[mirror_ubuntu-bionic-kernel.git] / fs / autofs4 / waitq.c

/*
 * Copyright 1997-1998 Transmeta Corporation -- All Rights Reserved
 * Copyright 2001-2006 Ian Kent <raven@themaw.net>
 *
 * This file is part of the Linux kernel and is made available under
 * the terms of the GNU General Public License, version 2, or at your
 * option, any later version, incorporated herein by reference.
 */

#include <linux/slab.h>
#include <linux/time.h>
#include <linux/signal.h>
#include <linux/sched/signal.h>
#include <linux/file.h>
#include "autofs_i.h"

/* We make this a static variable rather than a part of the superblock; it
 * is better if we don't reassign numbers easily even across filesystems
 */
static autofs_wqt_t autofs4_next_wait_queue = 1;

/* These are the signals we allow interrupting a pending mount */
#define SHUTDOWN_SIGS	(sigmask(SIGKILL) | sigmask(SIGINT) | sigmask(SIGQUIT))

void autofs4_catatonic_mode(struct autofs_sb_info *sbi)
{
	struct autofs_wait_queue *wq, *nwq;

	mutex_lock(&sbi->wq_mutex);
	if (sbi->catatonic) {
		mutex_unlock(&sbi->wq_mutex);
		return;
	}

	pr_debug("entering catatonic mode\n");

	sbi->catatonic = 1;
	wq = sbi->queues;
	sbi->queues = NULL;	/* Erase all wait queues */
	while (wq) {
		nwq = wq->next;
		wq->status = -ENOENT; /* Magic is gone - report failure */
		kfree(wq->name.name);
		wq->name.name = NULL;
		wq->wait_ctr--;
		wake_up_interruptible(&wq->queue);
		wq = nwq;
	}
	fput(sbi->pipe);	/* Close the pipe */
	sbi->pipe = NULL;
	sbi->pipefd = -1;
	mutex_unlock(&sbi->wq_mutex);
}

static int autofs4_write(struct autofs_sb_info *sbi,
			 struct file *file, const void *addr, int bytes)
{
	unsigned long sigpipe, flags;
	const char *data = (const char *)addr;
	ssize_t wr = 0;

	sigpipe = sigismember(&current->pending.signal, SIGPIPE);

	mutex_lock(&sbi->pipe_mutex);
	while (bytes) {
		wr = __kernel_write(file, data, bytes, &file->f_pos);
		if (wr <= 0)
			break;
		data += wr;
		bytes -= wr;
	}
	mutex_unlock(&sbi->pipe_mutex);

	/* Keep the currently executing process from receiving a
	 * SIGPIPE unless it was already supposed to get one
	 */
	if (wr == -EPIPE && !sigpipe) {
		spin_lock_irqsave(&current->sighand->siglock, flags);
		sigdelset(&current->pending.signal, SIGPIPE);
		recalc_sigpending();
		spin_unlock_irqrestore(&current->sighand->siglock, flags);
	}

	return (bytes > 0);
}

static void autofs4_notify_daemon(struct autofs_sb_info *sbi,
				 struct autofs_wait_queue *wq,
				 int type)
{
	union {
		struct autofs_packet_hdr hdr;
		union autofs_packet_union v4_pkt;
		union autofs_v5_packet_union v5_pkt;
	} pkt;
	struct file *pipe = NULL;
	size_t pktsz;

	pr_debug("wait id = 0x%08lx, name = %.*s, type=%d\n",
		 (unsigned long) wq->wait_queue_token,
		 wq->name.len, wq->name.name, type);

	memset(&pkt, 0, sizeof(pkt)); /* For security reasons */

	pkt.hdr.proto_version = sbi->version;
	pkt.hdr.type = type;

	switch (type) {
	/* Kernel protocol v4 missing and expire packets */
	case autofs_ptype_missing:
	{
		struct autofs_packet_missing *mp = &pkt.v4_pkt.missing;

		pktsz = sizeof(*mp);

		mp->wait_queue_token = wq->wait_queue_token;
		mp->len = wq->name.len;
		memcpy(mp->name, wq->name.name, wq->name.len);
		mp->name[wq->name.len] = '\0';
		break;
	}
	case autofs_ptype_expire_multi:
	{
		struct autofs_packet_expire_multi *ep =
					&pkt.v4_pkt.expire_multi;

		pktsz = sizeof(*ep);

		ep->wait_queue_token = wq->wait_queue_token;
		ep->len = wq->name.len;
		memcpy(ep->name, wq->name.name, wq->name.len);
		ep->name[wq->name.len] = '\0';
		break;
	}
	/*
	 * Kernel protocol v5 packet for handling indirect and direct
	 * mount missing and expire requests
	 */
	case autofs_ptype_missing_indirect:
	case autofs_ptype_expire_indirect:
	case autofs_ptype_missing_direct:
	case autofs_ptype_expire_direct:
	{
		struct autofs_v5_packet *packet = &pkt.v5_pkt.v5_packet;
		struct user_namespace *user_ns = sbi->pipe->f_cred->user_ns;

		pktsz = sizeof(*packet);

		packet->wait_queue_token = wq->wait_queue_token;
		packet->len = wq->name.len;
		memcpy(packet->name, wq->name.name, wq->name.len);
		packet->name[wq->name.len] = '\0';
		packet->dev = wq->dev;
		packet->ino = wq->ino;
		packet->uid = from_kuid_munged(user_ns, wq->uid);
		packet->gid = from_kgid_munged(user_ns, wq->gid);
		packet->pid = wq->pid;
		packet->tgid = wq->tgid;
		break;
	}
	default:
		pr_warn("bad type %d!\n", type);
		mutex_unlock(&sbi->wq_mutex);
		return;
	}

	pipe = get_file(sbi->pipe);

	mutex_unlock(&sbi->wq_mutex);

	if (autofs4_write(sbi, pipe, &pkt, pktsz))
		autofs4_catatonic_mode(sbi);
	fput(pipe);
}

static int autofs4_getpath(struct autofs_sb_info *sbi,
			   struct dentry *dentry, char **name)
{
	struct dentry *root = sbi->sb->s_root;
	struct dentry *tmp;
	char *buf;
	char *p;
	int len;
	unsigned seq;

rename_retry:
	buf = *name;
	len = 0;

	seq = read_seqbegin(&rename_lock);
	rcu_read_lock();
	spin_lock(&sbi->fs_lock);
	for (tmp = dentry ; tmp != root ; tmp = tmp->d_parent)
		len += tmp->d_name.len + 1;

	if (!len || --len > NAME_MAX) {
		spin_unlock(&sbi->fs_lock);
		rcu_read_unlock();
		if (read_seqretry(&rename_lock, seq))
			goto rename_retry;
		return 0;
	}

	*(buf + len) = '\0';
	p = buf + len - dentry->d_name.len;
	strncpy(p, dentry->d_name.name, dentry->d_name.len);

	for (tmp = dentry->d_parent; tmp != root ; tmp = tmp->d_parent) {
		*(--p) = '/';
		p -= tmp->d_name.len;
		strncpy(p, tmp->d_name.name, tmp->d_name.len);
	}
	spin_unlock(&sbi->fs_lock);
	rcu_read_unlock();
	if (read_seqretry(&rename_lock, seq))
		goto rename_retry;

	return len;
}

static struct autofs_wait_queue *
autofs4_find_wait(struct autofs_sb_info *sbi, const struct qstr *qstr)
{
	struct autofs_wait_queue *wq;

	for (wq = sbi->queues; wq; wq = wq->next) {
		if (wq->name.hash == qstr->hash &&
		    wq->name.len == qstr->len &&
		    wq->name.name &&
		    !memcmp(wq->name.name, qstr->name, qstr->len))
			break;
	}
	return wq;
}

/*
 * Check if we have a valid request.
 * Returns
 * 1 if the request should continue.
 *   In this case we can return an autofs_wait_queue entry if one is
 *   found or NULL to idicate a new wait needs to be created.
 * 0 or a negative errno if the request shouldn't continue.
 */
static int validate_request(struct autofs_wait_queue **wait,
			    struct autofs_sb_info *sbi,
			    const struct qstr *qstr,
			    const struct path *path, enum autofs_notify notify)
{
	struct dentry *dentry = path->dentry;
	struct autofs_wait_queue *wq;
	struct autofs_info *ino;

	if (sbi->catatonic)
		return -ENOENT;

	/* Wait in progress, continue; */
	wq = autofs4_find_wait(sbi, qstr);
	if (wq) {
		*wait = wq;
		return 1;
	}

	*wait = NULL;

	/* If we don't yet have any info this is a new request */
	ino = autofs4_dentry_ino(dentry);
	if (!ino)
		return 1;

	/*
	 * If we've been asked to wait on an existing expire (NFY_NONE)
	 * but there is no wait in the queue ...
	 */
	if (notify == NFY_NONE) {
		/*
		 * Either we've betean the pending expire to post it's
		 * wait or it finished while we waited on the mutex.
		 * So we need to wait till either, the wait appears
		 * or the expire finishes.
		 */

		while (ino->flags & AUTOFS_INF_EXPIRING) {
			mutex_unlock(&sbi->wq_mutex);
			schedule_timeout_interruptible(HZ/10);
			if (mutex_lock_interruptible(&sbi->wq_mutex))
				return -EINTR;

			if (sbi->catatonic)
				return -ENOENT;

			wq = autofs4_find_wait(sbi, qstr);
			if (wq) {
				*wait = wq;
				return 1;
			}
		}

		/*
		 * Not ideal but the status has already gone. Of the two
		 * cases where we wait on NFY_NONE neither depend on the
		 * return status of the wait.
		 */
		return 0;
	}

	/*
	 * If we've been asked to trigger a mount and the request
	 * completed while we waited on the mutex ...
	 */
	if (notify == NFY_MOUNT) {
		struct dentry *new = NULL;
		struct path this;
		int valid = 1;

		/*
		 * If the dentry was successfully mounted while we slept
		 * on the wait queue mutex we can return success. If it
		 * isn't mounted (doesn't have submounts for the case of
		 * a multi-mount with no mount at it's base) we can
		 * continue on and create a new request.
		 */
		if (!IS_ROOT(dentry)) {
			if (d_unhashed(dentry) &&
			    d_really_is_positive(dentry)) {
				struct dentry *parent = dentry->d_parent;

				new = d_lookup(parent, &dentry->d_name);
				if (new)
					dentry = new;
			}
		}
		this.mnt = path->mnt;
		this.dentry = dentry;
		if (path_has_submounts(&this))
			valid = 0;

		if (new)
			dput(new);
		return valid;
	}

	return 1;
}

int autofs4_wait(struct autofs_sb_info *sbi,
		 const struct path *path, enum autofs_notify notify)
{
	struct dentry *dentry = path->dentry;
	struct autofs_wait_queue *wq;
	struct qstr qstr;
	char *name;
	int status, ret, type;
	pid_t pid;
	pid_t tgid;

	/* In catatonic mode, we don't wait for nobody */
	if (sbi->catatonic)
		return -ENOENT;

	/*
	 * Try translating pids to the namespace of the daemon.
	 *
	 * Zero means failure: we are in an unrelated pid namespace.
	 */
	pid = task_pid_nr_ns(current, ns_of_pid(sbi->oz_pgrp));
	tgid = task_tgid_nr_ns(current, ns_of_pid(sbi->oz_pgrp));
	if (pid == 0 || tgid == 0)
		return -ENOENT;

	if (d_really_is_negative(dentry)) {
		/*
		 * A wait for a negative dentry is invalid for certain
		 * cases. A direct or offset mount "always" has its mount
		 * point directory created and so the request dentry must
		 * be positive or the map key doesn't exist. The situation
		 * is very similar for indirect mounts except only dentrys
		 * in the root of the autofs file system may be negative.
		 */
		if (autofs_type_trigger(sbi->type))
			return -ENOENT;
		else if (!IS_ROOT(dentry->d_parent))
			return -ENOENT;
	}

	name = kmalloc(NAME_MAX + 1, GFP_KERNEL);
	if (!name)
		return -ENOMEM;

	/* If this is a direct mount request create a dummy name */
	if (IS_ROOT(dentry) && autofs_type_trigger(sbi->type))
		qstr.len = sprintf(name, "%p", dentry);
	else {
		qstr.len = autofs4_getpath(sbi, dentry, &name);
		if (!qstr.len) {
			kfree(name);
			return -ENOENT;
		}
	}
	qstr.name = name;
	qstr.hash = full_name_hash(dentry, name, qstr.len);

	if (mutex_lock_interruptible(&sbi->wq_mutex)) {
		kfree(qstr.name);
		return -EINTR;
	}

	ret = validate_request(&wq, sbi, &qstr, path, notify);
	if (ret <= 0) {
		if (ret != -EINTR)
			mutex_unlock(&sbi->wq_mutex);
		kfree(qstr.name);
		return ret;
	}

	if (!wq) {
		/* Create a new wait queue */
		wq = kmalloc(sizeof(struct autofs_wait_queue), GFP_KERNEL);
		if (!wq) {
			kfree(qstr.name);
			mutex_unlock(&sbi->wq_mutex);
			return -ENOMEM;
		}

		wq->wait_queue_token = autofs4_next_wait_queue;
		if (++autofs4_next_wait_queue == 0)
			autofs4_next_wait_queue = 1;
		wq->next = sbi->queues;
		sbi->queues = wq;
		init_waitqueue_head(&wq->queue);
		memcpy(&wq->name, &qstr, sizeof(struct qstr));
		wq->dev = autofs4_get_dev(sbi);
		wq->ino = autofs4_get_ino(sbi);
		wq->uid = current_cred()->uid;
		wq->gid = current_cred()->gid;
		wq->pid = pid;
		wq->tgid = tgid;
		wq->status = -EINTR; /* Status return if interrupted */
		wq->wait_ctr = 2;

		if (sbi->version < 5) {
			if (notify == NFY_MOUNT)
				type = autofs_ptype_missing;
			else
				type = autofs_ptype_expire_multi;
		} else {
			if (notify == NFY_MOUNT)
				type = autofs_type_trigger(sbi->type) ?
					autofs_ptype_missing_direct :
					 autofs_ptype_missing_indirect;
			else
				type = autofs_type_trigger(sbi->type) ?
					autofs_ptype_expire_direct :
					autofs_ptype_expire_indirect;
		}

		pr_debug("new wait id = 0x%08lx, name = %.*s, nfy=%d\n",
			 (unsigned long) wq->wait_queue_token, wq->name.len,
			 wq->name.name, notify);

		/*
		 * autofs4_notify_daemon() may block; it will unlock ->wq_mutex
		 */
		autofs4_notify_daemon(sbi, wq, type);
	} else {
		wq->wait_ctr++;
		pr_debug("existing wait id = 0x%08lx, name = %.*s, nfy=%d\n",
			 (unsigned long) wq->wait_queue_token, wq->name.len,
			 wq->name.name, notify);
		mutex_unlock(&sbi->wq_mutex);
		kfree(qstr.name);
	}

	/*
	 * wq->name.name is NULL iff the lock is already released
	 * or the mount has been made catatonic.
	 */
	if (wq->name.name) {
		/* Block all but "shutdown" signals while waiting */
		unsigned long shutdown_sigs_mask;
		unsigned long irqflags;
		sigset_t oldset;

		spin_lock_irqsave(&current->sighand->siglock, irqflags);
		oldset = current->blocked;
		shutdown_sigs_mask = SHUTDOWN_SIGS & ~oldset.sig[0];
		siginitsetinv(&current->blocked, shutdown_sigs_mask);
		recalc_sigpending();
		spin_unlock_irqrestore(&current->sighand->siglock, irqflags);

		wait_event_interruptible(wq->queue, wq->name.name == NULL);

		spin_lock_irqsave(&current->sighand->siglock, irqflags);
		current->blocked = oldset;
		recalc_sigpending();
		spin_unlock_irqrestore(&current->sighand->siglock, irqflags);
	} else {
		pr_debug("skipped sleeping\n");
	}

	status = wq->status;

	/*
	 * For direct and offset mounts we need to track the requester's
	 * uid and gid in the dentry info struct. This is so it can be
	 * supplied, on request, by the misc device ioctl interface.
	 * This is needed during daemon resatart when reconnecting
	 * to existing, active, autofs mounts. The uid and gid (and
	 * related string values) may be used for macro substitution
	 * in autofs mount maps.
	 */
	if (!status) {
		struct autofs_info *ino;
		struct dentry *de = NULL;

		/* direct mount or browsable map */
		ino = autofs4_dentry_ino(dentry);
		if (!ino) {
			/* If not lookup actual dentry used */
			de = d_lookup(dentry->d_parent, &dentry->d_name);
			if (de)
				ino = autofs4_dentry_ino(de);
		}

		/* Set mount requester */
		if (ino) {
			spin_lock(&sbi->fs_lock);
			ino->uid = wq->uid;
			ino->gid = wq->gid;
			spin_unlock(&sbi->fs_lock);
		}

		if (de)
			dput(de);
	}

	/* Are we the last process to need status? */
	mutex_lock(&sbi->wq_mutex);
	if (!--wq->wait_ctr)
		kfree(wq);
	mutex_unlock(&sbi->wq_mutex);

	return status;
}


int autofs4_wait_release(struct autofs_sb_info *sbi, autofs_wqt_t wait_queue_token, int status)
{
	struct autofs_wait_queue *wq, **wql;

	mutex_lock(&sbi->wq_mutex);
	for (wql = &sbi->queues; (wq = *wql) != NULL; wql = &wq->next) {
		if (wq->wait_queue_token == wait_queue_token)
			break;
	}

	if (!wq) {
		mutex_unlock(&sbi->wq_mutex);
		return -EINVAL;
	}

	*wql = wq->next;	/* Unlink from chain */
	kfree(wq->name.name);
	wq->name.name = NULL;	/* Do not wait on this queue */
	wq->status = status;
	wake_up_interruptible(&wq->queue);
	if (!--wq->wait_ctr)
		kfree(wq);
	mutex_unlock(&sbi->wq_mutex);

	return 0;
}
Commit	Line	Data
e9a7c2f1 IK	1	/*
	2	* Copyright 1997-1998 Transmeta Corporation -- All Rights Reserved
	3	* Copyright 2001-2006 Ian Kent <raven@themaw.net>
1da177e4 LT	4	*
	5	* This file is part of the Linux kernel and is made available under
	6	* the terms of the GNU General Public License, version 2, or at your
	7	* option, any later version, incorporated herein by reference.
e9a7c2f1	8	*/
1da177e4 LT	9
	10	#include <linux/slab.h>
	11	#include <linux/time.h>
	12	#include <linux/signal.h>
3f07c014	13	#include <linux/sched/signal.h>
1da177e4 LT	14	#include <linux/file.h>
	15	#include "autofs_i.h"
	16
	17	/* We make this a static variable rather than a part of the superblock; it
e9a7c2f1 IK	18	* is better if we don't reassign numbers easily even across filesystems
e9a7c2f1 IK	19	*/
1da177e4 LT	20	static autofs_wqt_t autofs4_next_wait_queue = 1;
	21
	22	/* These are the signals we allow interrupting a pending mount */
	23	#define SHUTDOWN_SIGS (sigmask(SIGKILL) \| sigmask(SIGINT) \| sigmask(SIGQUIT))
	24
	25	void autofs4_catatonic_mode(struct autofs_sb_info *sbi)
	26	{
	27	struct autofs_wait_queue wq, nwq;
	28
5a11d4d0 IK	29	mutex_lock(&sbi->wq_mutex);
	30	if (sbi->catatonic) {
	31	mutex_unlock(&sbi->wq_mutex);
	32	return;
	33	}
	34
8a78d593	35	pr_debug("entering catatonic mode\n");
1da177e4 LT	36
	37	sbi->catatonic = 1;
	38	wq = sbi->queues;
	39	sbi->queues = NULL; /* Erase all wait queues */
e77fbddf	40	while (wq) {
1da177e4 LT	41	nwq = wq->next;
1da177e4 LT	42	wq->status = -ENOENT; /* Magic is gone - report failure */
5140a8ce TG	43	kfree(wq->name.name);
5140a8ce TG	44	wq->name.name = NULL;
296f7bf7	45	wq->wait_ctr--;
1da177e4 LT	46	wake_up_interruptible(&wq->queue);
	47	wq = nwq;
	48	}
ba8df43c IK	49	fput(sbi->pipe); /* Close the pipe */
ba8df43c IK	50	sbi->pipe = NULL;
5a11d4d0 IK	51	sbi->pipefd = -1;
5a11d4d0 IK	52	mutex_unlock(&sbi->wq_mutex);
1da177e4 LT	53	}
1da177e4 LT	54
d668dc56 AV	55	static int autofs4_write(struct autofs_sb_info *sbi,
d668dc56 AV	56	struct file file, const void addr, int bytes)
1da177e4 LT	57	{
1da177e4 LT	58	unsigned long sigpipe, flags;
1da177e4 LT	59	const char data = (const char )addr;
	60	ssize_t wr = 0;
	61
1da177e4 LT	62	sigpipe = sigismember(&current->pending.signal, SIGPIPE);
1da177e4 LT	63
d668dc56	64	mutex_lock(&sbi->pipe_mutex);
5a9294e5	65	while (bytes) {
317d5a5f	66	wr = __kernel_write(file, data, bytes, &file->f_pos);
5a9294e5 AV	67	if (wr <= 0)
5a9294e5 AV	68	break;
1da177e4 LT	69	data += wr;
	70	bytes -= wr;
	71	}
8638094e	72	mutex_unlock(&sbi->pipe_mutex);
1da177e4	73
1da177e4	74	/* Keep the currently executing process from receiving a
e9a7c2f1 IK	75	* SIGPIPE unless it was already supposed to get one
e9a7c2f1 IK	76	*/
1da177e4 LT	77	if (wr == -EPIPE && !sigpipe) {
	78	spin_lock_irqsave(&current->sighand->siglock, flags);
	79	sigdelset(&current->pending.signal, SIGPIPE);
	80	recalc_sigpending();
	81	spin_unlock_irqrestore(&current->sighand->siglock, flags);
	82	}
	83
	84	return (bytes > 0);
	85	}
0266725a	86
1da177e4 LT	87	static void autofs4_notify_daemon(struct autofs_sb_info *sbi,
	88	struct autofs_wait_queue *wq,
	89	int type)
	90	{
e8514478 IK	91	union {
	92	struct autofs_packet_hdr hdr;
	93	union autofs_packet_union v4_pkt;
	94	union autofs_v5_packet_union v5_pkt;
	95	} pkt;
e64be33c	96	struct file *pipe = NULL;
1da177e4 LT	97	size_t pktsz;
1da177e4 LT	98
8a78d593	99	pr_debug("wait id = 0x%08lx, name = %.*s, type=%d\n",
7cee9384	100	(unsigned long) wq->wait_queue_token,
8a78d593	101	wq->name.len, wq->name.name, type);
1da177e4	102
e9a7c2f1	103	memset(&pkt, 0, sizeof(pkt)); /* For security reasons */
1da177e4 LT	104
	105	pkt.hdr.proto_version = sbi->version;
	106	pkt.hdr.type = type;
87533332	107
5c0a32fc IK	108	switch (type) {
	109	/* Kernel protocol v4 missing and expire packets */
	110	case autofs_ptype_missing:
	111	{
e8514478	112	struct autofs_packet_missing *mp = &pkt.v4_pkt.missing;
1da177e4 LT	113
	114	pktsz = sizeof(*mp);
	115
7cee9384	116	mp->wait_queue_token = wq->wait_queue_token;
70b52a0a JM	117	mp->len = wq->name.len;
	118	memcpy(mp->name, wq->name.name, wq->name.len);
	119	mp->name[wq->name.len] = '\0';
5c0a32fc IK	120	break;
	121	}
	122	case autofs_ptype_expire_multi:
	123	{
e9a7c2f1 IK	124	struct autofs_packet_expire_multi *ep =
e9a7c2f1 IK	125	&pkt.v4_pkt.expire_multi;
1da177e4 LT	126
	127	pktsz = sizeof(*ep);
	128
7cee9384	129	ep->wait_queue_token = wq->wait_queue_token;
70b52a0a JM	130	ep->len = wq->name.len;
	131	memcpy(ep->name, wq->name.name, wq->name.len);
	132	ep->name[wq->name.len] = '\0';
5c0a32fc IK	133	break;
	134	}
	135	/*
	136	* Kernel protocol v5 packet for handling indirect and direct
	137	* mount missing and expire requests
	138	*/
	139	case autofs_ptype_missing_indirect:
	140	case autofs_ptype_expire_indirect:
	141	case autofs_ptype_missing_direct:
	142	case autofs_ptype_expire_direct:
	143	{
e8514478	144	struct autofs_v5_packet *packet = &pkt.v5_pkt.v5_packet;
45634cd8	145	struct user_namespace *user_ns = sbi->pipe->f_cred->user_ns;
5c0a32fc	146
fcbf94b9 LT	147	pktsz = sizeof(*packet);
fcbf94b9 LT	148
7cee9384	149	packet->wait_queue_token = wq->wait_queue_token;
70b52a0a JM	150	packet->len = wq->name.len;
	151	memcpy(packet->name, wq->name.name, wq->name.len);
	152	packet->name[wq->name.len] = '\0';
5c0a32fc IK	153	packet->dev = wq->dev;
5c0a32fc IK	154	packet->ino = wq->ino;
45634cd8 EB	155	packet->uid = from_kuid_munged(user_ns, wq->uid);
45634cd8 EB	156	packet->gid = from_kgid_munged(user_ns, wq->gid);
5c0a32fc IK	157	packet->pid = wq->pid;
	158	packet->tgid = wq->tgid;
	159	break;
	160	}
	161	default:
8a78d593	162	pr_warn("bad type %d!\n", type);
87533332	163	mutex_unlock(&sbi->wq_mutex);
1da177e4 LT	164	return;
	165	}
	166
cb0942b8	167	pipe = get_file(sbi->pipe);
87533332	168
e64be33c IK	169	mutex_unlock(&sbi->wq_mutex);
e64be33c IK	170
d668dc56	171	if (autofs4_write(sbi, pipe, &pkt, pktsz))
87533332 AV	172	autofs4_catatonic_mode(sbi);
87533332 AV	173	fput(pipe);
1da177e4 LT	174	}
	175
	176	static int autofs4_getpath(struct autofs_sb_info *sbi,
	177	struct dentry dentry, char *name)
	178	{
	179	struct dentry *root = sbi->sb->s_root;
	180	struct dentry *tmp;
949854d0	181	char *buf;
1da177e4	182	char *p;
949854d0 NP	183	int len;
	184	unsigned seq;
	185
	186	rename_retry:
	187	buf = *name;
	188	len = 0;
b5c84bf6	189
949854d0 NP	190	seq = read_seqbegin(&rename_lock);
949854d0 NP	191	rcu_read_lock();
e7854723	192	spin_lock(&sbi->fs_lock);
1da177e4 LT	193	for (tmp = dentry ; tmp != root ; tmp = tmp->d_parent)
	194	len += tmp->d_name.len + 1;
	195
cab0936a	196	if (!len \|\| --len > NAME_MAX) {
e7854723	197	spin_unlock(&sbi->fs_lock);
949854d0 NP	198	rcu_read_unlock();
	199	if (read_seqretry(&rename_lock, seq))
	200	goto rename_retry;
1da177e4 LT	201	return 0;
	202	}
	203
	204	*(buf + len) = '\0';
	205	p = buf + len - dentry->d_name.len;
	206	strncpy(p, dentry->d_name.name, dentry->d_name.len);
	207
	208	for (tmp = dentry->d_parent; tmp != root ; tmp = tmp->d_parent) {
	209	*(--p) = '/';
	210	p -= tmp->d_name.len;
	211	strncpy(p, tmp->d_name.name, tmp->d_name.len);
	212	}
e7854723	213	spin_unlock(&sbi->fs_lock);
949854d0 NP	214	rcu_read_unlock();
	215	if (read_seqretry(&rename_lock, seq))
	216	goto rename_retry;
1da177e4 LT	217
	218	return len;
	219	}
	220
a5370553	221	static struct autofs_wait_queue *
8ac790f3	222	autofs4_find_wait(struct autofs_sb_info sbi, const struct qstr qstr)
a5370553 IK	223	{
	224	struct autofs_wait_queue *wq;
	225
	226	for (wq = sbi->queues; wq; wq = wq->next) {
70b52a0a JM	227	if (wq->name.hash == qstr->hash &&
	228	wq->name.len == qstr->len &&
	229	wq->name.name &&
e9a7c2f1	230	!memcmp(wq->name.name, qstr->name, qstr->len))
a5370553 IK	231	break;
	232	}
	233	return wq;
	234	}
	235
a1362fe9 IK	236	/*
	237	* Check if we have a valid request.
	238	* Returns
	239	* 1 if the request should continue.
	240	* In this case we can return an autofs_wait_queue entry if one is
	241	* found or NULL to idicate a new wait needs to be created.
	242	* 0 or a negative errno if the request shouldn't continue.
	243	*/
	244	static int validate_request(struct autofs_wait_queue **wait,
	245	struct autofs_sb_info *sbi,
8ac790f3	246	const struct qstr *qstr,
60359741	247	const struct path *path, enum autofs_notify notify)
a1362fe9	248	{
60359741	249	struct dentry *dentry = path->dentry;
a1362fe9 IK	250	struct autofs_wait_queue *wq;
	251	struct autofs_info *ino;
	252
4041bcdc AV	253	if (sbi->catatonic)
	254	return -ENOENT;
	255
a1362fe9 IK	256	/* Wait in progress, continue; */
	257	wq = autofs4_find_wait(sbi, qstr);
	258	if (wq) {
	259	*wait = wq;
	260	return 1;
	261	}
	262
	263	*wait = NULL;
	264
	265	/* If we don't yet have any info this is a new request */
	266	ino = autofs4_dentry_ino(dentry);
	267	if (!ino)
	268	return 1;
	269
	270	/*
	271	* If we've been asked to wait on an existing expire (NFY_NONE)
	272	* but there is no wait in the queue ...
	273	*/
	274	if (notify == NFY_NONE) {
	275	/*
	276	* Either we've betean the pending expire to post it's
	277	* wait or it finished while we waited on the mutex.
	278	* So we need to wait till either, the wait appears
	279	* or the expire finishes.
	280	*/
	281
	282	while (ino->flags & AUTOFS_INF_EXPIRING) {
	283	mutex_unlock(&sbi->wq_mutex);
	284	schedule_timeout_interruptible(HZ/10);
	285	if (mutex_lock_interruptible(&sbi->wq_mutex))
	286	return -EINTR;
	287
4041bcdc AV	288	if (sbi->catatonic)
	289	return -ENOENT;
	290
a1362fe9 IK	291	wq = autofs4_find_wait(sbi, qstr);
	292	if (wq) {
	293	*wait = wq;
	294	return 1;
	295	}
	296	}
	297
	298	/*
	299	* Not ideal but the status has already gone. Of the two
	300	* cases where we wait on NFY_NONE neither depend on the
	301	* return status of the wait.
	302	*/
	303	return 0;
	304	}
	305
	306	/*
	307	* If we've been asked to trigger a mount and the request
	308	* completed while we waited on the mutex ...
	309	*/
	310	if (notify == NFY_MOUNT) {
9e3fea16	311	struct dentry *new = NULL;
60359741	312	struct path this;
9e3fea16 IK	313	int valid = 1;
9e3fea16 IK	314
a1362fe9	315	/*
463aea1a IK	316	* If the dentry was successfully mounted while we slept
	317	* on the wait queue mutex we can return success. If it
	318	* isn't mounted (doesn't have submounts for the case of
	319	* a multi-mount with no mount at it's base) we can
	320	* continue on and create a new request.
	321	*/
9e3fea16	322	if (!IS_ROOT(dentry)) {
e9a7c2f1 IK	323	if (d_unhashed(dentry) &&
e9a7c2f1 IK	324	d_really_is_positive(dentry)) {
9e3fea16	325	struct dentry *parent = dentry->d_parent;
e9a7c2f1	326
9e3fea16 IK	327	new = d_lookup(parent, &dentry->d_name);
	328	if (new)
	329	dentry = new;
	330	}
	331	}
60359741 IK	332	this.mnt = path->mnt;
	333	this.dentry = dentry;
	334	if (path_has_submounts(&this))
9e3fea16 IK	335	valid = 0;
	336
	337	if (new)
	338	dput(new);
	339	return valid;
a1362fe9 IK	340	}
	341
	342	return 1;
	343	}
	344
e9a7c2f1	345	int autofs4_wait(struct autofs_sb_info *sbi,
dd36a882	346	const struct path *path, enum autofs_notify notify)
1da177e4	347	{
dd36a882	348	struct dentry *dentry = path->dentry;
1da177e4	349	struct autofs_wait_queue *wq;
70b52a0a	350	struct qstr qstr;
1da177e4	351	char *name;
a1362fe9	352	int status, ret, type;
fbff0870 MS	353	pid_t pid;
fbff0870 MS	354	pid_t tgid;
1da177e4 LT	355
1da177e4 LT	356	/* In catatonic mode, we don't wait for nobody */
e77fbddf	357	if (sbi->catatonic)
1da177e4	358	return -ENOENT;
a1362fe9	359
fbff0870 MS	360	/*
	361	* Try translating pids to the namespace of the daemon.
	362	*
	363	* Zero means failure: we are in an unrelated pid namespace.
	364	*/
	365	pid = task_pid_nr_ns(current, ns_of_pid(sbi->oz_pgrp));
	366	tgid = task_tgid_nr_ns(current, ns_of_pid(sbi->oz_pgrp));
	367	if (pid == 0 \|\| tgid == 0)
	368	return -ENOENT;
	369
2b0143b5	370	if (d_really_is_negative(dentry)) {
c72305b5 IK	371	/*
	372	* A wait for a negative dentry is invalid for certain
	373	* cases. A direct or offset mount "always" has its mount
	374	* point directory created and so the request dentry must
	375	* be positive or the map key doesn't exist. The situation
	376	* is very similar for indirect mounts except only dentrys
	377	* in the root of the autofs file system may be negative.
	378	*/
a92daf6b	379	if (autofs_type_trigger(sbi->type))
c72305b5 IK	380	return -ENOENT;
	381	else if (!IS_ROOT(dentry->d_parent))
	382	return -ENOENT;
	383	}
eb3b1767	384
1da177e4 LT	385	name = kmalloc(NAME_MAX + 1, GFP_KERNEL);
	386	if (!name)
	387	return -ENOMEM;
	388
5c0a32fc	389	/* If this is a direct mount request create a dummy name */
a92daf6b	390	if (IS_ROOT(dentry) && autofs_type_trigger(sbi->type))
70b52a0a	391	qstr.len = sprintf(name, "%p", dentry);
5c0a32fc	392	else {
70b52a0a JM	393	qstr.len = autofs4_getpath(sbi, dentry, &name);
70b52a0a JM	394	if (!qstr.len) {
5c0a32fc IK	395	kfree(name);
	396	return -ENOENT;
	397	}
1da177e4	398	}
70b52a0a	399	qstr.name = name;
8387ff25	400	qstr.hash = full_name_hash(dentry, name, qstr.len);
1da177e4	401
f4c7da02 IK	402	if (mutex_lock_interruptible(&sbi->wq_mutex)) {
f4c7da02 IK	403	kfree(qstr.name);
1da177e4	404	return -EINTR;
f4c7da02	405	}
a5370553	406
60359741	407	ret = validate_request(&wq, sbi, &qstr, path, notify);
a1362fe9	408	if (ret <= 0) {
4041bcdc	409	if (ret != -EINTR)
1d5599e3	410	mutex_unlock(&sbi->wq_mutex);
a1362fe9 IK	411	kfree(qstr.name);
a1362fe9 IK	412	return ret;
a5370553	413	}
cc9acc88	414
a5370553	415	if (!wq) {
1da177e4	416	/* Create a new wait queue */
e9a7c2f1	417	wq = kmalloc(sizeof(struct autofs_wait_queue), GFP_KERNEL);
e77fbddf	418	if (!wq) {
70b52a0a	419	kfree(qstr.name);
1d5599e3	420	mutex_unlock(&sbi->wq_mutex);
1da177e4 LT	421	return -ENOMEM;
	422	}
	423
7cee9384	424	wq->wait_queue_token = autofs4_next_wait_queue;
1da177e4 LT	425	if (++autofs4_next_wait_queue == 0)
	426	autofs4_next_wait_queue = 1;
	427	wq->next = sbi->queues;
	428	sbi->queues = wq;
	429	init_waitqueue_head(&wq->queue);
70b52a0a	430	memcpy(&wq->name, &qstr, sizeof(struct qstr));
5c0a32fc IK	431	wq->dev = autofs4_get_dev(sbi);
5c0a32fc IK	432	wq->ino = autofs4_get_ino(sbi);
93faccbb EB	433	wq->uid = current_cred()->uid;
93faccbb EB	434	wq->gid = current_cred()->gid;
fbff0870 MS	435	wq->pid = pid;
fbff0870 MS	436	wq->tgid = tgid;
1da177e4	437	wq->status = -EINTR; /* Status return if interrupted */
296f7bf7	438	wq->wait_ctr = 2;
3e7b1919	439
5c0a32fc IK	440	if (sbi->version < 5) {
	441	if (notify == NFY_MOUNT)
	442	type = autofs_ptype_missing;
	443	else
	444	type = autofs_ptype_expire_multi;
	445	} else {
	446	if (notify == NFY_MOUNT)
a92daf6b	447	type = autofs_type_trigger(sbi->type) ?
5c0a32fc IK	448	autofs_ptype_missing_direct :
	449	autofs_ptype_missing_indirect;
	450	else
a92daf6b	451	type = autofs_type_trigger(sbi->type) ?
5c0a32fc IK	452	autofs_ptype_expire_direct :
	453	autofs_ptype_expire_indirect;
	454	}
4dcd00b1	455
8a78d593	456	pr_debug("new wait id = 0x%08lx, name = %.*s, nfy=%d\n",
7cee9384	457	(unsigned long) wq->wait_queue_token, wq->name.len,
8a78d593	458	wq->name.name, notify);
4dcd00b1	459
e9a7c2f1 IK	460	/*
	461	* autofs4_notify_daemon() may block; it will unlock ->wq_mutex
	462	*/
4dcd00b1	463	autofs4_notify_daemon(sbi, wq, type);
a5370553	464	} else {
296f7bf7	465	wq->wait_ctr++;
8a78d593	466	pr_debug("existing wait id = 0x%08lx, name = %.*s, nfy=%d\n",
7cee9384	467	(unsigned long) wq->wait_queue_token, wq->name.len,
8a78d593	468	wq->name.name, notify);
606035e7 AV	469	mutex_unlock(&sbi->wq_mutex);
606035e7 AV	470	kfree(qstr.name);
4dcd00b1 IK	471	}
4dcd00b1 IK	472
5a11d4d0 IK	473	/*
	474	* wq->name.name is NULL iff the lock is already released
	475	* or the mount has been made catatonic.
	476	*/
70b52a0a	477	if (wq->name.name) {
1da177e4	478	/* Block all but "shutdown" signals while waiting */
b3f67a98	479	unsigned long shutdown_sigs_mask;
1da177e4	480	unsigned long irqflags;
b3f67a98	481	sigset_t oldset;
1da177e4 LT	482
	483	spin_lock_irqsave(&current->sighand->siglock, irqflags);
	484	oldset = current->blocked;
b3f67a98 IK	485	shutdown_sigs_mask = SHUTDOWN_SIGS & ~oldset.sig[0];
b3f67a98 IK	486	siginitsetinv(&current->blocked, shutdown_sigs_mask);
1da177e4 LT	487	recalc_sigpending();
	488	spin_unlock_irqrestore(&current->sighand->siglock, irqflags);
	489
70b52a0a	490	wait_event_interruptible(wq->queue, wq->name.name == NULL);
1da177e4 LT	491
	492	spin_lock_irqsave(&current->sighand->siglock, irqflags);
	493	current->blocked = oldset;
	494	recalc_sigpending();
	495	spin_unlock_irqrestore(&current->sighand->siglock, irqflags);
	496	} else {
8a78d593	497	pr_debug("skipped sleeping\n");
1da177e4 LT	498	}
	499
	500	status = wq->status;
	501
c0f54d3e IK	502	/*
	503	* For direct and offset mounts we need to track the requester's
	504	* uid and gid in the dentry info struct. This is so it can be
	505	* supplied, on request, by the misc device ioctl interface.
	506	* This is needed during daemon resatart when reconnecting
	507	* to existing, active, autofs mounts. The uid and gid (and
	508	* related string values) may be used for macro substitution
	509	* in autofs mount maps.
	510	*/
	511	if (!status) {
	512	struct autofs_info *ino;
	513	struct dentry *de = NULL;
	514
	515	/* direct mount or browsable map */
	516	ino = autofs4_dentry_ino(dentry);
	517	if (!ino) {
	518	/* If not lookup actual dentry used */
	519	de = d_lookup(dentry->d_parent, &dentry->d_name);
	520	if (de)
	521	ino = autofs4_dentry_ino(de);
	522	}
	523
	524	/* Set mount requester */
	525	if (ino) {
	526	spin_lock(&sbi->fs_lock);
	527	ino->uid = wq->uid;
	528	ino->gid = wq->gid;
	529	spin_unlock(&sbi->fs_lock);
	530	}
	531
	532	if (de)
	533	dput(de);
	534	}
	535
1da177e4	536	/* Are we the last process to need status? */
296f7bf7 IK	537	mutex_lock(&sbi->wq_mutex);
296f7bf7 IK	538	if (!--wq->wait_ctr)
1da177e4	539	kfree(wq);
296f7bf7	540	mutex_unlock(&sbi->wq_mutex);
1da177e4 LT	541
	542	return status;
	543	}
	544
	545
7cee9384	546	int autofs4_wait_release(struct autofs_sb_info *sbi, autofs_wqt_t wait_queue_token, int status)
1da177e4 LT	547	{
	548	struct autofs_wait_queue wq, *wql;
	549
1d5599e3	550	mutex_lock(&sbi->wq_mutex);
c80544dc	551	for (wql = &sbi->queues; (wq = *wql) != NULL; wql = &wq->next) {
7cee9384	552	if (wq->wait_queue_token == wait_queue_token)
1da177e4 LT	553	break;
	554	}
	555
e77fbddf	556	if (!wq) {
1d5599e3	557	mutex_unlock(&sbi->wq_mutex);
1da177e4 LT	558	return -EINVAL;
	559	}
	560
	561	wql = wq->next; / Unlink from chain */
70b52a0a JM	562	kfree(wq->name.name);
70b52a0a JM	563	wq->name.name = NULL; /* Do not wait on this queue */
1da177e4	564	wq->status = status;
296f7bf7 IK	565	wake_up_interruptible(&wq->queue);
296f7bf7 IK	566	if (!--wq->wait_ctr)
1da177e4	567	kfree(wq);
296f7bf7	568	mutex_unlock(&sbi->wq_mutex);
1da177e4 LT	569
	570	return 0;
	571	}