]> git.ipfire.org Git - thirdparty/linux.git/blame - fs/cifs/connect.c
projects / thirdparty / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
cifs: move address comparison into separate function
[thirdparty/linux.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
a2653eba 50#include "cn_cifs.h"
488f1d2d 51#include "fscache.h"
1da177e4
LT		 52
53#define CIFS_PORT 445
54#define RFC1001_PORT 139
55
1da177e4
LT		 56extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
57 unsigned char *p24);
58
59extern mempool_t *cifs_req_poolp;
60
61struct smb_vol {
62 char *username;
63 char *password;
64 char *domainname;
65 char *UNC;
66 char *UNCip;
1da177e4
LT		 67 char *iocharset; /* local code page for mapping to and from Unicode */
68 char source_rfc1001_name[16]; /* netbios name of client */
a10faeb2 69 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
1da177e4
LT		 70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
189acaae 74 unsigned secFlg;
4b18f2a9
SF		 75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
d0a9c078 80 bool dynperm:1;
4b18f2a9
SF		 81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
95b1cb90
SF		 87 bool remap:1; /* set to remap seven reserved chars in filenames */
88 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 89 bool no_linux_ext:1;
90 bool sfu_emul:1;
95b1cb90
SF		 91 bool nullauth:1; /* attempt to authenticate with null user */
92 bool nocase:1; /* request case insensitive filenames */
93 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 94 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 95 bool seal:1; /* request transport encryption on share */
84210e91
SF		 96 bool nodfs:1; /* Do not request DFS, even if available */
97 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 98 bool noblocksnd:1;
99 bool noautotune:1;
be652445 100 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
1da177e4
LT		 101 unsigned int rsize;
102 unsigned int wsize;
6a5fa236 103 bool sockopt_tcp_nodelay:1;
1da177e4 104 unsigned short int port;
fb8c4b14 105 char *prepath;
a5fc4ce0 106 struct nls_table *local_nls;
1da177e4
LT		 107};
108
bcf4b106 109static int ipv4_connect(struct TCP_Server_Info *server);
d5c5605c 110static int ipv6_connect(struct TCP_Server_Info *server);
1da177e4 111
d5c5605c
JL		 112/*
113 * cifs tcp session reconnection
114 *
115 * mark tcp session as reconnecting so temporarily locked
116 * mark all smb sessions as reconnecting for tcp session
117 * reconnect tcp session
118 * wake up waiters on reconnection? - (not needed currently)
119 */
2cd646a2 120static int
1da177e4
LT		 121cifs_reconnect(struct TCP_Server_Info *server)
122{
123 int rc = 0;
f1987b44 124 struct list_head *tmp, *tmp2;
1da177e4
LT		 125 struct cifsSesInfo *ses;
126 struct cifsTconInfo *tcon;
fb8c4b14 127 struct mid_q_entry *mid_entry;
50c2f753 128
1da177e4 129 spin_lock(&GlobalMid_Lock);
469ee614 130 if (server->tcpStatus == CifsExiting) {
fb8c4b14 131 /* the demux thread will exit normally
1da177e4
LT		 132 next time through the loop */
133 spin_unlock(&GlobalMid_Lock);
134 return rc;
135 } else
136 server->tcpStatus = CifsNeedReconnect;
137 spin_unlock(&GlobalMid_Lock);
138 server->maxBuf = 0;
139
b6b38f70 140 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 141
142 /* before reconnecting the tcp session, mark the smb session (uid)
143 and the tid bad so they are not used until reconnected */
14fbf50d
JL		 144 read_lock(&cifs_tcp_ses_lock);
145 list_for_each(tmp, &server->smb_ses_list) {
146 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
147 ses->need_reconnect = true;
148 ses->ipc_tid = 0;
f1987b44
JL		 149 list_for_each(tmp2, &ses->tcon_list) {
150 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 151 tcon->need_reconnect = true;
1da177e4 152 }
1da177e4 153 }
f1987b44 154 read_unlock(&cifs_tcp_ses_lock);
1da177e4 155 /* do not want to be sending data on a socket we are freeing */
72ca545b 156 mutex_lock(&server->srv_mutex);
fb8c4b14 157 if (server->ssocket) {
b6b38f70
JP		 158 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
159 server->ssocket->flags);
91cf45f0 160 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 161 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 162 server->ssocket->state,
b6b38f70 163 server->ssocket->flags);
1da177e4
LT		 164 sock_release(server->ssocket);
165 server->ssocket = NULL;
166 }
167
168 spin_lock(&GlobalMid_Lock);
169 list_for_each(tmp, &server->pending_mid_q) {
170 mid_entry = list_entry(tmp, struct
171 mid_q_entry,
172 qhead);
ad8b15f0 173 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
09d1db5c
SF		 174 /* Mark other intransit requests as needing
175 retry so we do not immediately mark the
176 session bad again (ie after we reconnect
177 below) as they timeout too */
ad8b15f0 178 mid_entry->midState = MID_RETRY_NEEDED;
1da177e4
LT		 179 }
180 }
181 spin_unlock(&GlobalMid_Lock);
72ca545b 182 mutex_unlock(&server->srv_mutex);
1da177e4 183
469ee614
JL		 184 while ((server->tcpStatus != CifsExiting) &&
185 (server->tcpStatus != CifsGood)) {
6c3d8909 186 try_to_freeze();
bcf4b106 187 if (server->addr.sockAddr6.sin6_family == AF_INET6)
d5c5605c 188 rc = ipv6_connect(server);
bcf4b106
JL		 189 else
190 rc = ipv4_connect(server);
fb8c4b14 191 if (rc) {
b6b38f70 192 cFYI(1, "reconnect error %d", rc);
0cb766ae 193 msleep(3000);
1da177e4
LT		 194 } else {
195 atomic_inc(&tcpSesReconnectCount);
196 spin_lock(&GlobalMid_Lock);
469ee614 197 if (server->tcpStatus != CifsExiting)
1da177e4 198 server->tcpStatus = CifsGood;
ad009ac9 199 server->sequence_number = 0;
fb8c4b14 200 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 201 /* atomic_set(&server->inFlight,0);*/
202 wake_up(&server->response_q);
203 }
204 }
205 return rc;
206}
207
fb8c4b14 208/*
e4eb295d
SF		 209 return codes:
210 0 not a transact2, or all data present
211 >0 transact2 with that much data missing
212 -EINVAL = invalid transact2
213
214 */
fb8c4b14 215static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 216{
fb8c4b14
SF		 217 struct smb_t2_rsp *pSMBt;
218 int total_data_size;
e4eb295d
SF		 219 int data_in_this_rsp;
220 int remaining;
221
fb8c4b14 222 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 223 return 0;
224
fb8c4b14
SF		 225 /* check for plausible wct, bcc and t2 data and parm sizes */
226 /* check for parm and data offset going beyond end of smb */
227 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 228 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 229 return -EINVAL;
230 }
231
232 pSMBt = (struct smb_t2_rsp *)pSMB;
233
234 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
235 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
236
237 remaining = total_data_size - data_in_this_rsp;
238
fb8c4b14 239 if (remaining == 0)
e4eb295d 240 return 0;
fb8c4b14 241 else if (remaining < 0) {
b6b38f70
JP		 242 cFYI(1, "total data %d smaller than data in frame %d",
243 total_data_size, data_in_this_rsp);
e4eb295d
SF		 244 return -EINVAL;
245 } else {
b6b38f70
JP		 246 cFYI(1, "missing %d bytes from transact2, check next response",
247 remaining);
fb8c4b14 248 if (total_data_size > maxBufSize) {
b6b38f70
JP		 249 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
250 total_data_size, maxBufSize);
fb8c4b14 251 return -EINVAL;
e4eb295d
SF		 252 }
253 return remaining;
254 }
255}
256
fb8c4b14 257static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 258{
259 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
260 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
261 int total_data_size;
262 int total_in_buf;
263 int remaining;
264 int total_in_buf2;
fb8c4b14
SF		 265 char *data_area_of_target;
266 char *data_area_of_buf2;
e4eb295d
SF		 267 __u16 byte_count;
268
269 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
270
fb8c4b14 271 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
b6b38f70 272 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d
SF		 273 }
274
275 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
276
277 remaining = total_data_size - total_in_buf;
50c2f753 278
fb8c4b14 279 if (remaining < 0)
e4eb295d
SF		 280 return -EINVAL;
281
fb8c4b14 282 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 283 return 0;
50c2f753 284
e4eb295d 285 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
fb8c4b14 286 if (remaining < total_in_buf2) {
b6b38f70 287 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 288 }
289
290 /* find end of first SMB data area */
fb8c4b14 291 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
e4eb295d
SF		 292 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
293 /* validate target area */
294
295 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
fb8c4b14 296 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 297
298 data_area_of_target += total_in_buf;
299
300 /* copy second buffer into end of first buffer */
fb8c4b14 301 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
e4eb295d
SF		 302 total_in_buf += total_in_buf2;
303 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
304 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
305 byte_count += total_in_buf2;
306 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
307
70ca734a 308 byte_count = pTargetSMB->smb_buf_length;
e4eb295d
SF		 309 byte_count += total_in_buf2;
310
311 /* BB also add check that we are not beyond maximum buffer size */
50c2f753 312
70ca734a 313 pTargetSMB->smb_buf_length = byte_count;
e4eb295d 314
fb8c4b14 315 if (remaining == total_in_buf2) {
b6b38f70 316 cFYI(1, "found the last secondary response");
e4eb295d
SF		 317 return 0; /* we are done */
318 } else /* more responses to go */
319 return 1;
320
321}
322
1da177e4
LT		 323static int
324cifs_demultiplex_thread(struct TCP_Server_Info *server)
325{
326 int length;
327 unsigned int pdu_length, total_read;
328 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 329 struct smb_hdr *bigbuf = NULL;
330 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 331 struct msghdr smb_msg;
332 struct kvec iov;
333 struct socket *csocket = server->ssocket;
334 struct list_head *tmp;
335 struct cifsSesInfo *ses;
336 struct task_struct *task_to_wake = NULL;
337 struct mid_q_entry *mid_entry;
70ca734a 338 char temp;
4b18f2a9
SF		 339 bool isLargeBuf = false;
340 bool isMultiRsp;
e4eb295d 341 int reconnect;
1da177e4 342
1da177e4 343 current->flags |= PF_MEMALLOC;
b6b38f70 344 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 345
346 length = atomic_inc_return(&tcpSesAllocCount);
347 if (length > 1)
26f57364
SF		 348 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
349 GFP_KERNEL);
1da177e4 350
83144186 351 set_freezable();
469ee614 352 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 353 if (try_to_freeze())
354 continue;
b8643e1b
SF		 355 if (bigbuf == NULL) {
356 bigbuf = cifs_buf_get();
0fd1ffe0 357 if (!bigbuf) {
b6b38f70 358 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 359 msleep(3000);
360 /* retry will check if exiting */
361 continue;
362 }
0fd1ffe0
PM		 363 } else if (isLargeBuf) {
364 /* we are reusing a dirty large buf, clear its start */
26f57364 365 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 366 }
b8643e1b
SF		 367
368 if (smallbuf == NULL) {
369 smallbuf = cifs_small_buf_get();
0fd1ffe0 370 if (!smallbuf) {
b6b38f70 371 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 372 msleep(1000);
373 /* retry will check if exiting */
374 continue;
375 }
376 /* beginning of smb buffer is cleared in our buf_get */
377 } else /* if existing small buf clear beginning */
26f57364 378 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 379
4b18f2a9
SF		 380 isLargeBuf = false;
381 isMultiRsp = false;
b8643e1b 382 smb_buffer = smallbuf;
1da177e4
LT		 383 iov.iov_base = smb_buffer;
384 iov.iov_len = 4;
385 smb_msg.msg_control = NULL;
386 smb_msg.msg_controllen = 0;
f01d5e14
SF		 387 pdu_length = 4; /* enough to get RFC1001 header */
388incomplete_rcv:
1da177e4
LT		 389 length =
390 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 391 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 392
469ee614 393 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 394 break;
395 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 396 cFYI(1, "Reconnect after server stopped responding");
1da177e4 397 cifs_reconnect(server);
b6b38f70 398 cFYI(1, "call to reconnect done");
1da177e4
LT		 399 csocket = server->ssocket;
400 continue;
401 } else if ((length == -ERESTARTSYS) || (length == -EAGAIN)) {
b8643e1b 402 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 403 allowing socket to clear and app threads to set
404 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 405 if (pdu_length < 4) {
406 iov.iov_base = (4 - pdu_length) +
407 (char *)smb_buffer;
408 iov.iov_len = pdu_length;
409 smb_msg.msg_control = NULL;
410 smb_msg.msg_controllen = 0;
c18c732e 411 goto incomplete_rcv;
c527c8a7 412 } else
c18c732e 413 continue;
1da177e4 414 } else if (length <= 0) {
0fd1ffe0 415 if (server->tcpStatus == CifsNew) {
b6b38f70 416 cFYI(1, "tcp session abend after SMBnegprot");
09d1db5c
SF		 417 /* some servers kill the TCP session rather than
418 returning an SMB negprot error, in which
419 case reconnecting here is not going to help,
420 and so simply return error to mount */
1da177e4
LT		 421 break;
422 }
0fd1ffe0 423 if (!try_to_freeze() && (length == -EINTR)) {
b6b38f70 424 cFYI(1, "cifsd thread killed");
1da177e4
LT		 425 break;
426 }
b6b38f70
JP		 427 cFYI(1, "Reconnect after unexpected peek error %d",
428 length);
1da177e4
LT		 429 cifs_reconnect(server);
430 csocket = server->ssocket;
431 wake_up(&server->response_q);
432 continue;
2a974680 433 } else if (length < pdu_length) {
b6b38f70
JP		 434 cFYI(1, "requested %d bytes but only got %d bytes",
435 pdu_length, length);
f01d5e14 436 pdu_length -= length;
f01d5e14
SF		 437 msleep(1);
438 goto incomplete_rcv;
46810cbf 439 }
1da177e4 440
70ca734a
SF		 441 /* The right amount was read from socket - 4 bytes */
442 /* so we can now interpret the length field */
46810cbf 443
70ca734a
SF		 444 /* the first byte big endian of the length field,
445 is actually not part of the length but the type
446 with the most common, zero, as regular data */
447 temp = *((char *) smb_buffer);
46810cbf 448
fb8c4b14 449 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 450 but we convert it here so it is always manipulated
451 as host byte order */
5ca33c6a 452 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
70ca734a
SF		 453 smb_buffer->smb_buf_length = pdu_length;
454
b6b38f70 455 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 456
70ca734a 457 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 458 continue;
70ca734a 459 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 460 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 461 continue;
70ca734a 462 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 463 /* we get this from Windows 98 instead of
46810cbf 464 an error on SMB negprot response */
b6b38f70
JP		 465 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
466 pdu_length);
fb8c4b14
SF		 467 if (server->tcpStatus == CifsNew) {
468 /* if nack on negprot (rather than
46810cbf
SF		 469 ret of smb negprot error) reconnecting
470 not going to help, ret error to mount */
471 break;
472 } else {
473 /* give server a second to
474 clean up before reconnect attempt */
475 msleep(1000);
476 /* always try 445 first on reconnect
477 since we get NACK on some if we ever
fb8c4b14 478 connected to port 139 (the NACK is
46810cbf
SF		 479 since we do not begin with RFC1001
480 session initialize frame) */
fb8c4b14 481 server->addr.sockAddr.sin_port =
46810cbf 482 htons(CIFS_PORT);
1da177e4
LT		 483 cifs_reconnect(server);
484 csocket = server->ssocket;
46810cbf 485 wake_up(&server->response_q);
1da177e4 486 continue;
46810cbf 487 }
70ca734a 488 } else if (temp != (char) 0) {
b6b38f70 489 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 490 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
491 length);
46810cbf
SF		 492 cifs_reconnect(server);
493 csocket = server->ssocket;
494 continue;
e4eb295d
SF		 495 }
496
497 /* else we have an SMB response */
fb8c4b14 498 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 499 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 500 cERROR(1, "Invalid size SMB length %d pdu_length %d",
501 length, pdu_length+4);
e4eb295d
SF		 502 cifs_reconnect(server);
503 csocket = server->ssocket;
504 wake_up(&server->response_q);
505 continue;
fb8c4b14 506 }
e4eb295d
SF		 507
508 /* else length ok */
509 reconnect = 0;
510
fb8c4b14 511 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 512 isLargeBuf = true;
e4eb295d
SF		 513 memcpy(bigbuf, smallbuf, 4);
514 smb_buffer = bigbuf;
515 }
516 length = 0;
517 iov.iov_base = 4 + (char *)smb_buffer;
518 iov.iov_len = pdu_length;
fb8c4b14 519 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 520 total_read += length) {
521 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
522 pdu_length - total_read, 0);
469ee614 523 if ((server->tcpStatus == CifsExiting) ||
e4eb295d
SF		 524 (length == -EINTR)) {
525 /* then will exit */
526 reconnect = 2;
527 break;
528 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 529 cifs_reconnect(server);
530 csocket = server->ssocket;
fb8c4b14 531 /* Reconnect wakes up rspns q */
e4eb295d
SF		 532 /* Now we will reread sock */
533 reconnect = 1;
534 break;
fb8c4b14 535 } else if ((length == -ERESTARTSYS) ||
e4eb295d
SF		 536 (length == -EAGAIN)) {
537 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 538 allowing socket to clear and app
e4eb295d
SF		 539 threads to set tcpStatus
540 CifsNeedReconnect if server hung*/
c18c732e 541 length = 0;
46810cbf 542 continue;
e4eb295d 543 } else if (length <= 0) {
b6b38f70
JP		 544 cERROR(1, "Received no data, expecting %d",
545 pdu_length - total_read);
e4eb295d
SF		 546 cifs_reconnect(server);
547 csocket = server->ssocket;
548 reconnect = 1;
549 break;
46810cbf 550 }
e4eb295d 551 }
fb8c4b14 552 if (reconnect == 2)
e4eb295d 553 break;
fb8c4b14 554 else if (reconnect == 1)
e4eb295d 555 continue;
1da177e4 556
e4eb295d 557 length += 4; /* account for rfc1002 hdr */
50c2f753 558
09d1db5c 559
e4eb295d 560 dump_smb(smb_buffer, length);
184ed211 561 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
b387eaeb 562 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
e4eb295d
SF		 563 continue;
564 }
1da177e4 565
e4eb295d
SF		 566
567 task_to_wake = NULL;
568 spin_lock(&GlobalMid_Lock);
569 list_for_each(tmp, &server->pending_mid_q) {
570 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
571
50c2f753 572 if ((mid_entry->mid == smb_buffer->Mid) &&
e4eb295d
SF		 573 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
574 (mid_entry->command == smb_buffer->Command)) {
fb8c4b14 575 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
e4eb295d 576 /* We have a multipart transact2 resp */
4b18f2a9 577 isMultiRsp = true;
fb8c4b14 578 if (mid_entry->resp_buf) {
e4eb295d 579 /* merge response - fix up 1st*/
50c2f753 580 if (coalesce_t2(smb_buffer,
e4eb295d 581 mid_entry->resp_buf)) {
4b18f2a9
SF		 582 mid_entry->multiRsp =
583 true;
e4eb295d
SF		 584 break;
585 } else {
586 /* all parts received */
4b18f2a9
SF		 587 mid_entry->multiEnd =
588 true;
50c2f753 589 goto multi_t2_fnd;
e4eb295d
SF		 590 }
591 } else {
fb8c4b14 592 if (!isLargeBuf) {
b6b38f70 593 cERROR(1, "1st trans2 resp needs bigbuf");
e4eb295d 594 /* BB maybe we can fix this up, switch
50c2f753 595 to already allocated large buffer? */
e4eb295d 596 } else {
cd63499c 597 /* Have first buffer */
e4eb295d
SF		 598 mid_entry->resp_buf =
599 smb_buffer;
4b18f2a9
SF		 600 mid_entry->largeBuf =
601 true;
e4eb295d
SF		 602 bigbuf = NULL;
603 }
604 }
605 break;
50c2f753 606 }
e4eb295d 607 mid_entry->resp_buf = smb_buffer;
4b18f2a9 608 mid_entry->largeBuf = isLargeBuf;
e4eb295d
SF		 609multi_t2_fnd:
610 task_to_wake = mid_entry->tsk;
611 mid_entry->midState = MID_RESPONSE_RECEIVED;
1047abc1
SF		 612#ifdef CONFIG_CIFS_STATS2
613 mid_entry->when_received = jiffies;
614#endif
3a5ff61c
SF		 615 /* so we do not time out requests to server
616 which is still responding (since server could
617 be busy but not dead) */
618 server->lstrp = jiffies;
e4eb295d 619 break;
46810cbf 620 }
1da177e4 621 }
e4eb295d
SF		 622 spin_unlock(&GlobalMid_Lock);
623 if (task_to_wake) {
cd63499c 624 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 625 if (!isMultiRsp) {
cd63499c 626 /* smb buffer will be freed by user thread */
26f57364 627 if (isLargeBuf)
cd63499c 628 bigbuf = NULL;
26f57364 629 else
cd63499c
SF		 630 smallbuf = NULL;
631 }
e4eb295d 632 wake_up_process(task_to_wake);
4b18f2a9
SF		 633 } else if (!is_valid_oplock_break(smb_buffer, server) &&
634 !isMultiRsp) {
b6b38f70
JP		 635 cERROR(1, "No task to wake, unknown frame received! "
636 "NumMids %d", midCount.counter);
50c2f753 637 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 638 sizeof(struct smb_hdr));
3979877e
SF		 639#ifdef CONFIG_CIFS_DEBUG2
640 cifs_dump_detail(smb_buffer);
641 cifs_dump_mids(server);
642#endif /* CIFS_DEBUG2 */
50c2f753 643
e4eb295d
SF		 644 }
645 } /* end while !EXITING */
646
e7ddee90
JL		 647 /* take it off the list, if it's not already */
648 write_lock(&cifs_tcp_ses_lock);
649 list_del_init(&server->tcp_ses_list);
650 write_unlock(&cifs_tcp_ses_lock);
651
1da177e4
LT		 652 spin_lock(&GlobalMid_Lock);
653 server->tcpStatus = CifsExiting;
e691b9d1 654 spin_unlock(&GlobalMid_Lock);
dbdbb876 655 wake_up_all(&server->response_q);
e691b9d1 656
31ca3bc3
SF		 657 /* check if we have blocked requests that need to free */
658 /* Note that cifs_max_pending is normally 50, but
659 can be set at module install time to as little as two */
e691b9d1 660 spin_lock(&GlobalMid_Lock);
fb8c4b14 661 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 662 atomic_set(&server->inFlight, cifs_max_pending - 1);
663 /* We do not want to set the max_pending too low or we
664 could end up with the counter going negative */
1da177e4 665 spin_unlock(&GlobalMid_Lock);
50c2f753 666 /* Although there should not be any requests blocked on
1da177e4 667 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 668 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 669 to the same server - they now will see the session is in exit state
670 and get out of SendReceive. */
671 wake_up_all(&server->request_q);
672 /* give those requests time to exit */
b8643e1b 673 msleep(125);
50c2f753 674
fb8c4b14 675 if (server->ssocket) {
1da177e4
LT		 676 sock_release(csocket);
677 server->ssocket = NULL;
678 }
b8643e1b 679 /* buffer usuallly freed in free_mid - need to free it here on exit */
a8a11d39
MK		 680 cifs_buf_release(bigbuf);
681 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 682 cifs_small_buf_release(smallbuf);
1da177e4 683
14fbf50d
JL		 684 /*
685 * BB: we shouldn't have to do any of this. It shouldn't be
686 * possible to exit from the thread with active SMB sessions
687 */
688 read_lock(&cifs_tcp_ses_lock);
1da177e4 689 if (list_empty(&server->pending_mid_q)) {
09d1db5c
SF		 690 /* loop through server session structures attached to this and
691 mark them dead */
14fbf50d
JL		 692 list_for_each(tmp, &server->smb_ses_list) {
693 ses = list_entry(tmp, struct cifsSesInfo,
694 smb_ses_list);
695 ses->status = CifsExiting;
696 ses->server = NULL;
1da177e4 697 }
14fbf50d 698 read_unlock(&cifs_tcp_ses_lock);
1da177e4 699 } else {
31ca3bc3
SF		 700 /* although we can not zero the server struct pointer yet,
701 since there are active requests which may depnd on them,
702 mark the corresponding SMB sessions as exiting too */
14fbf50d 703 list_for_each(tmp, &server->smb_ses_list) {
31ca3bc3 704 ses = list_entry(tmp, struct cifsSesInfo,
14fbf50d
JL		 705 smb_ses_list);
706 ses->status = CifsExiting;
31ca3bc3
SF		 707 }
708
1da177e4
LT		 709 spin_lock(&GlobalMid_Lock);
710 list_for_each(tmp, &server->pending_mid_q) {
711 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
712 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
b6b38f70
JP		 713 cFYI(1, "Clearing Mid 0x%x - waking up ",
714 mid_entry->mid);
1da177e4 715 task_to_wake = mid_entry->tsk;
26f57364 716 if (task_to_wake)
1da177e4 717 wake_up_process(task_to_wake);
1da177e4
LT		 718 }
719 }
720 spin_unlock(&GlobalMid_Lock);
14fbf50d 721 read_unlock(&cifs_tcp_ses_lock);
1da177e4 722 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 723 msleep(125);
1da177e4
LT		 724 }
725
f191401f 726 if (!list_empty(&server->pending_mid_q)) {
50c2f753 727 /* mpx threads have not exited yet give them
1da177e4 728 at least the smb send timeout time for long ops */
31ca3bc3
SF		 729 /* due to delays on oplock break requests, we need
730 to wait at least 45 seconds before giving up
731 on a request getting a response and going ahead
732 and killing cifsd */
b6b38f70 733 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 734 msleep(46000);
1da177e4
LT		 735 /* if threads still have not exited they are probably never
736 coming home not much else we can do but free the memory */
737 }
1da177e4 738
31ca3bc3
SF		 739 /* last chance to mark ses pointers invalid
740 if there are any pointing to this (e.g
50c2f753 741 if a crazy root user tried to kill cifsd
31ca3bc3 742 kernel thread explicitly this might happen) */
14fbf50d
JL		 743 /* BB: This shouldn't be necessary, see above */
744 read_lock(&cifs_tcp_ses_lock);
745 list_for_each(tmp, &server->smb_ses_list) {
746 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
747 ses->server = NULL;
31ca3bc3 748 }
14fbf50d 749 read_unlock(&cifs_tcp_ses_lock);
31ca3bc3 750
c359cf3c 751 kfree(server->hostname);
b1c8d2b4 752 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 753 kfree(server);
93d0ec85
JL		 754
755 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 756 if (length > 0)
757 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
758 GFP_KERNEL);
50c2f753 759
b1c8d2b4
JL		 760 /* if server->tsk was NULL then wait for a signal before exiting */
761 if (!task_to_wake) {
762 set_current_state(TASK_INTERRUPTIBLE);
763 while (!signal_pending(current)) {
764 schedule();
765 set_current_state(TASK_INTERRUPTIBLE);
766 }
767 set_current_state(TASK_RUNNING);
768 }
769
0468a2cf 770 module_put_and_exit(0);
1da177e4
LT		 771}
772
c359cf3c
JL		 773/* extract the host portion of the UNC string */
774static char *
775extract_hostname(const char *unc)
776{
777 const char *src;
778 char *dst, *delim;
779 unsigned int len;
780
781 /* skip double chars at beginning of string */
782 /* BB: check validity of these bytes? */
783 src = unc + 2;
784
785 /* delimiter between hostname and sharename is always '\\' now */
786 delim = strchr(src, '\\');
787 if (!delim)
788 return ERR_PTR(-EINVAL);
789
790 len = delim - src;
791 dst = kmalloc((len + 1), GFP_KERNEL);
792 if (dst == NULL)
793 return ERR_PTR(-ENOMEM);
794
795 memcpy(dst, src, len);
796 dst[len] = '\0';
797
798 return dst;
799}
800
1da177e4 801static int
50c2f753
SF		 802cifs_parse_mount_options(char *options, const char *devname,
803 struct smb_vol *vol)
1da177e4
LT		 804{
805 char *value;
806 char *data;
807 unsigned int temp_len, i, j;
808 char separator[2];
9b9d6b24
JL		 809 short int override_uid = -1;
810 short int override_gid = -1;
811 bool uid_specified = false;
812 bool gid_specified = false;
1da177e4
LT		 813
814 separator[0] = ',';
50c2f753 815 separator[1] = 0;
1da177e4 816
12e36b2f 817 if (Local_System_Name[0] != 0)
50c2f753 818 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
2cd646a2 819 else {
12e36b2f 820 char *nodename = utsname()->nodename;
50c2f753
SF		 821 int n = strnlen(nodename, 15);
822 memset(vol->source_rfc1001_name, 0x20, 15);
823 for (i = 0; i < n; i++) {
2cd646a2
SF		 824 /* does not have to be perfect mapping since field is
825 informational, only used for servers that do not support
826 port 445 and it can be overridden at mount time */
12e36b2f 827 vol->source_rfc1001_name[i] = toupper(nodename[i]);
2cd646a2 828 }
1da177e4
LT		 829 }
830 vol->source_rfc1001_name[15] = 0;
a10faeb2
SF		 831 /* null target name indicates to use *SMBSERVR default called name
832 if we end up sending RFC1001 session initialize */
833 vol->target_rfc1001_name[0] = 0;
a001e5b5
DH		 834 vol->linux_uid = current_uid(); /* use current_euid() instead? */
835 vol->linux_gid = current_gid();
f55ed1a8
JL		 836
837 /* default to only allowing write access to owner of the mount */
838 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 839
840 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 841 /* default is always to request posix paths. */
842 vol->posix_paths = 1;
a0c9217f
JL		 843 /* default to using server inode numbers where available */
844 vol->server_ino = 1;
ac67055e 845
1da177e4
LT		 846 if (!options)
847 return 1;
848
50c2f753 849 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 850 if (options[4] != 0) {
1da177e4
LT		 851 separator[0] = options[4];
852 options += 5;
853 } else {
b6b38f70 854 cFYI(1, "Null separator not allowed");
1da177e4
LT		 855 }
856 }
50c2f753 857
1da177e4
LT		 858 while ((data = strsep(&options, separator)) != NULL) {
859 if (!*data)
860 continue;
861 if ((value = strchr(data, '=')) != NULL)
862 *value++ = '\0';
863
50c2f753
SF		 864 /* Have to parse this before we parse for "user" */
865 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 866 vol->no_xattr = 0;
50c2f753 867 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 868 vol->no_xattr = 1;
869 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 870 if (!value) {
1da177e4
LT		 871 printk(KERN_WARNING
872 "CIFS: invalid or missing username\n");
873 return 1; /* needs_arg; */
fb8c4b14 874 } else if (!*value) {
4b952a9b
SF		 875 /* null user, ie anonymous, authentication */
876 vol->nullauth = 1;
1da177e4
LT		 877 }
878 if (strnlen(value, 200) < 200) {
879 vol->username = value;
880 } else {
881 printk(KERN_WARNING "CIFS: username too long\n");
882 return 1;
883 }
884 } else if (strnicmp(data, "pass", 4) == 0) {
885 if (!value) {
886 vol->password = NULL;
887 continue;
fb8c4b14 888 } else if (value[0] == 0) {
1da177e4
LT		 889 /* check if string begins with double comma
890 since that would mean the password really
891 does start with a comma, and would not
892 indicate an empty string */
fb8c4b14 893 if (value[1] != separator[0]) {
1da177e4
LT		 894 vol->password = NULL;
895 continue;
896 }
897 }
898 temp_len = strlen(value);
899 /* removed password length check, NTLM passwords
900 can be arbitrarily long */
901
50c2f753 902 /* if comma in password, the string will be
1da177e4
LT		 903 prematurely null terminated. Commas in password are
904 specified across the cifs mount interface by a double
905 comma ie ,, and a comma used as in other cases ie ','
906 as a parameter delimiter/separator is single and due
907 to the strsep above is temporarily zeroed. */
908
909 /* NB: password legally can have multiple commas and
910 the only illegal character in a password is null */
911
50c2f753 912 if ((value[temp_len] == 0) &&
09d1db5c 913 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 914 /* reinsert comma */
915 value[temp_len] = separator[0];
50c2f753
SF		 916 temp_len += 2; /* move after second comma */
917 while (value[temp_len] != 0) {
1da177e4 918 if (value[temp_len] == separator[0]) {
50c2f753 919 if (value[temp_len+1] ==
09d1db5c
SF		 920 separator[0]) {
921 /* skip second comma */
922 temp_len++;
50c2f753 923 } else {
1da177e4
LT		 924 /* single comma indicating start
925 of next parm */
926 break;
927 }
928 }
929 temp_len++;
930 }
fb8c4b14 931 if (value[temp_len] == 0) {
1da177e4
LT		 932 options = NULL;
933 } else {
934 value[temp_len] = 0;
935 /* point option to start of next parm */
936 options = value + temp_len + 1;
937 }
50c2f753 938 /* go from value to value + temp_len condensing
1da177e4
LT		 939 double commas to singles. Note that this ends up
940 allocating a few bytes too many, which is ok */
e915fc49 941 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 942 if (vol->password == NULL) {
50c2f753
SF		 943 printk(KERN_WARNING "CIFS: no memory "
944 "for password\n");
433dc24f
SF		 945 return 1;
946 }
50c2f753 947 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 948 vol->password[j] = value[i];
fb8c4b14 949 if (value[i] == separator[0]
09d1db5c 950 && value[i+1] == separator[0]) {
1da177e4
LT		 951 /* skip second comma */
952 i++;
953 }
954 }
955 vol->password[j] = 0;
956 } else {
e915fc49 957 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 958 if (vol->password == NULL) {
50c2f753
SF		 959 printk(KERN_WARNING "CIFS: no memory "
960 "for password\n");
433dc24f
SF		 961 return 1;
962 }
1da177e4
LT		 963 strcpy(vol->password, value);
964 }
58f7f68f
JL		 965 } else if (!strnicmp(data, "ip", 2) ||
966 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 967 if (!value || !*value) {
968 vol->UNCip = NULL;
50b64e3b
JL		 969 } else if (strnlen(value, INET6_ADDRSTRLEN) <
970 INET6_ADDRSTRLEN) {
1da177e4
LT		 971 vol->UNCip = value;
972 } else {
50c2f753
SF		 973 printk(KERN_WARNING "CIFS: ip address "
974 "too long\n");
1da177e4
LT		 975 return 1;
976 }
50c2f753
SF		 977 } else if (strnicmp(data, "sec", 3) == 0) {
978 if (!value || !*value) {
b6b38f70 979 cERROR(1, "no security value specified");
50c2f753
SF		 980 continue;
981 } else if (strnicmp(value, "krb5i", 5) == 0) {
982 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 983 CIFSSEC_MUST_SIGN;
bf820679 984 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 985 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
986 CIFSSEC_MAY_KRB5; */
b6b38f70 987 cERROR(1, "Krb5 cifs privacy not supported");
bf820679
SF		 988 return 1;
989 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 990 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 991#ifdef CONFIG_CIFS_EXPERIMENTAL
992 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
993 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
994 CIFSSEC_MUST_SIGN;
995 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
996 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
997#endif
bf820679 998 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 999 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 1000 CIFSSEC_MUST_SIGN;
bf820679 1001 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1002 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1003 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1004 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1005 CIFSSEC_MUST_SIGN;
bf820679
SF		 1006 } else if (strnicmp(value, "ntlm", 4) == 0) {
1007 /* ntlm is default so can be turned off too */
750d1151 1008 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1009 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1010 /* BB is there a better way to do this? */
750d1151 1011 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1012#ifdef CONFIG_CIFS_WEAK_PW_HASH
1013 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1014 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1015#endif
bf820679 1016 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1017 vol->nullauth = 1;
50c2f753 1018 } else {
b6b38f70 1019 cERROR(1, "bad security option: %s", value);
50c2f753
SF		 1020 return 1;
1021 }
1da177e4
LT		 1022 } else if ((strnicmp(data, "unc", 3) == 0)
1023 || (strnicmp(data, "target", 6) == 0)
1024 || (strnicmp(data, "path", 4) == 0)) {
1025 if (!value || !*value) {
50c2f753
SF		 1026 printk(KERN_WARNING "CIFS: invalid path to "
1027 "network resource\n");
1da177e4
LT		 1028 return 1; /* needs_arg; */
1029 }
1030 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1031 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1032 if (vol->UNC == NULL)
1da177e4 1033 return 1;
50c2f753 1034 strcpy(vol->UNC, value);
1da177e4
LT		 1035 if (strncmp(vol->UNC, "//", 2) == 0) {
1036 vol->UNC[0] = '\\';
1037 vol->UNC[1] = '\\';
50c2f753 1038 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1039 printk(KERN_WARNING
50c2f753
SF		 1040 "CIFS: UNC Path does not begin "
1041 "with // or \\\\ \n");
1da177e4
LT		 1042 return 1;
1043 }
1044 } else {
1045 printk(KERN_WARNING "CIFS: UNC name too long\n");
1046 return 1;
1047 }
1048 } else if ((strnicmp(data, "domain", 3) == 0)
1049 || (strnicmp(data, "workgroup", 5) == 0)) {
1050 if (!value || !*value) {
1051 printk(KERN_WARNING "CIFS: invalid domain name\n");
1052 return 1; /* needs_arg; */
1053 }
1054 /* BB are there cases in which a comma can be valid in
1055 a domain name and need special handling? */
3979877e 1056 if (strnlen(value, 256) < 256) {
1da177e4 1057 vol->domainname = value;
b6b38f70 1058 cFYI(1, "Domain name set");
1da177e4 1059 } else {
50c2f753
SF		 1060 printk(KERN_WARNING "CIFS: domain name too "
1061 "long\n");
1da177e4
LT		 1062 return 1;
1063 }
50c2f753
SF		 1064 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1065 if (!value || !*value) {
1066 printk(KERN_WARNING
1067 "CIFS: invalid path prefix\n");
1068 return 1; /* needs_argument */
1069 }
1070 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1071 if (value[0] != '/')
2fe87f02 1072 temp_len++; /* missing leading slash */
50c2f753
SF		 1073 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1074 if (vol->prepath == NULL)
1075 return 1;
4523cc30 1076 if (value[0] != '/') {
2fe87f02 1077 vol->prepath[0] = '/';
50c2f753 1078 strcpy(vol->prepath+1, value);
2fe87f02 1079 } else
50c2f753 1080 strcpy(vol->prepath, value);
b6b38f70 1081 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1082 } else {
1083 printk(KERN_WARNING "CIFS: prefix too long\n");
1084 return 1;
1085 }
1da177e4
LT		 1086 } else if (strnicmp(data, "iocharset", 9) == 0) {
1087 if (!value || !*value) {
63135e08
SF		 1088 printk(KERN_WARNING "CIFS: invalid iocharset "
1089 "specified\n");
1da177e4
LT		 1090 return 1; /* needs_arg; */
1091 }
1092 if (strnlen(value, 65) < 65) {
50c2f753 1093 if (strnicmp(value, "default", 7))
1da177e4 1094 vol->iocharset = value;
50c2f753
SF		 1095 /* if iocharset not set then load_nls_default
1096 is used by caller */
b6b38f70 1097 cFYI(1, "iocharset set to %s", value);
1da177e4 1098 } else {
63135e08
SF		 1099 printk(KERN_WARNING "CIFS: iocharset name "
1100 "too long.\n");
1da177e4
LT		 1101 return 1;
1102 }
9b9d6b24
JL		 1103 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1104 vol->linux_uid = simple_strtoul(value, &value, 0);
1105 uid_specified = true;
1106 } else if (!strnicmp(data, "forceuid", 8)) {
1107 override_uid = 1;
1108 } else if (!strnicmp(data, "noforceuid", 10)) {
1109 override_uid = 0;
1110 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1111 vol->linux_gid = simple_strtoul(value, &value, 0);
1112 gid_specified = true;
1113 } else if (!strnicmp(data, "forcegid", 8)) {
1114 override_gid = 1;
1115 } else if (!strnicmp(data, "noforcegid", 10)) {
1116 override_gid = 0;
1da177e4
LT		 1117 } else if (strnicmp(data, "file_mode", 4) == 0) {
1118 if (value && *value) {
1119 vol->file_mode =
1120 simple_strtoul(value, &value, 0);
1121 }
1122 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1123 if (value && *value) {
1124 vol->dir_mode =
1125 simple_strtoul(value, &value, 0);
1126 }
1127 } else if (strnicmp(data, "dirmode", 4) == 0) {
1128 if (value && *value) {
1129 vol->dir_mode =
1130 simple_strtoul(value, &value, 0);
1131 }
1132 } else if (strnicmp(data, "port", 4) == 0) {
1133 if (value && *value) {
1134 vol->port =
1135 simple_strtoul(value, &value, 0);
1136 }
1137 } else if (strnicmp(data, "rsize", 5) == 0) {
1138 if (value && *value) {
1139 vol->rsize =
1140 simple_strtoul(value, &value, 0);
1141 }
1142 } else if (strnicmp(data, "wsize", 5) == 0) {
1143 if (value && *value) {
1144 vol->wsize =
1145 simple_strtoul(value, &value, 0);
1146 }
1147 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1148 if (!value || !*value) {
b6b38f70 1149 cERROR(1, "no socket option specified");
6a5fa236
SF		 1150 continue;
1151 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1152 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1153 }
1154 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1155 if (!value || !*value || (*value == ' ')) {
b6b38f70 1156 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1157 } else {
50c2f753
SF		 1158 memset(vol->source_rfc1001_name, 0x20, 15);
1159 for (i = 0; i < 15; i++) {
1160 /* BB are there cases in which a comma can be
1da177e4
LT		 1161 valid in this workstation netbios name (and need
1162 special handling)? */
1163
1164 /* We do not uppercase netbiosname for user */
50c2f753 1165 if (value[i] == 0)
1da177e4 1166 break;
50c2f753
SF		 1167 else
1168 vol->source_rfc1001_name[i] =
1169 value[i];
1da177e4
LT		 1170 }
1171 /* The string has 16th byte zero still from
1172 set at top of the function */
50c2f753
SF		 1173 if ((i == 15) && (value[i] != 0))
1174 printk(KERN_WARNING "CIFS: netbiosname"
1175 " longer than 15 truncated.\n");
a10faeb2
SF		 1176 }
1177 } else if (strnicmp(data, "servern", 7) == 0) {
1178 /* servernetbiosname specified override *SMBSERVER */
1179 if (!value || !*value || (*value == ' ')) {
b6b38f70 1180 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1181 } else {
1182 /* last byte, type, is 0x20 for servr type */
50c2f753 1183 memset(vol->target_rfc1001_name, 0x20, 16);
a10faeb2 1184
50c2f753 1185 for (i = 0; i < 15; i++) {
a10faeb2 1186 /* BB are there cases in which a comma can be
50c2f753
SF		 1187 valid in this workstation netbios name
1188 (and need special handling)? */
a10faeb2 1189
50c2f753
SF		 1190 /* user or mount helper must uppercase
1191 the netbiosname */
1192 if (value[i] == 0)
a10faeb2
SF		 1193 break;
1194 else
50c2f753
SF		 1195 vol->target_rfc1001_name[i] =
1196 value[i];
a10faeb2
SF		 1197 }
1198 /* The string has 16th byte zero still from
1199 set at top of the function */
50c2f753
SF		 1200 if ((i == 15) && (value[i] != 0))
1201 printk(KERN_WARNING "CIFS: server net"
1202 "biosname longer than 15 truncated.\n");
1da177e4
LT		 1203 }
1204 } else if (strnicmp(data, "credentials", 4) == 0) {
1205 /* ignore */
1206 } else if (strnicmp(data, "version", 3) == 0) {
1207 /* ignore */
50c2f753 1208 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1209 /* ignore */
71a394fa
SF		 1210 } else if (strnicmp(data, "rw", 2) == 0) {
1211 /* ignore */
1212 } else if (strnicmp(data, "ro", 2) == 0) {
1213 /* ignore */
edf1ae40
SF		 1214 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1215 vol->noblocksnd = 1;
1216 } else if (strnicmp(data, "noautotune", 10) == 0) {
1217 vol->noautotune = 1;
1da177e4
LT		 1218 } else if ((strnicmp(data, "suid", 4) == 0) ||
1219 (strnicmp(data, "nosuid", 6) == 0) ||
1220 (strnicmp(data, "exec", 4) == 0) ||
1221 (strnicmp(data, "noexec", 6) == 0) ||
1222 (strnicmp(data, "nodev", 5) == 0) ||
1223 (strnicmp(data, "noauto", 6) == 0) ||
1224 (strnicmp(data, "dev", 3) == 0)) {
1225 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1226 uses these opts to set flags, and the flags are read
1227 by the kernel vfs layer before we get here (ie
1228 before read super) so there is no point trying to
1229 parse these options again and set anything and it
1230 is ok to just ignore them */
1da177e4 1231 continue;
1da177e4
LT		 1232 } else if (strnicmp(data, "hard", 4) == 0) {
1233 vol->retry = 1;
1234 } else if (strnicmp(data, "soft", 4) == 0) {
1235 vol->retry = 0;
1236 } else if (strnicmp(data, "perm", 4) == 0) {
1237 vol->noperm = 0;
1238 } else if (strnicmp(data, "noperm", 6) == 0) {
1239 vol->noperm = 1;
6a0b4824
SF		 1240 } else if (strnicmp(data, "mapchars", 8) == 0) {
1241 vol->remap = 1;
1242 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1243 vol->remap = 0;
50c2f753
SF		 1244 } else if (strnicmp(data, "sfu", 3) == 0) {
1245 vol->sfu_emul = 1;
1246 } else if (strnicmp(data, "nosfu", 5) == 0) {
1247 vol->sfu_emul = 0;
2c1b8615
SF		 1248 } else if (strnicmp(data, "nodfs", 5) == 0) {
1249 vol->nodfs = 1;
ac67055e
JA		 1250 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1251 vol->posix_paths = 1;
1252 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1253 vol->posix_paths = 0;
c18c842b
SF		 1254 } else if (strnicmp(data, "nounix", 6) == 0) {
1255 vol->no_linux_ext = 1;
1256 } else if (strnicmp(data, "nolinux", 7) == 0) {
1257 vol->no_linux_ext = 1;
50c2f753 1258 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1259 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1260 vol->nocase = 1;
c46fa8ac
SF		 1261 } else if (strnicmp(data, "brl", 3) == 0) {
1262 vol->nobrl = 0;
50c2f753 1263 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1264 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1265 vol->nobrl = 1;
d3485d37
SF		 1266 /* turn off mandatory locking in mode
1267 if remote locking is turned off since the
1268 local vfs will do advisory */
50c2f753
SF		 1269 if (vol->file_mode ==
1270 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1271 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1272 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1273 /* will take the shorter form "forcemand" as well */
1274 /* This mount option will force use of mandatory
1275 (DOS/Windows style) byte range locks, instead of
1276 using posix advisory byte range locks, even if the
1277 Unix extensions are available and posix locks would
1278 be supported otherwise. If Unix extensions are not
1279 negotiated this has no effect since mandatory locks
1280 would be used (mandatory locks is all that those
1281 those servers support) */
1282 vol->mand_lock = 1;
1da177e4
LT		 1283 } else if (strnicmp(data, "setuids", 7) == 0) {
1284 vol->setuids = 1;
1285 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1286 vol->setuids = 0;
d0a9c078
JL		 1287 } else if (strnicmp(data, "dynperm", 7) == 0) {
1288 vol->dynperm = true;
1289 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1290 vol->dynperm = false;
1da177e4
LT		 1291 } else if (strnicmp(data, "nohard", 6) == 0) {
1292 vol->retry = 0;
1293 } else if (strnicmp(data, "nosoft", 6) == 0) {
1294 vol->retry = 1;
1295 } else if (strnicmp(data, "nointr", 6) == 0) {
1296 vol->intr = 0;
1297 } else if (strnicmp(data, "intr", 4) == 0) {
1298 vol->intr = 1;
be652445
SF		 1299 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1300 vol->nostrictsync = 1;
1301 } else if (strnicmp(data, "strictsync", 10) == 0) {
1302 vol->nostrictsync = 0;
50c2f753 1303 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1304 vol->server_ino = 1;
50c2f753 1305 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1306 vol->server_ino = 0;
50c2f753 1307 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1308 vol->cifs_acl = 1;
1309 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1310 vol->cifs_acl = 0;
50c2f753 1311 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1312 vol->no_psx_acl = 0;
50c2f753 1313 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1314 vol->no_psx_acl = 1;
84210e91
SF		 1315#ifdef CONFIG_CIFS_EXPERIMENTAL
1316 } else if (strnicmp(data, "locallease", 6) == 0) {
1317 vol->local_lease = 1;
1318#endif
50c2f753 1319 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1320 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1321 } else if (strnicmp(data, "seal", 4) == 0) {
1322 /* we do not do the following in secFlags because seal
1323 is a per tree connection (mount) not a per socket
1324 or per-smb connection option in the protocol */
1325 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1326 vol->seal = 1;
50c2f753 1327 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1328 vol->direct_io = 1;
50c2f753 1329 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1330 vol->direct_io = 1;
1da177e4 1331 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1332 printk(KERN_WARNING "CIFS: Mount option noac not "
1333 "supported. Instead set "
1334 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1da177e4 1335 } else
50c2f753
SF		 1336 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1337 data);
1da177e4
LT		 1338 }
1339 if (vol->UNC == NULL) {
4523cc30 1340 if (devname == NULL) {
50c2f753
SF		 1341 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1342 "target\n");
1da177e4
LT		 1343 return 1;
1344 }
1345 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1346 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1347 if (vol->UNC == NULL)
1da177e4 1348 return 1;
50c2f753 1349 strcpy(vol->UNC, devname);
1da177e4
LT		 1350 if (strncmp(vol->UNC, "//", 2) == 0) {
1351 vol->UNC[0] = '\\';
1352 vol->UNC[1] = '\\';
1353 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1354 printk(KERN_WARNING "CIFS: UNC Path does not "
1355 "begin with // or \\\\ \n");
1da177e4
LT		 1356 return 1;
1357 }
7c5e628f
IM		 1358 value = strpbrk(vol->UNC+2, "/\\");
1359 if (value)
1360 *value = '\\';
1da177e4
LT		 1361 } else {
1362 printk(KERN_WARNING "CIFS: UNC name too long\n");
1363 return 1;
1364 }
1365 }
fb8c4b14 1366 if (vol->UNCip == NULL)
1da177e4
LT		 1367 vol->UNCip = &vol->UNC[2];
1368
9b9d6b24
JL		 1369 if (uid_specified)
1370 vol->override_uid = override_uid;
1371 else if (override_uid == 1)
1372 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1373 "specified with no uid= option.\n");
1374
1375 if (gid_specified)
1376 vol->override_gid = override_gid;
1377 else if (override_gid == 1)
1378 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1379 "specified with no gid= option.\n");
1380
1da177e4
LT		 1381 return 0;
1382}
1383
4515148e
JL		 1384static bool
1385match_address(struct TCP_Server_Info *server, struct sockaddr *addr)
1386{
1387 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1388 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1389
1390 switch (addr->sa_family) {
1391 case AF_INET:
1392 if (addr4->sin_addr.s_addr !=
1393 server->addr.sockAddr.sin_addr.s_addr)
1394 return false;
1395 if (addr4->sin_port &&
1396 addr4->sin_port != server->addr.sockAddr.sin_port)
1397 return false;
1398 break;
1399 case AF_INET6:
1400 if (!ipv6_addr_equal(&addr6->sin6_addr,
1401 &server->addr.sockAddr6.sin6_addr))
1402 return false;
1403 if (addr6->sin6_scope_id !=
1404 server->addr.sockAddr6.sin6_scope_id)
1405 return false;
1406 if (addr6->sin6_port &&
1407 addr6->sin6_port != server->addr.sockAddr6.sin6_port)
1408 return false;
1409 break;
1410 }
1411
1412 return true;
1413}
1414
e7ddee90 1415static struct TCP_Server_Info *
4515148e 1416cifs_find_tcp_session(struct sockaddr *addr)
1da177e4 1417{
e7ddee90 1418 struct TCP_Server_Info *server;
e7ddee90
JL		 1419
1420 write_lock(&cifs_tcp_ses_lock);
4515148e 1421 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
e7ddee90
JL		 1422 /*
1423 * the demux thread can exit on its own while still in CifsNew
1424 * so don't accept any sockets in that state. Since the
1425 * tcpStatus never changes back to CifsNew it's safe to check
1426 * for this without a lock.
1427 */
1428 if (server->tcpStatus == CifsNew)
1b20d672 1429 continue;
1da177e4 1430
4515148e
JL		 1431 if (!match_address(server, addr))
1432 continue;
1b20d672 1433
e7ddee90
JL		 1434 ++server->srv_count;
1435 write_unlock(&cifs_tcp_ses_lock);
b6b38f70 1436 cFYI(1, "Existing tcp session with server found");
e7ddee90 1437 return server;
1da177e4 1438 }
e7ddee90 1439 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1440 return NULL;
1441}
1b20d672 1442
14fbf50d 1443static void
e7ddee90 1444cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1445{
e7ddee90 1446 struct task_struct *task;
1b20d672 1447
e7ddee90
JL		 1448 write_lock(&cifs_tcp_ses_lock);
1449 if (--server->srv_count > 0) {
1450 write_unlock(&cifs_tcp_ses_lock);
1451 return;
1da177e4 1452 }
1b20d672 1453
e7ddee90
JL		 1454 list_del_init(&server->tcp_ses_list);
1455 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1456
e7ddee90
JL		 1457 spin_lock(&GlobalMid_Lock);
1458 server->tcpStatus = CifsExiting;
1459 spin_unlock(&GlobalMid_Lock);
dea570e0 1460
488f1d2d
SJ		 1461 cifs_fscache_release_client_cookie(server);
1462
e7ddee90
JL		 1463 task = xchg(&server->tsk, NULL);
1464 if (task)
1465 force_sig(SIGKILL, task);
1da177e4
LT		 1466}
1467
63c038c2
JL		 1468static struct TCP_Server_Info *
1469cifs_get_tcp_session(struct smb_vol *volume_info)
1470{
1471 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1472 struct sockaddr_storage addr;
63c038c2
JL		 1473 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1474 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1475 int rc;
1476
a9ac49d3 1477 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1478
b6b38f70 1479 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1480
1e68b2b2 1481 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1482 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1483 volume_info->UNCip,
1484 volume_info->port);
1e68b2b2 1485 if (!rc) {
63c038c2
JL		 1486 /* we failed translating address */
1487 rc = -EINVAL;
1488 goto out_err;
1489 }
63c038c2
JL		 1490 } else if (volume_info->UNCip) {
1491 /* BB using ip addr as tcp_ses name to connect to the
1492 DFS root below */
b6b38f70 1493 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1494 rc = -EINVAL;
1495 goto out_err;
1496 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1497 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1498 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1499 rc = -EINVAL;
1500 goto out_err;
1501 }
1502
1503 /* see if we already have a matching tcp_ses */
4515148e 1504 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr);
63c038c2
JL		 1505 if (tcp_ses)
1506 return tcp_ses;
1507
1508 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1509 if (!tcp_ses) {
1510 rc = -ENOMEM;
1511 goto out_err;
1512 }
1513
1514 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1515 if (IS_ERR(tcp_ses->hostname)) {
1516 rc = PTR_ERR(tcp_ses->hostname);
1517 goto out_err;
1518 }
1519
1520 tcp_ses->noblocksnd = volume_info->noblocksnd;
1521 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1522 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1523 atomic_set(&tcp_ses->inFlight, 0);
1524 init_waitqueue_head(&tcp_ses->response_q);
1525 init_waitqueue_head(&tcp_ses->request_q);
1526 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1527 mutex_init(&tcp_ses->srv_mutex);
1528 memcpy(tcp_ses->workstation_RFC1001_name,
1529 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1530 memcpy(tcp_ses->server_RFC1001_name,
1531 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1532 tcp_ses->sequence_number = 0;
1533 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1534 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1535
1536 /*
1537 * at this point we are the only ones with the pointer
1538 * to the struct since the kernel thread not created yet
1539 * no need to spinlock this init of tcpStatus or srv_count
1540 */
1541 tcp_ses->tcpStatus = CifsNew;
1542 ++tcp_ses->srv_count;
1543
a9ac49d3 1544 if (addr.ss_family == AF_INET6) {
b6b38f70 1545 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1546 /* BB should we allow ipv6 on port 139? */
1547 /* other OS never observed in Wild doing 139 with v6 */
1548 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1549 sizeof(struct sockaddr_in6));
d5c5605c 1550 rc = ipv6_connect(tcp_ses);
63c038c2
JL		 1551 } else {
1552 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1553 sizeof(struct sockaddr_in));
bcf4b106 1554 rc = ipv4_connect(tcp_ses);
63c038c2
JL		 1555 }
1556 if (rc < 0) {
b6b38f70 1557 cERROR(1, "Error connecting to socket. Aborting operation");
63c038c2
JL		 1558 goto out_err;
1559 }
1560
1561 /*
1562 * since we're in a cifs function already, we know that
1563 * this will succeed. No need for try_module_get().
1564 */
1565 __module_get(THIS_MODULE);
1566 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1567 tcp_ses, "cifsd");
1568 if (IS_ERR(tcp_ses->tsk)) {
1569 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1570 cERROR(1, "error %d create cifsd thread", rc);
63c038c2
JL		 1571 module_put(THIS_MODULE);
1572 goto out_err;
1573 }
1574
1575 /* thread spawned, put it on the list */
1576 write_lock(&cifs_tcp_ses_lock);
1577 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1578 write_unlock(&cifs_tcp_ses_lock);
1579
488f1d2d
SJ		 1580 cifs_fscache_get_client_cookie(tcp_ses);
1581
63c038c2
JL		 1582 return tcp_ses;
1583
1584out_err:
1585 if (tcp_ses) {
8347a5cd
SF		 1586 if (!IS_ERR(tcp_ses->hostname))
1587 kfree(tcp_ses->hostname);
63c038c2
JL		 1588 if (tcp_ses->ssocket)
1589 sock_release(tcp_ses->ssocket);
1590 kfree(tcp_ses);
1591 }
1592 return ERR_PTR(rc);
1593}
1594
14fbf50d
JL		 1595static struct cifsSesInfo *
1596cifs_find_smb_ses(struct TCP_Server_Info *server, char *username)
1da177e4
LT		 1597{
1598 struct list_head *tmp;
14fbf50d 1599 struct cifsSesInfo *ses;
dea570e0 1600
14fbf50d
JL		 1601 write_lock(&cifs_tcp_ses_lock);
1602 list_for_each(tmp, &server->smb_ses_list) {
1603 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
1604 if (strncmp(ses->userName, username, MAX_USERNAME_SIZE))
dea570e0
SF		 1605 continue;
1606
14fbf50d
JL		 1607 ++ses->ses_count;
1608 write_unlock(&cifs_tcp_ses_lock);
1609 return ses;
1610 }
1611 write_unlock(&cifs_tcp_ses_lock);
1612 return NULL;
1613}
dea570e0 1614
14fbf50d
JL		 1615static void
1616cifs_put_smb_ses(struct cifsSesInfo *ses)
1617{
1618 int xid;
1619 struct TCP_Server_Info *server = ses->server;
dea570e0 1620
36988c76 1621 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
14fbf50d
JL		 1622 write_lock(&cifs_tcp_ses_lock);
1623 if (--ses->ses_count > 0) {
1624 write_unlock(&cifs_tcp_ses_lock);
1625 return;
1626 }
dea570e0 1627
14fbf50d
JL		 1628 list_del_init(&ses->smb_ses_list);
1629 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1630
14fbf50d
JL		 1631 if (ses->status == CifsGood) {
1632 xid = GetXid();
1633 CIFSSMBLogoff(xid, ses);
1634 _FreeXid(xid);
1635 }
1636 sesInfoFree(ses);
1637 cifs_put_tcp_session(server);
1638}
dea570e0 1639
36988c76
JL		 1640static struct cifsSesInfo *
1641cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1642{
1643 int rc = -ENOMEM, xid;
1644 struct cifsSesInfo *ses;
1645
1646 xid = GetXid();
1647
1648 ses = cifs_find_smb_ses(server, volume_info->username);
1649 if (ses) {
1650 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1651
1652 /* existing SMB ses has a server reference already */
1653 cifs_put_tcp_session(server);
1654
1655 mutex_lock(&ses->session_mutex);
198b5682
JL		 1656 rc = cifs_negotiate_protocol(xid, ses);
1657 if (rc) {
1658 mutex_unlock(&ses->session_mutex);
1659 /* problem -- put our ses reference */
1660 cifs_put_smb_ses(ses);
1661 FreeXid(xid);
1662 return ERR_PTR(rc);
1663 }
36988c76
JL		 1664 if (ses->need_reconnect) {
1665 cFYI(1, "Session needs reconnect");
1666 rc = cifs_setup_session(xid, ses,
1667 volume_info->local_nls);
1668 if (rc) {
1669 mutex_unlock(&ses->session_mutex);
1670 /* problem -- put our reference */
1671 cifs_put_smb_ses(ses);
1672 FreeXid(xid);
1673 return ERR_PTR(rc);
1674 }
1675 }
1676 mutex_unlock(&ses->session_mutex);
1677 FreeXid(xid);
1678 return ses;
1679 }
1680
1681 cFYI(1, "Existing smb sess not found");
1682 ses = sesInfoAlloc();
1683 if (ses == NULL)
1684 goto get_ses_fail;
1685
1686 /* new SMB session uses our server ref */
1687 ses->server = server;
1688 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1689 sprintf(ses->serverName, "%pI6",
1690 &server->addr.sockAddr6.sin6_addr);
1691 else
1692 sprintf(ses->serverName, "%pI4",
1693 &server->addr.sockAddr.sin_addr.s_addr);
1694
1695 if (volume_info->username)
1696 strncpy(ses->userName, volume_info->username,
1697 MAX_USERNAME_SIZE);
1698
1699 /* volume_info->password freed at unmount */
1700 if (volume_info->password) {
1701 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1702 if (!ses->password)
1703 goto get_ses_fail;
1704 }
1705 if (volume_info->domainname) {
1706 int len = strlen(volume_info->domainname);
1707 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1708 if (ses->domainName)
1709 strcpy(ses->domainName, volume_info->domainname);
1710 }
1711 ses->linux_uid = volume_info->linux_uid;
1712 ses->overrideSecFlg = volume_info->secFlg;
1713
1714 mutex_lock(&ses->session_mutex);
198b5682
JL		 1715 rc = cifs_negotiate_protocol(xid, ses);
1716 if (!rc)
1717 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76
JL		 1718 mutex_unlock(&ses->session_mutex);
1719 if (rc)
1720 goto get_ses_fail;
1721
1722 /* success, put it on the list */
1723 write_lock(&cifs_tcp_ses_lock);
1724 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1725 write_unlock(&cifs_tcp_ses_lock);
1726
1727 FreeXid(xid);
1728 return ses;
1729
1730get_ses_fail:
1731 sesInfoFree(ses);
1732 FreeXid(xid);
1733 return ERR_PTR(rc);
1734}
1735
f1987b44
JL		 1736static struct cifsTconInfo *
1737cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1738{
1739 struct list_head *tmp;
1740 struct cifsTconInfo *tcon;
1741
1742 write_lock(&cifs_tcp_ses_lock);
1743 list_for_each(tmp, &ses->tcon_list) {
1744 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1745 if (tcon->tidStatus == CifsExiting)
1746 continue;
1747 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
dea570e0
SF		 1748 continue;
1749
f1987b44
JL		 1750 ++tcon->tc_count;
1751 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1752 return tcon;
1da177e4 1753 }
f1987b44 1754 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1755 return NULL;
1756}
1757
f1987b44
JL		 1758static void
1759cifs_put_tcon(struct cifsTconInfo *tcon)
1760{
1761 int xid;
1762 struct cifsSesInfo *ses = tcon->ses;
1763
d00c28de 1764 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
f1987b44
JL		 1765 write_lock(&cifs_tcp_ses_lock);
1766 if (--tcon->tc_count > 0) {
1767 write_unlock(&cifs_tcp_ses_lock);
1768 return;
1769 }
1770
1771 list_del_init(&tcon->tcon_list);
1772 write_unlock(&cifs_tcp_ses_lock);
1773
1774 xid = GetXid();
1775 CIFSSMBTDis(xid, tcon);
1776 _FreeXid(xid);
1777
f1987b44
JL		 1778 tconInfoFree(tcon);
1779 cifs_put_smb_ses(ses);
1780}
1781
d00c28de
JL		 1782static struct cifsTconInfo *
1783cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1784{
1785 int rc, xid;
1786 struct cifsTconInfo *tcon;
1787
1788 tcon = cifs_find_tcon(ses, volume_info->UNC);
1789 if (tcon) {
1790 cFYI(1, "Found match on UNC path");
1791 /* existing tcon already has a reference */
1792 cifs_put_smb_ses(ses);
1793 if (tcon->seal != volume_info->seal)
1794 cERROR(1, "transport encryption setting "
1795 "conflicts with existing tid");
1796 return tcon;
1797 }
1798
1799 tcon = tconInfoAlloc();
1800 if (tcon == NULL) {
1801 rc = -ENOMEM;
1802 goto out_fail;
1803 }
1804
1805 tcon->ses = ses;
1806 if (volume_info->password) {
1807 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1808 if (!tcon->password) {
1809 rc = -ENOMEM;
1810 goto out_fail;
1811 }
1812 }
1813
1814 if (strchr(volume_info->UNC + 3, '\\') == NULL
1815 && strchr(volume_info->UNC + 3, '/') == NULL) {
1816 cERROR(1, "Missing share name");
1817 rc = -ENODEV;
1818 goto out_fail;
1819 }
1820
1821 /* BB Do we need to wrap session_mutex around
1822 * this TCon call and Unix SetFS as
1823 * we do on SessSetup and reconnect? */
1824 xid = GetXid();
1825 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1826 FreeXid(xid);
1827 cFYI(1, "CIFS Tcon rc = %d", rc);
1828 if (rc)
1829 goto out_fail;
1830
1831 if (volume_info->nodfs) {
1832 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1833 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1834 }
1835 tcon->seal = volume_info->seal;
1836 /* we can have only one retry value for a connection
1837 to a share so for resources mounted more than once
1838 to the same server share the last value passed in
1839 for the retry flag is used */
1840 tcon->retry = volume_info->retry;
1841 tcon->nocase = volume_info->nocase;
1842 tcon->local_lease = volume_info->local_lease;
1843
1844 write_lock(&cifs_tcp_ses_lock);
1845 list_add(&tcon->tcon_list, &ses->tcon_list);
1846 write_unlock(&cifs_tcp_ses_lock);
1847
1848 return tcon;
1849
1850out_fail:
1851 tconInfoFree(tcon);
1852 return ERR_PTR(rc);
1853}
1854
1855
1da177e4 1856int
50c2f753
SF		 1857get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
1858 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 1859 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 1860{
1861 char *temp_unc;
1862 int rc = 0;
1863
1864 *pnum_referrals = 0;
366781c1 1865 *preferrals = NULL;
1da177e4
LT		 1866
1867 if (pSesInfo->ipc_tid == 0) {
1868 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 1869 strnlen(pSesInfo->serverName,
1870 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 1871 + 1 + 4 /* slash IPC$ */ + 2,
1872 GFP_KERNEL);
1873 if (temp_unc == NULL)
1874 return -ENOMEM;
1875 temp_unc[0] = '\\';
1876 temp_unc[1] = '\\';
1877 strcpy(temp_unc + 2, pSesInfo->serverName);
1878 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
1879 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 1880 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 1881 kfree(temp_unc);
1882 }
1883 if (rc == 0)
c2cf07d5 1884 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 1885 pnum_referrals, nls_codepage, remap);
366781c1
SF		 1886 /* BB map targetUNCs to dfs_info3 structures, here or
1887 in CIFSGetDFSRefer BB */
1da177e4
LT		 1888
1889 return rc;
1890}
1891
09e50d55
JL		 1892#ifdef CONFIG_DEBUG_LOCK_ALLOC
1893static struct lock_class_key cifs_key[2];
1894static struct lock_class_key cifs_slock_key[2];
1895
1896static inline void
1897cifs_reclassify_socket4(struct socket *sock)
1898{
1899 struct sock *sk = sock->sk;
1900 BUG_ON(sock_owned_by_user(sk));
1901 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
1902 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
1903}
1904
1905static inline void
1906cifs_reclassify_socket6(struct socket *sock)
1907{
1908 struct sock *sk = sock->sk;
1909 BUG_ON(sock_owned_by_user(sk));
1910 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
1911 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
1912}
1913#else
1914static inline void
1915cifs_reclassify_socket4(struct socket *sock)
1916{
1917}
1918
1919static inline void
1920cifs_reclassify_socket6(struct socket *sock)
1921{
1922}
1923#endif
1924
1da177e4 1925/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 1926static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 1927{
50c2f753 1928 unsigned int i, j;
1da177e4 1929
50c2f753 1930 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 1931 /* mask a nibble at a time and encode */
1932 target[j] = 'A' + (0x0F & (source[i] >> 4));
1933 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 1934 j += 2;
1da177e4
LT		 1935 }
1936
1937}
1938
1939
1940static int
bcf4b106 1941ipv4_connect(struct TCP_Server_Info *server)
1da177e4
LT		 1942{
1943 int rc = 0;
6a5fa236 1944 int val;
bcf4b106 1945 bool connected = false;
1da177e4 1946 __be16 orig_port = 0;
bcf4b106 1947 struct socket *socket = server->ssocket;
1da177e4 1948
bcf4b106 1949 if (socket == NULL) {
50c2f753 1950 rc = sock_create_kern(PF_INET, SOCK_STREAM,
bcf4b106 1951 IPPROTO_TCP, &socket);
1da177e4 1952 if (rc < 0) {
b6b38f70 1953 cERROR(1, "Error %d creating socket", rc);
1da177e4 1954 return rc;
1da177e4 1955 }
bcf4b106
JL		 1956
1957 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 1958 cFYI(1, "Socket created");
bcf4b106
JL		 1959 server->ssocket = socket;
1960 socket->sk->sk_allocation = GFP_NOFS;
1961 cifs_reclassify_socket4(socket);
1da177e4
LT		 1962 }
1963
bcf4b106
JL		 1964 /* user overrode default port */
1965 if (server->addr.sockAddr.sin_port) {
1966 rc = socket->ops->connect(socket, (struct sockaddr *)
1967 &server->addr.sockAddr,
1968 sizeof(struct sockaddr_in), 0);
1da177e4 1969 if (rc >= 0)
bcf4b106 1970 connected = true;
50c2f753 1971 }
1da177e4 1972
fb8c4b14 1973 if (!connected) {
50c2f753 1974 /* save original port so we can retry user specified port
1da177e4 1975 later if fall back ports fail this time */
bcf4b106 1976 orig_port = server->addr.sockAddr.sin_port;
1da177e4
LT		 1977
1978 /* do not retry on the same port we just failed on */
bcf4b106
JL		 1979 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
1980 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
1981 rc = socket->ops->connect(socket,
1982 (struct sockaddr *)
1983 &server->addr.sockAddr,
1984 sizeof(struct sockaddr_in), 0);
1da177e4 1985 if (rc >= 0)
bcf4b106 1986 connected = true;
1da177e4
LT		 1987 }
1988 }
1989 if (!connected) {
bcf4b106
JL		 1990 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
1991 rc = socket->ops->connect(socket, (struct sockaddr *)
1992 &server->addr.sockAddr,
6345a3a8 1993 sizeof(struct sockaddr_in), 0);
50c2f753 1994 if (rc >= 0)
bcf4b106 1995 connected = true;
1da177e4
LT		 1996 }
1997
1998 /* give up here - unless we want to retry on different
1999 protocol families some day */
2000 if (!connected) {
fb8c4b14 2001 if (orig_port)
bcf4b106 2002 server->addr.sockAddr.sin_port = orig_port;
b6b38f70 2003 cFYI(1, "Error %d connecting to server via ipv4", rc);
bcf4b106
JL		 2004 sock_release(socket);
2005 server->ssocket = NULL;
1da177e4
LT		 2006 return rc;
2007 }
bcf4b106
JL		 2008
2009
2010 /*
2011 * Eventually check for other socket options to change from
2012 * the default. sock_setsockopt not used because it expects
2013 * user space buffer
2014 */
2015 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2016 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2017
b387eaeb 2018 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2019 if (server->noautotune) {
2020 if (socket->sk->sk_sndbuf < (200 * 1024))
2021 socket->sk->sk_sndbuf = 200 * 1024;
2022 if (socket->sk->sk_rcvbuf < (140 * 1024))
2023 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2024 }
1da177e4 2025
6a5fa236
SF		 2026 if (server->tcp_nodelay) {
2027 val = 1;
2028 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2029 (char *)&val, sizeof(val));
2030 if (rc)
b6b38f70 2031 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2032 }
2033
b6b38f70 2034 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2035 socket->sk->sk_sndbuf,
b6b38f70 2036 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2037
1da177e4 2038 /* send RFC1001 sessinit */
bcf4b106 2039 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1da177e4 2040 /* some servers require RFC1001 sessinit before sending
50c2f753 2041 negprot - BB check reconnection in case where second
1da177e4 2042 sessinit is sent but no second negprot */
50c2f753
SF		 2043 struct rfc1002_session_packet *ses_init_buf;
2044 struct smb_hdr *smb_buf;
2045 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2046 GFP_KERNEL);
fb8c4b14 2047 if (ses_init_buf) {
1da177e4 2048 ses_init_buf->trailer.session_req.called_len = 32;
bcf4b106
JL		 2049 if (server->server_RFC1001_name &&
2050 server->server_RFC1001_name[0] != 0)
8ecaf67a
JL		 2051 rfc1002mangle(ses_init_buf->trailer.
2052 session_req.called_name,
bcf4b106 2053 server->server_RFC1001_name,
8ecaf67a 2054 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2055 else
8ecaf67a
JL		 2056 rfc1002mangle(ses_init_buf->trailer.
2057 session_req.called_name,
2058 DEFAULT_CIFS_CALLED_NAME,
2059 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 2060
1da177e4 2061 ses_init_buf->trailer.session_req.calling_len = 32;
bcf4b106 2062
1da177e4
LT		 2063 /* calling name ends in null (byte 16) from old smb
2064 convention. */
bcf4b106
JL		 2065 if (server->workstation_RFC1001_name &&
2066 server->workstation_RFC1001_name[0] != 0)
8ecaf67a
JL		 2067 rfc1002mangle(ses_init_buf->trailer.
2068 session_req.calling_name,
bcf4b106 2069 server->workstation_RFC1001_name,
8ecaf67a 2070 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2071 else
8ecaf67a
JL		 2072 rfc1002mangle(ses_init_buf->trailer.
2073 session_req.calling_name,
2074 "LINUX_CIFS_CLNT",
2075 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2076
1da177e4
LT		 2077 ses_init_buf->trailer.session_req.scope1 = 0;
2078 ses_init_buf->trailer.session_req.scope2 = 0;
2079 smb_buf = (struct smb_hdr *)ses_init_buf;
2080 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2081 smb_buf->smb_buf_length = 0x81000044;
0496e02d 2082 rc = smb_send(server, smb_buf, 0x44);
1da177e4 2083 kfree(ses_init_buf);
50c2f753 2084 msleep(1); /* RFC1001 layer in at least one server
083d3a2c
SF		 2085 requires very short break before negprot
2086 presumably because not expecting negprot
2087 to follow so fast. This is a simple
50c2f753 2088 solution that works without
083d3a2c
SF		 2089 complicating the code and causes no
2090 significant slowing down on mount
2091 for everyone else */
1da177e4 2092 }
50c2f753 2093 /* else the negprot may still work without this
1da177e4 2094 even though malloc failed */
50c2f753 2095
1da177e4 2096 }
50c2f753 2097
1da177e4
LT		 2098 return rc;
2099}
2100
2101static int
d5c5605c 2102ipv6_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2103{
2104 int rc = 0;
6a5fa236 2105 int val;
d5c5605c 2106 bool connected = false;
1da177e4 2107 __be16 orig_port = 0;
d5c5605c 2108 struct socket *socket = server->ssocket;
1da177e4 2109
d5c5605c 2110 if (socket == NULL) {
50c2f753 2111 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
d5c5605c 2112 IPPROTO_TCP, &socket);
1da177e4 2113 if (rc < 0) {
b6b38f70 2114 cERROR(1, "Error %d creating ipv6 socket", rc);
d5c5605c 2115 socket = NULL;
1da177e4 2116 return rc;
1da177e4 2117 }
1da177e4 2118
d5c5605c 2119 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2120 cFYI(1, "ipv6 Socket created");
d5c5605c
JL		 2121 server->ssocket = socket;
2122 socket->sk->sk_allocation = GFP_NOFS;
2123 cifs_reclassify_socket6(socket);
2124 }
1da177e4 2125
d5c5605c
JL		 2126 /* user overrode default port */
2127 if (server->addr.sockAddr6.sin6_port) {
2128 rc = socket->ops->connect(socket,
2129 (struct sockaddr *) &server->addr.sockAddr6,
6345a3a8 2130 sizeof(struct sockaddr_in6), 0);
1da177e4 2131 if (rc >= 0)
d5c5605c 2132 connected = true;
50c2f753 2133 }
1da177e4 2134
fb8c4b14 2135 if (!connected) {
50c2f753 2136 /* save original port so we can retry user specified port
1da177e4
LT		 2137 later if fall back ports fail this time */
2138
d5c5605c 2139 orig_port = server->addr.sockAddr6.sin6_port;
1da177e4 2140 /* do not retry on the same port we just failed on */
d5c5605c
JL		 2141 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2142 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2143 rc = socket->ops->connect(socket, (struct sockaddr *)
2144 &server->addr.sockAddr6,
6345a3a8 2145 sizeof(struct sockaddr_in6), 0);
1da177e4 2146 if (rc >= 0)
d5c5605c 2147 connected = true;
1da177e4
LT		 2148 }
2149 }
2150 if (!connected) {
d5c5605c
JL		 2151 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2152 rc = socket->ops->connect(socket, (struct sockaddr *)
2153 &server->addr.sockAddr6,
2154 sizeof(struct sockaddr_in6), 0);
50c2f753 2155 if (rc >= 0)
d5c5605c 2156 connected = true;
1da177e4
LT		 2157 }
2158
2159 /* give up here - unless we want to retry on different
2160 protocol families some day */
2161 if (!connected) {
fb8c4b14 2162 if (orig_port)
d5c5605c 2163 server->addr.sockAddr6.sin6_port = orig_port;
b6b38f70 2164 cFYI(1, "Error %d connecting to server via ipv6", rc);
d5c5605c
JL		 2165 sock_release(socket);
2166 server->ssocket = NULL;
1da177e4
LT		 2167 return rc;
2168 }
edf1ae40 2169
d5c5605c
JL		 2170 /*
2171 * Eventually check for other socket options to change from
2172 * the default. sock_setsockopt not used because it expects
2173 * user space buffer
2174 */
2175 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2176 socket->sk->sk_sndtimeo = 5 * HZ;
6a5fa236
SF		 2177
2178 if (server->tcp_nodelay) {
2179 val = 1;
2180 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2181 (char *)&val, sizeof(val));
2182 if (rc)
b6b38f70 2183 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2184 }
2185
d5c5605c 2186 server->ssocket = socket;
50c2f753 2187
1da177e4
LT		 2188 return rc;
2189}
2190
50c2f753
SF		 2191void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2192 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2193{
2194 /* if we are reconnecting then should we check to see if
2195 * any requested capabilities changed locally e.g. via
2196 * remount but we can not do much about it here
2197 * if they have (even if we could detect it by the following)
2198 * Perhaps we could add a backpointer to array of sb from tcon
2199 * or if we change to make all sb to same share the same
2200 * sb as NFS - then we only have one backpointer to sb.
2201 * What if we wanted to mount the server share twice once with
2202 * and once without posixacls or posix paths? */
2203 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2204
c18c842b
SF		 2205 if (vol_info && vol_info->no_linux_ext) {
2206 tcon->fsUnixInfo.Capability = 0;
2207 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2208 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2209 return;
2210 } else if (vol_info)
2211 tcon->unix_ext = 1; /* Unix Extensions supported */
2212
2213 if (tcon->unix_ext == 0) {
b6b38f70 2214 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2215 return;
2216 }
50c2f753 2217
fb8c4b14 2218 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2219 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2220
8af18971
SF		 2221 /* check for reconnect case in which we do not
2222 want to change the mount behavior if we can avoid it */
fb8c4b14 2223 if (vol_info == NULL) {
50c2f753 2224 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2225 originally at mount time */
2226 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2227 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2228 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2229 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2230 cERROR(1, "POSIXPATH support change");
8af18971 2231 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2232 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2233 cERROR(1, "possible reconnect error");
2234 cERROR(1, "server disabled POSIX path support");
11b6d645 2235 }
8af18971 2236 }
50c2f753 2237
8af18971 2238 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2239 if (vol_info && vol_info->no_psx_acl)
8af18971 2240 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2241 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2242 cFYI(1, "negotiated posix acl support");
fb8c4b14 2243 if (sb)
8af18971
SF		 2244 sb->s_flags |= MS_POSIXACL;
2245 }
2246
75865f8c 2247 if (vol_info && vol_info->posix_paths == 0)
8af18971 2248 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2249 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2250 cFYI(1, "negotiate posix pathnames");
75865f8c 2251 if (sb)
50c2f753 2252 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2253 CIFS_MOUNT_POSIX_PATHS;
2254 }
50c2f753 2255
984acfe1
SF		 2256 /* We might be setting the path sep back to a different
2257 form if we are reconnecting and the server switched its
50c2f753 2258 posix path capability for this share */
75865f8c 2259 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2260 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2261
2262 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2263 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2264 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2265 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2266 }
2267 }
50c2f753
SF		 2268
2269
b6b38f70 2270 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2271#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2272 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2273 cFYI(1, "FCNTL cap");
75865f8c 2274 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2275 cFYI(1, "EXTATTR cap");
75865f8c 2276 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2277 cFYI(1, "POSIX path cap");
75865f8c 2278 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2279 cFYI(1, "XATTR cap");
75865f8c 2280 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2281 cFYI(1, "POSIX ACL cap");
75865f8c 2282 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2283 cFYI(1, "very large read cap");
75865f8c 2284 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2285 cFYI(1, "very large write cap");
8af18971
SF		 2286#endif /* CIFS_DEBUG2 */
2287 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2288 if (vol_info == NULL) {
b6b38f70 2289 cFYI(1, "resetting capabilities failed");
442aa310 2290 } else
b6b38f70 2291 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2292 "with the server failed. Consider "
2293 "mounting with the Unix Extensions\n"
2294 "disabled, if problems are found, "
2295 "by specifying the nounix mount "
b6b38f70 2296 "option.");
5a44b319 2297
8af18971
SF		 2298 }
2299 }
2300}
2301
03a143c9
SF		 2302static void
2303convert_delimiter(char *path, char delim)
2304{
2305 int i;
c2d68ea6 2306 char old_delim;
03a143c9
SF		 2307
2308 if (path == NULL)
2309 return;
2310
582d21e5 2311 if (delim == '/')
c2d68ea6
SF		 2312 old_delim = '\\';
2313 else
2314 old_delim = '/';
2315
03a143c9 2316 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2317 if (path[i] == old_delim)
03a143c9
SF		 2318 path[i] = delim;
2319 }
2320}
2321
3b795210
SF		 2322static void setup_cifs_sb(struct smb_vol *pvolume_info,
2323 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2324{
3b795210 2325 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2326 cERROR(1, "rsize %d too large, using MaxBufSize",
2327 pvolume_info->rsize);
3b795210
SF		 2328 cifs_sb->rsize = CIFSMaxBufSize;
2329 } else if ((pvolume_info->rsize) &&
2330 (pvolume_info->rsize <= CIFSMaxBufSize))
2331 cifs_sb->rsize = pvolume_info->rsize;
2332 else /* default */
2333 cifs_sb->rsize = CIFSMaxBufSize;
2334
2335 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
b6b38f70
JP		 2336 cERROR(1, "wsize %d too large, using 4096 instead",
2337 pvolume_info->wsize);
3b795210
SF		 2338 cifs_sb->wsize = 4096;
2339 } else if (pvolume_info->wsize)
2340 cifs_sb->wsize = pvolume_info->wsize;
2341 else
2342 cifs_sb->wsize = min_t(const int,
2343 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2344 127*1024);
2345 /* old default of CIFSMaxBufSize was too small now
2346 that SMB Write2 can send multiple pages in kvec.
2347 RFC1001 does not describe what happens when frame
2348 bigger than 128K is sent so use that as max in
2349 conjunction with 52K kvec constraint on arch with 4K
2350 page size */
2351
2352 if (cifs_sb->rsize < 2048) {
2353 cifs_sb->rsize = 2048;
2354 /* Windows ME may prefer this */
b6b38f70 2355 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2356 }
2357 /* calculate prepath */
2358 cifs_sb->prepath = pvolume_info->prepath;
2359 if (cifs_sb->prepath) {
2360 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2361 /* we can not convert the / to \ in the path
2362 separators in the prefixpath yet because we do not
2363 know (until reset_cifs_unix_caps is called later)
2364 whether POSIX PATH CAP is available. We normalize
2365 the / to \ after reset_cifs_unix_caps is called */
2366 pvolume_info->prepath = NULL;
2367 } else
2368 cifs_sb->prepathlen = 0;
2369 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2370 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2371 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2372 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2373 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2374 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210
SF		 2375
2376 if (pvolume_info->noperm)
2377 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2378 if (pvolume_info->setuids)
2379 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2380 if (pvolume_info->server_ino)
2381 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2382 if (pvolume_info->remap)
2383 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2384 if (pvolume_info->no_xattr)
2385 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2386 if (pvolume_info->sfu_emul)
2387 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2388 if (pvolume_info->nobrl)
2389 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2390 if (pvolume_info->nostrictsync)
4717bed6 2391 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2392 if (pvolume_info->mand_lock)
2393 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2394 if (pvolume_info->cifs_acl)
2395 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2396 if (pvolume_info->override_uid)
2397 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2398 if (pvolume_info->override_gid)
2399 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2400 if (pvolume_info->dynperm)
2401 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2402 if (pvolume_info->direct_io) {
b6b38f70 2403 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2404 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2405 }
2406
2407 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2408 cERROR(1, "mount option dynperm ignored if cifsacl "
2409 "mount option supported");
b1c8d2b4
JL		 2410}
2411
e4cce94c
IM		 2412static int
2413is_path_accessible(int xid, struct cifsTconInfo *tcon,
2414 struct cifs_sb_info *cifs_sb, const char *full_path)
2415{
2416 int rc;
e4cce94c
IM		 2417 FILE_ALL_INFO *pfile_info;
2418
e4cce94c
IM		 2419 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2420 if (pfile_info == NULL)
2421 return -ENOMEM;
2422
2423 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2424 0 /* not legacy */, cifs_sb->local_nls,
2425 cifs_sb->mnt_cifs_flags &
2426 CIFS_MOUNT_MAP_SPECIAL_CHR);
2427 kfree(pfile_info);
2428 return rc;
2429}
2430
1bfe73c2
IM		 2431static void
2432cleanup_volume_info(struct smb_vol **pvolume_info)
2433{
2434 struct smb_vol *volume_info;
2435
ad6cca6d 2436 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2437 return;
2438
2439 volume_info = *pvolume_info;
2440 kzfree(volume_info->password);
2441 kfree(volume_info->UNC);
2442 kfree(volume_info->prepath);
2443 kfree(volume_info);
2444 *pvolume_info = NULL;
2445 return;
2446}
2447
2d6d589d 2448#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2449/* build_path_to_root returns full path to root when
2450 * we do not have an exiting connection (tcon) */
2451static char *
2452build_unc_path_to_root(const struct smb_vol *volume_info,
2453 const struct cifs_sb_info *cifs_sb)
2454{
2455 char *full_path;
2456
2457 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2458 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2459 if (full_path == NULL)
2460 return ERR_PTR(-ENOMEM);
2461
2462 strncpy(full_path, volume_info->UNC, unc_len);
2463 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2464 int i;
2465 for (i = 0; i < unc_len; i++) {
2466 if (full_path[i] == '\\')
2467 full_path[i] = '/';
2468 }
2469 }
2470
2471 if (cifs_sb->prepathlen)
2472 strncpy(full_path + unc_len, cifs_sb->prepath,
2473 cifs_sb->prepathlen);
2474
2475 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2476 return full_path;
2477}
2d6d589d 2478#endif
1bfe73c2 2479
1da177e4
LT		 2480int
2481cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
1bfe73c2 2482 char *mount_data_global, const char *devname)
1da177e4 2483{
a2934c7b 2484 int rc;
1da177e4 2485 int xid;
7586b765 2486 struct smb_vol *volume_info;
a2934c7b
JL		 2487 struct cifsSesInfo *pSesInfo;
2488 struct cifsTconInfo *tcon;
2489 struct TCP_Server_Info *srvTcp;
e4cce94c 2490 char *full_path;
2d6d589d
SF		 2491 char *mount_data = mount_data_global;
2492#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2493 struct dfs_info3_param *referrals = NULL;
2494 unsigned int num_referrals = 0;
5c2503a8 2495 int referral_walks_count = 0;
1bfe73c2 2496try_mount_again:
2d6d589d 2497#endif
a2934c7b
JL		 2498 rc = 0;
2499 tcon = NULL;
2500 pSesInfo = NULL;
2501 srvTcp = NULL;
1bfe73c2 2502 full_path = NULL;
1da177e4
LT		 2503
2504 xid = GetXid();
2505
7586b765
JL		 2506 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2507 if (!volume_info) {
2508 rc = -ENOMEM;
2509 goto out;
2510 }
50c2f753 2511
7586b765 2512 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
70fe7dc0
JL		 2513 rc = -EINVAL;
2514 goto out;
1da177e4
LT		 2515 }
2516
7586b765 2517 if (volume_info->nullauth) {
b6b38f70 2518 cFYI(1, "null user");
7586b765
JL		 2519 volume_info->username = "";
2520 } else if (volume_info->username) {
1da177e4 2521 /* BB fixme parse for domain name here */
b6b38f70 2522 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2523 } else {
bf820679 2524 cifserror("No username specified");
50c2f753
SF		 2525 /* In userspace mount helper we can get user name from alternate
2526 locations such as env variables and files on disk */
70fe7dc0
JL		 2527 rc = -EINVAL;
2528 goto out;
1da177e4
LT		 2529 }
2530
1da177e4 2531 /* this is needed for ASCII cp to Unicode converts */
7586b765 2532 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2533 /* load_nls_default cannot return null */
2534 volume_info->local_nls = load_nls_default();
1da177e4 2535 } else {
a5fc4ce0
JL		 2536 volume_info->local_nls = load_nls(volume_info->iocharset);
2537 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2538 cERROR(1, "CIFS mount error: iocharset %s not found",
2539 volume_info->iocharset);
70fe7dc0
JL		 2540 rc = -ELIBACC;
2541 goto out;
1da177e4
LT		 2542 }
2543 }
a5fc4ce0 2544 cifs_sb->local_nls = volume_info->local_nls;
1da177e4 2545
63c038c2 2546 /* get a reference to a tcp session */
7586b765 2547 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 2548 if (IS_ERR(srvTcp)) {
2549 rc = PTR_ERR(srvTcp);
2550 goto out;
1da177e4
LT		 2551 }
2552
36988c76
JL		 2553 /* get a reference to a SMB session */
2554 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2555 if (IS_ERR(pSesInfo)) {
2556 rc = PTR_ERR(pSesInfo);
2557 pSesInfo = NULL;
2558 goto mount_fail_check;
1da177e4 2559 }
50c2f753 2560
d00c28de
JL		 2561 setup_cifs_sb(volume_info, cifs_sb);
2562 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2563 sb->s_maxbytes = MAX_LFS_FILESIZE;
2564 else
2565 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 2566
8af18971 2567 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 2568 sb->s_time_gran = 100;
2569
d00c28de
JL		 2570 /* search for existing tcon to this server share */
2571 tcon = cifs_get_tcon(pSesInfo, volume_info);
2572 if (IS_ERR(tcon)) {
2573 rc = PTR_ERR(tcon);
2574 tcon = NULL;
1bfe73c2 2575 goto remote_path_check;
d00c28de 2576 }
1bfe73c2 2577
d82c2df5 2578 cifs_sb->tcon = tcon;
c18c842b 2579
d82c2df5
SF		 2580 /* do not care if following two calls succeed - informational */
2581 if (!tcon->ipc) {
2582 CIFSSMBQFSDeviceInfo(xid, tcon);
2583 CIFSSMBQFSAttributeInfo(xid, tcon);
2584 }
03a143c9 2585
d82c2df5
SF		 2586 /* tell server which Unix caps we support */
2587 if (tcon->ses->capabilities & CAP_UNIX)
2588 /* reset of caps checks mount to see if unix extensions
2589 disabled for just this mount */
7586b765 2590 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
d82c2df5
SF		 2591 else
2592 tcon->unix_ext = 0; /* server does not support them */
c18c842b 2593
d82c2df5
SF		 2594 /* convert forward to back slashes in prepath here if needed */
2595 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2596 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 2597
d82c2df5
SF		 2598 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2599 cifs_sb->rsize = 1024 * 127;
b6b38f70 2600 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 2601 }
d82c2df5
SF		 2602 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2603 cifs_sb->wsize = min(cifs_sb->wsize,
2604 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2605 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2606 cifs_sb->rsize = min(cifs_sb->rsize,
2607 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 2608
1bfe73c2
IM		 2609remote_path_check:
2610 /* check if a whole path (including prepath) is not remote */
2611 if (!rc && cifs_sb->prepathlen && tcon) {
e4cce94c
IM		 2612 /* build_path_to_root works only when we have a valid tcon */
2613 full_path = cifs_build_path_to_root(cifs_sb);
2614 if (full_path == NULL) {
2615 rc = -ENOMEM;
2616 goto mount_fail_check;
2617 }
2618 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
1bfe73c2 2619 if (rc != -EREMOTE) {
e4cce94c
IM		 2620 kfree(full_path);
2621 goto mount_fail_check;
2622 }
2623 kfree(full_path);
2624 }
2625
1bfe73c2
IM		 2626 /* get referral if needed */
2627 if (rc == -EREMOTE) {
d036f50f 2628#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 2629 if (referral_walks_count > MAX_NESTED_LINKS) {
2630 /*
2631 * BB: when we implement proper loop detection,
2632 * we will remove this check. But now we need it
2633 * to prevent an indefinite loop if 'DFS tree' is
2634 * misconfigured (i.e. has loops).
2635 */
2636 rc = -ELOOP;
2637 goto mount_fail_check;
2638 }
1bfe73c2
IM		 2639 /* convert forward to back slashes in prepath here if needed */
2640 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2641 convert_delimiter(cifs_sb->prepath,
2642 CIFS_DIR_SEP(cifs_sb));
2643 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2644 if (IS_ERR(full_path)) {
2645 rc = PTR_ERR(full_path);
2646 goto mount_fail_check;
2647 }
2648
b6b38f70 2649 cFYI(1, "Getting referral for: %s", full_path);
1bfe73c2
IM		 2650 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2651 cifs_sb->local_nls, &num_referrals, &referrals,
2652 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2653 if (!rc && num_referrals > 0) {
2654 char *fake_devname = NULL;
2655
2656 if (mount_data != mount_data_global)
2657 kfree(mount_data);
7b91e266 2658
1bfe73c2
IM		 2659 mount_data = cifs_compose_mount_options(
2660 cifs_sb->mountdata, full_path + 1,
2661 referrals, &fake_devname);
7b91e266 2662
1bfe73c2 2663 free_dfs_info_array(referrals, num_referrals);
7b91e266
JL		 2664 kfree(fake_devname);
2665 kfree(full_path);
2666
2667 if (IS_ERR(mount_data)) {
2668 rc = PTR_ERR(mount_data);
2669 mount_data = NULL;
2670 goto mount_fail_check;
2671 }
1bfe73c2
IM		 2672
2673 if (tcon)
2674 cifs_put_tcon(tcon);
2675 else if (pSesInfo)
2676 cifs_put_smb_ses(pSesInfo);
2677
2678 cleanup_volume_info(&volume_info);
5c2503a8 2679 referral_walks_count++;
a2934c7b 2680 FreeXid(xid);
1bfe73c2
IM		 2681 goto try_mount_again;
2682 }
d036f50f
SF		 2683#else /* No DFS support, return error on mount */
2684 rc = -EOPNOTSUPP;
2685#endif
1bfe73c2
IM		 2686 }
2687
2688mount_fail_check:
2689 /* on error free sesinfo and tcon struct if needed */
2690 if (rc) {
2691 if (mount_data != mount_data_global)
2692 kfree(mount_data);
2693 /* If find_unc succeeded then rc == 0 so we can not end */
2694 /* up accidently freeing someone elses tcon struct */
2695 if (tcon)
2696 cifs_put_tcon(tcon);
2697 else if (pSesInfo)
2698 cifs_put_smb_ses(pSesInfo);
2699 else
2700 cifs_put_tcp_session(srvTcp);
2701 goto out;
2702 }
2703
7586b765 2704 /* volume_info->password is freed above when existing session found
1da177e4
LT		 2705 (in which case it is not needed anymore) but when new sesion is created
2706 the password ptr is put in the new session structure (in which case the
2707 password will be freed at unmount time) */
70fe7dc0
JL		 2708out:
2709 /* zero out password before freeing */
1bfe73c2 2710 cleanup_volume_info(&volume_info);
1da177e4
LT		 2711 FreeXid(xid);
2712 return rc;
2713}
2714
1da177e4
LT		 2715int
2716CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2717 const char *tree, struct cifsTconInfo *tcon,
2718 const struct nls_table *nls_codepage)
2719{
2720 struct smb_hdr *smb_buffer;
2721 struct smb_hdr *smb_buffer_response;
2722 TCONX_REQ *pSMB;
2723 TCONX_RSP *pSMBr;
2724 unsigned char *bcc_ptr;
2725 int rc = 0;
cc20c031 2726 int length, bytes_left;
1da177e4
LT		 2727 __u16 count;
2728
2729 if (ses == NULL)
2730 return -EIO;
2731
2732 smb_buffer = cifs_buf_get();
ca43e3be 2733 if (smb_buffer == NULL)
1da177e4 2734 return -ENOMEM;
ca43e3be 2735
1da177e4
LT		 2736 smb_buffer_response = smb_buffer;
2737
2738 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2739 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 2740
2741 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 2742 smb_buffer->Uid = ses->Suid;
2743 pSMB = (TCONX_REQ *) smb_buffer;
2744 pSMBr = (TCONX_RSP *) smb_buffer_response;
2745
2746 pSMB->AndXCommand = 0xFF;
2747 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 2748 bcc_ptr = &pSMB->Password[0];
fb8c4b14 2749 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 2750 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 2751 *bcc_ptr = 0; /* password is null byte */
eeac8047 2752 bcc_ptr++; /* skip password */
7c7b25bc 2753 /* already aligned so no need to do it below */
eeac8047 2754 } else {
7c7b25bc 2755 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
eeac8047
SF		 2756 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2757 specified as required (when that support is added to
2758 the vfs in the future) as only NTLM or the much
7c7b25bc 2759 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 2760 by Samba (not sure whether other servers allow
2761 NTLMv2 password here) */
7c7b25bc 2762#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 2763 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0
JL		 2764 (ses->server->secType == LANMAN))
2765 calc_lanman_hash(tcon->password, ses->server->cryptKey,
4e53a3fb
JL		 2766 ses->server->secMode &
2767 SECMODE_PW_ENCRYPT ? true : false,
2768 bcc_ptr);
7c7b25bc
SF		 2769 else
2770#endif /* CIFS_WEAK_PW_HASH */
00e485b0 2771 SMBNTencrypt(tcon->password, ses->server->cryptKey,
eeac8047
SF		 2772 bcc_ptr);
2773
7c7b25bc 2774 bcc_ptr += CIFS_SESS_KEY_SIZE;
fb8c4b14 2775 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 2776 /* must align unicode strings */
2777 *bcc_ptr = 0; /* null byte password */
2778 bcc_ptr++;
2779 }
eeac8047 2780 }
1da177e4 2781
50c2f753 2782 if (ses->server->secMode &
a878fb22 2783 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 2784 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
2785
2786 if (ses->capabilities & CAP_STATUS32) {
2787 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
2788 }
2789 if (ses->capabilities & CAP_DFS) {
2790 smb_buffer->Flags2 |= SMBFLG2_DFS;
2791 }
2792 if (ses->capabilities & CAP_UNICODE) {
2793 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
2794 length =
50c2f753
SF		 2795 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
2796 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 2797 (/* server len*/ + 256 /* share len */), nls_codepage);
2798 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 2799 bcc_ptr += 2; /* skip trailing null */
2800 } else { /* ASCII */
1da177e4
LT		 2801 strcpy(bcc_ptr, tree);
2802 bcc_ptr += strlen(tree) + 1;
2803 }
2804 strcpy(bcc_ptr, "?????");
2805 bcc_ptr += strlen("?????");
2806 bcc_ptr += 1;
2807 count = bcc_ptr - &pSMB->Password[0];
2808 pSMB->hdr.smb_buf_length += count;
2809 pSMB->ByteCount = cpu_to_le16(count);
2810
133672ef
SF		 2811 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
2812 CIFS_STD_OP);
1da177e4 2813
1da177e4
LT		 2814 /* above now done in SendReceive */
2815 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 2816 bool is_unicode;
2817
1da177e4 2818 tcon->tidStatus = CifsGood;
3b795210 2819 tcon->need_reconnect = false;
1da177e4
LT		 2820 tcon->tid = smb_buffer_response->Tid;
2821 bcc_ptr = pByteArea(smb_buffer_response);
cc20c031
JL		 2822 bytes_left = BCC(smb_buffer_response);
2823 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 2824 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
2825 is_unicode = true;
2826 else
2827 is_unicode = false;
2828
cc20c031 2829
50c2f753 2830 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 2831 if (length == 3) {
2832 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
2833 (bcc_ptr[2] == 'C')) {
b6b38f70 2834 cFYI(1, "IPC connection");
7f8ed420
SF		 2835 tcon->ipc = 1;
2836 }
2837 } else if (length == 2) {
2838 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
2839 /* the most common case */
b6b38f70 2840 cFYI(1, "disk share connection");
7f8ed420
SF		 2841 }
2842 }
50c2f753 2843 bcc_ptr += length + 1;
cc20c031 2844 bytes_left -= (length + 1);
1da177e4 2845 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 2846
2847 /* mostly informational -- no need to fail on error here */
90a98b2f 2848 kfree(tcon->nativeFileSystem);
d185cda7 2849 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 2850 bytes_left, is_unicode,
cc20c031
JL		 2851 nls_codepage);
2852
b6b38f70 2853 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 2854
fb8c4b14 2855 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 2856 (smb_buffer_response->WordCount == 7))
2857 /* field is in same location */
3979877e
SF		 2858 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
2859 else
2860 tcon->Flags = 0;
b6b38f70 2861 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 2862 } else if ((rc == 0) && tcon == NULL) {
50c2f753 2863 /* all we need to save for IPC$ connection */
1da177e4
LT		 2864 ses->ipc_tid = smb_buffer_response->Tid;
2865 }
2866
a8a11d39 2867 cifs_buf_release(smb_buffer);
1da177e4
LT		 2868 return rc;
2869}
2870
2871int
2872cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
2873{
2874 int rc = 0;
50c2f753 2875 char *tmp;
1da177e4 2876
f1987b44
JL		 2877 if (cifs_sb->tcon)
2878 cifs_put_tcon(cifs_sb->tcon);
50c2f753 2879
1da177e4 2880 cifs_sb->tcon = NULL;
2fe87f02
SF		 2881 tmp = cifs_sb->prepath;
2882 cifs_sb->prepathlen = 0;
2883 cifs_sb->prepath = NULL;
2884 kfree(tmp);
1da177e4 2885
88e7d705 2886 return rc;
50c2f753 2887}
1da177e4 2888
198b5682 2889int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 2890{
2891 int rc = 0;
198b5682 2892 struct TCP_Server_Info *server = ses->server;
1da177e4 2893
198b5682
JL		 2894 /* only send once per connect */
2895 if (server->maxBuf != 0)
2896 return 0;
2897
2898 rc = CIFSSMBNegotiate(xid, ses);
2899 if (rc == -EAGAIN) {
2900 /* retry only once on 1st time connection */
2901 rc = CIFSSMBNegotiate(xid, ses);
2902 if (rc == -EAGAIN)
2903 rc = -EHOSTDOWN;
1da177e4 2904 }
198b5682
JL		 2905 if (rc == 0) {
2906 spin_lock(&GlobalMid_Lock);
2907 if (server->tcpStatus != CifsExiting)
2908 server->tcpStatus = CifsGood;
2909 else
2910 rc = -EHOSTDOWN;
2911 spin_unlock(&GlobalMid_Lock);
26b994fa 2912
198b5682
JL		 2913 }
2914
2915 return rc;
2916}
2917
2918
2919int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
2920 struct nls_table *nls_info)
2921{
2922 int rc = 0;
2923 struct TCP_Server_Info *server = ses->server;
26b994fa 2924
198b5682
JL		 2925 ses->flags = 0;
2926 ses->capabilities = server->capabilities;
26b994fa 2927 if (linuxExtEnabled == 0)
198b5682 2928 ses->capabilities &= (~CAP_UNIX);
20418acd 2929
b6b38f70
JP		 2930 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
2931 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 2932
198b5682 2933 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 2934 if (rc) {
b6b38f70 2935 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 2936 } else {
b6b38f70 2937 cFYI(1, "CIFS Session Established successfully");
20418acd 2938 spin_lock(&GlobalMid_Lock);
198b5682
JL		 2939 ses->status = CifsGood;
2940 ses->need_reconnect = false;
20418acd 2941 spin_unlock(&GlobalMid_Lock);
1da177e4 2942 }
26b994fa 2943
1da177e4
LT		 2944 return rc;
2945}
2946
A mirror of Linus' kernel repository