projects / deliverable / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
RPCSEC_GSS: Clean up upcall message allocation
[deliverable/linux.git] / net / sunrpc / auth_gss / auth_gss.c
CommitLineData
1da177e4 1/*
f30c2269 2 * linux/net/sunrpc/auth_gss/auth_gss.c
1da177e4
LT		 3 *
4 * RPCSEC_GSS client authentication.
cca5172a 5 *
1da177e4
LT		 6 * Copyright (c) 2000 The Regents of the University of Michigan.
7 * All rights reserved.
8 *
9 * Dug Song <dugsong@monkey.org>
10 * Andy Adamson <andros@umich.edu>
11 *
12 * Redistribution and use in source and binary forms, with or without
13 * modification, are permitted provided that the following conditions
14 * are met:
15 *
16 * 1. Redistributions of source code must retain the above copyright
17 * notice, this list of conditions and the following disclaimer.
18 * 2. Redistributions in binary form must reproduce the above copyright
19 * notice, this list of conditions and the following disclaimer in the
20 * documentation and/or other materials provided with the distribution.
21 * 3. Neither the name of the University nor the names of its
22 * contributors may be used to endorse or promote products derived
23 * from this software without specific prior written permission.
24 *
25 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
26 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
27 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
28 * DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
29 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
30 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
31 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
32 * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
33 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
34 * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
35 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
1da177e4
LT		 36 */
37
38
39#include <linux/module.h>
40#include <linux/init.h>
41#include <linux/types.h>
42#include <linux/slab.h>
1da177e4 43#include <linux/sched.h>
2d2da60c 44#include <linux/pagemap.h>
1da177e4
LT		 45#include <linux/sunrpc/clnt.h>
46#include <linux/sunrpc/auth.h>
47#include <linux/sunrpc/auth_gss.h>
48#include <linux/sunrpc/svcauth_gss.h>
49#include <linux/sunrpc/gss_err.h>
50#include <linux/workqueue.h>
51#include <linux/sunrpc/rpc_pipe_fs.h>
52#include <linux/sunrpc/gss_api.h>
53#include <asm/uaccess.h>
54
abfdbd53
TM		 55#include "../netns.h"
56
f1c0a861 57static const struct rpc_authops authgss_ops;
1da177e4 58
f1c0a861 59static const struct rpc_credops gss_credops;
0df7fb74 60static const struct rpc_credops gss_nullops;
1da177e4 61
126e216a
TM		 62#define GSS_RETRY_EXPIRED 5
63static unsigned int gss_expired_cred_retry_delay = GSS_RETRY_EXPIRED;
64
1da177e4
LT		 65#ifdef RPC_DEBUG
66# define RPCDBG_FACILITY RPCDBG_AUTH
67#endif
68
725f2865 69#define GSS_CRED_SLACK (RPC_MAX_AUTH_SIZE * 2)
1da177e4
LT		 70/* length of a krb5 verifier (48), plus data added before arguments when
71 * using integrity (two 4-byte integers): */
adeb8133 72#define GSS_VERF_SLACK 100
1da177e4 73
1da177e4 74struct gss_auth {
0285ed1f 75 struct kref kref;
1da177e4
LT		 76 struct rpc_auth rpc_auth;
77 struct gss_api_mech *mech;
78 enum rpc_gss_svc service;
1da177e4 79 struct rpc_clnt *client;
34769fc4
BF		 80 /*
81 * There are two upcall pipes; dentry[1], named "gssd", is used
82 * for the new text-based upcall; dentry[0] is named after the
83 * mechanism (for example, "krb5") and exists for
84 * backwards-compatibility with older gssd's.
85 */
c239d83b 86 struct rpc_pipe *pipe[2];
bd4a3eb1 87 const char *target_name;
1da177e4
LT		 88};
89
79a3f20b 90/* pipe_version >= 0 if and only if someone has a pipe open. */
79a3f20b
BF		 91static DEFINE_SPINLOCK(pipe_version_lock);
92static struct rpc_wait_queue pipe_version_rpc_waitqueue;
93static DECLARE_WAIT_QUEUE_HEAD(pipe_version_waitqueue);
cf81939d 94
5d28dc82 95static void gss_free_ctx(struct gss_cl_ctx *);
b693ba4a
TM		 96static const struct rpc_pipe_ops gss_upcall_ops_v0;
97static const struct rpc_pipe_ops gss_upcall_ops_v1;
1da177e4 98
1da177e4
LT		 99static inline struct gss_cl_ctx *
100gss_get_ctx(struct gss_cl_ctx *ctx)
101{
102 atomic_inc(&ctx->count);
103 return ctx;
104}
105
106static inline void
107gss_put_ctx(struct gss_cl_ctx *ctx)
108{
109 if (atomic_dec_and_test(&ctx->count))
5d28dc82 110 gss_free_ctx(ctx);
1da177e4
LT		 111}
112
5d28dc82
TM		 113/* gss_cred_set_ctx:
114 * called by gss_upcall_callback and gss_create_upcall in order
115 * to set the gss context. The actual exchange of an old context
9beae467 116 * and a new one is protected by the pipe->lock.
5d28dc82 117 */
1da177e4
LT		 118static void
119gss_cred_set_ctx(struct rpc_cred *cred, struct gss_cl_ctx *ctx)
120{
121 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base);
5d28dc82 122
cd019f75
TM		 123 if (!test_bit(RPCAUTH_CRED_NEW, &cred->cr_flags))
124 return;
7b6962b0 125 gss_get_ctx(ctx);
cf778b00 126 rcu_assign_pointer(gss_cred->gc_ctx, ctx);
fc432dd9 127 set_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
cd019f75 128 smp_mb__before_clear_bit();
fc432dd9 129 clear_bit(RPCAUTH_CRED_NEW, &cred->cr_flags);
1da177e4
LT		 130}
131
132static const void *
133simple_get_bytes(const void *p, const void *end, void *res, size_t len)
134{
135 const void *q = (const void *)((const char *)p + len);
136 if (unlikely(q > end || q < p))
137 return ERR_PTR(-EFAULT);
138 memcpy(res, p, len);
139 return q;
140}
141
142static inline const void *
143simple_get_netobj(const void *p, const void *end, struct xdr_netobj *dest)
144{
145 const void *q;
146 unsigned int len;
147
148 p = simple_get_bytes(p, end, &len, sizeof(len));
149 if (IS_ERR(p))
150 return p;
151 q = (const void *)((const char *)p + len);
152 if (unlikely(q > end || q < p))
153 return ERR_PTR(-EFAULT);
0f38b873 154 dest->data = kmemdup(p, len, GFP_NOFS);
1da177e4
LT		 155 if (unlikely(dest->data == NULL))
156 return ERR_PTR(-ENOMEM);
157 dest->len = len;
1da177e4
LT		 158 return q;
159}
160
161static struct gss_cl_ctx *
162gss_cred_get_ctx(struct rpc_cred *cred)
163{
164 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base);
165 struct gss_cl_ctx *ctx = NULL;
166
5d28dc82 167 rcu_read_lock();
1da177e4
LT		 168 if (gss_cred->gc_ctx)
169 ctx = gss_get_ctx(gss_cred->gc_ctx);
5d28dc82 170 rcu_read_unlock();
1da177e4
LT		 171 return ctx;
172}
173
174static struct gss_cl_ctx *
175gss_alloc_context(void)
176{
177 struct gss_cl_ctx *ctx;
178
0f38b873 179 ctx = kzalloc(sizeof(*ctx), GFP_NOFS);
1da177e4 180 if (ctx != NULL) {
1da177e4
LT		 181 ctx->gc_proc = RPC_GSS_PROC_DATA;
182 ctx->gc_seq = 1; /* NetApp 6.4R1 doesn't accept seq. no. 0 */
183 spin_lock_init(&ctx->gc_seq_lock);
184 atomic_set(&ctx->count,1);
185 }
186 return ctx;
187}
188
189#define GSSD_MIN_TIMEOUT (60 * 60)
190static const void *
191gss_fill_context(const void *p, const void *end, struct gss_cl_ctx *ctx, struct gss_api_mech *gm)
192{
193 const void *q;
194 unsigned int seclen;
195 unsigned int timeout;
620038f6 196 unsigned long now = jiffies;
1da177e4
LT		 197 u32 window_size;
198 int ret;
199
620038f6
AA		 200 /* First unsigned int gives the remaining lifetime in seconds of the
201 * credential - e.g. the remaining TGT lifetime for Kerberos or
202 * the -t value passed to GSSD.
203 */
1da177e4
LT		 204 p = simple_get_bytes(p, end, &timeout, sizeof(timeout));
205 if (IS_ERR(p))
206 goto err;
207 if (timeout == 0)
208 timeout = GSSD_MIN_TIMEOUT;
620038f6
AA		 209 ctx->gc_expiry = now + ((unsigned long)timeout * HZ);
210 /* Sequence number window. Determines the maximum number of
211 * simultaneous requests
212 */
1da177e4
LT		 213 p = simple_get_bytes(p, end, &window_size, sizeof(window_size));
214 if (IS_ERR(p))
215 goto err;
216 ctx->gc_win = window_size;
217 /* gssd signals an error by passing ctx->gc_win = 0: */
218 if (ctx->gc_win == 0) {
dc5ddce9
JL		 219 /*
220 * in which case, p points to an error code. Anything other
221 * than -EKEYEXPIRED gets converted to -EACCES.
222 */
223 p = simple_get_bytes(p, end, &ret, sizeof(ret));
224 if (!IS_ERR(p))
225 p = (ret == -EKEYEXPIRED) ? ERR_PTR(-EKEYEXPIRED) :
226 ERR_PTR(-EACCES);
1da177e4
LT		 227 goto err;
228 }
229 /* copy the opaque wire context */
230 p = simple_get_netobj(p, end, &ctx->gc_wire_ctx);
231 if (IS_ERR(p))
232 goto err;
233 /* import the opaque security context */
234 p = simple_get_bytes(p, end, &seclen, sizeof(seclen));
235 if (IS_ERR(p))
236 goto err;
237 q = (const void *)((const char *)p + seclen);
238 if (unlikely(q > end || q < p)) {
239 p = ERR_PTR(-EFAULT);
240 goto err;
241 }
400f26b5 242 ret = gss_import_sec_context(p, seclen, gm, &ctx->gc_gss_ctx, NULL, GFP_NOFS);
1da177e4
LT		 243 if (ret < 0) {
244 p = ERR_PTR(ret);
245 goto err;
246 }
620038f6
AA		 247 dprintk("RPC: %s Success. gc_expiry %lu now %lu timeout %u\n",
248 __func__, ctx->gc_expiry, now, timeout);
1da177e4
LT		 249 return q;
250err:
173db309 251 dprintk("RPC: %s returns error %ld\n", __func__, -PTR_ERR(p));
1da177e4
LT		 252 return p;
253}
254
34769fc4 255#define UPCALL_BUF_LEN 128
1da177e4
LT		 256
257struct gss_upcall_msg {
258 atomic_t count;
7eaf040b 259 kuid_t uid;
1da177e4
LT		 260 struct rpc_pipe_msg msg;
261 struct list_head list;
262 struct gss_auth *auth;
9beae467 263 struct rpc_pipe *pipe;
1da177e4
LT		 264 struct rpc_wait_queue rpc_waitqueue;
265 wait_queue_head_t waitqueue;
266 struct gss_cl_ctx *ctx;
34769fc4 267 char databuf[UPCALL_BUF_LEN];
1da177e4
LT		 268};
269
2aed8b47 270static int get_pipe_version(struct net *net)
79a3f20b 271{
2aed8b47 272 struct sunrpc_net *sn = net_generic(net, sunrpc_net_id);
79a3f20b
BF		 273 int ret;
274
275 spin_lock(&pipe_version_lock);
2aed8b47
TM		 276 if (sn->pipe_version >= 0) {
277 atomic_inc(&sn->pipe_users);
278 ret = sn->pipe_version;
79a3f20b
BF		 279 } else
280 ret = -EAGAIN;
281 spin_unlock(&pipe_version_lock);
282 return ret;
283}
284
2aed8b47 285static void put_pipe_version(struct net *net)
79a3f20b 286{
2aed8b47
TM		 287 struct sunrpc_net *sn = net_generic(net, sunrpc_net_id);
288
289 if (atomic_dec_and_lock(&sn->pipe_users, &pipe_version_lock)) {
290 sn->pipe_version = -1;
79a3f20b
BF		 291 spin_unlock(&pipe_version_lock);
292 }
293}
294
1da177e4
LT		 295static void
296gss_release_msg(struct gss_upcall_msg *gss_msg)
297{
2aed8b47 298 struct net *net = rpc_net_ns(gss_msg->auth->client);
1da177e4
LT		 299 if (!atomic_dec_and_test(&gss_msg->count))
300 return;
2aed8b47 301 put_pipe_version(net);
1da177e4
LT		 302 BUG_ON(!list_empty(&gss_msg->list));
303 if (gss_msg->ctx != NULL)
304 gss_put_ctx(gss_msg->ctx);
f6a1cc89 305 rpc_destroy_wait_queue(&gss_msg->rpc_waitqueue);
1da177e4
LT		 306 kfree(gss_msg);
307}
308
309static struct gss_upcall_msg *
7eaf040b 310__gss_find_upcall(struct rpc_pipe *pipe, kuid_t uid)
1da177e4
LT		 311{
312 struct gss_upcall_msg *pos;
9beae467 313 list_for_each_entry(pos, &pipe->in_downcall, list) {
0b4d51b0 314 if (!uid_eq(pos->uid, uid))
1da177e4
LT		 315 continue;
316 atomic_inc(&pos->count);
632f0d05 317 dprintk("RPC: %s found msg %p\n", __func__, pos);
1da177e4
LT		 318 return pos;
319 }
632f0d05 320 dprintk("RPC: %s found nothing\n", __func__);
1da177e4
LT		 321 return NULL;
322}
323
720b8f2d 324/* Try to add an upcall to the pipefs queue.
1da177e4
LT		 325 * If an upcall owned by our uid already exists, then we return a reference
326 * to that upcall instead of adding the new upcall.
327 */
328static inline struct gss_upcall_msg *
053e324f 329gss_add_msg(struct gss_upcall_msg *gss_msg)
1da177e4 330{
9beae467 331 struct rpc_pipe *pipe = gss_msg->pipe;
1da177e4
LT		 332 struct gss_upcall_msg *old;
333
9beae467
SK		 334 spin_lock(&pipe->lock);
335 old = __gss_find_upcall(pipe, gss_msg->uid);
1da177e4
LT		 336 if (old == NULL) {
337 atomic_inc(&gss_msg->count);
9beae467 338 list_add(&gss_msg->list, &pipe->in_downcall);
1da177e4
LT		 339 } else
340 gss_msg = old;
9beae467 341 spin_unlock(&pipe->lock);
1da177e4
LT		 342 return gss_msg;
343}
344
345static void
346__gss_unhash_msg(struct gss_upcall_msg *gss_msg)
347{
1da177e4
LT		 348 list_del_init(&gss_msg->list);
349 rpc_wake_up_status(&gss_msg->rpc_waitqueue, gss_msg->msg.errno);
350 wake_up_all(&gss_msg->waitqueue);
351 atomic_dec(&gss_msg->count);
352}
353
354static void
355gss_unhash_msg(struct gss_upcall_msg *gss_msg)
356{
9beae467 357 struct rpc_pipe *pipe = gss_msg->pipe;
1da177e4 358
3b68aaea
TM		 359 if (list_empty(&gss_msg->list))
360 return;
9beae467 361 spin_lock(&pipe->lock);
3b68aaea
TM		 362 if (!list_empty(&gss_msg->list))
363 __gss_unhash_msg(gss_msg);
9beae467 364 spin_unlock(&pipe->lock);
1da177e4
LT		 365}
366
126e216a
TM		 367static void
368gss_handle_downcall_result(struct gss_cred *gss_cred, struct gss_upcall_msg *gss_msg)
369{
370 switch (gss_msg->msg.errno) {
371 case 0:
372 if (gss_msg->ctx == NULL)
373 break;
374 clear_bit(RPCAUTH_CRED_NEGATIVE, &gss_cred->gc_base.cr_flags);
375 gss_cred_set_ctx(&gss_cred->gc_base, gss_msg->ctx);
376 break;
377 case -EKEYEXPIRED:
378 set_bit(RPCAUTH_CRED_NEGATIVE, &gss_cred->gc_base.cr_flags);
379 }
380 gss_cred->gc_upcall_timestamp = jiffies;
381 gss_cred->gc_upcall = NULL;
382 rpc_wake_up_status(&gss_msg->rpc_waitqueue, gss_msg->msg.errno);
383}
384
1da177e4
LT		 385static void
386gss_upcall_callback(struct rpc_task *task)
387{
a17c2153 388 struct gss_cred *gss_cred = container_of(task->tk_rqstp->rq_cred,
1da177e4
LT		 389 struct gss_cred, gc_base);
390 struct gss_upcall_msg *gss_msg = gss_cred->gc_upcall;
9beae467 391 struct rpc_pipe *pipe = gss_msg->pipe;
1da177e4 392
9beae467 393 spin_lock(&pipe->lock);
126e216a 394 gss_handle_downcall_result(gss_cred, gss_msg);
9beae467 395 spin_unlock(&pipe->lock);
126e216a 396 task->tk_status = gss_msg->msg.errno;
1da177e4
LT		 397 gss_release_msg(gss_msg);
398}
399
34769fc4
BF		 400static void gss_encode_v0_msg(struct gss_upcall_msg *gss_msg)
401{
90602c7b
EB		 402 uid_t uid = from_kuid(&init_user_ns, gss_msg->uid);
403 memcpy(gss_msg->databuf, &uid, sizeof(uid));
404 gss_msg->msg.data = gss_msg->databuf;
405 gss_msg->msg.len = sizeof(uid);
406 BUG_ON(sizeof(uid) > UPCALL_BUF_LEN);
34769fc4
BF		 407}
408
8b1c7bf5 409static void gss_encode_v1_msg(struct gss_upcall_msg *gss_msg,
bd4a3eb1
TM		 410 const char *service_name,
411 const char *target_name)
34769fc4 412{
683ac665 413 struct gss_api_mech *mech = gss_msg->auth->mech;
8b1c7bf5
OK		 414 char *p = gss_msg->databuf;
415 int len = 0;
416
417 gss_msg->msg.len = sprintf(gss_msg->databuf, "mech=%s uid=%d ",
683ac665 418 mech->gm_name,
90602c7b 419 from_kuid(&init_user_ns, gss_msg->uid));
8b1c7bf5 420 p += gss_msg->msg.len;
bd4a3eb1
TM		 421 if (target_name) {
422 len = sprintf(p, "target=%s ", target_name);
8b1c7bf5
OK		 423 p += len;
424 gss_msg->msg.len += len;
425 }
68c97153
TM		 426 if (service_name != NULL) {
427 len = sprintf(p, "service=%s ", service_name);
2efef708
OK		 428 p += len;
429 gss_msg->msg.len += len;
430 }
683ac665 431 if (mech->gm_upcall_enctypes) {
f8628220 432 len = sprintf(p, "enctypes=%s ", mech->gm_upcall_enctypes);
683ac665
TM		 433 p += len;
434 gss_msg->msg.len += len;
435 }
8b1c7bf5
OK		 436 len = sprintf(p, "\n");
437 gss_msg->msg.len += len;
438
34769fc4
BF		 439 gss_msg->msg.data = gss_msg->databuf;
440 BUG_ON(gss_msg->msg.len > UPCALL_BUF_LEN);
441}
442
68c97153
TM		 443static struct gss_upcall_msg *
444gss_alloc_msg(struct gss_auth *gss_auth, struct rpc_clnt *clnt,
7eaf040b 445 kuid_t uid, const char *service_name)
1da177e4
LT		 446{
447 struct gss_upcall_msg *gss_msg;
79a3f20b 448 int vers;
1da177e4 449
0f38b873 450 gss_msg = kzalloc(sizeof(*gss_msg), GFP_NOFS);
db75b3d6
BF		 451 if (gss_msg == NULL)
452 return ERR_PTR(-ENOMEM);
2aed8b47 453 vers = get_pipe_version(rpc_net_ns(clnt));
79a3f20b
BF		 454 if (vers < 0) {
455 kfree(gss_msg);
456 return ERR_PTR(vers);
457 }
c239d83b 458 gss_msg->pipe = gss_auth->pipe[vers];
db75b3d6
BF		 459 INIT_LIST_HEAD(&gss_msg->list);
460 rpc_init_wait_queue(&gss_msg->rpc_waitqueue, "RPCSEC_GSS upcall waitq");
461 init_waitqueue_head(&gss_msg->waitqueue);
462 atomic_set(&gss_msg->count, 1);
db75b3d6
BF		 463 gss_msg->uid = uid;
464 gss_msg->auth = gss_auth;
bd4a3eb1
TM		 465 switch (vers) {
466 case 0:
467 gss_encode_v0_msg(gss_msg);
468 default:
469 gss_encode_v1_msg(gss_msg, service_name, gss_auth->target_name);
470 };
1da177e4
LT		 471 return gss_msg;
472}
473
474static struct gss_upcall_msg *
475gss_setup_upcall(struct rpc_clnt *clnt, struct gss_auth *gss_auth, struct rpc_cred *cred)
476{
7c67db3a
TM		 477 struct gss_cred *gss_cred = container_of(cred,
478 struct gss_cred, gc_base);
1da177e4 479 struct gss_upcall_msg *gss_new, *gss_msg;
7eaf040b 480 kuid_t uid = cred->cr_uid;
1da177e4 481
68c97153 482 gss_new = gss_alloc_msg(gss_auth, clnt, uid, gss_cred->gc_principal);
db75b3d6
BF		 483 if (IS_ERR(gss_new))
484 return gss_new;
053e324f 485 gss_msg = gss_add_msg(gss_new);
1da177e4 486 if (gss_msg == gss_new) {
9beae467 487 int res = rpc_queue_upcall(gss_new->pipe, &gss_new->msg);
1da177e4
LT		 488 if (res) {
489 gss_unhash_msg(gss_new);
490 gss_msg = ERR_PTR(res);
491 }
492 } else
493 gss_release_msg(gss_new);
494 return gss_msg;
495}
496
b03568c3
BF		 497static void warn_gssd(void)
498{
499 static unsigned long ratelimit;
500 unsigned long now = jiffies;
501
502 if (time_after(now, ratelimit)) {
503 printk(KERN_WARNING "RPC: AUTH_GSS upcall timed out.\n"
504 "Please check user daemon is running.\n");
505 ratelimit = now + 15*HZ;
506 }
507}
508
1da177e4
LT		 509static inline int
510gss_refresh_upcall(struct rpc_task *task)
511{
a17c2153 512 struct rpc_cred *cred = task->tk_rqstp->rq_cred;
4a8c1344 513 struct gss_auth *gss_auth = container_of(cred->cr_auth,
1da177e4
LT		 514 struct gss_auth, rpc_auth);
515 struct gss_cred *gss_cred = container_of(cred,
516 struct gss_cred, gc_base);
517 struct gss_upcall_msg *gss_msg;
9beae467 518 struct rpc_pipe *pipe;
1da177e4
LT		 519 int err = 0;
520
632f0d05 521 dprintk("RPC: %5u %s for uid %u\n",
cdba321e 522 task->tk_pid, __func__, from_kuid(&init_user_ns, cred->cr_uid));
1da177e4 523 gss_msg = gss_setup_upcall(task->tk_client, gss_auth, cred);
480e3243 524 if (PTR_ERR(gss_msg) == -EAGAIN) {
79a3f20b
BF		 525 /* XXX: warning on the first, under the assumption we
526 * shouldn't normally hit this case on a refresh. */
527 warn_gssd();
528 task->tk_timeout = 15*HZ;
529 rpc_sleep_on(&pipe_version_rpc_waitqueue, task, NULL);
d1a8016a 530 return -EAGAIN;
79a3f20b 531 }
1da177e4
LT		 532 if (IS_ERR(gss_msg)) {
533 err = PTR_ERR(gss_msg);
534 goto out;
535 }
9beae467
SK		 536 pipe = gss_msg->pipe;
537 spin_lock(&pipe->lock);
1da177e4 538 if (gss_cred->gc_upcall != NULL)
5d00837b 539 rpc_sleep_on(&gss_cred->gc_upcall->rpc_waitqueue, task, NULL);
126e216a 540 else if (gss_msg->ctx == NULL && gss_msg->msg.errno >= 0) {
1da177e4
LT		 541 task->tk_timeout = 0;
542 gss_cred->gc_upcall = gss_msg;
543 /* gss_upcall_callback will release the reference to gss_upcall_msg */
544 atomic_inc(&gss_msg->count);
5d00837b 545 rpc_sleep_on(&gss_msg->rpc_waitqueue, task, gss_upcall_callback);
126e216a
TM		 546 } else {
547 gss_handle_downcall_result(gss_cred, gss_msg);
1da177e4 548 err = gss_msg->msg.errno;
126e216a 549 }
9beae467 550 spin_unlock(&pipe->lock);
1da177e4
LT		 551 gss_release_msg(gss_msg);
552out:
632f0d05 553 dprintk("RPC: %5u %s for uid %u result %d\n",
cdba321e
EB		 554 task->tk_pid, __func__,
555 from_kuid(&init_user_ns, cred->cr_uid), err);
1da177e4
LT		 556 return err;
557}
558
559static inline int
560gss_create_upcall(struct gss_auth *gss_auth, struct gss_cred *gss_cred)
561{
abfdbd53
TM		 562 struct net *net = rpc_net_ns(gss_auth->client);
563 struct sunrpc_net *sn = net_generic(net, sunrpc_net_id);
9beae467 564 struct rpc_pipe *pipe;
1da177e4
LT		 565 struct rpc_cred *cred = &gss_cred->gc_base;
566 struct gss_upcall_msg *gss_msg;
abfdbd53 567 unsigned long timeout;
1da177e4 568 DEFINE_WAIT(wait);
d36ccb9c 569 int err;
1da177e4 570
cdba321e
EB		 571 dprintk("RPC: %s for uid %u\n",
572 __func__, from_kuid(&init_user_ns, cred->cr_uid));
79a3f20b 573retry:
d36ccb9c 574 err = 0;
abfdbd53
TM		 575 /* Default timeout is 15s unless we know that gssd is not running */
576 timeout = 15 * HZ;
577 if (!sn->gssd_running)
578 timeout = HZ >> 2;
1da177e4 579 gss_msg = gss_setup_upcall(gss_auth->client, gss_auth, cred);
79a3f20b
BF		 580 if (PTR_ERR(gss_msg) == -EAGAIN) {
581 err = wait_event_interruptible_timeout(pipe_version_waitqueue,
2aed8b47
TM		 582 sn->pipe_version >= 0, timeout);
583 if (sn->pipe_version < 0) {
abfdbd53
TM		 584 if (err == 0)
585 sn->gssd_running = 0;
d1a8016a
BS		 586 warn_gssd();
587 err = -EACCES;
588 }
d36ccb9c 589 if (err < 0)
79a3f20b 590 goto out;
79a3f20b
BF		 591 goto retry;
592 }
1da177e4
LT		 593 if (IS_ERR(gss_msg)) {
594 err = PTR_ERR(gss_msg);
595 goto out;
596 }
9beae467 597 pipe = gss_msg->pipe;
1da177e4 598 for (;;) {
5afa9133 599 prepare_to_wait(&gss_msg->waitqueue, &wait, TASK_KILLABLE);
9beae467 600 spin_lock(&pipe->lock);
1da177e4 601 if (gss_msg->ctx != NULL || gss_msg->msg.errno < 0) {
1da177e4
LT		 602 break;
603 }
9beae467 604 spin_unlock(&pipe->lock);
5afa9133 605 if (fatal_signal_pending(current)) {
1da177e4
LT		 606 err = -ERESTARTSYS;
607 goto out_intr;
608 }
609 schedule();
610 }
611 if (gss_msg->ctx)
7b6962b0 612 gss_cred_set_ctx(cred, gss_msg->ctx);
1da177e4
LT		 613 else
614 err = gss_msg->msg.errno;
9beae467 615 spin_unlock(&pipe->lock);
1da177e4
LT		 616out_intr:
617 finish_wait(&gss_msg->waitqueue, &wait);
618 gss_release_msg(gss_msg);
619out:
632f0d05 620 dprintk("RPC: %s for uid %u result %d\n",
cdba321e 621 __func__, from_kuid(&init_user_ns, cred->cr_uid), err);
1da177e4
LT		 622 return err;
623}
624
1da177e4
LT		 625#define MSG_BUF_MAXSIZE 1024
626
627static ssize_t
628gss_pipe_downcall(struct file *filp, const char __user *src, size_t mlen)
629{
630 const void *p, *end;
631 void *buf;
1da177e4 632 struct gss_upcall_msg *gss_msg;
496ad9aa 633 struct rpc_pipe *pipe = RPC_I(file_inode(filp))->pipe;
1da177e4 634 struct gss_cl_ctx *ctx;
90602c7b
EB		 635 uid_t id;
636 kuid_t uid;
3b68aaea 637 ssize_t err = -EFBIG;
1da177e4
LT		 638
639 if (mlen > MSG_BUF_MAXSIZE)
640 goto out;
641 err = -ENOMEM;
0f38b873 642 buf = kmalloc(mlen, GFP_NOFS);
1da177e4
LT		 643 if (!buf)
644 goto out;
645
1da177e4
LT		 646 err = -EFAULT;
647 if (copy_from_user(buf, src, mlen))
648 goto err;
649
650 end = (const void *)((char *)buf + mlen);
90602c7b 651 p = simple_get_bytes(buf, end, &id, sizeof(id));
1da177e4
LT		 652 if (IS_ERR(p)) {
653 err = PTR_ERR(p);
654 goto err;
655 }
656
90602c7b
EB		 657 uid = make_kuid(&init_user_ns, id);
658 if (!uid_valid(uid)) {
659 err = -EINVAL;
660 goto err;
661 }
662
1da177e4
LT		 663 err = -ENOMEM;
664 ctx = gss_alloc_context();
665 if (ctx == NULL)
666 goto err;
3b68aaea
TM		 667
668 err = -ENOENT;
669 /* Find a matching upcall */
9beae467
SK		 670 spin_lock(&pipe->lock);
671 gss_msg = __gss_find_upcall(pipe, uid);
3b68aaea 672 if (gss_msg == NULL) {
9beae467 673 spin_unlock(&pipe->lock);
3b68aaea
TM		 674 goto err_put_ctx;
675 }
676 list_del_init(&gss_msg->list);
9beae467 677 spin_unlock(&pipe->lock);
3b68aaea 678
6e84c7b6 679 p = gss_fill_context(p, end, ctx, gss_msg->auth->mech);
1da177e4
LT		 680 if (IS_ERR(p)) {
681 err = PTR_ERR(p);
486bad2e
JL		 682 switch (err) {
683 case -EACCES:
dc5ddce9 684 case -EKEYEXPIRED:
486bad2e
JL		 685 gss_msg->msg.errno = err;
686 err = mlen;
687 break;
688 case -EFAULT:
689 case -ENOMEM:
690 case -EINVAL:
691 case -ENOSYS:
692 gss_msg->msg.errno = -EAGAIN;
693 break;
694 default:
695 printk(KERN_CRIT "%s: bad return from "
6c853099 696 "gss_fill_context: %zd\n", __func__, err);
486bad2e
JL		 697 BUG();
698 }
3b68aaea 699 goto err_release_msg;
1da177e4 700 }
3b68aaea
TM		 701 gss_msg->ctx = gss_get_ctx(ctx);
702 err = mlen;
703
704err_release_msg:
9beae467 705 spin_lock(&pipe->lock);
3b68aaea 706 __gss_unhash_msg(gss_msg);
9beae467 707 spin_unlock(&pipe->lock);
3b68aaea 708 gss_release_msg(gss_msg);
1da177e4
LT		 709err_put_ctx:
710 gss_put_ctx(ctx);
711err:
712 kfree(buf);
713out:
632f0d05 714 dprintk("RPC: %s returning %Zd\n", __func__, err);
1da177e4
LT		 715 return err;
716}
717
34769fc4 718static int gss_pipe_open(struct inode *inode, int new_version)
cf81939d 719{
2aed8b47
TM		 720 struct net *net = inode->i_sb->s_fs_info;
721 struct sunrpc_net *sn = net_generic(net, sunrpc_net_id);
34769fc4
BF		 722 int ret = 0;
723
79a3f20b 724 spin_lock(&pipe_version_lock);
2aed8b47 725 if (sn->pipe_version < 0) {
34769fc4 726 /* First open of any gss pipe determines the version: */
2aed8b47 727 sn->pipe_version = new_version;
79a3f20b
BF		 728 rpc_wake_up(&pipe_version_rpc_waitqueue);
729 wake_up(&pipe_version_waitqueue);
2aed8b47 730 } else if (sn->pipe_version != new_version) {
34769fc4
BF		 731 /* Trying to open a pipe of a different version */
732 ret = -EBUSY;
733 goto out;
79a3f20b 734 }
2aed8b47 735 atomic_inc(&sn->pipe_users);
34769fc4 736out:
79a3f20b 737 spin_unlock(&pipe_version_lock);
34769fc4
BF		 738 return ret;
739
740}
741
742static int gss_pipe_open_v0(struct inode *inode)
743{
744 return gss_pipe_open(inode, 0);
745}
746
747static int gss_pipe_open_v1(struct inode *inode)
748{
749 return gss_pipe_open(inode, 1);
cf81939d
BF		 750}
751
1da177e4
LT		 752static void
753gss_pipe_release(struct inode *inode)
754{
2aed8b47 755 struct net *net = inode->i_sb->s_fs_info;
9beae467 756 struct rpc_pipe *pipe = RPC_I(inode)->pipe;
6e84c7b6 757 struct gss_upcall_msg *gss_msg;
1da177e4 758
5a67657a 759restart:
9beae467
SK		 760 spin_lock(&pipe->lock);
761 list_for_each_entry(gss_msg, &pipe->in_downcall, list) {
1da177e4 762
5a67657a
TM		 763 if (!list_empty(&gss_msg->msg.list))
764 continue;
1da177e4
LT		 765 gss_msg->msg.errno = -EPIPE;
766 atomic_inc(&gss_msg->count);
767 __gss_unhash_msg(gss_msg);
9beae467 768 spin_unlock(&pipe->lock);
1da177e4 769 gss_release_msg(gss_msg);
5a67657a 770 goto restart;
1da177e4 771 }
9beae467 772 spin_unlock(&pipe->lock);
cf81939d 773
2aed8b47 774 put_pipe_version(net);
1da177e4
LT		 775}
776
777static void
778gss_pipe_destroy_msg(struct rpc_pipe_msg *msg)
779{
780 struct gss_upcall_msg *gss_msg = container_of(msg, struct gss_upcall_msg, msg);
1da177e4
LT		 781
782 if (msg->errno < 0) {
632f0d05
CL		 783 dprintk("RPC: %s releasing msg %p\n",
784 __func__, gss_msg);
1da177e4
LT		 785 atomic_inc(&gss_msg->count);
786 gss_unhash_msg(gss_msg);
b03568c3
BF		 787 if (msg->errno == -ETIMEDOUT)
788 warn_gssd();
1da177e4
LT		 789 gss_release_msg(gss_msg);
790 }
791}
792
ccdc28f8
SK		 793static void gss_pipes_dentries_destroy(struct rpc_auth *auth)
794{
795 struct gss_auth *gss_auth;
796
797 gss_auth = container_of(auth, struct gss_auth, rpc_auth);
80df9d20
SK		 798 if (gss_auth->pipe[0]->dentry)
799 rpc_unlink(gss_auth->pipe[0]->dentry);
800 if (gss_auth->pipe[1]->dentry)
801 rpc_unlink(gss_auth->pipe[1]->dentry);
ccdc28f8
SK		 802}
803
804static int gss_pipes_dentries_create(struct rpc_auth *auth)
805{
806 int err;
807 struct gss_auth *gss_auth;
808 struct rpc_clnt *clnt;
809
810 gss_auth = container_of(auth, struct gss_auth, rpc_auth);
811 clnt = gss_auth->client;
812
30507f58 813 gss_auth->pipe[1]->dentry = rpc_mkpipe_dentry(clnt->cl_dentry,
ccdc28f8
SK		 814 "gssd",
815 clnt, gss_auth->pipe[1]);
816 if (IS_ERR(gss_auth->pipe[1]->dentry))
817 return PTR_ERR(gss_auth->pipe[1]->dentry);
30507f58 818 gss_auth->pipe[0]->dentry = rpc_mkpipe_dentry(clnt->cl_dentry,
ccdc28f8
SK		 819 gss_auth->mech->gm_name,
820 clnt, gss_auth->pipe[0]);
821 if (IS_ERR(gss_auth->pipe[0]->dentry)) {
822 err = PTR_ERR(gss_auth->pipe[0]->dentry);
823 goto err_unlink_pipe_1;
824 }
825 return 0;
826
827err_unlink_pipe_1:
828 rpc_unlink(gss_auth->pipe[1]->dentry);
829 return err;
830}
831
832static void gss_pipes_dentries_destroy_net(struct rpc_clnt *clnt,
833 struct rpc_auth *auth)
834{
2446ab60 835 struct net *net = rpc_net_ns(clnt);
ccdc28f8
SK		 836 struct super_block *sb;
837
838 sb = rpc_get_sb_net(net);
839 if (sb) {
30507f58 840 if (clnt->cl_dentry)
ccdc28f8
SK		 841 gss_pipes_dentries_destroy(auth);
842 rpc_put_sb_net(net);
843 }
844}
845
846static int gss_pipes_dentries_create_net(struct rpc_clnt *clnt,
847 struct rpc_auth *auth)
848{
2446ab60 849 struct net *net = rpc_net_ns(clnt);
ccdc28f8
SK		 850 struct super_block *sb;
851 int err = 0;
852
853 sb = rpc_get_sb_net(net);
854 if (sb) {
30507f58 855 if (clnt->cl_dentry)
ccdc28f8
SK		 856 err = gss_pipes_dentries_create(auth);
857 rpc_put_sb_net(net);
858 }
859 return err;
860}
861
cca5172a
YH		 862/*
863 * NOTE: we have the opportunity to use different
1da177e4
LT		 864 * parameters based on the input flavor (which must be a pseudoflavor)
865 */
866static struct rpc_auth *
867gss_create(struct rpc_clnt *clnt, rpc_authflavor_t flavor)
868{
869 struct gss_auth *gss_auth;
870 struct rpc_auth * auth;
6a19275a 871 int err = -ENOMEM; /* XXX? */
1da177e4 872
8885cb36 873 dprintk("RPC: creating GSS authenticator for client %p\n", clnt);
1da177e4
LT		 874
875 if (!try_module_get(THIS_MODULE))
6a19275a 876 return ERR_PTR(err);
1da177e4
LT		 877 if (!(gss_auth = kmalloc(sizeof(*gss_auth), GFP_KERNEL)))
878 goto out_dec;
bd4a3eb1
TM		 879 gss_auth->target_name = NULL;
880 if (clnt->cl_principal) {
881 gss_auth->target_name = kstrdup(clnt->cl_principal, GFP_KERNEL);
882 if (gss_auth->target_name == NULL)
883 goto err_free;
884 }
1da177e4 885 gss_auth->client = clnt;
6a19275a 886 err = -EINVAL;
1da177e4
LT		 887 gss_auth->mech = gss_mech_get_by_pseudoflavor(flavor);
888 if (!gss_auth->mech) {
9b1d75b7 889 dprintk("RPC: Pseudoflavor %d not found!\n", flavor);
1da177e4
LT		 890 goto err_free;
891 }
892 gss_auth->service = gss_pseudoflavor_to_service(gss_auth->mech, flavor);
438b6fde
BF		 893 if (gss_auth->service == 0)
894 goto err_put_mech;
1da177e4
LT		 895 auth = &gss_auth->rpc_auth;
896 auth->au_cslack = GSS_CRED_SLACK >> 2;
897 auth->au_rslack = GSS_VERF_SLACK >> 2;
898 auth->au_ops = &authgss_ops;
899 auth->au_flavor = flavor;
900 atomic_set(&auth->au_count, 1);
0285ed1f 901 kref_init(&gss_auth->kref);
1da177e4 902
34769fc4
BF		 903 /*
904 * Note: if we created the old pipe first, then someone who
905 * examined the directory at the right moment might conclude
906 * that we supported only the old pipe. So we instead create
907 * the new pipe first.
908 */
c239d83b
SK		 909 gss_auth->pipe[1] = rpc_mkpipe_data(&gss_upcall_ops_v1,
910 RPC_PIPE_WAIT_FOR_OPEN);
911 if (IS_ERR(gss_auth->pipe[1])) {
912 err = PTR_ERR(gss_auth->pipe[1]);
1da177e4 913 goto err_put_mech;
6a19275a 914 }
1da177e4 915
c239d83b
SK		 916 gss_auth->pipe[0] = rpc_mkpipe_data(&gss_upcall_ops_v0,
917 RPC_PIPE_WAIT_FOR_OPEN);
918 if (IS_ERR(gss_auth->pipe[0])) {
919 err = PTR_ERR(gss_auth->pipe[0]);
920 goto err_destroy_pipe_1;
921 }
ccdc28f8
SK		 922 err = gss_pipes_dentries_create_net(clnt, auth);
923 if (err)
c239d83b 924 goto err_destroy_pipe_0;
f5c2187c 925 err = rpcauth_init_credcache(auth);
07a2bf1d 926 if (err)
ccdc28f8 927 goto err_unlink_pipes;
07a2bf1d 928
1da177e4 929 return auth;
ccdc28f8
SK		 930err_unlink_pipes:
931 gss_pipes_dentries_destroy_net(clnt, auth);
c239d83b
SK		 932err_destroy_pipe_0:
933 rpc_destroy_pipe_data(gss_auth->pipe[0]);
934err_destroy_pipe_1:
935 rpc_destroy_pipe_data(gss_auth->pipe[1]);
1da177e4
LT		 936err_put_mech:
937 gss_mech_put(gss_auth->mech);
938err_free:
bd4a3eb1 939 kfree(gss_auth->target_name);
1da177e4
LT		 940 kfree(gss_auth);
941out_dec:
942 module_put(THIS_MODULE);
6a19275a 943 return ERR_PTR(err);
1da177e4
LT		 944}
945
0285ed1f
TM		 946static void
947gss_free(struct gss_auth *gss_auth)
948{
ccdc28f8 949 gss_pipes_dentries_destroy_net(gss_auth->client, &gss_auth->rpc_auth);
c239d83b
SK		 950 rpc_destroy_pipe_data(gss_auth->pipe[0]);
951 rpc_destroy_pipe_data(gss_auth->pipe[1]);
0285ed1f 952 gss_mech_put(gss_auth->mech);
bd4a3eb1 953 kfree(gss_auth->target_name);
0285ed1f
TM		 954
955 kfree(gss_auth);
956 module_put(THIS_MODULE);
957}
958
959static void
960gss_free_callback(struct kref *kref)
961{
962 struct gss_auth *gss_auth = container_of(kref, struct gss_auth, kref);
963
964 gss_free(gss_auth);
965}
966
1da177e4
LT		 967static void
968gss_destroy(struct rpc_auth *auth)
969{
970 struct gss_auth *gss_auth;
971
8885cb36
CL		 972 dprintk("RPC: destroying GSS authenticator %p flavor %d\n",
973 auth, auth->au_flavor);
1da177e4 974
3ab9bb72
TM		 975 rpcauth_destroy_credcache(auth);
976
1da177e4 977 gss_auth = container_of(auth, struct gss_auth, rpc_auth);
0285ed1f 978 kref_put(&gss_auth->kref, gss_free_callback);
1da177e4
LT		 979}
980
0df7fb74
TM		 981/*
982 * gss_destroying_context will cause the RPCSEC_GSS to send a NULL RPC call
983 * to the server with the GSS control procedure field set to
984 * RPC_GSS_PROC_DESTROY. This should normally cause the server to release
985 * all RPCSEC_GSS state associated with that context.
986 */
987static int
988gss_destroying_context(struct rpc_cred *cred)
989{
990 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base);
991 struct gss_auth *gss_auth = container_of(cred->cr_auth, struct gss_auth, rpc_auth);
992 struct rpc_task *task;
993
994 if (gss_cred->gc_ctx == NULL ||
6dcd3926 995 test_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags) == 0)
0df7fb74
TM		 996 return 0;
997
998 gss_cred->gc_ctx->gc_proc = RPC_GSS_PROC_DESTROY;
999 cred->cr_ops = &gss_nullops;
1000
1001 /* Take a reference to ensure the cred will be destroyed either
1002 * by the RPC call or by the put_rpccred() below */
1003 get_rpccred(cred);
1004
080a1f14 1005 task = rpc_call_null(gss_auth->client, cred, RPC_TASK_ASYNC|RPC_TASK_SOFT);
0df7fb74
TM		 1006 if (!IS_ERR(task))
1007 rpc_put_task(task);
1008
1009 put_rpccred(cred);
1010 return 1;
1011}
1012
1013/* gss_destroy_cred (and gss_free_ctx) are used to clean up after failure
1da177e4
LT		 1014 * to create a new cred or context, so they check that things have been
1015 * allocated before freeing them. */
1016static void
5d28dc82 1017gss_do_free_ctx(struct gss_cl_ctx *ctx)
1da177e4 1018{
632f0d05 1019 dprintk("RPC: %s\n", __func__);
1da177e4 1020
0d8a3746 1021 gss_delete_sec_context(&ctx->gc_gss_ctx);
1da177e4
LT		 1022 kfree(ctx->gc_wire_ctx.data);
1023 kfree(ctx);
1024}
1025
5d28dc82
TM		 1026static void
1027gss_free_ctx_callback(struct rcu_head *head)
1028{
1029 struct gss_cl_ctx *ctx = container_of(head, struct gss_cl_ctx, gc_rcu);
1030 gss_do_free_ctx(ctx);
1031}
1032
1033static void
1034gss_free_ctx(struct gss_cl_ctx *ctx)
1035{
1036 call_rcu(&ctx->gc_rcu, gss_free_ctx_callback);
1037}
1038
1da177e4 1039static void
31be5bf1 1040gss_free_cred(struct gss_cred *gss_cred)
1da177e4 1041{
632f0d05 1042 dprintk("RPC: %s cred=%p\n", __func__, gss_cred);
31be5bf1
TM		 1043 kfree(gss_cred);
1044}
1da177e4 1045
31be5bf1
TM		 1046static void
1047gss_free_cred_callback(struct rcu_head *head)
1048{
1049 struct gss_cred *gss_cred = container_of(head, struct gss_cred, gc_base.cr_rcu);
1050 gss_free_cred(gss_cred);
1051}
1da177e4 1052
31be5bf1 1053static void
6dcd3926 1054gss_destroy_nullcred(struct rpc_cred *cred)
31be5bf1 1055{
5d28dc82 1056 struct gss_cred *gss_cred = container_of(cred, struct gss_cred, gc_base);
0285ed1f 1057 struct gss_auth *gss_auth = container_of(cred->cr_auth, struct gss_auth, rpc_auth);
5d28dc82
TM		 1058 struct gss_cl_ctx *ctx = gss_cred->gc_ctx;
1059
a9b3cd7f 1060 RCU_INIT_POINTER(gss_cred->gc_ctx, NULL);
31be5bf1 1061 call_rcu(&cred->cr_rcu, gss_free_cred_callback);
5d28dc82
TM		 1062 if (ctx)
1063 gss_put_ctx(ctx);
0285ed1f 1064 kref_put(&gss_auth->kref, gss_free_callback);
1da177e4
LT		 1065}
1066
6dcd3926
JL		 1067static void
1068gss_destroy_cred(struct rpc_cred *cred)
1069{
1070
1071 if (gss_destroying_context(cred))
1072 return;
1073 gss_destroy_nullcred(cred);
1074}
1075
1da177e4
LT		 1076/*
1077 * Lookup RPCSEC_GSS cred for the current process
1078 */
1079static struct rpc_cred *
8a317760 1080gss_lookup_cred(struct rpc_auth *auth, struct auth_cred *acred, int flags)
1da177e4 1081{
8a317760 1082 return rpcauth_lookup_credcache(auth, acred, flags);
1da177e4
LT		 1083}
1084
1085static struct rpc_cred *
8a317760 1086gss_create_cred(struct rpc_auth *auth, struct auth_cred *acred, int flags)
1da177e4
LT		 1087{
1088 struct gss_auth *gss_auth = container_of(auth, struct gss_auth, rpc_auth);
1089 struct gss_cred *cred = NULL;
1090 int err = -ENOMEM;
1091
632f0d05 1092 dprintk("RPC: %s for uid %d, flavor %d\n",
cdba321e
EB		 1093 __func__, from_kuid(&init_user_ns, acred->uid),
1094 auth->au_flavor);
1da177e4 1095
0f38b873 1096 if (!(cred = kzalloc(sizeof(*cred), GFP_NOFS)))
1da177e4
LT		 1097 goto out_err;
1098
5fe4755e 1099 rpcauth_init_cred(&cred->gc_base, acred, auth, &gss_credops);
1da177e4
LT		 1100 /*
1101 * Note: in order to force a call to call_refresh(), we deliberately
1102 * fail to flag the credential as RPCAUTH_CRED_UPTODATE.
1103 */
fc432dd9 1104 cred->gc_base.cr_flags = 1UL << RPCAUTH_CRED_NEW;
1da177e4 1105 cred->gc_service = gss_auth->service;
68c97153
TM		 1106 cred->gc_principal = NULL;
1107 if (acred->machine_cred)
1108 cred->gc_principal = acred->principal;
0285ed1f 1109 kref_get(&gss_auth->kref);
1da177e4
LT		 1110 return &cred->gc_base;
1111
1112out_err:
632f0d05 1113 dprintk("RPC: %s failed with error %d\n", __func__, err);
1da177e4
LT		 1114 return ERR_PTR(err);
1115}
1116
fba3bad4
TM		 1117static int
1118gss_cred_init(struct rpc_auth *auth, struct rpc_cred *cred)
1119{
1120 struct gss_auth *gss_auth = container_of(auth, struct gss_auth, rpc_auth);
1121 struct gss_cred *gss_cred = container_of(cred,struct gss_cred, gc_base);
1122 int err;
1123
1124 do {
1125 err = gss_create_upcall(gss_auth, gss_cred);
1126 } while (err == -EAGAIN);
1127 return err;
1128}
1129
1da177e4 1130static int
8a317760 1131gss_match(struct auth_cred *acred, struct rpc_cred *rc, int flags)
1da177e4
LT		 1132{
1133 struct gss_cred *gss_cred = container_of(rc, struct gss_cred, gc_base);
1134
cd019f75 1135 if (test_bit(RPCAUTH_CRED_NEW, &rc->cr_flags))
8a317760 1136 goto out;
1da177e4 1137 /* Don't match with creds that have expired. */
cd019f75
TM		 1138 if (time_after(jiffies, gss_cred->gc_ctx->gc_expiry))
1139 return 0;
1140 if (!test_bit(RPCAUTH_CRED_UPTODATE, &rc->cr_flags))
1da177e4 1141 return 0;
8a317760 1142out:
68c97153
TM		 1143 if (acred->principal != NULL) {
1144 if (gss_cred->gc_principal == NULL)
1145 return 0;
1146 return strcmp(acred->principal, gss_cred->gc_principal) == 0;
1147 }
1148 if (gss_cred->gc_principal != NULL)
7c67db3a 1149 return 0;
0b4d51b0 1150 return uid_eq(rc->cr_uid, acred->uid);
1da177e4
LT		 1151}
1152
1153/*
1154* Marshal credentials.
1155* Maybe we should keep a cached credential for performance reasons.
1156*/
d8ed029d
AD		 1157static __be32 *
1158gss_marshal(struct rpc_task *task, __be32 *p)
1da177e4 1159{
a17c2153
TM		 1160 struct rpc_rqst *req = task->tk_rqstp;
1161 struct rpc_cred *cred = req->rq_cred;
1da177e4
LT		 1162 struct gss_cred *gss_cred = container_of(cred, struct gss_cred,
1163 gc_base);
1164 struct gss_cl_ctx *ctx = gss_cred_get_ctx(cred);
d8ed029d 1165 __be32 *cred_len;
1da177e4
LT		 1166 u32 maj_stat = 0;
1167 struct xdr_netobj mic;
1168 struct kvec iov;
1169 struct xdr_buf verf_buf;
1170
632f0d05 1171 dprintk("RPC: %5u %s\n", task->tk_pid, __func__);
1da177e4
LT		 1172
1173 *p++ = htonl(RPC_AUTH_GSS);
1174 cred_len = p++;
1175
1176 spin_lock(&ctx->gc_seq_lock);
1177 req->rq_seqno = ctx->gc_seq++;
1178 spin_unlock(&ctx->gc_seq_lock);
1179
1180 *p++ = htonl((u32) RPC_GSS_VERSION);
1181 *p++ = htonl((u32) ctx->gc_proc);
1182 *p++ = htonl((u32) req->rq_seqno);
1183 *p++ = htonl((u32) gss_cred->gc_service);
1184 p = xdr_encode_netobj(p, &ctx->gc_wire_ctx);
1185 *cred_len = htonl((p - (cred_len + 1)) << 2);
1186
1187 /* We compute the checksum for the verifier over the xdr-encoded bytes
1188 * starting with the xid and ending at the end of the credential: */
a4f0835c 1189 iov.iov_base = xprt_skip_transport_header(req->rq_xprt,
808012fb 1190 req->rq_snd_buf.head[0].iov_base);
1da177e4
LT		 1191 iov.iov_len = (u8 *)p - (u8 *)iov.iov_base;
1192 xdr_buf_from_iov(&iov, &verf_buf);
1193
1194 /* set verifier flavor*/
1195 *p++ = htonl(RPC_AUTH_GSS);
1196
1197 mic.data = (u8 *)(p + 1);
00fd6e14 1198 maj_stat = gss_get_mic(ctx->gc_gss_ctx, &verf_buf, &mic);
1da177e4 1199 if (maj_stat == GSS_S_CONTEXT_EXPIRED) {
fc432dd9 1200 clear_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
1da177e4
LT		 1201 } else if (maj_stat != 0) {
1202 printk("gss_marshal: gss_get_mic FAILED (%d)\n", maj_stat);
1203 goto out_put_ctx;
1204 }
1205 p = xdr_encode_opaque(p, NULL, mic.len);
1206 gss_put_ctx(ctx);
1207 return p;
1208out_put_ctx:
1209 gss_put_ctx(ctx);
1210 return NULL;
1211}
1212
cd019f75
TM		 1213static int gss_renew_cred(struct rpc_task *task)
1214{
a17c2153 1215 struct rpc_cred *oldcred = task->tk_rqstp->rq_cred;
cd019f75
TM		 1216 struct gss_cred *gss_cred = container_of(oldcred,
1217 struct gss_cred,
1218 gc_base);
1219 struct rpc_auth *auth = oldcred->cr_auth;
1220 struct auth_cred acred = {
1221 .uid = oldcred->cr_uid,
68c97153
TM		 1222 .principal = gss_cred->gc_principal,
1223 .machine_cred = (gss_cred->gc_principal != NULL ? 1 : 0),
cd019f75
TM		 1224 };
1225 struct rpc_cred *new;
1226
1227 new = gss_lookup_cred(auth, &acred, RPCAUTH_LOOKUP_NEW);
1228 if (IS_ERR(new))
1229 return PTR_ERR(new);
a17c2153 1230 task->tk_rqstp->rq_cred = new;
cd019f75
TM		 1231 put_rpccred(oldcred);
1232 return 0;
1233}
1234
126e216a
TM		 1235static int gss_cred_is_negative_entry(struct rpc_cred *cred)
1236{
1237 if (test_bit(RPCAUTH_CRED_NEGATIVE, &cred->cr_flags)) {
1238 unsigned long now = jiffies;
1239 unsigned long begin, expire;
1240 struct gss_cred *gss_cred;
1241
1242 gss_cred = container_of(cred, struct gss_cred, gc_base);
1243 begin = gss_cred->gc_upcall_timestamp;
1244 expire = begin + gss_expired_cred_retry_delay * HZ;
1245
1246 if (time_in_range_open(now, begin, expire))
1247 return 1;
1248 }
1249 return 0;
1250}
1251
1da177e4
LT		 1252/*
1253* Refresh credentials. XXX - finish
1254*/
1255static int
1256gss_refresh(struct rpc_task *task)
1257{
a17c2153 1258 struct rpc_cred *cred = task->tk_rqstp->rq_cred;
cd019f75
TM		 1259 int ret = 0;
1260
126e216a
TM		 1261 if (gss_cred_is_negative_entry(cred))
1262 return -EKEYEXPIRED;
1263
cd019f75
TM		 1264 if (!test_bit(RPCAUTH_CRED_NEW, &cred->cr_flags) &&
1265 !test_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags)) {
1266 ret = gss_renew_cred(task);
1267 if (ret < 0)
1268 goto out;
a17c2153 1269 cred = task->tk_rqstp->rq_cred;
cd019f75 1270 }
1da177e4 1271
cd019f75
TM		 1272 if (test_bit(RPCAUTH_CRED_NEW, &cred->cr_flags))
1273 ret = gss_refresh_upcall(task);
1274out:
1275 return ret;
1da177e4
LT		 1276}
1277
0df7fb74
TM		 1278/* Dummy refresh routine: used only when destroying the context */
1279static int
1280gss_refresh_null(struct rpc_task *task)
1281{
1282 return -EACCES;
1283}
1284
d8ed029d
AD		 1285static __be32 *
1286gss_validate(struct rpc_task *task, __be32 *p)
1da177e4 1287{
a17c2153 1288 struct rpc_cred *cred = task->tk_rqstp->rq_cred;
1da177e4 1289 struct gss_cl_ctx *ctx = gss_cred_get_ctx(cred);
d8ed029d 1290 __be32 seq;
1da177e4
LT		 1291 struct kvec iov;
1292 struct xdr_buf verf_buf;
1293 struct xdr_netobj mic;
1294 u32 flav,len;
1295 u32 maj_stat;
1296
632f0d05 1297 dprintk("RPC: %5u %s\n", task->tk_pid, __func__);
1da177e4
LT		 1298
1299 flav = ntohl(*p++);
1300 if ((len = ntohl(*p++)) > RPC_MAX_AUTH_SIZE)
cca5172a 1301 goto out_bad;
1da177e4
LT		 1302 if (flav != RPC_AUTH_GSS)
1303 goto out_bad;
1304 seq = htonl(task->tk_rqstp->rq_seqno);
1305 iov.iov_base = &seq;
1306 iov.iov_len = sizeof(seq);
1307 xdr_buf_from_iov(&iov, &verf_buf);
1308 mic.data = (u8 *)p;
1309 mic.len = len;
1310
00fd6e14 1311 maj_stat = gss_verify_mic(ctx->gc_gss_ctx, &verf_buf, &mic);
1da177e4 1312 if (maj_stat == GSS_S_CONTEXT_EXPIRED)
fc432dd9 1313 clear_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
0df7fb74 1314 if (maj_stat) {
632f0d05
CL		 1315 dprintk("RPC: %5u %s: gss_verify_mic returned error 0x%08x\n",
1316 task->tk_pid, __func__, maj_stat);
1da177e4 1317 goto out_bad;
0df7fb74 1318 }
24b2605b
BF		 1319 /* We leave it to unwrap to calculate au_rslack. For now we just
1320 * calculate the length of the verifier: */
1be27f36 1321 cred->cr_auth->au_verfsize = XDR_QUADLEN(len) + 2;
1da177e4 1322 gss_put_ctx(ctx);
632f0d05
CL		 1323 dprintk("RPC: %5u %s: gss_verify_mic succeeded.\n",
1324 task->tk_pid, __func__);
1da177e4
LT		 1325 return p + XDR_QUADLEN(len);
1326out_bad:
1327 gss_put_ctx(ctx);
632f0d05 1328 dprintk("RPC: %5u %s failed.\n", task->tk_pid, __func__);
1da177e4
LT		 1329 return NULL;
1330}
1331
9f06c719
CL		 1332static void gss_wrap_req_encode(kxdreproc_t encode, struct rpc_rqst *rqstp,
1333 __be32 *p, void *obj)
1334{
1335 struct xdr_stream xdr;
1336
1337 xdr_init_encode(&xdr, &rqstp->rq_snd_buf, p);
1338 encode(rqstp, &xdr, obj);
1339}
1340
1da177e4
LT		 1341static inline int
1342gss_wrap_req_integ(struct rpc_cred *cred, struct gss_cl_ctx *ctx,
9f06c719
CL		 1343 kxdreproc_t encode, struct rpc_rqst *rqstp,
1344 __be32 *p, void *obj)
1da177e4
LT		 1345{
1346 struct xdr_buf *snd_buf = &rqstp->rq_snd_buf;
1347 struct xdr_buf integ_buf;
d8ed029d 1348 __be32 *integ_len = NULL;
1da177e4 1349 struct xdr_netobj mic;
d8ed029d
AD		 1350 u32 offset;
1351 __be32 *q;
1da177e4
LT		 1352 struct kvec *iov;
1353 u32 maj_stat = 0;
1354 int status = -EIO;
1355
1356 integ_len = p++;
1357 offset = (u8 *)p - (u8 *)snd_buf->head[0].iov_base;
1358 *p++ = htonl(rqstp->rq_seqno);
1359
9f06c719 1360 gss_wrap_req_encode(encode, rqstp, p, obj);
1da177e4
LT		 1361
1362 if (xdr_buf_subsegment(snd_buf, &integ_buf,
1363 offset, snd_buf->len - offset))
1364 return status;
1365 *integ_len = htonl(integ_buf.len);
1366
1367 /* guess whether we're in the head or the tail: */
cca5172a 1368 if (snd_buf->page_len || snd_buf->tail[0].iov_len)
1da177e4
LT		 1369 iov = snd_buf->tail;
1370 else
1371 iov = snd_buf->head;
1372 p = iov->iov_base + iov->iov_len;
1373 mic.data = (u8 *)(p + 1);
1374
00fd6e14 1375 maj_stat = gss_get_mic(ctx->gc_gss_ctx, &integ_buf, &mic);
1da177e4
LT		 1376 status = -EIO; /* XXX? */
1377 if (maj_stat == GSS_S_CONTEXT_EXPIRED)
fc432dd9 1378 clear_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
1da177e4
LT		 1379 else if (maj_stat)
1380 return status;
1381 q = xdr_encode_opaque(p, NULL, mic.len);
1382
1383 offset = (u8 *)q - (u8 *)p;
1384 iov->iov_len += offset;
1385 snd_buf->len += offset;
1386 return 0;
1387}
1388
2d2da60c
BF		 1389static void
1390priv_release_snd_buf(struct rpc_rqst *rqstp)
1391{
1392 int i;
1393
1394 for (i=0; i < rqstp->rq_enc_pages_num; i++)
1395 __free_page(rqstp->rq_enc_pages[i]);
1396 kfree(rqstp->rq_enc_pages);
1397}
1398
1399static int
1400alloc_enc_pages(struct rpc_rqst *rqstp)
1401{
1402 struct xdr_buf *snd_buf = &rqstp->rq_snd_buf;
1403 int first, last, i;
1404
1405 if (snd_buf->page_len == 0) {
1406 rqstp->rq_enc_pages_num = 0;
1407 return 0;
1408 }
1409
1410 first = snd_buf->page_base >> PAGE_CACHE_SHIFT;
1411 last = (snd_buf->page_base + snd_buf->page_len - 1) >> PAGE_CACHE_SHIFT;
1412 rqstp->rq_enc_pages_num = last - first + 1 + 1;
1413 rqstp->rq_enc_pages
1414 = kmalloc(rqstp->rq_enc_pages_num * sizeof(struct page *),
1415 GFP_NOFS);
1416 if (!rqstp->rq_enc_pages)
1417 goto out;
1418 for (i=0; i < rqstp->rq_enc_pages_num; i++) {
1419 rqstp->rq_enc_pages[i] = alloc_page(GFP_NOFS);
1420 if (rqstp->rq_enc_pages[i] == NULL)
1421 goto out_free;
1422 }
1423 rqstp->rq_release_snd_buf = priv_release_snd_buf;
1424 return 0;
1425out_free:
cdead7cf
TM		 1426 rqstp->rq_enc_pages_num = i;
1427 priv_release_snd_buf(rqstp);
2d2da60c
BF		 1428out:
1429 return -EAGAIN;
1430}
1431
1432static inline int
1433gss_wrap_req_priv(struct rpc_cred *cred, struct gss_cl_ctx *ctx,
9f06c719
CL		 1434 kxdreproc_t encode, struct rpc_rqst *rqstp,
1435 __be32 *p, void *obj)
2d2da60c
BF		 1436{
1437 struct xdr_buf *snd_buf = &rqstp->rq_snd_buf;
1438 u32 offset;
1439 u32 maj_stat;
1440 int status;
d8ed029d 1441 __be32 *opaque_len;
2d2da60c
BF		 1442 struct page **inpages;
1443 int first;
1444 int pad;
1445 struct kvec *iov;
1446 char *tmp;
1447
1448 opaque_len = p++;
1449 offset = (u8 *)p - (u8 *)snd_buf->head[0].iov_base;
1450 *p++ = htonl(rqstp->rq_seqno);
1451
9f06c719 1452 gss_wrap_req_encode(encode, rqstp, p, obj);
2d2da60c
BF		 1453
1454 status = alloc_enc_pages(rqstp);
1455 if (status)
1456 return status;
1457 first = snd_buf->page_base >> PAGE_CACHE_SHIFT;
1458 inpages = snd_buf->pages + first;
1459 snd_buf->pages = rqstp->rq_enc_pages;
1460 snd_buf->page_base -= first << PAGE_CACHE_SHIFT;
7561042f
KC		 1461 /*
1462 * Give the tail its own page, in case we need extra space in the
1463 * head when wrapping:
1464 *
1465 * call_allocate() allocates twice the slack space required
1466 * by the authentication flavor to rq_callsize.
1467 * For GSS, slack is GSS_CRED_SLACK.
1468 */
2d2da60c
BF		 1469 if (snd_buf->page_len || snd_buf->tail[0].iov_len) {
1470 tmp = page_address(rqstp->rq_enc_pages[rqstp->rq_enc_pages_num - 1]);
1471 memcpy(tmp, snd_buf->tail[0].iov_base, snd_buf->tail[0].iov_len);
1472 snd_buf->tail[0].iov_base = tmp;
1473 }
00fd6e14 1474 maj_stat = gss_wrap(ctx->gc_gss_ctx, offset, snd_buf, inpages);
7561042f 1475 /* slack space should prevent this ever happening: */
2d2da60c 1476 BUG_ON(snd_buf->len > snd_buf->buflen);
cca5172a 1477 status = -EIO;
2d2da60c
BF		 1478 /* We're assuming that when GSS_S_CONTEXT_EXPIRED, the encryption was
1479 * done anyway, so it's safe to put the request on the wire: */
1480 if (maj_stat == GSS_S_CONTEXT_EXPIRED)
fc432dd9 1481 clear_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
2d2da60c
BF		 1482 else if (maj_stat)
1483 return status;
1484
1485 *opaque_len = htonl(snd_buf->len - offset);
1486 /* guess whether we're in the head or the tail: */
1487 if (snd_buf->page_len || snd_buf->tail[0].iov_len)
1488 iov = snd_buf->tail;
1489 else
1490 iov = snd_buf->head;
1491 p = iov->iov_base + iov->iov_len;
1492 pad = 3 - ((snd_buf->len - offset - 1) & 3);
1493 memset(p, 0, pad);
1494 iov->iov_len += pad;
1495 snd_buf->len += pad;
1496
1497 return 0;
1498}
1499
1da177e4
LT		 1500static int
1501gss_wrap_req(struct rpc_task *task,
9f06c719 1502 kxdreproc_t encode, void *rqstp, __be32 *p, void *obj)
1da177e4 1503{
a17c2153 1504 struct rpc_cred *cred = task->tk_rqstp->rq_cred;
1da177e4
LT		 1505 struct gss_cred *gss_cred = container_of(cred, struct gss_cred,
1506 gc_base);
1507 struct gss_cl_ctx *ctx = gss_cred_get_ctx(cred);
1508 int status = -EIO;
1509
632f0d05 1510 dprintk("RPC: %5u %s\n", task->tk_pid, __func__);
1da177e4
LT		 1511 if (ctx->gc_proc != RPC_GSS_PROC_DATA) {
1512 /* The spec seems a little ambiguous here, but I think that not
1513 * wrapping context destruction requests makes the most sense.
1514 */
9f06c719
CL		 1515 gss_wrap_req_encode(encode, rqstp, p, obj);
1516 status = 0;
1da177e4
LT		 1517 goto out;
1518 }
1519 switch (gss_cred->gc_service) {
89f0e4fe
JP		 1520 case RPC_GSS_SVC_NONE:
1521 gss_wrap_req_encode(encode, rqstp, p, obj);
1522 status = 0;
1523 break;
1524 case RPC_GSS_SVC_INTEGRITY:
1525 status = gss_wrap_req_integ(cred, ctx, encode, rqstp, p, obj);
1526 break;
1527 case RPC_GSS_SVC_PRIVACY:
1528 status = gss_wrap_req_priv(cred, ctx, encode, rqstp, p, obj);
1529 break;
1da177e4
LT		 1530 }
1531out:
1532 gss_put_ctx(ctx);
632f0d05 1533 dprintk("RPC: %5u %s returning %d\n", task->tk_pid, __func__, status);
1da177e4
LT		 1534 return status;
1535}
1536
1537static inline int
1538gss_unwrap_resp_integ(struct rpc_cred *cred, struct gss_cl_ctx *ctx,
d8ed029d 1539 struct rpc_rqst *rqstp, __be32 **p)
1da177e4
LT		 1540{
1541 struct xdr_buf *rcv_buf = &rqstp->rq_rcv_buf;
1542 struct xdr_buf integ_buf;
1543 struct xdr_netobj mic;
1544 u32 data_offset, mic_offset;
1545 u32 integ_len;
1546 u32 maj_stat;
1547 int status = -EIO;
1548
1549 integ_len = ntohl(*(*p)++);
1550 if (integ_len & 3)
1551 return status;
1552 data_offset = (u8 *)(*p) - (u8 *)rcv_buf->head[0].iov_base;
1553 mic_offset = integ_len + data_offset;
1554 if (mic_offset > rcv_buf->len)
1555 return status;
1556 if (ntohl(*(*p)++) != rqstp->rq_seqno)
1557 return status;
1558
1559 if (xdr_buf_subsegment(rcv_buf, &integ_buf, data_offset,
1560 mic_offset - data_offset))
1561 return status;
1562
1563 if (xdr_buf_read_netobj(rcv_buf, &mic, mic_offset))
1564 return status;
1565
00fd6e14 1566 maj_stat = gss_verify_mic(ctx->gc_gss_ctx, &integ_buf, &mic);
1da177e4 1567 if (maj_stat == GSS_S_CONTEXT_EXPIRED)
fc432dd9 1568 clear_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
1da177e4
LT		 1569 if (maj_stat != GSS_S_COMPLETE)
1570 return status;
1571 return 0;
1572}
1573
2d2da60c
BF		 1574static inline int
1575gss_unwrap_resp_priv(struct rpc_cred *cred, struct gss_cl_ctx *ctx,
d8ed029d 1576 struct rpc_rqst *rqstp, __be32 **p)
2d2da60c
BF		 1577{
1578 struct xdr_buf *rcv_buf = &rqstp->rq_rcv_buf;
1579 u32 offset;
1580 u32 opaque_len;
1581 u32 maj_stat;
1582 int status = -EIO;
1583
1584 opaque_len = ntohl(*(*p)++);
1585 offset = (u8 *)(*p) - (u8 *)rcv_buf->head[0].iov_base;
1586 if (offset + opaque_len > rcv_buf->len)
1587 return status;
1588 /* remove padding: */
1589 rcv_buf->len = offset + opaque_len;
1590
00fd6e14 1591 maj_stat = gss_unwrap(ctx->gc_gss_ctx, offset, rcv_buf);
2d2da60c 1592 if (maj_stat == GSS_S_CONTEXT_EXPIRED)
fc432dd9 1593 clear_bit(RPCAUTH_CRED_UPTODATE, &cred->cr_flags);
2d2da60c
BF		 1594 if (maj_stat != GSS_S_COMPLETE)
1595 return status;
1596 if (ntohl(*(*p)++) != rqstp->rq_seqno)
1597 return status;
1598
1599 return 0;
1600}
1601
bf269551
CL		 1602static int
1603gss_unwrap_req_decode(kxdrdproc_t decode, struct rpc_rqst *rqstp,
1604 __be32 *p, void *obj)
1605{
1606 struct xdr_stream xdr;
1607
1608 xdr_init_decode(&xdr, &rqstp->rq_rcv_buf, p);
1609 return decode(rqstp, &xdr, obj);
1610}
2d2da60c 1611
1da177e4
LT		 1612static int
1613gss_unwrap_resp(struct rpc_task *task,
bf269551 1614 kxdrdproc_t decode, void *rqstp, __be32 *p, void *obj)
1da177e4 1615{
a17c2153 1616 struct rpc_cred *cred = task->tk_rqstp->rq_cred;
1da177e4
LT		 1617 struct gss_cred *gss_cred = container_of(cred, struct gss_cred,
1618 gc_base);
1619 struct gss_cl_ctx *ctx = gss_cred_get_ctx(cred);
d8ed029d 1620 __be32 *savedp = p;
2d2da60c
BF		 1621 struct kvec *head = ((struct rpc_rqst *)rqstp)->rq_rcv_buf.head;
1622 int savedlen = head->iov_len;
1da177e4
LT		 1623 int status = -EIO;
1624
1625 if (ctx->gc_proc != RPC_GSS_PROC_DATA)
1626 goto out_decode;
1627 switch (gss_cred->gc_service) {
89f0e4fe
JP		 1628 case RPC_GSS_SVC_NONE:
1629 break;
1630 case RPC_GSS_SVC_INTEGRITY:
1631 status = gss_unwrap_resp_integ(cred, ctx, rqstp, &p);
1632 if (status)
1633 goto out;
1634 break;
1635 case RPC_GSS_SVC_PRIVACY:
1636 status = gss_unwrap_resp_priv(cred, ctx, rqstp, &p);
1637 if (status)
1638 goto out;
1639 break;
1da177e4 1640 }
24b2605b 1641 /* take into account extra slack for integrity and privacy cases: */
1be27f36 1642 cred->cr_auth->au_rslack = cred->cr_auth->au_verfsize + (p - savedp)
2d2da60c 1643 + (savedlen - head->iov_len);
1da177e4 1644out_decode:
bf269551 1645 status = gss_unwrap_req_decode(decode, rqstp, p, obj);
1da177e4
LT		 1646out:
1647 gss_put_ctx(ctx);
632f0d05
CL		 1648 dprintk("RPC: %5u %s returning %d\n",
1649 task->tk_pid, __func__, status);
1da177e4
LT		 1650 return status;
1651}
cca5172a 1652
f1c0a861 1653static const struct rpc_authops authgss_ops = {
1da177e4
LT		 1654 .owner = THIS_MODULE,
1655 .au_flavor = RPC_AUTH_GSS,
1da177e4 1656 .au_name = "RPCSEC_GSS",
1da177e4
LT		 1657 .create = gss_create,
1658 .destroy = gss_destroy,
1659 .lookup_cred = gss_lookup_cred,
80df9d20
SK		 1660 .crcreate = gss_create_cred,
1661 .pipes_create = gss_pipes_dentries_create,
1662 .pipes_destroy = gss_pipes_dentries_destroy,
6a1a1e34 1663 .list_pseudoflavors = gss_mech_list_pseudoflavors,
9568c5e9 1664 .info2flavor = gss_mech_info2flavor,
a77c806f 1665 .flavor2info = gss_mech_flavor2info,
1da177e4
LT		 1666};
1667
f1c0a861 1668static const struct rpc_credops gss_credops = {
1da177e4
LT		 1669 .cr_name = "AUTH_GSS",
1670 .crdestroy = gss_destroy_cred,
fba3bad4 1671 .cr_init = gss_cred_init,
5c691044 1672 .crbind = rpcauth_generic_bind_cred,
1da177e4
LT		 1673 .crmatch = gss_match,
1674 .crmarshal = gss_marshal,
1675 .crrefresh = gss_refresh,
1676 .crvalidate = gss_validate,
1677 .crwrap_req = gss_wrap_req,
1678 .crunwrap_resp = gss_unwrap_resp,
1679};
1680
0df7fb74
TM		 1681static const struct rpc_credops gss_nullops = {
1682 .cr_name = "AUTH_GSS",
6dcd3926 1683 .crdestroy = gss_destroy_nullcred,
5c691044 1684 .crbind = rpcauth_generic_bind_cred,
0df7fb74
TM		 1685 .crmatch = gss_match,
1686 .crmarshal = gss_marshal,
1687 .crrefresh = gss_refresh_null,
1688 .crvalidate = gss_validate,
1689 .crwrap_req = gss_wrap_req,
1690 .crunwrap_resp = gss_unwrap_resp,
1691};
1692
b693ba4a 1693static const struct rpc_pipe_ops gss_upcall_ops_v0 = {
c1225158 1694 .upcall = rpc_pipe_generic_upcall,
34769fc4
BF		 1695 .downcall = gss_pipe_downcall,
1696 .destroy_msg = gss_pipe_destroy_msg,
1697 .open_pipe = gss_pipe_open_v0,
1698 .release_pipe = gss_pipe_release,
1699};
1700
b693ba4a 1701static const struct rpc_pipe_ops gss_upcall_ops_v1 = {
c1225158 1702 .upcall = rpc_pipe_generic_upcall,
1da177e4
LT		 1703 .downcall = gss_pipe_downcall,
1704 .destroy_msg = gss_pipe_destroy_msg,
34769fc4 1705 .open_pipe = gss_pipe_open_v1,
1da177e4
LT		 1706 .release_pipe = gss_pipe_release,
1707};
1708
a1db410d
SK		 1709static __net_init int rpcsec_gss_init_net(struct net *net)
1710{
1711 return gss_svc_init_net(net);
1712}
1713
1714static __net_exit void rpcsec_gss_exit_net(struct net *net)
1715{
1716 gss_svc_shutdown_net(net);
1717}
1718
1719static struct pernet_operations rpcsec_gss_net_ops = {
1720 .init = rpcsec_gss_init_net,
1721 .exit = rpcsec_gss_exit_net,
1722};
1723
1da177e4
LT		 1724/*
1725 * Initialize RPCSEC_GSS module
1726 */
1727static int __init init_rpcsec_gss(void)
1728{
1729 int err = 0;
1730
1731 err = rpcauth_register(&authgss_ops);
1732 if (err)
1733 goto out;
1734 err = gss_svc_init();
1735 if (err)
1736 goto out_unregister;
a1db410d
SK		 1737 err = register_pernet_subsys(&rpcsec_gss_net_ops);
1738 if (err)
1739 goto out_svc_exit;
79a3f20b 1740 rpc_init_wait_queue(&pipe_version_rpc_waitqueue, "gss pipe version");
1da177e4 1741 return 0;
a1db410d
SK		 1742out_svc_exit:
1743 gss_svc_shutdown();
1da177e4
LT		 1744out_unregister:
1745 rpcauth_unregister(&authgss_ops);
1746out:
1747 return err;
1748}
1749
1750static void __exit exit_rpcsec_gss(void)
1751{
a1db410d 1752 unregister_pernet_subsys(&rpcsec_gss_net_ops);
1da177e4
LT		 1753 gss_svc_shutdown();
1754 rpcauth_unregister(&authgss_ops);
bf12691d 1755 rcu_barrier(); /* Wait for completion of call_rcu()'s */
1da177e4
LT		 1756}
1757
71afa85e 1758MODULE_ALIAS("rpc-auth-6");
1da177e4 1759MODULE_LICENSE("GPL");
126e216a
TM		 1760module_param_named(expired_cred_retry_delay,
1761 gss_expired_cred_retry_delay,
1762 uint, 0644);
1763MODULE_PARM_DESC(expired_cred_retry_delay, "Timeout (in seconds) until "
1764 "the RPC engine retries an expired credential");
1765
1da177e4
LT		 1766module_init(init_rpcsec_gss)
1767module_exit(exit_rpcsec_gss)
Linux kernel - Deliverables
This page took 0.836258 seconds and 5 git commands to generate.