projects / deliverable / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
cifs: eliminate is_multi_rsp parm to find_cifs_mid
[deliverable/linux.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
488f1d2d 50#include "fscache.h"
1da177e4
LT		 51
52#define CIFS_PORT 445
53#define RFC1001_PORT 139
54
c74093b6
JL		 55/* SMB echo "timeout" -- FIXME: tunable? */
56#define SMB_ECHO_INTERVAL (60 * HZ)
57
1da177e4
LT		 58extern mempool_t *cifs_req_poolp;
59
2de970ff 60/* FIXME: should these be tunable? */
9d002df4 61#define TLINK_ERROR_EXPIRE (1 * HZ)
2de970ff 62#define TLINK_IDLE_EXPIRE (600 * HZ)
9d002df4 63
a9f1b85e
PS		 64static int ip_connect(struct TCP_Server_Info *server);
65static int generic_ip_connect(struct TCP_Server_Info *server);
b647c35f 66static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
2de970ff 67static void cifs_prune_tlinks(struct work_struct *work);
b9bce2e9
JL		 68static int cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
69 const char *devname);
1da177e4 70
d5c5605c
JL		 71/*
72 * cifs tcp session reconnection
73 *
74 * mark tcp session as reconnecting so temporarily locked
75 * mark all smb sessions as reconnecting for tcp session
76 * reconnect tcp session
77 * wake up waiters on reconnection? - (not needed currently)
78 */
2cd646a2 79static int
1da177e4
LT		 80cifs_reconnect(struct TCP_Server_Info *server)
81{
82 int rc = 0;
f1987b44 83 struct list_head *tmp, *tmp2;
96daf2b0
SF		 84 struct cifs_ses *ses;
85 struct cifs_tcon *tcon;
fb8c4b14 86 struct mid_q_entry *mid_entry;
3c1105df 87 struct list_head retry_list;
50c2f753 88
1da177e4 89 spin_lock(&GlobalMid_Lock);
469ee614 90 if (server->tcpStatus == CifsExiting) {
fb8c4b14 91 /* the demux thread will exit normally
1da177e4
LT		 92 next time through the loop */
93 spin_unlock(&GlobalMid_Lock);
94 return rc;
95 } else
96 server->tcpStatus = CifsNeedReconnect;
97 spin_unlock(&GlobalMid_Lock);
98 server->maxBuf = 0;
99
b6b38f70 100 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 101
102 /* before reconnecting the tcp session, mark the smb session (uid)
103 and the tid bad so they are not used until reconnected */
2b84a36c 104 cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
3f9bcca7 105 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 106 list_for_each(tmp, &server->smb_ses_list) {
96daf2b0 107 ses = list_entry(tmp, struct cifs_ses, smb_ses_list);
14fbf50d
JL		 108 ses->need_reconnect = true;
109 ses->ipc_tid = 0;
f1987b44 110 list_for_each(tmp2, &ses->tcon_list) {
96daf2b0 111 tcon = list_entry(tmp2, struct cifs_tcon, tcon_list);
3b795210 112 tcon->need_reconnect = true;
1da177e4 113 }
1da177e4 114 }
3f9bcca7 115 spin_unlock(&cifs_tcp_ses_lock);
2b84a36c 116
1da177e4 117 /* do not want to be sending data on a socket we are freeing */
2b84a36c 118 cFYI(1, "%s: tearing down socket", __func__);
72ca545b 119 mutex_lock(&server->srv_mutex);
fb8c4b14 120 if (server->ssocket) {
b6b38f70
JP		 121 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
122 server->ssocket->flags);
91cf45f0 123 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 124 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 125 server->ssocket->state,
b6b38f70 126 server->ssocket->flags);
1da177e4
LT		 127 sock_release(server->ssocket);
128 server->ssocket = NULL;
129 }
5d0d2882
SP		 130 server->sequence_number = 0;
131 server->session_estab = false;
21e73393
SP		 132 kfree(server->session_key.response);
133 server->session_key.response = NULL;
134 server->session_key.len = 0;
fda35943 135 server->lstrp = jiffies;
2b84a36c 136 mutex_unlock(&server->srv_mutex);
1da177e4 137
2b84a36c 138 /* mark submitted MIDs for retry and issue callback */
3c1105df
JL		 139 INIT_LIST_HEAD(&retry_list);
140 cFYI(1, "%s: moving mids to private list", __func__);
1da177e4 141 spin_lock(&GlobalMid_Lock);
2b84a36c
JL		 142 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
143 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
144 if (mid_entry->midState == MID_REQUEST_SUBMITTED)
ad8b15f0 145 mid_entry->midState = MID_RETRY_NEEDED;
3c1105df
JL		 146 list_move(&mid_entry->qhead, &retry_list);
147 }
148 spin_unlock(&GlobalMid_Lock);
149
150 cFYI(1, "%s: issuing mid callbacks", __func__);
151 list_for_each_safe(tmp, tmp2, &retry_list) {
152 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
2b84a36c
JL		 153 list_del_init(&mid_entry->qhead);
154 mid_entry->callback(mid_entry);
1da177e4 155 }
1da177e4 156
7fdbaa1b 157 do {
6c3d8909 158 try_to_freeze();
a9f1b85e
PS		 159
160 /* we should try only the port we connected to before */
161 rc = generic_ip_connect(server);
fb8c4b14 162 if (rc) {
b6b38f70 163 cFYI(1, "reconnect error %d", rc);
0cb766ae 164 msleep(3000);
1da177e4
LT		 165 } else {
166 atomic_inc(&tcpSesReconnectCount);
167 spin_lock(&GlobalMid_Lock);
469ee614 168 if (server->tcpStatus != CifsExiting)
fd88ce93 169 server->tcpStatus = CifsNeedNegotiate;
fb8c4b14 170 spin_unlock(&GlobalMid_Lock);
1da177e4 171 }
7fdbaa1b 172 } while (server->tcpStatus == CifsNeedReconnect);
2b84a36c 173
1da177e4
LT		 174 return rc;
175}
176
fb8c4b14 177/*
e4eb295d
SF		 178 return codes:
179 0 not a transact2, or all data present
180 >0 transact2 with that much data missing
181 -EINVAL = invalid transact2
182
183 */
c974befa 184static int check2ndT2(struct smb_hdr *pSMB)
e4eb295d 185{
fb8c4b14 186 struct smb_t2_rsp *pSMBt;
e4eb295d 187 int remaining;
26ec2548 188 __u16 total_data_size, data_in_this_rsp;
e4eb295d 189
fb8c4b14 190 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 191 return 0;
192
fb8c4b14
SF		 193 /* check for plausible wct, bcc and t2 data and parm sizes */
194 /* check for parm and data offset going beyond end of smb */
195 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 196 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 197 return -EINVAL;
198 }
199
200 pSMBt = (struct smb_t2_rsp *)pSMB;
201
26ec2548
JL		 202 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
203 data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
e4eb295d 204
c0c7b905 205 if (total_data_size == data_in_this_rsp)
e4eb295d 206 return 0;
c0c7b905 207 else if (total_data_size < data_in_this_rsp) {
b6b38f70
JP		 208 cFYI(1, "total data %d smaller than data in frame %d",
209 total_data_size, data_in_this_rsp);
e4eb295d 210 return -EINVAL;
e4eb295d 211 }
c0c7b905
JL		 212
213 remaining = total_data_size - data_in_this_rsp;
214
215 cFYI(1, "missing %d bytes from transact2, check next response",
216 remaining);
c974befa 217 if (total_data_size > CIFSMaxBufSize) {
c0c7b905 218 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
c974befa 219 total_data_size, CIFSMaxBufSize);
c0c7b905
JL		 220 return -EINVAL;
221 }
222 return remaining;
e4eb295d
SF		 223}
224
fb8c4b14 225static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 226{
227 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
228 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
fb8c4b14
SF		 229 char *data_area_of_target;
230 char *data_area_of_buf2;
26ec2548 231 int remaining;
2a2047bc
JL		 232 unsigned int byte_count, total_in_buf;
233 __u16 total_data_size, total_in_buf2;
e4eb295d 234
26ec2548 235 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
e4eb295d 236
26ec2548
JL		 237 if (total_data_size !=
238 get_unaligned_le16(&pSMB2->t2_rsp.TotalDataCount))
b6b38f70 239 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d 240
26ec2548 241 total_in_buf = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
e4eb295d
SF		 242
243 remaining = total_data_size - total_in_buf;
50c2f753 244
fb8c4b14 245 if (remaining < 0)
2a2047bc 246 return -EPROTO;
e4eb295d 247
fb8c4b14 248 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 249 return 0;
50c2f753 250
26ec2548 251 total_in_buf2 = get_unaligned_le16(&pSMB2->t2_rsp.DataCount);
fb8c4b14 252 if (remaining < total_in_buf2) {
b6b38f70 253 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 254 }
255
256 /* find end of first SMB data area */
fb8c4b14 257 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
26ec2548 258 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
e4eb295d
SF		 259 /* validate target area */
260
26ec2548
JL		 261 data_area_of_buf2 = (char *)&pSMB2->hdr.Protocol +
262 get_unaligned_le16(&pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 263
264 data_area_of_target += total_in_buf;
265
266 /* copy second buffer into end of first buffer */
e4eb295d 267 total_in_buf += total_in_buf2;
2a2047bc
JL		 268 /* is the result too big for the field? */
269 if (total_in_buf > USHRT_MAX)
270 return -EPROTO;
26ec2548 271 put_unaligned_le16(total_in_buf, &pSMBt->t2_rsp.DataCount);
2a2047bc
JL		 272
273 /* fix up the BCC */
820a803f 274 byte_count = get_bcc(pTargetSMB);
e4eb295d 275 byte_count += total_in_buf2;
2a2047bc
JL		 276 /* is the result too big for the field? */
277 if (byte_count > USHRT_MAX)
278 return -EPROTO;
820a803f 279 put_bcc(byte_count, pTargetSMB);
e4eb295d 280
be8e3b00 281 byte_count = be32_to_cpu(pTargetSMB->smb_buf_length);
e4eb295d 282 byte_count += total_in_buf2;
2a2047bc
JL		 283 /* don't allow buffer to overflow */
284 if (byte_count > CIFSMaxBufSize)
285 return -ENOBUFS;
be8e3b00 286 pTargetSMB->smb_buf_length = cpu_to_be32(byte_count);
e4eb295d 287
2a2047bc
JL		 288 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
289
fb8c4b14 290 if (remaining == total_in_buf2) {
b6b38f70 291 cFYI(1, "found the last secondary response");
e4eb295d
SF		 292 return 0; /* we are done */
293 } else /* more responses to go */
294 return 1;
e4eb295d
SF		 295}
296
c74093b6
JL		 297static void
298cifs_echo_request(struct work_struct *work)
299{
300 int rc;
301 struct TCP_Server_Info *server = container_of(work,
302 struct TCP_Server_Info, echo.work);
303
247ec9b4 304 /*
195291e6
JL		 305 * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
306 * done, which is indicated by maxBuf != 0. Also, no need to ping if
307 * we got a response recently
247ec9b4 308 */
195291e6 309 if (server->maxBuf == 0 ||
247ec9b4 310 time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
c74093b6
JL		 311 goto requeue_echo;
312
313 rc = CIFSSMBEcho(server);
314 if (rc)
315 cFYI(1, "Unable to send echo request to server: %s",
316 server->hostname);
317
318requeue_echo:
319 queue_delayed_work(system_nrt_wq, &server->echo, SMB_ECHO_INTERVAL);
320}
321
3d9c2472
PS		 322static bool
323allocate_buffers(char **bigbuf, char **smallbuf, unsigned int size,
324 bool is_large_buf)
325{
326 char *bbuf = *bigbuf, *sbuf = *smallbuf;
327
328 if (bbuf == NULL) {
329 bbuf = (char *)cifs_buf_get();
330 if (!bbuf) {
331 cERROR(1, "No memory for large SMB response");
332 msleep(3000);
333 /* retry will check if exiting */
334 return false;
335 }
336 } else if (is_large_buf) {
337 /* we are reusing a dirty large buf, clear its start */
338 memset(bbuf, 0, size);
339 }
340
341 if (sbuf == NULL) {
342 sbuf = (char *)cifs_small_buf_get();
343 if (!sbuf) {
344 cERROR(1, "No memory for SMB response");
345 msleep(1000);
346 /* retry will check if exiting */
347 return false;
348 }
349 /* beginning of smb buffer is cleared in our buf_get */
350 } else {
351 /* if existing small buf clear beginning */
352 memset(sbuf, 0, size);
353 }
354
355 *bigbuf = bbuf;
356 *smallbuf = sbuf;
357
358 return true;
359}
360
ba749e6d
JL		 361static bool
362server_unresponsive(struct TCP_Server_Info *server)
363{
364 if (echo_retries > 0 && server->tcpStatus == CifsGood &&
365 time_after(jiffies, server->lstrp +
366 (echo_retries * SMB_ECHO_INTERVAL))) {
367 cERROR(1, "Server %s has not responded in %d seconds. "
368 "Reconnecting...", server->hostname,
369 (echo_retries * SMB_ECHO_INTERVAL / HZ));
370 cifs_reconnect(server);
371 wake_up(&server->response_q);
372 return true;
373 }
374
375 return false;
376}
377
42c4dfc2
JL		 378/*
379 * kvec_array_init - clone a kvec array, and advance into it
380 * @new: pointer to memory for cloned array
381 * @iov: pointer to original array
382 * @nr_segs: number of members in original array
383 * @bytes: number of bytes to advance into the cloned array
384 *
385 * This function will copy the array provided in iov to a section of memory
386 * and advance the specified number of bytes into the new array. It returns
387 * the number of segments in the new array. "new" must be at least as big as
388 * the original iov array.
389 */
390static unsigned int
391kvec_array_init(struct kvec *new, struct kvec *iov, unsigned int nr_segs,
392 size_t bytes)
393{
394 size_t base = 0;
395
396 while (bytes || !iov->iov_len) {
397 int copy = min(bytes, iov->iov_len);
398
399 bytes -= copy;
400 base += copy;
401 if (iov->iov_len == base) {
402 iov++;
403 nr_segs--;
404 base = 0;
405 }
406 }
407 memcpy(new, iov, sizeof(*iov) * nr_segs);
408 new->iov_base += base;
409 new->iov_len -= base;
410 return nr_segs;
411}
412
1041e3f9
JL		 413static struct kvec *
414get_server_iovec(struct TCP_Server_Info *server, unsigned int nr_segs)
415{
416 struct kvec *new_iov;
417
418 if (server->iov && nr_segs <= server->nr_iov)
419 return server->iov;
420
421 /* not big enough -- allocate a new one and release the old */
422 new_iov = kmalloc(sizeof(*new_iov) * nr_segs, GFP_NOFS);
423 if (new_iov) {
424 kfree(server->iov);
425 server->iov = new_iov;
426 server->nr_iov = nr_segs;
427 }
428 return new_iov;
429}
430
e7015fb1 431static int
42c4dfc2
JL		 432readv_from_socket(struct TCP_Server_Info *server, struct kvec *iov_orig,
433 unsigned int nr_segs, unsigned int to_read)
e7015fb1 434{
a52c1eb7
JL		 435 int length = 0;
436 int total_read;
42c4dfc2 437 unsigned int segs;
e831e6cf 438 struct msghdr smb_msg;
42c4dfc2
JL		 439 struct kvec *iov;
440
1041e3f9 441 iov = get_server_iovec(server, nr_segs);
42c4dfc2
JL		 442 if (!iov)
443 return -ENOMEM;
e7015fb1 444
e831e6cf
JL		 445 smb_msg.msg_control = NULL;
446 smb_msg.msg_controllen = 0;
447
a52c1eb7 448 for (total_read = 0; to_read; total_read += length, to_read -= length) {
ba749e6d 449 if (server_unresponsive(server)) {
a52c1eb7 450 total_read = -EAGAIN;
ba749e6d
JL		 451 break;
452 }
453
42c4dfc2
JL		 454 segs = kvec_array_init(iov, iov_orig, nr_segs, total_read);
455
456 length = kernel_recvmsg(server->ssocket, &smb_msg,
457 iov, segs, to_read, 0);
458
e7015fb1 459 if (server->tcpStatus == CifsExiting) {
a52c1eb7 460 total_read = -ESHUTDOWN;
e7015fb1
PS		 461 break;
462 } else if (server->tcpStatus == CifsNeedReconnect) {
463 cifs_reconnect(server);
a52c1eb7 464 total_read = -EAGAIN;
e7015fb1
PS		 465 break;
466 } else if (length == -ERESTARTSYS ||
467 length == -EAGAIN ||
468 length == -EINTR) {
469 /*
470 * Minimum sleep to prevent looping, allowing socket
471 * to clear and app threads to set tcpStatus
472 * CifsNeedReconnect if server hung.
473 */
474 usleep_range(1000, 2000);
475 length = 0;
a52c1eb7 476 continue;
e7015fb1 477 } else if (length <= 0) {
a52c1eb7
JL		 478 cFYI(1, "Received no data or error: expecting %d "
479 "got %d", to_read, length);
e7015fb1 480 cifs_reconnect(server);
a52c1eb7 481 total_read = -EAGAIN;
e7015fb1
PS		 482 break;
483 }
484 }
a52c1eb7 485 return total_read;
e7015fb1
PS		 486}
487
42c4dfc2
JL		 488static int
489read_from_socket(struct TCP_Server_Info *server, char *buf,
490 unsigned int to_read)
491{
492 struct kvec iov;
493
494 iov.iov_base = buf;
495 iov.iov_len = to_read;
496
497 return readv_from_socket(server, &iov, 1, to_read);
498}
499
98bac62c 500static bool
fe11e4cc 501is_smb_response(struct TCP_Server_Info *server, unsigned char type)
98bac62c 502{
98bac62c
PS		 503 /*
504 * The first byte big endian of the length field,
505 * is actually not part of the length but the type
506 * with the most common, zero, as regular data.
507 */
fe11e4cc
JL		 508 switch (type) {
509 case RFC1002_SESSION_MESSAGE:
510 /* Regular SMB response */
511 return true;
512 case RFC1002_SESSION_KEEP_ALIVE:
513 cFYI(1, "RFC 1002 session keep alive");
514 break;
515 case RFC1002_POSITIVE_SESSION_RESPONSE:
516 cFYI(1, "RFC 1002 positive session response");
517 break;
518 case RFC1002_NEGATIVE_SESSION_RESPONSE:
98bac62c
PS		 519 /*
520 * We get this from Windows 98 instead of an error on
521 * SMB negprot response.
522 */
fe11e4cc 523 cFYI(1, "RFC 1002 negative session response");
98bac62c
PS		 524 /* give server a second to clean up */
525 msleep(1000);
526 /*
527 * Always try 445 first on reconnect since we get NACK
528 * on some if we ever connected to port 139 (the NACK
529 * is since we do not begin with RFC1001 session
530 * initialize frame).
531 */
fe11e4cc 532 cifs_set_port((struct sockaddr *)&server->dstaddr, CIFS_PORT);
98bac62c
PS		 533 cifs_reconnect(server);
534 wake_up(&server->response_q);
fe11e4cc
JL		 535 break;
536 default:
537 cERROR(1, "RFC 1002 unknown response type 0x%x", type);
98bac62c 538 cifs_reconnect(server);
98bac62c
PS		 539 }
540
fe11e4cc 541 return false;
98bac62c
PS		 542}
543
ad69bae1 544static struct mid_q_entry *
ea1f4502 545find_mid(struct TCP_Server_Info *server, struct smb_hdr *buf)
ad69bae1 546{
ea1f4502 547 struct mid_q_entry *mid;
ad69bae1
PS		 548
549 spin_lock(&GlobalMid_Lock);
ea1f4502
JL		 550 list_for_each_entry(mid, &server->pending_mid_q, qhead) {
551 if (mid->mid == buf->Mid &&
552 mid->midState == MID_REQUEST_SUBMITTED &&
553 mid->command == buf->Command) {
554 spin_unlock(&GlobalMid_Lock);
555 return mid;
ad69bae1 556 }
ea1f4502
JL		 557 }
558 spin_unlock(&GlobalMid_Lock);
559 return NULL;
560}
561
562static void
563dequeue_mid(struct mid_q_entry *mid, int malformed)
564{
ad69bae1 565#ifdef CONFIG_CIFS_STATS2
ea1f4502 566 mid->when_received = jiffies;
ad69bae1 567#endif
ea1f4502
JL		 568 spin_lock(&GlobalMid_Lock);
569 if (!malformed)
570 mid->midState = MID_RESPONSE_RECEIVED;
571 else
572 mid->midState = MID_RESPONSE_MALFORMED;
573 list_del_init(&mid->qhead);
ad69bae1 574 spin_unlock(&GlobalMid_Lock);
ea1f4502 575}
ad69bae1 576
ea1f4502
JL		 577static struct mid_q_entry *
578find_cifs_mid(struct TCP_Server_Info *server, struct smb_hdr *buf,
ffc00e27 579 int malformed, bool is_large_buf, char **bigbuf)
ea1f4502
JL		 580{
581 struct mid_q_entry *mid = NULL;
582
583 mid = find_mid(server, buf);
584 if (!mid)
585 return mid;
586
ffc00e27
JL		 587 if (malformed == 0 && check2ndT2(buf) > 0) {
588 mid->multiRsp = true;
ea1f4502
JL		 589 if (mid->resp_buf) {
590 /* merge response - fix up 1st*/
ffc00e27
JL		 591 malformed = coalesce_t2(buf, mid->resp_buf);
592 if (malformed > 0)
593 return mid;
594
ea1f4502
JL		 595 /* All parts received or packet is malformed. */
596 mid->multiEnd = true;
597 goto multi_t2_fnd;
598 }
599 if (!is_large_buf) {
600 /*FIXME: switch to already allocated largebuf?*/
601 cERROR(1, "1st trans2 resp needs bigbuf");
602 } else {
603 /* Have first buffer */
604 mid->resp_buf = buf;
605 mid->largeBuf = true;
606 *bigbuf = NULL;
607 }
608 return mid;
609 }
610 mid->resp_buf = buf;
611 mid->largeBuf = is_large_buf;
612multi_t2_fnd:
ffc00e27 613 dequeue_mid(mid, malformed);
ea1f4502 614 return mid;
ad69bae1
PS		 615}
616
762dfd10
PS		 617static void clean_demultiplex_info(struct TCP_Server_Info *server)
618{
619 int length;
620
621 /* take it off the list, if it's not already */
622 spin_lock(&cifs_tcp_ses_lock);
623 list_del_init(&server->tcp_ses_list);
624 spin_unlock(&cifs_tcp_ses_lock);
625
626 spin_lock(&GlobalMid_Lock);
627 server->tcpStatus = CifsExiting;
628 spin_unlock(&GlobalMid_Lock);
629 wake_up_all(&server->response_q);
630
631 /*
632 * Check if we have blocked requests that need to free. Note that
633 * cifs_max_pending is normally 50, but can be set at module install
634 * time to as little as two.
635 */
636 spin_lock(&GlobalMid_Lock);
637 if (atomic_read(&server->inFlight) >= cifs_max_pending)
638 atomic_set(&server->inFlight, cifs_max_pending - 1);
639 /*
640 * We do not want to set the max_pending too low or we could end up
641 * with the counter going negative.
642 */
643 spin_unlock(&GlobalMid_Lock);
644 /*
645 * Although there should not be any requests blocked on this queue it
646 * can not hurt to be paranoid and try to wake up requests that may
647 * haven been blocked when more than 50 at time were on the wire to the
648 * same server - they now will see the session is in exit state and get
649 * out of SendReceive.
650 */
651 wake_up_all(&server->request_q);
652 /* give those requests time to exit */
653 msleep(125);
654
655 if (server->ssocket) {
656 sock_release(server->ssocket);
657 server->ssocket = NULL;
658 }
659
660 if (!list_empty(&server->pending_mid_q)) {
661 struct list_head dispose_list;
662 struct mid_q_entry *mid_entry;
663 struct list_head *tmp, *tmp2;
664
665 INIT_LIST_HEAD(&dispose_list);
666 spin_lock(&GlobalMid_Lock);
667 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
668 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
669 cFYI(1, "Clearing mid 0x%x", mid_entry->mid);
670 mid_entry->midState = MID_SHUTDOWN;
671 list_move(&mid_entry->qhead, &dispose_list);
672 }
673 spin_unlock(&GlobalMid_Lock);
674
675 /* now walk dispose list and issue callbacks */
676 list_for_each_safe(tmp, tmp2, &dispose_list) {
677 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
678 cFYI(1, "Callback mid 0x%x", mid_entry->mid);
679 list_del_init(&mid_entry->qhead);
680 mid_entry->callback(mid_entry);
681 }
682 /* 1/8th of sec is more than enough time for them to exit */
683 msleep(125);
684 }
685
686 if (!list_empty(&server->pending_mid_q)) {
687 /*
688 * mpx threads have not exited yet give them at least the smb
689 * send timeout time for long ops.
690 *
691 * Due to delays on oplock break requests, we need to wait at
692 * least 45 seconds before giving up on a request getting a
693 * response and going ahead and killing cifsd.
694 */
695 cFYI(1, "Wait for exit from demultiplex thread");
696 msleep(46000);
697 /*
698 * If threads still have not exited they are probably never
699 * coming home not much else we can do but free the memory.
700 */
701 }
702
703 kfree(server->hostname);
1041e3f9 704 kfree(server->iov);
762dfd10
PS		 705 kfree(server);
706
707 length = atomic_dec_return(&tcpSesAllocCount);
708 if (length > 0)
709 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
710 GFP_KERNEL);
711}
712
1da177e4 713static int
7c97c200 714cifs_demultiplex_thread(void *p)
1da177e4
LT		 715{
716 int length;
7c97c200 717 struct TCP_Server_Info *server = p;
1da177e4 718 unsigned int pdu_length, total_read;
3d9c2472 719 char *buf = NULL, *bigbuf = NULL, *smallbuf = NULL;
1da177e4 720 struct smb_hdr *smb_buffer = NULL;
1da177e4
LT		 721 struct task_struct *task_to_wake = NULL;
722 struct mid_q_entry *mid_entry;
4b18f2a9 723 bool isLargeBuf = false;
1da177e4 724
1da177e4 725 current->flags |= PF_MEMALLOC;
b6b38f70 726 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 727
728 length = atomic_inc_return(&tcpSesAllocCount);
729 if (length > 1)
26f57364
SF		 730 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
731 GFP_KERNEL);
1da177e4 732
83144186 733 set_freezable();
469ee614 734 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 735 if (try_to_freeze())
736 continue;
b8643e1b 737
3d9c2472
PS		 738 if (!allocate_buffers(&bigbuf, &smallbuf,
739 sizeof(struct smb_hdr), isLargeBuf))
740 continue;
b8643e1b 741
4b18f2a9 742 isLargeBuf = false;
3d9c2472
PS		 743 smb_buffer = (struct smb_hdr *)smallbuf;
744 buf = smallbuf;
f01d5e14 745 pdu_length = 4; /* enough to get RFC1001 header */
fda35943 746
a52c1eb7
JL		 747 length = read_from_socket(server, buf, pdu_length);
748 if (length < 0)
1da177e4 749 continue;
a52c1eb7 750 total_read = length;
1da177e4 751
98bac62c
PS		 752 /*
753 * The right amount was read from socket - 4 bytes,
754 * so we can now interpret the length field.
755 */
be8e3b00 756 pdu_length = be32_to_cpu(smb_buffer->smb_buf_length);
70ca734a 757
fe11e4cc
JL		 758 cFYI(1, "RFC1002 header 0x%x", pdu_length);
759 if (!is_smb_response(server, buf[0]))
fb8c4b14 760 continue;
e4eb295d 761
89482a56
JL		 762 /* make sure we have enough to get to the MID */
763 if (pdu_length < sizeof(struct smb_hdr) - 1 - 4) {
764 cERROR(1, "SMB response too short (%u bytes)",
765 pdu_length);
766 cifs_reconnect(server);
767 wake_up(&server->response_q);
768 continue;
769 }
770
771 /* read down to the MID */
772 length = read_from_socket(server, buf + 4,
773 sizeof(struct smb_hdr) - 1 - 4);
774 if (length < 0)
775 continue;
776 total_read += length;
777
778 if (pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
779 cERROR(1, "SMB response too long (%u bytes)",
780 pdu_length);
fe11e4cc
JL		 781 cifs_reconnect(server);
782 wake_up(&server->response_q);
783 continue;
784 }
785
e4eb295d 786 /* else length ok */
fb8c4b14 787 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 788 isLargeBuf = true;
89482a56 789 memcpy(bigbuf, smallbuf, total_read);
3d9c2472
PS		 790 smb_buffer = (struct smb_hdr *)bigbuf;
791 buf = bigbuf;
e4eb295d 792 }
e7015fb1 793
89482a56
JL		 794 /* now read the rest */
795 length = read_from_socket(server,
796 buf + sizeof(struct smb_hdr) - 1,
797 pdu_length - sizeof(struct smb_hdr) + 1 + 4);
a52c1eb7 798 if (length < 0)
e4eb295d 799 continue;
a52c1eb7 800 total_read += length;
50c2f753 801
9587fcff 802 dump_smb(smb_buffer, total_read);
71823baf
JL		 803
804 /*
805 * We know that we received enough to get to the MID as we
806 * checked the pdu_length earlier. Now check to see
807 * if the rest of the header is OK. We borrow the length
808 * var for the rest of the loop to avoid a new stack var.
809 *
810 * 48 bytes is enough to display the header and a little bit
811 * into the payload for debugging purposes.
812 */
813 length = checkSMB(smb_buffer, smb_buffer->Mid, total_read);
814 if (length != 0)
3d9c2472
PS		 815 cifs_dump_mem("Bad SMB: ", buf,
816 min_t(unsigned int, total_read, 48));
1da177e4 817
fda35943
SF		 818 server->lstrp = jiffies;
819
ffc00e27
JL		 820 mid_entry = find_cifs_mid(server, smb_buffer, length,
821 isLargeBuf, &bigbuf);
2b84a36c 822 if (mid_entry != NULL) {
ffc00e27
JL		 823 if (mid_entry->multiRsp && !mid_entry->multiEnd)
824 continue;
825
cd63499c 826 /* Was previous buf put in mpx struct for multi-rsp? */
ffc00e27 827 if (!mid_entry->multiRsp) {
cd63499c 828 /* smb buffer will be freed by user thread */
26f57364 829 if (isLargeBuf)
cd63499c 830 bigbuf = NULL;
26f57364 831 else
cd63499c
SF		 832 smallbuf = NULL;
833 }
ffc00e27 834 mid_entry->callback(mid_entry);
71823baf
JL		 835 } else if (length != 0) {
836 /* response sanity checks failed */
837 continue;
ffc00e27 838 } else if (!is_valid_oplock_break(smb_buffer, server)) {
b6b38f70 839 cERROR(1, "No task to wake, unknown frame received! "
8097531a 840 "NumMids %d", atomic_read(&midCount));
3d9c2472 841 cifs_dump_mem("Received Data is: ", buf,
70ca734a 842 sizeof(struct smb_hdr));
3979877e
SF		 843#ifdef CONFIG_CIFS_DEBUG2
844 cifs_dump_detail(smb_buffer);
845 cifs_dump_mids(server);
846#endif /* CIFS_DEBUG2 */
50c2f753 847
e4eb295d
SF		 848 }
849 } /* end while !EXITING */
850
fd62cb7e 851 /* buffer usually freed in free_mid - need to free it here on exit */
a8a11d39
MK		 852 cifs_buf_release(bigbuf);
853 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 854 cifs_small_buf_release(smallbuf);
1da177e4 855
b1c8d2b4 856 task_to_wake = xchg(&server->tsk, NULL);
762dfd10 857 clean_demultiplex_info(server);
50c2f753 858
b1c8d2b4
JL		 859 /* if server->tsk was NULL then wait for a signal before exiting */
860 if (!task_to_wake) {
861 set_current_state(TASK_INTERRUPTIBLE);
862 while (!signal_pending(current)) {
863 schedule();
864 set_current_state(TASK_INTERRUPTIBLE);
865 }
866 set_current_state(TASK_RUNNING);
867 }
868
0468a2cf 869 module_put_and_exit(0);
1da177e4
LT		 870}
871
c359cf3c
JL		 872/* extract the host portion of the UNC string */
873static char *
874extract_hostname(const char *unc)
875{
876 const char *src;
877 char *dst, *delim;
878 unsigned int len;
879
880 /* skip double chars at beginning of string */
881 /* BB: check validity of these bytes? */
882 src = unc + 2;
883
884 /* delimiter between hostname and sharename is always '\\' now */
885 delim = strchr(src, '\\');
886 if (!delim)
887 return ERR_PTR(-EINVAL);
888
889 len = delim - src;
890 dst = kmalloc((len + 1), GFP_KERNEL);
891 if (dst == NULL)
892 return ERR_PTR(-ENOMEM);
893
894 memcpy(dst, src, len);
895 dst[len] = '\0';
896
897 return dst;
898}
899
1da177e4 900static int
b946845a 901cifs_parse_mount_options(const char *mountdata, const char *devname,
50c2f753 902 struct smb_vol *vol)
1da177e4 903{
4906e50b 904 char *value, *data, *end;
957df453 905 char *mountdata_copy = NULL, *options;
3d3ea8e6 906 int err;
1da177e4
LT		 907 unsigned int temp_len, i, j;
908 char separator[2];
9b9d6b24
JL		 909 short int override_uid = -1;
910 short int override_gid = -1;
911 bool uid_specified = false;
912 bool gid_specified = false;
88463999 913 char *nodename = utsname()->nodename;
1da177e4
LT		 914
915 separator[0] = ',';
50c2f753 916 separator[1] = 0;
1da177e4 917
88463999
JL		 918 /*
919 * does not have to be perfect mapping since field is
920 * informational, only used for servers that do not support
921 * port 445 and it can be overridden at mount time
922 */
1397f2ee
JL		 923 memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
924 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
88463999
JL		 925 vol->source_rfc1001_name[i] = toupper(nodename[i]);
926
1397f2ee 927 vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
a10faeb2
SF		 928 /* null target name indicates to use *SMBSERVR default called name
929 if we end up sending RFC1001 session initialize */
930 vol->target_rfc1001_name[0] = 0;
3e4b3e1f
JL		 931 vol->cred_uid = current_uid();
932 vol->linux_uid = current_uid();
a001e5b5 933 vol->linux_gid = current_gid();
f55ed1a8
JL		 934
935 /* default to only allowing write access to owner of the mount */
936 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 937
938 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 939 /* default is always to request posix paths. */
940 vol->posix_paths = 1;
a0c9217f
JL		 941 /* default to using server inode numbers where available */
942 vol->server_ino = 1;
ac67055e 943
6d20e840
SJ		 944 vol->actimeo = CIFS_DEF_ACTIMEO;
945
b946845a
SF		 946 if (!mountdata)
947 goto cifs_parse_mount_err;
948
949 mountdata_copy = kstrndup(mountdata, PAGE_SIZE, GFP_KERNEL);
950 if (!mountdata_copy)
951 goto cifs_parse_mount_err;
1da177e4 952
b946845a 953 options = mountdata_copy;
4906e50b 954 end = options + strlen(options);
50c2f753 955 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 956 if (options[4] != 0) {
1da177e4
LT		 957 separator[0] = options[4];
958 options += 5;
959 } else {
b6b38f70 960 cFYI(1, "Null separator not allowed");
1da177e4
LT		 961 }
962 }
3d3ea8e6
SP		 963 vol->backupuid_specified = false; /* no backup intent for a user */
964 vol->backupgid_specified = false; /* no backup intent for a group */
50c2f753 965
1da177e4
LT		 966 while ((data = strsep(&options, separator)) != NULL) {
967 if (!*data)
968 continue;
969 if ((value = strchr(data, '=')) != NULL)
970 *value++ = '\0';
971
50c2f753
SF		 972 /* Have to parse this before we parse for "user" */
973 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 974 vol->no_xattr = 0;
50c2f753 975 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 976 vol->no_xattr = 1;
977 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 978 if (!value) {
1da177e4
LT		 979 printk(KERN_WARNING
980 "CIFS: invalid or missing username\n");
b946845a 981 goto cifs_parse_mount_err;
fb8c4b14 982 } else if (!*value) {
4b952a9b
SF		 983 /* null user, ie anonymous, authentication */
984 vol->nullauth = 1;
1da177e4 985 }
8727c8a8
SF		 986 if (strnlen(value, MAX_USERNAME_SIZE) <
987 MAX_USERNAME_SIZE) {
b946845a
SF		 988 vol->username = kstrdup(value, GFP_KERNEL);
989 if (!vol->username) {
990 printk(KERN_WARNING "CIFS: no memory "
991 "for username\n");
992 goto cifs_parse_mount_err;
993 }
1da177e4
LT		 994 } else {
995 printk(KERN_WARNING "CIFS: username too long\n");
b946845a 996 goto cifs_parse_mount_err;
1da177e4
LT		 997 }
998 } else if (strnicmp(data, "pass", 4) == 0) {
999 if (!value) {
1000 vol->password = NULL;
1001 continue;
fb8c4b14 1002 } else if (value[0] == 0) {
1da177e4
LT		 1003 /* check if string begins with double comma
1004 since that would mean the password really
1005 does start with a comma, and would not
1006 indicate an empty string */
fb8c4b14 1007 if (value[1] != separator[0]) {
1da177e4
LT		 1008 vol->password = NULL;
1009 continue;
1010 }
1011 }
1012 temp_len = strlen(value);
1013 /* removed password length check, NTLM passwords
1014 can be arbitrarily long */
1015
50c2f753 1016 /* if comma in password, the string will be
1da177e4
LT		 1017 prematurely null terminated. Commas in password are
1018 specified across the cifs mount interface by a double
1019 comma ie ,, and a comma used as in other cases ie ','
1020 as a parameter delimiter/separator is single and due
1021 to the strsep above is temporarily zeroed. */
1022
1023 /* NB: password legally can have multiple commas and
1024 the only illegal character in a password is null */
1025
50c2f753 1026 if ((value[temp_len] == 0) &&
4906e50b 1027 (value + temp_len < end) &&
09d1db5c 1028 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 1029 /* reinsert comma */
1030 value[temp_len] = separator[0];
50c2f753
SF		 1031 temp_len += 2; /* move after second comma */
1032 while (value[temp_len] != 0) {
1da177e4 1033 if (value[temp_len] == separator[0]) {
50c2f753 1034 if (value[temp_len+1] ==
09d1db5c
SF		 1035 separator[0]) {
1036 /* skip second comma */
1037 temp_len++;
50c2f753 1038 } else {
1da177e4
LT		 1039 /* single comma indicating start
1040 of next parm */
1041 break;
1042 }
1043 }
1044 temp_len++;
1045 }
fb8c4b14 1046 if (value[temp_len] == 0) {
1da177e4
LT		 1047 options = NULL;
1048 } else {
1049 value[temp_len] = 0;
1050 /* point option to start of next parm */
1051 options = value + temp_len + 1;
1052 }
50c2f753 1053 /* go from value to value + temp_len condensing
1da177e4
LT		 1054 double commas to singles. Note that this ends up
1055 allocating a few bytes too many, which is ok */
e915fc49 1056 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 1057 if (vol->password == NULL) {
50c2f753
SF		 1058 printk(KERN_WARNING "CIFS: no memory "
1059 "for password\n");
b946845a 1060 goto cifs_parse_mount_err;
433dc24f 1061 }
50c2f753 1062 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 1063 vol->password[j] = value[i];
fb8c4b14 1064 if (value[i] == separator[0]
09d1db5c 1065 && value[i+1] == separator[0]) {
1da177e4
LT		 1066 /* skip second comma */
1067 i++;
1068 }
1069 }
1070 vol->password[j] = 0;
1071 } else {
e915fc49 1072 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 1073 if (vol->password == NULL) {
50c2f753
SF		 1074 printk(KERN_WARNING "CIFS: no memory "
1075 "for password\n");
b946845a 1076 goto cifs_parse_mount_err;
433dc24f 1077 }
1da177e4
LT		 1078 strcpy(vol->password, value);
1079 }
58f7f68f
JL		 1080 } else if (!strnicmp(data, "ip", 2) ||
1081 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 1082 if (!value || !*value) {
1083 vol->UNCip = NULL;
50b64e3b
JL		 1084 } else if (strnlen(value, INET6_ADDRSTRLEN) <
1085 INET6_ADDRSTRLEN) {
b946845a
SF		 1086 vol->UNCip = kstrdup(value, GFP_KERNEL);
1087 if (!vol->UNCip) {
1088 printk(KERN_WARNING "CIFS: no memory "
1089 "for UNC IP\n");
1090 goto cifs_parse_mount_err;
1091 }
1da177e4 1092 } else {
50c2f753
SF		 1093 printk(KERN_WARNING "CIFS: ip address "
1094 "too long\n");
b946845a 1095 goto cifs_parse_mount_err;
1da177e4 1096 }
50c2f753
SF		 1097 } else if (strnicmp(data, "sec", 3) == 0) {
1098 if (!value || !*value) {
b6b38f70 1099 cERROR(1, "no security value specified");
50c2f753
SF		 1100 continue;
1101 } else if (strnicmp(value, "krb5i", 5) == 0) {
1102 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 1103 CIFSSEC_MUST_SIGN;
bf820679 1104 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 1105 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
1106 CIFSSEC_MAY_KRB5; */
b6b38f70 1107 cERROR(1, "Krb5 cifs privacy not supported");
b946845a 1108 goto cifs_parse_mount_err;
bf820679 1109 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 1110 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 1111 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
1112 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
1113 CIFSSEC_MUST_SIGN;
1114 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
1115 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
bf820679 1116 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 1117 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 1118 CIFSSEC_MUST_SIGN;
bf820679 1119 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1120 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1121 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1122 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1123 CIFSSEC_MUST_SIGN;
bf820679
SF		 1124 } else if (strnicmp(value, "ntlm", 4) == 0) {
1125 /* ntlm is default so can be turned off too */
750d1151 1126 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1127 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1128 /* BB is there a better way to do this? */
750d1151 1129 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1130#ifdef CONFIG_CIFS_WEAK_PW_HASH
1131 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1132 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1133#endif
bf820679 1134 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1135 vol->nullauth = 1;
50c2f753 1136 } else {
b6b38f70 1137 cERROR(1, "bad security option: %s", value);
b946845a 1138 goto cifs_parse_mount_err;
50c2f753 1139 }
1cb06d0b
SF		 1140 } else if (strnicmp(data, "vers", 3) == 0) {
1141 if (!value || !*value) {
1142 cERROR(1, "no protocol version specified"
1143 " after vers= mount option");
1144 } else if ((strnicmp(value, "cifs", 4) == 0) ||
1145 (strnicmp(value, "1", 1) == 0)) {
1146 /* this is the default */
1147 continue;
1cb06d0b 1148 }
1da177e4
LT		 1149 } else if ((strnicmp(data, "unc", 3) == 0)
1150 || (strnicmp(data, "target", 6) == 0)
1151 || (strnicmp(data, "path", 4) == 0)) {
1152 if (!value || !*value) {
50c2f753
SF		 1153 printk(KERN_WARNING "CIFS: invalid path to "
1154 "network resource\n");
b946845a 1155 goto cifs_parse_mount_err;
1da177e4
LT		 1156 }
1157 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1158 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1159 if (vol->UNC == NULL)
b946845a 1160 goto cifs_parse_mount_err;
50c2f753 1161 strcpy(vol->UNC, value);
1da177e4
LT		 1162 if (strncmp(vol->UNC, "//", 2) == 0) {
1163 vol->UNC[0] = '\\';
1164 vol->UNC[1] = '\\';
50c2f753 1165 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1166 printk(KERN_WARNING
50c2f753
SF		 1167 "CIFS: UNC Path does not begin "
1168 "with // or \\\\ \n");
b946845a 1169 goto cifs_parse_mount_err;
1da177e4
LT		 1170 }
1171 } else {
1172 printk(KERN_WARNING "CIFS: UNC name too long\n");
b946845a 1173 goto cifs_parse_mount_err;
1da177e4
LT		 1174 }
1175 } else if ((strnicmp(data, "domain", 3) == 0)
1176 || (strnicmp(data, "workgroup", 5) == 0)) {
1177 if (!value || !*value) {
1178 printk(KERN_WARNING "CIFS: invalid domain name\n");
b946845a 1179 goto cifs_parse_mount_err;
1da177e4
LT		 1180 }
1181 /* BB are there cases in which a comma can be valid in
1182 a domain name and need special handling? */
3979877e 1183 if (strnlen(value, 256) < 256) {
b946845a
SF		 1184 vol->domainname = kstrdup(value, GFP_KERNEL);
1185 if (!vol->domainname) {
1186 printk(KERN_WARNING "CIFS: no memory "
1187 "for domainname\n");
1188 goto cifs_parse_mount_err;
1189 }
b6b38f70 1190 cFYI(1, "Domain name set");
1da177e4 1191 } else {
50c2f753
SF		 1192 printk(KERN_WARNING "CIFS: domain name too "
1193 "long\n");
b946845a 1194 goto cifs_parse_mount_err;
1da177e4 1195 }
3eb9a889
BG		 1196 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1197 vol->srcaddr.ss_family = AF_UNSPEC;
1198
1199 if (!value || !*value) {
1200 printk(KERN_WARNING "CIFS: srcaddr value"
1201 " not specified.\n");
b946845a 1202 goto cifs_parse_mount_err;
3eb9a889
BG		 1203 }
1204 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1205 value, strlen(value));
b235f371 1206 if (i == 0) {
3eb9a889
BG		 1207 printk(KERN_WARNING "CIFS: Could not parse"
1208 " srcaddr: %s\n",
1209 value);
b946845a 1210 goto cifs_parse_mount_err;
3eb9a889 1211 }
50c2f753
SF		 1212 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1213 if (!value || !*value) {
1214 printk(KERN_WARNING
1215 "CIFS: invalid path prefix\n");
b946845a 1216 goto cifs_parse_mount_err;
50c2f753
SF		 1217 }
1218 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1219 if (value[0] != '/')
2fe87f02 1220 temp_len++; /* missing leading slash */
50c2f753
SF		 1221 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1222 if (vol->prepath == NULL)
b946845a 1223 goto cifs_parse_mount_err;
4523cc30 1224 if (value[0] != '/') {
2fe87f02 1225 vol->prepath[0] = '/';
50c2f753 1226 strcpy(vol->prepath+1, value);
2fe87f02 1227 } else
50c2f753 1228 strcpy(vol->prepath, value);
b6b38f70 1229 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1230 } else {
1231 printk(KERN_WARNING "CIFS: prefix too long\n");
b946845a 1232 goto cifs_parse_mount_err;
50c2f753 1233 }
1da177e4
LT		 1234 } else if (strnicmp(data, "iocharset", 9) == 0) {
1235 if (!value || !*value) {
63135e08
SF		 1236 printk(KERN_WARNING "CIFS: invalid iocharset "
1237 "specified\n");
b946845a 1238 goto cifs_parse_mount_err;
1da177e4
LT		 1239 }
1240 if (strnlen(value, 65) < 65) {
b946845a
SF		 1241 if (strnicmp(value, "default", 7)) {
1242 vol->iocharset = kstrdup(value,
1243 GFP_KERNEL);
1244
1245 if (!vol->iocharset) {
1246 printk(KERN_WARNING "CIFS: no "
1247 "memory for"
1248 "charset\n");
1249 goto cifs_parse_mount_err;
1250 }
1251 }
50c2f753
SF		 1252 /* if iocharset not set then load_nls_default
1253 is used by caller */
b6b38f70 1254 cFYI(1, "iocharset set to %s", value);
1da177e4 1255 } else {
63135e08
SF		 1256 printk(KERN_WARNING "CIFS: iocharset name "
1257 "too long.\n");
b946845a 1258 goto cifs_parse_mount_err;
1da177e4 1259 }
9b9d6b24
JL		 1260 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1261 vol->linux_uid = simple_strtoul(value, &value, 0);
1262 uid_specified = true;
bd763319
JL		 1263 } else if (!strnicmp(data, "cruid", 5) && value && *value) {
1264 vol->cred_uid = simple_strtoul(value, &value, 0);
9b9d6b24
JL		 1265 } else if (!strnicmp(data, "forceuid", 8)) {
1266 override_uid = 1;
1267 } else if (!strnicmp(data, "noforceuid", 10)) {
1268 override_uid = 0;
1269 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1270 vol->linux_gid = simple_strtoul(value, &value, 0);
1271 gid_specified = true;
1272 } else if (!strnicmp(data, "forcegid", 8)) {
1273 override_gid = 1;
1274 } else if (!strnicmp(data, "noforcegid", 10)) {
1275 override_gid = 0;
1da177e4
LT		 1276 } else if (strnicmp(data, "file_mode", 4) == 0) {
1277 if (value && *value) {
1278 vol->file_mode =
1279 simple_strtoul(value, &value, 0);
1280 }
1281 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1282 if (value && *value) {
1283 vol->dir_mode =
1284 simple_strtoul(value, &value, 0);
1285 }
1286 } else if (strnicmp(data, "dirmode", 4) == 0) {
1287 if (value && *value) {
1288 vol->dir_mode =
1289 simple_strtoul(value, &value, 0);
1290 }
1291 } else if (strnicmp(data, "port", 4) == 0) {
1292 if (value && *value) {
1293 vol->port =
1294 simple_strtoul(value, &value, 0);
1295 }
1296 } else if (strnicmp(data, "rsize", 5) == 0) {
1297 if (value && *value) {
1298 vol->rsize =
1299 simple_strtoul(value, &value, 0);
1300 }
1301 } else if (strnicmp(data, "wsize", 5) == 0) {
1302 if (value && *value) {
1303 vol->wsize =
1304 simple_strtoul(value, &value, 0);
1305 }
1306 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1307 if (!value || !*value) {
b6b38f70 1308 cERROR(1, "no socket option specified");
6a5fa236
SF		 1309 continue;
1310 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1311 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1312 }
1313 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1314 if (!value || !*value || (*value == ' ')) {
b6b38f70 1315 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1316 } else {
1397f2ee
JL		 1317 memset(vol->source_rfc1001_name, 0x20,
1318 RFC1001_NAME_LEN);
1319 /*
1320 * FIXME: are there cases in which a comma can
1321 * be valid in workstation netbios name (and
1322 * need special handling)?
1323 */
1324 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1325 /* don't ucase netbiosname for user */
50c2f753 1326 if (value[i] == 0)
1da177e4 1327 break;
1397f2ee 1328 vol->source_rfc1001_name[i] = value[i];
1da177e4
LT		 1329 }
1330 /* The string has 16th byte zero still from
1331 set at top of the function */
1397f2ee 1332 if (i == RFC1001_NAME_LEN && value[i] != 0)
50c2f753
SF		 1333 printk(KERN_WARNING "CIFS: netbiosname"
1334 " longer than 15 truncated.\n");
a10faeb2
SF		 1335 }
1336 } else if (strnicmp(data, "servern", 7) == 0) {
1337 /* servernetbiosname specified override *SMBSERVER */
1338 if (!value || !*value || (*value == ' ')) {
b6b38f70 1339 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1340 } else {
1341 /* last byte, type, is 0x20 for servr type */
1397f2ee
JL		 1342 memset(vol->target_rfc1001_name, 0x20,
1343 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 1344
50c2f753 1345 for (i = 0; i < 15; i++) {
a10faeb2 1346 /* BB are there cases in which a comma can be
50c2f753
SF		 1347 valid in this workstation netbios name
1348 (and need special handling)? */
a10faeb2 1349
50c2f753
SF		 1350 /* user or mount helper must uppercase
1351 the netbiosname */
1352 if (value[i] == 0)
a10faeb2
SF		 1353 break;
1354 else
50c2f753
SF		 1355 vol->target_rfc1001_name[i] =
1356 value[i];
a10faeb2
SF		 1357 }
1358 /* The string has 16th byte zero still from
1359 set at top of the function */
1397f2ee 1360 if (i == RFC1001_NAME_LEN && value[i] != 0)
50c2f753
SF		 1361 printk(KERN_WARNING "CIFS: server net"
1362 "biosname longer than 15 truncated.\n");
1da177e4 1363 }
6d20e840
SJ		 1364 } else if (strnicmp(data, "actimeo", 7) == 0) {
1365 if (value && *value) {
1366 vol->actimeo = HZ * simple_strtoul(value,
1367 &value, 0);
1368 if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1369 cERROR(1, "CIFS: attribute cache"
1370 "timeout too large");
b946845a 1371 goto cifs_parse_mount_err;
6d20e840
SJ		 1372 }
1373 }
1da177e4
LT		 1374 } else if (strnicmp(data, "credentials", 4) == 0) {
1375 /* ignore */
1376 } else if (strnicmp(data, "version", 3) == 0) {
1377 /* ignore */
50c2f753 1378 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1379 /* ignore */
c9c7fa00 1380 } else if (strnicmp(data, "rw", 2) == 0 && strlen(data) == 2) {
71a394fa
SF		 1381 /* ignore */
1382 } else if (strnicmp(data, "ro", 2) == 0) {
1383 /* ignore */
edf1ae40
SF		 1384 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1385 vol->noblocksnd = 1;
1386 } else if (strnicmp(data, "noautotune", 10) == 0) {
1387 vol->noautotune = 1;
1da177e4
LT		 1388 } else if ((strnicmp(data, "suid", 4) == 0) ||
1389 (strnicmp(data, "nosuid", 6) == 0) ||
1390 (strnicmp(data, "exec", 4) == 0) ||
1391 (strnicmp(data, "noexec", 6) == 0) ||
1392 (strnicmp(data, "nodev", 5) == 0) ||
1393 (strnicmp(data, "noauto", 6) == 0) ||
1394 (strnicmp(data, "dev", 3) == 0)) {
1395 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1396 uses these opts to set flags, and the flags are read
1397 by the kernel vfs layer before we get here (ie
1398 before read super) so there is no point trying to
1399 parse these options again and set anything and it
1400 is ok to just ignore them */
1da177e4 1401 continue;
1da177e4
LT		 1402 } else if (strnicmp(data, "hard", 4) == 0) {
1403 vol->retry = 1;
1404 } else if (strnicmp(data, "soft", 4) == 0) {
1405 vol->retry = 0;
1406 } else if (strnicmp(data, "perm", 4) == 0) {
1407 vol->noperm = 0;
1408 } else if (strnicmp(data, "noperm", 6) == 0) {
1409 vol->noperm = 1;
6a0b4824
SF		 1410 } else if (strnicmp(data, "mapchars", 8) == 0) {
1411 vol->remap = 1;
1412 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1413 vol->remap = 0;
50c2f753
SF		 1414 } else if (strnicmp(data, "sfu", 3) == 0) {
1415 vol->sfu_emul = 1;
1416 } else if (strnicmp(data, "nosfu", 5) == 0) {
1417 vol->sfu_emul = 0;
2c1b8615
SF		 1418 } else if (strnicmp(data, "nodfs", 5) == 0) {
1419 vol->nodfs = 1;
ac67055e
JA		 1420 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1421 vol->posix_paths = 1;
1422 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1423 vol->posix_paths = 0;
c18c842b
SF		 1424 } else if (strnicmp(data, "nounix", 6) == 0) {
1425 vol->no_linux_ext = 1;
1426 } else if (strnicmp(data, "nolinux", 7) == 0) {
1427 vol->no_linux_ext = 1;
50c2f753 1428 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1429 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1430 vol->nocase = 1;
f636a348
JL		 1431 } else if (strnicmp(data, "mand", 4) == 0) {
1432 /* ignore */
1433 } else if (strnicmp(data, "nomand", 6) == 0) {
1434 /* ignore */
1435 } else if (strnicmp(data, "_netdev", 7) == 0) {
1436 /* ignore */
c46fa8ac
SF		 1437 } else if (strnicmp(data, "brl", 3) == 0) {
1438 vol->nobrl = 0;
50c2f753 1439 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1440 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1441 vol->nobrl = 1;
d3485d37
SF		 1442 /* turn off mandatory locking in mode
1443 if remote locking is turned off since the
1444 local vfs will do advisory */
50c2f753
SF		 1445 if (vol->file_mode ==
1446 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1447 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1448 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1449 /* will take the shorter form "forcemand" as well */
1450 /* This mount option will force use of mandatory
1451 (DOS/Windows style) byte range locks, instead of
1452 using posix advisory byte range locks, even if the
1453 Unix extensions are available and posix locks would
1454 be supported otherwise. If Unix extensions are not
1455 negotiated this has no effect since mandatory locks
1456 would be used (mandatory locks is all that those
1457 those servers support) */
1458 vol->mand_lock = 1;
1da177e4
LT		 1459 } else if (strnicmp(data, "setuids", 7) == 0) {
1460 vol->setuids = 1;
1461 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1462 vol->setuids = 0;
d0a9c078
JL		 1463 } else if (strnicmp(data, "dynperm", 7) == 0) {
1464 vol->dynperm = true;
1465 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1466 vol->dynperm = false;
1da177e4
LT		 1467 } else if (strnicmp(data, "nohard", 6) == 0) {
1468 vol->retry = 0;
1469 } else if (strnicmp(data, "nosoft", 6) == 0) {
1470 vol->retry = 1;
1471 } else if (strnicmp(data, "nointr", 6) == 0) {
1472 vol->intr = 0;
1473 } else if (strnicmp(data, "intr", 4) == 0) {
1474 vol->intr = 1;
be652445
SF		 1475 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1476 vol->nostrictsync = 1;
1477 } else if (strnicmp(data, "strictsync", 10) == 0) {
1478 vol->nostrictsync = 0;
50c2f753 1479 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1480 vol->server_ino = 1;
50c2f753 1481 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1482 vol->server_ino = 0;
c9c7fa00 1483 } else if (strnicmp(data, "rwpidforward", 12) == 0) {
d4ffff1f 1484 vol->rwpidforward = 1;
50c2f753 1485 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1486 vol->cifs_acl = 1;
1487 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1488 vol->cifs_acl = 0;
50c2f753 1489 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1490 vol->no_psx_acl = 0;
50c2f753 1491 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1492 vol->no_psx_acl = 1;
84210e91
SF		 1493 } else if (strnicmp(data, "locallease", 6) == 0) {
1494 vol->local_lease = 1;
50c2f753 1495 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1496 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1497 } else if (strnicmp(data, "seal", 4) == 0) {
1498 /* we do not do the following in secFlags because seal
1499 is a per tree connection (mount) not a per socket
1500 or per-smb connection option in the protocol */
1501 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1502 vol->seal = 1;
50c2f753 1503 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1504 vol->direct_io = 1;
50c2f753 1505 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1506 vol->direct_io = 1;
d39454ff
PS		 1507 } else if (strnicmp(data, "strictcache", 11) == 0) {
1508 vol->strict_io = 1;
1da177e4 1509 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1510 printk(KERN_WARNING "CIFS: Mount option noac not "
1511 "supported. Instead set "
1512 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
fa1df75d 1513 } else if (strnicmp(data, "fsc", 3) == 0) {
607a569d 1514#ifndef CONFIG_CIFS_FSCACHE
83fb086e 1515 cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE "
607a569d 1516 "kernel config option set");
b946845a 1517 goto cifs_parse_mount_err;
607a569d 1518#endif
fa1df75d 1519 vol->fsc = true;
736a3320
SM		 1520 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1521 vol->mfsymlinks = true;
0eb8a132
JL		 1522 } else if (strnicmp(data, "multiuser", 8) == 0) {
1523 vol->multiuser = true;
3d3ea8e6
SP		 1524 } else if (!strnicmp(data, "backupuid", 9) && value && *value) {
1525 err = kstrtouint(value, 0, &vol->backupuid);
1526 if (err < 0) {
1527 cERROR(1, "%s: Invalid backupuid value",
1528 __func__);
1529 goto cifs_parse_mount_err;
1530 }
1531 vol->backupuid_specified = true;
1532 } else if (!strnicmp(data, "backupgid", 9) && value && *value) {
1533 err = kstrtouint(value, 0, &vol->backupgid);
1534 if (err < 0) {
1535 cERROR(1, "%s: Invalid backupgid value",
1536 __func__);
1537 goto cifs_parse_mount_err;
1538 }
1539 vol->backupgid_specified = true;
1da177e4 1540 } else
50c2f753
SF		 1541 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1542 data);
1da177e4
LT		 1543 }
1544 if (vol->UNC == NULL) {
4523cc30 1545 if (devname == NULL) {
50c2f753
SF		 1546 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1547 "target\n");
b946845a 1548 goto cifs_parse_mount_err;
1da177e4
LT		 1549 }
1550 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1551 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1552 if (vol->UNC == NULL)
b946845a 1553 goto cifs_parse_mount_err;
50c2f753 1554 strcpy(vol->UNC, devname);
1da177e4
LT		 1555 if (strncmp(vol->UNC, "//", 2) == 0) {
1556 vol->UNC[0] = '\\';
1557 vol->UNC[1] = '\\';
1558 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1559 printk(KERN_WARNING "CIFS: UNC Path does not "
1560 "begin with // or \\\\ \n");
b946845a 1561 goto cifs_parse_mount_err;
1da177e4 1562 }
7c5e628f
IM		 1563 value = strpbrk(vol->UNC+2, "/\\");
1564 if (value)
1565 *value = '\\';
1da177e4
LT		 1566 } else {
1567 printk(KERN_WARNING "CIFS: UNC name too long\n");
b946845a 1568 goto cifs_parse_mount_err;
1da177e4
LT		 1569 }
1570 }
0eb8a132
JL		 1571
1572 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1573 cERROR(1, "Multiuser mounts currently require krb5 "
1574 "authentication!");
b946845a 1575 goto cifs_parse_mount_err;
0eb8a132
JL		 1576 }
1577
fb8c4b14 1578 if (vol->UNCip == NULL)
1da177e4
LT		 1579 vol->UNCip = &vol->UNC[2];
1580
9b9d6b24
JL		 1581 if (uid_specified)
1582 vol->override_uid = override_uid;
1583 else if (override_uid == 1)
1584 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1585 "specified with no uid= option.\n");
1586
1587 if (gid_specified)
1588 vol->override_gid = override_gid;
1589 else if (override_gid == 1)
1590 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1591 "specified with no gid= option.\n");
1592
b946845a 1593 kfree(mountdata_copy);
1da177e4 1594 return 0;
b946845a
SF		 1595
1596cifs_parse_mount_err:
1597 kfree(mountdata_copy);
1598 return 1;
1da177e4
LT		 1599}
1600
3eb9a889
BG		 1601/** Returns true if srcaddr isn't specified and rhs isn't
1602 * specified, or if srcaddr is specified and
1603 * matches the IP address of the rhs argument.
1604 */
1605static bool
1606srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1607{
1608 switch (srcaddr->sa_family) {
1609 case AF_UNSPEC:
1610 return (rhs->sa_family == AF_UNSPEC);
1611 case AF_INET: {
1612 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1613 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1614 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1615 }
1616 case AF_INET6: {
1617 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1618 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1619 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1620 }
1621 default:
1622 WARN_ON(1);
1623 return false; /* don't expect to be here */
1624 }
1625}
1626
4b886136
PS		 1627/*
1628 * If no port is specified in addr structure, we try to match with 445 port
1629 * and if it fails - with 139 ports. It should be called only if address
1630 * families of server and addr are equal.
1631 */
1632static bool
1633match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1634{
6da97910 1635 __be16 port, *sport;
4b886136
PS		 1636
1637 switch (addr->sa_family) {
1638 case AF_INET:
1639 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1640 port = ((struct sockaddr_in *) addr)->sin_port;
1641 break;
1642 case AF_INET6:
1643 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1644 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1645 break;
1646 default:
1647 WARN_ON(1);
1648 return false;
1649 }
1650
1651 if (!port) {
1652 port = htons(CIFS_PORT);
1653 if (port == *sport)
1654 return true;
1655
1656 port = htons(RFC1001_PORT);
1657 }
1658
1659 return port == *sport;
1660}
3eb9a889 1661
4515148e 1662static bool
3eb9a889
BG		 1663match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1664 struct sockaddr *srcaddr)
4515148e 1665{
4515148e 1666 switch (addr->sa_family) {
a9f1b85e
PS		 1667 case AF_INET: {
1668 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1669 struct sockaddr_in *srv_addr4 =
1670 (struct sockaddr_in *)&server->dstaddr;
1671
1672 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
4515148e 1673 return false;
4515148e 1674 break;
a9f1b85e
PS		 1675 }
1676 case AF_INET6: {
1677 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1678 struct sockaddr_in6 *srv_addr6 =
1679 (struct sockaddr_in6 *)&server->dstaddr;
1680
4515148e 1681 if (!ipv6_addr_equal(&addr6->sin6_addr,
a9f1b85e 1682 &srv_addr6->sin6_addr))
4515148e 1683 return false;
a9f1b85e 1684 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
4515148e 1685 return false;
4515148e
JL		 1686 break;
1687 }
a9f1b85e
PS		 1688 default:
1689 WARN_ON(1);
1690 return false; /* don't expect to be here */
1691 }
4515148e 1692
3eb9a889
BG		 1693 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1694 return false;
1695
4515148e
JL		 1696 return true;
1697}
1698
daf5b0b6
JL		 1699static bool
1700match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1701{
1702 unsigned int secFlags;
1703
1704 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1705 secFlags = vol->secFlg;
1706 else
1707 secFlags = global_secflags | vol->secFlg;
1708
1709 switch (server->secType) {
1710 case LANMAN:
1711 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1712 return false;
1713 break;
1714 case NTLMv2:
1715 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1716 return false;
1717 break;
1718 case NTLM:
1719 if (!(secFlags & CIFSSEC_MAY_NTLM))
1720 return false;
1721 break;
1722 case Kerberos:
1723 if (!(secFlags & CIFSSEC_MAY_KRB5))
1724 return false;
1725 break;
1726 case RawNTLMSSP:
1727 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1728 return false;
1729 break;
1730 default:
1731 /* shouldn't happen */
1732 return false;
1733 }
1734
25985edc 1735 /* now check if signing mode is acceptable */
daf5b0b6 1736 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
96daf2b0 1737 (server->sec_mode & SECMODE_SIGN_REQUIRED))
daf5b0b6
JL		 1738 return false;
1739 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
96daf2b0 1740 (server->sec_mode &
daf5b0b6
JL		 1741 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1742 return false;
1743
1744 return true;
1745}
1746
37bb04e5
PS		 1747static int match_server(struct TCP_Server_Info *server, struct sockaddr *addr,
1748 struct smb_vol *vol)
1749{
1750 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1751 return 0;
1752
1753 if (!match_address(server, addr,
1754 (struct sockaddr *)&vol->srcaddr))
1755 return 0;
1756
1757 if (!match_port(server, addr))
1758 return 0;
1759
1760 if (!match_security(server, vol))
1761 return 0;
1762
1763 return 1;
1764}
1765
e7ddee90 1766static struct TCP_Server_Info *
daf5b0b6 1767cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1768{
e7ddee90 1769 struct TCP_Server_Info *server;
e7ddee90 1770
3f9bcca7 1771 spin_lock(&cifs_tcp_ses_lock);
4515148e 1772 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
37bb04e5 1773 if (!match_server(server, addr, vol))
daf5b0b6
JL		 1774 continue;
1775
e7ddee90 1776 ++server->srv_count;
3f9bcca7 1777 spin_unlock(&cifs_tcp_ses_lock);
b6b38f70 1778 cFYI(1, "Existing tcp session with server found");
e7ddee90 1779 return server;
1da177e4 1780 }
3f9bcca7 1781 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1782 return NULL;
1783}
1b20d672 1784
14fbf50d 1785static void
e7ddee90 1786cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1787{
e7ddee90 1788 struct task_struct *task;
1b20d672 1789
3f9bcca7 1790 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 1791 if (--server->srv_count > 0) {
3f9bcca7 1792 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 1793 return;
1da177e4 1794 }
1b20d672 1795
f1d0c998
RL		 1796 put_net(cifs_net_ns(server));
1797
e7ddee90 1798 list_del_init(&server->tcp_ses_list);
3f9bcca7 1799 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1800
c74093b6
JL		 1801 cancel_delayed_work_sync(&server->echo);
1802
e7ddee90
JL		 1803 spin_lock(&GlobalMid_Lock);
1804 server->tcpStatus = CifsExiting;
1805 spin_unlock(&GlobalMid_Lock);
dea570e0 1806
d2b91521 1807 cifs_crypto_shash_release(server);
488f1d2d
SJ		 1808 cifs_fscache_release_client_cookie(server);
1809
21e73393
SP		 1810 kfree(server->session_key.response);
1811 server->session_key.response = NULL;
1812 server->session_key.len = 0;
1813
e7ddee90
JL		 1814 task = xchg(&server->tsk, NULL);
1815 if (task)
1816 force_sig(SIGKILL, task);
1da177e4
LT		 1817}
1818
63c038c2
JL		 1819static struct TCP_Server_Info *
1820cifs_get_tcp_session(struct smb_vol *volume_info)
1821{
1822 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1823 struct sockaddr_storage addr;
63c038c2
JL		 1824 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1825 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1826 int rc;
1827
a9ac49d3 1828 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1829
b6b38f70 1830 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1831
1e68b2b2 1832 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1833 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1834 volume_info->UNCip,
67b7626a 1835 strlen(volume_info->UNCip),
50d97160 1836 volume_info->port);
1e68b2b2 1837 if (!rc) {
63c038c2
JL		 1838 /* we failed translating address */
1839 rc = -EINVAL;
1840 goto out_err;
1841 }
63c038c2
JL		 1842 } else if (volume_info->UNCip) {
1843 /* BB using ip addr as tcp_ses name to connect to the
1844 DFS root below */
b6b38f70 1845 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1846 rc = -EINVAL;
1847 goto out_err;
1848 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1849 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1850 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1851 rc = -EINVAL;
1852 goto out_err;
1853 }
1854
1855 /* see if we already have a matching tcp_ses */
daf5b0b6 1856 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1857 if (tcp_ses)
1858 return tcp_ses;
1859
1860 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1861 if (!tcp_ses) {
1862 rc = -ENOMEM;
1863 goto out_err;
1864 }
1865
d2b91521
SP		 1866 rc = cifs_crypto_shash_allocate(tcp_ses);
1867 if (rc) {
1868 cERROR(1, "could not setup hash structures rc %d", rc);
1869 goto out_err;
1870 }
1871
f1d0c998 1872 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
63c038c2
JL		 1873 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1874 if (IS_ERR(tcp_ses->hostname)) {
1875 rc = PTR_ERR(tcp_ses->hostname);
f7c5445a 1876 goto out_err_crypto_release;
63c038c2
JL		 1877 }
1878
1879 tcp_ses->noblocksnd = volume_info->noblocksnd;
1880 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1881 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1882 atomic_set(&tcp_ses->inFlight, 0);
1883 init_waitqueue_head(&tcp_ses->response_q);
1884 init_waitqueue_head(&tcp_ses->request_q);
1885 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1886 mutex_init(&tcp_ses->srv_mutex);
1887 memcpy(tcp_ses->workstation_RFC1001_name,
1888 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1889 memcpy(tcp_ses->server_RFC1001_name,
1890 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
5d0d2882 1891 tcp_ses->session_estab = false;
63c038c2 1892 tcp_ses->sequence_number = 0;
fda35943 1893 tcp_ses->lstrp = jiffies;
63c038c2
JL		 1894 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1895 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
c74093b6 1896 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
63c038c2
JL		 1897
1898 /*
1899 * at this point we are the only ones with the pointer
1900 * to the struct since the kernel thread not created yet
1901 * no need to spinlock this init of tcpStatus or srv_count
1902 */
1903 tcp_ses->tcpStatus = CifsNew;
3eb9a889
BG		 1904 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1905 sizeof(tcp_ses->srcaddr));
63c038c2
JL		 1906 ++tcp_ses->srv_count;
1907
a9ac49d3 1908 if (addr.ss_family == AF_INET6) {
b6b38f70 1909 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1910 /* BB should we allow ipv6 on port 139? */
1911 /* other OS never observed in Wild doing 139 with v6 */
a9f1b85e
PS		 1912 memcpy(&tcp_ses->dstaddr, sin_server6,
1913 sizeof(struct sockaddr_in6));
1914 } else
1915 memcpy(&tcp_ses->dstaddr, sin_server,
1916 sizeof(struct sockaddr_in));
1917
1918 rc = ip_connect(tcp_ses);
63c038c2 1919 if (rc < 0) {
b6b38f70 1920 cERROR(1, "Error connecting to socket. Aborting operation");
f7c5445a 1921 goto out_err_crypto_release;
63c038c2
JL		 1922 }
1923
1924 /*
1925 * since we're in a cifs function already, we know that
1926 * this will succeed. No need for try_module_get().
1927 */
1928 __module_get(THIS_MODULE);
7c97c200 1929 tcp_ses->tsk = kthread_run(cifs_demultiplex_thread,
63c038c2
JL		 1930 tcp_ses, "cifsd");
1931 if (IS_ERR(tcp_ses->tsk)) {
1932 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1933 cERROR(1, "error %d create cifsd thread", rc);
63c038c2 1934 module_put(THIS_MODULE);
f7c5445a 1935 goto out_err_crypto_release;
63c038c2 1936 }
fd88ce93 1937 tcp_ses->tcpStatus = CifsNeedNegotiate;
63c038c2
JL		 1938
1939 /* thread spawned, put it on the list */
3f9bcca7 1940 spin_lock(&cifs_tcp_ses_lock);
63c038c2 1941 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
3f9bcca7 1942 spin_unlock(&cifs_tcp_ses_lock);
63c038c2 1943
488f1d2d
SJ		 1944 cifs_fscache_get_client_cookie(tcp_ses);
1945
c74093b6
JL		 1946 /* queue echo request delayed work */
1947 queue_delayed_work(system_nrt_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
1948
63c038c2
JL		 1949 return tcp_ses;
1950
f7c5445a 1951out_err_crypto_release:
d2b91521
SP		 1952 cifs_crypto_shash_release(tcp_ses);
1953
f1d0c998
RL		 1954 put_net(cifs_net_ns(tcp_ses));
1955
63c038c2
JL		 1956out_err:
1957 if (tcp_ses) {
8347a5cd
SF		 1958 if (!IS_ERR(tcp_ses->hostname))
1959 kfree(tcp_ses->hostname);
63c038c2
JL		 1960 if (tcp_ses->ssocket)
1961 sock_release(tcp_ses->ssocket);
1962 kfree(tcp_ses);
1963 }
1964 return ERR_PTR(rc);
1965}
1966
96daf2b0 1967static int match_session(struct cifs_ses *ses, struct smb_vol *vol)
37bb04e5
PS		 1968{
1969 switch (ses->server->secType) {
1970 case Kerberos:
1971 if (vol->cred_uid != ses->cred_uid)
1972 return 0;
1973 break;
1974 default:
1975 /* anything else takes username/password */
1976 if (ses->user_name == NULL)
1977 return 0;
1978 if (strncmp(ses->user_name, vol->username,
1979 MAX_USERNAME_SIZE))
1980 return 0;
1981 if (strlen(vol->username) != 0 &&
1982 ses->password != NULL &&
1983 strncmp(ses->password,
1984 vol->password ? vol->password : "",
1985 MAX_PASSWORD_SIZE))
1986 return 0;
1987 }
1988 return 1;
1989}
1990
96daf2b0 1991static struct cifs_ses *
4ff67b72 1992cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 1993{
96daf2b0 1994 struct cifs_ses *ses;
dea570e0 1995
3f9bcca7 1996 spin_lock(&cifs_tcp_ses_lock);
4ff67b72 1997 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
37bb04e5
PS		 1998 if (!match_session(ses, vol))
1999 continue;
14fbf50d 2000 ++ses->ses_count;
3f9bcca7 2001 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 2002 return ses;
2003 }
3f9bcca7 2004 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 2005 return NULL;
2006}
dea570e0 2007
14fbf50d 2008static void
96daf2b0 2009cifs_put_smb_ses(struct cifs_ses *ses)
14fbf50d
JL		 2010{
2011 int xid;
2012 struct TCP_Server_Info *server = ses->server;
dea570e0 2013
36988c76 2014 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
3f9bcca7 2015 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 2016 if (--ses->ses_count > 0) {
3f9bcca7 2017 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 2018 return;
2019 }
dea570e0 2020
14fbf50d 2021 list_del_init(&ses->smb_ses_list);
3f9bcca7 2022 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 2023
14fbf50d
JL		 2024 if (ses->status == CifsGood) {
2025 xid = GetXid();
2026 CIFSSMBLogoff(xid, ses);
2027 _FreeXid(xid);
2028 }
2029 sesInfoFree(ses);
2030 cifs_put_tcp_session(server);
2031}
dea570e0 2032
d9b94201
SF		 2033static bool warned_on_ntlm; /* globals init to false automatically */
2034
96daf2b0 2035static struct cifs_ses *
36988c76
JL		 2036cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
2037{
2038 int rc = -ENOMEM, xid;
96daf2b0 2039 struct cifs_ses *ses;
a9f1b85e
PS		 2040 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2041 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
36988c76
JL		 2042
2043 xid = GetXid();
2044
4ff67b72 2045 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 2046 if (ses) {
2047 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
2048
36988c76 2049 mutex_lock(&ses->session_mutex);
198b5682
JL		 2050 rc = cifs_negotiate_protocol(xid, ses);
2051 if (rc) {
2052 mutex_unlock(&ses->session_mutex);
2053 /* problem -- put our ses reference */
2054 cifs_put_smb_ses(ses);
2055 FreeXid(xid);
2056 return ERR_PTR(rc);
2057 }
36988c76
JL		 2058 if (ses->need_reconnect) {
2059 cFYI(1, "Session needs reconnect");
2060 rc = cifs_setup_session(xid, ses,
2061 volume_info->local_nls);
2062 if (rc) {
2063 mutex_unlock(&ses->session_mutex);
2064 /* problem -- put our reference */
2065 cifs_put_smb_ses(ses);
2066 FreeXid(xid);
2067 return ERR_PTR(rc);
2068 }
2069 }
2070 mutex_unlock(&ses->session_mutex);
460cf341
JL		 2071
2072 /* existing SMB ses has a server reference already */
2073 cifs_put_tcp_session(server);
36988c76
JL		 2074 FreeXid(xid);
2075 return ses;
2076 }
2077
2078 cFYI(1, "Existing smb sess not found");
2079 ses = sesInfoAlloc();
2080 if (ses == NULL)
2081 goto get_ses_fail;
2082
2083 /* new SMB session uses our server ref */
2084 ses->server = server;
a9f1b85e
PS		 2085 if (server->dstaddr.ss_family == AF_INET6)
2086 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
36988c76 2087 else
a9f1b85e 2088 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
36988c76 2089
8727c8a8
SF		 2090 if (volume_info->username) {
2091 ses->user_name = kstrdup(volume_info->username, GFP_KERNEL);
2092 if (!ses->user_name)
2093 goto get_ses_fail;
2094 }
36988c76
JL		 2095
2096 /* volume_info->password freed at unmount */
2097 if (volume_info->password) {
2098 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
2099 if (!ses->password)
2100 goto get_ses_fail;
2101 }
2102 if (volume_info->domainname) {
d3686d54
SP		 2103 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
2104 if (!ses->domainName)
2105 goto get_ses_fail;
36988c76 2106 }
3e4b3e1f 2107 ses->cred_uid = volume_info->cred_uid;
36988c76 2108 ses->linux_uid = volume_info->linux_uid;
d9b94201
SF		 2109
2110 /* ntlmv2 is much stronger than ntlm security, and has been broadly
2111 supported for many years, time to update default security mechanism */
2112 if ((volume_info->secFlg == 0) && warned_on_ntlm == false) {
2113 warned_on_ntlm = true;
2114 cERROR(1, "default security mechanism requested. The default "
2115 "security mechanism will be upgraded from ntlm to "
9d1e397b 2116 "ntlmv2 in kernel release 3.2");
d9b94201 2117 }
36988c76
JL		 2118 ses->overrideSecFlg = volume_info->secFlg;
2119
2120 mutex_lock(&ses->session_mutex);
198b5682
JL		 2121 rc = cifs_negotiate_protocol(xid, ses);
2122 if (!rc)
2123 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76 2124 mutex_unlock(&ses->session_mutex);
c8e56f1f 2125 if (rc)
36988c76
JL		 2126 goto get_ses_fail;
2127
2128 /* success, put it on the list */
3f9bcca7 2129 spin_lock(&cifs_tcp_ses_lock);
36988c76 2130 list_add(&ses->smb_ses_list, &server->smb_ses_list);
3f9bcca7 2131 spin_unlock(&cifs_tcp_ses_lock);
36988c76
JL		 2132
2133 FreeXid(xid);
2134 return ses;
2135
2136get_ses_fail:
2137 sesInfoFree(ses);
2138 FreeXid(xid);
2139 return ERR_PTR(rc);
2140}
2141
96daf2b0 2142static int match_tcon(struct cifs_tcon *tcon, const char *unc)
37bb04e5
PS		 2143{
2144 if (tcon->tidStatus == CifsExiting)
2145 return 0;
2146 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
2147 return 0;
2148 return 1;
2149}
2150
96daf2b0
SF		 2151static struct cifs_tcon *
2152cifs_find_tcon(struct cifs_ses *ses, const char *unc)
f1987b44
JL		 2153{
2154 struct list_head *tmp;
96daf2b0 2155 struct cifs_tcon *tcon;
f1987b44 2156
3f9bcca7 2157 spin_lock(&cifs_tcp_ses_lock);
f1987b44 2158 list_for_each(tmp, &ses->tcon_list) {
96daf2b0 2159 tcon = list_entry(tmp, struct cifs_tcon, tcon_list);
37bb04e5 2160 if (!match_tcon(tcon, unc))
f1987b44 2161 continue;
f1987b44 2162 ++tcon->tc_count;
3f9bcca7 2163 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 2164 return tcon;
1da177e4 2165 }
3f9bcca7 2166 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 2167 return NULL;
2168}
2169
f1987b44 2170static void
96daf2b0 2171cifs_put_tcon(struct cifs_tcon *tcon)
f1987b44
JL		 2172{
2173 int xid;
96daf2b0 2174 struct cifs_ses *ses = tcon->ses;
f1987b44 2175
d00c28de 2176 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
3f9bcca7 2177 spin_lock(&cifs_tcp_ses_lock);
f1987b44 2178 if (--tcon->tc_count > 0) {
3f9bcca7 2179 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 2180 return;
2181 }
2182
2183 list_del_init(&tcon->tcon_list);
3f9bcca7 2184 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 2185
2186 xid = GetXid();
2187 CIFSSMBTDis(xid, tcon);
2188 _FreeXid(xid);
2189
d03382ce 2190 cifs_fscache_release_super_cookie(tcon);
9f841593 2191 tconInfoFree(tcon);
f1987b44
JL		 2192 cifs_put_smb_ses(ses);
2193}
2194
96daf2b0
SF		 2195static struct cifs_tcon *
2196cifs_get_tcon(struct cifs_ses *ses, struct smb_vol *volume_info)
d00c28de
JL		 2197{
2198 int rc, xid;
96daf2b0 2199 struct cifs_tcon *tcon;
d00c28de
JL		 2200
2201 tcon = cifs_find_tcon(ses, volume_info->UNC);
2202 if (tcon) {
2203 cFYI(1, "Found match on UNC path");
2204 /* existing tcon already has a reference */
2205 cifs_put_smb_ses(ses);
2206 if (tcon->seal != volume_info->seal)
2207 cERROR(1, "transport encryption setting "
2208 "conflicts with existing tid");
2209 return tcon;
2210 }
2211
2212 tcon = tconInfoAlloc();
2213 if (tcon == NULL) {
2214 rc = -ENOMEM;
2215 goto out_fail;
2216 }
2217
2218 tcon->ses = ses;
2219 if (volume_info->password) {
2220 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2221 if (!tcon->password) {
2222 rc = -ENOMEM;
2223 goto out_fail;
2224 }
2225 }
2226
2227 if (strchr(volume_info->UNC + 3, '\\') == NULL
2228 && strchr(volume_info->UNC + 3, '/') == NULL) {
2229 cERROR(1, "Missing share name");
2230 rc = -ENODEV;
2231 goto out_fail;
2232 }
2233
2234 /* BB Do we need to wrap session_mutex around
2235 * this TCon call and Unix SetFS as
2236 * we do on SessSetup and reconnect? */
2237 xid = GetXid();
2238 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2239 FreeXid(xid);
2240 cFYI(1, "CIFS Tcon rc = %d", rc);
2241 if (rc)
2242 goto out_fail;
2243
2244 if (volume_info->nodfs) {
2245 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2246 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2247 }
2248 tcon->seal = volume_info->seal;
2249 /* we can have only one retry value for a connection
2250 to a share so for resources mounted more than once
2251 to the same server share the last value passed in
2252 for the retry flag is used */
2253 tcon->retry = volume_info->retry;
2254 tcon->nocase = volume_info->nocase;
2255 tcon->local_lease = volume_info->local_lease;
2256
3f9bcca7 2257 spin_lock(&cifs_tcp_ses_lock);
d00c28de 2258 list_add(&tcon->tcon_list, &ses->tcon_list);
3f9bcca7 2259 spin_unlock(&cifs_tcp_ses_lock);
d00c28de 2260
d03382ce
SJ		 2261 cifs_fscache_get_super_cookie(tcon);
2262
d00c28de
JL		 2263 return tcon;
2264
2265out_fail:
2266 tconInfoFree(tcon);
2267 return ERR_PTR(rc);
2268}
2269
9d002df4
JL		 2270void
2271cifs_put_tlink(struct tcon_link *tlink)
2272{
2273 if (!tlink || IS_ERR(tlink))
2274 return;
2275
2276 if (!atomic_dec_and_test(&tlink->tl_count) ||
2277 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2278 tlink->tl_time = jiffies;
2279 return;
2280 }
2281
2282 if (!IS_ERR(tlink_tcon(tlink)))
2283 cifs_put_tcon(tlink_tcon(tlink));
2284 kfree(tlink);
2285 return;
2286}
d00c28de 2287
25c7f41e 2288static inline struct tcon_link *
cd51875d
PS		 2289cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
2290{
2291 return cifs_sb->master_tlink;
2292}
25c7f41e
PS		 2293
2294static int
2295compare_mount_options(struct super_block *sb, struct cifs_mnt_data *mnt_data)
2296{
2297 struct cifs_sb_info *old = CIFS_SB(sb);
2298 struct cifs_sb_info *new = mnt_data->cifs_sb;
2299
2300 if ((sb->s_flags & CIFS_MS_MASK) != (mnt_data->flags & CIFS_MS_MASK))
2301 return 0;
2302
2303 if ((old->mnt_cifs_flags & CIFS_MOUNT_MASK) !=
2304 (new->mnt_cifs_flags & CIFS_MOUNT_MASK))
2305 return 0;
2306
2307 if (old->rsize != new->rsize)
2308 return 0;
2309
2310 /*
2311 * We want to share sb only if we don't specify wsize or specified wsize
2312 * is greater or equal than existing one.
2313 */
2314 if (new->wsize && new->wsize < old->wsize)
2315 return 0;
2316
2317 if (old->mnt_uid != new->mnt_uid || old->mnt_gid != new->mnt_gid)
2318 return 0;
2319
2320 if (old->mnt_file_mode != new->mnt_file_mode ||
2321 old->mnt_dir_mode != new->mnt_dir_mode)
2322 return 0;
2323
2324 if (strcmp(old->local_nls->charset, new->local_nls->charset))
2325 return 0;
2326
2327 if (old->actimeo != new->actimeo)
2328 return 0;
2329
2330 return 1;
2331}
2332
2333int
2334cifs_match_super(struct super_block *sb, void *data)
2335{
2336 struct cifs_mnt_data *mnt_data = (struct cifs_mnt_data *)data;
2337 struct smb_vol *volume_info;
2338 struct cifs_sb_info *cifs_sb;
2339 struct TCP_Server_Info *tcp_srv;
96daf2b0
SF		 2340 struct cifs_ses *ses;
2341 struct cifs_tcon *tcon;
25c7f41e
PS		 2342 struct tcon_link *tlink;
2343 struct sockaddr_storage addr;
2344 int rc = 0;
2345
2346 memset(&addr, 0, sizeof(struct sockaddr_storage));
2347
2348 spin_lock(&cifs_tcp_ses_lock);
2349 cifs_sb = CIFS_SB(sb);
2350 tlink = cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
2351 if (IS_ERR(tlink)) {
2352 spin_unlock(&cifs_tcp_ses_lock);
2353 return rc;
2354 }
2355 tcon = tlink_tcon(tlink);
2356 ses = tcon->ses;
2357 tcp_srv = ses->server;
2358
2359 volume_info = mnt_data->vol;
2360
2361 if (!volume_info->UNCip || !volume_info->UNC)
2362 goto out;
2363
2364 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
2365 volume_info->UNCip,
2366 strlen(volume_info->UNCip),
2367 volume_info->port);
2368 if (!rc)
2369 goto out;
2370
2371 if (!match_server(tcp_srv, (struct sockaddr *)&addr, volume_info) ||
2372 !match_session(ses, volume_info) ||
2373 !match_tcon(tcon, volume_info->UNC)) {
2374 rc = 0;
2375 goto out;
2376 }
2377
2378 rc = compare_mount_options(sb, mnt_data);
2379out:
25c7f41e 2380 spin_unlock(&cifs_tcp_ses_lock);
f484b5d0 2381 cifs_put_tlink(tlink);
25c7f41e
PS		 2382 return rc;
2383}
2384
1da177e4 2385int
96daf2b0 2386get_dfs_path(int xid, struct cifs_ses *pSesInfo, const char *old_path,
50c2f753 2387 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 2388 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 2389{
2390 char *temp_unc;
2391 int rc = 0;
2392
2393 *pnum_referrals = 0;
366781c1 2394 *preferrals = NULL;
1da177e4
LT		 2395
2396 if (pSesInfo->ipc_tid == 0) {
2397 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 2398 strnlen(pSesInfo->serverName,
2399 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 2400 + 1 + 4 /* slash IPC$ */ + 2,
2401 GFP_KERNEL);
2402 if (temp_unc == NULL)
2403 return -ENOMEM;
2404 temp_unc[0] = '\\';
2405 temp_unc[1] = '\\';
2406 strcpy(temp_unc + 2, pSesInfo->serverName);
2407 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2408 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 2409 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 2410 kfree(temp_unc);
2411 }
2412 if (rc == 0)
c2cf07d5 2413 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 2414 pnum_referrals, nls_codepage, remap);
366781c1
SF		 2415 /* BB map targetUNCs to dfs_info3 structures, here or
2416 in CIFSGetDFSRefer BB */
1da177e4
LT		 2417
2418 return rc;
2419}
2420
09e50d55
JL		 2421#ifdef CONFIG_DEBUG_LOCK_ALLOC
2422static struct lock_class_key cifs_key[2];
2423static struct lock_class_key cifs_slock_key[2];
2424
2425static inline void
2426cifs_reclassify_socket4(struct socket *sock)
2427{
2428 struct sock *sk = sock->sk;
2429 BUG_ON(sock_owned_by_user(sk));
2430 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2431 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2432}
2433
2434static inline void
2435cifs_reclassify_socket6(struct socket *sock)
2436{
2437 struct sock *sk = sock->sk;
2438 BUG_ON(sock_owned_by_user(sk));
2439 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2440 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2441}
2442#else
2443static inline void
2444cifs_reclassify_socket4(struct socket *sock)
2445{
2446}
2447
2448static inline void
2449cifs_reclassify_socket6(struct socket *sock)
2450{
2451}
2452#endif
2453
1da177e4 2454/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 2455static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 2456{
50c2f753 2457 unsigned int i, j;
1da177e4 2458
50c2f753 2459 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 2460 /* mask a nibble at a time and encode */
2461 target[j] = 'A' + (0x0F & (source[i] >> 4));
2462 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 2463 j += 2;
1da177e4
LT		 2464 }
2465
2466}
2467
3eb9a889
BG		 2468static int
2469bind_socket(struct TCP_Server_Info *server)
2470{
2471 int rc = 0;
2472 if (server->srcaddr.ss_family != AF_UNSPEC) {
2473 /* Bind to the specified local IP address */
2474 struct socket *socket = server->ssocket;
2475 rc = socket->ops->bind(socket,
2476 (struct sockaddr *) &server->srcaddr,
2477 sizeof(server->srcaddr));
2478 if (rc < 0) {
2479 struct sockaddr_in *saddr4;
2480 struct sockaddr_in6 *saddr6;
2481 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2482 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2483 if (saddr6->sin6_family == AF_INET6)
2484 cERROR(1, "cifs: "
2485 "Failed to bind to: %pI6c, error: %d\n",
2486 &saddr6->sin6_addr, rc);
2487 else
2488 cERROR(1, "cifs: "
2489 "Failed to bind to: %pI4, error: %d\n",
2490 &saddr4->sin_addr.s_addr, rc);
2491 }
2492 }
2493 return rc;
2494}
1da177e4
LT		 2495
2496static int
a9f1b85e 2497ip_rfc1001_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2498{
2499 int rc = 0;
a9f1b85e
PS		 2500 /*
2501 * some servers require RFC1001 sessinit before sending
2502 * negprot - BB check reconnection in case where second
2503 * sessinit is sent but no second negprot
2504 */
2505 struct rfc1002_session_packet *ses_init_buf;
2506 struct smb_hdr *smb_buf;
2507 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2508 GFP_KERNEL);
2509 if (ses_init_buf) {
2510 ses_init_buf->trailer.session_req.called_len = 32;
2511
2512 if (server->server_RFC1001_name &&
2513 server->server_RFC1001_name[0] != 0)
2514 rfc1002mangle(ses_init_buf->trailer.
2515 session_req.called_name,
2516 server->server_RFC1001_name,
2517 RFC1001_NAME_LEN_WITH_NULL);
2518 else
2519 rfc1002mangle(ses_init_buf->trailer.
2520 session_req.called_name,
2521 DEFAULT_CIFS_CALLED_NAME,
2522 RFC1001_NAME_LEN_WITH_NULL);
2523
2524 ses_init_buf->trailer.session_req.calling_len = 32;
2525
2526 /*
2527 * calling name ends in null (byte 16) from old smb
2528 * convention.
2529 */
2530 if (server->workstation_RFC1001_name &&
2531 server->workstation_RFC1001_name[0] != 0)
2532 rfc1002mangle(ses_init_buf->trailer.
2533 session_req.calling_name,
2534 server->workstation_RFC1001_name,
2535 RFC1001_NAME_LEN_WITH_NULL);
2536 else
2537 rfc1002mangle(ses_init_buf->trailer.
2538 session_req.calling_name,
2539 "LINUX_CIFS_CLNT",
2540 RFC1001_NAME_LEN_WITH_NULL);
2541
2542 ses_init_buf->trailer.session_req.scope1 = 0;
2543 ses_init_buf->trailer.session_req.scope2 = 0;
2544 smb_buf = (struct smb_hdr *)ses_init_buf;
2545
2546 /* sizeof RFC1002_SESSION_REQUEST with no scope */
be8e3b00 2547 smb_buf->smb_buf_length = cpu_to_be32(0x81000044);
a9f1b85e
PS		 2548 rc = smb_send(server, smb_buf, 0x44);
2549 kfree(ses_init_buf);
2550 /*
2551 * RFC1001 layer in at least one server
2552 * requires very short break before negprot
2553 * presumably because not expecting negprot
2554 * to follow so fast. This is a simple
2555 * solution that works without
2556 * complicating the code and causes no
2557 * significant slowing down on mount
2558 * for everyone else
2559 */
2560 usleep_range(1000, 2000);
2561 }
2562 /*
2563 * else the negprot may still work without this
2564 * even though malloc failed
2565 */
2566
2567 return rc;
2568}
2569
2570static int
2571generic_ip_connect(struct TCP_Server_Info *server)
2572{
2573 int rc = 0;
6da97910 2574 __be16 sport;
a9f1b85e 2575 int slen, sfamily;
bcf4b106 2576 struct socket *socket = server->ssocket;
a9f1b85e
PS		 2577 struct sockaddr *saddr;
2578
2579 saddr = (struct sockaddr *) &server->dstaddr;
2580
2581 if (server->dstaddr.ss_family == AF_INET6) {
2582 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
2583 slen = sizeof(struct sockaddr_in6);
2584 sfamily = AF_INET6;
2585 } else {
2586 sport = ((struct sockaddr_in *) saddr)->sin_port;
2587 slen = sizeof(struct sockaddr_in);
2588 sfamily = AF_INET;
2589 }
1da177e4 2590
bcf4b106 2591 if (socket == NULL) {
f1d0c998
RL		 2592 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2593 IPPROTO_TCP, &socket, 1);
1da177e4 2594 if (rc < 0) {
b6b38f70 2595 cERROR(1, "Error %d creating socket", rc);
a9f1b85e 2596 server->ssocket = NULL;
1da177e4 2597 return rc;
1da177e4 2598 }
bcf4b106
JL		 2599
2600 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2601 cFYI(1, "Socket created");
bcf4b106
JL		 2602 server->ssocket = socket;
2603 socket->sk->sk_allocation = GFP_NOFS;
a9f1b85e
PS		 2604 if (sfamily == AF_INET6)
2605 cifs_reclassify_socket6(socket);
2606 else
2607 cifs_reclassify_socket4(socket);
1da177e4
LT		 2608 }
2609
3eb9a889
BG		 2610 rc = bind_socket(server);
2611 if (rc < 0)
2612 return rc;
2613
bcf4b106
JL		 2614 /*
2615 * Eventually check for other socket options to change from
a9f1b85e
PS		 2616 * the default. sock_setsockopt not used because it expects
2617 * user space buffer
bcf4b106
JL		 2618 */
2619 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2620 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2621
b387eaeb 2622 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2623 if (server->noautotune) {
2624 if (socket->sk->sk_sndbuf < (200 * 1024))
2625 socket->sk->sk_sndbuf = 200 * 1024;
2626 if (socket->sk->sk_rcvbuf < (140 * 1024))
2627 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2628 }
1da177e4 2629
6a5fa236 2630 if (server->tcp_nodelay) {
a9f1b85e 2631 int val = 1;
6a5fa236
SF		 2632 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2633 (char *)&val, sizeof(val));
2634 if (rc)
b6b38f70 2635 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2636 }
2637
b6b38f70 2638 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2639 socket->sk->sk_sndbuf,
b6b38f70 2640 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2641
ee1b3ea9
JL		 2642 rc = socket->ops->connect(socket, saddr, slen, 0);
2643 if (rc < 0) {
2644 cFYI(1, "Error %d connecting to server", rc);
2645 sock_release(socket);
2646 server->ssocket = NULL;
2647 return rc;
2648 }
2649
a9f1b85e
PS		 2650 if (sport == htons(RFC1001_PORT))
2651 rc = ip_rfc1001_connect(server);
50c2f753 2652
1da177e4
LT		 2653 return rc;
2654}
2655
2656static int
a9f1b85e 2657ip_connect(struct TCP_Server_Info *server)
1da177e4 2658{
6da97910 2659 __be16 *sport;
a9f1b85e
PS		 2660 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2661 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
1da177e4 2662
a9f1b85e
PS		 2663 if (server->dstaddr.ss_family == AF_INET6)
2664 sport = &addr6->sin6_port;
2665 else
2666 sport = &addr->sin_port;
1da177e4 2667
a9f1b85e
PS		 2668 if (*sport == 0) {
2669 int rc;
1da177e4 2670
a9f1b85e
PS		 2671 /* try with 445 port at first */
2672 *sport = htons(CIFS_PORT);
3eb9a889 2673
a9f1b85e 2674 rc = generic_ip_connect(server);
1da177e4 2675 if (rc >= 0)
a9f1b85e 2676 return rc;
6a5fa236 2677
a9f1b85e
PS		 2678 /* if it failed, try with 139 port */
2679 *sport = htons(RFC1001_PORT);
6a5fa236
SF		 2680 }
2681
a9f1b85e 2682 return generic_ip_connect(server);
1da177e4
LT		 2683}
2684
96daf2b0 2685void reset_cifs_unix_caps(int xid, struct cifs_tcon *tcon,
2c6292ae 2686 struct cifs_sb_info *cifs_sb, struct smb_vol *vol_info)
8af18971
SF		 2687{
2688 /* if we are reconnecting then should we check to see if
2689 * any requested capabilities changed locally e.g. via
2690 * remount but we can not do much about it here
2691 * if they have (even if we could detect it by the following)
2692 * Perhaps we could add a backpointer to array of sb from tcon
2693 * or if we change to make all sb to same share the same
2694 * sb as NFS - then we only have one backpointer to sb.
2695 * What if we wanted to mount the server share twice once with
2696 * and once without posixacls or posix paths? */
2697 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2698
c18c842b
SF		 2699 if (vol_info && vol_info->no_linux_ext) {
2700 tcon->fsUnixInfo.Capability = 0;
2701 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2702 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2703 return;
2704 } else if (vol_info)
2705 tcon->unix_ext = 1; /* Unix Extensions supported */
2706
2707 if (tcon->unix_ext == 0) {
b6b38f70 2708 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2709 return;
2710 }
50c2f753 2711
fb8c4b14 2712 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2713 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
6848b733 2714 cFYI(1, "unix caps which server supports %lld", cap);
8af18971
SF		 2715 /* check for reconnect case in which we do not
2716 want to change the mount behavior if we can avoid it */
fb8c4b14 2717 if (vol_info == NULL) {
50c2f753 2718 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2719 originally at mount time */
2720 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2721 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2722 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2723 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2724 cERROR(1, "POSIXPATH support change");
8af18971 2725 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2726 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2727 cERROR(1, "possible reconnect error");
2728 cERROR(1, "server disabled POSIX path support");
11b6d645 2729 }
8af18971 2730 }
50c2f753 2731
6848b733
SF		 2732 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2733 cERROR(1, "per-share encryption not supported yet");
2734
8af18971 2735 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2736 if (vol_info && vol_info->no_psx_acl)
8af18971 2737 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2738 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2739 cFYI(1, "negotiated posix acl support");
2c6292ae
AV		 2740 if (cifs_sb)
2741 cifs_sb->mnt_cifs_flags |=
2742 CIFS_MOUNT_POSIXACL;
8af18971
SF		 2743 }
2744
75865f8c 2745 if (vol_info && vol_info->posix_paths == 0)
8af18971 2746 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2747 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2748 cFYI(1, "negotiate posix pathnames");
2c6292ae
AV		 2749 if (cifs_sb)
2750 cifs_sb->mnt_cifs_flags |=
8af18971
SF		 2751 CIFS_MOUNT_POSIX_PATHS;
2752 }
50c2f753 2753
2c6292ae 2754 if (cifs_sb && (cifs_sb->rsize > 127 * 1024)) {
75865f8c 2755 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2c6292ae 2756 cifs_sb->rsize = 127 * 1024;
b6b38f70 2757 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2758 }
2759 }
50c2f753
SF		 2760
2761
b6b38f70 2762 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2763#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2764 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2765 cFYI(1, "FCNTL cap");
75865f8c 2766 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2767 cFYI(1, "EXTATTR cap");
75865f8c 2768 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2769 cFYI(1, "POSIX path cap");
75865f8c 2770 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2771 cFYI(1, "XATTR cap");
75865f8c 2772 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2773 cFYI(1, "POSIX ACL cap");
75865f8c 2774 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2775 cFYI(1, "very large read cap");
75865f8c 2776 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2777 cFYI(1, "very large write cap");
6848b733
SF		 2778 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP)
2779 cFYI(1, "transport encryption cap");
2780 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2781 cFYI(1, "mandatory transport encryption cap");
8af18971
SF		 2782#endif /* CIFS_DEBUG2 */
2783 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2784 if (vol_info == NULL) {
b6b38f70 2785 cFYI(1, "resetting capabilities failed");
442aa310 2786 } else
b6b38f70 2787 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2788 "with the server failed. Consider "
2789 "mounting with the Unix Extensions\n"
2790 "disabled, if problems are found, "
2791 "by specifying the nounix mount "
b6b38f70 2792 "option.");
5a44b319 2793
8af18971
SF		 2794 }
2795 }
2796}
2797
724d9f1c
PS		 2798void cifs_setup_cifs_sb(struct smb_vol *pvolume_info,
2799 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2800{
2de970ff
JL		 2801 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2802
2ced6f69
AV		 2803 spin_lock_init(&cifs_sb->tlink_tree_lock);
2804 cifs_sb->tlink_tree = RB_ROOT;
2805
3b795210 2806 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2807 cERROR(1, "rsize %d too large, using MaxBufSize",
2808 pvolume_info->rsize);
3b795210
SF		 2809 cifs_sb->rsize = CIFSMaxBufSize;
2810 } else if ((pvolume_info->rsize) &&
2811 (pvolume_info->rsize <= CIFSMaxBufSize))
2812 cifs_sb->rsize = pvolume_info->rsize;
2813 else /* default */
2814 cifs_sb->rsize = CIFSMaxBufSize;
2815
3b795210
SF		 2816 if (cifs_sb->rsize < 2048) {
2817 cifs_sb->rsize = 2048;
2818 /* Windows ME may prefer this */
b6b38f70 2819 cFYI(1, "readsize set to minimum: 2048");
3b795210 2820 }
25c7f41e
PS		 2821
2822 /*
2823 * Temporarily set wsize for matching superblock. If we end up using
2824 * new sb then cifs_negotiate_wsize will later negotiate it downward
2825 * if needed.
2826 */
2827 cifs_sb->wsize = pvolume_info->wsize;
2828
3b795210
SF		 2829 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2830 cifs_sb->mnt_gid = pvolume_info->linux_gid;
3d3ea8e6
SP		 2831 if (pvolume_info->backupuid_specified)
2832 cifs_sb->mnt_backupuid = pvolume_info->backupuid;
2833 if (pvolume_info->backupgid_specified)
2834 cifs_sb->mnt_backupgid = pvolume_info->backupgid;
3b795210
SF		 2835 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2836 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2837 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2838 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210 2839
6d20e840 2840 cifs_sb->actimeo = pvolume_info->actimeo;
724d9f1c 2841 cifs_sb->local_nls = pvolume_info->local_nls;
6d20e840 2842
3b795210
SF		 2843 if (pvolume_info->noperm)
2844 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2845 if (pvolume_info->setuids)
2846 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2847 if (pvolume_info->server_ino)
2848 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2849 if (pvolume_info->remap)
2850 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2851 if (pvolume_info->no_xattr)
2852 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2853 if (pvolume_info->sfu_emul)
2854 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2855 if (pvolume_info->nobrl)
2856 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2857 if (pvolume_info->nostrictsync)
4717bed6 2858 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2859 if (pvolume_info->mand_lock)
2860 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
d4ffff1f
PS		 2861 if (pvolume_info->rwpidforward)
2862 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_RWPIDFORWARD;
3b795210
SF		 2863 if (pvolume_info->cifs_acl)
2864 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
3d3ea8e6
SP		 2865 if (pvolume_info->backupuid_specified)
2866 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPUID;
2867 if (pvolume_info->backupgid_specified)
2868 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPGID;
3b795210
SF		 2869 if (pvolume_info->override_uid)
2870 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2871 if (pvolume_info->override_gid)
2872 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2873 if (pvolume_info->dynperm)
2874 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
fa1df75d
SJ		 2875 if (pvolume_info->fsc)
2876 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
0eb8a132
JL		 2877 if (pvolume_info->multiuser)
2878 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2879 CIFS_MOUNT_NO_PERM);
d39454ff
PS		 2880 if (pvolume_info->strict_io)
2881 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
3b795210 2882 if (pvolume_info->direct_io) {
b6b38f70 2883 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2884 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2885 }
736a3320
SM		 2886 if (pvolume_info->mfsymlinks) {
2887 if (pvolume_info->sfu_emul) {
2888 cERROR(1, "mount option mfsymlinks ignored if sfu "
2889 "mount option is used");
2890 } else {
2891 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2892 }
2893 }
3b795210
SF		 2894
2895 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2896 cERROR(1, "mount option dynperm ignored if cifsacl "
2897 "mount option supported");
b1c8d2b4
JL		 2898}
2899
f7910cbd
JL		 2900/*
2901 * When the server supports very large writes via POSIX extensions, we can
1190f6a0
JL		 2902 * allow up to 2^24-1, minus the size of a WRITE_AND_X header, not including
2903 * the RFC1001 length.
f7910cbd
JL		 2904 *
2905 * Note that this might make for "interesting" allocation problems during
1190f6a0
JL		 2906 * writeback however as we have to allocate an array of pointers for the
2907 * pages. A 16M write means ~32kb page array with PAGE_CACHE_SIZE == 4096.
f7910cbd 2908 */
1190f6a0 2909#define CIFS_MAX_WSIZE ((1<<24) - 1 - sizeof(WRITE_REQ) + 4)
f7910cbd
JL		 2910
2911/*
1190f6a0 2912 * When the server doesn't allow large posix writes, only allow a wsize of
94443f43 2913 * 2^17-1 minus the size of the WRITE_AND_X header. That allows for a write up
1190f6a0 2914 * to the maximum size described by RFC1002.
f7910cbd 2915 */
94443f43 2916#define CIFS_MAX_RFC1002_WSIZE ((1<<17) - 1 - sizeof(WRITE_REQ) + 4)
f7910cbd
JL		 2917
2918/*
2919 * The default wsize is 1M. find_get_pages seems to return a maximum of 256
2920 * pages in a single call. With PAGE_CACHE_SIZE == 4k, this means we can fill
2921 * a single wsize request with a single call.
2922 */
2923#define CIFS_DEFAULT_WSIZE (1024 * 1024)
2924
2925static unsigned int
96daf2b0 2926cifs_negotiate_wsize(struct cifs_tcon *tcon, struct smb_vol *pvolume_info)
f7910cbd
JL		 2927{
2928 __u64 unix_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2929 struct TCP_Server_Info *server = tcon->ses->server;
2930 unsigned int wsize = pvolume_info->wsize ? pvolume_info->wsize :
2931 CIFS_DEFAULT_WSIZE;
2932
2933 /* can server support 24-bit write sizes? (via UNIX extensions) */
2934 if (!tcon->unix_ext || !(unix_cap & CIFS_UNIX_LARGE_WRITE_CAP))
1190f6a0 2935 wsize = min_t(unsigned int, wsize, CIFS_MAX_RFC1002_WSIZE);
f7910cbd 2936
1190f6a0
JL		 2937 /*
2938 * no CAP_LARGE_WRITE_X or is signing enabled without CAP_UNIX set?
2939 * Limit it to max buffer offered by the server, minus the size of the
2940 * WRITEX header, not including the 4 byte RFC1001 length.
2941 */
2942 if (!(server->capabilities & CAP_LARGE_WRITE_X) ||
2943 (!(server->capabilities & CAP_UNIX) &&
2944 (server->sec_mode & (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED))))
2945 wsize = min_t(unsigned int, wsize,
2946 server->maxBuf - sizeof(WRITE_REQ) + 4);
f7910cbd
JL		 2947
2948 /* hard limit of CIFS_MAX_WSIZE */
2949 wsize = min_t(unsigned int, wsize, CIFS_MAX_WSIZE);
2950
2951 return wsize;
2952}
2953
e4cce94c 2954static int
96daf2b0 2955is_path_accessible(int xid, struct cifs_tcon *tcon,
e4cce94c
IM		 2956 struct cifs_sb_info *cifs_sb, const char *full_path)
2957{
2958 int rc;
e4cce94c
IM		 2959 FILE_ALL_INFO *pfile_info;
2960
e4cce94c
IM		 2961 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2962 if (pfile_info == NULL)
2963 return -ENOMEM;
2964
2965 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2966 0 /* not legacy */, cifs_sb->local_nls,
2967 cifs_sb->mnt_cifs_flags &
2968 CIFS_MOUNT_MAP_SPECIAL_CHR);
221d1d79
JL		 2969
2970 if (rc == -EOPNOTSUPP || rc == -EINVAL)
2971 rc = SMBQueryInformation(xid, tcon, full_path, pfile_info,
2972 cifs_sb->local_nls, cifs_sb->mnt_cifs_flags &
2973 CIFS_MOUNT_MAP_SPECIAL_CHR);
e4cce94c
IM		 2974 kfree(pfile_info);
2975 return rc;
2976}
2977
b9bce2e9
JL		 2978static void
2979cleanup_volume_info_contents(struct smb_vol *volume_info)
1bfe73c2 2980{
b946845a 2981 kfree(volume_info->username);
1bfe73c2
IM		 2982 kzfree(volume_info->password);
2983 kfree(volume_info->UNC);
13589c43
SF		 2984 if (volume_info->UNCip != volume_info->UNC + 2)
2985 kfree(volume_info->UNCip);
b946845a
SF		 2986 kfree(volume_info->domainname);
2987 kfree(volume_info->iocharset);
1bfe73c2 2988 kfree(volume_info->prepath);
b9bce2e9
JL		 2989}
2990
2991void
2992cifs_cleanup_volume_info(struct smb_vol *volume_info)
2993{
2994 if (!volume_info)
2995 return;
2996 cleanup_volume_info_contents(volume_info);
1bfe73c2 2997 kfree(volume_info);
1bfe73c2
IM		 2998}
2999
b9bce2e9 3000
2d6d589d 3001#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 3002/* build_path_to_root returns full path to root when
3003 * we do not have an exiting connection (tcon) */
3004static char *
b2a0fa15 3005build_unc_path_to_root(const struct smb_vol *vol,
1bfe73c2
IM		 3006 const struct cifs_sb_info *cifs_sb)
3007{
b2a0fa15
JL		 3008 char *full_path, *pos;
3009 unsigned int pplen = vol->prepath ? strlen(vol->prepath) : 0;
3010 unsigned int unc_len = strnlen(vol->UNC, MAX_TREE_SIZE + 1);
1bfe73c2 3011
b2a0fa15 3012 full_path = kmalloc(unc_len + pplen + 1, GFP_KERNEL);
1bfe73c2
IM		 3013 if (full_path == NULL)
3014 return ERR_PTR(-ENOMEM);
3015
b2a0fa15
JL		 3016 strncpy(full_path, vol->UNC, unc_len);
3017 pos = full_path + unc_len;
3018
3019 if (pplen) {
3020 strncpy(pos, vol->prepath, pplen);
3021 pos += pplen;
3022 }
3023
3024 *pos = '\0'; /* add trailing null */
f87d39d9 3025 convert_delimiter(full_path, CIFS_DIR_SEP(cifs_sb));
b2a0fa15 3026 cFYI(1, "%s: full_path=%s", __func__, full_path);
1bfe73c2
IM		 3027 return full_path;
3028}
dd613945
SF		 3029
3030/*
3031 * Perform a dfs referral query for a share and (optionally) prefix
3032 *
046462ab
SF		 3033 * If a referral is found, cifs_sb->mountdata will be (re-)allocated
3034 * to a string containing updated options for the submount. Otherwise it
3035 * will be left untouched.
dd613945
SF		 3036 *
3037 * Returns the rc from get_dfs_path to the caller, which can be used to
3038 * determine whether there were referrals.
3039 */
3040static int
96daf2b0 3041expand_dfs_referral(int xid, struct cifs_ses *pSesInfo,
dd613945 3042 struct smb_vol *volume_info, struct cifs_sb_info *cifs_sb,
046462ab 3043 int check_prefix)
dd613945
SF		 3044{
3045 int rc;
3046 unsigned int num_referrals = 0;
3047 struct dfs_info3_param *referrals = NULL;
3048 char *full_path = NULL, *ref_path = NULL, *mdata = NULL;
3049
3050 full_path = build_unc_path_to_root(volume_info, cifs_sb);
3051 if (IS_ERR(full_path))
3052 return PTR_ERR(full_path);
3053
3054 /* For DFS paths, skip the first '\' of the UNC */
3055 ref_path = check_prefix ? full_path + 1 : volume_info->UNC + 1;
3056
3057 rc = get_dfs_path(xid, pSesInfo , ref_path, cifs_sb->local_nls,
3058 &num_referrals, &referrals,
3059 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
3060
3061 if (!rc && num_referrals > 0) {
3062 char *fake_devname = NULL;
3063
3064 mdata = cifs_compose_mount_options(cifs_sb->mountdata,
3065 full_path + 1, referrals,
3066 &fake_devname);
3067
3068 free_dfs_info_array(referrals, num_referrals);
046462ab 3069
dd613945
SF		 3070 if (IS_ERR(mdata)) {
3071 rc = PTR_ERR(mdata);
3072 mdata = NULL;
b9bce2e9
JL		 3073 } else {
3074 cleanup_volume_info_contents(volume_info);
3075 memset(volume_info, '\0', sizeof(*volume_info));
3076 rc = cifs_setup_volume_info(volume_info, mdata,
3077 fake_devname);
dd613945 3078 }
b9bce2e9
JL		 3079 kfree(fake_devname);
3080 kfree(cifs_sb->mountdata);
046462ab 3081 cifs_sb->mountdata = mdata;
dd613945
SF		 3082 }
3083 kfree(full_path);
3084 return rc;
3085}
2d6d589d 3086#endif
1bfe73c2 3087
04db79b0
JL		 3088static int
3089cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
3090 const char *devname)
1da177e4 3091{
724d9f1c 3092 int rc = 0;
1da177e4 3093
04db79b0
JL		 3094 if (cifs_parse_mount_options(mount_data, devname, volume_info))
3095 return -EINVAL;
1da177e4 3096
7586b765 3097 if (volume_info->nullauth) {
b6b38f70 3098 cFYI(1, "null user");
446b23a7 3099 volume_info->username = kzalloc(1, GFP_KERNEL);
04db79b0
JL		 3100 if (volume_info->username == NULL)
3101 return -ENOMEM;
7586b765 3102 } else if (volume_info->username) {
1da177e4 3103 /* BB fixme parse for domain name here */
b6b38f70 3104 cFYI(1, "Username: %s", volume_info->username);
1da177e4 3105 } else {
bf820679 3106 cifserror("No username specified");
50c2f753
SF		 3107 /* In userspace mount helper we can get user name from alternate
3108 locations such as env variables and files on disk */
04db79b0 3109 return -EINVAL;
1da177e4
LT		 3110 }
3111
1da177e4 3112 /* this is needed for ASCII cp to Unicode converts */
7586b765 3113 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 3114 /* load_nls_default cannot return null */
3115 volume_info->local_nls = load_nls_default();
1da177e4 3116 } else {
a5fc4ce0
JL		 3117 volume_info->local_nls = load_nls(volume_info->iocharset);
3118 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 3119 cERROR(1, "CIFS mount error: iocharset %s not found",
3120 volume_info->iocharset);
04db79b0 3121 return -ELIBACC;
1da177e4
LT		 3122 }
3123 }
724d9f1c 3124
724d9f1c
PS		 3125 return rc;
3126}
3127
04db79b0
JL		 3128struct smb_vol *
3129cifs_get_volume_info(char *mount_data, const char *devname)
3130{
3131 int rc;
3132 struct smb_vol *volume_info;
3133
3134 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
3135 if (!volume_info)
3136 return ERR_PTR(-ENOMEM);
3137
3138 rc = cifs_setup_volume_info(volume_info, mount_data, devname);
3139 if (rc) {
3140 cifs_cleanup_volume_info(volume_info);
3141 volume_info = ERR_PTR(rc);
3142 }
3143
3144 return volume_info;
3145}
3146
724d9f1c 3147int
2c6292ae 3148cifs_mount(struct cifs_sb_info *cifs_sb, struct smb_vol *volume_info)
724d9f1c
PS		 3149{
3150 int rc = 0;
3151 int xid;
96daf2b0
SF		 3152 struct cifs_ses *pSesInfo;
3153 struct cifs_tcon *tcon;
724d9f1c
PS		 3154 struct TCP_Server_Info *srvTcp;
3155 char *full_path;
3156 struct tcon_link *tlink;
3157#ifdef CONFIG_CIFS_DFS_UPCALL
3158 int referral_walks_count = 0;
20547490 3159#endif
dd854466
AV		 3160
3161 rc = bdi_setup_and_register(&cifs_sb->bdi, "cifs", BDI_CAP_MAP_COPY);
3162 if (rc)
3163 return rc;
3164
3165 cifs_sb->bdi.ra_pages = default_backing_dev_info.ra_pages;
3166
20547490 3167#ifdef CONFIG_CIFS_DFS_UPCALL
724d9f1c
PS		 3168try_mount_again:
3169 /* cleanup activities if we're chasing a referral */
3170 if (referral_walks_count) {
3171 if (tcon)
3172 cifs_put_tcon(tcon);
3173 else if (pSesInfo)
3174 cifs_put_smb_ses(pSesInfo);
3175
724d9f1c
PS		 3176 FreeXid(xid);
3177 }
3178#endif
3179 tcon = NULL;
3180 pSesInfo = NULL;
3181 srvTcp = NULL;
3182 full_path = NULL;
3183 tlink = NULL;
3184
3185 xid = GetXid();
1da177e4 3186
63c038c2 3187 /* get a reference to a tcp session */
7586b765 3188 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 3189 if (IS_ERR(srvTcp)) {
3190 rc = PTR_ERR(srvTcp);
dd854466 3191 bdi_destroy(&cifs_sb->bdi);
63c038c2 3192 goto out;
1da177e4
LT		 3193 }
3194
36988c76
JL		 3195 /* get a reference to a SMB session */
3196 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
3197 if (IS_ERR(pSesInfo)) {
3198 rc = PTR_ERR(pSesInfo);
3199 pSesInfo = NULL;
3200 goto mount_fail_check;
1da177e4 3201 }
50c2f753 3202
d00c28de
JL		 3203 /* search for existing tcon to this server share */
3204 tcon = cifs_get_tcon(pSesInfo, volume_info);
3205 if (IS_ERR(tcon)) {
3206 rc = PTR_ERR(tcon);
3207 tcon = NULL;
1bfe73c2 3208 goto remote_path_check;
d00c28de 3209 }
1bfe73c2 3210
d82c2df5 3211 /* tell server which Unix caps we support */
6848b733 3212 if (tcon->ses->capabilities & CAP_UNIX) {
d82c2df5
SF		 3213 /* reset of caps checks mount to see if unix extensions
3214 disabled for just this mount */
2c6292ae 3215 reset_cifs_unix_caps(xid, tcon, cifs_sb, volume_info);
6848b733
SF		 3216 if ((tcon->ses->server->tcpStatus == CifsNeedReconnect) &&
3217 (le64_to_cpu(tcon->fsUnixInfo.Capability) &
3218 CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)) {
3219 rc = -EACCES;
3220 goto mount_fail_check;
3221 }
3222 } else
d82c2df5 3223 tcon->unix_ext = 0; /* server does not support them */
c18c842b 3224
6848b733
SF		 3225 /* do not care if following two calls succeed - informational */
3226 if (!tcon->ipc) {
3227 CIFSSMBQFSDeviceInfo(xid, tcon);
3228 CIFSSMBQFSAttributeInfo(xid, tcon);
3229 }
3230
d82c2df5
SF		 3231 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
3232 cifs_sb->rsize = 1024 * 127;
b6b38f70 3233 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 3234 }
d82c2df5 3235 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
c974befa 3236 cifs_sb->rsize = min(cifs_sb->rsize, CIFSMaxBufSize);
1da177e4 3237
f7910cbd
JL		 3238 cifs_sb->wsize = cifs_negotiate_wsize(tcon, volume_info);
3239
1bfe73c2 3240remote_path_check:
c1508ca2
SF		 3241#ifdef CONFIG_CIFS_DFS_UPCALL
3242 /*
3243 * Perform an unconditional check for whether there are DFS
3244 * referrals for this path without prefix, to provide support
3245 * for DFS referrals from w2k8 servers which don't seem to respond
3246 * with PATH_NOT_COVERED to requests that include the prefix.
3247 * Chase the referral if found, otherwise continue normally.
3248 */
3249 if (referral_walks_count == 0) {
3250 int refrc = expand_dfs_referral(xid, pSesInfo, volume_info,
046462ab 3251 cifs_sb, false);
c1508ca2
SF		 3252 if (!refrc) {
3253 referral_walks_count++;
3254 goto try_mount_again;
3255 }
3256 }
3257#endif
3258
f87d39d9 3259 /* check if a whole path is not remote */
70945643 3260 if (!rc && tcon) {
e4cce94c 3261 /* build_path_to_root works only when we have a valid tcon */
f87d39d9 3262 full_path = cifs_build_path_to_root(volume_info, cifs_sb, tcon);
e4cce94c
IM		 3263 if (full_path == NULL) {
3264 rc = -ENOMEM;
3265 goto mount_fail_check;
3266 }
3267 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
03ceace5 3268 if (rc != 0 && rc != -EREMOTE) {
e4cce94c
IM		 3269 kfree(full_path);
3270 goto mount_fail_check;
3271 }
3272 kfree(full_path);
3273 }
3274
1bfe73c2
IM		 3275 /* get referral if needed */
3276 if (rc == -EREMOTE) {
d036f50f 3277#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 3278 if (referral_walks_count > MAX_NESTED_LINKS) {
3279 /*
3280 * BB: when we implement proper loop detection,
3281 * we will remove this check. But now we need it
3282 * to prevent an indefinite loop if 'DFS tree' is
3283 * misconfigured (i.e. has loops).
3284 */
3285 rc = -ELOOP;
3286 goto mount_fail_check;
3287 }
1bfe73c2 3288
dd613945 3289 rc = expand_dfs_referral(xid, pSesInfo, volume_info, cifs_sb,
046462ab 3290 true);
7b91e266 3291
dd613945 3292 if (!rc) {
5c2503a8 3293 referral_walks_count++;
1bfe73c2
IM		 3294 goto try_mount_again;
3295 }
dd613945 3296 goto mount_fail_check;
d036f50f
SF		 3297#else /* No DFS support, return error on mount */
3298 rc = -EOPNOTSUPP;
3299#endif
1bfe73c2
IM		 3300 }
3301
9d002df4
JL		 3302 if (rc)
3303 goto mount_fail_check;
3304
3305 /* now, hang the tcon off of the superblock */
3306 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
3307 if (tlink == NULL) {
3308 rc = -ENOMEM;
3309 goto mount_fail_check;
3310 }
3311
b647c35f 3312 tlink->tl_uid = pSesInfo->linux_uid;
9d002df4
JL		 3313 tlink->tl_tcon = tcon;
3314 tlink->tl_time = jiffies;
3315 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
3316 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3317
b647c35f 3318 cifs_sb->master_tlink = tlink;
9d002df4 3319 spin_lock(&cifs_sb->tlink_tree_lock);
b647c35f 3320 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
9d002df4 3321 spin_unlock(&cifs_sb->tlink_tree_lock);
413e661c 3322
2de970ff
JL		 3323 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3324 TLINK_IDLE_EXPIRE);
3325
1bfe73c2
IM		 3326mount_fail_check:
3327 /* on error free sesinfo and tcon struct if needed */
3328 if (rc) {
1bfe73c2 3329 /* If find_unc succeeded then rc == 0 so we can not end */
25985edc 3330 /* up accidentally freeing someone elses tcon struct */
1bfe73c2
IM		 3331 if (tcon)
3332 cifs_put_tcon(tcon);
3333 else if (pSesInfo)
3334 cifs_put_smb_ses(pSesInfo);
3335 else
3336 cifs_put_tcp_session(srvTcp);
dd854466 3337 bdi_destroy(&cifs_sb->bdi);
1bfe73c2
IM		 3338 }
3339
70fe7dc0 3340out:
1da177e4
LT		 3341 FreeXid(xid);
3342 return rc;
3343}
3344
8d1bca32
JL		 3345/*
3346 * Issue a TREE_CONNECT request. Note that for IPC$ shares, that the tcon
3347 * pointer may be NULL.
3348 */
1da177e4 3349int
96daf2b0
SF		 3350CIFSTCon(unsigned int xid, struct cifs_ses *ses,
3351 const char *tree, struct cifs_tcon *tcon,
1da177e4
LT		 3352 const struct nls_table *nls_codepage)
3353{
3354 struct smb_hdr *smb_buffer;
3355 struct smb_hdr *smb_buffer_response;
3356 TCONX_REQ *pSMB;
3357 TCONX_RSP *pSMBr;
3358 unsigned char *bcc_ptr;
3359 int rc = 0;
690c522f
JL		 3360 int length;
3361 __u16 bytes_left, count;
1da177e4
LT		 3362
3363 if (ses == NULL)
3364 return -EIO;
3365
3366 smb_buffer = cifs_buf_get();
ca43e3be 3367 if (smb_buffer == NULL)
1da177e4 3368 return -ENOMEM;
ca43e3be 3369
1da177e4
LT		 3370 smb_buffer_response = smb_buffer;
3371
3372 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
3373 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 3374
3375 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 3376 smb_buffer->Uid = ses->Suid;
3377 pSMB = (TCONX_REQ *) smb_buffer;
3378 pSMBr = (TCONX_RSP *) smb_buffer_response;
3379
3380 pSMB->AndXCommand = 0xFF;
3381 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 3382 bcc_ptr = &pSMB->Password[0];
8d1bca32 3383 if (!tcon || (ses->server->sec_mode & SECMODE_USER)) {
eeac8047 3384 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 3385 *bcc_ptr = 0; /* password is null byte */
eeac8047 3386 bcc_ptr++; /* skip password */
7c7b25bc 3387 /* already aligned so no need to do it below */
eeac8047 3388 } else {
540b2e37 3389 pSMB->PasswordLength = cpu_to_le16(CIFS_AUTH_RESP_SIZE);
eeac8047
SF		 3390 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
3391 specified as required (when that support is added to
3392 the vfs in the future) as only NTLM or the much
7c7b25bc 3393 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 3394 by Samba (not sure whether other servers allow
3395 NTLMv2 password here) */
7c7b25bc 3396#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 3397 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0 3398 (ses->server->secType == LANMAN))
d3ba50b1 3399 calc_lanman_hash(tcon->password, ses->server->cryptkey,
96daf2b0 3400 ses->server->sec_mode &
4e53a3fb
JL		 3401 SECMODE_PW_ENCRYPT ? true : false,
3402 bcc_ptr);
7c7b25bc
SF		 3403 else
3404#endif /* CIFS_WEAK_PW_HASH */
ee2c9258
SP		 3405 rc = SMBNTencrypt(tcon->password, ses->server->cryptkey,
3406 bcc_ptr);
eeac8047 3407
540b2e37 3408 bcc_ptr += CIFS_AUTH_RESP_SIZE;
fb8c4b14 3409 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 3410 /* must align unicode strings */
3411 *bcc_ptr = 0; /* null byte password */
3412 bcc_ptr++;
3413 }
eeac8047 3414 }
1da177e4 3415
96daf2b0 3416 if (ses->server->sec_mode &
a878fb22 3417 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 3418 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3419
3420 if (ses->capabilities & CAP_STATUS32) {
3421 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3422 }
3423 if (ses->capabilities & CAP_DFS) {
3424 smb_buffer->Flags2 |= SMBFLG2_DFS;
3425 }
3426 if (ses->capabilities & CAP_UNICODE) {
3427 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3428 length =
50c2f753
SF		 3429 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3430 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 3431 (/* server len*/ + 256 /* share len */), nls_codepage);
3432 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 3433 bcc_ptr += 2; /* skip trailing null */
3434 } else { /* ASCII */
1da177e4
LT		 3435 strcpy(bcc_ptr, tree);
3436 bcc_ptr += strlen(tree) + 1;
3437 }
3438 strcpy(bcc_ptr, "?????");
3439 bcc_ptr += strlen("?????");
3440 bcc_ptr += 1;
3441 count = bcc_ptr - &pSMB->Password[0];
be8e3b00
SF		 3442 pSMB->hdr.smb_buf_length = cpu_to_be32(be32_to_cpu(
3443 pSMB->hdr.smb_buf_length) + count);
1da177e4
LT		 3444 pSMB->ByteCount = cpu_to_le16(count);
3445
133672ef 3446 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
7749981e 3447 0);
1da177e4 3448
1da177e4
LT		 3449 /* above now done in SendReceive */
3450 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 3451 bool is_unicode;
3452
1da177e4 3453 tcon->tidStatus = CifsGood;
3b795210 3454 tcon->need_reconnect = false;
1da177e4
LT		 3455 tcon->tid = smb_buffer_response->Tid;
3456 bcc_ptr = pByteArea(smb_buffer_response);
690c522f 3457 bytes_left = get_bcc(smb_buffer_response);
cc20c031 3458 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 3459 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3460 is_unicode = true;
3461 else
3462 is_unicode = false;
3463
cc20c031 3464
50c2f753 3465 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 3466 if (length == 3) {
3467 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3468 (bcc_ptr[2] == 'C')) {
b6b38f70 3469 cFYI(1, "IPC connection");
7f8ed420
SF		 3470 tcon->ipc = 1;
3471 }
3472 } else if (length == 2) {
3473 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3474 /* the most common case */
b6b38f70 3475 cFYI(1, "disk share connection");
7f8ed420
SF		 3476 }
3477 }
50c2f753 3478 bcc_ptr += length + 1;
cc20c031 3479 bytes_left -= (length + 1);
1da177e4 3480 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 3481
3482 /* mostly informational -- no need to fail on error here */
90a98b2f 3483 kfree(tcon->nativeFileSystem);
d185cda7 3484 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 3485 bytes_left, is_unicode,
cc20c031
JL		 3486 nls_codepage);
3487
b6b38f70 3488 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 3489
fb8c4b14 3490 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 3491 (smb_buffer_response->WordCount == 7))
3492 /* field is in same location */
3979877e
SF		 3493 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3494 else
3495 tcon->Flags = 0;
b6b38f70 3496 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 3497 } else if ((rc == 0) && tcon == NULL) {
50c2f753 3498 /* all we need to save for IPC$ connection */
1da177e4
LT		 3499 ses->ipc_tid = smb_buffer_response->Tid;
3500 }
3501
a8a11d39 3502 cifs_buf_release(smb_buffer);
1da177e4
LT		 3503 return rc;
3504}
3505
2a9b9951
AV		 3506void
3507cifs_umount(struct cifs_sb_info *cifs_sb)
1da177e4 3508{
b647c35f
JL		 3509 struct rb_root *root = &cifs_sb->tlink_tree;
3510 struct rb_node *node;
3511 struct tcon_link *tlink;
9d002df4 3512
2de970ff
JL		 3513 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3514
b647c35f
JL		 3515 spin_lock(&cifs_sb->tlink_tree_lock);
3516 while ((node = rb_first(root))) {
3517 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3518 cifs_get_tlink(tlink);
3519 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3520 rb_erase(node, root);
1da177e4 3521
b647c35f
JL		 3522 spin_unlock(&cifs_sb->tlink_tree_lock);
3523 cifs_put_tlink(tlink);
3524 spin_lock(&cifs_sb->tlink_tree_lock);
3525 }
3526 spin_unlock(&cifs_sb->tlink_tree_lock);
50c2f753 3527
dd854466 3528 bdi_destroy(&cifs_sb->bdi);
d757d71b
AV		 3529 kfree(cifs_sb->mountdata);
3530 unload_nls(cifs_sb->local_nls);
3531 kfree(cifs_sb);
50c2f753 3532}
1da177e4 3533
96daf2b0 3534int cifs_negotiate_protocol(unsigned int xid, struct cifs_ses *ses)
1da177e4
LT		 3535{
3536 int rc = 0;
198b5682 3537 struct TCP_Server_Info *server = ses->server;
1da177e4 3538
198b5682
JL		 3539 /* only send once per connect */
3540 if (server->maxBuf != 0)
3541 return 0;
3542
3543 rc = CIFSSMBNegotiate(xid, ses);
3544 if (rc == -EAGAIN) {
3545 /* retry only once on 1st time connection */
3546 rc = CIFSSMBNegotiate(xid, ses);
3547 if (rc == -EAGAIN)
3548 rc = -EHOSTDOWN;
1da177e4 3549 }
198b5682
JL		 3550 if (rc == 0) {
3551 spin_lock(&GlobalMid_Lock);
7fdbaa1b 3552 if (server->tcpStatus == CifsNeedNegotiate)
198b5682
JL		 3553 server->tcpStatus = CifsGood;
3554 else
3555 rc = -EHOSTDOWN;
3556 spin_unlock(&GlobalMid_Lock);
26b994fa 3557
198b5682
JL		 3558 }
3559
3560 return rc;
3561}
3562
3563
96daf2b0 3564int cifs_setup_session(unsigned int xid, struct cifs_ses *ses,
198b5682
JL		 3565 struct nls_table *nls_info)
3566{
3567 int rc = 0;
3568 struct TCP_Server_Info *server = ses->server;
26b994fa 3569
198b5682
JL		 3570 ses->flags = 0;
3571 ses->capabilities = server->capabilities;
26b994fa 3572 if (linuxExtEnabled == 0)
198b5682 3573 ses->capabilities &= (~CAP_UNIX);
20418acd 3574
b6b38f70 3575 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
96daf2b0 3576 server->sec_mode, server->capabilities, server->timeAdj);
cb7691b6 3577
198b5682 3578 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 3579 if (rc) {
b6b38f70 3580 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 3581 } else {
5d0d2882
SP		 3582 mutex_lock(&ses->server->srv_mutex);
3583 if (!server->session_estab) {
21e73393 3584 server->session_key.response = ses->auth_key.response;
5d0d2882 3585 server->session_key.len = ses->auth_key.len;
21e73393
SP		 3586 server->sequence_number = 0x2;
3587 server->session_estab = true;
3588 ses->auth_key.response = NULL;
5d0d2882
SP		 3589 }
3590 mutex_unlock(&server->srv_mutex);
3591
b6b38f70 3592 cFYI(1, "CIFS Session Established successfully");
20418acd 3593 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3594 ses->status = CifsGood;
3595 ses->need_reconnect = false;
20418acd 3596 spin_unlock(&GlobalMid_Lock);
1da177e4 3597 }
26b994fa 3598
21e73393
SP		 3599 kfree(ses->auth_key.response);
3600 ses->auth_key.response = NULL;
3601 ses->auth_key.len = 0;
d3686d54
SP		 3602 kfree(ses->ntlmssp);
3603 ses->ntlmssp = NULL;
21e73393 3604
1da177e4
LT		 3605 return rc;
3606}
3607
96daf2b0 3608static struct cifs_tcon *
9d002df4
JL		 3609cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3610{
96daf2b0
SF		 3611 struct cifs_tcon *master_tcon = cifs_sb_master_tcon(cifs_sb);
3612 struct cifs_ses *ses;
3613 struct cifs_tcon *tcon = NULL;
9d002df4 3614 struct smb_vol *vol_info;
34c87901
SF		 3615 char username[28]; /* big enough for "krb50x" + hex of ULONG_MAX 6+16 */
3616 /* We used to have this as MAX_USERNAME which is */
3617 /* way too big now (256 instead of 32) */
9d002df4
JL		 3618
3619 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3620 if (vol_info == NULL) {
3621 tcon = ERR_PTR(-ENOMEM);
3622 goto out;
3623 }
3624
ea1be1a3 3625 snprintf(username, sizeof(username), "krb50x%x", fsuid);
9d002df4
JL		 3626 vol_info->username = username;
3627 vol_info->local_nls = cifs_sb->local_nls;
3628 vol_info->linux_uid = fsuid;
3629 vol_info->cred_uid = fsuid;
3630 vol_info->UNC = master_tcon->treeName;
3631 vol_info->retry = master_tcon->retry;
3632 vol_info->nocase = master_tcon->nocase;
3633 vol_info->local_lease = master_tcon->local_lease;
3634 vol_info->no_linux_ext = !master_tcon->unix_ext;
3635
3636 /* FIXME: allow for other secFlg settings */
3637 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3638
3639 /* get a reference for the same TCP session */
3f9bcca7 3640 spin_lock(&cifs_tcp_ses_lock);
9d002df4 3641 ++master_tcon->ses->server->srv_count;
3f9bcca7 3642 spin_unlock(&cifs_tcp_ses_lock);
9d002df4
JL		 3643
3644 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3645 if (IS_ERR(ses)) {
96daf2b0 3646 tcon = (struct cifs_tcon *)ses;
9d002df4
JL		 3647 cifs_put_tcp_session(master_tcon->ses->server);
3648 goto out;
3649 }
3650
3651 tcon = cifs_get_tcon(ses, vol_info);
3652 if (IS_ERR(tcon)) {
3653 cifs_put_smb_ses(ses);
3654 goto out;
3655 }
3656
3657 if (ses->capabilities & CAP_UNIX)
3658 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3659out:
3660 kfree(vol_info);
3661
3662 return tcon;
3663}
3664
96daf2b0 3665struct cifs_tcon *
9d002df4
JL		 3666cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3667{
3668 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3669}
3670
3671static int
3672cifs_sb_tcon_pending_wait(void *unused)
3673{
3674 schedule();
3675 return signal_pending(current) ? -ERESTARTSYS : 0;
3676}
3677
b647c35f
JL		 3678/* find and return a tlink with given uid */
3679static struct tcon_link *
3680tlink_rb_search(struct rb_root *root, uid_t uid)
3681{
3682 struct rb_node *node = root->rb_node;
3683 struct tcon_link *tlink;
3684
3685 while (node) {
3686 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3687
3688 if (tlink->tl_uid > uid)
3689 node = node->rb_left;
3690 else if (tlink->tl_uid < uid)
3691 node = node->rb_right;
3692 else
3693 return tlink;
3694 }
3695 return NULL;
3696}
3697
3698/* insert a tcon_link into the tree */
3699static void
3700tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
3701{
3702 struct rb_node **new = &(root->rb_node), *parent = NULL;
3703 struct tcon_link *tlink;
3704
3705 while (*new) {
3706 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
3707 parent = *new;
3708
3709 if (tlink->tl_uid > new_tlink->tl_uid)
3710 new = &((*new)->rb_left);
3711 else
3712 new = &((*new)->rb_right);
3713 }
3714
3715 rb_link_node(&new_tlink->tl_rbnode, parent, new);
3716 rb_insert_color(&new_tlink->tl_rbnode, root);
3717}
3718
9d002df4
JL		 3719/*
3720 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3721 * current task.
3722 *
3723 * If the superblock doesn't refer to a multiuser mount, then just return
3724 * the master tcon for the mount.
3725 *
6ef933a3 3726 * First, search the rbtree for an existing tcon for this fsuid. If one
9d002df4
JL		 3727 * exists, then check to see if it's pending construction. If it is then wait
3728 * for construction to complete. Once it's no longer pending, check to see if
3729 * it failed and either return an error or retry construction, depending on
3730 * the timeout.
3731 *
3732 * If one doesn't exist then insert a new tcon_link struct into the tree and
3733 * try to construct a new one.
3734 */
3735struct tcon_link *
3736cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3737{
3738 int ret;
b647c35f 3739 uid_t fsuid = current_fsuid();
9d002df4
JL		 3740 struct tcon_link *tlink, *newtlink;
3741
3742 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3743 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3744
3745 spin_lock(&cifs_sb->tlink_tree_lock);
b647c35f 3746 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
9d002df4
JL		 3747 if (tlink)
3748 cifs_get_tlink(tlink);
3749 spin_unlock(&cifs_sb->tlink_tree_lock);
3750
3751 if (tlink == NULL) {
3752 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3753 if (newtlink == NULL)
3754 return ERR_PTR(-ENOMEM);
b647c35f 3755 newtlink->tl_uid = fsuid;
9d002df4
JL		 3756 newtlink->tl_tcon = ERR_PTR(-EACCES);
3757 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3758 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3759 cifs_get_tlink(newtlink);
3760
9d002df4
JL		 3761 spin_lock(&cifs_sb->tlink_tree_lock);
3762 /* was one inserted after previous search? */
b647c35f 3763 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
9d002df4
JL		 3764 if (tlink) {
3765 cifs_get_tlink(tlink);
3766 spin_unlock(&cifs_sb->tlink_tree_lock);
9d002df4
JL		 3767 kfree(newtlink);
3768 goto wait_for_construction;
3769 }
9d002df4 3770 tlink = newtlink;
b647c35f
JL		 3771 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3772 spin_unlock(&cifs_sb->tlink_tree_lock);
9d002df4
JL		 3773 } else {
3774wait_for_construction:
3775 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3776 cifs_sb_tcon_pending_wait,
3777 TASK_INTERRUPTIBLE);
3778 if (ret) {
3779 cifs_put_tlink(tlink);
3780 return ERR_PTR(ret);
3781 }
3782
3783 /* if it's good, return it */
3784 if (!IS_ERR(tlink->tl_tcon))
3785 return tlink;
3786
3787 /* return error if we tried this already recently */
3788 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3789 cifs_put_tlink(tlink);
3790 return ERR_PTR(-EACCES);
3791 }
3792
3793 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3794 goto wait_for_construction;
3795 }
3796
3797 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3798 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3799 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3800
3801 if (IS_ERR(tlink->tl_tcon)) {
3802 cifs_put_tlink(tlink);
3803 return ERR_PTR(-EACCES);
3804 }
3805
3806 return tlink;
3807}
2de970ff
JL		 3808
3809/*
3810 * periodic workqueue job that scans tcon_tree for a superblock and closes
3811 * out tcons.
3812 */
3813static void
3814cifs_prune_tlinks(struct work_struct *work)
3815{
3816 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3817 prune_tlinks.work);
b647c35f
JL		 3818 struct rb_root *root = &cifs_sb->tlink_tree;
3819 struct rb_node *node = rb_first(root);
3820 struct rb_node *tmp;
3821 struct tcon_link *tlink;
2de970ff 3822
b647c35f
JL		 3823 /*
3824 * Because we drop the spinlock in the loop in order to put the tlink
3825 * it's not guarded against removal of links from the tree. The only
3826 * places that remove entries from the tree are this function and
3827 * umounts. Because this function is non-reentrant and is canceled
3828 * before umount can proceed, this is safe.
3829 */
3830 spin_lock(&cifs_sb->tlink_tree_lock);
3831 node = rb_first(root);
3832 while (node != NULL) {
3833 tmp = node;
3834 node = rb_next(tmp);
3835 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
3836
3837 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
3838 atomic_read(&tlink->tl_count) != 0 ||
3839 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
3840 continue;
2de970ff 3841
b647c35f
JL		 3842 cifs_get_tlink(tlink);
3843 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3844 rb_erase(tmp, root);
3845
3846 spin_unlock(&cifs_sb->tlink_tree_lock);
3847 cifs_put_tlink(tlink);
3848 spin_lock(&cifs_sb->tlink_tree_lock);
3849 }
3850 spin_unlock(&cifs_sb->tlink_tree_lock);
2de970ff
JL		 3851
3852 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3853 TLINK_IDLE_EXPIRE);
3854}
Linux kernel - Deliverables
This page took 0.801807 seconds and 5 git commands to generate.