]> bbs.cooldavid.org Git - net-next-2.6.git/blame - fs/cifs/connect.c
git://bbs.cooldavid.org / net-next-2.6.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
cifs: remove unused cifsUidInfo struct
[net-next-2.6.git] / fs / cifs / connect.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/connect.c
3 *
d185cda7 4 * Copyright (C) International Business Machines Corp., 2002,2009
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21#include <linux/fs.h>
22#include <linux/net.h>
23#include <linux/string.h>
24#include <linux/list.h>
25#include <linux/wait.h>
5a0e3ad6 26#include <linux/slab.h>
1da177e4
LT		 27#include <linux/pagemap.h>
28#include <linux/ctype.h>
29#include <linux/utsname.h>
30#include <linux/mempool.h>
b8643e1b 31#include <linux/delay.h>
f191401f 32#include <linux/completion.h>
aaf737ad 33#include <linux/kthread.h>
0ae0efad 34#include <linux/pagevec.h>
7dfb7103 35#include <linux/freezer.h>
5c2503a8 36#include <linux/namei.h>
1da177e4
LT		 37#include <asm/uaccess.h>
38#include <asm/processor.h>
50b64e3b 39#include <linux/inet.h>
0e2bedaa 40#include <net/ipv6.h>
1da177e4
LT		 41#include "cifspdu.h"
42#include "cifsglob.h"
43#include "cifsproto.h"
44#include "cifs_unicode.h"
45#include "cifs_debug.h"
46#include "cifs_fs_sb.h"
47#include "ntlmssp.h"
48#include "nterr.h"
49#include "rfc1002pdu.h"
a2653eba 50#include "cn_cifs.h"
488f1d2d 51#include "fscache.h"
1da177e4
LT		 52
53#define CIFS_PORT 445
54#define RFC1001_PORT 139
55
1da177e4
LT		 56extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
57 unsigned char *p24);
58
59extern mempool_t *cifs_req_poolp;
60
61struct smb_vol {
62 char *username;
63 char *password;
64 char *domainname;
65 char *UNC;
66 char *UNCip;
1da177e4
LT		 67 char *iocharset; /* local code page for mapping to and from Unicode */
68 char source_rfc1001_name[16]; /* netbios name of client */
a10faeb2 69 char target_rfc1001_name[16]; /* netbios name of server for Win9x/ME */
1da177e4
LT		 70 uid_t linux_uid;
71 gid_t linux_gid;
72 mode_t file_mode;
73 mode_t dir_mode;
189acaae 74 unsigned secFlg;
4b18f2a9
SF		 75 bool retry:1;
76 bool intr:1;
77 bool setuids:1;
78 bool override_uid:1;
79 bool override_gid:1;
d0a9c078 80 bool dynperm:1;
4b18f2a9
SF		 81 bool noperm:1;
82 bool no_psx_acl:1; /* set if posix acl support should be disabled */
83 bool cifs_acl:1;
84 bool no_xattr:1; /* set if xattr (EA) support should be disabled*/
85 bool server_ino:1; /* use inode numbers from server ie UniqueId */
86 bool direct_io:1;
95b1cb90
SF		 87 bool remap:1; /* set to remap seven reserved chars in filenames */
88 bool posix_paths:1; /* unset to not ask for posix pathnames. */
4b18f2a9
SF		 89 bool no_linux_ext:1;
90 bool sfu_emul:1;
95b1cb90
SF		 91 bool nullauth:1; /* attempt to authenticate with null user */
92 bool nocase:1; /* request case insensitive filenames */
93 bool nobrl:1; /* disable sending byte range locks to srv */
13a6e42a 94 bool mand_lock:1; /* send mandatory not posix byte range lock reqs */
95b1cb90 95 bool seal:1; /* request transport encryption on share */
84210e91
SF		 96 bool nodfs:1; /* Do not request DFS, even if available */
97 bool local_lease:1; /* check leases only on local system, not remote */
edf1ae40
SF		 98 bool noblocksnd:1;
99 bool noautotune:1;
be652445 100 bool nostrictsync:1; /* do not force expensive SMBflush on every sync */
1da177e4
LT		 101 unsigned int rsize;
102 unsigned int wsize;
6a5fa236 103 bool sockopt_tcp_nodelay:1;
1da177e4 104 unsigned short int port;
fb8c4b14 105 char *prepath;
a5fc4ce0 106 struct nls_table *local_nls;
1da177e4
LT		 107};
108
bcf4b106 109static int ipv4_connect(struct TCP_Server_Info *server);
d5c5605c 110static int ipv6_connect(struct TCP_Server_Info *server);
1da177e4 111
d5c5605c
JL		 112/*
113 * cifs tcp session reconnection
114 *
115 * mark tcp session as reconnecting so temporarily locked
116 * mark all smb sessions as reconnecting for tcp session
117 * reconnect tcp session
118 * wake up waiters on reconnection? - (not needed currently)
119 */
2cd646a2 120static int
1da177e4
LT		 121cifs_reconnect(struct TCP_Server_Info *server)
122{
123 int rc = 0;
f1987b44 124 struct list_head *tmp, *tmp2;
1da177e4
LT		 125 struct cifsSesInfo *ses;
126 struct cifsTconInfo *tcon;
fb8c4b14 127 struct mid_q_entry *mid_entry;
50c2f753 128
1da177e4 129 spin_lock(&GlobalMid_Lock);
469ee614 130 if (server->tcpStatus == CifsExiting) {
fb8c4b14 131 /* the demux thread will exit normally
1da177e4
LT		 132 next time through the loop */
133 spin_unlock(&GlobalMid_Lock);
134 return rc;
135 } else
136 server->tcpStatus = CifsNeedReconnect;
137 spin_unlock(&GlobalMid_Lock);
138 server->maxBuf = 0;
139
b6b38f70 140 cFYI(1, "Reconnecting tcp session");
1da177e4
LT		 141
142 /* before reconnecting the tcp session, mark the smb session (uid)
143 and the tid bad so they are not used until reconnected */
14fbf50d
JL		 144 read_lock(&cifs_tcp_ses_lock);
145 list_for_each(tmp, &server->smb_ses_list) {
146 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
147 ses->need_reconnect = true;
148 ses->ipc_tid = 0;
f1987b44
JL		 149 list_for_each(tmp2, &ses->tcon_list) {
150 tcon = list_entry(tmp2, struct cifsTconInfo, tcon_list);
3b795210 151 tcon->need_reconnect = true;
1da177e4 152 }
1da177e4 153 }
f1987b44 154 read_unlock(&cifs_tcp_ses_lock);
1da177e4 155 /* do not want to be sending data on a socket we are freeing */
72ca545b 156 mutex_lock(&server->srv_mutex);
fb8c4b14 157 if (server->ssocket) {
b6b38f70
JP		 158 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
159 server->ssocket->flags);
91cf45f0 160 kernel_sock_shutdown(server->ssocket, SHUT_WR);
b6b38f70 161 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
467a8f8d 162 server->ssocket->state,
b6b38f70 163 server->ssocket->flags);
1da177e4
LT		 164 sock_release(server->ssocket);
165 server->ssocket = NULL;
166 }
167
168 spin_lock(&GlobalMid_Lock);
169 list_for_each(tmp, &server->pending_mid_q) {
170 mid_entry = list_entry(tmp, struct
171 mid_q_entry,
172 qhead);
ad8b15f0 173 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
09d1db5c
SF		 174 /* Mark other intransit requests as needing
175 retry so we do not immediately mark the
176 session bad again (ie after we reconnect
177 below) as they timeout too */
ad8b15f0 178 mid_entry->midState = MID_RETRY_NEEDED;
1da177e4
LT		 179 }
180 }
181 spin_unlock(&GlobalMid_Lock);
72ca545b 182 mutex_unlock(&server->srv_mutex);
1da177e4 183
469ee614
JL		 184 while ((server->tcpStatus != CifsExiting) &&
185 (server->tcpStatus != CifsGood)) {
6c3d8909 186 try_to_freeze();
bcf4b106 187 if (server->addr.sockAddr6.sin6_family == AF_INET6)
d5c5605c 188 rc = ipv6_connect(server);
bcf4b106
JL		 189 else
190 rc = ipv4_connect(server);
fb8c4b14 191 if (rc) {
b6b38f70 192 cFYI(1, "reconnect error %d", rc);
0cb766ae 193 msleep(3000);
1da177e4
LT		 194 } else {
195 atomic_inc(&tcpSesReconnectCount);
196 spin_lock(&GlobalMid_Lock);
469ee614 197 if (server->tcpStatus != CifsExiting)
1da177e4 198 server->tcpStatus = CifsGood;
ad009ac9 199 server->sequence_number = 0;
fb8c4b14 200 spin_unlock(&GlobalMid_Lock);
1da177e4
LT		 201 /* atomic_set(&server->inFlight,0);*/
202 wake_up(&server->response_q);
203 }
204 }
205 return rc;
206}
207
fb8c4b14 208/*
e4eb295d
SF		 209 return codes:
210 0 not a transact2, or all data present
211 >0 transact2 with that much data missing
212 -EINVAL = invalid transact2
213
214 */
fb8c4b14 215static int check2ndT2(struct smb_hdr *pSMB, unsigned int maxBufSize)
e4eb295d 216{
fb8c4b14
SF		 217 struct smb_t2_rsp *pSMBt;
218 int total_data_size;
e4eb295d
SF		 219 int data_in_this_rsp;
220 int remaining;
221
fb8c4b14 222 if (pSMB->Command != SMB_COM_TRANSACTION2)
e4eb295d
SF		 223 return 0;
224
fb8c4b14
SF		 225 /* check for plausible wct, bcc and t2 data and parm sizes */
226 /* check for parm and data offset going beyond end of smb */
227 if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
b6b38f70 228 cFYI(1, "invalid transact2 word count");
e4eb295d
SF		 229 return -EINVAL;
230 }
231
232 pSMBt = (struct smb_t2_rsp *)pSMB;
233
234 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
235 data_in_this_rsp = le16_to_cpu(pSMBt->t2_rsp.DataCount);
236
237 remaining = total_data_size - data_in_this_rsp;
238
fb8c4b14 239 if (remaining == 0)
e4eb295d 240 return 0;
fb8c4b14 241 else if (remaining < 0) {
b6b38f70
JP		 242 cFYI(1, "total data %d smaller than data in frame %d",
243 total_data_size, data_in_this_rsp);
e4eb295d
SF		 244 return -EINVAL;
245 } else {
b6b38f70
JP		 246 cFYI(1, "missing %d bytes from transact2, check next response",
247 remaining);
fb8c4b14 248 if (total_data_size > maxBufSize) {
b6b38f70
JP		 249 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
250 total_data_size, maxBufSize);
fb8c4b14 251 return -EINVAL;
e4eb295d
SF		 252 }
253 return remaining;
254 }
255}
256
fb8c4b14 257static int coalesce_t2(struct smb_hdr *psecond, struct smb_hdr *pTargetSMB)
e4eb295d
SF		 258{
259 struct smb_t2_rsp *pSMB2 = (struct smb_t2_rsp *)psecond;
260 struct smb_t2_rsp *pSMBt = (struct smb_t2_rsp *)pTargetSMB;
261 int total_data_size;
262 int total_in_buf;
263 int remaining;
264 int total_in_buf2;
fb8c4b14
SF		 265 char *data_area_of_target;
266 char *data_area_of_buf2;
e4eb295d
SF		 267 __u16 byte_count;
268
269 total_data_size = le16_to_cpu(pSMBt->t2_rsp.TotalDataCount);
270
fb8c4b14 271 if (total_data_size != le16_to_cpu(pSMB2->t2_rsp.TotalDataCount)) {
b6b38f70 272 cFYI(1, "total data size of primary and secondary t2 differ");
e4eb295d
SF		 273 }
274
275 total_in_buf = le16_to_cpu(pSMBt->t2_rsp.DataCount);
276
277 remaining = total_data_size - total_in_buf;
50c2f753 278
fb8c4b14 279 if (remaining < 0)
e4eb295d
SF		 280 return -EINVAL;
281
fb8c4b14 282 if (remaining == 0) /* nothing to do, ignore */
e4eb295d 283 return 0;
50c2f753 284
e4eb295d 285 total_in_buf2 = le16_to_cpu(pSMB2->t2_rsp.DataCount);
fb8c4b14 286 if (remaining < total_in_buf2) {
b6b38f70 287 cFYI(1, "transact2 2nd response contains too much data");
e4eb295d
SF		 288 }
289
290 /* find end of first SMB data area */
fb8c4b14 291 data_area_of_target = (char *)&pSMBt->hdr.Protocol +
e4eb295d
SF		 292 le16_to_cpu(pSMBt->t2_rsp.DataOffset);
293 /* validate target area */
294
295 data_area_of_buf2 = (char *) &pSMB2->hdr.Protocol +
fb8c4b14 296 le16_to_cpu(pSMB2->t2_rsp.DataOffset);
e4eb295d
SF		 297
298 data_area_of_target += total_in_buf;
299
300 /* copy second buffer into end of first buffer */
fb8c4b14 301 memcpy(data_area_of_target, data_area_of_buf2, total_in_buf2);
e4eb295d
SF		 302 total_in_buf += total_in_buf2;
303 pSMBt->t2_rsp.DataCount = cpu_to_le16(total_in_buf);
304 byte_count = le16_to_cpu(BCC_LE(pTargetSMB));
305 byte_count += total_in_buf2;
306 BCC_LE(pTargetSMB) = cpu_to_le16(byte_count);
307
70ca734a 308 byte_count = pTargetSMB->smb_buf_length;
e4eb295d
SF		 309 byte_count += total_in_buf2;
310
311 /* BB also add check that we are not beyond maximum buffer size */
50c2f753 312
70ca734a 313 pTargetSMB->smb_buf_length = byte_count;
e4eb295d 314
fb8c4b14 315 if (remaining == total_in_buf2) {
b6b38f70 316 cFYI(1, "found the last secondary response");
e4eb295d
SF		 317 return 0; /* we are done */
318 } else /* more responses to go */
319 return 1;
320
321}
322
1da177e4
LT		 323static int
324cifs_demultiplex_thread(struct TCP_Server_Info *server)
325{
326 int length;
327 unsigned int pdu_length, total_read;
328 struct smb_hdr *smb_buffer = NULL;
b8643e1b
SF		 329 struct smb_hdr *bigbuf = NULL;
330 struct smb_hdr *smallbuf = NULL;
1da177e4
LT		 331 struct msghdr smb_msg;
332 struct kvec iov;
333 struct socket *csocket = server->ssocket;
334 struct list_head *tmp;
335 struct cifsSesInfo *ses;
336 struct task_struct *task_to_wake = NULL;
337 struct mid_q_entry *mid_entry;
70ca734a 338 char temp;
4b18f2a9
SF		 339 bool isLargeBuf = false;
340 bool isMultiRsp;
e4eb295d 341 int reconnect;
1da177e4 342
1da177e4 343 current->flags |= PF_MEMALLOC;
b6b38f70 344 cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
93d0ec85
JL		 345
346 length = atomic_inc_return(&tcpSesAllocCount);
347 if (length > 1)
26f57364
SF		 348 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
349 GFP_KERNEL);
1da177e4 350
83144186 351 set_freezable();
469ee614 352 while (server->tcpStatus != CifsExiting) {
ede1327e
SF		 353 if (try_to_freeze())
354 continue;
b8643e1b
SF		 355 if (bigbuf == NULL) {
356 bigbuf = cifs_buf_get();
0fd1ffe0 357 if (!bigbuf) {
b6b38f70 358 cERROR(1, "No memory for large SMB response");
b8643e1b
SF		 359 msleep(3000);
360 /* retry will check if exiting */
361 continue;
362 }
0fd1ffe0
PM		 363 } else if (isLargeBuf) {
364 /* we are reusing a dirty large buf, clear its start */
26f57364 365 memset(bigbuf, 0, sizeof(struct smb_hdr));
1da177e4 366 }
b8643e1b
SF		 367
368 if (smallbuf == NULL) {
369 smallbuf = cifs_small_buf_get();
0fd1ffe0 370 if (!smallbuf) {
b6b38f70 371 cERROR(1, "No memory for SMB response");
b8643e1b
SF		 372 msleep(1000);
373 /* retry will check if exiting */
374 continue;
375 }
376 /* beginning of smb buffer is cleared in our buf_get */
377 } else /* if existing small buf clear beginning */
26f57364 378 memset(smallbuf, 0, sizeof(struct smb_hdr));
b8643e1b 379
4b18f2a9
SF		 380 isLargeBuf = false;
381 isMultiRsp = false;
b8643e1b 382 smb_buffer = smallbuf;
1da177e4
LT		 383 iov.iov_base = smb_buffer;
384 iov.iov_len = 4;
385 smb_msg.msg_control = NULL;
386 smb_msg.msg_controllen = 0;
f01d5e14
SF		 387 pdu_length = 4; /* enough to get RFC1001 header */
388incomplete_rcv:
1da177e4
LT		 389 length =
390 kernel_recvmsg(csocket, &smb_msg,
f01d5e14 391 &iov, 1, pdu_length, 0 /* BB other flags? */);
1da177e4 392
469ee614 393 if (server->tcpStatus == CifsExiting) {
1da177e4
LT		 394 break;
395 } else if (server->tcpStatus == CifsNeedReconnect) {
b6b38f70 396 cFYI(1, "Reconnect after server stopped responding");
1da177e4 397 cifs_reconnect(server);
b6b38f70 398 cFYI(1, "call to reconnect done");
1da177e4
LT		 399 csocket = server->ssocket;
400 continue;
401 } else if ((length == -ERESTARTSYS) || (length == -EAGAIN)) {
b8643e1b 402 msleep(1); /* minimum sleep to prevent looping
1da177e4
LT		 403 allowing socket to clear and app threads to set
404 tcpStatus CifsNeedReconnect if server hung */
c527c8a7
SF		 405 if (pdu_length < 4) {
406 iov.iov_base = (4 - pdu_length) +
407 (char *)smb_buffer;
408 iov.iov_len = pdu_length;
409 smb_msg.msg_control = NULL;
410 smb_msg.msg_controllen = 0;
c18c732e 411 goto incomplete_rcv;
c527c8a7 412 } else
c18c732e 413 continue;
1da177e4 414 } else if (length <= 0) {
0fd1ffe0 415 if (server->tcpStatus == CifsNew) {
b6b38f70 416 cFYI(1, "tcp session abend after SMBnegprot");
09d1db5c
SF		 417 /* some servers kill the TCP session rather than
418 returning an SMB negprot error, in which
419 case reconnecting here is not going to help,
420 and so simply return error to mount */
1da177e4
LT		 421 break;
422 }
0fd1ffe0 423 if (!try_to_freeze() && (length == -EINTR)) {
b6b38f70 424 cFYI(1, "cifsd thread killed");
1da177e4
LT		 425 break;
426 }
b6b38f70
JP		 427 cFYI(1, "Reconnect after unexpected peek error %d",
428 length);
1da177e4
LT		 429 cifs_reconnect(server);
430 csocket = server->ssocket;
431 wake_up(&server->response_q);
432 continue;
2a974680 433 } else if (length < pdu_length) {
b6b38f70
JP		 434 cFYI(1, "requested %d bytes but only got %d bytes",
435 pdu_length, length);
f01d5e14 436 pdu_length -= length;
f01d5e14
SF		 437 msleep(1);
438 goto incomplete_rcv;
46810cbf 439 }
1da177e4 440
70ca734a
SF		 441 /* The right amount was read from socket - 4 bytes */
442 /* so we can now interpret the length field */
46810cbf 443
70ca734a
SF		 444 /* the first byte big endian of the length field,
445 is actually not part of the length but the type
446 with the most common, zero, as regular data */
447 temp = *((char *) smb_buffer);
46810cbf 448
fb8c4b14 449 /* Note that FC 1001 length is big endian on the wire,
70ca734a
SF		 450 but we convert it here so it is always manipulated
451 as host byte order */
5ca33c6a 452 pdu_length = be32_to_cpu((__force __be32)smb_buffer->smb_buf_length);
70ca734a
SF		 453 smb_buffer->smb_buf_length = pdu_length;
454
b6b38f70 455 cFYI(1, "rfc1002 length 0x%x", pdu_length+4);
46810cbf 456
70ca734a 457 if (temp == (char) RFC1002_SESSION_KEEP_ALIVE) {
fb8c4b14 458 continue;
70ca734a 459 } else if (temp == (char)RFC1002_POSITIVE_SESSION_RESPONSE) {
b6b38f70 460 cFYI(1, "Good RFC 1002 session rsp");
e4eb295d 461 continue;
70ca734a 462 } else if (temp == (char)RFC1002_NEGATIVE_SESSION_RESPONSE) {
fb8c4b14 463 /* we get this from Windows 98 instead of
46810cbf 464 an error on SMB negprot response */
b6b38f70
JP		 465 cFYI(1, "Negative RFC1002 Session Response Error 0x%x)",
466 pdu_length);
fb8c4b14
SF		 467 if (server->tcpStatus == CifsNew) {
468 /* if nack on negprot (rather than
46810cbf
SF		 469 ret of smb negprot error) reconnecting
470 not going to help, ret error to mount */
471 break;
472 } else {
473 /* give server a second to
474 clean up before reconnect attempt */
475 msleep(1000);
476 /* always try 445 first on reconnect
477 since we get NACK on some if we ever
fb8c4b14 478 connected to port 139 (the NACK is
46810cbf
SF		 479 since we do not begin with RFC1001
480 session initialize frame) */
fb8c4b14 481 server->addr.sockAddr.sin_port =
46810cbf 482 htons(CIFS_PORT);
1da177e4
LT		 483 cifs_reconnect(server);
484 csocket = server->ssocket;
46810cbf 485 wake_up(&server->response_q);
1da177e4 486 continue;
46810cbf 487 }
70ca734a 488 } else if (temp != (char) 0) {
b6b38f70 489 cERROR(1, "Unknown RFC 1002 frame");
70ca734a
SF		 490 cifs_dump_mem(" Received Data: ", (char *)smb_buffer,
491 length);
46810cbf
SF		 492 cifs_reconnect(server);
493 csocket = server->ssocket;
494 continue;
e4eb295d
SF		 495 }
496
497 /* else we have an SMB response */
fb8c4b14 498 if ((pdu_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) ||
26f57364 499 (pdu_length < sizeof(struct smb_hdr) - 1 - 4)) {
b6b38f70
JP		 500 cERROR(1, "Invalid size SMB length %d pdu_length %d",
501 length, pdu_length+4);
e4eb295d
SF		 502 cifs_reconnect(server);
503 csocket = server->ssocket;
504 wake_up(&server->response_q);
505 continue;
fb8c4b14 506 }
e4eb295d
SF		 507
508 /* else length ok */
509 reconnect = 0;
510
fb8c4b14 511 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
4b18f2a9 512 isLargeBuf = true;
e4eb295d
SF		 513 memcpy(bigbuf, smallbuf, 4);
514 smb_buffer = bigbuf;
515 }
516 length = 0;
517 iov.iov_base = 4 + (char *)smb_buffer;
518 iov.iov_len = pdu_length;
fb8c4b14 519 for (total_read = 0; total_read < pdu_length;
e4eb295d
SF		 520 total_read += length) {
521 length = kernel_recvmsg(csocket, &smb_msg, &iov, 1,
522 pdu_length - total_read, 0);
469ee614 523 if ((server->tcpStatus == CifsExiting) ||
e4eb295d
SF		 524 (length == -EINTR)) {
525 /* then will exit */
526 reconnect = 2;
527 break;
528 } else if (server->tcpStatus == CifsNeedReconnect) {
46810cbf
SF		 529 cifs_reconnect(server);
530 csocket = server->ssocket;
fb8c4b14 531 /* Reconnect wakes up rspns q */
e4eb295d
SF		 532 /* Now we will reread sock */
533 reconnect = 1;
534 break;
fb8c4b14 535 } else if ((length == -ERESTARTSYS) ||
e4eb295d
SF		 536 (length == -EAGAIN)) {
537 msleep(1); /* minimum sleep to prevent looping,
fb8c4b14 538 allowing socket to clear and app
e4eb295d
SF		 539 threads to set tcpStatus
540 CifsNeedReconnect if server hung*/
c18c732e 541 length = 0;
46810cbf 542 continue;
e4eb295d 543 } else if (length <= 0) {
b6b38f70
JP		 544 cERROR(1, "Received no data, expecting %d",
545 pdu_length - total_read);
e4eb295d
SF		 546 cifs_reconnect(server);
547 csocket = server->ssocket;
548 reconnect = 1;
549 break;
46810cbf 550 }
e4eb295d 551 }
fb8c4b14 552 if (reconnect == 2)
e4eb295d 553 break;
fb8c4b14 554 else if (reconnect == 1)
e4eb295d 555 continue;
1da177e4 556
e4eb295d 557 length += 4; /* account for rfc1002 hdr */
50c2f753 558
09d1db5c 559
e4eb295d 560 dump_smb(smb_buffer, length);
184ed211 561 if (checkSMB(smb_buffer, smb_buffer->Mid, total_read+4)) {
b387eaeb 562 cifs_dump_mem("Bad SMB: ", smb_buffer, 48);
e4eb295d
SF		 563 continue;
564 }
1da177e4 565
e4eb295d
SF		 566
567 task_to_wake = NULL;
568 spin_lock(&GlobalMid_Lock);
569 list_for_each(tmp, &server->pending_mid_q) {
570 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
571
50c2f753 572 if ((mid_entry->mid == smb_buffer->Mid) &&
e4eb295d
SF		 573 (mid_entry->midState == MID_REQUEST_SUBMITTED) &&
574 (mid_entry->command == smb_buffer->Command)) {
fb8c4b14 575 if (check2ndT2(smb_buffer,server->maxBuf) > 0) {
e4eb295d 576 /* We have a multipart transact2 resp */
4b18f2a9 577 isMultiRsp = true;
fb8c4b14 578 if (mid_entry->resp_buf) {
e4eb295d 579 /* merge response - fix up 1st*/
50c2f753 580 if (coalesce_t2(smb_buffer,
e4eb295d 581 mid_entry->resp_buf)) {
4b18f2a9
SF		 582 mid_entry->multiRsp =
583 true;
e4eb295d
SF		 584 break;
585 } else {
586 /* all parts received */
4b18f2a9
SF		 587 mid_entry->multiEnd =
588 true;
50c2f753 589 goto multi_t2_fnd;
e4eb295d
SF		 590 }
591 } else {
fb8c4b14 592 if (!isLargeBuf) {
b6b38f70 593 cERROR(1, "1st trans2 resp needs bigbuf");
e4eb295d 594 /* BB maybe we can fix this up, switch
50c2f753 595 to already allocated large buffer? */
e4eb295d 596 } else {
cd63499c 597 /* Have first buffer */
e4eb295d
SF		 598 mid_entry->resp_buf =
599 smb_buffer;
4b18f2a9
SF		 600 mid_entry->largeBuf =
601 true;
e4eb295d
SF		 602 bigbuf = NULL;
603 }
604 }
605 break;
50c2f753 606 }
e4eb295d 607 mid_entry->resp_buf = smb_buffer;
4b18f2a9 608 mid_entry->largeBuf = isLargeBuf;
e4eb295d
SF		 609multi_t2_fnd:
610 task_to_wake = mid_entry->tsk;
611 mid_entry->midState = MID_RESPONSE_RECEIVED;
1047abc1
SF		 612#ifdef CONFIG_CIFS_STATS2
613 mid_entry->when_received = jiffies;
614#endif
3a5ff61c
SF		 615 /* so we do not time out requests to server
616 which is still responding (since server could
617 be busy but not dead) */
618 server->lstrp = jiffies;
e4eb295d 619 break;
46810cbf 620 }
1da177e4 621 }
e4eb295d
SF		 622 spin_unlock(&GlobalMid_Lock);
623 if (task_to_wake) {
cd63499c 624 /* Was previous buf put in mpx struct for multi-rsp? */
fb8c4b14 625 if (!isMultiRsp) {
cd63499c 626 /* smb buffer will be freed by user thread */
26f57364 627 if (isLargeBuf)
cd63499c 628 bigbuf = NULL;
26f57364 629 else
cd63499c
SF		 630 smallbuf = NULL;
631 }
e4eb295d 632 wake_up_process(task_to_wake);
4b18f2a9
SF		 633 } else if (!is_valid_oplock_break(smb_buffer, server) &&
634 !isMultiRsp) {
b6b38f70
JP		 635 cERROR(1, "No task to wake, unknown frame received! "
636 "NumMids %d", midCount.counter);
50c2f753 637 cifs_dump_mem("Received Data is: ", (char *)smb_buffer,
70ca734a 638 sizeof(struct smb_hdr));
3979877e
SF		 639#ifdef CONFIG_CIFS_DEBUG2
640 cifs_dump_detail(smb_buffer);
641 cifs_dump_mids(server);
642#endif /* CIFS_DEBUG2 */
50c2f753 643
e4eb295d
SF		 644 }
645 } /* end while !EXITING */
646
e7ddee90
JL		 647 /* take it off the list, if it's not already */
648 write_lock(&cifs_tcp_ses_lock);
649 list_del_init(&server->tcp_ses_list);
650 write_unlock(&cifs_tcp_ses_lock);
651
1da177e4
LT		 652 spin_lock(&GlobalMid_Lock);
653 server->tcpStatus = CifsExiting;
e691b9d1 654 spin_unlock(&GlobalMid_Lock);
dbdbb876 655 wake_up_all(&server->response_q);
e691b9d1 656
31ca3bc3
SF		 657 /* check if we have blocked requests that need to free */
658 /* Note that cifs_max_pending is normally 50, but
659 can be set at module install time to as little as two */
e691b9d1 660 spin_lock(&GlobalMid_Lock);
fb8c4b14 661 if (atomic_read(&server->inFlight) >= cifs_max_pending)
31ca3bc3
SF		 662 atomic_set(&server->inFlight, cifs_max_pending - 1);
663 /* We do not want to set the max_pending too low or we
664 could end up with the counter going negative */
1da177e4 665 spin_unlock(&GlobalMid_Lock);
50c2f753 666 /* Although there should not be any requests blocked on
1da177e4 667 this queue it can not hurt to be paranoid and try to wake up requests
09d1db5c 668 that may haven been blocked when more than 50 at time were on the wire
1da177e4
LT		 669 to the same server - they now will see the session is in exit state
670 and get out of SendReceive. */
671 wake_up_all(&server->request_q);
672 /* give those requests time to exit */
b8643e1b 673 msleep(125);
50c2f753 674
fb8c4b14 675 if (server->ssocket) {
1da177e4
LT		 676 sock_release(csocket);
677 server->ssocket = NULL;
678 }
b8643e1b 679 /* buffer usuallly freed in free_mid - need to free it here on exit */
a8a11d39
MK		 680 cifs_buf_release(bigbuf);
681 if (smallbuf) /* no sense logging a debug message if NULL */
b8643e1b 682 cifs_small_buf_release(smallbuf);
1da177e4 683
14fbf50d
JL		 684 /*
685 * BB: we shouldn't have to do any of this. It shouldn't be
686 * possible to exit from the thread with active SMB sessions
687 */
688 read_lock(&cifs_tcp_ses_lock);
1da177e4 689 if (list_empty(&server->pending_mid_q)) {
09d1db5c
SF		 690 /* loop through server session structures attached to this and
691 mark them dead */
14fbf50d
JL		 692 list_for_each(tmp, &server->smb_ses_list) {
693 ses = list_entry(tmp, struct cifsSesInfo,
694 smb_ses_list);
695 ses->status = CifsExiting;
696 ses->server = NULL;
1da177e4 697 }
14fbf50d 698 read_unlock(&cifs_tcp_ses_lock);
1da177e4 699 } else {
31ca3bc3
SF		 700 /* although we can not zero the server struct pointer yet,
701 since there are active requests which may depnd on them,
702 mark the corresponding SMB sessions as exiting too */
14fbf50d 703 list_for_each(tmp, &server->smb_ses_list) {
31ca3bc3 704 ses = list_entry(tmp, struct cifsSesInfo,
14fbf50d
JL		 705 smb_ses_list);
706 ses->status = CifsExiting;
31ca3bc3
SF		 707 }
708
1da177e4
LT		 709 spin_lock(&GlobalMid_Lock);
710 list_for_each(tmp, &server->pending_mid_q) {
711 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
712 if (mid_entry->midState == MID_REQUEST_SUBMITTED) {
b6b38f70
JP		 713 cFYI(1, "Clearing Mid 0x%x - waking up ",
714 mid_entry->mid);
1da177e4 715 task_to_wake = mid_entry->tsk;
26f57364 716 if (task_to_wake)
1da177e4 717 wake_up_process(task_to_wake);
1da177e4
LT		 718 }
719 }
720 spin_unlock(&GlobalMid_Lock);
14fbf50d 721 read_unlock(&cifs_tcp_ses_lock);
1da177e4 722 /* 1/8th of sec is more than enough time for them to exit */
b8643e1b 723 msleep(125);
1da177e4
LT		 724 }
725
f191401f 726 if (!list_empty(&server->pending_mid_q)) {
50c2f753 727 /* mpx threads have not exited yet give them
1da177e4 728 at least the smb send timeout time for long ops */
31ca3bc3
SF		 729 /* due to delays on oplock break requests, we need
730 to wait at least 45 seconds before giving up
731 on a request getting a response and going ahead
732 and killing cifsd */
b6b38f70 733 cFYI(1, "Wait for exit from demultiplex thread");
31ca3bc3 734 msleep(46000);
1da177e4
LT		 735 /* if threads still have not exited they are probably never
736 coming home not much else we can do but free the memory */
737 }
1da177e4 738
31ca3bc3
SF		 739 /* last chance to mark ses pointers invalid
740 if there are any pointing to this (e.g
50c2f753 741 if a crazy root user tried to kill cifsd
31ca3bc3 742 kernel thread explicitly this might happen) */
14fbf50d
JL		 743 /* BB: This shouldn't be necessary, see above */
744 read_lock(&cifs_tcp_ses_lock);
745 list_for_each(tmp, &server->smb_ses_list) {
746 ses = list_entry(tmp, struct cifsSesInfo, smb_ses_list);
747 ses->server = NULL;
31ca3bc3 748 }
14fbf50d 749 read_unlock(&cifs_tcp_ses_lock);
31ca3bc3 750
c359cf3c 751 kfree(server->hostname);
b1c8d2b4 752 task_to_wake = xchg(&server->tsk, NULL);
31ca3bc3 753 kfree(server);
93d0ec85
JL		 754
755 length = atomic_dec_return(&tcpSesAllocCount);
26f57364
SF		 756 if (length > 0)
757 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
758 GFP_KERNEL);
50c2f753 759
b1c8d2b4
JL		 760 /* if server->tsk was NULL then wait for a signal before exiting */
761 if (!task_to_wake) {
762 set_current_state(TASK_INTERRUPTIBLE);
763 while (!signal_pending(current)) {
764 schedule();
765 set_current_state(TASK_INTERRUPTIBLE);
766 }
767 set_current_state(TASK_RUNNING);
768 }
769
0468a2cf 770 module_put_and_exit(0);
1da177e4
LT		 771}
772
c359cf3c
JL		 773/* extract the host portion of the UNC string */
774static char *
775extract_hostname(const char *unc)
776{
777 const char *src;
778 char *dst, *delim;
779 unsigned int len;
780
781 /* skip double chars at beginning of string */
782 /* BB: check validity of these bytes? */
783 src = unc + 2;
784
785 /* delimiter between hostname and sharename is always '\\' now */
786 delim = strchr(src, '\\');
787 if (!delim)
788 return ERR_PTR(-EINVAL);
789
790 len = delim - src;
791 dst = kmalloc((len + 1), GFP_KERNEL);
792 if (dst == NULL)
793 return ERR_PTR(-ENOMEM);
794
795 memcpy(dst, src, len);
796 dst[len] = '\0';
797
798 return dst;
799}
800
1da177e4 801static int
50c2f753
SF		 802cifs_parse_mount_options(char *options, const char *devname,
803 struct smb_vol *vol)
1da177e4
LT		 804{
805 char *value;
806 char *data;
807 unsigned int temp_len, i, j;
808 char separator[2];
9b9d6b24
JL		 809 short int override_uid = -1;
810 short int override_gid = -1;
811 bool uid_specified = false;
812 bool gid_specified = false;
1da177e4
LT		 813
814 separator[0] = ',';
50c2f753 815 separator[1] = 0;
1da177e4 816
12e36b2f 817 if (Local_System_Name[0] != 0)
50c2f753 818 memcpy(vol->source_rfc1001_name, Local_System_Name, 15);
2cd646a2 819 else {
12e36b2f 820 char *nodename = utsname()->nodename;
50c2f753
SF		 821 int n = strnlen(nodename, 15);
822 memset(vol->source_rfc1001_name, 0x20, 15);
823 for (i = 0; i < n; i++) {
2cd646a2
SF		 824 /* does not have to be perfect mapping since field is
825 informational, only used for servers that do not support
826 port 445 and it can be overridden at mount time */
12e36b2f 827 vol->source_rfc1001_name[i] = toupper(nodename[i]);
2cd646a2 828 }
1da177e4
LT		 829 }
830 vol->source_rfc1001_name[15] = 0;
a10faeb2
SF		 831 /* null target name indicates to use *SMBSERVR default called name
832 if we end up sending RFC1001 session initialize */
833 vol->target_rfc1001_name[0] = 0;
a001e5b5
DH		 834 vol->linux_uid = current_uid(); /* use current_euid() instead? */
835 vol->linux_gid = current_gid();
f55ed1a8
JL		 836
837 /* default to only allowing write access to owner of the mount */
838 vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1da177e4
LT		 839
840 /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
ac67055e
JA		 841 /* default is always to request posix paths. */
842 vol->posix_paths = 1;
a0c9217f
JL		 843 /* default to using server inode numbers where available */
844 vol->server_ino = 1;
ac67055e 845
1da177e4
LT		 846 if (!options)
847 return 1;
848
50c2f753 849 if (strncmp(options, "sep=", 4) == 0) {
fb8c4b14 850 if (options[4] != 0) {
1da177e4
LT		 851 separator[0] = options[4];
852 options += 5;
853 } else {
b6b38f70 854 cFYI(1, "Null separator not allowed");
1da177e4
LT		 855 }
856 }
50c2f753 857
1da177e4
LT		 858 while ((data = strsep(&options, separator)) != NULL) {
859 if (!*data)
860 continue;
861 if ((value = strchr(data, '=')) != NULL)
862 *value++ = '\0';
863
50c2f753
SF		 864 /* Have to parse this before we parse for "user" */
865 if (strnicmp(data, "user_xattr", 10) == 0) {
1da177e4 866 vol->no_xattr = 0;
50c2f753 867 } else if (strnicmp(data, "nouser_xattr", 12) == 0) {
1da177e4
LT		 868 vol->no_xattr = 1;
869 } else if (strnicmp(data, "user", 4) == 0) {
4b952a9b 870 if (!value) {
1da177e4
LT		 871 printk(KERN_WARNING
872 "CIFS: invalid or missing username\n");
873 return 1; /* needs_arg; */
fb8c4b14 874 } else if (!*value) {
4b952a9b
SF		 875 /* null user, ie anonymous, authentication */
876 vol->nullauth = 1;
1da177e4
LT		 877 }
878 if (strnlen(value, 200) < 200) {
879 vol->username = value;
880 } else {
881 printk(KERN_WARNING "CIFS: username too long\n");
882 return 1;
883 }
884 } else if (strnicmp(data, "pass", 4) == 0) {
885 if (!value) {
886 vol->password = NULL;
887 continue;
fb8c4b14 888 } else if (value[0] == 0) {
1da177e4
LT		 889 /* check if string begins with double comma
890 since that would mean the password really
891 does start with a comma, and would not
892 indicate an empty string */
fb8c4b14 893 if (value[1] != separator[0]) {
1da177e4
LT		 894 vol->password = NULL;
895 continue;
896 }
897 }
898 temp_len = strlen(value);
899 /* removed password length check, NTLM passwords
900 can be arbitrarily long */
901
50c2f753 902 /* if comma in password, the string will be
1da177e4
LT		 903 prematurely null terminated. Commas in password are
904 specified across the cifs mount interface by a double
905 comma ie ,, and a comma used as in other cases ie ','
906 as a parameter delimiter/separator is single and due
907 to the strsep above is temporarily zeroed. */
908
909 /* NB: password legally can have multiple commas and
910 the only illegal character in a password is null */
911
50c2f753 912 if ((value[temp_len] == 0) &&
09d1db5c 913 (value[temp_len+1] == separator[0])) {
1da177e4
LT		 914 /* reinsert comma */
915 value[temp_len] = separator[0];
50c2f753
SF		 916 temp_len += 2; /* move after second comma */
917 while (value[temp_len] != 0) {
1da177e4 918 if (value[temp_len] == separator[0]) {
50c2f753 919 if (value[temp_len+1] ==
09d1db5c
SF		 920 separator[0]) {
921 /* skip second comma */
922 temp_len++;
50c2f753 923 } else {
1da177e4
LT		 924 /* single comma indicating start
925 of next parm */
926 break;
927 }
928 }
929 temp_len++;
930 }
fb8c4b14 931 if (value[temp_len] == 0) {
1da177e4
LT		 932 options = NULL;
933 } else {
934 value[temp_len] = 0;
935 /* point option to start of next parm */
936 options = value + temp_len + 1;
937 }
50c2f753 938 /* go from value to value + temp_len condensing
1da177e4
LT		 939 double commas to singles. Note that this ends up
940 allocating a few bytes too many, which is ok */
e915fc49 941 vol->password = kzalloc(temp_len, GFP_KERNEL);
fb8c4b14 942 if (vol->password == NULL) {
50c2f753
SF		 943 printk(KERN_WARNING "CIFS: no memory "
944 "for password\n");
433dc24f
SF		 945 return 1;
946 }
50c2f753 947 for (i = 0, j = 0; i < temp_len; i++, j++) {
1da177e4 948 vol->password[j] = value[i];
fb8c4b14 949 if (value[i] == separator[0]
09d1db5c 950 && value[i+1] == separator[0]) {
1da177e4
LT		 951 /* skip second comma */
952 i++;
953 }
954 }
955 vol->password[j] = 0;
956 } else {
e915fc49 957 vol->password = kzalloc(temp_len+1, GFP_KERNEL);
fb8c4b14 958 if (vol->password == NULL) {
50c2f753
SF		 959 printk(KERN_WARNING "CIFS: no memory "
960 "for password\n");
433dc24f
SF		 961 return 1;
962 }
1da177e4
LT		 963 strcpy(vol->password, value);
964 }
58f7f68f
JL		 965 } else if (!strnicmp(data, "ip", 2) ||
966 !strnicmp(data, "addr", 4)) {
1da177e4
LT		 967 if (!value || !*value) {
968 vol->UNCip = NULL;
50b64e3b
JL		 969 } else if (strnlen(value, INET6_ADDRSTRLEN) <
970 INET6_ADDRSTRLEN) {
1da177e4
LT		 971 vol->UNCip = value;
972 } else {
50c2f753
SF		 973 printk(KERN_WARNING "CIFS: ip address "
974 "too long\n");
1da177e4
LT		 975 return 1;
976 }
50c2f753
SF		 977 } else if (strnicmp(data, "sec", 3) == 0) {
978 if (!value || !*value) {
b6b38f70 979 cERROR(1, "no security value specified");
50c2f753
SF		 980 continue;
981 } else if (strnicmp(value, "krb5i", 5) == 0) {
982 vol->secFlg |= CIFSSEC_MAY_KRB5 |
189acaae 983 CIFSSEC_MUST_SIGN;
bf820679 984 } else if (strnicmp(value, "krb5p", 5) == 0) {
50c2f753
SF		 985 /* vol->secFlg |= CIFSSEC_MUST_SEAL |
986 CIFSSEC_MAY_KRB5; */
b6b38f70 987 cERROR(1, "Krb5 cifs privacy not supported");
bf820679
SF		 988 return 1;
989 } else if (strnicmp(value, "krb5", 4) == 0) {
750d1151 990 vol->secFlg |= CIFSSEC_MAY_KRB5;
ac683924
SF		 991#ifdef CONFIG_CIFS_EXPERIMENTAL
992 } else if (strnicmp(value, "ntlmsspi", 8) == 0) {
993 vol->secFlg |= CIFSSEC_MAY_NTLMSSP |
994 CIFSSEC_MUST_SIGN;
995 } else if (strnicmp(value, "ntlmssp", 7) == 0) {
996 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
997#endif
bf820679 998 } else if (strnicmp(value, "ntlmv2i", 7) == 0) {
750d1151 999 vol->secFlg |= CIFSSEC_MAY_NTLMV2 |
189acaae 1000 CIFSSEC_MUST_SIGN;
bf820679 1001 } else if (strnicmp(value, "ntlmv2", 6) == 0) {
750d1151 1002 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
bf820679 1003 } else if (strnicmp(value, "ntlmi", 5) == 0) {
750d1151 1004 vol->secFlg |= CIFSSEC_MAY_NTLM |
189acaae 1005 CIFSSEC_MUST_SIGN;
bf820679
SF		 1006 } else if (strnicmp(value, "ntlm", 4) == 0) {
1007 /* ntlm is default so can be turned off too */
750d1151 1008 vol->secFlg |= CIFSSEC_MAY_NTLM;
bf820679 1009 } else if (strnicmp(value, "nontlm", 6) == 0) {
189acaae 1010 /* BB is there a better way to do this? */
750d1151 1011 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
189acaae
SF		 1012#ifdef CONFIG_CIFS_WEAK_PW_HASH
1013 } else if (strnicmp(value, "lanman", 6) == 0) {
50c2f753 1014 vol->secFlg |= CIFSSEC_MAY_LANMAN;
189acaae 1015#endif
bf820679 1016 } else if (strnicmp(value, "none", 4) == 0) {
189acaae 1017 vol->nullauth = 1;
50c2f753 1018 } else {
b6b38f70 1019 cERROR(1, "bad security option: %s", value);
50c2f753
SF		 1020 return 1;
1021 }
1da177e4
LT		 1022 } else if ((strnicmp(data, "unc", 3) == 0)
1023 || (strnicmp(data, "target", 6) == 0)
1024 || (strnicmp(data, "path", 4) == 0)) {
1025 if (!value || !*value) {
50c2f753
SF		 1026 printk(KERN_WARNING "CIFS: invalid path to "
1027 "network resource\n");
1da177e4
LT		 1028 return 1; /* needs_arg; */
1029 }
1030 if ((temp_len = strnlen(value, 300)) < 300) {
50c2f753 1031 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1032 if (vol->UNC == NULL)
1da177e4 1033 return 1;
50c2f753 1034 strcpy(vol->UNC, value);
1da177e4
LT		 1035 if (strncmp(vol->UNC, "//", 2) == 0) {
1036 vol->UNC[0] = '\\';
1037 vol->UNC[1] = '\\';
50c2f753 1038 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
1da177e4 1039 printk(KERN_WARNING
50c2f753
SF		 1040 "CIFS: UNC Path does not begin "
1041 "with // or \\\\ \n");
1da177e4
LT		 1042 return 1;
1043 }
1044 } else {
1045 printk(KERN_WARNING "CIFS: UNC name too long\n");
1046 return 1;
1047 }
1048 } else if ((strnicmp(data, "domain", 3) == 0)
1049 || (strnicmp(data, "workgroup", 5) == 0)) {
1050 if (!value || !*value) {
1051 printk(KERN_WARNING "CIFS: invalid domain name\n");
1052 return 1; /* needs_arg; */
1053 }
1054 /* BB are there cases in which a comma can be valid in
1055 a domain name and need special handling? */
3979877e 1056 if (strnlen(value, 256) < 256) {
1da177e4 1057 vol->domainname = value;
b6b38f70 1058 cFYI(1, "Domain name set");
1da177e4 1059 } else {
50c2f753
SF		 1060 printk(KERN_WARNING "CIFS: domain name too "
1061 "long\n");
1da177e4
LT		 1062 return 1;
1063 }
50c2f753
SF		 1064 } else if (strnicmp(data, "prefixpath", 10) == 0) {
1065 if (!value || !*value) {
1066 printk(KERN_WARNING
1067 "CIFS: invalid path prefix\n");
1068 return 1; /* needs_argument */
1069 }
1070 if ((temp_len = strnlen(value, 1024)) < 1024) {
4523cc30 1071 if (value[0] != '/')
2fe87f02 1072 temp_len++; /* missing leading slash */
50c2f753
SF		 1073 vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1074 if (vol->prepath == NULL)
1075 return 1;
4523cc30 1076 if (value[0] != '/') {
2fe87f02 1077 vol->prepath[0] = '/';
50c2f753 1078 strcpy(vol->prepath+1, value);
2fe87f02 1079 } else
50c2f753 1080 strcpy(vol->prepath, value);
b6b38f70 1081 cFYI(1, "prefix path %s", vol->prepath);
50c2f753
SF		 1082 } else {
1083 printk(KERN_WARNING "CIFS: prefix too long\n");
1084 return 1;
1085 }
1da177e4
LT		 1086 } else if (strnicmp(data, "iocharset", 9) == 0) {
1087 if (!value || !*value) {
63135e08
SF		 1088 printk(KERN_WARNING "CIFS: invalid iocharset "
1089 "specified\n");
1da177e4
LT		 1090 return 1; /* needs_arg; */
1091 }
1092 if (strnlen(value, 65) < 65) {
50c2f753 1093 if (strnicmp(value, "default", 7))
1da177e4 1094 vol->iocharset = value;
50c2f753
SF		 1095 /* if iocharset not set then load_nls_default
1096 is used by caller */
b6b38f70 1097 cFYI(1, "iocharset set to %s", value);
1da177e4 1098 } else {
63135e08
SF		 1099 printk(KERN_WARNING "CIFS: iocharset name "
1100 "too long.\n");
1da177e4
LT		 1101 return 1;
1102 }
9b9d6b24
JL		 1103 } else if (!strnicmp(data, "uid", 3) && value && *value) {
1104 vol->linux_uid = simple_strtoul(value, &value, 0);
1105 uid_specified = true;
1106 } else if (!strnicmp(data, "forceuid", 8)) {
1107 override_uid = 1;
1108 } else if (!strnicmp(data, "noforceuid", 10)) {
1109 override_uid = 0;
1110 } else if (!strnicmp(data, "gid", 3) && value && *value) {
1111 vol->linux_gid = simple_strtoul(value, &value, 0);
1112 gid_specified = true;
1113 } else if (!strnicmp(data, "forcegid", 8)) {
1114 override_gid = 1;
1115 } else if (!strnicmp(data, "noforcegid", 10)) {
1116 override_gid = 0;
1da177e4
LT		 1117 } else if (strnicmp(data, "file_mode", 4) == 0) {
1118 if (value && *value) {
1119 vol->file_mode =
1120 simple_strtoul(value, &value, 0);
1121 }
1122 } else if (strnicmp(data, "dir_mode", 4) == 0) {
1123 if (value && *value) {
1124 vol->dir_mode =
1125 simple_strtoul(value, &value, 0);
1126 }
1127 } else if (strnicmp(data, "dirmode", 4) == 0) {
1128 if (value && *value) {
1129 vol->dir_mode =
1130 simple_strtoul(value, &value, 0);
1131 }
1132 } else if (strnicmp(data, "port", 4) == 0) {
1133 if (value && *value) {
1134 vol->port =
1135 simple_strtoul(value, &value, 0);
1136 }
1137 } else if (strnicmp(data, "rsize", 5) == 0) {
1138 if (value && *value) {
1139 vol->rsize =
1140 simple_strtoul(value, &value, 0);
1141 }
1142 } else if (strnicmp(data, "wsize", 5) == 0) {
1143 if (value && *value) {
1144 vol->wsize =
1145 simple_strtoul(value, &value, 0);
1146 }
1147 } else if (strnicmp(data, "sockopt", 5) == 0) {
6a5fa236 1148 if (!value || !*value) {
b6b38f70 1149 cERROR(1, "no socket option specified");
6a5fa236
SF		 1150 continue;
1151 } else if (strnicmp(value, "TCP_NODELAY", 11) == 0) {
1152 vol->sockopt_tcp_nodelay = 1;
1da177e4
LT		 1153 }
1154 } else if (strnicmp(data, "netbiosname", 4) == 0) {
1155 if (!value || !*value || (*value == ' ')) {
b6b38f70 1156 cFYI(1, "invalid (empty) netbiosname");
1da177e4 1157 } else {
50c2f753
SF		 1158 memset(vol->source_rfc1001_name, 0x20, 15);
1159 for (i = 0; i < 15; i++) {
1160 /* BB are there cases in which a comma can be
1da177e4
LT		 1161 valid in this workstation netbios name (and need
1162 special handling)? */
1163
1164 /* We do not uppercase netbiosname for user */
50c2f753 1165 if (value[i] == 0)
1da177e4 1166 break;
50c2f753
SF		 1167 else
1168 vol->source_rfc1001_name[i] =
1169 value[i];
1da177e4
LT		 1170 }
1171 /* The string has 16th byte zero still from
1172 set at top of the function */
50c2f753
SF		 1173 if ((i == 15) && (value[i] != 0))
1174 printk(KERN_WARNING "CIFS: netbiosname"
1175 " longer than 15 truncated.\n");
a10faeb2
SF		 1176 }
1177 } else if (strnicmp(data, "servern", 7) == 0) {
1178 /* servernetbiosname specified override *SMBSERVER */
1179 if (!value || !*value || (*value == ' ')) {
b6b38f70 1180 cFYI(1, "empty server netbiosname specified");
a10faeb2
SF		 1181 } else {
1182 /* last byte, type, is 0x20 for servr type */
50c2f753 1183 memset(vol->target_rfc1001_name, 0x20, 16);
a10faeb2 1184
50c2f753 1185 for (i = 0; i < 15; i++) {
a10faeb2 1186 /* BB are there cases in which a comma can be
50c2f753
SF		 1187 valid in this workstation netbios name
1188 (and need special handling)? */
a10faeb2 1189
50c2f753
SF		 1190 /* user or mount helper must uppercase
1191 the netbiosname */
1192 if (value[i] == 0)
a10faeb2
SF		 1193 break;
1194 else
50c2f753
SF		 1195 vol->target_rfc1001_name[i] =
1196 value[i];
a10faeb2
SF		 1197 }
1198 /* The string has 16th byte zero still from
1199 set at top of the function */
50c2f753
SF		 1200 if ((i == 15) && (value[i] != 0))
1201 printk(KERN_WARNING "CIFS: server net"
1202 "biosname longer than 15 truncated.\n");
1da177e4
LT		 1203 }
1204 } else if (strnicmp(data, "credentials", 4) == 0) {
1205 /* ignore */
1206 } else if (strnicmp(data, "version", 3) == 0) {
1207 /* ignore */
50c2f753 1208 } else if (strnicmp(data, "guest", 5) == 0) {
1da177e4 1209 /* ignore */
71a394fa
SF		 1210 } else if (strnicmp(data, "rw", 2) == 0) {
1211 /* ignore */
1212 } else if (strnicmp(data, "ro", 2) == 0) {
1213 /* ignore */
edf1ae40
SF		 1214 } else if (strnicmp(data, "noblocksend", 11) == 0) {
1215 vol->noblocksnd = 1;
1216 } else if (strnicmp(data, "noautotune", 10) == 0) {
1217 vol->noautotune = 1;
1da177e4
LT		 1218 } else if ((strnicmp(data, "suid", 4) == 0) ||
1219 (strnicmp(data, "nosuid", 6) == 0) ||
1220 (strnicmp(data, "exec", 4) == 0) ||
1221 (strnicmp(data, "noexec", 6) == 0) ||
1222 (strnicmp(data, "nodev", 5) == 0) ||
1223 (strnicmp(data, "noauto", 6) == 0) ||
1224 (strnicmp(data, "dev", 3) == 0)) {
1225 /* The mount tool or mount.cifs helper (if present)
50c2f753
SF		 1226 uses these opts to set flags, and the flags are read
1227 by the kernel vfs layer before we get here (ie
1228 before read super) so there is no point trying to
1229 parse these options again and set anything and it
1230 is ok to just ignore them */
1da177e4 1231 continue;
1da177e4
LT		 1232 } else if (strnicmp(data, "hard", 4) == 0) {
1233 vol->retry = 1;
1234 } else if (strnicmp(data, "soft", 4) == 0) {
1235 vol->retry = 0;
1236 } else if (strnicmp(data, "perm", 4) == 0) {
1237 vol->noperm = 0;
1238 } else if (strnicmp(data, "noperm", 6) == 0) {
1239 vol->noperm = 1;
6a0b4824
SF		 1240 } else if (strnicmp(data, "mapchars", 8) == 0) {
1241 vol->remap = 1;
1242 } else if (strnicmp(data, "nomapchars", 10) == 0) {
1243 vol->remap = 0;
50c2f753
SF		 1244 } else if (strnicmp(data, "sfu", 3) == 0) {
1245 vol->sfu_emul = 1;
1246 } else if (strnicmp(data, "nosfu", 5) == 0) {
1247 vol->sfu_emul = 0;
2c1b8615
SF		 1248 } else if (strnicmp(data, "nodfs", 5) == 0) {
1249 vol->nodfs = 1;
ac67055e
JA		 1250 } else if (strnicmp(data, "posixpaths", 10) == 0) {
1251 vol->posix_paths = 1;
1252 } else if (strnicmp(data, "noposixpaths", 12) == 0) {
1253 vol->posix_paths = 0;
c18c842b
SF		 1254 } else if (strnicmp(data, "nounix", 6) == 0) {
1255 vol->no_linux_ext = 1;
1256 } else if (strnicmp(data, "nolinux", 7) == 0) {
1257 vol->no_linux_ext = 1;
50c2f753 1258 } else if ((strnicmp(data, "nocase", 6) == 0) ||
a10faeb2 1259 (strnicmp(data, "ignorecase", 10) == 0)) {
50c2f753 1260 vol->nocase = 1;
c46fa8ac
SF		 1261 } else if (strnicmp(data, "brl", 3) == 0) {
1262 vol->nobrl = 0;
50c2f753 1263 } else if ((strnicmp(data, "nobrl", 5) == 0) ||
1c955187 1264 (strnicmp(data, "nolock", 6) == 0)) {
c46fa8ac 1265 vol->nobrl = 1;
d3485d37
SF		 1266 /* turn off mandatory locking in mode
1267 if remote locking is turned off since the
1268 local vfs will do advisory */
50c2f753
SF		 1269 if (vol->file_mode ==
1270 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
d3485d37 1271 vol->file_mode = S_IALLUGO;
13a6e42a
SF		 1272 } else if (strnicmp(data, "forcemandatorylock", 9) == 0) {
1273 /* will take the shorter form "forcemand" as well */
1274 /* This mount option will force use of mandatory
1275 (DOS/Windows style) byte range locks, instead of
1276 using posix advisory byte range locks, even if the
1277 Unix extensions are available and posix locks would
1278 be supported otherwise. If Unix extensions are not
1279 negotiated this has no effect since mandatory locks
1280 would be used (mandatory locks is all that those
1281 those servers support) */
1282 vol->mand_lock = 1;
1da177e4
LT		 1283 } else if (strnicmp(data, "setuids", 7) == 0) {
1284 vol->setuids = 1;
1285 } else if (strnicmp(data, "nosetuids", 9) == 0) {
1286 vol->setuids = 0;
d0a9c078
JL		 1287 } else if (strnicmp(data, "dynperm", 7) == 0) {
1288 vol->dynperm = true;
1289 } else if (strnicmp(data, "nodynperm", 9) == 0) {
1290 vol->dynperm = false;
1da177e4
LT		 1291 } else if (strnicmp(data, "nohard", 6) == 0) {
1292 vol->retry = 0;
1293 } else if (strnicmp(data, "nosoft", 6) == 0) {
1294 vol->retry = 1;
1295 } else if (strnicmp(data, "nointr", 6) == 0) {
1296 vol->intr = 0;
1297 } else if (strnicmp(data, "intr", 4) == 0) {
1298 vol->intr = 1;
be652445
SF		 1299 } else if (strnicmp(data, "nostrictsync", 12) == 0) {
1300 vol->nostrictsync = 1;
1301 } else if (strnicmp(data, "strictsync", 10) == 0) {
1302 vol->nostrictsync = 0;
50c2f753 1303 } else if (strnicmp(data, "serverino", 7) == 0) {
1da177e4 1304 vol->server_ino = 1;
50c2f753 1305 } else if (strnicmp(data, "noserverino", 9) == 0) {
1da177e4 1306 vol->server_ino = 0;
50c2f753 1307 } else if (strnicmp(data, "cifsacl", 7) == 0) {
0a4b92c0
SF		 1308 vol->cifs_acl = 1;
1309 } else if (strnicmp(data, "nocifsacl", 9) == 0) {
1310 vol->cifs_acl = 0;
50c2f753 1311 } else if (strnicmp(data, "acl", 3) == 0) {
1da177e4 1312 vol->no_psx_acl = 0;
50c2f753 1313 } else if (strnicmp(data, "noacl", 5) == 0) {
1da177e4 1314 vol->no_psx_acl = 1;
84210e91
SF		 1315#ifdef CONFIG_CIFS_EXPERIMENTAL
1316 } else if (strnicmp(data, "locallease", 6) == 0) {
1317 vol->local_lease = 1;
1318#endif
50c2f753 1319 } else if (strnicmp(data, "sign", 4) == 0) {
750d1151 1320 vol->secFlg |= CIFSSEC_MUST_SIGN;
95b1cb90
SF		 1321 } else if (strnicmp(data, "seal", 4) == 0) {
1322 /* we do not do the following in secFlags because seal
1323 is a per tree connection (mount) not a per socket
1324 or per-smb connection option in the protocol */
1325 /* vol->secFlg |= CIFSSEC_MUST_SEAL; */
1326 vol->seal = 1;
50c2f753 1327 } else if (strnicmp(data, "direct", 6) == 0) {
1da177e4 1328 vol->direct_io = 1;
50c2f753 1329 } else if (strnicmp(data, "forcedirectio", 13) == 0) {
1da177e4 1330 vol->direct_io = 1;
1da177e4 1331 } else if (strnicmp(data, "noac", 4) == 0) {
50c2f753
SF		 1332 printk(KERN_WARNING "CIFS: Mount option noac not "
1333 "supported. Instead set "
1334 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1da177e4 1335 } else
50c2f753
SF		 1336 printk(KERN_WARNING "CIFS: Unknown mount option %s\n",
1337 data);
1da177e4
LT		 1338 }
1339 if (vol->UNC == NULL) {
4523cc30 1340 if (devname == NULL) {
50c2f753
SF		 1341 printk(KERN_WARNING "CIFS: Missing UNC name for mount "
1342 "target\n");
1da177e4
LT		 1343 return 1;
1344 }
1345 if ((temp_len = strnlen(devname, 300)) < 300) {
50c2f753 1346 vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
4523cc30 1347 if (vol->UNC == NULL)
1da177e4 1348 return 1;
50c2f753 1349 strcpy(vol->UNC, devname);
1da177e4
LT		 1350 if (strncmp(vol->UNC, "//", 2) == 0) {
1351 vol->UNC[0] = '\\';
1352 vol->UNC[1] = '\\';
1353 } else if (strncmp(vol->UNC, "\\\\", 2) != 0) {
50c2f753
SF		 1354 printk(KERN_WARNING "CIFS: UNC Path does not "
1355 "begin with // or \\\\ \n");
1da177e4
LT		 1356 return 1;
1357 }
7c5e628f
IM		 1358 value = strpbrk(vol->UNC+2, "/\\");
1359 if (value)
1360 *value = '\\';
1da177e4
LT		 1361 } else {
1362 printk(KERN_WARNING "CIFS: UNC name too long\n");
1363 return 1;
1364 }
1365 }
fb8c4b14 1366 if (vol->UNCip == NULL)
1da177e4
LT		 1367 vol->UNCip = &vol->UNC[2];
1368
9b9d6b24
JL		 1369 if (uid_specified)
1370 vol->override_uid = override_uid;
1371 else if (override_uid == 1)
1372 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1373 "specified with no uid= option.\n");
1374
1375 if (gid_specified)
1376 vol->override_gid = override_gid;
1377 else if (override_gid == 1)
1378 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1379 "specified with no gid= option.\n");
1380
1da177e4
LT		 1381 return 0;
1382}
1383
4515148e
JL		 1384static bool
1385match_address(struct TCP_Server_Info *server, struct sockaddr *addr)
1386{
1387 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1388 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1389
1390 switch (addr->sa_family) {
1391 case AF_INET:
1392 if (addr4->sin_addr.s_addr !=
1393 server->addr.sockAddr.sin_addr.s_addr)
1394 return false;
1395 if (addr4->sin_port &&
1396 addr4->sin_port != server->addr.sockAddr.sin_port)
1397 return false;
1398 break;
1399 case AF_INET6:
1400 if (!ipv6_addr_equal(&addr6->sin6_addr,
1401 &server->addr.sockAddr6.sin6_addr))
1402 return false;
1403 if (addr6->sin6_scope_id !=
1404 server->addr.sockAddr6.sin6_scope_id)
1405 return false;
1406 if (addr6->sin6_port &&
1407 addr6->sin6_port != server->addr.sockAddr6.sin6_port)
1408 return false;
1409 break;
1410 }
1411
1412 return true;
1413}
1414
daf5b0b6
JL		 1415static bool
1416match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
1417{
1418 unsigned int secFlags;
1419
1420 if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
1421 secFlags = vol->secFlg;
1422 else
1423 secFlags = global_secflags | vol->secFlg;
1424
1425 switch (server->secType) {
1426 case LANMAN:
1427 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
1428 return false;
1429 break;
1430 case NTLMv2:
1431 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
1432 return false;
1433 break;
1434 case NTLM:
1435 if (!(secFlags & CIFSSEC_MAY_NTLM))
1436 return false;
1437 break;
1438 case Kerberos:
1439 if (!(secFlags & CIFSSEC_MAY_KRB5))
1440 return false;
1441 break;
1442 case RawNTLMSSP:
1443 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
1444 return false;
1445 break;
1446 default:
1447 /* shouldn't happen */
1448 return false;
1449 }
1450
1451 /* now check if signing mode is acceptible */
1452 if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
1453 (server->secMode & SECMODE_SIGN_REQUIRED))
1454 return false;
1455 else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
1456 (server->secMode &
1457 (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
1458 return false;
1459
1460 return true;
1461}
1462
e7ddee90 1463static struct TCP_Server_Info *
daf5b0b6 1464cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
1da177e4 1465{
e7ddee90 1466 struct TCP_Server_Info *server;
e7ddee90
JL		 1467
1468 write_lock(&cifs_tcp_ses_lock);
4515148e 1469 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
e7ddee90
JL		 1470 /*
1471 * the demux thread can exit on its own while still in CifsNew
1472 * so don't accept any sockets in that state. Since the
1473 * tcpStatus never changes back to CifsNew it's safe to check
1474 * for this without a lock.
1475 */
1476 if (server->tcpStatus == CifsNew)
1b20d672 1477 continue;
1da177e4 1478
4515148e
JL		 1479 if (!match_address(server, addr))
1480 continue;
1b20d672 1481
daf5b0b6
JL		 1482 if (!match_security(server, vol))
1483 continue;
1484
e7ddee90
JL		 1485 ++server->srv_count;
1486 write_unlock(&cifs_tcp_ses_lock);
b6b38f70 1487 cFYI(1, "Existing tcp session with server found");
e7ddee90 1488 return server;
1da177e4 1489 }
e7ddee90 1490 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1491 return NULL;
1492}
1b20d672 1493
14fbf50d 1494static void
e7ddee90 1495cifs_put_tcp_session(struct TCP_Server_Info *server)
1da177e4 1496{
e7ddee90 1497 struct task_struct *task;
1b20d672 1498
e7ddee90
JL		 1499 write_lock(&cifs_tcp_ses_lock);
1500 if (--server->srv_count > 0) {
1501 write_unlock(&cifs_tcp_ses_lock);
1502 return;
1da177e4 1503 }
1b20d672 1504
e7ddee90
JL		 1505 list_del_init(&server->tcp_ses_list);
1506 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1507
e7ddee90
JL		 1508 spin_lock(&GlobalMid_Lock);
1509 server->tcpStatus = CifsExiting;
1510 spin_unlock(&GlobalMid_Lock);
dea570e0 1511
488f1d2d
SJ		 1512 cifs_fscache_release_client_cookie(server);
1513
e7ddee90
JL		 1514 task = xchg(&server->tsk, NULL);
1515 if (task)
1516 force_sig(SIGKILL, task);
1da177e4
LT		 1517}
1518
63c038c2
JL		 1519static struct TCP_Server_Info *
1520cifs_get_tcp_session(struct smb_vol *volume_info)
1521{
1522 struct TCP_Server_Info *tcp_ses = NULL;
a9ac49d3 1523 struct sockaddr_storage addr;
63c038c2
JL		 1524 struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
1525 struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
1526 int rc;
1527
a9ac49d3 1528 memset(&addr, 0, sizeof(struct sockaddr_storage));
63c038c2 1529
b6b38f70 1530 cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
63c038c2 1531
1e68b2b2 1532 if (volume_info->UNCip && volume_info->UNC) {
50d97160
JL		 1533 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
1534 volume_info->UNCip,
1535 volume_info->port);
1e68b2b2 1536 if (!rc) {
63c038c2
JL		 1537 /* we failed translating address */
1538 rc = -EINVAL;
1539 goto out_err;
1540 }
63c038c2
JL		 1541 } else if (volume_info->UNCip) {
1542 /* BB using ip addr as tcp_ses name to connect to the
1543 DFS root below */
b6b38f70 1544 cERROR(1, "Connecting to DFS root not implemented yet");
63c038c2
JL		 1545 rc = -EINVAL;
1546 goto out_err;
1547 } else /* which tcp_sess DFS root would we conect to */ {
b6b38f70
JP		 1548 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
1549 "unc=//192.168.1.100/public) specified");
63c038c2
JL		 1550 rc = -EINVAL;
1551 goto out_err;
1552 }
1553
1554 /* see if we already have a matching tcp_ses */
daf5b0b6 1555 tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
63c038c2
JL		 1556 if (tcp_ses)
1557 return tcp_ses;
1558
1559 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1560 if (!tcp_ses) {
1561 rc = -ENOMEM;
1562 goto out_err;
1563 }
1564
1565 tcp_ses->hostname = extract_hostname(volume_info->UNC);
1566 if (IS_ERR(tcp_ses->hostname)) {
1567 rc = PTR_ERR(tcp_ses->hostname);
1568 goto out_err;
1569 }
1570
1571 tcp_ses->noblocksnd = volume_info->noblocksnd;
1572 tcp_ses->noautotune = volume_info->noautotune;
6a5fa236 1573 tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
63c038c2
JL		 1574 atomic_set(&tcp_ses->inFlight, 0);
1575 init_waitqueue_head(&tcp_ses->response_q);
1576 init_waitqueue_head(&tcp_ses->request_q);
1577 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1578 mutex_init(&tcp_ses->srv_mutex);
1579 memcpy(tcp_ses->workstation_RFC1001_name,
1580 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1581 memcpy(tcp_ses->server_RFC1001_name,
1582 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1583 tcp_ses->sequence_number = 0;
1584 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1585 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1586
1587 /*
1588 * at this point we are the only ones with the pointer
1589 * to the struct since the kernel thread not created yet
1590 * no need to spinlock this init of tcpStatus or srv_count
1591 */
1592 tcp_ses->tcpStatus = CifsNew;
1593 ++tcp_ses->srv_count;
1594
a9ac49d3 1595 if (addr.ss_family == AF_INET6) {
b6b38f70 1596 cFYI(1, "attempting ipv6 connect");
63c038c2
JL		 1597 /* BB should we allow ipv6 on port 139? */
1598 /* other OS never observed in Wild doing 139 with v6 */
1599 memcpy(&tcp_ses->addr.sockAddr6, sin_server6,
1600 sizeof(struct sockaddr_in6));
d5c5605c 1601 rc = ipv6_connect(tcp_ses);
63c038c2
JL		 1602 } else {
1603 memcpy(&tcp_ses->addr.sockAddr, sin_server,
1604 sizeof(struct sockaddr_in));
bcf4b106 1605 rc = ipv4_connect(tcp_ses);
63c038c2
JL		 1606 }
1607 if (rc < 0) {
b6b38f70 1608 cERROR(1, "Error connecting to socket. Aborting operation");
63c038c2
JL		 1609 goto out_err;
1610 }
1611
1612 /*
1613 * since we're in a cifs function already, we know that
1614 * this will succeed. No need for try_module_get().
1615 */
1616 __module_get(THIS_MODULE);
1617 tcp_ses->tsk = kthread_run((void *)(void *)cifs_demultiplex_thread,
1618 tcp_ses, "cifsd");
1619 if (IS_ERR(tcp_ses->tsk)) {
1620 rc = PTR_ERR(tcp_ses->tsk);
b6b38f70 1621 cERROR(1, "error %d create cifsd thread", rc);
63c038c2
JL		 1622 module_put(THIS_MODULE);
1623 goto out_err;
1624 }
1625
1626 /* thread spawned, put it on the list */
1627 write_lock(&cifs_tcp_ses_lock);
1628 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1629 write_unlock(&cifs_tcp_ses_lock);
1630
488f1d2d
SJ		 1631 cifs_fscache_get_client_cookie(tcp_ses);
1632
63c038c2
JL		 1633 return tcp_ses;
1634
1635out_err:
1636 if (tcp_ses) {
8347a5cd
SF		 1637 if (!IS_ERR(tcp_ses->hostname))
1638 kfree(tcp_ses->hostname);
63c038c2
JL		 1639 if (tcp_ses->ssocket)
1640 sock_release(tcp_ses->ssocket);
1641 kfree(tcp_ses);
1642 }
1643 return ERR_PTR(rc);
1644}
1645
14fbf50d 1646static struct cifsSesInfo *
4ff67b72 1647cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
1da177e4 1648{
14fbf50d 1649 struct cifsSesInfo *ses;
dea570e0 1650
14fbf50d 1651 write_lock(&cifs_tcp_ses_lock);
4ff67b72
JL		 1652 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1653 switch (server->secType) {
1654 case Kerberos:
1655 if (vol->linux_uid != ses->linux_uid)
1656 continue;
1657 break;
1658 default:
1659 /* anything else takes username/password */
1660 if (strncmp(ses->userName, vol->username,
1661 MAX_USERNAME_SIZE))
1662 continue;
1663 if (strlen(vol->username) != 0 &&
1664 strncmp(ses->password, vol->password,
1665 MAX_PASSWORD_SIZE))
1666 continue;
1667 }
14fbf50d
JL		 1668 ++ses->ses_count;
1669 write_unlock(&cifs_tcp_ses_lock);
1670 return ses;
1671 }
1672 write_unlock(&cifs_tcp_ses_lock);
1673 return NULL;
1674}
dea570e0 1675
14fbf50d
JL		 1676static void
1677cifs_put_smb_ses(struct cifsSesInfo *ses)
1678{
1679 int xid;
1680 struct TCP_Server_Info *server = ses->server;
dea570e0 1681
36988c76 1682 cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
14fbf50d
JL		 1683 write_lock(&cifs_tcp_ses_lock);
1684 if (--ses->ses_count > 0) {
1685 write_unlock(&cifs_tcp_ses_lock);
1686 return;
1687 }
dea570e0 1688
14fbf50d
JL		 1689 list_del_init(&ses->smb_ses_list);
1690 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1691
14fbf50d
JL		 1692 if (ses->status == CifsGood) {
1693 xid = GetXid();
1694 CIFSSMBLogoff(xid, ses);
1695 _FreeXid(xid);
1696 }
1697 sesInfoFree(ses);
1698 cifs_put_tcp_session(server);
1699}
dea570e0 1700
36988c76
JL		 1701static struct cifsSesInfo *
1702cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
1703{
1704 int rc = -ENOMEM, xid;
1705 struct cifsSesInfo *ses;
1706
1707 xid = GetXid();
1708
4ff67b72 1709 ses = cifs_find_smb_ses(server, volume_info);
36988c76
JL		 1710 if (ses) {
1711 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
1712
1713 /* existing SMB ses has a server reference already */
1714 cifs_put_tcp_session(server);
1715
1716 mutex_lock(&ses->session_mutex);
198b5682
JL		 1717 rc = cifs_negotiate_protocol(xid, ses);
1718 if (rc) {
1719 mutex_unlock(&ses->session_mutex);
1720 /* problem -- put our ses reference */
1721 cifs_put_smb_ses(ses);
1722 FreeXid(xid);
1723 return ERR_PTR(rc);
1724 }
36988c76
JL		 1725 if (ses->need_reconnect) {
1726 cFYI(1, "Session needs reconnect");
1727 rc = cifs_setup_session(xid, ses,
1728 volume_info->local_nls);
1729 if (rc) {
1730 mutex_unlock(&ses->session_mutex);
1731 /* problem -- put our reference */
1732 cifs_put_smb_ses(ses);
1733 FreeXid(xid);
1734 return ERR_PTR(rc);
1735 }
1736 }
1737 mutex_unlock(&ses->session_mutex);
1738 FreeXid(xid);
1739 return ses;
1740 }
1741
1742 cFYI(1, "Existing smb sess not found");
1743 ses = sesInfoAlloc();
1744 if (ses == NULL)
1745 goto get_ses_fail;
1746
1747 /* new SMB session uses our server ref */
1748 ses->server = server;
1749 if (server->addr.sockAddr6.sin6_family == AF_INET6)
1750 sprintf(ses->serverName, "%pI6",
1751 &server->addr.sockAddr6.sin6_addr);
1752 else
1753 sprintf(ses->serverName, "%pI4",
1754 &server->addr.sockAddr.sin_addr.s_addr);
1755
1756 if (volume_info->username)
1757 strncpy(ses->userName, volume_info->username,
1758 MAX_USERNAME_SIZE);
1759
1760 /* volume_info->password freed at unmount */
1761 if (volume_info->password) {
1762 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
1763 if (!ses->password)
1764 goto get_ses_fail;
1765 }
1766 if (volume_info->domainname) {
1767 int len = strlen(volume_info->domainname);
1768 ses->domainName = kmalloc(len + 1, GFP_KERNEL);
1769 if (ses->domainName)
1770 strcpy(ses->domainName, volume_info->domainname);
1771 }
1772 ses->linux_uid = volume_info->linux_uid;
1773 ses->overrideSecFlg = volume_info->secFlg;
1774
1775 mutex_lock(&ses->session_mutex);
198b5682
JL		 1776 rc = cifs_negotiate_protocol(xid, ses);
1777 if (!rc)
1778 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
36988c76
JL		 1779 mutex_unlock(&ses->session_mutex);
1780 if (rc)
1781 goto get_ses_fail;
1782
1783 /* success, put it on the list */
1784 write_lock(&cifs_tcp_ses_lock);
1785 list_add(&ses->smb_ses_list, &server->smb_ses_list);
1786 write_unlock(&cifs_tcp_ses_lock);
1787
1788 FreeXid(xid);
1789 return ses;
1790
1791get_ses_fail:
1792 sesInfoFree(ses);
1793 FreeXid(xid);
1794 return ERR_PTR(rc);
1795}
1796
f1987b44
JL		 1797static struct cifsTconInfo *
1798cifs_find_tcon(struct cifsSesInfo *ses, const char *unc)
1799{
1800 struct list_head *tmp;
1801 struct cifsTconInfo *tcon;
1802
1803 write_lock(&cifs_tcp_ses_lock);
1804 list_for_each(tmp, &ses->tcon_list) {
1805 tcon = list_entry(tmp, struct cifsTconInfo, tcon_list);
1806 if (tcon->tidStatus == CifsExiting)
1807 continue;
1808 if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
dea570e0
SF		 1809 continue;
1810
f1987b44
JL		 1811 ++tcon->tc_count;
1812 write_unlock(&cifs_tcp_ses_lock);
dea570e0 1813 return tcon;
1da177e4 1814 }
f1987b44 1815 write_unlock(&cifs_tcp_ses_lock);
1da177e4
LT		 1816 return NULL;
1817}
1818
f1987b44
JL		 1819static void
1820cifs_put_tcon(struct cifsTconInfo *tcon)
1821{
1822 int xid;
1823 struct cifsSesInfo *ses = tcon->ses;
1824
d00c28de 1825 cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
f1987b44
JL		 1826 write_lock(&cifs_tcp_ses_lock);
1827 if (--tcon->tc_count > 0) {
1828 write_unlock(&cifs_tcp_ses_lock);
1829 return;
1830 }
1831
1832 list_del_init(&tcon->tcon_list);
1833 write_unlock(&cifs_tcp_ses_lock);
1834
1835 xid = GetXid();
1836 CIFSSMBTDis(xid, tcon);
1837 _FreeXid(xid);
1838
f1987b44
JL		 1839 tconInfoFree(tcon);
1840 cifs_put_smb_ses(ses);
1841}
1842
d00c28de
JL		 1843static struct cifsTconInfo *
1844cifs_get_tcon(struct cifsSesInfo *ses, struct smb_vol *volume_info)
1845{
1846 int rc, xid;
1847 struct cifsTconInfo *tcon;
1848
1849 tcon = cifs_find_tcon(ses, volume_info->UNC);
1850 if (tcon) {
1851 cFYI(1, "Found match on UNC path");
1852 /* existing tcon already has a reference */
1853 cifs_put_smb_ses(ses);
1854 if (tcon->seal != volume_info->seal)
1855 cERROR(1, "transport encryption setting "
1856 "conflicts with existing tid");
1857 return tcon;
1858 }
1859
1860 tcon = tconInfoAlloc();
1861 if (tcon == NULL) {
1862 rc = -ENOMEM;
1863 goto out_fail;
1864 }
1865
1866 tcon->ses = ses;
1867 if (volume_info->password) {
1868 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
1869 if (!tcon->password) {
1870 rc = -ENOMEM;
1871 goto out_fail;
1872 }
1873 }
1874
1875 if (strchr(volume_info->UNC + 3, '\\') == NULL
1876 && strchr(volume_info->UNC + 3, '/') == NULL) {
1877 cERROR(1, "Missing share name");
1878 rc = -ENODEV;
1879 goto out_fail;
1880 }
1881
1882 /* BB Do we need to wrap session_mutex around
1883 * this TCon call and Unix SetFS as
1884 * we do on SessSetup and reconnect? */
1885 xid = GetXid();
1886 rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
1887 FreeXid(xid);
1888 cFYI(1, "CIFS Tcon rc = %d", rc);
1889 if (rc)
1890 goto out_fail;
1891
1892 if (volume_info->nodfs) {
1893 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
1894 cFYI(1, "DFS disabled (%d)", tcon->Flags);
1895 }
1896 tcon->seal = volume_info->seal;
1897 /* we can have only one retry value for a connection
1898 to a share so for resources mounted more than once
1899 to the same server share the last value passed in
1900 for the retry flag is used */
1901 tcon->retry = volume_info->retry;
1902 tcon->nocase = volume_info->nocase;
1903 tcon->local_lease = volume_info->local_lease;
1904
1905 write_lock(&cifs_tcp_ses_lock);
1906 list_add(&tcon->tcon_list, &ses->tcon_list);
1907 write_unlock(&cifs_tcp_ses_lock);
1908
1909 return tcon;
1910
1911out_fail:
1912 tconInfoFree(tcon);
1913 return ERR_PTR(rc);
1914}
1915
1916
1da177e4 1917int
50c2f753
SF		 1918get_dfs_path(int xid, struct cifsSesInfo *pSesInfo, const char *old_path,
1919 const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
366781c1 1920 struct dfs_info3_param **preferrals, int remap)
1da177e4
LT		 1921{
1922 char *temp_unc;
1923 int rc = 0;
1924
1925 *pnum_referrals = 0;
366781c1 1926 *preferrals = NULL;
1da177e4
LT		 1927
1928 if (pSesInfo->ipc_tid == 0) {
1929 temp_unc = kmalloc(2 /* for slashes */ +
50c2f753
SF		 1930 strnlen(pSesInfo->serverName,
1931 SERVER_NAME_LEN_WITH_NULL * 2)
1da177e4
LT		 1932 + 1 + 4 /* slash IPC$ */ + 2,
1933 GFP_KERNEL);
1934 if (temp_unc == NULL)
1935 return -ENOMEM;
1936 temp_unc[0] = '\\';
1937 temp_unc[1] = '\\';
1938 strcpy(temp_unc + 2, pSesInfo->serverName);
1939 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
1940 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
b6b38f70 1941 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
1da177e4
LT		 1942 kfree(temp_unc);
1943 }
1944 if (rc == 0)
c2cf07d5 1945 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
737b758c 1946 pnum_referrals, nls_codepage, remap);
366781c1
SF		 1947 /* BB map targetUNCs to dfs_info3 structures, here or
1948 in CIFSGetDFSRefer BB */
1da177e4
LT		 1949
1950 return rc;
1951}
1952
09e50d55
JL		 1953#ifdef CONFIG_DEBUG_LOCK_ALLOC
1954static struct lock_class_key cifs_key[2];
1955static struct lock_class_key cifs_slock_key[2];
1956
1957static inline void
1958cifs_reclassify_socket4(struct socket *sock)
1959{
1960 struct sock *sk = sock->sk;
1961 BUG_ON(sock_owned_by_user(sk));
1962 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
1963 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
1964}
1965
1966static inline void
1967cifs_reclassify_socket6(struct socket *sock)
1968{
1969 struct sock *sk = sock->sk;
1970 BUG_ON(sock_owned_by_user(sk));
1971 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
1972 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
1973}
1974#else
1975static inline void
1976cifs_reclassify_socket4(struct socket *sock)
1977{
1978}
1979
1980static inline void
1981cifs_reclassify_socket6(struct socket *sock)
1982{
1983}
1984#endif
1985
1da177e4 1986/* See RFC1001 section 14 on representation of Netbios names */
50c2f753 1987static void rfc1002mangle(char *target, char *source, unsigned int length)
1da177e4 1988{
50c2f753 1989 unsigned int i, j;
1da177e4 1990
50c2f753 1991 for (i = 0, j = 0; i < (length); i++) {
1da177e4
LT		 1992 /* mask a nibble at a time and encode */
1993 target[j] = 'A' + (0x0F & (source[i] >> 4));
1994 target[j+1] = 'A' + (0x0F & source[i]);
50c2f753 1995 j += 2;
1da177e4
LT		 1996 }
1997
1998}
1999
2000
2001static int
bcf4b106 2002ipv4_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2003{
2004 int rc = 0;
6a5fa236 2005 int val;
bcf4b106 2006 bool connected = false;
1da177e4 2007 __be16 orig_port = 0;
bcf4b106 2008 struct socket *socket = server->ssocket;
1da177e4 2009
bcf4b106 2010 if (socket == NULL) {
50c2f753 2011 rc = sock_create_kern(PF_INET, SOCK_STREAM,
bcf4b106 2012 IPPROTO_TCP, &socket);
1da177e4 2013 if (rc < 0) {
b6b38f70 2014 cERROR(1, "Error %d creating socket", rc);
1da177e4 2015 return rc;
1da177e4 2016 }
bcf4b106
JL		 2017
2018 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2019 cFYI(1, "Socket created");
bcf4b106
JL		 2020 server->ssocket = socket;
2021 socket->sk->sk_allocation = GFP_NOFS;
2022 cifs_reclassify_socket4(socket);
1da177e4
LT		 2023 }
2024
bcf4b106
JL		 2025 /* user overrode default port */
2026 if (server->addr.sockAddr.sin_port) {
2027 rc = socket->ops->connect(socket, (struct sockaddr *)
2028 &server->addr.sockAddr,
2029 sizeof(struct sockaddr_in), 0);
1da177e4 2030 if (rc >= 0)
bcf4b106 2031 connected = true;
50c2f753 2032 }
1da177e4 2033
fb8c4b14 2034 if (!connected) {
50c2f753 2035 /* save original port so we can retry user specified port
1da177e4 2036 later if fall back ports fail this time */
bcf4b106 2037 orig_port = server->addr.sockAddr.sin_port;
1da177e4
LT		 2038
2039 /* do not retry on the same port we just failed on */
bcf4b106
JL		 2040 if (server->addr.sockAddr.sin_port != htons(CIFS_PORT)) {
2041 server->addr.sockAddr.sin_port = htons(CIFS_PORT);
2042 rc = socket->ops->connect(socket,
2043 (struct sockaddr *)
2044 &server->addr.sockAddr,
2045 sizeof(struct sockaddr_in), 0);
1da177e4 2046 if (rc >= 0)
bcf4b106 2047 connected = true;
1da177e4
LT		 2048 }
2049 }
2050 if (!connected) {
bcf4b106
JL		 2051 server->addr.sockAddr.sin_port = htons(RFC1001_PORT);
2052 rc = socket->ops->connect(socket, (struct sockaddr *)
2053 &server->addr.sockAddr,
6345a3a8 2054 sizeof(struct sockaddr_in), 0);
50c2f753 2055 if (rc >= 0)
bcf4b106 2056 connected = true;
1da177e4
LT		 2057 }
2058
2059 /* give up here - unless we want to retry on different
2060 protocol families some day */
2061 if (!connected) {
fb8c4b14 2062 if (orig_port)
bcf4b106 2063 server->addr.sockAddr.sin_port = orig_port;
b6b38f70 2064 cFYI(1, "Error %d connecting to server via ipv4", rc);
bcf4b106
JL		 2065 sock_release(socket);
2066 server->ssocket = NULL;
1da177e4
LT		 2067 return rc;
2068 }
bcf4b106
JL		 2069
2070
2071 /*
2072 * Eventually check for other socket options to change from
2073 * the default. sock_setsockopt not used because it expects
2074 * user space buffer
2075 */
2076 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2077 socket->sk->sk_sndtimeo = 5 * HZ;
edf1ae40 2078
b387eaeb 2079 /* make the bufsizes depend on wsize/rsize and max requests */
bcf4b106
JL		 2080 if (server->noautotune) {
2081 if (socket->sk->sk_sndbuf < (200 * 1024))
2082 socket->sk->sk_sndbuf = 200 * 1024;
2083 if (socket->sk->sk_rcvbuf < (140 * 1024))
2084 socket->sk->sk_rcvbuf = 140 * 1024;
edf1ae40 2085 }
1da177e4 2086
6a5fa236
SF		 2087 if (server->tcp_nodelay) {
2088 val = 1;
2089 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2090 (char *)&val, sizeof(val));
2091 if (rc)
b6b38f70 2092 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2093 }
2094
b6b38f70 2095 cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
bcf4b106 2096 socket->sk->sk_sndbuf,
b6b38f70 2097 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
bcf4b106 2098
1da177e4 2099 /* send RFC1001 sessinit */
bcf4b106 2100 if (server->addr.sockAddr.sin_port == htons(RFC1001_PORT)) {
1da177e4 2101 /* some servers require RFC1001 sessinit before sending
50c2f753 2102 negprot - BB check reconnection in case where second
1da177e4 2103 sessinit is sent but no second negprot */
50c2f753
SF		 2104 struct rfc1002_session_packet *ses_init_buf;
2105 struct smb_hdr *smb_buf;
2106 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2107 GFP_KERNEL);
fb8c4b14 2108 if (ses_init_buf) {
1da177e4 2109 ses_init_buf->trailer.session_req.called_len = 32;
bcf4b106
JL		 2110 if (server->server_RFC1001_name &&
2111 server->server_RFC1001_name[0] != 0)
8ecaf67a
JL		 2112 rfc1002mangle(ses_init_buf->trailer.
2113 session_req.called_name,
bcf4b106 2114 server->server_RFC1001_name,
8ecaf67a 2115 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2116 else
8ecaf67a
JL		 2117 rfc1002mangle(ses_init_buf->trailer.
2118 session_req.called_name,
2119 DEFAULT_CIFS_CALLED_NAME,
2120 RFC1001_NAME_LEN_WITH_NULL);
a10faeb2 2121
1da177e4 2122 ses_init_buf->trailer.session_req.calling_len = 32;
bcf4b106 2123
1da177e4
LT		 2124 /* calling name ends in null (byte 16) from old smb
2125 convention. */
bcf4b106
JL		 2126 if (server->workstation_RFC1001_name &&
2127 server->workstation_RFC1001_name[0] != 0)
8ecaf67a
JL		 2128 rfc1002mangle(ses_init_buf->trailer.
2129 session_req.calling_name,
bcf4b106 2130 server->workstation_RFC1001_name,
8ecaf67a 2131 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2132 else
8ecaf67a
JL		 2133 rfc1002mangle(ses_init_buf->trailer.
2134 session_req.calling_name,
2135 "LINUX_CIFS_CLNT",
2136 RFC1001_NAME_LEN_WITH_NULL);
bcf4b106 2137
1da177e4
LT		 2138 ses_init_buf->trailer.session_req.scope1 = 0;
2139 ses_init_buf->trailer.session_req.scope2 = 0;
2140 smb_buf = (struct smb_hdr *)ses_init_buf;
2141 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2142 smb_buf->smb_buf_length = 0x81000044;
0496e02d 2143 rc = smb_send(server, smb_buf, 0x44);
1da177e4 2144 kfree(ses_init_buf);
50c2f753 2145 msleep(1); /* RFC1001 layer in at least one server
083d3a2c
SF		 2146 requires very short break before negprot
2147 presumably because not expecting negprot
2148 to follow so fast. This is a simple
50c2f753 2149 solution that works without
083d3a2c
SF		 2150 complicating the code and causes no
2151 significant slowing down on mount
2152 for everyone else */
1da177e4 2153 }
50c2f753 2154 /* else the negprot may still work without this
1da177e4 2155 even though malloc failed */
50c2f753 2156
1da177e4 2157 }
50c2f753 2158
1da177e4
LT		 2159 return rc;
2160}
2161
2162static int
d5c5605c 2163ipv6_connect(struct TCP_Server_Info *server)
1da177e4
LT		 2164{
2165 int rc = 0;
6a5fa236 2166 int val;
d5c5605c 2167 bool connected = false;
1da177e4 2168 __be16 orig_port = 0;
d5c5605c 2169 struct socket *socket = server->ssocket;
1da177e4 2170
d5c5605c 2171 if (socket == NULL) {
50c2f753 2172 rc = sock_create_kern(PF_INET6, SOCK_STREAM,
d5c5605c 2173 IPPROTO_TCP, &socket);
1da177e4 2174 if (rc < 0) {
b6b38f70 2175 cERROR(1, "Error %d creating ipv6 socket", rc);
d5c5605c 2176 socket = NULL;
1da177e4 2177 return rc;
1da177e4 2178 }
1da177e4 2179
d5c5605c 2180 /* BB other socket options to set KEEPALIVE, NODELAY? */
b6b38f70 2181 cFYI(1, "ipv6 Socket created");
d5c5605c
JL		 2182 server->ssocket = socket;
2183 socket->sk->sk_allocation = GFP_NOFS;
2184 cifs_reclassify_socket6(socket);
2185 }
1da177e4 2186
d5c5605c
JL		 2187 /* user overrode default port */
2188 if (server->addr.sockAddr6.sin6_port) {
2189 rc = socket->ops->connect(socket,
2190 (struct sockaddr *) &server->addr.sockAddr6,
6345a3a8 2191 sizeof(struct sockaddr_in6), 0);
1da177e4 2192 if (rc >= 0)
d5c5605c 2193 connected = true;
50c2f753 2194 }
1da177e4 2195
fb8c4b14 2196 if (!connected) {
50c2f753 2197 /* save original port so we can retry user specified port
1da177e4
LT		 2198 later if fall back ports fail this time */
2199
d5c5605c 2200 orig_port = server->addr.sockAddr6.sin6_port;
1da177e4 2201 /* do not retry on the same port we just failed on */
d5c5605c
JL		 2202 if (server->addr.sockAddr6.sin6_port != htons(CIFS_PORT)) {
2203 server->addr.sockAddr6.sin6_port = htons(CIFS_PORT);
2204 rc = socket->ops->connect(socket, (struct sockaddr *)
2205 &server->addr.sockAddr6,
6345a3a8 2206 sizeof(struct sockaddr_in6), 0);
1da177e4 2207 if (rc >= 0)
d5c5605c 2208 connected = true;
1da177e4
LT		 2209 }
2210 }
2211 if (!connected) {
d5c5605c
JL		 2212 server->addr.sockAddr6.sin6_port = htons(RFC1001_PORT);
2213 rc = socket->ops->connect(socket, (struct sockaddr *)
2214 &server->addr.sockAddr6,
2215 sizeof(struct sockaddr_in6), 0);
50c2f753 2216 if (rc >= 0)
d5c5605c 2217 connected = true;
1da177e4
LT		 2218 }
2219
2220 /* give up here - unless we want to retry on different
2221 protocol families some day */
2222 if (!connected) {
fb8c4b14 2223 if (orig_port)
d5c5605c 2224 server->addr.sockAddr6.sin6_port = orig_port;
b6b38f70 2225 cFYI(1, "Error %d connecting to server via ipv6", rc);
d5c5605c
JL		 2226 sock_release(socket);
2227 server->ssocket = NULL;
1da177e4
LT		 2228 return rc;
2229 }
edf1ae40 2230
d5c5605c
JL		 2231 /*
2232 * Eventually check for other socket options to change from
2233 * the default. sock_setsockopt not used because it expects
2234 * user space buffer
2235 */
2236 socket->sk->sk_rcvtimeo = 7 * HZ;
da505c38 2237 socket->sk->sk_sndtimeo = 5 * HZ;
6a5fa236
SF		 2238
2239 if (server->tcp_nodelay) {
2240 val = 1;
2241 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
2242 (char *)&val, sizeof(val));
2243 if (rc)
b6b38f70 2244 cFYI(1, "set TCP_NODELAY socket option error %d", rc);
6a5fa236
SF		 2245 }
2246
d5c5605c 2247 server->ssocket = socket;
50c2f753 2248
1da177e4
LT		 2249 return rc;
2250}
2251
50c2f753
SF		 2252void reset_cifs_unix_caps(int xid, struct cifsTconInfo *tcon,
2253 struct super_block *sb, struct smb_vol *vol_info)
8af18971
SF		 2254{
2255 /* if we are reconnecting then should we check to see if
2256 * any requested capabilities changed locally e.g. via
2257 * remount but we can not do much about it here
2258 * if they have (even if we could detect it by the following)
2259 * Perhaps we could add a backpointer to array of sb from tcon
2260 * or if we change to make all sb to same share the same
2261 * sb as NFS - then we only have one backpointer to sb.
2262 * What if we wanted to mount the server share twice once with
2263 * and once without posixacls or posix paths? */
2264 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2265
c18c842b
SF		 2266 if (vol_info && vol_info->no_linux_ext) {
2267 tcon->fsUnixInfo.Capability = 0;
2268 tcon->unix_ext = 0; /* Unix Extensions disabled */
b6b38f70 2269 cFYI(1, "Linux protocol extensions disabled");
c18c842b
SF		 2270 return;
2271 } else if (vol_info)
2272 tcon->unix_ext = 1; /* Unix Extensions supported */
2273
2274 if (tcon->unix_ext == 0) {
b6b38f70 2275 cFYI(1, "Unix extensions disabled so not set on reconnect");
c18c842b
SF		 2276 return;
2277 }
50c2f753 2278
fb8c4b14 2279 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
8af18971 2280 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
50c2f753 2281
8af18971
SF		 2282 /* check for reconnect case in which we do not
2283 want to change the mount behavior if we can avoid it */
fb8c4b14 2284 if (vol_info == NULL) {
50c2f753 2285 /* turn off POSIX ACL and PATHNAMES if not set
8af18971
SF		 2286 originally at mount time */
2287 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2288 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
11b6d645
IM		 2289 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2290 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2291 cERROR(1, "POSIXPATH support change");
8af18971 2292 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
11b6d645 2293 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
b6b38f70
JP		 2294 cERROR(1, "possible reconnect error");
2295 cERROR(1, "server disabled POSIX path support");
11b6d645 2296 }
8af18971 2297 }
50c2f753 2298
8af18971 2299 cap &= CIFS_UNIX_CAP_MASK;
75865f8c 2300 if (vol_info && vol_info->no_psx_acl)
8af18971 2301 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
75865f8c 2302 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
b6b38f70 2303 cFYI(1, "negotiated posix acl support");
fb8c4b14 2304 if (sb)
8af18971
SF		 2305 sb->s_flags |= MS_POSIXACL;
2306 }
2307
75865f8c 2308 if (vol_info && vol_info->posix_paths == 0)
8af18971 2309 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
75865f8c 2310 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
b6b38f70 2311 cFYI(1, "negotiate posix pathnames");
75865f8c 2312 if (sb)
50c2f753 2313 CIFS_SB(sb)->mnt_cifs_flags |=
8af18971
SF		 2314 CIFS_MOUNT_POSIX_PATHS;
2315 }
50c2f753 2316
984acfe1
SF		 2317 /* We might be setting the path sep back to a different
2318 form if we are reconnecting and the server switched its
50c2f753 2319 posix path capability for this share */
75865f8c 2320 if (sb && (CIFS_SB(sb)->prepathlen > 0))
984acfe1 2321 CIFS_SB(sb)->prepath[0] = CIFS_DIR_SEP(CIFS_SB(sb));
75865f8c
SF		 2322
2323 if (sb && (CIFS_SB(sb)->rsize > 127 * 1024)) {
2324 if ((cap & CIFS_UNIX_LARGE_READ_CAP) == 0) {
2325 CIFS_SB(sb)->rsize = 127 * 1024;
b6b38f70 2326 cFYI(DBG2, "larger reads not supported by srv");
75865f8c
SF		 2327 }
2328 }
50c2f753
SF		 2329
2330
b6b38f70 2331 cFYI(1, "Negotiate caps 0x%x", (int)cap);
8af18971 2332#ifdef CONFIG_CIFS_DEBUG2
75865f8c 2333 if (cap & CIFS_UNIX_FCNTL_CAP)
b6b38f70 2334 cFYI(1, "FCNTL cap");
75865f8c 2335 if (cap & CIFS_UNIX_EXTATTR_CAP)
b6b38f70 2336 cFYI(1, "EXTATTR cap");
75865f8c 2337 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
b6b38f70 2338 cFYI(1, "POSIX path cap");
75865f8c 2339 if (cap & CIFS_UNIX_XATTR_CAP)
b6b38f70 2340 cFYI(1, "XATTR cap");
75865f8c 2341 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
b6b38f70 2342 cFYI(1, "POSIX ACL cap");
75865f8c 2343 if (cap & CIFS_UNIX_LARGE_READ_CAP)
b6b38f70 2344 cFYI(1, "very large read cap");
75865f8c 2345 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
b6b38f70 2346 cFYI(1, "very large write cap");
8af18971
SF		 2347#endif /* CIFS_DEBUG2 */
2348 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
442aa310 2349 if (vol_info == NULL) {
b6b38f70 2350 cFYI(1, "resetting capabilities failed");
442aa310 2351 } else
b6b38f70 2352 cERROR(1, "Negotiating Unix capabilities "
5a44b319
SF		 2353 "with the server failed. Consider "
2354 "mounting with the Unix Extensions\n"
2355 "disabled, if problems are found, "
2356 "by specifying the nounix mount "
b6b38f70 2357 "option.");
5a44b319 2358
8af18971
SF		 2359 }
2360 }
2361}
2362
03a143c9
SF		 2363static void
2364convert_delimiter(char *path, char delim)
2365{
2366 int i;
c2d68ea6 2367 char old_delim;
03a143c9
SF		 2368
2369 if (path == NULL)
2370 return;
2371
582d21e5 2372 if (delim == '/')
c2d68ea6
SF		 2373 old_delim = '\\';
2374 else
2375 old_delim = '/';
2376
03a143c9 2377 for (i = 0; path[i] != '\0'; i++) {
c2d68ea6 2378 if (path[i] == old_delim)
03a143c9
SF		 2379 path[i] = delim;
2380 }
2381}
2382
3b795210
SF		 2383static void setup_cifs_sb(struct smb_vol *pvolume_info,
2384 struct cifs_sb_info *cifs_sb)
b1c8d2b4 2385{
3b795210 2386 if (pvolume_info->rsize > CIFSMaxBufSize) {
b6b38f70
JP		 2387 cERROR(1, "rsize %d too large, using MaxBufSize",
2388 pvolume_info->rsize);
3b795210
SF		 2389 cifs_sb->rsize = CIFSMaxBufSize;
2390 } else if ((pvolume_info->rsize) &&
2391 (pvolume_info->rsize <= CIFSMaxBufSize))
2392 cifs_sb->rsize = pvolume_info->rsize;
2393 else /* default */
2394 cifs_sb->rsize = CIFSMaxBufSize;
2395
2396 if (pvolume_info->wsize > PAGEVEC_SIZE * PAGE_CACHE_SIZE) {
b6b38f70
JP		 2397 cERROR(1, "wsize %d too large, using 4096 instead",
2398 pvolume_info->wsize);
3b795210
SF		 2399 cifs_sb->wsize = 4096;
2400 } else if (pvolume_info->wsize)
2401 cifs_sb->wsize = pvolume_info->wsize;
2402 else
2403 cifs_sb->wsize = min_t(const int,
2404 PAGEVEC_SIZE * PAGE_CACHE_SIZE,
2405 127*1024);
2406 /* old default of CIFSMaxBufSize was too small now
2407 that SMB Write2 can send multiple pages in kvec.
2408 RFC1001 does not describe what happens when frame
2409 bigger than 128K is sent so use that as max in
2410 conjunction with 52K kvec constraint on arch with 4K
2411 page size */
2412
2413 if (cifs_sb->rsize < 2048) {
2414 cifs_sb->rsize = 2048;
2415 /* Windows ME may prefer this */
b6b38f70 2416 cFYI(1, "readsize set to minimum: 2048");
3b795210
SF		 2417 }
2418 /* calculate prepath */
2419 cifs_sb->prepath = pvolume_info->prepath;
2420 if (cifs_sb->prepath) {
2421 cifs_sb->prepathlen = strlen(cifs_sb->prepath);
2422 /* we can not convert the / to \ in the path
2423 separators in the prefixpath yet because we do not
2424 know (until reset_cifs_unix_caps is called later)
2425 whether POSIX PATH CAP is available. We normalize
2426 the / to \ after reset_cifs_unix_caps is called */
2427 pvolume_info->prepath = NULL;
2428 } else
2429 cifs_sb->prepathlen = 0;
2430 cifs_sb->mnt_uid = pvolume_info->linux_uid;
2431 cifs_sb->mnt_gid = pvolume_info->linux_gid;
2432 cifs_sb->mnt_file_mode = pvolume_info->file_mode;
2433 cifs_sb->mnt_dir_mode = pvolume_info->dir_mode;
b6b38f70
JP		 2434 cFYI(1, "file mode: 0x%x dir mode: 0x%x",
2435 cifs_sb->mnt_file_mode, cifs_sb->mnt_dir_mode);
3b795210
SF		 2436
2437 if (pvolume_info->noperm)
2438 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
2439 if (pvolume_info->setuids)
2440 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
2441 if (pvolume_info->server_ino)
2442 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
2443 if (pvolume_info->remap)
2444 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
2445 if (pvolume_info->no_xattr)
2446 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
2447 if (pvolume_info->sfu_emul)
2448 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
2449 if (pvolume_info->nobrl)
2450 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
be652445 2451 if (pvolume_info->nostrictsync)
4717bed6 2452 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
13a6e42a
SF		 2453 if (pvolume_info->mand_lock)
2454 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
3b795210
SF		 2455 if (pvolume_info->cifs_acl)
2456 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
2457 if (pvolume_info->override_uid)
2458 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
2459 if (pvolume_info->override_gid)
2460 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
2461 if (pvolume_info->dynperm)
2462 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
2463 if (pvolume_info->direct_io) {
b6b38f70 2464 cFYI(1, "mounting share using direct i/o");
3b795210
SF		 2465 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
2466 }
2467
2468 if ((pvolume_info->cifs_acl) && (pvolume_info->dynperm))
b6b38f70
JP		 2469 cERROR(1, "mount option dynperm ignored if cifsacl "
2470 "mount option supported");
b1c8d2b4
JL		 2471}
2472
e4cce94c
IM		 2473static int
2474is_path_accessible(int xid, struct cifsTconInfo *tcon,
2475 struct cifs_sb_info *cifs_sb, const char *full_path)
2476{
2477 int rc;
e4cce94c
IM		 2478 FILE_ALL_INFO *pfile_info;
2479
e4cce94c
IM		 2480 pfile_info = kmalloc(sizeof(FILE_ALL_INFO), GFP_KERNEL);
2481 if (pfile_info == NULL)
2482 return -ENOMEM;
2483
2484 rc = CIFSSMBQPathInfo(xid, tcon, full_path, pfile_info,
2485 0 /* not legacy */, cifs_sb->local_nls,
2486 cifs_sb->mnt_cifs_flags &
2487 CIFS_MOUNT_MAP_SPECIAL_CHR);
2488 kfree(pfile_info);
2489 return rc;
2490}
2491
1bfe73c2
IM		 2492static void
2493cleanup_volume_info(struct smb_vol **pvolume_info)
2494{
2495 struct smb_vol *volume_info;
2496
ad6cca6d 2497 if (!pvolume_info || !*pvolume_info)
1bfe73c2
IM		 2498 return;
2499
2500 volume_info = *pvolume_info;
2501 kzfree(volume_info->password);
2502 kfree(volume_info->UNC);
2503 kfree(volume_info->prepath);
2504 kfree(volume_info);
2505 *pvolume_info = NULL;
2506 return;
2507}
2508
2d6d589d 2509#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2510/* build_path_to_root returns full path to root when
2511 * we do not have an exiting connection (tcon) */
2512static char *
2513build_unc_path_to_root(const struct smb_vol *volume_info,
2514 const struct cifs_sb_info *cifs_sb)
2515{
2516 char *full_path;
2517
2518 int unc_len = strnlen(volume_info->UNC, MAX_TREE_SIZE + 1);
2519 full_path = kmalloc(unc_len + cifs_sb->prepathlen + 1, GFP_KERNEL);
2520 if (full_path == NULL)
2521 return ERR_PTR(-ENOMEM);
2522
2523 strncpy(full_path, volume_info->UNC, unc_len);
2524 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) {
2525 int i;
2526 for (i = 0; i < unc_len; i++) {
2527 if (full_path[i] == '\\')
2528 full_path[i] = '/';
2529 }
2530 }
2531
2532 if (cifs_sb->prepathlen)
2533 strncpy(full_path + unc_len, cifs_sb->prepath,
2534 cifs_sb->prepathlen);
2535
2536 full_path[unc_len + cifs_sb->prepathlen] = 0; /* add trailing null */
2537 return full_path;
2538}
2d6d589d 2539#endif
1bfe73c2 2540
1da177e4
LT		 2541int
2542cifs_mount(struct super_block *sb, struct cifs_sb_info *cifs_sb,
1bfe73c2 2543 char *mount_data_global, const char *devname)
1da177e4 2544{
a2934c7b 2545 int rc;
1da177e4 2546 int xid;
7586b765 2547 struct smb_vol *volume_info;
a2934c7b
JL		 2548 struct cifsSesInfo *pSesInfo;
2549 struct cifsTconInfo *tcon;
2550 struct TCP_Server_Info *srvTcp;
e4cce94c 2551 char *full_path;
2d6d589d
SF		 2552 char *mount_data = mount_data_global;
2553#ifdef CONFIG_CIFS_DFS_UPCALL
1bfe73c2
IM		 2554 struct dfs_info3_param *referrals = NULL;
2555 unsigned int num_referrals = 0;
5c2503a8 2556 int referral_walks_count = 0;
1bfe73c2 2557try_mount_again:
2d6d589d 2558#endif
a2934c7b
JL		 2559 rc = 0;
2560 tcon = NULL;
2561 pSesInfo = NULL;
2562 srvTcp = NULL;
1bfe73c2 2563 full_path = NULL;
1da177e4
LT		 2564
2565 xid = GetXid();
2566
7586b765
JL		 2567 volume_info = kzalloc(sizeof(struct smb_vol), GFP_KERNEL);
2568 if (!volume_info) {
2569 rc = -ENOMEM;
2570 goto out;
2571 }
50c2f753 2572
7586b765 2573 if (cifs_parse_mount_options(mount_data, devname, volume_info)) {
70fe7dc0
JL		 2574 rc = -EINVAL;
2575 goto out;
1da177e4
LT		 2576 }
2577
7586b765 2578 if (volume_info->nullauth) {
b6b38f70 2579 cFYI(1, "null user");
7586b765
JL		 2580 volume_info->username = "";
2581 } else if (volume_info->username) {
1da177e4 2582 /* BB fixme parse for domain name here */
b6b38f70 2583 cFYI(1, "Username: %s", volume_info->username);
1da177e4 2584 } else {
bf820679 2585 cifserror("No username specified");
50c2f753
SF		 2586 /* In userspace mount helper we can get user name from alternate
2587 locations such as env variables and files on disk */
70fe7dc0
JL		 2588 rc = -EINVAL;
2589 goto out;
1da177e4
LT		 2590 }
2591
1da177e4 2592 /* this is needed for ASCII cp to Unicode converts */
7586b765 2593 if (volume_info->iocharset == NULL) {
a5fc4ce0
JL		 2594 /* load_nls_default cannot return null */
2595 volume_info->local_nls = load_nls_default();
1da177e4 2596 } else {
a5fc4ce0
JL		 2597 volume_info->local_nls = load_nls(volume_info->iocharset);
2598 if (volume_info->local_nls == NULL) {
b6b38f70
JP		 2599 cERROR(1, "CIFS mount error: iocharset %s not found",
2600 volume_info->iocharset);
70fe7dc0
JL		 2601 rc = -ELIBACC;
2602 goto out;
1da177e4
LT		 2603 }
2604 }
a5fc4ce0 2605 cifs_sb->local_nls = volume_info->local_nls;
1da177e4 2606
63c038c2 2607 /* get a reference to a tcp session */
7586b765 2608 srvTcp = cifs_get_tcp_session(volume_info);
63c038c2
JL		 2609 if (IS_ERR(srvTcp)) {
2610 rc = PTR_ERR(srvTcp);
2611 goto out;
1da177e4
LT		 2612 }
2613
36988c76
JL		 2614 /* get a reference to a SMB session */
2615 pSesInfo = cifs_get_smb_ses(srvTcp, volume_info);
2616 if (IS_ERR(pSesInfo)) {
2617 rc = PTR_ERR(pSesInfo);
2618 pSesInfo = NULL;
2619 goto mount_fail_check;
1da177e4 2620 }
50c2f753 2621
d00c28de
JL		 2622 setup_cifs_sb(volume_info, cifs_sb);
2623 if (pSesInfo->capabilities & CAP_LARGE_FILES)
2624 sb->s_maxbytes = MAX_LFS_FILESIZE;
2625 else
2626 sb->s_maxbytes = MAX_NON_LFS;
1da177e4 2627
8af18971 2628 /* BB FIXME fix time_gran to be larger for LANMAN sessions */
1da177e4
LT		 2629 sb->s_time_gran = 100;
2630
d00c28de
JL		 2631 /* search for existing tcon to this server share */
2632 tcon = cifs_get_tcon(pSesInfo, volume_info);
2633 if (IS_ERR(tcon)) {
2634 rc = PTR_ERR(tcon);
2635 tcon = NULL;
1bfe73c2 2636 goto remote_path_check;
d00c28de 2637 }
1bfe73c2 2638
d82c2df5 2639 cifs_sb->tcon = tcon;
c18c842b 2640
d82c2df5
SF		 2641 /* do not care if following two calls succeed - informational */
2642 if (!tcon->ipc) {
2643 CIFSSMBQFSDeviceInfo(xid, tcon);
2644 CIFSSMBQFSAttributeInfo(xid, tcon);
2645 }
03a143c9 2646
d82c2df5
SF		 2647 /* tell server which Unix caps we support */
2648 if (tcon->ses->capabilities & CAP_UNIX)
2649 /* reset of caps checks mount to see if unix extensions
2650 disabled for just this mount */
7586b765 2651 reset_cifs_unix_caps(xid, tcon, sb, volume_info);
d82c2df5
SF		 2652 else
2653 tcon->unix_ext = 0; /* server does not support them */
c18c842b 2654
d82c2df5
SF		 2655 /* convert forward to back slashes in prepath here if needed */
2656 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2657 convert_delimiter(cifs_sb->prepath, CIFS_DIR_SEP(cifs_sb));
03a143c9 2658
d82c2df5
SF		 2659 if ((tcon->unix_ext == 0) && (cifs_sb->rsize > (1024 * 127))) {
2660 cifs_sb->rsize = 1024 * 127;
b6b38f70 2661 cFYI(DBG2, "no very large read support, rsize now 127K");
1da177e4 2662 }
d82c2df5
SF		 2663 if (!(tcon->ses->capabilities & CAP_LARGE_WRITE_X))
2664 cifs_sb->wsize = min(cifs_sb->wsize,
2665 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
2666 if (!(tcon->ses->capabilities & CAP_LARGE_READ_X))
2667 cifs_sb->rsize = min(cifs_sb->rsize,
2668 (tcon->ses->server->maxBuf - MAX_CIFS_HDR_SIZE));
1da177e4 2669
1bfe73c2
IM		 2670remote_path_check:
2671 /* check if a whole path (including prepath) is not remote */
2672 if (!rc && cifs_sb->prepathlen && tcon) {
e4cce94c
IM		 2673 /* build_path_to_root works only when we have a valid tcon */
2674 full_path = cifs_build_path_to_root(cifs_sb);
2675 if (full_path == NULL) {
2676 rc = -ENOMEM;
2677 goto mount_fail_check;
2678 }
2679 rc = is_path_accessible(xid, tcon, cifs_sb, full_path);
1bfe73c2 2680 if (rc != -EREMOTE) {
e4cce94c
IM		 2681 kfree(full_path);
2682 goto mount_fail_check;
2683 }
2684 kfree(full_path);
2685 }
2686
1bfe73c2
IM		 2687 /* get referral if needed */
2688 if (rc == -EREMOTE) {
d036f50f 2689#ifdef CONFIG_CIFS_DFS_UPCALL
5c2503a8
IM		 2690 if (referral_walks_count > MAX_NESTED_LINKS) {
2691 /*
2692 * BB: when we implement proper loop detection,
2693 * we will remove this check. But now we need it
2694 * to prevent an indefinite loop if 'DFS tree' is
2695 * misconfigured (i.e. has loops).
2696 */
2697 rc = -ELOOP;
2698 goto mount_fail_check;
2699 }
1bfe73c2
IM		 2700 /* convert forward to back slashes in prepath here if needed */
2701 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_POSIX_PATHS) == 0)
2702 convert_delimiter(cifs_sb->prepath,
2703 CIFS_DIR_SEP(cifs_sb));
2704 full_path = build_unc_path_to_root(volume_info, cifs_sb);
2705 if (IS_ERR(full_path)) {
2706 rc = PTR_ERR(full_path);
2707 goto mount_fail_check;
2708 }
2709
b6b38f70 2710 cFYI(1, "Getting referral for: %s", full_path);
1bfe73c2
IM		 2711 rc = get_dfs_path(xid, pSesInfo , full_path + 1,
2712 cifs_sb->local_nls, &num_referrals, &referrals,
2713 cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MAP_SPECIAL_CHR);
2714 if (!rc && num_referrals > 0) {
2715 char *fake_devname = NULL;
2716
2717 if (mount_data != mount_data_global)
2718 kfree(mount_data);
7b91e266 2719
1bfe73c2
IM		 2720 mount_data = cifs_compose_mount_options(
2721 cifs_sb->mountdata, full_path + 1,
2722 referrals, &fake_devname);
7b91e266 2723
1bfe73c2 2724 free_dfs_info_array(referrals, num_referrals);
7b91e266
JL		 2725 kfree(fake_devname);
2726 kfree(full_path);
2727
2728 if (IS_ERR(mount_data)) {
2729 rc = PTR_ERR(mount_data);
2730 mount_data = NULL;
2731 goto mount_fail_check;
2732 }
1bfe73c2
IM		 2733
2734 if (tcon)
2735 cifs_put_tcon(tcon);
2736 else if (pSesInfo)
2737 cifs_put_smb_ses(pSesInfo);
2738
2739 cleanup_volume_info(&volume_info);
5c2503a8 2740 referral_walks_count++;
a2934c7b 2741 FreeXid(xid);
1bfe73c2
IM		 2742 goto try_mount_again;
2743 }
d036f50f
SF		 2744#else /* No DFS support, return error on mount */
2745 rc = -EOPNOTSUPP;
2746#endif
1bfe73c2
IM		 2747 }
2748
2749mount_fail_check:
2750 /* on error free sesinfo and tcon struct if needed */
2751 if (rc) {
2752 if (mount_data != mount_data_global)
2753 kfree(mount_data);
2754 /* If find_unc succeeded then rc == 0 so we can not end */
2755 /* up accidently freeing someone elses tcon struct */
2756 if (tcon)
2757 cifs_put_tcon(tcon);
2758 else if (pSesInfo)
2759 cifs_put_smb_ses(pSesInfo);
2760 else
2761 cifs_put_tcp_session(srvTcp);
2762 goto out;
2763 }
2764
7586b765 2765 /* volume_info->password is freed above when existing session found
1da177e4
LT		 2766 (in which case it is not needed anymore) but when new sesion is created
2767 the password ptr is put in the new session structure (in which case the
2768 password will be freed at unmount time) */
70fe7dc0
JL		 2769out:
2770 /* zero out password before freeing */
1bfe73c2 2771 cleanup_volume_info(&volume_info);
1da177e4
LT		 2772 FreeXid(xid);
2773 return rc;
2774}
2775
1da177e4
LT		 2776int
2777CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
2778 const char *tree, struct cifsTconInfo *tcon,
2779 const struct nls_table *nls_codepage)
2780{
2781 struct smb_hdr *smb_buffer;
2782 struct smb_hdr *smb_buffer_response;
2783 TCONX_REQ *pSMB;
2784 TCONX_RSP *pSMBr;
2785 unsigned char *bcc_ptr;
2786 int rc = 0;
cc20c031 2787 int length, bytes_left;
1da177e4
LT		 2788 __u16 count;
2789
2790 if (ses == NULL)
2791 return -EIO;
2792
2793 smb_buffer = cifs_buf_get();
ca43e3be 2794 if (smb_buffer == NULL)
1da177e4 2795 return -ENOMEM;
ca43e3be 2796
1da177e4
LT		 2797 smb_buffer_response = smb_buffer;
2798
2799 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
2800 NULL /*no tid */ , 4 /*wct */ );
1982c344
SF		 2801
2802 smb_buffer->Mid = GetNextMid(ses->server);
1da177e4
LT		 2803 smb_buffer->Uid = ses->Suid;
2804 pSMB = (TCONX_REQ *) smb_buffer;
2805 pSMBr = (TCONX_RSP *) smb_buffer_response;
2806
2807 pSMB->AndXCommand = 0xFF;
2808 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
1da177e4 2809 bcc_ptr = &pSMB->Password[0];
fb8c4b14 2810 if ((ses->server->secMode) & SECMODE_USER) {
eeac8047 2811 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
7c7b25bc 2812 *bcc_ptr = 0; /* password is null byte */
eeac8047 2813 bcc_ptr++; /* skip password */
7c7b25bc 2814 /* already aligned so no need to do it below */
eeac8047 2815 } else {
7c7b25bc 2816 pSMB->PasswordLength = cpu_to_le16(CIFS_SESS_KEY_SIZE);
eeac8047
SF		 2817 /* BB FIXME add code to fail this if NTLMv2 or Kerberos
2818 specified as required (when that support is added to
2819 the vfs in the future) as only NTLM or the much
7c7b25bc 2820 weaker LANMAN (which we do not send by default) is accepted
eeac8047
SF		 2821 by Samba (not sure whether other servers allow
2822 NTLMv2 password here) */
7c7b25bc 2823#ifdef CONFIG_CIFS_WEAK_PW_HASH
04912d6a 2824 if ((global_secflags & CIFSSEC_MAY_LANMAN) &&
00e485b0
JL		 2825 (ses->server->secType == LANMAN))
2826 calc_lanman_hash(tcon->password, ses->server->cryptKey,
4e53a3fb
JL		 2827 ses->server->secMode &
2828 SECMODE_PW_ENCRYPT ? true : false,
2829 bcc_ptr);
7c7b25bc
SF		 2830 else
2831#endif /* CIFS_WEAK_PW_HASH */
00e485b0 2832 SMBNTencrypt(tcon->password, ses->server->cryptKey,
eeac8047
SF		 2833 bcc_ptr);
2834
7c7b25bc 2835 bcc_ptr += CIFS_SESS_KEY_SIZE;
fb8c4b14 2836 if (ses->capabilities & CAP_UNICODE) {
7c7b25bc
SF		 2837 /* must align unicode strings */
2838 *bcc_ptr = 0; /* null byte password */
2839 bcc_ptr++;
2840 }
eeac8047 2841 }
1da177e4 2842
50c2f753 2843 if (ses->server->secMode &
a878fb22 2844 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
1da177e4
LT		 2845 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
2846
2847 if (ses->capabilities & CAP_STATUS32) {
2848 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
2849 }
2850 if (ses->capabilities & CAP_DFS) {
2851 smb_buffer->Flags2 |= SMBFLG2_DFS;
2852 }
2853 if (ses->capabilities & CAP_UNICODE) {
2854 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
2855 length =
50c2f753
SF		 2856 cifs_strtoUCS((__le16 *) bcc_ptr, tree,
2857 6 /* max utf8 char length in bytes */ *
a878fb22
SF		 2858 (/* server len*/ + 256 /* share len */), nls_codepage);
2859 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
1da177e4
LT		 2860 bcc_ptr += 2; /* skip trailing null */
2861 } else { /* ASCII */
1da177e4
LT		 2862 strcpy(bcc_ptr, tree);
2863 bcc_ptr += strlen(tree) + 1;
2864 }
2865 strcpy(bcc_ptr, "?????");
2866 bcc_ptr += strlen("?????");
2867 bcc_ptr += 1;
2868 count = bcc_ptr - &pSMB->Password[0];
2869 pSMB->hdr.smb_buf_length += count;
2870 pSMB->ByteCount = cpu_to_le16(count);
2871
133672ef
SF		 2872 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
2873 CIFS_STD_OP);
1da177e4 2874
1da177e4
LT		 2875 /* above now done in SendReceive */
2876 if ((rc == 0) && (tcon != NULL)) {
0e0d2cf3
SF		 2877 bool is_unicode;
2878
1da177e4 2879 tcon->tidStatus = CifsGood;
3b795210 2880 tcon->need_reconnect = false;
1da177e4
LT		 2881 tcon->tid = smb_buffer_response->Tid;
2882 bcc_ptr = pByteArea(smb_buffer_response);
cc20c031
JL		 2883 bytes_left = BCC(smb_buffer_response);
2884 length = strnlen(bcc_ptr, bytes_left - 2);
0e0d2cf3
SF		 2885 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
2886 is_unicode = true;
2887 else
2888 is_unicode = false;
2889
cc20c031 2890
50c2f753 2891 /* skip service field (NB: this field is always ASCII) */
7f8ed420
SF		 2892 if (length == 3) {
2893 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
2894 (bcc_ptr[2] == 'C')) {
b6b38f70 2895 cFYI(1, "IPC connection");
7f8ed420
SF		 2896 tcon->ipc = 1;
2897 }
2898 } else if (length == 2) {
2899 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
2900 /* the most common case */
b6b38f70 2901 cFYI(1, "disk share connection");
7f8ed420
SF		 2902 }
2903 }
50c2f753 2904 bcc_ptr += length + 1;
cc20c031 2905 bytes_left -= (length + 1);
1da177e4 2906 strncpy(tcon->treeName, tree, MAX_TREE_SIZE);
cc20c031
JL		 2907
2908 /* mostly informational -- no need to fail on error here */
90a98b2f 2909 kfree(tcon->nativeFileSystem);
d185cda7 2910 tcon->nativeFileSystem = cifs_strndup_from_ucs(bcc_ptr,
0e0d2cf3 2911 bytes_left, is_unicode,
cc20c031
JL		 2912 nls_codepage);
2913
b6b38f70 2914 cFYI(1, "nativeFileSystem=%s", tcon->nativeFileSystem);
cc20c031 2915
fb8c4b14 2916 if ((smb_buffer_response->WordCount == 3) ||
1a4e15a0
SF		 2917 (smb_buffer_response->WordCount == 7))
2918 /* field is in same location */
3979877e
SF		 2919 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
2920 else
2921 tcon->Flags = 0;
b6b38f70 2922 cFYI(1, "Tcon flags: 0x%x ", tcon->Flags);
1da177e4 2923 } else if ((rc == 0) && tcon == NULL) {
50c2f753 2924 /* all we need to save for IPC$ connection */
1da177e4
LT		 2925 ses->ipc_tid = smb_buffer_response->Tid;
2926 }
2927
a8a11d39 2928 cifs_buf_release(smb_buffer);
1da177e4
LT		 2929 return rc;
2930}
2931
2932int
2933cifs_umount(struct super_block *sb, struct cifs_sb_info *cifs_sb)
2934{
2935 int rc = 0;
50c2f753 2936 char *tmp;
1da177e4 2937
f1987b44
JL		 2938 if (cifs_sb->tcon)
2939 cifs_put_tcon(cifs_sb->tcon);
50c2f753 2940
1da177e4 2941 cifs_sb->tcon = NULL;
2fe87f02
SF		 2942 tmp = cifs_sb->prepath;
2943 cifs_sb->prepathlen = 0;
2944 cifs_sb->prepath = NULL;
2945 kfree(tmp);
1da177e4 2946
88e7d705 2947 return rc;
50c2f753 2948}
1da177e4 2949
198b5682 2950int cifs_negotiate_protocol(unsigned int xid, struct cifsSesInfo *ses)
1da177e4
LT		 2951{
2952 int rc = 0;
198b5682 2953 struct TCP_Server_Info *server = ses->server;
1da177e4 2954
198b5682
JL		 2955 /* only send once per connect */
2956 if (server->maxBuf != 0)
2957 return 0;
2958
2959 rc = CIFSSMBNegotiate(xid, ses);
2960 if (rc == -EAGAIN) {
2961 /* retry only once on 1st time connection */
2962 rc = CIFSSMBNegotiate(xid, ses);
2963 if (rc == -EAGAIN)
2964 rc = -EHOSTDOWN;
1da177e4 2965 }
198b5682
JL		 2966 if (rc == 0) {
2967 spin_lock(&GlobalMid_Lock);
2968 if (server->tcpStatus != CifsExiting)
2969 server->tcpStatus = CifsGood;
2970 else
2971 rc = -EHOSTDOWN;
2972 spin_unlock(&GlobalMid_Lock);
26b994fa 2973
198b5682
JL		 2974 }
2975
2976 return rc;
2977}
2978
2979
2980int cifs_setup_session(unsigned int xid, struct cifsSesInfo *ses,
2981 struct nls_table *nls_info)
2982{
2983 int rc = 0;
2984 struct TCP_Server_Info *server = ses->server;
26b994fa 2985
198b5682
JL		 2986 ses->flags = 0;
2987 ses->capabilities = server->capabilities;
26b994fa 2988 if (linuxExtEnabled == 0)
198b5682 2989 ses->capabilities &= (~CAP_UNIX);
20418acd 2990
b6b38f70
JP		 2991 cFYI(1, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d",
2992 server->secMode, server->capabilities, server->timeAdj);
cb7691b6 2993
198b5682 2994 rc = CIFS_SessSetup(xid, ses, nls_info);
26b994fa 2995 if (rc) {
b6b38f70 2996 cERROR(1, "Send error in SessSetup = %d", rc);
26b994fa 2997 } else {
b6b38f70 2998 cFYI(1, "CIFS Session Established successfully");
20418acd 2999 spin_lock(&GlobalMid_Lock);
198b5682
JL		 3000 ses->status = CifsGood;
3001 ses->need_reconnect = false;
20418acd 3002 spin_unlock(&GlobalMid_Lock);
1da177e4 3003 }
26b994fa 3004
1da177e4
LT		 3005 return rc;
3006}
3007
Clone of davem's net-next-2.6 tree