1 // SPDX-License-Identifier: LGPL-2.1
4 * Copyright (C) International Business Machines Corp., 2002,2011
5 * Author(s): Steve French (sfrench@us.ibm.com)
10 #include <linux/string.h>
11 #include <linux/sched/mm.h>
12 #include <linux/sched/signal.h>
13 #include <linux/list.h>
14 #include <linux/wait.h>
15 #include <linux/slab.h>
16 #include <linux/pagemap.h>
17 #include <linux/ctype.h>
18 #include <linux/utsname.h>
19 #include <linux/mempool.h>
20 #include <linux/delay.h>
21 #include <linux/completion.h>
22 #include <linux/kthread.h>
23 #include <linux/pagevec.h>
24 #include <linux/freezer.h>
25 #include <linux/namei.h>
26 #include <linux/uuid.h>
27 #include <linux/uaccess.h>
28 #include <asm/processor.h>
29 #include <linux/inet.h>
30 #include <linux/module.h>
31 #include <keys/user-type.h>
33 #include <linux/parser.h>
34 #include <linux/bvec.h>
37 #include "cifsproto.h"
38 #include "cifs_unicode.h"
39 #include "cifs_debug.h"
40 #include "cifs_fs_sb.h"
43 #include "rfc1002pdu.h"
45 #include "smb2proto.h"
46 #include "smbdirect.h"
47 #include "dns_resolve.h"
48 #ifdef CONFIG_CIFS_DFS_UPCALL
49 #include "dfs_cache.h"
51 #include "fs_context.h"
54 extern mempool_t *cifs_req_poolp;
55 extern bool disable_legacy_dialects;
57 /* FIXME: should these be tunable? */
58 #define TLINK_ERROR_EXPIRE (1 * HZ)
59 #define TLINK_IDLE_EXPIRE (600 * HZ)
61 /* Drop the connection to not overload the server */
62 #define NUM_STATUS_IO_TIMEOUT 5
65 struct cifs_sb_info *cifs_sb;
66 struct smb3_fs_context *fs_ctx;
68 struct TCP_Server_Info *server;
70 struct cifs_tcon *tcon;
71 #ifdef CONFIG_CIFS_DFS_UPCALL
72 struct cifs_ses *root_ses;
74 char *origin_fullpath, *leaf_fullpath;
78 static int ip_connect(struct TCP_Server_Info *server);
79 static int generic_ip_connect(struct TCP_Server_Info *server);
80 static void tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink);
81 static void cifs_prune_tlinks(struct work_struct *work);
84 * Resolve hostname and set ip addr in tcp ses. Useful for hostnames that may
85 * get their ip addresses changed at some point.
87 * This should be called with server->srv_mutex held.
89 static int reconn_set_ipaddr_from_hostname(struct TCP_Server_Info *server)
93 char *unc, *ipaddr = NULL;
95 unsigned long ttl = SMB_DNS_RESOLVE_INTERVAL_DEFAULT;
97 if (!server->hostname)
100 len = strlen(server->hostname) + 3;
102 unc = kmalloc(len, GFP_KERNEL);
104 cifs_dbg(FYI, "%s: failed to create UNC path\n", __func__);
107 scnprintf(unc, len, "\\\\%s", server->hostname);
109 rc = dns_resolve_server_name_to_ip(unc, &ipaddr, &expiry);
113 cifs_dbg(FYI, "%s: failed to resolve server part of %s to IP: %d\n",
114 __func__, server->hostname, rc);
115 goto requeue_resolve;
118 spin_lock(&cifs_tcp_ses_lock);
119 rc = cifs_convert_address((struct sockaddr *)&server->dstaddr, ipaddr,
121 spin_unlock(&cifs_tcp_ses_lock);
124 /* rc == 1 means success here */
126 now = ktime_get_real_seconds();
127 if (expiry && expiry > now)
129 * To make sure we don't use the cached entry, retry 1s
132 ttl = max_t(unsigned long, expiry - now, SMB_DNS_RESOLVE_INTERVAL_MIN) + 1;
137 cifs_dbg(FYI, "%s: next dns resolution scheduled for %lu seconds in the future\n",
139 mod_delayed_work(cifsiod_wq, &server->resolve, (ttl * HZ));
145 static void cifs_resolve_server(struct work_struct *work)
148 struct TCP_Server_Info *server = container_of(work,
149 struct TCP_Server_Info, resolve.work);
151 mutex_lock(&server->srv_mutex);
154 * Resolve the hostname again to make sure that IP address is up-to-date.
156 rc = reconn_set_ipaddr_from_hostname(server);
158 cifs_dbg(FYI, "%s: failed to resolve hostname: %d\n",
162 mutex_unlock(&server->srv_mutex);
166 * Mark all sessions and tcons for reconnect.
168 * @server needs to be previously set to CifsNeedReconnect.
172 cifs_mark_tcp_ses_conns_for_reconnect(struct TCP_Server_Info *server,
173 bool mark_smb_session)
175 struct TCP_Server_Info *pserver;
176 struct cifs_ses *ses;
177 struct cifs_tcon *tcon;
178 struct mid_q_entry *mid, *nmid;
179 struct list_head retry_list;
182 server->max_read = 0;
184 cifs_dbg(FYI, "Mark tcp session as need reconnect\n");
185 trace_smb3_reconnect(server->CurrentMid, server->conn_id, server->hostname);
187 * before reconnecting the tcp session, mark the smb session (uid) and the tid bad so they
188 * are not used until reconnected.
190 cifs_dbg(FYI, "%s: marking sessions and tcons for reconnect\n", __func__);
192 /* If server is a channel, select the primary channel */
193 pserver = CIFS_SERVER_IS_CHAN(server) ? server->primary_server : server;
195 spin_lock(&cifs_tcp_ses_lock);
196 list_for_each_entry(ses, &pserver->smb_ses_list, smb_ses_list) {
197 spin_lock(&ses->chan_lock);
198 if (!mark_smb_session && cifs_chan_needs_reconnect(ses, server))
201 cifs_chan_set_need_reconnect(ses, server);
203 /* If all channels need reconnect, then tcon needs reconnect */
204 if (!mark_smb_session && !CIFS_ALL_CHANS_NEED_RECONNECT(ses))
207 ses->status = CifsNeedReconnect;
209 list_for_each_entry(tcon, &ses->tcon_list, tcon_list) {
210 tcon->need_reconnect = true;
211 tcon->tidStatus = CifsNeedReconnect;
214 ses->tcon_ipc->need_reconnect = true;
217 spin_unlock(&ses->chan_lock);
219 spin_unlock(&cifs_tcp_ses_lock);
222 * before reconnecting the tcp session, mark the smb session (uid)
223 * and the tid bad so they are not used until reconnected
225 cifs_dbg(FYI, "%s: marking sessions and tcons for reconnect and tearing down socket\n",
227 /* do not want to be sending data on a socket we are freeing */
228 mutex_lock(&server->srv_mutex);
229 if (server->ssocket) {
230 cifs_dbg(FYI, "State: 0x%x Flags: 0x%lx\n", server->ssocket->state,
231 server->ssocket->flags);
232 kernel_sock_shutdown(server->ssocket, SHUT_WR);
233 cifs_dbg(FYI, "Post shutdown state: 0x%x Flags: 0x%lx\n", server->ssocket->state,
234 server->ssocket->flags);
235 sock_release(server->ssocket);
236 server->ssocket = NULL;
238 server->sequence_number = 0;
239 server->session_estab = false;
240 kfree(server->session_key.response);
241 server->session_key.response = NULL;
242 server->session_key.len = 0;
243 server->lstrp = jiffies;
245 /* mark submitted MIDs for retry and issue callback */
246 INIT_LIST_HEAD(&retry_list);
247 cifs_dbg(FYI, "%s: moving mids to private list\n", __func__);
248 spin_lock(&GlobalMid_Lock);
249 list_for_each_entry_safe(mid, nmid, &server->pending_mid_q, qhead) {
250 kref_get(&mid->refcount);
251 if (mid->mid_state == MID_REQUEST_SUBMITTED)
252 mid->mid_state = MID_RETRY_NEEDED;
253 list_move(&mid->qhead, &retry_list);
254 mid->mid_flags |= MID_DELETED;
256 spin_unlock(&GlobalMid_Lock);
257 mutex_unlock(&server->srv_mutex);
259 cifs_dbg(FYI, "%s: issuing mid callbacks\n", __func__);
260 list_for_each_entry_safe(mid, nmid, &retry_list, qhead) {
261 list_del_init(&mid->qhead);
263 cifs_mid_q_entry_release(mid);
266 if (cifs_rdma_enabled(server)) {
267 mutex_lock(&server->srv_mutex);
268 smbd_destroy(server);
269 mutex_unlock(&server->srv_mutex);
273 static bool cifs_tcp_ses_needs_reconnect(struct TCP_Server_Info *server, int num_targets)
275 spin_lock(&cifs_tcp_ses_lock);
276 server->nr_targets = num_targets;
277 if (server->tcpStatus == CifsExiting) {
278 /* the demux thread will exit normally next time through the loop */
279 spin_unlock(&cifs_tcp_ses_lock);
280 wake_up(&server->response_q);
283 server->tcpStatus = CifsNeedReconnect;
284 spin_unlock(&cifs_tcp_ses_lock);
289 * cifs tcp session reconnection
291 * mark tcp session as reconnecting so temporarily locked
292 * mark all smb sessions as reconnecting for tcp session
293 * reconnect tcp session
294 * wake up waiters on reconnection? - (not needed currently)
296 * if mark_smb_session is passed as true, unconditionally mark
297 * the smb session (and tcon) for reconnect as well. This value
298 * doesn't really matter for non-multichannel scenario.
301 static int __cifs_reconnect(struct TCP_Server_Info *server,
302 bool mark_smb_session)
306 if (!cifs_tcp_ses_needs_reconnect(server, 1))
309 cifs_mark_tcp_ses_conns_for_reconnect(server, mark_smb_session);
313 mutex_lock(&server->srv_mutex);
315 if (!cifs_swn_set_server_dstaddr(server)) {
316 /* resolve the hostname again to make sure that IP address is up-to-date */
317 rc = reconn_set_ipaddr_from_hostname(server);
318 cifs_dbg(FYI, "%s: reconn_set_ipaddr_from_hostname: rc=%d\n", __func__, rc);
321 if (cifs_rdma_enabled(server))
322 rc = smbd_reconnect(server);
324 rc = generic_ip_connect(server);
326 mutex_unlock(&server->srv_mutex);
327 cifs_dbg(FYI, "%s: reconnect error %d\n", __func__, rc);
330 atomic_inc(&tcpSesReconnectCount);
331 set_credits(server, 1);
332 spin_lock(&cifs_tcp_ses_lock);
333 if (server->tcpStatus != CifsExiting)
334 server->tcpStatus = CifsNeedNegotiate;
335 spin_unlock(&cifs_tcp_ses_lock);
336 cifs_swn_reset_server_dstaddr(server);
337 mutex_unlock(&server->srv_mutex);
339 } while (server->tcpStatus == CifsNeedReconnect);
341 if (server->tcpStatus == CifsNeedNegotiate)
342 mod_delayed_work(cifsiod_wq, &server->echo, 0);
344 wake_up(&server->response_q);
348 #ifdef CONFIG_CIFS_DFS_UPCALL
349 static int __reconnect_target_unlocked(struct TCP_Server_Info *server, const char *target)
354 if (!cifs_swn_set_server_dstaddr(server)) {
355 if (server->hostname != target) {
356 hostname = extract_hostname(target);
357 if (!IS_ERR(hostname)) {
358 kfree(server->hostname);
359 server->hostname = hostname;
361 cifs_dbg(FYI, "%s: couldn't extract hostname or address from dfs target: %ld\n",
362 __func__, PTR_ERR(hostname));
363 cifs_dbg(FYI, "%s: default to last target server: %s\n", __func__,
367 /* resolve the hostname again to make sure that IP address is up-to-date. */
368 rc = reconn_set_ipaddr_from_hostname(server);
369 cifs_dbg(FYI, "%s: reconn_set_ipaddr_from_hostname: rc=%d\n", __func__, rc);
371 /* Reconnect the socket */
372 if (cifs_rdma_enabled(server))
373 rc = smbd_reconnect(server);
375 rc = generic_ip_connect(server);
380 static int reconnect_target_unlocked(struct TCP_Server_Info *server, struct dfs_cache_tgt_list *tl,
381 struct dfs_cache_tgt_iterator **target_hint)
384 struct dfs_cache_tgt_iterator *tit;
388 /* If dfs target list is empty, then reconnect to last server */
389 tit = dfs_cache_get_tgt_iterator(tl);
391 return __reconnect_target_unlocked(server, server->hostname);
393 /* Otherwise, try every dfs target in @tl */
394 for (; tit; tit = dfs_cache_get_next_tgt(tl, tit)) {
395 rc = __reconnect_target_unlocked(server, dfs_cache_get_tgt_name(tit));
405 reconnect_dfs_server(struct TCP_Server_Info *server,
406 bool mark_smb_session)
409 const char *refpath = server->current_fullpath + 1;
410 struct dfs_cache_tgt_list tl = DFS_CACHE_TGT_LIST_INIT(tl);
411 struct dfs_cache_tgt_iterator *target_hint = NULL;
415 * Determine the number of dfs targets the referral path in @cifs_sb resolves to.
417 * smb2_reconnect() needs to know how long it should wait based upon the number of dfs
418 * targets (server->nr_targets). It's also possible that the cached referral was cleared
419 * through /proc/fs/cifs/dfscache or the target list is empty due to server settings after
420 * refreshing the referral, so, in this case, default it to 1.
422 if (!dfs_cache_noreq_find(refpath, NULL, &tl))
423 num_targets = dfs_cache_get_nr_tgts(&tl);
427 if (!cifs_tcp_ses_needs_reconnect(server, num_targets))
430 cifs_mark_tcp_ses_conns_for_reconnect(server, mark_smb_session);
434 mutex_lock(&server->srv_mutex);
436 rc = reconnect_target_unlocked(server, &tl, &target_hint);
438 /* Failed to reconnect socket */
439 mutex_unlock(&server->srv_mutex);
440 cifs_dbg(FYI, "%s: reconnect error %d\n", __func__, rc);
445 * Socket was created. Update tcp session status to CifsNeedNegotiate so that a
446 * process waiting for reconnect will know it needs to re-establish session and tcon
447 * through the reconnected target server.
449 atomic_inc(&tcpSesReconnectCount);
450 set_credits(server, 1);
451 spin_lock(&cifs_tcp_ses_lock);
452 if (server->tcpStatus != CifsExiting)
453 server->tcpStatus = CifsNeedNegotiate;
454 spin_unlock(&cifs_tcp_ses_lock);
455 cifs_swn_reset_server_dstaddr(server);
456 mutex_unlock(&server->srv_mutex);
457 } while (server->tcpStatus == CifsNeedReconnect);
460 dfs_cache_noreq_update_tgthint(refpath, target_hint);
462 dfs_cache_free_tgts(&tl);
464 /* Need to set up echo worker again once connection has been established */
465 spin_lock(&cifs_tcp_ses_lock);
466 if (server->tcpStatus == CifsNeedNegotiate)
467 mod_delayed_work(cifsiod_wq, &server->echo, 0);
469 spin_unlock(&cifs_tcp_ses_lock);
471 wake_up(&server->response_q);
475 int cifs_reconnect(struct TCP_Server_Info *server, bool mark_smb_session)
477 /* If tcp session is not an dfs connection, then reconnect to last target server */
478 spin_lock(&cifs_tcp_ses_lock);
479 if (!server->is_dfs_conn || !server->origin_fullpath || !server->leaf_fullpath) {
480 spin_unlock(&cifs_tcp_ses_lock);
481 return __cifs_reconnect(server, mark_smb_session);
483 spin_unlock(&cifs_tcp_ses_lock);
485 return reconnect_dfs_server(server, mark_smb_session);
488 int cifs_reconnect(struct TCP_Server_Info *server, bool mark_smb_session)
490 return __cifs_reconnect(server, mark_smb_session);
495 cifs_echo_request(struct work_struct *work)
498 struct TCP_Server_Info *server = container_of(work,
499 struct TCP_Server_Info, echo.work);
502 * We cannot send an echo if it is disabled.
503 * Also, no need to ping if we got a response recently.
506 if (server->tcpStatus == CifsNeedReconnect ||
507 server->tcpStatus == CifsExiting ||
508 server->tcpStatus == CifsNew ||
509 (server->ops->can_echo && !server->ops->can_echo(server)) ||
510 time_before(jiffies, server->lstrp + server->echo_interval - HZ))
513 rc = server->ops->echo ? server->ops->echo(server) : -ENOSYS;
515 cifs_dbg(FYI, "Unable to send echo request to server: %s\n",
518 /* Check witness registrations */
522 queue_delayed_work(cifsiod_wq, &server->echo, server->echo_interval);
526 allocate_buffers(struct TCP_Server_Info *server)
528 if (!server->bigbuf) {
529 server->bigbuf = (char *)cifs_buf_get();
530 if (!server->bigbuf) {
531 cifs_server_dbg(VFS, "No memory for large SMB response\n");
533 /* retry will check if exiting */
536 } else if (server->large_buf) {
537 /* we are reusing a dirty large buf, clear its start */
538 memset(server->bigbuf, 0, HEADER_SIZE(server));
541 if (!server->smallbuf) {
542 server->smallbuf = (char *)cifs_small_buf_get();
543 if (!server->smallbuf) {
544 cifs_server_dbg(VFS, "No memory for SMB response\n");
546 /* retry will check if exiting */
549 /* beginning of smb buffer is cleared in our buf_get */
551 /* if existing small buf clear beginning */
552 memset(server->smallbuf, 0, HEADER_SIZE(server));
559 server_unresponsive(struct TCP_Server_Info *server)
562 * We need to wait 3 echo intervals to make sure we handle such
564 * 1s client sends a normal SMB request
565 * 2s client gets a response
566 * 30s echo workqueue job pops, and decides we got a response recently
567 * and don't need to send another
569 * 65s kernel_recvmsg times out, and we see that we haven't gotten
570 * a response in >60s.
572 spin_lock(&cifs_tcp_ses_lock);
573 if ((server->tcpStatus == CifsGood ||
574 server->tcpStatus == CifsNeedNegotiate) &&
575 (!server->ops->can_echo || server->ops->can_echo(server)) &&
576 time_after(jiffies, server->lstrp + 3 * server->echo_interval)) {
577 spin_unlock(&cifs_tcp_ses_lock);
578 cifs_server_dbg(VFS, "has not responded in %lu seconds. Reconnecting...\n",
579 (3 * server->echo_interval) / HZ);
580 cifs_reconnect(server, false);
583 spin_unlock(&cifs_tcp_ses_lock);
589 zero_credits(struct TCP_Server_Info *server)
593 spin_lock(&server->req_lock);
594 val = server->credits + server->echo_credits + server->oplock_credits;
595 if (server->in_flight == 0 && val == 0) {
596 spin_unlock(&server->req_lock);
599 spin_unlock(&server->req_lock);
604 cifs_readv_from_socket(struct TCP_Server_Info *server, struct msghdr *smb_msg)
609 smb_msg->msg_control = NULL;
610 smb_msg->msg_controllen = 0;
612 for (total_read = 0; msg_data_left(smb_msg); total_read += length) {
615 /* reconnect if no credits and no requests in flight */
616 if (zero_credits(server)) {
617 cifs_reconnect(server, false);
618 return -ECONNABORTED;
621 if (server_unresponsive(server))
622 return -ECONNABORTED;
623 if (cifs_rdma_enabled(server) && server->smbd_conn)
624 length = smbd_recv(server->smbd_conn, smb_msg);
626 length = sock_recvmsg(server->ssocket, smb_msg, 0);
628 spin_lock(&cifs_tcp_ses_lock);
629 if (server->tcpStatus == CifsExiting) {
630 spin_unlock(&cifs_tcp_ses_lock);
634 if (server->tcpStatus == CifsNeedReconnect) {
635 spin_unlock(&cifs_tcp_ses_lock);
636 cifs_reconnect(server, false);
637 return -ECONNABORTED;
639 spin_unlock(&cifs_tcp_ses_lock);
641 if (length == -ERESTARTSYS ||
645 * Minimum sleep to prevent looping, allowing socket
646 * to clear and app threads to set tcpStatus
647 * CifsNeedReconnect if server hung.
649 usleep_range(1000, 2000);
655 cifs_dbg(FYI, "Received no data or error: %d\n", length);
656 cifs_reconnect(server, false);
657 return -ECONNABORTED;
664 cifs_read_from_socket(struct TCP_Server_Info *server, char *buf,
665 unsigned int to_read)
667 struct msghdr smb_msg;
668 struct kvec iov = {.iov_base = buf, .iov_len = to_read};
669 iov_iter_kvec(&smb_msg.msg_iter, READ, &iov, 1, to_read);
671 return cifs_readv_from_socket(server, &smb_msg);
675 cifs_discard_from_socket(struct TCP_Server_Info *server, size_t to_read)
677 struct msghdr smb_msg;
680 * iov_iter_discard already sets smb_msg.type and count and iov_offset
681 * and cifs_readv_from_socket sets msg_control and msg_controllen
682 * so little to initialize in struct msghdr
684 smb_msg.msg_name = NULL;
685 smb_msg.msg_namelen = 0;
686 iov_iter_discard(&smb_msg.msg_iter, READ, to_read);
688 return cifs_readv_from_socket(server, &smb_msg);
692 cifs_read_page_from_socket(struct TCP_Server_Info *server, struct page *page,
693 unsigned int page_offset, unsigned int to_read)
695 struct msghdr smb_msg;
696 struct bio_vec bv = {
697 .bv_page = page, .bv_len = to_read, .bv_offset = page_offset};
698 iov_iter_bvec(&smb_msg.msg_iter, READ, &bv, 1, to_read);
699 return cifs_readv_from_socket(server, &smb_msg);
703 is_smb_response(struct TCP_Server_Info *server, unsigned char type)
706 * The first byte big endian of the length field,
707 * is actually not part of the length but the type
708 * with the most common, zero, as regular data.
711 case RFC1002_SESSION_MESSAGE:
712 /* Regular SMB response */
714 case RFC1002_SESSION_KEEP_ALIVE:
715 cifs_dbg(FYI, "RFC 1002 session keep alive\n");
717 case RFC1002_POSITIVE_SESSION_RESPONSE:
718 cifs_dbg(FYI, "RFC 1002 positive session response\n");
720 case RFC1002_NEGATIVE_SESSION_RESPONSE:
722 * We get this from Windows 98 instead of an error on
723 * SMB negprot response.
725 cifs_dbg(FYI, "RFC 1002 negative session response\n");
726 /* give server a second to clean up */
729 * Always try 445 first on reconnect since we get NACK
730 * on some if we ever connected to port 139 (the NACK
731 * is since we do not begin with RFC1001 session
734 cifs_set_port((struct sockaddr *)&server->dstaddr, CIFS_PORT);
735 cifs_reconnect(server, true);
738 cifs_server_dbg(VFS, "RFC 1002 unknown response type 0x%x\n", type);
739 cifs_reconnect(server, true);
746 dequeue_mid(struct mid_q_entry *mid, bool malformed)
748 #ifdef CONFIG_CIFS_STATS2
749 mid->when_received = jiffies;
751 spin_lock(&GlobalMid_Lock);
753 mid->mid_state = MID_RESPONSE_RECEIVED;
755 mid->mid_state = MID_RESPONSE_MALFORMED;
757 * Trying to handle/dequeue a mid after the send_recv()
758 * function has finished processing it is a bug.
760 if (mid->mid_flags & MID_DELETED) {
761 spin_unlock(&GlobalMid_Lock);
762 pr_warn_once("trying to dequeue a deleted mid\n");
764 list_del_init(&mid->qhead);
765 mid->mid_flags |= MID_DELETED;
766 spin_unlock(&GlobalMid_Lock);
771 smb2_get_credits_from_hdr(char *buffer, struct TCP_Server_Info *server)
773 struct smb2_hdr *shdr = (struct smb2_hdr *)buffer;
776 * SMB1 does not use credits.
778 if (server->vals->header_preamble_size)
781 return le16_to_cpu(shdr->CreditRequest);
785 handle_mid(struct mid_q_entry *mid, struct TCP_Server_Info *server,
786 char *buf, int malformed)
788 if (server->ops->check_trans2 &&
789 server->ops->check_trans2(mid, server, buf, malformed))
791 mid->credits_received = smb2_get_credits_from_hdr(buf, server);
793 mid->large_buf = server->large_buf;
794 /* Was previous buf put in mpx struct for multi-rsp? */
795 if (!mid->multiRsp) {
796 /* smb buffer will be freed by user thread */
797 if (server->large_buf)
798 server->bigbuf = NULL;
800 server->smallbuf = NULL;
802 dequeue_mid(mid, malformed);
805 static void clean_demultiplex_info(struct TCP_Server_Info *server)
809 /* take it off the list, if it's not already */
810 spin_lock(&cifs_tcp_ses_lock);
811 list_del_init(&server->tcp_ses_list);
812 spin_unlock(&cifs_tcp_ses_lock);
814 cancel_delayed_work_sync(&server->echo);
815 cancel_delayed_work_sync(&server->resolve);
817 spin_lock(&cifs_tcp_ses_lock);
818 server->tcpStatus = CifsExiting;
819 spin_unlock(&cifs_tcp_ses_lock);
820 wake_up_all(&server->response_q);
822 /* check if we have blocked requests that need to free */
823 spin_lock(&server->req_lock);
824 if (server->credits <= 0)
826 spin_unlock(&server->req_lock);
828 * Although there should not be any requests blocked on this queue it
829 * can not hurt to be paranoid and try to wake up requests that may
830 * haven been blocked when more than 50 at time were on the wire to the
831 * same server - they now will see the session is in exit state and get
832 * out of SendReceive.
834 wake_up_all(&server->request_q);
835 /* give those requests time to exit */
837 if (cifs_rdma_enabled(server))
838 smbd_destroy(server);
839 if (server->ssocket) {
840 sock_release(server->ssocket);
841 server->ssocket = NULL;
844 if (!list_empty(&server->pending_mid_q)) {
845 struct list_head dispose_list;
846 struct mid_q_entry *mid_entry;
847 struct list_head *tmp, *tmp2;
849 INIT_LIST_HEAD(&dispose_list);
850 spin_lock(&GlobalMid_Lock);
851 list_for_each_safe(tmp, tmp2, &server->pending_mid_q) {
852 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
853 cifs_dbg(FYI, "Clearing mid %llu\n", mid_entry->mid);
854 kref_get(&mid_entry->refcount);
855 mid_entry->mid_state = MID_SHUTDOWN;
856 list_move(&mid_entry->qhead, &dispose_list);
857 mid_entry->mid_flags |= MID_DELETED;
859 spin_unlock(&GlobalMid_Lock);
861 /* now walk dispose list and issue callbacks */
862 list_for_each_safe(tmp, tmp2, &dispose_list) {
863 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
864 cifs_dbg(FYI, "Callback mid %llu\n", mid_entry->mid);
865 list_del_init(&mid_entry->qhead);
866 mid_entry->callback(mid_entry);
867 cifs_mid_q_entry_release(mid_entry);
869 /* 1/8th of sec is more than enough time for them to exit */
873 if (!list_empty(&server->pending_mid_q)) {
875 * mpx threads have not exited yet give them at least the smb
876 * send timeout time for long ops.
878 * Due to delays on oplock break requests, we need to wait at
879 * least 45 seconds before giving up on a request getting a
880 * response and going ahead and killing cifsd.
882 cifs_dbg(FYI, "Wait for exit from demultiplex thread\n");
885 * If threads still have not exited they are probably never
886 * coming home not much else we can do but free the memory.
890 #ifdef CONFIG_CIFS_DFS_UPCALL
891 kfree(server->origin_fullpath);
892 kfree(server->leaf_fullpath);
896 length = atomic_dec_return(&tcpSesAllocCount);
898 mempool_resize(cifs_req_poolp, length + cifs_min_rcv);
902 standard_receive3(struct TCP_Server_Info *server, struct mid_q_entry *mid)
905 char *buf = server->smallbuf;
906 unsigned int pdu_length = server->pdu_size;
908 /* make sure this will fit in a large buffer */
909 if (pdu_length > CIFSMaxBufSize + MAX_HEADER_SIZE(server) -
910 server->vals->header_preamble_size) {
911 cifs_server_dbg(VFS, "SMB response too long (%u bytes)\n", pdu_length);
912 cifs_reconnect(server, true);
913 return -ECONNABORTED;
916 /* switch to large buffer if too big for a small one */
917 if (pdu_length > MAX_CIFS_SMALL_BUFFER_SIZE - 4) {
918 server->large_buf = true;
919 memcpy(server->bigbuf, buf, server->total_read);
920 buf = server->bigbuf;
923 /* now read the rest */
924 length = cifs_read_from_socket(server, buf + HEADER_SIZE(server) - 1,
925 pdu_length - HEADER_SIZE(server) + 1
926 + server->vals->header_preamble_size);
930 server->total_read += length;
932 dump_smb(buf, server->total_read);
934 return cifs_handle_standard(server, mid);
938 cifs_handle_standard(struct TCP_Server_Info *server, struct mid_q_entry *mid)
940 char *buf = server->large_buf ? server->bigbuf : server->smallbuf;
944 * We know that we received enough to get to the MID as we
945 * checked the pdu_length earlier. Now check to see
946 * if the rest of the header is OK. We borrow the length
947 * var for the rest of the loop to avoid a new stack var.
949 * 48 bytes is enough to display the header and a little bit
950 * into the payload for debugging purposes.
952 length = server->ops->check_message(buf, server->total_read, server);
954 cifs_dump_mem("Bad SMB: ", buf,
955 min_t(unsigned int, server->total_read, 48));
957 if (server->ops->is_session_expired &&
958 server->ops->is_session_expired(buf)) {
959 cifs_reconnect(server, true);
963 if (server->ops->is_status_pending &&
964 server->ops->is_status_pending(buf, server))
970 handle_mid(mid, server, buf, length);
975 smb2_add_credits_from_hdr(char *buffer, struct TCP_Server_Info *server)
977 struct smb2_hdr *shdr = (struct smb2_hdr *)buffer;
978 int scredits, in_flight;
981 * SMB1 does not use credits.
983 if (server->vals->header_preamble_size)
986 if (shdr->CreditRequest) {
987 spin_lock(&server->req_lock);
988 server->credits += le16_to_cpu(shdr->CreditRequest);
989 scredits = server->credits;
990 in_flight = server->in_flight;
991 spin_unlock(&server->req_lock);
992 wake_up(&server->request_q);
994 trace_smb3_add_credits(server->CurrentMid,
995 server->conn_id, server->hostname, scredits,
996 le16_to_cpu(shdr->CreditRequest), in_flight);
997 cifs_server_dbg(FYI, "%s: added %u credits total=%d\n",
998 __func__, le16_to_cpu(shdr->CreditRequest),
1005 cifs_demultiplex_thread(void *p)
1007 int i, num_mids, length;
1008 struct TCP_Server_Info *server = p;
1009 unsigned int pdu_length;
1010 unsigned int next_offset;
1012 struct task_struct *task_to_wake = NULL;
1013 struct mid_q_entry *mids[MAX_COMPOUND];
1014 char *bufs[MAX_COMPOUND];
1015 unsigned int noreclaim_flag, num_io_timeout = 0;
1017 noreclaim_flag = memalloc_noreclaim_save();
1018 cifs_dbg(FYI, "Demultiplex PID: %d\n", task_pid_nr(current));
1020 length = atomic_inc_return(&tcpSesAllocCount);
1022 mempool_resize(cifs_req_poolp, length + cifs_min_rcv);
1025 allow_kernel_signal(SIGKILL);
1026 while (server->tcpStatus != CifsExiting) {
1027 if (try_to_freeze())
1030 if (!allocate_buffers(server))
1033 server->large_buf = false;
1034 buf = server->smallbuf;
1035 pdu_length = 4; /* enough to get RFC1001 header */
1037 length = cifs_read_from_socket(server, buf, pdu_length);
1041 if (server->vals->header_preamble_size == 0)
1042 server->total_read = 0;
1044 server->total_read = length;
1047 * The right amount was read from socket - 4 bytes,
1048 * so we can now interpret the length field.
1050 pdu_length = get_rfc1002_length(buf);
1052 cifs_dbg(FYI, "RFC1002 header 0x%x\n", pdu_length);
1053 if (!is_smb_response(server, buf[0]))
1056 server->pdu_size = pdu_length;
1058 /* make sure we have enough to get to the MID */
1059 if (server->pdu_size < HEADER_SIZE(server) - 1 -
1060 server->vals->header_preamble_size) {
1061 cifs_server_dbg(VFS, "SMB response too short (%u bytes)\n",
1063 cifs_reconnect(server, true);
1067 /* read down to the MID */
1068 length = cifs_read_from_socket(server,
1069 buf + server->vals->header_preamble_size,
1070 HEADER_SIZE(server) - 1
1071 - server->vals->header_preamble_size);
1074 server->total_read += length;
1076 if (server->ops->next_header) {
1077 next_offset = server->ops->next_header(buf);
1079 server->pdu_size = next_offset;
1082 memset(mids, 0, sizeof(mids));
1083 memset(bufs, 0, sizeof(bufs));
1086 if (server->ops->is_transform_hdr &&
1087 server->ops->receive_transform &&
1088 server->ops->is_transform_hdr(buf)) {
1089 length = server->ops->receive_transform(server,
1094 mids[0] = server->ops->find_mid(server, buf);
1098 if (!mids[0] || !mids[0]->receive)
1099 length = standard_receive3(server, mids[0]);
1101 length = mids[0]->receive(server, mids[0]);
1105 for (i = 0; i < num_mids; i++)
1107 cifs_mid_q_entry_release(mids[i]);
1111 if (server->ops->is_status_io_timeout &&
1112 server->ops->is_status_io_timeout(buf)) {
1114 if (num_io_timeout > NUM_STATUS_IO_TIMEOUT) {
1115 cifs_reconnect(server, false);
1121 server->lstrp = jiffies;
1123 for (i = 0; i < num_mids; i++) {
1124 if (mids[i] != NULL) {
1125 mids[i]->resp_buf_size = server->pdu_size;
1127 if (bufs[i] && server->ops->is_network_name_deleted)
1128 server->ops->is_network_name_deleted(bufs[i],
1131 if (!mids[i]->multiRsp || mids[i]->multiEnd)
1132 mids[i]->callback(mids[i]);
1134 cifs_mid_q_entry_release(mids[i]);
1135 } else if (server->ops->is_oplock_break &&
1136 server->ops->is_oplock_break(bufs[i],
1138 smb2_add_credits_from_hdr(bufs[i], server);
1139 cifs_dbg(FYI, "Received oplock break\n");
1141 cifs_server_dbg(VFS, "No task to wake, unknown frame received! NumMids %d\n",
1142 atomic_read(&midCount));
1143 cifs_dump_mem("Received Data is: ", bufs[i],
1144 HEADER_SIZE(server));
1145 smb2_add_credits_from_hdr(bufs[i], server);
1146 #ifdef CONFIG_CIFS_DEBUG2
1147 if (server->ops->dump_detail)
1148 server->ops->dump_detail(bufs[i],
1150 cifs_dump_mids(server);
1151 #endif /* CIFS_DEBUG2 */
1155 if (pdu_length > server->pdu_size) {
1156 if (!allocate_buffers(server))
1158 pdu_length -= server->pdu_size;
1159 server->total_read = 0;
1160 server->large_buf = false;
1161 buf = server->smallbuf;
1164 } /* end while !EXITING */
1166 /* buffer usually freed in free_mid - need to free it here on exit */
1167 cifs_buf_release(server->bigbuf);
1168 if (server->smallbuf) /* no sense logging a debug message if NULL */
1169 cifs_small_buf_release(server->smallbuf);
1171 task_to_wake = xchg(&server->tsk, NULL);
1172 clean_demultiplex_info(server);
1174 /* if server->tsk was NULL then wait for a signal before exiting */
1175 if (!task_to_wake) {
1176 set_current_state(TASK_INTERRUPTIBLE);
1177 while (!signal_pending(current)) {
1179 set_current_state(TASK_INTERRUPTIBLE);
1181 set_current_state(TASK_RUNNING);
1184 memalloc_noreclaim_restore(noreclaim_flag);
1185 module_put_and_kthread_exit(0);
1189 * Returns true if srcaddr isn't specified and rhs isn't specified, or
1190 * if srcaddr is specified and matches the IP address of the rhs argument
1193 cifs_match_ipaddr(struct sockaddr *srcaddr, struct sockaddr *rhs)
1195 switch (srcaddr->sa_family) {
1197 return (rhs->sa_family == AF_UNSPEC);
1199 struct sockaddr_in *saddr4 = (struct sockaddr_in *)srcaddr;
1200 struct sockaddr_in *vaddr4 = (struct sockaddr_in *)rhs;
1201 return (saddr4->sin_addr.s_addr == vaddr4->sin_addr.s_addr);
1204 struct sockaddr_in6 *saddr6 = (struct sockaddr_in6 *)srcaddr;
1205 struct sockaddr_in6 *vaddr6 = (struct sockaddr_in6 *)rhs;
1206 return ipv6_addr_equal(&saddr6->sin6_addr, &vaddr6->sin6_addr);
1210 return false; /* don't expect to be here */
1215 * If no port is specified in addr structure, we try to match with 445 port
1216 * and if it fails - with 139 ports. It should be called only if address
1217 * families of server and addr are equal.
1220 match_port(struct TCP_Server_Info *server, struct sockaddr *addr)
1222 __be16 port, *sport;
1224 /* SMBDirect manages its own ports, don't match it here */
1228 switch (addr->sa_family) {
1230 sport = &((struct sockaddr_in *) &server->dstaddr)->sin_port;
1231 port = ((struct sockaddr_in *) addr)->sin_port;
1234 sport = &((struct sockaddr_in6 *) &server->dstaddr)->sin6_port;
1235 port = ((struct sockaddr_in6 *) addr)->sin6_port;
1243 port = htons(CIFS_PORT);
1247 port = htons(RFC1001_PORT);
1250 return port == *sport;
1254 match_address(struct TCP_Server_Info *server, struct sockaddr *addr,
1255 struct sockaddr *srcaddr)
1257 switch (addr->sa_family) {
1259 struct sockaddr_in *addr4 = (struct sockaddr_in *)addr;
1260 struct sockaddr_in *srv_addr4 =
1261 (struct sockaddr_in *)&server->dstaddr;
1263 if (addr4->sin_addr.s_addr != srv_addr4->sin_addr.s_addr)
1268 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)addr;
1269 struct sockaddr_in6 *srv_addr6 =
1270 (struct sockaddr_in6 *)&server->dstaddr;
1272 if (!ipv6_addr_equal(&addr6->sin6_addr,
1273 &srv_addr6->sin6_addr))
1275 if (addr6->sin6_scope_id != srv_addr6->sin6_scope_id)
1281 return false; /* don't expect to be here */
1284 if (!cifs_match_ipaddr(srcaddr, (struct sockaddr *)&server->srcaddr))
1291 match_security(struct TCP_Server_Info *server, struct smb3_fs_context *ctx)
1294 * The select_sectype function should either return the ctx->sectype
1295 * that was specified, or "Unspecified" if that sectype was not
1296 * compatible with the given NEGOTIATE request.
1298 if (server->ops->select_sectype(server, ctx->sectype)
1303 * Now check if signing mode is acceptable. No need to check
1304 * global_secflags at this point since if MUST_SIGN is set then
1305 * the server->sign had better be too.
1307 if (ctx->sign && !server->sign)
1313 static int match_server(struct TCP_Server_Info *server, struct smb3_fs_context *ctx)
1315 struct sockaddr *addr = (struct sockaddr *)&ctx->dstaddr;
1317 if (ctx->nosharesock)
1320 /* this server does not share socket */
1321 if (server->nosharesock)
1324 /* If multidialect negotiation see if existing sessions match one */
1325 if (strcmp(ctx->vals->version_string, SMB3ANY_VERSION_STRING) == 0) {
1326 if (server->vals->protocol_id < SMB30_PROT_ID)
1328 } else if (strcmp(ctx->vals->version_string,
1329 SMBDEFAULT_VERSION_STRING) == 0) {
1330 if (server->vals->protocol_id < SMB21_PROT_ID)
1332 } else if ((server->vals != ctx->vals) || (server->ops != ctx->ops))
1335 if (!net_eq(cifs_net_ns(server), current->nsproxy->net_ns))
1338 if (strcasecmp(server->hostname, ctx->server_hostname))
1341 if (!match_address(server, addr,
1342 (struct sockaddr *)&ctx->srcaddr))
1345 if (!match_port(server, addr))
1348 if (!match_security(server, ctx))
1351 if (server->echo_interval != ctx->echo_interval * HZ)
1354 if (server->rdma != ctx->rdma)
1357 if (server->ignore_signature != ctx->ignore_signature)
1360 if (server->min_offload != ctx->min_offload)
1366 struct TCP_Server_Info *
1367 cifs_find_tcp_session(struct smb3_fs_context *ctx)
1369 struct TCP_Server_Info *server;
1371 spin_lock(&cifs_tcp_ses_lock);
1372 list_for_each_entry(server, &cifs_tcp_ses_list, tcp_ses_list) {
1373 #ifdef CONFIG_CIFS_DFS_UPCALL
1375 * DFS failover implementation in cifs_reconnect() requires unique tcp sessions for
1376 * DFS connections to do failover properly, so avoid sharing them with regular
1377 * shares or even links that may connect to same server but having completely
1378 * different failover targets.
1380 if (server->is_dfs_conn)
1384 * Skip ses channels since they're only handled in lower layers
1385 * (e.g. cifs_send_recv).
1387 if (CIFS_SERVER_IS_CHAN(server) || !match_server(server, ctx))
1390 ++server->srv_count;
1391 spin_unlock(&cifs_tcp_ses_lock);
1392 cifs_dbg(FYI, "Existing tcp session with server found\n");
1395 spin_unlock(&cifs_tcp_ses_lock);
1400 cifs_put_tcp_session(struct TCP_Server_Info *server, int from_reconnect)
1402 struct task_struct *task;
1404 spin_lock(&cifs_tcp_ses_lock);
1405 if (--server->srv_count > 0) {
1406 spin_unlock(&cifs_tcp_ses_lock);
1410 /* srv_count can never go negative */
1411 WARN_ON(server->srv_count < 0);
1413 put_net(cifs_net_ns(server));
1415 list_del_init(&server->tcp_ses_list);
1416 spin_unlock(&cifs_tcp_ses_lock);
1418 /* For secondary channels, we pick up ref-count on the primary server */
1419 if (CIFS_SERVER_IS_CHAN(server))
1420 cifs_put_tcp_session(server->primary_server, from_reconnect);
1422 cancel_delayed_work_sync(&server->echo);
1423 cancel_delayed_work_sync(&server->resolve);
1427 * Avoid deadlock here: reconnect work calls
1428 * cifs_put_tcp_session() at its end. Need to be sure
1429 * that reconnect work does nothing with server pointer after
1432 cancel_delayed_work(&server->reconnect);
1434 cancel_delayed_work_sync(&server->reconnect);
1436 spin_lock(&cifs_tcp_ses_lock);
1437 server->tcpStatus = CifsExiting;
1438 spin_unlock(&cifs_tcp_ses_lock);
1440 cifs_crypto_secmech_release(server);
1442 /* fscache server cookies are based on primary channel only */
1443 if (!CIFS_SERVER_IS_CHAN(server))
1444 cifs_fscache_release_client_cookie(server);
1446 kfree(server->session_key.response);
1447 server->session_key.response = NULL;
1448 server->session_key.len = 0;
1449 kfree(server->hostname);
1451 task = xchg(&server->tsk, NULL);
1453 send_sig(SIGKILL, task, 1);
1456 struct TCP_Server_Info *
1457 cifs_get_tcp_session(struct smb3_fs_context *ctx,
1458 struct TCP_Server_Info *primary_server)
1460 struct TCP_Server_Info *tcp_ses = NULL;
1463 cifs_dbg(FYI, "UNC: %s\n", ctx->UNC);
1465 /* see if we already have a matching tcp_ses */
1466 tcp_ses = cifs_find_tcp_session(ctx);
1470 tcp_ses = kzalloc(sizeof(struct TCP_Server_Info), GFP_KERNEL);
1476 tcp_ses->hostname = kstrdup(ctx->server_hostname, GFP_KERNEL);
1477 if (!tcp_ses->hostname) {
1482 if (ctx->nosharesock)
1483 tcp_ses->nosharesock = true;
1485 tcp_ses->ops = ctx->ops;
1486 tcp_ses->vals = ctx->vals;
1487 cifs_set_net_ns(tcp_ses, get_net(current->nsproxy->net_ns));
1489 tcp_ses->conn_id = atomic_inc_return(&tcpSesNextId);
1490 tcp_ses->noblockcnt = ctx->rootfs;
1491 tcp_ses->noblocksnd = ctx->noblocksnd || ctx->rootfs;
1492 tcp_ses->noautotune = ctx->noautotune;
1493 tcp_ses->tcp_nodelay = ctx->sockopt_tcp_nodelay;
1494 tcp_ses->rdma = ctx->rdma;
1495 tcp_ses->in_flight = 0;
1496 tcp_ses->max_in_flight = 0;
1497 tcp_ses->credits = 1;
1498 if (primary_server) {
1499 spin_lock(&cifs_tcp_ses_lock);
1500 ++primary_server->srv_count;
1501 tcp_ses->primary_server = primary_server;
1502 spin_unlock(&cifs_tcp_ses_lock);
1504 init_waitqueue_head(&tcp_ses->response_q);
1505 init_waitqueue_head(&tcp_ses->request_q);
1506 INIT_LIST_HEAD(&tcp_ses->pending_mid_q);
1507 mutex_init(&tcp_ses->srv_mutex);
1508 memcpy(tcp_ses->workstation_RFC1001_name,
1509 ctx->source_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1510 memcpy(tcp_ses->server_RFC1001_name,
1511 ctx->target_rfc1001_name, RFC1001_NAME_LEN_WITH_NULL);
1512 tcp_ses->session_estab = false;
1513 tcp_ses->sequence_number = 0;
1514 tcp_ses->reconnect_instance = 1;
1515 tcp_ses->lstrp = jiffies;
1516 tcp_ses->compress_algorithm = cpu_to_le16(ctx->compression);
1517 spin_lock_init(&tcp_ses->req_lock);
1518 INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);
1519 INIT_LIST_HEAD(&tcp_ses->smb_ses_list);
1520 INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);
1521 INIT_DELAYED_WORK(&tcp_ses->resolve, cifs_resolve_server);
1522 INIT_DELAYED_WORK(&tcp_ses->reconnect, smb2_reconnect_server);
1523 mutex_init(&tcp_ses->reconnect_mutex);
1524 #ifdef CONFIG_CIFS_DFS_UPCALL
1525 mutex_init(&tcp_ses->refpath_lock);
1527 memcpy(&tcp_ses->srcaddr, &ctx->srcaddr,
1528 sizeof(tcp_ses->srcaddr));
1529 memcpy(&tcp_ses->dstaddr, &ctx->dstaddr,
1530 sizeof(tcp_ses->dstaddr));
1531 if (ctx->use_client_guid)
1532 memcpy(tcp_ses->client_guid, ctx->client_guid,
1533 SMB2_CLIENT_GUID_SIZE);
1535 generate_random_uuid(tcp_ses->client_guid);
1537 * at this point we are the only ones with the pointer
1538 * to the struct since the kernel thread not created yet
1539 * no need to spinlock this init of tcpStatus or srv_count
1541 tcp_ses->tcpStatus = CifsNew;
1542 ++tcp_ses->srv_count;
1544 if (ctx->echo_interval >= SMB_ECHO_INTERVAL_MIN &&
1545 ctx->echo_interval <= SMB_ECHO_INTERVAL_MAX)
1546 tcp_ses->echo_interval = ctx->echo_interval * HZ;
1548 tcp_ses->echo_interval = SMB_ECHO_INTERVAL_DEFAULT * HZ;
1549 if (tcp_ses->rdma) {
1550 #ifndef CONFIG_CIFS_SMB_DIRECT
1551 cifs_dbg(VFS, "CONFIG_CIFS_SMB_DIRECT is not enabled\n");
1553 goto out_err_crypto_release;
1555 tcp_ses->smbd_conn = smbd_get_connection(
1556 tcp_ses, (struct sockaddr *)&ctx->dstaddr);
1557 if (tcp_ses->smbd_conn) {
1558 cifs_dbg(VFS, "RDMA transport established\n");
1560 goto smbd_connected;
1563 goto out_err_crypto_release;
1566 rc = ip_connect(tcp_ses);
1568 cifs_dbg(VFS, "Error connecting to socket. Aborting operation.\n");
1569 goto out_err_crypto_release;
1573 * since we're in a cifs function already, we know that
1574 * this will succeed. No need for try_module_get().
1576 __module_get(THIS_MODULE);
1577 tcp_ses->tsk = kthread_run(cifs_demultiplex_thread,
1579 if (IS_ERR(tcp_ses->tsk)) {
1580 rc = PTR_ERR(tcp_ses->tsk);
1581 cifs_dbg(VFS, "error %d create cifsd thread\n", rc);
1582 module_put(THIS_MODULE);
1583 goto out_err_crypto_release;
1585 tcp_ses->min_offload = ctx->min_offload;
1587 * at this point we are the only ones with the pointer
1588 * to the struct since the kernel thread not created yet
1589 * no need to spinlock this update of tcpStatus
1591 spin_lock(&cifs_tcp_ses_lock);
1592 tcp_ses->tcpStatus = CifsNeedNegotiate;
1593 spin_unlock(&cifs_tcp_ses_lock);
1595 if ((ctx->max_credits < 20) || (ctx->max_credits > 60000))
1596 tcp_ses->max_credits = SMB2_MAX_CREDITS_AVAILABLE;
1598 tcp_ses->max_credits = ctx->max_credits;
1600 tcp_ses->nr_targets = 1;
1601 tcp_ses->ignore_signature = ctx->ignore_signature;
1602 /* thread spawned, put it on the list */
1603 spin_lock(&cifs_tcp_ses_lock);
1604 list_add(&tcp_ses->tcp_ses_list, &cifs_tcp_ses_list);
1605 spin_unlock(&cifs_tcp_ses_lock);
1607 /* fscache server cookies are based on primary channel only */
1608 if (!CIFS_SERVER_IS_CHAN(tcp_ses))
1609 cifs_fscache_get_client_cookie(tcp_ses);
1610 #ifdef CONFIG_CIFS_FSCACHE
1612 tcp_ses->fscache = tcp_ses->primary_server->fscache;
1613 #endif /* CONFIG_CIFS_FSCACHE */
1615 /* queue echo request delayed work */
1616 queue_delayed_work(cifsiod_wq, &tcp_ses->echo, tcp_ses->echo_interval);
1618 /* queue dns resolution delayed work */
1619 cifs_dbg(FYI, "%s: next dns resolution scheduled for %d seconds in the future\n",
1620 __func__, SMB_DNS_RESOLVE_INTERVAL_DEFAULT);
1622 queue_delayed_work(cifsiod_wq, &tcp_ses->resolve, (SMB_DNS_RESOLVE_INTERVAL_DEFAULT * HZ));
1626 out_err_crypto_release:
1627 cifs_crypto_secmech_release(tcp_ses);
1629 put_net(cifs_net_ns(tcp_ses));
1633 if (CIFS_SERVER_IS_CHAN(tcp_ses))
1634 cifs_put_tcp_session(tcp_ses->primary_server, false);
1635 kfree(tcp_ses->hostname);
1636 if (tcp_ses->ssocket)
1637 sock_release(tcp_ses->ssocket);
1643 static int match_session(struct cifs_ses *ses, struct smb3_fs_context *ctx)
1645 if (ctx->sectype != Unspecified &&
1646 ctx->sectype != ses->sectype)
1650 * If an existing session is limited to less channels than
1651 * requested, it should not be reused
1653 spin_lock(&ses->chan_lock);
1654 if (ses->chan_max < ctx->max_channels) {
1655 spin_unlock(&ses->chan_lock);
1658 spin_unlock(&ses->chan_lock);
1660 switch (ses->sectype) {
1662 if (!uid_eq(ctx->cred_uid, ses->cred_uid))
1666 /* NULL username means anonymous session */
1667 if (ses->user_name == NULL) {
1673 /* anything else takes username/password */
1674 if (strncmp(ses->user_name,
1675 ctx->username ? ctx->username : "",
1676 CIFS_MAX_USERNAME_LEN))
1678 if ((ctx->username && strlen(ctx->username) != 0) &&
1679 ses->password != NULL &&
1680 strncmp(ses->password,
1681 ctx->password ? ctx->password : "",
1682 CIFS_MAX_PASSWORD_LEN))
1689 * cifs_setup_ipc - helper to setup the IPC tcon for the session
1690 * @ses: smb session to issue the request on
1691 * @ctx: the superblock configuration context to use for building the
1692 * new tree connection for the IPC (interprocess communication RPC)
1694 * A new IPC connection is made and stored in the session
1695 * tcon_ipc. The IPC tcon has the same lifetime as the session.
1698 cifs_setup_ipc(struct cifs_ses *ses, struct smb3_fs_context *ctx)
1701 struct cifs_tcon *tcon;
1702 char unc[SERVER_NAME_LENGTH + sizeof("//x/IPC$")] = {0};
1704 struct TCP_Server_Info *server = ses->server;
1707 * If the mount request that resulted in the creation of the
1708 * session requires encryption, force IPC to be encrypted too.
1711 if (server->capabilities & SMB2_GLOBAL_CAP_ENCRYPTION)
1714 cifs_server_dbg(VFS,
1715 "IPC: server doesn't support encryption\n");
1720 tcon = tconInfoAlloc();
1724 scnprintf(unc, sizeof(unc), "\\\\%s\\IPC$", server->hostname);
1730 rc = server->ops->tree_connect(xid, ses, unc, tcon, ctx->local_nls);
1734 cifs_server_dbg(VFS, "failed to connect to IPC (rc=%d)\n", rc);
1739 cifs_dbg(FYI, "IPC tcon rc = %d ipc tid = %d\n", rc, tcon->tid);
1741 ses->tcon_ipc = tcon;
1747 * cifs_free_ipc - helper to release the session IPC tcon
1748 * @ses: smb session to unmount the IPC from
1750 * Needs to be called everytime a session is destroyed.
1752 * On session close, the IPC is closed and the server must release all tcons of the session.
1753 * No need to send a tree disconnect here.
1755 * Besides, it will make the server to not close durable and resilient files on session close, as
1756 * specified in MS-SMB2 3.3.5.6 Receiving an SMB2 LOGOFF Request.
1759 cifs_free_ipc(struct cifs_ses *ses)
1761 struct cifs_tcon *tcon = ses->tcon_ipc;
1767 ses->tcon_ipc = NULL;
1771 static struct cifs_ses *
1772 cifs_find_smb_ses(struct TCP_Server_Info *server, struct smb3_fs_context *ctx)
1774 struct cifs_ses *ses;
1776 spin_lock(&cifs_tcp_ses_lock);
1777 list_for_each_entry(ses, &server->smb_ses_list, smb_ses_list) {
1778 if (ses->status == CifsExiting)
1780 if (!match_session(ses, ctx))
1783 spin_unlock(&cifs_tcp_ses_lock);
1786 spin_unlock(&cifs_tcp_ses_lock);
1790 void cifs_put_smb_ses(struct cifs_ses *ses)
1792 unsigned int rc, xid;
1793 unsigned int chan_count;
1794 struct TCP_Server_Info *server = ses->server;
1795 cifs_dbg(FYI, "%s: ses_count=%d\n", __func__, ses->ses_count);
1797 spin_lock(&cifs_tcp_ses_lock);
1798 if (ses->status == CifsExiting) {
1799 spin_unlock(&cifs_tcp_ses_lock);
1803 cifs_dbg(FYI, "%s: ses_count=%d\n", __func__, ses->ses_count);
1804 cifs_dbg(FYI, "%s: ses ipc: %s\n", __func__, ses->tcon_ipc ? ses->tcon_ipc->treeName : "NONE");
1806 if (--ses->ses_count > 0) {
1807 spin_unlock(&cifs_tcp_ses_lock);
1811 /* ses_count can never go negative */
1812 WARN_ON(ses->ses_count < 0);
1814 if (ses->status == CifsGood)
1815 ses->status = CifsExiting;
1816 spin_unlock(&cifs_tcp_ses_lock);
1820 if (ses->status == CifsExiting && server->ops->logoff) {
1822 rc = server->ops->logoff(xid, ses);
1824 cifs_server_dbg(VFS, "%s: Session Logoff failure rc=%d\n",
1829 spin_lock(&cifs_tcp_ses_lock);
1830 list_del_init(&ses->smb_ses_list);
1831 spin_unlock(&cifs_tcp_ses_lock);
1833 spin_lock(&ses->chan_lock);
1834 chan_count = ses->chan_count;
1835 spin_unlock(&ses->chan_lock);
1837 /* close any extra channels */
1838 if (chan_count > 1) {
1841 for (i = 1; i < chan_count; i++) {
1843 * note: for now, we're okay accessing ses->chans
1844 * without chan_lock. But when chans can go away, we'll
1845 * need to introduce ref counting to make sure that chan
1846 * is not freed from under us.
1848 cifs_put_tcp_session(ses->chans[i].server, 0);
1849 ses->chans[i].server = NULL;
1854 cifs_put_tcp_session(server, 0);
1859 /* strlen("cifs:a:") + CIFS_MAX_DOMAINNAME_LEN + 1 */
1860 #define CIFSCREDS_DESC_SIZE (7 + CIFS_MAX_DOMAINNAME_LEN + 1)
1862 /* Populate username and pw fields from keyring if possible */
1864 cifs_set_cifscreds(struct smb3_fs_context *ctx, struct cifs_ses *ses)
1868 const char *delim, *payload;
1872 struct TCP_Server_Info *server = ses->server;
1873 struct sockaddr_in *sa;
1874 struct sockaddr_in6 *sa6;
1875 const struct user_key_payload *upayload;
1877 desc = kmalloc(CIFSCREDS_DESC_SIZE, GFP_KERNEL);
1881 /* try to find an address key first */
1882 switch (server->dstaddr.ss_family) {
1884 sa = (struct sockaddr_in *)&server->dstaddr;
1885 sprintf(desc, "cifs:a:%pI4", &sa->sin_addr.s_addr);
1888 sa6 = (struct sockaddr_in6 *)&server->dstaddr;
1889 sprintf(desc, "cifs:a:%pI6c", &sa6->sin6_addr.s6_addr);
1892 cifs_dbg(FYI, "Bad ss_family (%hu)\n",
1893 server->dstaddr.ss_family);
1898 cifs_dbg(FYI, "%s: desc=%s\n", __func__, desc);
1899 key = request_key(&key_type_logon, desc, "");
1901 if (!ses->domainName) {
1902 cifs_dbg(FYI, "domainName is NULL\n");
1907 /* didn't work, try to find a domain key */
1908 sprintf(desc, "cifs:d:%s", ses->domainName);
1909 cifs_dbg(FYI, "%s: desc=%s\n", __func__, desc);
1910 key = request_key(&key_type_logon, desc, "");
1918 down_read(&key->sem);
1919 upayload = user_key_payload_locked(key);
1920 if (IS_ERR_OR_NULL(upayload)) {
1921 rc = upayload ? PTR_ERR(upayload) : -EINVAL;
1925 /* find first : in payload */
1926 payload = upayload->data;
1927 delim = strnchr(payload, upayload->datalen, ':');
1928 cifs_dbg(FYI, "payload=%s\n", payload);
1930 cifs_dbg(FYI, "Unable to find ':' in payload (datalen=%d)\n",
1936 len = delim - payload;
1937 if (len > CIFS_MAX_USERNAME_LEN || len <= 0) {
1938 cifs_dbg(FYI, "Bad value from username search (len=%zd)\n",
1944 ctx->username = kstrndup(payload, len, GFP_KERNEL);
1945 if (!ctx->username) {
1946 cifs_dbg(FYI, "Unable to allocate %zd bytes for username\n",
1951 cifs_dbg(FYI, "%s: username=%s\n", __func__, ctx->username);
1953 len = key->datalen - (len + 1);
1954 if (len > CIFS_MAX_PASSWORD_LEN || len <= 0) {
1955 cifs_dbg(FYI, "Bad len for password search (len=%zd)\n", len);
1957 kfree(ctx->username);
1958 ctx->username = NULL;
1963 ctx->password = kstrndup(delim, len, GFP_KERNEL);
1964 if (!ctx->password) {
1965 cifs_dbg(FYI, "Unable to allocate %zd bytes for password\n",
1968 kfree(ctx->username);
1969 ctx->username = NULL;
1974 * If we have a domain key then we must set the domainName in the
1977 if (is_domain && ses->domainName) {
1978 ctx->domainname = kstrdup(ses->domainName, GFP_KERNEL);
1979 if (!ctx->domainname) {
1980 cifs_dbg(FYI, "Unable to allocate %zd bytes for domain\n",
1983 kfree(ctx->username);
1984 ctx->username = NULL;
1985 kfree_sensitive(ctx->password);
1986 ctx->password = NULL;
1996 cifs_dbg(FYI, "%s: returning %d\n", __func__, rc);
1999 #else /* ! CONFIG_KEYS */
2001 cifs_set_cifscreds(struct smb3_fs_context *ctx __attribute__((unused)),
2002 struct cifs_ses *ses __attribute__((unused)))
2006 #endif /* CONFIG_KEYS */
2009 * cifs_get_smb_ses - get a session matching @ctx data from @server
2010 * @server: server to setup the session to
2011 * @ctx: superblock configuration context to use to setup the session
2013 * This function assumes it is being called from cifs_mount() where we
2014 * already got a server reference (server refcount +1). See
2015 * cifs_get_tcon() for refcount explanations.
2018 cifs_get_smb_ses(struct TCP_Server_Info *server, struct smb3_fs_context *ctx)
2022 struct cifs_ses *ses;
2023 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2024 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2028 ses = cifs_find_smb_ses(server, ctx);
2030 cifs_dbg(FYI, "Existing smb sess found (status=%d)\n",
2033 spin_lock(&ses->chan_lock);
2034 if (cifs_chan_needs_reconnect(ses, server)) {
2035 spin_unlock(&ses->chan_lock);
2036 cifs_dbg(FYI, "Session needs reconnect\n");
2038 mutex_lock(&ses->session_mutex);
2039 rc = cifs_negotiate_protocol(xid, ses, server);
2041 mutex_unlock(&ses->session_mutex);
2042 /* problem -- put our ses reference */
2043 cifs_put_smb_ses(ses);
2048 rc = cifs_setup_session(xid, ses, server,
2051 mutex_unlock(&ses->session_mutex);
2052 /* problem -- put our reference */
2053 cifs_put_smb_ses(ses);
2057 mutex_unlock(&ses->session_mutex);
2059 spin_lock(&ses->chan_lock);
2061 spin_unlock(&ses->chan_lock);
2063 /* existing SMB ses has a server reference already */
2064 cifs_put_tcp_session(server, 0);
2069 cifs_dbg(FYI, "Existing smb sess not found\n");
2070 ses = sesInfoAlloc();
2074 /* new SMB session uses our server ref */
2075 ses->server = server;
2076 if (server->dstaddr.ss_family == AF_INET6)
2077 sprintf(ses->ip_addr, "%pI6", &addr6->sin6_addr);
2079 sprintf(ses->ip_addr, "%pI4", &addr->sin_addr);
2081 if (ctx->username) {
2082 ses->user_name = kstrdup(ctx->username, GFP_KERNEL);
2083 if (!ses->user_name)
2087 /* ctx->password freed at unmount */
2088 if (ctx->password) {
2089 ses->password = kstrdup(ctx->password, GFP_KERNEL);
2093 if (ctx->domainname) {
2094 ses->domainName = kstrdup(ctx->domainname, GFP_KERNEL);
2095 if (!ses->domainName)
2098 if (ctx->workstation_name) {
2099 ses->workstation_name = kstrdup(ctx->workstation_name,
2101 if (!ses->workstation_name)
2104 if (ctx->domainauto)
2105 ses->domainAuto = ctx->domainauto;
2106 ses->cred_uid = ctx->cred_uid;
2107 ses->linux_uid = ctx->linux_uid;
2109 ses->sectype = ctx->sectype;
2110 ses->sign = ctx->sign;
2112 /* add server as first channel */
2113 spin_lock(&ses->chan_lock);
2114 ses->chans[0].server = server;
2115 ses->chan_count = 1;
2116 ses->chan_max = ctx->multichannel ? ctx->max_channels:1;
2117 ses->chans_need_reconnect = 1;
2118 spin_unlock(&ses->chan_lock);
2120 mutex_lock(&ses->session_mutex);
2121 rc = cifs_negotiate_protocol(xid, ses, server);
2123 rc = cifs_setup_session(xid, ses, server, ctx->local_nls);
2124 mutex_unlock(&ses->session_mutex);
2126 /* each channel uses a different signing key */
2127 memcpy(ses->chans[0].signkey, ses->smb3signingkey,
2128 sizeof(ses->smb3signingkey));
2134 * success, put it on the list and add it as first channel
2135 * note: the session becomes active soon after this. So you'll
2136 * need to lock before changing something in the session.
2138 spin_lock(&cifs_tcp_ses_lock);
2139 list_add(&ses->smb_ses_list, &server->smb_ses_list);
2140 spin_unlock(&cifs_tcp_ses_lock);
2144 cifs_setup_ipc(ses, ctx);
2154 static int match_tcon(struct cifs_tcon *tcon, struct smb3_fs_context *ctx)
2156 if (tcon->tidStatus == CifsExiting)
2158 if (strncmp(tcon->treeName, ctx->UNC, MAX_TREE_SIZE))
2160 if (tcon->seal != ctx->seal)
2162 if (tcon->snapshot_time != ctx->snapshot_time)
2164 if (tcon->handle_timeout != ctx->handle_timeout)
2166 if (tcon->no_lease != ctx->no_lease)
2168 if (tcon->nodelete != ctx->nodelete)
2173 static struct cifs_tcon *
2174 cifs_find_tcon(struct cifs_ses *ses, struct smb3_fs_context *ctx)
2176 struct list_head *tmp;
2177 struct cifs_tcon *tcon;
2179 spin_lock(&cifs_tcp_ses_lock);
2180 list_for_each(tmp, &ses->tcon_list) {
2181 tcon = list_entry(tmp, struct cifs_tcon, tcon_list);
2183 if (!match_tcon(tcon, ctx))
2186 spin_unlock(&cifs_tcp_ses_lock);
2189 spin_unlock(&cifs_tcp_ses_lock);
2194 cifs_put_tcon(struct cifs_tcon *tcon)
2197 struct cifs_ses *ses;
2200 * IPC tcon share the lifetime of their session and are
2201 * destroyed in the session put function
2203 if (tcon == NULL || tcon->ipc)
2207 cifs_dbg(FYI, "%s: tc_count=%d\n", __func__, tcon->tc_count);
2208 spin_lock(&cifs_tcp_ses_lock);
2209 if (--tcon->tc_count > 0) {
2210 spin_unlock(&cifs_tcp_ses_lock);
2214 /* tc_count can never go negative */
2215 WARN_ON(tcon->tc_count < 0);
2217 list_del_init(&tcon->tcon_list);
2218 spin_unlock(&cifs_tcp_ses_lock);
2220 if (tcon->use_witness) {
2223 rc = cifs_swn_unregister(tcon);
2225 cifs_dbg(VFS, "%s: Failed to unregister for witness notifications: %d\n",
2231 if (ses->server->ops->tree_disconnect)
2232 ses->server->ops->tree_disconnect(xid, tcon);
2235 cifs_fscache_release_super_cookie(tcon);
2237 cifs_put_smb_ses(ses);
2241 * cifs_get_tcon - get a tcon matching @ctx data from @ses
2242 * @ses: smb session to issue the request on
2243 * @ctx: the superblock configuration context to use for building the
2245 * - tcon refcount is the number of mount points using the tcon.
2246 * - ses refcount is the number of tcon using the session.
2248 * 1. This function assumes it is being called from cifs_mount() where
2249 * we already got a session reference (ses refcount +1).
2251 * 2. Since we're in the context of adding a mount point, the end
2252 * result should be either:
2254 * a) a new tcon already allocated with refcount=1 (1 mount point) and
2255 * its session refcount incremented (1 new tcon). This +1 was
2256 * already done in (1).
2258 * b) an existing tcon with refcount+1 (add a mount point to it) and
2259 * identical ses refcount (no new tcon). Because of (1) we need to
2260 * decrement the ses refcount.
2262 static struct cifs_tcon *
2263 cifs_get_tcon(struct cifs_ses *ses, struct smb3_fs_context *ctx)
2266 struct cifs_tcon *tcon;
2268 tcon = cifs_find_tcon(ses, ctx);
2271 * tcon has refcount already incremented but we need to
2272 * decrement extra ses reference gotten by caller (case b)
2274 cifs_dbg(FYI, "Found match on UNC path\n");
2275 cifs_put_smb_ses(ses);
2279 if (!ses->server->ops->tree_connect) {
2284 tcon = tconInfoAlloc();
2290 if (ctx->snapshot_time) {
2291 if (ses->server->vals->protocol_id == 0) {
2293 "Use SMB2 or later for snapshot mount option\n");
2297 tcon->snapshot_time = ctx->snapshot_time;
2300 if (ctx->handle_timeout) {
2301 if (ses->server->vals->protocol_id == 0) {
2303 "Use SMB2.1 or later for handle timeout option\n");
2307 tcon->handle_timeout = ctx->handle_timeout;
2311 if (ctx->password) {
2312 tcon->password = kstrdup(ctx->password, GFP_KERNEL);
2313 if (!tcon->password) {
2320 if (ses->server->vals->protocol_id == 0) {
2322 "SMB3 or later required for encryption\n");
2325 } else if (tcon->ses->server->capabilities &
2326 SMB2_GLOBAL_CAP_ENCRYPTION)
2329 cifs_dbg(VFS, "Encryption is not supported on share\n");
2335 if (ctx->linux_ext) {
2336 if (ses->server->posix_ext_supported) {
2337 tcon->posix_extensions = true;
2338 pr_warn_once("SMB3.11 POSIX Extensions are experimental\n");
2340 cifs_dbg(VFS, "Server does not support mounting with posix SMB3.11 extensions\n");
2347 rc = ses->server->ops->tree_connect(xid, ses, ctx->UNC, tcon,
2350 cifs_dbg(FYI, "Tcon rc = %d\n", rc);
2354 tcon->use_persistent = false;
2355 /* check if SMB2 or later, CIFS does not support persistent handles */
2356 if (ctx->persistent) {
2357 if (ses->server->vals->protocol_id == 0) {
2359 "SMB3 or later required for persistent handles\n");
2362 } else if (ses->server->capabilities &
2363 SMB2_GLOBAL_CAP_PERSISTENT_HANDLES)
2364 tcon->use_persistent = true;
2365 else /* persistent handles requested but not supported */ {
2367 "Persistent handles not supported on share\n");
2371 } else if ((tcon->capabilities & SMB2_SHARE_CAP_CONTINUOUS_AVAILABILITY)
2372 && (ses->server->capabilities & SMB2_GLOBAL_CAP_PERSISTENT_HANDLES)
2373 && (ctx->nopersistent == false)) {
2374 cifs_dbg(FYI, "enabling persistent handles\n");
2375 tcon->use_persistent = true;
2376 } else if (ctx->resilient) {
2377 if (ses->server->vals->protocol_id == 0) {
2379 "SMB2.1 or later required for resilient handles\n");
2383 tcon->use_resilient = true;
2386 tcon->use_witness = false;
2387 if (IS_ENABLED(CONFIG_CIFS_SWN_UPCALL) && ctx->witness) {
2388 if (ses->server->vals->protocol_id >= SMB30_PROT_ID) {
2389 if (tcon->capabilities & SMB2_SHARE_CAP_CLUSTER) {
2391 * Set witness in use flag in first place
2392 * to retry registration in the echo task
2394 tcon->use_witness = true;
2395 /* And try to register immediately */
2396 rc = cifs_swn_register(tcon);
2398 cifs_dbg(VFS, "Failed to register for witness notifications: %d\n", rc);
2402 /* TODO: try to extend for non-cluster uses (eg multichannel) */
2403 cifs_dbg(VFS, "witness requested on mount but no CLUSTER capability on share\n");
2408 cifs_dbg(VFS, "SMB3 or later required for witness option\n");
2414 /* If the user really knows what they are doing they can override */
2415 if (tcon->share_flags & SMB2_SHAREFLAG_NO_CACHING) {
2417 cifs_dbg(VFS, "cache=ro requested on mount but NO_CACHING flag set on share\n");
2418 else if (ctx->cache_rw)
2419 cifs_dbg(VFS, "cache=singleclient requested on mount but NO_CACHING flag set on share\n");
2422 if (ctx->no_lease) {
2423 if (ses->server->vals->protocol_id == 0) {
2425 "SMB2 or later required for nolease option\n");
2429 tcon->no_lease = ctx->no_lease;
2433 * We can have only one retry value for a connection to a share so for
2434 * resources mounted more than once to the same server share the last
2435 * value passed in for the retry flag is used.
2437 tcon->retry = ctx->retry;
2438 tcon->nocase = ctx->nocase;
2439 if (ses->server->capabilities & SMB2_GLOBAL_CAP_DIRECTORY_LEASING)
2440 tcon->nohandlecache = ctx->nohandlecache;
2442 tcon->nohandlecache = true;
2443 tcon->nodelete = ctx->nodelete;
2444 tcon->local_lease = ctx->local_lease;
2445 INIT_LIST_HEAD(&tcon->pending_opens);
2447 spin_lock(&cifs_tcp_ses_lock);
2448 list_add(&tcon->tcon_list, &ses->tcon_list);
2449 spin_unlock(&cifs_tcp_ses_lock);
2459 cifs_put_tlink(struct tcon_link *tlink)
2461 if (!tlink || IS_ERR(tlink))
2464 if (!atomic_dec_and_test(&tlink->tl_count) ||
2465 test_bit(TCON_LINK_IN_TREE, &tlink->tl_flags)) {
2466 tlink->tl_time = jiffies;
2470 if (!IS_ERR(tlink_tcon(tlink)))
2471 cifs_put_tcon(tlink_tcon(tlink));
2477 compare_mount_options(struct super_block *sb, struct cifs_mnt_data *mnt_data)
2479 struct cifs_sb_info *old = CIFS_SB(sb);
2480 struct cifs_sb_info *new = mnt_data->cifs_sb;
2481 unsigned int oldflags = old->mnt_cifs_flags & CIFS_MOUNT_MASK;
2482 unsigned int newflags = new->mnt_cifs_flags & CIFS_MOUNT_MASK;
2484 if ((sb->s_flags & CIFS_MS_MASK) != (mnt_data->flags & CIFS_MS_MASK))
2487 if (old->mnt_cifs_serverino_autodisabled)
2488 newflags &= ~CIFS_MOUNT_SERVER_INUM;
2490 if (oldflags != newflags)
2494 * We want to share sb only if we don't specify an r/wsize or
2495 * specified r/wsize is greater than or equal to existing one.
2497 if (new->ctx->wsize && new->ctx->wsize < old->ctx->wsize)
2500 if (new->ctx->rsize && new->ctx->rsize < old->ctx->rsize)
2503 if (!uid_eq(old->ctx->linux_uid, new->ctx->linux_uid) ||
2504 !gid_eq(old->ctx->linux_gid, new->ctx->linux_gid))
2507 if (old->ctx->file_mode != new->ctx->file_mode ||
2508 old->ctx->dir_mode != new->ctx->dir_mode)
2511 if (strcmp(old->local_nls->charset, new->local_nls->charset))
2514 if (old->ctx->acregmax != new->ctx->acregmax)
2516 if (old->ctx->acdirmax != new->ctx->acdirmax)
2523 match_prepath(struct super_block *sb, struct cifs_mnt_data *mnt_data)
2525 struct cifs_sb_info *old = CIFS_SB(sb);
2526 struct cifs_sb_info *new = mnt_data->cifs_sb;
2527 bool old_set = (old->mnt_cifs_flags & CIFS_MOUNT_USE_PREFIX_PATH) &&
2529 bool new_set = (new->mnt_cifs_flags & CIFS_MOUNT_USE_PREFIX_PATH) &&
2532 if (old_set && new_set && !strcmp(new->prepath, old->prepath))
2534 else if (!old_set && !new_set)
2541 cifs_match_super(struct super_block *sb, void *data)
2543 struct cifs_mnt_data *mnt_data = (struct cifs_mnt_data *)data;
2544 struct smb3_fs_context *ctx;
2545 struct cifs_sb_info *cifs_sb;
2546 struct TCP_Server_Info *tcp_srv;
2547 struct cifs_ses *ses;
2548 struct cifs_tcon *tcon;
2549 struct tcon_link *tlink;
2552 spin_lock(&cifs_tcp_ses_lock);
2553 cifs_sb = CIFS_SB(sb);
2554 tlink = cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
2555 if (tlink == NULL) {
2556 /* can not match superblock if tlink were ever null */
2557 spin_unlock(&cifs_tcp_ses_lock);
2560 tcon = tlink_tcon(tlink);
2562 tcp_srv = ses->server;
2564 ctx = mnt_data->ctx;
2566 if (!match_server(tcp_srv, ctx) ||
2567 !match_session(ses, ctx) ||
2568 !match_tcon(tcon, ctx) ||
2569 !match_prepath(sb, mnt_data)) {
2574 rc = compare_mount_options(sb, mnt_data);
2576 spin_unlock(&cifs_tcp_ses_lock);
2577 cifs_put_tlink(tlink);
2581 #ifdef CONFIG_DEBUG_LOCK_ALLOC
2582 static struct lock_class_key cifs_key[2];
2583 static struct lock_class_key cifs_slock_key[2];
2586 cifs_reclassify_socket4(struct socket *sock)
2588 struct sock *sk = sock->sk;
2589 BUG_ON(!sock_allow_reclassification(sk));
2590 sock_lock_init_class_and_name(sk, "slock-AF_INET-CIFS",
2591 &cifs_slock_key[0], "sk_lock-AF_INET-CIFS", &cifs_key[0]);
2595 cifs_reclassify_socket6(struct socket *sock)
2597 struct sock *sk = sock->sk;
2598 BUG_ON(!sock_allow_reclassification(sk));
2599 sock_lock_init_class_and_name(sk, "slock-AF_INET6-CIFS",
2600 &cifs_slock_key[1], "sk_lock-AF_INET6-CIFS", &cifs_key[1]);
2604 cifs_reclassify_socket4(struct socket *sock)
2609 cifs_reclassify_socket6(struct socket *sock)
2614 /* See RFC1001 section 14 on representation of Netbios names */
2615 static void rfc1002mangle(char *target, char *source, unsigned int length)
2619 for (i = 0, j = 0; i < (length); i++) {
2620 /* mask a nibble at a time and encode */
2621 target[j] = 'A' + (0x0F & (source[i] >> 4));
2622 target[j+1] = 'A' + (0x0F & source[i]);
2629 bind_socket(struct TCP_Server_Info *server)
2632 if (server->srcaddr.ss_family != AF_UNSPEC) {
2633 /* Bind to the specified local IP address */
2634 struct socket *socket = server->ssocket;
2635 rc = socket->ops->bind(socket,
2636 (struct sockaddr *) &server->srcaddr,
2637 sizeof(server->srcaddr));
2639 struct sockaddr_in *saddr4;
2640 struct sockaddr_in6 *saddr6;
2641 saddr4 = (struct sockaddr_in *)&server->srcaddr;
2642 saddr6 = (struct sockaddr_in6 *)&server->srcaddr;
2643 if (saddr6->sin6_family == AF_INET6)
2644 cifs_server_dbg(VFS, "Failed to bind to: %pI6c, error: %d\n",
2645 &saddr6->sin6_addr, rc);
2647 cifs_server_dbg(VFS, "Failed to bind to: %pI4, error: %d\n",
2648 &saddr4->sin_addr.s_addr, rc);
2655 ip_rfc1001_connect(struct TCP_Server_Info *server)
2659 * some servers require RFC1001 sessinit before sending
2660 * negprot - BB check reconnection in case where second
2661 * sessinit is sent but no second negprot
2663 struct rfc1002_session_packet *ses_init_buf;
2664 struct smb_hdr *smb_buf;
2665 ses_init_buf = kzalloc(sizeof(struct rfc1002_session_packet),
2668 ses_init_buf->trailer.session_req.called_len = 32;
2670 if (server->server_RFC1001_name[0] != 0)
2671 rfc1002mangle(ses_init_buf->trailer.
2672 session_req.called_name,
2673 server->server_RFC1001_name,
2674 RFC1001_NAME_LEN_WITH_NULL);
2676 rfc1002mangle(ses_init_buf->trailer.
2677 session_req.called_name,
2678 DEFAULT_CIFS_CALLED_NAME,
2679 RFC1001_NAME_LEN_WITH_NULL);
2681 ses_init_buf->trailer.session_req.calling_len = 32;
2684 * calling name ends in null (byte 16) from old smb
2687 if (server->workstation_RFC1001_name[0] != 0)
2688 rfc1002mangle(ses_init_buf->trailer.
2689 session_req.calling_name,
2690 server->workstation_RFC1001_name,
2691 RFC1001_NAME_LEN_WITH_NULL);
2693 rfc1002mangle(ses_init_buf->trailer.
2694 session_req.calling_name,
2696 RFC1001_NAME_LEN_WITH_NULL);
2698 ses_init_buf->trailer.session_req.scope1 = 0;
2699 ses_init_buf->trailer.session_req.scope2 = 0;
2700 smb_buf = (struct smb_hdr *)ses_init_buf;
2702 /* sizeof RFC1002_SESSION_REQUEST with no scope */
2703 smb_buf->smb_buf_length = cpu_to_be32(0x81000044);
2704 rc = smb_send(server, smb_buf, 0x44);
2705 kfree(ses_init_buf);
2707 * RFC1001 layer in at least one server
2708 * requires very short break before negprot
2709 * presumably because not expecting negprot
2710 * to follow so fast. This is a simple
2711 * solution that works without
2712 * complicating the code and causes no
2713 * significant slowing down on mount
2716 usleep_range(1000, 2000);
2719 * else the negprot may still work without this
2720 * even though malloc failed
2727 generic_ip_connect(struct TCP_Server_Info *server)
2732 struct socket *socket = server->ssocket;
2733 struct sockaddr *saddr;
2735 saddr = (struct sockaddr *) &server->dstaddr;
2737 if (server->dstaddr.ss_family == AF_INET6) {
2738 struct sockaddr_in6 *ipv6 = (struct sockaddr_in6 *)&server->dstaddr;
2740 sport = ipv6->sin6_port;
2741 slen = sizeof(struct sockaddr_in6);
2743 cifs_dbg(FYI, "%s: connecting to [%pI6]:%d\n", __func__, &ipv6->sin6_addr,
2746 struct sockaddr_in *ipv4 = (struct sockaddr_in *)&server->dstaddr;
2748 sport = ipv4->sin_port;
2749 slen = sizeof(struct sockaddr_in);
2751 cifs_dbg(FYI, "%s: connecting to %pI4:%d\n", __func__, &ipv4->sin_addr,
2755 if (socket == NULL) {
2756 rc = __sock_create(cifs_net_ns(server), sfamily, SOCK_STREAM,
2757 IPPROTO_TCP, &socket, 1);
2759 cifs_server_dbg(VFS, "Error %d creating socket\n", rc);
2760 server->ssocket = NULL;
2764 /* BB other socket options to set KEEPALIVE, NODELAY? */
2765 cifs_dbg(FYI, "Socket created\n");
2766 server->ssocket = socket;
2767 socket->sk->sk_allocation = GFP_NOFS;
2768 if (sfamily == AF_INET6)
2769 cifs_reclassify_socket6(socket);
2771 cifs_reclassify_socket4(socket);
2774 rc = bind_socket(server);
2779 * Eventually check for other socket options to change from
2780 * the default. sock_setsockopt not used because it expects
2783 socket->sk->sk_rcvtimeo = 7 * HZ;
2784 socket->sk->sk_sndtimeo = 5 * HZ;
2786 /* make the bufsizes depend on wsize/rsize and max requests */
2787 if (server->noautotune) {
2788 if (socket->sk->sk_sndbuf < (200 * 1024))
2789 socket->sk->sk_sndbuf = 200 * 1024;
2790 if (socket->sk->sk_rcvbuf < (140 * 1024))
2791 socket->sk->sk_rcvbuf = 140 * 1024;
2794 if (server->tcp_nodelay)
2795 tcp_sock_set_nodelay(socket->sk);
2797 cifs_dbg(FYI, "sndbuf %d rcvbuf %d rcvtimeo 0x%lx\n",
2798 socket->sk->sk_sndbuf,
2799 socket->sk->sk_rcvbuf, socket->sk->sk_rcvtimeo);
2801 rc = socket->ops->connect(socket, saddr, slen,
2802 server->noblockcnt ? O_NONBLOCK : 0);
2804 * When mounting SMB root file systems, we do not want to block in
2805 * connect. Otherwise bail out and then let cifs_reconnect() perform
2806 * reconnect failover - if possible.
2808 if (server->noblockcnt && rc == -EINPROGRESS)
2811 cifs_dbg(FYI, "Error %d connecting to server\n", rc);
2812 trace_smb3_connect_err(server->hostname, server->conn_id, &server->dstaddr, rc);
2813 sock_release(socket);
2814 server->ssocket = NULL;
2817 trace_smb3_connect_done(server->hostname, server->conn_id, &server->dstaddr);
2818 if (sport == htons(RFC1001_PORT))
2819 rc = ip_rfc1001_connect(server);
2825 ip_connect(struct TCP_Server_Info *server)
2828 struct sockaddr_in6 *addr6 = (struct sockaddr_in6 *)&server->dstaddr;
2829 struct sockaddr_in *addr = (struct sockaddr_in *)&server->dstaddr;
2831 if (server->dstaddr.ss_family == AF_INET6)
2832 sport = &addr6->sin6_port;
2834 sport = &addr->sin_port;
2839 /* try with 445 port at first */
2840 *sport = htons(CIFS_PORT);
2842 rc = generic_ip_connect(server);
2846 /* if it failed, try with 139 port */
2847 *sport = htons(RFC1001_PORT);
2850 return generic_ip_connect(server);
2853 void reset_cifs_unix_caps(unsigned int xid, struct cifs_tcon *tcon,
2854 struct cifs_sb_info *cifs_sb, struct smb3_fs_context *ctx)
2857 * If we are reconnecting then should we check to see if
2858 * any requested capabilities changed locally e.g. via
2859 * remount but we can not do much about it here
2860 * if they have (even if we could detect it by the following)
2861 * Perhaps we could add a backpointer to array of sb from tcon
2862 * or if we change to make all sb to same share the same
2863 * sb as NFS - then we only have one backpointer to sb.
2864 * What if we wanted to mount the server share twice once with
2865 * and once without posixacls or posix paths?
2867 __u64 saved_cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2869 if (ctx && ctx->no_linux_ext) {
2870 tcon->fsUnixInfo.Capability = 0;
2871 tcon->unix_ext = 0; /* Unix Extensions disabled */
2872 cifs_dbg(FYI, "Linux protocol extensions disabled\n");
2875 tcon->unix_ext = 1; /* Unix Extensions supported */
2877 if (!tcon->unix_ext) {
2878 cifs_dbg(FYI, "Unix extensions disabled so not set on reconnect\n");
2882 if (!CIFSSMBQFSUnixInfo(xid, tcon)) {
2883 __u64 cap = le64_to_cpu(tcon->fsUnixInfo.Capability);
2884 cifs_dbg(FYI, "unix caps which server supports %lld\n", cap);
2886 * check for reconnect case in which we do not
2887 * want to change the mount behavior if we can avoid it
2891 * turn off POSIX ACL and PATHNAMES if not set
2892 * originally at mount time
2894 if ((saved_cap & CIFS_UNIX_POSIX_ACL_CAP) == 0)
2895 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2896 if ((saved_cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2897 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2898 cifs_dbg(VFS, "POSIXPATH support change\n");
2899 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2900 } else if ((cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) == 0) {
2901 cifs_dbg(VFS, "possible reconnect error\n");
2902 cifs_dbg(VFS, "server disabled POSIX path support\n");
2906 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2907 cifs_dbg(VFS, "per-share encryption not supported yet\n");
2909 cap &= CIFS_UNIX_CAP_MASK;
2910 if (ctx && ctx->no_psx_acl)
2911 cap &= ~CIFS_UNIX_POSIX_ACL_CAP;
2912 else if (CIFS_UNIX_POSIX_ACL_CAP & cap) {
2913 cifs_dbg(FYI, "negotiated posix acl support\n");
2915 cifs_sb->mnt_cifs_flags |=
2916 CIFS_MOUNT_POSIXACL;
2919 if (ctx && ctx->posix_paths == 0)
2920 cap &= ~CIFS_UNIX_POSIX_PATHNAMES_CAP;
2921 else if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP) {
2922 cifs_dbg(FYI, "negotiate posix pathnames\n");
2924 cifs_sb->mnt_cifs_flags |=
2925 CIFS_MOUNT_POSIX_PATHS;
2928 cifs_dbg(FYI, "Negotiate caps 0x%x\n", (int)cap);
2929 #ifdef CONFIG_CIFS_DEBUG2
2930 if (cap & CIFS_UNIX_FCNTL_CAP)
2931 cifs_dbg(FYI, "FCNTL cap\n");
2932 if (cap & CIFS_UNIX_EXTATTR_CAP)
2933 cifs_dbg(FYI, "EXTATTR cap\n");
2934 if (cap & CIFS_UNIX_POSIX_PATHNAMES_CAP)
2935 cifs_dbg(FYI, "POSIX path cap\n");
2936 if (cap & CIFS_UNIX_XATTR_CAP)
2937 cifs_dbg(FYI, "XATTR cap\n");
2938 if (cap & CIFS_UNIX_POSIX_ACL_CAP)
2939 cifs_dbg(FYI, "POSIX ACL cap\n");
2940 if (cap & CIFS_UNIX_LARGE_READ_CAP)
2941 cifs_dbg(FYI, "very large read cap\n");
2942 if (cap & CIFS_UNIX_LARGE_WRITE_CAP)
2943 cifs_dbg(FYI, "very large write cap\n");
2944 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_CAP)
2945 cifs_dbg(FYI, "transport encryption cap\n");
2946 if (cap & CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)
2947 cifs_dbg(FYI, "mandatory transport encryption cap\n");
2948 #endif /* CIFS_DEBUG2 */
2949 if (CIFSSMBSetFSUnixInfo(xid, tcon, cap)) {
2951 cifs_dbg(FYI, "resetting capabilities failed\n");
2953 cifs_dbg(VFS, "Negotiating Unix capabilities with the server failed. Consider mounting with the Unix Extensions disabled if problems are found by specifying the nounix mount option.\n");
2959 int cifs_setup_cifs_sb(struct cifs_sb_info *cifs_sb)
2961 struct smb3_fs_context *ctx = cifs_sb->ctx;
2963 INIT_DELAYED_WORK(&cifs_sb->prune_tlinks, cifs_prune_tlinks);
2965 spin_lock_init(&cifs_sb->tlink_tree_lock);
2966 cifs_sb->tlink_tree = RB_ROOT;
2968 cifs_dbg(FYI, "file mode: %04ho dir mode: %04ho\n",
2969 ctx->file_mode, ctx->dir_mode);
2971 /* this is needed for ASCII cp to Unicode converts */
2972 if (ctx->iocharset == NULL) {
2973 /* load_nls_default cannot return null */
2974 cifs_sb->local_nls = load_nls_default();
2976 cifs_sb->local_nls = load_nls(ctx->iocharset);
2977 if (cifs_sb->local_nls == NULL) {
2978 cifs_dbg(VFS, "CIFS mount error: iocharset %s not found\n",
2983 ctx->local_nls = cifs_sb->local_nls;
2985 smb3_update_mnt_flags(cifs_sb);
2988 cifs_dbg(FYI, "mounting share using direct i/o\n");
2989 if (ctx->cache_ro) {
2990 cifs_dbg(VFS, "mounting share with read only caching. Ensure that the share will not be modified while in use.\n");
2991 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_RO_CACHE;
2992 } else if (ctx->cache_rw) {
2993 cifs_dbg(VFS, "mounting share in single client RW caching mode. Ensure that no other systems will be accessing the share.\n");
2994 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_RO_CACHE |
2995 CIFS_MOUNT_RW_CACHE);
2998 if ((ctx->cifs_acl) && (ctx->dynperm))
2999 cifs_dbg(VFS, "mount option dynperm ignored if cifsacl mount option supported\n");
3002 cifs_sb->prepath = kstrdup(ctx->prepath, GFP_KERNEL);
3003 if (cifs_sb->prepath == NULL)
3005 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_USE_PREFIX_PATH;
3011 /* Release all succeed connections */
3012 static inline void mount_put_conns(struct mount_ctx *mnt_ctx)
3017 cifs_put_tcon(mnt_ctx->tcon);
3018 else if (mnt_ctx->ses)
3019 cifs_put_smb_ses(mnt_ctx->ses);
3020 else if (mnt_ctx->server)
3021 cifs_put_tcp_session(mnt_ctx->server, 0);
3022 mnt_ctx->cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_POSIX_PATHS;
3023 free_xid(mnt_ctx->xid);
3026 /* Get connections for tcp, ses and tcon */
3027 static int mount_get_conns(struct mount_ctx *mnt_ctx)
3030 struct TCP_Server_Info *server = NULL;
3031 struct cifs_ses *ses = NULL;
3032 struct cifs_tcon *tcon = NULL;
3033 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3034 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3039 /* get a reference to a tcp session */
3040 server = cifs_get_tcp_session(ctx, NULL);
3041 if (IS_ERR(server)) {
3042 rc = PTR_ERR(server);
3047 /* get a reference to a SMB session */
3048 ses = cifs_get_smb_ses(server, ctx);
3055 if ((ctx->persistent == true) && (!(ses->server->capabilities &
3056 SMB2_GLOBAL_CAP_PERSISTENT_HANDLES))) {
3057 cifs_server_dbg(VFS, "persistent handles not supported by server\n");
3062 /* search for existing tcon to this server share */
3063 tcon = cifs_get_tcon(ses, ctx);
3070 /* if new SMB3.11 POSIX extensions are supported do not remap / and \ */
3071 if (tcon->posix_extensions)
3072 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_POSIX_PATHS;
3074 /* tell server which Unix caps we support */
3075 if (cap_unix(tcon->ses)) {
3077 * reset of caps checks mount to see if unix extensions disabled
3078 * for just this mount.
3080 reset_cifs_unix_caps(xid, tcon, cifs_sb, ctx);
3081 spin_lock(&cifs_tcp_ses_lock);
3082 if ((tcon->ses->server->tcpStatus == CifsNeedReconnect) &&
3083 (le64_to_cpu(tcon->fsUnixInfo.Capability) &
3084 CIFS_UNIX_TRANSPORT_ENCRYPTION_MANDATORY_CAP)) {
3085 spin_unlock(&cifs_tcp_ses_lock);
3089 spin_unlock(&cifs_tcp_ses_lock);
3091 tcon->unix_ext = 0; /* server does not support them */
3093 /* do not care if a following call succeed - informational */
3094 if (!tcon->pipe && server->ops->qfs_tcon) {
3095 server->ops->qfs_tcon(xid, tcon, cifs_sb);
3096 if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_RO_CACHE) {
3097 if (tcon->fsDevInfo.DeviceCharacteristics &
3098 cpu_to_le32(FILE_READ_ONLY_DEVICE))
3099 cifs_dbg(VFS, "mounted to read only share\n");
3100 else if ((cifs_sb->mnt_cifs_flags &
3101 CIFS_MOUNT_RW_CACHE) == 0)
3102 cifs_dbg(VFS, "read only mount of RW share\n");
3103 /* no need to log a RW mount of a typical RW share */
3108 * Clamp the rsize/wsize mount arguments if they are too big for the server
3109 * and set the rsize/wsize to the negotiated values if not passed in by
3112 if ((cifs_sb->ctx->wsize == 0) ||
3113 (cifs_sb->ctx->wsize > server->ops->negotiate_wsize(tcon, ctx)))
3114 cifs_sb->ctx->wsize = server->ops->negotiate_wsize(tcon, ctx);
3115 if ((cifs_sb->ctx->rsize == 0) ||
3116 (cifs_sb->ctx->rsize > server->ops->negotiate_rsize(tcon, ctx)))
3117 cifs_sb->ctx->rsize = server->ops->negotiate_rsize(tcon, ctx);
3120 * The cookie is initialized from volume info returned above.
3121 * Inside cifs_fscache_get_super_cookie it checks
3122 * that we do not get super cookie twice.
3124 cifs_fscache_get_super_cookie(tcon);
3127 mnt_ctx->server = server;
3129 mnt_ctx->tcon = tcon;
3135 static int mount_setup_tlink(struct cifs_sb_info *cifs_sb, struct cifs_ses *ses,
3136 struct cifs_tcon *tcon)
3138 struct tcon_link *tlink;
3140 /* hang the tcon off of the superblock */
3141 tlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
3145 tlink->tl_uid = ses->linux_uid;
3146 tlink->tl_tcon = tcon;
3147 tlink->tl_time = jiffies;
3148 set_bit(TCON_LINK_MASTER, &tlink->tl_flags);
3149 set_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3151 cifs_sb->master_tlink = tlink;
3152 spin_lock(&cifs_sb->tlink_tree_lock);
3153 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
3154 spin_unlock(&cifs_sb->tlink_tree_lock);
3156 queue_delayed_work(cifsiod_wq, &cifs_sb->prune_tlinks,
3161 #ifdef CONFIG_CIFS_DFS_UPCALL
3162 /* Get unique dfs connections */
3163 static int mount_get_dfs_conns(struct mount_ctx *mnt_ctx)
3167 mnt_ctx->fs_ctx->nosharesock = true;
3168 rc = mount_get_conns(mnt_ctx);
3169 if (mnt_ctx->server) {
3170 cifs_dbg(FYI, "%s: marking tcp session as a dfs connection\n", __func__);
3171 spin_lock(&cifs_tcp_ses_lock);
3172 mnt_ctx->server->is_dfs_conn = true;
3173 spin_unlock(&cifs_tcp_ses_lock);
3179 * cifs_build_path_to_root returns full path to root when we do not have an
3180 * existing connection (tcon)
3183 build_unc_path_to_root(const struct smb3_fs_context *ctx,
3184 const struct cifs_sb_info *cifs_sb, bool useppath)
3186 char *full_path, *pos;
3187 unsigned int pplen = useppath && ctx->prepath ?
3188 strlen(ctx->prepath) + 1 : 0;
3189 unsigned int unc_len = strnlen(ctx->UNC, MAX_TREE_SIZE + 1);
3191 if (unc_len > MAX_TREE_SIZE)
3192 return ERR_PTR(-EINVAL);
3194 full_path = kmalloc(unc_len + pplen + 1, GFP_KERNEL);
3195 if (full_path == NULL)
3196 return ERR_PTR(-ENOMEM);
3198 memcpy(full_path, ctx->UNC, unc_len);
3199 pos = full_path + unc_len;
3202 *pos = CIFS_DIR_SEP(cifs_sb);
3203 memcpy(pos + 1, ctx->prepath, pplen);
3207 *pos = '\0'; /* add trailing null */
3208 convert_delimiter(full_path, CIFS_DIR_SEP(cifs_sb));
3209 cifs_dbg(FYI, "%s: full_path=%s\n", __func__, full_path);
3214 * expand_dfs_referral - Update cifs_sb from dfs referral path
3216 * cifs_sb->ctx->mount_options will be (re-)allocated to a string containing updated options for the
3217 * submount. Otherwise it will be left untouched.
3219 static int expand_dfs_referral(struct mount_ctx *mnt_ctx, const char *full_path,
3220 struct dfs_info3_param *referral)
3223 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3224 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3225 char *fake_devname = NULL, *mdata = NULL;
3227 mdata = cifs_compose_mount_options(cifs_sb->ctx->mount_options, full_path + 1, referral,
3229 if (IS_ERR(mdata)) {
3230 rc = PTR_ERR(mdata);
3234 * We can not clear out the whole structure since we no longer have an explicit
3235 * function to parse a mount-string. Instead we need to clear out the individual
3236 * fields that are no longer valid.
3238 kfree(ctx->prepath);
3239 ctx->prepath = NULL;
3240 rc = cifs_setup_volume_info(ctx, mdata, fake_devname);
3242 kfree(fake_devname);
3243 kfree(cifs_sb->ctx->mount_options);
3244 cifs_sb->ctx->mount_options = mdata;
3250 /* TODO: all callers to this are broken. We are not parsing mount_options here
3251 * we should pass a clone of the original context?
3254 cifs_setup_volume_info(struct smb3_fs_context *ctx, const char *mntopts, const char *devname)
3259 cifs_dbg(FYI, "%s: devname=%s\n", __func__, devname);
3260 rc = smb3_parse_devname(devname, ctx);
3262 cifs_dbg(VFS, "%s: failed to parse %s: %d\n", __func__, devname, rc);
3270 rc = smb3_parse_opt(mntopts, "ip", &ip);
3272 cifs_dbg(VFS, "%s: failed to parse ip options: %d\n", __func__, rc);
3276 rc = cifs_convert_address((struct sockaddr *)&ctx->dstaddr, ip, strlen(ip));
3279 cifs_dbg(VFS, "%s: failed to convert ip address\n", __func__);
3284 if (ctx->nullauth) {
3285 cifs_dbg(FYI, "Anonymous login\n");
3286 kfree(ctx->username);
3287 ctx->username = NULL;
3288 } else if (ctx->username) {
3289 /* BB fixme parse for domain name here */
3290 cifs_dbg(FYI, "Username: %s\n", ctx->username);
3292 cifs_dbg(VFS, "No username specified\n");
3293 /* In userspace mount helper we can get user name from alternate
3294 locations such as env variables and files on disk */
3302 cifs_are_all_path_components_accessible(struct TCP_Server_Info *server,
3304 struct cifs_tcon *tcon,
3305 struct cifs_sb_info *cifs_sb,
3312 int skip = added_treename ? 1 : 0;
3314 sep = CIFS_DIR_SEP(cifs_sb);
3317 rc = server->ops->is_path_accessible(xid, tcon, cifs_sb, "");
3319 /* skip separators */
3324 /* next separator */
3325 while (*s && *s != sep)
3328 * if the treename is added, we then have to skip the first
3329 * part within the separators
3336 * temporarily null-terminate the path at the end of
3337 * the current component
3341 rc = server->ops->is_path_accessible(xid, tcon, cifs_sb,
3349 * Check if path is remote (e.g. a DFS share). Return -EREMOTE if it is,
3352 static int is_path_remote(struct mount_ctx *mnt_ctx)
3355 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3356 struct TCP_Server_Info *server = mnt_ctx->server;
3357 unsigned int xid = mnt_ctx->xid;
3358 struct cifs_tcon *tcon = mnt_ctx->tcon;
3359 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3362 if (!server->ops->is_path_accessible)
3366 * cifs_build_path_to_root works only when we have a valid tcon
3368 full_path = cifs_build_path_to_root(ctx, cifs_sb, tcon,
3369 tcon->Flags & SMB_SHARE_IS_IN_DFS);
3370 if (full_path == NULL)
3373 cifs_dbg(FYI, "%s: full_path: %s\n", __func__, full_path);
3375 rc = server->ops->is_path_accessible(xid, tcon, cifs_sb,
3377 if (rc != 0 && rc != -EREMOTE) {
3382 if (rc != -EREMOTE) {
3383 rc = cifs_are_all_path_components_accessible(server, xid, tcon,
3384 cifs_sb, full_path, tcon->Flags & SMB_SHARE_IS_IN_DFS);
3386 cifs_server_dbg(VFS, "cannot query dirs between root and final path, enabling CIFS_MOUNT_USE_PREFIX_PATH\n");
3387 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_USE_PREFIX_PATH;
3396 #ifdef CONFIG_CIFS_DFS_UPCALL
3397 static void set_root_ses(struct mount_ctx *mnt_ctx)
3400 spin_lock(&cifs_tcp_ses_lock);
3401 mnt_ctx->ses->ses_count++;
3402 spin_unlock(&cifs_tcp_ses_lock);
3403 dfs_cache_add_refsrv_session(&mnt_ctx->mount_id, mnt_ctx->ses);
3405 mnt_ctx->root_ses = mnt_ctx->ses;
3408 static int is_dfs_mount(struct mount_ctx *mnt_ctx, bool *isdfs, struct dfs_cache_tgt_list *root_tl)
3411 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3412 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3416 rc = mount_get_conns(mnt_ctx);
3418 * If called with 'nodfs' mount option, then skip DFS resolving. Otherwise unconditionally
3419 * try to get an DFS referral (even cached) to determine whether it is an DFS mount.
3421 * Skip prefix path to provide support for DFS referrals from w2k8 servers which don't seem
3422 * to respond with PATH_NOT_COVERED to requests that include the prefix.
3424 if ((cifs_sb->mnt_cifs_flags & CIFS_MOUNT_NO_DFS) ||
3425 dfs_cache_find(mnt_ctx->xid, mnt_ctx->ses, cifs_sb->local_nls, cifs_remap(cifs_sb),
3426 ctx->UNC + 1, NULL, root_tl)) {
3429 /* Check if it is fully accessible and then mount it */
3430 rc = is_path_remote(mnt_ctx);
3433 else if (rc != -EREMOTE)
3439 static int connect_dfs_target(struct mount_ctx *mnt_ctx, const char *full_path,
3440 const char *ref_path, struct dfs_cache_tgt_iterator *tit)
3443 struct dfs_info3_param ref = {};
3444 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3445 char *oldmnt = cifs_sb->ctx->mount_options;
3447 rc = dfs_cache_get_tgt_referral(ref_path, tit, &ref);
3451 rc = expand_dfs_referral(mnt_ctx, full_path, &ref);
3455 /* Connect to new target only if we were redirected (e.g. mount options changed) */
3456 if (oldmnt != cifs_sb->ctx->mount_options) {
3457 mount_put_conns(mnt_ctx);
3458 rc = mount_get_dfs_conns(mnt_ctx);
3461 if (cifs_is_referral_server(mnt_ctx->tcon, &ref))
3462 set_root_ses(mnt_ctx);
3463 rc = dfs_cache_update_tgthint(mnt_ctx->xid, mnt_ctx->root_ses, cifs_sb->local_nls,
3464 cifs_remap(cifs_sb), ref_path, tit);
3468 free_dfs_info_param(&ref);
3472 static int connect_dfs_root(struct mount_ctx *mnt_ctx, struct dfs_cache_tgt_list *root_tl)
3476 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3477 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3478 struct dfs_cache_tgt_iterator *tit;
3480 /* Put initial connections as they might be shared with other mounts. We need unique dfs
3481 * connections per mount to properly failover, so mount_get_dfs_conns() must be used from
3484 mount_put_conns(mnt_ctx);
3485 mount_get_dfs_conns(mnt_ctx);
3486 set_root_ses(mnt_ctx);
3488 full_path = build_unc_path_to_root(ctx, cifs_sb, true);
3489 if (IS_ERR(full_path))
3490 return PTR_ERR(full_path);
3492 mnt_ctx->origin_fullpath = dfs_cache_canonical_path(ctx->UNC, cifs_sb->local_nls,
3493 cifs_remap(cifs_sb));
3494 if (IS_ERR(mnt_ctx->origin_fullpath)) {
3495 rc = PTR_ERR(mnt_ctx->origin_fullpath);
3496 mnt_ctx->origin_fullpath = NULL;
3500 /* Try all dfs root targets */
3501 for (rc = -ENOENT, tit = dfs_cache_get_tgt_iterator(root_tl);
3502 tit; tit = dfs_cache_get_next_tgt(root_tl, tit)) {
3503 rc = connect_dfs_target(mnt_ctx, full_path, mnt_ctx->origin_fullpath + 1, tit);
3505 mnt_ctx->leaf_fullpath = kstrdup(mnt_ctx->origin_fullpath, GFP_KERNEL);
3506 if (!mnt_ctx->leaf_fullpath)
3517 static int __follow_dfs_link(struct mount_ctx *mnt_ctx)
3520 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3521 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3523 struct dfs_cache_tgt_list tl = DFS_CACHE_TGT_LIST_INIT(tl);
3524 struct dfs_cache_tgt_iterator *tit;
3526 full_path = build_unc_path_to_root(ctx, cifs_sb, true);
3527 if (IS_ERR(full_path))
3528 return PTR_ERR(full_path);
3530 kfree(mnt_ctx->leaf_fullpath);
3531 mnt_ctx->leaf_fullpath = dfs_cache_canonical_path(full_path, cifs_sb->local_nls,
3532 cifs_remap(cifs_sb));
3533 if (IS_ERR(mnt_ctx->leaf_fullpath)) {
3534 rc = PTR_ERR(mnt_ctx->leaf_fullpath);
3535 mnt_ctx->leaf_fullpath = NULL;
3539 /* Get referral from dfs link */
3540 rc = dfs_cache_find(mnt_ctx->xid, mnt_ctx->root_ses, cifs_sb->local_nls,
3541 cifs_remap(cifs_sb), mnt_ctx->leaf_fullpath + 1, NULL, &tl);
3545 /* Try all dfs link targets */
3546 for (rc = -ENOENT, tit = dfs_cache_get_tgt_iterator(&tl);
3547 tit; tit = dfs_cache_get_next_tgt(&tl, tit)) {
3548 rc = connect_dfs_target(mnt_ctx, full_path, mnt_ctx->leaf_fullpath + 1, tit);
3550 rc = is_path_remote(mnt_ctx);
3557 dfs_cache_free_tgts(&tl);
3561 static int follow_dfs_link(struct mount_ctx *mnt_ctx)
3564 struct cifs_sb_info *cifs_sb = mnt_ctx->cifs_sb;
3565 struct smb3_fs_context *ctx = mnt_ctx->fs_ctx;
3569 full_path = build_unc_path_to_root(ctx, cifs_sb, true);
3570 if (IS_ERR(full_path))
3571 return PTR_ERR(full_path);
3573 kfree(mnt_ctx->origin_fullpath);
3574 mnt_ctx->origin_fullpath = dfs_cache_canonical_path(full_path, cifs_sb->local_nls,
3575 cifs_remap(cifs_sb));
3578 if (IS_ERR(mnt_ctx->origin_fullpath)) {
3579 rc = PTR_ERR(mnt_ctx->origin_fullpath);
3580 mnt_ctx->origin_fullpath = NULL;
3585 rc = __follow_dfs_link(mnt_ctx);
3586 if (!rc || rc != -EREMOTE)
3588 } while (rc = -ELOOP, ++num_links < MAX_NESTED_LINKS);
3593 /* Set up DFS referral paths for failover */
3594 static void setup_server_referral_paths(struct mount_ctx *mnt_ctx)
3596 struct TCP_Server_Info *server = mnt_ctx->server;
3598 server->origin_fullpath = mnt_ctx->origin_fullpath;
3599 server->leaf_fullpath = mnt_ctx->leaf_fullpath;
3600 server->current_fullpath = mnt_ctx->leaf_fullpath;
3601 mnt_ctx->origin_fullpath = mnt_ctx->leaf_fullpath = NULL;
3604 int cifs_mount(struct cifs_sb_info *cifs_sb, struct smb3_fs_context *ctx)
3607 struct mount_ctx mnt_ctx = { .cifs_sb = cifs_sb, .fs_ctx = ctx, };
3608 struct dfs_cache_tgt_list tl = DFS_CACHE_TGT_LIST_INIT(tl);
3611 rc = is_dfs_mount(&mnt_ctx, &isdfs, &tl);
3617 uuid_gen(&mnt_ctx.mount_id);
3618 rc = connect_dfs_root(&mnt_ctx, &tl);
3619 dfs_cache_free_tgts(&tl);
3624 rc = is_path_remote(&mnt_ctx);
3626 rc = follow_dfs_link(&mnt_ctx);
3630 setup_server_referral_paths(&mnt_ctx);
3632 * After reconnecting to a different server, unique ids won't match anymore, so we disable
3633 * serverino. This prevents dentry revalidation to think the dentry are stale (ESTALE).
3635 cifs_autodisable_serverino(cifs_sb);
3637 * Force the use of prefix path to support failover on DFS paths that resolve to targets
3638 * that have different prefix paths.
3640 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_USE_PREFIX_PATH;
3641 kfree(cifs_sb->prepath);
3642 cifs_sb->prepath = ctx->prepath;
3643 ctx->prepath = NULL;
3644 uuid_copy(&cifs_sb->dfs_mount_id, &mnt_ctx.mount_id);
3647 free_xid(mnt_ctx.xid);
3648 cifs_try_adding_channels(cifs_sb, mnt_ctx.ses);
3649 return mount_setup_tlink(cifs_sb, mnt_ctx.ses, mnt_ctx.tcon);
3652 dfs_cache_put_refsrv_sessions(&mnt_ctx.mount_id);
3653 kfree(mnt_ctx.origin_fullpath);
3654 kfree(mnt_ctx.leaf_fullpath);
3655 mount_put_conns(&mnt_ctx);
3659 int cifs_mount(struct cifs_sb_info *cifs_sb, struct smb3_fs_context *ctx)
3662 struct mount_ctx mnt_ctx = { .cifs_sb = cifs_sb, .fs_ctx = ctx, };
3664 rc = mount_get_conns(&mnt_ctx);
3669 rc = is_path_remote(&mnt_ctx);
3676 free_xid(mnt_ctx.xid);
3677 return mount_setup_tlink(cifs_sb, mnt_ctx.ses, mnt_ctx.tcon);
3680 mount_put_conns(&mnt_ctx);
3686 * Issue a TREE_CONNECT request.
3689 CIFSTCon(const unsigned int xid, struct cifs_ses *ses,
3690 const char *tree, struct cifs_tcon *tcon,
3691 const struct nls_table *nls_codepage)
3693 struct smb_hdr *smb_buffer;
3694 struct smb_hdr *smb_buffer_response;
3697 unsigned char *bcc_ptr;
3700 __u16 bytes_left, count;
3705 smb_buffer = cifs_buf_get();
3706 if (smb_buffer == NULL)
3709 smb_buffer_response = smb_buffer;
3711 header_assemble(smb_buffer, SMB_COM_TREE_CONNECT_ANDX,
3712 NULL /*no tid */ , 4 /*wct */ );
3714 smb_buffer->Mid = get_next_mid(ses->server);
3715 smb_buffer->Uid = ses->Suid;
3716 pSMB = (TCONX_REQ *) smb_buffer;
3717 pSMBr = (TCONX_RSP *) smb_buffer_response;
3719 pSMB->AndXCommand = 0xFF;
3720 pSMB->Flags = cpu_to_le16(TCON_EXTENDED_SECINFO);
3721 bcc_ptr = &pSMB->Password[0];
3722 if (tcon->pipe || (ses->server->sec_mode & SECMODE_USER)) {
3723 pSMB->PasswordLength = cpu_to_le16(1); /* minimum */
3724 *bcc_ptr = 0; /* password is null byte */
3725 bcc_ptr++; /* skip password */
3726 /* already aligned so no need to do it below */
3729 if (ses->server->sign)
3730 smb_buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
3732 if (ses->capabilities & CAP_STATUS32) {
3733 smb_buffer->Flags2 |= SMBFLG2_ERR_STATUS;
3735 if (ses->capabilities & CAP_DFS) {
3736 smb_buffer->Flags2 |= SMBFLG2_DFS;
3738 if (ses->capabilities & CAP_UNICODE) {
3739 smb_buffer->Flags2 |= SMBFLG2_UNICODE;
3741 cifs_strtoUTF16((__le16 *) bcc_ptr, tree,
3742 6 /* max utf8 char length in bytes */ *
3743 (/* server len*/ + 256 /* share len */), nls_codepage);
3744 bcc_ptr += 2 * length; /* convert num 16 bit words to bytes */
3745 bcc_ptr += 2; /* skip trailing null */
3746 } else { /* ASCII */
3747 strcpy(bcc_ptr, tree);
3748 bcc_ptr += strlen(tree) + 1;
3750 strcpy(bcc_ptr, "?????");
3751 bcc_ptr += strlen("?????");
3753 count = bcc_ptr - &pSMB->Password[0];
3754 be32_add_cpu(&pSMB->hdr.smb_buf_length, count);
3755 pSMB->ByteCount = cpu_to_le16(count);
3757 rc = SendReceive(xid, ses, smb_buffer, smb_buffer_response, &length,
3760 /* above now done in SendReceive */
3764 spin_lock(&cifs_tcp_ses_lock);
3765 tcon->tidStatus = CifsGood;
3766 spin_unlock(&cifs_tcp_ses_lock);
3767 tcon->need_reconnect = false;
3768 tcon->tid = smb_buffer_response->Tid;
3769 bcc_ptr = pByteArea(smb_buffer_response);
3770 bytes_left = get_bcc(smb_buffer_response);
3771 length = strnlen(bcc_ptr, bytes_left - 2);
3772 if (smb_buffer->Flags2 & SMBFLG2_UNICODE)
3778 /* skip service field (NB: this field is always ASCII) */
3780 if ((bcc_ptr[0] == 'I') && (bcc_ptr[1] == 'P') &&
3781 (bcc_ptr[2] == 'C')) {
3782 cifs_dbg(FYI, "IPC connection\n");
3786 } else if (length == 2) {
3787 if ((bcc_ptr[0] == 'A') && (bcc_ptr[1] == ':')) {
3788 /* the most common case */
3789 cifs_dbg(FYI, "disk share connection\n");
3792 bcc_ptr += length + 1;
3793 bytes_left -= (length + 1);
3794 strlcpy(tcon->treeName, tree, sizeof(tcon->treeName));
3796 /* mostly informational -- no need to fail on error here */
3797 kfree(tcon->nativeFileSystem);
3798 tcon->nativeFileSystem = cifs_strndup_from_utf16(bcc_ptr,
3799 bytes_left, is_unicode,
3802 cifs_dbg(FYI, "nativeFileSystem=%s\n", tcon->nativeFileSystem);
3804 if ((smb_buffer_response->WordCount == 3) ||
3805 (smb_buffer_response->WordCount == 7))
3806 /* field is in same location */
3807 tcon->Flags = le16_to_cpu(pSMBr->OptionalSupport);
3810 cifs_dbg(FYI, "Tcon flags: 0x%x\n", tcon->Flags);
3813 cifs_buf_release(smb_buffer);
3817 static void delayed_free(struct rcu_head *p)
3819 struct cifs_sb_info *cifs_sb = container_of(p, struct cifs_sb_info, rcu);
3821 unload_nls(cifs_sb->local_nls);
3822 smb3_cleanup_fs_context(cifs_sb->ctx);
3827 cifs_umount(struct cifs_sb_info *cifs_sb)
3829 struct rb_root *root = &cifs_sb->tlink_tree;
3830 struct rb_node *node;
3831 struct tcon_link *tlink;
3833 cancel_delayed_work_sync(&cifs_sb->prune_tlinks);
3835 spin_lock(&cifs_sb->tlink_tree_lock);
3836 while ((node = rb_first(root))) {
3837 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
3838 cifs_get_tlink(tlink);
3839 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
3840 rb_erase(node, root);
3842 spin_unlock(&cifs_sb->tlink_tree_lock);
3843 cifs_put_tlink(tlink);
3844 spin_lock(&cifs_sb->tlink_tree_lock);
3846 spin_unlock(&cifs_sb->tlink_tree_lock);
3848 kfree(cifs_sb->prepath);
3849 #ifdef CONFIG_CIFS_DFS_UPCALL
3850 dfs_cache_put_refsrv_sessions(&cifs_sb->dfs_mount_id);
3852 call_rcu(&cifs_sb->rcu, delayed_free);
3856 cifs_negotiate_protocol(const unsigned int xid, struct cifs_ses *ses,
3857 struct TCP_Server_Info *server)
3861 if (!server->ops->need_neg || !server->ops->negotiate)
3864 /* only send once per connect */
3865 spin_lock(&cifs_tcp_ses_lock);
3866 if (!server->ops->need_neg(server) ||
3867 server->tcpStatus != CifsNeedNegotiate) {
3868 spin_unlock(&cifs_tcp_ses_lock);
3871 server->tcpStatus = CifsInNegotiate;
3872 spin_unlock(&cifs_tcp_ses_lock);
3874 rc = server->ops->negotiate(xid, ses, server);
3876 spin_lock(&cifs_tcp_ses_lock);
3877 if (server->tcpStatus == CifsInNegotiate)
3878 server->tcpStatus = CifsNeedSessSetup;
3881 spin_unlock(&cifs_tcp_ses_lock);
3888 cifs_setup_session(const unsigned int xid, struct cifs_ses *ses,
3889 struct TCP_Server_Info *server,
3890 struct nls_table *nls_info)
3893 bool is_binding = false;
3895 /* only send once per connect */
3896 spin_lock(&cifs_tcp_ses_lock);
3897 if (server->tcpStatus != CifsNeedSessSetup) {
3898 spin_unlock(&cifs_tcp_ses_lock);
3901 ses->status = CifsInSessSetup;
3902 spin_unlock(&cifs_tcp_ses_lock);
3904 spin_lock(&ses->chan_lock);
3905 is_binding = !CIFS_ALL_CHANS_NEED_RECONNECT(ses);
3906 spin_unlock(&ses->chan_lock);
3909 ses->capabilities = server->capabilities;
3910 if (!linuxExtEnabled)
3911 ses->capabilities &= (~server->vals->cap_unix);
3913 if (ses->auth_key.response) {
3914 cifs_dbg(FYI, "Free previous auth_key.response = %p\n",
3915 ses->auth_key.response);
3916 kfree(ses->auth_key.response);
3917 ses->auth_key.response = NULL;
3918 ses->auth_key.len = 0;
3922 cifs_dbg(FYI, "Security Mode: 0x%x Capabilities: 0x%x TimeAdjust: %d\n",
3923 server->sec_mode, server->capabilities, server->timeAdj);
3925 if (server->ops->sess_setup)
3926 rc = server->ops->sess_setup(xid, ses, server, nls_info);
3929 cifs_server_dbg(VFS, "Send error in SessSetup = %d\n", rc);
3935 cifs_set_vol_auth(struct smb3_fs_context *ctx, struct cifs_ses *ses)
3937 ctx->sectype = ses->sectype;
3939 /* krb5 is special, since we don't need username or pw */
3940 if (ctx->sectype == Kerberos)
3943 return cifs_set_cifscreds(ctx, ses);
3946 static struct cifs_tcon *
3947 cifs_construct_tcon(struct cifs_sb_info *cifs_sb, kuid_t fsuid)
3950 struct cifs_tcon *master_tcon = cifs_sb_master_tcon(cifs_sb);
3951 struct cifs_ses *ses;
3952 struct cifs_tcon *tcon = NULL;
3953 struct smb3_fs_context *ctx;
3955 ctx = kzalloc(sizeof(*ctx), GFP_KERNEL);
3957 return ERR_PTR(-ENOMEM);
3959 ctx->local_nls = cifs_sb->local_nls;
3960 ctx->linux_uid = fsuid;
3961 ctx->cred_uid = fsuid;
3962 ctx->UNC = master_tcon->treeName;
3963 ctx->retry = master_tcon->retry;
3964 ctx->nocase = master_tcon->nocase;
3965 ctx->nohandlecache = master_tcon->nohandlecache;
3966 ctx->local_lease = master_tcon->local_lease;
3967 ctx->no_lease = master_tcon->no_lease;
3968 ctx->resilient = master_tcon->use_resilient;
3969 ctx->persistent = master_tcon->use_persistent;
3970 ctx->handle_timeout = master_tcon->handle_timeout;
3971 ctx->no_linux_ext = !master_tcon->unix_ext;
3972 ctx->linux_ext = master_tcon->posix_extensions;
3973 ctx->sectype = master_tcon->ses->sectype;
3974 ctx->sign = master_tcon->ses->sign;
3975 ctx->seal = master_tcon->seal;
3976 ctx->witness = master_tcon->use_witness;
3978 rc = cifs_set_vol_auth(ctx, master_tcon->ses);
3984 /* get a reference for the same TCP session */
3985 spin_lock(&cifs_tcp_ses_lock);
3986 ++master_tcon->ses->server->srv_count;
3987 spin_unlock(&cifs_tcp_ses_lock);
3989 ses = cifs_get_smb_ses(master_tcon->ses->server, ctx);
3991 tcon = (struct cifs_tcon *)ses;
3992 cifs_put_tcp_session(master_tcon->ses->server, 0);
3996 tcon = cifs_get_tcon(ses, ctx);
3998 cifs_put_smb_ses(ses);
4003 reset_cifs_unix_caps(0, tcon, NULL, ctx);
4006 kfree(ctx->username);
4007 kfree_sensitive(ctx->password);
4014 cifs_sb_master_tcon(struct cifs_sb_info *cifs_sb)
4016 return tlink_tcon(cifs_sb_master_tlink(cifs_sb));
4019 /* find and return a tlink with given uid */
4020 static struct tcon_link *
4021 tlink_rb_search(struct rb_root *root, kuid_t uid)
4023 struct rb_node *node = root->rb_node;
4024 struct tcon_link *tlink;
4027 tlink = rb_entry(node, struct tcon_link, tl_rbnode);
4029 if (uid_gt(tlink->tl_uid, uid))
4030 node = node->rb_left;
4031 else if (uid_lt(tlink->tl_uid, uid))
4032 node = node->rb_right;
4039 /* insert a tcon_link into the tree */
4041 tlink_rb_insert(struct rb_root *root, struct tcon_link *new_tlink)
4043 struct rb_node **new = &(root->rb_node), *parent = NULL;
4044 struct tcon_link *tlink;
4047 tlink = rb_entry(*new, struct tcon_link, tl_rbnode);
4050 if (uid_gt(tlink->tl_uid, new_tlink->tl_uid))
4051 new = &((*new)->rb_left);
4053 new = &((*new)->rb_right);
4056 rb_link_node(&new_tlink->tl_rbnode, parent, new);
4057 rb_insert_color(&new_tlink->tl_rbnode, root);
4061 * Find or construct an appropriate tcon given a cifs_sb and the fsuid of the
4064 * If the superblock doesn't refer to a multiuser mount, then just return
4065 * the master tcon for the mount.
4067 * First, search the rbtree for an existing tcon for this fsuid. If one
4068 * exists, then check to see if it's pending construction. If it is then wait
4069 * for construction to complete. Once it's no longer pending, check to see if
4070 * it failed and either return an error or retry construction, depending on
4073 * If one doesn't exist then insert a new tcon_link struct into the tree and
4074 * try to construct a new one.
4077 cifs_sb_tlink(struct cifs_sb_info *cifs_sb)
4080 kuid_t fsuid = current_fsuid();
4081 struct tcon_link *tlink, *newtlink;
4083 if (!(cifs_sb->mnt_cifs_flags & CIFS_MOUNT_MULTIUSER))
4084 return cifs_get_tlink(cifs_sb_master_tlink(cifs_sb));
4086 spin_lock(&cifs_sb->tlink_tree_lock);
4087 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
4089 cifs_get_tlink(tlink);
4090 spin_unlock(&cifs_sb->tlink_tree_lock);
4092 if (tlink == NULL) {
4093 newtlink = kzalloc(sizeof(*tlink), GFP_KERNEL);
4094 if (newtlink == NULL)
4095 return ERR_PTR(-ENOMEM);
4096 newtlink->tl_uid = fsuid;
4097 newtlink->tl_tcon = ERR_PTR(-EACCES);
4098 set_bit(TCON_LINK_PENDING, &newtlink->tl_flags);
4099 set_bit(TCON_LINK_IN_TREE, &newtlink->tl_flags);
4100 cifs_get_tlink(newtlink);
4102 spin_lock(&cifs_sb->tlink_tree_lock);
4103 /* was one inserted after previous search? */
4104 tlink = tlink_rb_search(&cifs_sb->tlink_tree, fsuid);
4106 cifs_get_tlink(tlink);
4107 spin_unlock(&cifs_sb->tlink_tree_lock);
4109 goto wait_for_construction;
4112 tlink_rb_insert(&cifs_sb->tlink_tree, tlink);
4113 spin_unlock(&cifs_sb->tlink_tree_lock);
4115 wait_for_construction:
4116 ret = wait_on_bit(&tlink->tl_flags, TCON_LINK_PENDING,
4117 TASK_INTERRUPTIBLE);
4119 cifs_put_tlink(tlink);
4120 return ERR_PTR(-ERESTARTSYS);
4123 /* if it's good, return it */
4124 if (!IS_ERR(tlink->tl_tcon))
4127 /* return error if we tried this already recently */
4128 if (time_before(jiffies, tlink->tl_time + TLINK_ERROR_EXPIRE)) {
4129 cifs_put_tlink(tlink);
4130 return ERR_PTR(-EACCES);
4133 if (test_and_set_bit(TCON_LINK_PENDING, &tlink->tl_flags))
4134 goto wait_for_construction;
4137 tlink->tl_tcon = cifs_construct_tcon(cifs_sb, fsuid);
4138 clear_bit(TCON_LINK_PENDING, &tlink->tl_flags);
4139 wake_up_bit(&tlink->tl_flags, TCON_LINK_PENDING);
4141 if (IS_ERR(tlink->tl_tcon)) {
4142 cifs_put_tlink(tlink);
4143 return ERR_PTR(-EACCES);
4150 * periodic workqueue job that scans tcon_tree for a superblock and closes
4154 cifs_prune_tlinks(struct work_struct *work)
4156 struct cifs_sb_info *cifs_sb = container_of(work, struct cifs_sb_info,
4158 struct rb_root *root = &cifs_sb->tlink_tree;
4159 struct rb_node *node;
4160 struct rb_node *tmp;
4161 struct tcon_link *tlink;
4164 * Because we drop the spinlock in the loop in order to put the tlink
4165 * it's not guarded against removal of links from the tree. The only
4166 * places that remove entries from the tree are this function and
4167 * umounts. Because this function is non-reentrant and is canceled
4168 * before umount can proceed, this is safe.
4170 spin_lock(&cifs_sb->tlink_tree_lock);
4171 node = rb_first(root);
4172 while (node != NULL) {
4174 node = rb_next(tmp);
4175 tlink = rb_entry(tmp, struct tcon_link, tl_rbnode);
4177 if (test_bit(TCON_LINK_MASTER, &tlink->tl_flags) ||
4178 atomic_read(&tlink->tl_count) != 0 ||
4179 time_after(tlink->tl_time + TLINK_IDLE_EXPIRE, jiffies))
4182 cifs_get_tlink(tlink);
4183 clear_bit(TCON_LINK_IN_TREE, &tlink->tl_flags);
4184 rb_erase(tmp, root);
4186 spin_unlock(&cifs_sb->tlink_tree_lock);
4187 cifs_put_tlink(tlink);
4188 spin_lock(&cifs_sb->tlink_tree_lock);
4190 spin_unlock(&cifs_sb->tlink_tree_lock);
4192 queue_delayed_work(cifsiod_wq, &cifs_sb->prune_tlinks,
4196 #ifdef CONFIG_CIFS_DFS_UPCALL
4197 /* Update dfs referral path of superblock */
4198 static int update_server_fullpath(struct TCP_Server_Info *server, struct cifs_sb_info *cifs_sb,
4202 size_t len = strlen(target);
4203 char *refpath, *npath;
4205 if (unlikely(len < 2 || *target != '\\'))
4208 if (target[1] == '\\') {
4210 refpath = kmalloc(len, GFP_KERNEL);
4214 scnprintf(refpath, len, "%s", target);
4216 len += sizeof("\\");
4217 refpath = kmalloc(len, GFP_KERNEL);
4221 scnprintf(refpath, len, "\\%s", target);
4224 npath = dfs_cache_canonical_path(refpath, cifs_sb->local_nls, cifs_remap(cifs_sb));
4227 if (IS_ERR(npath)) {
4228 rc = PTR_ERR(npath);
4230 mutex_lock(&server->refpath_lock);
4231 kfree(server->leaf_fullpath);
4232 server->leaf_fullpath = npath;
4233 mutex_unlock(&server->refpath_lock);
4234 server->current_fullpath = server->leaf_fullpath;
4239 static int target_share_matches_server(struct TCP_Server_Info *server, const char *tcp_host,
4240 size_t tcp_host_len, char *share, bool *target_match)
4243 const char *dfs_host;
4244 size_t dfs_host_len;
4246 *target_match = true;
4247 extract_unc_hostname(share, &dfs_host, &dfs_host_len);
4249 /* Check if hostnames or addresses match */
4250 if (dfs_host_len != tcp_host_len || strncasecmp(dfs_host, tcp_host, dfs_host_len) != 0) {
4251 cifs_dbg(FYI, "%s: %.*s doesn't match %.*s\n", __func__, (int)dfs_host_len,
4252 dfs_host, (int)tcp_host_len, tcp_host);
4253 rc = match_target_ip(server, dfs_host, dfs_host_len, target_match);
4255 cifs_dbg(VFS, "%s: failed to match target ip: %d\n", __func__, rc);
4260 static int __tree_connect_dfs_target(const unsigned int xid, struct cifs_tcon *tcon,
4261 struct cifs_sb_info *cifs_sb, char *tree, bool islink,
4262 struct dfs_cache_tgt_list *tl)
4265 struct TCP_Server_Info *server = tcon->ses->server;
4266 const struct smb_version_operations *ops = server->ops;
4267 struct cifs_tcon *ipc = tcon->ses->tcon_ipc;
4268 char *share = NULL, *prefix = NULL;
4269 const char *tcp_host;
4270 size_t tcp_host_len;
4271 struct dfs_cache_tgt_iterator *tit;
4274 /* only send once per connect */
4275 spin_lock(&cifs_tcp_ses_lock);
4276 if (tcon->ses->status != CifsGood ||
4277 (tcon->tidStatus != CifsNew &&
4278 tcon->tidStatus != CifsNeedTcon)) {
4279 spin_unlock(&cifs_tcp_ses_lock);
4282 tcon->tidStatus = CifsInTcon;
4283 spin_unlock(&cifs_tcp_ses_lock);
4285 extract_unc_hostname(server->hostname, &tcp_host, &tcp_host_len);
4287 tit = dfs_cache_get_tgt_iterator(tl);
4293 /* Try to tree connect to all dfs targets */
4294 for (; tit; tit = dfs_cache_get_next_tgt(tl, tit)) {
4295 const char *target = dfs_cache_get_tgt_name(tit);
4296 struct dfs_cache_tgt_list ntl = DFS_CACHE_TGT_LIST_INIT(ntl);
4300 share = prefix = NULL;
4302 /* Check if share matches with tcp ses */
4303 rc = dfs_cache_get_tgt_share(server->current_fullpath + 1, tit, &share, &prefix);
4305 cifs_dbg(VFS, "%s: failed to parse target share: %d\n", __func__, rc);
4309 rc = target_share_matches_server(server, tcp_host, tcp_host_len, share,
4313 if (!target_match) {
4318 if (ipc->need_reconnect) {
4319 scnprintf(tree, MAX_TREE_SIZE, "\\\\%s\\IPC$", server->hostname);
4320 rc = ops->tree_connect(xid, ipc->ses, tree, ipc, cifs_sb->local_nls);
4325 scnprintf(tree, MAX_TREE_SIZE, "\\%s", share);
4327 rc = ops->tree_connect(xid, tcon->ses, tree, tcon, cifs_sb->local_nls);
4331 * If no dfs referrals were returned from link target, then just do a TREE_CONNECT
4332 * to it. Otherwise, cache the dfs referral and then mark current tcp ses for
4333 * reconnect so either the demultiplex thread or the echo worker will reconnect to
4334 * newly resolved target.
4336 if (dfs_cache_find(xid, tcon->ses, cifs_sb->local_nls, cifs_remap(cifs_sb), target,
4338 rc = ops->tree_connect(xid, tcon->ses, tree, tcon, cifs_sb->local_nls);
4341 rc = dfs_cache_noreq_update_tgthint(server->current_fullpath + 1, tit);
4343 rc = cifs_update_super_prepath(cifs_sb, prefix);
4345 /* Target is another dfs share */
4346 rc = update_server_fullpath(server, cifs_sb, target);
4347 dfs_cache_free_tgts(tl);
4351 list_replace_init(&ntl.tl_list, &tl->tl_list);
4353 dfs_cache_free_tgts(&ntl);
4365 static int tree_connect_dfs_target(const unsigned int xid, struct cifs_tcon *tcon,
4366 struct cifs_sb_info *cifs_sb, char *tree, bool islink,
4367 struct dfs_cache_tgt_list *tl)
4371 struct TCP_Server_Info *server = tcon->ses->server;
4374 rc = __tree_connect_dfs_target(xid, tcon, cifs_sb, tree, islink, tl);
4375 if (!rc || rc != -EREMOTE)
4377 } while (rc = -ELOOP, ++num_links < MAX_NESTED_LINKS);
4379 * If we couldn't tree connect to any targets from last referral path, then retry from
4380 * original referral path.
4382 if (rc && server->current_fullpath != server->origin_fullpath) {
4383 server->current_fullpath = server->origin_fullpath;
4384 cifs_ses_mark_for_reconnect(tcon->ses);
4387 dfs_cache_free_tgts(tl);
4391 int cifs_tree_connect(const unsigned int xid, struct cifs_tcon *tcon, const struct nls_table *nlsc)
4394 struct TCP_Server_Info *server = tcon->ses->server;
4395 const struct smb_version_operations *ops = server->ops;
4396 struct super_block *sb = NULL;
4397 struct cifs_sb_info *cifs_sb;
4398 struct dfs_cache_tgt_list tl = DFS_CACHE_TGT_LIST_INIT(tl);
4400 struct dfs_info3_param ref = {0};
4402 tree = kzalloc(MAX_TREE_SIZE, GFP_KERNEL);
4407 scnprintf(tree, MAX_TREE_SIZE, "\\\\%s\\IPC$", server->hostname);
4408 rc = ops->tree_connect(xid, tcon->ses, tree, tcon, nlsc);
4412 sb = cifs_get_tcp_super(server);
4415 cifs_dbg(VFS, "%s: could not find superblock: %d\n", __func__, rc);
4419 cifs_sb = CIFS_SB(sb);
4421 /* If it is not dfs or there was no cached dfs referral, then reconnect to same share */
4422 if (!server->current_fullpath ||
4423 dfs_cache_noreq_find(server->current_fullpath + 1, &ref, &tl)) {
4424 rc = ops->tree_connect(xid, tcon->ses, tcon->treeName, tcon, cifs_sb->local_nls);
4428 rc = tree_connect_dfs_target(xid, tcon, cifs_sb, tree, ref.server_type == DFS_TYPE_LINK,
4430 free_dfs_info_param(&ref);
4434 cifs_put_tcp_super(sb);
4439 int cifs_tree_connect(const unsigned int xid, struct cifs_tcon *tcon, const struct nls_table *nlsc)
4441 const struct smb_version_operations *ops = tcon->ses->server->ops;
4443 /* only send once per connect */
4444 spin_lock(&cifs_tcp_ses_lock);
4445 if (tcon->ses->status != CifsGood ||
4446 (tcon->tidStatus != CifsNew &&
4447 tcon->tidStatus != CifsNeedTcon)) {
4448 spin_unlock(&cifs_tcp_ses_lock);
4451 tcon->tidStatus = CifsInTcon;
4452 spin_unlock(&cifs_tcp_ses_lock);
4454 return ops->tree_connect(xid, tcon->ses, tcon->treeName, tcon, nlsc);