Gitiles
Code Review Sign In
192.168.1.100 / R306 / e9c802e48ec32db8da81b4ddcaec2fee0090fbe0 / . / ap / os / linux / linux-3.4.x / fs / nfs / callback_xdr.c
blob: 3abfd5af9cb779e8af3ea94157bc8dd579c961ad [file] [log] [blame]
yuezonghe824eb0c2024-06-27 02:32:26 -0700[diff] [blame]1/*
2 * linux/fs/nfs/callback_xdr.c
3 *
4 * Copyright (C) 2004 Trond Myklebust
5 *
6 * NFSv4 callback encode/decode procedures
7 */
8#include <linux/kernel.h>
9#include <linux/sunrpc/svc.h>
10#include <linux/nfs4.h>
11#include <linux/nfs_fs.h>
12#include <linux/ratelimit.h>
13#include <linux/printk.h>
14#include <linux/slab.h>
15#include <linux/sunrpc/bc_xprt.h>
16#include "nfs4_fs.h"
17#include "callback.h"
18#include "internal.h"
19
20#define CB_OP_TAGLEN_MAXSZ (512)
21#define CB_OP_HDR_RES_MAXSZ (2 + CB_OP_TAGLEN_MAXSZ)
22#define CB_OP_GETATTR_BITMAP_MAXSZ (4)
23#define CB_OP_GETATTR_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ + \
24 CB_OP_GETATTR_BITMAP_MAXSZ + \
25 2 + 2 + 3 + 3)
26#define CB_OP_RECALL_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ)
27
28#if defined(CONFIG_NFS_V4_1)
29#define CB_OP_LAYOUTRECALL_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ)
30#define CB_OP_DEVICENOTIFY_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ)
31#define CB_OP_SEQUENCE_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ + \
32 4 + 1 + 3)
33#define CB_OP_RECALLANY_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ)
34#define CB_OP_RECALLSLOT_RES_MAXSZ (CB_OP_HDR_RES_MAXSZ)
35#endif /* CONFIG_NFS_V4_1 */
36
37#define NFSDBG_FACILITY NFSDBG_CALLBACK
38
39/* Internal error code */
40#define NFS4ERR_RESOURCE_HDR 11050
41
42typedef __be32 (*callback_process_op_t)(void *, void *,
43 struct cb_process_state *);
44typedef __be32 (*callback_decode_arg_t)(struct svc_rqst *, struct xdr_stream *, void *);
45typedef __be32 (*callback_encode_res_t)(struct svc_rqst *, struct xdr_stream *, void *);
46
47
48struct callback_op {
49 callback_process_op_t process_op;
50 callback_decode_arg_t decode_args;
51 callback_encode_res_t encode_res;
52 long res_maxsize;
53};
54
55static struct callback_op callback_ops[];
56
57static __be32 nfs4_callback_null(struct svc_rqst *rqstp, void *argp, void *resp)
58{
59 return htonl(NFS4_OK);
60}
61
62static int nfs4_decode_void(struct svc_rqst *rqstp, __be32 *p, void *dummy)
63{
64 return xdr_argsize_check(rqstp, p);
65}
66
67static int nfs4_encode_void(struct svc_rqst *rqstp, __be32 *p, void *dummy)
68{
69 return xdr_ressize_check(rqstp, p);
70}
71
72static __be32 *read_buf(struct xdr_stream *xdr, int nbytes)
73{
74 __be32 *p;
75
76 p = xdr_inline_decode(xdr, nbytes);
77 if (unlikely(p == NULL))
78 printk(KERN_WARNING "NFS: NFSv4 callback reply buffer overflowed!\n");
79 return p;
80}
81
82static __be32 decode_string(struct xdr_stream *xdr, unsigned int *len, const char **str)
83{
84 __be32 *p;
85
86 p = read_buf(xdr, 4);
87 if (unlikely(p == NULL))
88 return htonl(NFS4ERR_RESOURCE);
89 *len = ntohl(*p);
90
91 if (*len != 0) {
92 p = read_buf(xdr, *len);
93 if (unlikely(p == NULL))
94 return htonl(NFS4ERR_RESOURCE);
95 *str = (const char *)p;
96 } else
97 *str = NULL;
98
99 return 0;
100}
101
102static __be32 decode_fh(struct xdr_stream *xdr, struct nfs_fh *fh)
103{
104 __be32 *p;
105
106 p = read_buf(xdr, 4);
107 if (unlikely(p == NULL))
108 return htonl(NFS4ERR_RESOURCE);
109 fh->size = ntohl(*p);
110 if (fh->size > NFS4_FHSIZE)
111 return htonl(NFS4ERR_BADHANDLE);
112 p = read_buf(xdr, fh->size);
113 if (unlikely(p == NULL))
114 return htonl(NFS4ERR_RESOURCE);
115 memcpy(&fh->data[0], p, fh->size);
116 memset(&fh->data[fh->size], 0, sizeof(fh->data) - fh->size);
117 return 0;
118}
119
120static __be32 decode_bitmap(struct xdr_stream *xdr, uint32_t *bitmap)
121{
122 __be32 *p;
123 unsigned int attrlen;
124
125 p = read_buf(xdr, 4);
126 if (unlikely(p == NULL))
127 return htonl(NFS4ERR_RESOURCE);
128 attrlen = ntohl(*p);
129 p = read_buf(xdr, attrlen << 2);
130 if (unlikely(p == NULL))
131 return htonl(NFS4ERR_RESOURCE);
132 if (likely(attrlen > 0))
133 bitmap[0] = ntohl(*p++);
134 if (attrlen > 1)
135 bitmap[1] = ntohl(*p);
136 return 0;
137}
138
139static __be32 decode_stateid(struct xdr_stream *xdr, nfs4_stateid *stateid)
140{
141 __be32 *p;
142
143 p = read_buf(xdr, NFS4_STATEID_SIZE);
144 if (unlikely(p == NULL))
145 return htonl(NFS4ERR_RESOURCE);
146 memcpy(stateid, p, NFS4_STATEID_SIZE);
147 return 0;
148}
149
150static __be32 decode_compound_hdr_arg(struct xdr_stream *xdr, struct cb_compound_hdr_arg *hdr)
151{
152 __be32 *p;
153 __be32 status;
154
155 status = decode_string(xdr, &hdr->taglen, &hdr->tag);
156 if (unlikely(status != 0))
157 return status;
158 /* We do not like overly long tags! */
159 if (hdr->taglen > CB_OP_TAGLEN_MAXSZ - 12) {
160 printk("NFS: NFSv4 CALLBACK %s: client sent tag of length %u\n",
161 __func__, hdr->taglen);
162 return htonl(NFS4ERR_RESOURCE);
163 }
164 p = read_buf(xdr, 12);
165 if (unlikely(p == NULL))
166 return htonl(NFS4ERR_RESOURCE);
167 hdr->minorversion = ntohl(*p++);
168 /* Check minor version is zero or one. */
169 if (hdr->minorversion <= 1) {
170 hdr->cb_ident = ntohl(*p++); /* ignored by v4.1 */
171 } else {
172 pr_warn_ratelimited("NFS: %s: NFSv4 server callback with "
173 "illegal minor version %u!\n",
174 __func__, hdr->minorversion);
175 return htonl(NFS4ERR_MINOR_VERS_MISMATCH);
176 }
177 hdr->nops = ntohl(*p);
178 dprintk("%s: minorversion %d nops %d\n", __func__,
179 hdr->minorversion, hdr->nops);
180 return 0;
181}
182
183static __be32 decode_op_hdr(struct xdr_stream *xdr, unsigned int *op)
184{
185 __be32 *p;
186 p = read_buf(xdr, 4);
187 if (unlikely(p == NULL))
188 return htonl(NFS4ERR_RESOURCE_HDR);
189 *op = ntohl(*p);
190 return 0;
191}
192
193static __be32 decode_getattr_args(struct svc_rqst *rqstp, struct xdr_stream *xdr, struct cb_getattrargs *args)
194{
195 __be32 status;
196
197 status = decode_fh(xdr, &args->fh);
198 if (unlikely(status != 0))
199 goto out;
200 args->addr = svc_addr(rqstp);
201 status = decode_bitmap(xdr, args->bitmap);
202out:
203 dprintk("%s: exit with status = %d\n", __func__, ntohl(status));
204 return status;
205}
206
207static __be32 decode_recall_args(struct svc_rqst *rqstp, struct xdr_stream *xdr, struct cb_recallargs *args)
208{
209 __be32 *p;
210 __be32 status;
211
212 args->addr = svc_addr(rqstp);
213 status = decode_stateid(xdr, &args->stateid);
214 if (unlikely(status != 0))
215 goto out;
216 p = read_buf(xdr, 4);
217 if (unlikely(p == NULL)) {
218 status = htonl(NFS4ERR_RESOURCE);
219 goto out;
220 }
221 args->truncate = ntohl(*p);
222 status = decode_fh(xdr, &args->fh);
223out:
224 dprintk("%s: exit with status = %d\n", __func__, ntohl(status));
225 return status;
226}
227
228#if defined(CONFIG_NFS_V4_1)
229
230static __be32 decode_layoutrecall_args(struct svc_rqst *rqstp,
231 struct xdr_stream *xdr,
232 struct cb_layoutrecallargs *args)
233{
234 __be32 *p;
235 __be32 status = 0;
236 uint32_t iomode;
237
238 args->cbl_addr = svc_addr(rqstp);
239 p = read_buf(xdr, 4 * sizeof(uint32_t));
240 if (unlikely(p == NULL)) {
241 status = htonl(NFS4ERR_BADXDR);
242 goto out;
243 }
244
245 args->cbl_layout_type = ntohl(*p++);
246 /* Depite the spec's xdr, iomode really belongs in the FILE switch,
247 * as it is unusable and ignored with the other types.
248 */
249 iomode = ntohl(*p++);
250 args->cbl_layoutchanged = ntohl(*p++);
251 args->cbl_recall_type = ntohl(*p++);
252
253 if (args->cbl_recall_type == RETURN_FILE) {
254 args->cbl_range.iomode = iomode;
255 status = decode_fh(xdr, &args->cbl_fh);
256 if (unlikely(status != 0))
257 goto out;
258
259 p = read_buf(xdr, 2 * sizeof(uint64_t));
260 if (unlikely(p == NULL)) {
261 status = htonl(NFS4ERR_BADXDR);
262 goto out;
263 }
264 p = xdr_decode_hyper(p, &args->cbl_range.offset);
265 p = xdr_decode_hyper(p, &args->cbl_range.length);
266 status = decode_stateid(xdr, &args->cbl_stateid);
267 if (unlikely(status != 0))
268 goto out;
269 } else if (args->cbl_recall_type == RETURN_FSID) {
270 p = read_buf(xdr, 2 * sizeof(uint64_t));
271 if (unlikely(p == NULL)) {
272 status = htonl(NFS4ERR_BADXDR);
273 goto out;
274 }
275 p = xdr_decode_hyper(p, &args->cbl_fsid.major);
276 p = xdr_decode_hyper(p, &args->cbl_fsid.minor);
277 } else if (args->cbl_recall_type != RETURN_ALL) {
278 status = htonl(NFS4ERR_BADXDR);
279 goto out;
280 }
281 dprintk("%s: ltype 0x%x iomode %d changed %d recall_type %d\n",
282 __func__,
283 args->cbl_layout_type, iomode,
284 args->cbl_layoutchanged, args->cbl_recall_type);
285out:
286 dprintk("%s: exit with status = %d\n", __func__, ntohl(status));
287 return status;
288}
289
290static
291__be32 decode_devicenotify_args(struct svc_rqst *rqstp,
292 struct xdr_stream *xdr,
293 struct cb_devicenotifyargs *args)
294{
295 __be32 *p;
296 __be32 status = 0;
297 u32 tmp;
298 int n, i;
299 args->ndevs = 0;
300
301 /* Num of device notifications */
302 p = read_buf(xdr, sizeof(uint32_t));
303 if (unlikely(p == NULL)) {
304 status = htonl(NFS4ERR_BADXDR);
305 goto out;
306 }
307 n = ntohl(*p++);
308 if (n <= 0)
309 goto out;
310 if (n > ULONG_MAX / sizeof(*args->devs)) {
311 status = htonl(NFS4ERR_BADXDR);
312 goto out;
313 }
314
315 args->devs = kmalloc(n * sizeof(*args->devs), GFP_KERNEL);
316 if (!args->devs) {
317 status = htonl(NFS4ERR_DELAY);
318 goto out;
319 }
320
321 /* Decode each dev notification */
322 for (i = 0; i < n; i++) {
323 struct cb_devicenotifyitem *dev = &args->devs[i];
324
325 p = read_buf(xdr, (4 * sizeof(uint32_t)) + NFS4_DEVICEID4_SIZE);
326 if (unlikely(p == NULL)) {
327 status = htonl(NFS4ERR_BADXDR);
328 goto err;
329 }
330
331 tmp = ntohl(*p++); /* bitmap size */
332 if (tmp != 1) {
333 status = htonl(NFS4ERR_INVAL);
334 goto err;
335 }
336 dev->cbd_notify_type = ntohl(*p++);
337 if (dev->cbd_notify_type != NOTIFY_DEVICEID4_CHANGE &&
338 dev->cbd_notify_type != NOTIFY_DEVICEID4_DELETE) {
339 status = htonl(NFS4ERR_INVAL);
340 goto err;
341 }
342
343 tmp = ntohl(*p++); /* opaque size */
344 if (((dev->cbd_notify_type == NOTIFY_DEVICEID4_CHANGE) &&
345 (tmp != NFS4_DEVICEID4_SIZE + 8)) ||
346 ((dev->cbd_notify_type == NOTIFY_DEVICEID4_DELETE) &&
347 (tmp != NFS4_DEVICEID4_SIZE + 4))) {
348 status = htonl(NFS4ERR_INVAL);
349 goto err;
350 }
351 dev->cbd_layout_type = ntohl(*p++);
352 memcpy(dev->cbd_dev_id.data, p, NFS4_DEVICEID4_SIZE);
353 p += XDR_QUADLEN(NFS4_DEVICEID4_SIZE);
354
355 if (dev->cbd_layout_type == NOTIFY_DEVICEID4_CHANGE) {
356 p = read_buf(xdr, sizeof(uint32_t));
357 if (unlikely(p == NULL)) {
358 status = htonl(NFS4ERR_BADXDR);
359 goto err;
360 }
361 dev->cbd_immediate = ntohl(*p++);
362 } else {
363 dev->cbd_immediate = 0;
364 }
365
366 args->ndevs++;
367
368 dprintk("%s: type %d layout 0x%x immediate %d\n",
369 __func__, dev->cbd_notify_type, dev->cbd_layout_type,
370 dev->cbd_immediate);
371 }
372out:
373 dprintk("%s: status %d ndevs %d\n",
374 __func__, ntohl(status), args->ndevs);
375 return status;
376err:
377 kfree(args->devs);
378 goto out;
379}
380
381static __be32 decode_sessionid(struct xdr_stream *xdr,
382 struct nfs4_sessionid *sid)
383{
384 __be32 *p;
385 int len = NFS4_MAX_SESSIONID_LEN;
386
387 p = read_buf(xdr, len);
388 if (unlikely(p == NULL))
389 return htonl(NFS4ERR_RESOURCE);
390
391 memcpy(sid->data, p, len);
392 return 0;
393}
394
395static __be32 decode_rc_list(struct xdr_stream *xdr,
396 struct referring_call_list *rc_list)
397{
398 __be32 *p;
399 int i;
400 __be32 status;
401
402 status = decode_sessionid(xdr, &rc_list->rcl_sessionid);
403 if (status)
404 goto out;
405
406 status = htonl(NFS4ERR_RESOURCE);
407 p = read_buf(xdr, sizeof(uint32_t));
408 if (unlikely(p == NULL))
409 goto out;
410
411 rc_list->rcl_nrefcalls = ntohl(*p++);
412 if (rc_list->rcl_nrefcalls) {
413 p = read_buf(xdr,
414 rc_list->rcl_nrefcalls * 2 * sizeof(uint32_t));
415 if (unlikely(p == NULL))
416 goto out;
417 rc_list->rcl_refcalls = kmalloc(rc_list->rcl_nrefcalls *
418 sizeof(*rc_list->rcl_refcalls),
419 GFP_KERNEL);
420 if (unlikely(rc_list->rcl_refcalls == NULL))
421 goto out;
422 for (i = 0; i < rc_list->rcl_nrefcalls; i++) {
423 rc_list->rcl_refcalls[i].rc_sequenceid = ntohl(*p++);
424 rc_list->rcl_refcalls[i].rc_slotid = ntohl(*p++);
425 }
426 }
427 status = 0;
428
429out:
430 return status;
431}
432
433static __be32 decode_cb_sequence_args(struct svc_rqst *rqstp,
434 struct xdr_stream *xdr,
435 struct cb_sequenceargs *args)
436{
437 __be32 *p;
438 int i;
439 __be32 status;
440
441 status = decode_sessionid(xdr, &args->csa_sessionid);
442 if (status)
443 goto out;
444
445 status = htonl(NFS4ERR_RESOURCE);
446 p = read_buf(xdr, 5 * sizeof(uint32_t));
447 if (unlikely(p == NULL))
448 goto out;
449
450 args->csa_addr = svc_addr(rqstp);
451 args->csa_sequenceid = ntohl(*p++);
452 args->csa_slotid = ntohl(*p++);
453 args->csa_highestslotid = ntohl(*p++);
454 args->csa_cachethis = ntohl(*p++);
455 args->csa_nrclists = ntohl(*p++);
456 args->csa_rclists = NULL;
457 if (args->csa_nrclists) {
458 args->csa_rclists = kmalloc_array(args->csa_nrclists,
459 sizeof(*args->csa_rclists),
460 GFP_KERNEL);
461 if (unlikely(args->csa_rclists == NULL))
462 goto out;
463
464 for (i = 0; i < args->csa_nrclists; i++) {
465 status = decode_rc_list(xdr, &args->csa_rclists[i]);
466 if (status) {
467 args->csa_nrclists = i;
468 goto out_free;
469 }
470 }
471 }
472 status = 0;
473
474 dprintk("%s: sessionid %x:%x:%x:%x sequenceid %u slotid %u "
475 "highestslotid %u cachethis %d nrclists %u\n",
476 __func__,
477 ((u32 *)&args->csa_sessionid)[0],
478 ((u32 *)&args->csa_sessionid)[1],
479 ((u32 *)&args->csa_sessionid)[2],
480 ((u32 *)&args->csa_sessionid)[3],
481 args->csa_sequenceid, args->csa_slotid,
482 args->csa_highestslotid, args->csa_cachethis,
483 args->csa_nrclists);
484out:
485 dprintk("%s: exit with status = %d\n", __func__, ntohl(status));
486 return status;
487
488out_free:
489 for (i = 0; i < args->csa_nrclists; i++)
490 kfree(args->csa_rclists[i].rcl_refcalls);
491 kfree(args->csa_rclists);
492 goto out;
493}
494
495static __be32 decode_recallany_args(struct svc_rqst *rqstp,
496 struct xdr_stream *xdr,
497 struct cb_recallanyargs *args)
498{
499 uint32_t bitmap[2];
500 __be32 *p, status;
501
502 args->craa_addr = svc_addr(rqstp);
503 p = read_buf(xdr, 4);
504 if (unlikely(p == NULL))
505 return htonl(NFS4ERR_BADXDR);
506 args->craa_objs_to_keep = ntohl(*p++);
507 status = decode_bitmap(xdr, bitmap);
508 if (unlikely(status))
509 return status;
510 args->craa_type_mask = bitmap[0];
511
512 return 0;
513}
514
515static __be32 decode_recallslot_args(struct svc_rqst *rqstp,
516 struct xdr_stream *xdr,
517 struct cb_recallslotargs *args)
518{
519 __be32 *p;
520
521 args->crsa_addr = svc_addr(rqstp);
522 p = read_buf(xdr, 4);
523 if (unlikely(p == NULL))
524 return htonl(NFS4ERR_BADXDR);
525 args->crsa_target_max_slots = ntohl(*p++);
526 return 0;
527}
528
529#endif /* CONFIG_NFS_V4_1 */
530
531static __be32 encode_string(struct xdr_stream *xdr, unsigned int len, const char *str)
532{
533 __be32 *p;
534
535 p = xdr_reserve_space(xdr, 4 + len);
536 if (unlikely(p == NULL))
537 return htonl(NFS4ERR_RESOURCE);
538 xdr_encode_opaque(p, str, len);
539 return 0;
540}
541
542#define CB_SUPPORTED_ATTR0 (FATTR4_WORD0_CHANGE|FATTR4_WORD0_SIZE)
543#define CB_SUPPORTED_ATTR1 (FATTR4_WORD1_TIME_METADATA|FATTR4_WORD1_TIME_MODIFY)
544static __be32 encode_attr_bitmap(struct xdr_stream *xdr, const uint32_t *bitmap, __be32 **savep)
545{
546 __be32 bm[2];
547 __be32 *p;
548
549 bm[0] = htonl(bitmap[0] & CB_SUPPORTED_ATTR0);
550 bm[1] = htonl(bitmap[1] & CB_SUPPORTED_ATTR1);
551 if (bm[1] != 0) {
552 p = xdr_reserve_space(xdr, 16);
553 if (unlikely(p == NULL))
554 return htonl(NFS4ERR_RESOURCE);
555 *p++ = htonl(2);
556 *p++ = bm[0];
557 *p++ = bm[1];
558 } else if (bm[0] != 0) {
559 p = xdr_reserve_space(xdr, 12);
560 if (unlikely(p == NULL))
561 return htonl(NFS4ERR_RESOURCE);
562 *p++ = htonl(1);
563 *p++ = bm[0];
564 } else {
565 p = xdr_reserve_space(xdr, 8);
566 if (unlikely(p == NULL))
567 return htonl(NFS4ERR_RESOURCE);
568 *p++ = htonl(0);
569 }
570 *savep = p;
571 return 0;
572}
573
574static __be32 encode_attr_change(struct xdr_stream *xdr, const uint32_t *bitmap, uint64_t change)
575{
576 __be32 *p;
577
578 if (!(bitmap[0] & FATTR4_WORD0_CHANGE))
579 return 0;
580 p = xdr_reserve_space(xdr, 8);
581 if (unlikely(!p))
582 return htonl(NFS4ERR_RESOURCE);
583 p = xdr_encode_hyper(p, change);
584 return 0;
585}
586
587static __be32 encode_attr_size(struct xdr_stream *xdr, const uint32_t *bitmap, uint64_t size)
588{
589 __be32 *p;
590
591 if (!(bitmap[0] & FATTR4_WORD0_SIZE))
592 return 0;
593 p = xdr_reserve_space(xdr, 8);
594 if (unlikely(!p))
595 return htonl(NFS4ERR_RESOURCE);
596 p = xdr_encode_hyper(p, size);
597 return 0;
598}
599
600static __be32 encode_attr_time(struct xdr_stream *xdr, const struct timespec *time)
601{
602 __be32 *p;
603
604 p = xdr_reserve_space(xdr, 12);
605 if (unlikely(!p))
606 return htonl(NFS4ERR_RESOURCE);
607 p = xdr_encode_hyper(p, time->tv_sec);
608 *p = htonl(time->tv_nsec);
609 return 0;
610}
611
612static __be32 encode_attr_ctime(struct xdr_stream *xdr, const uint32_t *bitmap, const struct timespec *time)
613{
614 if (!(bitmap[1] & FATTR4_WORD1_TIME_METADATA))
615 return 0;
616 return encode_attr_time(xdr,time);
617}
618
619static __be32 encode_attr_mtime(struct xdr_stream *xdr, const uint32_t *bitmap, const struct timespec *time)
620{
621 if (!(bitmap[1] & FATTR4_WORD1_TIME_MODIFY))
622 return 0;
623 return encode_attr_time(xdr,time);
624}
625
626static __be32 encode_compound_hdr_res(struct xdr_stream *xdr, struct cb_compound_hdr_res *hdr)
627{
628 __be32 status;
629
630 hdr->status = xdr_reserve_space(xdr, 4);
631 if (unlikely(hdr->status == NULL))
632 return htonl(NFS4ERR_RESOURCE);
633 status = encode_string(xdr, hdr->taglen, hdr->tag);
634 if (unlikely(status != 0))
635 return status;
636 hdr->nops = xdr_reserve_space(xdr, 4);
637 if (unlikely(hdr->nops == NULL))
638 return htonl(NFS4ERR_RESOURCE);
639 return 0;
640}
641
642static __be32 encode_op_hdr(struct xdr_stream *xdr, uint32_t op, __be32 res)
643{
644 __be32 *p;
645
646 p = xdr_reserve_space(xdr, 8);
647 if (unlikely(p == NULL))
648 return htonl(NFS4ERR_RESOURCE_HDR);
649 *p++ = htonl(op);
650 *p = res;
651 return 0;
652}
653
654static __be32 encode_getattr_res(struct svc_rqst *rqstp, struct xdr_stream *xdr, const struct cb_getattrres *res)
655{
656 __be32 *savep = NULL;
657 __be32 status = res->status;
658
659 if (unlikely(status != 0))
660 goto out;
661 status = encode_attr_bitmap(xdr, res->bitmap, &savep);
662 if (unlikely(status != 0))
663 goto out;
664 status = encode_attr_change(xdr, res->bitmap, res->change_attr);
665 if (unlikely(status != 0))
666 goto out;
667 status = encode_attr_size(xdr, res->bitmap, res->size);
668 if (unlikely(status != 0))
669 goto out;
670 status = encode_attr_ctime(xdr, res->bitmap, &res->ctime);
671 if (unlikely(status != 0))
672 goto out;
673 status = encode_attr_mtime(xdr, res->bitmap, &res->mtime);
674 *savep = htonl((unsigned int)((char *)xdr->p - (char *)(savep+1)));
675out:
676 dprintk("%s: exit with status = %d\n", __func__, ntohl(status));
677 return status;
678}
679
680#if defined(CONFIG_NFS_V4_1)
681
682static __be32 encode_sessionid(struct xdr_stream *xdr,
683 const struct nfs4_sessionid *sid)
684{
685 __be32 *p;
686 int len = NFS4_MAX_SESSIONID_LEN;
687
688 p = xdr_reserve_space(xdr, len);
689 if (unlikely(p == NULL))
690 return htonl(NFS4ERR_RESOURCE);
691
692 memcpy(p, sid, len);
693 return 0;
694}
695
696static __be32 encode_cb_sequence_res(struct svc_rqst *rqstp,
697 struct xdr_stream *xdr,
698 const struct cb_sequenceres *res)
699{
700 __be32 *p;
701 unsigned status = res->csr_status;
702
703 if (unlikely(status != 0))
704 goto out;
705
706 encode_sessionid(xdr, &res->csr_sessionid);
707
708 p = xdr_reserve_space(xdr, 4 * sizeof(uint32_t));
709 if (unlikely(p == NULL))
710 return htonl(NFS4ERR_RESOURCE);
711
712 *p++ = htonl(res->csr_sequenceid);
713 *p++ = htonl(res->csr_slotid);
714 *p++ = htonl(res->csr_highestslotid);
715 *p++ = htonl(res->csr_target_highestslotid);
716out:
717 dprintk("%s: exit with status = %d\n", __func__, ntohl(status));
718 return status;
719}
720
721static __be32
722preprocess_nfs41_op(int nop, unsigned int op_nr, struct callback_op **op)
723{
724 if (op_nr == OP_CB_SEQUENCE) {
725 if (nop != 0)
726 return htonl(NFS4ERR_SEQUENCE_POS);
727 } else {
728 if (nop == 0)
729 return htonl(NFS4ERR_OP_NOT_IN_SESSION);
730 }
731
732 switch (op_nr) {
733 case OP_CB_GETATTR:
734 case OP_CB_RECALL:
735 case OP_CB_SEQUENCE:
736 case OP_CB_RECALL_ANY:
737 case OP_CB_RECALL_SLOT:
738 case OP_CB_LAYOUTRECALL:
739 case OP_CB_NOTIFY_DEVICEID:
740 *op = &callback_ops[op_nr];
741 break;
742
743 case OP_CB_NOTIFY:
744 case OP_CB_PUSH_DELEG:
745 case OP_CB_RECALLABLE_OBJ_AVAIL:
746 case OP_CB_WANTS_CANCELLED:
747 case OP_CB_NOTIFY_LOCK:
748 return htonl(NFS4ERR_NOTSUPP);
749
750 default:
751 return htonl(NFS4ERR_OP_ILLEGAL);
752 }
753
754 return htonl(NFS_OK);
755}
756
757static void nfs4_callback_free_slot(struct nfs4_session *session)
758{
759 struct nfs4_slot_table *tbl = &session->bc_slot_table;
760
761 spin_lock(&tbl->slot_tbl_lock);
762 /*
763 * Let the state manager know callback processing done.
764 * A single slot, so highest used slotid is either 0 or -1
765 */
766 tbl->highest_used_slotid = NFS4_NO_SLOT;
767 nfs4_check_drain_bc_complete(session);
768 spin_unlock(&tbl->slot_tbl_lock);
769}
770
771static void nfs4_cb_free_slot(struct cb_process_state *cps)
772{
773 if (cps->slotid != NFS4_NO_SLOT)
774 nfs4_callback_free_slot(cps->clp->cl_session);
775}
776
777#else /* CONFIG_NFS_V4_1 */
778
779static __be32
780preprocess_nfs41_op(int nop, unsigned int op_nr, struct callback_op **op)
781{
782 return htonl(NFS4ERR_MINOR_VERS_MISMATCH);
783}
784
785static void nfs4_cb_free_slot(struct cb_process_state *cps)
786{
787}
788#endif /* CONFIG_NFS_V4_1 */
789
790static __be32
791preprocess_nfs4_op(unsigned int op_nr, struct callback_op **op)
792{
793 switch (op_nr) {
794 case OP_CB_GETATTR:
795 case OP_CB_RECALL:
796 *op = &callback_ops[op_nr];
797 break;
798 default:
799 return htonl(NFS4ERR_OP_ILLEGAL);
800 }
801
802 return htonl(NFS_OK);
803}
804
805static __be32 process_op(uint32_t minorversion, int nop,
806 struct svc_rqst *rqstp,
807 struct xdr_stream *xdr_in, void *argp,
808 struct xdr_stream *xdr_out, void *resp,
809 struct cb_process_state *cps)
810{
811 struct callback_op *op = &callback_ops[0];
812 unsigned int op_nr;
813 __be32 status;
814 long maxlen;
815 __be32 res;
816
817 dprintk("%s: start\n", __func__);
818 status = decode_op_hdr(xdr_in, &op_nr);
819 if (unlikely(status))
820 return status;
821
822 dprintk("%s: minorversion=%d nop=%d op_nr=%u\n",
823 __func__, minorversion, nop, op_nr);
824
825 status = minorversion ? preprocess_nfs41_op(nop, op_nr, &op) :
826 preprocess_nfs4_op(op_nr, &op);
827 if (status == htonl(NFS4ERR_OP_ILLEGAL))
828 op_nr = OP_CB_ILLEGAL;
829 if (status)
830 goto encode_hdr;
831
832 if (cps->drc_status) {
833 status = cps->drc_status;
834 goto encode_hdr;
835 }
836
837 maxlen = xdr_out->end - xdr_out->p;
838 if (maxlen > 0 && maxlen < PAGE_SIZE) {
839 status = op->decode_args(rqstp, xdr_in, argp);
840 if (likely(status == 0))
841 status = op->process_op(argp, resp, cps);
842 } else
843 status = htonl(NFS4ERR_RESOURCE);
844
845encode_hdr:
846 res = encode_op_hdr(xdr_out, op_nr, status);
847 if (unlikely(res))
848 return res;
849 if (op->encode_res != NULL && status == 0)
850 status = op->encode_res(rqstp, xdr_out, resp);
851 dprintk("%s: done, status = %d\n", __func__, ntohl(status));
852 return status;
853}
854
855/*
856 * Decode, process and encode a COMPOUND
857 */
858static __be32 nfs4_callback_compound(struct svc_rqst *rqstp, void *argp, void *resp)
859{
860 struct cb_compound_hdr_arg hdr_arg = { 0 };
861 struct cb_compound_hdr_res hdr_res = { NULL };
862 struct xdr_stream xdr_in, xdr_out;
863 __be32 *p, status;
864 struct cb_process_state cps = {
865 .drc_status = 0,
866 .clp = NULL,
867 .slotid = NFS4_NO_SLOT,
868 .net = rqstp->rq_xprt->xpt_net,
869 };
870 unsigned int nops = 0;
871
872 dprintk("%s: start\n", __func__);
873
874 xdr_init_decode(&xdr_in, &rqstp->rq_arg, rqstp->rq_arg.head[0].iov_base);
875
876 p = (__be32*)((char *)rqstp->rq_res.head[0].iov_base + rqstp->rq_res.head[0].iov_len);
877 xdr_init_encode(&xdr_out, &rqstp->rq_res, p);
878
879 status = decode_compound_hdr_arg(&xdr_in, &hdr_arg);
880 if (status == __constant_htonl(NFS4ERR_RESOURCE))
881 return rpc_garbage_args;
882
883 if (hdr_arg.minorversion == 0) {
884 cps.clp = nfs4_find_client_ident(rqstp->rq_xprt->xpt_net, hdr_arg.cb_ident);
885 if (!cps.clp || !check_gss_callback_principal(cps.clp, rqstp))
886 return rpc_drop_reply;
887 }
888
889 hdr_res.taglen = hdr_arg.taglen;
890 hdr_res.tag = hdr_arg.tag;
891 if (encode_compound_hdr_res(&xdr_out, &hdr_res) != 0)
892 return rpc_system_err;
893
894 while (status == 0 && nops != hdr_arg.nops) {
895 status = process_op(hdr_arg.minorversion, nops, rqstp,
896 &xdr_in, argp, &xdr_out, resp, &cps);
897 nops++;
898 }
899
900 /* Buffer overflow in decode_ops_hdr or encode_ops_hdr. Return
901 * resource error in cb_compound status without returning op */
902 if (unlikely(status == htonl(NFS4ERR_RESOURCE_HDR))) {
903 status = htonl(NFS4ERR_RESOURCE);
904 nops--;
905 }
906
907 *hdr_res.status = status;
908 *hdr_res.nops = htonl(nops);
909 nfs4_cb_free_slot(&cps);
910 nfs_put_client(cps.clp);
911 dprintk("%s: done, status = %u\n", __func__, ntohl(status));
912 return rpc_success;
913}
914
915/*
916 * Define NFS4 callback COMPOUND ops.
917 */
918static struct callback_op callback_ops[] = {
919 [0] = {
920 .res_maxsize = CB_OP_HDR_RES_MAXSZ,
921 },
922 [OP_CB_GETATTR] = {
923 .process_op = (callback_process_op_t)nfs4_callback_getattr,
924 .decode_args = (callback_decode_arg_t)decode_getattr_args,
925 .encode_res = (callback_encode_res_t)encode_getattr_res,
926 .res_maxsize = CB_OP_GETATTR_RES_MAXSZ,
927 },
928 [OP_CB_RECALL] = {
929 .process_op = (callback_process_op_t)nfs4_callback_recall,
930 .decode_args = (callback_decode_arg_t)decode_recall_args,
931 .res_maxsize = CB_OP_RECALL_RES_MAXSZ,
932 },
933#if defined(CONFIG_NFS_V4_1)
934 [OP_CB_LAYOUTRECALL] = {
935 .process_op = (callback_process_op_t)nfs4_callback_layoutrecall,
936 .decode_args =
937 (callback_decode_arg_t)decode_layoutrecall_args,
938 .res_maxsize = CB_OP_LAYOUTRECALL_RES_MAXSZ,
939 },
940 [OP_CB_NOTIFY_DEVICEID] = {
941 .process_op = (callback_process_op_t)nfs4_callback_devicenotify,
942 .decode_args =
943 (callback_decode_arg_t)decode_devicenotify_args,
944 .res_maxsize = CB_OP_DEVICENOTIFY_RES_MAXSZ,
945 },
946 [OP_CB_SEQUENCE] = {
947 .process_op = (callback_process_op_t)nfs4_callback_sequence,
948 .decode_args = (callback_decode_arg_t)decode_cb_sequence_args,
949 .encode_res = (callback_encode_res_t)encode_cb_sequence_res,
950 .res_maxsize = CB_OP_SEQUENCE_RES_MAXSZ,
951 },
952 [OP_CB_RECALL_ANY] = {
953 .process_op = (callback_process_op_t)nfs4_callback_recallany,
954 .decode_args = (callback_decode_arg_t)decode_recallany_args,
955 .res_maxsize = CB_OP_RECALLANY_RES_MAXSZ,
956 },
957 [OP_CB_RECALL_SLOT] = {
958 .process_op = (callback_process_op_t)nfs4_callback_recallslot,
959 .decode_args = (callback_decode_arg_t)decode_recallslot_args,
960 .res_maxsize = CB_OP_RECALLSLOT_RES_MAXSZ,
961 },
962#endif /* CONFIG_NFS_V4_1 */
963};
964
965/*
966 * Define NFS4 callback procedures
967 */
968static struct svc_procedure nfs4_callback_procedures1[] = {
969 [CB_NULL] = {
970 .pc_func = nfs4_callback_null,
971 .pc_decode = (kxdrproc_t)nfs4_decode_void,
972 .pc_encode = (kxdrproc_t)nfs4_encode_void,
973 .pc_xdrressize = 1,
974 },
975 [CB_COMPOUND] = {
976 .pc_func = nfs4_callback_compound,
977 .pc_encode = (kxdrproc_t)nfs4_encode_void,
978 .pc_argsize = 256,
979 .pc_ressize = 256,
980 .pc_xdrressize = NFS4_CALLBACK_BUFSIZE,
981 }
982};
983
984struct svc_version nfs4_callback_version1 = {
985 .vs_vers = 1,
986 .vs_nproc = ARRAY_SIZE(nfs4_callback_procedures1),
987 .vs_proc = nfs4_callback_procedures1,
988 .vs_xdrsize = NFS4_CALLBACK_XDRSIZE,
989 .vs_dispatch = NULL,
990 .vs_hidden = 1,
991};
992
993struct svc_version nfs4_callback_version4 = {
994 .vs_vers = 4,
995 .vs_nproc = ARRAY_SIZE(nfs4_callback_procedures1),
996 .vs_proc = nfs4_callback_procedures1,
997 .vs_xdrsize = NFS4_CALLBACK_XDRSIZE,
998 .vs_dispatch = NULL,
999 .vs_hidden = 1,
1000};