4 * Copyright (C) International Business Machines Corp., 2002,2009
5 * Author(s): Steve French (sfrench@us.ibm.com)
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
22 #include <linux/net.h>
23 #include <linux/string.h>
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/slab.h>
27 #include <linux/pagemap.h>
28 #include <linux/ctype.h>
29 #include <linux/utsname.h>
30 #include <linux/mempool.h>
31 #include <linux/delay.h>
32 #include <linux/completion.h>
33 #include <linux/kthread.h>
34 #include <linux/pagevec.h>
35 #include <linux/freezer.h>
36 #include <linux/namei.h>
37 #include <asm/uaccess.h>
38 #include <asm/processor.h>
39 #include <linux/inet.h>
40 #include <linux/module.h>
41 #include <keys/user-type.h>
45 #include "cifsproto.h"
46 #include "cifs_unicode.h"
47 #include "cifs_debug.h"
48 #include "cifs_fs_sb.h"
51 #include "rfc1002pdu.h"
55 #define RFC1001_PORT 139
57 /* SMB echo "timeout" -- FIXME: tunable? */
58 #define SMB_ECHO_INTERVAL (60 * HZ)
60 extern mempool_t *cifs_req_poolp;
62 /* FIXME: should these be tunable? */
63 #define TLINK_ERROR_EXPIRE (1 * HZ)
64 #define TLINK_IDLE_EXPIRE (600 * HZ)
66 static int ip_connect(struct TCP_Server_Info *server);
67 static int generic_ip_connect(struct TCP_Server_Info *server);
68 static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
69 static void cifs_prune_tlinks(struct work_struct *work);
70 static int cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
74 * cifs tcp session reconnection
76 * mark tcp session as reconnecting so temporarily locked
77 * mark all smb sessions as reconnecting for tcp session
78 * reconnect tcp session
79 * wake up waiters on reconnection? - (not needed currently)
82 cifs_reconnect(struct TCP_Server_Info *server)
85 struct list_head *tmp, *tmp2;
87 struct cifs_tcon *tcon;
88 struct mid_q_entry *mid_entry;
89 struct list_head retry_list;
91 spin_lock(&GlobalMid_Lock);
92 if (server->tcpStatus == CifsExiting) {
93 /* the demux thread will exit normally
94 next time through the loop */
95 spin_unlock(&GlobalMid_Lock);
98 server->tcpStatus = CifsNeedReconnect;
99 spin_unlock(&GlobalMid_Lock);
102 cFYI(1, "Reconnecting tcp session");
104 /* before reconnecting the tcp session, mark the smb session (uid)
105 and the tid bad so they are not used until reconnected */
106 cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
107 spin_lock(&cifs_tcp_ses_lock);
108 list_for_each(tmp, &server->smb_ses_list) {
109 ses = list_entry(tmp, struct cifs_ses, smb_ses_list);
110 ses->need_reconnect = true;
112 list_for_each(tmp2, &ses->tcon_list) {
113 tcon = list_entry(tmp2, struct cifs_tcon, tcon_list);
114 tcon->need_reconnect = true;
117 spin_unlock(&cifs_tcp_ses_lock);
119 /* do not want to be sending data on a socket we are freeing */
120 cFYI(1, "%s: tearing down socket", __func__);
121 mutex_lock(&server->srv_mutex);
122 if (server->ssocket) {
123 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
124 server->ssocket->flags);
125 kernel_sock_shutdown(server->ssocket, SHUT_WR);
126 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
127 server->ssocket->state,
128 server->ssocket->flags);
129 sock_release(server->ssocket);
130 server->ssocket = NULL;
132 server->sequence_number = 0;
133 server->session_estab = false;
134 kfree(server->session_key.response);
135 server->session_key.response = NULL;
136 server->session_key.len = 0;
137 server->lstrp = jiffies;
138 mutex_unlock(&server->srv_mutex);
140 /* mark submitted MIDs for retry and issue callback */
141 INIT_LIST_HEAD(&retry_list);
142 cFYI(1, "%s: moving mids to private list", __func__);
143 spin_lock(&GlobalMid_Lock);
144 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
145 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
146 if (mid_entry->midState == MID_REQUEST_SUBMITTED)
147 mid_entry->midState = MID_RETRY_NEEDED;
148 list_move(&mid_entry->qhead, &retry_list);
150 spin_unlock(&GlobalMid_Lock);
152 cFYI(1, "%s: issuing mid callbacks", __func__);
153 list_for_each_safe(tmp, tmp2, &retry_list) {
154 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
155 list_del_init(&mid_entry->qhead);
156 mid_entry->callback(mid_entry);
162 /* we should try only the port we connected to before */
163 rc = generic_ip_connect(server);
165 cFYI(1, "reconnect error %d", rc);
168 atomic_inc(&tcpSesReconnectCount);
169 spin_lock(&GlobalMid_Lock);
170 if (server->tcpStatus != CifsExiting)
171 server->tcpStatus = CifsNeedNegotiate;
172 spin_unlock(&GlobalMid_Lock);
174 } while (server->tcpStatus == CifsNeedReconnect);
181 0 not a transact2, or all data present
182 >0 transact2 with that much data missing
183 -EINVAL = invalid transact2
186 static int check2ndT2(struct smb_hdr *pSMB)
188 struct smb_t2_rsp *pSMBt;
190 __u16 total_data_size, data_in_this_rsp;
192 if (pSMB->Command != SMB_COM_TRANSACTION2)
195 /* check for plausible wct, bcc and t2 data and parm sizes */
196 /* check for parm and data offset going beyond end of smb */
197 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
198 cFYI(1, "invalid transact2 word count");
202 pSMBt = (struct smb_t2_rsp *)pSMB;
204 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
205 data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
207 if (total_data_size == data_in_this_rsp)
209 else if (total_data_size < data_in_this_rsp) {
210 cFYI(1, "total data %d smaller than data in frame %d",
211 total_data_size, data_in_this_rsp);
215 remaining = total_data_size - data_in_this_rsp;
217 cFYI(1, "missing %d bytes from transact2, check next response",
219 if (total_data_size > CIFSMaxBufSize) {
220 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
221 total_data_size, CIFSMaxBufSize);
227 static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
229 struct smb_t2_rsp *pSMBs = (struct smb_t2_rsp *)psecond;
230 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
231 char *data_area_of_tgt;
232 char *data_area_of_src;
234 unsigned int byte_count, total_in_tgt;
235 __u16 tgt_total_cnt, src_total_cnt, total_in_src;
237 src_total_cnt = get_unaligned_le16(&pSMBs->t2_rsp.TotalDataCount);
238 tgt_total_cnt = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
240 if (tgt_total_cnt != src_total_cnt)
241 cFYI(1, "total data count of primary and secondary t2 differ "
242 "source=%hu target=%hu", src_total_cnt, tgt_total_cnt);
244 total_in_tgt = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
246 remaining = tgt_total_cnt - total_in_tgt;
249 cFYI(1, "Server sent too much data. tgt_total_cnt=%hu "
250 "total_in_tgt=%hu", tgt_total_cnt, total_in_tgt);
254 if (remaining == 0) {
255 /* nothing to do, ignore */
256 cFYI(1, "no more data remains");
260 total_in_src = get_unaligned_le16(&pSMBs->t2_rsp.DataCount);
261 if (remaining < total_in_src)
262 cFYI(1, "transact2 2nd response contains too much data");
264 /* find end of first SMB data area */
265 data_area_of_tgt = (char *)&pSMBt->hdr.Protocol +
266 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
268 /* validate target area */
269 data_area_of_src = (char *)&pSMBs->hdr.Protocol +
270 get_unaligned_le16(&pSMBs->t2_rsp.DataOffset);
272 data_area_of_tgt += total_in_tgt;
274 total_in_tgt += total_in_src;
275 /* is the result too big for the field? */
276 if (total_in_tgt > USHRT_MAX) {
277 cFYI(1, "coalesced DataCount too large (%u)", total_in_tgt);
280 put_unaligned_le16(total_in_tgt, &pSMBt->t2_rsp.DataCount);
283 byte_count = get_bcc(pTargetSMB);
284 byte_count += total_in_src;
285 /* is the result too big for the field? */
286 if (byte_count > USHRT_MAX) {
287 cFYI(1, "coalesced BCC too large (%u)", byte_count);
290 put_bcc(byte_count, pTargetSMB);
292 byte_count = be32_to_cpu(pTargetSMB->smb_buf_length);
293 byte_count += total_in_src;
294 /* don't allow buffer to overflow */
295 if (byte_count > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
296 cFYI(1, "coalesced BCC exceeds buffer size (%u)", byte_count);
299 pTargetSMB->smb_buf_length = cpu_to_be32(byte_count);
301 /* copy second buffer into end of first buffer */
302 memcpy(data_area_of_tgt, data_area_of_src, total_in_src);
304 if (remaining != total_in_src) {
305 /* more responses to go */
306 cFYI(1, "waiting for more secondary responses");
311 cFYI(1, "found the last secondary response");
316 cifs_echo_request(struct work_struct *work)
319 struct TCP_Server_Info *server = container_of(work,
320 struct TCP_Server_Info, echo.work);
323 * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
324 * done, which is indicated by maxBuf != 0. Also, no need to ping if
325 * we got a response recently
327 if (server->maxBuf == 0 ||
328 time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
331 rc = CIFSSMBEcho(server);
333 cFYI(1, "Unable to send echo request to server: %s",
337 queue_delayed_work(system_nrt_wq, &server->echo, SMB_ECHO_INTERVAL);
341 allocate_buffers(struct TCP_Server_Info *server)
343 if (!server->bigbuf) {
344 server->bigbuf = (char *)cifs_buf_get();
345 if (!server->bigbuf) {
346 cERROR(1, "No memory for large SMB response");
348 /* retry will check if exiting */
351 } else if (server->large_buf) {
352 /* we are reusing a dirty large buf, clear its start */
353 memset(server->bigbuf, 0, sizeof(struct smb_hdr));
356 if (!server->smallbuf) {
357 server->smallbuf = (char *)cifs_small_buf_get();
358 if (!server->smallbuf) {
359 cERROR(1, "No memory for SMB response");
361 /* retry will check if exiting */
364 /* beginning of smb buffer is cleared in our buf_get */
366 /* if existing small buf clear beginning */
367 memset(server->smallbuf, 0, sizeof(struct smb_hdr));
374 server_unresponsive(struct TCP_Server_Info *server)
376 if (echo_retries > 0 && server->tcpStatus == CifsGood &&
377 time_after(jiffies, server->lstrp +
378 (echo_retries * SMB_ECHO_INTERVAL))) {
379 cERROR(1, "Server %s has not responded in %d seconds. "
380 "Reconnecting...", server->hostname,
381 (echo_retries * SMB_ECHO_INTERVAL / HZ));
382 cifs_reconnect(server);
383 wake_up(&server->response_q);
391 * kvec_array_init - clone a kvec array, and advance into it
392 * @new: pointer to memory for cloned array
393 * @iov: pointer to original array
394 * @nr_segs: number of members in original array
395 * @bytes: number of bytes to advance into the cloned array
397 * This function will copy the array provided in iov to a section of memory
398 * and advance the specified number of bytes into the new array. It returns
399 * the number of segments in the new array. "new" must be at least as big as
400 * the original iov array.
403 kvec_array_init(struct kvec *new, struct kvec *iov, unsigned int nr_segs,
408 while (bytes || !iov->iov_len) {
409 int copy = min(bytes, iov->iov_len);
413 if (iov->iov_len == base) {
419 memcpy(new, iov, sizeof(*iov) * nr_segs);
420 new->iov_base += base;
421 new->iov_len -= base;
426 get_server_iovec(struct TCP_Server_Info *server, unsigned int nr_segs)
428 struct kvec *new_iov;
430 if (server->iov && nr_segs <= server->nr_iov)
433 /* not big enough -- allocate a new one and release the old */
434 new_iov = kmalloc(sizeof(*new_iov) * nr_segs, GFP_NOFS);
437 server->iov = new_iov;
438 server->nr_iov = nr_segs;
444 cifs_readv_from_socket(struct TCP_Server_Info *server, struct kvec *iov_orig,
445 unsigned int nr_segs, unsigned int to_read)
450 struct msghdr smb_msg;
453 iov = get_server_iovec(server, nr_segs);
457 smb_msg.msg_control = NULL;
458 smb_msg.msg_controllen = 0;
460 for (total_read = 0; to_read; total_read += length, to_read -= length) {
463 if (server_unresponsive(server)) {
464 total_read = -EAGAIN;
468 segs = kvec_array_init(iov, iov_orig, nr_segs, total_read);
470 length = kernel_recvmsg(server->ssocket, &smb_msg,
471 iov, segs, to_read, 0);
473 if (server->tcpStatus == CifsExiting) {
474 total_read = -ESHUTDOWN;
476 } else if (server->tcpStatus == CifsNeedReconnect) {
477 cifs_reconnect(server);
478 total_read = -EAGAIN;
480 } else if (length == -ERESTARTSYS ||
484 * Minimum sleep to prevent looping, allowing socket
485 * to clear and app threads to set tcpStatus
486 * CifsNeedReconnect if server hung.
488 usleep_range(1000, 2000);
491 } else if (length <= 0) {
492 cFYI(1, "Received no data or error: expecting %d "
493 "got %d", to_read, length);
494 cifs_reconnect(server);
495 total_read = -EAGAIN;
503 cifs_read_from_socket(struct TCP_Server_Info *server, char *buf,
504 unsigned int to_read)
509 iov.iov_len = to_read;
511 return cifs_readv_from_socket(server, &iov, 1, to_read);
515 is_smb_response(struct TCP_Server_Info *server, unsigned char type)
518 * The first byte big endian of the length field,
519 * is actually not part of the length but the type
520 * with the most common, zero, as regular data.
523 case RFC1002_SESSION_MESSAGE:
524 /* Regular SMB response */
526 case RFC1002_SESSION_KEEP_ALIVE:
527 cFYI(1, "RFC 1002 session keep alive");
529 case RFC1002_POSITIVE_SESSION_RESPONSE:
530 cFYI(1, "RFC 1002 positive session response");
532 case RFC1002_NEGATIVE_SESSION_RESPONSE:
534 * We get this from Windows 98 instead of an error on
535 * SMB negprot response.
537 cFYI(1, "RFC 1002 negative session response");
538 /* give server a second to clean up */
541 * Always try 445 first on reconnect since we get NACK
542 * on some if we ever connected to port 139 (the NACK
543 * is since we do not begin with RFC1001 session
546 cifs_set_port((struct sockaddr *)&server->dstaddr, CIFS_PORT);
547 cifs_reconnect(server);
548 wake_up(&server->response_q);
551 cERROR(1, "RFC 1002 unknown response type 0x%x", type);
552 cifs_reconnect(server);
558 static struct mid_q_entry *
559 find_mid(struct TCP_Server_Info *server, struct smb_hdr *buf)
561 struct mid_q_entry *mid;
563 spin_lock(&GlobalMid_Lock);
564 list_for_each_entry(mid, &server->pending_mid_q, qhead) {
565 if (mid->mid == buf->Mid &&
566 mid->midState == MID_REQUEST_SUBMITTED &&
567 mid->command == buf->Command) {
568 spin_unlock(&GlobalMid_Lock);
572 spin_unlock(&GlobalMid_Lock);
577 dequeue_mid(struct mid_q_entry *mid, bool malformed)
579 #ifdef CONFIG_CIFS_STATS2
580 mid->when_received = jiffies;
582 spin_lock(&GlobalMid_Lock);
584 mid->midState = MID_RESPONSE_RECEIVED;
586 mid->midState = MID_RESPONSE_MALFORMED;
587 list_del_init(&mid->qhead);
588 spin_unlock(&GlobalMid_Lock);
592 handle_mid(struct mid_q_entry *mid, struct TCP_Server_Info *server,
593 struct smb_hdr *buf, int malformed)
595 if (malformed == 0 && check2ndT2(buf) > 0) {
596 mid->multiRsp = true;
598 /* merge response - fix up 1st*/
599 malformed = coalesce_t2(buf, mid->resp_buf);
603 /* All parts received or packet is malformed. */
604 mid->multiEnd = true;
605 return dequeue_mid(mid, malformed);
607 if (!server->large_buf) {
608 /*FIXME: switch to already allocated largebuf?*/
609 cERROR(1, "1st trans2 resp needs bigbuf");
611 /* Have first buffer */
613 mid->largeBuf = true;
614 server->bigbuf = NULL;
619 mid->largeBuf = server->large_buf;
620 /* Was previous buf put in mpx struct for multi-rsp? */
621 if (!mid->multiRsp) {
622 /* smb buffer will be freed by user thread */
623 if (server->large_buf)
624 server->bigbuf = NULL;
626 server->smallbuf = NULL;
628 dequeue_mid(mid, malformed);
631 static void clean_demultiplex_info(struct TCP_Server_Info *server)
635 /* take it off the list, if it's not already */
636 spin_lock(&cifs_tcp_ses_lock);
637 list_del_init(&server->tcp_ses_list);
638 spin_unlock(&cifs_tcp_ses_lock);
640 spin_lock(&GlobalMid_Lock);
641 server->tcpStatus = CifsExiting;
642 spin_unlock(&GlobalMid_Lock);
643 wake_up_all(&server->response_q);
646 * Check if we have blocked requests that need to free. Note that
647 * cifs_max_pending is normally 50, but can be set at module install
648 * time to as little as two.
650 spin_lock(&GlobalMid_Lock);
651 if (atomic_read(&server->inFlight) >= cifs_max_pending)
652 atomic_set(&server->inFlight, cifs_max_pending - 1);
654 * We do not want to set the max_pending too low or we could end up
655 * with the counter going negative.
657 spin_unlock(&GlobalMid_Lock);
659 * Although there should not be any requests blocked on this queue it
660 * can not hurt to be paranoid and try to wake up requests that may
661 * haven been blocked when more than 50 at time were on the wire to the
662 * same server - they now will see the session is in exit state and get
663 * out of SendReceive.
665 wake_up_all(&server->request_q);
666 /* give those requests time to exit */
669 if (server->ssocket) {
670 sock_release(server->ssocket);
671 server->ssocket = NULL;
674 if (!list_empty(&server->pending_mid_q)) {
675 struct list_head dispose_list;
676 struct mid_q_entry *mid_entry;
677 struct list_head *tmp, *tmp2;
679 INIT_LIST_HEAD(&dispose_list);
680 spin_lock(&GlobalMid_Lock);
681 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
682 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
683 cFYI(1, "Clearing mid 0x%x", mid_entry->mid);
684 mid_entry->midState = MID_SHUTDOWN;
685 list_move(&mid_entry->qhead, &dispose_list);
687 spin_unlock(&GlobalMid_Lock);
689 /* now walk dispose list and issue callbacks */
690 list_for_each_safe(tmp, tmp2, &dispose_list) {
691 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
692 cFYI(1, "Callback mid 0x%x", mid_entry->mid);
693 list_del_init(&mid_entry->qhead);
694 mid_entry->callback(mid_entry);
696 /* 1/8th of sec is more than enough time for them to exit */
700 if (!list_empty(&server->pending_mid_q)) {
702 * mpx threads have not exited yet give them at least the smb
703 * send timeout time for long ops.
705 * Due to delays on oplock break requests, we need to wait at
706 * least 45 seconds before giving up on a request getting a
707 * response and going ahead and killing cifsd.
709 cFYI(1, "Wait for exit from demultiplex thread");
712 * If threads still have not exited they are probably never
713 * coming home not much else we can do but free the memory.
717 kfree(server->hostname);
721 length = atomic_dec_return(&tcpSesAllocCount);
723 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
728 standard_receive3(struct TCP_Server_Info *server, struct mid_q_entry *mid)
731 char *buf = server->smallbuf;
732 struct smb_hdr *smb_buffer = (struct smb_hdr *)buf;
733 unsigned int pdu_length = be32_to_cpu(smb_buffer->smb_buf_length);
735 /* make sure this will fit in a large buffer */
736 if (pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
737 cERROR(1, "SMB response too long (%u bytes)",
739 cifs_reconnect(server);
740 wake_up(&server->response_q);
744 /* switch to large buffer if too big for a small one */
745 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
746 server->large_buf = true;
747 memcpy(server->bigbuf, server->smallbuf, server->total_read);
748 buf = server->bigbuf;
749 smb_buffer = (struct smb_hdr *)buf;
752 /* now read the rest */
753 length = cifs_read_from_socket(server,
754 buf + sizeof(struct smb_hdr) - 1,
755 pdu_length - sizeof(struct smb_hdr) + 1 + 4);
758 server->total_read += length;
760 dump_smb(smb_buffer, server->total_read);
763 * We know that we received enough to get to the MID as we
764 * checked the pdu_length earlier. Now check to see
765 * if the rest of the header is OK. We borrow the length
766 * var for the rest of the loop to avoid a new stack var.
768 * 48 bytes is enough to display the header and a little bit
769 * into the payload for debugging purposes.
771 length = checkSMB(smb_buffer, smb_buffer->Mid, server->total_read);
773 cifs_dump_mem("Bad SMB: ", buf,
774 min_t(unsigned int, server->total_read, 48));
779 handle_mid(mid, server, smb_buffer, length);
784 cifs_demultiplex_thread(void *p)
787 struct TCP_Server_Info *server = p;
788 unsigned int pdu_length;
790 struct smb_hdr *smb_buffer = NULL;
791 struct task_struct *task_to_wake = NULL;
792 struct mid_q_entry *mid_entry;
794 current->flags |= PF_MEMALLOC;
795 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
797 length = atomic_inc_return(&tcpSesAllocCount);
799 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
803 while (server->tcpStatus != CifsExiting) {
807 if (!allocate_buffers(server))
810 server->large_buf = false;
811 smb_buffer = (struct smb_hdr *)server->smallbuf;
812 buf = server->smallbuf;
813 pdu_length = 4; /* enough to get RFC1001 header */
815 length = cifs_read_from_socket(server, buf, pdu_length);
818 server->total_read = length;
821 * The right amount was read from socket - 4 bytes,
822 * so we can now interpret the length field.
824 pdu_length = be32_to_cpu(smb_buffer->smb_buf_length);
826 cFYI(1, "RFC1002 header 0x%x", pdu_length);
827 if (!is_smb_response(server, buf[0]))
830 /* make sure we have enough to get to the MID */
831 if (pdu_length < sizeof(struct smb_hdr) - 1 - 4) {
832 cERROR(1, "SMB response too short (%u bytes)",
834 cifs_reconnect(server);
835 wake_up(&server->response_q);
839 /* read down to the MID */
840 length = cifs_read_from_socket(server, buf + 4,
841 sizeof(struct smb_hdr) - 1 - 4);
844 server->total_read += length;
846 mid_entry = find_mid(server, smb_buffer);
848 if (!mid_entry || !mid_entry->receive)
849 length = standard_receive3(server, mid_entry);
851 length = mid_entry->receive(server, mid_entry);
856 if (server->large_buf) {
857 buf = server->bigbuf;
858 smb_buffer = (struct smb_hdr *)buf;
861 server->lstrp = jiffies;
862 if (mid_entry != NULL) {
863 if (!mid_entry->multiRsp || mid_entry->multiEnd)
864 mid_entry->callback(mid_entry);
865 } else if (!is_valid_oplock_break(smb_buffer, server)) {
866 cERROR(1, "No task to wake, unknown frame received! "
867 "NumMids %d", atomic_read(&midCount));
868 cifs_dump_mem("Received Data is: ", buf,
869 sizeof(struct smb_hdr));
870 #ifdef CONFIG_CIFS_DEBUG2
871 cifs_dump_detail(smb_buffer);
872 cifs_dump_mids(server);
873 #endif /* CIFS_DEBUG2 */
876 } /* end while !EXITING */
878 /* buffer usually freed in free_mid - need to free it here on exit */
879 cifs_buf_release(server->bigbuf);
880 if (server->smallbuf) /* no sense logging a debug message if NULL */
881 cifs_small_buf_release(server->smallbuf);
883 task_to_wake = xchg(&server->tsk, NULL);
884 clean_demultiplex_info(server);
886 /* if server->tsk was NULL then wait for a signal before exiting */
888 set_current_state(TASK_INTERRUPTIBLE);
889 while (!signal_pending(current)) {
891 set_current_state(TASK_INTERRUPTIBLE);
893 set_current_state(TASK_RUNNING);
896 module_put_and_exit(0);
899 /* extract the host portion of the UNC string */
901 extract_hostname(const char *unc)
907 /* skip double chars at beginning of string */
908 /* BB: check validity of these bytes? */
911 /* delimiter between hostname and sharename is always '\\' now */
912 delim = strchr(src, '\\');
914 return ERR_PTR(-EINVAL);
917 dst = kmalloc((len + 1), GFP_KERNEL);
919 return ERR_PTR(-ENOMEM);
921 memcpy(dst, src, len);
928 cifs_parse_mount_options(const char *mountdata, const char *devname,
931 char *value, *data, *end;
932 char *mountdata_copy = NULL, *options;
934 unsigned int temp_len, i, j;
936 short int override_uid = -1;
937 short int override_gid = -1;
938 bool uid_specified = false;
939 bool gid_specified = false;
940 char *nodename = utsname()->nodename;
946 * does not have to be perfect mapping since field is
947 * informational, only used for servers that do not support
948 * port 445 and it can be overridden at mount time
950 memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
951 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
952 vol->source_rfc1001_name[i] = toupper(nodename[i]);
954 vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
955 /* null target name indicates to use *SMBSERVR default called name
956 if we end up sending RFC1001 session initialize */
957 vol->target_rfc1001_name[0] = 0;
958 vol->cred_uid = current_uid();
959 vol->linux_uid = current_uid();
960 vol->linux_gid = current_gid();
962 /* default to only allowing write access to owner of the mount */
963 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
965 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
966 /* default is always to request posix paths. */
967 vol->posix_paths = 1;
968 /* default to using server inode numbers where available */
971 vol->actimeo = CIFS_DEF_ACTIMEO;
974 goto cifs_parse_mount_err;
976 mountdata_copy = kstrndup(mountdata, PAGE_SIZE, GFP_KERNEL);
978 goto cifs_parse_mount_err;
980 options = mountdata_copy;
981 end = options + strlen(options);
982 if (strncmp(options, "sep=", 4) == 0) {
983 if (options[4] != 0) {
984 separator[0] = options[4];
987 cFYI(1, "Null separator not allowed");
990 vol->backupuid_specified = false; /* no backup intent for a user */
991 vol->backupgid_specified = false; /* no backup intent for a group */
993 while ((data = strsep(&options, separator)) != NULL) {
996 if ((value = strchr(data, '=')) != NULL)
999 /* Have to parse this before we parse for "user" */
1000 if (strnicmp(data, "user_xattr", 10) == 0) {
1002 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1004 } else if (strnicmp(data, "user", 4) == 0) {
1007 "CIFS: invalid or missing username\n");
1008 goto cifs_parse_mount_err;
1009 } else if (!*value) {
1010 /* null user, ie anonymous, authentication */
1013 if (strnlen(value, MAX_USERNAME_SIZE) <
1014 MAX_USERNAME_SIZE) {
1015 vol->username = kstrdup(value, GFP_KERNEL);
1016 if (!vol->username) {
1017 printk(KERN_WARNING "CIFS: no memory "
1019 goto cifs_parse_mount_err;
1022 printk(KERN_WARNING "CIFS: username too long\n");
1023 goto cifs_parse_mount_err;
1025 } else if (strnicmp(data, "pass", 4) == 0) {
1027 vol->password = NULL;
1029 } else if (value[0] == 0) {
1030 /* check if string begins with double comma
1031 since that would mean the password really
1032 does start with a comma, and would not
1033 indicate an empty string */
1034 if (value[1] != separator[0]) {
1035 vol->password = NULL;
1039 temp_len = strlen(value);
1040 /* removed password length check, NTLM passwords
1041 can be arbitrarily long */
1043 /* if comma in password, the string will be
1044 prematurely null terminated. Commas in password are
1045 specified across the cifs mount interface by a double
1046 comma ie ,, and a comma used as in other cases ie ','
1047 as a parameter delimiter/separator is single and due
1048 to the strsep above is temporarily zeroed. */
1050 /* NB: password legally can have multiple commas and
1051 the only illegal character in a password is null */
1053 if ((value[temp_len] == 0) &&
1054 (value + temp_len < end) &&
1055 (value[temp_len+1] == separator[0])) {
1056 /* reinsert comma */
1057 value[temp_len] = separator[0];
1058 temp_len += 2; /* move after second comma */
1059 while (value[temp_len] != 0) {
1060 if (value[temp_len] == separator[0]) {
1061 if (value[temp_len+1] ==
1063 /* skip second comma */
1066 /* single comma indicating start
1073 if (value[temp_len] == 0) {
1076 value[temp_len] = 0;
1077 /* point option to start of next parm */
1078 options = value + temp_len + 1;
1080 /* go from value to value + temp_len condensing
1081 double commas to singles. Note that this ends up
1082 allocating a few bytes too many, which is ok */
1083 vol->password = kzalloc(temp_len, GFP_KERNEL);
1084 if (vol->password == NULL) {
1085 printk(KERN_WARNING "CIFS: no memory "
1087 goto cifs_parse_mount_err;
1089 for (i = 0, j = 0; i < temp_len; i++, j++) {
1090 vol->password[j] = value[i];
1091 if (value[i] == separator[0]
1092 && value[i+1] == separator[0]) {
1093 /* skip second comma */
1097 vol->password[j] = 0;
1099 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
1100 if (vol->password == NULL) {
1101 printk(KERN_WARNING "CIFS: no memory "
1103 goto cifs_parse_mount_err;
1105 strcpy(vol->password, value);
1107 } else if (!strnicmp(data, "ip", 2) ||
1108 !strnicmp(data, "addr", 4)) {
1109 if (!value || !*value) {
1111 } else if (strnlen(value, INET6_ADDRSTRLEN) <
1113 vol->UNCip = kstrdup(value, GFP_KERNEL);
1115 printk(KERN_WARNING "CIFS: no memory "
1117 goto cifs_parse_mount_err;
1120 printk(KERN_WARNING "CIFS: ip address "
1122 goto cifs_parse_mount_err;
1124 } else if (strnicmp(data, "sec", 3) == 0) {
1125 if (!value || !*value) {
1126 cERROR(1, "no security value specified");
1128 } else if (strnicmp(value, "krb5i", 5) == 0) {
1129 vol->secFlg |= CIFSSEC_MAY_KRB5 |
1131 } else if (strnicmp(value, "krb5p", 5) == 0) {
1132 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
1133 CIFSSEC_MAY_KRB5; */
1134 cERROR(1, "Krb5 cifs privacy not supported");
1135 goto cifs_parse_mount_err;
1136 } else if (strnicmp(value, "krb5", 4) == 0) {
1137 vol->secFlg |= CIFSSEC_MAY_KRB5;
1138 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
1139 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
1141 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
1142 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
1143 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
1144 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
1146 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
1147 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1148 } else if (strnicmp(value, "ntlmi", 5) == 0) {
1149 vol->secFlg |= CIFSSEC_MAY_NTLM |
1151 } else if (strnicmp(value, "ntlm", 4) == 0) {
1152 /* ntlm is default so can be turned off too */
1153 vol->secFlg |= CIFSSEC_MAY_NTLM;
1154 } else if (strnicmp(value, "nontlm", 6) == 0) {
1155 /* BB is there a better way to do this? */
1156 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1157 #ifdef CONFIG_CIFS_WEAK_PW_HASH
1158 } else if (strnicmp(value, "lanman", 6) == 0) {
1159 vol->secFlg |= CIFSSEC_MAY_LANMAN;
1161 } else if (strnicmp(value, "none", 4) == 0) {
1164 cERROR(1, "bad security option: %s", value);
1165 goto cifs_parse_mount_err;
1167 } else if (strnicmp(data, "vers", 3) == 0) {
1168 if (!value || !*value) {
1169 cERROR(1, "no protocol version specified"
1170 " after vers= mount option");
1171 } else if ((strnicmp(value, "cifs", 4) == 0) ||
1172 (strnicmp(value, "1", 1) == 0)) {
1173 /* this is the default */
1176 } else if ((strnicmp(data, "unc", 3) == 0)
1177 || (strnicmp(data, "target", 6) == 0)
1178 || (strnicmp(data, "path", 4) == 0)) {
1179 if (!value || !*value) {
1180 printk(KERN_WARNING "CIFS: invalid path to "
1181 "network resource\n");
1182 goto cifs_parse_mount_err;
1184 if ((temp_len = strnlen(value, 300)) < 300) {
1185 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1186 if (vol->UNC == NULL)
1187 goto cifs_parse_mount_err;
1188 strcpy(vol->UNC, value);
1189 if (strncmp(vol->UNC, "//", 2) == 0) {
1192 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1194 "CIFS: UNC Path does not begin "
1195 "with // or \\\\ \n");
1196 goto cifs_parse_mount_err;
1199 printk(KERN_WARNING "CIFS: UNC name too long\n");
1200 goto cifs_parse_mount_err;
1202 } else if ((strnicmp(data, "domain", 3) == 0)
1203 || (strnicmp(data, "workgroup", 5) == 0)) {
1204 if (!value || !*value) {
1205 printk(KERN_WARNING "CIFS: invalid domain name\n");
1206 goto cifs_parse_mount_err;
1208 /* BB are there cases in which a comma can be valid in
1209 a domain name and need special handling? */
1210 if (strnlen(value, 256) < 256) {
1211 vol->domainname = kstrdup(value, GFP_KERNEL);
1212 if (!vol->domainname) {
1213 printk(KERN_WARNING "CIFS: no memory "
1214 "for domainname\n");
1215 goto cifs_parse_mount_err;
1217 cFYI(1, "Domain name set");
1219 printk(KERN_WARNING "CIFS: domain name too "
1221 goto cifs_parse_mount_err;
1223 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1224 vol->srcaddr.ss_family = AF_UNSPEC;
1226 if (!value || !*value) {
1227 printk(KERN_WARNING "CIFS: srcaddr value"
1228 " not specified.\n");
1229 goto cifs_parse_mount_err;
1231 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1232 value, strlen(value));
1234 printk(KERN_WARNING "CIFS: Could not parse"
1237 goto cifs_parse_mount_err;
1239 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1240 if (!value || !*value) {
1242 "CIFS: invalid path prefix\n");
1243 goto cifs_parse_mount_err;
1245 if ((temp_len = strnlen(value, 1024)) < 1024) {
1246 if (value[0] != '/')
1247 temp_len++; /* missing leading slash */
1248 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1249 if (vol->prepath == NULL)
1250 goto cifs_parse_mount_err;
1251 if (value[0] != '/') {
1252 vol->prepath[0] = '/';
1253 strcpy(vol->prepath+1, value);
1255 strcpy(vol->prepath, value);
1256 cFYI(1, "prefix path %s", vol->prepath);
1258 printk(KERN_WARNING "CIFS: prefix too long\n");
1259 goto cifs_parse_mount_err;
1261 } else if (strnicmp(data, "iocharset", 9) == 0) {
1262 if (!value || !*value) {
1263 printk(KERN_WARNING "CIFS: invalid iocharset "
1265 goto cifs_parse_mount_err;
1267 if (strnlen(value, 65) < 65) {
1268 if (strnicmp(value, "default", 7)) {
1269 vol->iocharset = kstrdup(value,
1272 if (!vol->iocharset) {
1273 printk(KERN_WARNING "CIFS: no "
1276 goto cifs_parse_mount_err;
1279 /* if iocharset not set then load_nls_default
1280 is used by caller */
1281 cFYI(1, "iocharset set to %s", value);
1283 printk(KERN_WARNING "CIFS: iocharset name "
1285 goto cifs_parse_mount_err;
1287 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1288 vol->linux_uid = simple_strtoul(value, &value, 0);
1289 uid_specified = true;
1290 } else if (!strnicmp(data, "cruid", 5) && value && *value) {
1291 vol->cred_uid = simple_strtoul(value, &value, 0);
1292 } else if (!strnicmp(data, "forceuid", 8)) {
1294 } else if (!strnicmp(data, "noforceuid", 10)) {
1296 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1297 vol->linux_gid = simple_strtoul(value, &value, 0);
1298 gid_specified = true;
1299 } else if (!strnicmp(data, "forcegid", 8)) {
1301 } else if (!strnicmp(data, "noforcegid", 10)) {
1303 } else if (strnicmp(data, "file_mode", 4) == 0) {
1304 if (value && *value) {
1306 simple_strtoul(value, &value, 0);
1308 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1309 if (value && *value) {
1311 simple_strtoul(value, &value, 0);
1313 } else if (strnicmp(data, "dirmode", 4) == 0) {
1314 if (value && *value) {
1316 simple_strtoul(value, &value, 0);
1318 } else if (strnicmp(data, "port", 4) == 0) {
1319 if (value && *value) {
1321 simple_strtoul(value, &value, 0);
1323 } else if (strnicmp(data, "rsize", 5) == 0) {
1324 if (value && *value) {
1326 simple_strtoul(value, &value, 0);
1328 } else if (strnicmp(data, "wsize", 5) == 0) {
1329 if (value && *value) {
1331 simple_strtoul(value, &value, 0);
1333 } else if (strnicmp(data, "sockopt", 5) == 0) {
1334 if (!value || !*value) {
1335 cERROR(1, "no socket option specified");
1337 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1338 vol->sockopt_tcp_nodelay = 1;
1340 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1341 if (!value || !*value || (*value == ' ')) {
1342 cFYI(1, "invalid (empty) netbiosname");
1344 memset(vol->source_rfc1001_name, 0x20,
1347 * FIXME: are there cases in which a comma can
1348 * be valid in workstation netbios name (and
1349 * need special handling)?
1351 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1352 /* don't ucase netbiosname for user */
1355 vol->source_rfc1001_name[i] = value[i];
1357 /* The string has 16th byte zero still from
1358 set at top of the function */
1359 if (i == RFC1001_NAME_LEN && value[i] != 0)
1360 printk(KERN_WARNING "CIFS: netbiosname"
1361 " longer than 15 truncated.\n");
1363 } else if (strnicmp(data, "servern", 7) == 0) {
1364 /* servernetbiosname specified override *SMBSERVER */
1365 if (!value || !*value || (*value == ' ')) {
1366 cFYI(1, "empty server netbiosname specified");
1368 /* last byte, type, is 0x20 for servr type */
1369 memset(vol->target_rfc1001_name, 0x20,
1370 RFC1001_NAME_LEN_WITH_NULL);
1372 for (i = 0; i < 15; i++) {
1373 /* BB are there cases in which a comma can be
1374 valid in this workstation netbios name
1375 (and need special handling)? */
1377 /* user or mount helper must uppercase
1382 vol->target_rfc1001_name[i] =
1385 /* The string has 16th byte zero still from
1386 set at top of the function */
1387 if (i == RFC1001_NAME_LEN && value[i] != 0)
1388 printk(KERN_WARNING "CIFS: server net"
1389 "biosname longer than 15 truncated.\n");
1391 } else if (strnicmp(data, "actimeo", 7) == 0) {
1392 if (value && *value) {
1393 vol->actimeo = HZ * simple_strtoul(value,
1395 if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1396 cERROR(1, "CIFS: attribute cache"
1397 "timeout too large");
1398 goto cifs_parse_mount_err;
1401 } else if (strnicmp(data, "credentials", 4) == 0) {
1403 } else if (strnicmp(data, "version", 3) == 0) {
1405 } else if (strnicmp(data, "guest", 5) == 0) {
1407 } else if (strnicmp(data, "rw", 2) == 0 && strlen(data) == 2) {
1409 } else if (strnicmp(data, "ro", 2) == 0) {
1411 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1412 vol->noblocksnd = 1;
1413 } else if (strnicmp(data, "noautotune", 10) == 0) {
1414 vol->noautotune = 1;
1415 } else if ((strnicmp(data, "suid", 4) == 0) ||
1416 (strnicmp(data, "nosuid", 6) == 0) ||
1417 (strnicmp(data, "exec", 4) == 0) ||
1418 (strnicmp(data, "noexec", 6) == 0) ||
1419 (strnicmp(data, "nodev", 5) == 0) ||
1420 (strnicmp(data, "noauto", 6) == 0) ||
1421 (strnicmp(data, "dev", 3) == 0)) {
1422 /* The mount tool or mount.cifs helper (if present)
1423 uses these opts to set flags, and the flags are read
1424 by the kernel vfs layer before we get here (ie
1425 before read super) so there is no point trying to
1426 parse these options again and set anything and it
1427 is ok to just ignore them */
1429 } else if (strnicmp(data, "hard", 4) == 0) {
1431 } else if (strnicmp(data, "soft", 4) == 0) {
1433 } else if (strnicmp(data, "perm", 4) == 0) {
1435 } else if (strnicmp(data, "noperm", 6) == 0) {
1437 } else if (strnicmp(data, "mapchars", 8) == 0) {
1439 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1441 } else if (strnicmp(data, "sfu", 3) == 0) {
1443 } else if (strnicmp(data, "nosfu", 5) == 0) {
1445 } else if (strnicmp(data, "nodfs", 5) == 0) {
1447 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1448 vol->posix_paths = 1;
1449 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1450 vol->posix_paths = 0;
1451 } else if (strnicmp(data, "nounix", 6) == 0) {
1452 vol->no_linux_ext = 1;
1453 } else if (strnicmp(data, "nolinux", 7) == 0) {
1454 vol->no_linux_ext = 1;
1455 } else if ((strnicmp(data, "nocase", 6) == 0) ||
1456 (strnicmp(data, "ignorecase", 10) == 0)) {
1458 } else if (strnicmp(data, "mand", 4) == 0) {
1460 } else if (strnicmp(data, "nomand", 6) == 0) {
1462 } else if (strnicmp(data, "_netdev", 7) == 0) {
1464 } else if (strnicmp(data, "brl", 3) == 0) {
1466 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1467 (strnicmp(data, "nolock", 6) == 0)) {
1469 /* turn off mandatory locking in mode
1470 if remote locking is turned off since the
1471 local vfs will do advisory */
1472 if (vol->file_mode ==
1473 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1474 vol->file_mode = S_IALLUGO;
1475 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1476 /* will take the shorter form "forcemand" as well */
1477 /* This mount option will force use of mandatory
1478 (DOS/Windows style) byte range locks, instead of
1479 using posix advisory byte range locks, even if the
1480 Unix extensions are available and posix locks would
1481 be supported otherwise. If Unix extensions are not
1482 negotiated this has no effect since mandatory locks
1483 would be used (mandatory locks is all that those
1484 those servers support) */
1486 } else if (strnicmp(data, "setuids", 7) == 0) {
1488 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1490 } else if (strnicmp(data, "dynperm", 7) == 0) {
1491 vol->dynperm = true;
1492 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1493 vol->dynperm = false;
1494 } else if (strnicmp(data, "nohard", 6) == 0) {
1496 } else if (strnicmp(data, "nosoft", 6) == 0) {
1498 } else if (strnicmp(data, "nointr", 6) == 0) {
1500 } else if (strnicmp(data, "intr", 4) == 0) {
1502 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1503 vol->nostrictsync = 1;
1504 } else if (strnicmp(data, "strictsync", 10) == 0) {
1505 vol->nostrictsync = 0;
1506 } else if (strnicmp(data, "serverino", 7) == 0) {
1507 vol->server_ino = 1;
1508 } else if (strnicmp(data, "noserverino", 9) == 0) {
1509 vol->server_ino = 0;
1510 } else if (strnicmp(data, "rwpidforward", 12) == 0) {
1511 vol->rwpidforward = 1;
1512 } else if (strnicmp(data, "cifsacl", 7) == 0) {
1514 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1516 } else if (strnicmp(data, "acl", 3) == 0) {
1517 vol->no_psx_acl = 0;
1518 } else if (strnicmp(data, "noacl", 5) == 0) {
1519 vol->no_psx_acl = 1;
1520 } else if (strnicmp(data, "locallease", 6) == 0) {
1521 vol->local_lease = 1;
1522 } else if (strnicmp(data, "sign", 4) == 0) {
1523 vol->secFlg |= CIFSSEC_MUST_SIGN;
1524 } else if (strnicmp(data, "seal", 4) == 0) {
1525 /* we do not do the following in secFlags because seal
1526 is a per tree connection (mount) not a per socket
1527 or per-smb connection option in the protocol */
1528 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1530 } else if (strnicmp(data, "direct", 6) == 0) {
1532 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1534 } else if (strnicmp(data, "strictcache", 11) == 0) {
1536 } else if (strnicmp(data, "noac", 4) == 0) {
1537 printk(KERN_WARNING "CIFS: Mount option noac not "
1538 "supported. Instead set "
1539 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1540 } else if (strnicmp(data, "fsc", 3) == 0) {
1541 #ifndef CONFIG_CIFS_FSCACHE
1542 cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE "
1543 "kernel config option set");
1544 goto cifs_parse_mount_err;
1547 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1548 vol->mfsymlinks = true;
1549 } else if (strnicmp(data, "multiuser", 8) == 0) {
1550 vol->multiuser = true;
1551 } else if (!strnicmp(data, "backupuid", 9) && value && *value) {
1552 err = kstrtouint(value, 0, &vol->backupuid);
1554 cERROR(1, "%s: Invalid backupuid value",
1556 goto cifs_parse_mount_err;
1558 vol->backupuid_specified = true;
1559 } else if (!strnicmp(data, "backupgid", 9) && value && *value) {
1560 err = kstrtouint(value, 0, &vol->backupgid);
1562 cERROR(1, "%s: Invalid backupgid value",
1564 goto cifs_parse_mount_err;
1566 vol->backupgid_specified = true;
1568 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1571 if (vol->UNC == NULL) {
1572 if (devname == NULL) {
1573 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1575 goto cifs_parse_mount_err;
1577 if ((temp_len = strnlen(devname, 300)) < 300) {
1578 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1579 if (vol->UNC == NULL)
1580 goto cifs_parse_mount_err;
1581 strcpy(vol->UNC, devname);
1582 if (strncmp(vol->UNC, "//", 2) == 0) {
1585 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1586 printk(KERN_WARNING "CIFS: UNC Path does not "
1587 "begin with // or \\\\ \n");
1588 goto cifs_parse_mount_err;
1590 value = strpbrk(vol->UNC+2, "/\\");
1594 printk(KERN_WARNING "CIFS: UNC name too long\n");
1595 goto cifs_parse_mount_err;
1600 /* Muliuser mounts require CONFIG_KEYS support */
1601 if (vol->multiuser) {
1602 cERROR(1, "Multiuser mounts require kernels with "
1603 "CONFIG_KEYS enabled.");
1604 goto cifs_parse_mount_err;
1608 if (vol->UNCip == NULL)
1609 vol->UNCip = &vol->UNC[2];
1612 vol->override_uid = override_uid;
1613 else if (override_uid == 1)
1614 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1615 "specified with no uid= option.\n");
1618 vol->override_gid = override_gid;
1619 else if (override_gid == 1)
1620 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1621 "specified with no gid= option.\n");
1623 kfree(mountdata_copy);
1626 cifs_parse_mount_err:
1627 kfree(mountdata_copy);
1631 /** Returns true if srcaddr isn't specified and rhs isn't
1632 * specified, or if srcaddr is specified and
1633 * matches the IP address of the rhs argument.
1636 srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1638 switch (srcaddr->sa_family) {
1640 return (rhs->sa_family == AF_UNSPEC);
1642 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1643 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1644 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1647 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1648 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1649 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1653 return false; /* don't expect to be here */
1658 * If no port is specified in addr structure, we try to match with 445 port
1659 * and if it fails - with 139 ports. It should be called only if address
1660 * families of server and addr are equal.
1663 match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1665 __be16 port, *sport;
1667 switch (addr->sa_family) {
1669 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1670 port = ((struct sockaddr_in *) addr)->sin_port;
1673 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1674 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1682 port = htons(CIFS_PORT);
1686 port = htons(RFC1001_PORT);
1689 return port == *sport;
1693 match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1694 struct sockaddr *srcaddr)
1696 switch (addr->sa_family) {
1698 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1699 struct sockaddr_in *srv_addr4 =
1700 (struct sockaddr_in *)&server->dstaddr;
1702 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
1707 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1708 struct sockaddr_in6 *srv_addr6 =
1709 (struct sockaddr_in6 *)&server->dstaddr;
1711 if (!ipv6_addr_equal(&addr6->sin6_addr,
1712 &srv_addr6->sin6_addr))
1714 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
1720 return false; /* don't expect to be here */
1723 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1730 match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1732 unsigned int secFlags;
1734 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1735 secFlags = vol->secFlg;
1737 secFlags = global_secflags | vol->secFlg;
1739 switch (server->secType) {
1741 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1745 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1749 if (!(secFlags & CIFSSEC_MAY_NTLM))
1753 if (!(secFlags & CIFSSEC_MAY_KRB5))
1757 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1761 /* shouldn't happen */
1765 /* now check if signing mode is acceptable */
1766 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1767 (server->sec_mode & SECMODE_SIGN_REQUIRED))
1769 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1771 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1777 static int match_server(struct TCP_Server_Info *server, struct sockaddr *addr,
1778 struct smb_vol *vol)
1780 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1783 if (!match_address(server, addr,
1784 (struct sockaddr *)&vol->srcaddr))
1787 if (!match_port(server, addr))
1790 if (!match_security(server, vol))
1796 static struct TCP_Server_Info *
1797 cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1799 struct TCP_Server_Info *server;
1801 spin_lock(&cifs_tcp_ses_lock);
1802 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
1803 if (!match_server(server, addr, vol))
1806 ++server->srv_count;
1807 spin_unlock(&cifs_tcp_ses_lock);
1808 cFYI(1, "Existing tcp session with server found");
1811 spin_unlock(&cifs_tcp_ses_lock);
1816 cifs_put_tcp_session(struct TCP_Server_Info *server)
1818 struct task_struct *task;
1820 spin_lock(&cifs_tcp_ses_lock);
1821 if (--server->srv_count > 0) {
1822 spin_unlock(&cifs_tcp_ses_lock);
1826 put_net(cifs_net_ns(server));
1828 list_del_init(&server->tcp_ses_list);
1829 spin_unlock(&cifs_tcp_ses_lock);
1831 cancel_delayed_work_sync(&server->echo);
1833 spin_lock(&GlobalMid_Lock);
1834 server->tcpStatus = CifsExiting;
1835 spin_unlock(&GlobalMid_Lock);
1837 cifs_crypto_shash_release(server);
1838 cifs_fscache_release_client_cookie(server);
1840 kfree(server->session_key.response);
1841 server->session_key.response = NULL;
1842 server->session_key.len = 0;
1844 task = xchg(&server->tsk, NULL);
1846 force_sig(SIGKILL, task);
1849 static struct TCP_Server_Info *
1850 cifs_get_tcp_session(struct smb_vol *volume_info)
1852 struct TCP_Server_Info *tcp_ses = NULL;
1853 struct sockaddr_storage addr;
1854 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1855 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1858 memset(&addr, 0, sizeof(struct sockaddr_storage));
1860 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
1862 if (volume_info->UNCip && volume_info->UNC) {
1863 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1865 strlen(volume_info->UNCip),
1868 /* we failed translating address */
1872 } else if (volume_info->UNCip) {
1873 /* BB using ip addr as tcp_ses name to connect to the
1875 cERROR(1, "Connecting to DFS root not implemented yet");
1878 } else /* which tcp_sess DFS root would we conect to */ {
1879 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1880 "unc=//192.168.1.100/public) specified");
1885 /* see if we already have a matching tcp_ses */
1886 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
1890 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1896 rc = cifs_crypto_shash_allocate(tcp_ses);
1898 cERROR(1, "could not setup hash structures rc %d", rc);
1902 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
1903 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1904 if (IS_ERR(tcp_ses->hostname)) {
1905 rc = PTR_ERR(tcp_ses->hostname);
1906 goto out_err_crypto_release;
1909 tcp_ses->noblocksnd = volume_info->noblocksnd;
1910 tcp_ses->noautotune = volume_info->noautotune;
1911 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
1912 atomic_set(&tcp_ses->inFlight, 0);
1913 init_waitqueue_head(&tcp_ses->response_q);
1914 init_waitqueue_head(&tcp_ses->request_q);
1915 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1916 mutex_init(&tcp_ses->srv_mutex);
1917 memcpy(tcp_ses->workstation_RFC1001_name,
1918 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1919 memcpy(tcp_ses->server_RFC1001_name,
1920 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1921 tcp_ses->session_estab = false;
1922 tcp_ses->sequence_number = 0;
1923 tcp_ses->lstrp = jiffies;
1924 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1925 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1926 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
1929 * at this point we are the only ones with the pointer
1930 * to the struct since the kernel thread not created yet
1931 * no need to spinlock this init of tcpStatus or srv_count
1933 tcp_ses->tcpStatus = CifsNew;
1934 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1935 sizeof(tcp_ses->srcaddr));
1936 ++tcp_ses->srv_count;
1938 if (addr.ss_family == AF_INET6) {
1939 cFYI(1, "attempting ipv6 connect");
1940 /* BB should we allow ipv6 on port 139? */
1941 /* other OS never observed in Wild doing 139 with v6 */
1942 memcpy(&tcp_ses->dstaddr, sin_server6,
1943 sizeof(struct sockaddr_in6));
1945 memcpy(&tcp_ses->dstaddr, sin_server,
1946 sizeof(struct sockaddr_in));
1948 rc = ip_connect(tcp_ses);
1950 cERROR(1, "Error connecting to socket. Aborting operation");
1951 goto out_err_crypto_release;
1955 * since we're in a cifs function already, we know that
1956 * this will succeed. No need for try_module_get().
1958 __module_get(THIS_MODULE);
1959 tcp_ses->tsk = kthread_run(cifs_demultiplex_thread,
1961 if (IS_ERR(tcp_ses->tsk)) {
1962 rc = PTR_ERR(tcp_ses->tsk);
1963 cERROR(1, "error %d create cifsd thread", rc);
1964 module_put(THIS_MODULE);
1965 goto out_err_crypto_release;
1967 tcp_ses->tcpStatus = CifsNeedNegotiate;
1969 /* thread spawned, put it on the list */
1970 spin_lock(&cifs_tcp_ses_lock);
1971 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1972 spin_unlock(&cifs_tcp_ses_lock);
1974 cifs_fscache_get_client_cookie(tcp_ses);
1976 /* queue echo request delayed work */
1977 queue_delayed_work(system_nrt_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
1981 out_err_crypto_release:
1982 cifs_crypto_shash_release(tcp_ses);
1984 put_net(cifs_net_ns(tcp_ses));
1988 if (!IS_ERR(tcp_ses->hostname))
1989 kfree(tcp_ses->hostname);
1990 if (tcp_ses->ssocket)
1991 sock_release(tcp_ses->ssocket);
1997 static int match_session(struct cifs_ses *ses, struct smb_vol *vol)
1999 switch (ses->server->secType) {
2001 if (vol->cred_uid != ses->cred_uid)
2005 /* NULL username means anonymous session */
2006 if (ses->user_name == NULL) {
2012 /* anything else takes username/password */
2013 if (strncmp(ses->user_name,
2014 vol->username ? vol->username : "",
2017 if (strlen(vol->username) != 0 &&
2018 ses->password != NULL &&
2019 strncmp(ses->password,
2020 vol->password ? vol->password : "",
2027 static struct cifs_ses *
2028 cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
2030 struct cifs_ses *ses;
2032 spin_lock(&cifs_tcp_ses_lock);
2033 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
2034 if (!match_session(ses, vol))
2037 spin_unlock(&cifs_tcp_ses_lock);
2040 spin_unlock(&cifs_tcp_ses_lock);
2045 cifs_put_smb_ses(struct cifs_ses *ses)
2048 struct TCP_Server_Info *server = ses->server;
2050 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
2051 spin_lock(&cifs_tcp_ses_lock);
2052 if (--ses->ses_count > 0) {
2053 spin_unlock(&cifs_tcp_ses_lock);
2057 list_del_init(&ses->smb_ses_list);
2058 spin_unlock(&cifs_tcp_ses_lock);
2060 if (ses->status == CifsGood) {
2062 CIFSSMBLogoff(xid, ses);
2066 cifs_put_tcp_session(server);
2071 /* strlen("cifs:a:") + INET6_ADDRSTRLEN + 1 */
2072 #define CIFSCREDS_DESC_SIZE (7 + INET6_ADDRSTRLEN + 1)
2074 /* Populate username and pw fields from keyring if possible */
2076 cifs_set_cifscreds(struct smb_vol *vol, struct cifs_ses *ses)
2079 char *desc, *delim, *payload;
2082 struct TCP_Server_Info *server = ses->server;
2083 struct sockaddr_in *sa;
2084 struct sockaddr_in6 *sa6;
2085 struct user_key_payload *upayload;
2087 desc = kmalloc(CIFSCREDS_DESC_SIZE, GFP_KERNEL);
2091 /* try to find an address key first */
2092 switch (server->dstaddr.ss_family) {
2094 sa = (struct sockaddr_in *)&server->dstaddr;
2095 sprintf(desc, "cifs:a:%pI4", &sa->sin_addr.s_addr);
2098 sa6 = (struct sockaddr_in6 *)&server->dstaddr;
2099 sprintf(desc, "cifs:a:%pI6c", &sa6->sin6_addr.s6_addr);
2102 cFYI(1, "Bad ss_family (%hu)", server->dstaddr.ss_family);
2107 cFYI(1, "%s: desc=%s", __func__, desc);
2108 key = request_key(&key_type_logon, desc, "");
2110 if (!ses->domainName) {
2111 cFYI(1, "domainName is NULL");
2116 /* didn't work, try to find a domain key */
2117 sprintf(desc, "cifs:d:%s", ses->domainName);
2118 cFYI(1, "%s: desc=%s", __func__, desc);
2119 key = request_key(&key_type_logon, desc, "");
2126 down_read(&key->sem);
2127 upayload = key->payload.data;
2128 if (IS_ERR_OR_NULL(upayload)) {
2129 rc = upayload ? PTR_ERR(upayload) : -EINVAL;
2133 /* find first : in payload */
2134 payload = (char *)upayload->data;
2135 delim = strnchr(payload, upayload->datalen, ':');
2136 cFYI(1, "payload=%s", payload);
2138 cFYI(1, "Unable to find ':' in payload (datalen=%d)",
2144 len = delim - payload;
2145 if (len > MAX_USERNAME_SIZE || len <= 0) {
2146 cFYI(1, "Bad value from username search (len=%zd)", len);
2151 vol->username = kstrndup(payload, len, GFP_KERNEL);
2152 if (!vol->username) {
2153 cFYI(1, "Unable to allocate %zd bytes for username", len);
2157 cFYI(1, "%s: username=%s", __func__, vol->username);
2159 len = key->datalen - (len + 1);
2160 if (len > MAX_PASSWORD_SIZE || len <= 0) {
2161 cFYI(1, "Bad len for password search (len=%zd)", len);
2163 kfree(vol->username);
2164 vol->username = NULL;
2169 vol->password = kstrndup(delim, len, GFP_KERNEL);
2170 if (!vol->password) {
2171 cFYI(1, "Unable to allocate %zd bytes for password", len);
2173 kfree(vol->username);
2174 vol->username = NULL;
2183 cFYI(1, "%s: returning %d", __func__, rc);
2186 #else /* ! CONFIG_KEYS */
2188 cifs_set_cifscreds(struct smb_vol *vol __attribute__((unused)),
2189 struct cifs_ses *ses __attribute__((unused)))
2193 #endif /* CONFIG_KEYS */
2195 static bool warned_on_ntlm; /* globals init to false automatically */
2197 static struct cifs_ses *
2198 cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
2200 int rc = -ENOMEM, xid;
2201 struct cifs_ses *ses;
2202 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2203 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2207 ses = cifs_find_smb_ses(server, volume_info);
2209 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
2211 mutex_lock(&ses->session_mutex);
2212 rc = cifs_negotiate_protocol(xid, ses);
2214 mutex_unlock(&ses->session_mutex);
2215 /* problem -- put our ses reference */
2216 cifs_put_smb_ses(ses);
2220 if (ses->need_reconnect) {
2221 cFYI(1, "Session needs reconnect");
2222 rc = cifs_setup_session(xid, ses,
2223 volume_info->local_nls);
2225 mutex_unlock(&ses->session_mutex);
2226 /* problem -- put our reference */
2227 cifs_put_smb_ses(ses);
2232 mutex_unlock(&ses->session_mutex);
2234 /* existing SMB ses has a server reference already */
2235 cifs_put_tcp_session(server);
2240 cFYI(1, "Existing smb sess not found");
2241 ses = sesInfoAlloc();
2245 /* new SMB session uses our server ref */
2246 ses->server = server;
2247 if (server->dstaddr.ss_family == AF_INET6)
2248 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
2250 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
2252 if (volume_info->username) {
2253 ses->user_name = kstrdup(volume_info->username, GFP_KERNEL);
2254 if (!ses->user_name)
2258 /* volume_info->password freed at unmount */
2259 if (volume_info->password) {
2260 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
2264 if (volume_info->domainname) {
2265 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
2266 if (!ses->domainName)
2269 ses->cred_uid = volume_info->cred_uid;
2270 ses->linux_uid = volume_info->linux_uid;
2272 /* ntlmv2 is much stronger than ntlm security, and has been broadly
2273 supported for many years, time to update default security mechanism */
2274 if ((volume_info->secFlg == 0) && warned_on_ntlm == false) {
2275 warned_on_ntlm = true;
2276 cERROR(1, "default security mechanism requested. The default "
2277 "security mechanism will be upgraded from ntlm to "
2278 "ntlmv2 in kernel release 3.3");
2280 ses->overrideSecFlg = volume_info->secFlg;
2282 mutex_lock(&ses->session_mutex);
2283 rc = cifs_negotiate_protocol(xid, ses);
2285 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
2286 mutex_unlock(&ses->session_mutex);
2290 /* success, put it on the list */
2291 spin_lock(&cifs_tcp_ses_lock);
2292 list_add(&ses->smb_ses_list, &server->smb_ses_list);
2293 spin_unlock(&cifs_tcp_ses_lock);
2304 static int match_tcon(struct cifs_tcon *tcon, const char *unc)
2306 if (tcon->tidStatus == CifsExiting)
2308 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
2313 static struct cifs_tcon *
2314 cifs_find_tcon(struct cifs_ses *ses, const char *unc)
2316 struct list_head *tmp;
2317 struct cifs_tcon *tcon;
2319 spin_lock(&cifs_tcp_ses_lock);
2320 list_for_each(tmp, &ses->tcon_list) {
2321 tcon = list_entry(tmp, struct cifs_tcon, tcon_list);
2322 if (!match_tcon(tcon, unc))
2325 spin_unlock(&cifs_tcp_ses_lock);
2328 spin_unlock(&cifs_tcp_ses_lock);
2333 cifs_put_tcon(struct cifs_tcon *tcon)
2336 struct cifs_ses *ses = tcon->ses;
2338 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
2339 spin_lock(&cifs_tcp_ses_lock);
2340 if (--tcon->tc_count > 0) {
2341 spin_unlock(&cifs_tcp_ses_lock);
2345 list_del_init(&tcon->tcon_list);
2346 spin_unlock(&cifs_tcp_ses_lock);
2349 CIFSSMBTDis(xid, tcon);
2352 cifs_fscache_release_super_cookie(tcon);
2354 cifs_put_smb_ses(ses);
2357 static struct cifs_tcon *
2358 cifs_get_tcon(struct cifs_ses *ses, struct smb_vol *volume_info)
2361 struct cifs_tcon *tcon;
2363 tcon = cifs_find_tcon(ses, volume_info->UNC);
2365 cFYI(1, "Found match on UNC path");
2366 /* existing tcon already has a reference */
2367 cifs_put_smb_ses(ses);
2368 if (tcon->seal != volume_info->seal)
2369 cERROR(1, "transport encryption setting "
2370 "conflicts with existing tid");
2374 tcon = tconInfoAlloc();
2381 if (volume_info->password) {
2382 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2383 if (!tcon->password) {
2389 if (strchr(volume_info->UNC + 3, '\\') == NULL
2390 && strchr(volume_info->UNC + 3, '/') == NULL) {
2391 cERROR(1, "Missing share name");
2396 /* BB Do we need to wrap session_mutex around
2397 * this TCon call and Unix SetFS as
2398 * we do on SessSetup and reconnect? */
2400 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2402 cFYI(1, "CIFS Tcon rc = %d", rc);
2406 if (volume_info->nodfs) {
2407 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2408 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2410 tcon->seal = volume_info->seal;
2411 /* we can have only one retry value for a connection
2412 to a share so for resources mounted more than once
2413 to the same server share the last value passed in
2414 for the retry flag is used */
2415 tcon->retry = volume_info->retry;
2416 tcon->nocase = volume_info->nocase;
2417 tcon->local_lease = volume_info->local_lease;
2419 spin_lock(&cifs_tcp_ses_lock);
2420 list_add(&tcon->tcon_list, &ses->tcon_list);
2421 spin_unlock(&cifs_tcp_ses_lock);
2423 cifs_fscache_get_super_cookie(tcon);
2433 cifs_put_tlink(struct tcon_link *tlink)
2435 if (!tlink || IS_ERR(tlink))
2438 if (!atomic_dec_and_test(&tlink->tl_count) ||
2439 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2440 tlink->tl_time = jiffies;
2444 if (!IS_ERR(tlink_tcon(tlink)))
2445 cifs_put_tcon(tlink_tcon(tlink));
2450 static inline struct tcon_link *
2451 cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
2453 return cifs_sb->master_tlink;
2457 compare_mount_options(struct super_block *sb, struct cifs_mnt_data *mnt_data)
2459 struct cifs_sb_info *old = CIFS_SB(sb);
2460 struct cifs_sb_info *new = mnt_data->cifs_sb;
2462 if ((sb->s_flags & CIFS_MS_MASK) != (mnt_data->flags & CIFS_MS_MASK))
2465 if ((old->mnt_cifs_flags & CIFS_MOUNT_MASK) !=
2466 (new->mnt_cifs_flags & CIFS_MOUNT_MASK))
2470 * We want to share sb only if we don't specify an r/wsize or
2471 * specified r/wsize is greater than or equal to existing one.
2473 if (new->wsize && new->wsize < old->wsize)
2476 if (new->rsize && new->rsize < old->rsize)
2479 if (old->mnt_uid != new->mnt_uid || old->mnt_gid != new->mnt_gid)
2482 if (old->mnt_file_mode != new->mnt_file_mode ||
2483 old->mnt_dir_mode != new->mnt_dir_mode)
2486 if (strcmp(old->local_nls->charset, new->local_nls->charset))
2489 if (old->actimeo != new->actimeo)
2496 cifs_match_super(struct super_block *sb, void *data)
2498 struct cifs_mnt_data *mnt_data = (struct cifs_mnt_data *)data;
2499 struct smb_vol *volume_info;
2500 struct cifs_sb_info *cifs_sb;
2501 struct TCP_Server_Info *tcp_srv;
2502 struct cifs_ses *ses;
2503 struct cifs_tcon *tcon;
2504 struct tcon_link *tlink;
2505 struct sockaddr_storage addr;
2508 memset(&addr, 0, sizeof(struct sockaddr_storage));
2510 spin_lock(&cifs_tcp_ses_lock);
2511 cifs_sb = CIFS_SB(sb);
2512 tlink = cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
2513 if (IS_ERR(tlink)) {
2514 spin_unlock(&cifs_tcp_ses_lock);
2517 tcon = tlink_tcon(tlink);
2519 tcp_srv = ses->server;
2521 volume_info = mnt_data->vol;
2523 if (!volume_info->UNCip || !volume_info->UNC)
2526 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
2528 strlen(volume_info->UNCip),
2533 if (!match_server(tcp_srv, (struct sockaddr *)&addr, volume_info) ||
2534 !match_session(ses, volume_info) ||
2535 !match_tcon(tcon, volume_info->UNC)) {
2540 rc = compare_mount_options(sb, mnt_data);
2542 spin_unlock(&cifs_tcp_ses_lock);
2543 cifs_put_tlink(tlink);
2548 get_dfs_path(int xid, struct cifs_ses *pSesInfo, const char *old_path,
2549 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
2550 struct dfs_info3_param **preferrals, int remap)
2555 *pnum_referrals = 0;
2558 if (pSesInfo->ipc_tid == 0) {
2559 temp_unc = kmalloc(2 /* for slashes */ +
2560 strnlen(pSesInfo->serverName,
2561 SERVER_NAME_LEN_WITH_NULL * 2)
2562 + 1 + 4 /* slash IPC$ */ + 2,
2564 if (temp_unc == NULL)
2568 strcpy(temp_unc + 2, pSesInfo->serverName);
2569 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2570 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
2571 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
2575 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
2576 pnum_referrals, nls_codepage, remap);
2577 /* BB map targetUNCs to dfs_info3 structures, here or
2578 in CIFSGetDFSRefer BB */
2583 #ifdef CONFIG_DEBUG_LOCK_ALLOC
2584 static struct lock_class_key cifs_key[2];
2585 static struct lock_class_key cifs_slock_key[2];
2588 cifs_reclassify_socket4(struct socket *sock)
2590 struct sock *sk = sock->sk;
2591 BUG_ON(sock_owned_by_user(sk));
2592 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2593 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2597 cifs_reclassify_socket6(struct socket *sock)
2599 struct sock *sk = sock->sk;
2600 BUG_ON(sock_owned_by_user(sk));
2601 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2602 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2606 cifs_reclassify_socket4(struct socket *sock)
2611 cifs_reclassify_socket6(struct socket *sock)
2616 /* See RFC1001 section 14 on representation of Netbios names */
2617 static void rfc1002mangle(char *target, char *source, unsigned int length)
2621 for (i = 0, j = 0; i < (length); i++) {
2622 /* mask a nibble at a time and encode */
2623 target[j] = 'A' + (0x0F & (source[i] >> 4));
2624 target[j+1] = 'A' + (0x0F & source[i]);
2631 bind_socket(struct TCP_Server_Info *server)
2634 if (server->srcaddr.ss_family != AF_UNSPEC) {
2635 /* Bind to the specified local IP address */
2636 struct socket *socket = server->ssocket;
2637 rc = socket->ops->bind(socket,
2638 (struct sockaddr *) &server->srcaddr,
2639 sizeof(server->srcaddr));
2641 struct sockaddr_in *saddr4;
2642 struct sockaddr_in6 *saddr6;
2643 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2644 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2645 if (saddr6->sin6_family == AF_INET6)
2647 "Failed to bind to: %pI6c, error: %d\n",
2648 &saddr6->sin6_addr, rc);
2651 "Failed to bind to: %pI4, error: %d\n",
2652 &saddr4->sin_addr.s_addr, rc);
2659 ip_rfc1001_connect(struct TCP_Server_Info *server)
2663 * some servers require RFC1001 sessinit before sending
2664 * negprot - BB check reconnection in case where second
2665 * sessinit is sent but no second negprot
2667 struct rfc1002_session_packet *ses_init_buf;
2668 struct smb_hdr *smb_buf;
2669 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2672 ses_init_buf->trailer.session_req.called_len = 32;
2674 if (server->server_RFC1001_name &&
2675 server->server_RFC1001_name[0] != 0)
2676 rfc1002mangle(ses_init_buf->trailer.
2677 session_req.called_name,
2678 server->server_RFC1001_name,
2679 RFC1001_NAME_LEN_WITH_NULL);
2681 rfc1002mangle(ses_init_buf->trailer.
2682 session_req.called_name,
2683 DEFAULT_CIFS_CALLED_NAME,
2684 RFC1001_NAME_LEN_WITH_NULL);
2686 ses_init_buf->trailer.session_req.calling_len = 32;
2689 * calling name ends in null (byte 16) from old smb
2692 if (server->workstation_RFC1001_name &&
2693 server->workstation_RFC1001_name[0] != 0)
2694 rfc1002mangle(ses_init_buf->trailer.
2695 session_req.calling_name,
2696 server->workstation_RFC1001_name,
2697 RFC1001_NAME_LEN_WITH_NULL);
2699 rfc1002mangle(ses_init_buf->trailer.
2700 session_req.calling_name,
2702 RFC1001_NAME_LEN_WITH_NULL);
2704 ses_init_buf->trailer.session_req.scope1 = 0;
2705 ses_init_buf->trailer.session_req.scope2 = 0;
2706 smb_buf = (struct smb_hdr *)ses_init_buf;
2708 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2709 smb_buf->smb_buf_length = cpu_to_be32(0x81000044);
2710 rc = smb_send(server, smb_buf, 0x44);
2711 kfree(ses_init_buf);
2713 * RFC1001 layer in at least one server
2714 * requires very short break before negprot
2715 * presumably because not expecting negprot
2716 * to follow so fast. This is a simple
2717 * solution that works without
2718 * complicating the code and causes no
2719 * significant slowing down on mount
2722 usleep_range(1000, 2000);
2725 * else the negprot may still work without this
2726 * even though malloc failed
2733 generic_ip_connect(struct TCP_Server_Info *server)
2738 struct socket *socket = server->ssocket;
2739 struct sockaddr *saddr;
2741 saddr = (struct sockaddr *) &server->dstaddr;
2743 if (server->dstaddr.ss_family == AF_INET6) {
2744 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
2745 slen = sizeof(struct sockaddr_in6);
2748 sport = ((struct sockaddr_in *) saddr)->sin_port;
2749 slen = sizeof(struct sockaddr_in);
2753 if (socket == NULL) {
2754 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2755 IPPROTO_TCP, &socket, 1);
2757 cERROR(1, "Error %d creating socket", rc);
2758 server->ssocket = NULL;
2762 /* BB other socket options to set KEEPALIVE, NODELAY? */
2763 cFYI(1, "Socket created");
2764 server->ssocket = socket;
2765 socket->sk->sk_allocation = GFP_NOFS;
2766 if (sfamily == AF_INET6)
2767 cifs_reclassify_socket6(socket);
2769 cifs_reclassify_socket4(socket);
2772 rc = bind_socket(server);
2777 * Eventually check for other socket options to change from
2778 * the default. sock_setsockopt not used because it expects
2781 socket->sk->sk_rcvtimeo = 7 * HZ;
2782 socket->sk->sk_sndtimeo = 5 * HZ;
2784 /* make the bufsizes depend on wsize/rsize and max requests */
2785 if (server->noautotune) {
2786 if (socket->sk->sk_sndbuf < (200 * 1024))
2787 socket->sk->sk_sndbuf = 200 * 1024;
2788 if (socket->sk->sk_rcvbuf < (140 * 1024))
2789 socket->sk->sk_rcvbuf = 140 * 1024;
2792 if (server->tcp_nodelay) {
2794 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2795 (char *)&val, sizeof(val));
2797 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
2800 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
2801 socket->sk->sk_sndbuf,
2802 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
2804 rc = socket->ops->connect(socket, saddr, slen, 0);
2806 cFYI(1, "Error %d connecting to server", rc);
2807 sock_release(socket);
2808 server->ssocket = NULL;
2812 if (sport == htons(RFC1001_PORT))
2813 rc = ip_rfc1001_connect(server);
2819 ip_connect(struct TCP_Server_Info *server)
2822 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2823 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2825 if (server->dstaddr.ss_family == AF_INET6)
2826 sport = &addr6->sin6_port;
2828 sport = &addr->sin_port;
2833 /* try with 445 port at first */
2834 *sport = htons(CIFS_PORT);
2836 rc = generic_ip_connect(server);
2840 /* if it failed, try with 139 port */
2841 *sport = htons(RFC1001_PORT);
2844 return generic_ip_connect(server);
2847 void reset_cifs_unix_caps(int xid, struct cifs_tcon *tcon,
2848 struct cifs_sb_info *cifs_sb, struct smb_vol *vol_info)
2850 /* if we are reconnecting then should we check to see if
2851 * any requested capabilities changed locally e.g. via
2852 * remount but we can not do much about it here
2853 * if they have (even if we could detect it by the following)
2854 * Perhaps we could add a backpointer to array of sb from tcon
2855 * or if we change to make all sb to same share the same
2856 * sb as NFS - then we only have one backpointer to sb.
2857 * What if we wanted to mount the server share twice once with
2858 * and once without posixacls or posix paths? */
2859 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2861 if (vol_info && vol_info->no_linux_ext) {
2862 tcon->fsUnixInfo.Capability = 0;
2863 tcon->unix_ext = 0; /* Unix Extensions disabled */
2864 cFYI(1, "Linux protocol extensions disabled");
2866 } else if (vol_info)
2867 tcon->unix_ext = 1; /* Unix Extensions supported */
2869 if (tcon->unix_ext == 0) {
2870 cFYI(1, "Unix extensions disabled so not set on reconnect");
2874 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
2875 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2876 cFYI(1, "unix caps which server supports %lld", cap);
2877 /* check for reconnect case in which we do not
2878 want to change the mount behavior if we can avoid it */
2879 if (vol_info == NULL) {
2880 /* turn off POSIX ACL and PATHNAMES if not set
2881 originally at mount time */
2882 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2883 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2884 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2885 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2886 cERROR(1, "POSIXPATH support change");
2887 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2888 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2889 cERROR(1, "possible reconnect error");
2890 cERROR(1, "server disabled POSIX path support");
2894 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2895 cERROR(1, "per-share encryption not supported yet");
2897 cap &= CIFS_UNIX_CAP_MASK;
2898 if (vol_info && vol_info->no_psx_acl)
2899 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2900 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
2901 cFYI(1, "negotiated posix acl support");
2903 cifs_sb->mnt_cifs_flags |=
2904 CIFS_MOUNT_POSIXACL;
2907 if (vol_info && vol_info->posix_paths == 0)
2908 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2909 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
2910 cFYI(1, "negotiate posix pathnames");
2912 cifs_sb->mnt_cifs_flags |=
2913 CIFS_MOUNT_POSIX_PATHS;
2916 cFYI(1, "Negotiate caps 0x%x", (int)cap);
2917 #ifdef CONFIG_CIFS_DEBUG2
2918 if (cap & CIFS_UNIX_FCNTL_CAP)
2919 cFYI(1, "FCNTL cap");
2920 if (cap & CIFS_UNIX_EXTATTR_CAP)
2921 cFYI(1, "EXTATTR cap");
2922 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2923 cFYI(1, "POSIX path cap");
2924 if (cap & CIFS_UNIX_XATTR_CAP)
2925 cFYI(1, "XATTR cap");
2926 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
2927 cFYI(1, "POSIX ACL cap");
2928 if (cap & CIFS_UNIX_LARGE_READ_CAP)
2929 cFYI(1, "very large read cap");
2930 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
2931 cFYI(1, "very large write cap");
2932 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP)
2933 cFYI(1, "transport encryption cap");
2934 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2935 cFYI(1, "mandatory transport encryption cap");
2936 #endif /* CIFS_DEBUG2 */
2937 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
2938 if (vol_info == NULL) {
2939 cFYI(1, "resetting capabilities failed");
2941 cERROR(1, "Negotiating Unix capabilities "
2942 "with the server failed. Consider "
2943 "mounting with the Unix Extensions\n"
2944 "disabled, if problems are found, "
2945 "by specifying the nounix mount "
2952 void cifs_setup_cifs_sb(struct smb_vol *pvolume_info,
2953 struct cifs_sb_info *cifs_sb)
2955 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2957 spin_lock_init(&cifs_sb->tlink_tree_lock);
2958 cifs_sb->tlink_tree = RB_ROOT;
2961 * Temporarily set r/wsize for matching superblock. If we end up using
2962 * new sb then client will later negotiate it downward if needed.
2964 cifs_sb->rsize = pvolume_info->rsize;
2965 cifs_sb->wsize = pvolume_info->wsize;
2967 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2968 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2969 if (pvolume_info->backupuid_specified)
2970 cifs_sb->mnt_backupuid = pvolume_info->backupuid;
2971 if (pvolume_info->backupgid_specified)
2972 cifs_sb->mnt_backupgid = pvolume_info->backupgid;
2973 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2974 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
2975 cFYI(1, "file mode: 0x%hx dir mode: 0x%hx",
2976 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
2978 cifs_sb->actimeo = pvolume_info->actimeo;
2979 cifs_sb->local_nls = pvolume_info->local_nls;
2981 if (pvolume_info->noperm)
2982 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2983 if (pvolume_info->setuids)
2984 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2985 if (pvolume_info->server_ino)
2986 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2987 if (pvolume_info->remap)
2988 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2989 if (pvolume_info->no_xattr)
2990 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2991 if (pvolume_info->sfu_emul)
2992 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2993 if (pvolume_info->nobrl)
2994 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
2995 if (pvolume_info->nostrictsync)
2996 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
2997 if (pvolume_info->mand_lock)
2998 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
2999 if (pvolume_info->rwpidforward)
3000 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_RWPIDFORWARD;
3001 if (pvolume_info->cifs_acl)
3002 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
3003 if (pvolume_info->backupuid_specified)
3004 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPUID;
3005 if (pvolume_info->backupgid_specified)
3006 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPGID;
3007 if (pvolume_info->override_uid)
3008 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
3009 if (pvolume_info->override_gid)
3010 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
3011 if (pvolume_info->dynperm)
3012 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
3013 if (pvolume_info->fsc)
3014 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
3015 if (pvolume_info->multiuser)
3016 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
3017 CIFS_MOUNT_NO_PERM);
3018 if (pvolume_info->strict_io)
3019 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
3020 if (pvolume_info->direct_io) {
3021 cFYI(1, "mounting share using direct i/o");
3022 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
3024 if (pvolume_info->mfsymlinks) {
3025 if (pvolume_info->sfu_emul) {
3026 cERROR(1, "mount option mfsymlinks ignored if sfu "
3027 "mount option is used");
3029 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
3033 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
3034 cERROR(1, "mount option dynperm ignored if cifsacl "
3035 "mount option supported");
3039 * When the server supports very large reads and writes via POSIX extensions,
3040 * we can allow up to 2^24-1, minus the size of a READ/WRITE_AND_X header, not
3041 * including the RFC1001 length.
3043 * Note that this might make for "interesting" allocation problems during
3044 * writeback however as we have to allocate an array of pointers for the
3045 * pages. A 16M write means ~32kb page array with PAGE_CACHE_SIZE == 4096.
3047 * For reads, there is a similar problem as we need to allocate an array
3048 * of kvecs to handle the receive, though that should only need to be done
3051 #define CIFS_MAX_WSIZE ((1<<24) - 1 - sizeof(WRITE_REQ) + 4)
3052 #define CIFS_MAX_RSIZE ((1<<24) - sizeof(READ_RSP) + 4)
3055 * When the server doesn't allow large posix writes, only allow a rsize/wsize
3056 * of 2^17-1 minus the size of the call header. That allows for a read or
3057 * write up to the maximum size described by RFC1002.
3059 #define CIFS_MAX_RFC1002_WSIZE ((1<<17) - 1 - sizeof(WRITE_REQ) + 4)
3060 #define CIFS_MAX_RFC1002_RSIZE ((1<<17) - 1 - sizeof(READ_RSP) + 4)
3063 * The default wsize is 1M. find_get_pages seems to return a maximum of 256
3064 * pages in a single call. With PAGE_CACHE_SIZE == 4k, this means we can fill
3065 * a single wsize request with a single call.
3067 #define CIFS_DEFAULT_IOSIZE (1024 * 1024)
3070 * Windows only supports a max of 60kb reads and 65535 byte writes. Default to
3071 * those values when posix extensions aren't in force. In actuality here, we
3072 * use 65536 to allow for a write that is a multiple of 4k. Most servers seem
3073 * to be ok with the extra byte even though Windows doesn't send writes that
3078 * http://blogs.msdn.com/b/openspecification/archive/2009/04/10/smb-maximum-transmit-buffer-size-and-performance-tuning.aspx
3080 #define CIFS_DEFAULT_NON_POSIX_RSIZE (60 * 1024)
3081 #define CIFS_DEFAULT_NON_POSIX_WSIZE (65536)
3084 cifs_negotiate_wsize(struct cifs_tcon *tcon, struct smb_vol *pvolume_info)
3086 __u64 unix_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
3087 struct TCP_Server_Info *server = tcon->ses->server;
3090 /* start with specified wsize, or default */
3091 if (pvolume_info->wsize)
3092 wsize = pvolume_info->wsize;
3093 else if (tcon->unix_ext && (unix_cap & CIFS_UNIX_LARGE_WRITE_CAP))
3094 wsize = CIFS_DEFAULT_IOSIZE;
3096 wsize = CIFS_DEFAULT_NON_POSIX_WSIZE;
3098 /* can server support 24-bit write sizes? (via UNIX extensions) */
3099 if (!tcon->unix_ext || !(unix_cap & CIFS_UNIX_LARGE_WRITE_CAP))
3100 wsize = min_t(unsigned int, wsize, CIFS_MAX_RFC1002_WSIZE);
3103 * no CAP_LARGE_WRITE_X or is signing enabled without CAP_UNIX set?
3104 * Limit it to max buffer offered by the server, minus the size of the
3105 * WRITEX header, not including the 4 byte RFC1001 length.
3107 if (!(server->capabilities & CAP_LARGE_WRITE_X) ||
3108 (!(server->capabilities & CAP_UNIX) &&
3109 (server->sec_mode & (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED))))
3110 wsize = min_t(unsigned int, wsize,
3111 server->maxBuf - sizeof(WRITE_REQ) + 4);
3113 /* hard limit of CIFS_MAX_WSIZE */
3114 wsize = min_t(unsigned int, wsize, CIFS_MAX_WSIZE);
3120 cifs_negotiate_rsize(struct cifs_tcon *tcon, struct smb_vol *pvolume_info)
3122 __u64 unix_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
3123 struct TCP_Server_Info *server = tcon->ses->server;
3124 unsigned int rsize, defsize;
3127 * Set default value...
3129 * HACK alert! Ancient servers have very small buffers. Even though
3130 * MS-CIFS indicates that servers are only limited by the client's
3131 * bufsize for reads, testing against win98se shows that it throws
3132 * INVALID_PARAMETER errors if you try to request too large a read.
3134 * If the server advertises a MaxBufferSize of less than one page,
3135 * assume that it also can't satisfy reads larger than that either.
3137 * FIXME: Is there a better heuristic for this?
3139 if (tcon->unix_ext && (unix_cap & CIFS_UNIX_LARGE_READ_CAP))
3140 defsize = CIFS_DEFAULT_IOSIZE;
3141 else if (server->capabilities & CAP_LARGE_READ_X)
3142 defsize = CIFS_DEFAULT_NON_POSIX_RSIZE;
3143 else if (server->maxBuf >= PAGE_CACHE_SIZE)
3144 defsize = CIFSMaxBufSize;
3146 defsize = server->maxBuf - sizeof(READ_RSP);
3148 rsize = pvolume_info->rsize ? pvolume_info->rsize : defsize;
3151 * no CAP_LARGE_READ_X? Then MS-CIFS states that we must limit this to
3152 * the client's MaxBufferSize.
3154 if (!(server->capabilities & CAP_LARGE_READ_X))
3155 rsize = min_t(unsigned int, CIFSMaxBufSize, rsize);
3157 /* hard limit of CIFS_MAX_RSIZE */
3158 rsize = min_t(unsigned int, rsize, CIFS_MAX_RSIZE);
3164 is_path_accessible(int xid, struct cifs_tcon *tcon,
3165 struct cifs_sb_info *cifs_sb, const char *full_path)
3168 FILE_ALL_INFO *pfile_info;
3170 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
3171 if (pfile_info == NULL)
3174 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
3175 0 /* not legacy */, cifs_sb->local_nls,
3176 cifs_sb->mnt_cifs_flags &
3177 CIFS_MOUNT_MAP_SPECIAL_CHR);
3179 if (rc == -EOPNOTSUPP || rc == -EINVAL)
3180 rc = SMBQueryInformation(xid, tcon, full_path, pfile_info,
3181 cifs_sb->local_nls, cifs_sb->mnt_cifs_flags &
3182 CIFS_MOUNT_MAP_SPECIAL_CHR);
3188 cleanup_volume_info_contents(struct smb_vol *volume_info)
3190 kfree(volume_info->username);
3191 kzfree(volume_info->password);
3192 if (volume_info->UNCip != volume_info->UNC + 2)
3193 kfree(volume_info->UNCip);
3194 kfree(volume_info->UNC);
3195 kfree(volume_info->domainname);
3196 kfree(volume_info->iocharset);
3197 kfree(volume_info->prepath);
3201 cifs_cleanup_volume_info(struct smb_vol *volume_info)
3205 cleanup_volume_info_contents(volume_info);
3210 #ifdef CONFIG_CIFS_DFS_UPCALL
3211 /* build_path_to_root returns full path to root when
3212 * we do not have an exiting connection (tcon) */
3214 build_unc_path_to_root(const struct smb_vol *vol,
3215 const struct cifs_sb_info *cifs_sb)
3217 char *full_path, *pos;
3218 unsigned int pplen = vol->prepath ? strlen(vol->prepath) : 0;
3219 unsigned int unc_len = strnlen(vol->UNC, MAX_TREE_SIZE + 1);
3221 full_path = kmalloc(unc_len + pplen + 1, GFP_KERNEL);
3222 if (full_path == NULL)
3223 return ERR_PTR(-ENOMEM);
3225 strncpy(full_path, vol->UNC, unc_len);
3226 pos = full_path + unc_len;
3229 strncpy(pos, vol->prepath, pplen);
3233 *pos = '\0'; /* add trailing null */
3234 convert_delimiter(full_path, CIFS_DIR_SEP(cifs_sb));
3235 cFYI(1, "%s: full_path=%s", __func__, full_path);
3240 * Perform a dfs referral query for a share and (optionally) prefix
3242 * If a referral is found, cifs_sb->mountdata will be (re-)allocated
3243 * to a string containing updated options for the submount. Otherwise it
3244 * will be left untouched.
3246 * Returns the rc from get_dfs_path to the caller, which can be used to
3247 * determine whether there were referrals.
3250 expand_dfs_referral(int xid, struct cifs_ses *pSesInfo,
3251 struct smb_vol *volume_info, struct cifs_sb_info *cifs_sb,
3255 unsigned int num_referrals = 0;
3256 struct dfs_info3_param *referrals = NULL;
3257 char *full_path = NULL, *ref_path = NULL, *mdata = NULL;
3259 full_path = build_unc_path_to_root(volume_info, cifs_sb);
3260 if (IS_ERR(full_path))
3261 return PTR_ERR(full_path);
3263 /* For DFS paths, skip the first '\' of the UNC */
3264 ref_path = check_prefix ? full_path + 1 : volume_info->UNC + 1;
3266 rc = get_dfs_path(xid, pSesInfo , ref_path, cifs_sb->local_nls,
3267 &num_referrals, &referrals,
3268 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
3270 if (!rc && num_referrals > 0) {
3271 char *fake_devname = NULL;
3273 mdata = cifs_compose_mount_options(cifs_sb->mountdata,
3274 full_path + 1, referrals,
3277 free_dfs_info_array(referrals, num_referrals);
3279 if (IS_ERR(mdata)) {
3280 rc = PTR_ERR(mdata);
3283 cleanup_volume_info_contents(volume_info);
3284 memset(volume_info, '\0', sizeof(*volume_info));
3285 rc = cifs_setup_volume_info(volume_info, mdata,
3288 kfree(fake_devname);
3289 kfree(cifs_sb->mountdata);
3290 cifs_sb->mountdata = mdata;
3298 cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
3299 const char *devname)
3303 if (cifs_parse_mount_options(mount_data, devname, volume_info))
3306 if (volume_info->nullauth) {
3307 cFYI(1, "Anonymous login");
3308 kfree(volume_info->username);
3309 volume_info->username = NULL;
3310 } else if (volume_info->username) {
3311 /* BB fixme parse for domain name here */
3312 cFYI(1, "Username: %s", volume_info->username);
3314 cifserror("No username specified");
3315 /* In userspace mount helper we can get user name from alternate
3316 locations such as env variables and files on disk */
3320 /* this is needed for ASCII cp to Unicode converts */
3321 if (volume_info->iocharset == NULL) {
3322 /* load_nls_default cannot return null */
3323 volume_info->local_nls = load_nls_default();
3325 volume_info->local_nls = load_nls(volume_info->iocharset);
3326 if (volume_info->local_nls == NULL) {
3327 cERROR(1, "CIFS mount error: iocharset %s not found",
3328 volume_info->iocharset);
3337 cifs_get_volume_info(char *mount_data, const char *devname)
3340 struct smb_vol *volume_info;
3342 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
3344 return ERR_PTR(-ENOMEM);
3346 rc = cifs_setup_volume_info(volume_info, mount_data, devname);
3348 cifs_cleanup_volume_info(volume_info);
3349 volume_info = ERR_PTR(rc);
3355 /* make sure ra_pages is a multiple of rsize */
3356 static inline unsigned int
3357 cifs_ra_pages(struct cifs_sb_info *cifs_sb)
3360 unsigned int rsize_pages = cifs_sb->rsize / PAGE_CACHE_SIZE;
3362 if (rsize_pages >= default_backing_dev_info.ra_pages)
3363 return default_backing_dev_info.ra_pages;
3364 else if (rsize_pages == 0)
3367 reads = default_backing_dev_info.ra_pages / rsize_pages;
3368 return reads * rsize_pages;
3372 cifs_mount(struct cifs_sb_info *cifs_sb, struct smb_vol *volume_info)
3376 struct cifs_ses *pSesInfo;
3377 struct cifs_tcon *tcon;
3378 struct TCP_Server_Info *srvTcp;
3380 struct tcon_link *tlink;
3381 #ifdef CONFIG_CIFS_DFS_UPCALL
3382 int referral_walks_count = 0;
3385 rc = bdi_setup_and_register(&cifs_sb->bdi, "cifs", BDI_CAP_MAP_COPY);
3389 #ifdef CONFIG_CIFS_DFS_UPCALL
3391 /* cleanup activities if we're chasing a referral */
3392 if (referral_walks_count) {
3394 cifs_put_tcon(tcon);
3396 cifs_put_smb_ses(pSesInfo);
3409 /* get a reference to a tcp session */
3410 srvTcp = cifs_get_tcp_session(volume_info);
3411 if (IS_ERR(srvTcp)) {
3412 rc = PTR_ERR(srvTcp);
3413 bdi_destroy(&cifs_sb->bdi);
3417 /* get a reference to a SMB session */
3418 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
3419 if (IS_ERR(pSesInfo)) {
3420 rc = PTR_ERR(pSesInfo);
3422 goto mount_fail_check;
3425 /* search for existing tcon to this server share */
3426 tcon = cifs_get_tcon(pSesInfo, volume_info);
3430 goto remote_path_check;
3433 /* tell server which Unix caps we support */
3434 if (tcon->ses->capabilities & CAP_UNIX) {
3435 /* reset of caps checks mount to see if unix extensions
3436 disabled for just this mount */
3437 reset_cifs_unix_caps(xid, tcon, cifs_sb, volume_info);
3438 if ((tcon->ses->server->tcpStatus == CifsNeedReconnect) &&
3439 (le64_to_cpu(tcon->fsUnixInfo.Capability) &
3440 CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)) {
3442 goto mount_fail_check;
3445 tcon->unix_ext = 0; /* server does not support them */
3447 /* do not care if following two calls succeed - informational */
3449 CIFSSMBQFSDeviceInfo(xid, tcon);
3450 CIFSSMBQFSAttributeInfo(xid, tcon);
3453 cifs_sb->wsize = cifs_negotiate_wsize(tcon, volume_info);
3454 cifs_sb->rsize = cifs_negotiate_rsize(tcon, volume_info);
3456 /* tune readahead according to rsize */
3457 cifs_sb->bdi.ra_pages = cifs_ra_pages(cifs_sb);
3460 #ifdef CONFIG_CIFS_DFS_UPCALL
3462 * Perform an unconditional check for whether there are DFS
3463 * referrals for this path without prefix, to provide support
3464 * for DFS referrals from w2k8 servers which don't seem to respond
3465 * with PATH_NOT_COVERED to requests that include the prefix.
3466 * Chase the referral if found, otherwise continue normally.
3468 if (referral_walks_count == 0) {
3469 int refrc = expand_dfs_referral(xid, pSesInfo, volume_info,
3472 referral_walks_count++;
3473 goto try_mount_again;
3478 /* check if a whole path is not remote */
3480 /* build_path_to_root works only when we have a valid tcon */
3481 full_path = cifs_build_path_to_root(volume_info, cifs_sb, tcon);
3482 if (full_path == NULL) {
3484 goto mount_fail_check;
3486 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
3487 if (rc != 0 && rc != -EREMOTE) {
3489 goto mount_fail_check;
3494 /* get referral if needed */
3495 if (rc == -EREMOTE) {
3496 #ifdef CONFIG_CIFS_DFS_UPCALL
3497 if (referral_walks_count > MAX_NESTED_LINKS) {
3499 * BB: when we implement proper loop detection,
3500 * we will remove this check. But now we need it
3501 * to prevent an indefinite loop if 'DFS tree' is
3502 * misconfigured (i.e. has loops).
3505 goto mount_fail_check;
3508 rc = expand_dfs_referral(xid, pSesInfo, volume_info, cifs_sb,
3512 referral_walks_count++;
3513 goto try_mount_again;
3515 goto mount_fail_check;
3516 #else /* No DFS support, return error on mount */
3522 goto mount_fail_check;
3524 /* now, hang the tcon off of the superblock */
3525 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
3526 if (tlink == NULL) {
3528 goto mount_fail_check;
3531 tlink->tl_uid = pSesInfo->linux_uid;
3532 tlink->tl_tcon = tcon;
3533 tlink->tl_time = jiffies;
3534 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
3535 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3537 cifs_sb->master_tlink = tlink;
3538 spin_lock(&cifs_sb->tlink_tree_lock);
3539 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3540 spin_unlock(&cifs_sb->tlink_tree_lock);
3542 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3546 /* on error free sesinfo and tcon struct if needed */
3548 /* If find_unc succeeded then rc == 0 so we can not end */
3549 /* up accidentally freeing someone elses tcon struct */
3551 cifs_put_tcon(tcon);
3553 cifs_put_smb_ses(pSesInfo);
3555 cifs_put_tcp_session(srvTcp);
3556 bdi_destroy(&cifs_sb->bdi);
3565 * Issue a TREE_CONNECT request. Note that for IPC$ shares, that the tcon
3566 * pointer may be NULL.
3569 CIFSTCon(unsigned int xid, struct cifs_ses *ses,
3570 const char *tree, struct cifs_tcon *tcon,
3571 const struct nls_table *nls_codepage)
3573 struct smb_hdr *smb_buffer;
3574 struct smb_hdr *smb_buffer_response;
3577 unsigned char *bcc_ptr;
3580 __u16 bytes_left, count;
3585 smb_buffer = cifs_buf_get();
3586 if (smb_buffer == NULL)
3589 smb_buffer_response = smb_buffer;
3591 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
3592 NULL /*no tid */ , 4 /*wct */ );
3594 smb_buffer->Mid = GetNextMid(ses->server);
3595 smb_buffer->Uid = ses->Suid;
3596 pSMB = (TCONX_REQ *) smb_buffer;
3597 pSMBr = (TCONX_RSP *) smb_buffer_response;
3599 pSMB->AndXCommand = 0xFF;
3600 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
3601 bcc_ptr = &pSMB->Password[0];
3602 if (!tcon || (ses->server->sec_mode & SECMODE_USER)) {
3603 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
3604 *bcc_ptr = 0; /* password is null byte */
3605 bcc_ptr++; /* skip password */
3606 /* already aligned so no need to do it below */
3608 pSMB->PasswordLength = cpu_to_le16(CIFS_AUTH_RESP_SIZE);
3609 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
3610 specified as required (when that support is added to
3611 the vfs in the future) as only NTLM or the much
3612 weaker LANMAN (which we do not send by default) is accepted
3613 by Samba (not sure whether other servers allow
3614 NTLMv2 password here) */
3615 #ifdef CONFIG_CIFS_WEAK_PW_HASH
3616 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
3617 (ses->server->secType == LANMAN))
3618 calc_lanman_hash(tcon->password, ses->server->cryptkey,
3619 ses->server->sec_mode &
3620 SECMODE_PW_ENCRYPT ? true : false,
3623 #endif /* CIFS_WEAK_PW_HASH */
3624 rc = SMBNTencrypt(tcon->password, ses->server->cryptkey,
3625 bcc_ptr, nls_codepage);
3627 bcc_ptr += CIFS_AUTH_RESP_SIZE;
3628 if (ses->capabilities & CAP_UNICODE) {
3629 /* must align unicode strings */
3630 *bcc_ptr = 0; /* null byte password */
3635 if (ses->server->sec_mode &
3636 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
3637 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3639 if (ses->capabilities & CAP_STATUS32) {
3640 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3642 if (ses->capabilities & CAP_DFS) {
3643 smb_buffer->Flags2 |= SMBFLG2_DFS;
3645 if (ses->capabilities & CAP_UNICODE) {
3646 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3648 cifs_strtoUTF16((__le16 *) bcc_ptr, tree,
3649 6 /* max utf8 char length in bytes */ *
3650 (/* server len*/ + 256 /* share len */), nls_codepage);
3651 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
3652 bcc_ptr += 2; /* skip trailing null */
3653 } else { /* ASCII */
3654 strcpy(bcc_ptr, tree);
3655 bcc_ptr += strlen(tree) + 1;
3657 strcpy(bcc_ptr, "?????");
3658 bcc_ptr += strlen("?????");
3660 count = bcc_ptr - &pSMB->Password[0];
3661 pSMB->hdr.smb_buf_length = cpu_to_be32(be32_to_cpu(
3662 pSMB->hdr.smb_buf_length) + count);
3663 pSMB->ByteCount = cpu_to_le16(count);
3665 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
3668 /* above now done in SendReceive */
3669 if ((rc == 0) && (tcon != NULL)) {
3672 tcon->tidStatus = CifsGood;
3673 tcon->need_reconnect = false;
3674 tcon->tid = smb_buffer_response->Tid;
3675 bcc_ptr = pByteArea(smb_buffer_response);
3676 bytes_left = get_bcc(smb_buffer_response);
3677 length = strnlen(bcc_ptr, bytes_left - 2);
3678 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3684 /* skip service field (NB: this field is always ASCII) */
3686 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3687 (bcc_ptr[2] == 'C')) {
3688 cFYI(1, "IPC connection");
3691 } else if (length == 2) {
3692 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3693 /* the most common case */
3694 cFYI(1, "disk share connection");
3697 bcc_ptr += length + 1;
3698 bytes_left -= (length + 1);
3699 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
3701 /* mostly informational -- no need to fail on error here */
3702 kfree(tcon->nativeFileSystem);
3703 tcon->nativeFileSystem = cifs_strndup_from_utf16(bcc_ptr,
3704 bytes_left, is_unicode,
3707 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
3709 if ((smb_buffer_response->WordCount == 3) ||
3710 (smb_buffer_response->WordCount == 7))
3711 /* field is in same location */
3712 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3715 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
3716 } else if ((rc == 0) && tcon == NULL) {
3717 /* all we need to save for IPC$ connection */
3718 ses->ipc_tid = smb_buffer_response->Tid;
3721 cifs_buf_release(smb_buffer);
3726 cifs_umount(struct cifs_sb_info *cifs_sb)
3728 struct rb_root *root = &cifs_sb->tlink_tree;
3729 struct rb_node *node;
3730 struct tcon_link *tlink;
3732 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3734 spin_lock(&cifs_sb->tlink_tree_lock);
3735 while ((node = rb_first(root))) {
3736 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3737 cifs_get_tlink(tlink);
3738 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3739 rb_erase(node, root);
3741 spin_unlock(&cifs_sb->tlink_tree_lock);
3742 cifs_put_tlink(tlink);
3743 spin_lock(&cifs_sb->tlink_tree_lock);
3745 spin_unlock(&cifs_sb->tlink_tree_lock);
3747 bdi_destroy(&cifs_sb->bdi);
3748 kfree(cifs_sb->mountdata);
3749 unload_nls(cifs_sb->local_nls);
3753 int cifs_negotiate_protocol(unsigned int xid, struct cifs_ses *ses)
3756 struct TCP_Server_Info *server = ses->server;
3758 /* only send once per connect */
3759 if (server->maxBuf != 0)
3762 rc = CIFSSMBNegotiate(xid, ses);
3763 if (rc == -EAGAIN) {
3764 /* retry only once on 1st time connection */
3765 rc = CIFSSMBNegotiate(xid, ses);
3770 spin_lock(&GlobalMid_Lock);
3771 if (server->tcpStatus == CifsNeedNegotiate)
3772 server->tcpStatus = CifsGood;
3775 spin_unlock(&GlobalMid_Lock);
3783 int cifs_setup_session(unsigned int xid, struct cifs_ses *ses,
3784 struct nls_table *nls_info)
3787 struct TCP_Server_Info *server = ses->server;
3790 ses->capabilities = server->capabilities;
3791 if (linuxExtEnabled == 0)
3792 ses->capabilities &= (~CAP_UNIX);
3794 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3795 server->sec_mode, server->capabilities, server->timeAdj);
3797 rc = CIFS_SessSetup(xid, ses, nls_info);
3799 cERROR(1, "Send error in SessSetup = %d", rc);
3801 mutex_lock(&ses->server->srv_mutex);
3802 if (!server->session_estab) {
3803 server->session_key.response = ses->auth_key.response;
3804 server->session_key.len = ses->auth_key.len;
3805 server->sequence_number = 0x2;
3806 server->session_estab = true;
3807 ses->auth_key.response = NULL;
3809 mutex_unlock(&server->srv_mutex);
3811 cFYI(1, "CIFS Session Established successfully");
3812 spin_lock(&GlobalMid_Lock);
3813 ses->status = CifsGood;
3814 ses->need_reconnect = false;
3815 spin_unlock(&GlobalMid_Lock);
3818 kfree(ses->auth_key.response);
3819 ses->auth_key.response = NULL;
3820 ses->auth_key.len = 0;
3821 kfree(ses->ntlmssp);
3822 ses->ntlmssp = NULL;
3828 cifs_set_vol_auth(struct smb_vol *vol, struct cifs_ses *ses)
3830 switch (ses->server->secType) {
3832 vol->secFlg = CIFSSEC_MUST_KRB5;
3835 vol->secFlg = CIFSSEC_MUST_NTLMV2;
3838 vol->secFlg = CIFSSEC_MUST_NTLM;
3841 vol->secFlg = CIFSSEC_MUST_NTLMSSP;
3844 vol->secFlg = CIFSSEC_MUST_LANMAN;
3848 return cifs_set_cifscreds(vol, ses);
3851 static struct cifs_tcon *
3852 cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3855 struct cifs_tcon *master_tcon = cifs_sb_master_tcon(cifs_sb);
3856 struct cifs_ses *ses;
3857 struct cifs_tcon *tcon = NULL;
3858 struct smb_vol *vol_info;
3860 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3861 if (vol_info == NULL)
3862 return ERR_PTR(-ENOMEM);
3864 vol_info->local_nls = cifs_sb->local_nls;
3865 vol_info->linux_uid = fsuid;
3866 vol_info->cred_uid = fsuid;
3867 vol_info->UNC = master_tcon->treeName;
3868 vol_info->retry = master_tcon->retry;
3869 vol_info->nocase = master_tcon->nocase;
3870 vol_info->local_lease = master_tcon->local_lease;
3871 vol_info->no_linux_ext = !master_tcon->unix_ext;
3873 rc = cifs_set_vol_auth(vol_info, master_tcon->ses);
3879 /* get a reference for the same TCP session */
3880 spin_lock(&cifs_tcp_ses_lock);
3881 ++master_tcon->ses->server->srv_count;
3882 spin_unlock(&cifs_tcp_ses_lock);
3884 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3886 tcon = (struct cifs_tcon *)ses;
3887 cifs_put_tcp_session(master_tcon->ses->server);
3891 tcon = cifs_get_tcon(ses, vol_info);
3893 cifs_put_smb_ses(ses);
3897 if (ses->capabilities & CAP_UNIX)
3898 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3900 kfree(vol_info->username);
3901 kfree(vol_info->password);
3908 cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3910 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3914 cifs_sb_tcon_pending_wait(void *unused)
3917 return signal_pending(current) ? -ERESTARTSYS : 0;
3920 /* find and return a tlink with given uid */
3921 static struct tcon_link *
3922 tlink_rb_search(struct rb_root *root, uid_t uid)
3924 struct rb_node *node = root->rb_node;
3925 struct tcon_link *tlink;
3928 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3930 if (tlink->tl_uid > uid)
3931 node = node->rb_left;
3932 else if (tlink->tl_uid < uid)
3933 node = node->rb_right;
3940 /* insert a tcon_link into the tree */
3942 tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
3944 struct rb_node **new = &(root->rb_node), *parent = NULL;
3945 struct tcon_link *tlink;
3948 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
3951 if (tlink->tl_uid > new_tlink->tl_uid)
3952 new = &((*new)->rb_left);
3954 new = &((*new)->rb_right);
3957 rb_link_node(&new_tlink->tl_rbnode, parent, new);
3958 rb_insert_color(&new_tlink->tl_rbnode, root);
3962 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3965 * If the superblock doesn't refer to a multiuser mount, then just return
3966 * the master tcon for the mount.
3968 * First, search the rbtree for an existing tcon for this fsuid. If one
3969 * exists, then check to see if it's pending construction. If it is then wait
3970 * for construction to complete. Once it's no longer pending, check to see if
3971 * it failed and either return an error or retry construction, depending on
3974 * If one doesn't exist then insert a new tcon_link struct into the tree and
3975 * try to construct a new one.
3978 cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3981 uid_t fsuid = current_fsuid();
3982 struct tcon_link *tlink, *newtlink;
3984 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3985 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3987 spin_lock(&cifs_sb->tlink_tree_lock);
3988 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
3990 cifs_get_tlink(tlink);
3991 spin_unlock(&cifs_sb->tlink_tree_lock);
3993 if (tlink == NULL) {
3994 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3995 if (newtlink == NULL)
3996 return ERR_PTR(-ENOMEM);
3997 newtlink->tl_uid = fsuid;
3998 newtlink->tl_tcon = ERR_PTR(-EACCES);
3999 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
4000 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
4001 cifs_get_tlink(newtlink);
4003 spin_lock(&cifs_sb->tlink_tree_lock);
4004 /* was one inserted after previous search? */
4005 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
4007 cifs_get_tlink(tlink);
4008 spin_unlock(&cifs_sb->tlink_tree_lock);
4010 goto wait_for_construction;
4013 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
4014 spin_unlock(&cifs_sb->tlink_tree_lock);
4016 wait_for_construction:
4017 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
4018 cifs_sb_tcon_pending_wait,
4019 TASK_INTERRUPTIBLE);
4021 cifs_put_tlink(tlink);
4022 return ERR_PTR(ret);
4025 /* if it's good, return it */
4026 if (!IS_ERR(tlink->tl_tcon))
4029 /* return error if we tried this already recently */
4030 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
4031 cifs_put_tlink(tlink);
4032 return ERR_PTR(-EACCES);
4035 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
4036 goto wait_for_construction;
4039 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
4040 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
4041 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
4043 if (IS_ERR(tlink->tl_tcon)) {
4044 cifs_put_tlink(tlink);
4045 return ERR_PTR(-EACCES);
4052 * periodic workqueue job that scans tcon_tree for a superblock and closes
4056 cifs_prune_tlinks(struct work_struct *work)
4058 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
4060 struct rb_root *root = &cifs_sb->tlink_tree;
4061 struct rb_node *node = rb_first(root);
4062 struct rb_node *tmp;
4063 struct tcon_link *tlink;
4066 * Because we drop the spinlock in the loop in order to put the tlink
4067 * it's not guarded against removal of links from the tree. The only
4068 * places that remove entries from the tree are this function and
4069 * umounts. Because this function is non-reentrant and is canceled
4070 * before umount can proceed, this is safe.
4072 spin_lock(&cifs_sb->tlink_tree_lock);
4073 node = rb_first(root);
4074 while (node != NULL) {
4076 node = rb_next(tmp);
4077 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
4079 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
4080 atomic_read(&tlink->tl_count) != 0 ||
4081 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
4084 cifs_get_tlink(tlink);
4085 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
4086 rb_erase(tmp, root);
4088 spin_unlock(&cifs_sb->tlink_tree_lock);
4089 cifs_put_tlink(tlink);
4090 spin_lock(&cifs_sb->tlink_tree_lock);
4092 spin_unlock(&cifs_sb->tlink_tree_lock);
4094 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,