]> git.ipfire.org Git - thirdparty/linux.git/blame - fs/cifs/connect.c
projects / thirdparty / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
NTLM auth and sign - Use appropriate server challenge
[thirdparty/linux.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
488f1d2d 50#include "fscache.h"
1da177e4
LT		 51
52#define CIFS_PORT 445
53#define RFC1001_PORT 139
54
1da177e4
LT		 55extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
56 unsigned char *p24);
57
58extern mempool_t *cifs_req_poolp;
59
60struct smb_vol {
61 char *username;
62 char *password;
63 char *domainname;
64 char *UNC;
65 char *UNCip;
1da177e4
LT		 66 char *iocharset; /* local code page for mapping to and from Unicode */
67 char source_rfc1001_name[16]; /* netbios name of client */
a10faeb2 68 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
3e4b3e1f 69 uid_t cred_uid;
1da177e4
LT		 70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
189acaae 74 unsigned secFlg;
4b18f2a9
SF		 75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
d0a9c078 80 bool dynperm:1;
4b18f2a9
SF		 81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
95b1cb90
SF		 87 bool remap:1; /* set to remap seven reserved chars in filenames */
88 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 89 bool no_linux_ext:1;
90 bool sfu_emul:1;
95b1cb90
SF		 91 bool nullauth:1; /* attempt to authenticate with null user */
92 bool nocase:1; /* request case insensitive filenames */
93 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 94 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 95 bool seal:1; /* request transport encryption on share */
84210e91
SF		 96 bool nodfs:1; /* Do not request DFS, even if available */
97 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 98 bool noblocksnd:1;
99 bool noautotune:1;
be652445 100 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
fa1df75d 101 bool fsc:1; /* enable fscache */
736a3320 102 bool mfsymlinks:1; /* use Minshall+French Symlinks */
0eb8a132 103 bool multiuser:1;
1da177e4
LT		 104 unsigned int rsize;
105 unsigned int wsize;
6a5fa236 106 bool sockopt_tcp_nodelay:1;
1da177e4 107 unsigned short int port;
fb8c4b14 108 char *prepath;
3eb9a889 109 struct sockaddr_storage srcaddr; /* allow binding to a local IP */
a5fc4ce0 110 struct nls_table *local_nls;
1da177e4
LT		 111};
112
2de970ff 113/* FIXME: should these be tunable? */
9d002df4 114#define TLINK_ERROR_EXPIRE (1 * HZ)
2de970ff 115#define TLINK_IDLE_EXPIRE (600 * HZ)
9d002df4 116
bcf4b106 117static int ipv4_connect(struct TCP_Server_Info *server);
d5c5605c 118static int ipv6_connect(struct TCP_Server_Info *server);
2de970ff 119static void cifs_prune_tlinks(struct work_struct *work);
1da177e4 120
d5c5605c
JL		 121/*
122 * cifs tcp session reconnection
123 *
124 * mark tcp session as reconnecting so temporarily locked
125 * mark all smb sessions as reconnecting for tcp session
126 * reconnect tcp session
127 * wake up waiters on reconnection? - (not needed currently)
128 */
2cd646a2 129static int
1da177e4
LT		 130cifs_reconnect(struct TCP_Server_Info *server)
131{
132 int rc = 0;
f1987b44 133 struct list_head *tmp, *tmp2;
1da177e4
LT		 134 struct cifsSesInfo *ses;
135 struct cifsTconInfo *tcon;
fb8c4b14 136 struct mid_q_entry *mid_entry;
50c2f753 137
1da177e4 138 spin_lock(&GlobalMid_Lock);
469ee614 139 if (server->tcpStatus == CifsExiting) {
fb8c4b14 140 /* the demux thread will exit normally
1da177e4
LT		 141 next time through the loop */
142 spin_unlock(&GlobalMid_Lock);
143 return rc;
144 } else
145 server->tcpStatus = CifsNeedReconnect;
146 spin_unlock(&GlobalMid_Lock);
147 server->maxBuf = 0;
148
b6b38f70 149 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 150
151 /* before reconnecting the tcp session, mark the smb session (uid)
152 and the tid bad so they are not used until reconnected */
3f9bcca7 153 spin_lock(&cifs_tcp_ses_lock);
14fbf50d
JL		 154 list_for_each(tmp, &server->smb_ses_list) {
155 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
156 ses->need_reconnect = true;
157 ses->ipc_tid = 0;
f1987b44
JL		 158 list_for_each(tmp2, &ses->tcon_list) {
159 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 160 tcon->need_reconnect = true;
1da177e4 161 }
1da177e4 162 }
3f9bcca7 163 spin_unlock(&cifs_tcp_ses_lock);
1da177e4 164 /* do not want to be sending data on a socket we are freeing */
72ca545b 165 mutex_lock(&server->srv_mutex);
fb8c4b14 166 if (server->ssocket) {
b6b38f70
JP		 167 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
168 server->ssocket->flags);
91cf45f0 169 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 170 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 171 server->ssocket->state,
b6b38f70 172 server->ssocket->flags);
1da177e4
LT		 173 sock_release(server->ssocket);
174 server->ssocket = NULL;
175 }
5d0d2882
SP		 176 server->sequence_number = 0;
177 server->session_estab = false;
21e73393
SP		 178 kfree(server->session_key.response);
179 server->session_key.response = NULL;
180 server->session_key.len = 0;
1da177e4
LT		 181
182 spin_lock(&GlobalMid_Lock);
183 list_for_each(tmp, &server->pending_mid_q) {
184 mid_entry = list_entry(tmp, struct
185 mid_q_entry,
186 qhead);
ad8b15f0 187 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
09d1db5c
SF		 188 /* Mark other intransit requests as needing
189 retry so we do not immediately mark the
190 session bad again (ie after we reconnect
191 below) as they timeout too */
ad8b15f0 192 mid_entry->midState = MID_RETRY_NEEDED;
1da177e4
LT		 193 }
194 }
195 spin_unlock(&GlobalMid_Lock);
72ca545b 196 mutex_unlock(&server->srv_mutex);
1da177e4 197
469ee614
JL		 198 while ((server->tcpStatus != CifsExiting) &&
199 (server->tcpStatus != CifsGood)) {
6c3d8909 200 try_to_freeze();
bcf4b106 201 if (server->addr.sockAddr6.sin6_family == AF_INET6)
d5c5605c 202 rc = ipv6_connect(server);
bcf4b106
JL		 203 else
204 rc = ipv4_connect(server);
fb8c4b14 205 if (rc) {
b6b38f70 206 cFYI(1, "reconnect error %d", rc);
0cb766ae 207 msleep(3000);
1da177e4
LT		 208 } else {
209 atomic_inc(&tcpSesReconnectCount);
210 spin_lock(&GlobalMid_Lock);
469ee614 211 if (server->tcpStatus != CifsExiting)
1da177e4 212 server->tcpStatus = CifsGood;
fb8c4b14 213 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 214 /* atomic_set(&server->inFlight,0);*/
215 wake_up(&server->response_q);
216 }
217 }
218 return rc;
219}
220
fb8c4b14 221/*
e4eb295d
SF		 222 return codes:
223 0 not a transact2, or all data present
224 >0 transact2 with that much data missing
225 -EINVAL = invalid transact2
226
227 */
fb8c4b14 228static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 229{
fb8c4b14
SF		 230 struct smb_t2_rsp *pSMBt;
231 int total_data_size;
e4eb295d
SF		 232 int data_in_this_rsp;
233 int remaining;
234
fb8c4b14 235 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 236 return 0;
237
fb8c4b14
SF		 238 /* check for plausible wct, bcc and t2 data and parm sizes */
239 /* check for parm and data offset going beyond end of smb */
240 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 241 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 242 return -EINVAL;
243 }
244
245 pSMBt = (struct smb_t2_rsp *)pSMB;
246
247 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
248 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
249
250 remaining = total_data_size - data_in_this_rsp;
251
fb8c4b14 252 if (remaining == 0)
e4eb295d 253 return 0;
fb8c4b14 254 else if (remaining < 0) {
b6b38f70
JP		 255 cFYI(1, "total data %d smaller than data in frame %d",
256 total_data_size, data_in_this_rsp);
e4eb295d
SF		 257 return -EINVAL;
258 } else {
b6b38f70
JP		 259 cFYI(1, "missing %d bytes from transact2, check next response",
260 remaining);
fb8c4b14 261 if (total_data_size > maxBufSize) {
b6b38f70
JP		 262 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
263 total_data_size, maxBufSize);
fb8c4b14 264 return -EINVAL;
e4eb295d
SF		 265 }
266 return remaining;
267 }
268}
269
fb8c4b14 270static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 271{
272 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
273 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
274 int total_data_size;
275 int total_in_buf;
276 int remaining;
277 int total_in_buf2;
fb8c4b14
SF		 278 char *data_area_of_target;
279 char *data_area_of_buf2;
e4eb295d
SF		 280 __u16 byte_count;
281
282 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
283
fb8c4b14 284 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
b6b38f70 285 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d
SF		 286 }
287
288 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
289
290 remaining = total_data_size - total_in_buf;
50c2f753 291
fb8c4b14 292 if (remaining < 0)
e4eb295d
SF		 293 return -EINVAL;
294
fb8c4b14 295 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 296 return 0;
50c2f753 297
e4eb295d 298 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
fb8c4b14 299 if (remaining < total_in_buf2) {
b6b38f70 300 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 301 }
302
303 /* find end of first SMB data area */
fb8c4b14 304 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
e4eb295d
SF		 305 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
306 /* validate target area */
307
308 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
fb8c4b14 309 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 310
311 data_area_of_target += total_in_buf;
312
313 /* copy second buffer into end of first buffer */
fb8c4b14 314 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
e4eb295d
SF		 315 total_in_buf += total_in_buf2;
316 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
317 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
318 byte_count += total_in_buf2;
319 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
320
70ca734a 321 byte_count = pTargetSMB->smb_buf_length;
e4eb295d
SF		 322 byte_count += total_in_buf2;
323
324 /* BB also add check that we are not beyond maximum buffer size */
50c2f753 325
70ca734a 326 pTargetSMB->smb_buf_length = byte_count;
e4eb295d 327
fb8c4b14 328 if (remaining == total_in_buf2) {
b6b38f70 329 cFYI(1, "found the last secondary response");
e4eb295d
SF		 330 return 0; /* we are done */
331 } else /* more responses to go */
332 return 1;
333
334}
335
1da177e4
LT		 336static int
337cifs_demultiplex_thread(struct TCP_Server_Info *server)
338{
339 int length;
340 unsigned int pdu_length, total_read;
341 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 342 struct smb_hdr *bigbuf = NULL;
343 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 344 struct msghdr smb_msg;
345 struct kvec iov;
346 struct socket *csocket = server->ssocket;
347 struct list_head *tmp;
348 struct cifsSesInfo *ses;
349 struct task_struct *task_to_wake = NULL;
350 struct mid_q_entry *mid_entry;
70ca734a 351 char temp;
4b18f2a9
SF		 352 bool isLargeBuf = false;
353 bool isMultiRsp;
e4eb295d 354 int reconnect;
1da177e4 355
1da177e4 356 current->flags |= PF_MEMALLOC;
b6b38f70 357 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 358
359 length = atomic_inc_return(&tcpSesAllocCount);
360 if (length > 1)
26f57364
SF		 361 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
362 GFP_KERNEL);
1da177e4 363
83144186 364 set_freezable();
469ee614 365 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 366 if (try_to_freeze())
367 continue;
b8643e1b
SF		 368 if (bigbuf == NULL) {
369 bigbuf = cifs_buf_get();
0fd1ffe0 370 if (!bigbuf) {
b6b38f70 371 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 372 msleep(3000);
373 /* retry will check if exiting */
374 continue;
375 }
0fd1ffe0
PM		 376 } else if (isLargeBuf) {
377 /* we are reusing a dirty large buf, clear its start */
26f57364 378 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 379 }
b8643e1b
SF		 380
381 if (smallbuf == NULL) {
382 smallbuf = cifs_small_buf_get();
0fd1ffe0 383 if (!smallbuf) {
b6b38f70 384 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 385 msleep(1000);
386 /* retry will check if exiting */
387 continue;
388 }
389 /* beginning of smb buffer is cleared in our buf_get */
390 } else /* if existing small buf clear beginning */
26f57364 391 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 392
4b18f2a9
SF		 393 isLargeBuf = false;
394 isMultiRsp = false;
b8643e1b 395 smb_buffer = smallbuf;
1da177e4
LT		 396 iov.iov_base = smb_buffer;
397 iov.iov_len = 4;
398 smb_msg.msg_control = NULL;
399 smb_msg.msg_controllen = 0;
f01d5e14
SF		 400 pdu_length = 4; /* enough to get RFC1001 header */
401incomplete_rcv:
1da177e4
LT		 402 length =
403 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 404 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 405
469ee614 406 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 407 break;
408 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 409 cFYI(1, "Reconnect after server stopped responding");
1da177e4 410 cifs_reconnect(server);
b6b38f70 411 cFYI(1, "call to reconnect done");
1da177e4
LT		 412 csocket = server->ssocket;
413 continue;
522bbe65
JL		 414 } else if (length == -ERESTARTSYS ||
415 length == -EAGAIN ||
416 length == -EINTR) {
b8643e1b 417 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 418 allowing socket to clear and app threads to set
419 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 420 if (pdu_length < 4) {
421 iov.iov_base = (4 - pdu_length) +
422 (char *)smb_buffer;
423 iov.iov_len = pdu_length;
424 smb_msg.msg_control = NULL;
425 smb_msg.msg_controllen = 0;
c18c732e 426 goto incomplete_rcv;
c527c8a7 427 } else
c18c732e 428 continue;
1da177e4 429 } else if (length <= 0) {
b6b38f70
JP		 430 cFYI(1, "Reconnect after unexpected peek error %d",
431 length);
1da177e4
LT		 432 cifs_reconnect(server);
433 csocket = server->ssocket;
434 wake_up(&server->response_q);
435 continue;
2a974680 436 } else if (length < pdu_length) {
b6b38f70
JP		 437 cFYI(1, "requested %d bytes but only got %d bytes",
438 pdu_length, length);
f01d5e14 439 pdu_length -= length;
f01d5e14
SF		 440 msleep(1);
441 goto incomplete_rcv;
46810cbf 442 }
1da177e4 443
70ca734a
SF		 444 /* The right amount was read from socket - 4 bytes */
445 /* so we can now interpret the length field */
46810cbf 446
70ca734a
SF		 447 /* the first byte big endian of the length field,
448 is actually not part of the length but the type
449 with the most common, zero, as regular data */
450 temp = *((char *) smb_buffer);
46810cbf 451
fb8c4b14 452 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 453 but we convert it here so it is always manipulated
454 as host byte order */
5ca33c6a 455 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
70ca734a
SF		 456 smb_buffer->smb_buf_length = pdu_length;
457
b6b38f70 458 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 459
70ca734a 460 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 461 continue;
70ca734a 462 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 463 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 464 continue;
70ca734a 465 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 466 /* we get this from Windows 98 instead of
46810cbf 467 an error on SMB negprot response */
b6b38f70
JP		 468 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
469 pdu_length);
7332f2a6
JL		 470 /* give server a second to clean up */
471 msleep(1000);
472 /* always try 445 first on reconnect since we get NACK
473 * on some if we ever connected to port 139 (the NACK
474 * is since we do not begin with RFC1001 session
475 * initialize frame)
476 */
32670396
JL		 477 cifs_set_port((struct sockaddr *)
478 &server->addr.sockAddr, CIFS_PORT);
7332f2a6
JL		 479 cifs_reconnect(server);
480 csocket = server->ssocket;
481 wake_up(&server->response_q);
482 continue;
70ca734a 483 } else if (temp != (char) 0) {
b6b38f70 484 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 485 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
486 length);
46810cbf
SF		 487 cifs_reconnect(server);
488 csocket = server->ssocket;
489 continue;
e4eb295d
SF		 490 }
491
492 /* else we have an SMB response */
fb8c4b14 493 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 494 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 495 cERROR(1, "Invalid size SMB length %d pdu_length %d",
496 length, pdu_length+4);
e4eb295d
SF		 497 cifs_reconnect(server);
498 csocket = server->ssocket;
499 wake_up(&server->response_q);
500 continue;
fb8c4b14 501 }
e4eb295d
SF		 502
503 /* else length ok */
504 reconnect = 0;
505
fb8c4b14 506 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 507 isLargeBuf = true;
e4eb295d
SF		 508 memcpy(bigbuf, smallbuf, 4);
509 smb_buffer = bigbuf;
510 }
511 length = 0;
512 iov.iov_base = 4 + (char *)smb_buffer;
513 iov.iov_len = pdu_length;
fb8c4b14 514 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 515 total_read += length) {
516 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
517 pdu_length - total_read, 0);
522bbe65 518 if (server->tcpStatus == CifsExiting) {
e4eb295d
SF		 519 /* then will exit */
520 reconnect = 2;
521 break;
522 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 523 cifs_reconnect(server);
524 csocket = server->ssocket;
fb8c4b14 525 /* Reconnect wakes up rspns q */
e4eb295d
SF		 526 /* Now we will reread sock */
527 reconnect = 1;
528 break;
522bbe65
JL		 529 } else if (length == -ERESTARTSYS ||
530 length == -EAGAIN ||
531 length == -EINTR) {
e4eb295d 532 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 533 allowing socket to clear and app
e4eb295d
SF		 534 threads to set tcpStatus
535 CifsNeedReconnect if server hung*/
c18c732e 536 length = 0;
46810cbf 537 continue;
e4eb295d 538 } else if (length <= 0) {
b6b38f70
JP		 539 cERROR(1, "Received no data, expecting %d",
540 pdu_length - total_read);
e4eb295d
SF		 541 cifs_reconnect(server);
542 csocket = server->ssocket;
543 reconnect = 1;
544 break;
46810cbf 545 }
e4eb295d 546 }
fb8c4b14 547 if (reconnect == 2)
e4eb295d 548 break;
fb8c4b14 549 else if (reconnect == 1)
e4eb295d 550 continue;
1da177e4 551
e4eb295d 552 length += 4; /* account for rfc1002 hdr */
50c2f753 553
09d1db5c 554
e4eb295d 555 dump_smb(smb_buffer, length);
184ed211 556 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
b387eaeb 557 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
e4eb295d
SF		 558 continue;
559 }
1da177e4 560
e4eb295d
SF		 561
562 task_to_wake = NULL;
563 spin_lock(&GlobalMid_Lock);
564 list_for_each(tmp, &server->pending_mid_q) {
565 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
566
50c2f753 567 if ((mid_entry->mid == smb_buffer->Mid) &&
e4eb295d
SF		 568 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
569 (mid_entry->command == smb_buffer->Command)) {
fb8c4b14 570 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
e4eb295d 571 /* We have a multipart transact2 resp */
4b18f2a9 572 isMultiRsp = true;
fb8c4b14 573 if (mid_entry->resp_buf) {
e4eb295d 574 /* merge response - fix up 1st*/
50c2f753 575 if (coalesce_t2(smb_buffer,
e4eb295d 576 mid_entry->resp_buf)) {
4b18f2a9
SF		 577 mid_entry->multiRsp =
578 true;
e4eb295d
SF		 579 break;
580 } else {
581 /* all parts received */
4b18f2a9
SF		 582 mid_entry->multiEnd =
583 true;
50c2f753 584 goto multi_t2_fnd;
e4eb295d
SF		 585 }
586 } else {
fb8c4b14 587 if (!isLargeBuf) {
b6b38f70 588 cERROR(1, "1st trans2 resp needs bigbuf");
e4eb295d 589 /* BB maybe we can fix this up, switch
50c2f753 590 to already allocated large buffer? */
e4eb295d 591 } else {
cd63499c 592 /* Have first buffer */
e4eb295d
SF		 593 mid_entry->resp_buf =
594 smb_buffer;
4b18f2a9
SF		 595 mid_entry->largeBuf =
596 true;
e4eb295d
SF		 597 bigbuf = NULL;
598 }
599 }
600 break;
50c2f753 601 }
e4eb295d 602 mid_entry->resp_buf = smb_buffer;
4b18f2a9 603 mid_entry->largeBuf = isLargeBuf;
e4eb295d
SF		 604multi_t2_fnd:
605 task_to_wake = mid_entry->tsk;
606 mid_entry->midState = MID_RESPONSE_RECEIVED;
1047abc1
SF		 607#ifdef CONFIG_CIFS_STATS2
608 mid_entry->when_received = jiffies;
609#endif
3a5ff61c
SF		 610 /* so we do not time out requests to server
611 which is still responding (since server could
612 be busy but not dead) */
613 server->lstrp = jiffies;
e4eb295d 614 break;
46810cbf 615 }
1da177e4 616 }
e4eb295d
SF		 617 spin_unlock(&GlobalMid_Lock);
618 if (task_to_wake) {
cd63499c 619 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 620 if (!isMultiRsp) {
cd63499c 621 /* smb buffer will be freed by user thread */
26f57364 622 if (isLargeBuf)
cd63499c 623 bigbuf = NULL;
26f57364 624 else
cd63499c
SF		 625 smallbuf = NULL;
626 }
e4eb295d 627 wake_up_process(task_to_wake);
4b18f2a9
SF		 628 } else if (!is_valid_oplock_break(smb_buffer, server) &&
629 !isMultiRsp) {
b6b38f70
JP		 630 cERROR(1, "No task to wake, unknown frame received! "
631 "NumMids %d", midCount.counter);
50c2f753 632 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 633 sizeof(struct smb_hdr));
3979877e
SF		 634#ifdef CONFIG_CIFS_DEBUG2
635 cifs_dump_detail(smb_buffer);
636 cifs_dump_mids(server);
637#endif /* CIFS_DEBUG2 */
50c2f753 638
e4eb295d
SF		 639 }
640 } /* end while !EXITING */
641
e7ddee90 642 /* take it off the list, if it's not already */
3f9bcca7 643 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 644 list_del_init(&server->tcp_ses_list);
3f9bcca7 645 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 646
1da177e4
LT		 647 spin_lock(&GlobalMid_Lock);
648 server->tcpStatus = CifsExiting;
e691b9d1 649 spin_unlock(&GlobalMid_Lock);
dbdbb876 650 wake_up_all(&server->response_q);
e691b9d1 651
31ca3bc3
SF		 652 /* check if we have blocked requests that need to free */
653 /* Note that cifs_max_pending is normally 50, but
654 can be set at module install time to as little as two */
e691b9d1 655 spin_lock(&GlobalMid_Lock);
fb8c4b14 656 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 657 atomic_set(&server->inFlight, cifs_max_pending - 1);
658 /* We do not want to set the max_pending too low or we
659 could end up with the counter going negative */
1da177e4 660 spin_unlock(&GlobalMid_Lock);
50c2f753 661 /* Although there should not be any requests blocked on
1da177e4 662 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 663 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 664 to the same server - they now will see the session is in exit state
665 and get out of SendReceive. */
666 wake_up_all(&server->request_q);
667 /* give those requests time to exit */
b8643e1b 668 msleep(125);
50c2f753 669
fb8c4b14 670 if (server->ssocket) {
1da177e4
LT		 671 sock_release(csocket);
672 server->ssocket = NULL;
673 }
b8643e1b 674 /* buffer usuallly freed in free_mid - need to free it here on exit */
a8a11d39
MK		 675 cifs_buf_release(bigbuf);
676 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 677 cifs_small_buf_release(smallbuf);
1da177e4 678
14fbf50d
JL		 679 /*
680 * BB: we shouldn't have to do any of this. It shouldn't be
681 * possible to exit from the thread with active SMB sessions
682 */
3f9bcca7 683 spin_lock(&cifs_tcp_ses_lock);
1da177e4 684 if (list_empty(&server->pending_mid_q)) {
09d1db5c
SF		 685 /* loop through server session structures attached to this and
686 mark them dead */
14fbf50d
JL		 687 list_for_each(tmp, &server->smb_ses_list) {
688 ses = list_entry(tmp, struct cifsSesInfo,
689 smb_ses_list);
690 ses->status = CifsExiting;
691 ses->server = NULL;
1da177e4 692 }
3f9bcca7 693 spin_unlock(&cifs_tcp_ses_lock);
1da177e4 694 } else {
31ca3bc3
SF		 695 /* although we can not zero the server struct pointer yet,
696 since there are active requests which may depnd on them,
697 mark the corresponding SMB sessions as exiting too */
14fbf50d 698 list_for_each(tmp, &server->smb_ses_list) {
31ca3bc3 699 ses = list_entry(tmp, struct cifsSesInfo,
14fbf50d
JL		 700 smb_ses_list);
701 ses->status = CifsExiting;
31ca3bc3
SF		 702 }
703
1da177e4
LT		 704 spin_lock(&GlobalMid_Lock);
705 list_for_each(tmp, &server->pending_mid_q) {
706 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
707 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
b6b38f70
JP		 708 cFYI(1, "Clearing Mid 0x%x - waking up ",
709 mid_entry->mid);
1da177e4 710 task_to_wake = mid_entry->tsk;
26f57364 711 if (task_to_wake)
1da177e4 712 wake_up_process(task_to_wake);
1da177e4
LT		 713 }
714 }
715 spin_unlock(&GlobalMid_Lock);
3f9bcca7 716 spin_unlock(&cifs_tcp_ses_lock);
1da177e4 717 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 718 msleep(125);
1da177e4
LT		 719 }
720
f191401f 721 if (!list_empty(&server->pending_mid_q)) {
50c2f753 722 /* mpx threads have not exited yet give them
1da177e4 723 at least the smb send timeout time for long ops */
31ca3bc3
SF		 724 /* due to delays on oplock break requests, we need
725 to wait at least 45 seconds before giving up
726 on a request getting a response and going ahead
727 and killing cifsd */
b6b38f70 728 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 729 msleep(46000);
1da177e4
LT		 730 /* if threads still have not exited they are probably never
731 coming home not much else we can do but free the memory */
732 }
1da177e4 733
31ca3bc3
SF		 734 /* last chance to mark ses pointers invalid
735 if there are any pointing to this (e.g
50c2f753 736 if a crazy root user tried to kill cifsd
31ca3bc3 737 kernel thread explicitly this might happen) */
14fbf50d 738 /* BB: This shouldn't be necessary, see above */
3f9bcca7 739 spin_lock(&cifs_tcp_ses_lock);
14fbf50d
JL		 740 list_for_each(tmp, &server->smb_ses_list) {
741 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
742 ses->server = NULL;
31ca3bc3 743 }
3f9bcca7 744 spin_unlock(&cifs_tcp_ses_lock);
31ca3bc3 745
c359cf3c 746 kfree(server->hostname);
b1c8d2b4 747 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 748 kfree(server);
93d0ec85
JL		 749
750 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 751 if (length > 0)
752 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
753 GFP_KERNEL);
50c2f753 754
b1c8d2b4
JL		 755 /* if server->tsk was NULL then wait for a signal before exiting */
756 if (!task_to_wake) {
757 set_current_state(TASK_INTERRUPTIBLE);
758 while (!signal_pending(current)) {
759 schedule();
760 set_current_state(TASK_INTERRUPTIBLE);
761 }
762 set_current_state(TASK_RUNNING);
763 }
764
0468a2cf 765 module_put_and_exit(0);
1da177e4
LT		 766}
767
c359cf3c
JL		 768/* extract the host portion of the UNC string */
769static char *
770extract_hostname(const char *unc)
771{
772 const char *src;
773 char *dst, *delim;
774 unsigned int len;
775
776 /* skip double chars at beginning of string */
777 /* BB: check validity of these bytes? */
778 src = unc + 2;
779
780 /* delimiter between hostname and sharename is always '\\' now */
781 delim = strchr(src, '\\');
782 if (!delim)
783 return ERR_PTR(-EINVAL);
784
785 len = delim - src;
786 dst = kmalloc((len + 1), GFP_KERNEL);
787 if (dst == NULL)
788 return ERR_PTR(-ENOMEM);
789
790 memcpy(dst, src, len);
791 dst[len] = '\0';
792
793 return dst;
794}
795
1da177e4 796static int
50c2f753
SF		 797cifs_parse_mount_options(char *options, const char *devname,
798 struct smb_vol *vol)
1da177e4
LT		 799{
800 char *value;
801 char *data;
802 unsigned int temp_len, i, j;
803 char separator[2];
9b9d6b24
JL		 804 short int override_uid = -1;
805 short int override_gid = -1;
806 bool uid_specified = false;
807 bool gid_specified = false;
1da177e4
LT		 808
809 separator[0] = ',';
50c2f753 810 separator[1] = 0;
1da177e4 811
12e36b2f 812 if (Local_System_Name[0] != 0)
50c2f753 813 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
2cd646a2 814 else {
12e36b2f 815 char *nodename = utsname()->nodename;
50c2f753
SF		 816 int n = strnlen(nodename, 15);
817 memset(vol->source_rfc1001_name, 0x20, 15);
818 for (i = 0; i < n; i++) {
2cd646a2
SF		 819 /* does not have to be perfect mapping since field is
820 informational, only used for servers that do not support
821 port 445 and it can be overridden at mount time */
12e36b2f 822 vol->source_rfc1001_name[i] = toupper(nodename[i]);
2cd646a2 823 }
1da177e4
LT		 824 }
825 vol->source_rfc1001_name[15] = 0;
a10faeb2
SF		 826 /* null target name indicates to use *SMBSERVR default called name
827 if we end up sending RFC1001 session initialize */
828 vol->target_rfc1001_name[0] = 0;
3e4b3e1f
JL		 829 vol->cred_uid = current_uid();
830 vol->linux_uid = current_uid();
a001e5b5 831 vol->linux_gid = current_gid();
f55ed1a8
JL		 832
833 /* default to only allowing write access to owner of the mount */
834 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 835
836 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 837 /* default is always to request posix paths. */
838 vol->posix_paths = 1;
a0c9217f
JL		 839 /* default to using server inode numbers where available */
840 vol->server_ino = 1;
ac67055e 841
1da177e4
LT		 842 if (!options)
843 return 1;
844
50c2f753 845 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 846 if (options[4] != 0) {
1da177e4
LT		 847 separator[0] = options[4];
848 options += 5;
849 } else {
b6b38f70 850 cFYI(1, "Null separator not allowed");
1da177e4
LT		 851 }
852 }
50c2f753 853
1da177e4
LT		 854 while ((data = strsep(&options, separator)) != NULL) {
855 if (!*data)
856 continue;
857 if ((value = strchr(data, '=')) != NULL)
858 *value++ = '\0';
859
50c2f753
SF		 860 /* Have to parse this before we parse for "user" */
861 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 862 vol->no_xattr = 0;
50c2f753 863 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 864 vol->no_xattr = 1;
865 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 866 if (!value) {
1da177e4
LT		 867 printk(KERN_WARNING
868 "CIFS: invalid or missing username\n");
869 return 1; /* needs_arg; */
fb8c4b14 870 } else if (!*value) {
4b952a9b
SF		 871 /* null user, ie anonymous, authentication */
872 vol->nullauth = 1;
1da177e4
LT		 873 }
874 if (strnlen(value, 200) < 200) {
875 vol->username = value;
876 } else {
877 printk(KERN_WARNING "CIFS: username too long\n");
878 return 1;
879 }
880 } else if (strnicmp(data, "pass", 4) == 0) {
881 if (!value) {
882 vol->password = NULL;
883 continue;
fb8c4b14 884 } else if (value[0] == 0) {
1da177e4
LT		 885 /* check if string begins with double comma
886 since that would mean the password really
887 does start with a comma, and would not
888 indicate an empty string */
fb8c4b14 889 if (value[1] != separator[0]) {
1da177e4
LT		 890 vol->password = NULL;
891 continue;
892 }
893 }
894 temp_len = strlen(value);
895 /* removed password length check, NTLM passwords
896 can be arbitrarily long */
897
50c2f753 898 /* if comma in password, the string will be
1da177e4
LT		 899 prematurely null terminated. Commas in password are
900 specified across the cifs mount interface by a double
901 comma ie ,, and a comma used as in other cases ie ','
902 as a parameter delimiter/separator is single and due
903 to the strsep above is temporarily zeroed. */
904
905 /* NB: password legally can have multiple commas and
906 the only illegal character in a password is null */
907
50c2f753 908 if ((value[temp_len] == 0) &&
09d1db5c 909 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 910 /* reinsert comma */
911 value[temp_len] = separator[0];
50c2f753
SF		 912 temp_len += 2; /* move after second comma */
913 while (value[temp_len] != 0) {
1da177e4 914 if (value[temp_len] == separator[0]) {
50c2f753 915 if (value[temp_len+1] ==
09d1db5c
SF		 916 separator[0]) {
917 /* skip second comma */
918 temp_len++;
50c2f753 919 } else {
1da177e4
LT		 920 /* single comma indicating start
921 of next parm */
922 break;
923 }
924 }
925 temp_len++;
926 }
fb8c4b14 927 if (value[temp_len] == 0) {
1da177e4
LT		 928 options = NULL;
929 } else {
930 value[temp_len] = 0;
931 /* point option to start of next parm */
932 options = value + temp_len + 1;
933 }
50c2f753 934 /* go from value to value + temp_len condensing
1da177e4
LT		 935 double commas to singles. Note that this ends up
936 allocating a few bytes too many, which is ok */
e915fc49 937 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 938 if (vol->password == NULL) {
50c2f753
SF		 939 printk(KERN_WARNING "CIFS: no memory "
940 "for password\n");
433dc24f
SF		 941 return 1;
942 }
50c2f753 943 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 944 vol->password[j] = value[i];
fb8c4b14 945 if (value[i] == separator[0]
09d1db5c 946 && value[i+1] == separator[0]) {
1da177e4
LT		 947 /* skip second comma */
948 i++;
949 }
950 }
951 vol->password[j] = 0;
952 } else {
e915fc49 953 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 954 if (vol->password == NULL) {
50c2f753
SF		 955 printk(KERN_WARNING "CIFS: no memory "
956 "for password\n");
433dc24f
SF		 957 return 1;
958 }
1da177e4
LT		 959 strcpy(vol->password, value);
960 }
58f7f68f
JL		 961 } else if (!strnicmp(data, "ip", 2) ||
962 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 963 if (!value || !*value) {
964 vol->UNCip = NULL;
50b64e3b
JL		 965 } else if (strnlen(value, INET6_ADDRSTRLEN) <
966 INET6_ADDRSTRLEN) {
1da177e4
LT		 967 vol->UNCip = value;
968 } else {
50c2f753
SF		 969 printk(KERN_WARNING "CIFS: ip address "
970 "too long\n");
1da177e4
LT		 971 return 1;
972 }
50c2f753
SF		 973 } else if (strnicmp(data, "sec", 3) == 0) {
974 if (!value || !*value) {
b6b38f70 975 cERROR(1, "no security value specified");
50c2f753
SF		 976 continue;
977 } else if (strnicmp(value, "krb5i", 5) == 0) {
978 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 979 CIFSSEC_MUST_SIGN;
bf820679 980 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 981 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
982 CIFSSEC_MAY_KRB5; */
b6b38f70 983 cERROR(1, "Krb5 cifs privacy not supported");
bf820679
SF		 984 return 1;
985 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 986 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 987#ifdef CONFIG_CIFS_EXPERIMENTAL
988 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
989 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
990 CIFSSEC_MUST_SIGN;
991 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
992 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
993#endif
bf820679 994 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 995 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 996 CIFSSEC_MUST_SIGN;
bf820679 997 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 998 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 999 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1000 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1001 CIFSSEC_MUST_SIGN;
bf820679
SF		 1002 } else if (strnicmp(value, "ntlm", 4) == 0) {
1003 /* ntlm is default so can be turned off too */
750d1151 1004 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1005 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1006 /* BB is there a better way to do this? */
750d1151 1007 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1008#ifdef CONFIG_CIFS_WEAK_PW_HASH
1009 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1010 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1011#endif
bf820679 1012 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1013 vol->nullauth = 1;
50c2f753 1014 } else {
b6b38f70 1015 cERROR(1, "bad security option: %s", value);
50c2f753
SF		 1016 return 1;
1017 }
1da177e4
LT		 1018 } else if ((strnicmp(data, "unc", 3) == 0)
1019 || (strnicmp(data, "target", 6) == 0)
1020 || (strnicmp(data, "path", 4) == 0)) {
1021 if (!value || !*value) {
50c2f753
SF		 1022 printk(KERN_WARNING "CIFS: invalid path to "
1023 "network resource\n");
1da177e4
LT		 1024 return 1; /* needs_arg; */
1025 }
1026 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1027 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1028 if (vol->UNC == NULL)
1da177e4 1029 return 1;
50c2f753 1030 strcpy(vol->UNC, value);
1da177e4
LT		 1031 if (strncmp(vol->UNC, "//", 2) == 0) {
1032 vol->UNC[0] = '\\';
1033 vol->UNC[1] = '\\';
50c2f753 1034 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1035 printk(KERN_WARNING
50c2f753
SF		 1036 "CIFS: UNC Path does not begin "
1037 "with // or \\\\ \n");
1da177e4
LT		 1038 return 1;
1039 }
1040 } else {
1041 printk(KERN_WARNING "CIFS: UNC name too long\n");
1042 return 1;
1043 }
1044 } else if ((strnicmp(data, "domain", 3) == 0)
1045 || (strnicmp(data, "workgroup", 5) == 0)) {
1046 if (!value || !*value) {
1047 printk(KERN_WARNING "CIFS: invalid domain name\n");
1048 return 1; /* needs_arg; */
1049 }
1050 /* BB are there cases in which a comma can be valid in
1051 a domain name and need special handling? */
3979877e 1052 if (strnlen(value, 256) < 256) {
1da177e4 1053 vol->domainname = value;
b6b38f70 1054 cFYI(1, "Domain name set");
1da177e4 1055 } else {
50c2f753
SF		 1056 printk(KERN_WARNING "CIFS: domain name too "
1057 "long\n");
1da177e4
LT		 1058 return 1;
1059 }
3eb9a889
BG		 1060 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1061 vol->srcaddr.ss_family = AF_UNSPEC;
1062
1063 if (!value || !*value) {
1064 printk(KERN_WARNING "CIFS: srcaddr value"
1065 " not specified.\n");
1066 return 1; /* needs_arg; */
1067 }
1068 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1069 value, strlen(value));
b235f371 1070 if (i == 0) {
3eb9a889
BG		 1071 printk(KERN_WARNING "CIFS: Could not parse"
1072 " srcaddr: %s\n",
1073 value);
1074 return 1;
1075 }
50c2f753
SF		 1076 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1077 if (!value || !*value) {
1078 printk(KERN_WARNING
1079 "CIFS: invalid path prefix\n");
1080 return 1; /* needs_argument */
1081 }
1082 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1083 if (value[0] != '/')
2fe87f02 1084 temp_len++; /* missing leading slash */
50c2f753
SF		 1085 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1086 if (vol->prepath == NULL)
1087 return 1;
4523cc30 1088 if (value[0] != '/') {
2fe87f02 1089 vol->prepath[0] = '/';
50c2f753 1090 strcpy(vol->prepath+1, value);
2fe87f02 1091 } else
50c2f753 1092 strcpy(vol->prepath, value);
b6b38f70 1093 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1094 } else {
1095 printk(KERN_WARNING "CIFS: prefix too long\n");
1096 return 1;
1097 }
1da177e4
LT		 1098 } else if (strnicmp(data, "iocharset", 9) == 0) {
1099 if (!value || !*value) {
63135e08
SF		 1100 printk(KERN_WARNING "CIFS: invalid iocharset "
1101 "specified\n");
1da177e4
LT		 1102 return 1; /* needs_arg; */
1103 }
1104 if (strnlen(value, 65) < 65) {
50c2f753 1105 if (strnicmp(value, "default", 7))
1da177e4 1106 vol->iocharset = value;
50c2f753
SF		 1107 /* if iocharset not set then load_nls_default
1108 is used by caller */
b6b38f70 1109 cFYI(1, "iocharset set to %s", value);
1da177e4 1110 } else {
63135e08
SF		 1111 printk(KERN_WARNING "CIFS: iocharset name "
1112 "too long.\n");
1da177e4
LT		 1113 return 1;
1114 }
9b9d6b24
JL		 1115 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1116 vol->linux_uid = simple_strtoul(value, &value, 0);
1117 uid_specified = true;
1118 } else if (!strnicmp(data, "forceuid", 8)) {
1119 override_uid = 1;
1120 } else if (!strnicmp(data, "noforceuid", 10)) {
1121 override_uid = 0;
1122 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1123 vol->linux_gid = simple_strtoul(value, &value, 0);
1124 gid_specified = true;
1125 } else if (!strnicmp(data, "forcegid", 8)) {
1126 override_gid = 1;
1127 } else if (!strnicmp(data, "noforcegid", 10)) {
1128 override_gid = 0;
1da177e4
LT		 1129 } else if (strnicmp(data, "file_mode", 4) == 0) {
1130 if (value && *value) {
1131 vol->file_mode =
1132 simple_strtoul(value, &value, 0);
1133 }
1134 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1135 if (value && *value) {
1136 vol->dir_mode =
1137 simple_strtoul(value, &value, 0);
1138 }
1139 } else if (strnicmp(data, "dirmode", 4) == 0) {
1140 if (value && *value) {
1141 vol->dir_mode =
1142 simple_strtoul(value, &value, 0);
1143 }
1144 } else if (strnicmp(data, "port", 4) == 0) {
1145 if (value && *value) {
1146 vol->port =
1147 simple_strtoul(value, &value, 0);
1148 }
1149 } else if (strnicmp(data, "rsize", 5) == 0) {
1150 if (value && *value) {
1151 vol->rsize =
1152 simple_strtoul(value, &value, 0);
1153 }
1154 } else if (strnicmp(data, "wsize", 5) == 0) {
1155 if (value && *value) {
1156 vol->wsize =
1157 simple_strtoul(value, &value, 0);
1158 }
1159 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1160 if (!value || !*value) {
b6b38f70 1161 cERROR(1, "no socket option specified");
6a5fa236
SF		 1162 continue;
1163 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1164 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1165 }
1166 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1167 if (!value || !*value || (*value == ' ')) {
b6b38f70 1168 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1169 } else {
50c2f753
SF		 1170 memset(vol->source_rfc1001_name, 0x20, 15);
1171 for (i = 0; i < 15; i++) {
1172 /* BB are there cases in which a comma can be
1da177e4
LT		 1173 valid in this workstation netbios name (and need
1174 special handling)? */
1175
1176 /* We do not uppercase netbiosname for user */
50c2f753 1177 if (value[i] == 0)
1da177e4 1178 break;
50c2f753
SF		 1179 else
1180 vol->source_rfc1001_name[i] =
1181 value[i];
1da177e4
LT		 1182 }
1183 /* The string has 16th byte zero still from
1184 set at top of the function */
50c2f753
SF		 1185 if ((i == 15) && (value[i] != 0))
1186 printk(KERN_WARNING "CIFS: netbiosname"
1187 " longer than 15 truncated.\n");
a10faeb2
SF		 1188 }
1189 } else if (strnicmp(data, "servern", 7) == 0) {
1190 /* servernetbiosname specified override *SMBSERVER */
1191 if (!value || !*value || (*value == ' ')) {
b6b38f70 1192 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1193 } else {
1194 /* last byte, type, is 0x20 for servr type */
50c2f753 1195 memset(vol->target_rfc1001_name, 0x20, 16);
a10faeb2 1196
50c2f753 1197 for (i = 0; i < 15; i++) {
a10faeb2 1198 /* BB are there cases in which a comma can be
50c2f753
SF		 1199 valid in this workstation netbios name
1200 (and need special handling)? */
a10faeb2 1201
50c2f753
SF		 1202 /* user or mount helper must uppercase
1203 the netbiosname */
1204 if (value[i] == 0)
a10faeb2
SF		 1205 break;
1206 else
50c2f753
SF		 1207 vol->target_rfc1001_name[i] =
1208 value[i];
a10faeb2
SF		 1209 }
1210 /* The string has 16th byte zero still from
1211 set at top of the function */
50c2f753
SF		 1212 if ((i == 15) && (value[i] != 0))
1213 printk(KERN_WARNING "CIFS: server net"
1214 "biosname longer than 15 truncated.\n");
1da177e4
LT		 1215 }
1216 } else if (strnicmp(data, "credentials", 4) == 0) {
1217 /* ignore */
1218 } else if (strnicmp(data, "version", 3) == 0) {
1219 /* ignore */
50c2f753 1220 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1221 /* ignore */
71a394fa
SF		 1222 } else if (strnicmp(data, "rw", 2) == 0) {
1223 /* ignore */
1224 } else if (strnicmp(data, "ro", 2) == 0) {
1225 /* ignore */
edf1ae40
SF		 1226 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1227 vol->noblocksnd = 1;
1228 } else if (strnicmp(data, "noautotune", 10) == 0) {
1229 vol->noautotune = 1;
1da177e4
LT		 1230 } else if ((strnicmp(data, "suid", 4) == 0) ||
1231 (strnicmp(data, "nosuid", 6) == 0) ||
1232 (strnicmp(data, "exec", 4) == 0) ||
1233 (strnicmp(data, "noexec", 6) == 0) ||
1234 (strnicmp(data, "nodev", 5) == 0) ||
1235 (strnicmp(data, "noauto", 6) == 0) ||
1236 (strnicmp(data, "dev", 3) == 0)) {
1237 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1238 uses these opts to set flags, and the flags are read
1239 by the kernel vfs layer before we get here (ie
1240 before read super) so there is no point trying to
1241 parse these options again and set anything and it
1242 is ok to just ignore them */
1da177e4 1243 continue;
1da177e4
LT		 1244 } else if (strnicmp(data, "hard", 4) == 0) {
1245 vol->retry = 1;
1246 } else if (strnicmp(data, "soft", 4) == 0) {
1247 vol->retry = 0;
1248 } else if (strnicmp(data, "perm", 4) == 0) {
1249 vol->noperm = 0;
1250 } else if (strnicmp(data, "noperm", 6) == 0) {
1251 vol->noperm = 1;
6a0b4824
SF		 1252 } else if (strnicmp(data, "mapchars", 8) == 0) {
1253 vol->remap = 1;
1254 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1255 vol->remap = 0;
50c2f753
SF		 1256 } else if (strnicmp(data, "sfu", 3) == 0) {
1257 vol->sfu_emul = 1;
1258 } else if (strnicmp(data, "nosfu", 5) == 0) {
1259 vol->sfu_emul = 0;
2c1b8615
SF		 1260 } else if (strnicmp(data, "nodfs", 5) == 0) {
1261 vol->nodfs = 1;
ac67055e
JA		 1262 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1263 vol->posix_paths = 1;
1264 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1265 vol->posix_paths = 0;
c18c842b
SF		 1266 } else if (strnicmp(data, "nounix", 6) == 0) {
1267 vol->no_linux_ext = 1;
1268 } else if (strnicmp(data, "nolinux", 7) == 0) {
1269 vol->no_linux_ext = 1;
50c2f753 1270 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1271 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1272 vol->nocase = 1;
f636a348
JL		 1273 } else if (strnicmp(data, "mand", 4) == 0) {
1274 /* ignore */
1275 } else if (strnicmp(data, "nomand", 6) == 0) {
1276 /* ignore */
1277 } else if (strnicmp(data, "_netdev", 7) == 0) {
1278 /* ignore */
c46fa8ac
SF		 1279 } else if (strnicmp(data, "brl", 3) == 0) {
1280 vol->nobrl = 0;
50c2f753 1281 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1282 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1283 vol->nobrl = 1;
d3485d37
SF		 1284 /* turn off mandatory locking in mode
1285 if remote locking is turned off since the
1286 local vfs will do advisory */
50c2f753
SF		 1287 if (vol->file_mode ==
1288 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1289 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1290 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1291 /* will take the shorter form "forcemand" as well */
1292 /* This mount option will force use of mandatory
1293 (DOS/Windows style) byte range locks, instead of
1294 using posix advisory byte range locks, even if the
1295 Unix extensions are available and posix locks would
1296 be supported otherwise. If Unix extensions are not
1297 negotiated this has no effect since mandatory locks
1298 would be used (mandatory locks is all that those
1299 those servers support) */
1300 vol->mand_lock = 1;
1da177e4
LT		 1301 } else if (strnicmp(data, "setuids", 7) == 0) {
1302 vol->setuids = 1;
1303 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1304 vol->setuids = 0;
d0a9c078
JL		 1305 } else if (strnicmp(data, "dynperm", 7) == 0) {
1306 vol->dynperm = true;
1307 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1308 vol->dynperm = false;
1da177e4
LT		 1309 } else if (strnicmp(data, "nohard", 6) == 0) {
1310 vol->retry = 0;
1311 } else if (strnicmp(data, "nosoft", 6) == 0) {
1312 vol->retry = 1;
1313 } else if (strnicmp(data, "nointr", 6) == 0) {
1314 vol->intr = 0;
1315 } else if (strnicmp(data, "intr", 4) == 0) {
1316 vol->intr = 1;
be652445
SF		 1317 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1318 vol->nostrictsync = 1;
1319 } else if (strnicmp(data, "strictsync", 10) == 0) {
1320 vol->nostrictsync = 0;
50c2f753 1321 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1322 vol->server_ino = 1;
50c2f753 1323 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1324 vol->server_ino = 0;
50c2f753 1325 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1326 vol->cifs_acl = 1;
1327 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1328 vol->cifs_acl = 0;
50c2f753 1329 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1330 vol->no_psx_acl = 0;
50c2f753 1331 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1332 vol->no_psx_acl = 1;
84210e91
SF		 1333#ifdef CONFIG_CIFS_EXPERIMENTAL
1334 } else if (strnicmp(data, "locallease", 6) == 0) {
1335 vol->local_lease = 1;
1336#endif
50c2f753 1337 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1338 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1339 } else if (strnicmp(data, "seal", 4) == 0) {
1340 /* we do not do the following in secFlags because seal
1341 is a per tree connection (mount) not a per socket
1342 or per-smb connection option in the protocol */
1343 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1344 vol->seal = 1;
50c2f753 1345 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1346 vol->direct_io = 1;
50c2f753 1347 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1348 vol->direct_io = 1;
1da177e4 1349 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1350 printk(KERN_WARNING "CIFS: Mount option noac not "
1351 "supported. Instead set "
1352 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
fa1df75d
SJ		 1353 } else if (strnicmp(data, "fsc", 3) == 0) {
1354 vol->fsc = true;
736a3320
SM		 1355 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1356 vol->mfsymlinks = true;
0eb8a132
JL		 1357 } else if (strnicmp(data, "multiuser", 8) == 0) {
1358 vol->multiuser = true;
1da177e4 1359 } else
50c2f753
SF		 1360 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1361 data);
1da177e4
LT		 1362 }
1363 if (vol->UNC == NULL) {
4523cc30 1364 if (devname == NULL) {
50c2f753
SF		 1365 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1366 "target\n");
1da177e4
LT		 1367 return 1;
1368 }
1369 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1370 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1371 if (vol->UNC == NULL)
1da177e4 1372 return 1;
50c2f753 1373 strcpy(vol->UNC, devname);
1da177e4
LT		 1374 if (strncmp(vol->UNC, "//", 2) == 0) {
1375 vol->UNC[0] = '\\';
1376 vol->UNC[1] = '\\';
1377 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1378 printk(KERN_WARNING "CIFS: UNC Path does not "
1379 "begin with // or \\\\ \n");
1da177e4
LT		 1380 return 1;
1381 }
7c5e628f
IM		 1382 value = strpbrk(vol->UNC+2, "/\\");
1383 if (value)
1384 *value = '\\';
1da177e4
LT		 1385 } else {
1386 printk(KERN_WARNING "CIFS: UNC name too long\n");
1387 return 1;
1388 }
1389 }
0eb8a132
JL		 1390
1391 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1392 cERROR(1, "Multiuser mounts currently require krb5 "
1393 "authentication!");
1394 return 1;
1395 }
1396
fb8c4b14 1397 if (vol->UNCip == NULL)
1da177e4
LT		 1398 vol->UNCip = &vol->UNC[2];
1399
9b9d6b24
JL		 1400 if (uid_specified)
1401 vol->override_uid = override_uid;
1402 else if (override_uid == 1)
1403 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1404 "specified with no uid= option.\n");
1405
1406 if (gid_specified)
1407 vol->override_gid = override_gid;
1408 else if (override_gid == 1)
1409 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1410 "specified with no gid= option.\n");
1411
1da177e4
LT		 1412 return 0;
1413}
1414
3eb9a889
BG		 1415/** Returns true if srcaddr isn't specified and rhs isn't
1416 * specified, or if srcaddr is specified and
1417 * matches the IP address of the rhs argument.
1418 */
1419static bool
1420srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1421{
1422 switch (srcaddr->sa_family) {
1423 case AF_UNSPEC:
1424 return (rhs->sa_family == AF_UNSPEC);
1425 case AF_INET: {
1426 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1427 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1428 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1429 }
1430 case AF_INET6: {
1431 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1432 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1433 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1434 }
1435 default:
1436 WARN_ON(1);
1437 return false; /* don't expect to be here */
1438 }
1439}
1440
1441
4515148e 1442static bool
3eb9a889
BG		 1443match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1444 struct sockaddr *srcaddr)
4515148e
JL		 1445{
1446 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1447 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1448
1449 switch (addr->sa_family) {
1450 case AF_INET:
1451 if (addr4->sin_addr.s_addr !=
1452 server->addr.sockAddr.sin_addr.s_addr)
1453 return false;
1454 if (addr4->sin_port &&
1455 addr4->sin_port != server->addr.sockAddr.sin_port)
1456 return false;
1457 break;
1458 case AF_INET6:
1459 if (!ipv6_addr_equal(&addr6->sin6_addr,
1460 &server->addr.sockAddr6.sin6_addr))
1461 return false;
1462 if (addr6->sin6_scope_id !=
1463 server->addr.sockAddr6.sin6_scope_id)
1464 return false;
1465 if (addr6->sin6_port &&
1466 addr6->sin6_port != server->addr.sockAddr6.sin6_port)
1467 return false;
1468 break;
1469 }
1470
3eb9a889
BG		 1471 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1472 return false;
1473
4515148e
JL		 1474 return true;
1475}
1476
daf5b0b6
JL		 1477static bool
1478match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1479{
1480 unsigned int secFlags;
1481
1482 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1483 secFlags = vol->secFlg;
1484 else
1485 secFlags = global_secflags | vol->secFlg;
1486
1487 switch (server->secType) {
1488 case LANMAN:
1489 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1490 return false;
1491 break;
1492 case NTLMv2:
1493 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1494 return false;
1495 break;
1496 case NTLM:
1497 if (!(secFlags & CIFSSEC_MAY_NTLM))
1498 return false;
1499 break;
1500 case Kerberos:
1501 if (!(secFlags & CIFSSEC_MAY_KRB5))
1502 return false;
1503 break;
1504 case RawNTLMSSP:
1505 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1506 return false;
1507 break;
1508 default:
1509 /* shouldn't happen */
1510 return false;
1511 }
1512
1513 /* now check if signing mode is acceptible */
1514 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1515 (server->secMode & SECMODE_SIGN_REQUIRED))
1516 return false;
1517 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1518 (server->secMode &
1519 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1520 return false;
1521
1522 return true;
1523}
1524
e7ddee90 1525static struct TCP_Server_Info *
daf5b0b6 1526cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1527{
e7ddee90 1528 struct TCP_Server_Info *server;
e7ddee90 1529
3f9bcca7 1530 spin_lock(&cifs_tcp_ses_lock);
4515148e 1531 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
3eb9a889
BG		 1532 if (!match_address(server, addr,
1533 (struct sockaddr *)&vol->srcaddr))
4515148e 1534 continue;
1b20d672 1535
daf5b0b6
JL		 1536 if (!match_security(server, vol))
1537 continue;
1538
e7ddee90 1539 ++server->srv_count;
3f9bcca7 1540 spin_unlock(&cifs_tcp_ses_lock);
b6b38f70 1541 cFYI(1, "Existing tcp session with server found");
e7ddee90 1542 return server;
1da177e4 1543 }
3f9bcca7 1544 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1545 return NULL;
1546}
1b20d672 1547
14fbf50d 1548static void
e7ddee90 1549cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1550{
e7ddee90 1551 struct task_struct *task;
1b20d672 1552
3f9bcca7 1553 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 1554 if (--server->srv_count > 0) {
3f9bcca7 1555 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 1556 return;
1da177e4 1557 }
1b20d672 1558
e7ddee90 1559 list_del_init(&server->tcp_ses_list);
3f9bcca7 1560 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1561
e7ddee90
JL		 1562 spin_lock(&GlobalMid_Lock);
1563 server->tcpStatus = CifsExiting;
1564 spin_unlock(&GlobalMid_Lock);
dea570e0 1565
d2b91521 1566 cifs_crypto_shash_release(server);
488f1d2d
SJ		 1567 cifs_fscache_release_client_cookie(server);
1568
21e73393
SP		 1569 kfree(server->session_key.response);
1570 server->session_key.response = NULL;
1571 server->session_key.len = 0;
1572
e7ddee90
JL		 1573 task = xchg(&server->tsk, NULL);
1574 if (task)
1575 force_sig(SIGKILL, task);
1da177e4
LT		 1576}
1577
63c038c2
JL		 1578static struct TCP_Server_Info *
1579cifs_get_tcp_session(struct smb_vol *volume_info)
1580{
1581 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1582 struct sockaddr_storage addr;
63c038c2
JL		 1583 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1584 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1585 int rc;
1586
a9ac49d3 1587 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1588
b6b38f70 1589 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1590
1e68b2b2 1591 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1592 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1593 volume_info->UNCip,
67b7626a 1594 strlen(volume_info->UNCip),
50d97160 1595 volume_info->port);
1e68b2b2 1596 if (!rc) {
63c038c2
JL		 1597 /* we failed translating address */
1598 rc = -EINVAL;
1599 goto out_err;
1600 }
63c038c2
JL		 1601 } else if (volume_info->UNCip) {
1602 /* BB using ip addr as tcp_ses name to connect to the
1603 DFS root below */
b6b38f70 1604 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1605 rc = -EINVAL;
1606 goto out_err;
1607 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1608 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1609 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1610 rc = -EINVAL;
1611 goto out_err;
1612 }
1613
1614 /* see if we already have a matching tcp_ses */
daf5b0b6 1615 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1616 if (tcp_ses)
1617 return tcp_ses;
1618
1619 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1620 if (!tcp_ses) {
1621 rc = -ENOMEM;
1622 goto out_err;
1623 }
1624
d2b91521
SP		 1625 rc = cifs_crypto_shash_allocate(tcp_ses);
1626 if (rc) {
1627 cERROR(1, "could not setup hash structures rc %d", rc);
1628 goto out_err;
1629 }
1630
63c038c2
JL		 1631 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1632 if (IS_ERR(tcp_ses->hostname)) {
1633 rc = PTR_ERR(tcp_ses->hostname);
f7c5445a 1634 goto out_err_crypto_release;
63c038c2
JL		 1635 }
1636
1637 tcp_ses->noblocksnd = volume_info->noblocksnd;
1638 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1639 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1640 atomic_set(&tcp_ses->inFlight, 0);
1641 init_waitqueue_head(&tcp_ses->response_q);
1642 init_waitqueue_head(&tcp_ses->request_q);
1643 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1644 mutex_init(&tcp_ses->srv_mutex);
1645 memcpy(tcp_ses->workstation_RFC1001_name,
1646 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1647 memcpy(tcp_ses->server_RFC1001_name,
1648 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
5d0d2882 1649 tcp_ses->session_estab = false;
63c038c2
JL		 1650 tcp_ses->sequence_number = 0;
1651 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1652 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1653
1654 /*
1655 * at this point we are the only ones with the pointer
1656 * to the struct since the kernel thread not created yet
1657 * no need to spinlock this init of tcpStatus or srv_count
1658 */
1659 tcp_ses->tcpStatus = CifsNew;
3eb9a889
BG		 1660 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1661 sizeof(tcp_ses->srcaddr));
63c038c2
JL		 1662 ++tcp_ses->srv_count;
1663
a9ac49d3 1664 if (addr.ss_family == AF_INET6) {
b6b38f70 1665 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1666 /* BB should we allow ipv6 on port 139? */
1667 /* other OS never observed in Wild doing 139 with v6 */
1668 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1669 sizeof(struct sockaddr_in6));
d5c5605c 1670 rc = ipv6_connect(tcp_ses);
63c038c2
JL		 1671 } else {
1672 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1673 sizeof(struct sockaddr_in));
bcf4b106 1674 rc = ipv4_connect(tcp_ses);
63c038c2
JL		 1675 }
1676 if (rc < 0) {
b6b38f70 1677 cERROR(1, "Error connecting to socket. Aborting operation");
f7c5445a 1678 goto out_err_crypto_release;
63c038c2
JL		 1679 }
1680
1681 /*
1682 * since we're in a cifs function already, we know that
1683 * this will succeed. No need for try_module_get().
1684 */
1685 __module_get(THIS_MODULE);
1686 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1687 tcp_ses, "cifsd");
1688 if (IS_ERR(tcp_ses->tsk)) {
1689 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1690 cERROR(1, "error %d create cifsd thread", rc);
63c038c2 1691 module_put(THIS_MODULE);
f7c5445a 1692 goto out_err_crypto_release;
63c038c2
JL		 1693 }
1694
1695 /* thread spawned, put it on the list */
3f9bcca7 1696 spin_lock(&cifs_tcp_ses_lock);
63c038c2 1697 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
3f9bcca7 1698 spin_unlock(&cifs_tcp_ses_lock);
63c038c2 1699
488f1d2d
SJ		 1700 cifs_fscache_get_client_cookie(tcp_ses);
1701
63c038c2
JL		 1702 return tcp_ses;
1703
f7c5445a 1704out_err_crypto_release:
d2b91521
SP		 1705 cifs_crypto_shash_release(tcp_ses);
1706
63c038c2
JL		 1707out_err:
1708 if (tcp_ses) {
8347a5cd
SF		 1709 if (!IS_ERR(tcp_ses->hostname))
1710 kfree(tcp_ses->hostname);
63c038c2
JL		 1711 if (tcp_ses->ssocket)
1712 sock_release(tcp_ses->ssocket);
1713 kfree(tcp_ses);
1714 }
1715 return ERR_PTR(rc);
1716}
1717
14fbf50d 1718static struct cifsSesInfo *
4ff67b72 1719cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 1720{
14fbf50d 1721 struct cifsSesInfo *ses;
dea570e0 1722
3f9bcca7 1723 spin_lock(&cifs_tcp_ses_lock);
4ff67b72
JL		 1724 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1725 switch (server->secType) {
1726 case Kerberos:
3e4b3e1f 1727 if (vol->cred_uid != ses->cred_uid)
4ff67b72
JL		 1728 continue;
1729 break;
1730 default:
1731 /* anything else takes username/password */
1732 if (strncmp(ses->userName, vol->username,
1733 MAX_USERNAME_SIZE))
1734 continue;
1735 if (strlen(vol->username) != 0 &&
24e6cf92 1736 ses->password != NULL &&
fc87a406
JL		 1737 strncmp(ses->password,
1738 vol->password ? vol->password : "",
4ff67b72
JL		 1739 MAX_PASSWORD_SIZE))
1740 continue;
1741 }
14fbf50d 1742 ++ses->ses_count;
3f9bcca7 1743 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1744 return ses;
1745 }
3f9bcca7 1746 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1747 return NULL;
1748}
dea570e0 1749
14fbf50d
JL		 1750static void
1751cifs_put_smb_ses(struct cifsSesInfo *ses)
1752{
1753 int xid;
1754 struct TCP_Server_Info *server = ses->server;
dea570e0 1755
36988c76 1756 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
3f9bcca7 1757 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 1758 if (--ses->ses_count > 0) {
3f9bcca7 1759 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1760 return;
1761 }
dea570e0 1762
14fbf50d 1763 list_del_init(&ses->smb_ses_list);
3f9bcca7 1764 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1765
14fbf50d
JL		 1766 if (ses->status == CifsGood) {
1767 xid = GetXid();
1768 CIFSSMBLogoff(xid, ses);
1769 _FreeXid(xid);
1770 }
1771 sesInfoFree(ses);
1772 cifs_put_tcp_session(server);
1773}
dea570e0 1774
36988c76
JL		 1775static struct cifsSesInfo *
1776cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1777{
1778 int rc = -ENOMEM, xid;
1779 struct cifsSesInfo *ses;
1780
1781 xid = GetXid();
1782
4ff67b72 1783 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 1784 if (ses) {
1785 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1786
36988c76 1787 mutex_lock(&ses->session_mutex);
198b5682
JL		 1788 rc = cifs_negotiate_protocol(xid, ses);
1789 if (rc) {
1790 mutex_unlock(&ses->session_mutex);
1791 /* problem -- put our ses reference */
1792 cifs_put_smb_ses(ses);
1793 FreeXid(xid);
1794 return ERR_PTR(rc);
1795 }
36988c76
JL		 1796 if (ses->need_reconnect) {
1797 cFYI(1, "Session needs reconnect");
1798 rc = cifs_setup_session(xid, ses,
1799 volume_info->local_nls);
1800 if (rc) {
1801 mutex_unlock(&ses->session_mutex);
1802 /* problem -- put our reference */
1803 cifs_put_smb_ses(ses);
1804 FreeXid(xid);
1805 return ERR_PTR(rc);
1806 }
1807 }
1808 mutex_unlock(&ses->session_mutex);
460cf341
JL		 1809
1810 /* existing SMB ses has a server reference already */
1811 cifs_put_tcp_session(server);
36988c76
JL		 1812 FreeXid(xid);
1813 return ses;
1814 }
1815
1816 cFYI(1, "Existing smb sess not found");
1817 ses = sesInfoAlloc();
1818 if (ses == NULL)
1819 goto get_ses_fail;
1820
2b149f11
SP		 1821 ses->tilen = 0;
1822 ses->tiblob = NULL;
36988c76
JL		 1823 /* new SMB session uses our server ref */
1824 ses->server = server;
1825 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1826 sprintf(ses->serverName, "%pI6",
1827 &server->addr.sockAddr6.sin6_addr);
1828 else
1829 sprintf(ses->serverName, "%pI4",
1830 &server->addr.sockAddr.sin_addr.s_addr);
1831
1832 if (volume_info->username)
1833 strncpy(ses->userName, volume_info->username,
1834 MAX_USERNAME_SIZE);
1835
1836 /* volume_info->password freed at unmount */
1837 if (volume_info->password) {
1838 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1839 if (!ses->password)
1840 goto get_ses_fail;
1841 }
1842 if (volume_info->domainname) {
1843 int len = strlen(volume_info->domainname);
1844 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1845 if (ses->domainName)
1846 strcpy(ses->domainName, volume_info->domainname);
1847 }
3e4b3e1f 1848 ses->cred_uid = volume_info->cred_uid;
36988c76
JL		 1849 ses->linux_uid = volume_info->linux_uid;
1850 ses->overrideSecFlg = volume_info->secFlg;
1851
1852 mutex_lock(&ses->session_mutex);
198b5682
JL		 1853 rc = cifs_negotiate_protocol(xid, ses);
1854 if (!rc)
1855 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76 1856 mutex_unlock(&ses->session_mutex);
c8e56f1f 1857 if (rc)
36988c76
JL		 1858 goto get_ses_fail;
1859
1860 /* success, put it on the list */
3f9bcca7 1861 spin_lock(&cifs_tcp_ses_lock);
36988c76 1862 list_add(&ses->smb_ses_list, &server->smb_ses_list);
3f9bcca7 1863 spin_unlock(&cifs_tcp_ses_lock);
36988c76
JL		 1864
1865 FreeXid(xid);
1866 return ses;
1867
1868get_ses_fail:
1869 sesInfoFree(ses);
1870 FreeXid(xid);
1871 return ERR_PTR(rc);
1872}
1873
f1987b44
JL		 1874static struct cifsTconInfo *
1875cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1876{
1877 struct list_head *tmp;
1878 struct cifsTconInfo *tcon;
1879
3f9bcca7 1880 spin_lock(&cifs_tcp_ses_lock);
f1987b44
JL		 1881 list_for_each(tmp, &ses->tcon_list) {
1882 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1883 if (tcon->tidStatus == CifsExiting)
1884 continue;
1885 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
dea570e0
SF		 1886 continue;
1887
f1987b44 1888 ++tcon->tc_count;
3f9bcca7 1889 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1890 return tcon;
1da177e4 1891 }
3f9bcca7 1892 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1893 return NULL;
1894}
1895
f1987b44
JL		 1896static void
1897cifs_put_tcon(struct cifsTconInfo *tcon)
1898{
1899 int xid;
1900 struct cifsSesInfo *ses = tcon->ses;
1901
d00c28de 1902 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
3f9bcca7 1903 spin_lock(&cifs_tcp_ses_lock);
f1987b44 1904 if (--tcon->tc_count > 0) {
3f9bcca7 1905 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 1906 return;
1907 }
1908
1909 list_del_init(&tcon->tcon_list);
3f9bcca7 1910 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 1911
1912 xid = GetXid();
1913 CIFSSMBTDis(xid, tcon);
1914 _FreeXid(xid);
1915
d03382ce 1916 cifs_fscache_release_super_cookie(tcon);
9f841593 1917 tconInfoFree(tcon);
f1987b44
JL		 1918 cifs_put_smb_ses(ses);
1919}
1920
d00c28de
JL		 1921static struct cifsTconInfo *
1922cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1923{
1924 int rc, xid;
1925 struct cifsTconInfo *tcon;
1926
1927 tcon = cifs_find_tcon(ses, volume_info->UNC);
1928 if (tcon) {
1929 cFYI(1, "Found match on UNC path");
1930 /* existing tcon already has a reference */
1931 cifs_put_smb_ses(ses);
1932 if (tcon->seal != volume_info->seal)
1933 cERROR(1, "transport encryption setting "
1934 "conflicts with existing tid");
1935 return tcon;
1936 }
1937
1938 tcon = tconInfoAlloc();
1939 if (tcon == NULL) {
1940 rc = -ENOMEM;
1941 goto out_fail;
1942 }
1943
1944 tcon->ses = ses;
1945 if (volume_info->password) {
1946 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1947 if (!tcon->password) {
1948 rc = -ENOMEM;
1949 goto out_fail;
1950 }
1951 }
1952
1953 if (strchr(volume_info->UNC + 3, '\\') == NULL
1954 && strchr(volume_info->UNC + 3, '/') == NULL) {
1955 cERROR(1, "Missing share name");
1956 rc = -ENODEV;
1957 goto out_fail;
1958 }
1959
1960 /* BB Do we need to wrap session_mutex around
1961 * this TCon call and Unix SetFS as
1962 * we do on SessSetup and reconnect? */
1963 xid = GetXid();
1964 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1965 FreeXid(xid);
1966 cFYI(1, "CIFS Tcon rc = %d", rc);
1967 if (rc)
1968 goto out_fail;
1969
1970 if (volume_info->nodfs) {
1971 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1972 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1973 }
1974 tcon->seal = volume_info->seal;
1975 /* we can have only one retry value for a connection
1976 to a share so for resources mounted more than once
1977 to the same server share the last value passed in
1978 for the retry flag is used */
1979 tcon->retry = volume_info->retry;
1980 tcon->nocase = volume_info->nocase;
1981 tcon->local_lease = volume_info->local_lease;
1982
3f9bcca7 1983 spin_lock(&cifs_tcp_ses_lock);
d00c28de 1984 list_add(&tcon->tcon_list, &ses->tcon_list);
3f9bcca7 1985 spin_unlock(&cifs_tcp_ses_lock);
d00c28de 1986
d03382ce
SJ		 1987 cifs_fscache_get_super_cookie(tcon);
1988
d00c28de
JL		 1989 return tcon;
1990
1991out_fail:
1992 tconInfoFree(tcon);
1993 return ERR_PTR(rc);
1994}
1995
9d002df4
JL		 1996void
1997cifs_put_tlink(struct tcon_link *tlink)
1998{
1999 if (!tlink || IS_ERR(tlink))
2000 return;
2001
2002 if (!atomic_dec_and_test(&tlink->tl_count) ||
2003 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2004 tlink->tl_time = jiffies;
2005 return;
2006 }
2007
2008 if (!IS_ERR(tlink_tcon(tlink)))
2009 cifs_put_tcon(tlink_tcon(tlink));
2010 kfree(tlink);
2011 return;
2012}
d00c28de 2013
1da177e4 2014int
50c2f753
SF		 2015get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
2016 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 2017 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 2018{
2019 char *temp_unc;
2020 int rc = 0;
2021
2022 *pnum_referrals = 0;
366781c1 2023 *preferrals = NULL;
1da177e4
LT		 2024
2025 if (pSesInfo->ipc_tid == 0) {
2026 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 2027 strnlen(pSesInfo->serverName,
2028 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 2029 + 1 + 4 /* slash IPC$ */ + 2,
2030 GFP_KERNEL);
2031 if (temp_unc == NULL)
2032 return -ENOMEM;
2033 temp_unc[0] = '\\';
2034 temp_unc[1] = '\\';
2035 strcpy(temp_unc + 2, pSesInfo->serverName);
2036 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2037 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 2038 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 2039 kfree(temp_unc);
2040 }
2041 if (rc == 0)
c2cf07d5 2042 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 2043 pnum_referrals, nls_codepage, remap);
366781c1
SF		 2044 /* BB map targetUNCs to dfs_info3 structures, here or
2045 in CIFSGetDFSRefer BB */
1da177e4
LT		 2046
2047 return rc;
2048}
2049
09e50d55
JL		 2050#ifdef CONFIG_DEBUG_LOCK_ALLOC
2051static struct lock_class_key cifs_key[2];
2052static struct lock_class_key cifs_slock_key[2];
2053
2054static inline void
2055cifs_reclassify_socket4(struct socket *sock)
2056{
2057 struct sock *sk = sock->sk;
2058 BUG_ON(sock_owned_by_user(sk));
2059 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2060 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2061}
2062
2063static inline void
2064cifs_reclassify_socket6(struct socket *sock)
2065{
2066 struct sock *sk = sock->sk;
2067 BUG_ON(sock_owned_by_user(sk));
2068 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2069 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2070}
2071#else
2072static inline void
2073cifs_reclassify_socket4(struct socket *sock)
2074{
2075}
2076
2077static inline void
2078cifs_reclassify_socket6(struct socket *sock)
2079{
2080}
2081#endif
2082
1da177e4 2083/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 2084static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 2085{
50c2f753 2086 unsigned int i, j;
1da177e4 2087
50c2f753 2088 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 2089 /* mask a nibble at a time and encode */
2090 target[j] = 'A' + (0x0F & (source[i] >> 4));
2091 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 2092 j += 2;
1da177e4
LT		 2093 }
2094
2095}
2096
3eb9a889
BG		 2097static int
2098bind_socket(struct TCP_Server_Info *server)
2099{
2100 int rc = 0;
2101 if (server->srcaddr.ss_family != AF_UNSPEC) {
2102 /* Bind to the specified local IP address */
2103 struct socket *socket = server->ssocket;
2104 rc = socket->ops->bind(socket,
2105 (struct sockaddr *) &server->srcaddr,
2106 sizeof(server->srcaddr));
2107 if (rc < 0) {
2108 struct sockaddr_in *saddr4;
2109 struct sockaddr_in6 *saddr6;
2110 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2111 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2112 if (saddr6->sin6_family == AF_INET6)
2113 cERROR(1, "cifs: "
2114 "Failed to bind to: %pI6c, error: %d\n",
2115 &saddr6->sin6_addr, rc);
2116 else
2117 cERROR(1, "cifs: "
2118 "Failed to bind to: %pI4, error: %d\n",
2119 &saddr4->sin_addr.s_addr, rc);
2120 }
2121 }
2122 return rc;
2123}
1da177e4
LT		 2124
2125static int
bcf4b106 2126ipv4_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2127{
2128 int rc = 0;
6a5fa236 2129 int val;
bcf4b106 2130 bool connected = false;
1da177e4 2131 __be16 orig_port = 0;
bcf4b106 2132 struct socket *socket = server->ssocket;
1da177e4 2133
bcf4b106 2134 if (socket == NULL) {
50c2f753 2135 rc = sock_create_kern(PF_INET, SOCK_STREAM,
bcf4b106 2136 IPPROTO_TCP, &socket);
1da177e4 2137 if (rc < 0) {
b6b38f70 2138 cERROR(1, "Error %d creating socket", rc);
1da177e4 2139 return rc;
1da177e4 2140 }
bcf4b106
JL		 2141
2142 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2143 cFYI(1, "Socket created");
bcf4b106
JL		 2144 server->ssocket = socket;
2145 socket->sk->sk_allocation = GFP_NOFS;
2146 cifs_reclassify_socket4(socket);
1da177e4
LT		 2147 }
2148
3eb9a889
BG		 2149 rc = bind_socket(server);
2150 if (rc < 0)
2151 return rc;
2152
bcf4b106
JL		 2153 /* user overrode default port */
2154 if (server->addr.sockAddr.sin_port) {
2155 rc = socket->ops->connect(socket, (struct sockaddr *)
2156 &server->addr.sockAddr,
2157 sizeof(struct sockaddr_in), 0);
1da177e4 2158 if (rc >= 0)
bcf4b106 2159 connected = true;
50c2f753 2160 }
1da177e4 2161
fb8c4b14 2162 if (!connected) {
50c2f753 2163 /* save original port so we can retry user specified port
1da177e4 2164 later if fall back ports fail this time */
bcf4b106 2165 orig_port = server->addr.sockAddr.sin_port;
1da177e4
LT		 2166
2167 /* do not retry on the same port we just failed on */
bcf4b106
JL		 2168 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
2169 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
2170 rc = socket->ops->connect(socket,
2171 (struct sockaddr *)
2172 &server->addr.sockAddr,
2173 sizeof(struct sockaddr_in), 0);
1da177e4 2174 if (rc >= 0)
bcf4b106 2175 connected = true;
1da177e4
LT		 2176 }
2177 }
2178 if (!connected) {
bcf4b106
JL		 2179 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
2180 rc = socket->ops->connect(socket, (struct sockaddr *)
2181 &server->addr.sockAddr,
6345a3a8 2182 sizeof(struct sockaddr_in), 0);
50c2f753 2183 if (rc >= 0)
bcf4b106 2184 connected = true;
1da177e4
LT		 2185 }
2186
2187 /* give up here - unless we want to retry on different
2188 protocol families some day */
2189 if (!connected) {
fb8c4b14 2190 if (orig_port)
bcf4b106 2191 server->addr.sockAddr.sin_port = orig_port;
b6b38f70 2192 cFYI(1, "Error %d connecting to server via ipv4", rc);
bcf4b106
JL		 2193 sock_release(socket);
2194 server->ssocket = NULL;
1da177e4
LT		 2195 return rc;
2196 }
bcf4b106
JL		 2197
2198
2199 /*
2200 * Eventually check for other socket options to change from
2201 * the default. sock_setsockopt not used because it expects
2202 * user space buffer
2203 */
2204 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2205 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2206
b387eaeb 2207 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2208 if (server->noautotune) {
2209 if (socket->sk->sk_sndbuf < (200 * 1024))
2210 socket->sk->sk_sndbuf = 200 * 1024;
2211 if (socket->sk->sk_rcvbuf < (140 * 1024))
2212 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2213 }
1da177e4 2214
6a5fa236
SF		 2215 if (server->tcp_nodelay) {
2216 val = 1;
2217 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2218 (char *)&val, sizeof(val));
2219 if (rc)
b6b38f70 2220 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2221 }
2222
b6b38f70 2223 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2224 socket->sk->sk_sndbuf,
b6b38f70 2225 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2226
1da177e4 2227 /* send RFC1001 sessinit */
bcf4b106 2228 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1da177e4 2229 /* some servers require RFC1001 sessinit before sending
50c2f753 2230 negprot - BB check reconnection in case where second
1da177e4 2231 sessinit is sent but no second negprot */
50c2f753
SF		 2232 struct rfc1002_session_packet *ses_init_buf;
2233 struct smb_hdr *smb_buf;
2234 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2235 GFP_KERNEL);
fb8c4b14 2236 if (ses_init_buf) {
1da177e4 2237 ses_init_buf->trailer.session_req.called_len = 32;
bcf4b106
JL		 2238 if (server->server_RFC1001_name &&
2239 server->server_RFC1001_name[0] != 0)
8ecaf67a
JL		 2240 rfc1002mangle(ses_init_buf->trailer.
2241 session_req.called_name,
bcf4b106 2242 server->server_RFC1001_name,
8ecaf67a 2243 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2244 else
8ecaf67a
JL		 2245 rfc1002mangle(ses_init_buf->trailer.
2246 session_req.called_name,
2247 DEFAULT_CIFS_CALLED_NAME,
2248 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 2249
1da177e4 2250 ses_init_buf->trailer.session_req.calling_len = 32;
bcf4b106 2251
1da177e4
LT		 2252 /* calling name ends in null (byte 16) from old smb
2253 convention. */
bcf4b106
JL		 2254 if (server->workstation_RFC1001_name &&
2255 server->workstation_RFC1001_name[0] != 0)
8ecaf67a
JL		 2256 rfc1002mangle(ses_init_buf->trailer.
2257 session_req.calling_name,
bcf4b106 2258 server->workstation_RFC1001_name,
8ecaf67a 2259 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2260 else
8ecaf67a
JL		 2261 rfc1002mangle(ses_init_buf->trailer.
2262 session_req.calling_name,
2263 "LINUX_CIFS_CLNT",
2264 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2265
1da177e4
LT		 2266 ses_init_buf->trailer.session_req.scope1 = 0;
2267 ses_init_buf->trailer.session_req.scope2 = 0;
2268 smb_buf = (struct smb_hdr *)ses_init_buf;
2269 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2270 smb_buf->smb_buf_length = 0x81000044;
0496e02d 2271 rc = smb_send(server, smb_buf, 0x44);
1da177e4 2272 kfree(ses_init_buf);
50c2f753 2273 msleep(1); /* RFC1001 layer in at least one server
083d3a2c
SF		 2274 requires very short break before negprot
2275 presumably because not expecting negprot
2276 to follow so fast. This is a simple
50c2f753 2277 solution that works without
083d3a2c
SF		 2278 complicating the code and causes no
2279 significant slowing down on mount
2280 for everyone else */
1da177e4 2281 }
50c2f753 2282 /* else the negprot may still work without this
1da177e4 2283 even though malloc failed */
50c2f753 2284
1da177e4 2285 }
50c2f753 2286
1da177e4
LT		 2287 return rc;
2288}
2289
2290static int
d5c5605c 2291ipv6_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2292{
2293 int rc = 0;
6a5fa236 2294 int val;
d5c5605c 2295 bool connected = false;
1da177e4 2296 __be16 orig_port = 0;
d5c5605c 2297 struct socket *socket = server->ssocket;
1da177e4 2298
d5c5605c 2299 if (socket == NULL) {
50c2f753 2300 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
d5c5605c 2301 IPPROTO_TCP, &socket);
1da177e4 2302 if (rc < 0) {
b6b38f70 2303 cERROR(1, "Error %d creating ipv6 socket", rc);
d5c5605c 2304 socket = NULL;
1da177e4 2305 return rc;
1da177e4 2306 }
1da177e4 2307
d5c5605c 2308 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2309 cFYI(1, "ipv6 Socket created");
d5c5605c
JL		 2310 server->ssocket = socket;
2311 socket->sk->sk_allocation = GFP_NOFS;
2312 cifs_reclassify_socket6(socket);
2313 }
1da177e4 2314
3eb9a889
BG		 2315 rc = bind_socket(server);
2316 if (rc < 0)
2317 return rc;
2318
d5c5605c
JL		 2319 /* user overrode default port */
2320 if (server->addr.sockAddr6.sin6_port) {
2321 rc = socket->ops->connect(socket,
2322 (struct sockaddr *) &server->addr.sockAddr6,
6345a3a8 2323 sizeof(struct sockaddr_in6), 0);
1da177e4 2324 if (rc >= 0)
d5c5605c 2325 connected = true;
50c2f753 2326 }
1da177e4 2327
fb8c4b14 2328 if (!connected) {
50c2f753 2329 /* save original port so we can retry user specified port
1da177e4
LT		 2330 later if fall back ports fail this time */
2331
d5c5605c 2332 orig_port = server->addr.sockAddr6.sin6_port;
1da177e4 2333 /* do not retry on the same port we just failed on */
d5c5605c
JL		 2334 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2335 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2336 rc = socket->ops->connect(socket, (struct sockaddr *)
2337 &server->addr.sockAddr6,
6345a3a8 2338 sizeof(struct sockaddr_in6), 0);
1da177e4 2339 if (rc >= 0)
d5c5605c 2340 connected = true;
1da177e4
LT		 2341 }
2342 }
2343 if (!connected) {
d5c5605c
JL		 2344 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2345 rc = socket->ops->connect(socket, (struct sockaddr *)
2346 &server->addr.sockAddr6,
2347 sizeof(struct sockaddr_in6), 0);
50c2f753 2348 if (rc >= 0)
d5c5605c 2349 connected = true;
1da177e4
LT		 2350 }
2351
2352 /* give up here - unless we want to retry on different
2353 protocol families some day */
2354 if (!connected) {
fb8c4b14 2355 if (orig_port)
d5c5605c 2356 server->addr.sockAddr6.sin6_port = orig_port;
b6b38f70 2357 cFYI(1, "Error %d connecting to server via ipv6", rc);
d5c5605c
JL		 2358 sock_release(socket);
2359 server->ssocket = NULL;
1da177e4
LT		 2360 return rc;
2361 }
edf1ae40 2362
d5c5605c
JL		 2363 /*
2364 * Eventually check for other socket options to change from
2365 * the default. sock_setsockopt not used because it expects
2366 * user space buffer
2367 */
2368 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2369 socket->sk->sk_sndtimeo = 5 * HZ;
6a5fa236
SF		 2370
2371 if (server->tcp_nodelay) {
2372 val = 1;
2373 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2374 (char *)&val, sizeof(val));
2375 if (rc)
b6b38f70 2376 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2377 }
2378
d5c5605c 2379 server->ssocket = socket;
50c2f753 2380
1da177e4
LT		 2381 return rc;
2382}
2383
50c2f753
SF		 2384void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2385 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2386{
2387 /* if we are reconnecting then should we check to see if
2388 * any requested capabilities changed locally e.g. via
2389 * remount but we can not do much about it here
2390 * if they have (even if we could detect it by the following)
2391 * Perhaps we could add a backpointer to array of sb from tcon
2392 * or if we change to make all sb to same share the same
2393 * sb as NFS - then we only have one backpointer to sb.
2394 * What if we wanted to mount the server share twice once with
2395 * and once without posixacls or posix paths? */
2396 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2397
c18c842b
SF		 2398 if (vol_info && vol_info->no_linux_ext) {
2399 tcon->fsUnixInfo.Capability = 0;
2400 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2401 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2402 return;
2403 } else if (vol_info)
2404 tcon->unix_ext = 1; /* Unix Extensions supported */
2405
2406 if (tcon->unix_ext == 0) {
b6b38f70 2407 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2408 return;
2409 }
50c2f753 2410
fb8c4b14 2411 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2412 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2413
8af18971
SF		 2414 /* check for reconnect case in which we do not
2415 want to change the mount behavior if we can avoid it */
fb8c4b14 2416 if (vol_info == NULL) {
50c2f753 2417 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2418 originally at mount time */
2419 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2420 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2421 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2422 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2423 cERROR(1, "POSIXPATH support change");
8af18971 2424 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2425 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2426 cERROR(1, "possible reconnect error");
2427 cERROR(1, "server disabled POSIX path support");
11b6d645 2428 }
8af18971 2429 }
50c2f753 2430
8af18971 2431 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2432 if (vol_info && vol_info->no_psx_acl)
8af18971 2433 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2434 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2435 cFYI(1, "negotiated posix acl support");
fb8c4b14 2436 if (sb)
8af18971
SF		 2437 sb->s_flags |= MS_POSIXACL;
2438 }
2439
75865f8c 2440 if (vol_info && vol_info->posix_paths == 0)
8af18971 2441 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2442 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2443 cFYI(1, "negotiate posix pathnames");
75865f8c 2444 if (sb)
50c2f753 2445 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2446 CIFS_MOUNT_POSIX_PATHS;
2447 }
50c2f753 2448
984acfe1
SF		 2449 /* We might be setting the path sep back to a different
2450 form if we are reconnecting and the server switched its
50c2f753 2451 posix path capability for this share */
75865f8c 2452 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2453 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2454
2455 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2456 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2457 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2458 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2459 }
2460 }
50c2f753
SF		 2461
2462
b6b38f70 2463 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2464#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2465 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2466 cFYI(1, "FCNTL cap");
75865f8c 2467 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2468 cFYI(1, "EXTATTR cap");
75865f8c 2469 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2470 cFYI(1, "POSIX path cap");
75865f8c 2471 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2472 cFYI(1, "XATTR cap");
75865f8c 2473 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2474 cFYI(1, "POSIX ACL cap");
75865f8c 2475 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2476 cFYI(1, "very large read cap");
75865f8c 2477 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2478 cFYI(1, "very large write cap");
8af18971
SF		 2479#endif /* CIFS_DEBUG2 */
2480 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2481 if (vol_info == NULL) {
b6b38f70 2482 cFYI(1, "resetting capabilities failed");
442aa310 2483 } else
b6b38f70 2484 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2485 "with the server failed. Consider "
2486 "mounting with the Unix Extensions\n"
2487 "disabled, if problems are found, "
2488 "by specifying the nounix mount "
b6b38f70 2489 "option.");
5a44b319 2490
8af18971
SF		 2491 }
2492 }
2493}
2494
03a143c9
SF		 2495static void
2496convert_delimiter(char *path, char delim)
2497{
2498 int i;
c2d68ea6 2499 char old_delim;
03a143c9
SF		 2500
2501 if (path == NULL)
2502 return;
2503
582d21e5 2504 if (delim == '/')
c2d68ea6
SF		 2505 old_delim = '\\';
2506 else
2507 old_delim = '/';
2508
03a143c9 2509 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2510 if (path[i] == old_delim)
03a143c9
SF		 2511 path[i] = delim;
2512 }
2513}
2514
3b795210
SF		 2515static void setup_cifs_sb(struct smb_vol *pvolume_info,
2516 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2517{
2de970ff
JL		 2518 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2519
3b795210 2520 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2521 cERROR(1, "rsize %d too large, using MaxBufSize",
2522 pvolume_info->rsize);
3b795210
SF		 2523 cifs_sb->rsize = CIFSMaxBufSize;
2524 } else if ((pvolume_info->rsize) &&
2525 (pvolume_info->rsize <= CIFSMaxBufSize))
2526 cifs_sb->rsize = pvolume_info->rsize;
2527 else /* default */
2528 cifs_sb->rsize = CIFSMaxBufSize;
2529
2530 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
b6b38f70
JP		 2531 cERROR(1, "wsize %d too large, using 4096 instead",
2532 pvolume_info->wsize);
3b795210
SF		 2533 cifs_sb->wsize = 4096;
2534 } else if (pvolume_info->wsize)
2535 cifs_sb->wsize = pvolume_info->wsize;
2536 else
2537 cifs_sb->wsize = min_t(const int,
2538 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2539 127*1024);
2540 /* old default of CIFSMaxBufSize was too small now
2541 that SMB Write2 can send multiple pages in kvec.
2542 RFC1001 does not describe what happens when frame
2543 bigger than 128K is sent so use that as max in
2544 conjunction with 52K kvec constraint on arch with 4K
2545 page size */
2546
2547 if (cifs_sb->rsize < 2048) {
2548 cifs_sb->rsize = 2048;
2549 /* Windows ME may prefer this */
b6b38f70 2550 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2551 }
2552 /* calculate prepath */
2553 cifs_sb->prepath = pvolume_info->prepath;
2554 if (cifs_sb->prepath) {
2555 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2556 /* we can not convert the / to \ in the path
2557 separators in the prefixpath yet because we do not
2558 know (until reset_cifs_unix_caps is called later)
2559 whether POSIX PATH CAP is available. We normalize
2560 the / to \ after reset_cifs_unix_caps is called */
2561 pvolume_info->prepath = NULL;
2562 } else
2563 cifs_sb->prepathlen = 0;
2564 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2565 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2566 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2567 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2568 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2569 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210
SF		 2570
2571 if (pvolume_info->noperm)
2572 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2573 if (pvolume_info->setuids)
2574 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2575 if (pvolume_info->server_ino)
2576 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2577 if (pvolume_info->remap)
2578 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2579 if (pvolume_info->no_xattr)
2580 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2581 if (pvolume_info->sfu_emul)
2582 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2583 if (pvolume_info->nobrl)
2584 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2585 if (pvolume_info->nostrictsync)
4717bed6 2586 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2587 if (pvolume_info->mand_lock)
2588 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2589 if (pvolume_info->cifs_acl)
2590 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2591 if (pvolume_info->override_uid)
2592 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2593 if (pvolume_info->override_gid)
2594 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2595 if (pvolume_info->dynperm)
2596 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
fa1df75d
SJ		 2597 if (pvolume_info->fsc)
2598 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
0eb8a132
JL		 2599 if (pvolume_info->multiuser)
2600 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2601 CIFS_MOUNT_NO_PERM);
3b795210 2602 if (pvolume_info->direct_io) {
b6b38f70 2603 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2604 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2605 }
736a3320
SM		 2606 if (pvolume_info->mfsymlinks) {
2607 if (pvolume_info->sfu_emul) {
2608 cERROR(1, "mount option mfsymlinks ignored if sfu "
2609 "mount option is used");
2610 } else {
2611 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2612 }
2613 }
3b795210
SF		 2614
2615 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2616 cERROR(1, "mount option dynperm ignored if cifsacl "
2617 "mount option supported");
b1c8d2b4
JL		 2618}
2619
e4cce94c
IM		 2620static int
2621is_path_accessible(int xid, struct cifsTconInfo *tcon,
2622 struct cifs_sb_info *cifs_sb, const char *full_path)
2623{
2624 int rc;
e4cce94c
IM		 2625 FILE_ALL_INFO *pfile_info;
2626
e4cce94c
IM		 2627 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2628 if (pfile_info == NULL)
2629 return -ENOMEM;
2630
2631 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2632 0 /* not legacy */, cifs_sb->local_nls,
2633 cifs_sb->mnt_cifs_flags &
2634 CIFS_MOUNT_MAP_SPECIAL_CHR);
2635 kfree(pfile_info);
2636 return rc;
2637}
2638
1bfe73c2
IM		 2639static void
2640cleanup_volume_info(struct smb_vol **pvolume_info)
2641{
2642 struct smb_vol *volume_info;
2643
ad6cca6d 2644 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2645 return;
2646
2647 volume_info = *pvolume_info;
2648 kzfree(volume_info->password);
2649 kfree(volume_info->UNC);
2650 kfree(volume_info->prepath);
2651 kfree(volume_info);
2652 *pvolume_info = NULL;
2653 return;
2654}
2655
2d6d589d 2656#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2657/* build_path_to_root returns full path to root when
2658 * we do not have an exiting connection (tcon) */
2659static char *
2660build_unc_path_to_root(const struct smb_vol *volume_info,
2661 const struct cifs_sb_info *cifs_sb)
2662{
2663 char *full_path;
2664
2665 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2666 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2667 if (full_path == NULL)
2668 return ERR_PTR(-ENOMEM);
2669
2670 strncpy(full_path, volume_info->UNC, unc_len);
2671 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2672 int i;
2673 for (i = 0; i < unc_len; i++) {
2674 if (full_path[i] == '\\')
2675 full_path[i] = '/';
2676 }
2677 }
2678
2679 if (cifs_sb->prepathlen)
2680 strncpy(full_path + unc_len, cifs_sb->prepath,
2681 cifs_sb->prepathlen);
2682
2683 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2684 return full_path;
2685}
2d6d589d 2686#endif
1bfe73c2 2687
1da177e4
LT		 2688int
2689cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
1bfe73c2 2690 char *mount_data_global, const char *devname)
1da177e4 2691{
a2934c7b 2692 int rc;
1da177e4 2693 int xid;
7586b765 2694 struct smb_vol *volume_info;
a2934c7b
JL		 2695 struct cifsSesInfo *pSesInfo;
2696 struct cifsTconInfo *tcon;
2697 struct TCP_Server_Info *srvTcp;
e4cce94c 2698 char *full_path;
2d6d589d 2699 char *mount_data = mount_data_global;
9d002df4 2700 struct tcon_link *tlink;
2d6d589d 2701#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2702 struct dfs_info3_param *referrals = NULL;
2703 unsigned int num_referrals = 0;
5c2503a8 2704 int referral_walks_count = 0;
1bfe73c2 2705try_mount_again:
2d6d589d 2706#endif
a2934c7b
JL		 2707 rc = 0;
2708 tcon = NULL;
2709 pSesInfo = NULL;
2710 srvTcp = NULL;
1bfe73c2 2711 full_path = NULL;
9d002df4 2712 tlink = NULL;
1da177e4
LT		 2713
2714 xid = GetXid();
2715
7586b765
JL		 2716 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2717 if (!volume_info) {
2718 rc = -ENOMEM;
2719 goto out;
2720 }
50c2f753 2721
7586b765 2722 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
70fe7dc0
JL		 2723 rc = -EINVAL;
2724 goto out;
1da177e4
LT		 2725 }
2726
7586b765 2727 if (volume_info->nullauth) {
b6b38f70 2728 cFYI(1, "null user");
7586b765
JL		 2729 volume_info->username = "";
2730 } else if (volume_info->username) {
1da177e4 2731 /* BB fixme parse for domain name here */
b6b38f70 2732 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2733 } else {
bf820679 2734 cifserror("No username specified");
50c2f753
SF		 2735 /* In userspace mount helper we can get user name from alternate
2736 locations such as env variables and files on disk */
70fe7dc0
JL		 2737 rc = -EINVAL;
2738 goto out;
1da177e4
LT		 2739 }
2740
1da177e4 2741 /* this is needed for ASCII cp to Unicode converts */
7586b765 2742 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2743 /* load_nls_default cannot return null */
2744 volume_info->local_nls = load_nls_default();
1da177e4 2745 } else {
a5fc4ce0
JL		 2746 volume_info->local_nls = load_nls(volume_info->iocharset);
2747 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2748 cERROR(1, "CIFS mount error: iocharset %s not found",
2749 volume_info->iocharset);
70fe7dc0
JL		 2750 rc = -ELIBACC;
2751 goto out;
1da177e4
LT		 2752 }
2753 }
a5fc4ce0 2754 cifs_sb->local_nls = volume_info->local_nls;
1da177e4 2755
63c038c2 2756 /* get a reference to a tcp session */
7586b765 2757 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 2758 if (IS_ERR(srvTcp)) {
2759 rc = PTR_ERR(srvTcp);
2760 goto out;
1da177e4
LT		 2761 }
2762
36988c76
JL		 2763 /* get a reference to a SMB session */
2764 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2765 if (IS_ERR(pSesInfo)) {
2766 rc = PTR_ERR(pSesInfo);
2767 pSesInfo = NULL;
2768 goto mount_fail_check;
1da177e4 2769 }
50c2f753 2770
d00c28de
JL		 2771 setup_cifs_sb(volume_info, cifs_sb);
2772 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2773 sb->s_maxbytes = MAX_LFS_FILESIZE;
2774 else
2775 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 2776
8af18971 2777 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 2778 sb->s_time_gran = 100;
2779
d00c28de
JL		 2780 /* search for existing tcon to this server share */
2781 tcon = cifs_get_tcon(pSesInfo, volume_info);
2782 if (IS_ERR(tcon)) {
2783 rc = PTR_ERR(tcon);
2784 tcon = NULL;
1bfe73c2 2785 goto remote_path_check;
d00c28de 2786 }
1bfe73c2 2787
d82c2df5
SF		 2788 /* do not care if following two calls succeed - informational */
2789 if (!tcon->ipc) {
2790 CIFSSMBQFSDeviceInfo(xid, tcon);
2791 CIFSSMBQFSAttributeInfo(xid, tcon);
2792 }
03a143c9 2793
d82c2df5
SF		 2794 /* tell server which Unix caps we support */
2795 if (tcon->ses->capabilities & CAP_UNIX)
2796 /* reset of caps checks mount to see if unix extensions
2797 disabled for just this mount */
7586b765 2798 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
d82c2df5
SF		 2799 else
2800 tcon->unix_ext = 0; /* server does not support them */
c18c842b 2801
d82c2df5
SF		 2802 /* convert forward to back slashes in prepath here if needed */
2803 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2804 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 2805
d82c2df5
SF		 2806 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2807 cifs_sb->rsize = 1024 * 127;
b6b38f70 2808 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 2809 }
d82c2df5
SF		 2810 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2811 cifs_sb->wsize = min(cifs_sb->wsize,
2812 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2813 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2814 cifs_sb->rsize = min(cifs_sb->rsize,
2815 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 2816
1bfe73c2
IM		 2817remote_path_check:
2818 /* check if a whole path (including prepath) is not remote */
2819 if (!rc && cifs_sb->prepathlen && tcon) {
e4cce94c
IM		 2820 /* build_path_to_root works only when we have a valid tcon */
2821 full_path = cifs_build_path_to_root(cifs_sb);
2822 if (full_path == NULL) {
2823 rc = -ENOMEM;
2824 goto mount_fail_check;
2825 }
2826 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
1bfe73c2 2827 if (rc != -EREMOTE) {
e4cce94c
IM		 2828 kfree(full_path);
2829 goto mount_fail_check;
2830 }
2831 kfree(full_path);
2832 }
2833
1bfe73c2
IM		 2834 /* get referral if needed */
2835 if (rc == -EREMOTE) {
d036f50f 2836#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 2837 if (referral_walks_count > MAX_NESTED_LINKS) {
2838 /*
2839 * BB: when we implement proper loop detection,
2840 * we will remove this check. But now we need it
2841 * to prevent an indefinite loop if 'DFS tree' is
2842 * misconfigured (i.e. has loops).
2843 */
2844 rc = -ELOOP;
2845 goto mount_fail_check;
2846 }
1bfe73c2
IM		 2847 /* convert forward to back slashes in prepath here if needed */
2848 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2849 convert_delimiter(cifs_sb->prepath,
2850 CIFS_DIR_SEP(cifs_sb));
2851 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2852 if (IS_ERR(full_path)) {
2853 rc = PTR_ERR(full_path);
2854 goto mount_fail_check;
2855 }
2856
b6b38f70 2857 cFYI(1, "Getting referral for: %s", full_path);
1bfe73c2
IM		 2858 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2859 cifs_sb->local_nls, &num_referrals, &referrals,
2860 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2861 if (!rc && num_referrals > 0) {
2862 char *fake_devname = NULL;
2863
2864 if (mount_data != mount_data_global)
2865 kfree(mount_data);
7b91e266 2866
1bfe73c2
IM		 2867 mount_data = cifs_compose_mount_options(
2868 cifs_sb->mountdata, full_path + 1,
2869 referrals, &fake_devname);
7b91e266 2870
1bfe73c2 2871 free_dfs_info_array(referrals, num_referrals);
7b91e266
JL		 2872 kfree(fake_devname);
2873 kfree(full_path);
2874
2875 if (IS_ERR(mount_data)) {
2876 rc = PTR_ERR(mount_data);
2877 mount_data = NULL;
2878 goto mount_fail_check;
2879 }
1bfe73c2
IM		 2880
2881 if (tcon)
2882 cifs_put_tcon(tcon);
2883 else if (pSesInfo)
2884 cifs_put_smb_ses(pSesInfo);
2885
2886 cleanup_volume_info(&volume_info);
5c2503a8 2887 referral_walks_count++;
a2934c7b 2888 FreeXid(xid);
1bfe73c2
IM		 2889 goto try_mount_again;
2890 }
d036f50f
SF		 2891#else /* No DFS support, return error on mount */
2892 rc = -EOPNOTSUPP;
2893#endif
1bfe73c2
IM		 2894 }
2895
9d002df4
JL		 2896 if (rc)
2897 goto mount_fail_check;
2898
2899 /* now, hang the tcon off of the superblock */
2900 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
2901 if (tlink == NULL) {
2902 rc = -ENOMEM;
2903 goto mount_fail_check;
2904 }
2905
2906 tlink->tl_index = pSesInfo->linux_uid;
2907 tlink->tl_tcon = tcon;
2908 tlink->tl_time = jiffies;
2909 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
2910 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
2911
2912 rc = radix_tree_preload(GFP_KERNEL);
2913 if (rc == -ENOMEM) {
2914 kfree(tlink);
2915 goto mount_fail_check;
2916 }
2917
2918 spin_lock(&cifs_sb->tlink_tree_lock);
2919 radix_tree_insert(&cifs_sb->tlink_tree, pSesInfo->linux_uid, tlink);
2920 radix_tree_tag_set(&cifs_sb->tlink_tree, pSesInfo->linux_uid,
2921 CIFS_TLINK_MASTER_TAG);
2922 spin_unlock(&cifs_sb->tlink_tree_lock);
2923 radix_tree_preload_end();
2924
2de970ff
JL		 2925 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
2926 TLINK_IDLE_EXPIRE);
2927
1bfe73c2
IM		 2928mount_fail_check:
2929 /* on error free sesinfo and tcon struct if needed */
2930 if (rc) {
2931 if (mount_data != mount_data_global)
2932 kfree(mount_data);
2933 /* If find_unc succeeded then rc == 0 so we can not end */
2934 /* up accidently freeing someone elses tcon struct */
2935 if (tcon)
2936 cifs_put_tcon(tcon);
2937 else if (pSesInfo)
2938 cifs_put_smb_ses(pSesInfo);
2939 else
2940 cifs_put_tcp_session(srvTcp);
2941 goto out;
2942 }
2943
7586b765 2944 /* volume_info->password is freed above when existing session found
1da177e4
LT		 2945 (in which case it is not needed anymore) but when new sesion is created
2946 the password ptr is put in the new session structure (in which case the
2947 password will be freed at unmount time) */
70fe7dc0
JL		 2948out:
2949 /* zero out password before freeing */
1bfe73c2 2950 cleanup_volume_info(&volume_info);
1da177e4
LT		 2951 FreeXid(xid);
2952 return rc;
2953}
2954
1da177e4
LT		 2955int
2956CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2957 const char *tree, struct cifsTconInfo *tcon,
2958 const struct nls_table *nls_codepage)
2959{
2960 struct smb_hdr *smb_buffer;
2961 struct smb_hdr *smb_buffer_response;
2962 TCONX_REQ *pSMB;
2963 TCONX_RSP *pSMBr;
2964 unsigned char *bcc_ptr;
2965 int rc = 0;
cc20c031 2966 int length, bytes_left;
1da177e4
LT		 2967 __u16 count;
2968
2969 if (ses == NULL)
2970 return -EIO;
2971
2972 smb_buffer = cifs_buf_get();
ca43e3be 2973 if (smb_buffer == NULL)
1da177e4 2974 return -ENOMEM;
ca43e3be 2975
1da177e4
LT		 2976 smb_buffer_response = smb_buffer;
2977
2978 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2979 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 2980
2981 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 2982 smb_buffer->Uid = ses->Suid;
2983 pSMB = (TCONX_REQ *) smb_buffer;
2984 pSMBr = (TCONX_RSP *) smb_buffer_response;
2985
2986 pSMB->AndXCommand = 0xFF;
2987 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 2988 bcc_ptr = &pSMB->Password[0];
fb8c4b14 2989 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 2990 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 2991 *bcc_ptr = 0; /* password is null byte */
eeac8047 2992 bcc_ptr++; /* skip password */
7c7b25bc 2993 /* already aligned so no need to do it below */
eeac8047 2994 } else {
7c7b25bc 2995 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
eeac8047
SF		 2996 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2997 specified as required (when that support is added to
2998 the vfs in the future) as only NTLM or the much
7c7b25bc 2999 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 3000 by Samba (not sure whether other servers allow
3001 NTLMv2 password here) */
7c7b25bc 3002#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 3003 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0 3004 (ses->server->secType == LANMAN))
d3ba50b1 3005 calc_lanman_hash(tcon->password, ses->server->cryptkey,
4e53a3fb
JL		 3006 ses->server->secMode &
3007 SECMODE_PW_ENCRYPT ? true : false,
3008 bcc_ptr);
7c7b25bc
SF		 3009 else
3010#endif /* CIFS_WEAK_PW_HASH */
d3ba50b1 3011 SMBNTencrypt(tcon->password, ses->server->cryptkey, bcc_ptr);
eeac8047 3012
7c7b25bc 3013 bcc_ptr += CIFS_SESS_KEY_SIZE;
fb8c4b14 3014 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 3015 /* must align unicode strings */
3016 *bcc_ptr = 0; /* null byte password */
3017 bcc_ptr++;
3018 }
eeac8047 3019 }
1da177e4 3020
50c2f753 3021 if (ses->server->secMode &
a878fb22 3022 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 3023 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3024
3025 if (ses->capabilities & CAP_STATUS32) {
3026 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3027 }
3028 if (ses->capabilities & CAP_DFS) {
3029 smb_buffer->Flags2 |= SMBFLG2_DFS;
3030 }
3031 if (ses->capabilities & CAP_UNICODE) {
3032 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3033 length =
50c2f753
SF		 3034 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3035 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 3036 (/* server len*/ + 256 /* share len */), nls_codepage);
3037 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 3038 bcc_ptr += 2; /* skip trailing null */
3039 } else { /* ASCII */
1da177e4
LT		 3040 strcpy(bcc_ptr, tree);
3041 bcc_ptr += strlen(tree) + 1;
3042 }
3043 strcpy(bcc_ptr, "?????");
3044 bcc_ptr += strlen("?????");
3045 bcc_ptr += 1;
3046 count = bcc_ptr - &pSMB->Password[0];
3047 pSMB->hdr.smb_buf_length += count;
3048 pSMB->ByteCount = cpu_to_le16(count);
3049
133672ef
SF		 3050 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
3051 CIFS_STD_OP);
1da177e4 3052
1da177e4
LT		 3053 /* above now done in SendReceive */
3054 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 3055 bool is_unicode;
3056
1da177e4 3057 tcon->tidStatus = CifsGood;
3b795210 3058 tcon->need_reconnect = false;
1da177e4
LT		 3059 tcon->tid = smb_buffer_response->Tid;
3060 bcc_ptr = pByteArea(smb_buffer_response);
cc20c031
JL		 3061 bytes_left = BCC(smb_buffer_response);
3062 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 3063 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3064 is_unicode = true;
3065 else
3066 is_unicode = false;
3067
cc20c031 3068
50c2f753 3069 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 3070 if (length == 3) {
3071 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3072 (bcc_ptr[2] == 'C')) {
b6b38f70 3073 cFYI(1, "IPC connection");
7f8ed420
SF		 3074 tcon->ipc = 1;
3075 }
3076 } else if (length == 2) {
3077 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3078 /* the most common case */
b6b38f70 3079 cFYI(1, "disk share connection");
7f8ed420
SF		 3080 }
3081 }
50c2f753 3082 bcc_ptr += length + 1;
cc20c031 3083 bytes_left -= (length + 1);
1da177e4 3084 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 3085
3086 /* mostly informational -- no need to fail on error here */
90a98b2f 3087 kfree(tcon->nativeFileSystem);
d185cda7 3088 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 3089 bytes_left, is_unicode,
cc20c031
JL		 3090 nls_codepage);
3091
b6b38f70 3092 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 3093
fb8c4b14 3094 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 3095 (smb_buffer_response->WordCount == 7))
3096 /* field is in same location */
3979877e
SF		 3097 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3098 else
3099 tcon->Flags = 0;
b6b38f70 3100 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 3101 } else if ((rc == 0) && tcon == NULL) {
50c2f753 3102 /* all we need to save for IPC$ connection */
1da177e4
LT		 3103 ses->ipc_tid = smb_buffer_response->Tid;
3104 }
3105
a8a11d39 3106 cifs_buf_release(smb_buffer);
1da177e4
LT		 3107 return rc;
3108}
3109
3110int
3111cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
3112{
9d002df4 3113 int i, ret;
50c2f753 3114 char *tmp;
9d002df4
JL		 3115 struct tcon_link *tlink[8];
3116 unsigned long index = 0;
3117
2de970ff
JL		 3118 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3119
9d002df4
JL		 3120 do {
3121 spin_lock(&cifs_sb->tlink_tree_lock);
3122 ret = radix_tree_gang_lookup(&cifs_sb->tlink_tree,
3123 (void **)tlink, index,
3124 ARRAY_SIZE(tlink));
3125 /* increment index for next pass */
3126 if (ret > 0)
3127 index = tlink[ret - 1]->tl_index + 1;
3128 for (i = 0; i < ret; i++) {
3129 cifs_get_tlink(tlink[i]);
3130 clear_bit(TCON_LINK_IN_TREE, &tlink[i]->tl_flags);
3131 radix_tree_delete(&cifs_sb->tlink_tree,
3132 tlink[i]->tl_index);
3133 }
3134 spin_unlock(&cifs_sb->tlink_tree_lock);
1da177e4 3135
9d002df4
JL		 3136 for (i = 0; i < ret; i++)
3137 cifs_put_tlink(tlink[i]);
3138 } while (ret != 0);
50c2f753 3139
2fe87f02
SF		 3140 tmp = cifs_sb->prepath;
3141 cifs_sb->prepathlen = 0;
3142 cifs_sb->prepath = NULL;
3143 kfree(tmp);
1da177e4 3144
9d002df4 3145 return 0;
50c2f753 3146}
1da177e4 3147
198b5682 3148int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 3149{
3150 int rc = 0;
198b5682 3151 struct TCP_Server_Info *server = ses->server;
1da177e4 3152
198b5682
JL		 3153 /* only send once per connect */
3154 if (server->maxBuf != 0)
3155 return 0;
3156
3157 rc = CIFSSMBNegotiate(xid, ses);
3158 if (rc == -EAGAIN) {
3159 /* retry only once on 1st time connection */
3160 rc = CIFSSMBNegotiate(xid, ses);
3161 if (rc == -EAGAIN)
3162 rc = -EHOSTDOWN;
1da177e4 3163 }
198b5682
JL		 3164 if (rc == 0) {
3165 spin_lock(&GlobalMid_Lock);
3166 if (server->tcpStatus != CifsExiting)
3167 server->tcpStatus = CifsGood;
3168 else
3169 rc = -EHOSTDOWN;
3170 spin_unlock(&GlobalMid_Lock);
26b994fa 3171
198b5682
JL		 3172 }
3173
3174 return rc;
3175}
3176
3177
3178int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
3179 struct nls_table *nls_info)
3180{
3181 int rc = 0;
3182 struct TCP_Server_Info *server = ses->server;
26b994fa 3183
198b5682
JL		 3184 ses->flags = 0;
3185 ses->capabilities = server->capabilities;
26b994fa 3186 if (linuxExtEnabled == 0)
198b5682 3187 ses->capabilities &= (~CAP_UNIX);
20418acd 3188
b6b38f70
JP		 3189 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3190 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 3191
198b5682 3192 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 3193 if (rc) {
b6b38f70 3194 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 3195 } else {
5d0d2882
SP		 3196 mutex_lock(&ses->server->srv_mutex);
3197 if (!server->session_estab) {
21e73393 3198 server->session_key.response = ses->auth_key.response;
5d0d2882 3199 server->session_key.len = ses->auth_key.len;
21e73393
SP		 3200 server->sequence_number = 0x2;
3201 server->session_estab = true;
3202 ses->auth_key.response = NULL;
5d0d2882
SP		 3203 }
3204 mutex_unlock(&server->srv_mutex);
3205
b6b38f70 3206 cFYI(1, "CIFS Session Established successfully");
20418acd 3207 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3208 ses->status = CifsGood;
3209 ses->need_reconnect = false;
20418acd 3210 spin_unlock(&GlobalMid_Lock);
1da177e4 3211 }
26b994fa 3212
21e73393
SP		 3213 kfree(ses->auth_key.response);
3214 ses->auth_key.response = NULL;
3215 ses->auth_key.len = 0;
3216
1da177e4
LT		 3217 return rc;
3218}
3219
d2445556 3220static struct cifsTconInfo *
9d002df4
JL		 3221cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3222{
3223 struct cifsTconInfo *master_tcon = cifs_sb_master_tcon(cifs_sb);
3224 struct cifsSesInfo *ses;
3225 struct cifsTconInfo *tcon = NULL;
3226 struct smb_vol *vol_info;
3227 char username[MAX_USERNAME_SIZE + 1];
3228
3229 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3230 if (vol_info == NULL) {
3231 tcon = ERR_PTR(-ENOMEM);
3232 goto out;
3233 }
3234
3235 snprintf(username, MAX_USERNAME_SIZE, "krb50x%x", fsuid);
3236 vol_info->username = username;
3237 vol_info->local_nls = cifs_sb->local_nls;
3238 vol_info->linux_uid = fsuid;
3239 vol_info->cred_uid = fsuid;
3240 vol_info->UNC = master_tcon->treeName;
3241 vol_info->retry = master_tcon->retry;
3242 vol_info->nocase = master_tcon->nocase;
3243 vol_info->local_lease = master_tcon->local_lease;
3244 vol_info->no_linux_ext = !master_tcon->unix_ext;
3245
3246 /* FIXME: allow for other secFlg settings */
3247 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3248
3249 /* get a reference for the same TCP session */
3f9bcca7 3250 spin_lock(&cifs_tcp_ses_lock);
9d002df4 3251 ++master_tcon->ses->server->srv_count;
3f9bcca7 3252 spin_unlock(&cifs_tcp_ses_lock);
9d002df4
JL		 3253
3254 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3255 if (IS_ERR(ses)) {
3256 tcon = (struct cifsTconInfo *)ses;
3257 cifs_put_tcp_session(master_tcon->ses->server);
3258 goto out;
3259 }
3260
3261 tcon = cifs_get_tcon(ses, vol_info);
3262 if (IS_ERR(tcon)) {
3263 cifs_put_smb_ses(ses);
3264 goto out;
3265 }
3266
3267 if (ses->capabilities & CAP_UNIX)
3268 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3269out:
3270 kfree(vol_info);
3271
3272 return tcon;
3273}
3274
3275static struct tcon_link *
3276cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
3277{
3278 struct tcon_link *tlink;
3279 unsigned int ret;
3280
3281 spin_lock(&cifs_sb->tlink_tree_lock);
3282 ret = radix_tree_gang_lookup_tag(&cifs_sb->tlink_tree, (void **)&tlink,
3283 0, 1, CIFS_TLINK_MASTER_TAG);
3284 spin_unlock(&cifs_sb->tlink_tree_lock);
3285
3286 /* the master tcon should always be present */
3287 if (ret == 0)
3288 BUG();
3289
3290 return tlink;
3291}
3292
3293struct cifsTconInfo *
3294cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3295{
3296 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3297}
3298
3299static int
3300cifs_sb_tcon_pending_wait(void *unused)
3301{
3302 schedule();
3303 return signal_pending(current) ? -ERESTARTSYS : 0;
3304}
3305
3306/*
3307 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3308 * current task.
3309 *
3310 * If the superblock doesn't refer to a multiuser mount, then just return
3311 * the master tcon for the mount.
3312 *
3313 * First, search the radix tree for an existing tcon for this fsuid. If one
3314 * exists, then check to see if it's pending construction. If it is then wait
3315 * for construction to complete. Once it's no longer pending, check to see if
3316 * it failed and either return an error or retry construction, depending on
3317 * the timeout.
3318 *
3319 * If one doesn't exist then insert a new tcon_link struct into the tree and
3320 * try to construct a new one.
3321 */
3322struct tcon_link *
3323cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3324{
3325 int ret;
3326 unsigned long fsuid = (unsigned long) current_fsuid();
3327 struct tcon_link *tlink, *newtlink;
3328
3329 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3330 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3331
3332 spin_lock(&cifs_sb->tlink_tree_lock);
3333 tlink = radix_tree_lookup(&cifs_sb->tlink_tree, fsuid);
3334 if (tlink)
3335 cifs_get_tlink(tlink);
3336 spin_unlock(&cifs_sb->tlink_tree_lock);
3337
3338 if (tlink == NULL) {
3339 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3340 if (newtlink == NULL)
3341 return ERR_PTR(-ENOMEM);
3342 newtlink->tl_index = fsuid;
3343 newtlink->tl_tcon = ERR_PTR(-EACCES);
3344 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3345 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3346 cifs_get_tlink(newtlink);
3347
3348 ret = radix_tree_preload(GFP_KERNEL);
3349 if (ret != 0) {
3350 kfree(newtlink);
3351 return ERR_PTR(ret);
3352 }
3353
3354 spin_lock(&cifs_sb->tlink_tree_lock);
3355 /* was one inserted after previous search? */
3356 tlink = radix_tree_lookup(&cifs_sb->tlink_tree, fsuid);
3357 if (tlink) {
3358 cifs_get_tlink(tlink);
3359 spin_unlock(&cifs_sb->tlink_tree_lock);
3360 radix_tree_preload_end();
3361 kfree(newtlink);
3362 goto wait_for_construction;
3363 }
3364 ret = radix_tree_insert(&cifs_sb->tlink_tree, fsuid, newtlink);
3365 spin_unlock(&cifs_sb->tlink_tree_lock);
3366 radix_tree_preload_end();
3367 if (ret) {
3368 kfree(newtlink);
3369 return ERR_PTR(ret);
3370 }
3371 tlink = newtlink;
3372 } else {
3373wait_for_construction:
3374 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3375 cifs_sb_tcon_pending_wait,
3376 TASK_INTERRUPTIBLE);
3377 if (ret) {
3378 cifs_put_tlink(tlink);
3379 return ERR_PTR(ret);
3380 }
3381
3382 /* if it's good, return it */
3383 if (!IS_ERR(tlink->tl_tcon))
3384 return tlink;
3385
3386 /* return error if we tried this already recently */
3387 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3388 cifs_put_tlink(tlink);
3389 return ERR_PTR(-EACCES);
3390 }
3391
3392 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3393 goto wait_for_construction;
3394 }
3395
3396 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3397 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3398 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3399
3400 if (IS_ERR(tlink->tl_tcon)) {
3401 cifs_put_tlink(tlink);
3402 return ERR_PTR(-EACCES);
3403 }
3404
3405 return tlink;
3406}
2de970ff
JL		 3407
3408/*
3409 * periodic workqueue job that scans tcon_tree for a superblock and closes
3410 * out tcons.
3411 */
3412static void
3413cifs_prune_tlinks(struct work_struct *work)
3414{
3415 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3416 prune_tlinks.work);
3417 struct tcon_link *tlink[8];
3418 unsigned long now = jiffies;
3419 unsigned long index = 0;
3420 int i, ret;
3421
3422 do {
3423 spin_lock(&cifs_sb->tlink_tree_lock);
3424 ret = radix_tree_gang_lookup(&cifs_sb->tlink_tree,
3425 (void **)tlink, index,
3426 ARRAY_SIZE(tlink));
3427 /* increment index for next pass */
3428 if (ret > 0)
3429 index = tlink[ret - 1]->tl_index + 1;
3430 for (i = 0; i < ret; i++) {
3431 if (test_bit(TCON_LINK_MASTER, &tlink[i]->tl_flags) ||
3432 atomic_read(&tlink[i]->tl_count) != 0 ||
3433 time_after(tlink[i]->tl_time + TLINK_IDLE_EXPIRE,
3434 now)) {
3435 tlink[i] = NULL;
3436 continue;
3437 }
3438 cifs_get_tlink(tlink[i]);
3439 clear_bit(TCON_LINK_IN_TREE, &tlink[i]->tl_flags);
3440 radix_tree_delete(&cifs_sb->tlink_tree,
3441 tlink[i]->tl_index);
3442 }
3443 spin_unlock(&cifs_sb->tlink_tree_lock);
3444
3445 for (i = 0; i < ret; i++) {
3446 if (tlink[i] != NULL)
3447 cifs_put_tlink(tlink[i]);
3448 }
3449 } while (ret != 0);
3450
3451 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3452 TLINK_IDLE_EXPIRE);
3453}
A mirror of Linus' kernel repository