4 * Copyright (C) International Business Machines Corp., 2002,2009
5 * Author(s): Steve French (sfrench@us.ibm.com)
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
22 #include <linux/net.h>
23 #include <linux/string.h>
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/slab.h>
27 #include <linux/pagemap.h>
28 #include <linux/ctype.h>
29 #include <linux/utsname.h>
30 #include <linux/mempool.h>
31 #include <linux/delay.h>
32 #include <linux/completion.h>
33 #include <linux/kthread.h>
34 #include <linux/pagevec.h>
35 #include <linux/freezer.h>
36 #include <linux/namei.h>
37 #include <asm/uaccess.h>
38 #include <asm/processor.h>
39 #include <linux/inet.h>
43 #include "cifsproto.h"
44 #include "cifs_unicode.h"
45 #include "cifs_debug.h"
46 #include "cifs_fs_sb.h"
49 #include "rfc1002pdu.h"
53 #define RFC1001_PORT 139
55 /* SMB echo "timeout" -- FIXME: tunable? */
56 #define SMB_ECHO_INTERVAL (60 * HZ)
58 extern mempool_t *cifs_req_poolp;
66 char *iocharset; /* local code page for mapping to and from Unicode */
67 char source_rfc1001_name[RFC1001_NAME_LEN_WITH_NULL]; /* clnt nb name */
68 char target_rfc1001_name[RFC1001_NAME_LEN_WITH_NULL]; /* srvr nb name */
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
87 bool strict_io:1; /* strict cache behavior */
88 bool remap:1; /* set to remap seven reserved chars in filenames */
89 bool posix_paths:1; /* unset to not ask for posix pathnames. */
92 bool nullauth:1; /* attempt to authenticate with null user */
93 bool nocase:1; /* request case insensitive filenames */
94 bool nobrl:1; /* disable sending byte range locks to srv */
95 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
96 bool seal:1; /* request transport encryption on share */
97 bool nodfs:1; /* Do not request DFS, even if available */
98 bool local_lease:1; /* check leases only on local system, not remote */
101 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
102 bool fsc:1; /* enable fscache */
103 bool mfsymlinks:1; /* use Minshall+French Symlinks */
107 bool sockopt_tcp_nodelay:1;
108 unsigned short int port;
109 unsigned long actimeo; /* attribute cache timeout (jiffies) */
111 struct sockaddr_storage srcaddr; /* allow binding to a local IP */
112 struct nls_table *local_nls;
115 /* FIXME: should these be tunable? */
116 #define TLINK_ERROR_EXPIRE (1 * HZ)
117 #define TLINK_IDLE_EXPIRE (600 * HZ)
119 static int ip_connect(struct TCP_Server_Info *server);
120 static int generic_ip_connect(struct TCP_Server_Info *server);
121 static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
122 static void cifs_prune_tlinks(struct work_struct *work);
125 * cifs tcp session reconnection
127 * mark tcp session as reconnecting so temporarily locked
128 * mark all smb sessions as reconnecting for tcp session
129 * reconnect tcp session
130 * wake up waiters on reconnection? - (not needed currently)
133 cifs_reconnect(struct TCP_Server_Info *server)
136 struct list_head *tmp, *tmp2;
137 struct cifsSesInfo *ses;
138 struct cifsTconInfo *tcon;
139 struct mid_q_entry *mid_entry;
141 spin_lock(&GlobalMid_Lock);
142 if (server->tcpStatus == CifsExiting) {
143 /* the demux thread will exit normally
144 next time through the loop */
145 spin_unlock(&GlobalMid_Lock);
148 server->tcpStatus = CifsNeedReconnect;
149 spin_unlock(&GlobalMid_Lock);
152 cFYI(1, "Reconnecting tcp session");
154 /* before reconnecting the tcp session, mark the smb session (uid)
155 and the tid bad so they are not used until reconnected */
156 cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
157 spin_lock(&cifs_tcp_ses_lock);
158 list_for_each(tmp, &server->smb_ses_list) {
159 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
160 ses->need_reconnect = true;
162 list_for_each(tmp2, &ses->tcon_list) {
163 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
164 tcon->need_reconnect = true;
167 spin_unlock(&cifs_tcp_ses_lock);
169 /* do not want to be sending data on a socket we are freeing */
170 cFYI(1, "%s: tearing down socket", __func__);
171 mutex_lock(&server->srv_mutex);
172 if (server->ssocket) {
173 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
174 server->ssocket->flags);
175 kernel_sock_shutdown(server->ssocket, SHUT_WR);
176 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
177 server->ssocket->state,
178 server->ssocket->flags);
179 sock_release(server->ssocket);
180 server->ssocket = NULL;
182 server->sequence_number = 0;
183 server->session_estab = false;
184 kfree(server->session_key.response);
185 server->session_key.response = NULL;
186 server->session_key.len = 0;
187 server->lstrp = jiffies;
188 mutex_unlock(&server->srv_mutex);
190 /* mark submitted MIDs for retry and issue callback */
191 cFYI(1, "%s: issuing mid callbacks", __func__);
192 spin_lock(&GlobalMid_Lock);
193 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
194 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
195 if (mid_entry->midState == MID_REQUEST_SUBMITTED)
196 mid_entry->midState = MID_RETRY_NEEDED;
197 list_del_init(&mid_entry->qhead);
198 mid_entry->callback(mid_entry);
200 spin_unlock(&GlobalMid_Lock);
202 while (server->tcpStatus == CifsNeedReconnect) {
205 /* we should try only the port we connected to before */
206 rc = generic_ip_connect(server);
208 cFYI(1, "reconnect error %d", rc);
211 atomic_inc(&tcpSesReconnectCount);
212 spin_lock(&GlobalMid_Lock);
213 if (server->tcpStatus != CifsExiting)
214 server->tcpStatus = CifsNeedNegotiate;
215 spin_unlock(&GlobalMid_Lock);
224 0 not a transact2, or all data present
225 >0 transact2 with that much data missing
226 -EINVAL = invalid transact2
229 static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
231 struct smb_t2_rsp *pSMBt;
233 __u16 total_data_size, data_in_this_rsp;
235 if (pSMB->Command != SMB_COM_TRANSACTION2)
238 /* check for plausible wct, bcc and t2 data and parm sizes */
239 /* check for parm and data offset going beyond end of smb */
240 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
241 cFYI(1, "invalid transact2 word count");
245 pSMBt = (struct smb_t2_rsp *)pSMB;
247 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
248 data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
250 if (total_data_size == data_in_this_rsp)
252 else if (total_data_size < data_in_this_rsp) {
253 cFYI(1, "total data %d smaller than data in frame %d",
254 total_data_size, data_in_this_rsp);
258 remaining = total_data_size - data_in_this_rsp;
260 cFYI(1, "missing %d bytes from transact2, check next response",
262 if (total_data_size > maxBufSize) {
263 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
264 total_data_size, maxBufSize);
270 static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
272 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
273 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
274 char *data_area_of_target;
275 char *data_area_of_buf2;
277 unsigned int byte_count, total_in_buf;
278 __u16 total_data_size, total_in_buf2;
280 total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
282 if (total_data_size !=
283 get_unaligned_le16(&pSMB2->t2_rsp.TotalDataCount))
284 cFYI(1, "total data size of primary and secondary t2 differ");
286 total_in_buf = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
288 remaining = total_data_size - total_in_buf;
293 if (remaining == 0) /* nothing to do, ignore */
296 total_in_buf2 = get_unaligned_le16(&pSMB2->t2_rsp.DataCount);
297 if (remaining < total_in_buf2) {
298 cFYI(1, "transact2 2nd response contains too much data");
301 /* find end of first SMB data area */
302 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
303 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
304 /* validate target area */
306 data_area_of_buf2 = (char *)&pSMB2->hdr.Protocol +
307 get_unaligned_le16(&pSMB2->t2_rsp.DataOffset);
309 data_area_of_target += total_in_buf;
311 /* copy second buffer into end of first buffer */
312 total_in_buf += total_in_buf2;
313 /* is the result too big for the field? */
314 if (total_in_buf > USHRT_MAX)
316 put_unaligned_le16(total_in_buf, &pSMBt->t2_rsp.DataCount);
319 byte_count = get_bcc_le(pTargetSMB);
320 byte_count += total_in_buf2;
321 /* is the result too big for the field? */
322 if (byte_count > USHRT_MAX)
324 put_bcc_le(byte_count, pTargetSMB);
326 byte_count = pTargetSMB->smb_buf_length;
327 byte_count += total_in_buf2;
328 /* don't allow buffer to overflow */
329 if (byte_count > CIFSMaxBufSize)
331 pTargetSMB->smb_buf_length = byte_count;
333 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
335 if (remaining == total_in_buf2) {
336 cFYI(1, "found the last secondary response");
337 return 0; /* we are done */
338 } else /* more responses to go */
343 cifs_echo_request(struct work_struct *work)
346 struct TCP_Server_Info *server = container_of(work,
347 struct TCP_Server_Info, echo.work);
350 * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
351 * done, which is indicated by maxBuf != 0. Also, no need to ping if
352 * we got a response recently
354 if (server->maxBuf == 0 ||
355 time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
358 rc = CIFSSMBEcho(server);
360 cFYI(1, "Unable to send echo request to server: %s",
364 queue_delayed_work(system_nrt_wq, &server->echo, SMB_ECHO_INTERVAL);
368 cifs_demultiplex_thread(struct TCP_Server_Info *server)
371 unsigned int pdu_length, total_read;
372 struct smb_hdr *smb_buffer = NULL;
373 struct smb_hdr *bigbuf = NULL;
374 struct smb_hdr *smallbuf = NULL;
375 struct msghdr smb_msg;
377 struct socket *csocket = server->ssocket;
378 struct list_head *tmp, *tmp2;
379 struct task_struct *task_to_wake = NULL;
380 struct mid_q_entry *mid_entry;
382 bool isLargeBuf = false;
386 current->flags |= PF_MEMALLOC;
387 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
389 length = atomic_inc_return(&tcpSesAllocCount);
391 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
395 while (server->tcpStatus != CifsExiting) {
398 if (bigbuf == NULL) {
399 bigbuf = cifs_buf_get();
401 cERROR(1, "No memory for large SMB response");
403 /* retry will check if exiting */
406 } else if (isLargeBuf) {
407 /* we are reusing a dirty large buf, clear its start */
408 memset(bigbuf, 0, sizeof(struct smb_hdr));
411 if (smallbuf == NULL) {
412 smallbuf = cifs_small_buf_get();
414 cERROR(1, "No memory for SMB response");
416 /* retry will check if exiting */
419 /* beginning of smb buffer is cleared in our buf_get */
420 } else /* if existing small buf clear beginning */
421 memset(smallbuf, 0, sizeof(struct smb_hdr));
425 smb_buffer = smallbuf;
426 iov.iov_base = smb_buffer;
428 smb_msg.msg_control = NULL;
429 smb_msg.msg_controllen = 0;
430 pdu_length = 4; /* enough to get RFC1001 header */
433 if (echo_retries > 0 && server->tcpStatus == CifsGood &&
434 time_after(jiffies, server->lstrp +
435 (echo_retries * SMB_ECHO_INTERVAL))) {
436 cERROR(1, "Server %s has not responded in %d seconds. "
437 "Reconnecting...", server->hostname,
438 (echo_retries * SMB_ECHO_INTERVAL / HZ));
439 cifs_reconnect(server);
440 csocket = server->ssocket;
441 wake_up(&server->response_q);
446 kernel_recvmsg(csocket, &smb_msg,
447 &iov, 1, pdu_length, 0 /* BB other flags? */);
449 if (server->tcpStatus == CifsExiting) {
451 } else if (server->tcpStatus == CifsNeedReconnect) {
452 cFYI(1, "Reconnect after server stopped responding");
453 cifs_reconnect(server);
454 cFYI(1, "call to reconnect done");
455 csocket = server->ssocket;
457 } else if (length == -ERESTARTSYS ||
460 msleep(1); /* minimum sleep to prevent looping
461 allowing socket to clear and app threads to set
462 tcpStatus CifsNeedReconnect if server hung */
463 if (pdu_length < 4) {
464 iov.iov_base = (4 - pdu_length) +
466 iov.iov_len = pdu_length;
467 smb_msg.msg_control = NULL;
468 smb_msg.msg_controllen = 0;
472 } else if (length <= 0) {
473 cFYI(1, "Reconnect after unexpected peek error %d",
475 cifs_reconnect(server);
476 csocket = server->ssocket;
477 wake_up(&server->response_q);
479 } else if (length < pdu_length) {
480 cFYI(1, "requested %d bytes but only got %d bytes",
482 pdu_length -= length;
487 /* The right amount was read from socket - 4 bytes */
488 /* so we can now interpret the length field */
490 /* the first byte big endian of the length field,
491 is actually not part of the length but the type
492 with the most common, zero, as regular data */
493 temp = *((char *) smb_buffer);
495 /* Note that FC 1001 length is big endian on the wire,
496 but we convert it here so it is always manipulated
497 as host byte order */
498 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
499 smb_buffer->smb_buf_length = pdu_length;
501 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
503 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
505 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
506 cFYI(1, "Good RFC 1002 session rsp");
508 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
509 /* we get this from Windows 98 instead of
510 an error on SMB negprot response */
511 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
513 /* give server a second to clean up */
515 /* always try 445 first on reconnect since we get NACK
516 * on some if we ever connected to port 139 (the NACK
517 * is since we do not begin with RFC1001 session
520 cifs_set_port((struct sockaddr *)
521 &server->dstaddr, CIFS_PORT);
522 cifs_reconnect(server);
523 csocket = server->ssocket;
524 wake_up(&server->response_q);
526 } else if (temp != (char) 0) {
527 cERROR(1, "Unknown RFC 1002 frame");
528 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
530 cifs_reconnect(server);
531 csocket = server->ssocket;
535 /* else we have an SMB response */
536 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
537 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
538 cERROR(1, "Invalid size SMB length %d pdu_length %d",
539 length, pdu_length+4);
540 cifs_reconnect(server);
541 csocket = server->ssocket;
542 wake_up(&server->response_q);
549 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
551 memcpy(bigbuf, smallbuf, 4);
555 iov.iov_base = 4 + (char *)smb_buffer;
556 iov.iov_len = pdu_length;
557 for (total_read = 0; total_read < pdu_length;
558 total_read += length) {
559 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
560 pdu_length - total_read, 0);
561 if (server->tcpStatus == CifsExiting) {
565 } else if (server->tcpStatus == CifsNeedReconnect) {
566 cifs_reconnect(server);
567 csocket = server->ssocket;
568 /* Reconnect wakes up rspns q */
569 /* Now we will reread sock */
572 } else if (length == -ERESTARTSYS ||
575 msleep(1); /* minimum sleep to prevent looping,
576 allowing socket to clear and app
577 threads to set tcpStatus
578 CifsNeedReconnect if server hung*/
581 } else if (length <= 0) {
582 cERROR(1, "Received no data, expecting %d",
583 pdu_length - total_read);
584 cifs_reconnect(server);
585 csocket = server->ssocket;
592 else if (reconnect == 1)
595 total_read += 4; /* account for rfc1002 hdr */
597 dump_smb(smb_buffer, total_read);
600 * We know that we received enough to get to the MID as we
601 * checked the pdu_length earlier. Now check to see
602 * if the rest of the header is OK. We borrow the length
603 * var for the rest of the loop to avoid a new stack var.
605 * 48 bytes is enough to display the header and a little bit
606 * into the payload for debugging purposes.
608 length = checkSMB(smb_buffer, smb_buffer->Mid, total_read);
610 cifs_dump_mem("Bad SMB: ", smb_buffer,
611 min_t(unsigned int, total_read, 48));
614 server->lstrp = jiffies;
616 spin_lock(&GlobalMid_Lock);
617 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
618 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
620 if (mid_entry->mid != smb_buffer->Mid ||
621 mid_entry->midState != MID_REQUEST_SUBMITTED ||
622 mid_entry->command != smb_buffer->Command) {
628 check2ndT2(smb_buffer, server->maxBuf) > 0) {
629 /* We have a multipart transact2 resp */
631 if (mid_entry->resp_buf) {
632 /* merge response - fix up 1st*/
633 length = coalesce_t2(smb_buffer,
634 mid_entry->resp_buf);
637 mid_entry->multiRsp = true;
640 /* all parts received or
641 * packet is malformed
643 mid_entry->multiEnd = true;
649 * FIXME: switch to already
650 * allocated largebuf?
652 cERROR(1, "1st trans2 resp "
655 /* Have first buffer */
656 mid_entry->resp_buf =
658 mid_entry->largeBuf = true;
664 mid_entry->resp_buf = smb_buffer;
665 mid_entry->largeBuf = isLargeBuf;
668 mid_entry->midState = MID_RESPONSE_RECEIVED;
670 mid_entry->midState = MID_RESPONSE_MALFORMED;
671 #ifdef CONFIG_CIFS_STATS2
672 mid_entry->when_received = jiffies;
674 list_del_init(&mid_entry->qhead);
675 mid_entry->callback(mid_entry);
678 spin_unlock(&GlobalMid_Lock);
680 if (mid_entry != NULL) {
681 /* Was previous buf put in mpx struct for multi-rsp? */
683 /* smb buffer will be freed by user thread */
689 } else if (length != 0) {
690 /* response sanity checks failed */
692 } else if (!is_valid_oplock_break(smb_buffer, server) &&
694 cERROR(1, "No task to wake, unknown frame received! "
695 "NumMids %d", atomic_read(&midCount));
696 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
697 sizeof(struct smb_hdr));
698 #ifdef CONFIG_CIFS_DEBUG2
699 cifs_dump_detail(smb_buffer);
700 cifs_dump_mids(server);
701 #endif /* CIFS_DEBUG2 */
704 } /* end while !EXITING */
706 /* take it off the list, if it's not already */
707 spin_lock(&cifs_tcp_ses_lock);
708 list_del_init(&server->tcp_ses_list);
709 spin_unlock(&cifs_tcp_ses_lock);
711 spin_lock(&GlobalMid_Lock);
712 server->tcpStatus = CifsExiting;
713 spin_unlock(&GlobalMid_Lock);
714 wake_up_all(&server->response_q);
716 /* check if we have blocked requests that need to free */
717 /* Note that cifs_max_pending is normally 50, but
718 can be set at module install time to as little as two */
719 spin_lock(&GlobalMid_Lock);
720 if (atomic_read(&server->inFlight) >= cifs_max_pending)
721 atomic_set(&server->inFlight, cifs_max_pending - 1);
722 /* We do not want to set the max_pending too low or we
723 could end up with the counter going negative */
724 spin_unlock(&GlobalMid_Lock);
725 /* Although there should not be any requests blocked on
726 this queue it can not hurt to be paranoid and try to wake up requests
727 that may haven been blocked when more than 50 at time were on the wire
728 to the same server - they now will see the session is in exit state
729 and get out of SendReceive. */
730 wake_up_all(&server->request_q);
731 /* give those requests time to exit */
734 if (server->ssocket) {
735 sock_release(csocket);
736 server->ssocket = NULL;
738 /* buffer usuallly freed in free_mid - need to free it here on exit */
739 cifs_buf_release(bigbuf);
740 if (smallbuf) /* no sense logging a debug message if NULL */
741 cifs_small_buf_release(smallbuf);
743 if (!list_empty(&server->pending_mid_q)) {
744 spin_lock(&GlobalMid_Lock);
745 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
746 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
747 cFYI(1, "Clearing Mid 0x%x - issuing callback",
749 list_del_init(&mid_entry->qhead);
750 mid_entry->callback(mid_entry);
752 spin_unlock(&GlobalMid_Lock);
753 /* 1/8th of sec is more than enough time for them to exit */
757 if (!list_empty(&server->pending_mid_q)) {
758 /* mpx threads have not exited yet give them
759 at least the smb send timeout time for long ops */
760 /* due to delays on oplock break requests, we need
761 to wait at least 45 seconds before giving up
762 on a request getting a response and going ahead
764 cFYI(1, "Wait for exit from demultiplex thread");
766 /* if threads still have not exited they are probably never
767 coming home not much else we can do but free the memory */
770 kfree(server->hostname);
771 task_to_wake = xchg(&server->tsk, NULL);
774 length = atomic_dec_return(&tcpSesAllocCount);
776 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
779 /* if server->tsk was NULL then wait for a signal before exiting */
781 set_current_state(TASK_INTERRUPTIBLE);
782 while (!signal_pending(current)) {
784 set_current_state(TASK_INTERRUPTIBLE);
786 set_current_state(TASK_RUNNING);
789 module_put_and_exit(0);
792 /* extract the host portion of the UNC string */
794 extract_hostname(const char *unc)
800 /* skip double chars at beginning of string */
801 /* BB: check validity of these bytes? */
804 /* delimiter between hostname and sharename is always '\\' now */
805 delim = strchr(src, '\\');
807 return ERR_PTR(-EINVAL);
810 dst = kmalloc((len + 1), GFP_KERNEL);
812 return ERR_PTR(-ENOMEM);
814 memcpy(dst, src, len);
821 cifs_parse_mount_options(char *options, const char *devname,
824 char *value, *data, *end;
825 unsigned int temp_len, i, j;
827 short int override_uid = -1;
828 short int override_gid = -1;
829 bool uid_specified = false;
830 bool gid_specified = false;
831 char *nodename = utsname()->nodename;
837 * does not have to be perfect mapping since field is
838 * informational, only used for servers that do not support
839 * port 445 and it can be overridden at mount time
841 memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
842 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
843 vol->source_rfc1001_name[i] = toupper(nodename[i]);
845 vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
846 /* null target name indicates to use *SMBSERVR default called name
847 if we end up sending RFC1001 session initialize */
848 vol->target_rfc1001_name[0] = 0;
849 vol->cred_uid = current_uid();
850 vol->linux_uid = current_uid();
851 vol->linux_gid = current_gid();
853 /* default to only allowing write access to owner of the mount */
854 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
856 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
857 /* default is always to request posix paths. */
858 vol->posix_paths = 1;
859 /* default to using server inode numbers where available */
862 vol->actimeo = CIFS_DEF_ACTIMEO;
867 end = options + strlen(options);
868 if (strncmp(options, "sep=", 4) == 0) {
869 if (options[4] != 0) {
870 separator[0] = options[4];
873 cFYI(1, "Null separator not allowed");
877 while ((data = strsep(&options, separator)) != NULL) {
880 if ((value = strchr(data, '=')) != NULL)
883 /* Have to parse this before we parse for "user" */
884 if (strnicmp(data, "user_xattr", 10) == 0) {
886 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
888 } else if (strnicmp(data, "user", 4) == 0) {
891 "CIFS: invalid or missing username\n");
892 return 1; /* needs_arg; */
893 } else if (!*value) {
894 /* null user, ie anonymous, authentication */
897 if (strnlen(value, MAX_USERNAME_SIZE) <
899 vol->username = value;
901 printk(KERN_WARNING "CIFS: username too long\n");
904 } else if (strnicmp(data, "pass", 4) == 0) {
906 vol->password = NULL;
908 } else if (value[0] == 0) {
909 /* check if string begins with double comma
910 since that would mean the password really
911 does start with a comma, and would not
912 indicate an empty string */
913 if (value[1] != separator[0]) {
914 vol->password = NULL;
918 temp_len = strlen(value);
919 /* removed password length check, NTLM passwords
920 can be arbitrarily long */
922 /* if comma in password, the string will be
923 prematurely null terminated. Commas in password are
924 specified across the cifs mount interface by a double
925 comma ie ,, and a comma used as in other cases ie ','
926 as a parameter delimiter/separator is single and due
927 to the strsep above is temporarily zeroed. */
929 /* NB: password legally can have multiple commas and
930 the only illegal character in a password is null */
932 if ((value[temp_len] == 0) &&
933 (value + temp_len < end) &&
934 (value[temp_len+1] == separator[0])) {
936 value[temp_len] = separator[0];
937 temp_len += 2; /* move after second comma */
938 while (value[temp_len] != 0) {
939 if (value[temp_len] == separator[0]) {
940 if (value[temp_len+1] ==
942 /* skip second comma */
945 /* single comma indicating start
952 if (value[temp_len] == 0) {
956 /* point option to start of next parm */
957 options = value + temp_len + 1;
959 /* go from value to value + temp_len condensing
960 double commas to singles. Note that this ends up
961 allocating a few bytes too many, which is ok */
962 vol->password = kzalloc(temp_len, GFP_KERNEL);
963 if (vol->password == NULL) {
964 printk(KERN_WARNING "CIFS: no memory "
968 for (i = 0, j = 0; i < temp_len; i++, j++) {
969 vol->password[j] = value[i];
970 if (value[i] == separator[0]
971 && value[i+1] == separator[0]) {
972 /* skip second comma */
976 vol->password[j] = 0;
978 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
979 if (vol->password == NULL) {
980 printk(KERN_WARNING "CIFS: no memory "
984 strcpy(vol->password, value);
986 } else if (!strnicmp(data, "ip", 2) ||
987 !strnicmp(data, "addr", 4)) {
988 if (!value || !*value) {
990 } else if (strnlen(value, INET6_ADDRSTRLEN) <
994 printk(KERN_WARNING "CIFS: ip address "
998 } else if (strnicmp(data, "sec", 3) == 0) {
999 if (!value || !*value) {
1000 cERROR(1, "no security value specified");
1002 } else if (strnicmp(value, "krb5i", 5) == 0) {
1003 vol->secFlg |= CIFSSEC_MAY_KRB5 |
1005 } else if (strnicmp(value, "krb5p", 5) == 0) {
1006 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
1007 CIFSSEC_MAY_KRB5; */
1008 cERROR(1, "Krb5 cifs privacy not supported");
1010 } else if (strnicmp(value, "krb5", 4) == 0) {
1011 vol->secFlg |= CIFSSEC_MAY_KRB5;
1012 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
1013 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
1015 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
1016 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
1017 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
1018 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
1020 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
1021 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1022 } else if (strnicmp(value, "ntlmi", 5) == 0) {
1023 vol->secFlg |= CIFSSEC_MAY_NTLM |
1025 } else if (strnicmp(value, "ntlm", 4) == 0) {
1026 /* ntlm is default so can be turned off too */
1027 vol->secFlg |= CIFSSEC_MAY_NTLM;
1028 } else if (strnicmp(value, "nontlm", 6) == 0) {
1029 /* BB is there a better way to do this? */
1030 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1031 #ifdef CONFIG_CIFS_WEAK_PW_HASH
1032 } else if (strnicmp(value, "lanman", 6) == 0) {
1033 vol->secFlg |= CIFSSEC_MAY_LANMAN;
1035 } else if (strnicmp(value, "none", 4) == 0) {
1038 cERROR(1, "bad security option: %s", value);
1041 } else if ((strnicmp(data, "unc", 3) == 0)
1042 || (strnicmp(data, "target", 6) == 0)
1043 || (strnicmp(data, "path", 4) == 0)) {
1044 if (!value || !*value) {
1045 printk(KERN_WARNING "CIFS: invalid path to "
1046 "network resource\n");
1047 return 1; /* needs_arg; */
1049 if ((temp_len = strnlen(value, 300)) < 300) {
1050 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1051 if (vol->UNC == NULL)
1053 strcpy(vol->UNC, value);
1054 if (strncmp(vol->UNC, "//", 2) == 0) {
1057 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1059 "CIFS: UNC Path does not begin "
1060 "with // or \\\\ \n");
1064 printk(KERN_WARNING "CIFS: UNC name too long\n");
1067 } else if ((strnicmp(data, "domain", 3) == 0)
1068 || (strnicmp(data, "workgroup", 5) == 0)) {
1069 if (!value || !*value) {
1070 printk(KERN_WARNING "CIFS: invalid domain name\n");
1071 return 1; /* needs_arg; */
1073 /* BB are there cases in which a comma can be valid in
1074 a domain name and need special handling? */
1075 if (strnlen(value, 256) < 256) {
1076 vol->domainname = value;
1077 cFYI(1, "Domain name set");
1079 printk(KERN_WARNING "CIFS: domain name too "
1083 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1084 vol->srcaddr.ss_family = AF_UNSPEC;
1086 if (!value || !*value) {
1087 printk(KERN_WARNING "CIFS: srcaddr value"
1088 " not specified.\n");
1089 return 1; /* needs_arg; */
1091 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1092 value, strlen(value));
1094 printk(KERN_WARNING "CIFS: Could not parse"
1099 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1100 if (!value || !*value) {
1102 "CIFS: invalid path prefix\n");
1103 return 1; /* needs_argument */
1105 if ((temp_len = strnlen(value, 1024)) < 1024) {
1106 if (value[0] != '/')
1107 temp_len++; /* missing leading slash */
1108 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1109 if (vol->prepath == NULL)
1111 if (value[0] != '/') {
1112 vol->prepath[0] = '/';
1113 strcpy(vol->prepath+1, value);
1115 strcpy(vol->prepath, value);
1116 cFYI(1, "prefix path %s", vol->prepath);
1118 printk(KERN_WARNING "CIFS: prefix too long\n");
1121 } else if (strnicmp(data, "iocharset", 9) == 0) {
1122 if (!value || !*value) {
1123 printk(KERN_WARNING "CIFS: invalid iocharset "
1125 return 1; /* needs_arg; */
1127 if (strnlen(value, 65) < 65) {
1128 if (strnicmp(value, "default", 7))
1129 vol->iocharset = value;
1130 /* if iocharset not set then load_nls_default
1131 is used by caller */
1132 cFYI(1, "iocharset set to %s", value);
1134 printk(KERN_WARNING "CIFS: iocharset name "
1138 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1139 vol->linux_uid = simple_strtoul(value, &value, 0);
1140 uid_specified = true;
1141 } else if (!strnicmp(data, "cruid", 5) && value && *value) {
1142 vol->cred_uid = simple_strtoul(value, &value, 0);
1143 } else if (!strnicmp(data, "forceuid", 8)) {
1145 } else if (!strnicmp(data, "noforceuid", 10)) {
1147 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1148 vol->linux_gid = simple_strtoul(value, &value, 0);
1149 gid_specified = true;
1150 } else if (!strnicmp(data, "forcegid", 8)) {
1152 } else if (!strnicmp(data, "noforcegid", 10)) {
1154 } else if (strnicmp(data, "file_mode", 4) == 0) {
1155 if (value && *value) {
1157 simple_strtoul(value, &value, 0);
1159 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1160 if (value && *value) {
1162 simple_strtoul(value, &value, 0);
1164 } else if (strnicmp(data, "dirmode", 4) == 0) {
1165 if (value && *value) {
1167 simple_strtoul(value, &value, 0);
1169 } else if (strnicmp(data, "port", 4) == 0) {
1170 if (value && *value) {
1172 simple_strtoul(value, &value, 0);
1174 } else if (strnicmp(data, "rsize", 5) == 0) {
1175 if (value && *value) {
1177 simple_strtoul(value, &value, 0);
1179 } else if (strnicmp(data, "wsize", 5) == 0) {
1180 if (value && *value) {
1182 simple_strtoul(value, &value, 0);
1184 } else if (strnicmp(data, "sockopt", 5) == 0) {
1185 if (!value || !*value) {
1186 cERROR(1, "no socket option specified");
1188 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1189 vol->sockopt_tcp_nodelay = 1;
1191 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1192 if (!value || !*value || (*value == ' ')) {
1193 cFYI(1, "invalid (empty) netbiosname");
1195 memset(vol->source_rfc1001_name, 0x20,
1198 * FIXME: are there cases in which a comma can
1199 * be valid in workstation netbios name (and
1200 * need special handling)?
1202 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1203 /* don't ucase netbiosname for user */
1206 vol->source_rfc1001_name[i] = value[i];
1208 /* The string has 16th byte zero still from
1209 set at top of the function */
1210 if (i == RFC1001_NAME_LEN && value[i] != 0)
1211 printk(KERN_WARNING "CIFS: netbiosname"
1212 " longer than 15 truncated.\n");
1214 } else if (strnicmp(data, "servern", 7) == 0) {
1215 /* servernetbiosname specified override *SMBSERVER */
1216 if (!value || !*value || (*value == ' ')) {
1217 cFYI(1, "empty server netbiosname specified");
1219 /* last byte, type, is 0x20 for servr type */
1220 memset(vol->target_rfc1001_name, 0x20,
1221 RFC1001_NAME_LEN_WITH_NULL);
1223 for (i = 0; i < 15; i++) {
1224 /* BB are there cases in which a comma can be
1225 valid in this workstation netbios name
1226 (and need special handling)? */
1228 /* user or mount helper must uppercase
1233 vol->target_rfc1001_name[i] =
1236 /* The string has 16th byte zero still from
1237 set at top of the function */
1238 if (i == RFC1001_NAME_LEN && value[i] != 0)
1239 printk(KERN_WARNING "CIFS: server net"
1240 "biosname longer than 15 truncated.\n");
1242 } else if (strnicmp(data, "actimeo", 7) == 0) {
1243 if (value && *value) {
1244 vol->actimeo = HZ * simple_strtoul(value,
1246 if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1247 cERROR(1, "CIFS: attribute cache"
1248 "timeout too large");
1252 } else if (strnicmp(data, "credentials", 4) == 0) {
1254 } else if (strnicmp(data, "version", 3) == 0) {
1256 } else if (strnicmp(data, "guest", 5) == 0) {
1258 } else if (strnicmp(data, "rw", 2) == 0) {
1260 } else if (strnicmp(data, "ro", 2) == 0) {
1262 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1263 vol->noblocksnd = 1;
1264 } else if (strnicmp(data, "noautotune", 10) == 0) {
1265 vol->noautotune = 1;
1266 } else if ((strnicmp(data, "suid", 4) == 0) ||
1267 (strnicmp(data, "nosuid", 6) == 0) ||
1268 (strnicmp(data, "exec", 4) == 0) ||
1269 (strnicmp(data, "noexec", 6) == 0) ||
1270 (strnicmp(data, "nodev", 5) == 0) ||
1271 (strnicmp(data, "noauto", 6) == 0) ||
1272 (strnicmp(data, "dev", 3) == 0)) {
1273 /* The mount tool or mount.cifs helper (if present)
1274 uses these opts to set flags, and the flags are read
1275 by the kernel vfs layer before we get here (ie
1276 before read super) so there is no point trying to
1277 parse these options again and set anything and it
1278 is ok to just ignore them */
1280 } else if (strnicmp(data, "hard", 4) == 0) {
1282 } else if (strnicmp(data, "soft", 4) == 0) {
1284 } else if (strnicmp(data, "perm", 4) == 0) {
1286 } else if (strnicmp(data, "noperm", 6) == 0) {
1288 } else if (strnicmp(data, "mapchars", 8) == 0) {
1290 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1292 } else if (strnicmp(data, "sfu", 3) == 0) {
1294 } else if (strnicmp(data, "nosfu", 5) == 0) {
1296 } else if (strnicmp(data, "nodfs", 5) == 0) {
1298 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1299 vol->posix_paths = 1;
1300 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1301 vol->posix_paths = 0;
1302 } else if (strnicmp(data, "nounix", 6) == 0) {
1303 vol->no_linux_ext = 1;
1304 } else if (strnicmp(data, "nolinux", 7) == 0) {
1305 vol->no_linux_ext = 1;
1306 } else if ((strnicmp(data, "nocase", 6) == 0) ||
1307 (strnicmp(data, "ignorecase", 10) == 0)) {
1309 } else if (strnicmp(data, "mand", 4) == 0) {
1311 } else if (strnicmp(data, "nomand", 6) == 0) {
1313 } else if (strnicmp(data, "_netdev", 7) == 0) {
1315 } else if (strnicmp(data, "brl", 3) == 0) {
1317 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1318 (strnicmp(data, "nolock", 6) == 0)) {
1320 /* turn off mandatory locking in mode
1321 if remote locking is turned off since the
1322 local vfs will do advisory */
1323 if (vol->file_mode ==
1324 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1325 vol->file_mode = S_IALLUGO;
1326 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1327 /* will take the shorter form "forcemand" as well */
1328 /* This mount option will force use of mandatory
1329 (DOS/Windows style) byte range locks, instead of
1330 using posix advisory byte range locks, even if the
1331 Unix extensions are available and posix locks would
1332 be supported otherwise. If Unix extensions are not
1333 negotiated this has no effect since mandatory locks
1334 would be used (mandatory locks is all that those
1335 those servers support) */
1337 } else if (strnicmp(data, "setuids", 7) == 0) {
1339 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1341 } else if (strnicmp(data, "dynperm", 7) == 0) {
1342 vol->dynperm = true;
1343 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1344 vol->dynperm = false;
1345 } else if (strnicmp(data, "nohard", 6) == 0) {
1347 } else if (strnicmp(data, "nosoft", 6) == 0) {
1349 } else if (strnicmp(data, "nointr", 6) == 0) {
1351 } else if (strnicmp(data, "intr", 4) == 0) {
1353 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1354 vol->nostrictsync = 1;
1355 } else if (strnicmp(data, "strictsync", 10) == 0) {
1356 vol->nostrictsync = 0;
1357 } else if (strnicmp(data, "serverino", 7) == 0) {
1358 vol->server_ino = 1;
1359 } else if (strnicmp(data, "noserverino", 9) == 0) {
1360 vol->server_ino = 0;
1361 } else if (strnicmp(data, "cifsacl", 7) == 0) {
1363 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1365 } else if (strnicmp(data, "acl", 3) == 0) {
1366 vol->no_psx_acl = 0;
1367 } else if (strnicmp(data, "noacl", 5) == 0) {
1368 vol->no_psx_acl = 1;
1369 } else if (strnicmp(data, "locallease", 6) == 0) {
1370 vol->local_lease = 1;
1371 } else if (strnicmp(data, "sign", 4) == 0) {
1372 vol->secFlg |= CIFSSEC_MUST_SIGN;
1373 } else if (strnicmp(data, "seal", 4) == 0) {
1374 /* we do not do the following in secFlags because seal
1375 is a per tree connection (mount) not a per socket
1376 or per-smb connection option in the protocol */
1377 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1379 } else if (strnicmp(data, "direct", 6) == 0) {
1381 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1383 } else if (strnicmp(data, "strictcache", 11) == 0) {
1385 } else if (strnicmp(data, "noac", 4) == 0) {
1386 printk(KERN_WARNING "CIFS: Mount option noac not "
1387 "supported. Instead set "
1388 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1389 } else if (strnicmp(data, "fsc", 3) == 0) {
1390 #ifndef CONFIG_CIFS_FSCACHE
1391 cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE"
1392 "kernel config option set");
1396 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1397 vol->mfsymlinks = true;
1398 } else if (strnicmp(data, "multiuser", 8) == 0) {
1399 vol->multiuser = true;
1401 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1404 if (vol->UNC == NULL) {
1405 if (devname == NULL) {
1406 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1410 if ((temp_len = strnlen(devname, 300)) < 300) {
1411 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1412 if (vol->UNC == NULL)
1414 strcpy(vol->UNC, devname);
1415 if (strncmp(vol->UNC, "//", 2) == 0) {
1418 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1419 printk(KERN_WARNING "CIFS: UNC Path does not "
1420 "begin with // or \\\\ \n");
1423 value = strpbrk(vol->UNC+2, "/\\");
1427 printk(KERN_WARNING "CIFS: UNC name too long\n");
1432 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1433 cERROR(1, "Multiuser mounts currently require krb5 "
1438 if (vol->UNCip == NULL)
1439 vol->UNCip = &vol->UNC[2];
1442 vol->override_uid = override_uid;
1443 else if (override_uid == 1)
1444 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1445 "specified with no uid= option.\n");
1448 vol->override_gid = override_gid;
1449 else if (override_gid == 1)
1450 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1451 "specified with no gid= option.\n");
1456 /** Returns true if srcaddr isn't specified and rhs isn't
1457 * specified, or if srcaddr is specified and
1458 * matches the IP address of the rhs argument.
1461 srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1463 switch (srcaddr->sa_family) {
1465 return (rhs->sa_family == AF_UNSPEC);
1467 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1468 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1469 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1472 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1473 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1474 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1478 return false; /* don't expect to be here */
1483 * If no port is specified in addr structure, we try to match with 445 port
1484 * and if it fails - with 139 ports. It should be called only if address
1485 * families of server and addr are equal.
1488 match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1490 __be16 port, *sport;
1492 switch (addr->sa_family) {
1494 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1495 port = ((struct sockaddr_in *) addr)->sin_port;
1498 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1499 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1507 port = htons(CIFS_PORT);
1511 port = htons(RFC1001_PORT);
1514 return port == *sport;
1518 match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1519 struct sockaddr *srcaddr)
1521 switch (addr->sa_family) {
1523 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1524 struct sockaddr_in *srv_addr4 =
1525 (struct sockaddr_in *)&server->dstaddr;
1527 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
1532 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1533 struct sockaddr_in6 *srv_addr6 =
1534 (struct sockaddr_in6 *)&server->dstaddr;
1536 if (!ipv6_addr_equal(&addr6->sin6_addr,
1537 &srv_addr6->sin6_addr))
1539 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
1545 return false; /* don't expect to be here */
1548 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1555 match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1557 unsigned int secFlags;
1559 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1560 secFlags = vol->secFlg;
1562 secFlags = global_secflags | vol->secFlg;
1564 switch (server->secType) {
1566 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1570 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1574 if (!(secFlags & CIFSSEC_MAY_NTLM))
1578 if (!(secFlags & CIFSSEC_MAY_KRB5))
1582 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1586 /* shouldn't happen */
1590 /* now check if signing mode is acceptable */
1591 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1592 (server->secMode & SECMODE_SIGN_REQUIRED))
1594 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1596 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1602 static struct TCP_Server_Info *
1603 cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1605 struct TCP_Server_Info *server;
1607 spin_lock(&cifs_tcp_ses_lock);
1608 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
1609 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1612 if (!match_address(server, addr,
1613 (struct sockaddr *)&vol->srcaddr))
1616 if (!match_port(server, addr))
1619 if (!match_security(server, vol))
1622 ++server->srv_count;
1623 spin_unlock(&cifs_tcp_ses_lock);
1624 cFYI(1, "Existing tcp session with server found");
1627 spin_unlock(&cifs_tcp_ses_lock);
1632 cifs_put_tcp_session(struct TCP_Server_Info *server)
1634 struct task_struct *task;
1636 spin_lock(&cifs_tcp_ses_lock);
1637 if (--server->srv_count > 0) {
1638 spin_unlock(&cifs_tcp_ses_lock);
1642 put_net(cifs_net_ns(server));
1644 list_del_init(&server->tcp_ses_list);
1645 spin_unlock(&cifs_tcp_ses_lock);
1647 cancel_delayed_work_sync(&server->echo);
1649 spin_lock(&GlobalMid_Lock);
1650 server->tcpStatus = CifsExiting;
1651 spin_unlock(&GlobalMid_Lock);
1653 cifs_crypto_shash_release(server);
1654 cifs_fscache_release_client_cookie(server);
1656 kfree(server->session_key.response);
1657 server->session_key.response = NULL;
1658 server->session_key.len = 0;
1660 task = xchg(&server->tsk, NULL);
1662 force_sig(SIGKILL, task);
1665 static struct TCP_Server_Info *
1666 cifs_get_tcp_session(struct smb_vol *volume_info)
1668 struct TCP_Server_Info *tcp_ses = NULL;
1669 struct sockaddr_storage addr;
1670 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1671 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1674 memset(&addr, 0, sizeof(struct sockaddr_storage));
1676 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
1678 if (volume_info->UNCip && volume_info->UNC) {
1679 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1681 strlen(volume_info->UNCip),
1684 /* we failed translating address */
1688 } else if (volume_info->UNCip) {
1689 /* BB using ip addr as tcp_ses name to connect to the
1691 cERROR(1, "Connecting to DFS root not implemented yet");
1694 } else /* which tcp_sess DFS root would we conect to */ {
1695 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1696 "unc=//192.168.1.100/public) specified");
1701 /* see if we already have a matching tcp_ses */
1702 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
1706 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1712 rc = cifs_crypto_shash_allocate(tcp_ses);
1714 cERROR(1, "could not setup hash structures rc %d", rc);
1718 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
1719 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1720 if (IS_ERR(tcp_ses->hostname)) {
1721 rc = PTR_ERR(tcp_ses->hostname);
1722 goto out_err_crypto_release;
1725 tcp_ses->noblocksnd = volume_info->noblocksnd;
1726 tcp_ses->noautotune = volume_info->noautotune;
1727 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
1728 atomic_set(&tcp_ses->inFlight, 0);
1729 init_waitqueue_head(&tcp_ses->response_q);
1730 init_waitqueue_head(&tcp_ses->request_q);
1731 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1732 mutex_init(&tcp_ses->srv_mutex);
1733 memcpy(tcp_ses->workstation_RFC1001_name,
1734 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1735 memcpy(tcp_ses->server_RFC1001_name,
1736 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1737 tcp_ses->session_estab = false;
1738 tcp_ses->sequence_number = 0;
1739 tcp_ses->lstrp = jiffies;
1740 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1741 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1742 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
1745 * at this point we are the only ones with the pointer
1746 * to the struct since the kernel thread not created yet
1747 * no need to spinlock this init of tcpStatus or srv_count
1749 tcp_ses->tcpStatus = CifsNew;
1750 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1751 sizeof(tcp_ses->srcaddr));
1752 ++tcp_ses->srv_count;
1754 if (addr.ss_family == AF_INET6) {
1755 cFYI(1, "attempting ipv6 connect");
1756 /* BB should we allow ipv6 on port 139? */
1757 /* other OS never observed in Wild doing 139 with v6 */
1758 memcpy(&tcp_ses->dstaddr, sin_server6,
1759 sizeof(struct sockaddr_in6));
1761 memcpy(&tcp_ses->dstaddr, sin_server,
1762 sizeof(struct sockaddr_in));
1764 rc = ip_connect(tcp_ses);
1766 cERROR(1, "Error connecting to socket. Aborting operation");
1767 goto out_err_crypto_release;
1771 * since we're in a cifs function already, we know that
1772 * this will succeed. No need for try_module_get().
1774 __module_get(THIS_MODULE);
1775 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1777 if (IS_ERR(tcp_ses->tsk)) {
1778 rc = PTR_ERR(tcp_ses->tsk);
1779 cERROR(1, "error %d create cifsd thread", rc);
1780 module_put(THIS_MODULE);
1781 goto out_err_crypto_release;
1783 tcp_ses->tcpStatus = CifsNeedNegotiate;
1785 /* thread spawned, put it on the list */
1786 spin_lock(&cifs_tcp_ses_lock);
1787 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1788 spin_unlock(&cifs_tcp_ses_lock);
1790 cifs_fscache_get_client_cookie(tcp_ses);
1792 /* queue echo request delayed work */
1793 queue_delayed_work(system_nrt_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
1797 out_err_crypto_release:
1798 cifs_crypto_shash_release(tcp_ses);
1800 put_net(cifs_net_ns(tcp_ses));
1804 if (!IS_ERR(tcp_ses->hostname))
1805 kfree(tcp_ses->hostname);
1806 if (tcp_ses->ssocket)
1807 sock_release(tcp_ses->ssocket);
1813 static struct cifsSesInfo *
1814 cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1816 struct cifsSesInfo *ses;
1818 spin_lock(&cifs_tcp_ses_lock);
1819 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1820 switch (server->secType) {
1822 if (vol->cred_uid != ses->cred_uid)
1826 /* anything else takes username/password */
1827 if (ses->user_name == NULL)
1829 if (strncmp(ses->user_name, vol->username,
1832 if (strlen(vol->username) != 0 &&
1833 ses->password != NULL &&
1834 strncmp(ses->password,
1835 vol->password ? vol->password : "",
1840 spin_unlock(&cifs_tcp_ses_lock);
1843 spin_unlock(&cifs_tcp_ses_lock);
1848 cifs_put_smb_ses(struct cifsSesInfo *ses)
1851 struct TCP_Server_Info *server = ses->server;
1853 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
1854 spin_lock(&cifs_tcp_ses_lock);
1855 if (--ses->ses_count > 0) {
1856 spin_unlock(&cifs_tcp_ses_lock);
1860 list_del_init(&ses->smb_ses_list);
1861 spin_unlock(&cifs_tcp_ses_lock);
1863 if (ses->status == CifsGood) {
1865 CIFSSMBLogoff(xid, ses);
1869 cifs_put_tcp_session(server);
1872 static bool warned_on_ntlm; /* globals init to false automatically */
1874 static struct cifsSesInfo *
1875 cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1877 int rc = -ENOMEM, xid;
1878 struct cifsSesInfo *ses;
1879 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
1880 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
1884 ses = cifs_find_smb_ses(server, volume_info);
1886 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1888 mutex_lock(&ses->session_mutex);
1889 rc = cifs_negotiate_protocol(xid, ses);
1891 mutex_unlock(&ses->session_mutex);
1892 /* problem -- put our ses reference */
1893 cifs_put_smb_ses(ses);
1897 if (ses->need_reconnect) {
1898 cFYI(1, "Session needs reconnect");
1899 rc = cifs_setup_session(xid, ses,
1900 volume_info->local_nls);
1902 mutex_unlock(&ses->session_mutex);
1903 /* problem -- put our reference */
1904 cifs_put_smb_ses(ses);
1909 mutex_unlock(&ses->session_mutex);
1911 /* existing SMB ses has a server reference already */
1912 cifs_put_tcp_session(server);
1917 cFYI(1, "Existing smb sess not found");
1918 ses = sesInfoAlloc();
1922 /* new SMB session uses our server ref */
1923 ses->server = server;
1924 if (server->dstaddr.ss_family == AF_INET6)
1925 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
1927 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
1929 if (volume_info->username) {
1930 ses->user_name = kstrdup(volume_info->username, GFP_KERNEL);
1931 if (!ses->user_name)
1935 /* volume_info->password freed at unmount */
1936 if (volume_info->password) {
1937 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1941 if (volume_info->domainname) {
1942 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
1943 if (!ses->domainName)
1946 ses->cred_uid = volume_info->cred_uid;
1947 ses->linux_uid = volume_info->linux_uid;
1949 /* ntlmv2 is much stronger than ntlm security, and has been broadly
1950 supported for many years, time to update default security mechanism */
1951 if ((volume_info->secFlg == 0) && warned_on_ntlm == false) {
1952 warned_on_ntlm = true;
1953 cERROR(1, "default security mechanism requested. The default "
1954 "security mechanism will be upgraded from ntlm to "
1955 "ntlmv2 in kernel release 2.6.41");
1957 ses->overrideSecFlg = volume_info->secFlg;
1959 mutex_lock(&ses->session_mutex);
1960 rc = cifs_negotiate_protocol(xid, ses);
1962 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
1963 mutex_unlock(&ses->session_mutex);
1967 /* success, put it on the list */
1968 spin_lock(&cifs_tcp_ses_lock);
1969 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1970 spin_unlock(&cifs_tcp_ses_lock);
1981 static struct cifsTconInfo *
1982 cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1984 struct list_head *tmp;
1985 struct cifsTconInfo *tcon;
1987 spin_lock(&cifs_tcp_ses_lock);
1988 list_for_each(tmp, &ses->tcon_list) {
1989 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1990 if (tcon->tidStatus == CifsExiting)
1992 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
1996 spin_unlock(&cifs_tcp_ses_lock);
1999 spin_unlock(&cifs_tcp_ses_lock);
2004 cifs_put_tcon(struct cifsTconInfo *tcon)
2007 struct cifsSesInfo *ses = tcon->ses;
2009 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
2010 spin_lock(&cifs_tcp_ses_lock);
2011 if (--tcon->tc_count > 0) {
2012 spin_unlock(&cifs_tcp_ses_lock);
2016 list_del_init(&tcon->tcon_list);
2017 spin_unlock(&cifs_tcp_ses_lock);
2020 CIFSSMBTDis(xid, tcon);
2023 cifs_fscache_release_super_cookie(tcon);
2025 cifs_put_smb_ses(ses);
2028 static struct cifsTconInfo *
2029 cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
2032 struct cifsTconInfo *tcon;
2034 tcon = cifs_find_tcon(ses, volume_info->UNC);
2036 cFYI(1, "Found match on UNC path");
2037 /* existing tcon already has a reference */
2038 cifs_put_smb_ses(ses);
2039 if (tcon->seal != volume_info->seal)
2040 cERROR(1, "transport encryption setting "
2041 "conflicts with existing tid");
2045 tcon = tconInfoAlloc();
2052 if (volume_info->password) {
2053 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2054 if (!tcon->password) {
2060 if (strchr(volume_info->UNC + 3, '\\') == NULL
2061 && strchr(volume_info->UNC + 3, '/') == NULL) {
2062 cERROR(1, "Missing share name");
2067 /* BB Do we need to wrap session_mutex around
2068 * this TCon call and Unix SetFS as
2069 * we do on SessSetup and reconnect? */
2071 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2073 cFYI(1, "CIFS Tcon rc = %d", rc);
2077 if (volume_info->nodfs) {
2078 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2079 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2081 tcon->seal = volume_info->seal;
2082 /* we can have only one retry value for a connection
2083 to a share so for resources mounted more than once
2084 to the same server share the last value passed in
2085 for the retry flag is used */
2086 tcon->retry = volume_info->retry;
2087 tcon->nocase = volume_info->nocase;
2088 tcon->local_lease = volume_info->local_lease;
2090 spin_lock(&cifs_tcp_ses_lock);
2091 list_add(&tcon->tcon_list, &ses->tcon_list);
2092 spin_unlock(&cifs_tcp_ses_lock);
2094 cifs_fscache_get_super_cookie(tcon);
2104 cifs_put_tlink(struct tcon_link *tlink)
2106 if (!tlink || IS_ERR(tlink))
2109 if (!atomic_dec_and_test(&tlink->tl_count) ||
2110 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2111 tlink->tl_time = jiffies;
2115 if (!IS_ERR(tlink_tcon(tlink)))
2116 cifs_put_tcon(tlink_tcon(tlink));
2122 get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
2123 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
2124 struct dfs_info3_param **preferrals, int remap)
2129 *pnum_referrals = 0;
2132 if (pSesInfo->ipc_tid == 0) {
2133 temp_unc = kmalloc(2 /* for slashes */ +
2134 strnlen(pSesInfo->serverName,
2135 SERVER_NAME_LEN_WITH_NULL * 2)
2136 + 1 + 4 /* slash IPC$ */ + 2,
2138 if (temp_unc == NULL)
2142 strcpy(temp_unc + 2, pSesInfo->serverName);
2143 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2144 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
2145 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
2149 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
2150 pnum_referrals, nls_codepage, remap);
2151 /* BB map targetUNCs to dfs_info3 structures, here or
2152 in CIFSGetDFSRefer BB */
2157 #ifdef CONFIG_DEBUG_LOCK_ALLOC
2158 static struct lock_class_key cifs_key[2];
2159 static struct lock_class_key cifs_slock_key[2];
2162 cifs_reclassify_socket4(struct socket *sock)
2164 struct sock *sk = sock->sk;
2165 BUG_ON(sock_owned_by_user(sk));
2166 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2167 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2171 cifs_reclassify_socket6(struct socket *sock)
2173 struct sock *sk = sock->sk;
2174 BUG_ON(sock_owned_by_user(sk));
2175 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2176 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2180 cifs_reclassify_socket4(struct socket *sock)
2185 cifs_reclassify_socket6(struct socket *sock)
2190 /* See RFC1001 section 14 on representation of Netbios names */
2191 static void rfc1002mangle(char *target, char *source, unsigned int length)
2195 for (i = 0, j = 0; i < (length); i++) {
2196 /* mask a nibble at a time and encode */
2197 target[j] = 'A' + (0x0F & (source[i] >> 4));
2198 target[j+1] = 'A' + (0x0F & source[i]);
2205 bind_socket(struct TCP_Server_Info *server)
2208 if (server->srcaddr.ss_family != AF_UNSPEC) {
2209 /* Bind to the specified local IP address */
2210 struct socket *socket = server->ssocket;
2211 rc = socket->ops->bind(socket,
2212 (struct sockaddr *) &server->srcaddr,
2213 sizeof(server->srcaddr));
2215 struct sockaddr_in *saddr4;
2216 struct sockaddr_in6 *saddr6;
2217 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2218 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2219 if (saddr6->sin6_family == AF_INET6)
2221 "Failed to bind to: %pI6c, error: %d\n",
2222 &saddr6->sin6_addr, rc);
2225 "Failed to bind to: %pI4, error: %d\n",
2226 &saddr4->sin_addr.s_addr, rc);
2233 ip_rfc1001_connect(struct TCP_Server_Info *server)
2237 * some servers require RFC1001 sessinit before sending
2238 * negprot - BB check reconnection in case where second
2239 * sessinit is sent but no second negprot
2241 struct rfc1002_session_packet *ses_init_buf;
2242 struct smb_hdr *smb_buf;
2243 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2246 ses_init_buf->trailer.session_req.called_len = 32;
2248 if (server->server_RFC1001_name &&
2249 server->server_RFC1001_name[0] != 0)
2250 rfc1002mangle(ses_init_buf->trailer.
2251 session_req.called_name,
2252 server->server_RFC1001_name,
2253 RFC1001_NAME_LEN_WITH_NULL);
2255 rfc1002mangle(ses_init_buf->trailer.
2256 session_req.called_name,
2257 DEFAULT_CIFS_CALLED_NAME,
2258 RFC1001_NAME_LEN_WITH_NULL);
2260 ses_init_buf->trailer.session_req.calling_len = 32;
2263 * calling name ends in null (byte 16) from old smb
2266 if (server->workstation_RFC1001_name &&
2267 server->workstation_RFC1001_name[0] != 0)
2268 rfc1002mangle(ses_init_buf->trailer.
2269 session_req.calling_name,
2270 server->workstation_RFC1001_name,
2271 RFC1001_NAME_LEN_WITH_NULL);
2273 rfc1002mangle(ses_init_buf->trailer.
2274 session_req.calling_name,
2276 RFC1001_NAME_LEN_WITH_NULL);
2278 ses_init_buf->trailer.session_req.scope1 = 0;
2279 ses_init_buf->trailer.session_req.scope2 = 0;
2280 smb_buf = (struct smb_hdr *)ses_init_buf;
2282 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2283 smb_buf->smb_buf_length = 0x81000044;
2284 rc = smb_send(server, smb_buf, 0x44);
2285 kfree(ses_init_buf);
2287 * RFC1001 layer in at least one server
2288 * requires very short break before negprot
2289 * presumably because not expecting negprot
2290 * to follow so fast. This is a simple
2291 * solution that works without
2292 * complicating the code and causes no
2293 * significant slowing down on mount
2296 usleep_range(1000, 2000);
2299 * else the negprot may still work without this
2300 * even though malloc failed
2307 generic_ip_connect(struct TCP_Server_Info *server)
2312 struct socket *socket = server->ssocket;
2313 struct sockaddr *saddr;
2315 saddr = (struct sockaddr *) &server->dstaddr;
2317 if (server->dstaddr.ss_family == AF_INET6) {
2318 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
2319 slen = sizeof(struct sockaddr_in6);
2322 sport = ((struct sockaddr_in *) saddr)->sin_port;
2323 slen = sizeof(struct sockaddr_in);
2327 if (socket == NULL) {
2328 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2329 IPPROTO_TCP, &socket, 1);
2331 cERROR(1, "Error %d creating socket", rc);
2332 server->ssocket = NULL;
2336 /* BB other socket options to set KEEPALIVE, NODELAY? */
2337 cFYI(1, "Socket created");
2338 server->ssocket = socket;
2339 socket->sk->sk_allocation = GFP_NOFS;
2340 if (sfamily == AF_INET6)
2341 cifs_reclassify_socket6(socket);
2343 cifs_reclassify_socket4(socket);
2346 rc = bind_socket(server);
2350 rc = socket->ops->connect(socket, saddr, slen, 0);
2352 cFYI(1, "Error %d connecting to server", rc);
2353 sock_release(socket);
2354 server->ssocket = NULL;
2359 * Eventually check for other socket options to change from
2360 * the default. sock_setsockopt not used because it expects
2363 socket->sk->sk_rcvtimeo = 7 * HZ;
2364 socket->sk->sk_sndtimeo = 5 * HZ;
2366 /* make the bufsizes depend on wsize/rsize and max requests */
2367 if (server->noautotune) {
2368 if (socket->sk->sk_sndbuf < (200 * 1024))
2369 socket->sk->sk_sndbuf = 200 * 1024;
2370 if (socket->sk->sk_rcvbuf < (140 * 1024))
2371 socket->sk->sk_rcvbuf = 140 * 1024;
2374 if (server->tcp_nodelay) {
2376 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2377 (char *)&val, sizeof(val));
2379 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
2382 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
2383 socket->sk->sk_sndbuf,
2384 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
2386 if (sport == htons(RFC1001_PORT))
2387 rc = ip_rfc1001_connect(server);
2393 ip_connect(struct TCP_Server_Info *server)
2396 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2397 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2399 if (server->dstaddr.ss_family == AF_INET6)
2400 sport = &addr6->sin6_port;
2402 sport = &addr->sin_port;
2407 /* try with 445 port at first */
2408 *sport = htons(CIFS_PORT);
2410 rc = generic_ip_connect(server);
2414 /* if it failed, try with 139 port */
2415 *sport = htons(RFC1001_PORT);
2418 return generic_ip_connect(server);
2421 void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2422 struct super_block *sb, struct smb_vol *vol_info)
2424 /* if we are reconnecting then should we check to see if
2425 * any requested capabilities changed locally e.g. via
2426 * remount but we can not do much about it here
2427 * if they have (even if we could detect it by the following)
2428 * Perhaps we could add a backpointer to array of sb from tcon
2429 * or if we change to make all sb to same share the same
2430 * sb as NFS - then we only have one backpointer to sb.
2431 * What if we wanted to mount the server share twice once with
2432 * and once without posixacls or posix paths? */
2433 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2435 if (vol_info && vol_info->no_linux_ext) {
2436 tcon->fsUnixInfo.Capability = 0;
2437 tcon->unix_ext = 0; /* Unix Extensions disabled */
2438 cFYI(1, "Linux protocol extensions disabled");
2440 } else if (vol_info)
2441 tcon->unix_ext = 1; /* Unix Extensions supported */
2443 if (tcon->unix_ext == 0) {
2444 cFYI(1, "Unix extensions disabled so not set on reconnect");
2448 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
2449 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2451 /* check for reconnect case in which we do not
2452 want to change the mount behavior if we can avoid it */
2453 if (vol_info == NULL) {
2454 /* turn off POSIX ACL and PATHNAMES if not set
2455 originally at mount time */
2456 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2457 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2458 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2459 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2460 cERROR(1, "POSIXPATH support change");
2461 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2462 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2463 cERROR(1, "possible reconnect error");
2464 cERROR(1, "server disabled POSIX path support");
2468 cap &= CIFS_UNIX_CAP_MASK;
2469 if (vol_info && vol_info->no_psx_acl)
2470 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2471 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
2472 cFYI(1, "negotiated posix acl support");
2474 sb->s_flags |= MS_POSIXACL;
2477 if (vol_info && vol_info->posix_paths == 0)
2478 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2479 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
2480 cFYI(1, "negotiate posix pathnames");
2482 CIFS_SB(sb)->mnt_cifs_flags |=
2483 CIFS_MOUNT_POSIX_PATHS;
2486 /* We might be setting the path sep back to a different
2487 form if we are reconnecting and the server switched its
2488 posix path capability for this share */
2489 if (sb && (CIFS_SB(sb)->prepathlen > 0))
2490 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
2492 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2493 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2494 CIFS_SB(sb)->rsize = 127 * 1024;
2495 cFYI(DBG2, "larger reads not supported by srv");
2500 cFYI(1, "Negotiate caps 0x%x", (int)cap);
2501 #ifdef CONFIG_CIFS_DEBUG2
2502 if (cap & CIFS_UNIX_FCNTL_CAP)
2503 cFYI(1, "FCNTL cap");
2504 if (cap & CIFS_UNIX_EXTATTR_CAP)
2505 cFYI(1, "EXTATTR cap");
2506 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2507 cFYI(1, "POSIX path cap");
2508 if (cap & CIFS_UNIX_XATTR_CAP)
2509 cFYI(1, "XATTR cap");
2510 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
2511 cFYI(1, "POSIX ACL cap");
2512 if (cap & CIFS_UNIX_LARGE_READ_CAP)
2513 cFYI(1, "very large read cap");
2514 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
2515 cFYI(1, "very large write cap");
2516 #endif /* CIFS_DEBUG2 */
2517 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
2518 if (vol_info == NULL) {
2519 cFYI(1, "resetting capabilities failed");
2521 cERROR(1, "Negotiating Unix capabilities "
2522 "with the server failed. Consider "
2523 "mounting with the Unix Extensions\n"
2524 "disabled, if problems are found, "
2525 "by specifying the nounix mount "
2533 convert_delimiter(char *path, char delim)
2546 for (i = 0; path[i] != '\0'; i++) {
2547 if (path[i] == old_delim)
2552 static void setup_cifs_sb(struct smb_vol *pvolume_info,
2553 struct cifs_sb_info *cifs_sb)
2555 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2557 if (pvolume_info->rsize > CIFSMaxBufSize) {
2558 cERROR(1, "rsize %d too large, using MaxBufSize",
2559 pvolume_info->rsize);
2560 cifs_sb->rsize = CIFSMaxBufSize;
2561 } else if ((pvolume_info->rsize) &&
2562 (pvolume_info->rsize <= CIFSMaxBufSize))
2563 cifs_sb->rsize = pvolume_info->rsize;
2565 cifs_sb->rsize = CIFSMaxBufSize;
2567 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
2568 cERROR(1, "wsize %d too large, using 4096 instead",
2569 pvolume_info->wsize);
2570 cifs_sb->wsize = 4096;
2571 } else if (pvolume_info->wsize)
2572 cifs_sb->wsize = pvolume_info->wsize;
2574 cifs_sb->wsize = min_t(const int,
2575 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2577 /* old default of CIFSMaxBufSize was too small now
2578 that SMB Write2 can send multiple pages in kvec.
2579 RFC1001 does not describe what happens when frame
2580 bigger than 128K is sent so use that as max in
2581 conjunction with 52K kvec constraint on arch with 4K
2584 if (cifs_sb->rsize < 2048) {
2585 cifs_sb->rsize = 2048;
2586 /* Windows ME may prefer this */
2587 cFYI(1, "readsize set to minimum: 2048");
2589 /* calculate prepath */
2590 cifs_sb->prepath = pvolume_info->prepath;
2591 if (cifs_sb->prepath) {
2592 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2593 /* we can not convert the / to \ in the path
2594 separators in the prefixpath yet because we do not
2595 know (until reset_cifs_unix_caps is called later)
2596 whether POSIX PATH CAP is available. We normalize
2597 the / to \ after reset_cifs_unix_caps is called */
2598 pvolume_info->prepath = NULL;
2600 cifs_sb->prepathlen = 0;
2601 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2602 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2603 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2604 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
2605 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2606 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
2608 cifs_sb->actimeo = pvolume_info->actimeo;
2610 if (pvolume_info->noperm)
2611 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2612 if (pvolume_info->setuids)
2613 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2614 if (pvolume_info->server_ino)
2615 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2616 if (pvolume_info->remap)
2617 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2618 if (pvolume_info->no_xattr)
2619 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2620 if (pvolume_info->sfu_emul)
2621 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2622 if (pvolume_info->nobrl)
2623 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
2624 if (pvolume_info->nostrictsync)
2625 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
2626 if (pvolume_info->mand_lock)
2627 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
2628 if (pvolume_info->cifs_acl)
2629 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2630 if (pvolume_info->override_uid)
2631 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2632 if (pvolume_info->override_gid)
2633 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2634 if (pvolume_info->dynperm)
2635 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2636 if (pvolume_info->fsc)
2637 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
2638 if (pvolume_info->multiuser)
2639 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2640 CIFS_MOUNT_NO_PERM);
2641 if (pvolume_info->strict_io)
2642 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
2643 if (pvolume_info->direct_io) {
2644 cFYI(1, "mounting share using direct i/o");
2645 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2647 if (pvolume_info->mfsymlinks) {
2648 if (pvolume_info->sfu_emul) {
2649 cERROR(1, "mount option mfsymlinks ignored if sfu "
2650 "mount option is used");
2652 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2656 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
2657 cERROR(1, "mount option dynperm ignored if cifsacl "
2658 "mount option supported");
2662 is_path_accessible(int xid, struct cifsTconInfo *tcon,
2663 struct cifs_sb_info *cifs_sb, const char *full_path)
2666 FILE_ALL_INFO *pfile_info;
2668 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2669 if (pfile_info == NULL)
2672 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2673 0 /* not legacy */, cifs_sb->local_nls,
2674 cifs_sb->mnt_cifs_flags &
2675 CIFS_MOUNT_MAP_SPECIAL_CHR);
2677 if (rc == -EOPNOTSUPP || rc == -EINVAL)
2678 rc = SMBQueryInformation(xid, tcon, full_path, pfile_info,
2679 cifs_sb->local_nls, cifs_sb->mnt_cifs_flags &
2680 CIFS_MOUNT_MAP_SPECIAL_CHR);
2686 cleanup_volume_info(struct smb_vol **pvolume_info)
2688 struct smb_vol *volume_info;
2690 if (!pvolume_info || !*pvolume_info)
2693 volume_info = *pvolume_info;
2694 kzfree(volume_info->password);
2695 kfree(volume_info->UNC);
2696 kfree(volume_info->prepath);
2698 *pvolume_info = NULL;
2702 #ifdef CONFIG_CIFS_DFS_UPCALL
2703 /* build_path_to_root returns full path to root when
2704 * we do not have an exiting connection (tcon) */
2706 build_unc_path_to_root(const struct smb_vol *volume_info,
2707 const struct cifs_sb_info *cifs_sb)
2711 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2712 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2713 if (full_path == NULL)
2714 return ERR_PTR(-ENOMEM);
2716 strncpy(full_path, volume_info->UNC, unc_len);
2717 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2719 for (i = 0; i < unc_len; i++) {
2720 if (full_path[i] == '\\')
2725 if (cifs_sb->prepathlen)
2726 strncpy(full_path + unc_len, cifs_sb->prepath,
2727 cifs_sb->prepathlen);
2729 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2735 cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
2736 char *mount_data_global, const char *devname)
2740 struct smb_vol *volume_info;
2741 struct cifsSesInfo *pSesInfo;
2742 struct cifsTconInfo *tcon;
2743 struct TCP_Server_Info *srvTcp;
2745 char *mount_data = mount_data_global;
2746 struct tcon_link *tlink;
2747 #ifdef CONFIG_CIFS_DFS_UPCALL
2748 struct dfs_info3_param *referrals = NULL;
2749 unsigned int num_referrals = 0;
2750 int referral_walks_count = 0;
2762 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2768 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
2773 if (volume_info->nullauth) {
2774 cFYI(1, "null user");
2775 volume_info->username = "";
2776 } else if (volume_info->username) {
2777 /* BB fixme parse for domain name here */
2778 cFYI(1, "Username: %s", volume_info->username);
2780 cifserror("No username specified");
2781 /* In userspace mount helper we can get user name from alternate
2782 locations such as env variables and files on disk */
2787 /* this is needed for ASCII cp to Unicode converts */
2788 if (volume_info->iocharset == NULL) {
2789 /* load_nls_default cannot return null */
2790 volume_info->local_nls = load_nls_default();
2792 volume_info->local_nls = load_nls(volume_info->iocharset);
2793 if (volume_info->local_nls == NULL) {
2794 cERROR(1, "CIFS mount error: iocharset %s not found",
2795 volume_info->iocharset);
2800 cifs_sb->local_nls = volume_info->local_nls;
2802 /* get a reference to a tcp session */
2803 srvTcp = cifs_get_tcp_session(volume_info);
2804 if (IS_ERR(srvTcp)) {
2805 rc = PTR_ERR(srvTcp);
2809 /* get a reference to a SMB session */
2810 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2811 if (IS_ERR(pSesInfo)) {
2812 rc = PTR_ERR(pSesInfo);
2814 goto mount_fail_check;
2817 setup_cifs_sb(volume_info, cifs_sb);
2818 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2819 sb->s_maxbytes = MAX_LFS_FILESIZE;
2821 sb->s_maxbytes = MAX_NON_LFS;
2823 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
2824 sb->s_time_gran = 100;
2826 /* search for existing tcon to this server share */
2827 tcon = cifs_get_tcon(pSesInfo, volume_info);
2831 goto remote_path_check;
2834 /* do not care if following two calls succeed - informational */
2836 CIFSSMBQFSDeviceInfo(xid, tcon);
2837 CIFSSMBQFSAttributeInfo(xid, tcon);
2840 /* tell server which Unix caps we support */
2841 if (tcon->ses->capabilities & CAP_UNIX)
2842 /* reset of caps checks mount to see if unix extensions
2843 disabled for just this mount */
2844 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
2846 tcon->unix_ext = 0; /* server does not support them */
2848 /* convert forward to back slashes in prepath here if needed */
2849 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2850 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
2852 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2853 cifs_sb->rsize = 1024 * 127;
2854 cFYI(DBG2, "no very large read support, rsize now 127K");
2856 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2857 cifs_sb->wsize = min(cifs_sb->wsize,
2858 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2859 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2860 cifs_sb->rsize = min(cifs_sb->rsize,
2861 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2864 /* check if a whole path (including prepath) is not remote */
2866 /* build_path_to_root works only when we have a valid tcon */
2867 full_path = cifs_build_path_to_root(cifs_sb, tcon);
2868 if (full_path == NULL) {
2870 goto mount_fail_check;
2872 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
2873 if (rc != 0 && rc != -EREMOTE) {
2875 goto mount_fail_check;
2880 /* get referral if needed */
2881 if (rc == -EREMOTE) {
2882 #ifdef CONFIG_CIFS_DFS_UPCALL
2883 if (referral_walks_count > MAX_NESTED_LINKS) {
2885 * BB: when we implement proper loop detection,
2886 * we will remove this check. But now we need it
2887 * to prevent an indefinite loop if 'DFS tree' is
2888 * misconfigured (i.e. has loops).
2891 goto mount_fail_check;
2893 /* convert forward to back slashes in prepath here if needed */
2894 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2895 convert_delimiter(cifs_sb->prepath,
2896 CIFS_DIR_SEP(cifs_sb));
2897 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2898 if (IS_ERR(full_path)) {
2899 rc = PTR_ERR(full_path);
2900 goto mount_fail_check;
2903 cFYI(1, "Getting referral for: %s", full_path);
2904 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2905 cifs_sb->local_nls, &num_referrals, &referrals,
2906 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2907 if (!rc && num_referrals > 0) {
2908 char *fake_devname = NULL;
2910 if (mount_data != mount_data_global)
2913 mount_data = cifs_compose_mount_options(
2914 cifs_sb->mountdata, full_path + 1,
2915 referrals, &fake_devname);
2917 free_dfs_info_array(referrals, num_referrals);
2918 kfree(fake_devname);
2921 if (IS_ERR(mount_data)) {
2922 rc = PTR_ERR(mount_data);
2924 goto mount_fail_check;
2928 cifs_put_tcon(tcon);
2930 cifs_put_smb_ses(pSesInfo);
2932 cleanup_volume_info(&volume_info);
2933 referral_walks_count++;
2935 goto try_mount_again;
2937 #else /* No DFS support, return error on mount */
2943 goto mount_fail_check;
2945 /* now, hang the tcon off of the superblock */
2946 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
2947 if (tlink == NULL) {
2949 goto mount_fail_check;
2952 tlink->tl_uid = pSesInfo->linux_uid;
2953 tlink->tl_tcon = tcon;
2954 tlink->tl_time = jiffies;
2955 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
2956 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
2958 cifs_sb->master_tlink = tlink;
2959 spin_lock(&cifs_sb->tlink_tree_lock);
2960 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
2961 spin_unlock(&cifs_sb->tlink_tree_lock);
2963 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
2967 /* on error free sesinfo and tcon struct if needed */
2969 if (mount_data != mount_data_global)
2971 /* If find_unc succeeded then rc == 0 so we can not end */
2972 /* up accidentally freeing someone elses tcon struct */
2974 cifs_put_tcon(tcon);
2976 cifs_put_smb_ses(pSesInfo);
2978 cifs_put_tcp_session(srvTcp);
2982 /* volume_info->password is freed above when existing session found
2983 (in which case it is not needed anymore) but when new sesion is created
2984 the password ptr is put in the new session structure (in which case the
2985 password will be freed at unmount time) */
2987 /* zero out password before freeing */
2988 cleanup_volume_info(&volume_info);
2994 CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2995 const char *tree, struct cifsTconInfo *tcon,
2996 const struct nls_table *nls_codepage)
2998 struct smb_hdr *smb_buffer;
2999 struct smb_hdr *smb_buffer_response;
3002 unsigned char *bcc_ptr;
3005 __u16 bytes_left, count;
3010 smb_buffer = cifs_buf_get();
3011 if (smb_buffer == NULL)
3014 smb_buffer_response = smb_buffer;
3016 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
3017 NULL /*no tid */ , 4 /*wct */ );
3019 smb_buffer->Mid = GetNextMid(ses->server);
3020 smb_buffer->Uid = ses->Suid;
3021 pSMB = (TCONX_REQ *) smb_buffer;
3022 pSMBr = (TCONX_RSP *) smb_buffer_response;
3024 pSMB->AndXCommand = 0xFF;
3025 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
3026 bcc_ptr = &pSMB->Password[0];
3027 if ((ses->server->secMode) & SECMODE_USER) {
3028 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
3029 *bcc_ptr = 0; /* password is null byte */
3030 bcc_ptr++; /* skip password */
3031 /* already aligned so no need to do it below */
3033 pSMB->PasswordLength = cpu_to_le16(CIFS_AUTH_RESP_SIZE);
3034 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
3035 specified as required (when that support is added to
3036 the vfs in the future) as only NTLM or the much
3037 weaker LANMAN (which we do not send by default) is accepted
3038 by Samba (not sure whether other servers allow
3039 NTLMv2 password here) */
3040 #ifdef CONFIG_CIFS_WEAK_PW_HASH
3041 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
3042 (ses->server->secType == LANMAN))
3043 calc_lanman_hash(tcon->password, ses->server->cryptkey,
3044 ses->server->secMode &
3045 SECMODE_PW_ENCRYPT ? true : false,
3048 #endif /* CIFS_WEAK_PW_HASH */
3049 rc = SMBNTencrypt(tcon->password, ses->server->cryptkey,
3052 bcc_ptr += CIFS_AUTH_RESP_SIZE;
3053 if (ses->capabilities & CAP_UNICODE) {
3054 /* must align unicode strings */
3055 *bcc_ptr = 0; /* null byte password */
3060 if (ses->server->secMode &
3061 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
3062 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3064 if (ses->capabilities & CAP_STATUS32) {
3065 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3067 if (ses->capabilities & CAP_DFS) {
3068 smb_buffer->Flags2 |= SMBFLG2_DFS;
3070 if (ses->capabilities & CAP_UNICODE) {
3071 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3073 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3074 6 /* max utf8 char length in bytes */ *
3075 (/* server len*/ + 256 /* share len */), nls_codepage);
3076 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
3077 bcc_ptr += 2; /* skip trailing null */
3078 } else { /* ASCII */
3079 strcpy(bcc_ptr, tree);
3080 bcc_ptr += strlen(tree) + 1;
3082 strcpy(bcc_ptr, "?????");
3083 bcc_ptr += strlen("?????");
3085 count = bcc_ptr - &pSMB->Password[0];
3086 pSMB->hdr.smb_buf_length += count;
3087 pSMB->ByteCount = cpu_to_le16(count);
3089 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
3092 /* above now done in SendReceive */
3093 if ((rc == 0) && (tcon != NULL)) {
3096 tcon->tidStatus = CifsGood;
3097 tcon->need_reconnect = false;
3098 tcon->tid = smb_buffer_response->Tid;
3099 bcc_ptr = pByteArea(smb_buffer_response);
3100 bytes_left = get_bcc(smb_buffer_response);
3101 length = strnlen(bcc_ptr, bytes_left - 2);
3102 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3108 /* skip service field (NB: this field is always ASCII) */
3110 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3111 (bcc_ptr[2] == 'C')) {
3112 cFYI(1, "IPC connection");
3115 } else if (length == 2) {
3116 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3117 /* the most common case */
3118 cFYI(1, "disk share connection");
3121 bcc_ptr += length + 1;
3122 bytes_left -= (length + 1);
3123 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
3125 /* mostly informational -- no need to fail on error here */
3126 kfree(tcon->nativeFileSystem);
3127 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
3128 bytes_left, is_unicode,
3131 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
3133 if ((smb_buffer_response->WordCount == 3) ||
3134 (smb_buffer_response->WordCount == 7))
3135 /* field is in same location */
3136 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3139 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
3140 } else if ((rc == 0) && tcon == NULL) {
3141 /* all we need to save for IPC$ connection */
3142 ses->ipc_tid = smb_buffer_response->Tid;
3145 cifs_buf_release(smb_buffer);
3150 cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
3152 struct rb_root *root = &cifs_sb->tlink_tree;
3153 struct rb_node *node;
3154 struct tcon_link *tlink;
3157 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3159 spin_lock(&cifs_sb->tlink_tree_lock);
3160 while ((node = rb_first(root))) {
3161 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3162 cifs_get_tlink(tlink);
3163 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3164 rb_erase(node, root);
3166 spin_unlock(&cifs_sb->tlink_tree_lock);
3167 cifs_put_tlink(tlink);
3168 spin_lock(&cifs_sb->tlink_tree_lock);
3170 spin_unlock(&cifs_sb->tlink_tree_lock);
3172 tmp = cifs_sb->prepath;
3173 cifs_sb->prepathlen = 0;
3174 cifs_sb->prepath = NULL;
3180 int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
3183 struct TCP_Server_Info *server = ses->server;
3185 /* only send once per connect */
3186 if (server->maxBuf != 0)
3189 rc = CIFSSMBNegotiate(xid, ses);
3190 if (rc == -EAGAIN) {
3191 /* retry only once on 1st time connection */
3192 rc = CIFSSMBNegotiate(xid, ses);
3197 spin_lock(&GlobalMid_Lock);
3198 if (server->tcpStatus != CifsExiting)
3199 server->tcpStatus = CifsGood;
3202 spin_unlock(&GlobalMid_Lock);
3210 int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
3211 struct nls_table *nls_info)
3214 struct TCP_Server_Info *server = ses->server;
3217 ses->capabilities = server->capabilities;
3218 if (linuxExtEnabled == 0)
3219 ses->capabilities &= (~CAP_UNIX);
3221 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3222 server->secMode, server->capabilities, server->timeAdj);
3224 rc = CIFS_SessSetup(xid, ses, nls_info);
3226 cERROR(1, "Send error in SessSetup = %d", rc);
3228 mutex_lock(&ses->server->srv_mutex);
3229 if (!server->session_estab) {
3230 server->session_key.response = ses->auth_key.response;
3231 server->session_key.len = ses->auth_key.len;
3232 server->sequence_number = 0x2;
3233 server->session_estab = true;
3234 ses->auth_key.response = NULL;
3236 mutex_unlock(&server->srv_mutex);
3238 cFYI(1, "CIFS Session Established successfully");
3239 spin_lock(&GlobalMid_Lock);
3240 ses->status = CifsGood;
3241 ses->need_reconnect = false;
3242 spin_unlock(&GlobalMid_Lock);
3245 kfree(ses->auth_key.response);
3246 ses->auth_key.response = NULL;
3247 ses->auth_key.len = 0;
3248 kfree(ses->ntlmssp);
3249 ses->ntlmssp = NULL;
3254 static struct cifsTconInfo *
3255 cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3257 struct cifsTconInfo *master_tcon = cifs_sb_master_tcon(cifs_sb);
3258 struct cifsSesInfo *ses;
3259 struct cifsTconInfo *tcon = NULL;
3260 struct smb_vol *vol_info;
3261 char username[MAX_USERNAME_SIZE + 1];
3263 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3264 if (vol_info == NULL) {
3265 tcon = ERR_PTR(-ENOMEM);
3269 snprintf(username, MAX_USERNAME_SIZE, "krb50x%x", fsuid);
3270 vol_info->username = username;
3271 vol_info->local_nls = cifs_sb->local_nls;
3272 vol_info->linux_uid = fsuid;
3273 vol_info->cred_uid = fsuid;
3274 vol_info->UNC = master_tcon->treeName;
3275 vol_info->retry = master_tcon->retry;
3276 vol_info->nocase = master_tcon->nocase;
3277 vol_info->local_lease = master_tcon->local_lease;
3278 vol_info->no_linux_ext = !master_tcon->unix_ext;
3280 /* FIXME: allow for other secFlg settings */
3281 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3283 /* get a reference for the same TCP session */
3284 spin_lock(&cifs_tcp_ses_lock);
3285 ++master_tcon->ses->server->srv_count;
3286 spin_unlock(&cifs_tcp_ses_lock);
3288 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3290 tcon = (struct cifsTconInfo *)ses;
3291 cifs_put_tcp_session(master_tcon->ses->server);
3295 tcon = cifs_get_tcon(ses, vol_info);
3297 cifs_put_smb_ses(ses);
3301 if (ses->capabilities & CAP_UNIX)
3302 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3309 static inline struct tcon_link *
3310 cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
3312 return cifs_sb->master_tlink;
3315 struct cifsTconInfo *
3316 cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3318 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3322 cifs_sb_tcon_pending_wait(void *unused)
3325 return signal_pending(current) ? -ERESTARTSYS : 0;
3328 /* find and return a tlink with given uid */
3329 static struct tcon_link *
3330 tlink_rb_search(struct rb_root *root, uid_t uid)
3332 struct rb_node *node = root->rb_node;
3333 struct tcon_link *tlink;
3336 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3338 if (tlink->tl_uid > uid)
3339 node = node->rb_left;
3340 else if (tlink->tl_uid < uid)
3341 node = node->rb_right;
3348 /* insert a tcon_link into the tree */
3350 tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
3352 struct rb_node **new = &(root->rb_node), *parent = NULL;
3353 struct tcon_link *tlink;
3356 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
3359 if (tlink->tl_uid > new_tlink->tl_uid)
3360 new = &((*new)->rb_left);
3362 new = &((*new)->rb_right);
3365 rb_link_node(&new_tlink->tl_rbnode, parent, new);
3366 rb_insert_color(&new_tlink->tl_rbnode, root);
3370 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3373 * If the superblock doesn't refer to a multiuser mount, then just return
3374 * the master tcon for the mount.
3376 * First, search the rbtree for an existing tcon for this fsuid. If one
3377 * exists, then check to see if it's pending construction. If it is then wait
3378 * for construction to complete. Once it's no longer pending, check to see if
3379 * it failed and either return an error or retry construction, depending on
3382 * If one doesn't exist then insert a new tcon_link struct into the tree and
3383 * try to construct a new one.
3386 cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3389 uid_t fsuid = current_fsuid();
3390 struct tcon_link *tlink, *newtlink;
3392 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3393 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3395 spin_lock(&cifs_sb->tlink_tree_lock);
3396 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
3398 cifs_get_tlink(tlink);
3399 spin_unlock(&cifs_sb->tlink_tree_lock);
3401 if (tlink == NULL) {
3402 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3403 if (newtlink == NULL)
3404 return ERR_PTR(-ENOMEM);
3405 newtlink->tl_uid = fsuid;
3406 newtlink->tl_tcon = ERR_PTR(-EACCES);
3407 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3408 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3409 cifs_get_tlink(newtlink);
3411 spin_lock(&cifs_sb->tlink_tree_lock);
3412 /* was one inserted after previous search? */
3413 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
3415 cifs_get_tlink(tlink);
3416 spin_unlock(&cifs_sb->tlink_tree_lock);
3418 goto wait_for_construction;
3421 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3422 spin_unlock(&cifs_sb->tlink_tree_lock);
3424 wait_for_construction:
3425 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3426 cifs_sb_tcon_pending_wait,
3427 TASK_INTERRUPTIBLE);
3429 cifs_put_tlink(tlink);
3430 return ERR_PTR(ret);
3433 /* if it's good, return it */
3434 if (!IS_ERR(tlink->tl_tcon))
3437 /* return error if we tried this already recently */
3438 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3439 cifs_put_tlink(tlink);
3440 return ERR_PTR(-EACCES);
3443 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3444 goto wait_for_construction;
3447 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3448 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3449 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3451 if (IS_ERR(tlink->tl_tcon)) {
3452 cifs_put_tlink(tlink);
3453 return ERR_PTR(-EACCES);
3460 * periodic workqueue job that scans tcon_tree for a superblock and closes
3464 cifs_prune_tlinks(struct work_struct *work)
3466 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3468 struct rb_root *root = &cifs_sb->tlink_tree;
3469 struct rb_node *node = rb_first(root);
3470 struct rb_node *tmp;
3471 struct tcon_link *tlink;
3474 * Because we drop the spinlock in the loop in order to put the tlink
3475 * it's not guarded against removal of links from the tree. The only
3476 * places that remove entries from the tree are this function and
3477 * umounts. Because this function is non-reentrant and is canceled
3478 * before umount can proceed, this is safe.
3480 spin_lock(&cifs_sb->tlink_tree_lock);
3481 node = rb_first(root);
3482 while (node != NULL) {
3484 node = rb_next(tmp);
3485 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
3487 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
3488 atomic_read(&tlink->tl_count) != 0 ||
3489 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
3492 cifs_get_tlink(tlink);
3493 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3494 rb_erase(tmp, root);
3496 spin_unlock(&cifs_sb->tlink_tree_lock);
3497 cifs_put_tlink(tlink);
3498 spin_lock(&cifs_sb->tlink_tree_lock);
3500 spin_unlock(&cifs_sb->tlink_tree_lock);
3502 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
projects / firefly-linux-kernel-4.4.55.git / blob