ClabureDB: Classified Bug-Reports Database

Project: Linux Kernel

Showing error 1356

User:	Jiri Slaby
Error type:	Leaving function in locked state
Error type description:	Some lock is not unlocked on all paths of a function, so it is leaked
File location:	fs/nfsd/export.c
Line in file:	1370
Project:	Linux Kernel
Project version:	2.6.28
Tools:	Stanse (1.2)
Entered:	2012-05-21 20:30:05 UTC
Source:

   1#define MSNFS        /* HACK HACK */
   2/*
   3 * linux/fs/nfsd/export.c
   4 *
   5 * NFS exporting and validation.
   6 *
   7 * We maintain a list of clients, each of which has a list of
   8 * exports. To export an fs to a given client, you first have
   9 * to create the client entry with NFSCTL_ADDCLIENT, which
  10 * creates a client control block and adds it to the hash
  11 * table. Then, you call NFSCTL_EXPORT for each fs.
  12 *
  13 *
  14 * Copyright (C) 1995, 1996 Olaf Kirch, <okir@monad.swb.de>
  15 */
  16
  17#include <linux/unistd.h>
  18#include <linux/slab.h>
  19#include <linux/stat.h>
  20#include <linux/in.h>
  21#include <linux/seq_file.h>
  22#include <linux/syscalls.h>
  23#include <linux/rwsem.h>
  24#include <linux/dcache.h>
  25#include <linux/namei.h>
  26#include <linux/mount.h>
  27#include <linux/hash.h>
  28#include <linux/module.h>
  29#include <linux/exportfs.h>
  30
  31#include <linux/sunrpc/svc.h>
  32#include <linux/nfsd/nfsd.h>
  33#include <linux/nfsd/nfsfh.h>
  34#include <linux/nfsd/syscall.h>
  35#include <linux/lockd/bind.h>
  36#include <linux/sunrpc/msg_prot.h>
  37#include <linux/sunrpc/gss_api.h>
  38#include <net/ipv6.h>
  39
  40#define NFSDDBG_FACILITY        NFSDDBG_EXPORT
  41
  42typedef struct auth_domain        svc_client;
  43typedef struct svc_export        svc_export;
  44
  45static void                exp_do_unexport(svc_export *unexp);
  46static int                exp_verify_string(char *cp, int max);
  47
  48/*
  49 * We have two caches.
  50 * One maps client+vfsmnt+dentry to export options - the export map
  51 * The other maps client+filehandle-fragment to export options. - the expkey map
  52 *
  53 * The export options are actually stored in the first map, and the
  54 * second map contains a reference to the entry in the first map.
  55 */
  56
  57#define        EXPKEY_HASHBITS                8
  58#define        EXPKEY_HASHMAX                (1 << EXPKEY_HASHBITS)
  59#define        EXPKEY_HASHMASK                (EXPKEY_HASHMAX -1)
  60static struct cache_head *expkey_table[EXPKEY_HASHMAX];
  61
  62static void expkey_put(struct kref *ref)
  63{
  64        struct svc_expkey *key = container_of(ref, struct svc_expkey, h.ref);
  65
  66        if (test_bit(CACHE_VALID, &key->h.flags) &&
  67            !test_bit(CACHE_NEGATIVE, &key->h.flags))
  68                path_put(&key->ek_path);
  69        auth_domain_put(key->ek_client);
  70        kfree(key);
  71}
  72
  73static void expkey_request(struct cache_detail *cd,
  74                           struct cache_head *h,
  75                           char **bpp, int *blen)
  76{
  77        /* client fsidtype \xfsid */
  78        struct svc_expkey *ek = container_of(h, struct svc_expkey, h);
  79        char type[5];
  80
  81        qword_add(bpp, blen, ek->ek_client->name);
  82        snprintf(type, 5, "%d", ek->ek_fsidtype);
  83        qword_add(bpp, blen, type);
  84        qword_addhex(bpp, blen, (char*)ek->ek_fsid, key_len(ek->ek_fsidtype));
  85        (*bpp)[-1] = '\n';
  86}
  87
  88static struct svc_expkey *svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old);
  89static struct svc_expkey *svc_expkey_lookup(struct svc_expkey *);
  90static struct cache_detail svc_expkey_cache;
  91
  92static int expkey_parse(struct cache_detail *cd, char *mesg, int mlen)
  93{
  94        /* client fsidtype fsid [path] */
  95        char *buf;
  96        int len;
  97        struct auth_domain *dom = NULL;
  98        int err;
  99        int fsidtype;
 100        char *ep;
 101        struct svc_expkey key;
 102        struct svc_expkey *ek = NULL;
 103
 104        if (mesg[mlen-1] != '\n')
 105                return -EINVAL;
 106        mesg[mlen-1] = 0;
 107
 108        buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
 109        err = -ENOMEM;
 110        if (!buf)
 111                goto out;
 112
 113        err = -EINVAL;
 114        if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
 115                goto out;
 116
 117        err = -ENOENT;
 118        dom = auth_domain_find(buf);
 119        if (!dom)
 120                goto out;
 121        dprintk("found domain %s\n", buf);
 122
 123        err = -EINVAL;
 124        if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
 125                goto out;
 126        fsidtype = simple_strtoul(buf, &ep, 10);
 127        if (*ep)
 128                goto out;
 129        dprintk("found fsidtype %d\n", fsidtype);
 130        if (key_len(fsidtype)==0) /* invalid type */
 131                goto out;
 132        if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
 133                goto out;
 134        dprintk("found fsid length %d\n", len);
 135        if (len != key_len(fsidtype))
 136                goto out;
 137
 138        /* OK, we seem to have a valid key */
 139        key.h.flags = 0;
 140        key.h.expiry_time = get_expiry(&mesg);
 141        if (key.h.expiry_time == 0)
 142                goto out;
 143
 144        key.ek_client = dom;        
 145        key.ek_fsidtype = fsidtype;
 146        memcpy(key.ek_fsid, buf, len);
 147
 148        ek = svc_expkey_lookup(&key);
 149        err = -ENOMEM;
 150        if (!ek)
 151                goto out;
 152
 153        /* now we want a pathname, or empty meaning NEGATIVE  */
 154        err = -EINVAL;
 155        len = qword_get(&mesg, buf, PAGE_SIZE);
 156        if (len < 0)
 157                goto out;
 158        dprintk("Path seems to be <%s>\n", buf);
 159        err = 0;
 160        if (len == 0) {
 161                set_bit(CACHE_NEGATIVE, &key.h.flags);
 162                ek = svc_expkey_update(&key, ek);
 163                if (!ek)
 164                        err = -ENOMEM;
 165        } else {
 166                err = kern_path(buf, 0, &key.ek_path);
 167                if (err)
 168                        goto out;
 169
 170                dprintk("Found the path %s\n", buf);
 171
 172                ek = svc_expkey_update(&key, ek);
 173                if (!ek)
 174                        err = -ENOMEM;
 175                path_put(&key.ek_path);
 176        }
 177        cache_flush();
 178 out:
 179        if (ek)
 180                cache_put(&ek->h, &svc_expkey_cache);
 181        if (dom)
 182                auth_domain_put(dom);
 183        kfree(buf);
 184        return err;
 185}
 186
 187static int expkey_show(struct seq_file *m,
 188                       struct cache_detail *cd,
 189                       struct cache_head *h)
 190{
 191        struct svc_expkey *ek ;
 192        int i;
 193
 194        if (h ==NULL) {
 195                seq_puts(m, "#domain fsidtype fsid [path]\n");
 196                return 0;
 197        }
 198        ek = container_of(h, struct svc_expkey, h);
 199        seq_printf(m, "%s %d 0x", ek->ek_client->name,
 200                   ek->ek_fsidtype);
 201        for (i=0; i < key_len(ek->ek_fsidtype)/4; i++)
 202                seq_printf(m, "%08x", ek->ek_fsid[i]);
 203        if (test_bit(CACHE_VALID, &h->flags) && 
 204            !test_bit(CACHE_NEGATIVE, &h->flags)) {
 205                seq_printf(m, " ");
 206                seq_path(m, &ek->ek_path, "\\ \t\n");
 207        }
 208        seq_printf(m, "\n");
 209        return 0;
 210}
 211
 212static inline int expkey_match (struct cache_head *a, struct cache_head *b)
 213{
 214        struct svc_expkey *orig = container_of(a, struct svc_expkey, h);
 215        struct svc_expkey *new = container_of(b, struct svc_expkey, h);
 216
 217        if (orig->ek_fsidtype != new->ek_fsidtype ||
 218            orig->ek_client != new->ek_client ||
 219            memcmp(orig->ek_fsid, new->ek_fsid, key_len(orig->ek_fsidtype)) != 0)
 220                return 0;
 221        return 1;
 222}
 223
 224static inline void expkey_init(struct cache_head *cnew,
 225                                   struct cache_head *citem)
 226{
 227        struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
 228        struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
 229
 230        kref_get(&item->ek_client->ref);
 231        new->ek_client = item->ek_client;
 232        new->ek_fsidtype = item->ek_fsidtype;
 233
 234        memcpy(new->ek_fsid, item->ek_fsid, sizeof(new->ek_fsid));
 235}
 236
 237static inline void expkey_update(struct cache_head *cnew,
 238                                   struct cache_head *citem)
 239{
 240        struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
 241        struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
 242
 243        new->ek_path = item->ek_path;
 244        path_get(&item->ek_path);
 245}
 246
 247static struct cache_head *expkey_alloc(void)
 248{
 249        struct svc_expkey *i = kmalloc(sizeof(*i), GFP_KERNEL);
 250        if (i)
 251                return &i->h;
 252        else
 253                return NULL;
 254}
 255
 256static struct cache_detail svc_expkey_cache = {
 257        .owner                = THIS_MODULE,
 258        .hash_size        = EXPKEY_HASHMAX,
 259        .hash_table        = expkey_table,
 260        .name                = "nfsd.fh",
 261        .cache_put        = expkey_put,
 262        .cache_request        = expkey_request,
 263        .cache_parse        = expkey_parse,
 264        .cache_show        = expkey_show,
 265        .match                = expkey_match,
 266        .init                = expkey_init,
 267        .update               = expkey_update,
 268        .alloc                = expkey_alloc,
 269};
 270
 271static struct svc_expkey *
 272svc_expkey_lookup(struct svc_expkey *item)
 273{
 274        struct cache_head *ch;
 275        int hash = item->ek_fsidtype;
 276        char * cp = (char*)item->ek_fsid;
 277        int len = key_len(item->ek_fsidtype);
 278
 279        hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
 280        hash ^= hash_ptr(item->ek_client, EXPKEY_HASHBITS);
 281        hash &= EXPKEY_HASHMASK;
 282
 283        ch = sunrpc_cache_lookup(&svc_expkey_cache, &item->h,
 284                                 hash);
 285        if (ch)
 286                return container_of(ch, struct svc_expkey, h);
 287        else
 288                return NULL;
 289}
 290
 291static struct svc_expkey *
 292svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old)
 293{
 294        struct cache_head *ch;
 295        int hash = new->ek_fsidtype;
 296        char * cp = (char*)new->ek_fsid;
 297        int len = key_len(new->ek_fsidtype);
 298
 299        hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
 300        hash ^= hash_ptr(new->ek_client, EXPKEY_HASHBITS);
 301        hash &= EXPKEY_HASHMASK;
 302
 303        ch = sunrpc_cache_update(&svc_expkey_cache, &new->h,
 304                                 &old->h, hash);
 305        if (ch)
 306                return container_of(ch, struct svc_expkey, h);
 307        else
 308                return NULL;
 309}
 310
 311
 312#define        EXPORT_HASHBITS                8
 313#define        EXPORT_HASHMAX                (1<< EXPORT_HASHBITS)
 314#define        EXPORT_HASHMASK                (EXPORT_HASHMAX -1)
 315
 316static struct cache_head *export_table[EXPORT_HASHMAX];
 317
 318static void nfsd4_fslocs_free(struct nfsd4_fs_locations *fsloc)
 319{
 320        int i;
 321
 322        for (i = 0; i < fsloc->locations_count; i++) {
 323                kfree(fsloc->locations[i].path);
 324                kfree(fsloc->locations[i].hosts);
 325        }
 326        kfree(fsloc->locations);
 327}
 328
 329static void svc_export_put(struct kref *ref)
 330{
 331        struct svc_export *exp = container_of(ref, struct svc_export, h.ref);
 332        path_put(&exp->ex_path);
 333        auth_domain_put(exp->ex_client);
 334        kfree(exp->ex_pathname);
 335        nfsd4_fslocs_free(&exp->ex_fslocs);
 336        kfree(exp);
 337}
 338
 339static void svc_export_request(struct cache_detail *cd,
 340                               struct cache_head *h,
 341                               char **bpp, int *blen)
 342{
 343        /*  client path */
 344        struct svc_export *exp = container_of(h, struct svc_export, h);
 345        char *pth;
 346
 347        qword_add(bpp, blen, exp->ex_client->name);
 348        pth = d_path(&exp->ex_path, *bpp, *blen);
 349        if (IS_ERR(pth)) {
 350                /* is this correct? */
 351                (*bpp)[0] = '\n';
 352                return;
 353        }
 354        qword_add(bpp, blen, pth);
 355        (*bpp)[-1] = '\n';
 356}
 357
 358static struct svc_export *svc_export_update(struct svc_export *new,
 359                                            struct svc_export *old);
 360static struct svc_export *svc_export_lookup(struct svc_export *);
 361
 362static int check_export(struct inode *inode, int flags, unsigned char *uuid)
 363{
 364
 365        /* We currently export only dirs and regular files.
 366         * This is what umountd does.
 367         */
 368        if (!S_ISDIR(inode->i_mode) &&
 369            !S_ISREG(inode->i_mode))
 370                return -ENOTDIR;
 371
 372        /* There are two requirements on a filesystem to be exportable.
 373         * 1:  We must be able to identify the filesystem from a number.
 374         *       either a device number (so FS_REQUIRES_DEV needed)
 375         *       or an FSID number (so NFSEXP_FSID or ->uuid is needed).
 376         * 2:  We must be able to find an inode from a filehandle.
 377         *       This means that s_export_op must be set.
 378         */
 379        if (!(inode->i_sb->s_type->fs_flags & FS_REQUIRES_DEV) &&
 380            !(flags & NFSEXP_FSID) &&
 381            uuid == NULL) {
 382                dprintk("exp_export: export of non-dev fs without fsid\n");
 383                return -EINVAL;
 384        }
 385
 386        if (!inode->i_sb->s_export_op ||
 387            !inode->i_sb->s_export_op->fh_to_dentry) {
 388                dprintk("exp_export: export of invalid fs type.\n");
 389                return -EINVAL;
 390        }
 391
 392        return 0;
 393
 394}
 395
 396#ifdef CONFIG_NFSD_V4
 397
 398static int
 399fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc)
 400{
 401        int len;
 402        int migrated, i, err;
 403
 404        /* listsize */
 405        err = get_int(mesg, &fsloc->locations_count);
 406        if (err)
 407                return err;
 408        if (fsloc->locations_count > MAX_FS_LOCATIONS)
 409                return -EINVAL;
 410        if (fsloc->locations_count == 0)
 411                return 0;
 412
 413        fsloc->locations = kzalloc(fsloc->locations_count
 414                        * sizeof(struct nfsd4_fs_location), GFP_KERNEL);
 415        if (!fsloc->locations)
 416                return -ENOMEM;
 417        for (i=0; i < fsloc->locations_count; i++) {
 418                /* colon separated host list */
 419                err = -EINVAL;
 420                len = qword_get(mesg, buf, PAGE_SIZE);
 421                if (len <= 0)
 422                        goto out_free_all;
 423                err = -ENOMEM;
 424                fsloc->locations[i].hosts = kstrdup(buf, GFP_KERNEL);
 425                if (!fsloc->locations[i].hosts)
 426                        goto out_free_all;
 427                err = -EINVAL;
 428                /* slash separated path component list */
 429                len = qword_get(mesg, buf, PAGE_SIZE);
 430                if (len <= 0)
 431                        goto out_free_all;
 432                err = -ENOMEM;
 433                fsloc->locations[i].path = kstrdup(buf, GFP_KERNEL);
 434                if (!fsloc->locations[i].path)
 435                        goto out_free_all;
 436        }
 437        /* migrated */
 438        err = get_int(mesg, &migrated);
 439        if (err)
 440                goto out_free_all;
 441        err = -EINVAL;
 442        if (migrated < 0 || migrated > 1)
 443                goto out_free_all;
 444        fsloc->migrated = migrated;
 445        return 0;
 446out_free_all:
 447        nfsd4_fslocs_free(fsloc);
 448        return err;
 449}
 450
 451static int secinfo_parse(char **mesg, char *buf, struct svc_export *exp)
 452{
 453        int listsize, err;
 454        struct exp_flavor_info *f;
 455
 456        err = get_int(mesg, &listsize);
 457        if (err)
 458                return err;
 459        if (listsize < 0 || listsize > MAX_SECINFO_LIST)
 460                return -EINVAL;
 461
 462        for (f = exp->ex_flavors; f < exp->ex_flavors + listsize; f++) {
 463                err = get_int(mesg, &f->pseudoflavor);
 464                if (err)
 465                        return err;
 466                /*
 467                 * Just a quick sanity check; we could also try to check
 468                 * whether this pseudoflavor is supported, but at worst
 469                 * an unsupported pseudoflavor on the export would just
 470                 * be a pseudoflavor that won't match the flavor of any
 471                 * authenticated request.  The administrator will
 472                 * probably discover the problem when someone fails to
 473                 * authenticate.
 474                 */
 475                if (f->pseudoflavor < 0)
 476                        return -EINVAL;
 477                err = get_int(mesg, &f->flags);
 478                if (err)
 479                        return err;
 480                /* Only some flags are allowed to differ between flavors: */
 481                if (~NFSEXP_SECINFO_FLAGS & (f->flags ^ exp->ex_flags))
 482                        return -EINVAL;
 483        }
 484        exp->ex_nflavors = listsize;
 485        return 0;
 486}
 487
 488#else /* CONFIG_NFSD_V4 */
 489static inline int
 490fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc){return 0;}
 491static inline int
 492secinfo_parse(char **mesg, char *buf, struct svc_export *exp) { return 0; }
 493#endif
 494
 495static int svc_export_parse(struct cache_detail *cd, char *mesg, int mlen)
 496{
 497        /* client path expiry [flags anonuid anongid fsid] */
 498        char *buf;
 499        int len;
 500        int err;
 501        struct auth_domain *dom = NULL;
 502        struct svc_export exp = {}, *expp;
 503        int an_int;
 504
 505        if (mesg[mlen-1] != '\n')
 506                return -EINVAL;
 507        mesg[mlen-1] = 0;
 508
 509        buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
 510        if (!buf)
 511                return -ENOMEM;
 512
 513        /* client */
 514        err = -EINVAL;
 515        len = qword_get(&mesg, buf, PAGE_SIZE);
 516        if (len <= 0)
 517                goto out;
 518
 519        err = -ENOENT;
 520        dom = auth_domain_find(buf);
 521        if (!dom)
 522                goto out;
 523
 524        /* path */
 525        err = -EINVAL;
 526        if ((len = qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
 527                goto out1;
 528
 529        err = kern_path(buf, 0, &exp.ex_path);
 530        if (err)
 531                goto out1;
 532
 533        exp.ex_client = dom;
 534
 535        err = -ENOMEM;
 536        exp.ex_pathname = kstrdup(buf, GFP_KERNEL);
 537        if (!exp.ex_pathname)
 538                goto out2;
 539
 540        /* expiry */
 541        err = -EINVAL;
 542        exp.h.expiry_time = get_expiry(&mesg);
 543        if (exp.h.expiry_time == 0)
 544                goto out3;
 545
 546        /* flags */
 547        err = get_int(&mesg, &an_int);
 548        if (err == -ENOENT) {
 549                err = 0;
 550                set_bit(CACHE_NEGATIVE, &exp.h.flags);
 551        } else {
 552                if (err || an_int < 0)
 553                        goto out3;
 554                exp.ex_flags= an_int;
 555        
 556                /* anon uid */
 557                err = get_int(&mesg, &an_int);
 558                if (err)
 559                        goto out3;
 560                exp.ex_anon_uid= an_int;
 561
 562                /* anon gid */
 563                err = get_int(&mesg, &an_int);
 564                if (err)
 565                        goto out3;
 566                exp.ex_anon_gid= an_int;
 567
 568                /* fsid */
 569                err = get_int(&mesg, &an_int);
 570                if (err)
 571                        goto out3;
 572                exp.ex_fsid = an_int;
 573
 574                while ((len = qword_get(&mesg, buf, PAGE_SIZE)) > 0) {
 575                        if (strcmp(buf, "fsloc") == 0)
 576                                err = fsloc_parse(&mesg, buf, &exp.ex_fslocs);
 577                        else if (strcmp(buf, "uuid") == 0) {
 578                                /* expect a 16 byte uuid encoded as \xXXXX... */
 579                                len = qword_get(&mesg, buf, PAGE_SIZE);
 580                                if (len != 16)
 581                                        err  = -EINVAL;
 582                                else {
 583                                        exp.ex_uuid =
 584                                                kmemdup(buf, 16, GFP_KERNEL);
 585                                        if (exp.ex_uuid == NULL)
 586                                                err = -ENOMEM;
 587                                }
 588                        } else if (strcmp(buf, "secinfo") == 0)
 589                                err = secinfo_parse(&mesg, buf, &exp);
 590                        else
 591                                /* quietly ignore unknown words and anything
 592                                 * following. Newer user-space can try to set
 593                                 * new values, then see what the result was.
 594                                 */
 595                                break;
 596                        if (err)
 597                                goto out4;
 598                }
 599
 600                err = check_export(exp.ex_path.dentry->d_inode, exp.ex_flags,
 601                                   exp.ex_uuid);
 602                if (err)
 603                        goto out4;
 604        }
 605
 606        expp = svc_export_lookup(&exp);
 607        if (expp)
 608                expp = svc_export_update(&exp, expp);
 609        else
 610                err = -ENOMEM;
 611        cache_flush();
 612        if (expp == NULL)
 613                err = -ENOMEM;
 614        else
 615                exp_put(expp);
 616out4:
 617        nfsd4_fslocs_free(&exp.ex_fslocs);
 618        kfree(exp.ex_uuid);
 619out3:
 620        kfree(exp.ex_pathname);
 621out2:
 622        path_put(&exp.ex_path);
 623out1:
 624        auth_domain_put(dom);
 625out:
 626        kfree(buf);
 627        return err;
 628}
 629
 630static void exp_flags(struct seq_file *m, int flag, int fsid,
 631                uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fslocs);
 632static void show_secinfo(struct seq_file *m, struct svc_export *exp);
 633
 634static int svc_export_show(struct seq_file *m,
 635                           struct cache_detail *cd,
 636                           struct cache_head *h)
 637{
 638        struct svc_export *exp ;
 639
 640        if (h ==NULL) {
 641                seq_puts(m, "#path domain(flags)\n");
 642                return 0;
 643        }
 644        exp = container_of(h, struct svc_export, h);
 645        seq_path(m, &exp->ex_path, " \t\n\\");
 646        seq_putc(m, '\t');
 647        seq_escape(m, exp->ex_client->name, " \t\n\\");
 648        seq_putc(m, '(');
 649        if (test_bit(CACHE_VALID, &h->flags) && 
 650            !test_bit(CACHE_NEGATIVE, &h->flags)) {
 651                exp_flags(m, exp->ex_flags, exp->ex_fsid,
 652                          exp->ex_anon_uid, exp->ex_anon_gid, &exp->ex_fslocs);
 653                if (exp->ex_uuid) {
 654                        int i;
 655                        seq_puts(m, ",uuid=");
 656                        for (i=0; i<16; i++) {
 657                                if ((i&3) == 0 && i)
 658                                        seq_putc(m, ':');
 659                                seq_printf(m, "%02x", exp->ex_uuid[i]);
 660                        }
 661                }
 662                show_secinfo(m, exp);
 663        }
 664        seq_puts(m, ")\n");
 665        return 0;
 666}
 667static int svc_export_match(struct cache_head *a, struct cache_head *b)
 668{
 669        struct svc_export *orig = container_of(a, struct svc_export, h);
 670        struct svc_export *new = container_of(b, struct svc_export, h);
 671        return orig->ex_client == new->ex_client &&
 672                orig->ex_path.dentry == new->ex_path.dentry &&
 673                orig->ex_path.mnt == new->ex_path.mnt;
 674}
 675
 676static void svc_export_init(struct cache_head *cnew, struct cache_head *citem)
 677{
 678        struct svc_export *new = container_of(cnew, struct svc_export, h);
 679        struct svc_export *item = container_of(citem, struct svc_export, h);
 680
 681        kref_get(&item->ex_client->ref);
 682        new->ex_client = item->ex_client;
 683        new->ex_path.dentry = dget(item->ex_path.dentry);
 684        new->ex_path.mnt = mntget(item->ex_path.mnt);
 685        new->ex_pathname = NULL;
 686        new->ex_fslocs.locations = NULL;
 687        new->ex_fslocs.locations_count = 0;
 688        new->ex_fslocs.migrated = 0;
 689}
 690
 691static void export_update(struct cache_head *cnew, struct cache_head *citem)
 692{
 693        struct svc_export *new = container_of(cnew, struct svc_export, h);
 694        struct svc_export *item = container_of(citem, struct svc_export, h);
 695        int i;
 696
 697        new->ex_flags = item->ex_flags;
 698        new->ex_anon_uid = item->ex_anon_uid;
 699        new->ex_anon_gid = item->ex_anon_gid;
 700        new->ex_fsid = item->ex_fsid;
 701        new->ex_uuid = item->ex_uuid;
 702        item->ex_uuid = NULL;
 703        new->ex_pathname = item->ex_pathname;
 704        item->ex_pathname = NULL;
 705        new->ex_fslocs.locations = item->ex_fslocs.locations;
 706        item->ex_fslocs.locations = NULL;
 707        new->ex_fslocs.locations_count = item->ex_fslocs.locations_count;
 708        item->ex_fslocs.locations_count = 0;
 709        new->ex_fslocs.migrated = item->ex_fslocs.migrated;
 710        item->ex_fslocs.migrated = 0;
 711        new->ex_nflavors = item->ex_nflavors;
 712        for (i = 0; i < MAX_SECINFO_LIST; i++) {
 713                new->ex_flavors[i] = item->ex_flavors[i];
 714        }
 715}
 716
 717static struct cache_head *svc_export_alloc(void)
 718{
 719        struct svc_export *i = kmalloc(sizeof(*i), GFP_KERNEL);
 720        if (i)
 721                return &i->h;
 722        else
 723                return NULL;
 724}
 725
 726struct cache_detail svc_export_cache = {
 727        .owner                = THIS_MODULE,
 728        .hash_size        = EXPORT_HASHMAX,
 729        .hash_table        = export_table,
 730        .name                = "nfsd.export",
 731        .cache_put        = svc_export_put,
 732        .cache_request        = svc_export_request,
 733        .cache_parse        = svc_export_parse,
 734        .cache_show        = svc_export_show,
 735        .match                = svc_export_match,
 736        .init                = svc_export_init,
 737        .update                = export_update,
 738        .alloc                = svc_export_alloc,
 739};
 740
 741static struct svc_export *
 742svc_export_lookup(struct svc_export *exp)
 743{
 744        struct cache_head *ch;
 745        int hash;
 746        hash = hash_ptr(exp->ex_client, EXPORT_HASHBITS);
 747        hash ^= hash_ptr(exp->ex_path.dentry, EXPORT_HASHBITS);
 748        hash ^= hash_ptr(exp->ex_path.mnt, EXPORT_HASHBITS);
 749
 750        ch = sunrpc_cache_lookup(&svc_export_cache, &exp->h,
 751                                 hash);
 752        if (ch)
 753                return container_of(ch, struct svc_export, h);
 754        else
 755                return NULL;
 756}
 757
 758static struct svc_export *
 759svc_export_update(struct svc_export *new, struct svc_export *old)
 760{
 761        struct cache_head *ch;
 762        int hash;
 763        hash = hash_ptr(old->ex_client, EXPORT_HASHBITS);
 764        hash ^= hash_ptr(old->ex_path.dentry, EXPORT_HASHBITS);
 765        hash ^= hash_ptr(old->ex_path.mnt, EXPORT_HASHBITS);
 766
 767        ch = sunrpc_cache_update(&svc_export_cache, &new->h,
 768                                 &old->h,
 769                                 hash);
 770        if (ch)
 771                return container_of(ch, struct svc_export, h);
 772        else
 773                return NULL;
 774}
 775
 776
 777static struct svc_expkey *
 778exp_find_key(svc_client *clp, int fsid_type, u32 *fsidv, struct cache_req *reqp)
 779{
 780        struct svc_expkey key, *ek;
 781        int err;
 782        
 783        if (!clp)
 784                return ERR_PTR(-ENOENT);
 785
 786        key.ek_client = clp;
 787        key.ek_fsidtype = fsid_type;
 788        memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
 789
 790        ek = svc_expkey_lookup(&key);
 791        if (ek == NULL)
 792                return ERR_PTR(-ENOMEM);
 793        err = cache_check(&svc_expkey_cache, &ek->h, reqp);
 794        if (err)
 795                return ERR_PTR(err);
 796        return ek;
 797}
 798
 799static int exp_set_key(svc_client *clp, int fsid_type, u32 *fsidv,
 800                       struct svc_export *exp)
 801{
 802        struct svc_expkey key, *ek;
 803
 804        key.ek_client = clp;
 805        key.ek_fsidtype = fsid_type;
 806        memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
 807        key.ek_path = exp->ex_path;
 808        key.h.expiry_time = NEVER;
 809        key.h.flags = 0;
 810
 811        ek = svc_expkey_lookup(&key);
 812        if (ek)
 813                ek = svc_expkey_update(&key,ek);
 814        if (ek) {
 815                cache_put(&ek->h, &svc_expkey_cache);
 816                return 0;
 817        }
 818        return -ENOMEM;
 819}
 820
 821/*
 822 * Find the client's export entry matching xdev/xino.
 823 */
 824static inline struct svc_expkey *
 825exp_get_key(svc_client *clp, dev_t dev, ino_t ino)
 826{
 827        u32 fsidv[3];
 828        
 829        if (old_valid_dev(dev)) {
 830                mk_fsid(FSID_DEV, fsidv, dev, ino, 0, NULL);
 831                return exp_find_key(clp, FSID_DEV, fsidv, NULL);
 832        }
 833        mk_fsid(FSID_ENCODE_DEV, fsidv, dev, ino, 0, NULL);
 834        return exp_find_key(clp, FSID_ENCODE_DEV, fsidv, NULL);
 835}
 836
 837/*
 838 * Find the client's export entry matching fsid
 839 */
 840static inline struct svc_expkey *
 841exp_get_fsid_key(svc_client *clp, int fsid)
 842{
 843        u32 fsidv[2];
 844
 845        mk_fsid(FSID_NUM, fsidv, 0, 0, fsid, NULL);
 846
 847        return exp_find_key(clp, FSID_NUM, fsidv, NULL);
 848}
 849
 850static svc_export *exp_get_by_name(svc_client *clp, struct vfsmount *mnt,
 851                                   struct dentry *dentry,
 852                                   struct cache_req *reqp)
 853{
 854        struct svc_export *exp, key;
 855        int err;
 856
 857        if (!clp)
 858                return ERR_PTR(-ENOENT);
 859
 860        key.ex_client = clp;
 861        key.ex_path.mnt = mnt;
 862        key.ex_path.dentry = dentry;
 863
 864        exp = svc_export_lookup(&key);
 865        if (exp == NULL)
 866                return ERR_PTR(-ENOMEM);
 867        err = cache_check(&svc_export_cache, &exp->h, reqp);
 868        if (err)
 869                return ERR_PTR(err);
 870        return exp;
 871}
 872
 873/*
 874 * Find the export entry for a given dentry.
 875 */
 876static struct svc_export *exp_parent(svc_client *clp, struct vfsmount *mnt,
 877                                     struct dentry *dentry,
 878                                     struct cache_req *reqp)
 879{
 880        svc_export *exp;
 881
 882        dget(dentry);
 883        exp = exp_get_by_name(clp, mnt, dentry, reqp);
 884
 885        while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(dentry)) {
 886                struct dentry *parent;
 887
 888                parent = dget_parent(dentry);
 889                dput(dentry);
 890                dentry = parent;
 891                exp = exp_get_by_name(clp, mnt, dentry, reqp);
 892        }
 893        dput(dentry);
 894        return exp;
 895}
 896
 897/*
 898 * Hashtable locking. Write locks are placed only by user processes
 899 * wanting to modify export information.
 900 * Write locking only done in this file.  Read locking
 901 * needed externally.
 902 */
 903
 904static DECLARE_RWSEM(hash_sem);
 905
 906void
 907exp_readlock(void)
 908{
 909        down_read(&hash_sem);
 910}
 911
 912static inline void
 913exp_writelock(void)
 914{
 915        down_write(&hash_sem);
 916}
 917
 918void
 919exp_readunlock(void)
 920{
 921        up_read(&hash_sem);
 922}
 923
 924static inline void
 925exp_writeunlock(void)
 926{
 927        up_write(&hash_sem);
 928}
 929
 930static void exp_fsid_unhash(struct svc_export *exp)
 931{
 932        struct svc_expkey *ek;
 933
 934        if ((exp->ex_flags & NFSEXP_FSID) == 0)
 935                return;
 936
 937        ek = exp_get_fsid_key(exp->ex_client, exp->ex_fsid);
 938        if (!IS_ERR(ek)) {
 939                ek->h.expiry_time = get_seconds()-1;
 940                cache_put(&ek->h, &svc_expkey_cache);
 941        }
 942        svc_expkey_cache.nextcheck = get_seconds();
 943}
 944
 945static int exp_fsid_hash(svc_client *clp, struct svc_export *exp)
 946{
 947        u32 fsid[2];
 948 
 949        if ((exp->ex_flags & NFSEXP_FSID) == 0)
 950                return 0;
 951
 952        mk_fsid(FSID_NUM, fsid, 0, 0, exp->ex_fsid, NULL);
 953        return exp_set_key(clp, FSID_NUM, fsid, exp);
 954}
 955
 956static int exp_hash(struct auth_domain *clp, struct svc_export *exp)
 957{
 958        u32 fsid[2];
 959        struct inode *inode = exp->ex_path.dentry->d_inode;
 960        dev_t dev = inode->i_sb->s_dev;
 961
 962        if (old_valid_dev(dev)) {
 963                mk_fsid(FSID_DEV, fsid, dev, inode->i_ino, 0, NULL);
 964                return exp_set_key(clp, FSID_DEV, fsid, exp);
 965        }
 966        mk_fsid(FSID_ENCODE_DEV, fsid, dev, inode->i_ino, 0, NULL);
 967        return exp_set_key(clp, FSID_ENCODE_DEV, fsid, exp);
 968}
 969
 970static void exp_unhash(struct svc_export *exp)
 971{
 972        struct svc_expkey *ek;
 973        struct inode *inode = exp->ex_path.dentry->d_inode;
 974
 975        ek = exp_get_key(exp->ex_client, inode->i_sb->s_dev, inode->i_ino);
 976        if (!IS_ERR(ek)) {
 977                ek->h.expiry_time = get_seconds()-1;
 978                cache_put(&ek->h, &svc_expkey_cache);
 979        }
 980        svc_expkey_cache.nextcheck = get_seconds();
 981}
 982        
 983/*
 984 * Export a file system.
 985 */
 986int
 987exp_export(struct nfsctl_export *nxp)
 988{
 989        svc_client        *clp;
 990        struct svc_export        *exp = NULL;
 991        struct svc_export        new;
 992        struct svc_expkey        *fsid_key = NULL;
 993        struct path path;
 994        int                err;
 995
 996        /* Consistency check */
 997        err = -EINVAL;
 998        if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
 999            !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
1000                goto out;
1001
1002        dprintk("exp_export called for %s:%s (%x/%ld fl %x).\n",
1003                        nxp->ex_client, nxp->ex_path,
1004                        (unsigned)nxp->ex_dev, (long)nxp->ex_ino,
1005                        nxp->ex_flags);
1006
1007        /* Try to lock the export table for update */
1008        exp_writelock();
1009
1010        /* Look up client info */
1011        if (!(clp = auth_domain_find(nxp->ex_client)))
1012                goto out_unlock;
1013
1014
1015        /* Look up the dentry */
1016        err = kern_path(nxp->ex_path, 0, &path);
1017        if (err)
1018                goto out_put_clp;
1019        err = -EINVAL;
1020
1021        exp = exp_get_by_name(clp, path.mnt, path.dentry, NULL);
1022
1023        memset(&new, 0, sizeof(new));
1024
1025        /* must make sure there won't be an ex_fsid clash */
1026        if ((nxp->ex_flags & NFSEXP_FSID) &&
1027            (!IS_ERR(fsid_key = exp_get_fsid_key(clp, nxp->ex_dev))) &&
1028            fsid_key->ek_path.mnt &&
1029            (fsid_key->ek_path.mnt != path.mnt ||
1030             fsid_key->ek_path.dentry != path.dentry))
1031                goto finish;
1032
1033        if (!IS_ERR(exp)) {
1034                /* just a flags/id/fsid update */
1035
1036                exp_fsid_unhash(exp);
1037                exp->ex_flags    = nxp->ex_flags;
1038                exp->ex_anon_uid = nxp->ex_anon_uid;
1039                exp->ex_anon_gid = nxp->ex_anon_gid;
1040                exp->ex_fsid     = nxp->ex_dev;
1041
1042                err = exp_fsid_hash(clp, exp);
1043                goto finish;
1044        }
1045
1046        err = check_export(path.dentry->d_inode, nxp->ex_flags, NULL);
1047        if (err) goto finish;
1048
1049        err = -ENOMEM;
1050
1051        dprintk("nfsd: creating export entry %p for client %p\n", exp, clp);
1052
1053        new.h.expiry_time = NEVER;
1054        new.h.flags = 0;
1055        new.ex_pathname = kstrdup(nxp->ex_path, GFP_KERNEL);
1056        if (!new.ex_pathname)
1057                goto finish;
1058        new.ex_client = clp;
1059        new.ex_path = path;
1060        new.ex_flags = nxp->ex_flags;
1061        new.ex_anon_uid = nxp->ex_anon_uid;
1062        new.ex_anon_gid = nxp->ex_anon_gid;
1063        new.ex_fsid = nxp->ex_dev;
1064
1065        exp = svc_export_lookup(&new);
1066        if (exp)
1067                exp = svc_export_update(&new, exp);
1068
1069        if (!exp)
1070                goto finish;
1071
1072        if (exp_hash(clp, exp) ||
1073            exp_fsid_hash(clp, exp)) {
1074                /* failed to create at least one index */
1075                exp_do_unexport(exp);
1076                cache_flush();
1077        } else
1078                err = 0;
1079finish:
1080        kfree(new.ex_pathname);
1081        if (exp)
1082                exp_put(exp);
1083        if (fsid_key && !IS_ERR(fsid_key))
1084                cache_put(&fsid_key->h, &svc_expkey_cache);
1085        path_put(&path);
1086out_put_clp:
1087        auth_domain_put(clp);
1088out_unlock:
1089        exp_writeunlock();
1090out:
1091        return err;
1092}
1093
1094/*
1095 * Unexport a file system. The export entry has already
1096 * been removed from the client's list of exported fs's.
1097 */
1098static void
1099exp_do_unexport(svc_export *unexp)
1100{
1101        unexp->h.expiry_time = get_seconds()-1;
1102        svc_export_cache.nextcheck = get_seconds();
1103        exp_unhash(unexp);
1104        exp_fsid_unhash(unexp);
1105}
1106
1107
1108/*
1109 * unexport syscall.
1110 */
1111int
1112exp_unexport(struct nfsctl_export *nxp)
1113{
1114        struct auth_domain *dom;
1115        svc_export *exp;
1116        struct path path;
1117        int                err;
1118
1119        /* Consistency check */
1120        if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
1121            !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
1122                return -EINVAL;
1123
1124        exp_writelock();
1125
1126        err = -EINVAL;
1127        dom = auth_domain_find(nxp->ex_client);
1128        if (!dom) {
1129                dprintk("nfsd: unexport couldn't find %s\n", nxp->ex_client);
1130                goto out_unlock;
1131        }
1132
1133        err = kern_path(nxp->ex_path, 0, &path);
1134        if (err)
1135                goto out_domain;
1136
1137        err = -EINVAL;
1138        exp = exp_get_by_name(dom, path.mnt, path.dentry, NULL);
1139        path_put(&path);
1140        if (IS_ERR(exp))
1141                goto out_domain;
1142
1143        exp_do_unexport(exp);
1144        exp_put(exp);
1145        err = 0;
1146
1147out_domain:
1148        auth_domain_put(dom);
1149        cache_flush();
1150out_unlock:
1151        exp_writeunlock();
1152        return err;
1153}
1154
1155/*
1156 * Obtain the root fh on behalf of a client.
1157 * This could be done in user space, but I feel that it adds some safety
1158 * since its harder to fool a kernel module than a user space program.
1159 */
1160int
1161exp_rootfh(svc_client *clp, char *name, struct knfsd_fh *f, int maxsize)
1162{
1163        struct svc_export        *exp;
1164        struct path                path;
1165        struct inode                *inode;
1166        struct svc_fh                fh;
1167        int                        err;
1168
1169        err = -EPERM;
1170        /* NB: we probably ought to check that it's NUL-terminated */
1171        if (kern_path(name, 0, &path)) {
1172                printk("nfsd: exp_rootfh path not found %s", name);
1173                return err;
1174        }
1175        inode = path.dentry->d_inode;
1176
1177        dprintk("nfsd: exp_rootfh(%s [%p] %s:%s/%ld)\n",
1178                 name, path.dentry, clp->name,
1179                 inode->i_sb->s_id, inode->i_ino);
1180        exp = exp_parent(clp, path.mnt, path.dentry, NULL);
1181        if (IS_ERR(exp)) {
1182                err = PTR_ERR(exp);
1183                goto out;
1184        }
1185
1186        /*
1187         * fh must be initialized before calling fh_compose
1188         */
1189        fh_init(&fh, maxsize);
1190        if (fh_compose(&fh, exp, path.dentry, NULL))
1191                err = -EINVAL;
1192        else
1193                err = 0;
1194        memcpy(f, &fh.fh_handle, sizeof(struct knfsd_fh));
1195        fh_put(&fh);
1196        exp_put(exp);
1197out:
1198        path_put(&path);
1199        return err;
1200}
1201
1202static struct svc_export *exp_find(struct auth_domain *clp, int fsid_type,
1203                                   u32 *fsidv, struct cache_req *reqp)
1204{
1205        struct svc_export *exp;
1206        struct svc_expkey *ek = exp_find_key(clp, fsid_type, fsidv, reqp);
1207        if (IS_ERR(ek))
1208                return ERR_CAST(ek);
1209
1210        exp = exp_get_by_name(clp, ek->ek_path.mnt, ek->ek_path.dentry, reqp);
1211        cache_put(&ek->h, &svc_expkey_cache);
1212
1213        if (IS_ERR(exp))
1214                return ERR_CAST(exp);
1215        return exp;
1216}
1217
1218__be32 check_nfsd_access(struct svc_export *exp, struct svc_rqst *rqstp)
1219{
1220        struct exp_flavor_info *f;
1221        struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1222
1223        /* legacy gss-only clients are always OK: */
1224        if (exp->ex_client == rqstp->rq_gssclient)
1225                return 0;
1226        /* ip-address based client; check sec= export option: */
1227        for (f = exp->ex_flavors; f < end; f++) {
1228                if (f->pseudoflavor == rqstp->rq_flavor)
1229                        return 0;
1230        }
1231        /* defaults in absence of sec= options: */
1232        if (exp->ex_nflavors == 0) {
1233                if (rqstp->rq_flavor == RPC_AUTH_NULL ||
1234                    rqstp->rq_flavor == RPC_AUTH_UNIX)
1235                        return 0;
1236        }
1237        return nfserr_wrongsec;
1238}
1239
1240/*
1241 * Uses rq_client and rq_gssclient to find an export; uses rq_client (an
1242 * auth_unix client) if it's available and has secinfo information;
1243 * otherwise, will try to use rq_gssclient.
1244 *
1245 * Called from functions that handle requests; functions that do work on
1246 * behalf of mountd are passed a single client name to use, and should
1247 * use exp_get_by_name() or exp_find().
1248 */
1249struct svc_export *
1250rqst_exp_get_by_name(struct svc_rqst *rqstp, struct vfsmount *mnt,
1251                struct dentry *dentry)
1252{
1253        struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
1254
1255        if (rqstp->rq_client == NULL)
1256                goto gss;
1257
1258        /* First try the auth_unix client: */
1259        exp = exp_get_by_name(rqstp->rq_client, mnt, dentry,
1260                                                &rqstp->rq_chandle);
1261        if (PTR_ERR(exp) == -ENOENT)
1262                goto gss;
1263        if (IS_ERR(exp))
1264                return exp;
1265        /* If it has secinfo, assume there are no gss/... clients */
1266        if (exp->ex_nflavors > 0)
1267                return exp;
1268gss:
1269        /* Otherwise, try falling back on gss client */
1270        if (rqstp->rq_gssclient == NULL)
1271                return exp;
1272        gssexp = exp_get_by_name(rqstp->rq_gssclient, mnt, dentry,
1273                                                &rqstp->rq_chandle);
1274        if (PTR_ERR(gssexp) == -ENOENT)
1275                return exp;
1276        if (!IS_ERR(exp))
1277                exp_put(exp);
1278        return gssexp;
1279}
1280
1281struct svc_export *
1282rqst_exp_find(struct svc_rqst *rqstp, int fsid_type, u32 *fsidv)
1283{
1284        struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
1285
1286        if (rqstp->rq_client == NULL)
1287                goto gss;
1288
1289        /* First try the auth_unix client: */
1290        exp = exp_find(rqstp->rq_client, fsid_type, fsidv, &rqstp->rq_chandle);
1291        if (PTR_ERR(exp) == -ENOENT)
1292                goto gss;
1293        if (IS_ERR(exp))
1294                return exp;
1295        /* If it has secinfo, assume there are no gss/... clients */
1296        if (exp->ex_nflavors > 0)
1297                return exp;
1298gss:
1299        /* Otherwise, try falling back on gss client */
1300        if (rqstp->rq_gssclient == NULL)
1301                return exp;
1302        gssexp = exp_find(rqstp->rq_gssclient, fsid_type, fsidv,
1303                                                &rqstp->rq_chandle);
1304        if (PTR_ERR(gssexp) == -ENOENT)
1305                return exp;
1306        if (!IS_ERR(exp))
1307                exp_put(exp);
1308        return gssexp;
1309}
1310
1311struct svc_export *
1312rqst_exp_parent(struct svc_rqst *rqstp, struct vfsmount *mnt,
1313                struct dentry *dentry)
1314{
1315        struct svc_export *exp;
1316
1317        dget(dentry);
1318        exp = rqst_exp_get_by_name(rqstp, mnt, dentry);
1319
1320        while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(dentry)) {
1321                struct dentry *parent;
1322
1323                parent = dget_parent(dentry);
1324                dput(dentry);
1325                dentry = parent;
1326                exp = rqst_exp_get_by_name(rqstp, mnt, dentry);
1327        }
1328        dput(dentry);
1329        return exp;
1330}
1331
1332/*
1333 * Called when we need the filehandle for the root of the pseudofs,
1334 * for a given NFSv4 client.   The root is defined to be the
1335 * export point with fsid==0
1336 */
1337__be32
1338exp_pseudoroot(struct svc_rqst *rqstp, struct svc_fh *fhp)
1339{
1340        struct svc_export *exp;
1341        __be32 rv;
1342        u32 fsidv[2];
1343
1344        mk_fsid(FSID_NUM, fsidv, 0, 0, 0, NULL);
1345
1346        exp = rqst_exp_find(rqstp, FSID_NUM, fsidv);
1347        if (IS_ERR(exp))
1348                return nfserrno(PTR_ERR(exp));
1349        rv = fh_compose(fhp, exp, exp->ex_path.dentry, NULL);
1350        if (rv)
1351                goto out;
1352        rv = check_nfsd_access(exp, rqstp);
1353out:
1354        exp_put(exp);
1355        return rv;
1356}
1357
1358/* Iterator */
1359
1360static void *e_start(struct seq_file *m, loff_t *pos)
1361        __acquires(svc_export_cache.hash_lock)
1362{
1363        loff_t n = *pos;
1364        unsigned hash, export;
1365        struct cache_head *ch;
1366        
1367        exp_readlock();
1368        read_lock(&svc_export_cache.hash_lock);
1369        if (!n--)
1370                return SEQ_START_TOKEN;
1371        hash = n >> 32;
1372        export = n & ((1LL<<32) - 1);
1373
1374        
1375        for (ch=export_table[hash]; ch; ch=ch->next)
1376                if (!export--)
1377                        return ch;
1378        n &= ~((1LL<<32) - 1);
1379        do {
1380                hash++;
1381                n += 1LL<<32;
1382        } while(hash < EXPORT_HASHMAX && export_table[hash]==NULL);
1383        if (hash >= EXPORT_HASHMAX)
1384                return NULL;
1385        *pos = n+1;
1386        return export_table[hash];
1387}
1388
1389static void *e_next(struct seq_file *m, void *p, loff_t *pos)
1390{
1391        struct cache_head *ch = p;
1392        int hash = (*pos >> 32);
1393
1394        if (p == SEQ_START_TOKEN)
1395                hash = 0;
1396        else if (ch->next == NULL) {
1397                hash++;
1398                *pos += 1LL<<32;
1399        } else {
1400                ++*pos;
1401                return ch->next;
1402        }
1403        *pos &= ~((1LL<<32) - 1);
1404        while (hash < EXPORT_HASHMAX && export_table[hash] == NULL) {
1405                hash++;
1406                *pos += 1LL<<32;
1407        }
1408        if (hash >= EXPORT_HASHMAX)
1409                return NULL;
1410        ++*pos;
1411        return export_table[hash];
1412}
1413
1414static void e_stop(struct seq_file *m, void *p)
1415        __releases(svc_export_cache.hash_lock)
1416{
1417        read_unlock(&svc_export_cache.hash_lock);
1418        exp_readunlock();
1419}
1420
1421static struct flags {
1422        int flag;
1423        char *name[2];
1424} expflags[] = {
1425        { NFSEXP_READONLY, {"ro", "rw"}},
1426        { NFSEXP_INSECURE_PORT, {"insecure", ""}},
1427        { NFSEXP_ROOTSQUASH, {"root_squash", "no_root_squash"}},
1428        { NFSEXP_ALLSQUASH, {"all_squash", ""}},
1429        { NFSEXP_ASYNC, {"async", "sync"}},
1430        { NFSEXP_GATHERED_WRITES, {"wdelay", "no_wdelay"}},
1431        { NFSEXP_NOHIDE, {"nohide", ""}},
1432        { NFSEXP_CROSSMOUNT, {"crossmnt", ""}},
1433        { NFSEXP_NOSUBTREECHECK, {"no_subtree_check", ""}},
1434        { NFSEXP_NOAUTHNLM, {"insecure_locks", ""}},
1435#ifdef MSNFS
1436        { NFSEXP_MSNFS, {"msnfs", ""}},
1437#endif
1438        { 0, {"", ""}}
1439};
1440
1441static void show_expflags(struct seq_file *m, int flags, int mask)
1442{
1443        struct flags *flg;
1444        int state, first = 0;
1445
1446        for (flg = expflags; flg->flag; flg++) {
1447                if (flg->flag & ~mask)
1448                        continue;
1449                state = (flg->flag & flags) ? 0 : 1;
1450                if (*flg->name[state])
1451                        seq_printf(m, "%s%s", first++?",":"", flg->name[state]);
1452        }
1453}
1454
1455static void show_secinfo_flags(struct seq_file *m, int flags)
1456{
1457        seq_printf(m, ",");
1458        show_expflags(m, flags, NFSEXP_SECINFO_FLAGS);
1459}
1460
1461static void show_secinfo(struct seq_file *m, struct svc_export *exp)
1462{
1463        struct exp_flavor_info *f;
1464        struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1465        int lastflags = 0, first = 0;
1466
1467        if (exp->ex_nflavors == 0)
1468                return;
1469        for (f = exp->ex_flavors; f < end; f++) {
1470                if (first || f->flags != lastflags) {
1471                        if (!first)
1472                                show_secinfo_flags(m, lastflags);
1473                        seq_printf(m, ",sec=%d", f->pseudoflavor);
1474                        lastflags = f->flags;
1475                } else {
1476                        seq_printf(m, ":%d", f->pseudoflavor);
1477                }
1478        }
1479        show_secinfo_flags(m, lastflags);
1480}
1481
1482static void exp_flags(struct seq_file *m, int flag, int fsid,
1483                uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fsloc)
1484{
1485        show_expflags(m, flag, NFSEXP_ALLFLAGS);
1486        if (flag & NFSEXP_FSID)
1487                seq_printf(m, ",fsid=%d", fsid);
1488        if (anonu != (uid_t)-2 && anonu != (0x10000-2))
1489                seq_printf(m, ",anonuid=%u", anonu);
1490        if (anong != (gid_t)-2 && anong != (0x10000-2))
1491                seq_printf(m, ",anongid=%u", anong);
1492        if (fsloc && fsloc->locations_count > 0) {
1493                char *loctype = (fsloc->migrated) ? "refer" : "replicas";
1494                int i;
1495
1496                seq_printf(m, ",%s=", loctype);
1497                seq_escape(m, fsloc->locations[0].path, ",;@ \t\n\\");
1498                seq_putc(m, '@');
1499                seq_escape(m, fsloc->locations[0].hosts, ",;@ \t\n\\");
1500                for (i = 1; i < fsloc->locations_count; i++) {
1501                        seq_putc(m, ';');
1502                        seq_escape(m, fsloc->locations[i].path, ",;@ \t\n\\");
1503                        seq_putc(m, '@');
1504                        seq_escape(m, fsloc->locations[i].hosts, ",;@ \t\n\\");
1505                }
1506        }
1507}
1508
1509static int e_show(struct seq_file *m, void *p)
1510{
1511        struct cache_head *cp = p;
1512        struct svc_export *exp = container_of(cp, struct svc_export, h);
1513
1514        if (p == SEQ_START_TOKEN) {
1515                seq_puts(m, "# Version 1.1\n");
1516                seq_puts(m, "# Path Client(Flags) # IPs\n");
1517                return 0;
1518        }
1519
1520        cache_get(&exp->h);
1521        if (cache_check(&svc_export_cache, &exp->h, NULL))
1522                return 0;
1523        cache_put(&exp->h, &svc_export_cache);
1524        return svc_export_show(m, &svc_export_cache, cp);
1525}
1526
1527struct seq_operations nfs_exports_op = {
1528        .start        = e_start,
1529        .next        = e_next,
1530        .stop        = e_stop,
1531        .show        = e_show,
1532};
1533
1534/*
1535 * Add or modify a client.
1536 * Change requests may involve the list of host addresses. The list of
1537 * exports and possibly existing uid maps are left untouched.
1538 */
1539int
1540exp_addclient(struct nfsctl_client *ncp)
1541{
1542        struct auth_domain        *dom;
1543        int                        i, err;
1544        struct in6_addr addr6;
1545
1546        /* First, consistency check. */
1547        err = -EINVAL;
1548        if (! exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1549                goto out;
1550        if (ncp->cl_naddr > NFSCLNT_ADDRMAX)
1551                goto out;
1552
1553        /* Lock the hashtable */
1554        exp_writelock();
1555
1556        dom = unix_domain_find(ncp->cl_ident);
1557
1558        err = -ENOMEM;
1559        if (!dom)
1560                goto out_unlock;
1561
1562        /* Insert client into hashtable. */
1563        for (i = 0; i < ncp->cl_naddr; i++) {
1564                ipv6_addr_set_v4mapped(ncp->cl_addrlist[i].s_addr, &addr6);
1565                auth_unix_add_addr(&addr6, dom);
1566        }
1567        auth_unix_forget_old(dom);
1568        auth_domain_put(dom);
1569
1570        err = 0;
1571
1572out_unlock:
1573        exp_writeunlock();
1574out:
1575        return err;
1576}
1577
1578/*
1579 * Delete a client given an identifier.
1580 */
1581int
1582exp_delclient(struct nfsctl_client *ncp)
1583{
1584        int                err;
1585        struct auth_domain *dom;
1586
1587        err = -EINVAL;
1588        if (!exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1589                goto out;
1590
1591        /* Lock the hashtable */
1592        exp_writelock();
1593
1594        dom = auth_domain_find(ncp->cl_ident);
1595        /* just make sure that no addresses work 
1596         * and that it will expire soon 
1597         */
1598        if (dom) {
1599                err = auth_unix_forget_old(dom);
1600                auth_domain_put(dom);
1601        }
1602
1603        exp_writeunlock();
1604out:
1605        return err;
1606}
1607
1608/*
1609 * Verify that string is non-empty and does not exceed max length.
1610 */
1611static int
1612exp_verify_string(char *cp, int max)
1613{
1614        int        i;
1615
1616        for (i = 0; i < max; i++)
1617                if (!cp[i])
1618                        return i;
1619        cp[i] = 0;
1620        printk(KERN_NOTICE "nfsd: couldn't validate string %s\n", cp);
1621        return 0;
1622}
1623
1624/*
1625 * Initialize the exports module.
1626 */
1627int
1628nfsd_export_init(void)
1629{
1630        int rv;
1631        dprintk("nfsd: initializing export module.\n");
1632
1633        rv = cache_register(&svc_export_cache);
1634        if (rv)
1635                return rv;
1636        rv = cache_register(&svc_expkey_cache);
1637        if (rv)
1638                cache_unregister(&svc_export_cache);
1639        return rv;
1640
1641}
1642
1643/*
1644 * Flush exports table - called when last nfsd thread is killed
1645 */
1646void
1647nfsd_export_flush(void)
1648{
1649        exp_writelock();
1650        cache_purge(&svc_expkey_cache);
1651        cache_purge(&svc_export_cache);
1652        exp_writeunlock();
1653}
1654
1655/*
1656 * Shutdown the exports module.
1657 */
1658void
1659nfsd_export_shutdown(void)
1660{
1661
1662        dprintk("nfsd: shutting down export module.\n");
1663
1664        exp_writelock();
1665
1666        cache_unregister(&svc_expkey_cache);
1667        cache_unregister(&svc_export_cache);
1668        svcauth_unix_purge();
1669
1670        exp_writeunlock();
1671        dprintk("nfsd: export shutdown complete.\n");
1672}