search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Linux 2.6.23.13
[linux/fpc-iii.git] / fs / nfsd / export.c
blobcba899a3494ed56d5e9d9342a617d841ca2bfdd6
1 #define MSNFS /* HACK HACK */
2 /*
3 * linux/fs/nfsd/export.c
4 *
5 * NFS exporting and validation.
6 *
7 * We maintain a list of clients, each of which has a list of
8 * exports. To export an fs to a given client, you first have
9 * to create the client entry with NFSCTL_ADDCLIENT, which
10 * creates a client control block and adds it to the hash
11 * table. Then, you call NFSCTL_EXPORT for each fs.
12 *
13 *
14 * Copyright (C) 1995, 1996 Olaf Kirch, <okir@monad.swb.de>
15 */
16
17 #include <linux/unistd.h>
18 #include <linux/slab.h>
19 #include <linux/stat.h>
20 #include <linux/in.h>
21 #include <linux/seq_file.h>
22 #include <linux/syscalls.h>
23 #include <linux/rwsem.h>
24 #include <linux/dcache.h>
25 #include <linux/namei.h>
26 #include <linux/mount.h>
27 #include <linux/hash.h>
28 #include <linux/module.h>
29 #include <linux/exportfs.h>
30
31 #include <linux/sunrpc/svc.h>
32 #include <linux/nfsd/nfsd.h>
33 #include <linux/nfsd/nfsfh.h>
34 #include <linux/nfsd/syscall.h>
35 #include <linux/lockd/bind.h>
36 #include <linux/sunrpc/msg_prot.h>
37 #include <linux/sunrpc/gss_api.h>
38
39 #define NFSDDBG_FACILITY NFSDDBG_EXPORT
40
41 typedef struct auth_domain svc_client;
42 typedef struct svc_export svc_export;
43
44 static void exp_do_unexport(svc_export *unexp);
45 static int exp_verify_string(char *cp, int max);
46
47 /*
48 * We have two caches.
49 * One maps client+vfsmnt+dentry to export options - the export map
50 * The other maps client+filehandle-fragment to export options. - the expkey map
51 *
52 * The export options are actually stored in the first map, and the
53 * second map contains a reference to the entry in the first map.
54 */
55
56 #define EXPKEY_HASHBITS 8
57 #define EXPKEY_HASHMAX (1 << EXPKEY_HASHBITS)
58 #define EXPKEY_HASHMASK (EXPKEY_HASHMAX -1)
59 static struct cache_head *expkey_table[EXPKEY_HASHMAX];
60
61 static void expkey_put(struct kref *ref)
62 {
63 struct svc_expkey *key = container_of(ref, struct svc_expkey, h.ref);
64
65 if (test_bit(CACHE_VALID, &key->h.flags) &&
66 !test_bit(CACHE_NEGATIVE, &key->h.flags)) {
67 dput(key->ek_dentry);
68 mntput(key->ek_mnt);
69 }
70 auth_domain_put(key->ek_client);
71 kfree(key);
72 }
73
74 static void expkey_request(struct cache_detail *cd,
75 struct cache_head *h,
76 char **bpp, int *blen)
77 {
78 /* client fsidtype \xfsid */
79 struct svc_expkey *ek = container_of(h, struct svc_expkey, h);
80 char type[5];
81
82 qword_add(bpp, blen, ek->ek_client->name);
83 snprintf(type, 5, "%d", ek->ek_fsidtype);
84 qword_add(bpp, blen, type);
85 qword_addhex(bpp, blen, (char*)ek->ek_fsid, key_len(ek->ek_fsidtype));
86 (*bpp)[-1] = '\n';
87 }
88
89 static struct svc_expkey *svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old);
90 static struct svc_expkey *svc_expkey_lookup(struct svc_expkey *);
91 static struct cache_detail svc_expkey_cache;
92
93 static int expkey_parse(struct cache_detail *cd, char *mesg, int mlen)
94 {
95 /* client fsidtype fsid [path] */
96 char *buf;
97 int len;
98 struct auth_domain *dom = NULL;
99 int err;
100 int fsidtype;
101 char *ep;
102 struct svc_expkey key;
103 struct svc_expkey *ek;
104
105 if (mesg[mlen-1] != '\n')
106 return -EINVAL;
107 mesg[mlen-1] = 0;
108
109 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
110 err = -ENOMEM;
111 if (!buf) goto out;
112
113 err = -EINVAL;
114 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
115 goto out;
116
117 err = -ENOENT;
118 dom = auth_domain_find(buf);
119 if (!dom)
120 goto out;
121 dprintk("found domain %s\n", buf);
122
123 err = -EINVAL;
124 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
125 goto out;
126 fsidtype = simple_strtoul(buf, &ep, 10);
127 if (*ep)
128 goto out;
129 dprintk("found fsidtype %d\n", fsidtype);
130 if (key_len(fsidtype)==0) /* invalid type */
131 goto out;
132 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
133 goto out;
134 dprintk("found fsid length %d\n", len);
135 if (len != key_len(fsidtype))
136 goto out;
137
138 /* OK, we seem to have a valid key */
139 key.h.flags = 0;
140 key.h.expiry_time = get_expiry(&mesg);
141 if (key.h.expiry_time == 0)
142 goto out;
143
144 key.ek_client = dom;
145 key.ek_fsidtype = fsidtype;
146 memcpy(key.ek_fsid, buf, len);
147
148 ek = svc_expkey_lookup(&key);
149 err = -ENOMEM;
150 if (!ek)
151 goto out;
152
153 /* now we want a pathname, or empty meaning NEGATIVE */
154 err = -EINVAL;
155 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) < 0)
156 goto out;
157 dprintk("Path seems to be <%s>\n", buf);
158 err = 0;
159 if (len == 0) {
160 set_bit(CACHE_NEGATIVE, &key.h.flags);
161 ek = svc_expkey_update(&key, ek);
162 if (ek)
163 cache_put(&ek->h, &svc_expkey_cache);
164 else err = -ENOMEM;
165 } else {
166 struct nameidata nd;
167 err = path_lookup(buf, 0, &nd);
168 if (err)
169 goto out;
170
171 dprintk("Found the path %s\n", buf);
172 key.ek_mnt = nd.mnt;
173 key.ek_dentry = nd.dentry;
174
175 ek = svc_expkey_update(&key, ek);
176 if (ek)
177 cache_put(&ek->h, &svc_expkey_cache);
178 else
179 err = -ENOMEM;
180 path_release(&nd);
181 }
182 cache_flush();
183 out:
184 if (dom)
185 auth_domain_put(dom);
186 kfree(buf);
187 return err;
188 }
189
190 static int expkey_show(struct seq_file *m,
191 struct cache_detail *cd,
192 struct cache_head *h)
193 {
194 struct svc_expkey *ek ;
195 int i;
196
197 if (h ==NULL) {
198 seq_puts(m, "#domain fsidtype fsid [path]\n");
199 return 0;
200 }
201 ek = container_of(h, struct svc_expkey, h);
202 seq_printf(m, "%s %d 0x", ek->ek_client->name,
203 ek->ek_fsidtype);
204 for (i=0; i < key_len(ek->ek_fsidtype)/4; i++)
205 seq_printf(m, "%08x", ek->ek_fsid[i]);
206 if (test_bit(CACHE_VALID, &h->flags) &&
207 !test_bit(CACHE_NEGATIVE, &h->flags)) {
208 seq_printf(m, " ");
209 seq_path(m, ek->ek_mnt, ek->ek_dentry, "\\ \t\n");
210 }
211 seq_printf(m, "\n");
212 return 0;
213 }
214
215 static inline int expkey_match (struct cache_head *a, struct cache_head *b)
216 {
217 struct svc_expkey *orig = container_of(a, struct svc_expkey, h);
218 struct svc_expkey *new = container_of(b, struct svc_expkey, h);
219
220 if (orig->ek_fsidtype != new->ek_fsidtype ||
221 orig->ek_client != new->ek_client ||
222 memcmp(orig->ek_fsid, new->ek_fsid, key_len(orig->ek_fsidtype)) != 0)
223 return 0;
224 return 1;
225 }
226
227 static inline void expkey_init(struct cache_head *cnew,
228 struct cache_head *citem)
229 {
230 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
231 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
232
233 kref_get(&item->ek_client->ref);
234 new->ek_client = item->ek_client;
235 new->ek_fsidtype = item->ek_fsidtype;
236
237 memcpy(new->ek_fsid, item->ek_fsid, sizeof(new->ek_fsid));
238 }
239
240 static inline void expkey_update(struct cache_head *cnew,
241 struct cache_head *citem)
242 {
243 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
244 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
245
246 new->ek_mnt = mntget(item->ek_mnt);
247 new->ek_dentry = dget(item->ek_dentry);
248 }
249
250 static struct cache_head *expkey_alloc(void)
251 {
252 struct svc_expkey *i = kmalloc(sizeof(*i), GFP_KERNEL);
253 if (i)
254 return &i->h;
255 else
256 return NULL;
257 }
258
259 static struct cache_detail svc_expkey_cache = {
260 .owner = THIS_MODULE,
261 .hash_size = EXPKEY_HASHMAX,
262 .hash_table = expkey_table,
263 .name = "nfsd.fh",
264 .cache_put = expkey_put,
265 .cache_request = expkey_request,
266 .cache_parse = expkey_parse,
267 .cache_show = expkey_show,
268 .match = expkey_match,
269 .init = expkey_init,
270 .update = expkey_update,
271 .alloc = expkey_alloc,
272 };
273
274 static struct svc_expkey *
275 svc_expkey_lookup(struct svc_expkey *item)
276 {
277 struct cache_head *ch;
278 int hash = item->ek_fsidtype;
279 char * cp = (char*)item->ek_fsid;
280 int len = key_len(item->ek_fsidtype);
281
282 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
283 hash ^= hash_ptr(item->ek_client, EXPKEY_HASHBITS);
284 hash &= EXPKEY_HASHMASK;
285
286 ch = sunrpc_cache_lookup(&svc_expkey_cache, &item->h,
287 hash);
288 if (ch)
289 return container_of(ch, struct svc_expkey, h);
290 else
291 return NULL;
292 }
293
294 static struct svc_expkey *
295 svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old)
296 {
297 struct cache_head *ch;
298 int hash = new->ek_fsidtype;
299 char * cp = (char*)new->ek_fsid;
300 int len = key_len(new->ek_fsidtype);
301
302 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
303 hash ^= hash_ptr(new->ek_client, EXPKEY_HASHBITS);
304 hash &= EXPKEY_HASHMASK;
305
306 ch = sunrpc_cache_update(&svc_expkey_cache, &new->h,
307 &old->h, hash);
308 if (ch)
309 return container_of(ch, struct svc_expkey, h);
310 else
311 return NULL;
312 }
313
314
315 #define EXPORT_HASHBITS 8
316 #define EXPORT_HASHMAX (1<< EXPORT_HASHBITS)
317 #define EXPORT_HASHMASK (EXPORT_HASHMAX -1)
318
319 static struct cache_head *export_table[EXPORT_HASHMAX];
320
321 static void nfsd4_fslocs_free(struct nfsd4_fs_locations *fsloc)
322 {
323 int i;
324
325 for (i = 0; i < fsloc->locations_count; i++) {
326 kfree(fsloc->locations[i].path);
327 kfree(fsloc->locations[i].hosts);
328 }
329 kfree(fsloc->locations);
330 }
331
332 static void svc_export_put(struct kref *ref)
333 {
334 struct svc_export *exp = container_of(ref, struct svc_export, h.ref);
335 dput(exp->ex_dentry);
336 mntput(exp->ex_mnt);
337 auth_domain_put(exp->ex_client);
338 kfree(exp->ex_path);
339 nfsd4_fslocs_free(&exp->ex_fslocs);
340 kfree(exp);
341 }
342
343 static void svc_export_request(struct cache_detail *cd,
344 struct cache_head *h,
345 char **bpp, int *blen)
346 {
347 /* client path */
348 struct svc_export *exp = container_of(h, struct svc_export, h);
349 char *pth;
350
351 qword_add(bpp, blen, exp->ex_client->name);
352 pth = d_path(exp->ex_dentry, exp->ex_mnt, *bpp, *blen);
353 if (IS_ERR(pth)) {
354 /* is this correct? */
355 (*bpp)[0] = '\n';
356 return;
357 }
358 qword_add(bpp, blen, pth);
359 (*bpp)[-1] = '\n';
360 }
361
362 static struct svc_export *svc_export_update(struct svc_export *new,
363 struct svc_export *old);
364 static struct svc_export *svc_export_lookup(struct svc_export *);
365
366 static int check_export(struct inode *inode, int flags, unsigned char *uuid)
367 {
368
369 /* We currently export only dirs and regular files.
370 * This is what umountd does.
371 */
372 if (!S_ISDIR(inode->i_mode) &&
373 !S_ISREG(inode->i_mode))
374 return -ENOTDIR;
375
376 /* There are two requirements on a filesystem to be exportable.
377 * 1: We must be able to identify the filesystem from a number.
378 * either a device number (so FS_REQUIRES_DEV needed)
379 * or an FSID number (so NFSEXP_FSID or ->uuid is needed).
380 * 2: We must be able to find an inode from a filehandle.
381 * This means that s_export_op must be set.
382 */
383 if (!(inode->i_sb->s_type->fs_flags & FS_REQUIRES_DEV) &&
384 !(flags & NFSEXP_FSID) &&
385 uuid == NULL) {
386 dprintk("exp_export: export of non-dev fs without fsid\n");
387 return -EINVAL;
388 }
389 if (!inode->i_sb->s_export_op) {
390 dprintk("exp_export: export of invalid fs type.\n");
391 return -EINVAL;
392 }
393
394 /* Ok, we can export it */;
395 if (!inode->i_sb->s_export_op->find_exported_dentry)
396 inode->i_sb->s_export_op->find_exported_dentry =
397 find_exported_dentry;
398 return 0;
399
400 }
401
402 #ifdef CONFIG_NFSD_V4
403
404 static int
405 fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc)
406 {
407 int len;
408 int migrated, i, err;
409
410 /* listsize */
411 err = get_int(mesg, &fsloc->locations_count);
412 if (err)
413 return err;
414 if (fsloc->locations_count > MAX_FS_LOCATIONS)
415 return -EINVAL;
416 if (fsloc->locations_count == 0)
417 return 0;
418
419 fsloc->locations = kzalloc(fsloc->locations_count
420 * sizeof(struct nfsd4_fs_location), GFP_KERNEL);
421 if (!fsloc->locations)
422 return -ENOMEM;
423 for (i=0; i < fsloc->locations_count; i++) {
424 /* colon separated host list */
425 err = -EINVAL;
426 len = qword_get(mesg, buf, PAGE_SIZE);
427 if (len <= 0)
428 goto out_free_all;
429 err = -ENOMEM;
430 fsloc->locations[i].hosts = kstrdup(buf, GFP_KERNEL);
431 if (!fsloc->locations[i].hosts)
432 goto out_free_all;
433 err = -EINVAL;
434 /* slash separated path component list */
435 len = qword_get(mesg, buf, PAGE_SIZE);
436 if (len <= 0)
437 goto out_free_all;
438 err = -ENOMEM;
439 fsloc->locations[i].path = kstrdup(buf, GFP_KERNEL);
440 if (!fsloc->locations[i].path)
441 goto out_free_all;
442 }
443 /* migrated */
444 err = get_int(mesg, &migrated);
445 if (err)
446 goto out_free_all;
447 err = -EINVAL;
448 if (migrated < 0 || migrated > 1)
449 goto out_free_all;
450 fsloc->migrated = migrated;
451 return 0;
452 out_free_all:
453 nfsd4_fslocs_free(fsloc);
454 return err;
455 }
456
457 static int secinfo_parse(char **mesg, char *buf, struct svc_export *exp)
458 {
459 int listsize, err;
460 struct exp_flavor_info *f;
461
462 err = get_int(mesg, &listsize);
463 if (err)
464 return err;
465 if (listsize < 0 || listsize > MAX_SECINFO_LIST)
466 return -EINVAL;
467
468 for (f = exp->ex_flavors; f < exp->ex_flavors + listsize; f++) {
469 err = get_int(mesg, &f->pseudoflavor);
470 if (err)
471 return err;
472 /*
473 * Just a quick sanity check; we could also try to check
474 * whether this pseudoflavor is supported, but at worst
475 * an unsupported pseudoflavor on the export would just
476 * be a pseudoflavor that won't match the flavor of any
477 * authenticated request. The administrator will
478 * probably discover the problem when someone fails to
479 * authenticate.
480 */
481 if (f->pseudoflavor < 0)
482 return -EINVAL;
483 err = get_int(mesg, &f->flags);
484 if (err)
485 return err;
486 /* Only some flags are allowed to differ between flavors: */
487 if (~NFSEXP_SECINFO_FLAGS & (f->flags ^ exp->ex_flags))
488 return -EINVAL;
489 }
490 exp->ex_nflavors = listsize;
491 return 0;
492 }
493
494 #else /* CONFIG_NFSD_V4 */
495 static inline int
496 fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc){return 0;}
497 static inline int
498 secinfo_parse(char **mesg, char *buf, struct svc_export *exp) { return 0; }
499 #endif
500
501 static int svc_export_parse(struct cache_detail *cd, char *mesg, int mlen)
502 {
503 /* client path expiry [flags anonuid anongid fsid] */
504 char *buf;
505 int len;
506 int err;
507 struct auth_domain *dom = NULL;
508 struct nameidata nd;
509 struct svc_export exp, *expp;
510 int an_int;
511
512 nd.dentry = NULL;
513 exp.ex_path = NULL;
514
515 /* fs locations */
516 exp.ex_fslocs.locations = NULL;
517 exp.ex_fslocs.locations_count = 0;
518 exp.ex_fslocs.migrated = 0;
519
520 exp.ex_uuid = NULL;
521
522 /* secinfo */
523 exp.ex_nflavors = 0;
524
525 if (mesg[mlen-1] != '\n')
526 return -EINVAL;
527 mesg[mlen-1] = 0;
528
529 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
530 err = -ENOMEM;
531 if (!buf) goto out;
532
533 /* client */
534 len = qword_get(&mesg, buf, PAGE_SIZE);
535 err = -EINVAL;
536 if (len <= 0) goto out;
537
538 err = -ENOENT;
539 dom = auth_domain_find(buf);
540 if (!dom)
541 goto out;
542
543 /* path */
544 err = -EINVAL;
545 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
546 goto out;
547 err = path_lookup(buf, 0, &nd);
548 if (err) goto out_no_path;
549
550 exp.h.flags = 0;
551 exp.ex_client = dom;
552 exp.ex_mnt = nd.mnt;
553 exp.ex_dentry = nd.dentry;
554 exp.ex_path = kstrdup(buf, GFP_KERNEL);
555 err = -ENOMEM;
556 if (!exp.ex_path)
557 goto out;
558
559 /* expiry */
560 err = -EINVAL;
561 exp.h.expiry_time = get_expiry(&mesg);
562 if (exp.h.expiry_time == 0)
563 goto out;
564
565 /* flags */
566 err = get_int(&mesg, &an_int);
567 if (err == -ENOENT) {
568 err = 0;
569 set_bit(CACHE_NEGATIVE, &exp.h.flags);
570 } else {
571 if (err || an_int < 0) goto out;
572 exp.ex_flags= an_int;
573
574 /* anon uid */
575 err = get_int(&mesg, &an_int);
576 if (err) goto out;
577 exp.ex_anon_uid= an_int;
578
579 /* anon gid */
580 err = get_int(&mesg, &an_int);
581 if (err) goto out;
582 exp.ex_anon_gid= an_int;
583
584 /* fsid */
585 err = get_int(&mesg, &an_int);
586 if (err) goto out;
587 exp.ex_fsid = an_int;
588
589 while ((len = qword_get(&mesg, buf, PAGE_SIZE)) > 0) {
590 if (strcmp(buf, "fsloc") == 0)
591 err = fsloc_parse(&mesg, buf, &exp.ex_fslocs);
592 else if (strcmp(buf, "uuid") == 0) {
593 /* expect a 16 byte uuid encoded as \xXXXX... */
594 len = qword_get(&mesg, buf, PAGE_SIZE);
595 if (len != 16)
596 err = -EINVAL;
597 else {
598 exp.ex_uuid =
599 kmemdup(buf, 16, GFP_KERNEL);
600 if (exp.ex_uuid == NULL)
601 err = -ENOMEM;
602 }
603 } else if (strcmp(buf, "secinfo") == 0)
604 err = secinfo_parse(&mesg, buf, &exp);
605 else
606 /* quietly ignore unknown words and anything
607 * following. Newer user-space can try to set
608 * new values, then see what the result was.
609 */
610 break;
611 if (err)
612 goto out;
613 }
614
615 err = check_export(nd.dentry->d_inode, exp.ex_flags,
616 exp.ex_uuid);
617 if (err) goto out;
618 }
619
620 expp = svc_export_lookup(&exp);
621 if (expp)
622 expp = svc_export_update(&exp, expp);
623 else
624 err = -ENOMEM;
625 cache_flush();
626 if (expp == NULL)
627 err = -ENOMEM;
628 else
629 exp_put(expp);
630 out:
631 nfsd4_fslocs_free(&exp.ex_fslocs);
632 kfree(exp.ex_uuid);
633 kfree(exp.ex_path);
634 if (nd.dentry)
635 path_release(&nd);
636 out_no_path:
637 if (dom)
638 auth_domain_put(dom);
639 kfree(buf);
640 return err;
641 }
642
643 static void exp_flags(struct seq_file *m, int flag, int fsid,
644 uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fslocs);
645 static void show_secinfo(struct seq_file *m, struct svc_export *exp);
646
647 static int svc_export_show(struct seq_file *m,
648 struct cache_detail *cd,
649 struct cache_head *h)
650 {
651 struct svc_export *exp ;
652
653 if (h ==NULL) {
654 seq_puts(m, "#path domain(flags)\n");
655 return 0;
656 }
657 exp = container_of(h, struct svc_export, h);
658 seq_path(m, exp->ex_mnt, exp->ex_dentry, " \t\n\\");
659 seq_putc(m, '\t');
660 seq_escape(m, exp->ex_client->name, " \t\n\\");
661 seq_putc(m, '(');
662 if (test_bit(CACHE_VALID, &h->flags) &&
663 !test_bit(CACHE_NEGATIVE, &h->flags)) {
664 exp_flags(m, exp->ex_flags, exp->ex_fsid,
665 exp->ex_anon_uid, exp->ex_anon_gid, &exp->ex_fslocs);
666 if (exp->ex_uuid) {
667 int i;
668 seq_puts(m, ",uuid=");
669 for (i=0; i<16; i++) {
670 if ((i&3) == 0 && i)
671 seq_putc(m, ':');
672 seq_printf(m, "%02x", exp->ex_uuid[i]);
673 }
674 }
675 show_secinfo(m, exp);
676 }
677 seq_puts(m, ")\n");
678 return 0;
679 }
680 static int svc_export_match(struct cache_head *a, struct cache_head *b)
681 {
682 struct svc_export *orig = container_of(a, struct svc_export, h);
683 struct svc_export *new = container_of(b, struct svc_export, h);
684 return orig->ex_client == new->ex_client &&
685 orig->ex_dentry == new->ex_dentry &&
686 orig->ex_mnt == new->ex_mnt;
687 }
688
689 static void svc_export_init(struct cache_head *cnew, struct cache_head *citem)
690 {
691 struct svc_export *new = container_of(cnew, struct svc_export, h);
692 struct svc_export *item = container_of(citem, struct svc_export, h);
693
694 kref_get(&item->ex_client->ref);
695 new->ex_client = item->ex_client;
696 new->ex_dentry = dget(item->ex_dentry);
697 new->ex_mnt = mntget(item->ex_mnt);
698 new->ex_path = NULL;
699 new->ex_fslocs.locations = NULL;
700 new->ex_fslocs.locations_count = 0;
701 new->ex_fslocs.migrated = 0;
702 }
703
704 static void export_update(struct cache_head *cnew, struct cache_head *citem)
705 {
706 struct svc_export *new = container_of(cnew, struct svc_export, h);
707 struct svc_export *item = container_of(citem, struct svc_export, h);
708 int i;
709
710 new->ex_flags = item->ex_flags;
711 new->ex_anon_uid = item->ex_anon_uid;
712 new->ex_anon_gid = item->ex_anon_gid;
713 new->ex_fsid = item->ex_fsid;
714 new->ex_uuid = item->ex_uuid;
715 item->ex_uuid = NULL;
716 new->ex_path = item->ex_path;
717 item->ex_path = NULL;
718 new->ex_fslocs.locations = item->ex_fslocs.locations;
719 item->ex_fslocs.locations = NULL;
720 new->ex_fslocs.locations_count = item->ex_fslocs.locations_count;
721 item->ex_fslocs.locations_count = 0;
722 new->ex_fslocs.migrated = item->ex_fslocs.migrated;
723 item->ex_fslocs.migrated = 0;
724 new->ex_nflavors = item->ex_nflavors;
725 for (i = 0; i < MAX_SECINFO_LIST; i++) {
726 new->ex_flavors[i] = item->ex_flavors[i];
727 }
728 }
729
730 static struct cache_head *svc_export_alloc(void)
731 {
732 struct svc_export *i = kmalloc(sizeof(*i), GFP_KERNEL);
733 if (i)
734 return &i->h;
735 else
736 return NULL;
737 }
738
739 struct cache_detail svc_export_cache = {
740 .owner = THIS_MODULE,
741 .hash_size = EXPORT_HASHMAX,
742 .hash_table = export_table,
743 .name = "nfsd.export",
744 .cache_put = svc_export_put,
745 .cache_request = svc_export_request,
746 .cache_parse = svc_export_parse,
747 .cache_show = svc_export_show,
748 .match = svc_export_match,
749 .init = svc_export_init,
750 .update = export_update,
751 .alloc = svc_export_alloc,
752 };
753
754 static struct svc_export *
755 svc_export_lookup(struct svc_export *exp)
756 {
757 struct cache_head *ch;
758 int hash;
759 hash = hash_ptr(exp->ex_client, EXPORT_HASHBITS);
760 hash ^= hash_ptr(exp->ex_dentry, EXPORT_HASHBITS);
761 hash ^= hash_ptr(exp->ex_mnt, EXPORT_HASHBITS);
762
763 ch = sunrpc_cache_lookup(&svc_export_cache, &exp->h,
764 hash);
765 if (ch)
766 return container_of(ch, struct svc_export, h);
767 else
768 return NULL;
769 }
770
771 static struct svc_export *
772 svc_export_update(struct svc_export *new, struct svc_export *old)
773 {
774 struct cache_head *ch;
775 int hash;
776 hash = hash_ptr(old->ex_client, EXPORT_HASHBITS);
777 hash ^= hash_ptr(old->ex_dentry, EXPORT_HASHBITS);
778 hash ^= hash_ptr(old->ex_mnt, EXPORT_HASHBITS);
779
780 ch = sunrpc_cache_update(&svc_export_cache, &new->h,
781 &old->h,
782 hash);
783 if (ch)
784 return container_of(ch, struct svc_export, h);
785 else
786 return NULL;
787 }
788
789
790 static struct svc_expkey *
791 exp_find_key(svc_client *clp, int fsid_type, u32 *fsidv, struct cache_req *reqp)
792 {
793 struct svc_expkey key, *ek;
794 int err;
795
796 if (!clp)
797 return ERR_PTR(-ENOENT);
798
799 key.ek_client = clp;
800 key.ek_fsidtype = fsid_type;
801 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
802
803 ek = svc_expkey_lookup(&key);
804 if (ek == NULL)
805 return ERR_PTR(-ENOMEM);
806 err = cache_check(&svc_expkey_cache, &ek->h, reqp);
807 if (err)
808 return ERR_PTR(err);
809 return ek;
810 }
811
812 static int exp_set_key(svc_client *clp, int fsid_type, u32 *fsidv,
813 struct svc_export *exp)
814 {
815 struct svc_expkey key, *ek;
816
817 key.ek_client = clp;
818 key.ek_fsidtype = fsid_type;
819 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
820 key.ek_mnt = exp->ex_mnt;
821 key.ek_dentry = exp->ex_dentry;
822 key.h.expiry_time = NEVER;
823 key.h.flags = 0;
824
825 ek = svc_expkey_lookup(&key);
826 if (ek)
827 ek = svc_expkey_update(&key,ek);
828 if (ek) {
829 cache_put(&ek->h, &svc_expkey_cache);
830 return 0;
831 }
832 return -ENOMEM;
833 }
834
835 /*
836 * Find the client's export entry matching xdev/xino.
837 */
838 static inline struct svc_expkey *
839 exp_get_key(svc_client *clp, dev_t dev, ino_t ino)
840 {
841 u32 fsidv[3];
842
843 if (old_valid_dev(dev)) {
844 mk_fsid(FSID_DEV, fsidv, dev, ino, 0, NULL);
845 return exp_find_key(clp, FSID_DEV, fsidv, NULL);
846 }
847 mk_fsid(FSID_ENCODE_DEV, fsidv, dev, ino, 0, NULL);
848 return exp_find_key(clp, FSID_ENCODE_DEV, fsidv, NULL);
849 }
850
851 /*
852 * Find the client's export entry matching fsid
853 */
854 static inline struct svc_expkey *
855 exp_get_fsid_key(svc_client *clp, int fsid)
856 {
857 u32 fsidv[2];
858
859 mk_fsid(FSID_NUM, fsidv, 0, 0, fsid, NULL);
860
861 return exp_find_key(clp, FSID_NUM, fsidv, NULL);
862 }
863
864 svc_export *
865 exp_get_by_name(svc_client *clp, struct vfsmount *mnt, struct dentry *dentry,
866 struct cache_req *reqp)
867 {
868 struct svc_export *exp, key;
869 int err;
870
871 if (!clp)
872 return ERR_PTR(-ENOENT);
873
874 key.ex_client = clp;
875 key.ex_mnt = mnt;
876 key.ex_dentry = dentry;
877
878 exp = svc_export_lookup(&key);
879 if (exp == NULL)
880 return ERR_PTR(-ENOMEM);
881 err = cache_check(&svc_export_cache, &exp->h, reqp);
882 if (err)
883 return ERR_PTR(err);
884 return exp;
885 }
886
887 /*
888 * Find the export entry for a given dentry.
889 */
890 struct svc_export *
891 exp_parent(svc_client *clp, struct vfsmount *mnt, struct dentry *dentry,
892 struct cache_req *reqp)
893 {
894 svc_export *exp;
895
896 dget(dentry);
897 exp = exp_get_by_name(clp, mnt, dentry, reqp);
898
899 while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(dentry)) {
900 struct dentry *parent;
901
902 parent = dget_parent(dentry);
903 dput(dentry);
904 dentry = parent;
905 exp = exp_get_by_name(clp, mnt, dentry, reqp);
906 }
907 dput(dentry);
908 return exp;
909 }
910
911 /*
912 * Hashtable locking. Write locks are placed only by user processes
913 * wanting to modify export information.
914 * Write locking only done in this file. Read locking
915 * needed externally.
916 */
917
918 static DECLARE_RWSEM(hash_sem);
919
920 void
921 exp_readlock(void)
922 {
923 down_read(&hash_sem);
924 }
925
926 static inline void
927 exp_writelock(void)
928 {
929 down_write(&hash_sem);
930 }
931
932 void
933 exp_readunlock(void)
934 {
935 up_read(&hash_sem);
936 }
937
938 static inline void
939 exp_writeunlock(void)
940 {
941 up_write(&hash_sem);
942 }
943
944 static void exp_fsid_unhash(struct svc_export *exp)
945 {
946 struct svc_expkey *ek;
947
948 if ((exp->ex_flags & NFSEXP_FSID) == 0)
949 return;
950
951 ek = exp_get_fsid_key(exp->ex_client, exp->ex_fsid);
952 if (!IS_ERR(ek)) {
953 ek->h.expiry_time = get_seconds()-1;
954 cache_put(&ek->h, &svc_expkey_cache);
955 }
956 svc_expkey_cache.nextcheck = get_seconds();
957 }
958
959 static int exp_fsid_hash(svc_client *clp, struct svc_export *exp)
960 {
961 u32 fsid[2];
962
963 if ((exp->ex_flags & NFSEXP_FSID) == 0)
964 return 0;
965
966 mk_fsid(FSID_NUM, fsid, 0, 0, exp->ex_fsid, NULL);
967 return exp_set_key(clp, FSID_NUM, fsid, exp);
968 }
969
970 static int exp_hash(struct auth_domain *clp, struct svc_export *exp)
971 {
972 u32 fsid[2];
973 struct inode *inode = exp->ex_dentry->d_inode;
974 dev_t dev = inode->i_sb->s_dev;
975
976 if (old_valid_dev(dev)) {
977 mk_fsid(FSID_DEV, fsid, dev, inode->i_ino, 0, NULL);
978 return exp_set_key(clp, FSID_DEV, fsid, exp);
979 }
980 mk_fsid(FSID_ENCODE_DEV, fsid, dev, inode->i_ino, 0, NULL);
981 return exp_set_key(clp, FSID_ENCODE_DEV, fsid, exp);
982 }
983
984 static void exp_unhash(struct svc_export *exp)
985 {
986 struct svc_expkey *ek;
987 struct inode *inode = exp->ex_dentry->d_inode;
988
989 ek = exp_get_key(exp->ex_client, inode->i_sb->s_dev, inode->i_ino);
990 if (!IS_ERR(ek)) {
991 ek->h.expiry_time = get_seconds()-1;
992 cache_put(&ek->h, &svc_expkey_cache);
993 }
994 svc_expkey_cache.nextcheck = get_seconds();
995 }
996
997 /*
998 * Export a file system.
999 */
1000 int
1001 exp_export(struct nfsctl_export *nxp)
1002 {
1003 svc_client *clp;
1004 struct svc_export *exp = NULL;
1005 struct svc_export new;
1006 struct svc_expkey *fsid_key = NULL;
1007 struct nameidata nd;
1008 int err;
1009
1010 /* Consistency check */
1011 err = -EINVAL;
1012 if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
1013 !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
1014 goto out;
1015
1016 dprintk("exp_export called for %s:%s (%x/%ld fl %x).\n",
1017 nxp->ex_client, nxp->ex_path,
1018 (unsigned)nxp->ex_dev, (long)nxp->ex_ino,
1019 nxp->ex_flags);
1020
1021 /* Try to lock the export table for update */
1022 exp_writelock();
1023
1024 /* Look up client info */
1025 if (!(clp = auth_domain_find(nxp->ex_client)))
1026 goto out_unlock;
1027
1028
1029 /* Look up the dentry */
1030 err = path_lookup(nxp->ex_path, 0, &nd);
1031 if (err)
1032 goto out_unlock;
1033 err = -EINVAL;
1034
1035 exp = exp_get_by_name(clp, nd.mnt, nd.dentry, NULL);
1036
1037 memset(&new, 0, sizeof(new));
1038
1039 /* must make sure there won't be an ex_fsid clash */
1040 if ((nxp->ex_flags & NFSEXP_FSID) &&
1041 (!IS_ERR(fsid_key = exp_get_fsid_key(clp, nxp->ex_dev))) &&
1042 fsid_key->ek_mnt &&
1043 (fsid_key->ek_mnt != nd.mnt || fsid_key->ek_dentry != nd.dentry) )
1044 goto finish;
1045
1046 if (!IS_ERR(exp)) {
1047 /* just a flags/id/fsid update */
1048
1049 exp_fsid_unhash(exp);
1050 exp->ex_flags = nxp->ex_flags;
1051 exp->ex_anon_uid = nxp->ex_anon_uid;
1052 exp->ex_anon_gid = nxp->ex_anon_gid;
1053 exp->ex_fsid = nxp->ex_dev;
1054
1055 err = exp_fsid_hash(clp, exp);
1056 goto finish;
1057 }
1058
1059 err = check_export(nd.dentry->d_inode, nxp->ex_flags, NULL);
1060 if (err) goto finish;
1061
1062 err = -ENOMEM;
1063
1064 dprintk("nfsd: creating export entry %p for client %p\n", exp, clp);
1065
1066 new.h.expiry_time = NEVER;
1067 new.h.flags = 0;
1068 new.ex_path = kstrdup(nxp->ex_path, GFP_KERNEL);
1069 if (!new.ex_path)
1070 goto finish;
1071 new.ex_client = clp;
1072 new.ex_mnt = nd.mnt;
1073 new.ex_dentry = nd.dentry;
1074 new.ex_flags = nxp->ex_flags;
1075 new.ex_anon_uid = nxp->ex_anon_uid;
1076 new.ex_anon_gid = nxp->ex_anon_gid;
1077 new.ex_fsid = nxp->ex_dev;
1078
1079 exp = svc_export_lookup(&new);
1080 if (exp)
1081 exp = svc_export_update(&new, exp);
1082
1083 if (!exp)
1084 goto finish;
1085
1086 if (exp_hash(clp, exp) ||
1087 exp_fsid_hash(clp, exp)) {
1088 /* failed to create at least one index */
1089 exp_do_unexport(exp);
1090 cache_flush();
1091 } else
1092 err = 0;
1093 finish:
1094 if (new.ex_path)
1095 kfree(new.ex_path);
1096 if (exp)
1097 exp_put(exp);
1098 if (fsid_key && !IS_ERR(fsid_key))
1099 cache_put(&fsid_key->h, &svc_expkey_cache);
1100 if (clp)
1101 auth_domain_put(clp);
1102 path_release(&nd);
1103 out_unlock:
1104 exp_writeunlock();
1105 out:
1106 return err;
1107 }
1108
1109 /*
1110 * Unexport a file system. The export entry has already
1111 * been removed from the client's list of exported fs's.
1112 */
1113 static void
1114 exp_do_unexport(svc_export *unexp)
1115 {
1116 unexp->h.expiry_time = get_seconds()-1;
1117 svc_export_cache.nextcheck = get_seconds();
1118 exp_unhash(unexp);
1119 exp_fsid_unhash(unexp);
1120 }
1121
1122
1123 /*
1124 * unexport syscall.
1125 */
1126 int
1127 exp_unexport(struct nfsctl_export *nxp)
1128 {
1129 struct auth_domain *dom;
1130 svc_export *exp;
1131 struct nameidata nd;
1132 int err;
1133
1134 /* Consistency check */
1135 if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
1136 !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
1137 return -EINVAL;
1138
1139 exp_writelock();
1140
1141 err = -EINVAL;
1142 dom = auth_domain_find(nxp->ex_client);
1143 if (!dom) {
1144 dprintk("nfsd: unexport couldn't find %s\n", nxp->ex_client);
1145 goto out_unlock;
1146 }
1147
1148 err = path_lookup(nxp->ex_path, 0, &nd);
1149 if (err)
1150 goto out_domain;
1151
1152 err = -EINVAL;
1153 exp = exp_get_by_name(dom, nd.mnt, nd.dentry, NULL);
1154 path_release(&nd);
1155 if (IS_ERR(exp))
1156 goto out_domain;
1157
1158 exp_do_unexport(exp);
1159 exp_put(exp);
1160 err = 0;
1161
1162 out_domain:
1163 auth_domain_put(dom);
1164 cache_flush();
1165 out_unlock:
1166 exp_writeunlock();
1167 return err;
1168 }
1169
1170 /*
1171 * Obtain the root fh on behalf of a client.
1172 * This could be done in user space, but I feel that it adds some safety
1173 * since its harder to fool a kernel module than a user space program.
1174 */
1175 int
1176 exp_rootfh(svc_client *clp, char *path, struct knfsd_fh *f, int maxsize)
1177 {
1178 struct svc_export *exp;
1179 struct nameidata nd;
1180 struct inode *inode;
1181 struct svc_fh fh;
1182 int err;
1183
1184 err = -EPERM;
1185 /* NB: we probably ought to check that it's NUL-terminated */
1186 if (path_lookup(path, 0, &nd)) {
1187 printk("nfsd: exp_rootfh path not found %s", path);
1188 return err;
1189 }
1190 inode = nd.dentry->d_inode;
1191
1192 dprintk("nfsd: exp_rootfh(%s [%p] %s:%s/%ld)\n",
1193 path, nd.dentry, clp->name,
1194 inode->i_sb->s_id, inode->i_ino);
1195 exp = exp_parent(clp, nd.mnt, nd.dentry, NULL);
1196 if (IS_ERR(exp)) {
1197 err = PTR_ERR(exp);
1198 goto out;
1199 }
1200
1201 /*
1202 * fh must be initialized before calling fh_compose
1203 */
1204 fh_init(&fh, maxsize);
1205 if (fh_compose(&fh, exp, nd.dentry, NULL))
1206 err = -EINVAL;
1207 else
1208 err = 0;
1209 memcpy(f, &fh.fh_handle, sizeof(struct knfsd_fh));
1210 fh_put(&fh);
1211 exp_put(exp);
1212 out:
1213 path_release(&nd);
1214 return err;
1215 }
1216
1217 struct svc_export *
1218 exp_find(struct auth_domain *clp, int fsid_type, u32 *fsidv,
1219 struct cache_req *reqp)
1220 {
1221 struct svc_export *exp;
1222 struct svc_expkey *ek = exp_find_key(clp, fsid_type, fsidv, reqp);
1223 if (IS_ERR(ek))
1224 return ERR_PTR(PTR_ERR(ek));
1225
1226 exp = exp_get_by_name(clp, ek->ek_mnt, ek->ek_dentry, reqp);
1227 cache_put(&ek->h, &svc_expkey_cache);
1228
1229 if (IS_ERR(exp))
1230 return ERR_PTR(PTR_ERR(exp));
1231 return exp;
1232 }
1233
1234 __be32 check_nfsd_access(struct svc_export *exp, struct svc_rqst *rqstp)
1235 {
1236 struct exp_flavor_info *f;
1237 struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1238
1239 /* legacy gss-only clients are always OK: */
1240 if (exp->ex_client == rqstp->rq_gssclient)
1241 return 0;
1242 /* ip-address based client; check sec= export option: */
1243 for (f = exp->ex_flavors; f < end; f++) {
1244 if (f->pseudoflavor == rqstp->rq_flavor)
1245 return 0;
1246 }
1247 /* defaults in absence of sec= options: */
1248 if (exp->ex_nflavors == 0) {
1249 if (rqstp->rq_flavor == RPC_AUTH_NULL ||
1250 rqstp->rq_flavor == RPC_AUTH_UNIX)
1251 return 0;
1252 }
1253 return nfserr_wrongsec;
1254 }
1255
1256 /*
1257 * Uses rq_client and rq_gssclient to find an export; uses rq_client (an
1258 * auth_unix client) if it's available and has secinfo information;
1259 * otherwise, will try to use rq_gssclient.
1260 *
1261 * Called from functions that handle requests; functions that do work on
1262 * behalf of mountd are passed a single client name to use, and should
1263 * use exp_get_by_name() or exp_find().
1264 */
1265 struct svc_export *
1266 rqst_exp_get_by_name(struct svc_rqst *rqstp, struct vfsmount *mnt,
1267 struct dentry *dentry)
1268 {
1269 struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
1270
1271 if (rqstp->rq_client == NULL)
1272 goto gss;
1273
1274 /* First try the auth_unix client: */
1275 exp = exp_get_by_name(rqstp->rq_client, mnt, dentry,
1276 &rqstp->rq_chandle);
1277 if (PTR_ERR(exp) == -ENOENT)
1278 goto gss;
1279 if (IS_ERR(exp))
1280 return exp;
1281 /* If it has secinfo, assume there are no gss/... clients */
1282 if (exp->ex_nflavors > 0)
1283 return exp;
1284 gss:
1285 /* Otherwise, try falling back on gss client */
1286 if (rqstp->rq_gssclient == NULL)
1287 return exp;
1288 gssexp = exp_get_by_name(rqstp->rq_gssclient, mnt, dentry,
1289 &rqstp->rq_chandle);
1290 if (PTR_ERR(gssexp) == -ENOENT)
1291 return exp;
1292 if (!IS_ERR(exp))
1293 exp_put(exp);
1294 return gssexp;
1295 }
1296
1297 struct svc_export *
1298 rqst_exp_find(struct svc_rqst *rqstp, int fsid_type, u32 *fsidv)
1299 {
1300 struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
1301
1302 if (rqstp->rq_client == NULL)
1303 goto gss;
1304
1305 /* First try the auth_unix client: */
1306 exp = exp_find(rqstp->rq_client, fsid_type, fsidv, &rqstp->rq_chandle);
1307 if (PTR_ERR(exp) == -ENOENT)
1308 goto gss;
1309 if (IS_ERR(exp))
1310 return exp;
1311 /* If it has secinfo, assume there are no gss/... clients */
1312 if (exp->ex_nflavors > 0)
1313 return exp;
1314 gss:
1315 /* Otherwise, try falling back on gss client */
1316 if (rqstp->rq_gssclient == NULL)
1317 return exp;
1318 gssexp = exp_find(rqstp->rq_gssclient, fsid_type, fsidv,
1319 &rqstp->rq_chandle);
1320 if (PTR_ERR(gssexp) == -ENOENT)
1321 return exp;
1322 if (!IS_ERR(exp))
1323 exp_put(exp);
1324 return gssexp;
1325 }
1326
1327 struct svc_export *
1328 rqst_exp_parent(struct svc_rqst *rqstp, struct vfsmount *mnt,
1329 struct dentry *dentry)
1330 {
1331 struct svc_export *exp;
1332
1333 dget(dentry);
1334 exp = rqst_exp_get_by_name(rqstp, mnt, dentry);
1335
1336 while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(dentry)) {
1337 struct dentry *parent;
1338
1339 parent = dget_parent(dentry);
1340 dput(dentry);
1341 dentry = parent;
1342 exp = rqst_exp_get_by_name(rqstp, mnt, dentry);
1343 }
1344 dput(dentry);
1345 return exp;
1346 }
1347
1348 /*
1349 * Called when we need the filehandle for the root of the pseudofs,
1350 * for a given NFSv4 client. The root is defined to be the
1351 * export point with fsid==0
1352 */
1353 __be32
1354 exp_pseudoroot(struct svc_rqst *rqstp, struct svc_fh *fhp)
1355 {
1356 struct svc_export *exp;
1357 __be32 rv;
1358 u32 fsidv[2];
1359
1360 mk_fsid(FSID_NUM, fsidv, 0, 0, 0, NULL);
1361
1362 exp = rqst_exp_find(rqstp, FSID_NUM, fsidv);
1363 if (PTR_ERR(exp) == -ENOENT)
1364 return nfserr_perm;
1365 if (IS_ERR(exp))
1366 return nfserrno(PTR_ERR(exp));
1367 rv = fh_compose(fhp, exp, exp->ex_dentry, NULL);
1368 if (rv)
1369 goto out;
1370 rv = check_nfsd_access(exp, rqstp);
1371 out:
1372 exp_put(exp);
1373 return rv;
1374 }
1375
1376 /* Iterator */
1377
1378 static void *e_start(struct seq_file *m, loff_t *pos)
1379 __acquires(svc_export_cache.hash_lock)
1380 {
1381 loff_t n = *pos;
1382 unsigned hash, export;
1383 struct cache_head *ch;
1384
1385 exp_readlock();
1386 read_lock(&svc_export_cache.hash_lock);
1387 if (!n--)
1388 return SEQ_START_TOKEN;
1389 hash = n >> 32;
1390 export = n & ((1LL<<32) - 1);
1391
1392
1393 for (ch=export_table[hash]; ch; ch=ch->next)
1394 if (!export--)
1395 return ch;
1396 n &= ~((1LL<<32) - 1);
1397 do {
1398 hash++;
1399 n += 1LL<<32;
1400 } while(hash < EXPORT_HASHMAX && export_table[hash]==NULL);
1401 if (hash >= EXPORT_HASHMAX)
1402 return NULL;
1403 *pos = n+1;
1404 return export_table[hash];
1405 }
1406
1407 static void *e_next(struct seq_file *m, void *p, loff_t *pos)
1408 {
1409 struct cache_head *ch = p;
1410 int hash = (*pos >> 32);
1411
1412 if (p == SEQ_START_TOKEN)
1413 hash = 0;
1414 else if (ch->next == NULL) {
1415 hash++;
1416 *pos += 1LL<<32;
1417 } else {
1418 ++*pos;
1419 return ch->next;
1420 }
1421 *pos &= ~((1LL<<32) - 1);
1422 while (hash < EXPORT_HASHMAX && export_table[hash] == NULL) {
1423 hash++;
1424 *pos += 1LL<<32;
1425 }
1426 if (hash >= EXPORT_HASHMAX)
1427 return NULL;
1428 ++*pos;
1429 return export_table[hash];
1430 }
1431
1432 static void e_stop(struct seq_file *m, void *p)
1433 __releases(svc_export_cache.hash_lock)
1434 {
1435 read_unlock(&svc_export_cache.hash_lock);
1436 exp_readunlock();
1437 }
1438
1439 static struct flags {
1440 int flag;
1441 char *name[2];
1442 } expflags[] = {
1443 { NFSEXP_READONLY, {"ro", "rw"}},
1444 { NFSEXP_INSECURE_PORT, {"insecure", ""}},
1445 { NFSEXP_ROOTSQUASH, {"root_squash", "no_root_squash"}},
1446 { NFSEXP_ALLSQUASH, {"all_squash", ""}},
1447 { NFSEXP_ASYNC, {"async", "sync"}},
1448 { NFSEXP_GATHERED_WRITES, {"wdelay", "no_wdelay"}},
1449 { NFSEXP_NOHIDE, {"nohide", ""}},
1450 { NFSEXP_CROSSMOUNT, {"crossmnt", ""}},
1451 { NFSEXP_NOSUBTREECHECK, {"no_subtree_check", ""}},
1452 { NFSEXP_NOAUTHNLM, {"insecure_locks", ""}},
1453 #ifdef MSNFS
1454 { NFSEXP_MSNFS, {"msnfs", ""}},
1455 #endif
1456 { 0, {"", ""}}
1457 };
1458
1459 static void show_expflags(struct seq_file *m, int flags, int mask)
1460 {
1461 struct flags *flg;
1462 int state, first = 0;
1463
1464 for (flg = expflags; flg->flag; flg++) {
1465 if (flg->flag & ~mask)
1466 continue;
1467 state = (flg->flag & flags) ? 0 : 1;
1468 if (*flg->name[state])
1469 seq_printf(m, "%s%s", first++?",":"", flg->name[state]);
1470 }
1471 }
1472
1473 static void show_secinfo_flags(struct seq_file *m, int flags)
1474 {
1475 seq_printf(m, ",");
1476 show_expflags(m, flags, NFSEXP_SECINFO_FLAGS);
1477 }
1478
1479 static void show_secinfo(struct seq_file *m, struct svc_export *exp)
1480 {
1481 struct exp_flavor_info *f;
1482 struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1483 int lastflags = 0, first = 0;
1484
1485 if (exp->ex_nflavors == 0)
1486 return;
1487 for (f = exp->ex_flavors; f < end; f++) {
1488 if (first || f->flags != lastflags) {
1489 if (!first)
1490 show_secinfo_flags(m, lastflags);
1491 seq_printf(m, ",sec=%d", f->pseudoflavor);
1492 lastflags = f->flags;
1493 } else {
1494 seq_printf(m, ":%d", f->pseudoflavor);
1495 }
1496 }
1497 show_secinfo_flags(m, lastflags);
1498 }
1499
1500 static void exp_flags(struct seq_file *m, int flag, int fsid,
1501 uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fsloc)
1502 {
1503 show_expflags(m, flag, NFSEXP_ALLFLAGS);
1504 if (flag & NFSEXP_FSID)
1505 seq_printf(m, ",fsid=%d", fsid);
1506 if (anonu != (uid_t)-2 && anonu != (0x10000-2))
1507 seq_printf(m, ",anonuid=%u", anonu);
1508 if (anong != (gid_t)-2 && anong != (0x10000-2))
1509 seq_printf(m, ",anongid=%u", anong);
1510 if (fsloc && fsloc->locations_count > 0) {
1511 char *loctype = (fsloc->migrated) ? "refer" : "replicas";
1512 int i;
1513
1514 seq_printf(m, ",%s=", loctype);
1515 seq_escape(m, fsloc->locations[0].path, ",;@ \t\n\\");
1516 seq_putc(m, '@');
1517 seq_escape(m, fsloc->locations[0].hosts, ",;@ \t\n\\");
1518 for (i = 1; i < fsloc->locations_count; i++) {
1519 seq_putc(m, ';');
1520 seq_escape(m, fsloc->locations[i].path, ",;@ \t\n\\");
1521 seq_putc(m, '@');
1522 seq_escape(m, fsloc->locations[i].hosts, ",;@ \t\n\\");
1523 }
1524 }
1525 }
1526
1527 static int e_show(struct seq_file *m, void *p)
1528 {
1529 struct cache_head *cp = p;
1530 struct svc_export *exp = container_of(cp, struct svc_export, h);
1531
1532 if (p == SEQ_START_TOKEN) {
1533 seq_puts(m, "# Version 1.1\n");
1534 seq_puts(m, "# Path Client(Flags) # IPs\n");
1535 return 0;
1536 }
1537
1538 cache_get(&exp->h);
1539 if (cache_check(&svc_export_cache, &exp->h, NULL))
1540 return 0;
1541 cache_put(&exp->h, &svc_export_cache);
1542 return svc_export_show(m, &svc_export_cache, cp);
1543 }
1544
1545 struct seq_operations nfs_exports_op = {
1546 .start = e_start,
1547 .next = e_next,
1548 .stop = e_stop,
1549 .show = e_show,
1550 };
1551
1552 /*
1553 * Add or modify a client.
1554 * Change requests may involve the list of host addresses. The list of
1555 * exports and possibly existing uid maps are left untouched.
1556 */
1557 int
1558 exp_addclient(struct nfsctl_client *ncp)
1559 {
1560 struct auth_domain *dom;
1561 int i, err;
1562
1563 /* First, consistency check. */
1564 err = -EINVAL;
1565 if (! exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1566 goto out;
1567 if (ncp->cl_naddr > NFSCLNT_ADDRMAX)
1568 goto out;
1569
1570 /* Lock the hashtable */
1571 exp_writelock();
1572
1573 dom = unix_domain_find(ncp->cl_ident);
1574
1575 err = -ENOMEM;
1576 if (!dom)
1577 goto out_unlock;
1578
1579 /* Insert client into hashtable. */
1580 for (i = 0; i < ncp->cl_naddr; i++)
1581 auth_unix_add_addr(ncp->cl_addrlist[i], dom);
1582
1583 auth_unix_forget_old(dom);
1584 auth_domain_put(dom);
1585
1586 err = 0;
1587
1588 out_unlock:
1589 exp_writeunlock();
1590 out:
1591 return err;
1592 }
1593
1594 /*
1595 * Delete a client given an identifier.
1596 */
1597 int
1598 exp_delclient(struct nfsctl_client *ncp)
1599 {
1600 int err;
1601 struct auth_domain *dom;
1602
1603 err = -EINVAL;
1604 if (!exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1605 goto out;
1606
1607 /* Lock the hashtable */
1608 exp_writelock();
1609
1610 dom = auth_domain_find(ncp->cl_ident);
1611 /* just make sure that no addresses work
1612 * and that it will expire soon
1613 */
1614 if (dom) {
1615 err = auth_unix_forget_old(dom);
1616 auth_domain_put(dom);
1617 }
1618
1619 exp_writeunlock();
1620 out:
1621 return err;
1622 }
1623
1624 /*
1625 * Verify that string is non-empty and does not exceed max length.
1626 */
1627 static int
1628 exp_verify_string(char *cp, int max)
1629 {
1630 int i;
1631
1632 for (i = 0; i < max; i++)
1633 if (!cp[i])
1634 return i;
1635 cp[i] = 0;
1636 printk(KERN_NOTICE "nfsd: couldn't validate string %s\n", cp);
1637 return 0;
1638 }
1639
1640 /*
1641 * Initialize the exports module.
1642 */
1643 void
1644 nfsd_export_init(void)
1645 {
1646 dprintk("nfsd: initializing export module.\n");
1647
1648 cache_register(&svc_export_cache);
1649 cache_register(&svc_expkey_cache);
1650
1651 }
1652
1653 /*
1654 * Flush exports table - called when last nfsd thread is killed
1655 */
1656 void
1657 nfsd_export_flush(void)
1658 {
1659 exp_writelock();
1660 cache_purge(&svc_expkey_cache);
1661 cache_purge(&svc_export_cache);
1662 exp_writeunlock();
1663 }
1664
1665 /*
1666 * Shutdown the exports module.
1667 */
1668 void
1669 nfsd_export_shutdown(void)
1670 {
1671
1672 dprintk("nfsd: shutting down export module.\n");
1673
1674 exp_writelock();
1675
1676 if (cache_unregister(&svc_expkey_cache))
1677 printk(KERN_ERR "nfsd: failed to unregister expkey cache\n");
1678 if (cache_unregister(&svc_export_cache))
1679 printk(KERN_ERR "nfsd: failed to unregister export cache\n");
1680 svcauth_unix_purge();
1681
1682 exp_writeunlock();
1683 dprintk("nfsd: export shutdown complete.\n");
1684 }
Linux with added FPC-III support