]> git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/blob - fs/cifs/connect.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/sfrench/cifs-2.6
[mirror_ubuntu-bionic-kernel.git] / fs / cifs / connect.c
1 /*
2 * fs/cifs/connect.c
3 *
4 * Copyright (C) International Business Machines Corp., 2002,2009
5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20 */
21 #include <linux/fs.h>
22 #include <linux/net.h>
23 #include <linux/string.h>
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/pagemap.h>
27 #include <linux/ctype.h>
28 #include <linux/utsname.h>
29 #include <linux/mempool.h>
30 #include <linux/delay.h>
31 #include <linux/completion.h>
32 #include <linux/kthread.h>
33 #include <linux/pagevec.h>
34 #include <linux/freezer.h>
35 #include <linux/namei.h>
36 #include <asm/uaccess.h>
37 #include <asm/processor.h>
38 #include <linux/inet.h>
39 #include <net/ipv6.h>
40 #include "cifspdu.h"
41 #include "cifsglob.h"
42 #include "cifsproto.h"
43 #include "cifs_unicode.h"
44 #include "cifs_debug.h"
45 #include "cifs_fs_sb.h"
46 #include "ntlmssp.h"
47 #include "nterr.h"
48 #include "rfc1002pdu.h"
49 #include "cn_cifs.h"
50
51 #define CIFS_PORT 445
52 #define RFC1001_PORT 139
53
54 extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
55 unsigned char *p24);
56
57 extern mempool_t *cifs_req_poolp;
58
59 struct smb_vol {
60 char *username;
61 char *password;
62 char *domainname;
63 char *UNC;
64 char *UNCip;
65 char *iocharset; /* local code page for mapping to and from Unicode */
66 char source_rfc1001_name[16]; /* netbios name of client */
67 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
68 uid_t linux_uid;
69 gid_t linux_gid;
70 mode_t file_mode;
71 mode_t dir_mode;
72 unsigned secFlg;
73 bool retry:1;
74 bool intr:1;
75 bool setuids:1;
76 bool override_uid:1;
77 bool override_gid:1;
78 bool dynperm:1;
79 bool noperm:1;
80 bool no_psx_acl:1; /* set if posix acl support should be disabled */
81 bool cifs_acl:1;
82 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
83 bool server_ino:1; /* use inode numbers from server ie UniqueId */
84 bool direct_io:1;
85 bool remap:1; /* set to remap seven reserved chars in filenames */
86 bool posix_paths:1; /* unset to not ask for posix pathnames. */
87 bool no_linux_ext:1;
88 bool sfu_emul:1;
89 bool nullauth:1; /* attempt to authenticate with null user */
90 bool nocase:1; /* request case insensitive filenames */
91 bool nobrl:1; /* disable sending byte range locks to srv */
92 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
93 bool seal:1; /* request transport encryption on share */
94 bool nodfs:1; /* Do not request DFS, even if available */
95 bool local_lease:1; /* check leases only on local system, not remote */
96 bool noblocksnd:1;
97 bool noautotune:1;
98 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
99 unsigned int rsize;
100 unsigned int wsize;
101 bool sockopt_tcp_nodelay:1;
102 unsigned short int port;
103 char *prepath;
104 };
105
106 static int ipv4_connect(struct TCP_Server_Info *server);
107 static int ipv6_connect(struct TCP_Server_Info *server);
108
109 /*
110 * cifs tcp session reconnection
111 *
112 * mark tcp session as reconnecting so temporarily locked
113 * mark all smb sessions as reconnecting for tcp session
114 * reconnect tcp session
115 * wake up waiters on reconnection? - (not needed currently)
116 */
117 static int
118 cifs_reconnect(struct TCP_Server_Info *server)
119 {
120 int rc = 0;
121 struct list_head *tmp, *tmp2;
122 struct cifsSesInfo *ses;
123 struct cifsTconInfo *tcon;
124 struct mid_q_entry *mid_entry;
125
126 spin_lock(&GlobalMid_Lock);
127 if (server->tcpStatus == CifsExiting) {
128 /* the demux thread will exit normally
129 next time through the loop */
130 spin_unlock(&GlobalMid_Lock);
131 return rc;
132 } else
133 server->tcpStatus = CifsNeedReconnect;
134 spin_unlock(&GlobalMid_Lock);
135 server->maxBuf = 0;
136
137 cFYI(1, ("Reconnecting tcp session"));
138
139 /* before reconnecting the tcp session, mark the smb session (uid)
140 and the tid bad so they are not used until reconnected */
141 read_lock(&cifs_tcp_ses_lock);
142 list_for_each(tmp, &server->smb_ses_list) {
143 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
144 ses->need_reconnect = true;
145 ses->ipc_tid = 0;
146 list_for_each(tmp2, &ses->tcon_list) {
147 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
148 tcon->need_reconnect = true;
149 }
150 }
151 read_unlock(&cifs_tcp_ses_lock);
152 /* do not want to be sending data on a socket we are freeing */
153 mutex_lock(&server->srv_mutex);
154 if (server->ssocket) {
155 cFYI(1, ("State: 0x%x Flags: 0x%lx", server->ssocket->state,
156 server->ssocket->flags));
157 kernel_sock_shutdown(server->ssocket, SHUT_WR);
158 cFYI(1, ("Post shutdown state: 0x%x Flags: 0x%lx",
159 server->ssocket->state,
160 server->ssocket->flags));
161 sock_release(server->ssocket);
162 server->ssocket = NULL;
163 }
164
165 spin_lock(&GlobalMid_Lock);
166 list_for_each(tmp, &server->pending_mid_q) {
167 mid_entry = list_entry(tmp, struct
168 mid_q_entry,
169 qhead);
170 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
171 /* Mark other intransit requests as needing
172 retry so we do not immediately mark the
173 session bad again (ie after we reconnect
174 below) as they timeout too */
175 mid_entry->midState = MID_RETRY_NEEDED;
176 }
177 }
178 spin_unlock(&GlobalMid_Lock);
179 mutex_unlock(&server->srv_mutex);
180
181 while ((server->tcpStatus != CifsExiting) &&
182 (server->tcpStatus != CifsGood)) {
183 try_to_freeze();
184 if (server->addr.sockAddr6.sin6_family == AF_INET6)
185 rc = ipv6_connect(server);
186 else
187 rc = ipv4_connect(server);
188 if (rc) {
189 cFYI(1, ("reconnect error %d", rc));
190 msleep(3000);
191 } else {
192 atomic_inc(&tcpSesReconnectCount);
193 spin_lock(&GlobalMid_Lock);
194 if (server->tcpStatus != CifsExiting)
195 server->tcpStatus = CifsGood;
196 server->sequence_number = 0;
197 spin_unlock(&GlobalMid_Lock);
198 /* atomic_set(&server->inFlight,0);*/
199 wake_up(&server->response_q);
200 }
201 }
202 return rc;
203 }
204
205 /*
206 return codes:
207 0 not a transact2, or all data present
208 >0 transact2 with that much data missing
209 -EINVAL = invalid transact2
210
211 */
212 static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
213 {
214 struct smb_t2_rsp *pSMBt;
215 int total_data_size;
216 int data_in_this_rsp;
217 int remaining;
218
219 if (pSMB->Command != SMB_COM_TRANSACTION2)
220 return 0;
221
222 /* check for plausible wct, bcc and t2 data and parm sizes */
223 /* check for parm and data offset going beyond end of smb */
224 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
225 cFYI(1, ("invalid transact2 word count"));
226 return -EINVAL;
227 }
228
229 pSMBt = (struct smb_t2_rsp *)pSMB;
230
231 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
232 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
233
234 remaining = total_data_size - data_in_this_rsp;
235
236 if (remaining == 0)
237 return 0;
238 else if (remaining < 0) {
239 cFYI(1, ("total data %d smaller than data in frame %d",
240 total_data_size, data_in_this_rsp));
241 return -EINVAL;
242 } else {
243 cFYI(1, ("missing %d bytes from transact2, check next response",
244 remaining));
245 if (total_data_size > maxBufSize) {
246 cERROR(1, ("TotalDataSize %d is over maximum buffer %d",
247 total_data_size, maxBufSize));
248 return -EINVAL;
249 }
250 return remaining;
251 }
252 }
253
254 static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
255 {
256 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
257 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
258 int total_data_size;
259 int total_in_buf;
260 int remaining;
261 int total_in_buf2;
262 char *data_area_of_target;
263 char *data_area_of_buf2;
264 __u16 byte_count;
265
266 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
267
268 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
269 cFYI(1, ("total data size of primary and secondary t2 differ"));
270 }
271
272 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
273
274 remaining = total_data_size - total_in_buf;
275
276 if (remaining < 0)
277 return -EINVAL;
278
279 if (remaining == 0) /* nothing to do, ignore */
280 return 0;
281
282 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
283 if (remaining < total_in_buf2) {
284 cFYI(1, ("transact2 2nd response contains too much data"));
285 }
286
287 /* find end of first SMB data area */
288 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
289 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
290 /* validate target area */
291
292 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
293 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
294
295 data_area_of_target += total_in_buf;
296
297 /* copy second buffer into end of first buffer */
298 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
299 total_in_buf += total_in_buf2;
300 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
301 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
302 byte_count += total_in_buf2;
303 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
304
305 byte_count = pTargetSMB->smb_buf_length;
306 byte_count += total_in_buf2;
307
308 /* BB also add check that we are not beyond maximum buffer size */
309
310 pTargetSMB->smb_buf_length = byte_count;
311
312 if (remaining == total_in_buf2) {
313 cFYI(1, ("found the last secondary response"));
314 return 0; /* we are done */
315 } else /* more responses to go */
316 return 1;
317
318 }
319
320 static int
321 cifs_demultiplex_thread(struct TCP_Server_Info *server)
322 {
323 int length;
324 unsigned int pdu_length, total_read;
325 struct smb_hdr *smb_buffer = NULL;
326 struct smb_hdr *bigbuf = NULL;
327 struct smb_hdr *smallbuf = NULL;
328 struct msghdr smb_msg;
329 struct kvec iov;
330 struct socket *csocket = server->ssocket;
331 struct list_head *tmp;
332 struct cifsSesInfo *ses;
333 struct task_struct *task_to_wake = NULL;
334 struct mid_q_entry *mid_entry;
335 char temp;
336 bool isLargeBuf = false;
337 bool isMultiRsp;
338 int reconnect;
339
340 current->flags |= PF_MEMALLOC;
341 cFYI(1, ("Demultiplex PID: %d", task_pid_nr(current)));
342
343 length = atomic_inc_return(&tcpSesAllocCount);
344 if (length > 1)
345 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
346 GFP_KERNEL);
347
348 set_freezable();
349 while (server->tcpStatus != CifsExiting) {
350 if (try_to_freeze())
351 continue;
352 if (bigbuf == NULL) {
353 bigbuf = cifs_buf_get();
354 if (!bigbuf) {
355 cERROR(1, ("No memory for large SMB response"));
356 msleep(3000);
357 /* retry will check if exiting */
358 continue;
359 }
360 } else if (isLargeBuf) {
361 /* we are reusing a dirty large buf, clear its start */
362 memset(bigbuf, 0, sizeof(struct smb_hdr));
363 }
364
365 if (smallbuf == NULL) {
366 smallbuf = cifs_small_buf_get();
367 if (!smallbuf) {
368 cERROR(1, ("No memory for SMB response"));
369 msleep(1000);
370 /* retry will check if exiting */
371 continue;
372 }
373 /* beginning of smb buffer is cleared in our buf_get */
374 } else /* if existing small buf clear beginning */
375 memset(smallbuf, 0, sizeof(struct smb_hdr));
376
377 isLargeBuf = false;
378 isMultiRsp = false;
379 smb_buffer = smallbuf;
380 iov.iov_base = smb_buffer;
381 iov.iov_len = 4;
382 smb_msg.msg_control = NULL;
383 smb_msg.msg_controllen = 0;
384 pdu_length = 4; /* enough to get RFC1001 header */
385 incomplete_rcv:
386 length =
387 kernel_recvmsg(csocket, &smb_msg,
388 &iov, 1, pdu_length, 0 /* BB other flags? */);
389
390 if (server->tcpStatus == CifsExiting) {
391 break;
392 } else if (server->tcpStatus == CifsNeedReconnect) {
393 cFYI(1, ("Reconnect after server stopped responding"));
394 cifs_reconnect(server);
395 cFYI(1, ("call to reconnect done"));
396 csocket = server->ssocket;
397 continue;
398 } else if ((length == -ERESTARTSYS) || (length == -EAGAIN)) {
399 msleep(1); /* minimum sleep to prevent looping
400 allowing socket to clear and app threads to set
401 tcpStatus CifsNeedReconnect if server hung */
402 if (pdu_length < 4) {
403 iov.iov_base = (4 - pdu_length) +
404 (char *)smb_buffer;
405 iov.iov_len = pdu_length;
406 smb_msg.msg_control = NULL;
407 smb_msg.msg_controllen = 0;
408 goto incomplete_rcv;
409 } else
410 continue;
411 } else if (length <= 0) {
412 if (server->tcpStatus == CifsNew) {
413 cFYI(1, ("tcp session abend after SMBnegprot"));
414 /* some servers kill the TCP session rather than
415 returning an SMB negprot error, in which
416 case reconnecting here is not going to help,
417 and so simply return error to mount */
418 break;
419 }
420 if (!try_to_freeze() && (length == -EINTR)) {
421 cFYI(1, ("cifsd thread killed"));
422 break;
423 }
424 cFYI(1, ("Reconnect after unexpected peek error %d",
425 length));
426 cifs_reconnect(server);
427 csocket = server->ssocket;
428 wake_up(&server->response_q);
429 continue;
430 } else if (length < pdu_length) {
431 cFYI(1, ("requested %d bytes but only got %d bytes",
432 pdu_length, length));
433 pdu_length -= length;
434 msleep(1);
435 goto incomplete_rcv;
436 }
437
438 /* The right amount was read from socket - 4 bytes */
439 /* so we can now interpret the length field */
440
441 /* the first byte big endian of the length field,
442 is actually not part of the length but the type
443 with the most common, zero, as regular data */
444 temp = *((char *) smb_buffer);
445
446 /* Note that FC 1001 length is big endian on the wire,
447 but we convert it here so it is always manipulated
448 as host byte order */
449 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
450 smb_buffer->smb_buf_length = pdu_length;
451
452 cFYI(1, ("rfc1002 length 0x%x", pdu_length+4));
453
454 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
455 continue;
456 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
457 cFYI(1, ("Good RFC 1002 session rsp"));
458 continue;
459 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
460 /* we get this from Windows 98 instead of
461 an error on SMB negprot response */
462 cFYI(1, ("Negative RFC1002 Session Response Error 0x%x)",
463 pdu_length));
464 if (server->tcpStatus == CifsNew) {
465 /* if nack on negprot (rather than
466 ret of smb negprot error) reconnecting
467 not going to help, ret error to mount */
468 break;
469 } else {
470 /* give server a second to
471 clean up before reconnect attempt */
472 msleep(1000);
473 /* always try 445 first on reconnect
474 since we get NACK on some if we ever
475 connected to port 139 (the NACK is
476 since we do not begin with RFC1001
477 session initialize frame) */
478 server->addr.sockAddr.sin_port =
479 htons(CIFS_PORT);
480 cifs_reconnect(server);
481 csocket = server->ssocket;
482 wake_up(&server->response_q);
483 continue;
484 }
485 } else if (temp != (char) 0) {
486 cERROR(1, ("Unknown RFC 1002 frame"));
487 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
488 length);
489 cifs_reconnect(server);
490 csocket = server->ssocket;
491 continue;
492 }
493
494 /* else we have an SMB response */
495 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
496 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
497 cERROR(1, ("Invalid size SMB length %d pdu_length %d",
498 length, pdu_length+4));
499 cifs_reconnect(server);
500 csocket = server->ssocket;
501 wake_up(&server->response_q);
502 continue;
503 }
504
505 /* else length ok */
506 reconnect = 0;
507
508 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
509 isLargeBuf = true;
510 memcpy(bigbuf, smallbuf, 4);
511 smb_buffer = bigbuf;
512 }
513 length = 0;
514 iov.iov_base = 4 + (char *)smb_buffer;
515 iov.iov_len = pdu_length;
516 for (total_read = 0; total_read < pdu_length;
517 total_read += length) {
518 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
519 pdu_length - total_read, 0);
520 if ((server->tcpStatus == CifsExiting) ||
521 (length == -EINTR)) {
522 /* then will exit */
523 reconnect = 2;
524 break;
525 } else if (server->tcpStatus == CifsNeedReconnect) {
526 cifs_reconnect(server);
527 csocket = server->ssocket;
528 /* Reconnect wakes up rspns q */
529 /* Now we will reread sock */
530 reconnect = 1;
531 break;
532 } else if ((length == -ERESTARTSYS) ||
533 (length == -EAGAIN)) {
534 msleep(1); /* minimum sleep to prevent looping,
535 allowing socket to clear and app
536 threads to set tcpStatus
537 CifsNeedReconnect if server hung*/
538 length = 0;
539 continue;
540 } else if (length <= 0) {
541 cERROR(1, ("Received no data, expecting %d",
542 pdu_length - total_read));
543 cifs_reconnect(server);
544 csocket = server->ssocket;
545 reconnect = 1;
546 break;
547 }
548 }
549 if (reconnect == 2)
550 break;
551 else if (reconnect == 1)
552 continue;
553
554 length += 4; /* account for rfc1002 hdr */
555
556
557 dump_smb(smb_buffer, length);
558 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
559 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
560 continue;
561 }
562
563
564 task_to_wake = NULL;
565 spin_lock(&GlobalMid_Lock);
566 list_for_each(tmp, &server->pending_mid_q) {
567 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
568
569 if ((mid_entry->mid == smb_buffer->Mid) &&
570 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
571 (mid_entry->command == smb_buffer->Command)) {
572 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
573 /* We have a multipart transact2 resp */
574 isMultiRsp = true;
575 if (mid_entry->resp_buf) {
576 /* merge response - fix up 1st*/
577 if (coalesce_t2(smb_buffer,
578 mid_entry->resp_buf)) {
579 mid_entry->multiRsp =
580 true;
581 break;
582 } else {
583 /* all parts received */
584 mid_entry->multiEnd =
585 true;
586 goto multi_t2_fnd;
587 }
588 } else {
589 if (!isLargeBuf) {
590 cERROR(1,("1st trans2 resp needs bigbuf"));
591 /* BB maybe we can fix this up, switch
592 to already allocated large buffer? */
593 } else {
594 /* Have first buffer */
595 mid_entry->resp_buf =
596 smb_buffer;
597 mid_entry->largeBuf =
598 true;
599 bigbuf = NULL;
600 }
601 }
602 break;
603 }
604 mid_entry->resp_buf = smb_buffer;
605 mid_entry->largeBuf = isLargeBuf;
606 multi_t2_fnd:
607 task_to_wake = mid_entry->tsk;
608 mid_entry->midState = MID_RESPONSE_RECEIVED;
609 #ifdef CONFIG_CIFS_STATS2
610 mid_entry->when_received = jiffies;
611 #endif
612 /* so we do not time out requests to server
613 which is still responding (since server could
614 be busy but not dead) */
615 server->lstrp = jiffies;
616 break;
617 }
618 }
619 spin_unlock(&GlobalMid_Lock);
620 if (task_to_wake) {
621 /* Was previous buf put in mpx struct for multi-rsp? */
622 if (!isMultiRsp) {
623 /* smb buffer will be freed by user thread */
624 if (isLargeBuf)
625 bigbuf = NULL;
626 else
627 smallbuf = NULL;
628 }
629 wake_up_process(task_to_wake);
630 } else if (!is_valid_oplock_break(smb_buffer, server) &&
631 !isMultiRsp) {
632 cERROR(1, ("No task to wake, unknown frame received! "
633 "NumMids %d", midCount.counter));
634 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
635 sizeof(struct smb_hdr));
636 #ifdef CONFIG_CIFS_DEBUG2
637 cifs_dump_detail(smb_buffer);
638 cifs_dump_mids(server);
639 #endif /* CIFS_DEBUG2 */
640
641 }
642 } /* end while !EXITING */
643
644 /* take it off the list, if it's not already */
645 write_lock(&cifs_tcp_ses_lock);
646 list_del_init(&server->tcp_ses_list);
647 write_unlock(&cifs_tcp_ses_lock);
648
649 spin_lock(&GlobalMid_Lock);
650 server->tcpStatus = CifsExiting;
651 spin_unlock(&GlobalMid_Lock);
652 wake_up_all(&server->response_q);
653
654 /* check if we have blocked requests that need to free */
655 /* Note that cifs_max_pending is normally 50, but
656 can be set at module install time to as little as two */
657 spin_lock(&GlobalMid_Lock);
658 if (atomic_read(&server->inFlight) >= cifs_max_pending)
659 atomic_set(&server->inFlight, cifs_max_pending - 1);
660 /* We do not want to set the max_pending too low or we
661 could end up with the counter going negative */
662 spin_unlock(&GlobalMid_Lock);
663 /* Although there should not be any requests blocked on
664 this queue it can not hurt to be paranoid and try to wake up requests
665 that may haven been blocked when more than 50 at time were on the wire
666 to the same server - they now will see the session is in exit state
667 and get out of SendReceive. */
668 wake_up_all(&server->request_q);
669 /* give those requests time to exit */
670 msleep(125);
671
672 if (server->ssocket) {
673 sock_release(csocket);
674 server->ssocket = NULL;
675 }
676 /* buffer usuallly freed in free_mid - need to free it here on exit */
677 cifs_buf_release(bigbuf);
678 if (smallbuf) /* no sense logging a debug message if NULL */
679 cifs_small_buf_release(smallbuf);
680
681 /*
682 * BB: we shouldn't have to do any of this. It shouldn't be
683 * possible to exit from the thread with active SMB sessions
684 */
685 read_lock(&cifs_tcp_ses_lock);
686 if (list_empty(&server->pending_mid_q)) {
687 /* loop through server session structures attached to this and
688 mark them dead */
689 list_for_each(tmp, &server->smb_ses_list) {
690 ses = list_entry(tmp, struct cifsSesInfo,
691 smb_ses_list);
692 ses->status = CifsExiting;
693 ses->server = NULL;
694 }
695 read_unlock(&cifs_tcp_ses_lock);
696 } else {
697 /* although we can not zero the server struct pointer yet,
698 since there are active requests which may depnd on them,
699 mark the corresponding SMB sessions as exiting too */
700 list_for_each(tmp, &server->smb_ses_list) {
701 ses = list_entry(tmp, struct cifsSesInfo,
702 smb_ses_list);
703 ses->status = CifsExiting;
704 }
705
706 spin_lock(&GlobalMid_Lock);
707 list_for_each(tmp, &server->pending_mid_q) {
708 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
709 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
710 cFYI(1, ("Clearing Mid 0x%x - waking up ",
711 mid_entry->mid));
712 task_to_wake = mid_entry->tsk;
713 if (task_to_wake)
714 wake_up_process(task_to_wake);
715 }
716 }
717 spin_unlock(&GlobalMid_Lock);
718 read_unlock(&cifs_tcp_ses_lock);
719 /* 1/8th of sec is more than enough time for them to exit */
720 msleep(125);
721 }
722
723 if (!list_empty(&server->pending_mid_q)) {
724 /* mpx threads have not exited yet give them
725 at least the smb send timeout time for long ops */
726 /* due to delays on oplock break requests, we need
727 to wait at least 45 seconds before giving up
728 on a request getting a response and going ahead
729 and killing cifsd */
730 cFYI(1, ("Wait for exit from demultiplex thread"));
731 msleep(46000);
732 /* if threads still have not exited they are probably never
733 coming home not much else we can do but free the memory */
734 }
735
736 /* last chance to mark ses pointers invalid
737 if there are any pointing to this (e.g
738 if a crazy root user tried to kill cifsd
739 kernel thread explicitly this might happen) */
740 /* BB: This shouldn't be necessary, see above */
741 read_lock(&cifs_tcp_ses_lock);
742 list_for_each(tmp, &server->smb_ses_list) {
743 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
744 ses->server = NULL;
745 }
746 read_unlock(&cifs_tcp_ses_lock);
747
748 kfree(server->hostname);
749 task_to_wake = xchg(&server->tsk, NULL);
750 kfree(server);
751
752 length = atomic_dec_return(&tcpSesAllocCount);
753 if (length > 0)
754 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
755 GFP_KERNEL);
756
757 /* if server->tsk was NULL then wait for a signal before exiting */
758 if (!task_to_wake) {
759 set_current_state(TASK_INTERRUPTIBLE);
760 while (!signal_pending(current)) {
761 schedule();
762 set_current_state(TASK_INTERRUPTIBLE);
763 }
764 set_current_state(TASK_RUNNING);
765 }
766
767 module_put_and_exit(0);
768 }
769
770 /* extract the host portion of the UNC string */
771 static char *
772 extract_hostname(const char *unc)
773 {
774 const char *src;
775 char *dst, *delim;
776 unsigned int len;
777
778 /* skip double chars at beginning of string */
779 /* BB: check validity of these bytes? */
780 src = unc + 2;
781
782 /* delimiter between hostname and sharename is always '\\' now */
783 delim = strchr(src, '\\');
784 if (!delim)
785 return ERR_PTR(-EINVAL);
786
787 len = delim - src;
788 dst = kmalloc((len + 1), GFP_KERNEL);
789 if (dst == NULL)
790 return ERR_PTR(-ENOMEM);
791
792 memcpy(dst, src, len);
793 dst[len] = '\0';
794
795 return dst;
796 }
797
798 static int
799 cifs_parse_mount_options(char *options, const char *devname,
800 struct smb_vol *vol)
801 {
802 char *value;
803 char *data;
804 unsigned int temp_len, i, j;
805 char separator[2];
806 short int override_uid = -1;
807 short int override_gid = -1;
808 bool uid_specified = false;
809 bool gid_specified = false;
810
811 separator[0] = ',';
812 separator[1] = 0;
813
814 if (Local_System_Name[0] != 0)
815 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
816 else {
817 char *nodename = utsname()->nodename;
818 int n = strnlen(nodename, 15);
819 memset(vol->source_rfc1001_name, 0x20, 15);
820 for (i = 0; i < n; i++) {
821 /* does not have to be perfect mapping since field is
822 informational, only used for servers that do not support
823 port 445 and it can be overridden at mount time */
824 vol->source_rfc1001_name[i] = toupper(nodename[i]);
825 }
826 }
827 vol->source_rfc1001_name[15] = 0;
828 /* null target name indicates to use *SMBSERVR default called name
829 if we end up sending RFC1001 session initialize */
830 vol->target_rfc1001_name[0] = 0;
831 vol->linux_uid = current_uid(); /* use current_euid() instead? */
832 vol->linux_gid = current_gid();
833
834 /* default to only allowing write access to owner of the mount */
835 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
836
837 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
838 /* default is always to request posix paths. */
839 vol->posix_paths = 1;
840 /* default to using server inode numbers where available */
841 vol->server_ino = 1;
842
843 if (!options)
844 return 1;
845
846 if (strncmp(options, "sep=", 4) == 0) {
847 if (options[4] != 0) {
848 separator[0] = options[4];
849 options += 5;
850 } else {
851 cFYI(1, ("Null separator not allowed"));
852 }
853 }
854
855 while ((data = strsep(&options, separator)) != NULL) {
856 if (!*data)
857 continue;
858 if ((value = strchr(data, '=')) != NULL)
859 *value++ = '\0';
860
861 /* Have to parse this before we parse for "user" */
862 if (strnicmp(data, "user_xattr", 10) == 0) {
863 vol->no_xattr = 0;
864 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
865 vol->no_xattr = 1;
866 } else if (strnicmp(data, "user", 4) == 0) {
867 if (!value) {
868 printk(KERN_WARNING
869 "CIFS: invalid or missing username\n");
870 return 1; /* needs_arg; */
871 } else if (!*value) {
872 /* null user, ie anonymous, authentication */
873 vol->nullauth = 1;
874 }
875 if (strnlen(value, 200) < 200) {
876 vol->username = value;
877 } else {
878 printk(KERN_WARNING "CIFS: username too long\n");
879 return 1;
880 }
881 } else if (strnicmp(data, "pass", 4) == 0) {
882 if (!value) {
883 vol->password = NULL;
884 continue;
885 } else if (value[0] == 0) {
886 /* check if string begins with double comma
887 since that would mean the password really
888 does start with a comma, and would not
889 indicate an empty string */
890 if (value[1] != separator[0]) {
891 vol->password = NULL;
892 continue;
893 }
894 }
895 temp_len = strlen(value);
896 /* removed password length check, NTLM passwords
897 can be arbitrarily long */
898
899 /* if comma in password, the string will be
900 prematurely null terminated. Commas in password are
901 specified across the cifs mount interface by a double
902 comma ie ,, and a comma used as in other cases ie ','
903 as a parameter delimiter/separator is single and due
904 to the strsep above is temporarily zeroed. */
905
906 /* NB: password legally can have multiple commas and
907 the only illegal character in a password is null */
908
909 if ((value[temp_len] == 0) &&
910 (value[temp_len+1] == separator[0])) {
911 /* reinsert comma */
912 value[temp_len] = separator[0];
913 temp_len += 2; /* move after second comma */
914 while (value[temp_len] != 0) {
915 if (value[temp_len] == separator[0]) {
916 if (value[temp_len+1] ==
917 separator[0]) {
918 /* skip second comma */
919 temp_len++;
920 } else {
921 /* single comma indicating start
922 of next parm */
923 break;
924 }
925 }
926 temp_len++;
927 }
928 if (value[temp_len] == 0) {
929 options = NULL;
930 } else {
931 value[temp_len] = 0;
932 /* point option to start of next parm */
933 options = value + temp_len + 1;
934 }
935 /* go from value to value + temp_len condensing
936 double commas to singles. Note that this ends up
937 allocating a few bytes too many, which is ok */
938 vol->password = kzalloc(temp_len, GFP_KERNEL);
939 if (vol->password == NULL) {
940 printk(KERN_WARNING "CIFS: no memory "
941 "for password\n");
942 return 1;
943 }
944 for (i = 0, j = 0; i < temp_len; i++, j++) {
945 vol->password[j] = value[i];
946 if (value[i] == separator[0]
947 && value[i+1] == separator[0]) {
948 /* skip second comma */
949 i++;
950 }
951 }
952 vol->password[j] = 0;
953 } else {
954 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
955 if (vol->password == NULL) {
956 printk(KERN_WARNING "CIFS: no memory "
957 "for password\n");
958 return 1;
959 }
960 strcpy(vol->password, value);
961 }
962 } else if (!strnicmp(data, "ip", 2) ||
963 !strnicmp(data, "addr", 4)) {
964 if (!value || !*value) {
965 vol->UNCip = NULL;
966 } else if (strnlen(value, INET6_ADDRSTRLEN) <
967 INET6_ADDRSTRLEN) {
968 vol->UNCip = value;
969 } else {
970 printk(KERN_WARNING "CIFS: ip address "
971 "too long\n");
972 return 1;
973 }
974 } else if (strnicmp(data, "sec", 3) == 0) {
975 if (!value || !*value) {
976 cERROR(1, ("no security value specified"));
977 continue;
978 } else if (strnicmp(value, "krb5i", 5) == 0) {
979 vol->secFlg |= CIFSSEC_MAY_KRB5 |
980 CIFSSEC_MUST_SIGN;
981 } else if (strnicmp(value, "krb5p", 5) == 0) {
982 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
983 CIFSSEC_MAY_KRB5; */
984 cERROR(1, ("Krb5 cifs privacy not supported"));
985 return 1;
986 } else if (strnicmp(value, "krb5", 4) == 0) {
987 vol->secFlg |= CIFSSEC_MAY_KRB5;
988 #ifdef CONFIG_CIFS_EXPERIMENTAL
989 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
990 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
991 CIFSSEC_MUST_SIGN;
992 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
993 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
994 #endif
995 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
996 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
997 CIFSSEC_MUST_SIGN;
998 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
999 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1000 } else if (strnicmp(value, "ntlmi", 5) == 0) {
1001 vol->secFlg |= CIFSSEC_MAY_NTLM |
1002 CIFSSEC_MUST_SIGN;
1003 } else if (strnicmp(value, "ntlm", 4) == 0) {
1004 /* ntlm is default so can be turned off too */
1005 vol->secFlg |= CIFSSEC_MAY_NTLM;
1006 } else if (strnicmp(value, "nontlm", 6) == 0) {
1007 /* BB is there a better way to do this? */
1008 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1009 #ifdef CONFIG_CIFS_WEAK_PW_HASH
1010 } else if (strnicmp(value, "lanman", 6) == 0) {
1011 vol->secFlg |= CIFSSEC_MAY_LANMAN;
1012 #endif
1013 } else if (strnicmp(value, "none", 4) == 0) {
1014 vol->nullauth = 1;
1015 } else {
1016 cERROR(1, ("bad security option: %s", value));
1017 return 1;
1018 }
1019 } else if ((strnicmp(data, "unc", 3) == 0)
1020 || (strnicmp(data, "target", 6) == 0)
1021 || (strnicmp(data, "path", 4) == 0)) {
1022 if (!value || !*value) {
1023 printk(KERN_WARNING "CIFS: invalid path to "
1024 "network resource\n");
1025 return 1; /* needs_arg; */
1026 }
1027 if ((temp_len = strnlen(value, 300)) < 300) {
1028 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1029 if (vol->UNC == NULL)
1030 return 1;
1031 strcpy(vol->UNC, value);
1032 if (strncmp(vol->UNC, "//", 2) == 0) {
1033 vol->UNC[0] = '\\';
1034 vol->UNC[1] = '\\';
1035 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1036 printk(KERN_WARNING
1037 "CIFS: UNC Path does not begin "
1038 "with // or \\\\ \n");
1039 return 1;
1040 }
1041 } else {
1042 printk(KERN_WARNING "CIFS: UNC name too long\n");
1043 return 1;
1044 }
1045 } else if ((strnicmp(data, "domain", 3) == 0)
1046 || (strnicmp(data, "workgroup", 5) == 0)) {
1047 if (!value || !*value) {
1048 printk(KERN_WARNING "CIFS: invalid domain name\n");
1049 return 1; /* needs_arg; */
1050 }
1051 /* BB are there cases in which a comma can be valid in
1052 a domain name and need special handling? */
1053 if (strnlen(value, 256) < 256) {
1054 vol->domainname = value;
1055 cFYI(1, ("Domain name set"));
1056 } else {
1057 printk(KERN_WARNING "CIFS: domain name too "
1058 "long\n");
1059 return 1;
1060 }
1061 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1062 if (!value || !*value) {
1063 printk(KERN_WARNING
1064 "CIFS: invalid path prefix\n");
1065 return 1; /* needs_argument */
1066 }
1067 if ((temp_len = strnlen(value, 1024)) < 1024) {
1068 if (value[0] != '/')
1069 temp_len++; /* missing leading slash */
1070 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1071 if (vol->prepath == NULL)
1072 return 1;
1073 if (value[0] != '/') {
1074 vol->prepath[0] = '/';
1075 strcpy(vol->prepath+1, value);
1076 } else
1077 strcpy(vol->prepath, value);
1078 cFYI(1, ("prefix path %s", vol->prepath));
1079 } else {
1080 printk(KERN_WARNING "CIFS: prefix too long\n");
1081 return 1;
1082 }
1083 } else if (strnicmp(data, "iocharset", 9) == 0) {
1084 if (!value || !*value) {
1085 printk(KERN_WARNING "CIFS: invalid iocharset "
1086 "specified\n");
1087 return 1; /* needs_arg; */
1088 }
1089 if (strnlen(value, 65) < 65) {
1090 if (strnicmp(value, "default", 7))
1091 vol->iocharset = value;
1092 /* if iocharset not set then load_nls_default
1093 is used by caller */
1094 cFYI(1, ("iocharset set to %s", value));
1095 } else {
1096 printk(KERN_WARNING "CIFS: iocharset name "
1097 "too long.\n");
1098 return 1;
1099 }
1100 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1101 vol->linux_uid = simple_strtoul(value, &value, 0);
1102 uid_specified = true;
1103 } else if (!strnicmp(data, "forceuid", 8)) {
1104 override_uid = 1;
1105 } else if (!strnicmp(data, "noforceuid", 10)) {
1106 override_uid = 0;
1107 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1108 vol->linux_gid = simple_strtoul(value, &value, 0);
1109 gid_specified = true;
1110 } else if (!strnicmp(data, "forcegid", 8)) {
1111 override_gid = 1;
1112 } else if (!strnicmp(data, "noforcegid", 10)) {
1113 override_gid = 0;
1114 } else if (strnicmp(data, "file_mode", 4) == 0) {
1115 if (value && *value) {
1116 vol->file_mode =
1117 simple_strtoul(value, &value, 0);
1118 }
1119 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1120 if (value && *value) {
1121 vol->dir_mode =
1122 simple_strtoul(value, &value, 0);
1123 }
1124 } else if (strnicmp(data, "dirmode", 4) == 0) {
1125 if (value && *value) {
1126 vol->dir_mode =
1127 simple_strtoul(value, &value, 0);
1128 }
1129 } else if (strnicmp(data, "port", 4) == 0) {
1130 if (value && *value) {
1131 vol->port =
1132 simple_strtoul(value, &value, 0);
1133 }
1134 } else if (strnicmp(data, "rsize", 5) == 0) {
1135 if (value && *value) {
1136 vol->rsize =
1137 simple_strtoul(value, &value, 0);
1138 }
1139 } else if (strnicmp(data, "wsize", 5) == 0) {
1140 if (value && *value) {
1141 vol->wsize =
1142 simple_strtoul(value, &value, 0);
1143 }
1144 } else if (strnicmp(data, "sockopt", 5) == 0) {
1145 if (!value || !*value) {
1146 cERROR(1, ("no socket option specified"));
1147 continue;
1148 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1149 vol->sockopt_tcp_nodelay = 1;
1150 }
1151 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1152 if (!value || !*value || (*value == ' ')) {
1153 cFYI(1, ("invalid (empty) netbiosname"));
1154 } else {
1155 memset(vol->source_rfc1001_name, 0x20, 15);
1156 for (i = 0; i < 15; i++) {
1157 /* BB are there cases in which a comma can be
1158 valid in this workstation netbios name (and need
1159 special handling)? */
1160
1161 /* We do not uppercase netbiosname for user */
1162 if (value[i] == 0)
1163 break;
1164 else
1165 vol->source_rfc1001_name[i] =
1166 value[i];
1167 }
1168 /* The string has 16th byte zero still from
1169 set at top of the function */
1170 if ((i == 15) && (value[i] != 0))
1171 printk(KERN_WARNING "CIFS: netbiosname"
1172 " longer than 15 truncated.\n");
1173 }
1174 } else if (strnicmp(data, "servern", 7) == 0) {
1175 /* servernetbiosname specified override *SMBSERVER */
1176 if (!value || !*value || (*value == ' ')) {
1177 cFYI(1, ("empty server netbiosname specified"));
1178 } else {
1179 /* last byte, type, is 0x20 for servr type */
1180 memset(vol->target_rfc1001_name, 0x20, 16);
1181
1182 for (i = 0; i < 15; i++) {
1183 /* BB are there cases in which a comma can be
1184 valid in this workstation netbios name
1185 (and need special handling)? */
1186
1187 /* user or mount helper must uppercase
1188 the netbiosname */
1189 if (value[i] == 0)
1190 break;
1191 else
1192 vol->target_rfc1001_name[i] =
1193 value[i];
1194 }
1195 /* The string has 16th byte zero still from
1196 set at top of the function */
1197 if ((i == 15) && (value[i] != 0))
1198 printk(KERN_WARNING "CIFS: server net"
1199 "biosname longer than 15 truncated.\n");
1200 }
1201 } else if (strnicmp(data, "credentials", 4) == 0) {
1202 /* ignore */
1203 } else if (strnicmp(data, "version", 3) == 0) {
1204 /* ignore */
1205 } else if (strnicmp(data, "guest", 5) == 0) {
1206 /* ignore */
1207 } else if (strnicmp(data, "rw", 2) == 0) {
1208 /* ignore */
1209 } else if (strnicmp(data, "ro", 2) == 0) {
1210 /* ignore */
1211 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1212 vol->noblocksnd = 1;
1213 } else if (strnicmp(data, "noautotune", 10) == 0) {
1214 vol->noautotune = 1;
1215 } else if ((strnicmp(data, "suid", 4) == 0) ||
1216 (strnicmp(data, "nosuid", 6) == 0) ||
1217 (strnicmp(data, "exec", 4) == 0) ||
1218 (strnicmp(data, "noexec", 6) == 0) ||
1219 (strnicmp(data, "nodev", 5) == 0) ||
1220 (strnicmp(data, "noauto", 6) == 0) ||
1221 (strnicmp(data, "dev", 3) == 0)) {
1222 /* The mount tool or mount.cifs helper (if present)
1223 uses these opts to set flags, and the flags are read
1224 by the kernel vfs layer before we get here (ie
1225 before read super) so there is no point trying to
1226 parse these options again and set anything and it
1227 is ok to just ignore them */
1228 continue;
1229 } else if (strnicmp(data, "hard", 4) == 0) {
1230 vol->retry = 1;
1231 } else if (strnicmp(data, "soft", 4) == 0) {
1232 vol->retry = 0;
1233 } else if (strnicmp(data, "perm", 4) == 0) {
1234 vol->noperm = 0;
1235 } else if (strnicmp(data, "noperm", 6) == 0) {
1236 vol->noperm = 1;
1237 } else if (strnicmp(data, "mapchars", 8) == 0) {
1238 vol->remap = 1;
1239 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1240 vol->remap = 0;
1241 } else if (strnicmp(data, "sfu", 3) == 0) {
1242 vol->sfu_emul = 1;
1243 } else if (strnicmp(data, "nosfu", 5) == 0) {
1244 vol->sfu_emul = 0;
1245 } else if (strnicmp(data, "nodfs", 5) == 0) {
1246 vol->nodfs = 1;
1247 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1248 vol->posix_paths = 1;
1249 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1250 vol->posix_paths = 0;
1251 } else if (strnicmp(data, "nounix", 6) == 0) {
1252 vol->no_linux_ext = 1;
1253 } else if (strnicmp(data, "nolinux", 7) == 0) {
1254 vol->no_linux_ext = 1;
1255 } else if ((strnicmp(data, "nocase", 6) == 0) ||
1256 (strnicmp(data, "ignorecase", 10) == 0)) {
1257 vol->nocase = 1;
1258 } else if (strnicmp(data, "brl", 3) == 0) {
1259 vol->nobrl = 0;
1260 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1261 (strnicmp(data, "nolock", 6) == 0)) {
1262 vol->nobrl = 1;
1263 /* turn off mandatory locking in mode
1264 if remote locking is turned off since the
1265 local vfs will do advisory */
1266 if (vol->file_mode ==
1267 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1268 vol->file_mode = S_IALLUGO;
1269 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1270 /* will take the shorter form "forcemand" as well */
1271 /* This mount option will force use of mandatory
1272 (DOS/Windows style) byte range locks, instead of
1273 using posix advisory byte range locks, even if the
1274 Unix extensions are available and posix locks would
1275 be supported otherwise. If Unix extensions are not
1276 negotiated this has no effect since mandatory locks
1277 would be used (mandatory locks is all that those
1278 those servers support) */
1279 vol->mand_lock = 1;
1280 } else if (strnicmp(data, "setuids", 7) == 0) {
1281 vol->setuids = 1;
1282 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1283 vol->setuids = 0;
1284 } else if (strnicmp(data, "dynperm", 7) == 0) {
1285 vol->dynperm = true;
1286 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1287 vol->dynperm = false;
1288 } else if (strnicmp(data, "nohard", 6) == 0) {
1289 vol->retry = 0;
1290 } else if (strnicmp(data, "nosoft", 6) == 0) {
1291 vol->retry = 1;
1292 } else if (strnicmp(data, "nointr", 6) == 0) {
1293 vol->intr = 0;
1294 } else if (strnicmp(data, "intr", 4) == 0) {
1295 vol->intr = 1;
1296 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1297 vol->nostrictsync = 1;
1298 } else if (strnicmp(data, "strictsync", 10) == 0) {
1299 vol->nostrictsync = 0;
1300 } else if (strnicmp(data, "serverino", 7) == 0) {
1301 vol->server_ino = 1;
1302 } else if (strnicmp(data, "noserverino", 9) == 0) {
1303 vol->server_ino = 0;
1304 } else if (strnicmp(data, "cifsacl", 7) == 0) {
1305 vol->cifs_acl = 1;
1306 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1307 vol->cifs_acl = 0;
1308 } else if (strnicmp(data, "acl", 3) == 0) {
1309 vol->no_psx_acl = 0;
1310 } else if (strnicmp(data, "noacl", 5) == 0) {
1311 vol->no_psx_acl = 1;
1312 #ifdef CONFIG_CIFS_EXPERIMENTAL
1313 } else if (strnicmp(data, "locallease", 6) == 0) {
1314 vol->local_lease = 1;
1315 #endif
1316 } else if (strnicmp(data, "sign", 4) == 0) {
1317 vol->secFlg |= CIFSSEC_MUST_SIGN;
1318 } else if (strnicmp(data, "seal", 4) == 0) {
1319 /* we do not do the following in secFlags because seal
1320 is a per tree connection (mount) not a per socket
1321 or per-smb connection option in the protocol */
1322 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1323 vol->seal = 1;
1324 } else if (strnicmp(data, "direct", 6) == 0) {
1325 vol->direct_io = 1;
1326 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1327 vol->direct_io = 1;
1328 } else if (strnicmp(data, "noac", 4) == 0) {
1329 printk(KERN_WARNING "CIFS: Mount option noac not "
1330 "supported. Instead set "
1331 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1332 } else
1333 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1334 data);
1335 }
1336 if (vol->UNC == NULL) {
1337 if (devname == NULL) {
1338 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1339 "target\n");
1340 return 1;
1341 }
1342 if ((temp_len = strnlen(devname, 300)) < 300) {
1343 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1344 if (vol->UNC == NULL)
1345 return 1;
1346 strcpy(vol->UNC, devname);
1347 if (strncmp(vol->UNC, "//", 2) == 0) {
1348 vol->UNC[0] = '\\';
1349 vol->UNC[1] = '\\';
1350 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1351 printk(KERN_WARNING "CIFS: UNC Path does not "
1352 "begin with // or \\\\ \n");
1353 return 1;
1354 }
1355 value = strpbrk(vol->UNC+2, "/\\");
1356 if (value)
1357 *value = '\\';
1358 } else {
1359 printk(KERN_WARNING "CIFS: UNC name too long\n");
1360 return 1;
1361 }
1362 }
1363 if (vol->UNCip == NULL)
1364 vol->UNCip = &vol->UNC[2];
1365
1366 if (uid_specified)
1367 vol->override_uid = override_uid;
1368 else if (override_uid == 1)
1369 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1370 "specified with no uid= option.\n");
1371
1372 if (gid_specified)
1373 vol->override_gid = override_gid;
1374 else if (override_gid == 1)
1375 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1376 "specified with no gid= option.\n");
1377
1378 return 0;
1379 }
1380
1381 static struct TCP_Server_Info *
1382 cifs_find_tcp_session(struct sockaddr_storage *addr, unsigned short int port)
1383 {
1384 struct list_head *tmp;
1385 struct TCP_Server_Info *server;
1386 struct sockaddr_in *addr4 = (struct sockaddr_in *) addr;
1387 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *) addr;
1388
1389 write_lock(&cifs_tcp_ses_lock);
1390 list_for_each(tmp, &cifs_tcp_ses_list) {
1391 server = list_entry(tmp, struct TCP_Server_Info,
1392 tcp_ses_list);
1393 /*
1394 * the demux thread can exit on its own while still in CifsNew
1395 * so don't accept any sockets in that state. Since the
1396 * tcpStatus never changes back to CifsNew it's safe to check
1397 * for this without a lock.
1398 */
1399 if (server->tcpStatus == CifsNew)
1400 continue;
1401
1402 switch (addr->ss_family) {
1403 case AF_INET:
1404 if (addr4->sin_addr.s_addr ==
1405 server->addr.sockAddr.sin_addr.s_addr) {
1406 addr4->sin_port = htons(port);
1407 /* user overrode default port? */
1408 if (addr4->sin_port) {
1409 if (addr4->sin_port !=
1410 server->addr.sockAddr.sin_port)
1411 continue;
1412 }
1413 break;
1414 } else
1415 continue;
1416
1417 case AF_INET6:
1418 if (ipv6_addr_equal(&addr6->sin6_addr,
1419 &server->addr.sockAddr6.sin6_addr) &&
1420 (addr6->sin6_scope_id ==
1421 server->addr.sockAddr6.sin6_scope_id)) {
1422 addr6->sin6_port = htons(port);
1423 /* user overrode default port? */
1424 if (addr6->sin6_port) {
1425 if (addr6->sin6_port !=
1426 server->addr.sockAddr6.sin6_port)
1427 continue;
1428 }
1429 break;
1430 } else
1431 continue;
1432 }
1433
1434 ++server->srv_count;
1435 write_unlock(&cifs_tcp_ses_lock);
1436 cFYI(1, ("Existing tcp session with server found"));
1437 return server;
1438 }
1439 write_unlock(&cifs_tcp_ses_lock);
1440 return NULL;
1441 }
1442
1443 static void
1444 cifs_put_tcp_session(struct TCP_Server_Info *server)
1445 {
1446 struct task_struct *task;
1447
1448 write_lock(&cifs_tcp_ses_lock);
1449 if (--server->srv_count > 0) {
1450 write_unlock(&cifs_tcp_ses_lock);
1451 return;
1452 }
1453
1454 list_del_init(&server->tcp_ses_list);
1455 write_unlock(&cifs_tcp_ses_lock);
1456
1457 spin_lock(&GlobalMid_Lock);
1458 server->tcpStatus = CifsExiting;
1459 spin_unlock(&GlobalMid_Lock);
1460
1461 task = xchg(&server->tsk, NULL);
1462 if (task)
1463 force_sig(SIGKILL, task);
1464 }
1465
1466 static struct TCP_Server_Info *
1467 cifs_get_tcp_session(struct smb_vol *volume_info)
1468 {
1469 struct TCP_Server_Info *tcp_ses = NULL;
1470 struct sockaddr_storage addr;
1471 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1472 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1473 int rc;
1474
1475 memset(&addr, 0, sizeof(struct sockaddr_storage));
1476
1477 cFYI(1, ("UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip));
1478
1479 if (volume_info->UNCip && volume_info->UNC) {
1480 rc = cifs_convert_address(volume_info->UNCip, &addr);
1481 if (!rc) {
1482 /* we failed translating address */
1483 rc = -EINVAL;
1484 goto out_err;
1485 }
1486 } else if (volume_info->UNCip) {
1487 /* BB using ip addr as tcp_ses name to connect to the
1488 DFS root below */
1489 cERROR(1, ("Connecting to DFS root not implemented yet"));
1490 rc = -EINVAL;
1491 goto out_err;
1492 } else /* which tcp_sess DFS root would we conect to */ {
1493 cERROR(1,
1494 ("CIFS mount error: No UNC path (e.g. -o "
1495 "unc=//192.168.1.100/public) specified"));
1496 rc = -EINVAL;
1497 goto out_err;
1498 }
1499
1500 /* see if we already have a matching tcp_ses */
1501 tcp_ses = cifs_find_tcp_session(&addr, volume_info->port);
1502 if (tcp_ses)
1503 return tcp_ses;
1504
1505 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1506 if (!tcp_ses) {
1507 rc = -ENOMEM;
1508 goto out_err;
1509 }
1510
1511 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1512 if (IS_ERR(tcp_ses->hostname)) {
1513 rc = PTR_ERR(tcp_ses->hostname);
1514 goto out_err;
1515 }
1516
1517 tcp_ses->noblocksnd = volume_info->noblocksnd;
1518 tcp_ses->noautotune = volume_info->noautotune;
1519 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
1520 atomic_set(&tcp_ses->inFlight, 0);
1521 init_waitqueue_head(&tcp_ses->response_q);
1522 init_waitqueue_head(&tcp_ses->request_q);
1523 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1524 mutex_init(&tcp_ses->srv_mutex);
1525 memcpy(tcp_ses->workstation_RFC1001_name,
1526 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1527 memcpy(tcp_ses->server_RFC1001_name,
1528 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1529 tcp_ses->sequence_number = 0;
1530 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1531 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1532
1533 /*
1534 * at this point we are the only ones with the pointer
1535 * to the struct since the kernel thread not created yet
1536 * no need to spinlock this init of tcpStatus or srv_count
1537 */
1538 tcp_ses->tcpStatus = CifsNew;
1539 ++tcp_ses->srv_count;
1540
1541 if (addr.ss_family == AF_INET6) {
1542 cFYI(1, ("attempting ipv6 connect"));
1543 /* BB should we allow ipv6 on port 139? */
1544 /* other OS never observed in Wild doing 139 with v6 */
1545 sin_server6->sin6_port = htons(volume_info->port);
1546 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1547 sizeof(struct sockaddr_in6));
1548 rc = ipv6_connect(tcp_ses);
1549 } else {
1550 sin_server->sin_port = htons(volume_info->port);
1551 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1552 sizeof(struct sockaddr_in));
1553 rc = ipv4_connect(tcp_ses);
1554 }
1555 if (rc < 0) {
1556 cERROR(1, ("Error connecting to socket. Aborting operation"));
1557 goto out_err;
1558 }
1559
1560 /*
1561 * since we're in a cifs function already, we know that
1562 * this will succeed. No need for try_module_get().
1563 */
1564 __module_get(THIS_MODULE);
1565 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1566 tcp_ses, "cifsd");
1567 if (IS_ERR(tcp_ses->tsk)) {
1568 rc = PTR_ERR(tcp_ses->tsk);
1569 cERROR(1, ("error %d create cifsd thread", rc));
1570 module_put(THIS_MODULE);
1571 goto out_err;
1572 }
1573
1574 /* thread spawned, put it on the list */
1575 write_lock(&cifs_tcp_ses_lock);
1576 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1577 write_unlock(&cifs_tcp_ses_lock);
1578
1579 return tcp_ses;
1580
1581 out_err:
1582 if (tcp_ses) {
1583 if (!IS_ERR(tcp_ses->hostname))
1584 kfree(tcp_ses->hostname);
1585 if (tcp_ses->ssocket)
1586 sock_release(tcp_ses->ssocket);
1587 kfree(tcp_ses);
1588 }
1589 return ERR_PTR(rc);
1590 }
1591
1592 static struct cifsSesInfo *
1593 cifs_find_smb_ses(struct TCP_Server_Info *server, char *username)
1594 {
1595 struct list_head *tmp;
1596 struct cifsSesInfo *ses;
1597
1598 write_lock(&cifs_tcp_ses_lock);
1599 list_for_each(tmp, &server->smb_ses_list) {
1600 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
1601 if (strncmp(ses->userName, username, MAX_USERNAME_SIZE))
1602 continue;
1603
1604 ++ses->ses_count;
1605 write_unlock(&cifs_tcp_ses_lock);
1606 return ses;
1607 }
1608 write_unlock(&cifs_tcp_ses_lock);
1609 return NULL;
1610 }
1611
1612 static void
1613 cifs_put_smb_ses(struct cifsSesInfo *ses)
1614 {
1615 int xid;
1616 struct TCP_Server_Info *server = ses->server;
1617
1618 write_lock(&cifs_tcp_ses_lock);
1619 if (--ses->ses_count > 0) {
1620 write_unlock(&cifs_tcp_ses_lock);
1621 return;
1622 }
1623
1624 list_del_init(&ses->smb_ses_list);
1625 write_unlock(&cifs_tcp_ses_lock);
1626
1627 if (ses->status == CifsGood) {
1628 xid = GetXid();
1629 CIFSSMBLogoff(xid, ses);
1630 _FreeXid(xid);
1631 }
1632 sesInfoFree(ses);
1633 cifs_put_tcp_session(server);
1634 }
1635
1636 static struct cifsTconInfo *
1637 cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1638 {
1639 struct list_head *tmp;
1640 struct cifsTconInfo *tcon;
1641
1642 write_lock(&cifs_tcp_ses_lock);
1643 list_for_each(tmp, &ses->tcon_list) {
1644 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1645 if (tcon->tidStatus == CifsExiting)
1646 continue;
1647 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
1648 continue;
1649
1650 ++tcon->tc_count;
1651 write_unlock(&cifs_tcp_ses_lock);
1652 return tcon;
1653 }
1654 write_unlock(&cifs_tcp_ses_lock);
1655 return NULL;
1656 }
1657
1658 static void
1659 cifs_put_tcon(struct cifsTconInfo *tcon)
1660 {
1661 int xid;
1662 struct cifsSesInfo *ses = tcon->ses;
1663
1664 write_lock(&cifs_tcp_ses_lock);
1665 if (--tcon->tc_count > 0) {
1666 write_unlock(&cifs_tcp_ses_lock);
1667 return;
1668 }
1669
1670 list_del_init(&tcon->tcon_list);
1671 write_unlock(&cifs_tcp_ses_lock);
1672
1673 xid = GetXid();
1674 CIFSSMBTDis(xid, tcon);
1675 _FreeXid(xid);
1676
1677 tconInfoFree(tcon);
1678 cifs_put_smb_ses(ses);
1679 }
1680
1681 int
1682 get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
1683 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
1684 struct dfs_info3_param **preferrals, int remap)
1685 {
1686 char *temp_unc;
1687 int rc = 0;
1688
1689 *pnum_referrals = 0;
1690 *preferrals = NULL;
1691
1692 if (pSesInfo->ipc_tid == 0) {
1693 temp_unc = kmalloc(2 /* for slashes */ +
1694 strnlen(pSesInfo->serverName,
1695 SERVER_NAME_LEN_WITH_NULL * 2)
1696 + 1 + 4 /* slash IPC$ */ + 2,
1697 GFP_KERNEL);
1698 if (temp_unc == NULL)
1699 return -ENOMEM;
1700 temp_unc[0] = '\\';
1701 temp_unc[1] = '\\';
1702 strcpy(temp_unc + 2, pSesInfo->serverName);
1703 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
1704 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
1705 cFYI(1,
1706 ("CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid));
1707 kfree(temp_unc);
1708 }
1709 if (rc == 0)
1710 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
1711 pnum_referrals, nls_codepage, remap);
1712 /* BB map targetUNCs to dfs_info3 structures, here or
1713 in CIFSGetDFSRefer BB */
1714
1715 return rc;
1716 }
1717
1718 #ifdef CONFIG_DEBUG_LOCK_ALLOC
1719 static struct lock_class_key cifs_key[2];
1720 static struct lock_class_key cifs_slock_key[2];
1721
1722 static inline void
1723 cifs_reclassify_socket4(struct socket *sock)
1724 {
1725 struct sock *sk = sock->sk;
1726 BUG_ON(sock_owned_by_user(sk));
1727 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
1728 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
1729 }
1730
1731 static inline void
1732 cifs_reclassify_socket6(struct socket *sock)
1733 {
1734 struct sock *sk = sock->sk;
1735 BUG_ON(sock_owned_by_user(sk));
1736 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
1737 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
1738 }
1739 #else
1740 static inline void
1741 cifs_reclassify_socket4(struct socket *sock)
1742 {
1743 }
1744
1745 static inline void
1746 cifs_reclassify_socket6(struct socket *sock)
1747 {
1748 }
1749 #endif
1750
1751 /* See RFC1001 section 14 on representation of Netbios names */
1752 static void rfc1002mangle(char *target, char *source, unsigned int length)
1753 {
1754 unsigned int i, j;
1755
1756 for (i = 0, j = 0; i < (length); i++) {
1757 /* mask a nibble at a time and encode */
1758 target[j] = 'A' + (0x0F & (source[i] >> 4));
1759 target[j+1] = 'A' + (0x0F & source[i]);
1760 j += 2;
1761 }
1762
1763 }
1764
1765
1766 static int
1767 ipv4_connect(struct TCP_Server_Info *server)
1768 {
1769 int rc = 0;
1770 int val;
1771 bool connected = false;
1772 __be16 orig_port = 0;
1773 struct socket *socket = server->ssocket;
1774
1775 if (socket == NULL) {
1776 rc = sock_create_kern(PF_INET, SOCK_STREAM,
1777 IPPROTO_TCP, &socket);
1778 if (rc < 0) {
1779 cERROR(1, ("Error %d creating socket", rc));
1780 return rc;
1781 }
1782
1783 /* BB other socket options to set KEEPALIVE, NODELAY? */
1784 cFYI(1, ("Socket created"));
1785 server->ssocket = socket;
1786 socket->sk->sk_allocation = GFP_NOFS;
1787 cifs_reclassify_socket4(socket);
1788 }
1789
1790 /* user overrode default port */
1791 if (server->addr.sockAddr.sin_port) {
1792 rc = socket->ops->connect(socket, (struct sockaddr *)
1793 &server->addr.sockAddr,
1794 sizeof(struct sockaddr_in), 0);
1795 if (rc >= 0)
1796 connected = true;
1797 }
1798
1799 if (!connected) {
1800 /* save original port so we can retry user specified port
1801 later if fall back ports fail this time */
1802 orig_port = server->addr.sockAddr.sin_port;
1803
1804 /* do not retry on the same port we just failed on */
1805 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
1806 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
1807 rc = socket->ops->connect(socket,
1808 (struct sockaddr *)
1809 &server->addr.sockAddr,
1810 sizeof(struct sockaddr_in), 0);
1811 if (rc >= 0)
1812 connected = true;
1813 }
1814 }
1815 if (!connected) {
1816 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
1817 rc = socket->ops->connect(socket, (struct sockaddr *)
1818 &server->addr.sockAddr,
1819 sizeof(struct sockaddr_in), 0);
1820 if (rc >= 0)
1821 connected = true;
1822 }
1823
1824 /* give up here - unless we want to retry on different
1825 protocol families some day */
1826 if (!connected) {
1827 if (orig_port)
1828 server->addr.sockAddr.sin_port = orig_port;
1829 cFYI(1, ("Error %d connecting to server via ipv4", rc));
1830 sock_release(socket);
1831 server->ssocket = NULL;
1832 return rc;
1833 }
1834
1835
1836 /*
1837 * Eventually check for other socket options to change from
1838 * the default. sock_setsockopt not used because it expects
1839 * user space buffer
1840 */
1841 socket->sk->sk_rcvtimeo = 7 * HZ;
1842 socket->sk->sk_sndtimeo = 5 * HZ;
1843
1844 /* make the bufsizes depend on wsize/rsize and max requests */
1845 if (server->noautotune) {
1846 if (socket->sk->sk_sndbuf < (200 * 1024))
1847 socket->sk->sk_sndbuf = 200 * 1024;
1848 if (socket->sk->sk_rcvbuf < (140 * 1024))
1849 socket->sk->sk_rcvbuf = 140 * 1024;
1850 }
1851
1852 if (server->tcp_nodelay) {
1853 val = 1;
1854 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
1855 (char *)&val, sizeof(val));
1856 if (rc)
1857 cFYI(1, ("set TCP_NODELAY socket option error %d", rc));
1858 }
1859
1860 cFYI(1, ("sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
1861 socket->sk->sk_sndbuf,
1862 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo));
1863
1864 /* send RFC1001 sessinit */
1865 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1866 /* some servers require RFC1001 sessinit before sending
1867 negprot - BB check reconnection in case where second
1868 sessinit is sent but no second negprot */
1869 struct rfc1002_session_packet *ses_init_buf;
1870 struct smb_hdr *smb_buf;
1871 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
1872 GFP_KERNEL);
1873 if (ses_init_buf) {
1874 ses_init_buf->trailer.session_req.called_len = 32;
1875 if (server->server_RFC1001_name &&
1876 server->server_RFC1001_name[0] != 0)
1877 rfc1002mangle(ses_init_buf->trailer.
1878 session_req.called_name,
1879 server->server_RFC1001_name,
1880 RFC1001_NAME_LEN_WITH_NULL);
1881 else
1882 rfc1002mangle(ses_init_buf->trailer.
1883 session_req.called_name,
1884 DEFAULT_CIFS_CALLED_NAME,
1885 RFC1001_NAME_LEN_WITH_NULL);
1886
1887 ses_init_buf->trailer.session_req.calling_len = 32;
1888
1889 /* calling name ends in null (byte 16) from old smb
1890 convention. */
1891 if (server->workstation_RFC1001_name &&
1892 server->workstation_RFC1001_name[0] != 0)
1893 rfc1002mangle(ses_init_buf->trailer.
1894 session_req.calling_name,
1895 server->workstation_RFC1001_name,
1896 RFC1001_NAME_LEN_WITH_NULL);
1897 else
1898 rfc1002mangle(ses_init_buf->trailer.
1899 session_req.calling_name,
1900 "LINUX_CIFS_CLNT",
1901 RFC1001_NAME_LEN_WITH_NULL);
1902
1903 ses_init_buf->trailer.session_req.scope1 = 0;
1904 ses_init_buf->trailer.session_req.scope2 = 0;
1905 smb_buf = (struct smb_hdr *)ses_init_buf;
1906 /* sizeof RFC1002_SESSION_REQUEST with no scope */
1907 smb_buf->smb_buf_length = 0x81000044;
1908 rc = smb_send(server, smb_buf, 0x44);
1909 kfree(ses_init_buf);
1910 msleep(1); /* RFC1001 layer in at least one server
1911 requires very short break before negprot
1912 presumably because not expecting negprot
1913 to follow so fast. This is a simple
1914 solution that works without
1915 complicating the code and causes no
1916 significant slowing down on mount
1917 for everyone else */
1918 }
1919 /* else the negprot may still work without this
1920 even though malloc failed */
1921
1922 }
1923
1924 return rc;
1925 }
1926
1927 static int
1928 ipv6_connect(struct TCP_Server_Info *server)
1929 {
1930 int rc = 0;
1931 int val;
1932 bool connected = false;
1933 __be16 orig_port = 0;
1934 struct socket *socket = server->ssocket;
1935
1936 if (socket == NULL) {
1937 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
1938 IPPROTO_TCP, &socket);
1939 if (rc < 0) {
1940 cERROR(1, ("Error %d creating ipv6 socket", rc));
1941 socket = NULL;
1942 return rc;
1943 }
1944
1945 /* BB other socket options to set KEEPALIVE, NODELAY? */
1946 cFYI(1, ("ipv6 Socket created"));
1947 server->ssocket = socket;
1948 socket->sk->sk_allocation = GFP_NOFS;
1949 cifs_reclassify_socket6(socket);
1950 }
1951
1952 /* user overrode default port */
1953 if (server->addr.sockAddr6.sin6_port) {
1954 rc = socket->ops->connect(socket,
1955 (struct sockaddr *) &server->addr.sockAddr6,
1956 sizeof(struct sockaddr_in6), 0);
1957 if (rc >= 0)
1958 connected = true;
1959 }
1960
1961 if (!connected) {
1962 /* save original port so we can retry user specified port
1963 later if fall back ports fail this time */
1964
1965 orig_port = server->addr.sockAddr6.sin6_port;
1966 /* do not retry on the same port we just failed on */
1967 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
1968 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
1969 rc = socket->ops->connect(socket, (struct sockaddr *)
1970 &server->addr.sockAddr6,
1971 sizeof(struct sockaddr_in6), 0);
1972 if (rc >= 0)
1973 connected = true;
1974 }
1975 }
1976 if (!connected) {
1977 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
1978 rc = socket->ops->connect(socket, (struct sockaddr *)
1979 &server->addr.sockAddr6,
1980 sizeof(struct sockaddr_in6), 0);
1981 if (rc >= 0)
1982 connected = true;
1983 }
1984
1985 /* give up here - unless we want to retry on different
1986 protocol families some day */
1987 if (!connected) {
1988 if (orig_port)
1989 server->addr.sockAddr6.sin6_port = orig_port;
1990 cFYI(1, ("Error %d connecting to server via ipv6", rc));
1991 sock_release(socket);
1992 server->ssocket = NULL;
1993 return rc;
1994 }
1995
1996 /*
1997 * Eventually check for other socket options to change from
1998 * the default. sock_setsockopt not used because it expects
1999 * user space buffer
2000 */
2001 socket->sk->sk_rcvtimeo = 7 * HZ;
2002 socket->sk->sk_sndtimeo = 5 * HZ;
2003
2004 if (server->tcp_nodelay) {
2005 val = 1;
2006 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2007 (char *)&val, sizeof(val));
2008 if (rc)
2009 cFYI(1, ("set TCP_NODELAY socket option error %d", rc));
2010 }
2011
2012 server->ssocket = socket;
2013
2014 return rc;
2015 }
2016
2017 void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2018 struct super_block *sb, struct smb_vol *vol_info)
2019 {
2020 /* if we are reconnecting then should we check to see if
2021 * any requested capabilities changed locally e.g. via
2022 * remount but we can not do much about it here
2023 * if they have (even if we could detect it by the following)
2024 * Perhaps we could add a backpointer to array of sb from tcon
2025 * or if we change to make all sb to same share the same
2026 * sb as NFS - then we only have one backpointer to sb.
2027 * What if we wanted to mount the server share twice once with
2028 * and once without posixacls or posix paths? */
2029 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2030
2031 if (vol_info && vol_info->no_linux_ext) {
2032 tcon->fsUnixInfo.Capability = 0;
2033 tcon->unix_ext = 0; /* Unix Extensions disabled */
2034 cFYI(1, ("Linux protocol extensions disabled"));
2035 return;
2036 } else if (vol_info)
2037 tcon->unix_ext = 1; /* Unix Extensions supported */
2038
2039 if (tcon->unix_ext == 0) {
2040 cFYI(1, ("Unix extensions disabled so not set on reconnect"));
2041 return;
2042 }
2043
2044 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
2045 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2046
2047 /* check for reconnect case in which we do not
2048 want to change the mount behavior if we can avoid it */
2049 if (vol_info == NULL) {
2050 /* turn off POSIX ACL and PATHNAMES if not set
2051 originally at mount time */
2052 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2053 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2054 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2055 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2056 cERROR(1, ("POSIXPATH support change"));
2057 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2058 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2059 cERROR(1, ("possible reconnect error"));
2060 cERROR(1,
2061 ("server disabled POSIX path support"));
2062 }
2063 }
2064
2065 cap &= CIFS_UNIX_CAP_MASK;
2066 if (vol_info && vol_info->no_psx_acl)
2067 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2068 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
2069 cFYI(1, ("negotiated posix acl support"));
2070 if (sb)
2071 sb->s_flags |= MS_POSIXACL;
2072 }
2073
2074 if (vol_info && vol_info->posix_paths == 0)
2075 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2076 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
2077 cFYI(1, ("negotiate posix pathnames"));
2078 if (sb)
2079 CIFS_SB(sb)->mnt_cifs_flags |=
2080 CIFS_MOUNT_POSIX_PATHS;
2081 }
2082
2083 /* We might be setting the path sep back to a different
2084 form if we are reconnecting and the server switched its
2085 posix path capability for this share */
2086 if (sb && (CIFS_SB(sb)->prepathlen > 0))
2087 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
2088
2089 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2090 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2091 CIFS_SB(sb)->rsize = 127 * 1024;
2092 cFYI(DBG2,
2093 ("larger reads not supported by srv"));
2094 }
2095 }
2096
2097
2098 cFYI(1, ("Negotiate caps 0x%x", (int)cap));
2099 #ifdef CONFIG_CIFS_DEBUG2
2100 if (cap & CIFS_UNIX_FCNTL_CAP)
2101 cFYI(1, ("FCNTL cap"));
2102 if (cap & CIFS_UNIX_EXTATTR_CAP)
2103 cFYI(1, ("EXTATTR cap"));
2104 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2105 cFYI(1, ("POSIX path cap"));
2106 if (cap & CIFS_UNIX_XATTR_CAP)
2107 cFYI(1, ("XATTR cap"));
2108 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
2109 cFYI(1, ("POSIX ACL cap"));
2110 if (cap & CIFS_UNIX_LARGE_READ_CAP)
2111 cFYI(1, ("very large read cap"));
2112 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
2113 cFYI(1, ("very large write cap"));
2114 #endif /* CIFS_DEBUG2 */
2115 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
2116 if (vol_info == NULL) {
2117 cFYI(1, ("resetting capabilities failed"));
2118 } else
2119 cERROR(1, ("Negotiating Unix capabilities "
2120 "with the server failed. Consider "
2121 "mounting with the Unix Extensions\n"
2122 "disabled, if problems are found, "
2123 "by specifying the nounix mount "
2124 "option."));
2125
2126 }
2127 }
2128 }
2129
2130 static void
2131 convert_delimiter(char *path, char delim)
2132 {
2133 int i;
2134 char old_delim;
2135
2136 if (path == NULL)
2137 return;
2138
2139 if (delim == '/')
2140 old_delim = '\\';
2141 else
2142 old_delim = '/';
2143
2144 for (i = 0; path[i] != '\0'; i++) {
2145 if (path[i] == old_delim)
2146 path[i] = delim;
2147 }
2148 }
2149
2150 static void setup_cifs_sb(struct smb_vol *pvolume_info,
2151 struct cifs_sb_info *cifs_sb)
2152 {
2153 if (pvolume_info->rsize > CIFSMaxBufSize) {
2154 cERROR(1, ("rsize %d too large, using MaxBufSize",
2155 pvolume_info->rsize));
2156 cifs_sb->rsize = CIFSMaxBufSize;
2157 } else if ((pvolume_info->rsize) &&
2158 (pvolume_info->rsize <= CIFSMaxBufSize))
2159 cifs_sb->rsize = pvolume_info->rsize;
2160 else /* default */
2161 cifs_sb->rsize = CIFSMaxBufSize;
2162
2163 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
2164 cERROR(1, ("wsize %d too large, using 4096 instead",
2165 pvolume_info->wsize));
2166 cifs_sb->wsize = 4096;
2167 } else if (pvolume_info->wsize)
2168 cifs_sb->wsize = pvolume_info->wsize;
2169 else
2170 cifs_sb->wsize = min_t(const int,
2171 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2172 127*1024);
2173 /* old default of CIFSMaxBufSize was too small now
2174 that SMB Write2 can send multiple pages in kvec.
2175 RFC1001 does not describe what happens when frame
2176 bigger than 128K is sent so use that as max in
2177 conjunction with 52K kvec constraint on arch with 4K
2178 page size */
2179
2180 if (cifs_sb->rsize < 2048) {
2181 cifs_sb->rsize = 2048;
2182 /* Windows ME may prefer this */
2183 cFYI(1, ("readsize set to minimum: 2048"));
2184 }
2185 /* calculate prepath */
2186 cifs_sb->prepath = pvolume_info->prepath;
2187 if (cifs_sb->prepath) {
2188 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2189 /* we can not convert the / to \ in the path
2190 separators in the prefixpath yet because we do not
2191 know (until reset_cifs_unix_caps is called later)
2192 whether POSIX PATH CAP is available. We normalize
2193 the / to \ after reset_cifs_unix_caps is called */
2194 pvolume_info->prepath = NULL;
2195 } else
2196 cifs_sb->prepathlen = 0;
2197 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2198 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2199 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2200 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
2201 cFYI(1, ("file mode: 0x%x dir mode: 0x%x",
2202 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode));
2203
2204 if (pvolume_info->noperm)
2205 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2206 if (pvolume_info->setuids)
2207 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2208 if (pvolume_info->server_ino)
2209 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2210 if (pvolume_info->remap)
2211 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2212 if (pvolume_info->no_xattr)
2213 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2214 if (pvolume_info->sfu_emul)
2215 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2216 if (pvolume_info->nobrl)
2217 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
2218 if (pvolume_info->nostrictsync)
2219 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
2220 if (pvolume_info->mand_lock)
2221 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
2222 if (pvolume_info->cifs_acl)
2223 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2224 if (pvolume_info->override_uid)
2225 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2226 if (pvolume_info->override_gid)
2227 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2228 if (pvolume_info->dynperm)
2229 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2230 if (pvolume_info->direct_io) {
2231 cFYI(1, ("mounting share using direct i/o"));
2232 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2233 }
2234
2235 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
2236 cERROR(1, ("mount option dynperm ignored if cifsacl "
2237 "mount option supported"));
2238 }
2239
2240 static int
2241 is_path_accessible(int xid, struct cifsTconInfo *tcon,
2242 struct cifs_sb_info *cifs_sb, const char *full_path)
2243 {
2244 int rc;
2245 FILE_ALL_INFO *pfile_info;
2246
2247 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2248 if (pfile_info == NULL)
2249 return -ENOMEM;
2250
2251 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2252 0 /* not legacy */, cifs_sb->local_nls,
2253 cifs_sb->mnt_cifs_flags &
2254 CIFS_MOUNT_MAP_SPECIAL_CHR);
2255 kfree(pfile_info);
2256 return rc;
2257 }
2258
2259 static void
2260 cleanup_volume_info(struct smb_vol **pvolume_info)
2261 {
2262 struct smb_vol *volume_info;
2263
2264 if (!pvolume_info && !*pvolume_info)
2265 return;
2266
2267 volume_info = *pvolume_info;
2268 kzfree(volume_info->password);
2269 kfree(volume_info->UNC);
2270 kfree(volume_info->prepath);
2271 kfree(volume_info);
2272 *pvolume_info = NULL;
2273 return;
2274 }
2275
2276 #ifdef CONFIG_CIFS_DFS_UPCALL
2277 /* build_path_to_root returns full path to root when
2278 * we do not have an exiting connection (tcon) */
2279 static char *
2280 build_unc_path_to_root(const struct smb_vol *volume_info,
2281 const struct cifs_sb_info *cifs_sb)
2282 {
2283 char *full_path;
2284
2285 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2286 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2287 if (full_path == NULL)
2288 return ERR_PTR(-ENOMEM);
2289
2290 strncpy(full_path, volume_info->UNC, unc_len);
2291 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2292 int i;
2293 for (i = 0; i < unc_len; i++) {
2294 if (full_path[i] == '\\')
2295 full_path[i] = '/';
2296 }
2297 }
2298
2299 if (cifs_sb->prepathlen)
2300 strncpy(full_path + unc_len, cifs_sb->prepath,
2301 cifs_sb->prepathlen);
2302
2303 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2304 return full_path;
2305 }
2306 #endif
2307
2308 int
2309 cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
2310 char *mount_data_global, const char *devname)
2311 {
2312 int rc;
2313 int xid;
2314 struct smb_vol *volume_info;
2315 struct cifsSesInfo *pSesInfo;
2316 struct cifsTconInfo *tcon;
2317 struct TCP_Server_Info *srvTcp;
2318 char *full_path;
2319 char *mount_data = mount_data_global;
2320 #ifdef CONFIG_CIFS_DFS_UPCALL
2321 struct dfs_info3_param *referrals = NULL;
2322 unsigned int num_referrals = 0;
2323 int referral_walks_count = 0;
2324 try_mount_again:
2325 #endif
2326 rc = 0;
2327 tcon = NULL;
2328 pSesInfo = NULL;
2329 srvTcp = NULL;
2330 full_path = NULL;
2331
2332 xid = GetXid();
2333
2334 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2335 if (!volume_info) {
2336 rc = -ENOMEM;
2337 goto out;
2338 }
2339
2340 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
2341 rc = -EINVAL;
2342 goto out;
2343 }
2344
2345 if (volume_info->nullauth) {
2346 cFYI(1, ("null user"));
2347 volume_info->username = "";
2348 } else if (volume_info->username) {
2349 /* BB fixme parse for domain name here */
2350 cFYI(1, ("Username: %s", volume_info->username));
2351 } else {
2352 cifserror("No username specified");
2353 /* In userspace mount helper we can get user name from alternate
2354 locations such as env variables and files on disk */
2355 rc = -EINVAL;
2356 goto out;
2357 }
2358
2359
2360 /* this is needed for ASCII cp to Unicode converts */
2361 if (volume_info->iocharset == NULL) {
2362 cifs_sb->local_nls = load_nls_default();
2363 /* load_nls_default can not return null */
2364 } else {
2365 cifs_sb->local_nls = load_nls(volume_info->iocharset);
2366 if (cifs_sb->local_nls == NULL) {
2367 cERROR(1, ("CIFS mount error: iocharset %s not found",
2368 volume_info->iocharset));
2369 rc = -ELIBACC;
2370 goto out;
2371 }
2372 }
2373
2374 /* get a reference to a tcp session */
2375 srvTcp = cifs_get_tcp_session(volume_info);
2376 if (IS_ERR(srvTcp)) {
2377 rc = PTR_ERR(srvTcp);
2378 goto out;
2379 }
2380
2381 pSesInfo = cifs_find_smb_ses(srvTcp, volume_info->username);
2382 if (pSesInfo) {
2383 cFYI(1, ("Existing smb sess found (status=%d)",
2384 pSesInfo->status));
2385 /*
2386 * The existing SMB session already has a reference to srvTcp,
2387 * so we can put back the extra one we got before
2388 */
2389 cifs_put_tcp_session(srvTcp);
2390
2391 mutex_lock(&pSesInfo->session_mutex);
2392 if (pSesInfo->need_reconnect) {
2393 cFYI(1, ("Session needs reconnect"));
2394 rc = cifs_setup_session(xid, pSesInfo,
2395 cifs_sb->local_nls);
2396 }
2397 mutex_unlock(&pSesInfo->session_mutex);
2398 } else if (!rc) {
2399 cFYI(1, ("Existing smb sess not found"));
2400 pSesInfo = sesInfoAlloc();
2401 if (pSesInfo == NULL) {
2402 rc = -ENOMEM;
2403 goto mount_fail_check;
2404 }
2405
2406 /* new SMB session uses our srvTcp ref */
2407 pSesInfo->server = srvTcp;
2408 if (srvTcp->addr.sockAddr6.sin6_family == AF_INET6)
2409 sprintf(pSesInfo->serverName, "%pI6",
2410 &srvTcp->addr.sockAddr6.sin6_addr);
2411 else
2412 sprintf(pSesInfo->serverName, "%pI4",
2413 &srvTcp->addr.sockAddr.sin_addr.s_addr);
2414
2415 write_lock(&cifs_tcp_ses_lock);
2416 list_add(&pSesInfo->smb_ses_list, &srvTcp->smb_ses_list);
2417 write_unlock(&cifs_tcp_ses_lock);
2418
2419 /* volume_info->password freed at unmount */
2420 if (volume_info->password) {
2421 pSesInfo->password = kstrdup(volume_info->password,
2422 GFP_KERNEL);
2423 if (!pSesInfo->password) {
2424 rc = -ENOMEM;
2425 goto mount_fail_check;
2426 }
2427 }
2428 if (volume_info->username)
2429 strncpy(pSesInfo->userName, volume_info->username,
2430 MAX_USERNAME_SIZE);
2431 if (volume_info->domainname) {
2432 int len = strlen(volume_info->domainname);
2433 pSesInfo->domainName = kmalloc(len + 1, GFP_KERNEL);
2434 if (pSesInfo->domainName)
2435 strcpy(pSesInfo->domainName,
2436 volume_info->domainname);
2437 }
2438 pSesInfo->linux_uid = volume_info->linux_uid;
2439 pSesInfo->overrideSecFlg = volume_info->secFlg;
2440 mutex_lock(&pSesInfo->session_mutex);
2441
2442 /* BB FIXME need to pass vol->secFlgs BB */
2443 rc = cifs_setup_session(xid, pSesInfo,
2444 cifs_sb->local_nls);
2445 mutex_unlock(&pSesInfo->session_mutex);
2446 }
2447
2448 /* search for existing tcon to this server share */
2449 if (!rc) {
2450 setup_cifs_sb(volume_info, cifs_sb);
2451
2452 tcon = cifs_find_tcon(pSesInfo, volume_info->UNC);
2453 if (tcon) {
2454 cFYI(1, ("Found match on UNC path"));
2455 /* existing tcon already has a reference */
2456 cifs_put_smb_ses(pSesInfo);
2457 if (tcon->seal != volume_info->seal)
2458 cERROR(1, ("transport encryption setting "
2459 "conflicts with existing tid"));
2460 } else {
2461 tcon = tconInfoAlloc();
2462 if (tcon == NULL) {
2463 rc = -ENOMEM;
2464 goto mount_fail_check;
2465 }
2466
2467 tcon->ses = pSesInfo;
2468 if (volume_info->password) {
2469 tcon->password = kstrdup(volume_info->password,
2470 GFP_KERNEL);
2471 if (!tcon->password) {
2472 rc = -ENOMEM;
2473 goto mount_fail_check;
2474 }
2475 }
2476
2477 if ((strchr(volume_info->UNC + 3, '\\') == NULL)
2478 && (strchr(volume_info->UNC + 3, '/') == NULL)) {
2479 cERROR(1, ("Missing share name"));
2480 rc = -ENODEV;
2481 goto mount_fail_check;
2482 } else {
2483 /* BB Do we need to wrap sesSem around
2484 * this TCon call and Unix SetFS as
2485 * we do on SessSetup and reconnect? */
2486 rc = CIFSTCon(xid, pSesInfo, volume_info->UNC,
2487 tcon, cifs_sb->local_nls);
2488 cFYI(1, ("CIFS Tcon rc = %d", rc));
2489 if (volume_info->nodfs) {
2490 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2491 cFYI(1, ("DFS disabled (%d)",
2492 tcon->Flags));
2493 }
2494 }
2495 if (rc)
2496 goto remote_path_check;
2497 tcon->seal = volume_info->seal;
2498 write_lock(&cifs_tcp_ses_lock);
2499 list_add(&tcon->tcon_list, &pSesInfo->tcon_list);
2500 write_unlock(&cifs_tcp_ses_lock);
2501 }
2502
2503 /* we can have only one retry value for a connection
2504 to a share so for resources mounted more than once
2505 to the same server share the last value passed in
2506 for the retry flag is used */
2507 tcon->retry = volume_info->retry;
2508 tcon->nocase = volume_info->nocase;
2509 tcon->local_lease = volume_info->local_lease;
2510 }
2511 if (pSesInfo) {
2512 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2513 sb->s_maxbytes = MAX_LFS_FILESIZE;
2514 else
2515 sb->s_maxbytes = MAX_NON_LFS;
2516 }
2517
2518 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
2519 sb->s_time_gran = 100;
2520
2521 if (rc)
2522 goto remote_path_check;
2523
2524 cifs_sb->tcon = tcon;
2525
2526 /* do not care if following two calls succeed - informational */
2527 if (!tcon->ipc) {
2528 CIFSSMBQFSDeviceInfo(xid, tcon);
2529 CIFSSMBQFSAttributeInfo(xid, tcon);
2530 }
2531
2532 /* tell server which Unix caps we support */
2533 if (tcon->ses->capabilities & CAP_UNIX)
2534 /* reset of caps checks mount to see if unix extensions
2535 disabled for just this mount */
2536 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
2537 else
2538 tcon->unix_ext = 0; /* server does not support them */
2539
2540 /* convert forward to back slashes in prepath here if needed */
2541 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2542 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
2543
2544 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2545 cifs_sb->rsize = 1024 * 127;
2546 cFYI(DBG2, ("no very large read support, rsize now 127K"));
2547 }
2548 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2549 cifs_sb->wsize = min(cifs_sb->wsize,
2550 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2551 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2552 cifs_sb->rsize = min(cifs_sb->rsize,
2553 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2554
2555 remote_path_check:
2556 /* check if a whole path (including prepath) is not remote */
2557 if (!rc && cifs_sb->prepathlen && tcon) {
2558 /* build_path_to_root works only when we have a valid tcon */
2559 full_path = cifs_build_path_to_root(cifs_sb);
2560 if (full_path == NULL) {
2561 rc = -ENOMEM;
2562 goto mount_fail_check;
2563 }
2564 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
2565 if (rc != -EREMOTE) {
2566 kfree(full_path);
2567 goto mount_fail_check;
2568 }
2569 kfree(full_path);
2570 }
2571
2572 /* get referral if needed */
2573 if (rc == -EREMOTE) {
2574 #ifdef CONFIG_CIFS_DFS_UPCALL
2575 if (referral_walks_count > MAX_NESTED_LINKS) {
2576 /*
2577 * BB: when we implement proper loop detection,
2578 * we will remove this check. But now we need it
2579 * to prevent an indefinite loop if 'DFS tree' is
2580 * misconfigured (i.e. has loops).
2581 */
2582 rc = -ELOOP;
2583 goto mount_fail_check;
2584 }
2585 /* convert forward to back slashes in prepath here if needed */
2586 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2587 convert_delimiter(cifs_sb->prepath,
2588 CIFS_DIR_SEP(cifs_sb));
2589 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2590 if (IS_ERR(full_path)) {
2591 rc = PTR_ERR(full_path);
2592 goto mount_fail_check;
2593 }
2594
2595 cFYI(1, ("Getting referral for: %s", full_path));
2596 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2597 cifs_sb->local_nls, &num_referrals, &referrals,
2598 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2599 if (!rc && num_referrals > 0) {
2600 char *fake_devname = NULL;
2601
2602 if (mount_data != mount_data_global)
2603 kfree(mount_data);
2604
2605 mount_data = cifs_compose_mount_options(
2606 cifs_sb->mountdata, full_path + 1,
2607 referrals, &fake_devname);
2608
2609 free_dfs_info_array(referrals, num_referrals);
2610 kfree(fake_devname);
2611 kfree(full_path);
2612
2613 if (IS_ERR(mount_data)) {
2614 rc = PTR_ERR(mount_data);
2615 mount_data = NULL;
2616 goto mount_fail_check;
2617 }
2618
2619 if (tcon)
2620 cifs_put_tcon(tcon);
2621 else if (pSesInfo)
2622 cifs_put_smb_ses(pSesInfo);
2623
2624 cleanup_volume_info(&volume_info);
2625 referral_walks_count++;
2626 FreeXid(xid);
2627 goto try_mount_again;
2628 }
2629 #else /* No DFS support, return error on mount */
2630 rc = -EOPNOTSUPP;
2631 #endif
2632 }
2633
2634 mount_fail_check:
2635 /* on error free sesinfo and tcon struct if needed */
2636 if (rc) {
2637 if (mount_data != mount_data_global)
2638 kfree(mount_data);
2639 /* If find_unc succeeded then rc == 0 so we can not end */
2640 /* up accidently freeing someone elses tcon struct */
2641 if (tcon)
2642 cifs_put_tcon(tcon);
2643 else if (pSesInfo)
2644 cifs_put_smb_ses(pSesInfo);
2645 else
2646 cifs_put_tcp_session(srvTcp);
2647 goto out;
2648 }
2649
2650 /* volume_info->password is freed above when existing session found
2651 (in which case it is not needed anymore) but when new sesion is created
2652 the password ptr is put in the new session structure (in which case the
2653 password will be freed at unmount time) */
2654 out:
2655 /* zero out password before freeing */
2656 cleanup_volume_info(&volume_info);
2657 FreeXid(xid);
2658 return rc;
2659 }
2660
2661 int
2662 CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2663 const char *tree, struct cifsTconInfo *tcon,
2664 const struct nls_table *nls_codepage)
2665 {
2666 struct smb_hdr *smb_buffer;
2667 struct smb_hdr *smb_buffer_response;
2668 TCONX_REQ *pSMB;
2669 TCONX_RSP *pSMBr;
2670 unsigned char *bcc_ptr;
2671 int rc = 0;
2672 int length, bytes_left;
2673 __u16 count;
2674
2675 if (ses == NULL)
2676 return -EIO;
2677
2678 smb_buffer = cifs_buf_get();
2679 if (smb_buffer == NULL)
2680 return -ENOMEM;
2681
2682 smb_buffer_response = smb_buffer;
2683
2684 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2685 NULL /*no tid */ , 4 /*wct */ );
2686
2687 smb_buffer->Mid = GetNextMid(ses->server);
2688 smb_buffer->Uid = ses->Suid;
2689 pSMB = (TCONX_REQ *) smb_buffer;
2690 pSMBr = (TCONX_RSP *) smb_buffer_response;
2691
2692 pSMB->AndXCommand = 0xFF;
2693 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
2694 bcc_ptr = &pSMB->Password[0];
2695 if ((ses->server->secMode) & SECMODE_USER) {
2696 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
2697 *bcc_ptr = 0; /* password is null byte */
2698 bcc_ptr++; /* skip password */
2699 /* already aligned so no need to do it below */
2700 } else {
2701 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
2702 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2703 specified as required (when that support is added to
2704 the vfs in the future) as only NTLM or the much
2705 weaker LANMAN (which we do not send by default) is accepted
2706 by Samba (not sure whether other servers allow
2707 NTLMv2 password here) */
2708 #ifdef CONFIG_CIFS_WEAK_PW_HASH
2709 if ((extended_security & CIFSSEC_MAY_LANMAN) &&
2710 (ses->server->secType == LANMAN))
2711 calc_lanman_hash(tcon->password, ses->server->cryptKey,
2712 ses->server->secMode &
2713 SECMODE_PW_ENCRYPT ? true : false,
2714 bcc_ptr);
2715 else
2716 #endif /* CIFS_WEAK_PW_HASH */
2717 SMBNTencrypt(tcon->password, ses->server->cryptKey,
2718 bcc_ptr);
2719
2720 bcc_ptr += CIFS_SESS_KEY_SIZE;
2721 if (ses->capabilities & CAP_UNICODE) {
2722 /* must align unicode strings */
2723 *bcc_ptr = 0; /* null byte password */
2724 bcc_ptr++;
2725 }
2726 }
2727
2728 if (ses->server->secMode &
2729 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
2730 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
2731
2732 if (ses->capabilities & CAP_STATUS32) {
2733 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
2734 }
2735 if (ses->capabilities & CAP_DFS) {
2736 smb_buffer->Flags2 |= SMBFLG2_DFS;
2737 }
2738 if (ses->capabilities & CAP_UNICODE) {
2739 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
2740 length =
2741 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
2742 6 /* max utf8 char length in bytes */ *
2743 (/* server len*/ + 256 /* share len */), nls_codepage);
2744 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
2745 bcc_ptr += 2; /* skip trailing null */
2746 } else { /* ASCII */
2747 strcpy(bcc_ptr, tree);
2748 bcc_ptr += strlen(tree) + 1;
2749 }
2750 strcpy(bcc_ptr, "?????");
2751 bcc_ptr += strlen("?????");
2752 bcc_ptr += 1;
2753 count = bcc_ptr - &pSMB->Password[0];
2754 pSMB->hdr.smb_buf_length += count;
2755 pSMB->ByteCount = cpu_to_le16(count);
2756
2757 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
2758 CIFS_STD_OP);
2759
2760 /* above now done in SendReceive */
2761 if ((rc == 0) && (tcon != NULL)) {
2762 bool is_unicode;
2763
2764 tcon->tidStatus = CifsGood;
2765 tcon->need_reconnect = false;
2766 tcon->tid = smb_buffer_response->Tid;
2767 bcc_ptr = pByteArea(smb_buffer_response);
2768 bytes_left = BCC(smb_buffer_response);
2769 length = strnlen(bcc_ptr, bytes_left - 2);
2770 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
2771 is_unicode = true;
2772 else
2773 is_unicode = false;
2774
2775
2776 /* skip service field (NB: this field is always ASCII) */
2777 if (length == 3) {
2778 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
2779 (bcc_ptr[2] == 'C')) {
2780 cFYI(1, ("IPC connection"));
2781 tcon->ipc = 1;
2782 }
2783 } else if (length == 2) {
2784 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
2785 /* the most common case */
2786 cFYI(1, ("disk share connection"));
2787 }
2788 }
2789 bcc_ptr += length + 1;
2790 bytes_left -= (length + 1);
2791 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
2792
2793 /* mostly informational -- no need to fail on error here */
2794 kfree(tcon->nativeFileSystem);
2795 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
2796 bytes_left, is_unicode,
2797 nls_codepage);
2798
2799 cFYI(1, ("nativeFileSystem=%s", tcon->nativeFileSystem));
2800
2801 if ((smb_buffer_response->WordCount == 3) ||
2802 (smb_buffer_response->WordCount == 7))
2803 /* field is in same location */
2804 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
2805 else
2806 tcon->Flags = 0;
2807 cFYI(1, ("Tcon flags: 0x%x ", tcon->Flags));
2808 } else if ((rc == 0) && tcon == NULL) {
2809 /* all we need to save for IPC$ connection */
2810 ses->ipc_tid = smb_buffer_response->Tid;
2811 }
2812
2813 cifs_buf_release(smb_buffer);
2814 return rc;
2815 }
2816
2817 int
2818 cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
2819 {
2820 int rc = 0;
2821 char *tmp;
2822
2823 if (cifs_sb->tcon)
2824 cifs_put_tcon(cifs_sb->tcon);
2825
2826 cifs_sb->tcon = NULL;
2827 tmp = cifs_sb->prepath;
2828 cifs_sb->prepathlen = 0;
2829 cifs_sb->prepath = NULL;
2830 kfree(tmp);
2831
2832 return rc;
2833 }
2834
2835 int cifs_setup_session(unsigned int xid, struct cifsSesInfo *pSesInfo,
2836 struct nls_table *nls_info)
2837 {
2838 int rc = 0;
2839 int first_time = 0;
2840 struct TCP_Server_Info *server = pSesInfo->server;
2841
2842 /* what if server changes its buffer size after dropping the session? */
2843 if (server->maxBuf == 0) /* no need to send on reconnect */ {
2844 rc = CIFSSMBNegotiate(xid, pSesInfo);
2845 if (rc == -EAGAIN) {
2846 /* retry only once on 1st time connection */
2847 rc = CIFSSMBNegotiate(xid, pSesInfo);
2848 if (rc == -EAGAIN)
2849 rc = -EHOSTDOWN;
2850 }
2851 if (rc == 0) {
2852 spin_lock(&GlobalMid_Lock);
2853 if (server->tcpStatus != CifsExiting)
2854 server->tcpStatus = CifsGood;
2855 else
2856 rc = -EHOSTDOWN;
2857 spin_unlock(&GlobalMid_Lock);
2858
2859 }
2860 first_time = 1;
2861 }
2862
2863 if (rc)
2864 goto ss_err_exit;
2865
2866 pSesInfo->flags = 0;
2867 pSesInfo->capabilities = server->capabilities;
2868 if (linuxExtEnabled == 0)
2869 pSesInfo->capabilities &= (~CAP_UNIX);
2870
2871 cFYI(1, ("Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
2872 server->secMode, server->capabilities, server->timeAdj));
2873
2874 rc = CIFS_SessSetup(xid, pSesInfo, first_time, nls_info);
2875 if (rc) {
2876 cERROR(1, ("Send error in SessSetup = %d", rc));
2877 } else {
2878 cFYI(1, ("CIFS Session Established successfully"));
2879 spin_lock(&GlobalMid_Lock);
2880 pSesInfo->status = CifsGood;
2881 pSesInfo->need_reconnect = false;
2882 spin_unlock(&GlobalMid_Lock);
2883 }
2884
2885 ss_err_exit:
2886 return rc;
2887 }
2888