]> bbs.cooldavid.org Git - net-next-2.6.git/blame - fs/cifs/connect.c
git://bbs.cooldavid.org / net-next-2.6.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
NTLM auth and sign - Allocate session key/client response dynamically
[net-next-2.6.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
488f1d2d 50#include "fscache.h"
1da177e4
LT		 51
52#define CIFS_PORT 445
53#define RFC1001_PORT 139
54
1da177e4
LT		 55extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
56 unsigned char *p24);
57
58extern mempool_t *cifs_req_poolp;
59
60struct smb_vol {
61 char *username;
62 char *password;
63 char *domainname;
64 char *UNC;
65 char *UNCip;
1da177e4
LT		 66 char *iocharset; /* local code page for mapping to and from Unicode */
67 char source_rfc1001_name[16]; /* netbios name of client */
a10faeb2 68 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
3e4b3e1f 69 uid_t cred_uid;
1da177e4
LT		 70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
189acaae 74 unsigned secFlg;
4b18f2a9
SF		 75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
d0a9c078 80 bool dynperm:1;
4b18f2a9
SF		 81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
95b1cb90
SF		 87 bool remap:1; /* set to remap seven reserved chars in filenames */
88 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 89 bool no_linux_ext:1;
90 bool sfu_emul:1;
95b1cb90
SF		 91 bool nullauth:1; /* attempt to authenticate with null user */
92 bool nocase:1; /* request case insensitive filenames */
93 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 94 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 95 bool seal:1; /* request transport encryption on share */
84210e91
SF		 96 bool nodfs:1; /* Do not request DFS, even if available */
97 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 98 bool noblocksnd:1;
99 bool noautotune:1;
be652445 100 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
fa1df75d 101 bool fsc:1; /* enable fscache */
736a3320 102 bool mfsymlinks:1; /* use Minshall+French Symlinks */
0eb8a132 103 bool multiuser:1;
1da177e4
LT		 104 unsigned int rsize;
105 unsigned int wsize;
6a5fa236 106 bool sockopt_tcp_nodelay:1;
1da177e4 107 unsigned short int port;
fb8c4b14 108 char *prepath;
3eb9a889 109 struct sockaddr_storage srcaddr; /* allow binding to a local IP */
a5fc4ce0 110 struct nls_table *local_nls;
1da177e4
LT		 111};
112
2de970ff 113/* FIXME: should these be tunable? */
9d002df4 114#define TLINK_ERROR_EXPIRE (1 * HZ)
2de970ff 115#define TLINK_IDLE_EXPIRE (600 * HZ)
9d002df4 116
bcf4b106 117static int ipv4_connect(struct TCP_Server_Info *server);
d5c5605c 118static int ipv6_connect(struct TCP_Server_Info *server);
2de970ff 119static void cifs_prune_tlinks(struct work_struct *work);
1da177e4 120
d5c5605c
JL		 121/*
122 * cifs tcp session reconnection
123 *
124 * mark tcp session as reconnecting so temporarily locked
125 * mark all smb sessions as reconnecting for tcp session
126 * reconnect tcp session
127 * wake up waiters on reconnection? - (not needed currently)
128 */
2cd646a2 129static int
1da177e4
LT		 130cifs_reconnect(struct TCP_Server_Info *server)
131{
132 int rc = 0;
f1987b44 133 struct list_head *tmp, *tmp2;
1da177e4
LT		 134 struct cifsSesInfo *ses;
135 struct cifsTconInfo *tcon;
fb8c4b14 136 struct mid_q_entry *mid_entry;
50c2f753 137
1da177e4 138 spin_lock(&GlobalMid_Lock);
469ee614 139 if (server->tcpStatus == CifsExiting) {
fb8c4b14 140 /* the demux thread will exit normally
1da177e4
LT		 141 next time through the loop */
142 spin_unlock(&GlobalMid_Lock);
143 return rc;
144 } else
145 server->tcpStatus = CifsNeedReconnect;
146 spin_unlock(&GlobalMid_Lock);
147 server->maxBuf = 0;
148
b6b38f70 149 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 150
151 /* before reconnecting the tcp session, mark the smb session (uid)
152 and the tid bad so they are not used until reconnected */
3f9bcca7 153 spin_lock(&cifs_tcp_ses_lock);
14fbf50d
JL		 154 list_for_each(tmp, &server->smb_ses_list) {
155 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
156 ses->need_reconnect = true;
157 ses->ipc_tid = 0;
f1987b44
JL		 158 list_for_each(tmp2, &ses->tcon_list) {
159 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 160 tcon->need_reconnect = true;
1da177e4 161 }
1da177e4 162 }
3f9bcca7 163 spin_unlock(&cifs_tcp_ses_lock);
1da177e4 164 /* do not want to be sending data on a socket we are freeing */
72ca545b 165 mutex_lock(&server->srv_mutex);
fb8c4b14 166 if (server->ssocket) {
b6b38f70
JP		 167 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
168 server->ssocket->flags);
91cf45f0 169 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 170 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 171 server->ssocket->state,
b6b38f70 172 server->ssocket->flags);
1da177e4
LT		 173 sock_release(server->ssocket);
174 server->ssocket = NULL;
175 }
5d0d2882
SP		 176 server->sequence_number = 0;
177 server->session_estab = false;
21e73393
SP		 178 kfree(server->session_key.response);
179 server->session_key.response = NULL;
180 server->session_key.len = 0;
1da177e4
LT		 181
182 spin_lock(&GlobalMid_Lock);
183 list_for_each(tmp, &server->pending_mid_q) {
184 mid_entry = list_entry(tmp, struct
185 mid_q_entry,
186 qhead);
ad8b15f0 187 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
09d1db5c
SF		 188 /* Mark other intransit requests as needing
189 retry so we do not immediately mark the
190 session bad again (ie after we reconnect
191 below) as they timeout too */
ad8b15f0 192 mid_entry->midState = MID_RETRY_NEEDED;
1da177e4
LT		 193 }
194 }
195 spin_unlock(&GlobalMid_Lock);
72ca545b 196 mutex_unlock(&server->srv_mutex);
1da177e4 197
469ee614
JL		 198 while ((server->tcpStatus != CifsExiting) &&
199 (server->tcpStatus != CifsGood)) {
6c3d8909 200 try_to_freeze();
bcf4b106 201 if (server->addr.sockAddr6.sin6_family == AF_INET6)
d5c5605c 202 rc = ipv6_connect(server);
bcf4b106
JL		 203 else
204 rc = ipv4_connect(server);
fb8c4b14 205 if (rc) {
b6b38f70 206 cFYI(1, "reconnect error %d", rc);
0cb766ae 207 msleep(3000);
1da177e4
LT		 208 } else {
209 atomic_inc(&tcpSesReconnectCount);
210 spin_lock(&GlobalMid_Lock);
469ee614 211 if (server->tcpStatus != CifsExiting)
1da177e4 212 server->tcpStatus = CifsGood;
fb8c4b14 213 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 214 /* atomic_set(&server->inFlight,0);*/
215 wake_up(&server->response_q);
216 }
217 }
218 return rc;
219}
220
fb8c4b14 221/*
e4eb295d
SF		 222 return codes:
223 0 not a transact2, or all data present
224 >0 transact2 with that much data missing
225 -EINVAL = invalid transact2
226
227 */
fb8c4b14 228static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 229{
fb8c4b14
SF		 230 struct smb_t2_rsp *pSMBt;
231 int total_data_size;
e4eb295d
SF		 232 int data_in_this_rsp;
233 int remaining;
234
fb8c4b14 235 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 236 return 0;
237
fb8c4b14
SF		 238 /* check for plausible wct, bcc and t2 data and parm sizes */
239 /* check for parm and data offset going beyond end of smb */
240 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 241 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 242 return -EINVAL;
243 }
244
245 pSMBt = (struct smb_t2_rsp *)pSMB;
246
247 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
248 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
249
250 remaining = total_data_size - data_in_this_rsp;
251
fb8c4b14 252 if (remaining == 0)
e4eb295d 253 return 0;
fb8c4b14 254 else if (remaining < 0) {
b6b38f70
JP		 255 cFYI(1, "total data %d smaller than data in frame %d",
256 total_data_size, data_in_this_rsp);
e4eb295d
SF		 257 return -EINVAL;
258 } else {
b6b38f70
JP		 259 cFYI(1, "missing %d bytes from transact2, check next response",
260 remaining);
fb8c4b14 261 if (total_data_size > maxBufSize) {
b6b38f70
JP		 262 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
263 total_data_size, maxBufSize);
fb8c4b14 264 return -EINVAL;
e4eb295d
SF		 265 }
266 return remaining;
267 }
268}
269
fb8c4b14 270static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 271{
272 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
273 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
274 int total_data_size;
275 int total_in_buf;
276 int remaining;
277 int total_in_buf2;
fb8c4b14
SF		 278 char *data_area_of_target;
279 char *data_area_of_buf2;
e4eb295d
SF		 280 __u16 byte_count;
281
282 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
283
fb8c4b14 284 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
b6b38f70 285 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d
SF		 286 }
287
288 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
289
290 remaining = total_data_size - total_in_buf;
50c2f753 291
fb8c4b14 292 if (remaining < 0)
e4eb295d
SF		 293 return -EINVAL;
294
fb8c4b14 295 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 296 return 0;
50c2f753 297
e4eb295d 298 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
fb8c4b14 299 if (remaining < total_in_buf2) {
b6b38f70 300 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 301 }
302
303 /* find end of first SMB data area */
fb8c4b14 304 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
e4eb295d
SF		 305 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
306 /* validate target area */
307
308 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
fb8c4b14 309 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 310
311 data_area_of_target += total_in_buf;
312
313 /* copy second buffer into end of first buffer */
fb8c4b14 314 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
e4eb295d
SF		 315 total_in_buf += total_in_buf2;
316 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
317 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
318 byte_count += total_in_buf2;
319 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
320
70ca734a 321 byte_count = pTargetSMB->smb_buf_length;
e4eb295d
SF		 322 byte_count += total_in_buf2;
323
324 /* BB also add check that we are not beyond maximum buffer size */
50c2f753 325
70ca734a 326 pTargetSMB->smb_buf_length = byte_count;
e4eb295d 327
fb8c4b14 328 if (remaining == total_in_buf2) {
b6b38f70 329 cFYI(1, "found the last secondary response");
e4eb295d
SF		 330 return 0; /* we are done */
331 } else /* more responses to go */
332 return 1;
333
334}
335
1da177e4
LT		 336static int
337cifs_demultiplex_thread(struct TCP_Server_Info *server)
338{
339 int length;
340 unsigned int pdu_length, total_read;
341 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 342 struct smb_hdr *bigbuf = NULL;
343 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 344 struct msghdr smb_msg;
345 struct kvec iov;
346 struct socket *csocket = server->ssocket;
347 struct list_head *tmp;
348 struct cifsSesInfo *ses;
349 struct task_struct *task_to_wake = NULL;
350 struct mid_q_entry *mid_entry;
70ca734a 351 char temp;
4b18f2a9
SF		 352 bool isLargeBuf = false;
353 bool isMultiRsp;
e4eb295d 354 int reconnect;
1da177e4 355
1da177e4 356 current->flags |= PF_MEMALLOC;
b6b38f70 357 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 358
359 length = atomic_inc_return(&tcpSesAllocCount);
360 if (length > 1)
26f57364
SF		 361 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
362 GFP_KERNEL);
1da177e4 363
83144186 364 set_freezable();
469ee614 365 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 366 if (try_to_freeze())
367 continue;
b8643e1b
SF		 368 if (bigbuf == NULL) {
369 bigbuf = cifs_buf_get();
0fd1ffe0 370 if (!bigbuf) {
b6b38f70 371 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 372 msleep(3000);
373 /* retry will check if exiting */
374 continue;
375 }
0fd1ffe0
PM		 376 } else if (isLargeBuf) {
377 /* we are reusing a dirty large buf, clear its start */
26f57364 378 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 379 }
b8643e1b
SF		 380
381 if (smallbuf == NULL) {
382 smallbuf = cifs_small_buf_get();
0fd1ffe0 383 if (!smallbuf) {
b6b38f70 384 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 385 msleep(1000);
386 /* retry will check if exiting */
387 continue;
388 }
389 /* beginning of smb buffer is cleared in our buf_get */
390 } else /* if existing small buf clear beginning */
26f57364 391 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 392
4b18f2a9
SF		 393 isLargeBuf = false;
394 isMultiRsp = false;
b8643e1b 395 smb_buffer = smallbuf;
1da177e4
LT		 396 iov.iov_base = smb_buffer;
397 iov.iov_len = 4;
398 smb_msg.msg_control = NULL;
399 smb_msg.msg_controllen = 0;
f01d5e14
SF		 400 pdu_length = 4; /* enough to get RFC1001 header */
401incomplete_rcv:
1da177e4
LT		 402 length =
403 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 404 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 405
469ee614 406 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 407 break;
408 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 409 cFYI(1, "Reconnect after server stopped responding");
1da177e4 410 cifs_reconnect(server);
b6b38f70 411 cFYI(1, "call to reconnect done");
1da177e4
LT		 412 csocket = server->ssocket;
413 continue;
522bbe65
JL		 414 } else if (length == -ERESTARTSYS ||
415 length == -EAGAIN ||
416 length == -EINTR) {
b8643e1b 417 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 418 allowing socket to clear and app threads to set
419 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 420 if (pdu_length < 4) {
421 iov.iov_base = (4 - pdu_length) +
422 (char *)smb_buffer;
423 iov.iov_len = pdu_length;
424 smb_msg.msg_control = NULL;
425 smb_msg.msg_controllen = 0;
c18c732e 426 goto incomplete_rcv;
c527c8a7 427 } else
c18c732e 428 continue;
1da177e4 429 } else if (length <= 0) {
b6b38f70
JP		 430 cFYI(1, "Reconnect after unexpected peek error %d",
431 length);
1da177e4
LT		 432 cifs_reconnect(server);
433 csocket = server->ssocket;
434 wake_up(&server->response_q);
435 continue;
2a974680 436 } else if (length < pdu_length) {
b6b38f70
JP		 437 cFYI(1, "requested %d bytes but only got %d bytes",
438 pdu_length, length);
f01d5e14 439 pdu_length -= length;
f01d5e14
SF		 440 msleep(1);
441 goto incomplete_rcv;
46810cbf 442 }
1da177e4 443
70ca734a
SF		 444 /* The right amount was read from socket - 4 bytes */
445 /* so we can now interpret the length field */
46810cbf 446
70ca734a
SF		 447 /* the first byte big endian of the length field,
448 is actually not part of the length but the type
449 with the most common, zero, as regular data */
450 temp = *((char *) smb_buffer);
46810cbf 451
fb8c4b14 452 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 453 but we convert it here so it is always manipulated
454 as host byte order */
5ca33c6a 455 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
70ca734a
SF		 456 smb_buffer->smb_buf_length = pdu_length;
457
b6b38f70 458 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 459
70ca734a 460 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 461 continue;
70ca734a 462 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 463 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 464 continue;
70ca734a 465 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 466 /* we get this from Windows 98 instead of
46810cbf 467 an error on SMB negprot response */
b6b38f70
JP		 468 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
469 pdu_length);
7332f2a6
JL		 470 /* give server a second to clean up */
471 msleep(1000);
472 /* always try 445 first on reconnect since we get NACK
473 * on some if we ever connected to port 139 (the NACK
474 * is since we do not begin with RFC1001 session
475 * initialize frame)
476 */
32670396
JL		 477 cifs_set_port((struct sockaddr *)
478 &server->addr.sockAddr, CIFS_PORT);
7332f2a6
JL		 479 cifs_reconnect(server);
480 csocket = server->ssocket;
481 wake_up(&server->response_q);
482 continue;
70ca734a 483 } else if (temp != (char) 0) {
b6b38f70 484 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 485 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
486 length);
46810cbf
SF		 487 cifs_reconnect(server);
488 csocket = server->ssocket;
489 continue;
e4eb295d
SF		 490 }
491
492 /* else we have an SMB response */
fb8c4b14 493 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 494 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 495 cERROR(1, "Invalid size SMB length %d pdu_length %d",
496 length, pdu_length+4);
e4eb295d
SF		 497 cifs_reconnect(server);
498 csocket = server->ssocket;
499 wake_up(&server->response_q);
500 continue;
fb8c4b14 501 }
e4eb295d
SF		 502
503 /* else length ok */
504 reconnect = 0;
505
fb8c4b14 506 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 507 isLargeBuf = true;
e4eb295d
SF		 508 memcpy(bigbuf, smallbuf, 4);
509 smb_buffer = bigbuf;
510 }
511 length = 0;
512 iov.iov_base = 4 + (char *)smb_buffer;
513 iov.iov_len = pdu_length;
fb8c4b14 514 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 515 total_read += length) {
516 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
517 pdu_length - total_read, 0);
522bbe65 518 if (server->tcpStatus == CifsExiting) {
e4eb295d
SF		 519 /* then will exit */
520 reconnect = 2;
521 break;
522 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 523 cifs_reconnect(server);
524 csocket = server->ssocket;
fb8c4b14 525 /* Reconnect wakes up rspns q */
e4eb295d
SF		 526 /* Now we will reread sock */
527 reconnect = 1;
528 break;
522bbe65
JL		 529 } else if (length == -ERESTARTSYS ||
530 length == -EAGAIN ||
531 length == -EINTR) {
e4eb295d 532 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 533 allowing socket to clear and app
e4eb295d
SF		 534 threads to set tcpStatus
535 CifsNeedReconnect if server hung*/
c18c732e 536 length = 0;
46810cbf 537 continue;
e4eb295d 538 } else if (length <= 0) {
b6b38f70
JP		 539 cERROR(1, "Received no data, expecting %d",
540 pdu_length - total_read);
e4eb295d
SF		 541 cifs_reconnect(server);
542 csocket = server->ssocket;
543 reconnect = 1;
544 break;
46810cbf 545 }
e4eb295d 546 }
fb8c4b14 547 if (reconnect == 2)
e4eb295d 548 break;
fb8c4b14 549 else if (reconnect == 1)
e4eb295d 550 continue;
1da177e4 551
e4eb295d 552 length += 4; /* account for rfc1002 hdr */
50c2f753 553
09d1db5c 554
e4eb295d 555 dump_smb(smb_buffer, length);
184ed211 556 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
b387eaeb 557 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
e4eb295d
SF		 558 continue;
559 }
1da177e4 560
e4eb295d
SF		 561
562 task_to_wake = NULL;
563 spin_lock(&GlobalMid_Lock);
564 list_for_each(tmp, &server->pending_mid_q) {
565 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
566
50c2f753 567 if ((mid_entry->mid == smb_buffer->Mid) &&
e4eb295d
SF		 568 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
569 (mid_entry->command == smb_buffer->Command)) {
fb8c4b14 570 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
e4eb295d 571 /* We have a multipart transact2 resp */
4b18f2a9 572 isMultiRsp = true;
fb8c4b14 573 if (mid_entry->resp_buf) {
e4eb295d 574 /* merge response - fix up 1st*/
50c2f753 575 if (coalesce_t2(smb_buffer,
e4eb295d 576 mid_entry->resp_buf)) {
4b18f2a9
SF		 577 mid_entry->multiRsp =
578 true;
e4eb295d
SF		 579 break;
580 } else {
581 /* all parts received */
4b18f2a9
SF		 582 mid_entry->multiEnd =
583 true;
50c2f753 584 goto multi_t2_fnd;
e4eb295d
SF		 585 }
586 } else {
fb8c4b14 587 if (!isLargeBuf) {
b6b38f70 588 cERROR(1, "1st trans2 resp needs bigbuf");
e4eb295d 589 /* BB maybe we can fix this up, switch
50c2f753 590 to already allocated large buffer? */
e4eb295d 591 } else {
cd63499c 592 /* Have first buffer */
e4eb295d
SF		 593 mid_entry->resp_buf =
594 smb_buffer;
4b18f2a9
SF		 595 mid_entry->largeBuf =
596 true;
e4eb295d
SF		 597 bigbuf = NULL;
598 }
599 }
600 break;
50c2f753 601 }
e4eb295d 602 mid_entry->resp_buf = smb_buffer;
4b18f2a9 603 mid_entry->largeBuf = isLargeBuf;
e4eb295d
SF		 604multi_t2_fnd:
605 task_to_wake = mid_entry->tsk;
606 mid_entry->midState = MID_RESPONSE_RECEIVED;
1047abc1
SF		 607#ifdef CONFIG_CIFS_STATS2
608 mid_entry->when_received = jiffies;
609#endif
3a5ff61c
SF		 610 /* so we do not time out requests to server
611 which is still responding (since server could
612 be busy but not dead) */
613 server->lstrp = jiffies;
e4eb295d 614 break;
46810cbf 615 }
1da177e4 616 }
e4eb295d
SF		 617 spin_unlock(&GlobalMid_Lock);
618 if (task_to_wake) {
cd63499c 619 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 620 if (!isMultiRsp) {
cd63499c 621 /* smb buffer will be freed by user thread */
26f57364 622 if (isLargeBuf)
cd63499c 623 bigbuf = NULL;
26f57364 624 else
cd63499c
SF		 625 smallbuf = NULL;
626 }
e4eb295d 627 wake_up_process(task_to_wake);
4b18f2a9
SF		 628 } else if (!is_valid_oplock_break(smb_buffer, server) &&
629 !isMultiRsp) {
b6b38f70
JP		 630 cERROR(1, "No task to wake, unknown frame received! "
631 "NumMids %d", midCount.counter);
50c2f753 632 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 633 sizeof(struct smb_hdr));
3979877e
SF		 634#ifdef CONFIG_CIFS_DEBUG2
635 cifs_dump_detail(smb_buffer);
636 cifs_dump_mids(server);
637#endif /* CIFS_DEBUG2 */
50c2f753 638
e4eb295d
SF		 639 }
640 } /* end while !EXITING */
641
e7ddee90 642 /* take it off the list, if it's not already */
3f9bcca7 643 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 644 list_del_init(&server->tcp_ses_list);
3f9bcca7 645 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 646
1da177e4
LT		 647 spin_lock(&GlobalMid_Lock);
648 server->tcpStatus = CifsExiting;
e691b9d1 649 spin_unlock(&GlobalMid_Lock);
dbdbb876 650 wake_up_all(&server->response_q);
e691b9d1 651
31ca3bc3
SF		 652 /* check if we have blocked requests that need to free */
653 /* Note that cifs_max_pending is normally 50, but
654 can be set at module install time to as little as two */
e691b9d1 655 spin_lock(&GlobalMid_Lock);
fb8c4b14 656 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 657 atomic_set(&server->inFlight, cifs_max_pending - 1);
658 /* We do not want to set the max_pending too low or we
659 could end up with the counter going negative */
1da177e4 660 spin_unlock(&GlobalMid_Lock);
50c2f753 661 /* Although there should not be any requests blocked on
1da177e4 662 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 663 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 664 to the same server - they now will see the session is in exit state
665 and get out of SendReceive. */
666 wake_up_all(&server->request_q);
667 /* give those requests time to exit */
b8643e1b 668 msleep(125);
50c2f753 669
fb8c4b14 670 if (server->ssocket) {
1da177e4
LT		 671 sock_release(csocket);
672 server->ssocket = NULL;
673 }
b8643e1b 674 /* buffer usuallly freed in free_mid - need to free it here on exit */
a8a11d39
MK		 675 cifs_buf_release(bigbuf);
676 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 677 cifs_small_buf_release(smallbuf);
1da177e4 678
14fbf50d
JL		 679 /*
680 * BB: we shouldn't have to do any of this. It shouldn't be
681 * possible to exit from the thread with active SMB sessions
682 */
3f9bcca7 683 spin_lock(&cifs_tcp_ses_lock);
1da177e4 684 if (list_empty(&server->pending_mid_q)) {
09d1db5c
SF		 685 /* loop through server session structures attached to this and
686 mark them dead */
14fbf50d
JL		 687 list_for_each(tmp, &server->smb_ses_list) {
688 ses = list_entry(tmp, struct cifsSesInfo,
689 smb_ses_list);
690 ses->status = CifsExiting;
691 ses->server = NULL;
1da177e4 692 }
3f9bcca7 693 spin_unlock(&cifs_tcp_ses_lock);
1da177e4 694 } else {
31ca3bc3
SF		 695 /* although we can not zero the server struct pointer yet,
696 since there are active requests which may depnd on them,
697 mark the corresponding SMB sessions as exiting too */
14fbf50d 698 list_for_each(tmp, &server->smb_ses_list) {
31ca3bc3 699 ses = list_entry(tmp, struct cifsSesInfo,
14fbf50d
JL		 700 smb_ses_list);
701 ses->status = CifsExiting;
31ca3bc3
SF		 702 }
703
1da177e4
LT		 704 spin_lock(&GlobalMid_Lock);
705 list_for_each(tmp, &server->pending_mid_q) {
706 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
707 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
b6b38f70
JP		 708 cFYI(1, "Clearing Mid 0x%x - waking up ",
709 mid_entry->mid);
1da177e4 710 task_to_wake = mid_entry->tsk;
26f57364 711 if (task_to_wake)
1da177e4 712 wake_up_process(task_to_wake);
1da177e4
LT		 713 }
714 }
715 spin_unlock(&GlobalMid_Lock);
3f9bcca7 716 spin_unlock(&cifs_tcp_ses_lock);
1da177e4 717 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 718 msleep(125);
1da177e4
LT		 719 }
720
f191401f 721 if (!list_empty(&server->pending_mid_q)) {
50c2f753 722 /* mpx threads have not exited yet give them
1da177e4 723 at least the smb send timeout time for long ops */
31ca3bc3
SF		 724 /* due to delays on oplock break requests, we need
725 to wait at least 45 seconds before giving up
726 on a request getting a response and going ahead
727 and killing cifsd */
b6b38f70 728 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 729 msleep(46000);
1da177e4
LT		 730 /* if threads still have not exited they are probably never
731 coming home not much else we can do but free the memory */
732 }
1da177e4 733
31ca3bc3
SF		 734 /* last chance to mark ses pointers invalid
735 if there are any pointing to this (e.g
50c2f753 736 if a crazy root user tried to kill cifsd
31ca3bc3 737 kernel thread explicitly this might happen) */
14fbf50d 738 /* BB: This shouldn't be necessary, see above */
3f9bcca7 739 spin_lock(&cifs_tcp_ses_lock);
14fbf50d
JL		 740 list_for_each(tmp, &server->smb_ses_list) {
741 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
742 ses->server = NULL;
31ca3bc3 743 }
3f9bcca7 744 spin_unlock(&cifs_tcp_ses_lock);
31ca3bc3 745
c359cf3c 746 kfree(server->hostname);
b1c8d2b4 747 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 748 kfree(server);
93d0ec85
JL		 749
750 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 751 if (length > 0)
752 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
753 GFP_KERNEL);
50c2f753 754
b1c8d2b4
JL		 755 /* if server->tsk was NULL then wait for a signal before exiting */
756 if (!task_to_wake) {
757 set_current_state(TASK_INTERRUPTIBLE);
758 while (!signal_pending(current)) {
759 schedule();
760 set_current_state(TASK_INTERRUPTIBLE);
761 }
762 set_current_state(TASK_RUNNING);
763 }
764
0468a2cf 765 module_put_and_exit(0);
1da177e4
LT		 766}
767
c359cf3c
JL		 768/* extract the host portion of the UNC string */
769static char *
770extract_hostname(const char *unc)
771{
772 const char *src;
773 char *dst, *delim;
774 unsigned int len;
775
776 /* skip double chars at beginning of string */
777 /* BB: check validity of these bytes? */
778 src = unc + 2;
779
780 /* delimiter between hostname and sharename is always '\\' now */
781 delim = strchr(src, '\\');
782 if (!delim)
783 return ERR_PTR(-EINVAL);
784
785 len = delim - src;
786 dst = kmalloc((len + 1), GFP_KERNEL);
787 if (dst == NULL)
788 return ERR_PTR(-ENOMEM);
789
790 memcpy(dst, src, len);
791 dst[len] = '\0';
792
793 return dst;
794}
795
1da177e4 796static int
50c2f753
SF		 797cifs_parse_mount_options(char *options, const char *devname,
798 struct smb_vol *vol)
1da177e4
LT		 799{
800 char *value;
801 char *data;
802 unsigned int temp_len, i, j;
803 char separator[2];
9b9d6b24
JL		 804 short int override_uid = -1;
805 short int override_gid = -1;
806 bool uid_specified = false;
807 bool gid_specified = false;
1da177e4
LT		 808
809 separator[0] = ',';
50c2f753 810 separator[1] = 0;
1da177e4 811
12e36b2f 812 if (Local_System_Name[0] != 0)
50c2f753 813 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
2cd646a2 814 else {
12e36b2f 815 char *nodename = utsname()->nodename;
50c2f753
SF		 816 int n = strnlen(nodename, 15);
817 memset(vol->source_rfc1001_name, 0x20, 15);
818 for (i = 0; i < n; i++) {
2cd646a2
SF		 819 /* does not have to be perfect mapping since field is
820 informational, only used for servers that do not support
821 port 445 and it can be overridden at mount time */
12e36b2f 822 vol->source_rfc1001_name[i] = toupper(nodename[i]);
2cd646a2 823 }
1da177e4
LT		 824 }
825 vol->source_rfc1001_name[15] = 0;
a10faeb2
SF		 826 /* null target name indicates to use *SMBSERVR default called name
827 if we end up sending RFC1001 session initialize */
828 vol->target_rfc1001_name[0] = 0;
3e4b3e1f
JL		 829 vol->cred_uid = current_uid();
830 vol->linux_uid = current_uid();
a001e5b5 831 vol->linux_gid = current_gid();
f55ed1a8
JL		 832
833 /* default to only allowing write access to owner of the mount */
834 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 835
836 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 837 /* default is always to request posix paths. */
838 vol->posix_paths = 1;
a0c9217f
JL		 839 /* default to using server inode numbers where available */
840 vol->server_ino = 1;
ac67055e 841
1da177e4
LT		 842 if (!options)
843 return 1;
844
50c2f753 845 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 846 if (options[4] != 0) {
1da177e4
LT		 847 separator[0] = options[4];
848 options += 5;
849 } else {
b6b38f70 850 cFYI(1, "Null separator not allowed");
1da177e4
LT		 851 }
852 }
50c2f753 853
1da177e4
LT		 854 while ((data = strsep(&options, separator)) != NULL) {
855 if (!*data)
856 continue;
857 if ((value = strchr(data, '=')) != NULL)
858 *value++ = '\0';
859
50c2f753
SF		 860 /* Have to parse this before we parse for "user" */
861 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 862 vol->no_xattr = 0;
50c2f753 863 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 864 vol->no_xattr = 1;
865 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 866 if (!value) {
1da177e4
LT		 867 printk(KERN_WARNING
868 "CIFS: invalid or missing username\n");
869 return 1; /* needs_arg; */
fb8c4b14 870 } else if (!*value) {
4b952a9b
SF		 871 /* null user, ie anonymous, authentication */
872 vol->nullauth = 1;
1da177e4
LT		 873 }
874 if (strnlen(value, 200) < 200) {
875 vol->username = value;
876 } else {
877 printk(KERN_WARNING "CIFS: username too long\n");
878 return 1;
879 }
880 } else if (strnicmp(data, "pass", 4) == 0) {
881 if (!value) {
882 vol->password = NULL;
883 continue;
fb8c4b14 884 } else if (value[0] == 0) {
1da177e4
LT		 885 /* check if string begins with double comma
886 since that would mean the password really
887 does start with a comma, and would not
888 indicate an empty string */
fb8c4b14 889 if (value[1] != separator[0]) {
1da177e4
LT		 890 vol->password = NULL;
891 continue;
892 }
893 }
894 temp_len = strlen(value);
895 /* removed password length check, NTLM passwords
896 can be arbitrarily long */
897
50c2f753 898 /* if comma in password, the string will be
1da177e4
LT		 899 prematurely null terminated. Commas in password are
900 specified across the cifs mount interface by a double
901 comma ie ,, and a comma used as in other cases ie ','
902 as a parameter delimiter/separator is single and due
903 to the strsep above is temporarily zeroed. */
904
905 /* NB: password legally can have multiple commas and
906 the only illegal character in a password is null */
907
50c2f753 908 if ((value[temp_len] == 0) &&
09d1db5c 909 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 910 /* reinsert comma */
911 value[temp_len] = separator[0];
50c2f753
SF		 912 temp_len += 2; /* move after second comma */
913 while (value[temp_len] != 0) {
1da177e4 914 if (value[temp_len] == separator[0]) {
50c2f753 915 if (value[temp_len+1] ==
09d1db5c
SF		 916 separator[0]) {
917 /* skip second comma */
918 temp_len++;
50c2f753 919 } else {
1da177e4
LT		 920 /* single comma indicating start
921 of next parm */
922 break;
923 }
924 }
925 temp_len++;
926 }
fb8c4b14 927 if (value[temp_len] == 0) {
1da177e4
LT		 928 options = NULL;
929 } else {
930 value[temp_len] = 0;
931 /* point option to start of next parm */
932 options = value + temp_len + 1;
933 }
50c2f753 934 /* go from value to value + temp_len condensing
1da177e4
LT		 935 double commas to singles. Note that this ends up
936 allocating a few bytes too many, which is ok */
e915fc49 937 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 938 if (vol->password == NULL) {
50c2f753
SF		 939 printk(KERN_WARNING "CIFS: no memory "
940 "for password\n");
433dc24f
SF		 941 return 1;
942 }
50c2f753 943 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 944 vol->password[j] = value[i];
fb8c4b14 945 if (value[i] == separator[0]
09d1db5c 946 && value[i+1] == separator[0]) {
1da177e4
LT		 947 /* skip second comma */
948 i++;
949 }
950 }
951 vol->password[j] = 0;
952 } else {
e915fc49 953 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 954 if (vol->password == NULL) {
50c2f753
SF		 955 printk(KERN_WARNING "CIFS: no memory "
956 "for password\n");
433dc24f
SF		 957 return 1;
958 }
1da177e4
LT		 959 strcpy(vol->password, value);
960 }
58f7f68f
JL		 961 } else if (!strnicmp(data, "ip", 2) ||
962 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 963 if (!value || !*value) {
964 vol->UNCip = NULL;
50b64e3b
JL		 965 } else if (strnlen(value, INET6_ADDRSTRLEN) <
966 INET6_ADDRSTRLEN) {
1da177e4
LT		 967 vol->UNCip = value;
968 } else {
50c2f753
SF		 969 printk(KERN_WARNING "CIFS: ip address "
970 "too long\n");
1da177e4
LT		 971 return 1;
972 }
50c2f753
SF		 973 } else if (strnicmp(data, "sec", 3) == 0) {
974 if (!value || !*value) {
b6b38f70 975 cERROR(1, "no security value specified");
50c2f753
SF		 976 continue;
977 } else if (strnicmp(value, "krb5i", 5) == 0) {
978 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 979 CIFSSEC_MUST_SIGN;
bf820679 980 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 981 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
982 CIFSSEC_MAY_KRB5; */
b6b38f70 983 cERROR(1, "Krb5 cifs privacy not supported");
bf820679
SF		 984 return 1;
985 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 986 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 987#ifdef CONFIG_CIFS_EXPERIMENTAL
988 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
989 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
990 CIFSSEC_MUST_SIGN;
991 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
992 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
993#endif
bf820679 994 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 995 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 996 CIFSSEC_MUST_SIGN;
bf820679 997 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 998 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 999 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1000 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1001 CIFSSEC_MUST_SIGN;
bf820679
SF		 1002 } else if (strnicmp(value, "ntlm", 4) == 0) {
1003 /* ntlm is default so can be turned off too */
750d1151 1004 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1005 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1006 /* BB is there a better way to do this? */
750d1151 1007 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1008#ifdef CONFIG_CIFS_WEAK_PW_HASH
1009 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1010 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1011#endif
bf820679 1012 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1013 vol->nullauth = 1;
50c2f753 1014 } else {
b6b38f70 1015 cERROR(1, "bad security option: %s", value);
50c2f753
SF		 1016 return 1;
1017 }
1da177e4
LT		 1018 } else if ((strnicmp(data, "unc", 3) == 0)
1019 || (strnicmp(data, "target", 6) == 0)
1020 || (strnicmp(data, "path", 4) == 0)) {
1021 if (!value || !*value) {
50c2f753
SF		 1022 printk(KERN_WARNING "CIFS: invalid path to "
1023 "network resource\n");
1da177e4
LT		 1024 return 1; /* needs_arg; */
1025 }
1026 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1027 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1028 if (vol->UNC == NULL)
1da177e4 1029 return 1;
50c2f753 1030 strcpy(vol->UNC, value);
1da177e4
LT		 1031 if (strncmp(vol->UNC, "//", 2) == 0) {
1032 vol->UNC[0] = '\\';
1033 vol->UNC[1] = '\\';
50c2f753 1034 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1035 printk(KERN_WARNING
50c2f753
SF		 1036 "CIFS: UNC Path does not begin "
1037 "with // or \\\\ \n");
1da177e4
LT		 1038 return 1;
1039 }
1040 } else {
1041 printk(KERN_WARNING "CIFS: UNC name too long\n");
1042 return 1;
1043 }
1044 } else if ((strnicmp(data, "domain", 3) == 0)
1045 || (strnicmp(data, "workgroup", 5) == 0)) {
1046 if (!value || !*value) {
1047 printk(KERN_WARNING "CIFS: invalid domain name\n");
1048 return 1; /* needs_arg; */
1049 }
1050 /* BB are there cases in which a comma can be valid in
1051 a domain name and need special handling? */
3979877e 1052 if (strnlen(value, 256) < 256) {
1da177e4 1053 vol->domainname = value;
b6b38f70 1054 cFYI(1, "Domain name set");
1da177e4 1055 } else {
50c2f753
SF		 1056 printk(KERN_WARNING "CIFS: domain name too "
1057 "long\n");
1da177e4
LT		 1058 return 1;
1059 }
3eb9a889
BG		 1060 } else if (strnicmp(data, "srcaddr", 7) == 0) {
1061 vol->srcaddr.ss_family = AF_UNSPEC;
1062
1063 if (!value || !*value) {
1064 printk(KERN_WARNING "CIFS: srcaddr value"
1065 " not specified.\n");
1066 return 1; /* needs_arg; */
1067 }
1068 i = cifs_convert_address((struct sockaddr *)&vol->srcaddr,
1069 value, strlen(value));
1070 if (i < 0) {
1071 printk(KERN_WARNING "CIFS: Could not parse"
1072 " srcaddr: %s\n",
1073 value);
1074 return 1;
1075 }
50c2f753
SF		 1076 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1077 if (!value || !*value) {
1078 printk(KERN_WARNING
1079 "CIFS: invalid path prefix\n");
1080 return 1; /* needs_argument */
1081 }
1082 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1083 if (value[0] != '/')
2fe87f02 1084 temp_len++; /* missing leading slash */
50c2f753
SF		 1085 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1086 if (vol->prepath == NULL)
1087 return 1;
4523cc30 1088 if (value[0] != '/') {
2fe87f02 1089 vol->prepath[0] = '/';
50c2f753 1090 strcpy(vol->prepath+1, value);
2fe87f02 1091 } else
50c2f753 1092 strcpy(vol->prepath, value);
b6b38f70 1093 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1094 } else {
1095 printk(KERN_WARNING "CIFS: prefix too long\n");
1096 return 1;
1097 }
1da177e4
LT		 1098 } else if (strnicmp(data, "iocharset", 9) == 0) {
1099 if (!value || !*value) {
63135e08
SF		 1100 printk(KERN_WARNING "CIFS: invalid iocharset "
1101 "specified\n");
1da177e4
LT		 1102 return 1; /* needs_arg; */
1103 }
1104 if (strnlen(value, 65) < 65) {
50c2f753 1105 if (strnicmp(value, "default", 7))
1da177e4 1106 vol->iocharset = value;
50c2f753
SF		 1107 /* if iocharset not set then load_nls_default
1108 is used by caller */
b6b38f70 1109 cFYI(1, "iocharset set to %s", value);
1da177e4 1110 } else {
63135e08
SF		 1111 printk(KERN_WARNING "CIFS: iocharset name "
1112 "too long.\n");
1da177e4
LT		 1113 return 1;
1114 }
9b9d6b24
JL		 1115 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1116 vol->linux_uid = simple_strtoul(value, &value, 0);
1117 uid_specified = true;
1118 } else if (!strnicmp(data, "forceuid", 8)) {
1119 override_uid = 1;
1120 } else if (!strnicmp(data, "noforceuid", 10)) {
1121 override_uid = 0;
1122 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1123 vol->linux_gid = simple_strtoul(value, &value, 0);
1124 gid_specified = true;
1125 } else if (!strnicmp(data, "forcegid", 8)) {
1126 override_gid = 1;
1127 } else if (!strnicmp(data, "noforcegid", 10)) {
1128 override_gid = 0;
1da177e4
LT		 1129 } else if (strnicmp(data, "file_mode", 4) == 0) {
1130 if (value && *value) {
1131 vol->file_mode =
1132 simple_strtoul(value, &value, 0);
1133 }
1134 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1135 if (value && *value) {
1136 vol->dir_mode =
1137 simple_strtoul(value, &value, 0);
1138 }
1139 } else if (strnicmp(data, "dirmode", 4) == 0) {
1140 if (value && *value) {
1141 vol->dir_mode =
1142 simple_strtoul(value, &value, 0);
1143 }
1144 } else if (strnicmp(data, "port", 4) == 0) {
1145 if (value && *value) {
1146 vol->port =
1147 simple_strtoul(value, &value, 0);
1148 }
1149 } else if (strnicmp(data, "rsize", 5) == 0) {
1150 if (value && *value) {
1151 vol->rsize =
1152 simple_strtoul(value, &value, 0);
1153 }
1154 } else if (strnicmp(data, "wsize", 5) == 0) {
1155 if (value && *value) {
1156 vol->wsize =
1157 simple_strtoul(value, &value, 0);
1158 }
1159 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1160 if (!value || !*value) {
b6b38f70 1161 cERROR(1, "no socket option specified");
6a5fa236
SF		 1162 continue;
1163 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1164 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1165 }
1166 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1167 if (!value || !*value || (*value == ' ')) {
b6b38f70 1168 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1169 } else {
50c2f753
SF		 1170 memset(vol->source_rfc1001_name, 0x20, 15);
1171 for (i = 0; i < 15; i++) {
1172 /* BB are there cases in which a comma can be
1da177e4
LT		 1173 valid in this workstation netbios name (and need
1174 special handling)? */
1175
1176 /* We do not uppercase netbiosname for user */
50c2f753 1177 if (value[i] == 0)
1da177e4 1178 break;
50c2f753
SF		 1179 else
1180 vol->source_rfc1001_name[i] =
1181 value[i];
1da177e4
LT		 1182 }
1183 /* The string has 16th byte zero still from
1184 set at top of the function */
50c2f753
SF		 1185 if ((i == 15) && (value[i] != 0))
1186 printk(KERN_WARNING "CIFS: netbiosname"
1187 " longer than 15 truncated.\n");
a10faeb2
SF		 1188 }
1189 } else if (strnicmp(data, "servern", 7) == 0) {
1190 /* servernetbiosname specified override *SMBSERVER */
1191 if (!value || !*value || (*value == ' ')) {
b6b38f70 1192 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1193 } else {
1194 /* last byte, type, is 0x20 for servr type */
50c2f753 1195 memset(vol->target_rfc1001_name, 0x20, 16);
a10faeb2 1196
50c2f753 1197 for (i = 0; i < 15; i++) {
a10faeb2 1198 /* BB are there cases in which a comma can be
50c2f753
SF		 1199 valid in this workstation netbios name
1200 (and need special handling)? */
a10faeb2 1201
50c2f753
SF		 1202 /* user or mount helper must uppercase
1203 the netbiosname */
1204 if (value[i] == 0)
a10faeb2
SF		 1205 break;
1206 else
50c2f753
SF		 1207 vol->target_rfc1001_name[i] =
1208 value[i];
a10faeb2
SF		 1209 }
1210 /* The string has 16th byte zero still from
1211 set at top of the function */
50c2f753
SF		 1212 if ((i == 15) && (value[i] != 0))
1213 printk(KERN_WARNING "CIFS: server net"
1214 "biosname longer than 15 truncated.\n");
1da177e4
LT		 1215 }
1216 } else if (strnicmp(data, "credentials", 4) == 0) {
1217 /* ignore */
1218 } else if (strnicmp(data, "version", 3) == 0) {
1219 /* ignore */
50c2f753 1220 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1221 /* ignore */
71a394fa
SF		 1222 } else if (strnicmp(data, "rw", 2) == 0) {
1223 /* ignore */
1224 } else if (strnicmp(data, "ro", 2) == 0) {
1225 /* ignore */
edf1ae40
SF		 1226 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1227 vol->noblocksnd = 1;
1228 } else if (strnicmp(data, "noautotune", 10) == 0) {
1229 vol->noautotune = 1;
1da177e4
LT		 1230 } else if ((strnicmp(data, "suid", 4) == 0) ||
1231 (strnicmp(data, "nosuid", 6) == 0) ||
1232 (strnicmp(data, "exec", 4) == 0) ||
1233 (strnicmp(data, "noexec", 6) == 0) ||
1234 (strnicmp(data, "nodev", 5) == 0) ||
1235 (strnicmp(data, "noauto", 6) == 0) ||
1236 (strnicmp(data, "dev", 3) == 0)) {
1237 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1238 uses these opts to set flags, and the flags are read
1239 by the kernel vfs layer before we get here (ie
1240 before read super) so there is no point trying to
1241 parse these options again and set anything and it
1242 is ok to just ignore them */
1da177e4 1243 continue;
1da177e4
LT		 1244 } else if (strnicmp(data, "hard", 4) == 0) {
1245 vol->retry = 1;
1246 } else if (strnicmp(data, "soft", 4) == 0) {
1247 vol->retry = 0;
1248 } else if (strnicmp(data, "perm", 4) == 0) {
1249 vol->noperm = 0;
1250 } else if (strnicmp(data, "noperm", 6) == 0) {
1251 vol->noperm = 1;
6a0b4824
SF		 1252 } else if (strnicmp(data, "mapchars", 8) == 0) {
1253 vol->remap = 1;
1254 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1255 vol->remap = 0;
50c2f753
SF		 1256 } else if (strnicmp(data, "sfu", 3) == 0) {
1257 vol->sfu_emul = 1;
1258 } else if (strnicmp(data, "nosfu", 5) == 0) {
1259 vol->sfu_emul = 0;
2c1b8615
SF		 1260 } else if (strnicmp(data, "nodfs", 5) == 0) {
1261 vol->nodfs = 1;
ac67055e
JA		 1262 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1263 vol->posix_paths = 1;
1264 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1265 vol->posix_paths = 0;
c18c842b
SF		 1266 } else if (strnicmp(data, "nounix", 6) == 0) {
1267 vol->no_linux_ext = 1;
1268 } else if (strnicmp(data, "nolinux", 7) == 0) {
1269 vol->no_linux_ext = 1;
50c2f753 1270 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1271 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1272 vol->nocase = 1;
f636a348
JL		 1273 } else if (strnicmp(data, "mand", 4) == 0) {
1274 /* ignore */
1275 } else if (strnicmp(data, "nomand", 6) == 0) {
1276 /* ignore */
1277 } else if (strnicmp(data, "_netdev", 7) == 0) {
1278 /* ignore */
c46fa8ac
SF		 1279 } else if (strnicmp(data, "brl", 3) == 0) {
1280 vol->nobrl = 0;
50c2f753 1281 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1282 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1283 vol->nobrl = 1;
d3485d37
SF		 1284 /* turn off mandatory locking in mode
1285 if remote locking is turned off since the
1286 local vfs will do advisory */
50c2f753
SF		 1287 if (vol->file_mode ==
1288 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1289 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1290 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1291 /* will take the shorter form "forcemand" as well */
1292 /* This mount option will force use of mandatory
1293 (DOS/Windows style) byte range locks, instead of
1294 using posix advisory byte range locks, even if the
1295 Unix extensions are available and posix locks would
1296 be supported otherwise. If Unix extensions are not
1297 negotiated this has no effect since mandatory locks
1298 would be used (mandatory locks is all that those
1299 those servers support) */
1300 vol->mand_lock = 1;
1da177e4
LT		 1301 } else if (strnicmp(data, "setuids", 7) == 0) {
1302 vol->setuids = 1;
1303 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1304 vol->setuids = 0;
d0a9c078
JL		 1305 } else if (strnicmp(data, "dynperm", 7) == 0) {
1306 vol->dynperm = true;
1307 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1308 vol->dynperm = false;
1da177e4
LT		 1309 } else if (strnicmp(data, "nohard", 6) == 0) {
1310 vol->retry = 0;
1311 } else if (strnicmp(data, "nosoft", 6) == 0) {
1312 vol->retry = 1;
1313 } else if (strnicmp(data, "nointr", 6) == 0) {
1314 vol->intr = 0;
1315 } else if (strnicmp(data, "intr", 4) == 0) {
1316 vol->intr = 1;
be652445
SF		 1317 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1318 vol->nostrictsync = 1;
1319 } else if (strnicmp(data, "strictsync", 10) == 0) {
1320 vol->nostrictsync = 0;
50c2f753 1321 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1322 vol->server_ino = 1;
50c2f753 1323 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1324 vol->server_ino = 0;
50c2f753 1325 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1326 vol->cifs_acl = 1;
1327 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1328 vol->cifs_acl = 0;
50c2f753 1329 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1330 vol->no_psx_acl = 0;
50c2f753 1331 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1332 vol->no_psx_acl = 1;
84210e91
SF		 1333#ifdef CONFIG_CIFS_EXPERIMENTAL
1334 } else if (strnicmp(data, "locallease", 6) == 0) {
1335 vol->local_lease = 1;
1336#endif
50c2f753 1337 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1338 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1339 } else if (strnicmp(data, "seal", 4) == 0) {
1340 /* we do not do the following in secFlags because seal
1341 is a per tree connection (mount) not a per socket
1342 or per-smb connection option in the protocol */
1343 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1344 vol->seal = 1;
50c2f753 1345 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1346 vol->direct_io = 1;
50c2f753 1347 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1348 vol->direct_io = 1;
1da177e4 1349 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1350 printk(KERN_WARNING "CIFS: Mount option noac not "
1351 "supported. Instead set "
1352 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
fa1df75d
SJ		 1353 } else if (strnicmp(data, "fsc", 3) == 0) {
1354 vol->fsc = true;
736a3320
SM		 1355 } else if (strnicmp(data, "mfsymlinks", 10) == 0) {
1356 vol->mfsymlinks = true;
0eb8a132
JL		 1357 } else if (strnicmp(data, "multiuser", 8) == 0) {
1358 vol->multiuser = true;
1da177e4 1359 } else
50c2f753
SF		 1360 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1361 data);
1da177e4
LT		 1362 }
1363 if (vol->UNC == NULL) {
4523cc30 1364 if (devname == NULL) {
50c2f753
SF		 1365 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1366 "target\n");
1da177e4
LT		 1367 return 1;
1368 }
1369 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1370 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1371 if (vol->UNC == NULL)
1da177e4 1372 return 1;
50c2f753 1373 strcpy(vol->UNC, devname);
1da177e4
LT		 1374 if (strncmp(vol->UNC, "//", 2) == 0) {
1375 vol->UNC[0] = '\\';
1376 vol->UNC[1] = '\\';
1377 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1378 printk(KERN_WARNING "CIFS: UNC Path does not "
1379 "begin with // or \\\\ \n");
1da177e4
LT		 1380 return 1;
1381 }
7c5e628f
IM		 1382 value = strpbrk(vol->UNC+2, "/\\");
1383 if (value)
1384 *value = '\\';
1da177e4
LT		 1385 } else {
1386 printk(KERN_WARNING "CIFS: UNC name too long\n");
1387 return 1;
1388 }
1389 }
0eb8a132
JL		 1390
1391 if (vol->multiuser && !(vol->secFlg & CIFSSEC_MAY_KRB5)) {
1392 cERROR(1, "Multiuser mounts currently require krb5 "
1393 "authentication!");
1394 return 1;
1395 }
1396
fb8c4b14 1397 if (vol->UNCip == NULL)
1da177e4
LT		 1398 vol->UNCip = &vol->UNC[2];
1399
9b9d6b24
JL		 1400 if (uid_specified)
1401 vol->override_uid = override_uid;
1402 else if (override_uid == 1)
1403 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1404 "specified with no uid= option.\n");
1405
1406 if (gid_specified)
1407 vol->override_gid = override_gid;
1408 else if (override_gid == 1)
1409 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1410 "specified with no gid= option.\n");
1411
1da177e4
LT		 1412 return 0;
1413}
1414
3eb9a889
BG		 1415/** Returns true if srcaddr isn't specified and rhs isn't
1416 * specified, or if srcaddr is specified and
1417 * matches the IP address of the rhs argument.
1418 */
1419static bool
1420srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1421{
1422 switch (srcaddr->sa_family) {
1423 case AF_UNSPEC:
1424 return (rhs->sa_family == AF_UNSPEC);
1425 case AF_INET: {
1426 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1427 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1428 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1429 }
1430 case AF_INET6: {
1431 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1432 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1433 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1434 }
1435 default:
1436 WARN_ON(1);
1437 return false; /* don't expect to be here */
1438 }
1439}
1440
1441
4515148e 1442static bool
3eb9a889
BG		 1443match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1444 struct sockaddr *srcaddr)
4515148e
JL		 1445{
1446 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1447 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1448
1449 switch (addr->sa_family) {
1450 case AF_INET:
1451 if (addr4->sin_addr.s_addr !=
1452 server->addr.sockAddr.sin_addr.s_addr)
1453 return false;
1454 if (addr4->sin_port &&
1455 addr4->sin_port != server->addr.sockAddr.sin_port)
1456 return false;
1457 break;
1458 case AF_INET6:
1459 if (!ipv6_addr_equal(&addr6->sin6_addr,
1460 &server->addr.sockAddr6.sin6_addr))
1461 return false;
1462 if (addr6->sin6_scope_id !=
1463 server->addr.sockAddr6.sin6_scope_id)
1464 return false;
1465 if (addr6->sin6_port &&
1466 addr6->sin6_port != server->addr.sockAddr6.sin6_port)
1467 return false;
1468 break;
1469 }
1470
3eb9a889
BG		 1471 if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
1472 return false;
1473
4515148e
JL		 1474 return true;
1475}
1476
daf5b0b6
JL		 1477static bool
1478match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1479{
1480 unsigned int secFlags;
1481
1482 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1483 secFlags = vol->secFlg;
1484 else
1485 secFlags = global_secflags | vol->secFlg;
1486
1487 switch (server->secType) {
1488 case LANMAN:
1489 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1490 return false;
1491 break;
1492 case NTLMv2:
1493 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1494 return false;
1495 break;
1496 case NTLM:
1497 if (!(secFlags & CIFSSEC_MAY_NTLM))
1498 return false;
1499 break;
1500 case Kerberos:
1501 if (!(secFlags & CIFSSEC_MAY_KRB5))
1502 return false;
1503 break;
1504 case RawNTLMSSP:
1505 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1506 return false;
1507 break;
1508 default:
1509 /* shouldn't happen */
1510 return false;
1511 }
1512
1513 /* now check if signing mode is acceptible */
1514 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1515 (server->secMode & SECMODE_SIGN_REQUIRED))
1516 return false;
1517 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1518 (server->secMode &
1519 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1520 return false;
1521
1522 return true;
1523}
1524
e7ddee90 1525static struct TCP_Server_Info *
daf5b0b6 1526cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1527{
e7ddee90 1528 struct TCP_Server_Info *server;
e7ddee90 1529
3f9bcca7 1530 spin_lock(&cifs_tcp_ses_lock);
4515148e 1531 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
3eb9a889
BG		 1532 if (!match_address(server, addr,
1533 (struct sockaddr *)&vol->srcaddr))
4515148e 1534 continue;
1b20d672 1535
daf5b0b6
JL		 1536 if (!match_security(server, vol))
1537 continue;
1538
e7ddee90 1539 ++server->srv_count;
3f9bcca7 1540 spin_unlock(&cifs_tcp_ses_lock);
b6b38f70 1541 cFYI(1, "Existing tcp session with server found");
e7ddee90 1542 return server;
1da177e4 1543 }
3f9bcca7 1544 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1545 return NULL;
1546}
1b20d672 1547
14fbf50d 1548static void
e7ddee90 1549cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1550{
e7ddee90 1551 struct task_struct *task;
1b20d672 1552
3f9bcca7 1553 spin_lock(&cifs_tcp_ses_lock);
e7ddee90 1554 if (--server->srv_count > 0) {
3f9bcca7 1555 spin_unlock(&cifs_tcp_ses_lock);
e7ddee90 1556 return;
1da177e4 1557 }
1b20d672 1558
e7ddee90 1559 list_del_init(&server->tcp_ses_list);
3f9bcca7 1560 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1561
e7ddee90
JL		 1562 spin_lock(&GlobalMid_Lock);
1563 server->tcpStatus = CifsExiting;
1564 spin_unlock(&GlobalMid_Lock);
dea570e0 1565
488f1d2d
SJ		 1566 cifs_fscache_release_client_cookie(server);
1567
21e73393
SP		 1568 kfree(server->session_key.response);
1569 server->session_key.response = NULL;
1570 server->session_key.len = 0;
1571
e7ddee90
JL		 1572 task = xchg(&server->tsk, NULL);
1573 if (task)
1574 force_sig(SIGKILL, task);
1da177e4
LT		 1575}
1576
63c038c2
JL		 1577static struct TCP_Server_Info *
1578cifs_get_tcp_session(struct smb_vol *volume_info)
1579{
1580 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1581 struct sockaddr_storage addr;
63c038c2
JL		 1582 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1583 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1584 int rc;
1585
a9ac49d3 1586 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1587
b6b38f70 1588 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1589
1e68b2b2 1590 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1591 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1592 volume_info->UNCip,
67b7626a 1593 strlen(volume_info->UNCip),
50d97160 1594 volume_info->port);
1e68b2b2 1595 if (!rc) {
63c038c2
JL		 1596 /* we failed translating address */
1597 rc = -EINVAL;
1598 goto out_err;
1599 }
63c038c2
JL		 1600 } else if (volume_info->UNCip) {
1601 /* BB using ip addr as tcp_ses name to connect to the
1602 DFS root below */
b6b38f70 1603 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1604 rc = -EINVAL;
1605 goto out_err;
1606 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1607 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1608 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1609 rc = -EINVAL;
1610 goto out_err;
1611 }
1612
1613 /* see if we already have a matching tcp_ses */
daf5b0b6 1614 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1615 if (tcp_ses)
1616 return tcp_ses;
1617
1618 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1619 if (!tcp_ses) {
1620 rc = -ENOMEM;
1621 goto out_err;
1622 }
1623
1624 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1625 if (IS_ERR(tcp_ses->hostname)) {
1626 rc = PTR_ERR(tcp_ses->hostname);
1627 goto out_err;
1628 }
1629
1630 tcp_ses->noblocksnd = volume_info->noblocksnd;
1631 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1632 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1633 atomic_set(&tcp_ses->inFlight, 0);
1634 init_waitqueue_head(&tcp_ses->response_q);
1635 init_waitqueue_head(&tcp_ses->request_q);
1636 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1637 mutex_init(&tcp_ses->srv_mutex);
1638 memcpy(tcp_ses->workstation_RFC1001_name,
1639 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1640 memcpy(tcp_ses->server_RFC1001_name,
1641 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
5d0d2882 1642 tcp_ses->session_estab = false;
63c038c2
JL		 1643 tcp_ses->sequence_number = 0;
1644 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1645 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1646
1647 /*
1648 * at this point we are the only ones with the pointer
1649 * to the struct since the kernel thread not created yet
1650 * no need to spinlock this init of tcpStatus or srv_count
1651 */
1652 tcp_ses->tcpStatus = CifsNew;
3eb9a889
BG		 1653 memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
1654 sizeof(tcp_ses->srcaddr));
63c038c2
JL		 1655 ++tcp_ses->srv_count;
1656
a9ac49d3 1657 if (addr.ss_family == AF_INET6) {
b6b38f70 1658 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1659 /* BB should we allow ipv6 on port 139? */
1660 /* other OS never observed in Wild doing 139 with v6 */
1661 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1662 sizeof(struct sockaddr_in6));
d5c5605c 1663 rc = ipv6_connect(tcp_ses);
63c038c2
JL		 1664 } else {
1665 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1666 sizeof(struct sockaddr_in));
bcf4b106 1667 rc = ipv4_connect(tcp_ses);
63c038c2
JL		 1668 }
1669 if (rc < 0) {
b6b38f70 1670 cERROR(1, "Error connecting to socket. Aborting operation");
63c038c2
JL		 1671 goto out_err;
1672 }
1673
1674 /*
1675 * since we're in a cifs function already, we know that
1676 * this will succeed. No need for try_module_get().
1677 */
1678 __module_get(THIS_MODULE);
1679 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1680 tcp_ses, "cifsd");
1681 if (IS_ERR(tcp_ses->tsk)) {
1682 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1683 cERROR(1, "error %d create cifsd thread", rc);
63c038c2
JL		 1684 module_put(THIS_MODULE);
1685 goto out_err;
1686 }
1687
1688 /* thread spawned, put it on the list */
3f9bcca7 1689 spin_lock(&cifs_tcp_ses_lock);
63c038c2 1690 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
3f9bcca7 1691 spin_unlock(&cifs_tcp_ses_lock);
63c038c2 1692
488f1d2d
SJ		 1693 cifs_fscache_get_client_cookie(tcp_ses);
1694
63c038c2
JL		 1695 return tcp_ses;
1696
1697out_err:
1698 if (tcp_ses) {
8347a5cd
SF		 1699 if (!IS_ERR(tcp_ses->hostname))
1700 kfree(tcp_ses->hostname);
63c038c2
JL		 1701 if (tcp_ses->ssocket)
1702 sock_release(tcp_ses->ssocket);
1703 kfree(tcp_ses);
1704 }
1705 return ERR_PTR(rc);
1706}
1707
14fbf50d 1708static struct cifsSesInfo *
4ff67b72 1709cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 1710{
14fbf50d 1711 struct cifsSesInfo *ses;
dea570e0 1712
3f9bcca7 1713 spin_lock(&cifs_tcp_ses_lock);
4ff67b72
JL		 1714 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1715 switch (server->secType) {
1716 case Kerberos:
3e4b3e1f 1717 if (vol->cred_uid != ses->cred_uid)
4ff67b72
JL		 1718 continue;
1719 break;
1720 default:
1721 /* anything else takes username/password */
1722 if (strncmp(ses->userName, vol->username,
1723 MAX_USERNAME_SIZE))
1724 continue;
1725 if (strlen(vol->username) != 0 &&
24e6cf92 1726 ses->password != NULL &&
fc87a406
JL		 1727 strncmp(ses->password,
1728 vol->password ? vol->password : "",
4ff67b72
JL		 1729 MAX_PASSWORD_SIZE))
1730 continue;
1731 }
14fbf50d 1732 ++ses->ses_count;
3f9bcca7 1733 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1734 return ses;
1735 }
3f9bcca7 1736 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1737 return NULL;
1738}
dea570e0 1739
14fbf50d
JL		 1740static void
1741cifs_put_smb_ses(struct cifsSesInfo *ses)
1742{
1743 int xid;
1744 struct TCP_Server_Info *server = ses->server;
dea570e0 1745
36988c76 1746 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
3f9bcca7 1747 spin_lock(&cifs_tcp_ses_lock);
14fbf50d 1748 if (--ses->ses_count > 0) {
3f9bcca7 1749 spin_unlock(&cifs_tcp_ses_lock);
14fbf50d
JL		 1750 return;
1751 }
dea570e0 1752
14fbf50d 1753 list_del_init(&ses->smb_ses_list);
3f9bcca7 1754 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1755
14fbf50d
JL		 1756 if (ses->status == CifsGood) {
1757 xid = GetXid();
1758 CIFSSMBLogoff(xid, ses);
1759 _FreeXid(xid);
1760 }
1761 sesInfoFree(ses);
1762 cifs_put_tcp_session(server);
1763}
dea570e0 1764
36988c76
JL		 1765static struct cifsSesInfo *
1766cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1767{
1768 int rc = -ENOMEM, xid;
1769 struct cifsSesInfo *ses;
1770
1771 xid = GetXid();
1772
4ff67b72 1773 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 1774 if (ses) {
1775 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1776
36988c76 1777 mutex_lock(&ses->session_mutex);
198b5682
JL		 1778 rc = cifs_negotiate_protocol(xid, ses);
1779 if (rc) {
1780 mutex_unlock(&ses->session_mutex);
1781 /* problem -- put our ses reference */
1782 cifs_put_smb_ses(ses);
1783 FreeXid(xid);
1784 return ERR_PTR(rc);
1785 }
36988c76
JL		 1786 if (ses->need_reconnect) {
1787 cFYI(1, "Session needs reconnect");
1788 rc = cifs_setup_session(xid, ses,
1789 volume_info->local_nls);
1790 if (rc) {
1791 mutex_unlock(&ses->session_mutex);
1792 /* problem -- put our reference */
1793 cifs_put_smb_ses(ses);
1794 FreeXid(xid);
1795 return ERR_PTR(rc);
1796 }
1797 }
1798 mutex_unlock(&ses->session_mutex);
460cf341
JL		 1799
1800 /* existing SMB ses has a server reference already */
1801 cifs_put_tcp_session(server);
36988c76
JL		 1802 FreeXid(xid);
1803 return ses;
1804 }
1805
1806 cFYI(1, "Existing smb sess not found");
1807 ses = sesInfoAlloc();
1808 if (ses == NULL)
1809 goto get_ses_fail;
1810
2b149f11
SP		 1811 ses->tilen = 0;
1812 ses->tiblob = NULL;
36988c76
JL		 1813 /* new SMB session uses our server ref */
1814 ses->server = server;
1815 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1816 sprintf(ses->serverName, "%pI6",
1817 &server->addr.sockAddr6.sin6_addr);
1818 else
1819 sprintf(ses->serverName, "%pI4",
1820 &server->addr.sockAddr.sin_addr.s_addr);
1821
1822 if (volume_info->username)
1823 strncpy(ses->userName, volume_info->username,
1824 MAX_USERNAME_SIZE);
1825
1826 /* volume_info->password freed at unmount */
1827 if (volume_info->password) {
1828 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1829 if (!ses->password)
1830 goto get_ses_fail;
1831 }
1832 if (volume_info->domainname) {
1833 int len = strlen(volume_info->domainname);
1834 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1835 if (ses->domainName)
1836 strcpy(ses->domainName, volume_info->domainname);
1837 }
3e4b3e1f 1838 ses->cred_uid = volume_info->cred_uid;
36988c76
JL		 1839 ses->linux_uid = volume_info->linux_uid;
1840 ses->overrideSecFlg = volume_info->secFlg;
1841
1842 mutex_lock(&ses->session_mutex);
198b5682
JL		 1843 rc = cifs_negotiate_protocol(xid, ses);
1844 if (!rc)
1845 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76 1846 mutex_unlock(&ses->session_mutex);
c8e56f1f 1847 if (rc)
36988c76
JL		 1848 goto get_ses_fail;
1849
1850 /* success, put it on the list */
3f9bcca7 1851 spin_lock(&cifs_tcp_ses_lock);
36988c76 1852 list_add(&ses->smb_ses_list, &server->smb_ses_list);
3f9bcca7 1853 spin_unlock(&cifs_tcp_ses_lock);
36988c76
JL		 1854
1855 FreeXid(xid);
1856 return ses;
1857
1858get_ses_fail:
1859 sesInfoFree(ses);
1860 FreeXid(xid);
1861 return ERR_PTR(rc);
1862}
1863
f1987b44
JL		 1864static struct cifsTconInfo *
1865cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1866{
1867 struct list_head *tmp;
1868 struct cifsTconInfo *tcon;
1869
3f9bcca7 1870 spin_lock(&cifs_tcp_ses_lock);
f1987b44
JL		 1871 list_for_each(tmp, &ses->tcon_list) {
1872 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1873 if (tcon->tidStatus == CifsExiting)
1874 continue;
1875 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
dea570e0
SF		 1876 continue;
1877
f1987b44 1878 ++tcon->tc_count;
3f9bcca7 1879 spin_unlock(&cifs_tcp_ses_lock);
dea570e0 1880 return tcon;
1da177e4 1881 }
3f9bcca7 1882 spin_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1883 return NULL;
1884}
1885
f1987b44
JL		 1886static void
1887cifs_put_tcon(struct cifsTconInfo *tcon)
1888{
1889 int xid;
1890 struct cifsSesInfo *ses = tcon->ses;
1891
d00c28de 1892 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
3f9bcca7 1893 spin_lock(&cifs_tcp_ses_lock);
f1987b44 1894 if (--tcon->tc_count > 0) {
3f9bcca7 1895 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 1896 return;
1897 }
1898
1899 list_del_init(&tcon->tcon_list);
3f9bcca7 1900 spin_unlock(&cifs_tcp_ses_lock);
f1987b44
JL		 1901
1902 xid = GetXid();
1903 CIFSSMBTDis(xid, tcon);
1904 _FreeXid(xid);
1905
d03382ce 1906 cifs_fscache_release_super_cookie(tcon);
9f841593 1907 tconInfoFree(tcon);
f1987b44
JL		 1908 cifs_put_smb_ses(ses);
1909}
1910
d00c28de
JL		 1911static struct cifsTconInfo *
1912cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1913{
1914 int rc, xid;
1915 struct cifsTconInfo *tcon;
1916
1917 tcon = cifs_find_tcon(ses, volume_info->UNC);
1918 if (tcon) {
1919 cFYI(1, "Found match on UNC path");
1920 /* existing tcon already has a reference */
1921 cifs_put_smb_ses(ses);
1922 if (tcon->seal != volume_info->seal)
1923 cERROR(1, "transport encryption setting "
1924 "conflicts with existing tid");
1925 return tcon;
1926 }
1927
1928 tcon = tconInfoAlloc();
1929 if (tcon == NULL) {
1930 rc = -ENOMEM;
1931 goto out_fail;
1932 }
1933
1934 tcon->ses = ses;
1935 if (volume_info->password) {
1936 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1937 if (!tcon->password) {
1938 rc = -ENOMEM;
1939 goto out_fail;
1940 }
1941 }
1942
1943 if (strchr(volume_info->UNC + 3, '\\') == NULL
1944 && strchr(volume_info->UNC + 3, '/') == NULL) {
1945 cERROR(1, "Missing share name");
1946 rc = -ENODEV;
1947 goto out_fail;
1948 }
1949
1950 /* BB Do we need to wrap session_mutex around
1951 * this TCon call and Unix SetFS as
1952 * we do on SessSetup and reconnect? */
1953 xid = GetXid();
1954 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1955 FreeXid(xid);
1956 cFYI(1, "CIFS Tcon rc = %d", rc);
1957 if (rc)
1958 goto out_fail;
1959
1960 if (volume_info->nodfs) {
1961 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1962 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1963 }
1964 tcon->seal = volume_info->seal;
1965 /* we can have only one retry value for a connection
1966 to a share so for resources mounted more than once
1967 to the same server share the last value passed in
1968 for the retry flag is used */
1969 tcon->retry = volume_info->retry;
1970 tcon->nocase = volume_info->nocase;
1971 tcon->local_lease = volume_info->local_lease;
1972
3f9bcca7 1973 spin_lock(&cifs_tcp_ses_lock);
d00c28de 1974 list_add(&tcon->tcon_list, &ses->tcon_list);
3f9bcca7 1975 spin_unlock(&cifs_tcp_ses_lock);
d00c28de 1976
d03382ce
SJ		 1977 cifs_fscache_get_super_cookie(tcon);
1978
d00c28de
JL		 1979 return tcon;
1980
1981out_fail:
1982 tconInfoFree(tcon);
1983 return ERR_PTR(rc);
1984}
1985
9d002df4
JL		 1986void
1987cifs_put_tlink(struct tcon_link *tlink)
1988{
1989 if (!tlink || IS_ERR(tlink))
1990 return;
1991
1992 if (!atomic_dec_and_test(&tlink->tl_count) ||
1993 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
1994 tlink->tl_time = jiffies;
1995 return;
1996 }
1997
1998 if (!IS_ERR(tlink_tcon(tlink)))
1999 cifs_put_tcon(tlink_tcon(tlink));
2000 kfree(tlink);
2001 return;
2002}
d00c28de 2003
1da177e4 2004int
50c2f753
SF		 2005get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
2006 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 2007 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 2008{
2009 char *temp_unc;
2010 int rc = 0;
2011
2012 *pnum_referrals = 0;
366781c1 2013 *preferrals = NULL;
1da177e4
LT		 2014
2015 if (pSesInfo->ipc_tid == 0) {
2016 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 2017 strnlen(pSesInfo->serverName,
2018 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 2019 + 1 + 4 /* slash IPC$ */ + 2,
2020 GFP_KERNEL);
2021 if (temp_unc == NULL)
2022 return -ENOMEM;
2023 temp_unc[0] = '\\';
2024 temp_unc[1] = '\\';
2025 strcpy(temp_unc + 2, pSesInfo->serverName);
2026 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2027 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 2028 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 2029 kfree(temp_unc);
2030 }
2031 if (rc == 0)
c2cf07d5 2032 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 2033 pnum_referrals, nls_codepage, remap);
366781c1
SF		 2034 /* BB map targetUNCs to dfs_info3 structures, here or
2035 in CIFSGetDFSRefer BB */
1da177e4
LT		 2036
2037 return rc;
2038}
2039
09e50d55
JL		 2040#ifdef CONFIG_DEBUG_LOCK_ALLOC
2041static struct lock_class_key cifs_key[2];
2042static struct lock_class_key cifs_slock_key[2];
2043
2044static inline void
2045cifs_reclassify_socket4(struct socket *sock)
2046{
2047 struct sock *sk = sock->sk;
2048 BUG_ON(sock_owned_by_user(sk));
2049 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2050 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2051}
2052
2053static inline void
2054cifs_reclassify_socket6(struct socket *sock)
2055{
2056 struct sock *sk = sock->sk;
2057 BUG_ON(sock_owned_by_user(sk));
2058 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2059 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2060}
2061#else
2062static inline void
2063cifs_reclassify_socket4(struct socket *sock)
2064{
2065}
2066
2067static inline void
2068cifs_reclassify_socket6(struct socket *sock)
2069{
2070}
2071#endif
2072
1da177e4 2073/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 2074static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 2075{
50c2f753 2076 unsigned int i, j;
1da177e4 2077
50c2f753 2078 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 2079 /* mask a nibble at a time and encode */
2080 target[j] = 'A' + (0x0F & (source[i] >> 4));
2081 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 2082 j += 2;
1da177e4
LT		 2083 }
2084
2085}
2086
3eb9a889
BG		 2087static int
2088bind_socket(struct TCP_Server_Info *server)
2089{
2090 int rc = 0;
2091 if (server->srcaddr.ss_family != AF_UNSPEC) {
2092 /* Bind to the specified local IP address */
2093 struct socket *socket = server->ssocket;
2094 rc = socket->ops->bind(socket,
2095 (struct sockaddr *) &server->srcaddr,
2096 sizeof(server->srcaddr));
2097 if (rc < 0) {
2098 struct sockaddr_in *saddr4;
2099 struct sockaddr_in6 *saddr6;
2100 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2101 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2102 if (saddr6->sin6_family == AF_INET6)
2103 cERROR(1, "cifs: "
2104 "Failed to bind to: %pI6c, error: %d\n",
2105 &saddr6->sin6_addr, rc);
2106 else
2107 cERROR(1, "cifs: "
2108 "Failed to bind to: %pI4, error: %d\n",
2109 &saddr4->sin_addr.s_addr, rc);
2110 }
2111 }
2112 return rc;
2113}
1da177e4
LT		 2114
2115static int
bcf4b106 2116ipv4_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2117{
2118 int rc = 0;
6a5fa236 2119 int val;
bcf4b106 2120 bool connected = false;
1da177e4 2121 __be16 orig_port = 0;
bcf4b106 2122 struct socket *socket = server->ssocket;
1da177e4 2123
bcf4b106 2124 if (socket == NULL) {
50c2f753 2125 rc = sock_create_kern(PF_INET, SOCK_STREAM,
bcf4b106 2126 IPPROTO_TCP, &socket);
1da177e4 2127 if (rc < 0) {
b6b38f70 2128 cERROR(1, "Error %d creating socket", rc);
1da177e4 2129 return rc;
1da177e4 2130 }
bcf4b106
JL		 2131
2132 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2133 cFYI(1, "Socket created");
bcf4b106
JL		 2134 server->ssocket = socket;
2135 socket->sk->sk_allocation = GFP_NOFS;
2136 cifs_reclassify_socket4(socket);
1da177e4
LT		 2137 }
2138
3eb9a889
BG		 2139 rc = bind_socket(server);
2140 if (rc < 0)
2141 return rc;
2142
bcf4b106
JL		 2143 /* user overrode default port */
2144 if (server->addr.sockAddr.sin_port) {
2145 rc = socket->ops->connect(socket, (struct sockaddr *)
2146 &server->addr.sockAddr,
2147 sizeof(struct sockaddr_in), 0);
1da177e4 2148 if (rc >= 0)
bcf4b106 2149 connected = true;
50c2f753 2150 }
1da177e4 2151
fb8c4b14 2152 if (!connected) {
50c2f753 2153 /* save original port so we can retry user specified port
1da177e4 2154 later if fall back ports fail this time */
bcf4b106 2155 orig_port = server->addr.sockAddr.sin_port;
1da177e4
LT		 2156
2157 /* do not retry on the same port we just failed on */
bcf4b106
JL		 2158 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
2159 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
2160 rc = socket->ops->connect(socket,
2161 (struct sockaddr *)
2162 &server->addr.sockAddr,
2163 sizeof(struct sockaddr_in), 0);
1da177e4 2164 if (rc >= 0)
bcf4b106 2165 connected = true;
1da177e4
LT		 2166 }
2167 }
2168 if (!connected) {
bcf4b106
JL		 2169 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
2170 rc = socket->ops->connect(socket, (struct sockaddr *)
2171 &server->addr.sockAddr,
6345a3a8 2172 sizeof(struct sockaddr_in), 0);
50c2f753 2173 if (rc >= 0)
bcf4b106 2174 connected = true;
1da177e4
LT		 2175 }
2176
2177 /* give up here - unless we want to retry on different
2178 protocol families some day */
2179 if (!connected) {
fb8c4b14 2180 if (orig_port)
bcf4b106 2181 server->addr.sockAddr.sin_port = orig_port;
b6b38f70 2182 cFYI(1, "Error %d connecting to server via ipv4", rc);
bcf4b106
JL		 2183 sock_release(socket);
2184 server->ssocket = NULL;
1da177e4
LT		 2185 return rc;
2186 }
bcf4b106
JL		 2187
2188
2189 /*
2190 * Eventually check for other socket options to change from
2191 * the default. sock_setsockopt not used because it expects
2192 * user space buffer
2193 */
2194 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2195 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2196
b387eaeb 2197 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2198 if (server->noautotune) {
2199 if (socket->sk->sk_sndbuf < (200 * 1024))
2200 socket->sk->sk_sndbuf = 200 * 1024;
2201 if (socket->sk->sk_rcvbuf < (140 * 1024))
2202 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2203 }
1da177e4 2204
6a5fa236
SF		 2205 if (server->tcp_nodelay) {
2206 val = 1;
2207 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2208 (char *)&val, sizeof(val));
2209 if (rc)
b6b38f70 2210 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2211 }
2212
b6b38f70 2213 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2214 socket->sk->sk_sndbuf,
b6b38f70 2215 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2216
1da177e4 2217 /* send RFC1001 sessinit */
bcf4b106 2218 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1da177e4 2219 /* some servers require RFC1001 sessinit before sending
50c2f753 2220 negprot - BB check reconnection in case where second
1da177e4 2221 sessinit is sent but no second negprot */
50c2f753
SF		 2222 struct rfc1002_session_packet *ses_init_buf;
2223 struct smb_hdr *smb_buf;
2224 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2225 GFP_KERNEL);
fb8c4b14 2226 if (ses_init_buf) {
1da177e4 2227 ses_init_buf->trailer.session_req.called_len = 32;
bcf4b106
JL		 2228 if (server->server_RFC1001_name &&
2229 server->server_RFC1001_name[0] != 0)
8ecaf67a
JL		 2230 rfc1002mangle(ses_init_buf->trailer.
2231 session_req.called_name,
bcf4b106 2232 server->server_RFC1001_name,
8ecaf67a 2233 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2234 else
8ecaf67a
JL		 2235 rfc1002mangle(ses_init_buf->trailer.
2236 session_req.called_name,
2237 DEFAULT_CIFS_CALLED_NAME,
2238 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 2239
1da177e4 2240 ses_init_buf->trailer.session_req.calling_len = 32;
bcf4b106 2241
1da177e4
LT		 2242 /* calling name ends in null (byte 16) from old smb
2243 convention. */
bcf4b106
JL		 2244 if (server->workstation_RFC1001_name &&
2245 server->workstation_RFC1001_name[0] != 0)
8ecaf67a
JL		 2246 rfc1002mangle(ses_init_buf->trailer.
2247 session_req.calling_name,
bcf4b106 2248 server->workstation_RFC1001_name,
8ecaf67a 2249 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2250 else
8ecaf67a
JL		 2251 rfc1002mangle(ses_init_buf->trailer.
2252 session_req.calling_name,
2253 "LINUX_CIFS_CLNT",
2254 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2255
1da177e4
LT		 2256 ses_init_buf->trailer.session_req.scope1 = 0;
2257 ses_init_buf->trailer.session_req.scope2 = 0;
2258 smb_buf = (struct smb_hdr *)ses_init_buf;
2259 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2260 smb_buf->smb_buf_length = 0x81000044;
0496e02d 2261 rc = smb_send(server, smb_buf, 0x44);
1da177e4 2262 kfree(ses_init_buf);
50c2f753 2263 msleep(1); /* RFC1001 layer in at least one server
083d3a2c
SF		 2264 requires very short break before negprot
2265 presumably because not expecting negprot
2266 to follow so fast. This is a simple
50c2f753 2267 solution that works without
083d3a2c
SF		 2268 complicating the code and causes no
2269 significant slowing down on mount
2270 for everyone else */
1da177e4 2271 }
50c2f753 2272 /* else the negprot may still work without this
1da177e4 2273 even though malloc failed */
50c2f753 2274
1da177e4 2275 }
50c2f753 2276
1da177e4
LT		 2277 return rc;
2278}
2279
2280static int
d5c5605c 2281ipv6_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2282{
2283 int rc = 0;
6a5fa236 2284 int val;
d5c5605c 2285 bool connected = false;
1da177e4 2286 __be16 orig_port = 0;
d5c5605c 2287 struct socket *socket = server->ssocket;
1da177e4 2288
d5c5605c 2289 if (socket == NULL) {
50c2f753 2290 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
d5c5605c 2291 IPPROTO_TCP, &socket);
1da177e4 2292 if (rc < 0) {
b6b38f70 2293 cERROR(1, "Error %d creating ipv6 socket", rc);
d5c5605c 2294 socket = NULL;
1da177e4 2295 return rc;
1da177e4 2296 }
1da177e4 2297
d5c5605c 2298 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2299 cFYI(1, "ipv6 Socket created");
d5c5605c
JL		 2300 server->ssocket = socket;
2301 socket->sk->sk_allocation = GFP_NOFS;
2302 cifs_reclassify_socket6(socket);
2303 }
1da177e4 2304
3eb9a889
BG		 2305 rc = bind_socket(server);
2306 if (rc < 0)
2307 return rc;
2308
d5c5605c
JL		 2309 /* user overrode default port */
2310 if (server->addr.sockAddr6.sin6_port) {
2311 rc = socket->ops->connect(socket,
2312 (struct sockaddr *) &server->addr.sockAddr6,
6345a3a8 2313 sizeof(struct sockaddr_in6), 0);
1da177e4 2314 if (rc >= 0)
d5c5605c 2315 connected = true;
50c2f753 2316 }
1da177e4 2317
fb8c4b14 2318 if (!connected) {
50c2f753 2319 /* save original port so we can retry user specified port
1da177e4
LT		 2320 later if fall back ports fail this time */
2321
d5c5605c 2322 orig_port = server->addr.sockAddr6.sin6_port;
1da177e4 2323 /* do not retry on the same port we just failed on */
d5c5605c
JL		 2324 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2325 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2326 rc = socket->ops->connect(socket, (struct sockaddr *)
2327 &server->addr.sockAddr6,
6345a3a8 2328 sizeof(struct sockaddr_in6), 0);
1da177e4 2329 if (rc >= 0)
d5c5605c 2330 connected = true;
1da177e4
LT		 2331 }
2332 }
2333 if (!connected) {
d5c5605c
JL		 2334 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2335 rc = socket->ops->connect(socket, (struct sockaddr *)
2336 &server->addr.sockAddr6,
2337 sizeof(struct sockaddr_in6), 0);
50c2f753 2338 if (rc >= 0)
d5c5605c 2339 connected = true;
1da177e4
LT		 2340 }
2341
2342 /* give up here - unless we want to retry on different
2343 protocol families some day */
2344 if (!connected) {
fb8c4b14 2345 if (orig_port)
d5c5605c 2346 server->addr.sockAddr6.sin6_port = orig_port;
b6b38f70 2347 cFYI(1, "Error %d connecting to server via ipv6", rc);
d5c5605c
JL		 2348 sock_release(socket);
2349 server->ssocket = NULL;
1da177e4
LT		 2350 return rc;
2351 }
edf1ae40 2352
d5c5605c
JL		 2353 /*
2354 * Eventually check for other socket options to change from
2355 * the default. sock_setsockopt not used because it expects
2356 * user space buffer
2357 */
2358 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2359 socket->sk->sk_sndtimeo = 5 * HZ;
6a5fa236
SF		 2360
2361 if (server->tcp_nodelay) {
2362 val = 1;
2363 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2364 (char *)&val, sizeof(val));
2365 if (rc)
b6b38f70 2366 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2367 }
2368
d5c5605c 2369 server->ssocket = socket;
50c2f753 2370
1da177e4
LT		 2371 return rc;
2372}
2373
50c2f753
SF		 2374void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2375 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2376{
2377 /* if we are reconnecting then should we check to see if
2378 * any requested capabilities changed locally e.g. via
2379 * remount but we can not do much about it here
2380 * if they have (even if we could detect it by the following)
2381 * Perhaps we could add a backpointer to array of sb from tcon
2382 * or if we change to make all sb to same share the same
2383 * sb as NFS - then we only have one backpointer to sb.
2384 * What if we wanted to mount the server share twice once with
2385 * and once without posixacls or posix paths? */
2386 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2387
c18c842b
SF		 2388 if (vol_info && vol_info->no_linux_ext) {
2389 tcon->fsUnixInfo.Capability = 0;
2390 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2391 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2392 return;
2393 } else if (vol_info)
2394 tcon->unix_ext = 1; /* Unix Extensions supported */
2395
2396 if (tcon->unix_ext == 0) {
b6b38f70 2397 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2398 return;
2399 }
50c2f753 2400
fb8c4b14 2401 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2402 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2403
8af18971
SF		 2404 /* check for reconnect case in which we do not
2405 want to change the mount behavior if we can avoid it */
fb8c4b14 2406 if (vol_info == NULL) {
50c2f753 2407 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2408 originally at mount time */
2409 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2410 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2411 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2412 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2413 cERROR(1, "POSIXPATH support change");
8af18971 2414 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2415 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2416 cERROR(1, "possible reconnect error");
2417 cERROR(1, "server disabled POSIX path support");
11b6d645 2418 }
8af18971 2419 }
50c2f753 2420
8af18971 2421 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2422 if (vol_info && vol_info->no_psx_acl)
8af18971 2423 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2424 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2425 cFYI(1, "negotiated posix acl support");
fb8c4b14 2426 if (sb)
8af18971
SF		 2427 sb->s_flags |= MS_POSIXACL;
2428 }
2429
75865f8c 2430 if (vol_info && vol_info->posix_paths == 0)
8af18971 2431 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2432 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2433 cFYI(1, "negotiate posix pathnames");
75865f8c 2434 if (sb)
50c2f753 2435 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2436 CIFS_MOUNT_POSIX_PATHS;
2437 }
50c2f753 2438
984acfe1
SF		 2439 /* We might be setting the path sep back to a different
2440 form if we are reconnecting and the server switched its
50c2f753 2441 posix path capability for this share */
75865f8c 2442 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2443 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2444
2445 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2446 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2447 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2448 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2449 }
2450 }
50c2f753
SF		 2451
2452
b6b38f70 2453 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2454#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2455 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2456 cFYI(1, "FCNTL cap");
75865f8c 2457 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2458 cFYI(1, "EXTATTR cap");
75865f8c 2459 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2460 cFYI(1, "POSIX path cap");
75865f8c 2461 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2462 cFYI(1, "XATTR cap");
75865f8c 2463 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2464 cFYI(1, "POSIX ACL cap");
75865f8c 2465 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2466 cFYI(1, "very large read cap");
75865f8c 2467 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2468 cFYI(1, "very large write cap");
8af18971
SF		 2469#endif /* CIFS_DEBUG2 */
2470 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2471 if (vol_info == NULL) {
b6b38f70 2472 cFYI(1, "resetting capabilities failed");
442aa310 2473 } else
b6b38f70 2474 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2475 "with the server failed. Consider "
2476 "mounting with the Unix Extensions\n"
2477 "disabled, if problems are found, "
2478 "by specifying the nounix mount "
b6b38f70 2479 "option.");
5a44b319 2480
8af18971
SF		 2481 }
2482 }
2483}
2484
03a143c9
SF		 2485static void
2486convert_delimiter(char *path, char delim)
2487{
2488 int i;
c2d68ea6 2489 char old_delim;
03a143c9
SF		 2490
2491 if (path == NULL)
2492 return;
2493
582d21e5 2494 if (delim == '/')
c2d68ea6
SF		 2495 old_delim = '\\';
2496 else
2497 old_delim = '/';
2498
03a143c9 2499 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2500 if (path[i] == old_delim)
03a143c9
SF		 2501 path[i] = delim;
2502 }
2503}
2504
3b795210
SF		 2505static void setup_cifs_sb(struct smb_vol *pvolume_info,
2506 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2507{
2de970ff
JL		 2508 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2509
3b795210 2510 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2511 cERROR(1, "rsize %d too large, using MaxBufSize",
2512 pvolume_info->rsize);
3b795210
SF		 2513 cifs_sb->rsize = CIFSMaxBufSize;
2514 } else if ((pvolume_info->rsize) &&
2515 (pvolume_info->rsize <= CIFSMaxBufSize))
2516 cifs_sb->rsize = pvolume_info->rsize;
2517 else /* default */
2518 cifs_sb->rsize = CIFSMaxBufSize;
2519
2520 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
b6b38f70
JP		 2521 cERROR(1, "wsize %d too large, using 4096 instead",
2522 pvolume_info->wsize);
3b795210
SF		 2523 cifs_sb->wsize = 4096;
2524 } else if (pvolume_info->wsize)
2525 cifs_sb->wsize = pvolume_info->wsize;
2526 else
2527 cifs_sb->wsize = min_t(const int,
2528 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2529 127*1024);
2530 /* old default of CIFSMaxBufSize was too small now
2531 that SMB Write2 can send multiple pages in kvec.
2532 RFC1001 does not describe what happens when frame
2533 bigger than 128K is sent so use that as max in
2534 conjunction with 52K kvec constraint on arch with 4K
2535 page size */
2536
2537 if (cifs_sb->rsize < 2048) {
2538 cifs_sb->rsize = 2048;
2539 /* Windows ME may prefer this */
b6b38f70 2540 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2541 }
2542 /* calculate prepath */
2543 cifs_sb->prepath = pvolume_info->prepath;
2544 if (cifs_sb->prepath) {
2545 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2546 /* we can not convert the / to \ in the path
2547 separators in the prefixpath yet because we do not
2548 know (until reset_cifs_unix_caps is called later)
2549 whether POSIX PATH CAP is available. We normalize
2550 the / to \ after reset_cifs_unix_caps is called */
2551 pvolume_info->prepath = NULL;
2552 } else
2553 cifs_sb->prepathlen = 0;
2554 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2555 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2556 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2557 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2558 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2559 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210
SF		 2560
2561 if (pvolume_info->noperm)
2562 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2563 if (pvolume_info->setuids)
2564 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2565 if (pvolume_info->server_ino)
2566 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2567 if (pvolume_info->remap)
2568 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2569 if (pvolume_info->no_xattr)
2570 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2571 if (pvolume_info->sfu_emul)
2572 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2573 if (pvolume_info->nobrl)
2574 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2575 if (pvolume_info->nostrictsync)
4717bed6 2576 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2577 if (pvolume_info->mand_lock)
2578 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2579 if (pvolume_info->cifs_acl)
2580 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2581 if (pvolume_info->override_uid)
2582 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2583 if (pvolume_info->override_gid)
2584 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2585 if (pvolume_info->dynperm)
2586 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
fa1df75d
SJ		 2587 if (pvolume_info->fsc)
2588 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
0eb8a132
JL		 2589 if (pvolume_info->multiuser)
2590 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
2591 CIFS_MOUNT_NO_PERM);
3b795210 2592 if (pvolume_info->direct_io) {
b6b38f70 2593 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2594 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2595 }
736a3320
SM		 2596 if (pvolume_info->mfsymlinks) {
2597 if (pvolume_info->sfu_emul) {
2598 cERROR(1, "mount option mfsymlinks ignored if sfu "
2599 "mount option is used");
2600 } else {
2601 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
2602 }
2603 }
3b795210
SF		 2604
2605 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2606 cERROR(1, "mount option dynperm ignored if cifsacl "
2607 "mount option supported");
b1c8d2b4
JL		 2608}
2609
e4cce94c
IM		 2610static int
2611is_path_accessible(int xid, struct cifsTconInfo *tcon,
2612 struct cifs_sb_info *cifs_sb, const char *full_path)
2613{
2614 int rc;
e4cce94c
IM		 2615 FILE_ALL_INFO *pfile_info;
2616
e4cce94c
IM		 2617 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2618 if (pfile_info == NULL)
2619 return -ENOMEM;
2620
2621 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2622 0 /* not legacy */, cifs_sb->local_nls,
2623 cifs_sb->mnt_cifs_flags &
2624 CIFS_MOUNT_MAP_SPECIAL_CHR);
2625 kfree(pfile_info);
2626 return rc;
2627}
2628
1bfe73c2
IM		 2629static void
2630cleanup_volume_info(struct smb_vol **pvolume_info)
2631{
2632 struct smb_vol *volume_info;
2633
ad6cca6d 2634 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2635 return;
2636
2637 volume_info = *pvolume_info;
2638 kzfree(volume_info->password);
2639 kfree(volume_info->UNC);
2640 kfree(volume_info->prepath);
2641 kfree(volume_info);
2642 *pvolume_info = NULL;
2643 return;
2644}
2645
2d6d589d 2646#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2647/* build_path_to_root returns full path to root when
2648 * we do not have an exiting connection (tcon) */
2649static char *
2650build_unc_path_to_root(const struct smb_vol *volume_info,
2651 const struct cifs_sb_info *cifs_sb)
2652{
2653 char *full_path;
2654
2655 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2656 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2657 if (full_path == NULL)
2658 return ERR_PTR(-ENOMEM);
2659
2660 strncpy(full_path, volume_info->UNC, unc_len);
2661 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2662 int i;
2663 for (i = 0; i < unc_len; i++) {
2664 if (full_path[i] == '\\')
2665 full_path[i] = '/';
2666 }
2667 }
2668
2669 if (cifs_sb->prepathlen)
2670 strncpy(full_path + unc_len, cifs_sb->prepath,
2671 cifs_sb->prepathlen);
2672
2673 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2674 return full_path;
2675}
2d6d589d 2676#endif
1bfe73c2 2677
1da177e4
LT		 2678int
2679cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
1bfe73c2 2680 char *mount_data_global, const char *devname)
1da177e4 2681{
a2934c7b 2682 int rc;
1da177e4 2683 int xid;
7586b765 2684 struct smb_vol *volume_info;
a2934c7b
JL		 2685 struct cifsSesInfo *pSesInfo;
2686 struct cifsTconInfo *tcon;
2687 struct TCP_Server_Info *srvTcp;
e4cce94c 2688 char *full_path;
2d6d589d 2689 char *mount_data = mount_data_global;
9d002df4 2690 struct tcon_link *tlink;
2d6d589d 2691#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2692 struct dfs_info3_param *referrals = NULL;
2693 unsigned int num_referrals = 0;
5c2503a8 2694 int referral_walks_count = 0;
1bfe73c2 2695try_mount_again:
2d6d589d 2696#endif
a2934c7b
JL		 2697 rc = 0;
2698 tcon = NULL;
2699 pSesInfo = NULL;
2700 srvTcp = NULL;
1bfe73c2 2701 full_path = NULL;
9d002df4 2702 tlink = NULL;
1da177e4
LT		 2703
2704 xid = GetXid();
2705
7586b765
JL		 2706 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2707 if (!volume_info) {
2708 rc = -ENOMEM;
2709 goto out;
2710 }
50c2f753 2711
7586b765 2712 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
70fe7dc0
JL		 2713 rc = -EINVAL;
2714 goto out;
1da177e4
LT		 2715 }
2716
7586b765 2717 if (volume_info->nullauth) {
b6b38f70 2718 cFYI(1, "null user");
7586b765
JL		 2719 volume_info->username = "";
2720 } else if (volume_info->username) {
1da177e4 2721 /* BB fixme parse for domain name here */
b6b38f70 2722 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2723 } else {
bf820679 2724 cifserror("No username specified");
50c2f753
SF		 2725 /* In userspace mount helper we can get user name from alternate
2726 locations such as env variables and files on disk */
70fe7dc0
JL		 2727 rc = -EINVAL;
2728 goto out;
1da177e4
LT		 2729 }
2730
1da177e4 2731 /* this is needed for ASCII cp to Unicode converts */
7586b765 2732 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2733 /* load_nls_default cannot return null */
2734 volume_info->local_nls = load_nls_default();
1da177e4 2735 } else {
a5fc4ce0
JL		 2736 volume_info->local_nls = load_nls(volume_info->iocharset);
2737 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2738 cERROR(1, "CIFS mount error: iocharset %s not found",
2739 volume_info->iocharset);
70fe7dc0
JL		 2740 rc = -ELIBACC;
2741 goto out;
1da177e4
LT		 2742 }
2743 }
a5fc4ce0 2744 cifs_sb->local_nls = volume_info->local_nls;
1da177e4 2745
63c038c2 2746 /* get a reference to a tcp session */
7586b765 2747 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 2748 if (IS_ERR(srvTcp)) {
2749 rc = PTR_ERR(srvTcp);
2750 goto out;
1da177e4
LT		 2751 }
2752
36988c76
JL		 2753 /* get a reference to a SMB session */
2754 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2755 if (IS_ERR(pSesInfo)) {
2756 rc = PTR_ERR(pSesInfo);
2757 pSesInfo = NULL;
2758 goto mount_fail_check;
1da177e4 2759 }
50c2f753 2760
d00c28de
JL		 2761 setup_cifs_sb(volume_info, cifs_sb);
2762 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2763 sb->s_maxbytes = MAX_LFS_FILESIZE;
2764 else
2765 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 2766
8af18971 2767 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 2768 sb->s_time_gran = 100;
2769
d00c28de
JL		 2770 /* search for existing tcon to this server share */
2771 tcon = cifs_get_tcon(pSesInfo, volume_info);
2772 if (IS_ERR(tcon)) {
2773 rc = PTR_ERR(tcon);
2774 tcon = NULL;
1bfe73c2 2775 goto remote_path_check;
d00c28de 2776 }
1bfe73c2 2777
d82c2df5
SF		 2778 /* do not care if following two calls succeed - informational */
2779 if (!tcon->ipc) {
2780 CIFSSMBQFSDeviceInfo(xid, tcon);
2781 CIFSSMBQFSAttributeInfo(xid, tcon);
2782 }
03a143c9 2783
d82c2df5
SF		 2784 /* tell server which Unix caps we support */
2785 if (tcon->ses->capabilities & CAP_UNIX)
2786 /* reset of caps checks mount to see if unix extensions
2787 disabled for just this mount */
7586b765 2788 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
d82c2df5
SF		 2789 else
2790 tcon->unix_ext = 0; /* server does not support them */
c18c842b 2791
d82c2df5
SF		 2792 /* convert forward to back slashes in prepath here if needed */
2793 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2794 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 2795
d82c2df5
SF		 2796 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2797 cifs_sb->rsize = 1024 * 127;
b6b38f70 2798 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 2799 }
d82c2df5
SF		 2800 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2801 cifs_sb->wsize = min(cifs_sb->wsize,
2802 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2803 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2804 cifs_sb->rsize = min(cifs_sb->rsize,
2805 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 2806
1bfe73c2
IM		 2807remote_path_check:
2808 /* check if a whole path (including prepath) is not remote */
2809 if (!rc && cifs_sb->prepathlen && tcon) {
e4cce94c
IM		 2810 /* build_path_to_root works only when we have a valid tcon */
2811 full_path = cifs_build_path_to_root(cifs_sb);
2812 if (full_path == NULL) {
2813 rc = -ENOMEM;
2814 goto mount_fail_check;
2815 }
2816 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
1bfe73c2 2817 if (rc != -EREMOTE) {
e4cce94c
IM		 2818 kfree(full_path);
2819 goto mount_fail_check;
2820 }
2821 kfree(full_path);
2822 }
2823
1bfe73c2
IM		 2824 /* get referral if needed */
2825 if (rc == -EREMOTE) {
d036f50f 2826#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 2827 if (referral_walks_count > MAX_NESTED_LINKS) {
2828 /*
2829 * BB: when we implement proper loop detection,
2830 * we will remove this check. But now we need it
2831 * to prevent an indefinite loop if 'DFS tree' is
2832 * misconfigured (i.e. has loops).
2833 */
2834 rc = -ELOOP;
2835 goto mount_fail_check;
2836 }
1bfe73c2
IM		 2837 /* convert forward to back slashes in prepath here if needed */
2838 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2839 convert_delimiter(cifs_sb->prepath,
2840 CIFS_DIR_SEP(cifs_sb));
2841 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2842 if (IS_ERR(full_path)) {
2843 rc = PTR_ERR(full_path);
2844 goto mount_fail_check;
2845 }
2846
b6b38f70 2847 cFYI(1, "Getting referral for: %s", full_path);
1bfe73c2
IM		 2848 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2849 cifs_sb->local_nls, &num_referrals, &referrals,
2850 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2851 if (!rc && num_referrals > 0) {
2852 char *fake_devname = NULL;
2853
2854 if (mount_data != mount_data_global)
2855 kfree(mount_data);
7b91e266 2856
1bfe73c2
IM		 2857 mount_data = cifs_compose_mount_options(
2858 cifs_sb->mountdata, full_path + 1,
2859 referrals, &fake_devname);
7b91e266 2860
1bfe73c2 2861 free_dfs_info_array(referrals, num_referrals);
7b91e266
JL		 2862 kfree(fake_devname);
2863 kfree(full_path);
2864
2865 if (IS_ERR(mount_data)) {
2866 rc = PTR_ERR(mount_data);
2867 mount_data = NULL;
2868 goto mount_fail_check;
2869 }
1bfe73c2
IM		 2870
2871 if (tcon)
2872 cifs_put_tcon(tcon);
2873 else if (pSesInfo)
2874 cifs_put_smb_ses(pSesInfo);
2875
2876 cleanup_volume_info(&volume_info);
5c2503a8 2877 referral_walks_count++;
a2934c7b 2878 FreeXid(xid);
1bfe73c2
IM		 2879 goto try_mount_again;
2880 }
d036f50f
SF		 2881#else /* No DFS support, return error on mount */
2882 rc = -EOPNOTSUPP;
2883#endif
1bfe73c2
IM		 2884 }
2885
9d002df4
JL		 2886 if (rc)
2887 goto mount_fail_check;
2888
2889 /* now, hang the tcon off of the superblock */
2890 tlink = kzalloc(sizeof *tlink, GFP_KERNEL);
2891 if (tlink == NULL) {
2892 rc = -ENOMEM;
2893 goto mount_fail_check;
2894 }
2895
2896 tlink->tl_index = pSesInfo->linux_uid;
2897 tlink->tl_tcon = tcon;
2898 tlink->tl_time = jiffies;
2899 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
2900 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
2901
2902 rc = radix_tree_preload(GFP_KERNEL);
2903 if (rc == -ENOMEM) {
2904 kfree(tlink);
2905 goto mount_fail_check;
2906 }
2907
2908 spin_lock(&cifs_sb->tlink_tree_lock);
2909 radix_tree_insert(&cifs_sb->tlink_tree, pSesInfo->linux_uid, tlink);
2910 radix_tree_tag_set(&cifs_sb->tlink_tree, pSesInfo->linux_uid,
2911 CIFS_TLINK_MASTER_TAG);
2912 spin_unlock(&cifs_sb->tlink_tree_lock);
2913 radix_tree_preload_end();
2914
2de970ff
JL		 2915 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
2916 TLINK_IDLE_EXPIRE);
2917
1bfe73c2
IM		 2918mount_fail_check:
2919 /* on error free sesinfo and tcon struct if needed */
2920 if (rc) {
2921 if (mount_data != mount_data_global)
2922 kfree(mount_data);
2923 /* If find_unc succeeded then rc == 0 so we can not end */
2924 /* up accidently freeing someone elses tcon struct */
2925 if (tcon)
2926 cifs_put_tcon(tcon);
2927 else if (pSesInfo)
2928 cifs_put_smb_ses(pSesInfo);
2929 else
2930 cifs_put_tcp_session(srvTcp);
2931 goto out;
2932 }
2933
7586b765 2934 /* volume_info->password is freed above when existing session found
1da177e4
LT		 2935 (in which case it is not needed anymore) but when new sesion is created
2936 the password ptr is put in the new session structure (in which case the
2937 password will be freed at unmount time) */
70fe7dc0
JL		 2938out:
2939 /* zero out password before freeing */
1bfe73c2 2940 cleanup_volume_info(&volume_info);
1da177e4
LT		 2941 FreeXid(xid);
2942 return rc;
2943}
2944
1da177e4
LT		 2945int
2946CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2947 const char *tree, struct cifsTconInfo *tcon,
2948 const struct nls_table *nls_codepage)
2949{
2950 struct smb_hdr *smb_buffer;
2951 struct smb_hdr *smb_buffer_response;
2952 TCONX_REQ *pSMB;
2953 TCONX_RSP *pSMBr;
2954 unsigned char *bcc_ptr;
2955 int rc = 0;
cc20c031 2956 int length, bytes_left;
1da177e4
LT		 2957 __u16 count;
2958
2959 if (ses == NULL)
2960 return -EIO;
2961
2962 smb_buffer = cifs_buf_get();
ca43e3be 2963 if (smb_buffer == NULL)
1da177e4 2964 return -ENOMEM;
ca43e3be 2965
1da177e4
LT		 2966 smb_buffer_response = smb_buffer;
2967
2968 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2969 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 2970
2971 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 2972 smb_buffer->Uid = ses->Suid;
2973 pSMB = (TCONX_REQ *) smb_buffer;
2974 pSMBr = (TCONX_RSP *) smb_buffer_response;
2975
2976 pSMB->AndXCommand = 0xFF;
2977 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 2978 bcc_ptr = &pSMB->Password[0];
fb8c4b14 2979 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 2980 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 2981 *bcc_ptr = 0; /* password is null byte */
eeac8047 2982 bcc_ptr++; /* skip password */
7c7b25bc 2983 /* already aligned so no need to do it below */
eeac8047 2984 } else {
7c7b25bc 2985 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
eeac8047
SF		 2986 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2987 specified as required (when that support is added to
2988 the vfs in the future) as only NTLM or the much
7c7b25bc 2989 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 2990 by Samba (not sure whether other servers allow
2991 NTLMv2 password here) */
7c7b25bc 2992#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 2993 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0 2994 (ses->server->secType == LANMAN))
5d0d2882 2995 calc_lanman_hash(tcon->password, ses->cryptKey,
4e53a3fb
JL		 2996 ses->server->secMode &
2997 SECMODE_PW_ENCRYPT ? true : false,
2998 bcc_ptr);
7c7b25bc
SF		 2999 else
3000#endif /* CIFS_WEAK_PW_HASH */
5d0d2882 3001 SMBNTencrypt(tcon->password, ses->cryptKey, bcc_ptr);
eeac8047 3002
7c7b25bc 3003 bcc_ptr += CIFS_SESS_KEY_SIZE;
fb8c4b14 3004 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 3005 /* must align unicode strings */
3006 *bcc_ptr = 0; /* null byte password */
3007 bcc_ptr++;
3008 }
eeac8047 3009 }
1da177e4 3010
50c2f753 3011 if (ses->server->secMode &
a878fb22 3012 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 3013 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3014
3015 if (ses->capabilities & CAP_STATUS32) {
3016 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3017 }
3018 if (ses->capabilities & CAP_DFS) {
3019 smb_buffer->Flags2 |= SMBFLG2_DFS;
3020 }
3021 if (ses->capabilities & CAP_UNICODE) {
3022 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3023 length =
50c2f753
SF		 3024 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
3025 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 3026 (/* server len*/ + 256 /* share len */), nls_codepage);
3027 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 3028 bcc_ptr += 2; /* skip trailing null */
3029 } else { /* ASCII */
1da177e4
LT		 3030 strcpy(bcc_ptr, tree);
3031 bcc_ptr += strlen(tree) + 1;
3032 }
3033 strcpy(bcc_ptr, "?????");
3034 bcc_ptr += strlen("?????");
3035 bcc_ptr += 1;
3036 count = bcc_ptr - &pSMB->Password[0];
3037 pSMB->hdr.smb_buf_length += count;
3038 pSMB->ByteCount = cpu_to_le16(count);
3039
133672ef
SF		 3040 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
3041 CIFS_STD_OP);
1da177e4 3042
1da177e4
LT		 3043 /* above now done in SendReceive */
3044 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 3045 bool is_unicode;
3046
1da177e4 3047 tcon->tidStatus = CifsGood;
3b795210 3048 tcon->need_reconnect = false;
1da177e4
LT		 3049 tcon->tid = smb_buffer_response->Tid;
3050 bcc_ptr = pByteArea(smb_buffer_response);
cc20c031
JL		 3051 bytes_left = BCC(smb_buffer_response);
3052 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 3053 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3054 is_unicode = true;
3055 else
3056 is_unicode = false;
3057
cc20c031 3058
50c2f753 3059 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 3060 if (length == 3) {
3061 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3062 (bcc_ptr[2] == 'C')) {
b6b38f70 3063 cFYI(1, "IPC connection");
7f8ed420
SF		 3064 tcon->ipc = 1;
3065 }
3066 } else if (length == 2) {
3067 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3068 /* the most common case */
b6b38f70 3069 cFYI(1, "disk share connection");
7f8ed420
SF		 3070 }
3071 }
50c2f753 3072 bcc_ptr += length + 1;
cc20c031 3073 bytes_left -= (length + 1);
1da177e4 3074 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 3075
3076 /* mostly informational -- no need to fail on error here */
90a98b2f 3077 kfree(tcon->nativeFileSystem);
d185cda7 3078 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 3079 bytes_left, is_unicode,
cc20c031
JL		 3080 nls_codepage);
3081
b6b38f70 3082 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 3083
fb8c4b14 3084 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 3085 (smb_buffer_response->WordCount == 7))
3086 /* field is in same location */
3979877e
SF		 3087 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3088 else
3089 tcon->Flags = 0;
b6b38f70 3090 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 3091 } else if ((rc == 0) && tcon == NULL) {
50c2f753 3092 /* all we need to save for IPC$ connection */
1da177e4
LT		 3093 ses->ipc_tid = smb_buffer_response->Tid;
3094 }
3095
a8a11d39 3096 cifs_buf_release(smb_buffer);
1da177e4
LT		 3097 return rc;
3098}
3099
3100int
3101cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
3102{
9d002df4 3103 int i, ret;
50c2f753 3104 char *tmp;
9d002df4
JL		 3105 struct tcon_link *tlink[8];
3106 unsigned long index = 0;
3107
2de970ff
JL		 3108 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3109
9d002df4
JL		 3110 do {
3111 spin_lock(&cifs_sb->tlink_tree_lock);
3112 ret = radix_tree_gang_lookup(&cifs_sb->tlink_tree,
3113 (void **)tlink, index,
3114 ARRAY_SIZE(tlink));
3115 /* increment index for next pass */
3116 if (ret > 0)
3117 index = tlink[ret - 1]->tl_index + 1;
3118 for (i = 0; i < ret; i++) {
3119 cifs_get_tlink(tlink[i]);
3120 clear_bit(TCON_LINK_IN_TREE, &tlink[i]->tl_flags);
3121 radix_tree_delete(&cifs_sb->tlink_tree,
3122 tlink[i]->tl_index);
3123 }
3124 spin_unlock(&cifs_sb->tlink_tree_lock);
1da177e4 3125
9d002df4
JL		 3126 for (i = 0; i < ret; i++)
3127 cifs_put_tlink(tlink[i]);
3128 } while (ret != 0);
50c2f753 3129
2fe87f02
SF		 3130 tmp = cifs_sb->prepath;
3131 cifs_sb->prepathlen = 0;
3132 cifs_sb->prepath = NULL;
3133 kfree(tmp);
1da177e4 3134
9d002df4 3135 return 0;
50c2f753 3136}
1da177e4 3137
198b5682 3138int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 3139{
3140 int rc = 0;
198b5682 3141 struct TCP_Server_Info *server = ses->server;
1da177e4 3142
198b5682
JL		 3143 /* only send once per connect */
3144 if (server->maxBuf != 0)
3145 return 0;
3146
3147 rc = CIFSSMBNegotiate(xid, ses);
3148 if (rc == -EAGAIN) {
3149 /* retry only once on 1st time connection */
3150 rc = CIFSSMBNegotiate(xid, ses);
3151 if (rc == -EAGAIN)
3152 rc = -EHOSTDOWN;
1da177e4 3153 }
198b5682
JL		 3154 if (rc == 0) {
3155 spin_lock(&GlobalMid_Lock);
3156 if (server->tcpStatus != CifsExiting)
3157 server->tcpStatus = CifsGood;
3158 else
3159 rc = -EHOSTDOWN;
3160 spin_unlock(&GlobalMid_Lock);
26b994fa 3161
198b5682
JL		 3162 }
3163
3164 return rc;
3165}
3166
3167
3168int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
3169 struct nls_table *nls_info)
3170{
3171 int rc = 0;
3172 struct TCP_Server_Info *server = ses->server;
26b994fa 3173
198b5682
JL		 3174 ses->flags = 0;
3175 ses->capabilities = server->capabilities;
26b994fa 3176 if (linuxExtEnabled == 0)
198b5682 3177 ses->capabilities &= (~CAP_UNIX);
20418acd 3178
b6b38f70
JP		 3179 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
3180 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 3181
198b5682 3182 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 3183 if (rc) {
b6b38f70 3184 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 3185 } else {
5d0d2882
SP		 3186 mutex_lock(&ses->server->srv_mutex);
3187 if (!server->session_estab) {
21e73393 3188 server->session_key.response = ses->auth_key.response;
5d0d2882 3189 server->session_key.len = ses->auth_key.len;
21e73393
SP		 3190 server->sequence_number = 0x2;
3191 server->session_estab = true;
3192 ses->auth_key.response = NULL;
5d0d2882
SP		 3193 }
3194 mutex_unlock(&server->srv_mutex);
3195
b6b38f70 3196 cFYI(1, "CIFS Session Established successfully");
20418acd 3197 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3198 ses->status = CifsGood;
3199 ses->need_reconnect = false;
20418acd 3200 spin_unlock(&GlobalMid_Lock);
1da177e4 3201 }
26b994fa 3202
21e73393
SP		 3203 kfree(ses->auth_key.response);
3204 ses->auth_key.response = NULL;
3205 ses->auth_key.len = 0;
3206
1da177e4
LT		 3207 return rc;
3208}
3209
d2445556 3210static struct cifsTconInfo *
9d002df4
JL		 3211cifs_construct_tcon(struct cifs_sb_info *cifs_sb, uid_t fsuid)
3212{
3213 struct cifsTconInfo *master_tcon = cifs_sb_master_tcon(cifs_sb);
3214 struct cifsSesInfo *ses;
3215 struct cifsTconInfo *tcon = NULL;
3216 struct smb_vol *vol_info;
3217 char username[MAX_USERNAME_SIZE + 1];
3218
3219 vol_info = kzalloc(sizeof(*vol_info), GFP_KERNEL);
3220 if (vol_info == NULL) {
3221 tcon = ERR_PTR(-ENOMEM);
3222 goto out;
3223 }
3224
3225 snprintf(username, MAX_USERNAME_SIZE, "krb50x%x", fsuid);
3226 vol_info->username = username;
3227 vol_info->local_nls = cifs_sb->local_nls;
3228 vol_info->linux_uid = fsuid;
3229 vol_info->cred_uid = fsuid;
3230 vol_info->UNC = master_tcon->treeName;
3231 vol_info->retry = master_tcon->retry;
3232 vol_info->nocase = master_tcon->nocase;
3233 vol_info->local_lease = master_tcon->local_lease;
3234 vol_info->no_linux_ext = !master_tcon->unix_ext;
3235
3236 /* FIXME: allow for other secFlg settings */
3237 vol_info->secFlg = CIFSSEC_MUST_KRB5;
3238
3239 /* get a reference for the same TCP session */
3f9bcca7 3240 spin_lock(&cifs_tcp_ses_lock);
9d002df4 3241 ++master_tcon->ses->server->srv_count;
3f9bcca7 3242 spin_unlock(&cifs_tcp_ses_lock);
9d002df4
JL		 3243
3244 ses = cifs_get_smb_ses(master_tcon->ses->server, vol_info);
3245 if (IS_ERR(ses)) {
3246 tcon = (struct cifsTconInfo *)ses;
3247 cifs_put_tcp_session(master_tcon->ses->server);
3248 goto out;
3249 }
3250
3251 tcon = cifs_get_tcon(ses, vol_info);
3252 if (IS_ERR(tcon)) {
3253 cifs_put_smb_ses(ses);
3254 goto out;
3255 }
3256
3257 if (ses->capabilities & CAP_UNIX)
3258 reset_cifs_unix_caps(0, tcon, NULL, vol_info);
3259out:
3260 kfree(vol_info);
3261
3262 return tcon;
3263}
3264
3265static struct tcon_link *
3266cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
3267{
3268 struct tcon_link *tlink;
3269 unsigned int ret;
3270
3271 spin_lock(&cifs_sb->tlink_tree_lock);
3272 ret = radix_tree_gang_lookup_tag(&cifs_sb->tlink_tree, (void **)&tlink,
3273 0, 1, CIFS_TLINK_MASTER_TAG);
3274 spin_unlock(&cifs_sb->tlink_tree_lock);
3275
3276 /* the master tcon should always be present */
3277 if (ret == 0)
3278 BUG();
3279
3280 return tlink;
3281}
3282
3283struct cifsTconInfo *
3284cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
3285{
3286 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
3287}
3288
3289static int
3290cifs_sb_tcon_pending_wait(void *unused)
3291{
3292 schedule();
3293 return signal_pending(current) ? -ERESTARTSYS : 0;
3294}
3295
3296/*
3297 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
3298 * current task.
3299 *
3300 * If the superblock doesn't refer to a multiuser mount, then just return
3301 * the master tcon for the mount.
3302 *
3303 * First, search the radix tree for an existing tcon for this fsuid. If one
3304 * exists, then check to see if it's pending construction. If it is then wait
3305 * for construction to complete. Once it's no longer pending, check to see if
3306 * it failed and either return an error or retry construction, depending on
3307 * the timeout.
3308 *
3309 * If one doesn't exist then insert a new tcon_link struct into the tree and
3310 * try to construct a new one.
3311 */
3312struct tcon_link *
3313cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
3314{
3315 int ret;
3316 unsigned long fsuid = (unsigned long) current_fsuid();
3317 struct tcon_link *tlink, *newtlink;
3318
3319 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
3320 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
3321
3322 spin_lock(&cifs_sb->tlink_tree_lock);
3323 tlink = radix_tree_lookup(&cifs_sb->tlink_tree, fsuid);
3324 if (tlink)
3325 cifs_get_tlink(tlink);
3326 spin_unlock(&cifs_sb->tlink_tree_lock);
3327
3328 if (tlink == NULL) {
3329 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3330 if (newtlink == NULL)
3331 return ERR_PTR(-ENOMEM);
3332 newtlink->tl_index = fsuid;
3333 newtlink->tl_tcon = ERR_PTR(-EACCES);
3334 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
3335 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
3336 cifs_get_tlink(newtlink);
3337
3338 ret = radix_tree_preload(GFP_KERNEL);
3339 if (ret != 0) {
3340 kfree(newtlink);
3341 return ERR_PTR(ret);
3342 }
3343
3344 spin_lock(&cifs_sb->tlink_tree_lock);
3345 /* was one inserted after previous search? */
3346 tlink = radix_tree_lookup(&cifs_sb->tlink_tree, fsuid);
3347 if (tlink) {
3348 cifs_get_tlink(tlink);
3349 spin_unlock(&cifs_sb->tlink_tree_lock);
3350 radix_tree_preload_end();
3351 kfree(newtlink);
3352 goto wait_for_construction;
3353 }
3354 ret = radix_tree_insert(&cifs_sb->tlink_tree, fsuid, newtlink);
3355 spin_unlock(&cifs_sb->tlink_tree_lock);
3356 radix_tree_preload_end();
3357 if (ret) {
3358 kfree(newtlink);
3359 return ERR_PTR(ret);
3360 }
3361 tlink = newtlink;
3362 } else {
3363wait_for_construction:
3364 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
3365 cifs_sb_tcon_pending_wait,
3366 TASK_INTERRUPTIBLE);
3367 if (ret) {
3368 cifs_put_tlink(tlink);
3369 return ERR_PTR(ret);
3370 }
3371
3372 /* if it's good, return it */
3373 if (!IS_ERR(tlink->tl_tcon))
3374 return tlink;
3375
3376 /* return error if we tried this already recently */
3377 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
3378 cifs_put_tlink(tlink);
3379 return ERR_PTR(-EACCES);
3380 }
3381
3382 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
3383 goto wait_for_construction;
3384 }
3385
3386 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
3387 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
3388 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
3389
3390 if (IS_ERR(tlink->tl_tcon)) {
3391 cifs_put_tlink(tlink);
3392 return ERR_PTR(-EACCES);
3393 }
3394
3395 return tlink;
3396}
2de970ff
JL		 3397
3398/*
3399 * periodic workqueue job that scans tcon_tree for a superblock and closes
3400 * out tcons.
3401 */
3402static void
3403cifs_prune_tlinks(struct work_struct *work)
3404{
3405 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
3406 prune_tlinks.work);
3407 struct tcon_link *tlink[8];
3408 unsigned long now = jiffies;
3409 unsigned long index = 0;
3410 int i, ret;
3411
3412 do {
3413 spin_lock(&cifs_sb->tlink_tree_lock);
3414 ret = radix_tree_gang_lookup(&cifs_sb->tlink_tree,
3415 (void **)tlink, index,
3416 ARRAY_SIZE(tlink));
3417 /* increment index for next pass */
3418 if (ret > 0)
3419 index = tlink[ret - 1]->tl_index + 1;
3420 for (i = 0; i < ret; i++) {
3421 if (test_bit(TCON_LINK_MASTER, &tlink[i]->tl_flags) ||
3422 atomic_read(&tlink[i]->tl_count) != 0 ||
3423 time_after(tlink[i]->tl_time + TLINK_IDLE_EXPIRE,
3424 now)) {
3425 tlink[i] = NULL;
3426 continue;
3427 }
3428 cifs_get_tlink(tlink[i]);
3429 clear_bit(TCON_LINK_IN_TREE, &tlink[i]->tl_flags);
3430 radix_tree_delete(&cifs_sb->tlink_tree,
3431 tlink[i]->tl_index);
3432 }
3433 spin_unlock(&cifs_sb->tlink_tree_lock);
3434
3435 for (i = 0; i < ret; i++) {
3436 if (tlink[i] != NULL)
3437 cifs_put_tlink(tlink[i]);
3438 }
3439 } while (ret != 0);
3440
3441 queue_delayed_work(system_nrt_wq, &cifs_sb->prune_tlinks,
3442 TLINK_IDLE_EXPIRE);
3443}
Clone of davem's net-next-2.6 tree