misc.c 20.6 KB
Newer Older
L
Linus Torvalds 已提交
1 2 3
/*
 *   fs/cifs/misc.c
 *
S
Steve French 已提交
4
 *   Copyright (C) International Business Machines  Corp., 2002,2008
L
Linus Torvalds 已提交
5 6 7 8 9 10 11 12 13 14 15 16 17 18
 *   Author(s): Steve French (sfrench@us.ibm.com)
 *
 *   This library is free software; you can redistribute it and/or modify
 *   it under the terms of the GNU Lesser General Public License as published
 *   by the Free Software Foundation; either version 2.1 of the License, or
 *   (at your option) any later version.
 *
 *   This library is distributed in the hope that it will be useful,
 *   but WITHOUT ANY WARRANTY; without even the implied warranty of
 *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See
 *   the GNU Lesser General Public License for more details.
 *
 *   You should have received a copy of the GNU Lesser General Public License
 *   along with this library; if not, write to the Free Software
S
Steve French 已提交
19
 *   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
L
Linus Torvalds 已提交
20 21 22 23 24 25 26 27 28 29 30
 */

#include <linux/slab.h>
#include <linux/ctype.h>
#include <linux/mempool.h>
#include "cifspdu.h"
#include "cifsglob.h"
#include "cifsproto.h"
#include "cifs_debug.h"
#include "smberr.h"
#include "nterr.h"
31
#include "cifs_unicode.h"
32 33 34
#ifdef CONFIG_CIFS_SMB2
#include "smb2pdu.h"
#endif
L
Linus Torvalds 已提交
35 36 37 38

extern mempool_t *cifs_sm_req_poolp;
extern mempool_t *cifs_req_poolp;

S
Steve French 已提交
39 40 41 42
/* The xid serves as a useful identifier for each incoming vfs request,
   in a similar way to the mid which is useful to track each sent smb,
   and CurrentXid can also provide a running counter (although it
   will eventually wrap past zero) of the total vfs operations handled
L
Linus Torvalds 已提交
43 44 45
   since the cifs fs was mounted */

unsigned int
46
_get_xid(void)
L
Linus Torvalds 已提交
47 48 49 50 51
{
	unsigned int xid;

	spin_lock(&GlobalMid_Lock);
	GlobalTotalActiveXid++;
52 53

	/* keep high water mark for number of simultaneous ops in filesystem */
L
Linus Torvalds 已提交
54
	if (GlobalTotalActiveXid > GlobalMaxActiveXid)
55
		GlobalMaxActiveXid = GlobalTotalActiveXid;
S
Steve French 已提交
56
	if (GlobalTotalActiveXid > 65000)
57
		cifs_dbg(FYI, "warning: more than 65000 requests active\n");
L
Linus Torvalds 已提交
58 59 60 61 62 63
	xid = GlobalCurrentXid++;
	spin_unlock(&GlobalMid_Lock);
	return xid;
}

void
64
_free_xid(unsigned int xid)
L
Linus Torvalds 已提交
65 66
{
	spin_lock(&GlobalMid_Lock);
S
Steve French 已提交
67
	/* if (GlobalTotalActiveXid == 0)
L
Linus Torvalds 已提交
68 69 70 71 72
		BUG(); */
	GlobalTotalActiveXid--;
	spin_unlock(&GlobalMid_Lock);
}

73
struct cifs_ses *
L
Linus Torvalds 已提交
74 75
sesInfoAlloc(void)
{
76
	struct cifs_ses *ret_buf;
L
Linus Torvalds 已提交
77

78
	ret_buf = kzalloc(sizeof(struct cifs_ses), GFP_KERNEL);
L
Linus Torvalds 已提交
79 80 81
	if (ret_buf) {
		atomic_inc(&sesInfoAllocCount);
		ret_buf->status = CifsNew;
82 83
		++ret_buf->ses_count;
		INIT_LIST_HEAD(&ret_buf->smb_ses_list);
84
		INIT_LIST_HEAD(&ret_buf->tcon_list);
85
		mutex_init(&ret_buf->session_mutex);
L
Linus Torvalds 已提交
86 87 88 89 90
	}
	return ret_buf;
}

void
91
sesInfoFree(struct cifs_ses *buf_to_free)
L
Linus Torvalds 已提交
92 93
{
	if (buf_to_free == NULL) {
94
		cifs_dbg(FYI, "Null buffer passed to sesInfoFree\n");
L
Linus Torvalds 已提交
95 96 97 98
		return;
	}

	atomic_dec(&sesInfoAllocCount);
J
Jesper Juhl 已提交
99 100 101
	kfree(buf_to_free->serverOS);
	kfree(buf_to_free->serverDomain);
	kfree(buf_to_free->serverNOS);
102 103 104 105
	if (buf_to_free->password) {
		memset(buf_to_free->password, 0, strlen(buf_to_free->password));
		kfree(buf_to_free->password);
	}
106
	kfree(buf_to_free->user_name);
107
	kfree(buf_to_free->domainName);
108
	kfree(buf_to_free->auth_key.response);
L
Linus Torvalds 已提交
109 110 111
	kfree(buf_to_free);
}

112
struct cifs_tcon *
L
Linus Torvalds 已提交
113 114
tconInfoAlloc(void)
{
115 116
	struct cifs_tcon *ret_buf;
	ret_buf = kzalloc(sizeof(struct cifs_tcon), GFP_KERNEL);
L
Linus Torvalds 已提交
117 118 119
	if (ret_buf) {
		atomic_inc(&tconInfoAllocCount);
		ret_buf->tidStatus = CifsNew;
120
		++ret_buf->tc_count;
L
Linus Torvalds 已提交
121
		INIT_LIST_HEAD(&ret_buf->openFileList);
122
		INIT_LIST_HEAD(&ret_buf->tcon_list);
123
		spin_lock_init(&ret_buf->open_file_lock);
L
Linus Torvalds 已提交
124 125 126 127 128 129 130 131
#ifdef CONFIG_CIFS_STATS
		spin_lock_init(&ret_buf->stat_lock);
#endif
	}
	return ret_buf;
}

void
132
tconInfoFree(struct cifs_tcon *buf_to_free)
L
Linus Torvalds 已提交
133 134
{
	if (buf_to_free == NULL) {
135
		cifs_dbg(FYI, "Null buffer passed to tconInfoFree\n");
L
Linus Torvalds 已提交
136 137 138
		return;
	}
	atomic_dec(&tconInfoAllocCount);
J
Jesper Juhl 已提交
139
	kfree(buf_to_free->nativeFileSystem);
J
Jeff Layton 已提交
140 141 142 143
	if (buf_to_free->password) {
		memset(buf_to_free->password, 0, strlen(buf_to_free->password));
		kfree(buf_to_free->password);
	}
L
Linus Torvalds 已提交
144 145 146 147 148 149 150
	kfree(buf_to_free);
}

struct smb_hdr *
cifs_buf_get(void)
{
	struct smb_hdr *ret_buf = NULL;
151 152 153 154 155 156 157 158 159 160 161 162 163 164 165
	size_t buf_size = sizeof(struct smb_hdr);

#ifdef CONFIG_CIFS_SMB2
	/*
	 * SMB2 header is bigger than CIFS one - no problems to clean some
	 * more bytes for CIFS.
	 */
	buf_size = sizeof(struct smb2_hdr);
#endif
	/*
	 * We could use negotiated size instead of max_msgsize -
	 * but it may be more efficient to always alloc same size
	 * albeit slightly larger than necessary and maxbuffersize
	 * defaults to this and can not be bigger.
	 */
166
	ret_buf = mempool_alloc(cifs_req_poolp, GFP_NOFS);
L
Linus Torvalds 已提交
167 168 169 170

	/* clear the first few header bytes */
	/* for most paths, more is cleared in header_assemble */
	if (ret_buf) {
171
		memset(ret_buf, 0, buf_size + 3);
L
Linus Torvalds 已提交
172
		atomic_inc(&bufAllocCount);
173 174 175
#ifdef CONFIG_CIFS_STATS2
		atomic_inc(&totBufAllocCount);
#endif /* CONFIG_CIFS_STATS2 */
L
Linus Torvalds 已提交
176 177 178 179 180 181 182 183 184
	}

	return ret_buf;
}

void
cifs_buf_release(void *buf_to_free)
{
	if (buf_to_free == NULL) {
185
		/* cifs_dbg(FYI, "Null buffer passed to cifs_buf_release\n");*/
L
Linus Torvalds 已提交
186 187
		return;
	}
S
Steve French 已提交
188
	mempool_free(buf_to_free, cifs_req_poolp);
L
Linus Torvalds 已提交
189 190 191 192 193 194 195 196 197 198

	atomic_dec(&bufAllocCount);
	return;
}

struct smb_hdr *
cifs_small_buf_get(void)
{
	struct smb_hdr *ret_buf = NULL;

S
Steve French 已提交
199 200 201
/* We could use negotiated size instead of max_msgsize -
   but it may be more efficient to always alloc same size
   albeit slightly larger than necessary and maxbuffersize
L
Linus Torvalds 已提交
202
   defaults to this and can not be bigger */
203
	ret_buf = mempool_alloc(cifs_sm_req_poolp, GFP_NOFS);
L
Linus Torvalds 已提交
204 205 206 207
	if (ret_buf) {
	/* No need to clear memory here, cleared in header assemble */
	/*	memset(ret_buf, 0, sizeof(struct smb_hdr) + 27);*/
		atomic_inc(&smBufAllocCount);
208 209 210 211
#ifdef CONFIG_CIFS_STATS2
		atomic_inc(&totSmBufAllocCount);
#endif /* CONFIG_CIFS_STATS2 */

L
Linus Torvalds 已提交
212 213 214 215 216 217 218 219 220
	}
	return ret_buf;
}

void
cifs_small_buf_release(void *buf_to_free)
{

	if (buf_to_free == NULL) {
221
		cifs_dbg(FYI, "Null buffer passed to cifs_small_buf_release\n");
L
Linus Torvalds 已提交
222 223
		return;
	}
S
Steve French 已提交
224
	mempool_free(buf_to_free, cifs_sm_req_poolp);
L
Linus Torvalds 已提交
225 226 227 228 229

	atomic_dec(&smBufAllocCount);
	return;
}

230 231 232 233 234 235 236 237 238
void
free_rsp_buf(int resp_buftype, void *rsp)
{
	if (resp_buftype == CIFS_SMALL_BUFFER)
		cifs_small_buf_release(rsp);
	else if (resp_buftype == CIFS_LARGE_BUFFER)
		cifs_buf_release(rsp);
}

239 240
/* NB: MID can not be set if treeCon not passed in, in that
   case it is responsbility of caller to set the mid */
L
Linus Torvalds 已提交
241 242
void
header_assemble(struct smb_hdr *buffer, char smb_command /* command */ ,
243
		const struct cifs_tcon *treeCon, int word_count
L
Linus Torvalds 已提交
244 245 246 247
		/* length of fixed section (word count) in two byte units  */)
{
	char *temp = (char *) buffer;

S
Steve French 已提交
248
	memset(temp, 0, 256); /* bigger than MAX_CIFS_HDR_SIZE */
L
Linus Torvalds 已提交
249

250
	buffer->smb_buf_length = cpu_to_be32(
S
Steve French 已提交
251
	    (2 * word_count) + sizeof(struct smb_hdr) -
L
Linus Torvalds 已提交
252
	    4 /*  RFC 1001 length field does not count */  +
253
	    2 /* for bcc field itself */) ;
L
Linus Torvalds 已提交
254 255 256 257 258 259 260 261 262 263 264 265 266 267 268

	buffer->Protocol[0] = 0xFF;
	buffer->Protocol[1] = 'S';
	buffer->Protocol[2] = 'M';
	buffer->Protocol[3] = 'B';
	buffer->Command = smb_command;
	buffer->Flags = 0x00;	/* case sensitive */
	buffer->Flags2 = SMBFLG2_KNOWS_LONG_NAMES;
	buffer->Pid = cpu_to_le16((__u16)current->tgid);
	buffer->PidHigh = cpu_to_le16((__u16)(current->tgid >> 16));
	if (treeCon) {
		buffer->Tid = treeCon->tid;
		if (treeCon->ses) {
			if (treeCon->ses->capabilities & CAP_UNICODE)
				buffer->Flags2 |= SMBFLG2_UNICODE;
S
Steve French 已提交
269
			if (treeCon->ses->capabilities & CAP_STATUS32)
L
Linus Torvalds 已提交
270
				buffer->Flags2 |= SMBFLG2_ERR_STATUS;
S
Steve French 已提交
271

272 273
			/* Uid is not converted */
			buffer->Uid = treeCon->ses->Suid;
274
			buffer->Mid = get_next_mid(treeCon->ses->server);
L
Linus Torvalds 已提交
275 276 277
		}
		if (treeCon->Flags & SMB_SHARE_IS_IN_DFS)
			buffer->Flags2 |= SMBFLG2_DFS;
278 279
		if (treeCon->nocase)
			buffer->Flags  |= SMBFLG_CASELESS;
S
Steve French 已提交
280
		if ((treeCon->ses) && (treeCon->ses->server))
281
			if (treeCon->ses->server->sign)
L
Linus Torvalds 已提交
282 283 284 285 286 287 288 289
				buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
	}

/*  endian conversion of flags is now done just before sending */
	buffer->WordCount = (char) word_count;
	return;
}

290
static int
291
check_smb_hdr(struct smb_hdr *smb)
L
Linus Torvalds 已提交
292
{
293 294
	/* does it have the right SMB "signature" ? */
	if (*(__le32 *) smb->Protocol != cpu_to_le32(0x424d53ff)) {
295 296
		cifs_dbg(VFS, "Bad protocol string signature header 0x%x\n",
			 *(unsigned int *)smb->Protocol);
297 298 299 300 301 302 303 304 305 306 307
		return 1;
	}

	/* if it's a response then accept */
	if (smb->Flags & SMBFLG_RESPONSE)
		return 0;

	/* only one valid case where server sends us request */
	if (smb->Command == SMB_COM_LOCKING_ANDX)
		return 0;

308 309
	cifs_dbg(VFS, "Server sent request, not response. mid=%u\n",
		 get_mid(smb));
L
Linus Torvalds 已提交
310 311 312 313
	return 1;
}

int
314
checkSMB(char *buf, unsigned int total_read, struct TCP_Server_Info *server)
L
Linus Torvalds 已提交
315
{
316
	struct smb_hdr *smb = (struct smb_hdr *)buf;
J
Jeff Layton 已提交
317
	__u32 rfclen = be32_to_cpu(smb->smb_buf_length);
318
	__u32 clc_len;  /* calculated length */
319 320
	cifs_dbg(FYI, "checkSMB Length: 0x%x, smb_buf_length: 0x%x\n",
		 total_read, rfclen);
321

J
Jeff Layton 已提交
322 323 324
	/* is this frame too small to even get to a BCC? */
	if (total_read < 2 + sizeof(struct smb_hdr)) {
		if ((total_read >= sizeof(struct smb_hdr) - 1)
L
Linus Torvalds 已提交
325
			    && (smb->Status.CifsError != 0)) {
J
Jeff Layton 已提交
326
			/* it's an error return */
327 328 329
			smb->WordCount = 0;
			/* some error cases do not return wct and bcc */
			return 0;
J
Jeff Layton 已提交
330
		} else if ((total_read == sizeof(struct smb_hdr) + 1) &&
331
				(smb->WordCount == 0)) {
S
Steve French 已提交
332
			char *tmp = (char *)smb;
333 334 335 336 337 338 339 340 341 342 343
			/* Need to work around a bug in two servers here */
			/* First, check if the part of bcc they sent was zero */
			if (tmp[sizeof(struct smb_hdr)] == 0) {
				/* some servers return only half of bcc
				 * on simple responses (wct, bcc both zero)
				 * in particular have seen this on
				 * ulogoffX and FindClose. This leaves
				 * one byte of bcc potentially unitialized
				 */
				/* zero rest of bcc */
				tmp[sizeof(struct smb_hdr)+1] = 0;
344
				return 0;
L
Linus Torvalds 已提交
345
			}
346
			cifs_dbg(VFS, "rcvd invalid byte count (bcc)\n");
347
		} else {
348
			cifs_dbg(VFS, "Length less than smb header size\n");
L
Linus Torvalds 已提交
349
		}
J
Jeff Layton 已提交
350
		return -EIO;
L
Linus Torvalds 已提交
351 352
	}

J
Jeff Layton 已提交
353
	/* otherwise, there is enough to get to the BCC */
354
	if (check_smb_hdr(smb))
J
Jeff Layton 已提交
355
		return -EIO;
356
	clc_len = smbCalcSize(smb);
357

J
Jeff Layton 已提交
358
	if (4 + rfclen != total_read) {
359 360
		cifs_dbg(VFS, "Length read does not match RFC1001 length %d\n",
			 rfclen);
J
Jeff Layton 已提交
361
		return -EIO;
362 363
	}

J
Jeff Layton 已提交
364
	if (4 + rfclen != clc_len) {
365
		__u16 mid = get_mid(smb);
366
		/* check if bcc wrapped around for large read responses */
J
Jeff Layton 已提交
367
		if ((rfclen > 64 * 1024) && (rfclen > clc_len)) {
368
			/* check if lengths match mod 64K */
J
Jeff Layton 已提交
369
			if (((4 + rfclen) & 0xFFFF) == (clc_len & 0xFFFF))
S
Steve French 已提交
370
				return 0; /* bcc wrapped */
371
		}
372
		cifs_dbg(FYI, "Calculated size %u vs length %u mismatch for mid=%u\n",
373
			 clc_len, 4 + rfclen, mid);
374

J
Jeff Layton 已提交
375
		if (4 + rfclen < clc_len) {
376
			cifs_dbg(VFS, "RFC1001 size %u smaller than SMB for mid=%u\n",
377
				 rfclen, mid);
J
Jeff Layton 已提交
378 379
			return -EIO;
		} else if (rfclen > clc_len + 512) {
380 381 382 383 384 385 386 387 388
			/*
			 * Some servers (Windows XP in particular) send more
			 * data than the lengths in the SMB packet would
			 * indicate on certain calls (byte range locks and
			 * trans2 find first calls in particular). While the
			 * client can handle such a frame by ignoring the
			 * trailing data, we choose limit the amount of extra
			 * data to 512 bytes.
			 */
389
			cifs_dbg(VFS, "RFC1001 size %u more than 512 bytes larger than SMB for mid=%u\n",
390
				 rfclen, mid);
J
Jeff Layton 已提交
391
			return -EIO;
392
		}
L
Linus Torvalds 已提交
393
	}
394
	return 0;
L
Linus Torvalds 已提交
395
}
396 397

bool
398
is_valid_oplock_break(char *buffer, struct TCP_Server_Info *srv)
S
Steve French 已提交
399
{
400
	struct smb_hdr *buf = (struct smb_hdr *)buffer;
S
Steve French 已提交
401
	struct smb_com_lock_req *pSMB = (struct smb_com_lock_req *)buf;
402
	struct list_head *tmp, *tmp1, *tmp2;
403 404
	struct cifs_ses *ses;
	struct cifs_tcon *tcon;
405
	struct cifsInodeInfo *pCifsInode;
L
Linus Torvalds 已提交
406 407
	struct cifsFileInfo *netfile;

408
	cifs_dbg(FYI, "Checking for oplock break or dnotify response\n");
S
Steve French 已提交
409
	if ((pSMB->hdr.Command == SMB_COM_NT_TRANSACT) &&
L
Linus Torvalds 已提交
410
	   (pSMB->hdr.Flags & SMBFLG_RESPONSE)) {
S
Steve French 已提交
411
		struct smb_com_transaction_change_notify_rsp *pSMBr =
L
Linus Torvalds 已提交
412
			(struct smb_com_transaction_change_notify_rsp *)buf;
S
Steve French 已提交
413
		struct file_notify_information *pnotify;
L
Linus Torvalds 已提交
414
		__u32 data_offset = 0;
415
		if (get_bcc(buf) > sizeof(struct file_notify_information)) {
L
Linus Torvalds 已提交
416 417
			data_offset = le32_to_cpu(pSMBr->DataOffset);

418 419
			pnotify = (struct file_notify_information *)
				((char *)&pSMBr->hdr.Protocol + data_offset);
420
			cifs_dbg(FYI, "dnotify on %s Action: 0x%x\n",
421
				 pnotify->FileName, pnotify->Action);
S
Steve French 已提交
422
			/*   cifs_dump_mem("Rcvd notify Data: ",buf,
423
				sizeof(struct smb_hdr)+60); */
424
			return true;
L
Linus Torvalds 已提交
425
		}
S
Steve French 已提交
426
		if (pSMBr->hdr.Status.CifsError) {
427
			cifs_dbg(FYI, "notify err 0x%x\n",
428
				 pSMBr->hdr.Status.CifsError);
429
			return true;
L
Linus Torvalds 已提交
430
		}
431
		return false;
S
Steve French 已提交
432
	}
S
Steve French 已提交
433
	if (pSMB->hdr.Command != SMB_COM_LOCKING_ANDX)
434
		return false;
S
Steve French 已提交
435
	if (pSMB->hdr.Flags & SMBFLG_RESPONSE) {
L
Linus Torvalds 已提交
436 437 438 439
		/* no sense logging error on invalid handle on oplock
		   break - harmless race between close request and oplock
		   break response is expected from time to time writing out
		   large dirty files cached on the client */
S
Steve French 已提交
440 441
		if ((NT_STATUS_INVALID_HANDLE) ==
		   le32_to_cpu(pSMB->hdr.Status.CifsError)) {
442
			cifs_dbg(FYI, "invalid handle on oplock break\n");
443
			return true;
S
Steve French 已提交
444
		} else if (ERRbadfid ==
L
Linus Torvalds 已提交
445
		   le16_to_cpu(pSMB->hdr.Status.DosError.Error)) {
446
			return true;
L
Linus Torvalds 已提交
447
		} else {
448
			return false; /* on valid oplock brk we get "request" */
L
Linus Torvalds 已提交
449 450
		}
	}
S
Steve French 已提交
451
	if (pSMB->hdr.WordCount != 8)
452
		return false;
L
Linus Torvalds 已提交
453

454
	cifs_dbg(FYI, "oplock type 0x%x level 0x%x\n",
455
		 pSMB->LockType, pSMB->OplockLevel);
S
Steve French 已提交
456
	if (!(pSMB->LockType & LOCKING_ANDX_OPLOCK_RELEASE))
457
		return false;
L
Linus Torvalds 已提交
458 459

	/* look up tcon based on tid & uid */
460
	spin_lock(&cifs_tcp_ses_lock);
461
	list_for_each(tmp, &srv->smb_ses_list) {
462
		ses = list_entry(tmp, struct cifs_ses, smb_ses_list);
463
		list_for_each(tmp1, &ses->tcon_list) {
464
			tcon = list_entry(tmp1, struct cifs_tcon, tcon_list);
465 466 467
			if (tcon->tid != buf->Tid)
				continue;

468
			cifs_stats_inc(&tcon->stats.cifs_stats.num_oplock_brks);
469
			spin_lock(&tcon->open_file_lock);
470 471
			list_for_each(tmp2, &tcon->openFileList) {
				netfile = list_entry(tmp2, struct cifsFileInfo,
472
						     tlist);
473
				if (pSMB->Fid != netfile->fid.netfid)
474 475
					continue;

476
				cifs_dbg(FYI, "file id match, oplock break\n");
477
				pCifsInode = CIFS_I(d_inode(netfile->dentry));
478

479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494
				set_bit(CIFS_INODE_PENDING_OPLOCK_BREAK,
					&pCifsInode->flags);

				/*
				 * Set flag if the server downgrades the oplock
				 * to L2 else clear.
				 */
				if (pSMB->OplockLevel)
					set_bit(
					   CIFS_INODE_DOWNGRADE_OPLOCK_TO_L2,
					   &pCifsInode->flags);
				else
					clear_bit(
					   CIFS_INODE_DOWNGRADE_OPLOCK_TO_L2,
					   &pCifsInode->flags);

J
Jeff Layton 已提交
495
				queue_work(cifsiod_wq,
496
					   &netfile->oplock_break);
497 498
				netfile->oplock_break_cancelled = false;

499
				spin_unlock(&tcon->open_file_lock);
500
				spin_unlock(&cifs_tcp_ses_lock);
501
				return true;
L
Linus Torvalds 已提交
502
			}
503
			spin_unlock(&tcon->open_file_lock);
504
			spin_unlock(&cifs_tcp_ses_lock);
505
			cifs_dbg(FYI, "No matching file for oplock break\n");
506
			return true;
L
Linus Torvalds 已提交
507 508
		}
	}
509
	spin_unlock(&cifs_tcp_ses_lock);
510
	cifs_dbg(FYI, "Can not process oplock break for non-existent connection\n");
511
	return true;
L
Linus Torvalds 已提交
512 513 514
}

void
515
dump_smb(void *buf, int smb_buf_length)
L
Linus Torvalds 已提交
516 517 518 519
{
	if (traceSMB == 0)
		return;

520 521
	print_hex_dump(KERN_DEBUG, "", DUMP_PREFIX_NONE, 8, 2, buf,
		       smb_buf_length, true);
L
Linus Torvalds 已提交
522
}
523

524 525 526 527
void
cifs_autodisable_serverino(struct cifs_sb_info *cifs_sb)
{
	if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_SERVER_INUM) {
528
		cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_SERVER_INUM;
529 530
		cifs_dbg(VFS, "Autodisabling the use of server inode numbers on %s. This server doesn't seem to support them properly. Hardlinks will not be recognized on this mount. Consider mounting with the \"noserverino\" option to silence this message.\n",
			 cifs_sb_master_tcon(cifs_sb)->treeName);
531 532
	}
}
P
Pavel Shilovsky 已提交
533

534
void cifs_set_oplock_level(struct cifsInodeInfo *cinode, __u32 oplock)
P
Pavel Shilovsky 已提交
535
{
536
	oplock &= 0xF;
P
Pavel Shilovsky 已提交
537

538
	if (oplock == OPLOCK_EXCLUSIVE) {
539
		cinode->oplock = CIFS_CACHE_WRITE_FLG | CIFS_CACHE_READ_FLG;
540 541
		cifs_dbg(FYI, "Exclusive Oplock granted on inode %p\n",
			 &cinode->vfs_inode);
542
	} else if (oplock == OPLOCK_READ) {
543
		cinode->oplock = CIFS_CACHE_READ_FLG;
544 545
		cifs_dbg(FYI, "Level II Oplock granted on inode %p\n",
			 &cinode->vfs_inode);
546 547
	} else
		cinode->oplock = 0;
P
Pavel Shilovsky 已提交
548
}
549

550 551 552 553 554 555 556 557 558 559
/*
 * We wait for oplock breaks to be processed before we attempt to perform
 * writes.
 */
int cifs_get_writer(struct cifsInodeInfo *cinode)
{
	int rc;

start:
	rc = wait_on_bit(&cinode->flags, CIFS_INODE_PENDING_OPLOCK_BREAK,
560
			 TASK_KILLABLE);
561 562 563 564 565 566 567 568 569 570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 585 586 587 588 589 590 591 592 593 594 595 596 597 598
	if (rc)
		return rc;

	spin_lock(&cinode->writers_lock);
	if (!cinode->writers)
		set_bit(CIFS_INODE_PENDING_WRITERS, &cinode->flags);
	cinode->writers++;
	/* Check to see if we have started servicing an oplock break */
	if (test_bit(CIFS_INODE_PENDING_OPLOCK_BREAK, &cinode->flags)) {
		cinode->writers--;
		if (cinode->writers == 0) {
			clear_bit(CIFS_INODE_PENDING_WRITERS, &cinode->flags);
			wake_up_bit(&cinode->flags, CIFS_INODE_PENDING_WRITERS);
		}
		spin_unlock(&cinode->writers_lock);
		goto start;
	}
	spin_unlock(&cinode->writers_lock);
	return 0;
}

void cifs_put_writer(struct cifsInodeInfo *cinode)
{
	spin_lock(&cinode->writers_lock);
	cinode->writers--;
	if (cinode->writers == 0) {
		clear_bit(CIFS_INODE_PENDING_WRITERS, &cinode->flags);
		wake_up_bit(&cinode->flags, CIFS_INODE_PENDING_WRITERS);
	}
	spin_unlock(&cinode->writers_lock);
}

void cifs_done_oplock_break(struct cifsInodeInfo *cinode)
{
	clear_bit(CIFS_INODE_PENDING_OPLOCK_BREAK, &cinode->flags);
	wake_up_bit(&cinode->flags, CIFS_INODE_PENDING_OPLOCK_BREAK);
}

599 600 601 602
bool
backup_cred(struct cifs_sb_info *cifs_sb)
{
	if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_CIFS_BACKUPUID) {
603
		if (uid_eq(cifs_sb->mnt_backupuid, current_fsuid()))
604 605 606 607 608 609 610 611 612
			return true;
	}
	if (cifs_sb->mnt_cifs_flags & CIFS_MOUNT_CIFS_BACKUPGID) {
		if (in_group_p(cifs_sb->mnt_backupgid))
			return true;
	}

	return false;
}
613 614 615 616

void
cifs_del_pending_open(struct cifs_pending_open *open)
{
617
	spin_lock(&tlink_tcon(open->tlink)->open_file_lock);
618
	list_del(&open->olist);
619
	spin_unlock(&tlink_tcon(open->tlink)->open_file_lock);
620 621 622 623 624 625 626 627 628 629 630 631 632 633 634 635 636 637 638
}

void
cifs_add_pending_open_locked(struct cifs_fid *fid, struct tcon_link *tlink,
			     struct cifs_pending_open *open)
{
#ifdef CONFIG_CIFS_SMB2
	memcpy(open->lease_key, fid->lease_key, SMB2_LEASE_KEY_SIZE);
#endif
	open->oplock = CIFS_OPLOCK_NO_CHANGE;
	open->tlink = tlink;
	fid->pending_open = open;
	list_add_tail(&open->olist, &tlink_tcon(tlink)->pending_opens);
}

void
cifs_add_pending_open(struct cifs_fid *fid, struct tcon_link *tlink,
		      struct cifs_pending_open *open)
{
639
	spin_lock(&tlink_tcon(tlink)->open_file_lock);
640
	cifs_add_pending_open_locked(fid, tlink, open);
641
	spin_unlock(&tlink_tcon(open->tlink)->open_file_lock);
642
}
643 644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660 661 662 663 664 665 666 667 668 669 670 671 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686 687 688 689 690 691 692 693 694 695 696 697 698 699 700 701 702 703 704 705 706 707 708 709 710 711 712 713 714 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729 730 731 732 733 734 735 736 737 738 739 740 741 742 743 744 745 746 747

/* parses DFS refferal V3 structure
 * caller is responsible for freeing target_nodes
 * returns:
 * - on success - 0
 * - on failure - errno
 */
int
parse_dfs_referrals(struct get_dfs_referral_rsp *rsp, u32 rsp_size,
		    unsigned int *num_of_nodes,
		    struct dfs_info3_param **target_nodes,
		    const struct nls_table *nls_codepage, int remap,
		    const char *searchName, bool is_unicode)
{
	int i, rc = 0;
	char *data_end;
	struct dfs_referral_level_3 *ref;

	*num_of_nodes = le16_to_cpu(rsp->NumberOfReferrals);

	if (*num_of_nodes < 1) {
		cifs_dbg(VFS, "num_referrals: must be at least > 0, but we get num_referrals = %d\n",
			 *num_of_nodes);
		rc = -EINVAL;
		goto parse_DFS_referrals_exit;
	}

	ref = (struct dfs_referral_level_3 *) &(rsp->referrals);
	if (ref->VersionNumber != cpu_to_le16(3)) {
		cifs_dbg(VFS, "Referrals of V%d version are not supported, should be V3\n",
			 le16_to_cpu(ref->VersionNumber));
		rc = -EINVAL;
		goto parse_DFS_referrals_exit;
	}

	/* get the upper boundary of the resp buffer */
	data_end = (char *)rsp + rsp_size;

	cifs_dbg(FYI, "num_referrals: %d dfs flags: 0x%x ...\n",
		 *num_of_nodes, le32_to_cpu(rsp->DFSFlags));

	*target_nodes = kcalloc(*num_of_nodes, sizeof(struct dfs_info3_param),
				GFP_KERNEL);
	if (*target_nodes == NULL) {
		rc = -ENOMEM;
		goto parse_DFS_referrals_exit;
	}

	/* collect necessary data from referrals */
	for (i = 0; i < *num_of_nodes; i++) {
		char *temp;
		int max_len;
		struct dfs_info3_param *node = (*target_nodes)+i;

		node->flags = le32_to_cpu(rsp->DFSFlags);
		if (is_unicode) {
			__le16 *tmp = kmalloc(strlen(searchName)*2 + 2,
						GFP_KERNEL);
			if (tmp == NULL) {
				rc = -ENOMEM;
				goto parse_DFS_referrals_exit;
			}
			cifsConvertToUTF16((__le16 *) tmp, searchName,
					   PATH_MAX, nls_codepage, remap);
			node->path_consumed = cifs_utf16_bytes(tmp,
					le16_to_cpu(rsp->PathConsumed),
					nls_codepage);
			kfree(tmp);
		} else
			node->path_consumed = le16_to_cpu(rsp->PathConsumed);

		node->server_type = le16_to_cpu(ref->ServerType);
		node->ref_flag = le16_to_cpu(ref->ReferralEntryFlags);

		/* copy DfsPath */
		temp = (char *)ref + le16_to_cpu(ref->DfsPathOffset);
		max_len = data_end - temp;
		node->path_name = cifs_strndup_from_utf16(temp, max_len,
						is_unicode, nls_codepage);
		if (!node->path_name) {
			rc = -ENOMEM;
			goto parse_DFS_referrals_exit;
		}

		/* copy link target UNC */
		temp = (char *)ref + le16_to_cpu(ref->NetworkAddressOffset);
		max_len = data_end - temp;
		node->node_name = cifs_strndup_from_utf16(temp, max_len,
						is_unicode, nls_codepage);
		if (!node->node_name) {
			rc = -ENOMEM;
			goto parse_DFS_referrals_exit;
		}

		ref++;
	}

parse_DFS_referrals_exit:
	if (rc) {
		free_dfs_info_array(*target_nodes, *num_of_nodes);
		*target_nodes = NULL;
		*num_of_nodes = 0;
	}
	return rc;
}