]> bbs.cooldavid.org Git - net-next-2.6.git/blame - fs/cifs/connect.c
git://bbs.cooldavid.org / net-next-2.6.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
cifs: register CIFS for caching
[net-next-2.6.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
a2653eba 50#include "cn_cifs.h"
1da177e4
LT		 51
52#define CIFS_PORT 445
53#define RFC1001_PORT 139
54
1da177e4
LT		 55extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
56 unsigned char *p24);
57
58extern mempool_t *cifs_req_poolp;
59
60struct smb_vol {
61 char *username;
62 char *password;
63 char *domainname;
64 char *UNC;
65 char *UNCip;
1da177e4
LT		 66 char *iocharset; /* local code page for mapping to and from Unicode */
67 char source_rfc1001_name[16]; /* netbios name of client */
a10faeb2 68 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
1da177e4
LT		 69 uid_t linux_uid;
70 gid_t linux_gid;
71 mode_t file_mode;
72 mode_t dir_mode;
189acaae 73 unsigned secFlg;
4b18f2a9
SF		 74 bool retry:1;
75 bool intr:1;
76 bool setuids:1;
77 bool override_uid:1;
78 bool override_gid:1;
d0a9c078 79 bool dynperm:1;
4b18f2a9
SF		 80 bool noperm:1;
81 bool no_psx_acl:1; /* set if posix acl support should be disabled */
82 bool cifs_acl:1;
83 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
84 bool server_ino:1; /* use inode numbers from server ie UniqueId */
85 bool direct_io:1;
95b1cb90
SF		 86 bool remap:1; /* set to remap seven reserved chars in filenames */
87 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 88 bool no_linux_ext:1;
89 bool sfu_emul:1;
95b1cb90
SF		 90 bool nullauth:1; /* attempt to authenticate with null user */
91 bool nocase:1; /* request case insensitive filenames */
92 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 93 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 94 bool seal:1; /* request transport encryption on share */
84210e91
SF		 95 bool nodfs:1; /* Do not request DFS, even if available */
96 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 97 bool noblocksnd:1;
98 bool noautotune:1;
be652445 99 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
1da177e4
LT		 100 unsigned int rsize;
101 unsigned int wsize;
6a5fa236 102 bool sockopt_tcp_nodelay:1;
1da177e4 103 unsigned short int port;
fb8c4b14 104 char *prepath;
a5fc4ce0 105 struct nls_table *local_nls;
1da177e4
LT		 106};
107
bcf4b106 108static int ipv4_connect(struct TCP_Server_Info *server);
d5c5605c 109static int ipv6_connect(struct TCP_Server_Info *server);
1da177e4 110
d5c5605c
JL		 111/*
112 * cifs tcp session reconnection
113 *
114 * mark tcp session as reconnecting so temporarily locked
115 * mark all smb sessions as reconnecting for tcp session
116 * reconnect tcp session
117 * wake up waiters on reconnection? - (not needed currently)
118 */
2cd646a2 119static int
1da177e4
LT		 120cifs_reconnect(struct TCP_Server_Info *server)
121{
122 int rc = 0;
f1987b44 123 struct list_head *tmp, *tmp2;
1da177e4
LT		 124 struct cifsSesInfo *ses;
125 struct cifsTconInfo *tcon;
fb8c4b14 126 struct mid_q_entry *mid_entry;
50c2f753 127
1da177e4 128 spin_lock(&GlobalMid_Lock);
469ee614 129 if (server->tcpStatus == CifsExiting) {
fb8c4b14 130 /* the demux thread will exit normally
1da177e4
LT		 131 next time through the loop */
132 spin_unlock(&GlobalMid_Lock);
133 return rc;
134 } else
135 server->tcpStatus = CifsNeedReconnect;
136 spin_unlock(&GlobalMid_Lock);
137 server->maxBuf = 0;
138
b6b38f70 139 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 140
141 /* before reconnecting the tcp session, mark the smb session (uid)
142 and the tid bad so they are not used until reconnected */
14fbf50d
JL		 143 read_lock(&cifs_tcp_ses_lock);
144 list_for_each(tmp, &server->smb_ses_list) {
145 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
146 ses->need_reconnect = true;
147 ses->ipc_tid = 0;
f1987b44
JL		 148 list_for_each(tmp2, &ses->tcon_list) {
149 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 150 tcon->need_reconnect = true;
1da177e4 151 }
1da177e4 152 }
f1987b44 153 read_unlock(&cifs_tcp_ses_lock);
1da177e4 154 /* do not want to be sending data on a socket we are freeing */
72ca545b 155 mutex_lock(&server->srv_mutex);
fb8c4b14 156 if (server->ssocket) {
b6b38f70
JP		 157 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
158 server->ssocket->flags);
91cf45f0 159 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 160 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 161 server->ssocket->state,
b6b38f70 162 server->ssocket->flags);
1da177e4
LT		 163 sock_release(server->ssocket);
164 server->ssocket = NULL;
165 }
166
167 spin_lock(&GlobalMid_Lock);
168 list_for_each(tmp, &server->pending_mid_q) {
169 mid_entry = list_entry(tmp, struct
170 mid_q_entry,
171 qhead);
ad8b15f0 172 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
09d1db5c
SF		 173 /* Mark other intransit requests as needing
174 retry so we do not immediately mark the
175 session bad again (ie after we reconnect
176 below) as they timeout too */
ad8b15f0 177 mid_entry->midState = MID_RETRY_NEEDED;
1da177e4
LT		 178 }
179 }
180 spin_unlock(&GlobalMid_Lock);
72ca545b 181 mutex_unlock(&server->srv_mutex);
1da177e4 182
469ee614
JL		 183 while ((server->tcpStatus != CifsExiting) &&
184 (server->tcpStatus != CifsGood)) {
6c3d8909 185 try_to_freeze();
bcf4b106 186 if (server->addr.sockAddr6.sin6_family == AF_INET6)
d5c5605c 187 rc = ipv6_connect(server);
bcf4b106
JL		 188 else
189 rc = ipv4_connect(server);
fb8c4b14 190 if (rc) {
b6b38f70 191 cFYI(1, "reconnect error %d", rc);
0cb766ae 192 msleep(3000);
1da177e4
LT		 193 } else {
194 atomic_inc(&tcpSesReconnectCount);
195 spin_lock(&GlobalMid_Lock);
469ee614 196 if (server->tcpStatus != CifsExiting)
1da177e4 197 server->tcpStatus = CifsGood;
ad009ac9 198 server->sequence_number = 0;
fb8c4b14 199 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 200 /* atomic_set(&server->inFlight,0);*/
201 wake_up(&server->response_q);
202 }
203 }
204 return rc;
205}
206
fb8c4b14 207/*
e4eb295d
SF		 208 return codes:
209 0 not a transact2, or all data present
210 >0 transact2 with that much data missing
211 -EINVAL = invalid transact2
212
213 */
fb8c4b14 214static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 215{
fb8c4b14
SF		 216 struct smb_t2_rsp *pSMBt;
217 int total_data_size;
e4eb295d
SF		 218 int data_in_this_rsp;
219 int remaining;
220
fb8c4b14 221 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 222 return 0;
223
fb8c4b14
SF		 224 /* check for plausible wct, bcc and t2 data and parm sizes */
225 /* check for parm and data offset going beyond end of smb */
226 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 227 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 228 return -EINVAL;
229 }
230
231 pSMBt = (struct smb_t2_rsp *)pSMB;
232
233 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
234 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
235
236 remaining = total_data_size - data_in_this_rsp;
237
fb8c4b14 238 if (remaining == 0)
e4eb295d 239 return 0;
fb8c4b14 240 else if (remaining < 0) {
b6b38f70
JP		 241 cFYI(1, "total data %d smaller than data in frame %d",
242 total_data_size, data_in_this_rsp);
e4eb295d
SF		 243 return -EINVAL;
244 } else {
b6b38f70
JP		 245 cFYI(1, "missing %d bytes from transact2, check next response",
246 remaining);
fb8c4b14 247 if (total_data_size > maxBufSize) {
b6b38f70
JP		 248 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
249 total_data_size, maxBufSize);
fb8c4b14 250 return -EINVAL;
e4eb295d
SF		 251 }
252 return remaining;
253 }
254}
255
fb8c4b14 256static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 257{
258 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
259 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
260 int total_data_size;
261 int total_in_buf;
262 int remaining;
263 int total_in_buf2;
fb8c4b14
SF		 264 char *data_area_of_target;
265 char *data_area_of_buf2;
e4eb295d
SF		 266 __u16 byte_count;
267
268 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
269
fb8c4b14 270 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
b6b38f70 271 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d
SF		 272 }
273
274 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
275
276 remaining = total_data_size - total_in_buf;
50c2f753 277
fb8c4b14 278 if (remaining < 0)
e4eb295d
SF		 279 return -EINVAL;
280
fb8c4b14 281 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 282 return 0;
50c2f753 283
e4eb295d 284 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
fb8c4b14 285 if (remaining < total_in_buf2) {
b6b38f70 286 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 287 }
288
289 /* find end of first SMB data area */
fb8c4b14 290 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
e4eb295d
SF		 291 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
292 /* validate target area */
293
294 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
fb8c4b14 295 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 296
297 data_area_of_target += total_in_buf;
298
299 /* copy second buffer into end of first buffer */
fb8c4b14 300 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
e4eb295d
SF		 301 total_in_buf += total_in_buf2;
302 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
303 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
304 byte_count += total_in_buf2;
305 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
306
70ca734a 307 byte_count = pTargetSMB->smb_buf_length;
e4eb295d
SF		 308 byte_count += total_in_buf2;
309
310 /* BB also add check that we are not beyond maximum buffer size */
50c2f753 311
70ca734a 312 pTargetSMB->smb_buf_length = byte_count;
e4eb295d 313
fb8c4b14 314 if (remaining == total_in_buf2) {
b6b38f70 315 cFYI(1, "found the last secondary response");
e4eb295d
SF		 316 return 0; /* we are done */
317 } else /* more responses to go */
318 return 1;
319
320}
321
1da177e4
LT		 322static int
323cifs_demultiplex_thread(struct TCP_Server_Info *server)
324{
325 int length;
326 unsigned int pdu_length, total_read;
327 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 328 struct smb_hdr *bigbuf = NULL;
329 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 330 struct msghdr smb_msg;
331 struct kvec iov;
332 struct socket *csocket = server->ssocket;
333 struct list_head *tmp;
334 struct cifsSesInfo *ses;
335 struct task_struct *task_to_wake = NULL;
336 struct mid_q_entry *mid_entry;
70ca734a 337 char temp;
4b18f2a9
SF		 338 bool isLargeBuf = false;
339 bool isMultiRsp;
e4eb295d 340 int reconnect;
1da177e4 341
1da177e4 342 current->flags |= PF_MEMALLOC;
b6b38f70 343 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 344
345 length = atomic_inc_return(&tcpSesAllocCount);
346 if (length > 1)
26f57364
SF		 347 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
348 GFP_KERNEL);
1da177e4 349
83144186 350 set_freezable();
469ee614 351 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 352 if (try_to_freeze())
353 continue;
b8643e1b
SF		 354 if (bigbuf == NULL) {
355 bigbuf = cifs_buf_get();
0fd1ffe0 356 if (!bigbuf) {
b6b38f70 357 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 358 msleep(3000);
359 /* retry will check if exiting */
360 continue;
361 }
0fd1ffe0
PM		 362 } else if (isLargeBuf) {
363 /* we are reusing a dirty large buf, clear its start */
26f57364 364 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 365 }
b8643e1b
SF		 366
367 if (smallbuf == NULL) {
368 smallbuf = cifs_small_buf_get();
0fd1ffe0 369 if (!smallbuf) {
b6b38f70 370 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 371 msleep(1000);
372 /* retry will check if exiting */
373 continue;
374 }
375 /* beginning of smb buffer is cleared in our buf_get */
376 } else /* if existing small buf clear beginning */
26f57364 377 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 378
4b18f2a9
SF		 379 isLargeBuf = false;
380 isMultiRsp = false;
b8643e1b 381 smb_buffer = smallbuf;
1da177e4
LT		 382 iov.iov_base = smb_buffer;
383 iov.iov_len = 4;
384 smb_msg.msg_control = NULL;
385 smb_msg.msg_controllen = 0;
f01d5e14
SF		 386 pdu_length = 4; /* enough to get RFC1001 header */
387incomplete_rcv:
1da177e4
LT		 388 length =
389 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 390 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 391
469ee614 392 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 393 break;
394 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 395 cFYI(1, "Reconnect after server stopped responding");
1da177e4 396 cifs_reconnect(server);
b6b38f70 397 cFYI(1, "call to reconnect done");
1da177e4
LT		 398 csocket = server->ssocket;
399 continue;
400 } else if ((length == -ERESTARTSYS) || (length == -EAGAIN)) {
b8643e1b 401 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 402 allowing socket to clear and app threads to set
403 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 404 if (pdu_length < 4) {
405 iov.iov_base = (4 - pdu_length) +
406 (char *)smb_buffer;
407 iov.iov_len = pdu_length;
408 smb_msg.msg_control = NULL;
409 smb_msg.msg_controllen = 0;
c18c732e 410 goto incomplete_rcv;
c527c8a7 411 } else
c18c732e 412 continue;
1da177e4 413 } else if (length <= 0) {
0fd1ffe0 414 if (server->tcpStatus == CifsNew) {
b6b38f70 415 cFYI(1, "tcp session abend after SMBnegprot");
09d1db5c
SF		 416 /* some servers kill the TCP session rather than
417 returning an SMB negprot error, in which
418 case reconnecting here is not going to help,
419 and so simply return error to mount */
1da177e4
LT		 420 break;
421 }
0fd1ffe0 422 if (!try_to_freeze() && (length == -EINTR)) {
b6b38f70 423 cFYI(1, "cifsd thread killed");
1da177e4
LT		 424 break;
425 }
b6b38f70
JP		 426 cFYI(1, "Reconnect after unexpected peek error %d",
427 length);
1da177e4
LT		 428 cifs_reconnect(server);
429 csocket = server->ssocket;
430 wake_up(&server->response_q);
431 continue;
2a974680 432 } else if (length < pdu_length) {
b6b38f70
JP		 433 cFYI(1, "requested %d bytes but only got %d bytes",
434 pdu_length, length);
f01d5e14 435 pdu_length -= length;
f01d5e14
SF		 436 msleep(1);
437 goto incomplete_rcv;
46810cbf 438 }
1da177e4 439
70ca734a
SF		 440 /* The right amount was read from socket - 4 bytes */
441 /* so we can now interpret the length field */
46810cbf 442
70ca734a
SF		 443 /* the first byte big endian of the length field,
444 is actually not part of the length but the type
445 with the most common, zero, as regular data */
446 temp = *((char *) smb_buffer);
46810cbf 447
fb8c4b14 448 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 449 but we convert it here so it is always manipulated
450 as host byte order */
5ca33c6a 451 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
70ca734a
SF		 452 smb_buffer->smb_buf_length = pdu_length;
453
b6b38f70 454 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 455
70ca734a 456 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 457 continue;
70ca734a 458 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 459 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 460 continue;
70ca734a 461 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 462 /* we get this from Windows 98 instead of
46810cbf 463 an error on SMB negprot response */
b6b38f70
JP		 464 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
465 pdu_length);
fb8c4b14
SF		 466 if (server->tcpStatus == CifsNew) {
467 /* if nack on negprot (rather than
46810cbf
SF		 468 ret of smb negprot error) reconnecting
469 not going to help, ret error to mount */
470 break;
471 } else {
472 /* give server a second to
473 clean up before reconnect attempt */
474 msleep(1000);
475 /* always try 445 first on reconnect
476 since we get NACK on some if we ever
fb8c4b14 477 connected to port 139 (the NACK is
46810cbf
SF		 478 since we do not begin with RFC1001
479 session initialize frame) */
fb8c4b14 480 server->addr.sockAddr.sin_port =
46810cbf 481 htons(CIFS_PORT);
1da177e4
LT		 482 cifs_reconnect(server);
483 csocket = server->ssocket;
46810cbf 484 wake_up(&server->response_q);
1da177e4 485 continue;
46810cbf 486 }
70ca734a 487 } else if (temp != (char) 0) {
b6b38f70 488 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 489 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
490 length);
46810cbf
SF		 491 cifs_reconnect(server);
492 csocket = server->ssocket;
493 continue;
e4eb295d
SF		 494 }
495
496 /* else we have an SMB response */
fb8c4b14 497 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 498 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 499 cERROR(1, "Invalid size SMB length %d pdu_length %d",
500 length, pdu_length+4);
e4eb295d
SF		 501 cifs_reconnect(server);
502 csocket = server->ssocket;
503 wake_up(&server->response_q);
504 continue;
fb8c4b14 505 }
e4eb295d
SF		 506
507 /* else length ok */
508 reconnect = 0;
509
fb8c4b14 510 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 511 isLargeBuf = true;
e4eb295d
SF		 512 memcpy(bigbuf, smallbuf, 4);
513 smb_buffer = bigbuf;
514 }
515 length = 0;
516 iov.iov_base = 4 + (char *)smb_buffer;
517 iov.iov_len = pdu_length;
fb8c4b14 518 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 519 total_read += length) {
520 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
521 pdu_length - total_read, 0);
469ee614 522 if ((server->tcpStatus == CifsExiting) ||
e4eb295d
SF		 523 (length == -EINTR)) {
524 /* then will exit */
525 reconnect = 2;
526 break;
527 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 528 cifs_reconnect(server);
529 csocket = server->ssocket;
fb8c4b14 530 /* Reconnect wakes up rspns q */
e4eb295d
SF		 531 /* Now we will reread sock */
532 reconnect = 1;
533 break;
fb8c4b14 534 } else if ((length == -ERESTARTSYS) ||
e4eb295d
SF		 535 (length == -EAGAIN)) {
536 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 537 allowing socket to clear and app
e4eb295d
SF		 538 threads to set tcpStatus
539 CifsNeedReconnect if server hung*/
c18c732e 540 length = 0;
46810cbf 541 continue;
e4eb295d 542 } else if (length <= 0) {
b6b38f70
JP		 543 cERROR(1, "Received no data, expecting %d",
544 pdu_length - total_read);
e4eb295d
SF		 545 cifs_reconnect(server);
546 csocket = server->ssocket;
547 reconnect = 1;
548 break;
46810cbf 549 }
e4eb295d 550 }
fb8c4b14 551 if (reconnect == 2)
e4eb295d 552 break;
fb8c4b14 553 else if (reconnect == 1)
e4eb295d 554 continue;
1da177e4 555
e4eb295d 556 length += 4; /* account for rfc1002 hdr */
50c2f753 557
09d1db5c 558
e4eb295d 559 dump_smb(smb_buffer, length);
184ed211 560 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
b387eaeb 561 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
e4eb295d
SF		 562 continue;
563 }
1da177e4 564
e4eb295d
SF		 565
566 task_to_wake = NULL;
567 spin_lock(&GlobalMid_Lock);
568 list_for_each(tmp, &server->pending_mid_q) {
569 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
570
50c2f753 571 if ((mid_entry->mid == smb_buffer->Mid) &&
e4eb295d
SF		 572 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
573 (mid_entry->command == smb_buffer->Command)) {
fb8c4b14 574 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
e4eb295d 575 /* We have a multipart transact2 resp */
4b18f2a9 576 isMultiRsp = true;
fb8c4b14 577 if (mid_entry->resp_buf) {
e4eb295d 578 /* merge response - fix up 1st*/
50c2f753 579 if (coalesce_t2(smb_buffer,
e4eb295d 580 mid_entry->resp_buf)) {
4b18f2a9
SF		 581 mid_entry->multiRsp =
582 true;
e4eb295d
SF		 583 break;
584 } else {
585 /* all parts received */
4b18f2a9
SF		 586 mid_entry->multiEnd =
587 true;
50c2f753 588 goto multi_t2_fnd;
e4eb295d
SF		 589 }
590 } else {
fb8c4b14 591 if (!isLargeBuf) {
b6b38f70 592 cERROR(1, "1st trans2 resp needs bigbuf");
e4eb295d 593 /* BB maybe we can fix this up, switch
50c2f753 594 to already allocated large buffer? */
e4eb295d 595 } else {
cd63499c 596 /* Have first buffer */
e4eb295d
SF		 597 mid_entry->resp_buf =
598 smb_buffer;
4b18f2a9
SF		 599 mid_entry->largeBuf =
600 true;
e4eb295d
SF		 601 bigbuf = NULL;
602 }
603 }
604 break;
50c2f753 605 }
e4eb295d 606 mid_entry->resp_buf = smb_buffer;
4b18f2a9 607 mid_entry->largeBuf = isLargeBuf;
e4eb295d
SF		 608multi_t2_fnd:
609 task_to_wake = mid_entry->tsk;
610 mid_entry->midState = MID_RESPONSE_RECEIVED;
1047abc1
SF		 611#ifdef CONFIG_CIFS_STATS2
612 mid_entry->when_received = jiffies;
613#endif
3a5ff61c
SF		 614 /* so we do not time out requests to server
615 which is still responding (since server could
616 be busy but not dead) */
617 server->lstrp = jiffies;
e4eb295d 618 break;
46810cbf 619 }
1da177e4 620 }
e4eb295d
SF		 621 spin_unlock(&GlobalMid_Lock);
622 if (task_to_wake) {
cd63499c 623 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 624 if (!isMultiRsp) {
cd63499c 625 /* smb buffer will be freed by user thread */
26f57364 626 if (isLargeBuf)
cd63499c 627 bigbuf = NULL;
26f57364 628 else
cd63499c
SF		 629 smallbuf = NULL;
630 }
e4eb295d 631 wake_up_process(task_to_wake);
4b18f2a9
SF		 632 } else if (!is_valid_oplock_break(smb_buffer, server) &&
633 !isMultiRsp) {
b6b38f70
JP		 634 cERROR(1, "No task to wake, unknown frame received! "
635 "NumMids %d", midCount.counter);
50c2f753 636 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 637 sizeof(struct smb_hdr));
3979877e
SF		 638#ifdef CONFIG_CIFS_DEBUG2
639 cifs_dump_detail(smb_buffer);
640 cifs_dump_mids(server);
641#endif /* CIFS_DEBUG2 */
50c2f753 642
e4eb295d
SF		 643 }
644 } /* end while !EXITING */
645
e7ddee90
JL		 646 /* take it off the list, if it's not already */
647 write_lock(&cifs_tcp_ses_lock);
648 list_del_init(&server->tcp_ses_list);
649 write_unlock(&cifs_tcp_ses_lock);
650
1da177e4
LT		 651 spin_lock(&GlobalMid_Lock);
652 server->tcpStatus = CifsExiting;
e691b9d1 653 spin_unlock(&GlobalMid_Lock);
dbdbb876 654 wake_up_all(&server->response_q);
e691b9d1 655
31ca3bc3
SF		 656 /* check if we have blocked requests that need to free */
657 /* Note that cifs_max_pending is normally 50, but
658 can be set at module install time to as little as two */
e691b9d1 659 spin_lock(&GlobalMid_Lock);
fb8c4b14 660 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 661 atomic_set(&server->inFlight, cifs_max_pending - 1);
662 /* We do not want to set the max_pending too low or we
663 could end up with the counter going negative */
1da177e4 664 spin_unlock(&GlobalMid_Lock);
50c2f753 665 /* Although there should not be any requests blocked on
1da177e4 666 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 667 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 668 to the same server - they now will see the session is in exit state
669 and get out of SendReceive. */
670 wake_up_all(&server->request_q);
671 /* give those requests time to exit */
b8643e1b 672 msleep(125);
50c2f753 673
fb8c4b14 674 if (server->ssocket) {
1da177e4
LT		 675 sock_release(csocket);
676 server->ssocket = NULL;
677 }
b8643e1b 678 /* buffer usuallly freed in free_mid - need to free it here on exit */
a8a11d39
MK		 679 cifs_buf_release(bigbuf);
680 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 681 cifs_small_buf_release(smallbuf);
1da177e4 682
14fbf50d
JL		 683 /*
684 * BB: we shouldn't have to do any of this. It shouldn't be
685 * possible to exit from the thread with active SMB sessions
686 */
687 read_lock(&cifs_tcp_ses_lock);
1da177e4 688 if (list_empty(&server->pending_mid_q)) {
09d1db5c
SF		 689 /* loop through server session structures attached to this and
690 mark them dead */
14fbf50d
JL		 691 list_for_each(tmp, &server->smb_ses_list) {
692 ses = list_entry(tmp, struct cifsSesInfo,
693 smb_ses_list);
694 ses->status = CifsExiting;
695 ses->server = NULL;
1da177e4 696 }
14fbf50d 697 read_unlock(&cifs_tcp_ses_lock);
1da177e4 698 } else {
31ca3bc3
SF		 699 /* although we can not zero the server struct pointer yet,
700 since there are active requests which may depnd on them,
701 mark the corresponding SMB sessions as exiting too */
14fbf50d 702 list_for_each(tmp, &server->smb_ses_list) {
31ca3bc3 703 ses = list_entry(tmp, struct cifsSesInfo,
14fbf50d
JL		 704 smb_ses_list);
705 ses->status = CifsExiting;
31ca3bc3
SF		 706 }
707
1da177e4
LT		 708 spin_lock(&GlobalMid_Lock);
709 list_for_each(tmp, &server->pending_mid_q) {
710 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
711 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
b6b38f70
JP		 712 cFYI(1, "Clearing Mid 0x%x - waking up ",
713 mid_entry->mid);
1da177e4 714 task_to_wake = mid_entry->tsk;
26f57364 715 if (task_to_wake)
1da177e4 716 wake_up_process(task_to_wake);
1da177e4
LT		 717 }
718 }
719 spin_unlock(&GlobalMid_Lock);
14fbf50d 720 read_unlock(&cifs_tcp_ses_lock);
1da177e4 721 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 722 msleep(125);
1da177e4
LT		 723 }
724
f191401f 725 if (!list_empty(&server->pending_mid_q)) {
50c2f753 726 /* mpx threads have not exited yet give them
1da177e4 727 at least the smb send timeout time for long ops */
31ca3bc3
SF		 728 /* due to delays on oplock break requests, we need
729 to wait at least 45 seconds before giving up
730 on a request getting a response and going ahead
731 and killing cifsd */
b6b38f70 732 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 733 msleep(46000);
1da177e4
LT		 734 /* if threads still have not exited they are probably never
735 coming home not much else we can do but free the memory */
736 }
1da177e4 737
31ca3bc3
SF		 738 /* last chance to mark ses pointers invalid
739 if there are any pointing to this (e.g
50c2f753 740 if a crazy root user tried to kill cifsd
31ca3bc3 741 kernel thread explicitly this might happen) */
14fbf50d
JL		 742 /* BB: This shouldn't be necessary, see above */
743 read_lock(&cifs_tcp_ses_lock);
744 list_for_each(tmp, &server->smb_ses_list) {
745 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
746 ses->server = NULL;
31ca3bc3 747 }
14fbf50d 748 read_unlock(&cifs_tcp_ses_lock);
31ca3bc3 749
c359cf3c 750 kfree(server->hostname);
b1c8d2b4 751 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 752 kfree(server);
93d0ec85
JL		 753
754 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 755 if (length > 0)
756 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
757 GFP_KERNEL);
50c2f753 758
b1c8d2b4
JL		 759 /* if server->tsk was NULL then wait for a signal before exiting */
760 if (!task_to_wake) {
761 set_current_state(TASK_INTERRUPTIBLE);
762 while (!signal_pending(current)) {
763 schedule();
764 set_current_state(TASK_INTERRUPTIBLE);
765 }
766 set_current_state(TASK_RUNNING);
767 }
768
0468a2cf 769 module_put_and_exit(0);
1da177e4
LT		 770}
771
c359cf3c
JL		 772/* extract the host portion of the UNC string */
773static char *
774extract_hostname(const char *unc)
775{
776 const char *src;
777 char *dst, *delim;
778 unsigned int len;
779
780 /* skip double chars at beginning of string */
781 /* BB: check validity of these bytes? */
782 src = unc + 2;
783
784 /* delimiter between hostname and sharename is always '\\' now */
785 delim = strchr(src, '\\');
786 if (!delim)
787 return ERR_PTR(-EINVAL);
788
789 len = delim - src;
790 dst = kmalloc((len + 1), GFP_KERNEL);
791 if (dst == NULL)
792 return ERR_PTR(-ENOMEM);
793
794 memcpy(dst, src, len);
795 dst[len] = '\0';
796
797 return dst;
798}
799
1da177e4 800static int
50c2f753
SF		 801cifs_parse_mount_options(char *options, const char *devname,
802 struct smb_vol *vol)
1da177e4
LT		 803{
804 char *value;
805 char *data;
806 unsigned int temp_len, i, j;
807 char separator[2];
9b9d6b24
JL		 808 short int override_uid = -1;
809 short int override_gid = -1;
810 bool uid_specified = false;
811 bool gid_specified = false;
1da177e4
LT		 812
813 separator[0] = ',';
50c2f753 814 separator[1] = 0;
1da177e4 815
12e36b2f 816 if (Local_System_Name[0] != 0)
50c2f753 817 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
2cd646a2 818 else {
12e36b2f 819 char *nodename = utsname()->nodename;
50c2f753
SF		 820 int n = strnlen(nodename, 15);
821 memset(vol->source_rfc1001_name, 0x20, 15);
822 for (i = 0; i < n; i++) {
2cd646a2
SF		 823 /* does not have to be perfect mapping since field is
824 informational, only used for servers that do not support
825 port 445 and it can be overridden at mount time */
12e36b2f 826 vol->source_rfc1001_name[i] = toupper(nodename[i]);
2cd646a2 827 }
1da177e4
LT		 828 }
829 vol->source_rfc1001_name[15] = 0;
a10faeb2
SF		 830 /* null target name indicates to use *SMBSERVR default called name
831 if we end up sending RFC1001 session initialize */
832 vol->target_rfc1001_name[0] = 0;
a001e5b5
DH		 833 vol->linux_uid = current_uid(); /* use current_euid() instead? */
834 vol->linux_gid = current_gid();
f55ed1a8
JL		 835
836 /* default to only allowing write access to owner of the mount */
837 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 838
839 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 840 /* default is always to request posix paths. */
841 vol->posix_paths = 1;
a0c9217f
JL		 842 /* default to using server inode numbers where available */
843 vol->server_ino = 1;
ac67055e 844
1da177e4
LT		 845 if (!options)
846 return 1;
847
50c2f753 848 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 849 if (options[4] != 0) {
1da177e4
LT		 850 separator[0] = options[4];
851 options += 5;
852 } else {
b6b38f70 853 cFYI(1, "Null separator not allowed");
1da177e4
LT		 854 }
855 }
50c2f753 856
1da177e4
LT		 857 while ((data = strsep(&options, separator)) != NULL) {
858 if (!*data)
859 continue;
860 if ((value = strchr(data, '=')) != NULL)
861 *value++ = '\0';
862
50c2f753
SF		 863 /* Have to parse this before we parse for "user" */
864 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 865 vol->no_xattr = 0;
50c2f753 866 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 867 vol->no_xattr = 1;
868 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 869 if (!value) {
1da177e4
LT		 870 printk(KERN_WARNING
871 "CIFS: invalid or missing username\n");
872 return 1; /* needs_arg; */
fb8c4b14 873 } else if (!*value) {
4b952a9b
SF		 874 /* null user, ie anonymous, authentication */
875 vol->nullauth = 1;
1da177e4
LT		 876 }
877 if (strnlen(value, 200) < 200) {
878 vol->username = value;
879 } else {
880 printk(KERN_WARNING "CIFS: username too long\n");
881 return 1;
882 }
883 } else if (strnicmp(data, "pass", 4) == 0) {
884 if (!value) {
885 vol->password = NULL;
886 continue;
fb8c4b14 887 } else if (value[0] == 0) {
1da177e4
LT		 888 /* check if string begins with double comma
889 since that would mean the password really
890 does start with a comma, and would not
891 indicate an empty string */
fb8c4b14 892 if (value[1] != separator[0]) {
1da177e4
LT		 893 vol->password = NULL;
894 continue;
895 }
896 }
897 temp_len = strlen(value);
898 /* removed password length check, NTLM passwords
899 can be arbitrarily long */
900
50c2f753 901 /* if comma in password, the string will be
1da177e4
LT		 902 prematurely null terminated. Commas in password are
903 specified across the cifs mount interface by a double
904 comma ie ,, and a comma used as in other cases ie ','
905 as a parameter delimiter/separator is single and due
906 to the strsep above is temporarily zeroed. */
907
908 /* NB: password legally can have multiple commas and
909 the only illegal character in a password is null */
910
50c2f753 911 if ((value[temp_len] == 0) &&
09d1db5c 912 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 913 /* reinsert comma */
914 value[temp_len] = separator[0];
50c2f753
SF		 915 temp_len += 2; /* move after second comma */
916 while (value[temp_len] != 0) {
1da177e4 917 if (value[temp_len] == separator[0]) {
50c2f753 918 if (value[temp_len+1] ==
09d1db5c
SF		 919 separator[0]) {
920 /* skip second comma */
921 temp_len++;
50c2f753 922 } else {
1da177e4
LT		 923 /* single comma indicating start
924 of next parm */
925 break;
926 }
927 }
928 temp_len++;
929 }
fb8c4b14 930 if (value[temp_len] == 0) {
1da177e4
LT		 931 options = NULL;
932 } else {
933 value[temp_len] = 0;
934 /* point option to start of next parm */
935 options = value + temp_len + 1;
936 }
50c2f753 937 /* go from value to value + temp_len condensing
1da177e4
LT		 938 double commas to singles. Note that this ends up
939 allocating a few bytes too many, which is ok */
e915fc49 940 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 941 if (vol->password == NULL) {
50c2f753
SF		 942 printk(KERN_WARNING "CIFS: no memory "
943 "for password\n");
433dc24f
SF		 944 return 1;
945 }
50c2f753 946 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 947 vol->password[j] = value[i];
fb8c4b14 948 if (value[i] == separator[0]
09d1db5c 949 && value[i+1] == separator[0]) {
1da177e4
LT		 950 /* skip second comma */
951 i++;
952 }
953 }
954 vol->password[j] = 0;
955 } else {
e915fc49 956 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 957 if (vol->password == NULL) {
50c2f753
SF		 958 printk(KERN_WARNING "CIFS: no memory "
959 "for password\n");
433dc24f
SF		 960 return 1;
961 }
1da177e4
LT		 962 strcpy(vol->password, value);
963 }
58f7f68f
JL		 964 } else if (!strnicmp(data, "ip", 2) ||
965 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 966 if (!value || !*value) {
967 vol->UNCip = NULL;
50b64e3b
JL		 968 } else if (strnlen(value, INET6_ADDRSTRLEN) <
969 INET6_ADDRSTRLEN) {
1da177e4
LT		 970 vol->UNCip = value;
971 } else {
50c2f753
SF		 972 printk(KERN_WARNING "CIFS: ip address "
973 "too long\n");
1da177e4
LT		 974 return 1;
975 }
50c2f753
SF		 976 } else if (strnicmp(data, "sec", 3) == 0) {
977 if (!value || !*value) {
b6b38f70 978 cERROR(1, "no security value specified");
50c2f753
SF		 979 continue;
980 } else if (strnicmp(value, "krb5i", 5) == 0) {
981 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 982 CIFSSEC_MUST_SIGN;
bf820679 983 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 984 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
985 CIFSSEC_MAY_KRB5; */
b6b38f70 986 cERROR(1, "Krb5 cifs privacy not supported");
bf820679
SF		 987 return 1;
988 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 989 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 990#ifdef CONFIG_CIFS_EXPERIMENTAL
991 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
992 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
993 CIFSSEC_MUST_SIGN;
994 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
995 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
996#endif
bf820679 997 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 998 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 999 CIFSSEC_MUST_SIGN;
bf820679 1000 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1001 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1002 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1003 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1004 CIFSSEC_MUST_SIGN;
bf820679
SF		 1005 } else if (strnicmp(value, "ntlm", 4) == 0) {
1006 /* ntlm is default so can be turned off too */
750d1151 1007 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1008 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1009 /* BB is there a better way to do this? */
750d1151 1010 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1011#ifdef CONFIG_CIFS_WEAK_PW_HASH
1012 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1013 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1014#endif
bf820679 1015 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1016 vol->nullauth = 1;
50c2f753 1017 } else {
b6b38f70 1018 cERROR(1, "bad security option: %s", value);
50c2f753
SF		 1019 return 1;
1020 }
1da177e4
LT		 1021 } else if ((strnicmp(data, "unc", 3) == 0)
1022 || (strnicmp(data, "target", 6) == 0)
1023 || (strnicmp(data, "path", 4) == 0)) {
1024 if (!value || !*value) {
50c2f753
SF		 1025 printk(KERN_WARNING "CIFS: invalid path to "
1026 "network resource\n");
1da177e4
LT		 1027 return 1; /* needs_arg; */
1028 }
1029 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1030 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1031 if (vol->UNC == NULL)
1da177e4 1032 return 1;
50c2f753 1033 strcpy(vol->UNC, value);
1da177e4
LT		 1034 if (strncmp(vol->UNC, "//", 2) == 0) {
1035 vol->UNC[0] = '\\';
1036 vol->UNC[1] = '\\';
50c2f753 1037 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1038 printk(KERN_WARNING
50c2f753
SF		 1039 "CIFS: UNC Path does not begin "
1040 "with // or \\\\ \n");
1da177e4
LT		 1041 return 1;
1042 }
1043 } else {
1044 printk(KERN_WARNING "CIFS: UNC name too long\n");
1045 return 1;
1046 }
1047 } else if ((strnicmp(data, "domain", 3) == 0)
1048 || (strnicmp(data, "workgroup", 5) == 0)) {
1049 if (!value || !*value) {
1050 printk(KERN_WARNING "CIFS: invalid domain name\n");
1051 return 1; /* needs_arg; */
1052 }
1053 /* BB are there cases in which a comma can be valid in
1054 a domain name and need special handling? */
3979877e 1055 if (strnlen(value, 256) < 256) {
1da177e4 1056 vol->domainname = value;
b6b38f70 1057 cFYI(1, "Domain name set");
1da177e4 1058 } else {
50c2f753
SF		 1059 printk(KERN_WARNING "CIFS: domain name too "
1060 "long\n");
1da177e4
LT		 1061 return 1;
1062 }
50c2f753
SF		 1063 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1064 if (!value || !*value) {
1065 printk(KERN_WARNING
1066 "CIFS: invalid path prefix\n");
1067 return 1; /* needs_argument */
1068 }
1069 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1070 if (value[0] != '/')
2fe87f02 1071 temp_len++; /* missing leading slash */
50c2f753
SF		 1072 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1073 if (vol->prepath == NULL)
1074 return 1;
4523cc30 1075 if (value[0] != '/') {
2fe87f02 1076 vol->prepath[0] = '/';
50c2f753 1077 strcpy(vol->prepath+1, value);
2fe87f02 1078 } else
50c2f753 1079 strcpy(vol->prepath, value);
b6b38f70 1080 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1081 } else {
1082 printk(KERN_WARNING "CIFS: prefix too long\n");
1083 return 1;
1084 }
1da177e4
LT		 1085 } else if (strnicmp(data, "iocharset", 9) == 0) {
1086 if (!value || !*value) {
63135e08
SF		 1087 printk(KERN_WARNING "CIFS: invalid iocharset "
1088 "specified\n");
1da177e4
LT		 1089 return 1; /* needs_arg; */
1090 }
1091 if (strnlen(value, 65) < 65) {
50c2f753 1092 if (strnicmp(value, "default", 7))
1da177e4 1093 vol->iocharset = value;
50c2f753
SF		 1094 /* if iocharset not set then load_nls_default
1095 is used by caller */
b6b38f70 1096 cFYI(1, "iocharset set to %s", value);
1da177e4 1097 } else {
63135e08
SF		 1098 printk(KERN_WARNING "CIFS: iocharset name "
1099 "too long.\n");
1da177e4
LT		 1100 return 1;
1101 }
9b9d6b24
JL		 1102 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1103 vol->linux_uid = simple_strtoul(value, &value, 0);
1104 uid_specified = true;
1105 } else if (!strnicmp(data, "forceuid", 8)) {
1106 override_uid = 1;
1107 } else if (!strnicmp(data, "noforceuid", 10)) {
1108 override_uid = 0;
1109 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1110 vol->linux_gid = simple_strtoul(value, &value, 0);
1111 gid_specified = true;
1112 } else if (!strnicmp(data, "forcegid", 8)) {
1113 override_gid = 1;
1114 } else if (!strnicmp(data, "noforcegid", 10)) {
1115 override_gid = 0;
1da177e4
LT		 1116 } else if (strnicmp(data, "file_mode", 4) == 0) {
1117 if (value && *value) {
1118 vol->file_mode =
1119 simple_strtoul(value, &value, 0);
1120 }
1121 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1122 if (value && *value) {
1123 vol->dir_mode =
1124 simple_strtoul(value, &value, 0);
1125 }
1126 } else if (strnicmp(data, "dirmode", 4) == 0) {
1127 if (value && *value) {
1128 vol->dir_mode =
1129 simple_strtoul(value, &value, 0);
1130 }
1131 } else if (strnicmp(data, "port", 4) == 0) {
1132 if (value && *value) {
1133 vol->port =
1134 simple_strtoul(value, &value, 0);
1135 }
1136 } else if (strnicmp(data, "rsize", 5) == 0) {
1137 if (value && *value) {
1138 vol->rsize =
1139 simple_strtoul(value, &value, 0);
1140 }
1141 } else if (strnicmp(data, "wsize", 5) == 0) {
1142 if (value && *value) {
1143 vol->wsize =
1144 simple_strtoul(value, &value, 0);
1145 }
1146 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1147 if (!value || !*value) {
b6b38f70 1148 cERROR(1, "no socket option specified");
6a5fa236
SF		 1149 continue;
1150 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1151 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1152 }
1153 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1154 if (!value || !*value || (*value == ' ')) {
b6b38f70 1155 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1156 } else {
50c2f753
SF		 1157 memset(vol->source_rfc1001_name, 0x20, 15);
1158 for (i = 0; i < 15; i++) {
1159 /* BB are there cases in which a comma can be
1da177e4
LT		 1160 valid in this workstation netbios name (and need
1161 special handling)? */
1162
1163 /* We do not uppercase netbiosname for user */
50c2f753 1164 if (value[i] == 0)
1da177e4 1165 break;
50c2f753
SF		 1166 else
1167 vol->source_rfc1001_name[i] =
1168 value[i];
1da177e4
LT		 1169 }
1170 /* The string has 16th byte zero still from
1171 set at top of the function */
50c2f753
SF		 1172 if ((i == 15) && (value[i] != 0))
1173 printk(KERN_WARNING "CIFS: netbiosname"
1174 " longer than 15 truncated.\n");
a10faeb2
SF		 1175 }
1176 } else if (strnicmp(data, "servern", 7) == 0) {
1177 /* servernetbiosname specified override *SMBSERVER */
1178 if (!value || !*value || (*value == ' ')) {
b6b38f70 1179 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1180 } else {
1181 /* last byte, type, is 0x20 for servr type */
50c2f753 1182 memset(vol->target_rfc1001_name, 0x20, 16);
a10faeb2 1183
50c2f753 1184 for (i = 0; i < 15; i++) {
a10faeb2 1185 /* BB are there cases in which a comma can be
50c2f753
SF		 1186 valid in this workstation netbios name
1187 (and need special handling)? */
a10faeb2 1188
50c2f753
SF		 1189 /* user or mount helper must uppercase
1190 the netbiosname */
1191 if (value[i] == 0)
a10faeb2
SF		 1192 break;
1193 else
50c2f753
SF		 1194 vol->target_rfc1001_name[i] =
1195 value[i];
a10faeb2
SF		 1196 }
1197 /* The string has 16th byte zero still from
1198 set at top of the function */
50c2f753
SF		 1199 if ((i == 15) && (value[i] != 0))
1200 printk(KERN_WARNING "CIFS: server net"
1201 "biosname longer than 15 truncated.\n");
1da177e4
LT		 1202 }
1203 } else if (strnicmp(data, "credentials", 4) == 0) {
1204 /* ignore */
1205 } else if (strnicmp(data, "version", 3) == 0) {
1206 /* ignore */
50c2f753 1207 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1208 /* ignore */
71a394fa
SF		 1209 } else if (strnicmp(data, "rw", 2) == 0) {
1210 /* ignore */
1211 } else if (strnicmp(data, "ro", 2) == 0) {
1212 /* ignore */
edf1ae40
SF		 1213 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1214 vol->noblocksnd = 1;
1215 } else if (strnicmp(data, "noautotune", 10) == 0) {
1216 vol->noautotune = 1;
1da177e4
LT		 1217 } else if ((strnicmp(data, "suid", 4) == 0) ||
1218 (strnicmp(data, "nosuid", 6) == 0) ||
1219 (strnicmp(data, "exec", 4) == 0) ||
1220 (strnicmp(data, "noexec", 6) == 0) ||
1221 (strnicmp(data, "nodev", 5) == 0) ||
1222 (strnicmp(data, "noauto", 6) == 0) ||
1223 (strnicmp(data, "dev", 3) == 0)) {
1224 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1225 uses these opts to set flags, and the flags are read
1226 by the kernel vfs layer before we get here (ie
1227 before read super) so there is no point trying to
1228 parse these options again and set anything and it
1229 is ok to just ignore them */
1da177e4 1230 continue;
1da177e4
LT		 1231 } else if (strnicmp(data, "hard", 4) == 0) {
1232 vol->retry = 1;
1233 } else if (strnicmp(data, "soft", 4) == 0) {
1234 vol->retry = 0;
1235 } else if (strnicmp(data, "perm", 4) == 0) {
1236 vol->noperm = 0;
1237 } else if (strnicmp(data, "noperm", 6) == 0) {
1238 vol->noperm = 1;
6a0b4824
SF		 1239 } else if (strnicmp(data, "mapchars", 8) == 0) {
1240 vol->remap = 1;
1241 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1242 vol->remap = 0;
50c2f753
SF		 1243 } else if (strnicmp(data, "sfu", 3) == 0) {
1244 vol->sfu_emul = 1;
1245 } else if (strnicmp(data, "nosfu", 5) == 0) {
1246 vol->sfu_emul = 0;
2c1b8615
SF		 1247 } else if (strnicmp(data, "nodfs", 5) == 0) {
1248 vol->nodfs = 1;
ac67055e
JA		 1249 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1250 vol->posix_paths = 1;
1251 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1252 vol->posix_paths = 0;
c18c842b
SF		 1253 } else if (strnicmp(data, "nounix", 6) == 0) {
1254 vol->no_linux_ext = 1;
1255 } else if (strnicmp(data, "nolinux", 7) == 0) {
1256 vol->no_linux_ext = 1;
50c2f753 1257 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1258 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1259 vol->nocase = 1;
c46fa8ac
SF		 1260 } else if (strnicmp(data, "brl", 3) == 0) {
1261 vol->nobrl = 0;
50c2f753 1262 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1263 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1264 vol->nobrl = 1;
d3485d37
SF		 1265 /* turn off mandatory locking in mode
1266 if remote locking is turned off since the
1267 local vfs will do advisory */
50c2f753
SF		 1268 if (vol->file_mode ==
1269 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1270 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1271 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1272 /* will take the shorter form "forcemand" as well */
1273 /* This mount option will force use of mandatory
1274 (DOS/Windows style) byte range locks, instead of
1275 using posix advisory byte range locks, even if the
1276 Unix extensions are available and posix locks would
1277 be supported otherwise. If Unix extensions are not
1278 negotiated this has no effect since mandatory locks
1279 would be used (mandatory locks is all that those
1280 those servers support) */
1281 vol->mand_lock = 1;
1da177e4
LT		 1282 } else if (strnicmp(data, "setuids", 7) == 0) {
1283 vol->setuids = 1;
1284 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1285 vol->setuids = 0;
d0a9c078
JL		 1286 } else if (strnicmp(data, "dynperm", 7) == 0) {
1287 vol->dynperm = true;
1288 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1289 vol->dynperm = false;
1da177e4
LT		 1290 } else if (strnicmp(data, "nohard", 6) == 0) {
1291 vol->retry = 0;
1292 } else if (strnicmp(data, "nosoft", 6) == 0) {
1293 vol->retry = 1;
1294 } else if (strnicmp(data, "nointr", 6) == 0) {
1295 vol->intr = 0;
1296 } else if (strnicmp(data, "intr", 4) == 0) {
1297 vol->intr = 1;
be652445
SF		 1298 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1299 vol->nostrictsync = 1;
1300 } else if (strnicmp(data, "strictsync", 10) == 0) {
1301 vol->nostrictsync = 0;
50c2f753 1302 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1303 vol->server_ino = 1;
50c2f753 1304 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1305 vol->server_ino = 0;
50c2f753 1306 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1307 vol->cifs_acl = 1;
1308 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1309 vol->cifs_acl = 0;
50c2f753 1310 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1311 vol->no_psx_acl = 0;
50c2f753 1312 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1313 vol->no_psx_acl = 1;
84210e91
SF		 1314#ifdef CONFIG_CIFS_EXPERIMENTAL
1315 } else if (strnicmp(data, "locallease", 6) == 0) {
1316 vol->local_lease = 1;
1317#endif
50c2f753 1318 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1319 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1320 } else if (strnicmp(data, "seal", 4) == 0) {
1321 /* we do not do the following in secFlags because seal
1322 is a per tree connection (mount) not a per socket
1323 or per-smb connection option in the protocol */
1324 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1325 vol->seal = 1;
50c2f753 1326 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1327 vol->direct_io = 1;
50c2f753 1328 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1329 vol->direct_io = 1;
1da177e4 1330 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1331 printk(KERN_WARNING "CIFS: Mount option noac not "
1332 "supported. Instead set "
1333 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1da177e4 1334 } else
50c2f753
SF		 1335 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1336 data);
1da177e4
LT		 1337 }
1338 if (vol->UNC == NULL) {
4523cc30 1339 if (devname == NULL) {
50c2f753
SF		 1340 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1341 "target\n");
1da177e4
LT		 1342 return 1;
1343 }
1344 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1345 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1346 if (vol->UNC == NULL)
1da177e4 1347 return 1;
50c2f753 1348 strcpy(vol->UNC, devname);
1da177e4
LT		 1349 if (strncmp(vol->UNC, "//", 2) == 0) {
1350 vol->UNC[0] = '\\';
1351 vol->UNC[1] = '\\';
1352 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1353 printk(KERN_WARNING "CIFS: UNC Path does not "
1354 "begin with // or \\\\ \n");
1da177e4
LT		 1355 return 1;
1356 }
7c5e628f
IM		 1357 value = strpbrk(vol->UNC+2, "/\\");
1358 if (value)
1359 *value = '\\';
1da177e4
LT		 1360 } else {
1361 printk(KERN_WARNING "CIFS: UNC name too long\n");
1362 return 1;
1363 }
1364 }
fb8c4b14 1365 if (vol->UNCip == NULL)
1da177e4
LT		 1366 vol->UNCip = &vol->UNC[2];
1367
9b9d6b24
JL		 1368 if (uid_specified)
1369 vol->override_uid = override_uid;
1370 else if (override_uid == 1)
1371 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1372 "specified with no uid= option.\n");
1373
1374 if (gid_specified)
1375 vol->override_gid = override_gid;
1376 else if (override_gid == 1)
1377 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1378 "specified with no gid= option.\n");
1379
1da177e4
LT		 1380 return 0;
1381}
1382
e7ddee90 1383static struct TCP_Server_Info *
bdb97adc 1384cifs_find_tcp_session(struct sockaddr_storage *addr, unsigned short int port)
1da177e4
LT		 1385{
1386 struct list_head *tmp;
e7ddee90
JL		 1387 struct TCP_Server_Info *server;
1388 struct sockaddr_in *addr4 = (struct sockaddr_in *) addr;
1389 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *) addr;
1390
1391 write_lock(&cifs_tcp_ses_lock);
1392 list_for_each(tmp, &cifs_tcp_ses_list) {
1393 server = list_entry(tmp, struct TCP_Server_Info,
1394 tcp_ses_list);
e7ddee90
JL		 1395 /*
1396 * the demux thread can exit on its own while still in CifsNew
1397 * so don't accept any sockets in that state. Since the
1398 * tcpStatus never changes back to CifsNew it's safe to check
1399 * for this without a lock.
1400 */
1401 if (server->tcpStatus == CifsNew)
1b20d672 1402 continue;
1da177e4 1403
bdb97adc
SJ		 1404 switch (addr->ss_family) {
1405 case AF_INET:
1406 if (addr4->sin_addr.s_addr ==
1407 server->addr.sockAddr.sin_addr.s_addr) {
1408 addr4->sin_port = htons(port);
1409 /* user overrode default port? */
1410 if (addr4->sin_port) {
1411 if (addr4->sin_port !=
1412 server->addr.sockAddr.sin_port)
1413 continue;
1414 }
1415 break;
1416 } else
1417 continue;
1418
1419 case AF_INET6:
1420 if (ipv6_addr_equal(&addr6->sin6_addr,
1421 &server->addr.sockAddr6.sin6_addr) &&
ca43e3be 1422 (addr6->sin6_scope_id ==
bdb97adc
SJ		 1423 server->addr.sockAddr6.sin6_scope_id)) {
1424 addr6->sin6_port = htons(port);
1425 /* user overrode default port? */
1426 if (addr6->sin6_port) {
ca43e3be 1427 if (addr6->sin6_port !=
bdb97adc 1428 server->addr.sockAddr6.sin6_port)
ca43e3be 1429 continue;
bdb97adc
SJ		 1430 }
1431 break;
ca43e3be 1432 } else
bdb97adc
SJ		 1433 continue;
1434 }
1b20d672 1435
e7ddee90
JL		 1436 ++server->srv_count;
1437 write_unlock(&cifs_tcp_ses_lock);
b6b38f70 1438 cFYI(1, "Existing tcp session with server found");
e7ddee90 1439 return server;
1da177e4 1440 }
e7ddee90 1441 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1442 return NULL;
1443}
1b20d672 1444
14fbf50d 1445static void
e7ddee90 1446cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1447{
e7ddee90 1448 struct task_struct *task;
1b20d672 1449
e7ddee90
JL		 1450 write_lock(&cifs_tcp_ses_lock);
1451 if (--server->srv_count > 0) {
1452 write_unlock(&cifs_tcp_ses_lock);
1453 return;
1da177e4 1454 }
1b20d672 1455
e7ddee90
JL		 1456 list_del_init(&server->tcp_ses_list);
1457 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1458
e7ddee90
JL		 1459 spin_lock(&GlobalMid_Lock);
1460 server->tcpStatus = CifsExiting;
1461 spin_unlock(&GlobalMid_Lock);
dea570e0 1462
e7ddee90
JL		 1463 task = xchg(&server->tsk, NULL);
1464 if (task)
1465 force_sig(SIGKILL, task);
1da177e4
LT		 1466}
1467
63c038c2
JL		 1468static struct TCP_Server_Info *
1469cifs_get_tcp_session(struct smb_vol *volume_info)
1470{
1471 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1472 struct sockaddr_storage addr;
63c038c2
JL		 1473 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1474 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1475 int rc;
1476
a9ac49d3 1477 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1478
b6b38f70 1479 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1480
1e68b2b2
JL		 1481 if (volume_info->UNCip && volume_info->UNC) {
1482 rc = cifs_convert_address(volume_info->UNCip, &addr);
1483 if (!rc) {
63c038c2
JL		 1484 /* we failed translating address */
1485 rc = -EINVAL;
1486 goto out_err;
1487 }
63c038c2
JL		 1488 } else if (volume_info->UNCip) {
1489 /* BB using ip addr as tcp_ses name to connect to the
1490 DFS root below */
b6b38f70 1491 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1492 rc = -EINVAL;
1493 goto out_err;
1494 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1495 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1496 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1497 rc = -EINVAL;
1498 goto out_err;
1499 }
1500
1501 /* see if we already have a matching tcp_ses */
bdb97adc 1502 tcp_ses = cifs_find_tcp_session(&addr, volume_info->port);
63c038c2
JL		 1503 if (tcp_ses)
1504 return tcp_ses;
1505
1506 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1507 if (!tcp_ses) {
1508 rc = -ENOMEM;
1509 goto out_err;
1510 }
1511
1512 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1513 if (IS_ERR(tcp_ses->hostname)) {
1514 rc = PTR_ERR(tcp_ses->hostname);
1515 goto out_err;
1516 }
1517
1518 tcp_ses->noblocksnd = volume_info->noblocksnd;
1519 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1520 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1521 atomic_set(&tcp_ses->inFlight, 0);
1522 init_waitqueue_head(&tcp_ses->response_q);
1523 init_waitqueue_head(&tcp_ses->request_q);
1524 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1525 mutex_init(&tcp_ses->srv_mutex);
1526 memcpy(tcp_ses->workstation_RFC1001_name,
1527 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1528 memcpy(tcp_ses->server_RFC1001_name,
1529 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1530 tcp_ses->sequence_number = 0;
1531 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1532 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1533
1534 /*
1535 * at this point we are the only ones with the pointer
1536 * to the struct since the kernel thread not created yet
1537 * no need to spinlock this init of tcpStatus or srv_count
1538 */
1539 tcp_ses->tcpStatus = CifsNew;
1540 ++tcp_ses->srv_count;
1541
a9ac49d3 1542 if (addr.ss_family == AF_INET6) {
b6b38f70 1543 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1544 /* BB should we allow ipv6 on port 139? */
1545 /* other OS never observed in Wild doing 139 with v6 */
6debdbc0 1546 sin_server6->sin6_port = htons(volume_info->port);
63c038c2
JL		 1547 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1548 sizeof(struct sockaddr_in6));
d5c5605c 1549 rc = ipv6_connect(tcp_ses);
63c038c2 1550 } else {
6debdbc0 1551 sin_server->sin_port = htons(volume_info->port);
63c038c2
JL		 1552 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1553 sizeof(struct sockaddr_in));
bcf4b106 1554 rc = ipv4_connect(tcp_ses);
63c038c2
JL		 1555 }
1556 if (rc < 0) {
b6b38f70 1557 cERROR(1, "Error connecting to socket. Aborting operation");
63c038c2
JL		 1558 goto out_err;
1559 }
1560
1561 /*
1562 * since we're in a cifs function already, we know that
1563 * this will succeed. No need for try_module_get().
1564 */
1565 __module_get(THIS_MODULE);
1566 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1567 tcp_ses, "cifsd");
1568 if (IS_ERR(tcp_ses->tsk)) {
1569 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1570 cERROR(1, "error %d create cifsd thread", rc);
63c038c2
JL		 1571 module_put(THIS_MODULE);
1572 goto out_err;
1573 }
1574
1575 /* thread spawned, put it on the list */
1576 write_lock(&cifs_tcp_ses_lock);
1577 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1578 write_unlock(&cifs_tcp_ses_lock);
1579
1580 return tcp_ses;
1581
1582out_err:
1583 if (tcp_ses) {
8347a5cd
SF		 1584 if (!IS_ERR(tcp_ses->hostname))
1585 kfree(tcp_ses->hostname);
63c038c2
JL		 1586 if (tcp_ses->ssocket)
1587 sock_release(tcp_ses->ssocket);
1588 kfree(tcp_ses);
1589 }
1590 return ERR_PTR(rc);
1591}
1592
14fbf50d
JL		 1593static struct cifsSesInfo *
1594cifs_find_smb_ses(struct TCP_Server_Info *server, char *username)
1da177e4
LT		 1595{
1596 struct list_head *tmp;
14fbf50d 1597 struct cifsSesInfo *ses;
dea570e0 1598
14fbf50d
JL		 1599 write_lock(&cifs_tcp_ses_lock);
1600 list_for_each(tmp, &server->smb_ses_list) {
1601 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
1602 if (strncmp(ses->userName, username, MAX_USERNAME_SIZE))
dea570e0
SF		 1603 continue;
1604
14fbf50d
JL		 1605 ++ses->ses_count;
1606 write_unlock(&cifs_tcp_ses_lock);
1607 return ses;
1608 }
1609 write_unlock(&cifs_tcp_ses_lock);
1610 return NULL;
1611}
dea570e0 1612
14fbf50d
JL		 1613static void
1614cifs_put_smb_ses(struct cifsSesInfo *ses)
1615{
1616 int xid;
1617 struct TCP_Server_Info *server = ses->server;
dea570e0 1618
36988c76 1619 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
14fbf50d
JL		 1620 write_lock(&cifs_tcp_ses_lock);
1621 if (--ses->ses_count > 0) {
1622 write_unlock(&cifs_tcp_ses_lock);
1623 return;
1624 }
dea570e0 1625
14fbf50d
JL		 1626 list_del_init(&ses->smb_ses_list);
1627 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1628
14fbf50d
JL		 1629 if (ses->status == CifsGood) {
1630 xid = GetXid();
1631 CIFSSMBLogoff(xid, ses);
1632 _FreeXid(xid);
1633 }
1634 sesInfoFree(ses);
1635 cifs_put_tcp_session(server);
1636}
dea570e0 1637
36988c76
JL		 1638static struct cifsSesInfo *
1639cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1640{
1641 int rc = -ENOMEM, xid;
1642 struct cifsSesInfo *ses;
1643
1644 xid = GetXid();
1645
1646 ses = cifs_find_smb_ses(server, volume_info->username);
1647 if (ses) {
1648 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1649
1650 /* existing SMB ses has a server reference already */
1651 cifs_put_tcp_session(server);
1652
1653 mutex_lock(&ses->session_mutex);
198b5682
JL		 1654 rc = cifs_negotiate_protocol(xid, ses);
1655 if (rc) {
1656 mutex_unlock(&ses->session_mutex);
1657 /* problem -- put our ses reference */
1658 cifs_put_smb_ses(ses);
1659 FreeXid(xid);
1660 return ERR_PTR(rc);
1661 }
36988c76
JL		 1662 if (ses->need_reconnect) {
1663 cFYI(1, "Session needs reconnect");
1664 rc = cifs_setup_session(xid, ses,
1665 volume_info->local_nls);
1666 if (rc) {
1667 mutex_unlock(&ses->session_mutex);
1668 /* problem -- put our reference */
1669 cifs_put_smb_ses(ses);
1670 FreeXid(xid);
1671 return ERR_PTR(rc);
1672 }
1673 }
1674 mutex_unlock(&ses->session_mutex);
1675 FreeXid(xid);
1676 return ses;
1677 }
1678
1679 cFYI(1, "Existing smb sess not found");
1680 ses = sesInfoAlloc();
1681 if (ses == NULL)
1682 goto get_ses_fail;
1683
1684 /* new SMB session uses our server ref */
1685 ses->server = server;
1686 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1687 sprintf(ses->serverName, "%pI6",
1688 &server->addr.sockAddr6.sin6_addr);
1689 else
1690 sprintf(ses->serverName, "%pI4",
1691 &server->addr.sockAddr.sin_addr.s_addr);
1692
1693 if (volume_info->username)
1694 strncpy(ses->userName, volume_info->username,
1695 MAX_USERNAME_SIZE);
1696
1697 /* volume_info->password freed at unmount */
1698 if (volume_info->password) {
1699 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1700 if (!ses->password)
1701 goto get_ses_fail;
1702 }
1703 if (volume_info->domainname) {
1704 int len = strlen(volume_info->domainname);
1705 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1706 if (ses->domainName)
1707 strcpy(ses->domainName, volume_info->domainname);
1708 }
1709 ses->linux_uid = volume_info->linux_uid;
1710 ses->overrideSecFlg = volume_info->secFlg;
1711
1712 mutex_lock(&ses->session_mutex);
198b5682
JL		 1713 rc = cifs_negotiate_protocol(xid, ses);
1714 if (!rc)
1715 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76
JL		 1716 mutex_unlock(&ses->session_mutex);
1717 if (rc)
1718 goto get_ses_fail;
1719
1720 /* success, put it on the list */
1721 write_lock(&cifs_tcp_ses_lock);
1722 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1723 write_unlock(&cifs_tcp_ses_lock);
1724
1725 FreeXid(xid);
1726 return ses;
1727
1728get_ses_fail:
1729 sesInfoFree(ses);
1730 FreeXid(xid);
1731 return ERR_PTR(rc);
1732}
1733
f1987b44
JL		 1734static struct cifsTconInfo *
1735cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1736{
1737 struct list_head *tmp;
1738 struct cifsTconInfo *tcon;
1739
1740 write_lock(&cifs_tcp_ses_lock);
1741 list_for_each(tmp, &ses->tcon_list) {
1742 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1743 if (tcon->tidStatus == CifsExiting)
1744 continue;
1745 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
dea570e0
SF		 1746 continue;
1747
f1987b44
JL		 1748 ++tcon->tc_count;
1749 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1750 return tcon;
1da177e4 1751 }
f1987b44 1752 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1753 return NULL;
1754}
1755
f1987b44
JL		 1756static void
1757cifs_put_tcon(struct cifsTconInfo *tcon)
1758{
1759 int xid;
1760 struct cifsSesInfo *ses = tcon->ses;
1761
d00c28de 1762 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
f1987b44
JL		 1763 write_lock(&cifs_tcp_ses_lock);
1764 if (--tcon->tc_count > 0) {
1765 write_unlock(&cifs_tcp_ses_lock);
1766 return;
1767 }
1768
1769 list_del_init(&tcon->tcon_list);
1770 write_unlock(&cifs_tcp_ses_lock);
1771
1772 xid = GetXid();
1773 CIFSSMBTDis(xid, tcon);
1774 _FreeXid(xid);
1775
f1987b44
JL		 1776 tconInfoFree(tcon);
1777 cifs_put_smb_ses(ses);
1778}
1779
d00c28de
JL		 1780static struct cifsTconInfo *
1781cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1782{
1783 int rc, xid;
1784 struct cifsTconInfo *tcon;
1785
1786 tcon = cifs_find_tcon(ses, volume_info->UNC);
1787 if (tcon) {
1788 cFYI(1, "Found match on UNC path");
1789 /* existing tcon already has a reference */
1790 cifs_put_smb_ses(ses);
1791 if (tcon->seal != volume_info->seal)
1792 cERROR(1, "transport encryption setting "
1793 "conflicts with existing tid");
1794 return tcon;
1795 }
1796
1797 tcon = tconInfoAlloc();
1798 if (tcon == NULL) {
1799 rc = -ENOMEM;
1800 goto out_fail;
1801 }
1802
1803 tcon->ses = ses;
1804 if (volume_info->password) {
1805 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1806 if (!tcon->password) {
1807 rc = -ENOMEM;
1808 goto out_fail;
1809 }
1810 }
1811
1812 if (strchr(volume_info->UNC + 3, '\\') == NULL
1813 && strchr(volume_info->UNC + 3, '/') == NULL) {
1814 cERROR(1, "Missing share name");
1815 rc = -ENODEV;
1816 goto out_fail;
1817 }
1818
1819 /* BB Do we need to wrap session_mutex around
1820 * this TCon call and Unix SetFS as
1821 * we do on SessSetup and reconnect? */
1822 xid = GetXid();
1823 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1824 FreeXid(xid);
1825 cFYI(1, "CIFS Tcon rc = %d", rc);
1826 if (rc)
1827 goto out_fail;
1828
1829 if (volume_info->nodfs) {
1830 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1831 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1832 }
1833 tcon->seal = volume_info->seal;
1834 /* we can have only one retry value for a connection
1835 to a share so for resources mounted more than once
1836 to the same server share the last value passed in
1837 for the retry flag is used */
1838 tcon->retry = volume_info->retry;
1839 tcon->nocase = volume_info->nocase;
1840 tcon->local_lease = volume_info->local_lease;
1841
1842 write_lock(&cifs_tcp_ses_lock);
1843 list_add(&tcon->tcon_list, &ses->tcon_list);
1844 write_unlock(&cifs_tcp_ses_lock);
1845
1846 return tcon;
1847
1848out_fail:
1849 tconInfoFree(tcon);
1850 return ERR_PTR(rc);
1851}
1852
1853
1da177e4 1854int
50c2f753
SF		 1855get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
1856 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 1857 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 1858{
1859 char *temp_unc;
1860 int rc = 0;
1861
1862 *pnum_referrals = 0;
366781c1 1863 *preferrals = NULL;
1da177e4
LT		 1864
1865 if (pSesInfo->ipc_tid == 0) {
1866 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 1867 strnlen(pSesInfo->serverName,
1868 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 1869 + 1 + 4 /* slash IPC$ */ + 2,
1870 GFP_KERNEL);
1871 if (temp_unc == NULL)
1872 return -ENOMEM;
1873 temp_unc[0] = '\\';
1874 temp_unc[1] = '\\';
1875 strcpy(temp_unc + 2, pSesInfo->serverName);
1876 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
1877 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 1878 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 1879 kfree(temp_unc);
1880 }
1881 if (rc == 0)
c2cf07d5 1882 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 1883 pnum_referrals, nls_codepage, remap);
366781c1
SF		 1884 /* BB map targetUNCs to dfs_info3 structures, here or
1885 in CIFSGetDFSRefer BB */
1da177e4
LT		 1886
1887 return rc;
1888}
1889
09e50d55
JL		 1890#ifdef CONFIG_DEBUG_LOCK_ALLOC
1891static struct lock_class_key cifs_key[2];
1892static struct lock_class_key cifs_slock_key[2];
1893
1894static inline void
1895cifs_reclassify_socket4(struct socket *sock)
1896{
1897 struct sock *sk = sock->sk;
1898 BUG_ON(sock_owned_by_user(sk));
1899 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
1900 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
1901}
1902
1903static inline void
1904cifs_reclassify_socket6(struct socket *sock)
1905{
1906 struct sock *sk = sock->sk;
1907 BUG_ON(sock_owned_by_user(sk));
1908 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
1909 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
1910}
1911#else
1912static inline void
1913cifs_reclassify_socket4(struct socket *sock)
1914{
1915}
1916
1917static inline void
1918cifs_reclassify_socket6(struct socket *sock)
1919{
1920}
1921#endif
1922
1da177e4 1923/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 1924static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 1925{
50c2f753 1926 unsigned int i, j;
1da177e4 1927
50c2f753 1928 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 1929 /* mask a nibble at a time and encode */
1930 target[j] = 'A' + (0x0F & (source[i] >> 4));
1931 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 1932 j += 2;
1da177e4
LT		 1933 }
1934
1935}
1936
1937
1938static int
bcf4b106 1939ipv4_connect(struct TCP_Server_Info *server)
1da177e4
LT		 1940{
1941 int rc = 0;
6a5fa236 1942 int val;
bcf4b106 1943 bool connected = false;
1da177e4 1944 __be16 orig_port = 0;
bcf4b106 1945 struct socket *socket = server->ssocket;
1da177e4 1946
bcf4b106 1947 if (socket == NULL) {
50c2f753 1948 rc = sock_create_kern(PF_INET, SOCK_STREAM,
bcf4b106 1949 IPPROTO_TCP, &socket);
1da177e4 1950 if (rc < 0) {
b6b38f70 1951 cERROR(1, "Error %d creating socket", rc);
1da177e4 1952 return rc;
1da177e4 1953 }
bcf4b106
JL		 1954
1955 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 1956 cFYI(1, "Socket created");
bcf4b106
JL		 1957 server->ssocket = socket;
1958 socket->sk->sk_allocation = GFP_NOFS;
1959 cifs_reclassify_socket4(socket);
1da177e4
LT		 1960 }
1961
bcf4b106
JL		 1962 /* user overrode default port */
1963 if (server->addr.sockAddr.sin_port) {
1964 rc = socket->ops->connect(socket, (struct sockaddr *)
1965 &server->addr.sockAddr,
1966 sizeof(struct sockaddr_in), 0);
1da177e4 1967 if (rc >= 0)
bcf4b106 1968 connected = true;
50c2f753 1969 }
1da177e4 1970
fb8c4b14 1971 if (!connected) {
50c2f753 1972 /* save original port so we can retry user specified port
1da177e4 1973 later if fall back ports fail this time */
bcf4b106 1974 orig_port = server->addr.sockAddr.sin_port;
1da177e4
LT		 1975
1976 /* do not retry on the same port we just failed on */
bcf4b106
JL		 1977 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
1978 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
1979 rc = socket->ops->connect(socket,
1980 (struct sockaddr *)
1981 &server->addr.sockAddr,
1982 sizeof(struct sockaddr_in), 0);
1da177e4 1983 if (rc >= 0)
bcf4b106 1984 connected = true;
1da177e4
LT		 1985 }
1986 }
1987 if (!connected) {
bcf4b106
JL		 1988 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
1989 rc = socket->ops->connect(socket, (struct sockaddr *)
1990 &server->addr.sockAddr,
6345a3a8 1991 sizeof(struct sockaddr_in), 0);
50c2f753 1992 if (rc >= 0)
bcf4b106 1993 connected = true;
1da177e4
LT		 1994 }
1995
1996 /* give up here - unless we want to retry on different
1997 protocol families some day */
1998 if (!connected) {
fb8c4b14 1999 if (orig_port)
bcf4b106 2000 server->addr.sockAddr.sin_port = orig_port;
b6b38f70 2001 cFYI(1, "Error %d connecting to server via ipv4", rc);
bcf4b106
JL		 2002 sock_release(socket);
2003 server->ssocket = NULL;
1da177e4
LT		 2004 return rc;
2005 }
bcf4b106
JL		 2006
2007
2008 /*
2009 * Eventually check for other socket options to change from
2010 * the default. sock_setsockopt not used because it expects
2011 * user space buffer
2012 */
2013 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2014 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2015
b387eaeb 2016 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2017 if (server->noautotune) {
2018 if (socket->sk->sk_sndbuf < (200 * 1024))
2019 socket->sk->sk_sndbuf = 200 * 1024;
2020 if (socket->sk->sk_rcvbuf < (140 * 1024))
2021 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2022 }
1da177e4 2023
6a5fa236
SF		 2024 if (server->tcp_nodelay) {
2025 val = 1;
2026 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2027 (char *)&val, sizeof(val));
2028 if (rc)
b6b38f70 2029 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2030 }
2031
b6b38f70 2032 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2033 socket->sk->sk_sndbuf,
b6b38f70 2034 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2035
1da177e4 2036 /* send RFC1001 sessinit */
bcf4b106 2037 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1da177e4 2038 /* some servers require RFC1001 sessinit before sending
50c2f753 2039 negprot - BB check reconnection in case where second
1da177e4 2040 sessinit is sent but no second negprot */
50c2f753
SF		 2041 struct rfc1002_session_packet *ses_init_buf;
2042 struct smb_hdr *smb_buf;
2043 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2044 GFP_KERNEL);
fb8c4b14 2045 if (ses_init_buf) {
1da177e4 2046 ses_init_buf->trailer.session_req.called_len = 32;
bcf4b106
JL		 2047 if (server->server_RFC1001_name &&
2048 server->server_RFC1001_name[0] != 0)
8ecaf67a
JL		 2049 rfc1002mangle(ses_init_buf->trailer.
2050 session_req.called_name,
bcf4b106 2051 server->server_RFC1001_name,
8ecaf67a 2052 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2053 else
8ecaf67a
JL		 2054 rfc1002mangle(ses_init_buf->trailer.
2055 session_req.called_name,
2056 DEFAULT_CIFS_CALLED_NAME,
2057 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 2058
1da177e4 2059 ses_init_buf->trailer.session_req.calling_len = 32;
bcf4b106 2060
1da177e4
LT		 2061 /* calling name ends in null (byte 16) from old smb
2062 convention. */
bcf4b106
JL		 2063 if (server->workstation_RFC1001_name &&
2064 server->workstation_RFC1001_name[0] != 0)
8ecaf67a
JL		 2065 rfc1002mangle(ses_init_buf->trailer.
2066 session_req.calling_name,
bcf4b106 2067 server->workstation_RFC1001_name,
8ecaf67a 2068 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2069 else
8ecaf67a
JL		 2070 rfc1002mangle(ses_init_buf->trailer.
2071 session_req.calling_name,
2072 "LINUX_CIFS_CLNT",
2073 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2074
1da177e4
LT		 2075 ses_init_buf->trailer.session_req.scope1 = 0;
2076 ses_init_buf->trailer.session_req.scope2 = 0;
2077 smb_buf = (struct smb_hdr *)ses_init_buf;
2078 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2079 smb_buf->smb_buf_length = 0x81000044;
0496e02d 2080 rc = smb_send(server, smb_buf, 0x44);
1da177e4 2081 kfree(ses_init_buf);
50c2f753 2082 msleep(1); /* RFC1001 layer in at least one server
083d3a2c
SF		 2083 requires very short break before negprot
2084 presumably because not expecting negprot
2085 to follow so fast. This is a simple
50c2f753 2086 solution that works without
083d3a2c
SF		 2087 complicating the code and causes no
2088 significant slowing down on mount
2089 for everyone else */
1da177e4 2090 }
50c2f753 2091 /* else the negprot may still work without this
1da177e4 2092 even though malloc failed */
50c2f753 2093
1da177e4 2094 }
50c2f753 2095
1da177e4
LT		 2096 return rc;
2097}
2098
2099static int
d5c5605c 2100ipv6_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2101{
2102 int rc = 0;
6a5fa236 2103 int val;
d5c5605c 2104 bool connected = false;
1da177e4 2105 __be16 orig_port = 0;
d5c5605c 2106 struct socket *socket = server->ssocket;
1da177e4 2107
d5c5605c 2108 if (socket == NULL) {
50c2f753 2109 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
d5c5605c 2110 IPPROTO_TCP, &socket);
1da177e4 2111 if (rc < 0) {
b6b38f70 2112 cERROR(1, "Error %d creating ipv6 socket", rc);
d5c5605c 2113 socket = NULL;
1da177e4 2114 return rc;
1da177e4 2115 }
1da177e4 2116
d5c5605c 2117 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2118 cFYI(1, "ipv6 Socket created");
d5c5605c
JL		 2119 server->ssocket = socket;
2120 socket->sk->sk_allocation = GFP_NOFS;
2121 cifs_reclassify_socket6(socket);
2122 }
1da177e4 2123
d5c5605c
JL		 2124 /* user overrode default port */
2125 if (server->addr.sockAddr6.sin6_port) {
2126 rc = socket->ops->connect(socket,
2127 (struct sockaddr *) &server->addr.sockAddr6,
6345a3a8 2128 sizeof(struct sockaddr_in6), 0);
1da177e4 2129 if (rc >= 0)
d5c5605c 2130 connected = true;
50c2f753 2131 }
1da177e4 2132
fb8c4b14 2133 if (!connected) {
50c2f753 2134 /* save original port so we can retry user specified port
1da177e4
LT		 2135 later if fall back ports fail this time */
2136
d5c5605c 2137 orig_port = server->addr.sockAddr6.sin6_port;
1da177e4 2138 /* do not retry on the same port we just failed on */
d5c5605c
JL		 2139 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2140 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2141 rc = socket->ops->connect(socket, (struct sockaddr *)
2142 &server->addr.sockAddr6,
6345a3a8 2143 sizeof(struct sockaddr_in6), 0);
1da177e4 2144 if (rc >= 0)
d5c5605c 2145 connected = true;
1da177e4
LT		 2146 }
2147 }
2148 if (!connected) {
d5c5605c
JL		 2149 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2150 rc = socket->ops->connect(socket, (struct sockaddr *)
2151 &server->addr.sockAddr6,
2152 sizeof(struct sockaddr_in6), 0);
50c2f753 2153 if (rc >= 0)
d5c5605c 2154 connected = true;
1da177e4
LT		 2155 }
2156
2157 /* give up here - unless we want to retry on different
2158 protocol families some day */
2159 if (!connected) {
fb8c4b14 2160 if (orig_port)
d5c5605c 2161 server->addr.sockAddr6.sin6_port = orig_port;
b6b38f70 2162 cFYI(1, "Error %d connecting to server via ipv6", rc);
d5c5605c
JL		 2163 sock_release(socket);
2164 server->ssocket = NULL;
1da177e4
LT		 2165 return rc;
2166 }
edf1ae40 2167
d5c5605c
JL		 2168 /*
2169 * Eventually check for other socket options to change from
2170 * the default. sock_setsockopt not used because it expects
2171 * user space buffer
2172 */
2173 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2174 socket->sk->sk_sndtimeo = 5 * HZ;
6a5fa236
SF		 2175
2176 if (server->tcp_nodelay) {
2177 val = 1;
2178 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2179 (char *)&val, sizeof(val));
2180 if (rc)
b6b38f70 2181 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2182 }
2183
d5c5605c 2184 server->ssocket = socket;
50c2f753 2185
1da177e4
LT		 2186 return rc;
2187}
2188
50c2f753
SF		 2189void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2190 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2191{
2192 /* if we are reconnecting then should we check to see if
2193 * any requested capabilities changed locally e.g. via
2194 * remount but we can not do much about it here
2195 * if they have (even if we could detect it by the following)
2196 * Perhaps we could add a backpointer to array of sb from tcon
2197 * or if we change to make all sb to same share the same
2198 * sb as NFS - then we only have one backpointer to sb.
2199 * What if we wanted to mount the server share twice once with
2200 * and once without posixacls or posix paths? */
2201 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2202
c18c842b
SF		 2203 if (vol_info && vol_info->no_linux_ext) {
2204 tcon->fsUnixInfo.Capability = 0;
2205 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2206 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2207 return;
2208 } else if (vol_info)
2209 tcon->unix_ext = 1; /* Unix Extensions supported */
2210
2211 if (tcon->unix_ext == 0) {
b6b38f70 2212 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2213 return;
2214 }
50c2f753 2215
fb8c4b14 2216 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2217 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2218
8af18971
SF		 2219 /* check for reconnect case in which we do not
2220 want to change the mount behavior if we can avoid it */
fb8c4b14 2221 if (vol_info == NULL) {
50c2f753 2222 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2223 originally at mount time */
2224 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2225 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2226 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2227 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2228 cERROR(1, "POSIXPATH support change");
8af18971 2229 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2230 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2231 cERROR(1, "possible reconnect error");
2232 cERROR(1, "server disabled POSIX path support");
11b6d645 2233 }
8af18971 2234 }
50c2f753 2235
8af18971 2236 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2237 if (vol_info && vol_info->no_psx_acl)
8af18971 2238 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2239 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2240 cFYI(1, "negotiated posix acl support");
fb8c4b14 2241 if (sb)
8af18971
SF		 2242 sb->s_flags |= MS_POSIXACL;
2243 }
2244
75865f8c 2245 if (vol_info && vol_info->posix_paths == 0)
8af18971 2246 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2247 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2248 cFYI(1, "negotiate posix pathnames");
75865f8c 2249 if (sb)
50c2f753 2250 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2251 CIFS_MOUNT_POSIX_PATHS;
2252 }
50c2f753 2253
984acfe1
SF		 2254 /* We might be setting the path sep back to a different
2255 form if we are reconnecting and the server switched its
50c2f753 2256 posix path capability for this share */
75865f8c 2257 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2258 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2259
2260 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2261 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2262 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2263 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2264 }
2265 }
50c2f753
SF		 2266
2267
b6b38f70 2268 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2269#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2270 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2271 cFYI(1, "FCNTL cap");
75865f8c 2272 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2273 cFYI(1, "EXTATTR cap");
75865f8c 2274 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2275 cFYI(1, "POSIX path cap");
75865f8c 2276 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2277 cFYI(1, "XATTR cap");
75865f8c 2278 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2279 cFYI(1, "POSIX ACL cap");
75865f8c 2280 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2281 cFYI(1, "very large read cap");
75865f8c 2282 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2283 cFYI(1, "very large write cap");
8af18971
SF		 2284#endif /* CIFS_DEBUG2 */
2285 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2286 if (vol_info == NULL) {
b6b38f70 2287 cFYI(1, "resetting capabilities failed");
442aa310 2288 } else
b6b38f70 2289 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2290 "with the server failed. Consider "
2291 "mounting with the Unix Extensions\n"
2292 "disabled, if problems are found, "
2293 "by specifying the nounix mount "
b6b38f70 2294 "option.");
5a44b319 2295
8af18971
SF		 2296 }
2297 }
2298}
2299
03a143c9
SF		 2300static void
2301convert_delimiter(char *path, char delim)
2302{
2303 int i;
c2d68ea6 2304 char old_delim;
03a143c9
SF		 2305
2306 if (path == NULL)
2307 return;
2308
582d21e5 2309 if (delim == '/')
c2d68ea6
SF		 2310 old_delim = '\\';
2311 else
2312 old_delim = '/';
2313
03a143c9 2314 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2315 if (path[i] == old_delim)
03a143c9
SF		 2316 path[i] = delim;
2317 }
2318}
2319
3b795210
SF		 2320static void setup_cifs_sb(struct smb_vol *pvolume_info,
2321 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2322{
3b795210 2323 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2324 cERROR(1, "rsize %d too large, using MaxBufSize",
2325 pvolume_info->rsize);
3b795210
SF		 2326 cifs_sb->rsize = CIFSMaxBufSize;
2327 } else if ((pvolume_info->rsize) &&
2328 (pvolume_info->rsize <= CIFSMaxBufSize))
2329 cifs_sb->rsize = pvolume_info->rsize;
2330 else /* default */
2331 cifs_sb->rsize = CIFSMaxBufSize;
2332
2333 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
b6b38f70
JP		 2334 cERROR(1, "wsize %d too large, using 4096 instead",
2335 pvolume_info->wsize);
3b795210
SF		 2336 cifs_sb->wsize = 4096;
2337 } else if (pvolume_info->wsize)
2338 cifs_sb->wsize = pvolume_info->wsize;
2339 else
2340 cifs_sb->wsize = min_t(const int,
2341 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2342 127*1024);
2343 /* old default of CIFSMaxBufSize was too small now
2344 that SMB Write2 can send multiple pages in kvec.
2345 RFC1001 does not describe what happens when frame
2346 bigger than 128K is sent so use that as max in
2347 conjunction with 52K kvec constraint on arch with 4K
2348 page size */
2349
2350 if (cifs_sb->rsize < 2048) {
2351 cifs_sb->rsize = 2048;
2352 /* Windows ME may prefer this */
b6b38f70 2353 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2354 }
2355 /* calculate prepath */
2356 cifs_sb->prepath = pvolume_info->prepath;
2357 if (cifs_sb->prepath) {
2358 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2359 /* we can not convert the / to \ in the path
2360 separators in the prefixpath yet because we do not
2361 know (until reset_cifs_unix_caps is called later)
2362 whether POSIX PATH CAP is available. We normalize
2363 the / to \ after reset_cifs_unix_caps is called */
2364 pvolume_info->prepath = NULL;
2365 } else
2366 cifs_sb->prepathlen = 0;
2367 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2368 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2369 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2370 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2371 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2372 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210
SF		 2373
2374 if (pvolume_info->noperm)
2375 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2376 if (pvolume_info->setuids)
2377 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2378 if (pvolume_info->server_ino)
2379 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2380 if (pvolume_info->remap)
2381 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2382 if (pvolume_info->no_xattr)
2383 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2384 if (pvolume_info->sfu_emul)
2385 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2386 if (pvolume_info->nobrl)
2387 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2388 if (pvolume_info->nostrictsync)
4717bed6 2389 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2390 if (pvolume_info->mand_lock)
2391 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2392 if (pvolume_info->cifs_acl)
2393 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2394 if (pvolume_info->override_uid)
2395 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2396 if (pvolume_info->override_gid)
2397 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2398 if (pvolume_info->dynperm)
2399 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2400 if (pvolume_info->direct_io) {
b6b38f70 2401 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2402 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2403 }
2404
2405 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2406 cERROR(1, "mount option dynperm ignored if cifsacl "
2407 "mount option supported");
b1c8d2b4
JL		 2408}
2409
e4cce94c
IM		 2410static int
2411is_path_accessible(int xid, struct cifsTconInfo *tcon,
2412 struct cifs_sb_info *cifs_sb, const char *full_path)
2413{
2414 int rc;
e4cce94c
IM		 2415 FILE_ALL_INFO *pfile_info;
2416
e4cce94c
IM		 2417 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2418 if (pfile_info == NULL)
2419 return -ENOMEM;
2420
2421 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2422 0 /* not legacy */, cifs_sb->local_nls,
2423 cifs_sb->mnt_cifs_flags &
2424 CIFS_MOUNT_MAP_SPECIAL_CHR);
2425 kfree(pfile_info);
2426 return rc;
2427}
2428
1bfe73c2
IM		 2429static void
2430cleanup_volume_info(struct smb_vol **pvolume_info)
2431{
2432 struct smb_vol *volume_info;
2433
ad6cca6d 2434 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2435 return;
2436
2437 volume_info = *pvolume_info;
2438 kzfree(volume_info->password);
2439 kfree(volume_info->UNC);
2440 kfree(volume_info->prepath);
2441 kfree(volume_info);
2442 *pvolume_info = NULL;
2443 return;
2444}
2445
2d6d589d 2446#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2447/* build_path_to_root returns full path to root when
2448 * we do not have an exiting connection (tcon) */
2449static char *
2450build_unc_path_to_root(const struct smb_vol *volume_info,
2451 const struct cifs_sb_info *cifs_sb)
2452{
2453 char *full_path;
2454
2455 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2456 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2457 if (full_path == NULL)
2458 return ERR_PTR(-ENOMEM);
2459
2460 strncpy(full_path, volume_info->UNC, unc_len);
2461 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2462 int i;
2463 for (i = 0; i < unc_len; i++) {
2464 if (full_path[i] == '\\')
2465 full_path[i] = '/';
2466 }
2467 }
2468
2469 if (cifs_sb->prepathlen)
2470 strncpy(full_path + unc_len, cifs_sb->prepath,
2471 cifs_sb->prepathlen);
2472
2473 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2474 return full_path;
2475}
2d6d589d 2476#endif
1bfe73c2 2477
1da177e4
LT		 2478int
2479cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
1bfe73c2 2480 char *mount_data_global, const char *devname)
1da177e4 2481{
a2934c7b 2482 int rc;
1da177e4 2483 int xid;
7586b765 2484 struct smb_vol *volume_info;
a2934c7b
JL		 2485 struct cifsSesInfo *pSesInfo;
2486 struct cifsTconInfo *tcon;
2487 struct TCP_Server_Info *srvTcp;
e4cce94c 2488 char *full_path;
2d6d589d
SF		 2489 char *mount_data = mount_data_global;
2490#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2491 struct dfs_info3_param *referrals = NULL;
2492 unsigned int num_referrals = 0;
5c2503a8 2493 int referral_walks_count = 0;
1bfe73c2 2494try_mount_again:
2d6d589d 2495#endif
a2934c7b
JL		 2496 rc = 0;
2497 tcon = NULL;
2498 pSesInfo = NULL;
2499 srvTcp = NULL;
1bfe73c2 2500 full_path = NULL;
1da177e4
LT		 2501
2502 xid = GetXid();
2503
7586b765
JL		 2504 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2505 if (!volume_info) {
2506 rc = -ENOMEM;
2507 goto out;
2508 }
50c2f753 2509
7586b765 2510 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
70fe7dc0
JL		 2511 rc = -EINVAL;
2512 goto out;
1da177e4
LT		 2513 }
2514
7586b765 2515 if (volume_info->nullauth) {
b6b38f70 2516 cFYI(1, "null user");
7586b765
JL		 2517 volume_info->username = "";
2518 } else if (volume_info->username) {
1da177e4 2519 /* BB fixme parse for domain name here */
b6b38f70 2520 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2521 } else {
bf820679 2522 cifserror("No username specified");
50c2f753
SF		 2523 /* In userspace mount helper we can get user name from alternate
2524 locations such as env variables and files on disk */
70fe7dc0
JL		 2525 rc = -EINVAL;
2526 goto out;
1da177e4
LT		 2527 }
2528
1da177e4 2529 /* this is needed for ASCII cp to Unicode converts */
7586b765 2530 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2531 /* load_nls_default cannot return null */
2532 volume_info->local_nls = load_nls_default();
1da177e4 2533 } else {
a5fc4ce0
JL		 2534 volume_info->local_nls = load_nls(volume_info->iocharset);
2535 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2536 cERROR(1, "CIFS mount error: iocharset %s not found",
2537 volume_info->iocharset);
70fe7dc0
JL		 2538 rc = -ELIBACC;
2539 goto out;
1da177e4
LT		 2540 }
2541 }
a5fc4ce0 2542 cifs_sb->local_nls = volume_info->local_nls;
1da177e4 2543
63c038c2 2544 /* get a reference to a tcp session */
7586b765 2545 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 2546 if (IS_ERR(srvTcp)) {
2547 rc = PTR_ERR(srvTcp);
2548 goto out;
1da177e4
LT		 2549 }
2550
36988c76
JL		 2551 /* get a reference to a SMB session */
2552 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2553 if (IS_ERR(pSesInfo)) {
2554 rc = PTR_ERR(pSesInfo);
2555 pSesInfo = NULL;
2556 goto mount_fail_check;
1da177e4 2557 }
50c2f753 2558
d00c28de
JL		 2559 setup_cifs_sb(volume_info, cifs_sb);
2560 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2561 sb->s_maxbytes = MAX_LFS_FILESIZE;
2562 else
2563 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 2564
8af18971 2565 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 2566 sb->s_time_gran = 100;
2567
d00c28de
JL		 2568 /* search for existing tcon to this server share */
2569 tcon = cifs_get_tcon(pSesInfo, volume_info);
2570 if (IS_ERR(tcon)) {
2571 rc = PTR_ERR(tcon);
2572 tcon = NULL;
1bfe73c2 2573 goto remote_path_check;
d00c28de 2574 }
1bfe73c2 2575
d82c2df5 2576 cifs_sb->tcon = tcon;
c18c842b 2577
d82c2df5
SF		 2578 /* do not care if following two calls succeed - informational */
2579 if (!tcon->ipc) {
2580 CIFSSMBQFSDeviceInfo(xid, tcon);
2581 CIFSSMBQFSAttributeInfo(xid, tcon);
2582 }
03a143c9 2583
d82c2df5
SF		 2584 /* tell server which Unix caps we support */
2585 if (tcon->ses->capabilities & CAP_UNIX)
2586 /* reset of caps checks mount to see if unix extensions
2587 disabled for just this mount */
7586b765 2588 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
d82c2df5
SF		 2589 else
2590 tcon->unix_ext = 0; /* server does not support them */
c18c842b 2591
d82c2df5
SF		 2592 /* convert forward to back slashes in prepath here if needed */
2593 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2594 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 2595
d82c2df5
SF		 2596 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2597 cifs_sb->rsize = 1024 * 127;
b6b38f70 2598 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 2599 }
d82c2df5
SF		 2600 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2601 cifs_sb->wsize = min(cifs_sb->wsize,
2602 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2603 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2604 cifs_sb->rsize = min(cifs_sb->rsize,
2605 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 2606
1bfe73c2
IM		 2607remote_path_check:
2608 /* check if a whole path (including prepath) is not remote */
2609 if (!rc && cifs_sb->prepathlen && tcon) {
e4cce94c
IM		 2610 /* build_path_to_root works only when we have a valid tcon */
2611 full_path = cifs_build_path_to_root(cifs_sb);
2612 if (full_path == NULL) {
2613 rc = -ENOMEM;
2614 goto mount_fail_check;
2615 }
2616 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
1bfe73c2 2617 if (rc != -EREMOTE) {
e4cce94c
IM		 2618 kfree(full_path);
2619 goto mount_fail_check;
2620 }
2621 kfree(full_path);
2622 }
2623
1bfe73c2
IM		 2624 /* get referral if needed */
2625 if (rc == -EREMOTE) {
d036f50f 2626#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 2627 if (referral_walks_count > MAX_NESTED_LINKS) {
2628 /*
2629 * BB: when we implement proper loop detection,
2630 * we will remove this check. But now we need it
2631 * to prevent an indefinite loop if 'DFS tree' is
2632 * misconfigured (i.e. has loops).
2633 */
2634 rc = -ELOOP;
2635 goto mount_fail_check;
2636 }
1bfe73c2
IM		 2637 /* convert forward to back slashes in prepath here if needed */
2638 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2639 convert_delimiter(cifs_sb->prepath,
2640 CIFS_DIR_SEP(cifs_sb));
2641 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2642 if (IS_ERR(full_path)) {
2643 rc = PTR_ERR(full_path);
2644 goto mount_fail_check;
2645 }
2646
b6b38f70 2647 cFYI(1, "Getting referral for: %s", full_path);
1bfe73c2
IM		 2648 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2649 cifs_sb->local_nls, &num_referrals, &referrals,
2650 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2651 if (!rc && num_referrals > 0) {
2652 char *fake_devname = NULL;
2653
2654 if (mount_data != mount_data_global)
2655 kfree(mount_data);
7b91e266 2656
1bfe73c2
IM		 2657 mount_data = cifs_compose_mount_options(
2658 cifs_sb->mountdata, full_path + 1,
2659 referrals, &fake_devname);
7b91e266 2660
1bfe73c2 2661 free_dfs_info_array(referrals, num_referrals);
7b91e266
JL		 2662 kfree(fake_devname);
2663 kfree(full_path);
2664
2665 if (IS_ERR(mount_data)) {
2666 rc = PTR_ERR(mount_data);
2667 mount_data = NULL;
2668 goto mount_fail_check;
2669 }
1bfe73c2
IM		 2670
2671 if (tcon)
2672 cifs_put_tcon(tcon);
2673 else if (pSesInfo)
2674 cifs_put_smb_ses(pSesInfo);
2675
2676 cleanup_volume_info(&volume_info);
5c2503a8 2677 referral_walks_count++;
a2934c7b 2678 FreeXid(xid);
1bfe73c2
IM		 2679 goto try_mount_again;
2680 }
d036f50f
SF		 2681#else /* No DFS support, return error on mount */
2682 rc = -EOPNOTSUPP;
2683#endif
1bfe73c2
IM		 2684 }
2685
2686mount_fail_check:
2687 /* on error free sesinfo and tcon struct if needed */
2688 if (rc) {
2689 if (mount_data != mount_data_global)
2690 kfree(mount_data);
2691 /* If find_unc succeeded then rc == 0 so we can not end */
2692 /* up accidently freeing someone elses tcon struct */
2693 if (tcon)
2694 cifs_put_tcon(tcon);
2695 else if (pSesInfo)
2696 cifs_put_smb_ses(pSesInfo);
2697 else
2698 cifs_put_tcp_session(srvTcp);
2699 goto out;
2700 }
2701
7586b765 2702 /* volume_info->password is freed above when existing session found
1da177e4
LT		 2703 (in which case it is not needed anymore) but when new sesion is created
2704 the password ptr is put in the new session structure (in which case the
2705 password will be freed at unmount time) */
70fe7dc0
JL		 2706out:
2707 /* zero out password before freeing */
1bfe73c2 2708 cleanup_volume_info(&volume_info);
1da177e4
LT		 2709 FreeXid(xid);
2710 return rc;
2711}
2712
1da177e4
LT		 2713int
2714CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2715 const char *tree, struct cifsTconInfo *tcon,
2716 const struct nls_table *nls_codepage)
2717{
2718 struct smb_hdr *smb_buffer;
2719 struct smb_hdr *smb_buffer_response;
2720 TCONX_REQ *pSMB;
2721 TCONX_RSP *pSMBr;
2722 unsigned char *bcc_ptr;
2723 int rc = 0;
cc20c031 2724 int length, bytes_left;
1da177e4
LT		 2725 __u16 count;
2726
2727 if (ses == NULL)
2728 return -EIO;
2729
2730 smb_buffer = cifs_buf_get();
ca43e3be 2731 if (smb_buffer == NULL)
1da177e4 2732 return -ENOMEM;
ca43e3be 2733
1da177e4
LT		 2734 smb_buffer_response = smb_buffer;
2735
2736 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2737 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 2738
2739 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 2740 smb_buffer->Uid = ses->Suid;
2741 pSMB = (TCONX_REQ *) smb_buffer;
2742 pSMBr = (TCONX_RSP *) smb_buffer_response;
2743
2744 pSMB->AndXCommand = 0xFF;
2745 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 2746 bcc_ptr = &pSMB->Password[0];
fb8c4b14 2747 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 2748 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 2749 *bcc_ptr = 0; /* password is null byte */
eeac8047 2750 bcc_ptr++; /* skip password */
7c7b25bc 2751 /* already aligned so no need to do it below */
eeac8047 2752 } else {
7c7b25bc 2753 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
eeac8047
SF		 2754 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2755 specified as required (when that support is added to
2756 the vfs in the future) as only NTLM or the much
7c7b25bc 2757 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 2758 by Samba (not sure whether other servers allow
2759 NTLMv2 password here) */
7c7b25bc 2760#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 2761 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0
JL		 2762 (ses->server->secType == LANMAN))
2763 calc_lanman_hash(tcon->password, ses->server->cryptKey,
4e53a3fb
JL		 2764 ses->server->secMode &
2765 SECMODE_PW_ENCRYPT ? true : false,
2766 bcc_ptr);
7c7b25bc
SF		 2767 else
2768#endif /* CIFS_WEAK_PW_HASH */
00e485b0 2769 SMBNTencrypt(tcon->password, ses->server->cryptKey,
eeac8047
SF		 2770 bcc_ptr);
2771
7c7b25bc 2772 bcc_ptr += CIFS_SESS_KEY_SIZE;
fb8c4b14 2773 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 2774 /* must align unicode strings */
2775 *bcc_ptr = 0; /* null byte password */
2776 bcc_ptr++;
2777 }
eeac8047 2778 }
1da177e4 2779
50c2f753 2780 if (ses->server->secMode &
a878fb22 2781 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 2782 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
2783
2784 if (ses->capabilities & CAP_STATUS32) {
2785 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
2786 }
2787 if (ses->capabilities & CAP_DFS) {
2788 smb_buffer->Flags2 |= SMBFLG2_DFS;
2789 }
2790 if (ses->capabilities & CAP_UNICODE) {
2791 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
2792 length =
50c2f753
SF		 2793 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
2794 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 2795 (/* server len*/ + 256 /* share len */), nls_codepage);
2796 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 2797 bcc_ptr += 2; /* skip trailing null */
2798 } else { /* ASCII */
1da177e4
LT		 2799 strcpy(bcc_ptr, tree);
2800 bcc_ptr += strlen(tree) + 1;
2801 }
2802 strcpy(bcc_ptr, "?????");
2803 bcc_ptr += strlen("?????");
2804 bcc_ptr += 1;
2805 count = bcc_ptr - &pSMB->Password[0];
2806 pSMB->hdr.smb_buf_length += count;
2807 pSMB->ByteCount = cpu_to_le16(count);
2808
133672ef
SF		 2809 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
2810 CIFS_STD_OP);
1da177e4 2811
1da177e4
LT		 2812 /* above now done in SendReceive */
2813 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 2814 bool is_unicode;
2815
1da177e4 2816 tcon->tidStatus = CifsGood;
3b795210 2817 tcon->need_reconnect = false;
1da177e4
LT		 2818 tcon->tid = smb_buffer_response->Tid;
2819 bcc_ptr = pByteArea(smb_buffer_response);
cc20c031
JL		 2820 bytes_left = BCC(smb_buffer_response);
2821 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 2822 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
2823 is_unicode = true;
2824 else
2825 is_unicode = false;
2826
cc20c031 2827
50c2f753 2828 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 2829 if (length == 3) {
2830 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
2831 (bcc_ptr[2] == 'C')) {
b6b38f70 2832 cFYI(1, "IPC connection");
7f8ed420
SF		 2833 tcon->ipc = 1;
2834 }
2835 } else if (length == 2) {
2836 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
2837 /* the most common case */
b6b38f70 2838 cFYI(1, "disk share connection");
7f8ed420
SF		 2839 }
2840 }
50c2f753 2841 bcc_ptr += length + 1;
cc20c031 2842 bytes_left -= (length + 1);
1da177e4 2843 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 2844
2845 /* mostly informational -- no need to fail on error here */
90a98b2f 2846 kfree(tcon->nativeFileSystem);
d185cda7 2847 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 2848 bytes_left, is_unicode,
cc20c031
JL		 2849 nls_codepage);
2850
b6b38f70 2851 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 2852
fb8c4b14 2853 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 2854 (smb_buffer_response->WordCount == 7))
2855 /* field is in same location */
3979877e
SF		 2856 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
2857 else
2858 tcon->Flags = 0;
b6b38f70 2859 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 2860 } else if ((rc == 0) && tcon == NULL) {
50c2f753 2861 /* all we need to save for IPC$ connection */
1da177e4
LT		 2862 ses->ipc_tid = smb_buffer_response->Tid;
2863 }
2864
a8a11d39 2865 cifs_buf_release(smb_buffer);
1da177e4
LT		 2866 return rc;
2867}
2868
2869int
2870cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
2871{
2872 int rc = 0;
50c2f753 2873 char *tmp;
1da177e4 2874
f1987b44
JL		 2875 if (cifs_sb->tcon)
2876 cifs_put_tcon(cifs_sb->tcon);
50c2f753 2877
1da177e4 2878 cifs_sb->tcon = NULL;
2fe87f02
SF		 2879 tmp = cifs_sb->prepath;
2880 cifs_sb->prepathlen = 0;
2881 cifs_sb->prepath = NULL;
2882 kfree(tmp);
1da177e4 2883
88e7d705 2884 return rc;
50c2f753 2885}
1da177e4 2886
198b5682 2887int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 2888{
2889 int rc = 0;
198b5682 2890 struct TCP_Server_Info *server = ses->server;
1da177e4 2891
198b5682
JL		 2892 /* only send once per connect */
2893 if (server->maxBuf != 0)
2894 return 0;
2895
2896 rc = CIFSSMBNegotiate(xid, ses);
2897 if (rc == -EAGAIN) {
2898 /* retry only once on 1st time connection */
2899 rc = CIFSSMBNegotiate(xid, ses);
2900 if (rc == -EAGAIN)
2901 rc = -EHOSTDOWN;
1da177e4 2902 }
198b5682
JL		 2903 if (rc == 0) {
2904 spin_lock(&GlobalMid_Lock);
2905 if (server->tcpStatus != CifsExiting)
2906 server->tcpStatus = CifsGood;
2907 else
2908 rc = -EHOSTDOWN;
2909 spin_unlock(&GlobalMid_Lock);
26b994fa 2910
198b5682
JL		 2911 }
2912
2913 return rc;
2914}
2915
2916
2917int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
2918 struct nls_table *nls_info)
2919{
2920 int rc = 0;
2921 struct TCP_Server_Info *server = ses->server;
26b994fa 2922
198b5682
JL		 2923 ses->flags = 0;
2924 ses->capabilities = server->capabilities;
26b994fa 2925 if (linuxExtEnabled == 0)
198b5682 2926 ses->capabilities &= (~CAP_UNIX);
20418acd 2927
b6b38f70
JP		 2928 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
2929 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 2930
198b5682 2931 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 2932 if (rc) {
b6b38f70 2933 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 2934 } else {
b6b38f70 2935 cFYI(1, "CIFS Session Established successfully");
20418acd 2936 spin_lock(&GlobalMid_Lock);
198b5682
JL		 2937 ses->status = CifsGood;
2938 ses->need_reconnect = false;
20418acd 2939 spin_unlock(&GlobalMid_Lock);
1da177e4 2940 }
26b994fa 2941
1da177e4
LT		 2942 return rc;
2943}
2944
Clone of davem's net-next-2.6 tree