1d2d
SJ		 1969 cifs_fscache_get_client_cookie(tcp_ses);
1970
c74093b6
JL		 1971 /* queue echo request delayed work */
1972 queue_delayed_work(system_nrt_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
1973
63c038c2
JL		 1974 return tcp_ses;
1975
f7c5445a 1976out_err_crypto_release:
d2b91521
SP		 1977 cifs_crypto_shash_release(tcp_ses);
1978
f1d0c998
RL		 1979 put_net(cifs_net_ns(tcp_ses));
1980
63c038c2
JL		 1981out_err:
1982 if (tcp_ses) {
8347a5cd
SF		 1983 if (!IS_ERR(tcp_ses->hostname))
1984 kfree(tcp_ses->hostname);
63c038c2
JL		 1985 if (tcp_ses->ssocket)
1986 sock_release(tcp_ses->ssocket);
1987 kfree(tcp_ses);
1988 }
1989 return ERR_PTR(rc);
1990}
1991
96daf2b0 1992static int match_session(struct cifs_ses *ses, struct smb_vol *vol)
37bb04e5
PS		 1993{
1994 switch (ses->server->secType) {
1995 case Kerberos:
1996 if (vol->cred_uid != ses->cred_uid)
1997 return 0;
1998 break;
1999 default:
2000 /* anything else takes username/password */
2001 if (ses->user_name == NULL)
2002 return 0;
2003 if (strncmp(ses->user_name, vol->username,
2004 MAX_USERNAME_SIZE))
2005 return 0;
2006 if (strlen(vol->username) != 0 &&
2007 ses->password != NULL &&
2008 strncmp(ses->password,
2009 vol->password ? vol->password : "",
2010 MAX_PASSWORD_SIZE))
2011 return 0;
2012 }
2013 return 1;
2014}
2015
96daf2b0 2016static struct cifs_ses *
4ff67b72 2017cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 2018{
96daf2b0 2019 struct cifs_ses *ses;
dea570e0 2020
3f9bcca7 2021 spin_lock(&cifs_tcp_ses_lock);
4ff67b72 2022 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
37bb04e5
PS		 2023 if (!match_session(ses, vol))
2024 continue;
14fbf50d 2025 ++ses->ses_count;
3f9bcca7 2026 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 2027 return ses;
2028 }
3f9bcca7 2029 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 2030 return NULL;
2031}
dea570e0 2032
14fbf50d 2033static void
96daf2b0 2034cifs_put_smb_ses(struct cifs_ses *ses)
14fbf50d
JL		 2035{
2036 int xid;
2037 struct TCP_Server_Info *server = ses->server;
dea570e0 2038
36988c76 2039 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
3f9bcca7 2040 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 2041 if (--ses->ses_count > 0) {
3f9bcca7 2042 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 2043 return;
2044 }
dea570e0 2045
14fbf50d 2046 list_del_init(&ses->smb_ses_list);
3f9bcca7 2047 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 2048
14fbf50d
JL		 2049 if (ses->status == CifsGood) {
2050 xid = GetXid();
2051 CIFSSMBLogoff(xid, ses);
2052 _FreeXid(xid);
2053 }
2054 sesInfoFree(ses);
2055 cifs_put_tcp_session(server);
2056}
dea570e0 2057
d9b94201
SF		 2058static bool warned_on_ntlm; /* globals init to false automatically */
2059
96daf2b0 2060static struct cifs_ses *
36988c76
JL		 2061cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
2062{
2063 int rc = -ENOMEM, xid;
96daf2b0 2064 struct cifs_ses *ses;
a9f1b85e
PS		 2065 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2066 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
36988c76
JL		 2067
2068 xid = GetXid();
2069
4ff67b72 2070 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 2071 if (ses) {
2072 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
2073
36988c76 2074 mutex_lock(&ses->session_mutex);
198b5682
JL		 2075 rc = cifs_negotiate_protocol(xid, ses);
2076 if (rc) {
2077 mutex_unlock(&ses->session_mutex);
2078 /* problem -- put our ses reference */
2079 cifs_put_smb_ses(ses);
2080 FreeXid(xid);
2081 return ERR_PTR(rc);
2082 }
36988c76
JL		 2083 if (ses->need_reconnect) {
2084 cFYI(1, "Session needs reconnect");
2085 rc = cifs_setup_session(xid, ses,
2086 volume_info->local_nls);
2087 if (rc) {
2088 mutex_unlock(&ses->session_mutex);
2089 /* problem -- put our reference */
2090 cifs_put_smb_ses(ses);
2091 FreeXid(xid);
2092 return ERR_PTR(rc);
2093 }
2094 }
2095 mutex_unlock(&ses->session_mutex);
460cf341
JL		 2096
2097 /* existing SMB ses has a server reference already */
2098 cifs_put_tcp_session(server);
36988c76
JL		 2099 FreeXid(xid);
2100 return ses;
2101 }
2102
2103 cFYI(1, "Existing smb sess not found");
2104 ses = sesInfoAlloc();
2105 if (ses == NULL)
2106 goto get_ses_fail;
2107
2108 /* new SMB session uses our server ref */
2109 ses->server = server;
a9f1b85e
PS		 2110 if (server->dstaddr.ss_family == AF_INET6)
2111 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
36988c76 2112 else
a9f1b85e 2113 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
36988c76 2114
8727c8a8
SF		 2115 if (volume_info->username) {
2116 ses->user_name = kstrdup(volume_info->username, GFP_KERNEL);
2117 if (!ses->user_name)
2118 goto get_ses_fail;
2119 }
36988c76
JL		 2120
2121 /* volume_info->password freed at unmount */
2122 if (volume_info->password) {
2123 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
2124 if (!ses->password)
2125 goto get_ses_fail;
2126 }
2127 if (volume_info->domainname) {
d3686d54
SP		 2128 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
2129 if (!ses->domainName)
2130 goto get_ses_fail;
36988c76 2131 }
3e4b3e1f 2132 ses->cred_uid = volume_info->cred_uid;
36988c76 2133 ses->linux_uid = volume_info->linux_uid;
d9b94201
SF		 2134
2135 /* ntlmv2 is much stronger than ntlm security, and has been broadly
2136 supported for many years, time to update default security mechanism */
2137 if ((volume_info->secFlg == 0) && warned_on_ntlm == false) {
2138 warned_on_ntlm = true;
2139 cERROR(1, "default security mechanism requested. The default "
2140 "security mechanism will be upgraded from ntlm to "
225de11e 2141 "ntlmv2 in kernel release 3.3");
d9b94201 2142 }
36988c76
JL		 2143 ses->overrideSecFlg = volume_info->secFlg;
2144
2145 mutex_lock(&ses->session_mutex);
198b5682
JL		 2146 rc = cifs_negotiate_protocol(xid, ses);
2147 if (!rc)
2148 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76 2149 mutex_unlock(&ses->session_mutex);
c8e56f1f 2150 if (rc)
36988c76
JL		 2151 goto get_ses_fail;
2152
2153 /* success, put it on the list */
3f9bcca7 2154 spin_lock(&cifs_tcp_ses_lock);
36988c76 2155 list_add(&ses->smb_ses_list, &server->smb_ses_list);
3f9bcca7 2156 spin_unlock(&cifs_tcp_ses_lock);
36988c76
JL		 2157
2158 FreeXid(xid);
2159 return ses;
2160
2161get_ses_fail:
2162 sesInfoFree(ses);
2163 FreeXid(xid);
2164 return ERR_PTR(rc);
2165}
2166
96daf2b0 2167static int match_tcon(struct cifs_tcon *tcon, const char *unc)
37bb04e5
PS		 2168{
2169 if (tcon->tidStatus == CifsExiting)
2170 return 0;
2171 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
2172 return 0;
2173 return 1;
2174}
2175
96daf2b0
SF		 2176static struct cifs_tcon *
2177cifs_find_tcon(struct cifs_ses *ses, const char *unc)
f1987b44
JL		 2178{
2179 struct list_head *tmp;
96daf2b0 2180 struct cifs_tcon *tcon;
f1987b44 2181
3f9bcca7 2182 spin_lock(&cifs_tcp_ses_lock);
f1987b44 2183 list_for_each(tmp, &ses->tcon_list) {
96daf2b0 2184 tcon = list_entry(tmp, struct cifs_tcon, tcon_list);
37bb04e5 2185 if (!match_tcon(tcon, unc))
f1987b44 2186 continue;
f1987b44 2187 ++tcon->tc_count;
3f9bcca7 2188 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 2189 return tcon;
1da177e4 2190 }
3f9bcca7 2191 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 2192 return NULL;
2193}
2194
f1987b44 2195static void
96daf2b0 2196cifs_put_tcon(struct cifs_tcon *tcon)
f1987b44
JL		 2197{
2198 int xid;
96daf2b0 2199 struct cifs_ses *ses = tcon->ses;
f1987b44 2200
d00c28de 2201 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
3f9bcca7 2202 spin_lock(&cifs_tcp_ses_lock);
f1987b44 2203 if (--tcon->tc_count > 0) {
3f9bcca7 2204 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 2205 return;
2206 }
2207
2208 list_del_init(&tcon->tcon_list);
3f9bcca7 2209 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 2210
2211 xid = GetXid();
2212 CIFSSMBTDis(xid, tcon);
2213 _FreeXid(xid);
2214
d03382ce 2215 cifs_fscache_release_super_cookie(tcon);
9f841593 2216 tconInfoFree(tcon);
f1987b44
JL		 2217 cifs_put_smb_ses(ses);
2218}
2219
96daf2b0
SF		 2220static struct cifs_tcon *
2221cifs_get_tcon(struct cifs_ses *ses, struct smb_vol *volume_info)
d00c28de
JL		 2222{
2223 int rc, xid;
96daf2b0 2224 struct cifs_tcon *tcon;
d00c28de
JL		 2225
2226 tcon = cifs_find_tcon(ses, volume_info->UNC);
2227 if (tcon) {
2228 cFYI(1, "Found match on UNC path");
2229 /* existing tcon already has a reference */
2230 cifs_put_smb_ses(ses);
2231 if (tcon->seal != volume_info->seal)
2232 cERROR(1, "transport encryption setting "
2233 "conflicts with existing tid");
2234 return tcon;
2235 }
2236
2237 tcon = tconInfoAlloc();
2238 if (tcon == NULL) {
2239 rc = -ENOMEM;
2240 goto out_fail;
2241 }
2242
2243 tcon->ses = ses;
2244 if (volume_info->password) {
2245 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2246 if (!tcon->password) {
2247 rc = -ENOMEM;
2248 goto out_fail;
2249 }
2250 }
2251
2252 if (strchr(volume_info->UNC + 3, '\\') == NULL
2253 && strchr(volume_info->UNC + 3, '/') == NULL) {
2254 cERROR(1, "Missing share name");
2255 rc = -ENODEV;
2256 goto out_fail;
2257 }
2258
2259 /* BB Do we need to wrap session_mutex around
2260 * this TCon call and Unix SetFS as
2261 * we do on SessSetup and reconnect? */
2262 xid = GetXid();
2263 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2264 FreeXid(xid);
2265 cFYI(1, "CIFS Tcon rc = %d", rc);
2266 if (rc)
2267 goto out_fail;
2268
2269 if (volume_info->nodfs) {
2270 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2271 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2272 }
2273 tcon->seal = volume_info->seal;
2274 /* we can have only one retry value for a connection
2275 to a share so for resources mounted more than once
2276 to the same server share the last value passed in
2277 for the retry flag is used */
2278 tcon->retry = volume_info->retry;
2279 tcon->nocase = volume_info->nocase;
2280 tcon->local_lease = volume_info->local_lease;
2281
3f9bcca7 2282 spin_lock(&cifs_tcp_ses_lock);
d00c28de 2283 list_add(&tcon->tcon_list, &ses->tcon_list);
3f9bcca7 2284 spin_unlock(&cifs_tcp_ses_lock);
d00c28de 2285
d03382ce
SJ		 2286 cifs_fscache_get_super_cookie(tcon);
2287
d00c28de
JL		 2288 return tcon;
2289
2290out_fail:
2291 tconInfoFree(tcon);
2292 return ERR_PTR(rc);
2293}
2294
9d002df4
JL		 2295void
2296cifs_put_tlink(struct tcon_link *tlink)
2297{
2298 if (!tlink || IS_ERR(tlink))
2299 return;
2300
2301 if (!atomic_dec_and_test(&tlink->tl_count) ||
2302 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2303 tlink->tl_time = jiffies;
2304 return;
2305 }
2306
2307 if (!IS_ERR(tlink_tcon(tlink)))
2308 cifs_put_tcon(tlink_tcon(tlink));
2309 kfree(tlink);
2310 return;
2311}
d00c28de 2312
25c7f41e 2313static inline struct tcon_link *
cd51875d
PS		 2314cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
2315{
2316 return cifs_sb->master_tlink;
2317}
25c7f41e
PS		 2318
2319static int
2320compare_mount_options(struct super_block *sb, struct cifs_mnt_data *mnt_data)
2321{
2322 struct cifs_sb_info *old = CIFS_SB(sb);
2323 struct cifs_sb_info *new = mnt_data->cifs_sb;
2324
2325 if ((sb->s_flags & CIFS_MS_MASK) != (mnt_data->flags & CIFS_MS_MASK))
2326 return 0;
2327
2328 if ((old->mnt_cifs_flags & CIFS_MOUNT_MASK) !=
2329 (new->mnt_cifs_flags & CIFS_MOUNT_MASK))
2330 return 0;
2331
25c7f41e 2332 /*
5eba8ab3
JL		 2333 * We want to share sb only if we don't specify an r/wsize or
2334 * specified r/wsize is greater than or equal to existing one.
25c7f41e
PS		 2335 */
2336 if (new->wsize && new->wsize < old->wsize)
2337 return 0;
2338
5eba8ab3
JL		 2339 if (new->rsize && new->rsize < old->rsize)
2340 return 0;
2341
25c7f41e
PS		 2342 if (old->mnt_uid != new->mnt_uid || old->mnt_gid != new->mnt_gid)
2343 return 0;
2344
2345 if (old->mnt_file_mode != new->mnt_file_mode ||
2346 old->mnt_dir_mode != new->mnt_dir_mode)
2347 return 0;
2348
2349 if (strcmp(old->local_nls->charset, new->local_nls->charset))
2350 return 0;
2351
2352 if (old->actimeo != new->actimeo)
2353 return 0;
2354
2355 return 1;
2356}
2357
2358int
2359cifs_match_super(struct super_block *sb, void *data)
2360{
2361 struct cifs_mnt_data *mnt_data = (struct cifs_mnt_data *)data;
2362 struct smb_vol *volume_info;
2363 struct cifs_sb_info *cifs_sb;
2364 struct TCP_Server_Info *tcp_srv;
96daf2b0
SF		 2365 struct cifs_ses *ses;
2366 struct cifs_tcon *tcon;
25c7f41e
PS		 2367 struct tcon_link *tlink;
2368 struct sockaddr_storage addr;
2369 int rc = 0;
2370
2371 memset(&addr, 0, sizeof(struct sockaddr_storage));
2372
2373 spin_lock(&cifs_tcp_ses_lock);
2374 cifs_sb = CIFS_SB(sb);
2375 tlink = cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
2376 if (IS_ERR(tlink)) {
2377 spin_unlock(&cifs_tcp_ses_lock);
2378 return rc;
2379 }
2380 tcon = tlink_tcon(tlink);
2381 ses = tcon->ses;
2382 tcp_srv = ses->server;
2383
2384 volume_info = mnt_data->vol;
2385
2386 if (!volume_info->UNCip || !volume_info->UNC)
2387 goto out;
2388
2389 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
2390 volume_info->UNCip,
2391 strlen(volume_info->UNCip),
2392 volume_info->port);
2393 if (!rc)
2394 goto out;
2395
2396 if (!match_server(tcp_srv, (struct sockaddr *)&addr, volume_info) ||
2397 !match_session(ses, volume_info) ||
2398 !match_tcon(tcon, volume_info->UNC)) {
2399 rc = 0;
2400 goto out;
2401 }
2402
2403 rc = compare_mount_options(sb, mnt_data);
2404out:
25c7f41e 2405 spin_unlock(&cifs_tcp_ses_lock);
f484b5d0 2406 cifs_put_tlink(tlink);
25c7f41e
PS		 2407 return rc;
2408}
2409
1da177e4 2410int
96daf2b0 2411get_dfs_path(int xid, struct cifs_ses *pSesInfo, const char *old_path,
50c2f753 2412 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 2413 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 2414{
2415 char *temp_unc;
2416 int rc = 0;
2417
2418 *pnum_referrals = 0;
366781c1 2419 *preferrals = NULL;
1da177e4
LT		 2420
2421 if (pSesInfo->ipc_tid == 0) {
2422 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 2423 strnlen(pSesInfo->serverName,
2424 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 2425 + 1 + 4 /* slash IPC$ */ + 2,
2426 GFP_KERNEL);
2427 if (temp_unc == NULL)
2428 return -ENOMEM;
2429 temp_unc[0] = '\\';
2430 temp_unc[1] = '\\';
2431 strcpy(temp_unc + 2, pSesInfo->serverName);
2432 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2433 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 2434 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 2435 kfree(temp_unc);
2436 }
2437 if (rc == 0)
c2cf07d5 2438 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 2439 pnum_referrals, nls_codepage, remap);
366781c1
SF		 2440 /* BB map targetUNCs to dfs_info3 structures, here or
2441 in CIFSGetDFSRefer BB */
1da177e4
LT		 2442
2443 return rc;
2444}
2445
09e50d55
JL		 2446#ifdef CONFIG_DEBUG_LOCK_ALLOC
2447static struct lock_class_key cifs_key[2];
2448static struct lock_class_key cifs_slock_key[2];
2449
2450static inline void
2451cifs_reclassify_socket4(struct socket *sock)
2452{
2453 struct sock *sk = sock->sk;
2454 BUG_ON(sock_owned_by_user(sk));
2455 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2456 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2457}
2458
2459static inline void
2460cifs_reclassify_socket6(struct socket *sock)
2461{
2462 struct sock *sk = sock->sk;
2463 BUG_ON(sock_owned_by_user(sk));
2464 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2465 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2466}
2467#else
2468static inline void
2469cifs_reclassify_socket4(struct socket *sock)
2470{
2471}
2472
2473static inline void
2474cifs_reclassify_socket6(struct socket *sock)
2475{
2476}
2477#endif
2478
1da177e4 2479/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 2480static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 2481{
50c2f753 2482 unsigned int i, j;
1da177e4 2483
50c2f753 2484 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 2485 /* mask a nibble at a time and encode */
2486 target[j] = 'A' + (0x0F & (source[i] >> 4));
2487 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 2488 j += 2;
1da177e4
LT		 2489 }
2490
2491}
2492
3eb9a889
BG		 2493static int
2494bind_socket(struct TCP_Server_Info *server)
2495{
2496 int rc = 0;
2497 if (server->srcaddr.ss_family != AF_UNSPEC) {
2498 /* Bind to the specified local IP address */
2499 struct socket *socket = server->ssocket;
2500 rc = socket->ops->bind(socket,
2501 (struct sockaddr *) &server->srcaddr,
2502 sizeof(server->srcaddr));
2503 if (rc < 0) {
2504 struct sockaddr_in *saddr4;
2505 struct sockaddr_in6 *saddr6;
2506 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2507 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2508 if (saddr6->sin6_family == AF_INET6)
2509 cERROR(1, "cifs: "
2510 "Failed to bind to: %pI6c, error: %d\n",
2511 &saddr6->sin6_addr, rc);
2512 else
2513 cERROR(1, "cifs: "
2514 "Failed to bind to: %pI4, error: %d\n",
2515 &saddr4->sin_addr.s_addr, rc);
2516 }
2517 }
2518 return rc;
2519}
1da177e4
LT		 2520
2521static int
a9f1b85e 2522ip_rfc1001_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2523{
2524 int rc = 0;
a9f1b85e
PS		 2525 /*
2526 * some servers require RFC1001 sessinit before sending
2527 * negprot - BB check reconnection in case where second
2528 * sessinit is sent but no second negprot
2529 */
2530 struct rfc1002_session_packet *ses_init_buf;
2531 struct smb_hdr *smb_buf;
2532 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2533 GFP_KERNEL);
2534 if (ses_init_buf) {
2535 ses_init_buf->trailer.session_req.called_len = 32;
2536
2537 if (server->server_RFC1001_name &&
2538 server->server_RFC1001_name[0] != 0)
2539 rfc1002mangle(ses_init_buf->trailer.
2540 session_req.called_name,
2541 server->server_RFC1001_name,
2542 RFC1001_NAME_LEN_WITH_NULL);
2543 else
2544 rfc1002mangle(ses_init_buf->trailer.
2545 session_req.called_name,
2546 DEFAULT_CIFS_CALLED_NAME,
2547 RFC1001_NAME_LEN_WITH_NULL);
2548
2549 ses_init_buf->trailer.session_req.calling_len = 32;
2550
2551 /*
2552 * calling name ends in null (byte 16) from old smb
2553 * convention.
2554 */
2555 if (server->workstation_RFC1001_name &&
2556 server->workstation_RFC1001_name[0] != 0)
2557 rfc1002mangle(ses_init_buf->trailer.
2558 session_req.calling_name,
2559 server->workstation_RFC1001_name,
2560 RFC1001_NAME_LEN_WITH_NULL);
2561 else
2562 rfc1002mangle(ses_init_buf->trailer.
2563 session_req.calling_name,
2564 "LINUX_CIFS_CLNT",
2565 RFC1001_NAME_LEN_WITH_NULL);
2566
2567 ses_init_buf->trailer.session_req.scope1 = 0;
2568 ses_init_buf->trailer.session_req.scope2 = 0;
2569 smb_buf = (struct smb_hdr *)ses_init_buf;
2570
2571 /* sizeof RFC1002_SESSION_REQUEST with no scope */
be8e3b00 2572 smb_buf->smb_buf_length = cpu_to_be32(0x81000044);
a9f1b85e
PS		 2573 rc = smb_send(server, smb_buf, 0x44);
2574 kfree(ses_init_buf);
2575 /*
2576 * RFC1001 layer in at least one server
2577 * requires very short break before negprot
2578 * presumably because not expecting negprot
2579 * to follow so fast. This is a simple
2580 * solution that works without
2581 * complicating the code and causes no
2582 * significant slowing down on mount
2583 * for everyone else
2584 */
2585 usleep_range(1000, 2000);
2586 }
2587 /*
2588 * else the negprot may still work without this
2589 * even though malloc failed
2590 */
2591
2592 return rc;
2593}
2594
2595static int
2596generic_ip_connect(struct TCP_Server_Info *server)
2597{
2598 int rc = 0;
6da97910 2599 __be16 sport;
a9f1b85e 2600 int slen, sfamily;
bcf4b106 2601 struct socket *socket = server->ssocket;
a9f1b85e
PS		 2602 struct sockaddr *saddr;
2603
2604 saddr = (struct sockaddr *) &server->dstaddr;
2605
2606 if (server->dstaddr.ss_family == AF_INET6) {
2607 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
2608 slen = sizeof(struct sockaddr_in6);
2609 sfamily = AF_INET6;
2610 } else {
2611 sport = ((struct sockaddr_in *) saddr)->sin_port;
2612 slen = sizeof(struct sockaddr_in);
2613 sfamily = AF_INET;
2614 }
1da177e4 2615
bcf4b106 2616 if (socket == NULL) {
f1d0c998
RL		 2617 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2618 IPPROTO_TCP, &socket, 1);
1da177e4 2619 if (rc < 0) {
b6b38f70 2620 cERROR(1, "Error %d creating socket", rc);
a9f1b85e 2621 server->ssocket = NULL;
1da177e4 2622 return rc;
1da177e4 2623 }
bcf4b106
JL		 2624
2625 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2626 cFYI(1, "Socket created");
bcf4b106
JL		 2627 server->ssocket = socket;
2628 socket->sk->sk_allocation = GFP_NOFS;
a9f1b85e
PS		 2629 if (sfamily == AF_INET6)
2630 cifs_reclassify_socket6(socket);
2631 else
2632 cifs_reclassify_socket4(socket);
1da177e4
LT		 2633 }
2634
3eb9a889
BG		 2635 rc = bind_socket(server);
2636 if (rc < 0)
2637 return rc;
2638
bcf4b106
JL		 2639 /*
2640 * Eventually check for other socket options to change from
a9f1b85e
PS		 2641 * the default. sock_setsockopt not used because it expects
2642 * user space buffer
bcf4b106
JL		 2643 */
2644 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2645 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2646
b387eaeb 2647 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2648 if (server->noautotune) {
2649 if (socket->sk->sk_sndbuf < (200 * 1024))
2650 socket->sk->sk_sndbuf = 200 * 1024;
2651 if (socket->sk->sk_rcvbuf < (140 * 1024))
2652 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2653 }
1da177e4 2654
6a5fa236 2655 if (server->tcp_nodelay) {
a9f1b85e 2656 int val = 1;
6a5fa236
SF		 2657 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2658 (char *)&val, sizeof(val));
2659 if (rc)
b6b38f70 2660 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2661 }
2662
b6b38f70 2663 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2664 socket->sk->sk_sndbuf,
b6b38f70 2665 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2666
ee1b3ea9
JL		 2667 rc = socket->ops->connect(socket, saddr, slen, 0);
2668 if (rc < 0) {
2669 cFYI(1, "Error %d connecting to server", rc);
2670 sock_release(socket);
2671 server->ssocket = NULL;
2672 return rc;
2673 }
2674
a9f1b85e
PS		 2675 if (sport == htons(RFC1001_PORT))
2676 rc = ip_rfc1001_connect(server);
50c2f753 2677
1da177e4
LT		 2678 return rc;
2679}
2680
2681static int
a9f1b85e 2682ip_connect(struct TCP_Server_Info *server)
1da177e4 2683{
6da97910 2684 __be16 *sport;
a9f1b85e
PS		 2685 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2686 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
1da177e4 2687
a9f1b85e
PS		 2688 if (server->dstaddr.ss_family == AF_INET6)
2689 sport = &addr6->sin6_port;
2690 else
2691 sport = &addr->sin_port;
1da177e4 2692
a9f1b85e
PS		 2693 if (*sport == 0) {
2694 int rc;
1da177e4 2695
a9f1b85e
PS		 2696 /* try with 445 port at first */
2697 *sport = htons(CIFS_PORT);
3eb9a889 2698
a9f1b85e 2699 rc = generic_ip_connect(server);
1da177e4 2700 if (rc >= 0)
a9f1b85e 2701 return rc;
6a5fa236 2702
a9f1b85e
PS		 2703 /* if it failed, try with 139 port */
2704 *sport = htons(RFC1001_PORT);
6a5fa236
SF		 2705 }
2706
a9f1b85e 2707 return generic_ip_connect(server);
1da177e4
LT		 2708}
2709
96daf2b0 2710void reset_cifs_unix_caps(int xid, struct cifs_tcon *tcon,
2c6292ae 2711 struct cifs_sb_info *cifs_sb, struct smb_vol *vol_info)
8af18971
SF		 2712{
2713 /* if we are reconnecting then should we check to see if
2714 * any requested capabilities changed locally e.g. via
2715 * remount but we can not do much about it here
2716 * if they have (even if we could detect it by the following)
2717 * Perhaps we could add a backpointer to array of sb from tcon
2718 * or if we change to make all sb to same share the same
2719 * sb as NFS - then we only have one backpointer to sb.
2720 * What if we wanted to mount the server share twice once with
2721 * and once without posixacls or posix paths? */
2722 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2723
c18c842b
SF		 2724 if (vol_info && vol_info->no_linux_ext) {
2725 tcon->fsUnixInfo.Capability = 0;
2726 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2727 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2728 return;
2729 } else if (vol_info)
2730 tcon->unix_ext = 1; /* Unix Extensions supported */
2731
2732 if (tcon->unix_ext == 0) {
b6b38f70 2733 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2734 return;
2735 }
50c2f753 2736
fb8c4b14 2737 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2738 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
6848b733 2739 cFYI(1, "unix caps which server supports %lld", cap);
8af18971
SF		 2740 /* check for reconnect case in which we do not
2741 want to change the mount behavior if we can avoid it */
fb8c4b14 2742 if (vol_info == NULL) {
50c2f753 2743 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2744 originally at mount time */
2745 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2746 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2747 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2748 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2749 cERROR(1, "POSIXPATH support change");
8af18971 2750 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2751 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2752 cERROR(1, "possible reconnect error");
2753 cERROR(1, "server disabled POSIX path support");
11b6d645 2754 }
8af18971 2755 }
50c2f753 2756
6848b733
SF		 2757 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2758 cERROR(1, "per-share encryption not supported yet");
2759
8af18971 2760 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2761 if (vol_info && vol_info->no_psx_acl)
8af18971 2762 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2763 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2764 cFYI(1, "negotiated posix acl support");
2c6292ae
AV		 2765 if (cifs_sb)
2766 cifs_sb->mnt_cifs_flags |=
2767 CIFS_MOUNT_POSIXACL;
8af18971
SF		 2768 }
2769
75865f8c 2770 if (vol_info && vol_info->posix_paths == 0)
8af18971 2771 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2772 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2773 cFYI(1, "negotiate posix pathnames");
2c6292ae
AV		 2774 if (cifs_sb)
2775 cifs_sb->mnt_cifs_flags |=
8af18971
SF		 2776 CIFS_MOUNT_POSIX_PATHS;
2777 }
50c2f753 2778
b6b38f70 2779 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2780#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2781 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2782 cFYI(1, "FCNTL cap");
75865f8c 2783 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2784 cFYI(1, "EXTATTR cap");
75865f8c 2785 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2786 cFYI(1, "POSIX path cap");
75865f8c 2787 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2788 cFYI(1, "XATTR cap");
75865f8c 2789 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2790 cFYI(1, "POSIX ACL cap");
75865f8c 2791 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2792 cFYI(1, "very large read cap");
75865f8c 2793 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2794 cFYI(1, "very large write cap");
6848b733
SF		 2795 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP)
2796 cFYI(1, "transport encryption cap");
2797 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2798 cFYI(1, "mandatory transport encryption cap");
8af18971
SF		 2799#endif /* CIFS_DEBUG2 */
2800 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2801 if (vol_info == NULL) {
b6b38f70 2802 cFYI(1, "resetting capabilities failed");
442aa310 2803 } else
b6b38f70 2804 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2805 "with the server failed. Consider "
2806 "mounting with the Unix Extensions\n"
2807 "disabled, if problems are found, "
2808 "by specifying the nounix mount "
b6b38f70 2809 "option.");
5a44b319 2810
8af18971
SF		 2811 }
2812 }
2813}
2814
724d9f1c
PS		 2815void cifs_setup_cifs_sb(struct smb_vol *pvolume_info,
2816 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2817{
2de970ff
JL		 2818 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2819
2ced6f69
AV		 2820 spin_lock_init(&cifs_sb->tlink_tree_lock);
2821 cifs_sb->tlink_tree = RB_ROOT;
2822
25c7f41e 2823 /*
5eba8ab3
JL		 2824 * Temporarily set r/wsize for matching superblock. If we end up using
2825 * new sb then client will later negotiate it downward if needed.
25c7f41e 2826 */
5eba8ab3 2827 cifs_sb->rsize = pvolume_info->rsize;
25c7f41e
PS		 2828 cifs_sb->wsize = pvolume_info->wsize;
2829
3b795210
SF		 2830 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2831 cifs_sb->mnt_gid = pvolume_info->linux_gid;
3d3ea8e6
SP		 2832 if (pvolume_info->backupuid_specified)
2833 cifs_sb->mnt_backupuid = pvolume_info->backupuid;
2834 if (pvolume_info->backupgid_specified)
2835 cifs_sb->mnt_backupgid = pvolume_info->backupgid;
3b795210
SF		 2836 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2837 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
5206efd6 2838 cFYI(1, "file mode: 0x%hx dir mode: 0x%hx",
b6b38f70 2839 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210 2840
6d20e840 2841 cifs_sb->actimeo = pvolume_info->actimeo;
724d9f1c 2842 cifs_sb->local_nls = pvolume_info->local_nls;
6d20e840 2843
3b795210
SF		 2844 if (pvolume_info->noperm)
2845 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2846 if (pvolume_info->setuids)
2847 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2848 if (pvolume_info->server_ino)
2849 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2850 if (pvolume_info->remap)
2851 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2852 if (pvolume_info->no_xattr)
2853 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2854 if (pvolume_info->sfu_emul)
2855 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2856 if (pvolume_info->nobrl)
2857 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2858 if (pvolume_info->nostrictsync)
4717bed6 2859 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2860 if (pvolume_info->mand_lock)
2861 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
d4ffff1f
PS		 2862 if (pvolume_info->rwpidforward)
2863 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_RWPIDFORWARD;
3b795210
SF		 2864 if (pvolume_info->cifs_acl)
2865 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
3d3ea8e6
SP		 2866 if (pvolume_info->backupuid_specified)
2867 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPUID;
2868 if (pvolume_info->backupgid_specified)
2869 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPGID;
3b795210
SF		 2870 if (pvolume_info->override_uid)
2871 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2872 if (pvolume_info->override_gid)
2873 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2874 if (pvolume_info->dynperm)
2875 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
fa1df75d
SJ		 2876 if (pvolume_info->fsc)
2877 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
0eb8a132
JL		 2878 if (pvolume_info->multiuser)
2879 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2880 CIFS_MOUNT_NO_PERM);
d39454ff
PS		 2881 if (pvolume_info->strict_io)
2882 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
3b795210 2883 if (pvolume_info->direct_io) {
b6b38f70 2884 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2885 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2886 }
736a3320
SM		 2887 if (pvolume_info->mfsymlinks) {
2888 if (pvolume_info->sfu_emul) {
2889 cERROR(1, "mount option mfsymlinks ignored if sfu "
2890 "mount option is used");
2891 } else {
2892 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2893 }
2894 }
3b795210
SF		 2895
2896 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2897 cERROR(1, "mount option dynperm ignored if cifsacl "
2898 "mount option supported");
b1c8d2b4
JL		 2899}
2900
f7910cbd 2901/*
5eba8ab3
JL		 2902 * When the server supports very large reads and writes via POSIX extensions,
2903 * we can allow up to 2^24-1, minus the size of a READ/WRITE_AND_X header, not
2904 * including the RFC1001 length.
f7910cbd
JL		 2905 *
2906 * Note that this might make for "interesting" allocation problems during
1190f6a0
JL		 2907 * writeback however as we have to allocate an array of pointers for the
2908 * pages. A 16M write means ~32kb page array with PAGE_CACHE_SIZE == 4096.
5eba8ab3
JL		 2909 *
2910 * For reads, there is a similar problem as we need to allocate an array
2911 * of kvecs to handle the receive, though that should only need to be done
2912 * once.
f7910cbd 2913 */
1190f6a0 2914#define CIFS_MAX_WSIZE ((1<<24) - 1 - sizeof(WRITE_REQ) + 4)
5eba8ab3 2915#define CIFS_MAX_RSIZE ((1<<24) - sizeof(READ_RSP) + 4)
f7910cbd
JL		 2916
2917/*
5eba8ab3
JL		 2918 * When the server doesn't allow large posix writes, only allow a rsize/wsize
2919 * of 2^17-1 minus the size of the call header. That allows for a read or
2920 * write up to the maximum size described by RFC1002.
f7910cbd 2921 */
94443f43 2922#define CIFS_MAX_RFC1002_WSIZE ((1<<17) - 1 - sizeof(WRITE_REQ) + 4)
5eba8ab3 2923#define CIFS_MAX_RFC1002_RSIZE ((1<<17) - 1 - sizeof(READ_RSP) + 4)
f7910cbd
JL		 2924
2925/*
2926 * The default wsize is 1M. find_get_pages seems to return a maximum of 256
2927 * pages in a single call. With PAGE_CACHE_SIZE == 4k, this means we can fill
2928 * a single wsize request with a single call.
2929 */
5eba8ab3
JL		 2930#define CIFS_DEFAULT_IOSIZE (1024 * 1024)
2931
2932/*
ce91acb3
JL		 2933 * Windows only supports a max of 60kb reads and 65535 byte writes. Default to
2934 * those values when posix extensions aren't in force. In actuality here, we
2935 * use 65536 to allow for a write that is a multiple of 4k. Most servers seem
2936 * to be ok with the extra byte even though Windows doesn't send writes that
2937 * are that large.
2938 *
2939 * Citation:
2940 *
2941 * http://blogs.msdn.com/b/openspecification/archive/2009/04/10/smb-maximum-transmit-buffer-size-and-performance-tuning.aspx
5eba8ab3
JL		 2942 */
2943#define CIFS_DEFAULT_NON_POSIX_RSIZE (60 * 1024)
ce91acb3 2944#define CIFS_DEFAULT_NON_POSIX_WSIZE (65536)
f7910cbd
JL		 2945
2946static unsigned int
96daf2b0 2947cifs_negotiate_wsize(struct cifs_tcon *tcon, struct smb_vol *pvolume_info)
f7910cbd
JL		 2948{
2949 __u64 unix_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2950 struct TCP_Server_Info *server = tcon->ses->server;
ce91acb3
JL		 2951 unsigned int wsize;
2952
2953 /* start with specified wsize, or default */
2954 if (pvolume_info->wsize)
2955 wsize = pvolume_info->wsize;
2956 else if (tcon->unix_ext && (unix_cap & CIFS_UNIX_LARGE_WRITE_CAP))
2957 wsize = CIFS_DEFAULT_IOSIZE;
2958 else
2959 wsize = CIFS_DEFAULT_NON_POSIX_WSIZE;
f7910cbd
JL		 2960
2961 /* can server support 24-bit write sizes? (via UNIX extensions) */
2962 if (!tcon->unix_ext || !(unix_cap & CIFS_UNIX_LARGE_WRITE_CAP))
1190f6a0 2963 wsize = min_t(unsigned int, wsize, CIFS_MAX_RFC1002_WSIZE);
f7910cbd 2964
1190f6a0
JL		 2965 /*
2966 * no CAP_LARGE_WRITE_X or is signing enabled without CAP_UNIX set?
2967 * Limit it to max buffer offered by the server, minus the size of the
2968 * WRITEX header, not including the 4 byte RFC1001 length.
2969 */
2970 if (!(server->capabilities & CAP_LARGE_WRITE_X) ||
2971 (!(server->capabilities & CAP_UNIX) &&
2972 (server->sec_mode & (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED))))
2973 wsize = min_t(unsigned int, wsize,
2974 server->maxBuf - sizeof(WRITE_REQ) + 4);
f7910cbd
JL		 2975
2976 /* hard limit of CIFS_MAX_WSIZE */
2977 wsize = min_t(unsigned int, wsize, CIFS_MAX_WSIZE);
2978
2979 return wsize;
2980}
2981
5eba8ab3
JL		 2982static unsigned int
2983cifs_negotiate_rsize(struct cifs_tcon *tcon, struct smb_vol *pvolume_info)
2984{
2985 __u64 unix_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2986 struct TCP_Server_Info *server = tcon->ses->server;
2987 unsigned int rsize, defsize;
2988
2989 /*
2990 * Set default value...
2991 *
2992 * HACK alert! Ancient servers have very small buffers. Even though
2993 * MS-CIFS indicates that servers are only limited by the client's
2994 * bufsize for reads, testing against win98se shows that it throws
2995 * INVALID_PARAMETER errors if you try to request too large a read.
2996 *
2997 * If the server advertises a MaxBufferSize of less than one page,
2998 * assume that it also can't satisfy reads larger than that either.
2999 *
3000 * FIXME: Is there a better heuristic for this?
3001 */
3002 if (tcon->unix_ext && (unix_cap & CIFS_UNIX_LARGE_READ_CAP))
3003 defsize = CIFS_DEFAULT_IOSIZE;
3004 else if (server->capabilities & CAP_LARGE_READ_X)
3005 defsize = CIFS_DEFAULT_NON_POSIX_RSIZE;
3006 else if (server->maxBuf >= PAGE_CACHE_SIZE)
3007 defsize = CIFSMaxBufSize;
3008 else
3009 defsize = server->maxBuf - sizeof(READ_RSP);
3010
3011 rsize = pvolume_info->rsize ? pvolume_info->rsize : defsize;
3012
3013 /*
3014 * no CAP_LARGE_READ_X? Then MS-CIFS states that we must limit this to
3015 * the client's MaxBufferSize.
3016 */
3017 if (!(server->capabilities & CAP_LARGE_READ_X))
3018 rsize = min_t(unsigned int, CIFSMaxBufSize, rsize);
3019
3020 /* hard limit of CIFS_MAX_RSIZE */
3021 rsize = min_t(unsigned int, rsize, CIFS_MAX_RSIZE);
3022
3023 return rsize;
3024}
3025
e4cce94c 3026static int
96daf2b0 3027is_path_accessible(int xid, struct cifs_tcon *tcon,
e4cce94c
IM		 3028 struct cifs_sb_info *cifs_sb, const char *full_path)
3029{
3030 int rc;
e4cce94c
IM		 3031 FILE_ALL_INFO *pfile_info;
3032
e4cce94c
IM		 3033 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
3034 if (pfile_info == NULL)
3035 return -ENOMEM;
3036
3037 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
3038 0 /* not legacy */, cifs_sb->local_nls,
3039 cifs_sb->mnt_cifs_flags &
3040 CIFS_MOUNT_MAP_SPECIAL_CHR);
221d1d79
JL		 3041
3042 if (rc == -EOPNOTSUPP || rc == -EINVAL)
3043 rc = SMBQueryInformation(xid, tcon, full_path, pfile_info,
3044 cifs_sb->local_nls, cifs_sb->mnt_cifs_flags &
3045 CIFS_MOUNT_MAP_SPECIAL_CHR);
e4cce94c
IM		 3046 kfree(pfile_info);
3047 return rc;
3048}
3049
b9bce2e9
JL		 3050static void
3051cleanup_volume_info_contents(struct smb_vol *volume_info)
1bfe73c2 3052{
b946845a 3053 kfree(volume_info->username);
1bfe73c2 3054 kzfree(volume_info->password);
13589c43
SF		 3055 if (volume_info->UNCip != volume_info->UNC + 2)
3056 kfree(volume_info->UNCip);
95c75454 3057 kfree(volume_info->UNC);
b946845a
SF		 3058 kfree(volume_info->domainname);
3059 kfree(volume_info->iocharset);
1bfe73c2 3060 kfree(volume_info->prepath);
b9bce2e9
JL		 3061}
3062
3063void
3064cifs_cleanup_volume_info(struct smb_vol *volume_info)
3065{
3066 if (!volume_info)
3067 return;
3068 cleanup_volume_info_contents(volume_info);
1bfe73c2 3069 kfree(volume_info);
1bfe73c2
IM		 3070}
3071
b9bce2e9 3072
2d6d589d 3073#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 3074/* build_path_to_root returns full path to root when
3075 * we do not have an exiting connection (tcon) */
3076static char *
b2a0fa15 3077build_unc_path_to_root(const struct smb_vol *vol,
1bfe73c2
IM		 3078 const struct cifs_sb_info *cifs_sb)
3079{
b2a0fa15
JL		 3080 char *full_path, *pos;
3081 unsigned int pplen = vol->prepath ? strlen(vol->prepath) : 0;
3082 unsigned int unc_len = strnlen(vol->UNC, MAX_TREE_SIZE + 1);
1bfe73c2 3083
b2a0fa15 3084 full_path = kmalloc(unc_len + pplen + 1, GFP_KERNEL);
1bfe73c2
IM		 3085 if (full_path == NULL)
3086 return ERR_PTR(-ENOMEM);
3087
b2a0fa15
JL		 3088 strncpy(full_path, vol->UNC, unc_len);
3089 pos = full_path + unc_len;
3090
3091 if (pplen) {
3092 strncpy(pos, vol->prepath, pplen);
3093 pos += pplen;
3094 }
3095
3096 *pos = '\0'; /* add trailing null */
f87d39d9 3097 convert_delimiter(full_path, CIFS_DIR_SEP(cifs_sb));
b2a0fa15 3098 cFYI(1, "%s: full_path=%s", __func__, full_path);
1bfe73c2
IM		 3099 return full_path;
3100}
dd613945
SF		 3101
3102/*
3103 * Perform a dfs referral query for a share and (optionally) prefix
3104 *
046462ab
SF		 3105 * If a referral is found, cifs_sb->mountdata will be (re-)allocated
3106 * to a string containing updated options for the submount. Otherwise it
3107 * will be left untouched.
dd613945
SF		 3108 *
3109 * Returns the rc from get_dfs_path to the caller, which can be used to
3110 * determine whether there were referrals.
3111 */
3112static int
96daf2b0 3113expand_dfs_referral(int xid, struct cifs_ses *pSesInfo,
dd613945 3114 struct smb_vol *volume_info, struct cifs_sb_info *cifs_sb,
046462ab 3115 int check_prefix)
dd613945
SF		 3116{
3117 int rc;
3118 unsigned int num_referrals = 0;
3119 struct dfs_info3_param *referrals = NULL;
3120 char *full_path = NULL, *ref_path = NULL, *mdata = NULL;
3121
3122 full_path = build_unc_path_to_root(volume_info, cifs_sb);
3123 if (IS_ERR(full_path))
3124 return PTR_ERR(full_path);
3125
3126 /* For DFS paths, skip the first '\' of the UNC */
3127 ref_path = check_prefix ? full_path + 1 : volume_info->UNC + 1;
3128
3129 rc = get_dfs_path(xid, pSesInfo , ref_path, cifs_sb->local_nls,
3130 &num_referrals, &referrals,
3131 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
3132
3133 if (!rc && num_referrals > 0) {
3134 char *fake_devname = NULL;
3135
3136 mdata = cifs_compose_mount_options(cifs_sb->mountdata,
3137 full_path + 1, referrals,
3138 &fake_devname);
3139
3140 free_dfs_info_array(referrals, num_referrals);
046462ab 3141
dd613945
SF		 3142 if (IS_ERR(mdata)) {
3143 rc = PTR_ERR(mdata);
3144 mdata = NULL;
b9bce2e9
JL		 3145 } else {
3146 cleanup_volume_info_contents(volume_info);
3147 memset(volume_info, '\0', sizeof(*volume_info));
3148 rc = cifs_setup_volume_info(volume_info, mdata,
3149 fake_devname);
dd613945 3150 }
b9bce2e9
JL		 3151 kfree(fake_devname);
3152 kfree(cifs_sb->mountdata);
046462ab 3153 cifs_sb->mountdata = mdata;
dd613945
SF		 3154 }
3155 kfree(full_path);
3156 return rc;
3157}
2d6d589d 3158#endif
1bfe73c2 3159
04db79b0
JL		 3160static int
3161cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
3162 const char *devname)
1da177e4 3163{
724d9f1c 3164 int rc = 0;
1da177e4 3165
04db79b0
JL		 3166 if (cifs_parse_mount_options(mount_data, devname, volume_info))
3167 return -EINVAL;
1da177e4 3168
7586b765 3169 if (volume_info->nullauth) {
b6b38f70 3170 cFYI(1, "null user");
446b23a7 3171 volume_info->username = kzalloc(1, GFP_KERNEL);
04db79b0
JL		 3172 if (volume_info->username == NULL)
3173 return -ENOMEM;
7586b765 3174 } else if (volume_info->username) {
1da177e4 3175 /* BB fixme parse for domain name here */
b6b38f70 3176 cFYI(1, "Username: %s", volume_info->username);
1da177e4 3177 } else {
bf820679 3178 cifserror("No username specified");
50c2f753
SF		 3179 /* In userspace mount helper we can get user name from alternate
3180 locations such as env variables and files on disk */
04db79b0 3181 return -EINVAL;
1da177e4
LT		 3182 }
3183
1da177e4 3184 /* this is needed for ASCII cp to Unicode converts */
7586b765 3185 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 3186 /* load_nls_default cannot return null */
3187 volume_info->local_nls = load_nls_default();
1da177e4 3188 } else {
a5fc4ce0
JL		 3189 volume_info->local_nls = load_nls(volume_info->iocharset);
3190 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 3191 cERROR(1, "CIFS mount error: iocharset %s not found",
3192 volume_info->iocharset);
04db79b0 3193 return -ELIBACC;
1da177e4
LT		 3194 }
3195 }
724d9f1c 3196
724d9f1c
PS		 3197 return rc;
3198}
3199
04db79b0
JL		 3200struct smb_vol *
3201cifs_get_volume_info(char *mount_data, const char *devname)
3202{
3203 int rc;
3204 struct smb_vol *volume_info;
3205
3206 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
3207 if (!volume_info)
3208 return ERR_PTR(-ENOMEM);
3209
3210 rc = cifs_setup_volume_info(volume_info, mount_data, devname);
3211 if (rc) {
3212 cifs_cleanup_volume_info(volume_info);
3213 volume_info = ERR_PTR(rc);
3214 }
3215
3216 return volume_info;
3217}
3218
66bfaadc
JL		 3219/* make sure ra_pages is a multiple of rsize */
3220static inline unsigned int
3221cifs_ra_pages(struct cifs_sb_info *cifs_sb)
3222{
3223 unsigned int reads;
3224 unsigned int rsize_pages = cifs_sb->rsize / PAGE_CACHE_SIZE;
3225
3226 if (rsize_pages >= default_backing_dev_info.ra_pages)
3227 return default_backing_dev_info.ra_pages;
3228 else if (rsize_pages == 0)
3229 return rsize_pages;
3230
3231 reads = default_backing_dev_info.ra_pages / rsize_pages;
3232 return reads * rsize_pages;
3233}
3234
724d9f1c 3235int
2c6292ae 3236cifs_mount(struct cifs_sb_info *cifs_sb, struct smb_vol *volume_info)
724d9f1c
PS		 3237{
3238 int rc = 0;
3239 int xid;
96daf2b0
SF		 3240 struct cifs_ses *pSesInfo;
3241 struct cifs_tcon *tcon;
724d9f1c
PS		 3242 struct TCP_Server_Info *srvTcp;
3243 char *full_path;
3244 struct tcon_link *tlink;
3245#ifdef CONFIG_CIFS_DFS_UPCALL
3246 int referral_walks_count = 0;
20547490 3247#endif
dd854466
AV		 3248
3249 rc = bdi_setup_and_register(&cifs_sb->bdi, "cifs", BDI_CAP_MAP_COPY);
3250 if (rc)
3251 return rc;
3252
20547490 3253#ifdef CONFIG_CIFS_DFS_UPCALL
724d9f1c
PS		 3254try_mount_again:
3255 /* cleanup activities if we're chasing a referral */
3256 if (referral_walks_count) {
3257 if (tcon)
3258 cifs_put_tcon(tcon);
3259 else if (pSesInfo)
3260 cifs_put_smb_ses(pSesInfo);
3261
724d9f1c
PS		 3262 FreeXid(xid);
3263 }
3264#endif
3265 tcon = NULL;
3266 pSesInfo = NULL;
3267 srvTcp = NULL;
3268 full_path = NULL;
3269 tlink = NULL;
3270
3271 xid = GetXid();
1da177e4 3272
63c038c2 3273 /* get a reference to a tcp session */
7586b765 3274 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 3275 if (IS_ERR(srvTcp)) {
3276 rc = PTR_ERR(srvTcp);
dd854466 3277 bdi_destroy(&cifs_sb->bdi);
63c038c2 3278 goto out;
1da177e4
LT		 3279 }
3280
36988c76
JL		 3281 /* get a reference to a SMB session */
3282 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
3283 if (IS_ERR(pSesInfo)) {
3284 rc = PTR_ERR(pSesInfo);
3285 pSesInfo = NULL;
3286 goto mount_fail_check;
1da177e4 3287 }
50c2f753 3288
d00c28de
JL		 3289 /* search for existing tcon to this server share */
3290 tcon = cifs_get_tcon(pSesInfo, volume_info);
3291 if (IS_ERR(tcon)) {
3292 rc = PTR_ERR(tcon);
3293 tcon = NULL;
1bfe73c2 3294 goto remote_path_check;
d00c28de 3295 }
1bfe73c2 3296
d82c2df5 3297 /* tell server which Unix caps we support */
6848b733 3298 if (tcon->ses->capabilities & CAP_UNIX) {
d82c2df5
SF		 3299 /* reset of caps checks mount to see if unix extensions
3300 disabled for just this mount */
2c6292ae 3301 reset_cifs_unix_caps(xid, tcon, cifs_sb, volume_info);
6848b733
SF		 3302 if ((tcon->ses->server->tcpStatus == CifsNeedReconnect) &&
3303 (le64_to_cpu(tcon->fsUnixInfo.Capability) &
3304 CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)) {
3305 rc = -EACCES;
3306 goto mount_fail_check;
3307 }
3308 } else
d82c2df5 3309 tcon->unix_ext = 0; /* server does not support them */
c18c842b 3310
6848b733
SF		 3311 /* do not care if following two calls succeed - informational */
3312 if (!tcon->ipc) {
3313 CIFSSMBQFSDeviceInfo(xid, tcon);
3314 CIFSSMBQFSAttributeInfo(xid, tcon);
3315 }
3316
f7910cbd 3317 cifs_sb->wsize = cifs_negotiate_wsize(tcon, volume_info);
5eba8ab3 3318 cifs_sb->rsize = cifs_negotiate_rsize(tcon, volume_info);
f7910cbd 3319
66bfaadc
JL		 3320 /* tune readahead according to rsize */
3321 cifs_sb->bdi.ra_pages = cifs_ra_pages(cifs_sb);
f7910cbd 3322
1bfe73c2 3323remote_path_check:
c1508ca2
SF		 3324#ifdef CONFIG_CIFS_DFS_UPCALL
3325 /*
3326 * Perform an unconditional check for whether there are DFS
3327 * referrals for this path without prefix, to provide support
3328 * for DFS referrals from w2k8 servers which don't seem to respond
3329 * with PATH_NOT_COVERED to requests that include the prefix.
3330 * Chase the referral if found, otherwise continue normally.
3331 */
3332 if (referral_walks_count == 0) {
3333 int refrc = expand_dfs_referral(xid, pSesInfo, volume_info,
046462ab 3334 cifs_sb, false);
c1508ca2
SF		 3335 if (!refrc) {
3336 referral_walks_count++;
3337 goto try_mount_again;
3338 }
3339 }
3340#endif
3341
f87d39d9 3342 /* check if a whole path is not remote */
70945643 3343 if (!rc && tcon) {
e4cce94c 3344 /* build_path_to_root works only when we have a valid tcon */
f87d39d9 3345 full_path = cifs_build_path_to_root(volume_info, cifs_sb, tcon);
e4cce94c
IM		 3346 if (full_path == NULL) {
3347 rc = -ENOMEM;
3348 goto mount_fail_check;
3349 }
3350 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
03ceace5 3351 if (rc != 0 && rc != -EREMOTE) {
e4cce94c
IM		 3352 kfree(full_path);
3353 goto mount_fail_check;
3354 }
3355 kfree(full_path);
3356 }
3357
1bfe73c2
IM		 3358 /* get referral if needed */
3359 if (rc == -EREMOTE) {
d036f50f 3360#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 3361 if (referral_walks_count > MAX_NESTED_LINKS) {
3362 /*
3363 * BB: when we implement proper loop detection,
3364 * we will remove this check. But now we need it
3365 * to prevent an indefinite loop if 'DFS tree' is
3366 * misconfigured (i.e. has loops).
3367 */
3368 rc = -ELOOP;
3369 goto mount_fail_check;
3370 }
1bfe73c2 3371
dd613945 3372 rc = expand_dfs_referral(xid, pSesInfo, volume_info, cifs_sb,
046462ab 3373 true);
7b91e266 3374
dd613945 3375 if (!rc) {
5c2503a8 3376 referral_walks_count++;
1bfe73c2
IM		 3377 goto try_mount_again;
3378 }
dd613945 3379 goto mount_fail_check;
d036f50f
SF		 3380#else /* No DFS support, return error on mount */
3381 rc = -EOPNOTSUPP;
3382#endif
1bfe73c2
IM		 3383 }
3384
9d002df4
JL		 3385 if (rc)
3386 goto mount_fail_check;
3387
3388 /* now, hang the tcon off of the superblock */
3389 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
3390 if (tlink == NULL) {
3391 rc = -ENOMEM;
3392 goto mount_fail_check;
3393 }
3394
b647c35f 3395 tlink->tl_uid = pSesInfo->linux_uid;
9d002df4
JL		 3396 tlink->tl_tcon = tcon;
3397 tlink->tl_time = jiffies;
3398 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
3399 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3400
b647c35f 3401 cifs_sb->master_tlink = tlink;
9d002df4 3402 spin_lock(&cifs_sb->tlink_tree_lock);
b647c35f 3403 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
9d002df4 3404 spin_unlock(&cifs_sb->tlink_tree_lock);
413e661c 3405
2de970ff
JL		 3406 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3407 TLINK_IDLE_EXPIRE);
3408
1bfe73c2
IM		 3409mount_fail_check:
3410 /* on error free sesinfo and tcon struct if needed */
3411 if (rc) {
1bfe73c2 3412 /* If find_unc succeeded then rc == 0 so we can not end */
25985edc 3413 /* up accidentally freeing someone elses tcon struct */
1bfe73c2
IM		 3414 if (tcon)
3415 cifs_put_tcon(tcon);
3416 else if (pSesInfo)
3417 cifs_put_smb_ses(pSesInfo);
3418 else
3419 cifs_put_tcp_session(srvTcp);
dd854466 3420 bdi_destroy(&cifs_sb->bdi);
1bfe73c2
IM		 3421 }
3422
70fe7dc0 3423out:
1da177e4
LT		 3424 FreeXid(xid);
3425 return rc;
3426}
3427
8d1bca32
JL		 3428/*
3429 * Issue a TREE_CONNECT request. Note that for IPC$ shares, that the tcon
3430 * pointer may be NULL.
3431 */
1da177e4 3432int
96daf2b0
SF		 3433CIFSTCon(unsigned int xid, struct cifs_ses *ses,
3434 const char *tree, struct cifs_tcon *tcon,
1da177e4
LT		 3435 const struct nls_table *nls_codepage)
3436{
3437 struct smb_hdr *smb_buffer;
3438 struct smb_hdr *smb_buffer_response;
3439 TCONX_REQ *pSMB;
3440 TCONX_RSP *pSMBr;
3441 unsigned char *bcc_ptr;
3442 int rc = 0;
690c522f
JL		 3443 int length;
3444 __u16 bytes_left, count;
1da177e4
LT		 3445
3446 if (ses == NULL)
3447 return -EIO;
3448
3449 smb_buffer = cifs_buf_get();
ca43e3be 3450 if (smb_buffer == NULL)
1da177e4 3451 return -ENOMEM;
ca43e3be 3452
1da177e4
LT		 3453 smb_buffer_response = smb_buffer;
3454
3455 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
3456 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 3457
3458 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 3459 smb_buffer->Uid = ses->Suid;
3460 pSMB = (TCONX_REQ *) smb_buffer;
3461 pSMBr = (TCONX_RSP *) smb_buffer_response;
3462
3463 pSMB->AndXCommand = 0xFF;
3464 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 3465 bcc_ptr = &pSMB->Password[0];
8d1bca32 3466 if (!tcon || (ses->server->sec_mode & SECMODE_USER)) {
eeac8047 3467 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 3468 *bcc_ptr = 0; /* password is null byte */
eeac8047 3469 bcc_ptr++; /* skip password */
7c7b25bc 3470 /* already aligned so no need to do it below */
eeac8047 3471 } else {
540b2e37 3472 pSMB->PasswordLength = cpu_to_le16(CIFS_AUTH_RESP_SIZE);
eeac8047
SF		 3473 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
3474 specified as required (when that support is added to
3475 the vfs in the future) as only NTLM or the much
7c7b25bc 3476 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 3477 by Samba (not sure whether other servers allow
3478 NTLMv2 password here) */
7c7b25bc 3479#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 3480 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0 3481 (ses->server->secType == LANMAN))
d3ba50b1 3482 calc_lanman_hash(tcon->password, ses->server->cryptkey,
96daf2b0 3483 ses->server->sec_mode &
4e53a3fb
JL		 3484 SECMODE_PW_ENCRYPT ? true : false,
3485 bcc_ptr);
7c7b25bc
SF		 3486 else
3487#endif /* CIFS_WEAK_PW_HASH */
ee2c9258 3488 rc = SMBNTencrypt(tcon->password, ses->server->cryptkey,
9ef5992e 3489 bcc_ptr, nls_codepage);
eeac8047 3490
540b2e37 3491 bcc_ptr += CIFS_AUTH_RESP_SIZE;
fb8c4b14 3492 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 3493 /* must align unicode strings */
3494 *bcc_ptr = 0; /* null byte password */
3495 bcc_ptr++;
3496 }
eeac8047 3497 }
1da177e4 3498
96daf2b0 3499 if (ses->server->sec_mode &
a878fb22 3500 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 3501 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3502
3503 if (ses->capabilities & CAP_STATUS32) {
3504 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3505 }
3506 if (ses->capabilities & CAP_DFS) {
3507 smb_buffer->Flags2 |= SMBFLG2_DFS;
3508 }
3509 if (ses->capabilities & CAP_UNICODE) {
3510 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3511 length =
50c2f753
SF		 3512 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3513 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 3514 (/* server len*/ + 256 /* share len */), nls_codepage);
3515 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 3516 bcc_ptr += 2; /* skip trailing null */
3517 } else { /* ASCII */
1da177e4
LT		 3518 strcpy(bcc_ptr, tree);
3519 bcc_ptr += strlen(tree) + 1;
3520 }
3521 strcpy(bcc_ptr, "?????");
3522 bcc_ptr += strlen("?????");
3523 bcc_ptr += 1;
3524 count = bcc_ptr - &pSMB->Password[0];
be8e3b00
SF		 3525 pSMB->hdr.smb_buf_length = cpu_to_be32(be32_to_cpu(
3526 pSMB->hdr.smb_buf_length) + count);
1da177e4
LT		 3527 pSMB->ByteCount = cpu_to_le16(count);
3528
133672ef 3529 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
7749981e 3530 0);
1da177e4 3531
1da177e4
LT		 3532 /* above now done in SendReceive */
3533 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 3534 bool is_unicode;
3535
1da177e4 3536 tcon->tidStatus = CifsGood;
3b795210 3537 tcon->need_reconnect = false;
1da177e4
LT		 3538 tcon->tid = smb_buffer_response->Tid;
3539 bcc_ptr = pByteArea(smb_buffer_response);
690c522f 3540 bytes_left = get_bcc(smb_buffer_response);
cc20c031 3541 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 3542 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3543 is_unicode = true;
3544 else
3545 is_unicode = false;
3546
cc20c031 3547
50c2f753 3548 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 3549 if (length == 3) {
3550 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3551 (bcc_ptr[2] == 'C')) {
b6b38f70 3552 cFYI(1, "IPC connection");
7f8ed420
SF		 3553 tcon->ipc = 1;
3554 }
3555 } else if (length == 2) {
3556 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3557 /* the most common case */
b6b38f70 3558 cFYI(1, "disk share connection");
7f8ed420
SF		 3559 }
3560 }
50c2f753 3561 bcc_ptr += length + 1;
cc20c031 3562 bytes_left -= (length + 1);
1da177e4 3563 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 3564
3565 /* mostly informational -- no need to fail on error here */
90a98b2f 3566 kfree(tcon->nativeFileSystem);
d185cda7 3567 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 3568 bytes_left, is_unicode,
cc20c031
JL		 3569 nls_codepage);
3570
b6b38f70 3571 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 3572
fb8c4b14 3573 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 3574 (smb_buffer_response->WordCount == 7))
3575 /* field is in same location */
3979877e
SF		 3576 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3577 else
3578 tcon->Flags = 0;
b6b38f70 3579 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 3580 } else if ((rc == 0) && tcon == NULL) {
50c2f753 3581 /* all we need to save for IPC$ connection */
1da177e4
LT		 3582 ses->ipc_tid = smb_buffer_response->Tid;
3583 }
3584
a8a11d39 3585 cifs_buf_release(smb_buffer);
1da177e4
LT		 3586 return rc;
3587}
3588
2a9b9951
AV		 3589void
3590cifs_umount(struct cifs_sb_info *cifs_sb)
1da177e4 3591{
b647c35f
JL		 3592 struct rb_root *root = &cifs_sb->tlink_tree;
3593 struct rb_node *node;
3594 struct tcon_link *tlink;
9d002df4 3595
2de970ff
JL		 3596 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3597
b647c35f
JL		 3598 spin_lock(&cifs_sb->tlink_tree_lock);
3599 while ((node = rb_first(root))) {
3600 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3601 cifs_get_tlink(tlink);
3602 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3603 rb_erase(node, root);
1da177e4 3604
b647c35f
JL		 3605 spin_unlock(&cifs_sb->tlink_tree_lock);
3606 cifs_put_tlink(tlink);
3607 spin_lock(&cifs_sb->tlink_tree_lock);
3608 }
3609 spin_unlock(&cifs_sb->tlink_tree_lock);
50c2f753 3610
dd854466 3611 bdi_destroy(&cifs_sb->bdi);
d757d71b
AV		 3612 kfree(cifs_sb->mountdata);
3613 unload_nls(cifs_sb->local_nls);
3614 kfree(cifs_sb);
50c2f753 3615}
1da177e4 3616
96daf2b0 3617int cifs_negotiate_protocol(unsigned int xid, struct cifs_ses *ses)
1da177e4
LT		 3618{
3619 int rc = 0;
198b5682 3620 struct TCP_Server_Info *server = ses->server;
1da177e4 3621
198b5682
JL		 3622 /* only send once per connect */
3623 if (server->maxBuf != 0)
3624 return 0;
3625
3626 rc = CIFSSMBNegotiate(xid, ses);
3627 if (rc == -EAGAIN) {
3628 /* retry only once on 1st time connection */
3629 rc = CIFSSMBNegotiate(xid, ses);
3630 if (rc == -EAGAIN)
3631 rc = -EHOSTDOWN;
1da177e4 3632 }
198b5682
JL		 3633 if (rc == 0) {
3634 spin_lock(&GlobalMid_Lock);
7fdbaa1b 3635 if (server->tcpStatus == CifsNeedNegotiate)
198b5682
JL		 3636 server->tcpStatus = CifsGood;
3637 else
3638 rc = -EHOSTDOWN;
3639 spin_unlock(&GlobalMid_Lock);
26b994fa 3640
198b5682
JL		 3641 }
3642
3643 return rc;
3644}
3645
3646
96daf2b0 3647int cifs_setup_session(unsigned int xid, struct cifs_ses *ses,
198b5682
JL		 3648 struct nls_table *nls_info)
3649{
3650 int rc = 0;
3651 struct TCP_Server_Info *server = ses->server;
26b994fa 3652
198b5682
JL		 3653 ses->flags = 0;
3654 ses->capabilities = server->capabilities;
26b994fa 3655 if (linuxExtEnabled == 0)
198b5682 3656 ses->capabilities &= (~CAP_UNIX);
20418acd 3657
b6b38f70 3658 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
96daf2b0 3659 server->sec_mode, server->capabilities, server->timeAdj);
cb7691b6 3660
198b5682 3661 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 3662 if (rc) {
b6b38f70 3663 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 3664 } else {
5d0d2882
SP		 3665 mutex_lock(&ses->server->srv_mutex);
3666 if (!server->session_estab) {
21e73393 3667 server->session_key.response = ses->auth_key.response;
5d0d2882 3668 server->session_key.len = ses->auth_key.len;
21e73393
SP		 3669 server->sequence_number = 0x2;
3670 server->session_estab = true;
3671 ses->auth_key.response = NULL;
5d0d2882
SP		 3672 }
3673 mutex_unlock(&server->srv_mutex);
3674
b6b38f70 3675 cFYI(1, "CIFS Session Established successfully");
20418acd 3676 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3677 ses->status = CifsGood;
3678 ses->need_reconnect = false;
20418acd 3679 spin_unlock(&GlobalMid_Lock);
1da177e4 3680 }
26b994fa 3681
21e73393
SP		 3682 kfree(ses->auth_key.response);
3683 ses->auth_key.response = NULL;
3684 ses->auth_key.len = 0;
d3686d54
SP		 3685 kfree(ses->ntlmssp);
3686 ses->ntlmssp = NULL;
21e73393 3687
1da177e4
LT		 3688 return rc;
3689}
3690
96daf2b0 3691static struct cifs_tcon *
9d002df4
JL		 3692cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3693{
96daf2b0
SF		 3694 struct cifs_tcon *master_tcon = cifs_sb_master_tcon(cifs_sb);
3695 struct cifs_ses *ses;
3696 struct cifs_tcon *tcon = NULL;
9d002df4 3697 struct smb_vol *vol_info;
34c87901
SF		 3698 char username[28]; /* big enough for "krb50x" + hex of ULONG_MAX 6+16 */
3699 /* We used to have this as MAX_USERNAME which is */
3700 /* way too big now (256 instead of 32) */
9d002df4
JL		 3701
3702 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3703 if (vol_info == NULL) {
3704 tcon = ERR_PTR(-ENOMEM);
3705 goto out;
3706 }
3707
ea1be1a3 3708 snprintf(username, sizeof(username), "krb50x%x", fsuid);
9d002df4
JL		 3709 vol_info->username = username;
3710 vol_info->local_nls = cifs_sb->local_nls;
3711 vol_info->linux_uid = fsuid;
3712 vol_info->cred_uid = fsuid;
3713 vol_info->UNC = master_tcon->treeName;
3714 vol_info->retry = master_tcon->retry;
3715 vol_info->nocase = master_tcon->nocase;
3716 vol_info->local_lease = master_tcon->local_lease;
3717 vol_info->no_linux_ext = !master_tcon->unix_ext;
3718
3719 /* FIXME: allow for other secFlg settings */
3720 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3721
3722 /* get a reference for the same TCP session */
3f9bcca7 3723 spin_lock(&cifs_tcp_ses_lock);
9d002df4 3724 ++master_tcon->ses->server->srv_count;
3f9bcca7 3725 spin_unlock(&cifs_tcp_ses_lock);
9d002df4
JL		 3726
3727 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3728 if (IS_ERR(ses)) {
96daf2b0 3729 tcon = (struct cifs_tcon *)ses;
9d002df4
JL		 3730 cifs_put_tcp_session(master_tcon->ses->server);
3731 goto out;
3732 }
3733
3734 tcon = cifs_get_tcon(ses, vol_info);
3735 if (IS_ERR(tcon)) {
3736 cifs_put_smb_ses(ses);
3737 goto out;
3738 }
3739
3740 if (ses->capabilities & CAP_UNIX)
3741 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3742out:
3743 kfree(vol_info);
3744
3745 return tcon;
3746}
3747
96daf2b0 3748struct cifs_tcon *
9d002df4
JL		 3749cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3750{
3751 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3752}
3753
3754static int
3755cifs_sb_tcon_pending_wait(void *unused)
3756{
3757 schedule();
3758 return signal_pending(current) ? -ERESTARTSYS : 0;
3759}
3760
b647c35f
JL		 3761/* find and return a tlink with given uid */
3762static struct tcon_link *
3763tlink_rb_search(struct rb_root *root, uid_t uid)
3764{
3765 struct rb_node *node = root->rb_node;
3766 struct tcon_link *tlink;
3767
3768 while (node) {
3769 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3770
3771 if (tlink->tl_uid > uid)
3772 node = node->rb_left;
3773 else if (tlink->tl_uid < uid)
3774 node = node->rb_right;
3775 else
3776 return tlink;
3777 }
3778 return NULL;
3779}
3780
3781/* insert a tcon_link into the tree */
3782static void
3783tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
3784{
3785 struct rb_node **new = &(root->rb_node), *parent = NULL;
3786 struct tcon_link *tlink;
3787
3788 while (*new) {
3789 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
3790 parent = *new;
3791
3792 if (tlink->tl_uid > new_tlink->tl_uid)
3793 new = &((*new)->rb_left);
3794 else
3795 new = &((*new)->rb_right);
3796 }
3797
3798 rb_link_node(&new_tlink->tl_rbnode, parent, new);
3799 rb_insert_color(&new_tlink->tl_rbnode, root);
3800}
3801
9d002df4
JL		 3802/*
3803 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3804 * current task.
3805 *
3806 * If the superblock doesn't refer to a multiuser mount, then just return
3807 * the master tcon for the mount.
3808 *
6ef933a3 3809 * First, search the rbtree for an existing tcon for this fsuid. If one
9d002df4
JL		 3810 * exists, then check to see if it's pending construction. If it is then wait
3811 * for construction to complete. Once it's no longer pending, check to see if
3812 * it failed and either return an error or retry construction, depending on
3813 * the timeout.
3814 *
3815 * If one doesn't exist then insert a new tcon_link struct into the tree and
3816 * try to construct a new one.
3817 */
3818struct tcon_link *
3819cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3820{
3821 int ret;
b647c35f 3822 uid_t fsuid = current_fsuid();
9d002df4
JL		 3823 struct tcon_link *tlink, *newtlink;
3824
3825 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3826 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3827
3828 spin_lock(&cifs_sb->tlink_tree_lock);
b647c35f 3829 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
9d002df4
JL		 3830 if (tlink)
3831 cifs_get_tlink(tlink);
3832 spin_unlock(&cifs_sb->tlink_tree_lock);
3833
3834 if (tlink == NULL) {
3835 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3836 if (newtlink == NULL)
3837 return ERR_PTR(-ENOMEM);
b647c35f 3838 newtlink->tl_uid = fsuid;
9d002df4
JL		 3839 newtlink->tl_tcon = ERR_PTR(-EACCES);
3840 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3841 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3842 cifs_get_tlink(newtlink);
3843
9d002df4
JL		 3844 spin_lock(&cifs_sb->tlink_tree_lock);
3845 /* was one inserted after previous search? */
b647c35f 3846 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
9d002df4
JL		 3847 if (tlink) {
3848 cifs_get_tlink(tlink);
3849 spin_unlock(&cifs_sb->tlink_tree_lock);
9d002df4
JL		 3850 kfree(newtlink);
3851 goto wait_for_construction;
3852 }
9d002df4 3853 tlink = newtlink;
b647c35f
JL		 3854 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3855 spin_unlock(&cifs_sb->tlink_tree_lock);
9d002df4
JL		 3856 } else {
3857wait_for_construction:
3858 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3859 cifs_sb_tcon_pending_wait,
3860 TASK_INTERRUPTIBLE);
3861 if (ret) {
3862 cifs_put_tlink(tlink);
3863 return ERR_PTR(ret);
3864 }
3865
3866 /* if it's good, return it */
3867 if (!IS_ERR(tlink->tl_tcon))
3868 return tlink;
3869
3870 /* return error if we tried this already recently */
3871 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3872 cifs_put_tlink(tlink);
3873 return ERR_PTR(-EACCES);
3874 }
3875
3876 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3877 goto wait_for_construction;
3878 }
3879
3880 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3881 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3882 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3883
3884 if (IS_ERR(tlink->tl_tcon)) {
3885 cifs_put_tlink(tlink);
3886 return ERR_PTR(-EACCES);
3887 }
3888
3889 return tlink;
3890}
2de970ff
JL		 3891
3892/*
3893 * periodic workqueue job that scans tcon_tree for a superblock and closes
3894 * out tcons.
3895 */
3896static void
3897cifs_prune_tlinks(struct work_struct *work)
3898{
3899 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3900 prune_tlinks.work);
b647c35f
JL		 3901 struct rb_root *root = &cifs_sb->tlink_tree;
3902 struct rb_node *node = rb_first(root);
3903 struct rb_node *tmp;
3904 struct tcon_link *tlink;
2de970ff 3905
b647c35f
JL		 3906 /*
3907 * Because we drop the spinlock in the loop in order to put the tlink
3908 * it's not guarded against removal of links from the tree. The only
3909 * places that remove entries from the tree are this function and
3910 * umounts. Because this function is non-reentrant and is canceled
3911 * before umount can proceed, this is safe.
3912 */
3913 spin_lock(&cifs_sb->tlink_tree_lock);
3914 node = rb_first(root);
3915 while (node != NULL) {
3916 tmp = node;
3917 node = rb_next(tmp);
3918 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
3919
3920 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
3921 atomic_read(&tlink->tl_count) != 0 ||
3922 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
3923 continue;
2de970ff 3924
b647c35f
JL		 3925 cifs_get_tlink(tlink);
3926 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3927 rb_erase(tmp, root);
3928
3929 spin_unlock(&cifs_sb->tlink_tree_lock);
3930 cifs_put_tlink(tlink);
3931 spin_lock(&cifs_sb->tlink_tree_lock);
3932 }
3933 spin_unlock(&cifs_sb->tlink_tree_lock);
2de970ff
JL		 3934
3935 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3936 TLINK_IDLE_EXPIRE);
3937}
Linux kernel - Deliverables
This page took 1.155834 seconds and 5 git commands to generate.