m68knommu: make sure 2nd FEC eth interface pins are enabled on 5275 ColdFire
[~shefty/rdma-dev.git] / fs / cifs / connect.c
1 /*
2  *   fs/cifs/connect.c
3  *
4  *   Copyright (C) International Business Machines  Corp., 2002,2009
5  *   Author(s): Steve French (sfrench@us.ibm.com)
6  *
7  *   This library is free software; you can redistribute it and/or modify
8  *   it under the terms of the GNU Lesser General Public License as published
9  *   by the Free Software Foundation; either version 2.1 of the License, or
10  *   (at your option) any later version.
11  *
12  *   This library is distributed in the hope that it will be useful,
13  *   but WITHOUT ANY WARRANTY; without even the implied warranty of
14  *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See
15  *   the GNU Lesser General Public License for more details.
16  *
17  *   You should have received a copy of the GNU Lesser General Public License
18  *   along with this library; if not, write to the Free Software
19  *   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
20  */
21 #include <linux/fs.h>
22 #include <linux/net.h>
23 #include <linux/string.h>
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/slab.h>
27 #include <linux/pagemap.h>
28 #include <linux/ctype.h>
29 #include <linux/utsname.h>
30 #include <linux/mempool.h>
31 #include <linux/delay.h>
32 #include <linux/completion.h>
33 #include <linux/kthread.h>
34 #include <linux/pagevec.h>
35 #include <linux/freezer.h>
36 #include <linux/namei.h>
37 #include <asm/uaccess.h>
38 #include <asm/processor.h>
39 #include <linux/inet.h>
40 #include <linux/module.h>
41 #include <keys/user-type.h>
42 #include <net/ipv6.h>
43 #include <linux/parser.h>
44
45 #include "cifspdu.h"
46 #include "cifsglob.h"
47 #include "cifsproto.h"
48 #include "cifs_unicode.h"
49 #include "cifs_debug.h"
50 #include "cifs_fs_sb.h"
51 #include "ntlmssp.h"
52 #include "nterr.h"
53 #include "rfc1002pdu.h"
54 #include "fscache.h"
55
56 #define CIFS_PORT 445
57 #define RFC1001_PORT 139
58
59 /* SMB echo "timeout" -- FIXME: tunable? */
60 #define SMB_ECHO_INTERVAL (60 * HZ)
61
62 extern mempool_t *cifs_req_poolp;
63
64 /* FIXME: should these be tunable? */
65 #define TLINK_ERROR_EXPIRE      (1 * HZ)
66 #define TLINK_IDLE_EXPIRE       (600 * HZ)
67
68 enum {
69
70         /* Mount options that take no arguments */
71         Opt_user_xattr, Opt_nouser_xattr,
72         Opt_forceuid, Opt_noforceuid,
73         Opt_noblocksend, Opt_noautotune,
74         Opt_hard, Opt_soft, Opt_perm, Opt_noperm,
75         Opt_mapchars, Opt_nomapchars, Opt_sfu,
76         Opt_nosfu, Opt_nodfs, Opt_posixpaths,
77         Opt_noposixpaths, Opt_nounix,
78         Opt_nocase,
79         Opt_brl, Opt_nobrl,
80         Opt_forcemandatorylock, Opt_setuids,
81         Opt_nosetuids, Opt_dynperm, Opt_nodynperm,
82         Opt_nohard, Opt_nosoft,
83         Opt_nointr, Opt_intr,
84         Opt_nostrictsync, Opt_strictsync,
85         Opt_serverino, Opt_noserverino,
86         Opt_rwpidforward, Opt_cifsacl, Opt_nocifsacl,
87         Opt_acl, Opt_noacl, Opt_locallease,
88         Opt_sign, Opt_seal, Opt_direct,
89         Opt_strictcache, Opt_noac,
90         Opt_fsc, Opt_mfsymlinks,
91         Opt_multiuser, Opt_sloppy,
92
93         /* Mount options which take numeric value */
94         Opt_backupuid, Opt_backupgid, Opt_uid,
95         Opt_cruid, Opt_gid, Opt_file_mode,
96         Opt_dirmode, Opt_port,
97         Opt_rsize, Opt_wsize, Opt_actimeo,
98
99         /* Mount options which take string value */
100         Opt_user, Opt_pass, Opt_ip,
101         Opt_unc, Opt_domain,
102         Opt_srcaddr, Opt_prefixpath,
103         Opt_iocharset, Opt_sockopt,
104         Opt_netbiosname, Opt_servern,
105         Opt_ver, Opt_sec,
106
107         /* Mount options to be ignored */
108         Opt_ignore,
109
110         /* Options which could be blank */
111         Opt_blank_pass,
112
113         Opt_err
114 };
115
116 static const match_table_t cifs_mount_option_tokens = {
117
118         { Opt_user_xattr, "user_xattr" },
119         { Opt_nouser_xattr, "nouser_xattr" },
120         { Opt_forceuid, "forceuid" },
121         { Opt_noforceuid, "noforceuid" },
122         { Opt_noblocksend, "noblocksend" },
123         { Opt_noautotune, "noautotune" },
124         { Opt_hard, "hard" },
125         { Opt_soft, "soft" },
126         { Opt_perm, "perm" },
127         { Opt_noperm, "noperm" },
128         { Opt_mapchars, "mapchars" },
129         { Opt_nomapchars, "nomapchars" },
130         { Opt_sfu, "sfu" },
131         { Opt_nosfu, "nosfu" },
132         { Opt_nodfs, "nodfs" },
133         { Opt_posixpaths, "posixpaths" },
134         { Opt_noposixpaths, "noposixpaths" },
135         { Opt_nounix, "nounix" },
136         { Opt_nounix, "nolinux" },
137         { Opt_nocase, "nocase" },
138         { Opt_nocase, "ignorecase" },
139         { Opt_brl, "brl" },
140         { Opt_nobrl, "nobrl" },
141         { Opt_nobrl, "nolock" },
142         { Opt_forcemandatorylock, "forcemandatorylock" },
143         { Opt_forcemandatorylock, "forcemand" },
144         { Opt_setuids, "setuids" },
145         { Opt_nosetuids, "nosetuids" },
146         { Opt_dynperm, "dynperm" },
147         { Opt_nodynperm, "nodynperm" },
148         { Opt_nohard, "nohard" },
149         { Opt_nosoft, "nosoft" },
150         { Opt_nointr, "nointr" },
151         { Opt_intr, "intr" },
152         { Opt_nostrictsync, "nostrictsync" },
153         { Opt_strictsync, "strictsync" },
154         { Opt_serverino, "serverino" },
155         { Opt_noserverino, "noserverino" },
156         { Opt_rwpidforward, "rwpidforward" },
157         { Opt_cifsacl, "cifsacl" },
158         { Opt_nocifsacl, "nocifsacl" },
159         { Opt_acl, "acl" },
160         { Opt_noacl, "noacl" },
161         { Opt_locallease, "locallease" },
162         { Opt_sign, "sign" },
163         { Opt_seal, "seal" },
164         { Opt_direct, "direct" },
165         { Opt_direct, "forceddirectio" },
166         { Opt_strictcache, "strictcache" },
167         { Opt_noac, "noac" },
168         { Opt_fsc, "fsc" },
169         { Opt_mfsymlinks, "mfsymlinks" },
170         { Opt_multiuser, "multiuser" },
171         { Opt_sloppy, "sloppy" },
172
173         { Opt_backupuid, "backupuid=%s" },
174         { Opt_backupgid, "backupgid=%s" },
175         { Opt_uid, "uid=%s" },
176         { Opt_cruid, "cruid=%s" },
177         { Opt_gid, "gid=%s" },
178         { Opt_file_mode, "file_mode=%s" },
179         { Opt_dirmode, "dirmode=%s" },
180         { Opt_dirmode, "dir_mode=%s" },
181         { Opt_port, "port=%s" },
182         { Opt_rsize, "rsize=%s" },
183         { Opt_wsize, "wsize=%s" },
184         { Opt_actimeo, "actimeo=%s" },
185
186         { Opt_user, "user=%s" },
187         { Opt_user, "username=%s" },
188         { Opt_blank_pass, "pass=" },
189         { Opt_pass, "pass=%s" },
190         { Opt_pass, "password=%s" },
191         { Opt_ip, "ip=%s" },
192         { Opt_ip, "addr=%s" },
193         { Opt_unc, "unc=%s" },
194         { Opt_unc, "target=%s" },
195         { Opt_unc, "path=%s" },
196         { Opt_domain, "dom=%s" },
197         { Opt_domain, "domain=%s" },
198         { Opt_domain, "workgroup=%s" },
199         { Opt_srcaddr, "srcaddr=%s" },
200         { Opt_prefixpath, "prefixpath=%s" },
201         { Opt_iocharset, "iocharset=%s" },
202         { Opt_sockopt, "sockopt=%s" },
203         { Opt_netbiosname, "netbiosname=%s" },
204         { Opt_servern, "servern=%s" },
205         { Opt_ver, "ver=%s" },
206         { Opt_ver, "vers=%s" },
207         { Opt_ver, "version=%s" },
208         { Opt_sec, "sec=%s" },
209
210         { Opt_ignore, "cred" },
211         { Opt_ignore, "credentials" },
212         { Opt_ignore, "guest" },
213         { Opt_ignore, "rw" },
214         { Opt_ignore, "ro" },
215         { Opt_ignore, "suid" },
216         { Opt_ignore, "nosuid" },
217         { Opt_ignore, "exec" },
218         { Opt_ignore, "noexec" },
219         { Opt_ignore, "nodev" },
220         { Opt_ignore, "noauto" },
221         { Opt_ignore, "dev" },
222         { Opt_ignore, "mand" },
223         { Opt_ignore, "nomand" },
224         { Opt_ignore, "_netdev" },
225
226         { Opt_err, NULL }
227 };
228
229 enum {
230         Opt_sec_krb5, Opt_sec_krb5i, Opt_sec_krb5p,
231         Opt_sec_ntlmsspi, Opt_sec_ntlmssp,
232         Opt_ntlm, Opt_sec_ntlmi, Opt_sec_ntlmv2i,
233         Opt_sec_nontlm, Opt_sec_lanman,
234         Opt_sec_none,
235
236         Opt_sec_err
237 };
238
239 static const match_table_t cifs_secflavor_tokens = {
240         { Opt_sec_krb5, "krb5" },
241         { Opt_sec_krb5i, "krb5i" },
242         { Opt_sec_krb5p, "krb5p" },
243         { Opt_sec_ntlmsspi, "ntlmsspi" },
244         { Opt_sec_ntlmssp, "ntlmssp" },
245         { Opt_ntlm, "ntlm" },
246         { Opt_sec_ntlmi, "ntlmi" },
247         { Opt_sec_ntlmv2i, "ntlmv2i" },
248         { Opt_sec_nontlm, "nontlm" },
249         { Opt_sec_lanman, "lanman" },
250         { Opt_sec_none, "none" },
251
252         { Opt_sec_err, NULL }
253 };
254
255 static int ip_connect(struct TCP_Server_Info *server);
256 static int generic_ip_connect(struct TCP_Server_Info *server);
257 static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
258 static void cifs_prune_tlinks(struct work_struct *work);
259 static int cifs_setup_volume_info(struct smb_vol *volume_info, char *mount_data,
260                                         const char *devname);
261
262 /*
263  * cifs tcp session reconnection
264  *
265  * mark tcp session as reconnecting so temporarily locked
266  * mark all smb sessions as reconnecting for tcp session
267  * reconnect tcp session
268  * wake up waiters on reconnection? - (not needed currently)
269  */
270 static int
271 cifs_reconnect(struct TCP_Server_Info *server)
272 {
273         int rc = 0;
274         struct list_head *tmp, *tmp2;
275         struct cifs_ses *ses;
276         struct cifs_tcon *tcon;
277         struct mid_q_entry *mid_entry;
278         struct list_head retry_list;
279
280         spin_lock(&GlobalMid_Lock);
281         if (server->tcpStatus == CifsExiting) {
282                 /* the demux thread will exit normally
283                 next time through the loop */
284                 spin_unlock(&GlobalMid_Lock);
285                 return rc;
286         } else
287                 server->tcpStatus = CifsNeedReconnect;
288         spin_unlock(&GlobalMid_Lock);
289         server->maxBuf = 0;
290
291         cFYI(1, "Reconnecting tcp session");
292
293         /* before reconnecting the tcp session, mark the smb session (uid)
294                 and the tid bad so they are not used until reconnected */
295         cFYI(1, "%s: marking sessions and tcons for reconnect", __func__);
296         spin_lock(&cifs_tcp_ses_lock);
297         list_for_each(tmp, &server->smb_ses_list) {
298                 ses = list_entry(tmp, struct cifs_ses, smb_ses_list);
299                 ses->need_reconnect = true;
300                 ses->ipc_tid = 0;
301                 list_for_each(tmp2, &ses->tcon_list) {
302                         tcon = list_entry(tmp2, struct cifs_tcon, tcon_list);
303                         tcon->need_reconnect = true;
304                 }
305         }
306         spin_unlock(&cifs_tcp_ses_lock);
307
308         /* do not want to be sending data on a socket we are freeing */
309         cFYI(1, "%s: tearing down socket", __func__);
310         mutex_lock(&server->srv_mutex);
311         if (server->ssocket) {
312                 cFYI(1, "State: 0x%x Flags: 0x%lx", server->ssocket->state,
313                         server->ssocket->flags);
314                 kernel_sock_shutdown(server->ssocket, SHUT_WR);
315                 cFYI(1, "Post shutdown state: 0x%x Flags: 0x%lx",
316                         server->ssocket->state,
317                         server->ssocket->flags);
318                 sock_release(server->ssocket);
319                 server->ssocket = NULL;
320         }
321         server->sequence_number = 0;
322         server->session_estab = false;
323         kfree(server->session_key.response);
324         server->session_key.response = NULL;
325         server->session_key.len = 0;
326         server->lstrp = jiffies;
327         mutex_unlock(&server->srv_mutex);
328
329         /* mark submitted MIDs for retry and issue callback */
330         INIT_LIST_HEAD(&retry_list);
331         cFYI(1, "%s: moving mids to private list", __func__);
332         spin_lock(&GlobalMid_Lock);
333         list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
334                 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
335                 if (mid_entry->mid_state == MID_REQUEST_SUBMITTED)
336                         mid_entry->mid_state = MID_RETRY_NEEDED;
337                 list_move(&mid_entry->qhead, &retry_list);
338         }
339         spin_unlock(&GlobalMid_Lock);
340
341         cFYI(1, "%s: issuing mid callbacks", __func__);
342         list_for_each_safe(tmp, tmp2, &retry_list) {
343                 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
344                 list_del_init(&mid_entry->qhead);
345                 mid_entry->callback(mid_entry);
346         }
347
348         do {
349                 try_to_freeze();
350
351                 /* we should try only the port we connected to before */
352                 rc = generic_ip_connect(server);
353                 if (rc) {
354                         cFYI(1, "reconnect error %d", rc);
355                         msleep(3000);
356                 } else {
357                         atomic_inc(&tcpSesReconnectCount);
358                         spin_lock(&GlobalMid_Lock);
359                         if (server->tcpStatus != CifsExiting)
360                                 server->tcpStatus = CifsNeedNegotiate;
361                         spin_unlock(&GlobalMid_Lock);
362                 }
363         } while (server->tcpStatus == CifsNeedReconnect);
364
365         return rc;
366 }
367
368 /*
369         return codes:
370                 0       not a transact2, or all data present
371                 >0      transact2 with that much data missing
372                 -EINVAL = invalid transact2
373
374  */
375 static int check2ndT2(char *buf)
376 {
377         struct smb_hdr *pSMB = (struct smb_hdr *)buf;
378         struct smb_t2_rsp *pSMBt;
379         int remaining;
380         __u16 total_data_size, data_in_this_rsp;
381
382         if (pSMB->Command != SMB_COM_TRANSACTION2)
383                 return 0;
384
385         /* check for plausible wct, bcc and t2 data and parm sizes */
386         /* check for parm and data offset going beyond end of smb */
387         if (pSMB->WordCount != 10) { /* coalesce_t2 depends on this */
388                 cFYI(1, "invalid transact2 word count");
389                 return -EINVAL;
390         }
391
392         pSMBt = (struct smb_t2_rsp *)pSMB;
393
394         total_data_size = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
395         data_in_this_rsp = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
396
397         if (total_data_size == data_in_this_rsp)
398                 return 0;
399         else if (total_data_size < data_in_this_rsp) {
400                 cFYI(1, "total data %d smaller than data in frame %d",
401                         total_data_size, data_in_this_rsp);
402                 return -EINVAL;
403         }
404
405         remaining = total_data_size - data_in_this_rsp;
406
407         cFYI(1, "missing %d bytes from transact2, check next response",
408                 remaining);
409         if (total_data_size > CIFSMaxBufSize) {
410                 cERROR(1, "TotalDataSize %d is over maximum buffer %d",
411                         total_data_size, CIFSMaxBufSize);
412                 return -EINVAL;
413         }
414         return remaining;
415 }
416
417 static int coalesce_t2(char *second_buf, struct smb_hdr *target_hdr)
418 {
419         struct smb_t2_rsp *pSMBs = (struct smb_t2_rsp *)second_buf;
420         struct smb_t2_rsp *pSMBt  = (struct smb_t2_rsp *)target_hdr;
421         char *data_area_of_tgt;
422         char *data_area_of_src;
423         int remaining;
424         unsigned int byte_count, total_in_tgt;
425         __u16 tgt_total_cnt, src_total_cnt, total_in_src;
426
427         src_total_cnt = get_unaligned_le16(&pSMBs->t2_rsp.TotalDataCount);
428         tgt_total_cnt = get_unaligned_le16(&pSMBt->t2_rsp.TotalDataCount);
429
430         if (tgt_total_cnt != src_total_cnt)
431                 cFYI(1, "total data count of primary and secondary t2 differ "
432                         "source=%hu target=%hu", src_total_cnt, tgt_total_cnt);
433
434         total_in_tgt = get_unaligned_le16(&pSMBt->t2_rsp.DataCount);
435
436         remaining = tgt_total_cnt - total_in_tgt;
437
438         if (remaining < 0) {
439                 cFYI(1, "Server sent too much data. tgt_total_cnt=%hu "
440                         "total_in_tgt=%hu", tgt_total_cnt, total_in_tgt);
441                 return -EPROTO;
442         }
443
444         if (remaining == 0) {
445                 /* nothing to do, ignore */
446                 cFYI(1, "no more data remains");
447                 return 0;
448         }
449
450         total_in_src = get_unaligned_le16(&pSMBs->t2_rsp.DataCount);
451         if (remaining < total_in_src)
452                 cFYI(1, "transact2 2nd response contains too much data");
453
454         /* find end of first SMB data area */
455         data_area_of_tgt = (char *)&pSMBt->hdr.Protocol +
456                                 get_unaligned_le16(&pSMBt->t2_rsp.DataOffset);
457
458         /* validate target area */
459         data_area_of_src = (char *)&pSMBs->hdr.Protocol +
460                                 get_unaligned_le16(&pSMBs->t2_rsp.DataOffset);
461
462         data_area_of_tgt += total_in_tgt;
463
464         total_in_tgt += total_in_src;
465         /* is the result too big for the field? */
466         if (total_in_tgt > USHRT_MAX) {
467                 cFYI(1, "coalesced DataCount too large (%u)", total_in_tgt);
468                 return -EPROTO;
469         }
470         put_unaligned_le16(total_in_tgt, &pSMBt->t2_rsp.DataCount);
471
472         /* fix up the BCC */
473         byte_count = get_bcc(target_hdr);
474         byte_count += total_in_src;
475         /* is the result too big for the field? */
476         if (byte_count > USHRT_MAX) {
477                 cFYI(1, "coalesced BCC too large (%u)", byte_count);
478                 return -EPROTO;
479         }
480         put_bcc(byte_count, target_hdr);
481
482         byte_count = be32_to_cpu(target_hdr->smb_buf_length);
483         byte_count += total_in_src;
484         /* don't allow buffer to overflow */
485         if (byte_count > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
486                 cFYI(1, "coalesced BCC exceeds buffer size (%u)", byte_count);
487                 return -ENOBUFS;
488         }
489         target_hdr->smb_buf_length = cpu_to_be32(byte_count);
490
491         /* copy second buffer into end of first buffer */
492         memcpy(data_area_of_tgt, data_area_of_src, total_in_src);
493
494         if (remaining != total_in_src) {
495                 /* more responses to go */
496                 cFYI(1, "waiting for more secondary responses");
497                 return 1;
498         }
499
500         /* we are done */
501         cFYI(1, "found the last secondary response");
502         return 0;
503 }
504
505 static void
506 cifs_echo_request(struct work_struct *work)
507 {
508         int rc;
509         struct TCP_Server_Info *server = container_of(work,
510                                         struct TCP_Server_Info, echo.work);
511
512         /*
513          * We cannot send an echo until the NEGOTIATE_PROTOCOL request is
514          * done, which is indicated by maxBuf != 0. Also, no need to ping if
515          * we got a response recently
516          */
517         if (server->maxBuf == 0 ||
518             time_before(jiffies, server->lstrp + SMB_ECHO_INTERVAL - HZ))
519                 goto requeue_echo;
520
521         rc = CIFSSMBEcho(server);
522         if (rc)
523                 cFYI(1, "Unable to send echo request to server: %s",
524                         server->hostname);
525
526 requeue_echo:
527         queue_delayed_work(cifsiod_wq, &server->echo, SMB_ECHO_INTERVAL);
528 }
529
530 static bool
531 allocate_buffers(struct TCP_Server_Info *server)
532 {
533         if (!server->bigbuf) {
534                 server->bigbuf = (char *)cifs_buf_get();
535                 if (!server->bigbuf) {
536                         cERROR(1, "No memory for large SMB response");
537                         msleep(3000);
538                         /* retry will check if exiting */
539                         return false;
540                 }
541         } else if (server->large_buf) {
542                 /* we are reusing a dirty large buf, clear its start */
543                 memset(server->bigbuf, 0, header_size());
544         }
545
546         if (!server->smallbuf) {
547                 server->smallbuf = (char *)cifs_small_buf_get();
548                 if (!server->smallbuf) {
549                         cERROR(1, "No memory for SMB response");
550                         msleep(1000);
551                         /* retry will check if exiting */
552                         return false;
553                 }
554                 /* beginning of smb buffer is cleared in our buf_get */
555         } else {
556                 /* if existing small buf clear beginning */
557                 memset(server->smallbuf, 0, header_size());
558         }
559
560         return true;
561 }
562
563 static bool
564 server_unresponsive(struct TCP_Server_Info *server)
565 {
566         /*
567          * We need to wait 2 echo intervals to make sure we handle such
568          * situations right:
569          * 1s  client sends a normal SMB request
570          * 2s  client gets a response
571          * 30s echo workqueue job pops, and decides we got a response recently
572          *     and don't need to send another
573          * ...
574          * 65s kernel_recvmsg times out, and we see that we haven't gotten
575          *     a response in >60s.
576          */
577         if (server->tcpStatus == CifsGood &&
578             time_after(jiffies, server->lstrp + 2 * SMB_ECHO_INTERVAL)) {
579                 cERROR(1, "Server %s has not responded in %d seconds. "
580                           "Reconnecting...", server->hostname,
581                           (2 * SMB_ECHO_INTERVAL) / HZ);
582                 cifs_reconnect(server);
583                 wake_up(&server->response_q);
584                 return true;
585         }
586
587         return false;
588 }
589
590 /*
591  * kvec_array_init - clone a kvec array, and advance into it
592  * @new:        pointer to memory for cloned array
593  * @iov:        pointer to original array
594  * @nr_segs:    number of members in original array
595  * @bytes:      number of bytes to advance into the cloned array
596  *
597  * This function will copy the array provided in iov to a section of memory
598  * and advance the specified number of bytes into the new array. It returns
599  * the number of segments in the new array. "new" must be at least as big as
600  * the original iov array.
601  */
602 static unsigned int
603 kvec_array_init(struct kvec *new, struct kvec *iov, unsigned int nr_segs,
604                 size_t bytes)
605 {
606         size_t base = 0;
607
608         while (bytes || !iov->iov_len) {
609                 int copy = min(bytes, iov->iov_len);
610
611                 bytes -= copy;
612                 base += copy;
613                 if (iov->iov_len == base) {
614                         iov++;
615                         nr_segs--;
616                         base = 0;
617                 }
618         }
619         memcpy(new, iov, sizeof(*iov) * nr_segs);
620         new->iov_base += base;
621         new->iov_len -= base;
622         return nr_segs;
623 }
624
625 static struct kvec *
626 get_server_iovec(struct TCP_Server_Info *server, unsigned int nr_segs)
627 {
628         struct kvec *new_iov;
629
630         if (server->iov && nr_segs <= server->nr_iov)
631                 return server->iov;
632
633         /* not big enough -- allocate a new one and release the old */
634         new_iov = kmalloc(sizeof(*new_iov) * nr_segs, GFP_NOFS);
635         if (new_iov) {
636                 kfree(server->iov);
637                 server->iov = new_iov;
638                 server->nr_iov = nr_segs;
639         }
640         return new_iov;
641 }
642
643 int
644 cifs_readv_from_socket(struct TCP_Server_Info *server, struct kvec *iov_orig,
645                        unsigned int nr_segs, unsigned int to_read)
646 {
647         int length = 0;
648         int total_read;
649         unsigned int segs;
650         struct msghdr smb_msg;
651         struct kvec *iov;
652
653         iov = get_server_iovec(server, nr_segs);
654         if (!iov)
655                 return -ENOMEM;
656
657         smb_msg.msg_control = NULL;
658         smb_msg.msg_controllen = 0;
659
660         for (total_read = 0; to_read; total_read += length, to_read -= length) {
661                 try_to_freeze();
662
663                 if (server_unresponsive(server)) {
664                         total_read = -EAGAIN;
665                         break;
666                 }
667
668                 segs = kvec_array_init(iov, iov_orig, nr_segs, total_read);
669
670                 length = kernel_recvmsg(server->ssocket, &smb_msg,
671                                         iov, segs, to_read, 0);
672
673                 if (server->tcpStatus == CifsExiting) {
674                         total_read = -ESHUTDOWN;
675                         break;
676                 } else if (server->tcpStatus == CifsNeedReconnect) {
677                         cifs_reconnect(server);
678                         total_read = -EAGAIN;
679                         break;
680                 } else if (length == -ERESTARTSYS ||
681                            length == -EAGAIN ||
682                            length == -EINTR) {
683                         /*
684                          * Minimum sleep to prevent looping, allowing socket
685                          * to clear and app threads to set tcpStatus
686                          * CifsNeedReconnect if server hung.
687                          */
688                         usleep_range(1000, 2000);
689                         length = 0;
690                         continue;
691                 } else if (length <= 0) {
692                         cFYI(1, "Received no data or error: expecting %d "
693                                 "got %d", to_read, length);
694                         cifs_reconnect(server);
695                         total_read = -EAGAIN;
696                         break;
697                 }
698         }
699         return total_read;
700 }
701
702 int
703 cifs_read_from_socket(struct TCP_Server_Info *server, char *buf,
704                       unsigned int to_read)
705 {
706         struct kvec iov;
707
708         iov.iov_base = buf;
709         iov.iov_len = to_read;
710
711         return cifs_readv_from_socket(server, &iov, 1, to_read);
712 }
713
714 static bool
715 is_smb_response(struct TCP_Server_Info *server, unsigned char type)
716 {
717         /*
718          * The first byte big endian of the length field,
719          * is actually not part of the length but the type
720          * with the most common, zero, as regular data.
721          */
722         switch (type) {
723         case RFC1002_SESSION_MESSAGE:
724                 /* Regular SMB response */
725                 return true;
726         case RFC1002_SESSION_KEEP_ALIVE:
727                 cFYI(1, "RFC 1002 session keep alive");
728                 break;
729         case RFC1002_POSITIVE_SESSION_RESPONSE:
730                 cFYI(1, "RFC 1002 positive session response");
731                 break;
732         case RFC1002_NEGATIVE_SESSION_RESPONSE:
733                 /*
734                  * We get this from Windows 98 instead of an error on
735                  * SMB negprot response.
736                  */
737                 cFYI(1, "RFC 1002 negative session response");
738                 /* give server a second to clean up */
739                 msleep(1000);
740                 /*
741                  * Always try 445 first on reconnect since we get NACK
742                  * on some if we ever connected to port 139 (the NACK
743                  * is since we do not begin with RFC1001 session
744                  * initialize frame).
745                  */
746                 cifs_set_port((struct sockaddr *)&server->dstaddr, CIFS_PORT);
747                 cifs_reconnect(server);
748                 wake_up(&server->response_q);
749                 break;
750         default:
751                 cERROR(1, "RFC 1002 unknown response type 0x%x", type);
752                 cifs_reconnect(server);
753         }
754
755         return false;
756 }
757
758 static struct mid_q_entry *
759 find_mid(struct TCP_Server_Info *server, char *buffer)
760 {
761         struct smb_hdr *buf = (struct smb_hdr *)buffer;
762         struct mid_q_entry *mid;
763
764         spin_lock(&GlobalMid_Lock);
765         list_for_each_entry(mid, &server->pending_mid_q, qhead) {
766                 if (mid->mid == buf->Mid &&
767                     mid->mid_state == MID_REQUEST_SUBMITTED &&
768                     le16_to_cpu(mid->command) == buf->Command) {
769                         spin_unlock(&GlobalMid_Lock);
770                         return mid;
771                 }
772         }
773         spin_unlock(&GlobalMid_Lock);
774         return NULL;
775 }
776
777 void
778 dequeue_mid(struct mid_q_entry *mid, bool malformed)
779 {
780 #ifdef CONFIG_CIFS_STATS2
781         mid->when_received = jiffies;
782 #endif
783         spin_lock(&GlobalMid_Lock);
784         if (!malformed)
785                 mid->mid_state = MID_RESPONSE_RECEIVED;
786         else
787                 mid->mid_state = MID_RESPONSE_MALFORMED;
788         list_del_init(&mid->qhead);
789         spin_unlock(&GlobalMid_Lock);
790 }
791
792 static void
793 handle_mid(struct mid_q_entry *mid, struct TCP_Server_Info *server,
794            char *buf, int malformed)
795 {
796         if (malformed == 0 && check2ndT2(buf) > 0) {
797                 mid->multiRsp = true;
798                 if (mid->resp_buf) {
799                         /* merge response - fix up 1st*/
800                         malformed = coalesce_t2(buf, mid->resp_buf);
801                         if (malformed > 0)
802                                 return;
803
804                         /* All parts received or packet is malformed. */
805                         mid->multiEnd = true;
806                         return dequeue_mid(mid, malformed);
807                 }
808                 if (!server->large_buf) {
809                         /*FIXME: switch to already allocated largebuf?*/
810                         cERROR(1, "1st trans2 resp needs bigbuf");
811                 } else {
812                         /* Have first buffer */
813                         mid->resp_buf = buf;
814                         mid->large_buf = true;
815                         server->bigbuf = NULL;
816                 }
817                 return;
818         }
819         mid->resp_buf = buf;
820         mid->large_buf = server->large_buf;
821         /* Was previous buf put in mpx struct for multi-rsp? */
822         if (!mid->multiRsp) {
823                 /* smb buffer will be freed by user thread */
824                 if (server->large_buf)
825                         server->bigbuf = NULL;
826                 else
827                         server->smallbuf = NULL;
828         }
829         dequeue_mid(mid, malformed);
830 }
831
832 static void clean_demultiplex_info(struct TCP_Server_Info *server)
833 {
834         int length;
835
836         /* take it off the list, if it's not already */
837         spin_lock(&cifs_tcp_ses_lock);
838         list_del_init(&server->tcp_ses_list);
839         spin_unlock(&cifs_tcp_ses_lock);
840
841         spin_lock(&GlobalMid_Lock);
842         server->tcpStatus = CifsExiting;
843         spin_unlock(&GlobalMid_Lock);
844         wake_up_all(&server->response_q);
845
846         /* check if we have blocked requests that need to free */
847         spin_lock(&server->req_lock);
848         if (server->credits <= 0)
849                 server->credits = 1;
850         spin_unlock(&server->req_lock);
851         /*
852          * Although there should not be any requests blocked on this queue it
853          * can not hurt to be paranoid and try to wake up requests that may
854          * haven been blocked when more than 50 at time were on the wire to the
855          * same server - they now will see the session is in exit state and get
856          * out of SendReceive.
857          */
858         wake_up_all(&server->request_q);
859         /* give those requests time to exit */
860         msleep(125);
861
862         if (server->ssocket) {
863                 sock_release(server->ssocket);
864                 server->ssocket = NULL;
865         }
866
867         if (!list_empty(&server->pending_mid_q)) {
868                 struct list_head dispose_list;
869                 struct mid_q_entry *mid_entry;
870                 struct list_head *tmp, *tmp2;
871
872                 INIT_LIST_HEAD(&dispose_list);
873                 spin_lock(&GlobalMid_Lock);
874                 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
875                         mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
876                         cFYI(1, "Clearing mid 0x%llx", mid_entry->mid);
877                         mid_entry->mid_state = MID_SHUTDOWN;
878                         list_move(&mid_entry->qhead, &dispose_list);
879                 }
880                 spin_unlock(&GlobalMid_Lock);
881
882                 /* now walk dispose list and issue callbacks */
883                 list_for_each_safe(tmp, tmp2, &dispose_list) {
884                         mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
885                         cFYI(1, "Callback mid 0x%llx", mid_entry->mid);
886                         list_del_init(&mid_entry->qhead);
887                         mid_entry->callback(mid_entry);
888                 }
889                 /* 1/8th of sec is more than enough time for them to exit */
890                 msleep(125);
891         }
892
893         if (!list_empty(&server->pending_mid_q)) {
894                 /*
895                  * mpx threads have not exited yet give them at least the smb
896                  * send timeout time for long ops.
897                  *
898                  * Due to delays on oplock break requests, we need to wait at
899                  * least 45 seconds before giving up on a request getting a
900                  * response and going ahead and killing cifsd.
901                  */
902                 cFYI(1, "Wait for exit from demultiplex thread");
903                 msleep(46000);
904                 /*
905                  * If threads still have not exited they are probably never
906                  * coming home not much else we can do but free the memory.
907                  */
908         }
909
910         kfree(server->hostname);
911         kfree(server->iov);
912         kfree(server);
913
914         length = atomic_dec_return(&tcpSesAllocCount);
915         if (length > 0)
916                 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
917                                 GFP_KERNEL);
918 }
919
920 static int
921 standard_receive3(struct TCP_Server_Info *server, struct mid_q_entry *mid)
922 {
923         int length;
924         char *buf = server->smallbuf;
925         unsigned int pdu_length = get_rfc1002_length(buf);
926
927         /* make sure this will fit in a large buffer */
928         if (pdu_length > CIFSMaxBufSize + max_header_size() - 4) {
929                 cERROR(1, "SMB response too long (%u bytes)",
930                         pdu_length);
931                 cifs_reconnect(server);
932                 wake_up(&server->response_q);
933                 return -EAGAIN;
934         }
935
936         /* switch to large buffer if too big for a small one */
937         if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
938                 server->large_buf = true;
939                 memcpy(server->bigbuf, buf, server->total_read);
940                 buf = server->bigbuf;
941         }
942
943         /* now read the rest */
944         length = cifs_read_from_socket(server, buf + header_size() - 1,
945                                        pdu_length - header_size() + 1 + 4);
946         if (length < 0)
947                 return length;
948         server->total_read += length;
949
950         dump_smb(buf, server->total_read);
951
952         /*
953          * We know that we received enough to get to the MID as we
954          * checked the pdu_length earlier. Now check to see
955          * if the rest of the header is OK. We borrow the length
956          * var for the rest of the loop to avoid a new stack var.
957          *
958          * 48 bytes is enough to display the header and a little bit
959          * into the payload for debugging purposes.
960          */
961         length = checkSMB(buf, server->total_read);
962         if (length != 0)
963                 cifs_dump_mem("Bad SMB: ", buf,
964                         min_t(unsigned int, server->total_read, 48));
965
966         if (!mid)
967                 return length;
968
969         handle_mid(mid, server, buf, length);
970         return 0;
971 }
972
973 static int
974 cifs_demultiplex_thread(void *p)
975 {
976         int length;
977         struct TCP_Server_Info *server = p;
978         unsigned int pdu_length;
979         char *buf = NULL;
980         struct task_struct *task_to_wake = NULL;
981         struct mid_q_entry *mid_entry;
982
983         current->flags |= PF_MEMALLOC;
984         cFYI(1, "Demultiplex PID: %d", task_pid_nr(current));
985
986         length = atomic_inc_return(&tcpSesAllocCount);
987         if (length > 1)
988                 mempool_resize(cifs_req_poolp, length + cifs_min_rcv,
989                                 GFP_KERNEL);
990
991         set_freezable();
992         while (server->tcpStatus != CifsExiting) {
993                 if (try_to_freeze())
994                         continue;
995
996                 if (!allocate_buffers(server))
997                         continue;
998
999                 server->large_buf = false;
1000                 buf = server->smallbuf;
1001                 pdu_length = 4; /* enough to get RFC1001 header */
1002
1003                 length = cifs_read_from_socket(server, buf, pdu_length);
1004                 if (length < 0)
1005                         continue;
1006                 server->total_read = length;
1007
1008                 /*
1009                  * The right amount was read from socket - 4 bytes,
1010                  * so we can now interpret the length field.
1011                  */
1012                 pdu_length = get_rfc1002_length(buf);
1013
1014                 cFYI(1, "RFC1002 header 0x%x", pdu_length);
1015                 if (!is_smb_response(server, buf[0]))
1016                         continue;
1017
1018                 /* make sure we have enough to get to the MID */
1019                 if (pdu_length < header_size() - 1 - 4) {
1020                         cERROR(1, "SMB response too short (%u bytes)",
1021                                 pdu_length);
1022                         cifs_reconnect(server);
1023                         wake_up(&server->response_q);
1024                         continue;
1025                 }
1026
1027                 /* read down to the MID */
1028                 length = cifs_read_from_socket(server, buf + 4,
1029                                                header_size() - 1 - 4);
1030                 if (length < 0)
1031                         continue;
1032                 server->total_read += length;
1033
1034                 mid_entry = find_mid(server, buf);
1035
1036                 if (!mid_entry || !mid_entry->receive)
1037                         length = standard_receive3(server, mid_entry);
1038                 else
1039                         length = mid_entry->receive(server, mid_entry);
1040
1041                 if (length < 0)
1042                         continue;
1043
1044                 if (server->large_buf)
1045                         buf = server->bigbuf;
1046
1047                 server->lstrp = jiffies;
1048                 if (mid_entry != NULL) {
1049                         if (!mid_entry->multiRsp || mid_entry->multiEnd)
1050                                 mid_entry->callback(mid_entry);
1051                 } else if (!is_valid_oplock_break(buf, server)) {
1052                         cERROR(1, "No task to wake, unknown frame received! "
1053                                    "NumMids %d", atomic_read(&midCount));
1054                         cifs_dump_mem("Received Data is: ", buf, header_size());
1055 #ifdef CONFIG_CIFS_DEBUG2
1056                         cifs_dump_detail(buf);
1057                         cifs_dump_mids(server);
1058 #endif /* CIFS_DEBUG2 */
1059
1060                 }
1061         } /* end while !EXITING */
1062
1063         /* buffer usually freed in free_mid - need to free it here on exit */
1064         cifs_buf_release(server->bigbuf);
1065         if (server->smallbuf) /* no sense logging a debug message if NULL */
1066                 cifs_small_buf_release(server->smallbuf);
1067
1068         task_to_wake = xchg(&server->tsk, NULL);
1069         clean_demultiplex_info(server);
1070
1071         /* if server->tsk was NULL then wait for a signal before exiting */
1072         if (!task_to_wake) {
1073                 set_current_state(TASK_INTERRUPTIBLE);
1074                 while (!signal_pending(current)) {
1075                         schedule();
1076                         set_current_state(TASK_INTERRUPTIBLE);
1077                 }
1078                 set_current_state(TASK_RUNNING);
1079         }
1080
1081         module_put_and_exit(0);
1082 }
1083
1084 /* extract the host portion of the UNC string */
1085 static char *
1086 extract_hostname(const char *unc)
1087 {
1088         const char *src;
1089         char *dst, *delim;
1090         unsigned int len;
1091
1092         /* skip double chars at beginning of string */
1093         /* BB: check validity of these bytes? */
1094         src = unc + 2;
1095
1096         /* delimiter between hostname and sharename is always '\\' now */
1097         delim = strchr(src, '\\');
1098         if (!delim)
1099                 return ERR_PTR(-EINVAL);
1100
1101         len = delim - src;
1102         dst = kmalloc((len + 1), GFP_KERNEL);
1103         if (dst == NULL)
1104                 return ERR_PTR(-ENOMEM);
1105
1106         memcpy(dst, src, len);
1107         dst[len] = '\0';
1108
1109         return dst;
1110 }
1111
1112 static int get_option_ul(substring_t args[], unsigned long *option)
1113 {
1114         int rc;
1115         char *string;
1116
1117         string = match_strdup(args);
1118         if (string == NULL)
1119                 return -ENOMEM;
1120         rc = kstrtoul(string, 10, option);
1121         kfree(string);
1122
1123         return rc;
1124 }
1125
1126
1127 static int cifs_parse_security_flavors(char *value,
1128                                        struct smb_vol *vol)
1129 {
1130
1131         substring_t args[MAX_OPT_ARGS];
1132
1133         switch (match_token(value, cifs_secflavor_tokens, args)) {
1134         case Opt_sec_krb5:
1135                 vol->secFlg |= CIFSSEC_MAY_KRB5;
1136                 break;
1137         case Opt_sec_krb5i:
1138                 vol->secFlg |= CIFSSEC_MAY_KRB5 | CIFSSEC_MUST_SIGN;
1139                 break;
1140         case Opt_sec_krb5p:
1141                 /* vol->secFlg |= CIFSSEC_MUST_SEAL | CIFSSEC_MAY_KRB5; */
1142                 cERROR(1, "Krb5 cifs privacy not supported");
1143                 break;
1144         case Opt_sec_ntlmssp:
1145                 vol->secFlg |= CIFSSEC_MAY_NTLMSSP;
1146                 break;
1147         case Opt_sec_ntlmsspi:
1148                 vol->secFlg |= CIFSSEC_MAY_NTLMSSP | CIFSSEC_MUST_SIGN;
1149                 break;
1150         case Opt_ntlm:
1151                 /* ntlm is default so can be turned off too */
1152                 vol->secFlg |= CIFSSEC_MAY_NTLM;
1153                 break;
1154         case Opt_sec_ntlmi:
1155                 vol->secFlg |= CIFSSEC_MAY_NTLM | CIFSSEC_MUST_SIGN;
1156                 break;
1157         case Opt_sec_nontlm:
1158                 vol->secFlg |= CIFSSEC_MAY_NTLMV2;
1159                 break;
1160         case Opt_sec_ntlmv2i:
1161                 vol->secFlg |= CIFSSEC_MAY_NTLMV2 | CIFSSEC_MUST_SIGN;
1162                 break;
1163 #ifdef CONFIG_CIFS_WEAK_PW_HASH
1164         case Opt_sec_lanman:
1165                 vol->secFlg |= CIFSSEC_MAY_LANMAN;
1166                 break;
1167 #endif
1168         case Opt_sec_none:
1169                 vol->nullauth = 1;
1170                 break;
1171         default:
1172                 cERROR(1, "bad security option: %s", value);
1173                 return 1;
1174         }
1175
1176         return 0;
1177 }
1178
1179 static int
1180 cifs_parse_mount_options(const char *mountdata, const char *devname,
1181                          struct smb_vol *vol)
1182 {
1183         char *data, *end;
1184         char *mountdata_copy = NULL, *options;
1185         unsigned int  temp_len, i, j;
1186         char separator[2];
1187         short int override_uid = -1;
1188         short int override_gid = -1;
1189         bool uid_specified = false;
1190         bool gid_specified = false;
1191         bool sloppy = false;
1192         char *invalid = NULL;
1193         char *nodename = utsname()->nodename;
1194         char *string = NULL;
1195         char *tmp_end, *value;
1196         char delim;
1197
1198         separator[0] = ',';
1199         separator[1] = 0;
1200         delim = separator[0];
1201
1202         /*
1203          * does not have to be perfect mapping since field is
1204          * informational, only used for servers that do not support
1205          * port 445 and it can be overridden at mount time
1206          */
1207         memset(vol->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
1208         for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
1209                 vol->source_rfc1001_name[i] = toupper(nodename[i]);
1210
1211         vol->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
1212         /* null target name indicates to use *SMBSERVR default called name
1213            if we end up sending RFC1001 session initialize */
1214         vol->target_rfc1001_name[0] = 0;
1215         vol->cred_uid = current_uid();
1216         vol->linux_uid = current_uid();
1217         vol->linux_gid = current_gid();
1218
1219         /* default to only allowing write access to owner of the mount */
1220         vol->dir_mode = vol->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1221
1222         /* vol->retry default is 0 (i.e. "soft" limited retry not hard retry) */
1223         /* default is always to request posix paths. */
1224         vol->posix_paths = 1;
1225         /* default to using server inode numbers where available */
1226         vol->server_ino = 1;
1227
1228         vol->actimeo = CIFS_DEF_ACTIMEO;
1229
1230         if (!mountdata)
1231                 goto cifs_parse_mount_err;
1232
1233         mountdata_copy = kstrndup(mountdata, PAGE_SIZE, GFP_KERNEL);
1234         if (!mountdata_copy)
1235                 goto cifs_parse_mount_err;
1236
1237         options = mountdata_copy;
1238         end = options + strlen(options);
1239
1240         if (strncmp(options, "sep=", 4) == 0) {
1241                 if (options[4] != 0) {
1242                         separator[0] = options[4];
1243                         options += 5;
1244                 } else {
1245                         cFYI(1, "Null separator not allowed");
1246                 }
1247         }
1248         vol->backupuid_specified = false; /* no backup intent for a user */
1249         vol->backupgid_specified = false; /* no backup intent for a group */
1250
1251         while ((data = strsep(&options, separator)) != NULL) {
1252                 substring_t args[MAX_OPT_ARGS];
1253                 unsigned long option;
1254                 int token;
1255
1256                 if (!*data)
1257                         continue;
1258
1259                 token = match_token(data, cifs_mount_option_tokens, args);
1260
1261                 switch (token) {
1262
1263                 /* Ingnore the following */
1264                 case Opt_ignore:
1265                         break;
1266
1267                 /* Boolean values */
1268                 case Opt_user_xattr:
1269                         vol->no_xattr = 0;
1270                         break;
1271                 case Opt_nouser_xattr:
1272                         vol->no_xattr = 1;
1273                         break;
1274                 case Opt_forceuid:
1275                         override_uid = 1;
1276                         break;
1277                 case Opt_noforceuid:
1278                         override_uid = 0;
1279                         break;
1280                 case Opt_noblocksend:
1281                         vol->noblocksnd = 1;
1282                         break;
1283                 case Opt_noautotune:
1284                         vol->noautotune = 1;
1285                         break;
1286                 case Opt_hard:
1287                         vol->retry = 1;
1288                         break;
1289                 case Opt_soft:
1290                         vol->retry = 0;
1291                         break;
1292                 case Opt_perm:
1293                         vol->noperm = 0;
1294                         break;
1295                 case Opt_noperm:
1296                         vol->noperm = 1;
1297                         break;
1298                 case Opt_mapchars:
1299                         vol->remap = 1;
1300                         break;
1301                 case Opt_nomapchars:
1302                         vol->remap = 0;
1303                         break;
1304                 case Opt_sfu:
1305                         vol->sfu_emul = 1;
1306                         break;
1307                 case Opt_nosfu:
1308                         vol->sfu_emul = 0;
1309                         break;
1310                 case Opt_nodfs:
1311                         vol->nodfs = 1;
1312                         break;
1313                 case Opt_posixpaths:
1314                         vol->posix_paths = 1;
1315                         break;
1316                 case Opt_noposixpaths:
1317                         vol->posix_paths = 0;
1318                         break;
1319                 case Opt_nounix:
1320                         vol->no_linux_ext = 1;
1321                         break;
1322                 case Opt_nocase:
1323                         vol->nocase = 1;
1324                         break;
1325                 case Opt_brl:
1326                         vol->nobrl =  0;
1327                         break;
1328                 case Opt_nobrl:
1329                         vol->nobrl =  1;
1330                         /*
1331                          * turn off mandatory locking in mode
1332                          * if remote locking is turned off since the
1333                          * local vfs will do advisory
1334                          */
1335                         if (vol->file_mode ==
1336                                 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1337                                 vol->file_mode = S_IALLUGO;
1338                         break;
1339                 case Opt_forcemandatorylock:
1340                         vol->mand_lock = 1;
1341                         break;
1342                 case Opt_setuids:
1343                         vol->setuids = 1;
1344                         break;
1345                 case Opt_nosetuids:
1346                         vol->setuids = 0;
1347                         break;
1348                 case Opt_dynperm:
1349                         vol->dynperm = true;
1350                         break;
1351                 case Opt_nodynperm:
1352                         vol->dynperm = false;
1353                         break;
1354                 case Opt_nohard:
1355                         vol->retry = 0;
1356                         break;
1357                 case Opt_nosoft:
1358                         vol->retry = 1;
1359                         break;
1360                 case Opt_nointr:
1361                         vol->intr = 0;
1362                         break;
1363                 case Opt_intr:
1364                         vol->intr = 1;
1365                         break;
1366                 case Opt_nostrictsync:
1367                         vol->nostrictsync = 1;
1368                         break;
1369                 case Opt_strictsync:
1370                         vol->nostrictsync = 0;
1371                         break;
1372                 case Opt_serverino:
1373                         vol->server_ino = 1;
1374                         break;
1375                 case Opt_noserverino:
1376                         vol->server_ino = 0;
1377                         break;
1378                 case Opt_rwpidforward:
1379                         vol->rwpidforward = 1;
1380                         break;
1381                 case Opt_cifsacl:
1382                         vol->cifs_acl = 1;
1383                         break;
1384                 case Opt_nocifsacl:
1385                         vol->cifs_acl = 0;
1386                         break;
1387                 case Opt_acl:
1388                         vol->no_psx_acl = 0;
1389                         break;
1390                 case Opt_noacl:
1391                         vol->no_psx_acl = 1;
1392                         break;
1393                 case Opt_locallease:
1394                         vol->local_lease = 1;
1395                         break;
1396                 case Opt_sign:
1397                         vol->secFlg |= CIFSSEC_MUST_SIGN;
1398                         break;
1399                 case Opt_seal:
1400                         /* we do not do the following in secFlags because seal
1401                          * is a per tree connection (mount) not a per socket
1402                          * or per-smb connection option in the protocol
1403                          * vol->secFlg |= CIFSSEC_MUST_SEAL;
1404                          */
1405                         vol->seal = 1;
1406                         break;
1407                 case Opt_direct:
1408                         vol->direct_io = 1;
1409                         break;
1410                 case Opt_strictcache:
1411                         vol->strict_io = 1;
1412                         break;
1413                 case Opt_noac:
1414                         printk(KERN_WARNING "CIFS: Mount option noac not "
1415                                 "supported. Instead set "
1416                                 "/proc/fs/cifs/LookupCacheEnabled to 0\n");
1417                         break;
1418                 case Opt_fsc:
1419 #ifndef CONFIG_CIFS_FSCACHE
1420                         cERROR(1, "FS-Cache support needs CONFIG_CIFS_FSCACHE "
1421                                   "kernel config option set");
1422                         goto cifs_parse_mount_err;
1423 #endif
1424                         vol->fsc = true;
1425                         break;
1426                 case Opt_mfsymlinks:
1427                         vol->mfsymlinks = true;
1428                         break;
1429                 case Opt_multiuser:
1430                         vol->multiuser = true;
1431                         break;
1432                 case Opt_sloppy:
1433                         sloppy = true;
1434                         break;
1435
1436                 /* Numeric Values */
1437                 case Opt_backupuid:
1438                         if (get_option_ul(args, &option)) {
1439                                 cERROR(1, "%s: Invalid backupuid value",
1440                                         __func__);
1441                                 goto cifs_parse_mount_err;
1442                         }
1443                         vol->backupuid = option;
1444                         vol->backupuid_specified = true;
1445                         break;
1446                 case Opt_backupgid:
1447                         if (get_option_ul(args, &option)) {
1448                                 cERROR(1, "%s: Invalid backupgid value",
1449                                         __func__);
1450                                 goto cifs_parse_mount_err;
1451                         }
1452                         vol->backupgid = option;
1453                         vol->backupgid_specified = true;
1454                         break;
1455                 case Opt_uid:
1456                         if (get_option_ul(args, &option)) {
1457                                 cERROR(1, "%s: Invalid uid value",
1458                                         __func__);
1459                                 goto cifs_parse_mount_err;
1460                         }
1461                         vol->linux_uid = option;
1462                         uid_specified = true;
1463                         break;
1464                 case Opt_cruid:
1465                         if (get_option_ul(args, &option)) {
1466                                 cERROR(1, "%s: Invalid cruid value",
1467                                         __func__);
1468                                 goto cifs_parse_mount_err;
1469                         }
1470                         vol->cred_uid = option;
1471                         break;
1472                 case Opt_gid:
1473                         if (get_option_ul(args, &option)) {
1474                                 cERROR(1, "%s: Invalid gid value",
1475                                                 __func__);
1476                                 goto cifs_parse_mount_err;
1477                         }
1478                         vol->linux_gid = option;
1479                         gid_specified = true;
1480                         break;
1481                 case Opt_file_mode:
1482                         if (get_option_ul(args, &option)) {
1483                                 cERROR(1, "%s: Invalid file_mode value",
1484                                         __func__);
1485                                 goto cifs_parse_mount_err;
1486                         }
1487                         vol->file_mode = option;
1488                         break;
1489                 case Opt_dirmode:
1490                         if (get_option_ul(args, &option)) {
1491                                 cERROR(1, "%s: Invalid dir_mode value",
1492                                         __func__);
1493                                 goto cifs_parse_mount_err;
1494                         }
1495                         vol->dir_mode = option;
1496                         break;
1497                 case Opt_port:
1498                         if (get_option_ul(args, &option)) {
1499                                 cERROR(1, "%s: Invalid port value",
1500                                         __func__);
1501                                 goto cifs_parse_mount_err;
1502                         }
1503                         vol->port = option;
1504                         break;
1505                 case Opt_rsize:
1506                         if (get_option_ul(args, &option)) {
1507                                 cERROR(1, "%s: Invalid rsize value",
1508                                         __func__);
1509                                 goto cifs_parse_mount_err;
1510                         }
1511                         vol->rsize = option;
1512                         break;
1513                 case Opt_wsize:
1514                         if (get_option_ul(args, &option)) {
1515                                 cERROR(1, "%s: Invalid wsize value",
1516                                         __func__);
1517                                 goto cifs_parse_mount_err;
1518                         }
1519                         vol->wsize = option;
1520                         break;
1521                 case Opt_actimeo:
1522                         if (get_option_ul(args, &option)) {
1523                                 cERROR(1, "%s: Invalid actimeo value",
1524                                         __func__);
1525                                 goto cifs_parse_mount_err;
1526                         }
1527                         vol->actimeo = HZ * option;
1528                         if (vol->actimeo > CIFS_MAX_ACTIMEO) {
1529                                 cERROR(1, "CIFS: attribute cache"
1530                                           "timeout too large");
1531                                 goto cifs_parse_mount_err;
1532                         }
1533                         break;
1534
1535                 /* String Arguments */
1536
1537                 case Opt_user:
1538                         string = match_strdup(args);
1539                         if (string == NULL)
1540                                 goto out_nomem;
1541
1542                         if (!*string) {
1543                                 /* null user, ie. anonymous authentication */
1544                                 vol->nullauth = 1;
1545                         } else if (strnlen(string, MAX_USERNAME_SIZE) >
1546                                                         MAX_USERNAME_SIZE) {
1547                                 printk(KERN_WARNING "CIFS: username too long\n");
1548                                 goto cifs_parse_mount_err;
1549                         }
1550                         vol->username = kstrdup(string, GFP_KERNEL);
1551                         if (!vol->username) {
1552                                 printk(KERN_WARNING "CIFS: no memory "
1553                                                     "for username\n");
1554                                 goto cifs_parse_mount_err;
1555                         }
1556                         break;
1557                 case Opt_blank_pass:
1558                         vol->password = NULL;
1559                         break;
1560                 case Opt_pass:
1561                         /* passwords have to be handled differently
1562                          * to allow the character used for deliminator
1563                          * to be passed within them
1564                          */
1565
1566                         /* Obtain the value string */
1567                         value = strchr(data, '=');
1568                         value++;
1569
1570                         /* Set tmp_end to end of the string */
1571                         tmp_end = (char *) value + strlen(value);
1572
1573                         /* Check if following character is the deliminator
1574                          * If yes, we have encountered a double deliminator
1575                          * reset the NULL character to the deliminator
1576                          */
1577                         if (tmp_end < end && tmp_end[1] == delim)
1578                                 tmp_end[0] = delim;
1579
1580                         /* Keep iterating until we get to a single deliminator
1581                          * OR the end
1582                          */
1583                         while ((tmp_end = strchr(tmp_end, delim)) != NULL &&
1584                                (tmp_end[1] == delim)) {
1585                                 tmp_end = (char *) &tmp_end[2];
1586                         }
1587
1588                         /* Reset var options to point to next element */
1589                         if (tmp_end) {
1590                                 tmp_end[0] = '\0';
1591                                 options = (char *) &tmp_end[1];
1592                         } else
1593                                 /* Reached the end of the mount option string */
1594                                 options = end;
1595
1596                         /* Now build new password string */
1597                         temp_len = strlen(value);
1598                         vol->password = kzalloc(temp_len+1, GFP_KERNEL);
1599                         if (vol->password == NULL) {
1600                                 printk(KERN_WARNING "CIFS: no memory "
1601                                                     "for password\n");
1602                                 goto cifs_parse_mount_err;
1603                         }
1604
1605                         for (i = 0, j = 0; i < temp_len; i++, j++) {
1606                                 vol->password[j] = value[i];
1607                                 if ((value[i] == delim) &&
1608                                      value[i+1] == delim)
1609                                         /* skip the second deliminator */
1610                                         i++;
1611                         }
1612                         vol->password[j] = '\0';
1613                         break;
1614                 case Opt_ip:
1615                         string = match_strdup(args);
1616                         if (string == NULL)
1617                                 goto out_nomem;
1618
1619                         if (!*string) {
1620                                 vol->UNCip = NULL;
1621                         } else if (strnlen(string, INET6_ADDRSTRLEN) >
1622                                                 INET6_ADDRSTRLEN) {
1623                                 printk(KERN_WARNING "CIFS: ip address "
1624                                                     "too long\n");
1625                                 goto cifs_parse_mount_err;
1626                         }
1627                         vol->UNCip = kstrdup(string, GFP_KERNEL);
1628                         if (!vol->UNCip) {
1629                                 printk(KERN_WARNING "CIFS: no memory "
1630                                                     "for UNC IP\n");
1631                                 goto cifs_parse_mount_err;
1632                         }
1633                         break;
1634                 case Opt_unc:
1635                         string = match_strdup(args);
1636                         if (string == NULL)
1637                                 goto out_nomem;
1638
1639                         if (!*string) {
1640                                 printk(KERN_WARNING "CIFS: invalid path to "
1641                                                     "network resource\n");
1642                                 goto cifs_parse_mount_err;
1643                         }
1644
1645                         temp_len = strnlen(string, 300);
1646                         if (temp_len  == 300) {
1647                                 printk(KERN_WARNING "CIFS: UNC name too long\n");
1648                                 goto cifs_parse_mount_err;
1649                         }
1650
1651                         vol->UNC = kmalloc(temp_len+1, GFP_KERNEL);
1652                         if (vol->UNC == NULL) {
1653                                 printk(KERN_WARNING "CIFS: no memory for UNC\n");
1654                                 goto cifs_parse_mount_err;
1655                         }
1656                         strcpy(vol->UNC, string);
1657
1658                         if (strncmp(string, "//", 2) == 0) {
1659                                 vol->UNC[0] = '\\';
1660                                 vol->UNC[1] = '\\';
1661                         } else if (strncmp(string, "\\\\", 2) != 0) {
1662                                 printk(KERN_WARNING "CIFS: UNC Path does not "
1663                                                     "begin with // or \\\\\n");
1664                                 goto cifs_parse_mount_err;
1665                         }
1666
1667                         break;
1668                 case Opt_domain:
1669                         string = match_strdup(args);
1670                         if (string == NULL)
1671                                 goto out_nomem;
1672
1673                         if (!*string) {
1674                                 printk(KERN_WARNING "CIFS: invalid domain"
1675                                                     " name\n");
1676                                 goto cifs_parse_mount_err;
1677                         } else if (strnlen(string, 256) == 256) {
1678                                 printk(KERN_WARNING "CIFS: domain name too"
1679                                                     " long\n");
1680                                 goto cifs_parse_mount_err;
1681                         }
1682
1683                         vol->domainname = kstrdup(string, GFP_KERNEL);
1684                         if (!vol->domainname) {
1685                                 printk(KERN_WARNING "CIFS: no memory "
1686                                                     "for domainname\n");
1687                                 goto cifs_parse_mount_err;
1688                         }
1689                         cFYI(1, "Domain name set");
1690                         break;
1691                 case Opt_srcaddr:
1692                         string = match_strdup(args);
1693                         if (string == NULL)
1694                                 goto out_nomem;
1695
1696                         if (!*string) {
1697                                 printk(KERN_WARNING "CIFS: srcaddr value not"
1698                                                     " specified\n");
1699                                 goto cifs_parse_mount_err;
1700                         } else if (!cifs_convert_address(
1701                                         (struct sockaddr *)&vol->srcaddr,
1702                                         string, strlen(string))) {
1703                                 printk(KERN_WARNING "CIFS:  Could not parse"
1704                                                     " srcaddr: %s\n", string);
1705                                 goto cifs_parse_mount_err;
1706                         }
1707                         break;
1708                 case Opt_prefixpath:
1709                         string = match_strdup(args);
1710                         if (string == NULL)
1711                                 goto out_nomem;
1712
1713                         if (!*string) {
1714                                 printk(KERN_WARNING "CIFS: Invalid path"
1715                                                     " prefix\n");
1716                                 goto cifs_parse_mount_err;
1717                         }
1718                         temp_len = strnlen(string, 1024);
1719                         if (string[0] != '/')
1720                                 temp_len++; /* missing leading slash */
1721                         if (temp_len > 1024) {
1722                                 printk(KERN_WARNING "CIFS: prefix too long\n");
1723                                 goto cifs_parse_mount_err;
1724                         }
1725
1726                         vol->prepath = kmalloc(temp_len+1, GFP_KERNEL);
1727                         if (vol->prepath == NULL) {
1728                                 printk(KERN_WARNING "CIFS: no memory "
1729                                                     "for path prefix\n");
1730                                 goto cifs_parse_mount_err;
1731                         }
1732
1733                         if (string[0] != '/') {
1734                                 vol->prepath[0] = '/';
1735                                 strcpy(vol->prepath+1, string);
1736                         } else
1737                                 strcpy(vol->prepath, string);
1738
1739                         break;
1740                 case Opt_iocharset:
1741                         string = match_strdup(args);
1742                         if (string == NULL)
1743                                 goto out_nomem;
1744
1745                         if (!*string) {
1746                                 printk(KERN_WARNING "CIFS: Invalid iocharset"
1747                                                     " specified\n");
1748                                 goto cifs_parse_mount_err;
1749                         } else if (strnlen(string, 1024) >= 65) {
1750                                 printk(KERN_WARNING "CIFS: iocharset name "
1751                                                     "too long.\n");
1752                                 goto cifs_parse_mount_err;
1753                         }
1754
1755                          if (strnicmp(string, "default", 7) != 0) {
1756                                 vol->iocharset = kstrdup(string,
1757                                                          GFP_KERNEL);
1758                                 if (!vol->iocharset) {
1759                                         printk(KERN_WARNING "CIFS: no memory"
1760                                                             "for charset\n");
1761                                         goto cifs_parse_mount_err;
1762                                 }
1763                         }
1764                         /* if iocharset not set then load_nls_default
1765                          * is used by caller
1766                          */
1767                         cFYI(1, "iocharset set to %s", string);
1768                         break;
1769                 case Opt_sockopt:
1770                         string = match_strdup(args);
1771                         if (string == NULL)
1772                                 goto out_nomem;
1773
1774                         if (!*string) {
1775                                 printk(KERN_WARNING "CIFS: No socket option"
1776                                                     " specified\n");
1777                                 goto cifs_parse_mount_err;
1778                         }
1779                         if (strnicmp(string, "TCP_NODELAY", 11) == 0)
1780                                 vol->sockopt_tcp_nodelay = 1;
1781                         break;
1782                 case Opt_netbiosname:
1783                         string = match_strdup(args);
1784                         if (string == NULL)
1785                                 goto out_nomem;
1786
1787                         if (!*string) {
1788                                 printk(KERN_WARNING "CIFS: Invalid (empty)"
1789                                                     " netbiosname\n");
1790                                 break;
1791                         }
1792
1793                         memset(vol->source_rfc1001_name, 0x20,
1794                                 RFC1001_NAME_LEN);
1795                         /*
1796                          * FIXME: are there cases in which a comma can
1797                          * be valid in workstation netbios name (and
1798                          * need special handling)?
1799                          */
1800                         for (i = 0; i < RFC1001_NAME_LEN; i++) {
1801                                 /* don't ucase netbiosname for user */
1802                                 if (string[i] == 0)
1803                                         break;
1804                                 vol->source_rfc1001_name[i] = string[i];
1805                         }
1806                         /* The string has 16th byte zero still from
1807                          * set at top of the function
1808                          */
1809                         if (i == RFC1001_NAME_LEN && string[i] != 0)
1810                                 printk(KERN_WARNING "CIFS: netbiosname"
1811                                        " longer than 15 truncated.\n");
1812
1813                         break;
1814                 case Opt_servern:
1815                         /* servernetbiosname specified override *SMBSERVER */
1816                         string = match_strdup(args);
1817                         if (string == NULL)
1818                                 goto out_nomem;
1819
1820                         if (!*string) {
1821                                 printk(KERN_WARNING "CIFS: Empty server"
1822                                         " netbiosname specified\n");
1823                                 break;
1824                         }
1825                         /* last byte, type, is 0x20 for servr type */
1826                         memset(vol->target_rfc1001_name, 0x20,
1827                                 RFC1001_NAME_LEN_WITH_NULL);
1828
1829                         /* BB are there cases in which a comma can be
1830                            valid in this workstation netbios name
1831                            (and need special handling)? */
1832
1833                         /* user or mount helper must uppercase the
1834                            netbios name */
1835                         for (i = 0; i < 15; i++) {
1836                                 if (string[i] == 0)
1837                                         break;
1838                                 vol->target_rfc1001_name[i] = string[i];
1839                         }
1840                         /* The string has 16th byte zero still from
1841                            set at top of the function  */
1842                         if (i == RFC1001_NAME_LEN && string[i] != 0)
1843                                 printk(KERN_WARNING "CIFS: server net"
1844                                        "biosname longer than 15 truncated.\n");
1845                         break;
1846                 case Opt_ver:
1847                         string = match_strdup(args);
1848                         if (string == NULL)
1849                                 goto out_nomem;
1850
1851                         if (!*string) {
1852                                 cERROR(1, "no protocol version specified"
1853                                           " after vers= mount option");
1854                                 goto cifs_parse_mount_err;
1855                         }
1856
1857                         if (strnicmp(string, "cifs", 4) == 0 ||
1858                             strnicmp(string, "1", 1) == 0) {
1859                                 /* This is the default */
1860                                 break;
1861                         }
1862                         /* For all other value, error */
1863                         printk(KERN_WARNING "CIFS: Invalid version"
1864                                             " specified\n");
1865                         goto cifs_parse_mount_err;
1866                 case Opt_sec:
1867                         string = match_strdup(args);
1868                         if (string == NULL)
1869                                 goto out_nomem;
1870
1871                         if (!*string) {
1872                                 printk(KERN_WARNING "CIFS: no security flavor"
1873                                                     " specified\n");
1874                                 break;
1875                         }
1876
1877                         if (cifs_parse_security_flavors(string, vol) != 0)
1878                                 goto cifs_parse_mount_err;
1879                         break;
1880                 default:
1881                         /*
1882                          * An option we don't recognize. Save it off for later
1883                          * if we haven't already found one
1884                          */
1885                         if (!invalid)
1886                                 invalid = data;
1887                         break;
1888                 }
1889                 /* Free up any allocated string */
1890                 kfree(string);
1891                 string = NULL;
1892         }
1893
1894         if (!sloppy && invalid) {
1895                 printk(KERN_ERR "CIFS: Unknown mount option \"%s\"\n", invalid);
1896                 goto cifs_parse_mount_err;
1897         }
1898
1899 #ifndef CONFIG_KEYS
1900         /* Muliuser mounts require CONFIG_KEYS support */
1901         if (vol->multiuser) {
1902                 cERROR(1, "Multiuser mounts require kernels with "
1903                           "CONFIG_KEYS enabled.");
1904                 goto cifs_parse_mount_err;
1905         }
1906 #endif
1907
1908         if (vol->UNCip == NULL)
1909                 vol->UNCip = &vol->UNC[2];
1910
1911         if (uid_specified)
1912                 vol->override_uid = override_uid;
1913         else if (override_uid == 1)
1914                 printk(KERN_NOTICE "CIFS: ignoring forceuid mount option "
1915                                    "specified with no uid= option.\n");
1916
1917         if (gid_specified)
1918                 vol->override_gid = override_gid;
1919         else if (override_gid == 1)
1920                 printk(KERN_NOTICE "CIFS: ignoring forcegid mount option "
1921                                    "specified with no gid= option.\n");
1922
1923         kfree(mountdata_copy);
1924         return 0;
1925
1926 out_nomem:
1927         printk(KERN_WARNING "Could not allocate temporary buffer\n");
1928 cifs_parse_mount_err:
1929         kfree(string);
1930         kfree(mountdata_copy);
1931         return 1;
1932 }
1933
1934 /** Returns true if srcaddr isn't specified and rhs isn't
1935  * specified, or if srcaddr is specified and
1936  * matches the IP address of the rhs argument.
1937  */
1938 static bool
1939 srcip_matches(struct sockaddr *srcaddr, struct sockaddr *rhs)
1940 {
1941         switch (srcaddr->sa_family) {
1942         case AF_UNSPEC:
1943                 return (rhs->sa_family == AF_UNSPEC);
1944         case AF_INET: {
1945                 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1946                 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1947                 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1948         }
1949         case AF_INET6: {
1950                 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1951                 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)&rhs;
1952                 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1953         }
1954         default:
1955                 WARN_ON(1);
1956                 return false; /* don't expect to be here */
1957         }
1958 }
1959
1960 /*
1961  * If no port is specified in addr structure, we try to match with 445 port
1962  * and if it fails - with 139 ports. It should be called only if address
1963  * families of server and addr are equal.
1964  */
1965 static bool
1966 match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1967 {
1968         __be16 port, *sport;
1969
1970         switch (addr->sa_family) {
1971         case AF_INET:
1972                 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1973                 port = ((struct sockaddr_in *) addr)->sin_port;
1974                 break;
1975         case AF_INET6:
1976                 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1977                 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1978                 break;
1979         default:
1980                 WARN_ON(1);
1981                 return false;
1982         }
1983
1984         if (!port) {
1985                 port = htons(CIFS_PORT);
1986                 if (port == *sport)
1987                         return true;
1988
1989                 port = htons(RFC1001_PORT);
1990         }
1991
1992         return port == *sport;
1993 }
1994
1995 static bool
1996 match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1997               struct sockaddr *srcaddr)
1998 {
1999         switch (addr->sa_family) {
2000         case AF_INET: {
2001                 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
2002                 struct sockaddr_in *srv_addr4 =
2003                                         (struct sockaddr_in *)&server->dstaddr;
2004
2005                 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
2006                         return false;
2007                 break;
2008         }
2009         case AF_INET6: {
2010                 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
2011                 struct sockaddr_in6 *srv_addr6 =
2012                                         (struct sockaddr_in6 *)&server->dstaddr;
2013
2014                 if (!ipv6_addr_equal(&addr6->sin6_addr,
2015                                      &srv_addr6->sin6_addr))
2016                         return false;
2017                 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
2018                         return false;
2019                 break;
2020         }
2021         default:
2022                 WARN_ON(1);
2023                 return false; /* don't expect to be here */
2024         }
2025
2026         if (!srcip_matches(srcaddr, (struct sockaddr *)&server->srcaddr))
2027                 return false;
2028
2029         return true;
2030 }
2031
2032 static bool
2033 match_security(struct TCP_Server_Info *server, struct smb_vol *vol)
2034 {
2035         unsigned int secFlags;
2036
2037         if (vol->secFlg & (~(CIFSSEC_MUST_SIGN | CIFSSEC_MUST_SEAL)))
2038                 secFlags = vol->secFlg;
2039         else
2040                 secFlags = global_secflags | vol->secFlg;
2041
2042         switch (server->secType) {
2043         case LANMAN:
2044                 if (!(secFlags & (CIFSSEC_MAY_LANMAN|CIFSSEC_MAY_PLNTXT)))
2045                         return false;
2046                 break;
2047         case NTLMv2:
2048                 if (!(secFlags & CIFSSEC_MAY_NTLMV2))
2049                         return false;
2050                 break;
2051         case NTLM:
2052                 if (!(secFlags & CIFSSEC_MAY_NTLM))
2053                         return false;
2054                 break;
2055         case Kerberos:
2056                 if (!(secFlags & CIFSSEC_MAY_KRB5))
2057                         return false;
2058                 break;
2059         case RawNTLMSSP:
2060                 if (!(secFlags & CIFSSEC_MAY_NTLMSSP))
2061                         return false;
2062                 break;
2063         default:
2064                 /* shouldn't happen */
2065                 return false;
2066         }
2067
2068         /* now check if signing mode is acceptable */
2069         if ((secFlags & CIFSSEC_MAY_SIGN) == 0 &&
2070             (server->sec_mode & SECMODE_SIGN_REQUIRED))
2071                         return false;
2072         else if (((secFlags & CIFSSEC_MUST_SIGN) == CIFSSEC_MUST_SIGN) &&
2073                  (server->sec_mode &
2074                   (SECMODE_SIGN_ENABLED|SECMODE_SIGN_REQUIRED)) == 0)
2075                         return false;
2076
2077         return true;
2078 }
2079
2080 static int match_server(struct TCP_Server_Info *server, struct sockaddr *addr,
2081                          struct smb_vol *vol)
2082 {
2083         if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
2084                 return 0;
2085
2086         if (!match_address(server, addr,
2087                            (struct sockaddr *)&vol->srcaddr))
2088                 return 0;
2089
2090         if (!match_port(server, addr))
2091                 return 0;
2092
2093         if (!match_security(server, vol))
2094                 return 0;
2095
2096         return 1;
2097 }
2098
2099 static struct TCP_Server_Info *
2100 cifs_find_tcp_session(struct sockaddr *addr, struct smb_vol *vol)
2101 {
2102         struct TCP_Server_Info *server;
2103
2104         spin_lock(&cifs_tcp_ses_lock);
2105         list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
2106                 if (!match_server(server, addr, vol))
2107                         continue;
2108
2109                 ++server->srv_count;
2110                 spin_unlock(&cifs_tcp_ses_lock);
2111                 cFYI(1, "Existing tcp session with server found");
2112                 return server;
2113         }
2114         spin_unlock(&cifs_tcp_ses_lock);
2115         return NULL;
2116 }
2117
2118 static void
2119 cifs_put_tcp_session(struct TCP_Server_Info *server)
2120 {
2121         struct task_struct *task;
2122
2123         spin_lock(&cifs_tcp_ses_lock);
2124         if (--server->srv_count > 0) {
2125                 spin_unlock(&cifs_tcp_ses_lock);
2126                 return;
2127         }
2128
2129         put_net(cifs_net_ns(server));
2130
2131         list_del_init(&server->tcp_ses_list);
2132         spin_unlock(&cifs_tcp_ses_lock);
2133
2134         cancel_delayed_work_sync(&server->echo);
2135
2136         spin_lock(&GlobalMid_Lock);
2137         server->tcpStatus = CifsExiting;
2138         spin_unlock(&GlobalMid_Lock);
2139
2140         cifs_crypto_shash_release(server);
2141         cifs_fscache_release_client_cookie(server);
2142
2143         kfree(server->session_key.response);
2144         server->session_key.response = NULL;
2145         server->session_key.len = 0;
2146
2147         task = xchg(&server->tsk, NULL);
2148         if (task)
2149                 force_sig(SIGKILL, task);
2150 }
2151
2152 static struct TCP_Server_Info *
2153 cifs_get_tcp_session(struct smb_vol *volume_info)
2154 {
2155         struct TCP_Server_Info *tcp_ses = NULL;
2156         struct sockaddr_storage addr;
2157         struct sockaddr_in *sin_server = (struct sockaddr_in *) &addr;
2158         struct sockaddr_in6 *sin_server6 = (struct sockaddr_in6 *) &addr;
2159         int rc;
2160
2161         memset(&addr, 0, sizeof(struct sockaddr_storage));
2162
2163         cFYI(1, "UNC: %s ip: %s", volume_info->UNC, volume_info->UNCip);
2164
2165         if (volume_info->UNCip && volume_info->UNC) {
2166                 rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
2167                                         volume_info->UNCip,
2168                                         strlen(volume_info->UNCip),
2169                                         volume_info->port);
2170                 if (!rc) {
2171                         /* we failed translating address */
2172                         rc = -EINVAL;
2173                         goto out_err;
2174                 }
2175         } else if (volume_info->UNCip) {
2176                 /* BB using ip addr as tcp_ses name to connect to the
2177                    DFS root below */
2178                 cERROR(1, "Connecting to DFS root not implemented yet");
2179                 rc = -EINVAL;
2180                 goto out_err;
2181         } else /* which tcp_sess DFS root would we conect to */ {
2182                 cERROR(1, "CIFS mount error: No UNC path (e.g. -o "
2183                         "unc=//192.168.1.100/public) specified");
2184                 rc = -EINVAL;
2185                 goto out_err;
2186         }
2187
2188         /* see if we already have a matching tcp_ses */
2189         tcp_ses = cifs_find_tcp_session((struct sockaddr *)&addr, volume_info);
2190         if (tcp_ses)
2191                 return tcp_ses;
2192
2193         tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
2194         if (!tcp_ses) {
2195                 rc = -ENOMEM;
2196                 goto out_err;
2197         }
2198
2199         rc = cifs_crypto_shash_allocate(tcp_ses);
2200         if (rc) {
2201                 cERROR(1, "could not setup hash structures rc %d", rc);
2202                 goto out_err;
2203         }
2204
2205         cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
2206         tcp_ses->hostname = extract_hostname(volume_info->UNC);
2207         if (IS_ERR(tcp_ses->hostname)) {
2208                 rc = PTR_ERR(tcp_ses->hostname);
2209                 goto out_err_crypto_release;
2210         }
2211
2212         tcp_ses->noblocksnd = volume_info->noblocksnd;
2213         tcp_ses->noautotune = volume_info->noautotune;
2214         tcp_ses->tcp_nodelay = volume_info->sockopt_tcp_nodelay;
2215         tcp_ses->in_flight = 0;
2216         tcp_ses->credits = 1;
2217         init_waitqueue_head(&tcp_ses->response_q);
2218         init_waitqueue_head(&tcp_ses->request_q);
2219         INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
2220         mutex_init(&tcp_ses->srv_mutex);
2221         memcpy(tcp_ses->workstation_RFC1001_name,
2222                 volume_info->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
2223         memcpy(tcp_ses->server_RFC1001_name,
2224                 volume_info->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
2225         tcp_ses->session_estab = false;
2226         tcp_ses->sequence_number = 0;
2227         tcp_ses->lstrp = jiffies;
2228         INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
2229         INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
2230         INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
2231
2232         /*
2233          * at this point we are the only ones with the pointer
2234          * to the struct since the kernel thread not created yet
2235          * no need to spinlock this init of tcpStatus or srv_count
2236          */
2237         tcp_ses->tcpStatus = CifsNew;
2238         memcpy(&tcp_ses->srcaddr, &volume_info->srcaddr,
2239                sizeof(tcp_ses->srcaddr));
2240         ++tcp_ses->srv_count;
2241
2242         if (addr.ss_family == AF_INET6) {
2243                 cFYI(1, "attempting ipv6 connect");
2244                 /* BB should we allow ipv6 on port 139? */
2245                 /* other OS never observed in Wild doing 139 with v6 */
2246                 memcpy(&tcp_ses->dstaddr, sin_server6,
2247                        sizeof(struct sockaddr_in6));
2248         } else
2249                 memcpy(&tcp_ses->dstaddr, sin_server,
2250                        sizeof(struct sockaddr_in));
2251
2252         rc = ip_connect(tcp_ses);
2253         if (rc < 0) {
2254                 cERROR(1, "Error connecting to socket. Aborting operation");
2255                 goto out_err_crypto_release;
2256         }
2257
2258         /*
2259          * since we're in a cifs function already, we know that
2260          * this will succeed. No need for try_module_get().
2261          */
2262         __module_get(THIS_MODULE);
2263         tcp_ses->tsk = kthread_run(cifs_demultiplex_thread,
2264                                   tcp_ses, "cifsd");
2265         if (IS_ERR(tcp_ses->tsk)) {
2266                 rc = PTR_ERR(tcp_ses->tsk);
2267                 cERROR(1, "error %d create cifsd thread", rc);
2268                 module_put(THIS_MODULE);
2269                 goto out_err_crypto_release;
2270         }
2271         tcp_ses->tcpStatus = CifsNeedNegotiate;
2272
2273         /* thread spawned, put it on the list */
2274         spin_lock(&cifs_tcp_ses_lock);
2275         list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
2276         spin_unlock(&cifs_tcp_ses_lock);
2277
2278         cifs_fscache_get_client_cookie(tcp_ses);
2279
2280         /* queue echo request delayed work */
2281         queue_delayed_work(cifsiod_wq, &tcp_ses->echo, SMB_ECHO_INTERVAL);
2282
2283         return tcp_ses;
2284
2285 out_err_crypto_release:
2286         cifs_crypto_shash_release(tcp_ses);
2287
2288         put_net(cifs_net_ns(tcp_ses));
2289
2290 out_err:
2291         if (tcp_ses) {
2292                 if (!IS_ERR(tcp_ses->hostname))
2293                         kfree(tcp_ses->hostname);
2294                 if (tcp_ses->ssocket)
2295                         sock_release(tcp_ses->ssocket);
2296                 kfree(tcp_ses);
2297         }
2298         return ERR_PTR(rc);
2299 }
2300
2301 static int match_session(struct cifs_ses *ses, struct smb_vol *vol)
2302 {
2303         switch (ses->server->secType) {
2304         case Kerberos:
2305                 if (vol->cred_uid != ses->cred_uid)
2306                         return 0;
2307                 break;
2308         default:
2309                 /* NULL username means anonymous session */
2310                 if (ses->user_name == NULL) {
2311                         if (!vol->nullauth)
2312                                 return 0;
2313                         break;
2314                 }
2315
2316                 /* anything else takes username/password */
2317                 if (strncmp(ses->user_name,
2318                             vol->username ? vol->username : "",
2319                             MAX_USERNAME_SIZE))
2320                         return 0;
2321                 if (strlen(vol->username) != 0 &&
2322                     ses->password != NULL &&
2323                     strncmp(ses->password,
2324                             vol->password ? vol->password : "",
2325                             MAX_PASSWORD_SIZE))
2326                         return 0;
2327         }
2328         return 1;
2329 }
2330
2331 static struct cifs_ses *
2332 cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb_vol *vol)
2333 {
2334         struct cifs_ses *ses;
2335
2336         spin_lock(&cifs_tcp_ses_lock);
2337         list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
2338                 if (!match_session(ses, vol))
2339                         continue;
2340                 ++ses->ses_count;
2341                 spin_unlock(&cifs_tcp_ses_lock);
2342                 return ses;
2343         }
2344         spin_unlock(&cifs_tcp_ses_lock);
2345         return NULL;
2346 }
2347
2348 static void
2349 cifs_put_smb_ses(struct cifs_ses *ses)
2350 {
2351         int xid;
2352         struct TCP_Server_Info *server = ses->server;
2353
2354         cFYI(1, "%s: ses_count=%d\n", __func__, ses->ses_count);
2355         spin_lock(&cifs_tcp_ses_lock);
2356         if (--ses->ses_count > 0) {
2357                 spin_unlock(&cifs_tcp_ses_lock);
2358                 return;
2359         }
2360
2361         list_del_init(&ses->smb_ses_list);
2362         spin_unlock(&cifs_tcp_ses_lock);
2363
2364         if (ses->status == CifsGood) {
2365                 xid = GetXid();
2366                 CIFSSMBLogoff(xid, ses);
2367                 _FreeXid(xid);
2368         }
2369         sesInfoFree(ses);
2370         cifs_put_tcp_session(server);
2371 }
2372
2373 #ifdef CONFIG_KEYS
2374
2375 /* strlen("cifs:a:") + INET6_ADDRSTRLEN + 1 */
2376 #define CIFSCREDS_DESC_SIZE (7 + INET6_ADDRSTRLEN + 1)
2377
2378 /* Populate username and pw fields from keyring if possible */
2379 static int
2380 cifs_set_cifscreds(struct smb_vol *vol, struct cifs_ses *ses)
2381 {
2382         int rc = 0;
2383         char *desc, *delim, *payload;
2384         ssize_t len;
2385         struct key *key;
2386         struct TCP_Server_Info *server = ses->server;
2387         struct sockaddr_in *sa;
2388         struct sockaddr_in6 *sa6;
2389         struct user_key_payload *upayload;
2390
2391         desc = kmalloc(CIFSCREDS_DESC_SIZE, GFP_KERNEL);
2392         if (!desc)
2393                 return -ENOMEM;
2394
2395         /* try to find an address key first */
2396         switch (server->dstaddr.ss_family) {
2397         case AF_INET:
2398                 sa = (struct sockaddr_in *)&server->dstaddr;
2399                 sprintf(desc, "cifs:a:%pI4", &sa->sin_addr.s_addr);
2400                 break;
2401         case AF_INET6:
2402                 sa6 = (struct sockaddr_in6 *)&server->dstaddr;
2403                 sprintf(desc, "cifs:a:%pI6c", &sa6->sin6_addr.s6_addr);
2404                 break;
2405         default:
2406                 cFYI(1, "Bad ss_family (%hu)", server->dstaddr.ss_family);
2407                 rc = -EINVAL;
2408                 goto out_err;
2409         }
2410
2411         cFYI(1, "%s: desc=%s", __func__, desc);
2412         key = request_key(&key_type_logon, desc, "");
2413         if (IS_ERR(key)) {
2414                 if (!ses->domainName) {
2415                         cFYI(1, "domainName is NULL");
2416                         rc = PTR_ERR(key);
2417                         goto out_err;
2418                 }
2419
2420                 /* didn't work, try to find a domain key */
2421                 sprintf(desc, "cifs:d:%s", ses->domainName);
2422                 cFYI(1, "%s: desc=%s", __func__, desc);
2423                 key = request_key(&key_type_logon, desc, "");
2424                 if (IS_ERR(key)) {
2425                         rc = PTR_ERR(key);
2426                         goto out_err;
2427                 }
2428         }
2429
2430         down_read(&key->sem);
2431         upayload = key->payload.data;
2432         if (IS_ERR_OR_NULL(upayload)) {
2433                 rc = upayload ? PTR_ERR(upayload) : -EINVAL;
2434                 goto out_key_put;
2435         }
2436
2437         /* find first : in payload */
2438         payload = (char *)upayload->data;
2439         delim = strnchr(payload, upayload->datalen, ':');
2440         cFYI(1, "payload=%s", payload);
2441         if (!delim) {
2442                 cFYI(1, "Unable to find ':' in payload (datalen=%d)",
2443                                 upayload->datalen);
2444                 rc = -EINVAL;
2445                 goto out_key_put;
2446         }
2447
2448         len = delim - payload;
2449         if (len > MAX_USERNAME_SIZE || len <= 0) {
2450                 cFYI(1, "Bad value from username search (len=%zd)", len);
2451                 rc = -EINVAL;
2452                 goto out_key_put;
2453         }
2454
2455         vol->username = kstrndup(payload, len, GFP_KERNEL);
2456         if (!vol->username) {
2457                 cFYI(1, "Unable to allocate %zd bytes for username", len);
2458                 rc = -ENOMEM;
2459                 goto out_key_put;
2460         }
2461         cFYI(1, "%s: username=%s", __func__, vol->username);
2462
2463         len = key->datalen - (len + 1);
2464         if (len > MAX_PASSWORD_SIZE || len <= 0) {
2465                 cFYI(1, "Bad len for password search (len=%zd)", len);
2466                 rc = -EINVAL;
2467                 kfree(vol->username);
2468                 vol->username = NULL;
2469                 goto out_key_put;
2470         }
2471
2472         ++delim;
2473         vol->password = kstrndup(delim, len, GFP_KERNEL);
2474         if (!vol->password) {
2475                 cFYI(1, "Unable to allocate %zd bytes for password", len);
2476                 rc = -ENOMEM;
2477                 kfree(vol->username);
2478                 vol->username = NULL;
2479                 goto out_key_put;
2480         }
2481
2482 out_key_put:
2483         up_read(&key->sem);
2484         key_put(key);
2485 out_err:
2486         kfree(desc);
2487         cFYI(1, "%s: returning %d", __func__, rc);
2488         return rc;
2489 }
2490 #else /* ! CONFIG_KEYS */
2491 static inline int
2492 cifs_set_cifscreds(struct smb_vol *vol __attribute__((unused)),
2493                    struct cifs_ses *ses __attribute__((unused)))
2494 {
2495         return -ENOSYS;
2496 }
2497 #endif /* CONFIG_KEYS */
2498
2499 static bool warned_on_ntlm;  /* globals init to false automatically */
2500
2501 static struct cifs_ses *
2502 cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb_vol *volume_info)
2503 {
2504         int rc = -ENOMEM, xid;
2505         struct cifs_ses *ses;
2506         struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2507         struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2508
2509         xid = GetXid();
2510
2511         ses = cifs_find_smb_ses(server, volume_info);
2512         if (ses) {
2513                 cFYI(1, "Existing smb sess found (status=%d)", ses->status);
2514
2515                 mutex_lock(&ses->session_mutex);
2516                 rc = cifs_negotiate_protocol(xid, ses);
2517                 if (rc) {
2518                         mutex_unlock(&ses->session_mutex);
2519                         /* problem -- put our ses reference */
2520                         cifs_put_smb_ses(ses);
2521                         FreeXid(xid);
2522                         return ERR_PTR(rc);
2523                 }
2524                 if (ses->need_reconnect) {
2525                         cFYI(1, "Session needs reconnect");
2526                         rc = cifs_setup_session(xid, ses,
2527                                                 volume_info->local_nls);
2528                         if (rc) {
2529                                 mutex_unlock(&ses->session_mutex);
2530                                 /* problem -- put our reference */
2531                                 cifs_put_smb_ses(ses);
2532                                 FreeXid(xid);
2533                                 return ERR_PTR(rc);
2534                         }
2535                 }
2536                 mutex_unlock(&ses->session_mutex);
2537
2538                 /* existing SMB ses has a server reference already */
2539                 cifs_put_tcp_session(server);
2540                 FreeXid(xid);
2541                 return ses;
2542         }
2543
2544         cFYI(1, "Existing smb sess not found");
2545         ses = sesInfoAlloc();
2546         if (ses == NULL)
2547                 goto get_ses_fail;
2548
2549         /* new SMB session uses our server ref */
2550         ses->server = server;
2551         if (server->dstaddr.ss_family == AF_INET6)
2552                 sprintf(ses->serverName, "%pI6", &addr6->sin6_addr);
2553         else
2554                 sprintf(ses->serverName, "%pI4", &addr->sin_addr);
2555
2556         if (volume_info->username) {
2557                 ses->user_name = kstrdup(volume_info->username, GFP_KERNEL);
2558                 if (!ses->user_name)
2559                         goto get_ses_fail;
2560         }
2561
2562         /* volume_info->password freed at unmount */
2563         if (volume_info->password) {
2564                 ses->password = kstrdup(volume_info->password, GFP_KERNEL);
2565                 if (!ses->password)
2566                         goto get_ses_fail;
2567         }
2568         if (volume_info->domainname) {
2569                 ses->domainName = kstrdup(volume_info->domainname, GFP_KERNEL);
2570                 if (!ses->domainName)
2571                         goto get_ses_fail;
2572         }
2573         ses->cred_uid = volume_info->cred_uid;
2574         ses->linux_uid = volume_info->linux_uid;
2575
2576         /* ntlmv2 is much stronger than ntlm security, and has been broadly
2577         supported for many years, time to update default security mechanism */
2578         if ((volume_info->secFlg == 0) && warned_on_ntlm == false) {
2579                 warned_on_ntlm = true;
2580                 cERROR(1, "default security mechanism requested.  The default "
2581                         "security mechanism will be upgraded from ntlm to "
2582                         "ntlmv2 in kernel release 3.3");
2583         }
2584         ses->overrideSecFlg = volume_info->secFlg;
2585
2586         mutex_lock(&ses->session_mutex);
2587         rc = cifs_negotiate_protocol(xid, ses);
2588         if (!rc)
2589                 rc = cifs_setup_session(xid, ses, volume_info->local_nls);
2590         mutex_unlock(&ses->session_mutex);
2591         if (rc)
2592                 goto get_ses_fail;
2593
2594         /* success, put it on the list */
2595         spin_lock(&cifs_tcp_ses_lock);
2596         list_add(&ses->smb_ses_list, &server->smb_ses_list);
2597         spin_unlock(&cifs_tcp_ses_lock);
2598
2599         FreeXid(xid);
2600         return ses;
2601
2602 get_ses_fail:
2603         sesInfoFree(ses);
2604         FreeXid(xid);
2605         return ERR_PTR(rc);
2606 }
2607
2608 static int match_tcon(struct cifs_tcon *tcon, const char *unc)
2609 {
2610         if (tcon->tidStatus == CifsExiting)
2611                 return 0;
2612         if (strncmp(tcon->treeName, unc, MAX_TREE_SIZE))
2613                 return 0;
2614         return 1;
2615 }
2616
2617 static struct cifs_tcon *
2618 cifs_find_tcon(struct cifs_ses *ses, const char *unc)
2619 {
2620         struct list_head *tmp;
2621         struct cifs_tcon *tcon;
2622
2623         spin_lock(&cifs_tcp_ses_lock);
2624         list_for_each(tmp, &ses->tcon_list) {
2625                 tcon = list_entry(tmp, struct cifs_tcon, tcon_list);
2626                 if (!match_tcon(tcon, unc))
2627                         continue;
2628                 ++tcon->tc_count;
2629                 spin_unlock(&cifs_tcp_ses_lock);
2630                 return tcon;
2631         }
2632         spin_unlock(&cifs_tcp_ses_lock);
2633         return NULL;
2634 }
2635
2636 static void
2637 cifs_put_tcon(struct cifs_tcon *tcon)
2638 {
2639         int xid;
2640         struct cifs_ses *ses = tcon->ses;
2641
2642         cFYI(1, "%s: tc_count=%d\n", __func__, tcon->tc_count);
2643         spin_lock(&cifs_tcp_ses_lock);
2644         if (--tcon->tc_count > 0) {
2645                 spin_unlock(&cifs_tcp_ses_lock);
2646                 return;
2647         }
2648
2649         list_del_init(&tcon->tcon_list);
2650         spin_unlock(&cifs_tcp_ses_lock);
2651
2652         xid = GetXid();
2653         CIFSSMBTDis(xid, tcon);
2654         _FreeXid(xid);
2655
2656         cifs_fscache_release_super_cookie(tcon);
2657         tconInfoFree(tcon);
2658         cifs_put_smb_ses(ses);
2659 }
2660
2661 static struct cifs_tcon *
2662 cifs_get_tcon(struct cifs_ses *ses, struct smb_vol *volume_info)
2663 {
2664         int rc, xid;
2665         struct cifs_tcon *tcon;
2666
2667         tcon = cifs_find_tcon(ses, volume_info->UNC);
2668         if (tcon) {
2669                 cFYI(1, "Found match on UNC path");
2670                 /* existing tcon already has a reference */
2671                 cifs_put_smb_ses(ses);
2672                 if (tcon->seal != volume_info->seal)
2673                         cERROR(1, "transport encryption setting "
2674                                    "conflicts with existing tid");
2675                 return tcon;
2676         }
2677
2678         tcon = tconInfoAlloc();
2679         if (tcon == NULL) {
2680                 rc = -ENOMEM;
2681                 goto out_fail;
2682         }
2683
2684         tcon->ses = ses;
2685         if (volume_info->password) {
2686                 tcon->password = kstrdup(volume_info->password, GFP_KERNEL);
2687                 if (!tcon->password) {
2688                         rc = -ENOMEM;
2689                         goto out_fail;
2690                 }
2691         }
2692
2693         if (strchr(volume_info->UNC + 3, '\\') == NULL
2694             && strchr(volume_info->UNC + 3, '/') == NULL) {
2695                 cERROR(1, "Missing share name");
2696                 rc = -ENODEV;
2697                 goto out_fail;
2698         }
2699
2700         /* BB Do we need to wrap session_mutex around
2701          * this TCon call and Unix SetFS as
2702          * we do on SessSetup and reconnect? */
2703         xid = GetXid();
2704         rc = CIFSTCon(xid, ses, volume_info->UNC, tcon, volume_info->local_nls);
2705         FreeXid(xid);
2706         cFYI(1, "CIFS Tcon rc = %d", rc);
2707         if (rc)
2708                 goto out_fail;
2709
2710         if (volume_info->nodfs) {
2711                 tcon->Flags &= ~SMB_SHARE_IS_IN_DFS;
2712                 cFYI(1, "DFS disabled (%d)", tcon->Flags);
2713         }
2714         tcon->seal = volume_info->seal;
2715         /* we can have only one retry value for a connection
2716            to a share so for resources mounted more than once
2717            to the same server share the last value passed in
2718            for the retry flag is used */
2719         tcon->retry = volume_info->retry;
2720         tcon->nocase = volume_info->nocase;
2721         tcon->local_lease = volume_info->local_lease;
2722
2723         spin_lock(&cifs_tcp_ses_lock);
2724         list_add(&tcon->tcon_list, &ses->tcon_list);
2725         spin_unlock(&cifs_tcp_ses_lock);
2726
2727         cifs_fscache_get_super_cookie(tcon);
2728
2729         return tcon;
2730
2731 out_fail:
2732         tconInfoFree(tcon);
2733         return ERR_PTR(rc);
2734 }
2735
2736 void
2737 cifs_put_tlink(struct tcon_link *tlink)
2738 {
2739         if (!tlink || IS_ERR(tlink))
2740                 return;
2741
2742         if (!atomic_dec_and_test(&tlink->tl_count) ||
2743             test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2744                 tlink->tl_time = jiffies;
2745                 return;
2746         }
2747
2748         if (!IS_ERR(tlink_tcon(tlink)))
2749                 cifs_put_tcon(tlink_tcon(tlink));
2750         kfree(tlink);
2751         return;
2752 }
2753
2754 static inline struct tcon_link *
2755 cifs_sb_master_tlink(struct cifs_sb_info *cifs_sb)
2756 {
2757         return cifs_sb->master_tlink;
2758 }
2759
2760 static int
2761 compare_mount_options(struct super_block *sb, struct cifs_mnt_data *mnt_data)
2762 {
2763         struct cifs_sb_info *old = CIFS_SB(sb);
2764         struct cifs_sb_info *new = mnt_data->cifs_sb;
2765
2766         if ((sb->s_flags & CIFS_MS_MASK) != (mnt_data->flags & CIFS_MS_MASK))
2767                 return 0;
2768
2769         if ((old->mnt_cifs_flags & CIFS_MOUNT_MASK) !=
2770             (new->mnt_cifs_flags & CIFS_MOUNT_MASK))
2771                 return 0;
2772
2773         /*
2774          * We want to share sb only if we don't specify an r/wsize or
2775          * specified r/wsize is greater than or equal to existing one.
2776          */
2777         if (new->wsize && new->wsize < old->wsize)
2778                 return 0;
2779
2780         if (new->rsize && new->rsize < old->rsize)
2781                 return 0;
2782
2783         if (old->mnt_uid != new->mnt_uid || old->mnt_gid != new->mnt_gid)
2784                 return 0;
2785
2786         if (old->mnt_file_mode != new->mnt_file_mode ||
2787             old->mnt_dir_mode != new->mnt_dir_mode)
2788                 return 0;
2789
2790         if (strcmp(old->local_nls->charset, new->local_nls->charset))
2791                 return 0;
2792
2793         if (old->actimeo != new->actimeo)
2794                 return 0;
2795
2796         return 1;
2797 }
2798
2799 int
2800 cifs_match_super(struct super_block *sb, void *data)
2801 {
2802         struct cifs_mnt_data *mnt_data = (struct cifs_mnt_data *)data;
2803         struct smb_vol *volume_info;
2804         struct cifs_sb_info *cifs_sb;
2805         struct TCP_Server_Info *tcp_srv;
2806         struct cifs_ses *ses;
2807         struct cifs_tcon *tcon;
2808         struct tcon_link *tlink;
2809         struct sockaddr_storage addr;
2810         int rc = 0;
2811
2812         memset(&addr, 0, sizeof(struct sockaddr_storage));
2813
2814         spin_lock(&cifs_tcp_ses_lock);
2815         cifs_sb = CIFS_SB(sb);
2816         tlink = cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
2817         if (IS_ERR(tlink)) {
2818                 spin_unlock(&cifs_tcp_ses_lock);
2819                 return rc;
2820         }
2821         tcon = tlink_tcon(tlink);
2822         ses = tcon->ses;
2823         tcp_srv = ses->server;
2824
2825         volume_info = mnt_data->vol;
2826
2827         if (!volume_info->UNCip || !volume_info->UNC)
2828                 goto out;
2829
2830         rc = cifs_fill_sockaddr((struct sockaddr *)&addr,
2831                                 volume_info->UNCip,
2832                                 strlen(volume_info->UNCip),
2833                                 volume_info->port);
2834         if (!rc)
2835                 goto out;
2836
2837         if (!match_server(tcp_srv, (struct sockaddr *)&addr, volume_info) ||
2838             !match_session(ses, volume_info) ||
2839             !match_tcon(tcon, volume_info->UNC)) {
2840                 rc = 0;
2841                 goto out;
2842         }
2843
2844         rc = compare_mount_options(sb, mnt_data);
2845 out:
2846         spin_unlock(&cifs_tcp_ses_lock);
2847         cifs_put_tlink(tlink);
2848         return rc;
2849 }
2850
2851 int
2852 get_dfs_path(int xid, struct cifs_ses *pSesInfo, const char *old_path,
2853              const struct nls_table *nls_codepage, unsigned int *pnum_referrals,
2854              struct dfs_info3_param **preferrals, int remap)
2855 {
2856         char *temp_unc;
2857         int rc = 0;
2858
2859         *pnum_referrals = 0;
2860         *preferrals = NULL;
2861
2862         if (pSesInfo->ipc_tid == 0) {
2863                 temp_unc = kmalloc(2 /* for slashes */ +
2864                         strnlen(pSesInfo->serverName,
2865                                 SERVER_NAME_LEN_WITH_NULL * 2)
2866                                  + 1 + 4 /* slash IPC$ */  + 2,
2867                                 GFP_KERNEL);
2868                 if (temp_unc == NULL)
2869                         return -ENOMEM;
2870                 temp_unc[0] = '\\';
2871                 temp_unc[1] = '\\';
2872                 strcpy(temp_unc + 2, pSesInfo->serverName);
2873                 strcpy(temp_unc + 2 + strlen(pSesInfo->serverName), "\\IPC$");
2874                 rc = CIFSTCon(xid, pSesInfo, temp_unc, NULL, nls_codepage);
2875                 cFYI(1, "CIFS Tcon rc = %d ipc_tid = %d", rc, pSesInfo->ipc_tid);
2876                 kfree(temp_unc);
2877         }
2878         if (rc == 0)
2879                 rc = CIFSGetDFSRefer(xid, pSesInfo, old_path, preferrals,
2880                                      pnum_referrals, nls_codepage, remap);
2881         /* BB map targetUNCs to dfs_info3 structures, here or
2882                 in CIFSGetDFSRefer BB */
2883
2884         return rc;
2885 }
2886
2887 #ifdef CONFIG_DEBUG_LOCK_ALLOC
2888 static struct lock_class_key cifs_key[2];
2889 static struct lock_class_key cifs_slock_key[2];
2890
2891 static inline void
2892 cifs_reclassify_socket4(struct socket *sock)
2893 {
2894         struct sock *sk = sock->sk;
2895         BUG_ON(sock_owned_by_user(sk));
2896         sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2897                 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2898 }
2899
2900 static inline void
2901 cifs_reclassify_socket6(struct socket *sock)
2902 {
2903         struct sock *sk = sock->sk;
2904         BUG_ON(sock_owned_by_user(sk));
2905         sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2906                 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2907 }
2908 #else
2909 static inline void
2910 cifs_reclassify_socket4(struct socket *sock)
2911 {
2912 }
2913
2914 static inline void
2915 cifs_reclassify_socket6(struct socket *sock)
2916 {
2917 }
2918 #endif
2919
2920 /* See RFC1001 section 14 on representation of Netbios names */
2921 static void rfc1002mangle(char *target, char *source, unsigned int length)
2922 {
2923         unsigned int i, j;
2924
2925         for (i = 0, j = 0; i < (length); i++) {
2926                 /* mask a nibble at a time and encode */
2927                 target[j] = 'A' + (0x0F & (source[i] >> 4));
2928                 target[j+1] = 'A' + (0x0F & source[i]);
2929                 j += 2;
2930         }
2931
2932 }
2933
2934 static int
2935 bind_socket(struct TCP_Server_Info *server)
2936 {
2937         int rc = 0;
2938         if (server->srcaddr.ss_family != AF_UNSPEC) {
2939                 /* Bind to the specified local IP address */
2940                 struct socket *socket = server->ssocket;
2941                 rc = socket->ops->bind(socket,
2942                                        (struct sockaddr *) &server->srcaddr,
2943                                        sizeof(server->srcaddr));
2944                 if (rc < 0) {
2945                         struct sockaddr_in *saddr4;
2946                         struct sockaddr_in6 *saddr6;
2947                         saddr4 = (struct sockaddr_in *)&server->srcaddr;
2948                         saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2949                         if (saddr6->sin6_family == AF_INET6)
2950                                 cERROR(1, "cifs: "
2951                                        "Failed to bind to: %pI6c, error: %d\n",
2952                                        &saddr6->sin6_addr, rc);
2953                         else
2954                                 cERROR(1, "cifs: "
2955                                        "Failed to bind to: %pI4, error: %d\n",
2956                                        &saddr4->sin_addr.s_addr, rc);
2957                 }
2958         }
2959         return rc;
2960 }
2961
2962 static int
2963 ip_rfc1001_connect(struct TCP_Server_Info *server)
2964 {
2965         int rc = 0;
2966         /*
2967          * some servers require RFC1001 sessinit before sending
2968          * negprot - BB check reconnection in case where second
2969          * sessinit is sent but no second negprot
2970          */
2971         struct rfc1002_session_packet *ses_init_buf;
2972         struct smb_hdr *smb_buf;
2973         ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2974                                GFP_KERNEL);
2975         if (ses_init_buf) {
2976                 ses_init_buf->trailer.session_req.called_len = 32;
2977
2978                 if (server->server_RFC1001_name &&
2979                     server->server_RFC1001_name[0] != 0)
2980                         rfc1002mangle(ses_init_buf->trailer.
2981                                       session_req.called_name,
2982                                       server->server_RFC1001_name,
2983                                       RFC1001_NAME_LEN_WITH_NULL);
2984                 else
2985                         rfc1002mangle(ses_init_buf->trailer.
2986                                       session_req.called_name,
2987                                       DEFAULT_CIFS_CALLED_NAME,
2988                                       RFC1001_NAME_LEN_WITH_NULL);
2989
2990                 ses_init_buf->trailer.session_req.calling_len = 32;
2991
2992                 /*
2993                  * calling name ends in null (byte 16) from old smb
2994                  * convention.
2995                  */
2996                 if (server->workstation_RFC1001_name &&
2997                     server->workstation_RFC1001_name[0] != 0)
2998                         rfc1002mangle(ses_init_buf->trailer.
2999                                       session_req.calling_name,
3000                                       server->workstation_RFC1001_name,
3001                                       RFC1001_NAME_LEN_WITH_NULL);
3002                 else
3003                         rfc1002mangle(ses_init_buf->trailer.
3004                                       session_req.calling_name,
3005                                       "LINUX_CIFS_CLNT",
3006                                       RFC1001_NAME_LEN_WITH_NULL);
3007
3008                 ses_init_buf->trailer.session_req.scope1 = 0;
3009                 ses_init_buf->trailer.session_req.scope2 = 0;
3010                 smb_buf = (struct smb_hdr *)ses_init_buf;
3011
3012                 /* sizeof RFC1002_SESSION_REQUEST with no scope */
3013                 smb_buf->smb_buf_length = cpu_to_be32(0x81000044);
3014                 rc = smb_send(server, smb_buf, 0x44);
3015                 kfree(ses_init_buf);
3016                 /*
3017                  * RFC1001 layer in at least one server
3018                  * requires very short break before negprot
3019                  * presumably because not expecting negprot
3020                  * to follow so fast.  This is a simple
3021                  * solution that works without
3022                  * complicating the code and causes no
3023                  * significant slowing down on mount
3024                  * for everyone else
3025                  */
3026                 usleep_range(1000, 2000);
3027         }
3028         /*
3029          * else the negprot may still work without this
3030          * even though malloc failed
3031          */
3032
3033         return rc;
3034 }
3035
3036 static int
3037 generic_ip_connect(struct TCP_Server_Info *server)
3038 {
3039         int rc = 0;
3040         __be16 sport;
3041         int slen, sfamily;
3042         struct socket *socket = server->ssocket;
3043         struct sockaddr *saddr;
3044
3045         saddr = (struct sockaddr *) &server->dstaddr;
3046
3047         if (server->dstaddr.ss_family == AF_INET6) {
3048                 sport = ((struct sockaddr_in6 *) saddr)->sin6_port;
3049                 slen = sizeof(struct sockaddr_in6);
3050                 sfamily = AF_INET6;
3051         } else {
3052                 sport = ((struct sockaddr_in *) saddr)->sin_port;
3053                 slen = sizeof(struct sockaddr_in);
3054                 sfamily = AF_INET;
3055         }
3056
3057         if (socket == NULL) {
3058                 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
3059                                    IPPROTO_TCP, &socket, 1);
3060                 if (rc < 0) {
3061                         cERROR(1, "Error %d creating socket", rc);
3062                         server->ssocket = NULL;
3063                         return rc;
3064                 }
3065
3066                 /* BB other socket options to set KEEPALIVE, NODELAY? */
3067                 cFYI(1, "Socket created");
3068                 server->ssocket = socket;
3069                 socket->sk->sk_allocation = GFP_NOFS;
3070                 if (sfamily == AF_INET6)
3071                         cifs_reclassify_socket6(socket);
3072                 else
3073                         cifs_reclassify_socket4(socket);
3074         }
3075
3076         rc = bind_socket(server);
3077         if (rc < 0)
3078                 return rc;
3079
3080         /*
3081          * Eventually check for other socket options to change from
3082          * the default. sock_setsockopt not used because it expects
3083          * user space buffer
3084          */
3085         socket->sk->sk_rcvtimeo = 7 * HZ;
3086         socket->sk->sk_sndtimeo = 5 * HZ;
3087
3088         /* make the bufsizes depend on wsize/rsize and max requests */
3089         if (server->noautotune) {
3090                 if (socket->sk->sk_sndbuf < (200 * 1024))
3091                         socket->sk->sk_sndbuf = 200 * 1024;
3092                 if (socket->sk->sk_rcvbuf < (140 * 1024))
3093                         socket->sk->sk_rcvbuf = 140 * 1024;
3094         }
3095
3096         if (server->tcp_nodelay) {
3097                 int val = 1;
3098                 rc = kernel_setsockopt(socket, SOL_TCP, TCP_NODELAY,
3099                                 (char *)&val, sizeof(val));
3100                 if (rc)
3101                         cFYI(1, "set TCP_NODELAY socket option error %d", rc);
3102         }
3103
3104          cFYI(1, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx",
3105                  socket->sk->sk_sndbuf,
3106                  socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
3107
3108         rc = socket->ops->connect(socket, saddr, slen, 0);
3109         if (rc < 0) {
3110                 cFYI(1, "Error %d connecting to server", rc);
3111                 sock_release(socket);
3112                 server->ssocket = NULL;
3113                 return rc;
3114         }
3115
3116         if (sport == htons(RFC1001_PORT))
3117                 rc = ip_rfc1001_connect(server);
3118
3119         return rc;
3120 }
3121
3122 static int
3123 ip_connect(struct TCP_Server_Info *server)
3124 {
3125         __be16 *sport;
3126         struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
3127         struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
3128
3129         if (server->dstaddr.ss_family == AF_INET6)
3130                 sport = &addr6->sin6_port;
3131         else
3132                 sport = &addr->sin_port;
3133
3134         if (*sport == 0) {
3135                 int rc;
3136
3137                 /* try with 445 port at first */
3138                 *sport = htons(CIFS_PORT);
3139
3140                 rc = generic_ip_connect(server);
3141                 if (rc >= 0)
3142                         return rc;
3143
3144                 /* if it failed, try with 139 port */
3145                 *sport = htons(RFC1001_PORT);
3146         }
3147
3148         return generic_ip_connect(server);
3149 }
3150
3151 void reset_cifs_unix_caps(int xid, struct cifs_tcon *tcon,
3152                           struct cifs_sb_info *cifs_sb, struct smb_vol *vol_info)
3153 {
3154         /* if we are reconnecting then should we check to see if
3155          * any requested capabilities changed locally e.g. via
3156          * remount but we can not do much about it here
3157          * if they have (even if we could detect it by the following)
3158          * Perhaps we could add a backpointer to array of sb from tcon
3159          * or if we change to make all sb to same share the same
3160          * sb as NFS - then we only have one backpointer to sb.
3161          * What if we wanted to mount the server share twice once with
3162          * and once without posixacls or posix paths? */
3163         __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
3164
3165         if (vol_info && vol_info->no_linux_ext) {
3166                 tcon->fsUnixInfo.Capability = 0;
3167                 tcon->unix_ext = 0; /* Unix Extensions disabled */
3168                 cFYI(1, "Linux protocol extensions disabled");
3169                 return;
3170         } else if (vol_info)
3171                 tcon->unix_ext = 1; /* Unix Extensions supported */
3172
3173         if (tcon->unix_ext == 0) {
3174                 cFYI(1, "Unix extensions disabled so not set on reconnect");
3175                 return;
3176         }
3177
3178         if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
3179                 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
3180                 cFYI(1, "unix caps which server supports %lld", cap);
3181                 /* check for reconnect case in which we do not
3182                    want to change the mount behavior if we can avoid it */
3183                 if (vol_info == NULL) {
3184                         /* turn off POSIX ACL and PATHNAMES if not set
3185                            originally at mount time */
3186                         if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
3187                                 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
3188                         if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
3189                                 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
3190                                         cERROR(1, "POSIXPATH support change");
3191                                 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
3192                         } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
3193                                 cERROR(1, "possible reconnect error");
3194                                 cERROR(1, "server disabled POSIX path support");
3195                         }
3196                 }
3197
3198                 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
3199                         cERROR(1, "per-share encryption not supported yet");
3200
3201                 cap &= CIFS_UNIX_CAP_MASK;
3202                 if (vol_info && vol_info->no_psx_acl)
3203                         cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
3204                 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
3205                         cFYI(1, "negotiated posix acl support");
3206           &nbs