]> git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/blame - fs/cifs/connect.c
projects / mirror_ubuntu-zesty-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
missing changes during ntlmv2/ntlmssp auth and sign
[mirror_ubuntu-zesty-kernel.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
a2653eba 50#include "cn_cifs.h"
488f1d2d 51#include "fscache.h"
1da177e4
LT		 52
53#define CIFS_PORT 445
54#define RFC1001_PORT 139
55
1da177e4
LT		 56extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
57 unsigned char *p24);
58
59extern mempool_t *cifs_req_poolp;
60
61struct smb_vol {
62 char *username;
63 char *password;
64 char *domainname;
65 char *UNC;
66 char *UNCip;
1da177e4
LT		 67 char *iocharset; /* local code page for mapping to and from Unicode */
68 char source_rfc1001_name[16]; /* netbios name of client */
a10faeb2 69 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
3e4b3e1f 70 uid_t cred_uid;
1da177e4
LT		 71 uid_t linux_uid;
72 gid_t linux_gid;
73 mode_t file_mode;
74 mode_t dir_mode;
189acaae 75 unsigned secFlg;
4b18f2a9
SF		 76 bool retry:1;
77 bool intr:1;
78 bool setuids:1;
79 bool override_uid:1;
80 bool override_gid:1;
d0a9c078 81 bool dynperm:1;
4b18f2a9
SF		 82 bool noperm:1;
83 bool no_psx_acl:1; /* set if posix acl support should be disabled */
84 bool cifs_acl:1;
85 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
86 bool server_ino:1; /* use inode numbers from server ie UniqueId */
87 bool direct_io:1;
95b1cb90
SF		 88 bool remap:1; /* set to remap seven reserved chars in filenames */
89 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 90 bool no_linux_ext:1;
91 bool sfu_emul:1;
95b1cb90
SF		 92 bool nullauth:1; /* attempt to authenticate with null user */
93 bool nocase:1; /* request case insensitive filenames */
94 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 95 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 96 bool seal:1; /* request transport encryption on share */
84210e91
SF		 97 bool nodfs:1; /* Do not request DFS, even if available */
98 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 99 bool noblocksnd:1;
100 bool noautotune:1;
be652445 101 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
fa1df75d 102 bool fsc:1; /* enable fscache */
1da177e4
LT		 103 unsigned int rsize;
104 unsigned int wsize;
6a5fa236 105 bool sockopt_tcp_nodelay:1;
1da177e4 106 unsigned short int port;
fb8c4b14 107 char *prepath;
a5fc4ce0 108 struct nls_table *local_nls;
1da177e4
LT		 109};
110
bcf4b106 111static int ipv4_connect(struct TCP_Server_Info *server);
d5c5605c 112static int ipv6_connect(struct TCP_Server_Info *server);
1da177e4 113
d5c5605c
JL		 114/*
115 * cifs tcp session reconnection
116 *
117 * mark tcp session as reconnecting so temporarily locked
118 * mark all smb sessions as reconnecting for tcp session
119 * reconnect tcp session
120 * wake up waiters on reconnection? - (not needed currently)
121 */
2cd646a2 122static int
1da177e4
LT		 123cifs_reconnect(struct TCP_Server_Info *server)
124{
125 int rc = 0;
f1987b44 126 struct list_head *tmp, *tmp2;
1da177e4
LT		 127 struct cifsSesInfo *ses;
128 struct cifsTconInfo *tcon;
fb8c4b14 129 struct mid_q_entry *mid_entry;
50c2f753 130
1da177e4 131 spin_lock(&GlobalMid_Lock);
469ee614 132 if (server->tcpStatus == CifsExiting) {
fb8c4b14 133 /* the demux thread will exit normally
1da177e4
LT		 134 next time through the loop */
135 spin_unlock(&GlobalMid_Lock);
136 return rc;
137 } else
138 server->tcpStatus = CifsNeedReconnect;
139 spin_unlock(&GlobalMid_Lock);
140 server->maxBuf = 0;
141
b6b38f70 142 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 143
144 /* before reconnecting the tcp session, mark the smb session (uid)
145 and the tid bad so they are not used until reconnected */
14fbf50d
JL		 146 read_lock(&cifs_tcp_ses_lock);
147 list_for_each(tmp, &server->smb_ses_list) {
148 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
149 ses->need_reconnect = true;
150 ses->ipc_tid = 0;
f1987b44
JL		 151 list_for_each(tmp2, &ses->tcon_list) {
152 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 153 tcon->need_reconnect = true;
1da177e4 154 }
1da177e4 155 }
f1987b44 156 read_unlock(&cifs_tcp_ses_lock);
1da177e4 157 /* do not want to be sending data on a socket we are freeing */
72ca545b 158 mutex_lock(&server->srv_mutex);
fb8c4b14 159 if (server->ssocket) {
b6b38f70
JP		 160 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
161 server->ssocket->flags);
91cf45f0 162 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 163 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 164 server->ssocket->state,
b6b38f70 165 server->ssocket->flags);
1da177e4
LT		 166 sock_release(server->ssocket);
167 server->ssocket = NULL;
168 }
169
170 spin_lock(&GlobalMid_Lock);
171 list_for_each(tmp, &server->pending_mid_q) {
172 mid_entry = list_entry(tmp, struct
173 mid_q_entry,
174 qhead);
ad8b15f0 175 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
09d1db5c
SF		 176 /* Mark other intransit requests as needing
177 retry so we do not immediately mark the
178 session bad again (ie after we reconnect
179 below) as they timeout too */
ad8b15f0 180 mid_entry->midState = MID_RETRY_NEEDED;
1da177e4
LT		 181 }
182 }
183 spin_unlock(&GlobalMid_Lock);
72ca545b 184 mutex_unlock(&server->srv_mutex);
1da177e4 185
469ee614
JL		 186 while ((server->tcpStatus != CifsExiting) &&
187 (server->tcpStatus != CifsGood)) {
6c3d8909 188 try_to_freeze();
bcf4b106 189 if (server->addr.sockAddr6.sin6_family == AF_INET6)
d5c5605c 190 rc = ipv6_connect(server);
bcf4b106
JL		 191 else
192 rc = ipv4_connect(server);
fb8c4b14 193 if (rc) {
b6b38f70 194 cFYI(1, "reconnect error %d", rc);
0cb766ae 195 msleep(3000);
1da177e4
LT		 196 } else {
197 atomic_inc(&tcpSesReconnectCount);
198 spin_lock(&GlobalMid_Lock);
469ee614 199 if (server->tcpStatus != CifsExiting)
1da177e4 200 server->tcpStatus = CifsGood;
ad009ac9 201 server->sequence_number = 0;
fb8c4b14 202 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 203 /* atomic_set(&server->inFlight,0);*/
204 wake_up(&server->response_q);
205 }
206 }
207 return rc;
208}
209
fb8c4b14 210/*
e4eb295d
SF		 211 return codes:
212 0 not a transact2, or all data present
213 >0 transact2 with that much data missing
214 -EINVAL = invalid transact2
215
216 */
fb8c4b14 217static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 218{
fb8c4b14
SF		 219 struct smb_t2_rsp *pSMBt;
220 int total_data_size;
e4eb295d
SF		 221 int data_in_this_rsp;
222 int remaining;
223
fb8c4b14 224 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 225 return 0;
226
fb8c4b14
SF		 227 /* check for plausible wct, bcc and t2 data and parm sizes */
228 /* check for parm and data offset going beyond end of smb */
229 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 230 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 231 return -EINVAL;
232 }
233
234 pSMBt = (struct smb_t2_rsp *)pSMB;
235
236 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
237 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
238
239 remaining = total_data_size - data_in_this_rsp;
240
fb8c4b14 241 if (remaining == 0)
e4eb295d 242 return 0;
fb8c4b14 243 else if (remaining < 0) {
b6b38f70
JP		 244 cFYI(1, "total data %d smaller than data in frame %d",
245 total_data_size, data_in_this_rsp);
e4eb295d
SF		 246 return -EINVAL;
247 } else {
b6b38f70
JP		 248 cFYI(1, "missing %d bytes from transact2, check next response",
249 remaining);
fb8c4b14 250 if (total_data_size > maxBufSize) {
b6b38f70
JP		 251 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
252 total_data_size, maxBufSize);
fb8c4b14 253 return -EINVAL;
e4eb295d
SF		 254 }
255 return remaining;
256 }
257}
258
fb8c4b14 259static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 260{
261 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
262 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
263 int total_data_size;
264 int total_in_buf;
265 int remaining;
266 int total_in_buf2;
fb8c4b14
SF		 267 char *data_area_of_target;
268 char *data_area_of_buf2;
e4eb295d
SF		 269 __u16 byte_count;
270
271 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
272
fb8c4b14 273 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
b6b38f70 274 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d
SF		 275 }
276
277 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
278
279 remaining = total_data_size - total_in_buf;
50c2f753 280
fb8c4b14 281 if (remaining < 0)
e4eb295d
SF		 282 return -EINVAL;
283
fb8c4b14 284 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 285 return 0;
50c2f753 286
e4eb295d 287 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
fb8c4b14 288 if (remaining < total_in_buf2) {
b6b38f70 289 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 290 }
291
292 /* find end of first SMB data area */
fb8c4b14 293 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
e4eb295d
SF		 294 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
295 /* validate target area */
296
297 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
fb8c4b14 298 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 299
300 data_area_of_target += total_in_buf;
301
302 /* copy second buffer into end of first buffer */
fb8c4b14 303 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
e4eb295d
SF		 304 total_in_buf += total_in_buf2;
305 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
306 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
307 byte_count += total_in_buf2;
308 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
309
70ca734a 310 byte_count = pTargetSMB->smb_buf_length;
e4eb295d
SF		 311 byte_count += total_in_buf2;
312
313 /* BB also add check that we are not beyond maximum buffer size */
50c2f753 314
70ca734a 315 pTargetSMB->smb_buf_length = byte_count;
e4eb295d 316
fb8c4b14 317 if (remaining == total_in_buf2) {
b6b38f70 318 cFYI(1, "found the last secondary response");
e4eb295d
SF		 319 return 0; /* we are done */
320 } else /* more responses to go */
321 return 1;
322
323}
324
1da177e4
LT		 325static int
326cifs_demultiplex_thread(struct TCP_Server_Info *server)
327{
328 int length;
329 unsigned int pdu_length, total_read;
330 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 331 struct smb_hdr *bigbuf = NULL;
332 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 333 struct msghdr smb_msg;
334 struct kvec iov;
335 struct socket *csocket = server->ssocket;
336 struct list_head *tmp;
337 struct cifsSesInfo *ses;
338 struct task_struct *task_to_wake = NULL;
339 struct mid_q_entry *mid_entry;
70ca734a 340 char temp;
4b18f2a9
SF		 341 bool isLargeBuf = false;
342 bool isMultiRsp;
e4eb295d 343 int reconnect;
1da177e4 344
1da177e4 345 current->flags |= PF_MEMALLOC;
b6b38f70 346 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 347
348 length = atomic_inc_return(&tcpSesAllocCount);
349 if (length > 1)
26f57364
SF		 350 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
351 GFP_KERNEL);
1da177e4 352
83144186 353 set_freezable();
469ee614 354 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 355 if (try_to_freeze())
356 continue;
b8643e1b
SF		 357 if (bigbuf == NULL) {
358 bigbuf = cifs_buf_get();
0fd1ffe0 359 if (!bigbuf) {
b6b38f70 360 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 361 msleep(3000);
362 /* retry will check if exiting */
363 continue;
364 }
0fd1ffe0
PM		 365 } else if (isLargeBuf) {
366 /* we are reusing a dirty large buf, clear its start */
26f57364 367 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 368 }
b8643e1b
SF		 369
370 if (smallbuf == NULL) {
371 smallbuf = cifs_small_buf_get();
0fd1ffe0 372 if (!smallbuf) {
b6b38f70 373 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 374 msleep(1000);
375 /* retry will check if exiting */
376 continue;
377 }
378 /* beginning of smb buffer is cleared in our buf_get */
379 } else /* if existing small buf clear beginning */
26f57364 380 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 381
4b18f2a9
SF		 382 isLargeBuf = false;
383 isMultiRsp = false;
b8643e1b 384 smb_buffer = smallbuf;
1da177e4
LT		 385 iov.iov_base = smb_buffer;
386 iov.iov_len = 4;
387 smb_msg.msg_control = NULL;
388 smb_msg.msg_controllen = 0;
f01d5e14
SF		 389 pdu_length = 4; /* enough to get RFC1001 header */
390incomplete_rcv:
1da177e4
LT		 391 length =
392 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 393 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 394
469ee614 395 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 396 break;
397 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 398 cFYI(1, "Reconnect after server stopped responding");
1da177e4 399 cifs_reconnect(server);
b6b38f70 400 cFYI(1, "call to reconnect done");
1da177e4
LT		 401 csocket = server->ssocket;
402 continue;
403 } else if ((length == -ERESTARTSYS) || (length == -EAGAIN)) {
b8643e1b 404 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 405 allowing socket to clear and app threads to set
406 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 407 if (pdu_length < 4) {
408 iov.iov_base = (4 - pdu_length) +
409 (char *)smb_buffer;
410 iov.iov_len = pdu_length;
411 smb_msg.msg_control = NULL;
412 smb_msg.msg_controllen = 0;
c18c732e 413 goto incomplete_rcv;
c527c8a7 414 } else
c18c732e 415 continue;
1da177e4 416 } else if (length <= 0) {
0fd1ffe0 417 if (server->tcpStatus == CifsNew) {
b6b38f70 418 cFYI(1, "tcp session abend after SMBnegprot");
09d1db5c
SF		 419 /* some servers kill the TCP session rather than
420 returning an SMB negprot error, in which
421 case reconnecting here is not going to help,
422 and so simply return error to mount */
1da177e4
LT		 423 break;
424 }
0fd1ffe0 425 if (!try_to_freeze() && (length == -EINTR)) {
b6b38f70 426 cFYI(1, "cifsd thread killed");
1da177e4
LT		 427 break;
428 }
b6b38f70
JP		 429 cFYI(1, "Reconnect after unexpected peek error %d",
430 length);
1da177e4
LT		 431 cifs_reconnect(server);
432 csocket = server->ssocket;
433 wake_up(&server->response_q);
434 continue;
2a974680 435 } else if (length < pdu_length) {
b6b38f70
JP		 436 cFYI(1, "requested %d bytes but only got %d bytes",
437 pdu_length, length);
f01d5e14 438 pdu_length -= length;
f01d5e14
SF		 439 msleep(1);
440 goto incomplete_rcv;
46810cbf 441 }
1da177e4 442
70ca734a
SF		 443 /* The right amount was read from socket - 4 bytes */
444 /* so we can now interpret the length field */
46810cbf 445
70ca734a
SF		 446 /* the first byte big endian of the length field,
447 is actually not part of the length but the type
448 with the most common, zero, as regular data */
449 temp = *((char *) smb_buffer);
46810cbf 450
fb8c4b14 451 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 452 but we convert it here so it is always manipulated
453 as host byte order */
5ca33c6a 454 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
70ca734a
SF		 455 smb_buffer->smb_buf_length = pdu_length;
456
b6b38f70 457 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 458
70ca734a 459 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 460 continue;
70ca734a 461 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 462 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 463 continue;
70ca734a 464 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 465 /* we get this from Windows 98 instead of
46810cbf 466 an error on SMB negprot response */
b6b38f70
JP		 467 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
468 pdu_length);
fb8c4b14
SF		 469 if (server->tcpStatus == CifsNew) {
470 /* if nack on negprot (rather than
46810cbf
SF		 471 ret of smb negprot error) reconnecting
472 not going to help, ret error to mount */
473 break;
474 } else {
475 /* give server a second to
476 clean up before reconnect attempt */
477 msleep(1000);
478 /* always try 445 first on reconnect
479 since we get NACK on some if we ever
fb8c4b14 480 connected to port 139 (the NACK is
46810cbf
SF		 481 since we do not begin with RFC1001
482 session initialize frame) */
fb8c4b14 483 server->addr.sockAddr.sin_port =
46810cbf 484 htons(CIFS_PORT);
1da177e4
LT		 485 cifs_reconnect(server);
486 csocket = server->ssocket;
46810cbf 487 wake_up(&server->response_q);
1da177e4 488 continue;
46810cbf 489 }
70ca734a 490 } else if (temp != (char) 0) {
b6b38f70 491 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 492 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
493 length);
46810cbf
SF		 494 cifs_reconnect(server);
495 csocket = server->ssocket;
496 continue;
e4eb295d
SF		 497 }
498
499 /* else we have an SMB response */
fb8c4b14 500 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 501 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 502 cERROR(1, "Invalid size SMB length %d pdu_length %d",
503 length, pdu_length+4);
e4eb295d
SF		 504 cifs_reconnect(server);
505 csocket = server->ssocket;
506 wake_up(&server->response_q);
507 continue;
fb8c4b14 508 }
e4eb295d
SF		 509
510 /* else length ok */
511 reconnect = 0;
512
fb8c4b14 513 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 514 isLargeBuf = true;
e4eb295d
SF		 515 memcpy(bigbuf, smallbuf, 4);
516 smb_buffer = bigbuf;
517 }
518 length = 0;
519 iov.iov_base = 4 + (char *)smb_buffer;
520 iov.iov_len = pdu_length;
fb8c4b14 521 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 522 total_read += length) {
523 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
524 pdu_length - total_read, 0);
469ee614 525 if ((server->tcpStatus == CifsExiting) ||
e4eb295d
SF		 526 (length == -EINTR)) {
527 /* then will exit */
528 reconnect = 2;
529 break;
530 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 531 cifs_reconnect(server);
532 csocket = server->ssocket;
fb8c4b14 533 /* Reconnect wakes up rspns q */
e4eb295d
SF		 534 /* Now we will reread sock */
535 reconnect = 1;
536 break;
fb8c4b14 537 } else if ((length == -ERESTARTSYS) ||
e4eb295d
SF		 538 (length == -EAGAIN)) {
539 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 540 allowing socket to clear and app
e4eb295d
SF		 541 threads to set tcpStatus
542 CifsNeedReconnect if server hung*/
c18c732e 543 length = 0;
46810cbf 544 continue;
e4eb295d 545 } else if (length <= 0) {
b6b38f70
JP		 546 cERROR(1, "Received no data, expecting %d",
547 pdu_length - total_read);
e4eb295d
SF		 548 cifs_reconnect(server);
549 csocket = server->ssocket;
550 reconnect = 1;
551 break;
46810cbf 552 }
e4eb295d 553 }
fb8c4b14 554 if (reconnect == 2)
e4eb295d 555 break;
fb8c4b14 556 else if (reconnect == 1)
e4eb295d 557 continue;
1da177e4 558
e4eb295d 559 length += 4; /* account for rfc1002 hdr */
50c2f753 560
09d1db5c 561
e4eb295d 562 dump_smb(smb_buffer, length);
184ed211 563 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
b387eaeb 564 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
e4eb295d
SF		 565 continue;
566 }
1da177e4 567
e4eb295d
SF		 568
569 task_to_wake = NULL;
570 spin_lock(&GlobalMid_Lock);
571 list_for_each(tmp, &server->pending_mid_q) {
572 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
573
50c2f753 574 if ((mid_entry->mid == smb_buffer->Mid) &&
e4eb295d
SF		 575 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
576 (mid_entry->command == smb_buffer->Command)) {
fb8c4b14 577 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
e4eb295d 578 /* We have a multipart transact2 resp */
4b18f2a9 579 isMultiRsp = true;
fb8c4b14 580 if (mid_entry->resp_buf) {
e4eb295d 581 /* merge response - fix up 1st*/
50c2f753 582 if (coalesce_t2(smb_buffer,
e4eb295d 583 mid_entry->resp_buf)) {
4b18f2a9
SF		 584 mid_entry->multiRsp =
585 true;
e4eb295d
SF		 586 break;
587 } else {
588 /* all parts received */
4b18f2a9
SF		 589 mid_entry->multiEnd =
590 true;
50c2f753 591 goto multi_t2_fnd;
e4eb295d
SF		 592 }
593 } else {
fb8c4b14 594 if (!isLargeBuf) {
b6b38f70 595 cERROR(1, "1st trans2 resp needs bigbuf");
e4eb295d 596 /* BB maybe we can fix this up, switch
50c2f753 597 to already allocated large buffer? */
e4eb295d 598 } else {
cd63499c 599 /* Have first buffer */
e4eb295d
SF		 600 mid_entry->resp_buf =
601 smb_buffer;
4b18f2a9
SF		 602 mid_entry->largeBuf =
603 true;
e4eb295d
SF		 604 bigbuf = NULL;
605 }
606 }
607 break;
50c2f753 608 }
e4eb295d 609 mid_entry->resp_buf = smb_buffer;
4b18f2a9 610 mid_entry->largeBuf = isLargeBuf;
e4eb295d
SF		 611multi_t2_fnd:
612 task_to_wake = mid_entry->tsk;
613 mid_entry->midState = MID_RESPONSE_RECEIVED;
1047abc1
SF		 614#ifdef CONFIG_CIFS_STATS2
615 mid_entry->when_received = jiffies;
616#endif
3a5ff61c
SF		 617 /* so we do not time out requests to server
618 which is still responding (since server could
619 be busy but not dead) */
620 server->lstrp = jiffies;
e4eb295d 621 break;
46810cbf 622 }
1da177e4 623 }
e4eb295d
SF		 624 spin_unlock(&GlobalMid_Lock);
625 if (task_to_wake) {
cd63499c 626 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 627 if (!isMultiRsp) {
cd63499c 628 /* smb buffer will be freed by user thread */
26f57364 629 if (isLargeBuf)
cd63499c 630 bigbuf = NULL;
26f57364 631 else
cd63499c
SF		 632 smallbuf = NULL;
633 }
e4eb295d 634 wake_up_process(task_to_wake);
4b18f2a9
SF		 635 } else if (!is_valid_oplock_break(smb_buffer, server) &&
636 !isMultiRsp) {
b6b38f70
JP		 637 cERROR(1, "No task to wake, unknown frame received! "
638 "NumMids %d", midCount.counter);
50c2f753 639 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 640 sizeof(struct smb_hdr));
3979877e
SF		 641#ifdef CONFIG_CIFS_DEBUG2
642 cifs_dump_detail(smb_buffer);
643 cifs_dump_mids(server);
644#endif /* CIFS_DEBUG2 */
50c2f753 645
e4eb295d
SF		 646 }
647 } /* end while !EXITING */
648
e7ddee90
JL		 649 /* take it off the list, if it's not already */
650 write_lock(&cifs_tcp_ses_lock);
651 list_del_init(&server->tcp_ses_list);
652 write_unlock(&cifs_tcp_ses_lock);
653
1da177e4
LT		 654 spin_lock(&GlobalMid_Lock);
655 server->tcpStatus = CifsExiting;
e691b9d1 656 spin_unlock(&GlobalMid_Lock);
dbdbb876 657 wake_up_all(&server->response_q);
e691b9d1 658
31ca3bc3
SF		 659 /* check if we have blocked requests that need to free */
660 /* Note that cifs_max_pending is normally 50, but
661 can be set at module install time to as little as two */
e691b9d1 662 spin_lock(&GlobalMid_Lock);
fb8c4b14 663 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 664 atomic_set(&server->inFlight, cifs_max_pending - 1);
665 /* We do not want to set the max_pending too low or we
666 could end up with the counter going negative */
1da177e4 667 spin_unlock(&GlobalMid_Lock);
50c2f753 668 /* Although there should not be any requests blocked on
1da177e4 669 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 670 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 671 to the same server - they now will see the session is in exit state
672 and get out of SendReceive. */
673 wake_up_all(&server->request_q);
674 /* give those requests time to exit */
b8643e1b 675 msleep(125);
50c2f753 676
fb8c4b14 677 if (server->ssocket) {
1da177e4
LT		 678 sock_release(csocket);
679 server->ssocket = NULL;
680 }
b8643e1b 681 /* buffer usuallly freed in free_mid - need to free it here on exit */
a8a11d39
MK		 682 cifs_buf_release(bigbuf);
683 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 684 cifs_small_buf_release(smallbuf);
1da177e4 685
14fbf50d
JL		 686 /*
687 * BB: we shouldn't have to do any of this. It shouldn't be
688 * possible to exit from the thread with active SMB sessions
689 */
690 read_lock(&cifs_tcp_ses_lock);
1da177e4 691 if (list_empty(&server->pending_mid_q)) {
09d1db5c
SF		 692 /* loop through server session structures attached to this and
693 mark them dead */
14fbf50d
JL		 694 list_for_each(tmp, &server->smb_ses_list) {
695 ses = list_entry(tmp, struct cifsSesInfo,
696 smb_ses_list);
697 ses->status = CifsExiting;
698 ses->server = NULL;
1da177e4 699 }
14fbf50d 700 read_unlock(&cifs_tcp_ses_lock);
1da177e4 701 } else {
31ca3bc3
SF		 702 /* although we can not zero the server struct pointer yet,
703 since there are active requests which may depnd on them,
704 mark the corresponding SMB sessions as exiting too */
14fbf50d 705 list_for_each(tmp, &server->smb_ses_list) {
31ca3bc3 706 ses = list_entry(tmp, struct cifsSesInfo,
14fbf50d
JL		 707 smb_ses_list);
708 ses->status = CifsExiting;
31ca3bc3
SF		 709 }
710
1da177e4
LT		 711 spin_lock(&GlobalMid_Lock);
712 list_for_each(tmp, &server->pending_mid_q) {
713 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
714 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
b6b38f70
JP		 715 cFYI(1, "Clearing Mid 0x%x - waking up ",
716 mid_entry->mid);
1da177e4 717 task_to_wake = mid_entry->tsk;
26f57364 718 if (task_to_wake)
1da177e4 719 wake_up_process(task_to_wake);
1da177e4
LT		 720 }
721 }
722 spin_unlock(&GlobalMid_Lock);
14fbf50d 723 read_unlock(&cifs_tcp_ses_lock);
1da177e4 724 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 725 msleep(125);
1da177e4
LT		 726 }
727
f191401f 728 if (!list_empty(&server->pending_mid_q)) {
50c2f753 729 /* mpx threads have not exited yet give them
1da177e4 730 at least the smb send timeout time for long ops */
31ca3bc3
SF		 731 /* due to delays on oplock break requests, we need
732 to wait at least 45 seconds before giving up
733 on a request getting a response and going ahead
734 and killing cifsd */
b6b38f70 735 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 736 msleep(46000);
1da177e4
LT		 737 /* if threads still have not exited they are probably never
738 coming home not much else we can do but free the memory */
739 }
1da177e4 740
31ca3bc3
SF		 741 /* last chance to mark ses pointers invalid
742 if there are any pointing to this (e.g
50c2f753 743 if a crazy root user tried to kill cifsd
31ca3bc3 744 kernel thread explicitly this might happen) */
14fbf50d
JL		 745 /* BB: This shouldn't be necessary, see above */
746 read_lock(&cifs_tcp_ses_lock);
747 list_for_each(tmp, &server->smb_ses_list) {
748 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
749 ses->server = NULL;
31ca3bc3 750 }
14fbf50d 751 read_unlock(&cifs_tcp_ses_lock);
31ca3bc3 752
c359cf3c 753 kfree(server->hostname);
b1c8d2b4 754 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 755 kfree(server);
93d0ec85
JL		 756
757 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 758 if (length > 0)
759 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
760 GFP_KERNEL);
50c2f753 761
b1c8d2b4
JL		 762 /* if server->tsk was NULL then wait for a signal before exiting */
763 if (!task_to_wake) {
764 set_current_state(TASK_INTERRUPTIBLE);
765 while (!signal_pending(current)) {
766 schedule();
767 set_current_state(TASK_INTERRUPTIBLE);
768 }
769 set_current_state(TASK_RUNNING);
770 }
771
0468a2cf 772 module_put_and_exit(0);
1da177e4
LT		 773}
774
c359cf3c
JL		 775/* extract the host portion of the UNC string */
776static char *
777extract_hostname(const char *unc)
778{
779 const char *src;
780 char *dst, *delim;
781 unsigned int len;
782
783 /* skip double chars at beginning of string */
784 /* BB: check validity of these bytes? */
785 src = unc + 2;
786
787 /* delimiter between hostname and sharename is always '\\' now */
788 delim = strchr(src, '\\');
789 if (!delim)
790 return ERR_PTR(-EINVAL);
791
792 len = delim - src;
793 dst = kmalloc((len + 1), GFP_KERNEL);
794 if (dst == NULL)
795 return ERR_PTR(-ENOMEM);
796
797 memcpy(dst, src, len);
798 dst[len] = '\0';
799
800 return dst;
801}
802
1da177e4 803static int
50c2f753
SF		 804cifs_parse_mount_options(char *options, const char *devname,
805 struct smb_vol *vol)
1da177e4
LT		 806{
807 char *value;
808 char *data;
809 unsigned int temp_len, i, j;
810 char separator[2];
9b9d6b24
JL		 811 short int override_uid = -1;
812 short int override_gid = -1;
813 bool uid_specified = false;
814 bool gid_specified = false;
1da177e4
LT		 815
816 separator[0] = ',';
50c2f753 817 separator[1] = 0;
1da177e4 818
12e36b2f 819 if (Local_System_Name[0] != 0)
50c2f753 820 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
2cd646a2 821 else {
12e36b2f 822 char *nodename = utsname()->nodename;
50c2f753
SF		 823 int n = strnlen(nodename, 15);
824 memset(vol->source_rfc1001_name, 0x20, 15);
825 for (i = 0; i < n; i++) {
2cd646a2
SF		 826 /* does not have to be perfect mapping since field is
827 informational, only used for servers that do not support
828 port 445 and it can be overridden at mount time */
12e36b2f 829 vol->source_rfc1001_name[i] = toupper(nodename[i]);
2cd646a2 830 }
1da177e4
LT		 831 }
832 vol->source_rfc1001_name[15] = 0;
a10faeb2
SF		 833 /* null target name indicates to use *SMBSERVR default called name
834 if we end up sending RFC1001 session initialize */
835 vol->target_rfc1001_name[0] = 0;
3e4b3e1f
JL		 836 vol->cred_uid = current_uid();
837 vol->linux_uid = current_uid();
a001e5b5 838 vol->linux_gid = current_gid();
f55ed1a8
JL		 839
840 /* default to only allowing write access to owner of the mount */
841 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 842
843 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 844 /* default is always to request posix paths. */
845 vol->posix_paths = 1;
a0c9217f
JL		 846 /* default to using server inode numbers where available */
847 vol->server_ino = 1;
ac67055e 848
1da177e4
LT		 849 if (!options)
850 return 1;
851
50c2f753 852 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 853 if (options[4] != 0) {
1da177e4
LT		 854 separator[0] = options[4];
855 options += 5;
856 } else {
b6b38f70 857 cFYI(1, "Null separator not allowed");
1da177e4
LT		 858 }
859 }
50c2f753 860
1da177e4
LT		 861 while ((data = strsep(&options, separator)) != NULL) {
862 if (!*data)
863 continue;
864 if ((value = strchr(data, '=')) != NULL)
865 *value++ = '\0';
866
50c2f753
SF		 867 /* Have to parse this before we parse for "user" */
868 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 869 vol->no_xattr = 0;
50c2f753 870 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 871 vol->no_xattr = 1;
872 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 873 if (!value) {
1da177e4
LT		 874 printk(KERN_WARNING
875 "CIFS: invalid or missing username\n");
876 return 1; /* needs_arg; */
fb8c4b14 877 } else if (!*value) {
4b952a9b
SF		 878 /* null user, ie anonymous, authentication */
879 vol->nullauth = 1;
1da177e4
LT		 880 }
881 if (strnlen(value, 200) < 200) {
882 vol->username = value;
883 } else {
884 printk(KERN_WARNING "CIFS: username too long\n");
885 return 1;
886 }
887 } else if (strnicmp(data, "pass", 4) == 0) {
888 if (!value) {
889 vol->password = NULL;
890 continue;
fb8c4b14 891 } else if (value[0] == 0) {
1da177e4
LT		 892 /* check if string begins with double comma
893 since that would mean the password really
894 does start with a comma, and would not
895 indicate an empty string */
fb8c4b14 896 if (value[1] != separator[0]) {
1da177e4
LT		 897 vol->password = NULL;
898 continue;
899 }
900 }
901 temp_len = strlen(value);
902 /* removed password length check, NTLM passwords
903 can be arbitrarily long */
904
50c2f753 905 /* if comma in password, the string will be
1da177e4
LT		 906 prematurely null terminated. Commas in password are
907 specified across the cifs mount interface by a double
908 comma ie ,, and a comma used as in other cases ie ','
909 as a parameter delimiter/separator is single and due
910 to the strsep above is temporarily zeroed. */
911
912 /* NB: password legally can have multiple commas and
913 the only illegal character in a password is null */
914
50c2f753 915 if ((value[temp_len] == 0) &&
09d1db5c 916 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 917 /* reinsert comma */
918 value[temp_len] = separator[0];
50c2f753
SF		 919 temp_len += 2; /* move after second comma */
920 while (value[temp_len] != 0) {
1da177e4 921 if (value[temp_len] == separator[0]) {
50c2f753 922 if (value[temp_len+1] ==
09d1db5c
SF		 923 separator[0]) {
924 /* skip second comma */
925 temp_len++;
50c2f753 926 } else {
1da177e4
LT		 927 /* single comma indicating start
928 of next parm */
929 break;
930 }
931 }
932 temp_len++;
933 }
fb8c4b14 934 if (value[temp_len] == 0) {
1da177e4
LT		 935 options = NULL;
936 } else {
937 value[temp_len] = 0;
938 /* point option to start of next parm */
939 options = value + temp_len + 1;
940 }
50c2f753 941 /* go from value to value + temp_len condensing
1da177e4
LT		 942 double commas to singles. Note that this ends up
943 allocating a few bytes too many, which is ok */
e915fc49 944 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 945 if (vol->password == NULL) {
50c2f753
SF		 946 printk(KERN_WARNING "CIFS: no memory "
947 "for password\n");
433dc24f
SF		 948 return 1;
949 }
50c2f753 950 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 951 vol->password[j] = value[i];
fb8c4b14 952 if (value[i] == separator[0]
09d1db5c 953 && value[i+1] == separator[0]) {
1da177e4
LT		 954 /* skip second comma */
955 i++;
956 }
957 }
958 vol->password[j] = 0;
959 } else {
e915fc49 960 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 961 if (vol->password == NULL) {
50c2f753
SF		 962 printk(KERN_WARNING "CIFS: no memory "
963 "for password\n");
433dc24f
SF		 964 return 1;
965 }
1da177e4
LT		 966 strcpy(vol->password, value);
967 }
58f7f68f
JL		 968 } else if (!strnicmp(data, "ip", 2) ||
969 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 970 if (!value || !*value) {
971 vol->UNCip = NULL;
50b64e3b
JL		 972 } else if (strnlen(value, INET6_ADDRSTRLEN) <
973 INET6_ADDRSTRLEN) {
1da177e4
LT		 974 vol->UNCip = value;
975 } else {
50c2f753
SF		 976 printk(KERN_WARNING "CIFS: ip address "
977 "too long\n");
1da177e4
LT		 978 return 1;
979 }
50c2f753
SF		 980 } else if (strnicmp(data, "sec", 3) == 0) {
981 if (!value || !*value) {
b6b38f70 982 cERROR(1, "no security value specified");
50c2f753
SF		 983 continue;
984 } else if (strnicmp(value, "krb5i", 5) == 0) {
985 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 986 CIFSSEC_MUST_SIGN;
bf820679 987 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 988 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
989 CIFSSEC_MAY_KRB5; */
b6b38f70 990 cERROR(1, "Krb5 cifs privacy not supported");
bf820679
SF		 991 return 1;
992 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 993 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 994#ifdef CONFIG_CIFS_EXPERIMENTAL
995 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
996 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
997 CIFSSEC_MUST_SIGN;
998 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
999 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
1000#endif
bf820679 1001 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 1002 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 1003 CIFSSEC_MUST_SIGN;
bf820679 1004 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1005 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1006 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1007 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1008 CIFSSEC_MUST_SIGN;
bf820679
SF		 1009 } else if (strnicmp(value, "ntlm", 4) == 0) {
1010 /* ntlm is default so can be turned off too */
750d1151 1011 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1012 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1013 /* BB is there a better way to do this? */
750d1151 1014 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1015#ifdef CONFIG_CIFS_WEAK_PW_HASH
1016 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1017 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1018#endif
bf820679 1019 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1020 vol->nullauth = 1;
50c2f753 1021 } else {
b6b38f70 1022 cERROR(1, "bad security option: %s", value);
50c2f753
SF		 1023 return 1;
1024 }
1da177e4
LT		 1025 } else if ((strnicmp(data, "unc", 3) == 0)
1026 || (strnicmp(data, "target", 6) == 0)
1027 || (strnicmp(data, "path", 4) == 0)) {
1028 if (!value || !*value) {
50c2f753
SF		 1029 printk(KERN_WARNING "CIFS: invalid path to "
1030 "network resource\n");
1da177e4
LT		 1031 return 1; /* needs_arg; */
1032 }
1033 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1034 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1035 if (vol->UNC == NULL)
1da177e4 1036 return 1;
50c2f753 1037 strcpy(vol->UNC, value);
1da177e4
LT		 1038 if (strncmp(vol->UNC, "//", 2) == 0) {
1039 vol->UNC[0] = '\\';
1040 vol->UNC[1] = '\\';
50c2f753 1041 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1042 printk(KERN_WARNING
50c2f753
SF		 1043 "CIFS: UNC Path does not begin "
1044 "with // or \\\\ \n");
1da177e4
LT		 1045 return 1;
1046 }
1047 } else {
1048 printk(KERN_WARNING "CIFS: UNC name too long\n");
1049 return 1;
1050 }
1051 } else if ((strnicmp(data, "domain", 3) == 0)
1052 || (strnicmp(data, "workgroup", 5) == 0)) {
1053 if (!value || !*value) {
1054 printk(KERN_WARNING "CIFS: invalid domain name\n");
1055 return 1; /* needs_arg; */
1056 }
1057 /* BB are there cases in which a comma can be valid in
1058 a domain name and need special handling? */
3979877e 1059 if (strnlen(value, 256) < 256) {
1da177e4 1060 vol->domainname = value;
b6b38f70 1061 cFYI(1, "Domain name set");
1da177e4 1062 } else {
50c2f753
SF		 1063 printk(KERN_WARNING "CIFS: domain name too "
1064 "long\n");
1da177e4
LT		 1065 return 1;
1066 }
50c2f753
SF		 1067 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1068 if (!value || !*value) {
1069 printk(KERN_WARNING
1070 "CIFS: invalid path prefix\n");
1071 return 1; /* needs_argument */
1072 }
1073 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1074 if (value[0] != '/')
2fe87f02 1075 temp_len++; /* missing leading slash */
50c2f753
SF		 1076 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1077 if (vol->prepath == NULL)
1078 return 1;
4523cc30 1079 if (value[0] != '/') {
2fe87f02 1080 vol->prepath[0] = '/';
50c2f753 1081 strcpy(vol->prepath+1, value);
2fe87f02 1082 } else
50c2f753 1083 strcpy(vol->prepath, value);
b6b38f70 1084 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1085 } else {
1086 printk(KERN_WARNING "CIFS: prefix too long\n");
1087 return 1;
1088 }
1da177e4
LT		 1089 } else if (strnicmp(data, "iocharset", 9) == 0) {
1090 if (!value || !*value) {
63135e08
SF		 1091 printk(KERN_WARNING "CIFS: invalid iocharset "
1092 "specified\n");
1da177e4
LT		 1093 return 1; /* needs_arg; */
1094 }
1095 if (strnlen(value, 65) < 65) {
50c2f753 1096 if (strnicmp(value, "default", 7))
1da177e4 1097 vol->iocharset = value;
50c2f753
SF		 1098 /* if iocharset not set then load_nls_default
1099 is used by caller */
b6b38f70 1100 cFYI(1, "iocharset set to %s", value);
1da177e4 1101 } else {
63135e08
SF		 1102 printk(KERN_WARNING "CIFS: iocharset name "
1103 "too long.\n");
1da177e4
LT		 1104 return 1;
1105 }
9b9d6b24
JL		 1106 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1107 vol->linux_uid = simple_strtoul(value, &value, 0);
1108 uid_specified = true;
1109 } else if (!strnicmp(data, "forceuid", 8)) {
1110 override_uid = 1;
1111 } else if (!strnicmp(data, "noforceuid", 10)) {
1112 override_uid = 0;
1113 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1114 vol->linux_gid = simple_strtoul(value, &value, 0);
1115 gid_specified = true;
1116 } else if (!strnicmp(data, "forcegid", 8)) {
1117 override_gid = 1;
1118 } else if (!strnicmp(data, "noforcegid", 10)) {
1119 override_gid = 0;
1da177e4
LT		 1120 } else if (strnicmp(data, "file_mode", 4) == 0) {
1121 if (value && *value) {
1122 vol->file_mode =
1123 simple_strtoul(value, &value, 0);
1124 }
1125 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1126 if (value && *value) {
1127 vol->dir_mode =
1128 simple_strtoul(value, &value, 0);
1129 }
1130 } else if (strnicmp(data, "dirmode", 4) == 0) {
1131 if (value && *value) {
1132 vol->dir_mode =
1133 simple_strtoul(value, &value, 0);
1134 }
1135 } else if (strnicmp(data, "port", 4) == 0) {
1136 if (value && *value) {
1137 vol->port =
1138 simple_strtoul(value, &value, 0);
1139 }
1140 } else if (strnicmp(data, "rsize", 5) == 0) {
1141 if (value && *value) {
1142 vol->rsize =
1143 simple_strtoul(value, &value, 0);
1144 }
1145 } else if (strnicmp(data, "wsize", 5) == 0) {
1146 if (value && *value) {
1147 vol->wsize =
1148 simple_strtoul(value, &value, 0);
1149 }
1150 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1151 if (!value || !*value) {
b6b38f70 1152 cERROR(1, "no socket option specified");
6a5fa236
SF		 1153 continue;
1154 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1155 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1156 }
1157 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1158 if (!value || !*value || (*value == ' ')) {
b6b38f70 1159 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1160 } else {
50c2f753
SF		 1161 memset(vol->source_rfc1001_name, 0x20, 15);
1162 for (i = 0; i < 15; i++) {
1163 /* BB are there cases in which a comma can be
1da177e4
LT		 1164 valid in this workstation netbios name (and need
1165 special handling)? */
1166
1167 /* We do not uppercase netbiosname for user */
50c2f753 1168 if (value[i] == 0)
1da177e4 1169 break;
50c2f753
SF		 1170 else
1171 vol->source_rfc1001_name[i] =
1172 value[i];
1da177e4
LT		 1173 }
1174 /* The string has 16th byte zero still from
1175 set at top of the function */
50c2f753
SF		 1176 if ((i == 15) && (value[i] != 0))
1177 printk(KERN_WARNING "CIFS: netbiosname"
1178 " longer than 15 truncated.\n");
a10faeb2
SF		 1179 }
1180 } else if (strnicmp(data, "servern", 7) == 0) {
1181 /* servernetbiosname specified override *SMBSERVER */
1182 if (!value || !*value || (*value == ' ')) {
b6b38f70 1183 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1184 } else {
1185 /* last byte, type, is 0x20 for servr type */
50c2f753 1186 memset(vol->target_rfc1001_name, 0x20, 16);
a10faeb2 1187
50c2f753 1188 for (i = 0; i < 15; i++) {
a10faeb2 1189 /* BB are there cases in which a comma can be
50c2f753
SF		 1190 valid in this workstation netbios name
1191 (and need special handling)? */
a10faeb2 1192
50c2f753
SF		 1193 /* user or mount helper must uppercase
1194 the netbiosname */
1195 if (value[i] == 0)
a10faeb2
SF		 1196 break;
1197 else
50c2f753
SF		 1198 vol->target_rfc1001_name[i] =
1199 value[i];
a10faeb2
SF		 1200 }
1201 /* The string has 16th byte zero still from
1202 set at top of the function */
50c2f753
SF		 1203 if ((i == 15) && (value[i] != 0))
1204 printk(KERN_WARNING "CIFS: server net"
1205 "biosname longer than 15 truncated.\n");
1da177e4
LT		 1206 }
1207 } else if (strnicmp(data, "credentials", 4) == 0) {
1208 /* ignore */
1209 } else if (strnicmp(data, "version", 3) == 0) {
1210 /* ignore */
50c2f753 1211 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1212 /* ignore */
71a394fa
SF		 1213 } else if (strnicmp(data, "rw", 2) == 0) {
1214 /* ignore */
1215 } else if (strnicmp(data, "ro", 2) == 0) {
1216 /* ignore */
edf1ae40
SF		 1217 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1218 vol->noblocksnd = 1;
1219 } else if (strnicmp(data, "noautotune", 10) == 0) {
1220 vol->noautotune = 1;
1da177e4
LT		 1221 } else if ((strnicmp(data, "suid", 4) == 0) ||
1222 (strnicmp(data, "nosuid", 6) == 0) ||
1223 (strnicmp(data, "exec", 4) == 0) ||
1224 (strnicmp(data, "noexec", 6) == 0) ||
1225 (strnicmp(data, "nodev", 5) == 0) ||
1226 (strnicmp(data, "noauto", 6) == 0) ||
1227 (strnicmp(data, "dev", 3) == 0)) {
1228 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1229 uses these opts to set flags, and the flags are read
1230 by the kernel vfs layer before we get here (ie
1231 before read super) so there is no point trying to
1232 parse these options again and set anything and it
1233 is ok to just ignore them */
1da177e4 1234 continue;
1da177e4
LT		 1235 } else if (strnicmp(data, "hard", 4) == 0) {
1236 vol->retry = 1;
1237 } else if (strnicmp(data, "soft", 4) == 0) {
1238 vol->retry = 0;
1239 } else if (strnicmp(data, "perm", 4) == 0) {
1240 vol->noperm = 0;
1241 } else if (strnicmp(data, "noperm", 6) == 0) {
1242 vol->noperm = 1;
6a0b4824
SF		 1243 } else if (strnicmp(data, "mapchars", 8) == 0) {
1244 vol->remap = 1;
1245 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1246 vol->remap = 0;
50c2f753
SF		 1247 } else if (strnicmp(data, "sfu", 3) == 0) {
1248 vol->sfu_emul = 1;
1249 } else if (strnicmp(data, "nosfu", 5) == 0) {
1250 vol->sfu_emul = 0;
2c1b8615
SF		 1251 } else if (strnicmp(data, "nodfs", 5) == 0) {
1252 vol->nodfs = 1;
ac67055e
JA		 1253 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1254 vol->posix_paths = 1;
1255 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1256 vol->posix_paths = 0;
c18c842b
SF		 1257 } else if (strnicmp(data, "nounix", 6) == 0) {
1258 vol->no_linux_ext = 1;
1259 } else if (strnicmp(data, "nolinux", 7) == 0) {
1260 vol->no_linux_ext = 1;
50c2f753 1261 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1262 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1263 vol->nocase = 1;
f636a348
JL		 1264 } else if (strnicmp(data, "mand", 4) == 0) {
1265 /* ignore */
1266 } else if (strnicmp(data, "nomand", 6) == 0) {
1267 /* ignore */
1268 } else if (strnicmp(data, "_netdev", 7) == 0) {
1269 /* ignore */
c46fa8ac
SF		 1270 } else if (strnicmp(data, "brl", 3) == 0) {
1271 vol->nobrl = 0;
50c2f753 1272 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1273 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1274 vol->nobrl = 1;
d3485d37
SF		 1275 /* turn off mandatory locking in mode
1276 if remote locking is turned off since the
1277 local vfs will do advisory */
50c2f753
SF		 1278 if (vol->file_mode ==
1279 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1280 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1281 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1282 /* will take the shorter form "forcemand" as well */
1283 /* This mount option will force use of mandatory
1284 (DOS/Windows style) byte range locks, instead of
1285 using posix advisory byte range locks, even if the
1286 Unix extensions are available and posix locks would
1287 be supported otherwise. If Unix extensions are not
1288 negotiated this has no effect since mandatory locks
1289 would be used (mandatory locks is all that those
1290 those servers support) */
1291 vol->mand_lock = 1;
1da177e4
LT		 1292 } else if (strnicmp(data, "setuids", 7) == 0) {
1293 vol->setuids = 1;
1294 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1295 vol->setuids = 0;
d0a9c078
JL		 1296 } else if (strnicmp(data, "dynperm", 7) == 0) {
1297 vol->dynperm = true;
1298 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1299 vol->dynperm = false;
1da177e4
LT		 1300 } else if (strnicmp(data, "nohard", 6) == 0) {
1301 vol->retry = 0;
1302 } else if (strnicmp(data, "nosoft", 6) == 0) {
1303 vol->retry = 1;
1304 } else if (strnicmp(data, "nointr", 6) == 0) {
1305 vol->intr = 0;
1306 } else if (strnicmp(data, "intr", 4) == 0) {
1307 vol->intr = 1;
be652445
SF		 1308 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1309 vol->nostrictsync = 1;
1310 } else if (strnicmp(data, "strictsync", 10) == 0) {
1311 vol->nostrictsync = 0;
50c2f753 1312 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1313 vol->server_ino = 1;
50c2f753 1314 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1315 vol->server_ino = 0;
50c2f753 1316 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1317 vol->cifs_acl = 1;
1318 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1319 vol->cifs_acl = 0;
50c2f753 1320 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1321 vol->no_psx_acl = 0;
50c2f753 1322 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1323 vol->no_psx_acl = 1;
84210e91
SF		 1324#ifdef CONFIG_CIFS_EXPERIMENTAL
1325 } else if (strnicmp(data, "locallease", 6) == 0) {
1326 vol->local_lease = 1;
1327#endif
50c2f753 1328 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1329 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1330 } else if (strnicmp(data, "seal", 4) == 0) {
1331 /* we do not do the following in secFlags because seal
1332 is a per tree connection (mount) not a per socket
1333 or per-smb connection option in the protocol */
1334 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1335 vol->seal = 1;
50c2f753 1336 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1337 vol->direct_io = 1;
50c2f753 1338 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1339 vol->direct_io = 1;
1da177e4 1340 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1341 printk(KERN_WARNING "CIFS: Mount option noac not "
1342 "supported. Instead set "
1343 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
fa1df75d
SJ		 1344 } else if (strnicmp(data, "fsc", 3) == 0) {
1345 vol->fsc = true;
1da177e4 1346 } else
50c2f753
SF		 1347 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1348 data);
1da177e4
LT		 1349 }
1350 if (vol->UNC == NULL) {
4523cc30 1351 if (devname == NULL) {
50c2f753
SF		 1352 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1353 "target\n");
1da177e4
LT		 1354 return 1;
1355 }
1356 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1357 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1358 if (vol->UNC == NULL)
1da177e4 1359 return 1;
50c2f753 1360 strcpy(vol->UNC, devname);
1da177e4
LT		 1361 if (strncmp(vol->UNC, "//", 2) == 0) {
1362 vol->UNC[0] = '\\';
1363 vol->UNC[1] = '\\';
1364 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1365 printk(KERN_WARNING "CIFS: UNC Path does not "
1366 "begin with // or \\\\ \n");
1da177e4
LT		 1367 return 1;
1368 }
7c5e628f
IM		 1369 value = strpbrk(vol->UNC+2, "/\\");
1370 if (value)
1371 *value = '\\';
1da177e4
LT		 1372 } else {
1373 printk(KERN_WARNING "CIFS: UNC name too long\n");
1374 return 1;
1375 }
1376 }
fb8c4b14 1377 if (vol->UNCip == NULL)
1da177e4
LT		 1378 vol->UNCip = &vol->UNC[2];
1379
9b9d6b24
JL		 1380 if (uid_specified)
1381 vol->override_uid = override_uid;
1382 else if (override_uid == 1)
1383 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1384 "specified with no uid= option.\n");
1385
1386 if (gid_specified)
1387 vol->override_gid = override_gid;
1388 else if (override_gid == 1)
1389 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1390 "specified with no gid= option.\n");
1391
1da177e4
LT		 1392 return 0;
1393}
1394
4515148e
JL		 1395static bool
1396match_address(struct TCP_Server_Info *server, struct sockaddr *addr)
1397{
1398 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1399 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1400
1401 switch (addr->sa_family) {
1402 case AF_INET:
1403 if (addr4->sin_addr.s_addr !=
1404 server->addr.sockAddr.sin_addr.s_addr)
1405 return false;
1406 if (addr4->sin_port &&
1407 addr4->sin_port != server->addr.sockAddr.sin_port)
1408 return false;
1409 break;
1410 case AF_INET6:
1411 if (!ipv6_addr_equal(&addr6->sin6_addr,
1412 &server->addr.sockAddr6.sin6_addr))
1413 return false;
1414 if (addr6->sin6_scope_id !=
1415 server->addr.sockAddr6.sin6_scope_id)
1416 return false;
1417 if (addr6->sin6_port &&
1418 addr6->sin6_port != server->addr.sockAddr6.sin6_port)
1419 return false;
1420 break;
1421 }
1422
1423 return true;
1424}
1425
daf5b0b6
JL		 1426static bool
1427match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1428{
1429 unsigned int secFlags;
1430
1431 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1432 secFlags = vol->secFlg;
1433 else
1434 secFlags = global_secflags | vol->secFlg;
1435
1436 switch (server->secType) {
1437 case LANMAN:
1438 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1439 return false;
1440 break;
1441 case NTLMv2:
1442 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1443 return false;
1444 break;
1445 case NTLM:
1446 if (!(secFlags & CIFSSEC_MAY_NTLM))
1447 return false;
1448 break;
1449 case Kerberos:
1450 if (!(secFlags & CIFSSEC_MAY_KRB5))
1451 return false;
1452 break;
1453 case RawNTLMSSP:
1454 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1455 return false;
1456 break;
1457 default:
1458 /* shouldn't happen */
1459 return false;
1460 }
1461
1462 /* now check if signing mode is acceptible */
1463 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1464 (server->secMode & SECMODE_SIGN_REQUIRED))
1465 return false;
1466 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1467 (server->secMode &
1468 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1469 return false;
1470
1471 return true;
1472}
1473
e7ddee90 1474static struct TCP_Server_Info *
daf5b0b6 1475cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1476{
e7ddee90 1477 struct TCP_Server_Info *server;
e7ddee90
JL		 1478
1479 write_lock(&cifs_tcp_ses_lock);
4515148e 1480 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
e7ddee90
JL		 1481 /*
1482 * the demux thread can exit on its own while still in CifsNew
1483 * so don't accept any sockets in that state. Since the
1484 * tcpStatus never changes back to CifsNew it's safe to check
1485 * for this without a lock.
1486 */
1487 if (server->tcpStatus == CifsNew)
1b20d672 1488 continue;
1da177e4 1489
4515148e
JL		 1490 if (!match_address(server, addr))
1491 continue;
1b20d672 1492
daf5b0b6
JL		 1493 if (!match_security(server, vol))
1494 continue;
1495
e7ddee90
JL		 1496 ++server->srv_count;
1497 write_unlock(&cifs_tcp_ses_lock);
b6b38f70 1498 cFYI(1, "Existing tcp session with server found");
e7ddee90 1499 return server;
1da177e4 1500 }
e7ddee90 1501 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1502 return NULL;
1503}
1b20d672 1504
14fbf50d 1505static void
e7ddee90 1506cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1507{
e7ddee90 1508 struct task_struct *task;
1b20d672 1509
e7ddee90
JL		 1510 write_lock(&cifs_tcp_ses_lock);
1511 if (--server->srv_count > 0) {
1512 write_unlock(&cifs_tcp_ses_lock);
1513 return;
1da177e4 1514 }
1b20d672 1515
e7ddee90
JL		 1516 list_del_init(&server->tcp_ses_list);
1517 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1518
e7ddee90
JL		 1519 spin_lock(&GlobalMid_Lock);
1520 server->tcpStatus = CifsExiting;
1521 spin_unlock(&GlobalMid_Lock);
dea570e0 1522
488f1d2d
SJ		 1523 cifs_fscache_release_client_cookie(server);
1524
e7ddee90
JL		 1525 task = xchg(&server->tsk, NULL);
1526 if (task)
1527 force_sig(SIGKILL, task);
1da177e4
LT		 1528}
1529
63c038c2
JL		 1530static struct TCP_Server_Info *
1531cifs_get_tcp_session(struct smb_vol *volume_info)
1532{
1533 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1534 struct sockaddr_storage addr;
63c038c2
JL		 1535 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1536 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1537 int rc;
1538
a9ac49d3 1539 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1540
b6b38f70 1541 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1542
1e68b2b2 1543 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1544 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1545 volume_info->UNCip,
67b7626a 1546 strlen(volume_info->UNCip),
50d97160 1547 volume_info->port);
1e68b2b2 1548 if (!rc) {
63c038c2
JL		 1549 /* we failed translating address */
1550 rc = -EINVAL;
1551 goto out_err;
1552 }
63c038c2
JL		 1553 } else if (volume_info->UNCip) {
1554 /* BB using ip addr as tcp_ses name to connect to the
1555 DFS root below */
b6b38f70 1556 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1557 rc = -EINVAL;
1558 goto out_err;
1559 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1560 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1561 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1562 rc = -EINVAL;
1563 goto out_err;
1564 }
1565
1566 /* see if we already have a matching tcp_ses */
daf5b0b6 1567 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1568 if (tcp_ses)
1569 return tcp_ses;
1570
1571 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1572 if (!tcp_ses) {
1573 rc = -ENOMEM;
1574 goto out_err;
1575 }
1576
1577 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1578 if (IS_ERR(tcp_ses->hostname)) {
1579 rc = PTR_ERR(tcp_ses->hostname);
1580 goto out_err;
1581 }
1582
1583 tcp_ses->noblocksnd = volume_info->noblocksnd;
1584 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1585 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1586 atomic_set(&tcp_ses->inFlight, 0);
1587 init_waitqueue_head(&tcp_ses->response_q);
1588 init_waitqueue_head(&tcp_ses->request_q);
1589 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1590 mutex_init(&tcp_ses->srv_mutex);
1591 memcpy(tcp_ses->workstation_RFC1001_name,
1592 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1593 memcpy(tcp_ses->server_RFC1001_name,
1594 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1595 tcp_ses->sequence_number = 0;
1596 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1597 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1598
1599 /*
1600 * at this point we are the only ones with the pointer
1601 * to the struct since the kernel thread not created yet
1602 * no need to spinlock this init of tcpStatus or srv_count
1603 */
1604 tcp_ses->tcpStatus = CifsNew;
1605 ++tcp_ses->srv_count;
1606
a9ac49d3 1607 if (addr.ss_family == AF_INET6) {
b6b38f70 1608 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1609 /* BB should we allow ipv6 on port 139? */
1610 /* other OS never observed in Wild doing 139 with v6 */
1611 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1612 sizeof(struct sockaddr_in6));
d5c5605c 1613 rc = ipv6_connect(tcp_ses);
63c038c2
JL		 1614 } else {
1615 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1616 sizeof(struct sockaddr_in));
bcf4b106 1617 rc = ipv4_connect(tcp_ses);
63c038c2
JL		 1618 }
1619 if (rc < 0) {
b6b38f70 1620 cERROR(1, "Error connecting to socket. Aborting operation");
63c038c2
JL		 1621 goto out_err;
1622 }
1623
1624 /*
1625 * since we're in a cifs function already, we know that
1626 * this will succeed. No need for try_module_get().
1627 */
1628 __module_get(THIS_MODULE);
1629 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1630 tcp_ses, "cifsd");
1631 if (IS_ERR(tcp_ses->tsk)) {
1632 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1633 cERROR(1, "error %d create cifsd thread", rc);
63c038c2
JL		 1634 module_put(THIS_MODULE);
1635 goto out_err;
1636 }
1637
1638 /* thread spawned, put it on the list */
1639 write_lock(&cifs_tcp_ses_lock);
1640 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1641 write_unlock(&cifs_tcp_ses_lock);
1642
488f1d2d
SJ		 1643 cifs_fscache_get_client_cookie(tcp_ses);
1644
63c038c2
JL		 1645 return tcp_ses;
1646
1647out_err:
1648 if (tcp_ses) {
8347a5cd
SF		 1649 if (!IS_ERR(tcp_ses->hostname))
1650 kfree(tcp_ses->hostname);
63c038c2
JL		 1651 if (tcp_ses->ssocket)
1652 sock_release(tcp_ses->ssocket);
1653 kfree(tcp_ses);
1654 }
1655 return ERR_PTR(rc);
1656}
1657
14fbf50d 1658static struct cifsSesInfo *
4ff67b72 1659cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 1660{
14fbf50d 1661 struct cifsSesInfo *ses;
dea570e0 1662
14fbf50d 1663 write_lock(&cifs_tcp_ses_lock);
4ff67b72
JL		 1664 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1665 switch (server->secType) {
1666 case Kerberos:
3e4b3e1f 1667 if (vol->cred_uid != ses->cred_uid)
4ff67b72
JL		 1668 continue;
1669 break;
1670 default:
1671 /* anything else takes username/password */
1672 if (strncmp(ses->userName, vol->username,
1673 MAX_USERNAME_SIZE))
1674 continue;
1675 if (strlen(vol->username) != 0 &&
fc87a406
JL		 1676 strncmp(ses->password,
1677 vol->password ? vol->password : "",
4ff67b72
JL		 1678 MAX_PASSWORD_SIZE))
1679 continue;
1680 }
14fbf50d
JL		 1681 ++ses->ses_count;
1682 write_unlock(&cifs_tcp_ses_lock);
1683 return ses;
1684 }
1685 write_unlock(&cifs_tcp_ses_lock);
1686 return NULL;
1687}
dea570e0 1688
14fbf50d
JL		 1689static void
1690cifs_put_smb_ses(struct cifsSesInfo *ses)
1691{
1692 int xid;
1693 struct TCP_Server_Info *server = ses->server;
dea570e0 1694
36988c76 1695 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
14fbf50d
JL		 1696 write_lock(&cifs_tcp_ses_lock);
1697 if (--ses->ses_count > 0) {
1698 write_unlock(&cifs_tcp_ses_lock);
1699 return;
1700 }
dea570e0 1701
14fbf50d
JL		 1702 list_del_init(&ses->smb_ses_list);
1703 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1704
14fbf50d
JL		 1705 if (ses->status == CifsGood) {
1706 xid = GetXid();
1707 CIFSSMBLogoff(xid, ses);
1708 _FreeXid(xid);
1709 }
9fbc5908 1710 cifs_crypto_shash_release(server);
14fbf50d
JL		 1711 sesInfoFree(ses);
1712 cifs_put_tcp_session(server);
1713}
dea570e0 1714
36988c76
JL		 1715static struct cifsSesInfo *
1716cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1717{
1718 int rc = -ENOMEM, xid;
1719 struct cifsSesInfo *ses;
1720
1721 xid = GetXid();
1722
4ff67b72 1723 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 1724 if (ses) {
1725 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1726
1727 /* existing SMB ses has a server reference already */
1728 cifs_put_tcp_session(server);
1729
1730 mutex_lock(&ses->session_mutex);
198b5682
JL		 1731 rc = cifs_negotiate_protocol(xid, ses);
1732 if (rc) {
1733 mutex_unlock(&ses->session_mutex);
1734 /* problem -- put our ses reference */
1735 cifs_put_smb_ses(ses);
1736 FreeXid(xid);
1737 return ERR_PTR(rc);
1738 }
36988c76
JL		 1739 if (ses->need_reconnect) {
1740 cFYI(1, "Session needs reconnect");
1741 rc = cifs_setup_session(xid, ses,
1742 volume_info->local_nls);
1743 if (rc) {
1744 mutex_unlock(&ses->session_mutex);
1745 /* problem -- put our reference */
1746 cifs_put_smb_ses(ses);
1747 FreeXid(xid);
1748 return ERR_PTR(rc);
1749 }
1750 }
1751 mutex_unlock(&ses->session_mutex);
1752 FreeXid(xid);
1753 return ses;
1754 }
1755
1756 cFYI(1, "Existing smb sess not found");
1757 ses = sesInfoAlloc();
1758 if (ses == NULL)
1759 goto get_ses_fail;
1760
1761 /* new SMB session uses our server ref */
1762 ses->server = server;
1763 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1764 sprintf(ses->serverName, "%pI6",
1765 &server->addr.sockAddr6.sin6_addr);
1766 else
1767 sprintf(ses->serverName, "%pI4",
1768 &server->addr.sockAddr.sin_addr.s_addr);
1769
1770 if (volume_info->username)
1771 strncpy(ses->userName, volume_info->username,
1772 MAX_USERNAME_SIZE);
1773
1774 /* volume_info->password freed at unmount */
1775 if (volume_info->password) {
1776 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1777 if (!ses->password)
1778 goto get_ses_fail;
1779 }
1780 if (volume_info->domainname) {
1781 int len = strlen(volume_info->domainname);
1782 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1783 if (ses->domainName)
1784 strcpy(ses->domainName, volume_info->domainname);
1785 }
3e4b3e1f 1786 ses->cred_uid = volume_info->cred_uid;
36988c76
JL		 1787 ses->linux_uid = volume_info->linux_uid;
1788 ses->overrideSecFlg = volume_info->secFlg;
1789
9fbc5908
SF		 1790 rc = cifs_crypto_shash_allocate(server);
1791 if (rc) {
1792 cERROR(1, "could not setup hash structures rc %d", rc);
1793 goto get_ses_fail;
1794 }
1795 server->tilen = 0;
1796 server->tiblob = NULL;
1797
36988c76 1798 mutex_lock(&ses->session_mutex);
198b5682
JL		 1799 rc = cifs_negotiate_protocol(xid, ses);
1800 if (!rc)
1801 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76 1802 mutex_unlock(&ses->session_mutex);
9fbc5908
SF		 1803 if (rc) {
1804 cifs_crypto_shash_release(ses->server);
36988c76 1805 goto get_ses_fail;
9fbc5908 1806 }
36988c76
JL		 1807
1808 /* success, put it on the list */
1809 write_lock(&cifs_tcp_ses_lock);
1810 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1811 write_unlock(&cifs_tcp_ses_lock);
1812
1813 FreeXid(xid);
1814 return ses;
1815
1816get_ses_fail:
1817 sesInfoFree(ses);
1818 FreeXid(xid);
1819 return ERR_PTR(rc);
1820}
1821
f1987b44
JL		 1822static struct cifsTconInfo *
1823cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1824{
1825 struct list_head *tmp;
1826 struct cifsTconInfo *tcon;
1827
1828 write_lock(&cifs_tcp_ses_lock);
1829 list_for_each(tmp, &ses->tcon_list) {
1830 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1831 if (tcon->tidStatus == CifsExiting)
1832 continue;
1833 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
dea570e0
SF		 1834 continue;
1835
f1987b44
JL		 1836 ++tcon->tc_count;
1837 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1838 return tcon;
1da177e4 1839 }
f1987b44 1840 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1841 return NULL;
1842}
1843
f1987b44
JL		 1844static void
1845cifs_put_tcon(struct cifsTconInfo *tcon)
1846{
1847 int xid;
1848 struct cifsSesInfo *ses = tcon->ses;
1849
d00c28de 1850 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
f1987b44
JL		 1851 write_lock(&cifs_tcp_ses_lock);
1852 if (--tcon->tc_count > 0) {
1853 write_unlock(&cifs_tcp_ses_lock);
1854 return;
1855 }
1856
1857 list_del_init(&tcon->tcon_list);
1858 write_unlock(&cifs_tcp_ses_lock);
1859
1860 xid = GetXid();
1861 CIFSSMBTDis(xid, tcon);
1862 _FreeXid(xid);
1863
d03382ce 1864 cifs_fscache_release_super_cookie(tcon);
9f841593 1865 tconInfoFree(tcon);
f1987b44
JL		 1866 cifs_put_smb_ses(ses);
1867}
1868
d00c28de
JL		 1869static struct cifsTconInfo *
1870cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1871{
1872 int rc, xid;
1873 struct cifsTconInfo *tcon;
1874
1875 tcon = cifs_find_tcon(ses, volume_info->UNC);
1876 if (tcon) {
1877 cFYI(1, "Found match on UNC path");
1878 /* existing tcon already has a reference */
1879 cifs_put_smb_ses(ses);
1880 if (tcon->seal != volume_info->seal)
1881 cERROR(1, "transport encryption setting "
1882 "conflicts with existing tid");
1883 return tcon;
1884 }
1885
1886 tcon = tconInfoAlloc();
1887 if (tcon == NULL) {
1888 rc = -ENOMEM;
1889 goto out_fail;
1890 }
1891
1892 tcon->ses = ses;
1893 if (volume_info->password) {
1894 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1895 if (!tcon->password) {
1896 rc = -ENOMEM;
1897 goto out_fail;
1898 }
1899 }
1900
1901 if (strchr(volume_info->UNC + 3, '\\') == NULL
1902 && strchr(volume_info->UNC + 3, '/') == NULL) {
1903 cERROR(1, "Missing share name");
1904 rc = -ENODEV;
1905 goto out_fail;
1906 }
1907
1908 /* BB Do we need to wrap session_mutex around
1909 * this TCon call and Unix SetFS as
1910 * we do on SessSetup and reconnect? */
1911 xid = GetXid();
1912 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1913 FreeXid(xid);
1914 cFYI(1, "CIFS Tcon rc = %d", rc);
1915 if (rc)
1916 goto out_fail;
1917
1918 if (volume_info->nodfs) {
1919 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1920 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1921 }
1922 tcon->seal = volume_info->seal;
1923 /* we can have only one retry value for a connection
1924 to a share so for resources mounted more than once
1925 to the same server share the last value passed in
1926 for the retry flag is used */
1927 tcon->retry = volume_info->retry;
1928 tcon->nocase = volume_info->nocase;
1929 tcon->local_lease = volume_info->local_lease;
1930
1931 write_lock(&cifs_tcp_ses_lock);
1932 list_add(&tcon->tcon_list, &ses->tcon_list);
1933 write_unlock(&cifs_tcp_ses_lock);
1934
d03382ce
SJ		 1935 cifs_fscache_get_super_cookie(tcon);
1936
d00c28de
JL		 1937 return tcon;
1938
1939out_fail:
1940 tconInfoFree(tcon);
1941 return ERR_PTR(rc);
1942}
1943
1944
1da177e4 1945int
50c2f753
SF		 1946get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
1947 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 1948 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 1949{
1950 char *temp_unc;
1951 int rc = 0;
1952
1953 *pnum_referrals = 0;
366781c1 1954 *preferrals = NULL;
1da177e4
LT		 1955
1956 if (pSesInfo->ipc_tid == 0) {
1957 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 1958 strnlen(pSesInfo->serverName,
1959 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 1960 + 1 + 4 /* slash IPC$ */ + 2,
1961 GFP_KERNEL);
1962 if (temp_unc == NULL)
1963 return -ENOMEM;
1964 temp_unc[0] = '\\';
1965 temp_unc[1] = '\\';
1966 strcpy(temp_unc + 2, pSesInfo->serverName);
1967 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
1968 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 1969 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 1970 kfree(temp_unc);
1971 }
1972 if (rc == 0)
c2cf07d5 1973 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 1974 pnum_referrals, nls_codepage, remap);
366781c1
SF		 1975 /* BB map targetUNCs to dfs_info3 structures, here or
1976 in CIFSGetDFSRefer BB */
1da177e4
LT		 1977
1978 return rc;
1979}
1980
09e50d55
JL		 1981#ifdef CONFIG_DEBUG_LOCK_ALLOC
1982static struct lock_class_key cifs_key[2];
1983static struct lock_class_key cifs_slock_key[2];
1984
1985static inline void
1986cifs_reclassify_socket4(struct socket *sock)
1987{
1988 struct sock *sk = sock->sk;
1989 BUG_ON(sock_owned_by_user(sk));
1990 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
1991 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
1992}
1993
1994static inline void
1995cifs_reclassify_socket6(struct socket *sock)
1996{
1997 struct sock *sk = sock->sk;
1998 BUG_ON(sock_owned_by_user(sk));
1999 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2000 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2001}
2002#else
2003static inline void
2004cifs_reclassify_socket4(struct socket *sock)
2005{
2006}
2007
2008static inline void
2009cifs_reclassify_socket6(struct socket *sock)
2010{
2011}
2012#endif
2013
1da177e4 2014/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 2015static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 2016{
50c2f753 2017 unsigned int i, j;
1da177e4 2018
50c2f753 2019 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 2020 /* mask a nibble at a time and encode */
2021 target[j] = 'A' + (0x0F & (source[i] >> 4));
2022 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 2023 j += 2;
1da177e4
LT		 2024 }
2025
2026}
2027
2028
2029static int
bcf4b106 2030ipv4_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2031{
2032 int rc = 0;
6a5fa236 2033 int val;
bcf4b106 2034 bool connected = false;
1da177e4 2035 __be16 orig_port = 0;
bcf4b106 2036 struct socket *socket = server->ssocket;
1da177e4 2037
bcf4b106 2038 if (socket == NULL) {
50c2f753 2039 rc = sock_create_kern(PF_INET, SOCK_STREAM,
bcf4b106 2040 IPPROTO_TCP, &socket);
1da177e4 2041 if (rc < 0) {
b6b38f70 2042 cERROR(1, "Error %d creating socket", rc);
1da177e4 2043 return rc;
1da177e4 2044 }
bcf4b106
JL		 2045
2046 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2047 cFYI(1, "Socket created");
bcf4b106
JL		 2048 server->ssocket = socket;
2049 socket->sk->sk_allocation = GFP_NOFS;
2050 cifs_reclassify_socket4(socket);
1da177e4
LT		 2051 }
2052
bcf4b106
JL		 2053 /* user overrode default port */
2054 if (server->addr.sockAddr.sin_port) {
2055 rc = socket->ops->connect(socket, (struct sockaddr *)
2056 &server->addr.sockAddr,
2057 sizeof(struct sockaddr_in), 0);
1da177e4 2058 if (rc >= 0)
bcf4b106 2059 connected = true;
50c2f753 2060 }
1da177e4 2061
fb8c4b14 2062 if (!connected) {
50c2f753 2063 /* save original port so we can retry user specified port
1da177e4 2064 later if fall back ports fail this time */
bcf4b106 2065 orig_port = server->addr.sockAddr.sin_port;
1da177e4
LT		 2066
2067 /* do not retry on the same port we just failed on */
bcf4b106
JL		 2068 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
2069 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
2070 rc = socket->ops->connect(socket,
2071 (struct sockaddr *)
2072 &server->addr.sockAddr,
2073 sizeof(struct sockaddr_in), 0);
1da177e4 2074 if (rc >= 0)
bcf4b106 2075 connected = true;
1da177e4
LT		 2076 }
2077 }
2078 if (!connected) {
bcf4b106
JL		 2079 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
2080 rc = socket->ops->connect(socket, (struct sockaddr *)
2081 &server->addr.sockAddr,
6345a3a8 2082 sizeof(struct sockaddr_in), 0);
50c2f753 2083 if (rc >= 0)
bcf4b106 2084 connected = true;
1da177e4
LT		 2085 }
2086
2087 /* give up here - unless we want to retry on different
2088 protocol families some day */
2089 if (!connected) {
fb8c4b14 2090 if (orig_port)
bcf4b106 2091 server->addr.sockAddr.sin_port = orig_port;
b6b38f70 2092 cFYI(1, "Error %d connecting to server via ipv4", rc);
bcf4b106
JL		 2093 sock_release(socket);
2094 server->ssocket = NULL;
1da177e4
LT		 2095 return rc;
2096 }
bcf4b106
JL		 2097
2098
2099 /*
2100 * Eventually check for other socket options to change from
2101 * the default. sock_setsockopt not used because it expects
2102 * user space buffer
2103 */
2104 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2105 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2106
b387eaeb 2107 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2108 if (server->noautotune) {
2109 if (socket->sk->sk_sndbuf < (200 * 1024))
2110 socket->sk->sk_sndbuf = 200 * 1024;
2111 if (socket->sk->sk_rcvbuf < (140 * 1024))
2112 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2113 }
1da177e4 2114
6a5fa236
SF		 2115 if (server->tcp_nodelay) {
2116 val = 1;
2117 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2118 (char *)&val, sizeof(val));
2119 if (rc)
b6b38f70 2120 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2121 }
2122
b6b38f70 2123 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2124 socket->sk->sk_sndbuf,
b6b38f70 2125 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2126
1da177e4 2127 /* send RFC1001 sessinit */
bcf4b106 2128 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1da177e4 2129 /* some servers require RFC1001 sessinit before sending
50c2f753 2130 negprot - BB check reconnection in case where second
1da177e4 2131 sessinit is sent but no second negprot */
50c2f753
SF		 2132 struct rfc1002_session_packet *ses_init_buf;
2133 struct smb_hdr *smb_buf;
2134 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2135 GFP_KERNEL);
fb8c4b14 2136 if (ses_init_buf) {
1da177e4 2137 ses_init_buf->trailer.session_req.called_len = 32;
bcf4b106
JL		 2138 if (server->server_RFC1001_name &&
2139 server->server_RFC1001_name[0] != 0)
8ecaf67a
JL		 2140 rfc1002mangle(ses_init_buf->trailer.
2141 session_req.called_name,
bcf4b106 2142 server->server_RFC1001_name,
8ecaf67a 2143 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2144 else
8ecaf67a
JL		 2145 rfc1002mangle(ses_init_buf->trailer.
2146 session_req.called_name,
2147 DEFAULT_CIFS_CALLED_NAME,
2148 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 2149
1da177e4 2150 ses_init_buf->trailer.session_req.calling_len = 32;
bcf4b106 2151
1da177e4
LT		 2152 /* calling name ends in null (byte 16) from old smb
2153 convention. */
bcf4b106
JL		 2154 if (server->workstation_RFC1001_name &&
2155 server->workstation_RFC1001_name[0] != 0)
8ecaf67a
JL		 2156 rfc1002mangle(ses_init_buf->trailer.
2157 session_req.calling_name,
bcf4b106 2158 server->workstation_RFC1001_name,
8ecaf67a 2159 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2160 else
8ecaf67a
JL		 2161 rfc1002mangle(ses_init_buf->trailer.
2162 session_req.calling_name,
2163 "LINUX_CIFS_CLNT",
2164 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2165
1da177e4
LT		 2166 ses_init_buf->trailer.session_req.scope1 = 0;
2167 ses_init_buf->trailer.session_req.scope2 = 0;
2168 smb_buf = (struct smb_hdr *)ses_init_buf;
2169 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2170 smb_buf->smb_buf_length = 0x81000044;
0496e02d 2171 rc = smb_send(server, smb_buf, 0x44);
1da177e4 2172 kfree(ses_init_buf);
50c2f753 2173 msleep(1); /* RFC1001 layer in at least one server
083d3a2c
SF		 2174 requires very short break before negprot
2175 presumably because not expecting negprot
2176 to follow so fast. This is a simple
50c2f753 2177 solution that works without
083d3a2c
SF		 2178 complicating the code and causes no
2179 significant slowing down on mount
2180 for everyone else */
1da177e4 2181 }
50c2f753 2182 /* else the negprot may still work without this
1da177e4 2183 even though malloc failed */
50c2f753 2184
1da177e4 2185 }
50c2f753 2186
1da177e4
LT		 2187 return rc;
2188}
2189
2190static int
d5c5605c 2191ipv6_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2192{
2193 int rc = 0;
6a5fa236 2194 int val;
d5c5605c 2195 bool connected = false;
1da177e4 2196 __be16 orig_port = 0;
d5c5605c 2197 struct socket *socket = server->ssocket;
1da177e4 2198
d5c5605c 2199 if (socket == NULL) {
50c2f753 2200 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
d5c5605c 2201 IPPROTO_TCP, &socket);
1da177e4 2202 if (rc < 0) {
b6b38f70 2203 cERROR(1, "Error %d creating ipv6 socket", rc);
d5c5605c 2204 socket = NULL;
1da177e4 2205 return rc;
1da177e4 2206 }
1da177e4 2207
d5c5605c 2208 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2209 cFYI(1, "ipv6 Socket created");
d5c5605c
JL		 2210 server->ssocket = socket;
2211 socket->sk->sk_allocation = GFP_NOFS;
2212 cifs_reclassify_socket6(socket);
2213 }
1da177e4 2214
d5c5605c
JL		 2215 /* user overrode default port */
2216 if (server->addr.sockAddr6.sin6_port) {
2217 rc = socket->ops->connect(socket,
2218 (struct sockaddr *) &server->addr.sockAddr6,
6345a3a8 2219 sizeof(struct sockaddr_in6), 0);
1da177e4 2220 if (rc >= 0)
d5c5605c 2221 connected = true;
50c2f753 2222 }
1da177e4 2223
fb8c4b14 2224 if (!connected) {
50c2f753 2225 /* save original port so we can retry user specified port
1da177e4
LT		 2226 later if fall back ports fail this time */
2227
d5c5605c 2228 orig_port = server->addr.sockAddr6.sin6_port;
1da177e4 2229 /* do not retry on the same port we just failed on */
d5c5605c
JL		 2230 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2231 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2232 rc = socket->ops->connect(socket, (struct sockaddr *)
2233 &server->addr.sockAddr6,
6345a3a8 2234 sizeof(struct sockaddr_in6), 0);
1da177e4 2235 if (rc >= 0)
d5c5605c 2236 connected = true;
1da177e4
LT		 2237 }
2238 }
2239 if (!connected) {
d5c5605c
JL		 2240 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2241 rc = socket->ops->connect(socket, (struct sockaddr *)
2242 &server->addr.sockAddr6,
2243 sizeof(struct sockaddr_in6), 0);
50c2f753 2244 if (rc >= 0)
d5c5605c 2245 connected = true;
1da177e4
LT		 2246 }
2247
2248 /* give up here - unless we want to retry on different
2249 protocol families some day */
2250 if (!connected) {
fb8c4b14 2251 if (orig_port)
d5c5605c 2252 server->addr.sockAddr6.sin6_port = orig_port;
b6b38f70 2253 cFYI(1, "Error %d connecting to server via ipv6", rc);
d5c5605c
JL		 2254 sock_release(socket);
2255 server->ssocket = NULL;
1da177e4
LT		 2256 return rc;
2257 }
edf1ae40 2258
d5c5605c
JL		 2259 /*
2260 * Eventually check for other socket options to change from
2261 * the default. sock_setsockopt not used because it expects
2262 * user space buffer
2263 */
2264 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2265 socket->sk->sk_sndtimeo = 5 * HZ;
6a5fa236
SF		 2266
2267 if (server->tcp_nodelay) {
2268 val = 1;
2269 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2270 (char *)&val, sizeof(val));
2271 if (rc)
b6b38f70 2272 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2273 }
2274
d5c5605c 2275 server->ssocket = socket;
50c2f753 2276
1da177e4
LT		 2277 return rc;
2278}
2279
50c2f753
SF		 2280void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2281 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2282{
2283 /* if we are reconnecting then should we check to see if
2284 * any requested capabilities changed locally e.g. via
2285 * remount but we can not do much about it here
2286 * if they have (even if we could detect it by the following)
2287 * Perhaps we could add a backpointer to array of sb from tcon
2288 * or if we change to make all sb to same share the same
2289 * sb as NFS - then we only have one backpointer to sb.
2290 * What if we wanted to mount the server share twice once with
2291 * and once without posixacls or posix paths? */
2292 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2293
c18c842b
SF		 2294 if (vol_info && vol_info->no_linux_ext) {
2295 tcon->fsUnixInfo.Capability = 0;
2296 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2297 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2298 return;
2299 } else if (vol_info)
2300 tcon->unix_ext = 1; /* Unix Extensions supported */
2301
2302 if (tcon->unix_ext == 0) {
b6b38f70 2303 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2304 return;
2305 }
50c2f753 2306
fb8c4b14 2307 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2308 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2309
8af18971
SF		 2310 /* check for reconnect case in which we do not
2311 want to change the mount behavior if we can avoid it */
fb8c4b14 2312 if (vol_info == NULL) {
50c2f753 2313 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2314 originally at mount time */
2315 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2316 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2317 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2318 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2319 cERROR(1, "POSIXPATH support change");
8af18971 2320 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2321 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2322 cERROR(1, "possible reconnect error");
2323 cERROR(1, "server disabled POSIX path support");
11b6d645 2324 }
8af18971 2325 }
50c2f753 2326
8af18971 2327 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2328 if (vol_info && vol_info->no_psx_acl)
8af18971 2329 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2330 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2331 cFYI(1, "negotiated posix acl support");
fb8c4b14 2332 if (sb)
8af18971
SF		 2333 sb->s_flags |= MS_POSIXACL;
2334 }
2335
75865f8c 2336 if (vol_info && vol_info->posix_paths == 0)
8af18971 2337 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2338 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2339 cFYI(1, "negotiate posix pathnames");
75865f8c 2340 if (sb)
50c2f753 2341 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2342 CIFS_MOUNT_POSIX_PATHS;
2343 }
50c2f753 2344
984acfe1
SF		 2345 /* We might be setting the path sep back to a different
2346 form if we are reconnecting and the server switched its
50c2f753 2347 posix path capability for this share */
75865f8c 2348 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2349 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2350
2351 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2352 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2353 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2354 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2355 }
2356 }
50c2f753
SF		 2357
2358
b6b38f70 2359 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2360#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2361 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2362 cFYI(1, "FCNTL cap");
75865f8c 2363 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2364 cFYI(1, "EXTATTR cap");
75865f8c 2365 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2366 cFYI(1, "POSIX path cap");
75865f8c 2367 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2368 cFYI(1, "XATTR cap");
75865f8c 2369 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2370 cFYI(1, "POSIX ACL cap");
75865f8c 2371 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2372 cFYI(1, "very large read cap");
75865f8c 2373 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2374 cFYI(1, "very large write cap");
8af18971
SF		 2375#endif /* CIFS_DEBUG2 */
2376 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2377 if (vol_info == NULL) {
b6b38f70 2378 cFYI(1, "resetting capabilities failed");
442aa310 2379 } else
b6b38f70 2380 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2381 "with the server failed. Consider "
2382 "mounting with the Unix Extensions\n"
2383 "disabled, if problems are found, "
2384 "by specifying the nounix mount "
b6b38f70 2385 "option.");
5a44b319 2386
8af18971
SF		 2387 }
2388 }
2389}
2390
03a143c9
SF		 2391static void
2392convert_delimiter(char *path, char delim)
2393{
2394 int i;
c2d68ea6 2395 char old_delim;
03a143c9
SF		 2396
2397 if (path == NULL)
2398 return;
2399
582d21e5 2400 if (delim == '/')
c2d68ea6
SF		 2401 old_delim = '\\';
2402 else
2403 old_delim = '/';
2404
03a143c9 2405 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2406 if (path[i] == old_delim)
03a143c9
SF		 2407 path[i] = delim;
2408 }
2409}
2410
3b795210
SF		 2411static void setup_cifs_sb(struct smb_vol *pvolume_info,
2412 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2413{
3b795210 2414 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2415 cERROR(1, "rsize %d too large, using MaxBufSize",
2416 pvolume_info->rsize);
3b795210
SF		 2417 cifs_sb->rsize = CIFSMaxBufSize;
2418 } else if ((pvolume_info->rsize) &&
2419 (pvolume_info->rsize <= CIFSMaxBufSize))
2420 cifs_sb->rsize = pvolume_info->rsize;
2421 else /* default */
2422 cifs_sb->rsize = CIFSMaxBufSize;
2423
2424 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
b6b38f70
JP		 2425 cERROR(1, "wsize %d too large, using 4096 instead",
2426 pvolume_info->wsize);
3b795210
SF		 2427 cifs_sb->wsize = 4096;
2428 } else if (pvolume_info->wsize)
2429 cifs_sb->wsize = pvolume_info->wsize;
2430 else
2431 cifs_sb->wsize = min_t(const int,
2432 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2433 127*1024);
2434 /* old default of CIFSMaxBufSize was too small now
2435 that SMB Write2 can send multiple pages in kvec.
2436 RFC1001 does not describe what happens when frame
2437 bigger than 128K is sent so use that as max in
2438 conjunction with 52K kvec constraint on arch with 4K
2439 page size */
2440
2441 if (cifs_sb->rsize < 2048) {
2442 cifs_sb->rsize = 2048;
2443 /* Windows ME may prefer this */
b6b38f70 2444 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2445 }
2446 /* calculate prepath */
2447 cifs_sb->prepath = pvolume_info->prepath;
2448 if (cifs_sb->prepath) {
2449 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2450 /* we can not convert the / to \ in the path
2451 separators in the prefixpath yet because we do not
2452 know (until reset_cifs_unix_caps is called later)
2453 whether POSIX PATH CAP is available. We normalize
2454 the / to \ after reset_cifs_unix_caps is called */
2455 pvolume_info->prepath = NULL;
2456 } else
2457 cifs_sb->prepathlen = 0;
2458 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2459 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2460 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2461 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2462 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2463 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210
SF		 2464
2465 if (pvolume_info->noperm)
2466 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2467 if (pvolume_info->setuids)
2468 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2469 if (pvolume_info->server_ino)
2470 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2471 if (pvolume_info->remap)
2472 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2473 if (pvolume_info->no_xattr)
2474 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2475 if (pvolume_info->sfu_emul)
2476 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2477 if (pvolume_info->nobrl)
2478 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2479 if (pvolume_info->nostrictsync)
4717bed6 2480 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2481 if (pvolume_info->mand_lock)
2482 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2483 if (pvolume_info->cifs_acl)
2484 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2485 if (pvolume_info->override_uid)
2486 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2487 if (pvolume_info->override_gid)
2488 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2489 if (pvolume_info->dynperm)
2490 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
fa1df75d
SJ		 2491 if (pvolume_info->fsc)
2492 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
3b795210 2493 if (pvolume_info->direct_io) {
b6b38f70 2494 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2495 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2496 }
2497
2498 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2499 cERROR(1, "mount option dynperm ignored if cifsacl "
2500 "mount option supported");
b1c8d2b4
JL		 2501}
2502
e4cce94c
IM		 2503static int
2504is_path_accessible(int xid, struct cifsTconInfo *tcon,
2505 struct cifs_sb_info *cifs_sb, const char *full_path)
2506{
2507 int rc;
e4cce94c
IM		 2508 FILE_ALL_INFO *pfile_info;
2509
e4cce94c
IM		 2510 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2511 if (pfile_info == NULL)
2512 return -ENOMEM;
2513
2514 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2515 0 /* not legacy */, cifs_sb->local_nls,
2516 cifs_sb->mnt_cifs_flags &
2517 CIFS_MOUNT_MAP_SPECIAL_CHR);
2518 kfree(pfile_info);
2519 return rc;
2520}
2521
1bfe73c2
IM		 2522static void
2523cleanup_volume_info(struct smb_vol **pvolume_info)
2524{
2525 struct smb_vol *volume_info;
2526
ad6cca6d 2527 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2528 return;
2529
2530 volume_info = *pvolume_info;
2531 kzfree(volume_info->password);
2532 kfree(volume_info->UNC);
2533 kfree(volume_info->prepath);
2534 kfree(volume_info);
2535 *pvolume_info = NULL;
2536 return;
2537}
2538
2d6d589d 2539#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2540/* build_path_to_root returns full path to root when
2541 * we do not have an exiting connection (tcon) */
2542static char *
2543build_unc_path_to_root(const struct smb_vol *volume_info,
2544 const struct cifs_sb_info *cifs_sb)
2545{
2546 char *full_path;
2547
2548 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2549 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2550 if (full_path == NULL)
2551 return ERR_PTR(-ENOMEM);
2552
2553 strncpy(full_path, volume_info->UNC, unc_len);
2554 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2555 int i;
2556 for (i = 0; i < unc_len; i++) {
2557 if (full_path[i] == '\\')
2558 full_path[i] = '/';
2559 }
2560 }
2561
2562 if (cifs_sb->prepathlen)
2563 strncpy(full_path + unc_len, cifs_sb->prepath,
2564 cifs_sb->prepathlen);
2565
2566 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2567 return full_path;
2568}
2d6d589d 2569#endif
1bfe73c2 2570
1da177e4
LT		 2571int
2572cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
1bfe73c2 2573 char *mount_data_global, const char *devname)
1da177e4 2574{
a2934c7b 2575 int rc;
1da177e4 2576 int xid;
7586b765 2577 struct smb_vol *volume_info;
a2934c7b
JL		 2578 struct cifsSesInfo *pSesInfo;
2579 struct cifsTconInfo *tcon;
2580 struct TCP_Server_Info *srvTcp;
e4cce94c 2581 char *full_path;
2d6d589d
SF		 2582 char *mount_data = mount_data_global;
2583#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2584 struct dfs_info3_param *referrals = NULL;
2585 unsigned int num_referrals = 0;
5c2503a8 2586 int referral_walks_count = 0;
1bfe73c2 2587try_mount_again:
2d6d589d 2588#endif
a2934c7b
JL		 2589 rc = 0;
2590 tcon = NULL;
2591 pSesInfo = NULL;
2592 srvTcp = NULL;
1bfe73c2 2593 full_path = NULL;
1da177e4
LT		 2594
2595 xid = GetXid();
2596
7586b765
JL		 2597 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2598 if (!volume_info) {
2599 rc = -ENOMEM;
2600 goto out;
2601 }
50c2f753 2602
7586b765 2603 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
70fe7dc0
JL		 2604 rc = -EINVAL;
2605 goto out;
1da177e4
LT		 2606 }
2607
7586b765 2608 if (volume_info->nullauth) {
b6b38f70 2609 cFYI(1, "null user");
7586b765
JL		 2610 volume_info->username = "";
2611 } else if (volume_info->username) {
1da177e4 2612 /* BB fixme parse for domain name here */
b6b38f70 2613 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2614 } else {
bf820679 2615 cifserror("No username specified");
50c2f753
SF		 2616 /* In userspace mount helper we can get user name from alternate
2617 locations such as env variables and files on disk */
70fe7dc0
JL		 2618 rc = -EINVAL;
2619 goto out;
1da177e4
LT		 2620 }
2621
1da177e4 2622 /* this is needed for ASCII cp to Unicode converts */
7586b765 2623 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2624 /* load_nls_default cannot return null */
2625 volume_info->local_nls = load_nls_default();
1da177e4 2626 } else {
a5fc4ce0
JL		 2627 volume_info->local_nls = load_nls(volume_info->iocharset);
2628 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2629 cERROR(1, "CIFS mount error: iocharset %s not found",
2630 volume_info->iocharset);
70fe7dc0
JL		 2631 rc = -ELIBACC;
2632 goto out;
1da177e4
LT		 2633 }
2634 }
a5fc4ce0 2635 cifs_sb->local_nls = volume_info->local_nls;
1da177e4 2636
63c038c2 2637 /* get a reference to a tcp session */
7586b765 2638 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 2639 if (IS_ERR(srvTcp)) {
2640 rc = PTR_ERR(srvTcp);
2641 goto out;
1da177e4
LT		 2642 }
2643
36988c76
JL		 2644 /* get a reference to a SMB session */
2645 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2646 if (IS_ERR(pSesInfo)) {
2647 rc = PTR_ERR(pSesInfo);
2648 pSesInfo = NULL;
2649 goto mount_fail_check;
1da177e4 2650 }
50c2f753 2651
d00c28de
JL		 2652 setup_cifs_sb(volume_info, cifs_sb);
2653 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2654 sb->s_maxbytes = MAX_LFS_FILESIZE;
2655 else
2656 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 2657
8af18971 2658 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 2659 sb->s_time_gran = 100;
2660
d00c28de
JL		 2661 /* search for existing tcon to this server share */
2662 tcon = cifs_get_tcon(pSesInfo, volume_info);
2663 if (IS_ERR(tcon)) {
2664 rc = PTR_ERR(tcon);
2665 tcon = NULL;
1bfe73c2 2666 goto remote_path_check;
d00c28de 2667 }
1bfe73c2 2668
d82c2df5 2669 cifs_sb->tcon = tcon;
c18c842b 2670
d82c2df5
SF		 2671 /* do not care if following two calls succeed - informational */
2672 if (!tcon->ipc) {
2673 CIFSSMBQFSDeviceInfo(xid, tcon);
2674 CIFSSMBQFSAttributeInfo(xid, tcon);
2675 }
03a143c9 2676
d82c2df5
SF		 2677 /* tell server which Unix caps we support */
2678 if (tcon->ses->capabilities & CAP_UNIX)
2679 /* reset of caps checks mount to see if unix extensions
2680 disabled for just this mount */
7586b765 2681 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
d82c2df5
SF		 2682 else
2683 tcon->unix_ext = 0; /* server does not support them */
c18c842b 2684
d82c2df5
SF		 2685 /* convert forward to back slashes in prepath here if needed */
2686 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2687 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 2688
d82c2df5
SF		 2689 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2690 cifs_sb->rsize = 1024 * 127;
b6b38f70 2691 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 2692 }
d82c2df5
SF		 2693 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2694 cifs_sb->wsize = min(cifs_sb->wsize,
2695 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2696 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2697 cifs_sb->rsize = min(cifs_sb->rsize,
2698 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 2699
1bfe73c2
IM		 2700remote_path_check:
2701 /* check if a whole path (including prepath) is not remote */
2702 if (!rc && cifs_sb->prepathlen && tcon) {
e4cce94c
IM		 2703 /* build_path_to_root works only when we have a valid tcon */
2704 full_path = cifs_build_path_to_root(cifs_sb);
2705 if (full_path == NULL) {
2706 rc = -ENOMEM;
2707 goto mount_fail_check;
2708 }
2709 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
1bfe73c2 2710 if (rc != -EREMOTE) {
e4cce94c
IM		 2711 kfree(full_path);
2712 goto mount_fail_check;
2713 }
2714 kfree(full_path);
2715 }
2716
1bfe73c2
IM		 2717 /* get referral if needed */
2718 if (rc == -EREMOTE) {
d036f50f 2719#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 2720 if (referral_walks_count > MAX_NESTED_LINKS) {
2721 /*
2722 * BB: when we implement proper loop detection,
2723 * we will remove this check. But now we need it
2724 * to prevent an indefinite loop if 'DFS tree' is
2725 * misconfigured (i.e. has loops).
2726 */
2727 rc = -ELOOP;
2728 goto mount_fail_check;
2729 }
1bfe73c2
IM		 2730 /* convert forward to back slashes in prepath here if needed */
2731 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2732 convert_delimiter(cifs_sb->prepath,
2733 CIFS_DIR_SEP(cifs_sb));
2734 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2735 if (IS_ERR(full_path)) {
2736 rc = PTR_ERR(full_path);
2737 goto mount_fail_check;
2738 }
2739
b6b38f70 2740 cFYI(1, "Getting referral for: %s", full_path);
1bfe73c2
IM		 2741 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2742 cifs_sb->local_nls, &num_referrals, &referrals,
2743 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2744 if (!rc && num_referrals > 0) {
2745 char *fake_devname = NULL;
2746
2747 if (mount_data != mount_data_global)
2748 kfree(mount_data);
7b91e266 2749
1bfe73c2
IM		 2750 mount_data = cifs_compose_mount_options(
2751 cifs_sb->mountdata, full_path + 1,
2752 referrals, &fake_devname);
7b91e266 2753
1bfe73c2 2754 free_dfs_info_array(referrals, num_referrals);
7b91e266
JL		 2755 kfree(fake_devname);
2756 kfree(full_path);
2757
2758 if (IS_ERR(mount_data)) {
2759 rc = PTR_ERR(mount_data);
2760 mount_data = NULL;
2761 goto mount_fail_check;
2762 }
1bfe73c2
IM		 2763
2764 if (tcon)
2765 cifs_put_tcon(tcon);
2766 else if (pSesInfo)
2767 cifs_put_smb_ses(pSesInfo);
2768
2769 cleanup_volume_info(&volume_info);
5c2503a8 2770 referral_walks_count++;
a2934c7b 2771 FreeXid(xid);
1bfe73c2
IM		 2772 goto try_mount_again;
2773 }
d036f50f
SF		 2774#else /* No DFS support, return error on mount */
2775 rc = -EOPNOTSUPP;
2776#endif
1bfe73c2
IM		 2777 }
2778
2779mount_fail_check:
2780 /* on error free sesinfo and tcon struct if needed */
2781 if (rc) {
2782 if (mount_data != mount_data_global)
2783 kfree(mount_data);
2784 /* If find_unc succeeded then rc == 0 so we can not end */
2785 /* up accidently freeing someone elses tcon struct */
2786 if (tcon)
2787 cifs_put_tcon(tcon);
2788 else if (pSesInfo)
2789 cifs_put_smb_ses(pSesInfo);
2790 else
2791 cifs_put_tcp_session(srvTcp);
2792 goto out;
2793 }
2794
7586b765 2795 /* volume_info->password is freed above when existing session found
1da177e4
LT		 2796 (in which case it is not needed anymore) but when new sesion is created
2797 the password ptr is put in the new session structure (in which case the
2798 password will be freed at unmount time) */
70fe7dc0
JL		 2799out:
2800 /* zero out password before freeing */
1bfe73c2 2801 cleanup_volume_info(&volume_info);
1da177e4
LT		 2802 FreeXid(xid);
2803 return rc;
2804}
2805
1da177e4
LT		 2806int
2807CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2808 const char *tree, struct cifsTconInfo *tcon,
2809 const struct nls_table *nls_codepage)
2810{
2811 struct smb_hdr *smb_buffer;
2812 struct smb_hdr *smb_buffer_response;
2813 TCONX_REQ *pSMB;
2814 TCONX_RSP *pSMBr;
2815 unsigned char *bcc_ptr;
2816 int rc = 0;
cc20c031 2817 int length, bytes_left;
1da177e4
LT		 2818 __u16 count;
2819
2820 if (ses == NULL)
2821 return -EIO;
2822
2823 smb_buffer = cifs_buf_get();
ca43e3be 2824 if (smb_buffer == NULL)
1da177e4 2825 return -ENOMEM;
ca43e3be 2826
1da177e4
LT		 2827 smb_buffer_response = smb_buffer;
2828
2829 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2830 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 2831
2832 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 2833 smb_buffer->Uid = ses->Suid;
2834 pSMB = (TCONX_REQ *) smb_buffer;
2835 pSMBr = (TCONX_RSP *) smb_buffer_response;
2836
2837 pSMB->AndXCommand = 0xFF;
2838 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 2839 bcc_ptr = &pSMB->Password[0];
fb8c4b14 2840 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 2841 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 2842 *bcc_ptr = 0; /* password is null byte */
eeac8047 2843 bcc_ptr++; /* skip password */
7c7b25bc 2844 /* already aligned so no need to do it below */
eeac8047 2845 } else {
7c7b25bc 2846 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
eeac8047
SF		 2847 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2848 specified as required (when that support is added to
2849 the vfs in the future) as only NTLM or the much
7c7b25bc 2850 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 2851 by Samba (not sure whether other servers allow
2852 NTLMv2 password here) */
7c7b25bc 2853#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 2854 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0
JL		 2855 (ses->server->secType == LANMAN))
2856 calc_lanman_hash(tcon->password, ses->server->cryptKey,
4e53a3fb
JL		 2857 ses->server->secMode &
2858 SECMODE_PW_ENCRYPT ? true : false,
2859 bcc_ptr);
7c7b25bc
SF		 2860 else
2861#endif /* CIFS_WEAK_PW_HASH */
00e485b0 2862 SMBNTencrypt(tcon->password, ses->server->cryptKey,
eeac8047
SF		 2863 bcc_ptr);
2864
7c7b25bc 2865 bcc_ptr += CIFS_SESS_KEY_SIZE;
fb8c4b14 2866 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 2867 /* must align unicode strings */
2868 *bcc_ptr = 0; /* null byte password */
2869 bcc_ptr++;
2870 }
eeac8047 2871 }
1da177e4 2872
50c2f753 2873 if (ses->server->secMode &
a878fb22 2874 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 2875 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
2876
2877 if (ses->capabilities & CAP_STATUS32) {
2878 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
2879 }
2880 if (ses->capabilities & CAP_DFS) {
2881 smb_buffer->Flags2 |= SMBFLG2_DFS;
2882 }
2883 if (ses->capabilities & CAP_UNICODE) {
2884 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
2885 length =
50c2f753
SF		 2886 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
2887 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 2888 (/* server len*/ + 256 /* share len */), nls_codepage);
2889 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 2890 bcc_ptr += 2; /* skip trailing null */
2891 } else { /* ASCII */
1da177e4
LT		 2892 strcpy(bcc_ptr, tree);
2893 bcc_ptr += strlen(tree) + 1;
2894 }
2895 strcpy(bcc_ptr, "?????");
2896 bcc_ptr += strlen("?????");
2897 bcc_ptr += 1;
2898 count = bcc_ptr - &pSMB->Password[0];
2899 pSMB->hdr.smb_buf_length += count;
2900 pSMB->ByteCount = cpu_to_le16(count);
2901
133672ef
SF		 2902 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
2903 CIFS_STD_OP);
1da177e4 2904
1da177e4
LT		 2905 /* above now done in SendReceive */
2906 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 2907 bool is_unicode;
2908
1da177e4 2909 tcon->tidStatus = CifsGood;
3b795210 2910 tcon->need_reconnect = false;
1da177e4
LT		 2911 tcon->tid = smb_buffer_response->Tid;
2912 bcc_ptr = pByteArea(smb_buffer_response);
cc20c031
JL		 2913 bytes_left = BCC(smb_buffer_response);
2914 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 2915 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
2916 is_unicode = true;
2917 else
2918 is_unicode = false;
2919
cc20c031 2920
50c2f753 2921 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 2922 if (length == 3) {
2923 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
2924 (bcc_ptr[2] == 'C')) {
b6b38f70 2925 cFYI(1, "IPC connection");
7f8ed420
SF		 2926 tcon->ipc = 1;
2927 }
2928 } else if (length == 2) {
2929 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
2930 /* the most common case */
b6b38f70 2931 cFYI(1, "disk share connection");
7f8ed420
SF		 2932 }
2933 }
50c2f753 2934 bcc_ptr += length + 1;
cc20c031 2935 bytes_left -= (length + 1);
1da177e4 2936 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 2937
2938 /* mostly informational -- no need to fail on error here */
90a98b2f 2939 kfree(tcon->nativeFileSystem);
d185cda7 2940 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 2941 bytes_left, is_unicode,
cc20c031
JL		 2942 nls_codepage);
2943
b6b38f70 2944 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 2945
fb8c4b14 2946 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 2947 (smb_buffer_response->WordCount == 7))
2948 /* field is in same location */
3979877e
SF		 2949 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
2950 else
2951 tcon->Flags = 0;
b6b38f70 2952 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 2953 } else if ((rc == 0) && tcon == NULL) {
50c2f753 2954 /* all we need to save for IPC$ connection */
1da177e4
LT		 2955 ses->ipc_tid = smb_buffer_response->Tid;
2956 }
2957
a8a11d39 2958 cifs_buf_release(smb_buffer);
1da177e4
LT		 2959 return rc;
2960}
2961
2962int
2963cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
2964{
2965 int rc = 0;
50c2f753 2966 char *tmp;
1da177e4 2967
f1987b44
JL		 2968 if (cifs_sb->tcon)
2969 cifs_put_tcon(cifs_sb->tcon);
50c2f753 2970
1da177e4 2971 cifs_sb->tcon = NULL;
2fe87f02
SF		 2972 tmp = cifs_sb->prepath;
2973 cifs_sb->prepathlen = 0;
2974 cifs_sb->prepath = NULL;
2975 kfree(tmp);
1da177e4 2976
88e7d705 2977 return rc;
50c2f753 2978}
1da177e4 2979
198b5682 2980int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 2981{
2982 int rc = 0;
198b5682 2983 struct TCP_Server_Info *server = ses->server;
1da177e4 2984
198b5682
JL		 2985 /* only send once per connect */
2986 if (server->maxBuf != 0)
2987 return 0;
2988
2989 rc = CIFSSMBNegotiate(xid, ses);
2990 if (rc == -EAGAIN) {
2991 /* retry only once on 1st time connection */
2992 rc = CIFSSMBNegotiate(xid, ses);
2993 if (rc == -EAGAIN)
2994 rc = -EHOSTDOWN;
1da177e4 2995 }
198b5682
JL		 2996 if (rc == 0) {
2997 spin_lock(&GlobalMid_Lock);
2998 if (server->tcpStatus != CifsExiting)
2999 server->tcpStatus = CifsGood;
3000 else
3001 rc = -EHOSTDOWN;
3002 spin_unlock(&GlobalMid_Lock);
26b994fa 3003
198b5682
JL		 3004 }
3005
3006 return rc;
3007}
3008
3009
3010int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
3011 struct nls_table *nls_info)
3012{
3013 int rc = 0;
3014 struct TCP_Server_Info *server = ses->server;
26b994fa 3015
198b5682
JL		 3016 ses->flags = 0;
3017 ses->capabilities = server->capabilities;
26b994fa 3018 if (linuxExtEnabled == 0)
198b5682 3019 ses->capabilities &= (~CAP_UNIX);
20418acd 3020
b6b38f70
JP		 3021 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3022 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 3023
198b5682 3024 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 3025 if (rc) {
b6b38f70 3026 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 3027 } else {
b6b38f70 3028 cFYI(1, "CIFS Session Established successfully");
20418acd 3029 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3030 ses->status = CifsGood;
3031 ses->need_reconnect = false;
20418acd 3032 spin_unlock(&GlobalMid_Lock);
1da177e4 3033 }
26b994fa 3034
1da177e4
LT		 3035 return rc;
3036}
3037
ubuntu-zesty-kernel mirror