| xj | b04a402 | 2021-11-25 15:01:52 +0800 | [diff] [blame] | 1 | /* | 
|  | 2 | *  Copyright (c) 2001 The Regents of the University of Michigan. | 
|  | 3 | *  All rights reserved. | 
|  | 4 | * | 
|  | 5 | *  Kendrick Smith <kmsmith@umich.edu> | 
|  | 6 | *  Andy Adamson <kandros@umich.edu> | 
|  | 7 | * | 
|  | 8 | *  Redistribution and use in source and binary forms, with or without | 
|  | 9 | *  modification, are permitted provided that the following conditions | 
|  | 10 | *  are met: | 
|  | 11 | * | 
|  | 12 | *  1. Redistributions of source code must retain the above copyright | 
|  | 13 | *     notice, this list of conditions and the following disclaimer. | 
|  | 14 | *  2. Redistributions in binary form must reproduce the above copyright | 
|  | 15 | *     notice, this list of conditions and the following disclaimer in the | 
|  | 16 | *     documentation and/or other materials provided with the distribution. | 
|  | 17 | *  3. Neither the name of the University nor the names of its | 
|  | 18 | *     contributors may be used to endorse or promote products derived | 
|  | 19 | *     from this software without specific prior written permission. | 
|  | 20 | * | 
|  | 21 | *  THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED | 
|  | 22 | *  WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF | 
|  | 23 | *  MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE | 
|  | 24 | *  DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE | 
|  | 25 | *  FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR | 
|  | 26 | *  CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF | 
|  | 27 | *  SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR | 
|  | 28 | *  BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF | 
|  | 29 | *  LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING | 
|  | 30 | *  NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS | 
|  | 31 | *  SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 
|  | 32 | * | 
|  | 33 | */ | 
|  | 34 |  | 
|  | 35 | #include <linux/file.h> | 
|  | 36 | #include <linux/fs.h> | 
|  | 37 | #include <linux/slab.h> | 
|  | 38 | #include <linux/namei.h> | 
|  | 39 | #include <linux/swap.h> | 
|  | 40 | #include <linux/pagemap.h> | 
|  | 41 | #include <linux/ratelimit.h> | 
|  | 42 | #include <linux/sunrpc/svcauth_gss.h> | 
|  | 43 | #include <linux/sunrpc/addr.h> | 
|  | 44 | #include <linux/jhash.h> | 
|  | 45 | #include "xdr4.h" | 
|  | 46 | #include "xdr4cb.h" | 
|  | 47 | #include "vfs.h" | 
|  | 48 | #include "current_stateid.h" | 
|  | 49 |  | 
|  | 50 | #include "netns.h" | 
|  | 51 | #include "pnfs.h" | 
|  | 52 |  | 
|  | 53 | #define NFSDDBG_FACILITY                NFSDDBG_PROC | 
|  | 54 |  | 
|  | 55 | #define all_ones {{~0,~0},~0} | 
|  | 56 | static const stateid_t one_stateid = { | 
|  | 57 | .si_generation = ~0, | 
|  | 58 | .si_opaque = all_ones, | 
|  | 59 | }; | 
|  | 60 | static const stateid_t zero_stateid = { | 
|  | 61 | /* all fields zero */ | 
|  | 62 | }; | 
|  | 63 | static const stateid_t currentstateid = { | 
|  | 64 | .si_generation = 1, | 
|  | 65 | }; | 
|  | 66 | static const stateid_t close_stateid = { | 
|  | 67 | .si_generation = 0xffffffffU, | 
|  | 68 | }; | 
|  | 69 |  | 
|  | 70 | static u64 current_sessionid = 1; | 
|  | 71 |  | 
|  | 72 | #define ZERO_STATEID(stateid) (!memcmp((stateid), &zero_stateid, sizeof(stateid_t))) | 
|  | 73 | #define ONE_STATEID(stateid)  (!memcmp((stateid), &one_stateid, sizeof(stateid_t))) | 
|  | 74 | #define CURRENT_STATEID(stateid) (!memcmp((stateid), ¤tstateid, sizeof(stateid_t))) | 
|  | 75 | #define CLOSE_STATEID(stateid)  (!memcmp((stateid), &close_stateid, sizeof(stateid_t))) | 
|  | 76 |  | 
|  | 77 | /* forward declarations */ | 
|  | 78 | static bool check_for_locks(struct nfs4_file *fp, struct nfs4_lockowner *lowner); | 
|  | 79 | static void nfs4_free_ol_stateid(struct nfs4_stid *stid); | 
|  | 80 |  | 
|  | 81 | /* Locking: */ | 
|  | 82 |  | 
|  | 83 | /* | 
|  | 84 | * Currently used for the del_recall_lru and file hash table.  In an | 
|  | 85 | * effort to decrease the scope of the client_mutex, this spinlock may | 
|  | 86 | * eventually cover more: | 
|  | 87 | */ | 
|  | 88 | static DEFINE_SPINLOCK(state_lock); | 
|  | 89 |  | 
|  | 90 | enum nfsd4_st_mutex_lock_subclass { | 
|  | 91 | OPEN_STATEID_MUTEX = 0, | 
|  | 92 | LOCK_STATEID_MUTEX = 1, | 
|  | 93 | }; | 
|  | 94 |  | 
|  | 95 | /* | 
|  | 96 | * A waitqueue for all in-progress 4.0 CLOSE operations that are waiting for | 
|  | 97 | * the refcount on the open stateid to drop. | 
|  | 98 | */ | 
|  | 99 | static DECLARE_WAIT_QUEUE_HEAD(close_wq); | 
|  | 100 |  | 
|  | 101 | static struct kmem_cache *client_slab; | 
|  | 102 | static struct kmem_cache *openowner_slab; | 
|  | 103 | static struct kmem_cache *lockowner_slab; | 
|  | 104 | static struct kmem_cache *file_slab; | 
|  | 105 | static struct kmem_cache *stateid_slab; | 
|  | 106 | static struct kmem_cache *deleg_slab; | 
|  | 107 | static struct kmem_cache *odstate_slab; | 
|  | 108 |  | 
|  | 109 | static void free_session(struct nfsd4_session *); | 
|  | 110 |  | 
|  | 111 | static const struct nfsd4_callback_ops nfsd4_cb_recall_ops; | 
|  | 112 | static const struct nfsd4_callback_ops nfsd4_cb_notify_lock_ops; | 
|  | 113 |  | 
|  | 114 | static bool is_session_dead(struct nfsd4_session *ses) | 
|  | 115 | { | 
|  | 116 | return ses->se_flags & NFS4_SESSION_DEAD; | 
|  | 117 | } | 
|  | 118 |  | 
|  | 119 | static __be32 mark_session_dead_locked(struct nfsd4_session *ses, int ref_held_by_me) | 
|  | 120 | { | 
|  | 121 | if (atomic_read(&ses->se_ref) > ref_held_by_me) | 
|  | 122 | return nfserr_jukebox; | 
|  | 123 | ses->se_flags |= NFS4_SESSION_DEAD; | 
|  | 124 | return nfs_ok; | 
|  | 125 | } | 
|  | 126 |  | 
|  | 127 | static bool is_client_expired(struct nfs4_client *clp) | 
|  | 128 | { | 
|  | 129 | return clp->cl_time == 0; | 
|  | 130 | } | 
|  | 131 |  | 
|  | 132 | static __be32 get_client_locked(struct nfs4_client *clp) | 
|  | 133 | { | 
|  | 134 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 135 |  | 
|  | 136 | lockdep_assert_held(&nn->client_lock); | 
|  | 137 |  | 
|  | 138 | if (is_client_expired(clp)) | 
|  | 139 | return nfserr_expired; | 
|  | 140 | atomic_inc(&clp->cl_refcount); | 
|  | 141 | return nfs_ok; | 
|  | 142 | } | 
|  | 143 |  | 
|  | 144 | /* must be called under the client_lock */ | 
|  | 145 | static inline void | 
|  | 146 | renew_client_locked(struct nfs4_client *clp) | 
|  | 147 | { | 
|  | 148 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 149 |  | 
|  | 150 | if (is_client_expired(clp)) { | 
|  | 151 | WARN_ON(1); | 
|  | 152 | printk("%s: client (clientid %08x/%08x) already expired\n", | 
|  | 153 | __func__, | 
|  | 154 | clp->cl_clientid.cl_boot, | 
|  | 155 | clp->cl_clientid.cl_id); | 
|  | 156 | return; | 
|  | 157 | } | 
|  | 158 |  | 
|  | 159 | dprintk("renewing client (clientid %08x/%08x)\n", | 
|  | 160 | clp->cl_clientid.cl_boot, | 
|  | 161 | clp->cl_clientid.cl_id); | 
|  | 162 | list_move_tail(&clp->cl_lru, &nn->client_lru); | 
|  | 163 | clp->cl_time = get_seconds(); | 
|  | 164 | } | 
|  | 165 |  | 
|  | 166 | static void put_client_renew_locked(struct nfs4_client *clp) | 
|  | 167 | { | 
|  | 168 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 169 |  | 
|  | 170 | lockdep_assert_held(&nn->client_lock); | 
|  | 171 |  | 
|  | 172 | if (!atomic_dec_and_test(&clp->cl_refcount)) | 
|  | 173 | return; | 
|  | 174 | if (!is_client_expired(clp)) | 
|  | 175 | renew_client_locked(clp); | 
|  | 176 | } | 
|  | 177 |  | 
|  | 178 | static void put_client_renew(struct nfs4_client *clp) | 
|  | 179 | { | 
|  | 180 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 181 |  | 
|  | 182 | if (!atomic_dec_and_lock(&clp->cl_refcount, &nn->client_lock)) | 
|  | 183 | return; | 
|  | 184 | if (!is_client_expired(clp)) | 
|  | 185 | renew_client_locked(clp); | 
|  | 186 | spin_unlock(&nn->client_lock); | 
|  | 187 | } | 
|  | 188 |  | 
|  | 189 | static __be32 nfsd4_get_session_locked(struct nfsd4_session *ses) | 
|  | 190 | { | 
|  | 191 | __be32 status; | 
|  | 192 |  | 
|  | 193 | if (is_session_dead(ses)) | 
|  | 194 | return nfserr_badsession; | 
|  | 195 | status = get_client_locked(ses->se_client); | 
|  | 196 | if (status) | 
|  | 197 | return status; | 
|  | 198 | atomic_inc(&ses->se_ref); | 
|  | 199 | return nfs_ok; | 
|  | 200 | } | 
|  | 201 |  | 
|  | 202 | static void nfsd4_put_session_locked(struct nfsd4_session *ses) | 
|  | 203 | { | 
|  | 204 | struct nfs4_client *clp = ses->se_client; | 
|  | 205 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 206 |  | 
|  | 207 | lockdep_assert_held(&nn->client_lock); | 
|  | 208 |  | 
|  | 209 | if (atomic_dec_and_test(&ses->se_ref) && is_session_dead(ses)) | 
|  | 210 | free_session(ses); | 
|  | 211 | put_client_renew_locked(clp); | 
|  | 212 | } | 
|  | 213 |  | 
|  | 214 | static void nfsd4_put_session(struct nfsd4_session *ses) | 
|  | 215 | { | 
|  | 216 | struct nfs4_client *clp = ses->se_client; | 
|  | 217 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 218 |  | 
|  | 219 | spin_lock(&nn->client_lock); | 
|  | 220 | nfsd4_put_session_locked(ses); | 
|  | 221 | spin_unlock(&nn->client_lock); | 
|  | 222 | } | 
|  | 223 |  | 
|  | 224 | static struct nfsd4_blocked_lock * | 
|  | 225 | find_blocked_lock(struct nfs4_lockowner *lo, struct knfsd_fh *fh, | 
|  | 226 | struct nfsd_net *nn) | 
|  | 227 | { | 
|  | 228 | struct nfsd4_blocked_lock *cur, *found = NULL; | 
|  | 229 |  | 
|  | 230 | spin_lock(&nn->blocked_locks_lock); | 
|  | 231 | list_for_each_entry(cur, &lo->lo_blocked, nbl_list) { | 
|  | 232 | if (fh_match(fh, &cur->nbl_fh)) { | 
|  | 233 | list_del_init(&cur->nbl_list); | 
|  | 234 | list_del_init(&cur->nbl_lru); | 
|  | 235 | found = cur; | 
|  | 236 | break; | 
|  | 237 | } | 
|  | 238 | } | 
|  | 239 | spin_unlock(&nn->blocked_locks_lock); | 
|  | 240 | if (found) | 
|  | 241 | posix_unblock_lock(&found->nbl_lock); | 
|  | 242 | return found; | 
|  | 243 | } | 
|  | 244 |  | 
|  | 245 | static struct nfsd4_blocked_lock * | 
|  | 246 | find_or_allocate_block(struct nfs4_lockowner *lo, struct knfsd_fh *fh, | 
|  | 247 | struct nfsd_net *nn) | 
|  | 248 | { | 
|  | 249 | struct nfsd4_blocked_lock *nbl; | 
|  | 250 |  | 
|  | 251 | nbl = find_blocked_lock(lo, fh, nn); | 
|  | 252 | if (!nbl) { | 
|  | 253 | nbl= kmalloc(sizeof(*nbl), GFP_KERNEL); | 
|  | 254 | if (nbl) { | 
|  | 255 | fh_copy_shallow(&nbl->nbl_fh, fh); | 
|  | 256 | locks_init_lock(&nbl->nbl_lock); | 
|  | 257 | nfsd4_init_cb(&nbl->nbl_cb, lo->lo_owner.so_client, | 
|  | 258 | &nfsd4_cb_notify_lock_ops, | 
|  | 259 | NFSPROC4_CLNT_CB_NOTIFY_LOCK); | 
|  | 260 | } | 
|  | 261 | } | 
|  | 262 | return nbl; | 
|  | 263 | } | 
|  | 264 |  | 
|  | 265 | static void | 
|  | 266 | free_blocked_lock(struct nfsd4_blocked_lock *nbl) | 
|  | 267 | { | 
|  | 268 | locks_release_private(&nbl->nbl_lock); | 
|  | 269 | kfree(nbl); | 
|  | 270 | } | 
|  | 271 |  | 
|  | 272 | static void | 
|  | 273 | remove_blocked_locks(struct nfs4_lockowner *lo) | 
|  | 274 | { | 
|  | 275 | struct nfs4_client *clp = lo->lo_owner.so_client; | 
|  | 276 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 277 | struct nfsd4_blocked_lock *nbl; | 
|  | 278 | LIST_HEAD(reaplist); | 
|  | 279 |  | 
|  | 280 | /* Dequeue all blocked locks */ | 
|  | 281 | spin_lock(&nn->blocked_locks_lock); | 
|  | 282 | while (!list_empty(&lo->lo_blocked)) { | 
|  | 283 | nbl = list_first_entry(&lo->lo_blocked, | 
|  | 284 | struct nfsd4_blocked_lock, | 
|  | 285 | nbl_list); | 
|  | 286 | list_del_init(&nbl->nbl_list); | 
|  | 287 | list_move(&nbl->nbl_lru, &reaplist); | 
|  | 288 | } | 
|  | 289 | spin_unlock(&nn->blocked_locks_lock); | 
|  | 290 |  | 
|  | 291 | /* Now free them */ | 
|  | 292 | while (!list_empty(&reaplist)) { | 
|  | 293 | nbl = list_first_entry(&reaplist, struct nfsd4_blocked_lock, | 
|  | 294 | nbl_lru); | 
|  | 295 | list_del_init(&nbl->nbl_lru); | 
|  | 296 | posix_unblock_lock(&nbl->nbl_lock); | 
|  | 297 | free_blocked_lock(nbl); | 
|  | 298 | } | 
|  | 299 | } | 
|  | 300 |  | 
|  | 301 | static int | 
|  | 302 | nfsd4_cb_notify_lock_done(struct nfsd4_callback *cb, struct rpc_task *task) | 
|  | 303 | { | 
|  | 304 | /* | 
|  | 305 | * Since this is just an optimization, we don't try very hard if it | 
|  | 306 | * turns out not to succeed. We'll requeue it on NFS4ERR_DELAY, and | 
|  | 307 | * just quit trying on anything else. | 
|  | 308 | */ | 
|  | 309 | switch (task->tk_status) { | 
|  | 310 | case -NFS4ERR_DELAY: | 
|  | 311 | rpc_delay(task, 1 * HZ); | 
|  | 312 | return 0; | 
|  | 313 | default: | 
|  | 314 | return 1; | 
|  | 315 | } | 
|  | 316 | } | 
|  | 317 |  | 
|  | 318 | static void | 
|  | 319 | nfsd4_cb_notify_lock_release(struct nfsd4_callback *cb) | 
|  | 320 | { | 
|  | 321 | struct nfsd4_blocked_lock	*nbl = container_of(cb, | 
|  | 322 | struct nfsd4_blocked_lock, nbl_cb); | 
|  | 323 |  | 
|  | 324 | free_blocked_lock(nbl); | 
|  | 325 | } | 
|  | 326 |  | 
|  | 327 | static const struct nfsd4_callback_ops nfsd4_cb_notify_lock_ops = { | 
|  | 328 | .done		= nfsd4_cb_notify_lock_done, | 
|  | 329 | .release	= nfsd4_cb_notify_lock_release, | 
|  | 330 | }; | 
|  | 331 |  | 
|  | 332 | static inline struct nfs4_stateowner * | 
|  | 333 | nfs4_get_stateowner(struct nfs4_stateowner *sop) | 
|  | 334 | { | 
|  | 335 | atomic_inc(&sop->so_count); | 
|  | 336 | return sop; | 
|  | 337 | } | 
|  | 338 |  | 
|  | 339 | static int | 
|  | 340 | same_owner_str(struct nfs4_stateowner *sop, struct xdr_netobj *owner) | 
|  | 341 | { | 
|  | 342 | return (sop->so_owner.len == owner->len) && | 
|  | 343 | 0 == memcmp(sop->so_owner.data, owner->data, owner->len); | 
|  | 344 | } | 
|  | 345 |  | 
|  | 346 | static struct nfs4_openowner * | 
|  | 347 | find_openstateowner_str_locked(unsigned int hashval, struct nfsd4_open *open, | 
|  | 348 | struct nfs4_client *clp) | 
|  | 349 | { | 
|  | 350 | struct nfs4_stateowner *so; | 
|  | 351 |  | 
|  | 352 | lockdep_assert_held(&clp->cl_lock); | 
|  | 353 |  | 
|  | 354 | list_for_each_entry(so, &clp->cl_ownerstr_hashtbl[hashval], | 
|  | 355 | so_strhash) { | 
|  | 356 | if (!so->so_is_open_owner) | 
|  | 357 | continue; | 
|  | 358 | if (same_owner_str(so, &open->op_owner)) | 
|  | 359 | return openowner(nfs4_get_stateowner(so)); | 
|  | 360 | } | 
|  | 361 | return NULL; | 
|  | 362 | } | 
|  | 363 |  | 
|  | 364 | static struct nfs4_openowner * | 
|  | 365 | find_openstateowner_str(unsigned int hashval, struct nfsd4_open *open, | 
|  | 366 | struct nfs4_client *clp) | 
|  | 367 | { | 
|  | 368 | struct nfs4_openowner *oo; | 
|  | 369 |  | 
|  | 370 | spin_lock(&clp->cl_lock); | 
|  | 371 | oo = find_openstateowner_str_locked(hashval, open, clp); | 
|  | 372 | spin_unlock(&clp->cl_lock); | 
|  | 373 | return oo; | 
|  | 374 | } | 
|  | 375 |  | 
|  | 376 | static inline u32 | 
|  | 377 | opaque_hashval(const void *ptr, int nbytes) | 
|  | 378 | { | 
|  | 379 | unsigned char *cptr = (unsigned char *) ptr; | 
|  | 380 |  | 
|  | 381 | u32 x = 0; | 
|  | 382 | while (nbytes--) { | 
|  | 383 | x *= 37; | 
|  | 384 | x += *cptr++; | 
|  | 385 | } | 
|  | 386 | return x; | 
|  | 387 | } | 
|  | 388 |  | 
|  | 389 | static void nfsd4_free_file_rcu(struct rcu_head *rcu) | 
|  | 390 | { | 
|  | 391 | struct nfs4_file *fp = container_of(rcu, struct nfs4_file, fi_rcu); | 
|  | 392 |  | 
|  | 393 | kmem_cache_free(file_slab, fp); | 
|  | 394 | } | 
|  | 395 |  | 
|  | 396 | void | 
|  | 397 | put_nfs4_file(struct nfs4_file *fi) | 
|  | 398 | { | 
|  | 399 | might_lock(&state_lock); | 
|  | 400 |  | 
|  | 401 | if (refcount_dec_and_lock(&fi->fi_ref, &state_lock)) { | 
|  | 402 | hlist_del_rcu(&fi->fi_hash); | 
|  | 403 | spin_unlock(&state_lock); | 
|  | 404 | WARN_ON_ONCE(!list_empty(&fi->fi_clnt_odstate)); | 
|  | 405 | WARN_ON_ONCE(!list_empty(&fi->fi_delegations)); | 
|  | 406 | call_rcu(&fi->fi_rcu, nfsd4_free_file_rcu); | 
|  | 407 | } | 
|  | 408 | } | 
|  | 409 |  | 
|  | 410 | static struct file * | 
|  | 411 | __nfs4_get_fd(struct nfs4_file *f, int oflag) | 
|  | 412 | { | 
|  | 413 | if (f->fi_fds[oflag]) | 
|  | 414 | return get_file(f->fi_fds[oflag]); | 
|  | 415 | return NULL; | 
|  | 416 | } | 
|  | 417 |  | 
|  | 418 | static struct file * | 
|  | 419 | find_writeable_file_locked(struct nfs4_file *f) | 
|  | 420 | { | 
|  | 421 | struct file *ret; | 
|  | 422 |  | 
|  | 423 | lockdep_assert_held(&f->fi_lock); | 
|  | 424 |  | 
|  | 425 | ret = __nfs4_get_fd(f, O_WRONLY); | 
|  | 426 | if (!ret) | 
|  | 427 | ret = __nfs4_get_fd(f, O_RDWR); | 
|  | 428 | return ret; | 
|  | 429 | } | 
|  | 430 |  | 
|  | 431 | static struct file * | 
|  | 432 | find_writeable_file(struct nfs4_file *f) | 
|  | 433 | { | 
|  | 434 | struct file *ret; | 
|  | 435 |  | 
|  | 436 | spin_lock(&f->fi_lock); | 
|  | 437 | ret = find_writeable_file_locked(f); | 
|  | 438 | spin_unlock(&f->fi_lock); | 
|  | 439 |  | 
|  | 440 | return ret; | 
|  | 441 | } | 
|  | 442 |  | 
|  | 443 | static struct file *find_readable_file_locked(struct nfs4_file *f) | 
|  | 444 | { | 
|  | 445 | struct file *ret; | 
|  | 446 |  | 
|  | 447 | lockdep_assert_held(&f->fi_lock); | 
|  | 448 |  | 
|  | 449 | ret = __nfs4_get_fd(f, O_RDONLY); | 
|  | 450 | if (!ret) | 
|  | 451 | ret = __nfs4_get_fd(f, O_RDWR); | 
|  | 452 | return ret; | 
|  | 453 | } | 
|  | 454 |  | 
|  | 455 | static struct file * | 
|  | 456 | find_readable_file(struct nfs4_file *f) | 
|  | 457 | { | 
|  | 458 | struct file *ret; | 
|  | 459 |  | 
|  | 460 | spin_lock(&f->fi_lock); | 
|  | 461 | ret = find_readable_file_locked(f); | 
|  | 462 | spin_unlock(&f->fi_lock); | 
|  | 463 |  | 
|  | 464 | return ret; | 
|  | 465 | } | 
|  | 466 |  | 
|  | 467 | struct file * | 
|  | 468 | find_any_file(struct nfs4_file *f) | 
|  | 469 | { | 
|  | 470 | struct file *ret; | 
|  | 471 |  | 
|  | 472 | spin_lock(&f->fi_lock); | 
|  | 473 | ret = __nfs4_get_fd(f, O_RDWR); | 
|  | 474 | if (!ret) { | 
|  | 475 | ret = __nfs4_get_fd(f, O_WRONLY); | 
|  | 476 | if (!ret) | 
|  | 477 | ret = __nfs4_get_fd(f, O_RDONLY); | 
|  | 478 | } | 
|  | 479 | spin_unlock(&f->fi_lock); | 
|  | 480 | return ret; | 
|  | 481 | } | 
|  | 482 |  | 
|  | 483 | static atomic_long_t num_delegations; | 
|  | 484 | unsigned long max_delegations; | 
|  | 485 |  | 
|  | 486 | /* | 
|  | 487 | * Open owner state (share locks) | 
|  | 488 | */ | 
|  | 489 |  | 
|  | 490 | /* hash tables for lock and open owners */ | 
|  | 491 | #define OWNER_HASH_BITS              8 | 
|  | 492 | #define OWNER_HASH_SIZE             (1 << OWNER_HASH_BITS) | 
|  | 493 | #define OWNER_HASH_MASK             (OWNER_HASH_SIZE - 1) | 
|  | 494 |  | 
|  | 495 | static unsigned int ownerstr_hashval(struct xdr_netobj *ownername) | 
|  | 496 | { | 
|  | 497 | unsigned int ret; | 
|  | 498 |  | 
|  | 499 | ret = opaque_hashval(ownername->data, ownername->len); | 
|  | 500 | return ret & OWNER_HASH_MASK; | 
|  | 501 | } | 
|  | 502 |  | 
|  | 503 | /* hash table for nfs4_file */ | 
|  | 504 | #define FILE_HASH_BITS                   8 | 
|  | 505 | #define FILE_HASH_SIZE                  (1 << FILE_HASH_BITS) | 
|  | 506 |  | 
|  | 507 | static unsigned int nfsd_fh_hashval(struct knfsd_fh *fh) | 
|  | 508 | { | 
|  | 509 | return jhash2(fh->fh_base.fh_pad, XDR_QUADLEN(fh->fh_size), 0); | 
|  | 510 | } | 
|  | 511 |  | 
|  | 512 | static unsigned int file_hashval(struct knfsd_fh *fh) | 
|  | 513 | { | 
|  | 514 | return nfsd_fh_hashval(fh) & (FILE_HASH_SIZE - 1); | 
|  | 515 | } | 
|  | 516 |  | 
|  | 517 | static struct hlist_head file_hashtbl[FILE_HASH_SIZE]; | 
|  | 518 |  | 
|  | 519 | static void | 
|  | 520 | __nfs4_file_get_access(struct nfs4_file *fp, u32 access) | 
|  | 521 | { | 
|  | 522 | lockdep_assert_held(&fp->fi_lock); | 
|  | 523 |  | 
|  | 524 | if (access & NFS4_SHARE_ACCESS_WRITE) | 
|  | 525 | atomic_inc(&fp->fi_access[O_WRONLY]); | 
|  | 526 | if (access & NFS4_SHARE_ACCESS_READ) | 
|  | 527 | atomic_inc(&fp->fi_access[O_RDONLY]); | 
|  | 528 | } | 
|  | 529 |  | 
|  | 530 | static __be32 | 
|  | 531 | nfs4_file_get_access(struct nfs4_file *fp, u32 access) | 
|  | 532 | { | 
|  | 533 | lockdep_assert_held(&fp->fi_lock); | 
|  | 534 |  | 
|  | 535 | /* Does this access mode make sense? */ | 
|  | 536 | if (access & ~NFS4_SHARE_ACCESS_BOTH) | 
|  | 537 | return nfserr_inval; | 
|  | 538 |  | 
|  | 539 | /* Does it conflict with a deny mode already set? */ | 
|  | 540 | if ((access & fp->fi_share_deny) != 0) | 
|  | 541 | return nfserr_share_denied; | 
|  | 542 |  | 
|  | 543 | __nfs4_file_get_access(fp, access); | 
|  | 544 | return nfs_ok; | 
|  | 545 | } | 
|  | 546 |  | 
|  | 547 | static __be32 nfs4_file_check_deny(struct nfs4_file *fp, u32 deny) | 
|  | 548 | { | 
|  | 549 | /* Common case is that there is no deny mode. */ | 
|  | 550 | if (deny) { | 
|  | 551 | /* Does this deny mode make sense? */ | 
|  | 552 | if (deny & ~NFS4_SHARE_DENY_BOTH) | 
|  | 553 | return nfserr_inval; | 
|  | 554 |  | 
|  | 555 | if ((deny & NFS4_SHARE_DENY_READ) && | 
|  | 556 | atomic_read(&fp->fi_access[O_RDONLY])) | 
|  | 557 | return nfserr_share_denied; | 
|  | 558 |  | 
|  | 559 | if ((deny & NFS4_SHARE_DENY_WRITE) && | 
|  | 560 | atomic_read(&fp->fi_access[O_WRONLY])) | 
|  | 561 | return nfserr_share_denied; | 
|  | 562 | } | 
|  | 563 | return nfs_ok; | 
|  | 564 | } | 
|  | 565 |  | 
|  | 566 | static void __nfs4_file_put_access(struct nfs4_file *fp, int oflag) | 
|  | 567 | { | 
|  | 568 | might_lock(&fp->fi_lock); | 
|  | 569 |  | 
|  | 570 | if (atomic_dec_and_lock(&fp->fi_access[oflag], &fp->fi_lock)) { | 
|  | 571 | struct file *f1 = NULL; | 
|  | 572 | struct file *f2 = NULL; | 
|  | 573 |  | 
|  | 574 | swap(f1, fp->fi_fds[oflag]); | 
|  | 575 | if (atomic_read(&fp->fi_access[1 - oflag]) == 0) | 
|  | 576 | swap(f2, fp->fi_fds[O_RDWR]); | 
|  | 577 | spin_unlock(&fp->fi_lock); | 
|  | 578 | if (f1) | 
|  | 579 | fput(f1); | 
|  | 580 | if (f2) | 
|  | 581 | fput(f2); | 
|  | 582 | } | 
|  | 583 | } | 
|  | 584 |  | 
|  | 585 | static void nfs4_file_put_access(struct nfs4_file *fp, u32 access) | 
|  | 586 | { | 
|  | 587 | WARN_ON_ONCE(access & ~NFS4_SHARE_ACCESS_BOTH); | 
|  | 588 |  | 
|  | 589 | if (access & NFS4_SHARE_ACCESS_WRITE) | 
|  | 590 | __nfs4_file_put_access(fp, O_WRONLY); | 
|  | 591 | if (access & NFS4_SHARE_ACCESS_READ) | 
|  | 592 | __nfs4_file_put_access(fp, O_RDONLY); | 
|  | 593 | } | 
|  | 594 |  | 
|  | 595 | /* | 
|  | 596 | * Allocate a new open/delegation state counter. This is needed for | 
|  | 597 | * pNFS for proper return on close semantics. | 
|  | 598 | * | 
|  | 599 | * Note that we only allocate it for pNFS-enabled exports, otherwise | 
|  | 600 | * all pointers to struct nfs4_clnt_odstate are always NULL. | 
|  | 601 | */ | 
|  | 602 | static struct nfs4_clnt_odstate * | 
|  | 603 | alloc_clnt_odstate(struct nfs4_client *clp) | 
|  | 604 | { | 
|  | 605 | struct nfs4_clnt_odstate *co; | 
|  | 606 |  | 
|  | 607 | co = kmem_cache_zalloc(odstate_slab, GFP_KERNEL); | 
|  | 608 | if (co) { | 
|  | 609 | co->co_client = clp; | 
|  | 610 | refcount_set(&co->co_odcount, 1); | 
|  | 611 | } | 
|  | 612 | return co; | 
|  | 613 | } | 
|  | 614 |  | 
|  | 615 | static void | 
|  | 616 | hash_clnt_odstate_locked(struct nfs4_clnt_odstate *co) | 
|  | 617 | { | 
|  | 618 | struct nfs4_file *fp = co->co_file; | 
|  | 619 |  | 
|  | 620 | lockdep_assert_held(&fp->fi_lock); | 
|  | 621 | list_add(&co->co_perfile, &fp->fi_clnt_odstate); | 
|  | 622 | } | 
|  | 623 |  | 
|  | 624 | static inline void | 
|  | 625 | get_clnt_odstate(struct nfs4_clnt_odstate *co) | 
|  | 626 | { | 
|  | 627 | if (co) | 
|  | 628 | refcount_inc(&co->co_odcount); | 
|  | 629 | } | 
|  | 630 |  | 
|  | 631 | static void | 
|  | 632 | put_clnt_odstate(struct nfs4_clnt_odstate *co) | 
|  | 633 | { | 
|  | 634 | struct nfs4_file *fp; | 
|  | 635 |  | 
|  | 636 | if (!co) | 
|  | 637 | return; | 
|  | 638 |  | 
|  | 639 | fp = co->co_file; | 
|  | 640 | if (refcount_dec_and_lock(&co->co_odcount, &fp->fi_lock)) { | 
|  | 641 | list_del(&co->co_perfile); | 
|  | 642 | spin_unlock(&fp->fi_lock); | 
|  | 643 |  | 
|  | 644 | nfsd4_return_all_file_layouts(co->co_client, fp); | 
|  | 645 | kmem_cache_free(odstate_slab, co); | 
|  | 646 | } | 
|  | 647 | } | 
|  | 648 |  | 
|  | 649 | static struct nfs4_clnt_odstate * | 
|  | 650 | find_or_hash_clnt_odstate(struct nfs4_file *fp, struct nfs4_clnt_odstate *new) | 
|  | 651 | { | 
|  | 652 | struct nfs4_clnt_odstate *co; | 
|  | 653 | struct nfs4_client *cl; | 
|  | 654 |  | 
|  | 655 | if (!new) | 
|  | 656 | return NULL; | 
|  | 657 |  | 
|  | 658 | cl = new->co_client; | 
|  | 659 |  | 
|  | 660 | spin_lock(&fp->fi_lock); | 
|  | 661 | list_for_each_entry(co, &fp->fi_clnt_odstate, co_perfile) { | 
|  | 662 | if (co->co_client == cl) { | 
|  | 663 | get_clnt_odstate(co); | 
|  | 664 | goto out; | 
|  | 665 | } | 
|  | 666 | } | 
|  | 667 | co = new; | 
|  | 668 | co->co_file = fp; | 
|  | 669 | hash_clnt_odstate_locked(new); | 
|  | 670 | out: | 
|  | 671 | spin_unlock(&fp->fi_lock); | 
|  | 672 | return co; | 
|  | 673 | } | 
|  | 674 |  | 
|  | 675 | struct nfs4_stid *nfs4_alloc_stid(struct nfs4_client *cl, struct kmem_cache *slab, | 
|  | 676 | void (*sc_free)(struct nfs4_stid *)) | 
|  | 677 | { | 
|  | 678 | struct nfs4_stid *stid; | 
|  | 679 | int new_id; | 
|  | 680 |  | 
|  | 681 | stid = kmem_cache_zalloc(slab, GFP_KERNEL); | 
|  | 682 | if (!stid) | 
|  | 683 | return NULL; | 
|  | 684 |  | 
|  | 685 | idr_preload(GFP_KERNEL); | 
|  | 686 | spin_lock(&cl->cl_lock); | 
|  | 687 | new_id = idr_alloc_cyclic(&cl->cl_stateids, stid, 0, 0, GFP_NOWAIT); | 
|  | 688 | spin_unlock(&cl->cl_lock); | 
|  | 689 | idr_preload_end(); | 
|  | 690 | if (new_id < 0) | 
|  | 691 | goto out_free; | 
|  | 692 |  | 
|  | 693 | stid->sc_free = sc_free; | 
|  | 694 | stid->sc_client = cl; | 
|  | 695 | stid->sc_stateid.si_opaque.so_id = new_id; | 
|  | 696 | stid->sc_stateid.si_opaque.so_clid = cl->cl_clientid; | 
|  | 697 | /* Will be incremented before return to client: */ | 
|  | 698 | refcount_set(&stid->sc_count, 1); | 
|  | 699 | spin_lock_init(&stid->sc_lock); | 
|  | 700 |  | 
|  | 701 | /* | 
|  | 702 | * It shouldn't be a problem to reuse an opaque stateid value. | 
|  | 703 | * I don't think it is for 4.1.  But with 4.0 I worry that, for | 
|  | 704 | * example, a stray write retransmission could be accepted by | 
|  | 705 | * the server when it should have been rejected.  Therefore, | 
|  | 706 | * adopt a trick from the sctp code to attempt to maximize the | 
|  | 707 | * amount of time until an id is reused, by ensuring they always | 
|  | 708 | * "increase" (mod INT_MAX): | 
|  | 709 | */ | 
|  | 710 | return stid; | 
|  | 711 | out_free: | 
|  | 712 | kmem_cache_free(slab, stid); | 
|  | 713 | return NULL; | 
|  | 714 | } | 
|  | 715 |  | 
|  | 716 | static struct nfs4_ol_stateid * nfs4_alloc_open_stateid(struct nfs4_client *clp) | 
|  | 717 | { | 
|  | 718 | struct nfs4_stid *stid; | 
|  | 719 |  | 
|  | 720 | stid = nfs4_alloc_stid(clp, stateid_slab, nfs4_free_ol_stateid); | 
|  | 721 | if (!stid) | 
|  | 722 | return NULL; | 
|  | 723 |  | 
|  | 724 | return openlockstateid(stid); | 
|  | 725 | } | 
|  | 726 |  | 
|  | 727 | static void nfs4_free_deleg(struct nfs4_stid *stid) | 
|  | 728 | { | 
|  | 729 | kmem_cache_free(deleg_slab, stid); | 
|  | 730 | atomic_long_dec(&num_delegations); | 
|  | 731 | } | 
|  | 732 |  | 
|  | 733 | /* | 
|  | 734 | * When we recall a delegation, we should be careful not to hand it | 
|  | 735 | * out again straight away. | 
|  | 736 | * To ensure this we keep a pair of bloom filters ('new' and 'old') | 
|  | 737 | * in which the filehandles of recalled delegations are "stored". | 
|  | 738 | * If a filehandle appear in either filter, a delegation is blocked. | 
|  | 739 | * When a delegation is recalled, the filehandle is stored in the "new" | 
|  | 740 | * filter. | 
|  | 741 | * Every 30 seconds we swap the filters and clear the "new" one, | 
|  | 742 | * unless both are empty of course. | 
|  | 743 | * | 
|  | 744 | * Each filter is 256 bits.  We hash the filehandle to 32bit and use the | 
|  | 745 | * low 3 bytes as hash-table indices. | 
|  | 746 | * | 
|  | 747 | * 'blocked_delegations_lock', which is always taken in block_delegations(), | 
|  | 748 | * is used to manage concurrent access.  Testing does not need the lock | 
|  | 749 | * except when swapping the two filters. | 
|  | 750 | */ | 
|  | 751 | static DEFINE_SPINLOCK(blocked_delegations_lock); | 
|  | 752 | static struct bloom_pair { | 
|  | 753 | int	entries, old_entries; | 
|  | 754 | time_t	swap_time; | 
|  | 755 | int	new; /* index into 'set' */ | 
|  | 756 | DECLARE_BITMAP(set[2], 256); | 
|  | 757 | } blocked_delegations; | 
|  | 758 |  | 
|  | 759 | static int delegation_blocked(struct knfsd_fh *fh) | 
|  | 760 | { | 
|  | 761 | u32 hash; | 
|  | 762 | struct bloom_pair *bd = &blocked_delegations; | 
|  | 763 |  | 
|  | 764 | if (bd->entries == 0) | 
|  | 765 | return 0; | 
|  | 766 | if (seconds_since_boot() - bd->swap_time > 30) { | 
|  | 767 | spin_lock(&blocked_delegations_lock); | 
|  | 768 | if (seconds_since_boot() - bd->swap_time > 30) { | 
|  | 769 | bd->entries -= bd->old_entries; | 
|  | 770 | bd->old_entries = bd->entries; | 
|  | 771 | memset(bd->set[bd->new], 0, | 
|  | 772 | sizeof(bd->set[0])); | 
|  | 773 | bd->new = 1-bd->new; | 
|  | 774 | bd->swap_time = seconds_since_boot(); | 
|  | 775 | } | 
|  | 776 | spin_unlock(&blocked_delegations_lock); | 
|  | 777 | } | 
|  | 778 | hash = jhash(&fh->fh_base, fh->fh_size, 0); | 
|  | 779 | if (test_bit(hash&255, bd->set[0]) && | 
|  | 780 | test_bit((hash>>8)&255, bd->set[0]) && | 
|  | 781 | test_bit((hash>>16)&255, bd->set[0])) | 
|  | 782 | return 1; | 
|  | 783 |  | 
|  | 784 | if (test_bit(hash&255, bd->set[1]) && | 
|  | 785 | test_bit((hash>>8)&255, bd->set[1]) && | 
|  | 786 | test_bit((hash>>16)&255, bd->set[1])) | 
|  | 787 | return 1; | 
|  | 788 |  | 
|  | 789 | return 0; | 
|  | 790 | } | 
|  | 791 |  | 
|  | 792 | static void block_delegations(struct knfsd_fh *fh) | 
|  | 793 | { | 
|  | 794 | u32 hash; | 
|  | 795 | struct bloom_pair *bd = &blocked_delegations; | 
|  | 796 |  | 
|  | 797 | hash = jhash(&fh->fh_base, fh->fh_size, 0); | 
|  | 798 |  | 
|  | 799 | spin_lock(&blocked_delegations_lock); | 
|  | 800 | __set_bit(hash&255, bd->set[bd->new]); | 
|  | 801 | __set_bit((hash>>8)&255, bd->set[bd->new]); | 
|  | 802 | __set_bit((hash>>16)&255, bd->set[bd->new]); | 
|  | 803 | if (bd->entries == 0) | 
|  | 804 | bd->swap_time = seconds_since_boot(); | 
|  | 805 | bd->entries += 1; | 
|  | 806 | spin_unlock(&blocked_delegations_lock); | 
|  | 807 | } | 
|  | 808 |  | 
|  | 809 | static struct nfs4_delegation * | 
|  | 810 | alloc_init_deleg(struct nfs4_client *clp, struct nfs4_file *fp, | 
|  | 811 | struct svc_fh *current_fh, | 
|  | 812 | struct nfs4_clnt_odstate *odstate) | 
|  | 813 | { | 
|  | 814 | struct nfs4_delegation *dp; | 
|  | 815 | long n; | 
|  | 816 |  | 
|  | 817 | dprintk("NFSD alloc_init_deleg\n"); | 
|  | 818 | n = atomic_long_inc_return(&num_delegations); | 
|  | 819 | if (n < 0 || n > max_delegations) | 
|  | 820 | goto out_dec; | 
|  | 821 | if (delegation_blocked(¤t_fh->fh_handle)) | 
|  | 822 | goto out_dec; | 
|  | 823 | dp = delegstateid(nfs4_alloc_stid(clp, deleg_slab, nfs4_free_deleg)); | 
|  | 824 | if (dp == NULL) | 
|  | 825 | goto out_dec; | 
|  | 826 |  | 
|  | 827 | /* | 
|  | 828 | * delegation seqid's are never incremented.  The 4.1 special | 
|  | 829 | * meaning of seqid 0 isn't meaningful, really, but let's avoid | 
|  | 830 | * 0 anyway just for consistency and use 1: | 
|  | 831 | */ | 
|  | 832 | dp->dl_stid.sc_stateid.si_generation = 1; | 
|  | 833 | INIT_LIST_HEAD(&dp->dl_perfile); | 
|  | 834 | INIT_LIST_HEAD(&dp->dl_perclnt); | 
|  | 835 | INIT_LIST_HEAD(&dp->dl_recall_lru); | 
|  | 836 | dp->dl_clnt_odstate = odstate; | 
|  | 837 | get_clnt_odstate(odstate); | 
|  | 838 | dp->dl_type = NFS4_OPEN_DELEGATE_READ; | 
|  | 839 | dp->dl_retries = 1; | 
|  | 840 | nfsd4_init_cb(&dp->dl_recall, dp->dl_stid.sc_client, | 
|  | 841 | &nfsd4_cb_recall_ops, NFSPROC4_CLNT_CB_RECALL); | 
|  | 842 | get_nfs4_file(fp); | 
|  | 843 | dp->dl_stid.sc_file = fp; | 
|  | 844 | return dp; | 
|  | 845 | out_dec: | 
|  | 846 | atomic_long_dec(&num_delegations); | 
|  | 847 | return NULL; | 
|  | 848 | } | 
|  | 849 |  | 
|  | 850 | void | 
|  | 851 | nfs4_put_stid(struct nfs4_stid *s) | 
|  | 852 | { | 
|  | 853 | struct nfs4_file *fp = s->sc_file; | 
|  | 854 | struct nfs4_client *clp = s->sc_client; | 
|  | 855 |  | 
|  | 856 | might_lock(&clp->cl_lock); | 
|  | 857 |  | 
|  | 858 | if (!refcount_dec_and_lock(&s->sc_count, &clp->cl_lock)) { | 
|  | 859 | wake_up_all(&close_wq); | 
|  | 860 | return; | 
|  | 861 | } | 
|  | 862 | idr_remove(&clp->cl_stateids, s->sc_stateid.si_opaque.so_id); | 
|  | 863 | spin_unlock(&clp->cl_lock); | 
|  | 864 | s->sc_free(s); | 
|  | 865 | if (fp) | 
|  | 866 | put_nfs4_file(fp); | 
|  | 867 | } | 
|  | 868 |  | 
|  | 869 | void | 
|  | 870 | nfs4_inc_and_copy_stateid(stateid_t *dst, struct nfs4_stid *stid) | 
|  | 871 | { | 
|  | 872 | stateid_t *src = &stid->sc_stateid; | 
|  | 873 |  | 
|  | 874 | spin_lock(&stid->sc_lock); | 
|  | 875 | if (unlikely(++src->si_generation == 0)) | 
|  | 876 | src->si_generation = 1; | 
|  | 877 | memcpy(dst, src, sizeof(*dst)); | 
|  | 878 | spin_unlock(&stid->sc_lock); | 
|  | 879 | } | 
|  | 880 |  | 
|  | 881 | static void put_deleg_file(struct nfs4_file *fp) | 
|  | 882 | { | 
|  | 883 | struct file *filp = NULL; | 
|  | 884 |  | 
|  | 885 | spin_lock(&fp->fi_lock); | 
|  | 886 | if (--fp->fi_delegees == 0) | 
|  | 887 | swap(filp, fp->fi_deleg_file); | 
|  | 888 | spin_unlock(&fp->fi_lock); | 
|  | 889 |  | 
|  | 890 | if (filp) | 
|  | 891 | fput(filp); | 
|  | 892 | } | 
|  | 893 |  | 
|  | 894 | static void nfs4_unlock_deleg_lease(struct nfs4_delegation *dp) | 
|  | 895 | { | 
|  | 896 | struct nfs4_file *fp = dp->dl_stid.sc_file; | 
|  | 897 | struct file *filp = fp->fi_deleg_file; | 
|  | 898 |  | 
|  | 899 | WARN_ON_ONCE(!fp->fi_delegees); | 
|  | 900 |  | 
|  | 901 | vfs_setlease(filp, F_UNLCK, NULL, (void **)&dp); | 
|  | 902 | put_deleg_file(fp); | 
|  | 903 | } | 
|  | 904 |  | 
|  | 905 | static void destroy_unhashed_deleg(struct nfs4_delegation *dp) | 
|  | 906 | { | 
|  | 907 | put_clnt_odstate(dp->dl_clnt_odstate); | 
|  | 908 | nfs4_unlock_deleg_lease(dp); | 
|  | 909 | nfs4_put_stid(&dp->dl_stid); | 
|  | 910 | } | 
|  | 911 |  | 
|  | 912 | void nfs4_unhash_stid(struct nfs4_stid *s) | 
|  | 913 | { | 
|  | 914 | s->sc_type = 0; | 
|  | 915 | } | 
|  | 916 |  | 
|  | 917 | /** | 
|  | 918 | * nfs4_delegation_exists - Discover if this delegation already exists | 
|  | 919 | * @clp:     a pointer to the nfs4_client we're granting a delegation to | 
|  | 920 | * @fp:      a pointer to the nfs4_file we're granting a delegation on | 
|  | 921 | * | 
|  | 922 | * Return: | 
|  | 923 | *      On success: true iff an existing delegation is found | 
|  | 924 | */ | 
|  | 925 |  | 
|  | 926 | static bool | 
|  | 927 | nfs4_delegation_exists(struct nfs4_client *clp, struct nfs4_file *fp) | 
|  | 928 | { | 
|  | 929 | struct nfs4_delegation *searchdp = NULL; | 
|  | 930 | struct nfs4_client *searchclp = NULL; | 
|  | 931 |  | 
|  | 932 | lockdep_assert_held(&state_lock); | 
|  | 933 | lockdep_assert_held(&fp->fi_lock); | 
|  | 934 |  | 
|  | 935 | list_for_each_entry(searchdp, &fp->fi_delegations, dl_perfile) { | 
|  | 936 | searchclp = searchdp->dl_stid.sc_client; | 
|  | 937 | if (clp == searchclp) { | 
|  | 938 | return true; | 
|  | 939 | } | 
|  | 940 | } | 
|  | 941 | return false; | 
|  | 942 | } | 
|  | 943 |  | 
|  | 944 | /** | 
|  | 945 | * hash_delegation_locked - Add a delegation to the appropriate lists | 
|  | 946 | * @dp:     a pointer to the nfs4_delegation we are adding. | 
|  | 947 | * @fp:     a pointer to the nfs4_file we're granting a delegation on | 
|  | 948 | * | 
|  | 949 | * Return: | 
|  | 950 | *      On success: NULL if the delegation was successfully hashed. | 
|  | 951 | * | 
|  | 952 | *      On error: -EAGAIN if one was previously granted to this | 
|  | 953 | *                 nfs4_client for this nfs4_file. Delegation is not hashed. | 
|  | 954 | * | 
|  | 955 | */ | 
|  | 956 |  | 
|  | 957 | static int | 
|  | 958 | hash_delegation_locked(struct nfs4_delegation *dp, struct nfs4_file *fp) | 
|  | 959 | { | 
|  | 960 | struct nfs4_client *clp = dp->dl_stid.sc_client; | 
|  | 961 |  | 
|  | 962 | lockdep_assert_held(&state_lock); | 
|  | 963 | lockdep_assert_held(&fp->fi_lock); | 
|  | 964 |  | 
|  | 965 | if (nfs4_delegation_exists(clp, fp)) | 
|  | 966 | return -EAGAIN; | 
|  | 967 | refcount_inc(&dp->dl_stid.sc_count); | 
|  | 968 | dp->dl_stid.sc_type = NFS4_DELEG_STID; | 
|  | 969 | list_add(&dp->dl_perfile, &fp->fi_delegations); | 
|  | 970 | list_add(&dp->dl_perclnt, &clp->cl_delegations); | 
|  | 971 | return 0; | 
|  | 972 | } | 
|  | 973 |  | 
|  | 974 | static bool | 
|  | 975 | unhash_delegation_locked(struct nfs4_delegation *dp) | 
|  | 976 | { | 
|  | 977 | struct nfs4_file *fp = dp->dl_stid.sc_file; | 
|  | 978 |  | 
|  | 979 | lockdep_assert_held(&state_lock); | 
|  | 980 |  | 
|  | 981 | if (list_empty(&dp->dl_perfile)) | 
|  | 982 | return false; | 
|  | 983 |  | 
|  | 984 | dp->dl_stid.sc_type = NFS4_CLOSED_DELEG_STID; | 
|  | 985 | /* Ensure that deleg break won't try to requeue it */ | 
|  | 986 | ++dp->dl_time; | 
|  | 987 | spin_lock(&fp->fi_lock); | 
|  | 988 | list_del_init(&dp->dl_perclnt); | 
|  | 989 | list_del_init(&dp->dl_recall_lru); | 
|  | 990 | list_del_init(&dp->dl_perfile); | 
|  | 991 | spin_unlock(&fp->fi_lock); | 
|  | 992 | return true; | 
|  | 993 | } | 
|  | 994 |  | 
|  | 995 | static void destroy_delegation(struct nfs4_delegation *dp) | 
|  | 996 | { | 
|  | 997 | bool unhashed; | 
|  | 998 |  | 
|  | 999 | spin_lock(&state_lock); | 
|  | 1000 | unhashed = unhash_delegation_locked(dp); | 
|  | 1001 | spin_unlock(&state_lock); | 
|  | 1002 | if (unhashed) | 
|  | 1003 | destroy_unhashed_deleg(dp); | 
|  | 1004 | } | 
|  | 1005 |  | 
|  | 1006 | static void revoke_delegation(struct nfs4_delegation *dp) | 
|  | 1007 | { | 
|  | 1008 | struct nfs4_client *clp = dp->dl_stid.sc_client; | 
|  | 1009 |  | 
|  | 1010 | WARN_ON(!list_empty(&dp->dl_recall_lru)); | 
|  | 1011 |  | 
|  | 1012 | if (clp->cl_minorversion) { | 
|  | 1013 | dp->dl_stid.sc_type = NFS4_REVOKED_DELEG_STID; | 
|  | 1014 | refcount_inc(&dp->dl_stid.sc_count); | 
|  | 1015 | spin_lock(&clp->cl_lock); | 
|  | 1016 | list_add(&dp->dl_recall_lru, &clp->cl_revoked); | 
|  | 1017 | spin_unlock(&clp->cl_lock); | 
|  | 1018 | } | 
|  | 1019 | destroy_unhashed_deleg(dp); | 
|  | 1020 | } | 
|  | 1021 |  | 
|  | 1022 | /* | 
|  | 1023 | * SETCLIENTID state | 
|  | 1024 | */ | 
|  | 1025 |  | 
|  | 1026 | static unsigned int clientid_hashval(u32 id) | 
|  | 1027 | { | 
|  | 1028 | return id & CLIENT_HASH_MASK; | 
|  | 1029 | } | 
|  | 1030 |  | 
|  | 1031 | static unsigned int clientstr_hashval(const char *name) | 
|  | 1032 | { | 
|  | 1033 | return opaque_hashval(name, 8) & CLIENT_HASH_MASK; | 
|  | 1034 | } | 
|  | 1035 |  | 
|  | 1036 | /* | 
|  | 1037 | * We store the NONE, READ, WRITE, and BOTH bits separately in the | 
|  | 1038 | * st_{access,deny}_bmap field of the stateid, in order to track not | 
|  | 1039 | * only what share bits are currently in force, but also what | 
|  | 1040 | * combinations of share bits previous opens have used.  This allows us | 
|  | 1041 | * to enforce the recommendation of rfc 3530 14.2.19 that the server | 
|  | 1042 | * return an error if the client attempt to downgrade to a combination | 
|  | 1043 | * of share bits not explicable by closing some of its previous opens. | 
|  | 1044 | * | 
|  | 1045 | * XXX: This enforcement is actually incomplete, since we don't keep | 
|  | 1046 | * track of access/deny bit combinations; so, e.g., we allow: | 
|  | 1047 | * | 
|  | 1048 | *	OPEN allow read, deny write | 
|  | 1049 | *	OPEN allow both, deny none | 
|  | 1050 | *	DOWNGRADE allow read, deny none | 
|  | 1051 | * | 
|  | 1052 | * which we should reject. | 
|  | 1053 | */ | 
|  | 1054 | static unsigned int | 
|  | 1055 | bmap_to_share_mode(unsigned long bmap) { | 
|  | 1056 | int i; | 
|  | 1057 | unsigned int access = 0; | 
|  | 1058 |  | 
|  | 1059 | for (i = 1; i < 4; i++) { | 
|  | 1060 | if (test_bit(i, &bmap)) | 
|  | 1061 | access |= i; | 
|  | 1062 | } | 
|  | 1063 | return access; | 
|  | 1064 | } | 
|  | 1065 |  | 
|  | 1066 | /* set share access for a given stateid */ | 
|  | 1067 | static inline void | 
|  | 1068 | set_access(u32 access, struct nfs4_ol_stateid *stp) | 
|  | 1069 | { | 
|  | 1070 | unsigned char mask = 1 << access; | 
|  | 1071 |  | 
|  | 1072 | WARN_ON_ONCE(access > NFS4_SHARE_ACCESS_BOTH); | 
|  | 1073 | stp->st_access_bmap |= mask; | 
|  | 1074 | } | 
|  | 1075 |  | 
|  | 1076 | /* clear share access for a given stateid */ | 
|  | 1077 | static inline void | 
|  | 1078 | clear_access(u32 access, struct nfs4_ol_stateid *stp) | 
|  | 1079 | { | 
|  | 1080 | unsigned char mask = 1 << access; | 
|  | 1081 |  | 
|  | 1082 | WARN_ON_ONCE(access > NFS4_SHARE_ACCESS_BOTH); | 
|  | 1083 | stp->st_access_bmap &= ~mask; | 
|  | 1084 | } | 
|  | 1085 |  | 
|  | 1086 | /* test whether a given stateid has access */ | 
|  | 1087 | static inline bool | 
|  | 1088 | test_access(u32 access, struct nfs4_ol_stateid *stp) | 
|  | 1089 | { | 
|  | 1090 | unsigned char mask = 1 << access; | 
|  | 1091 |  | 
|  | 1092 | return (bool)(stp->st_access_bmap & mask); | 
|  | 1093 | } | 
|  | 1094 |  | 
|  | 1095 | /* set share deny for a given stateid */ | 
|  | 1096 | static inline void | 
|  | 1097 | set_deny(u32 deny, struct nfs4_ol_stateid *stp) | 
|  | 1098 | { | 
|  | 1099 | unsigned char mask = 1 << deny; | 
|  | 1100 |  | 
|  | 1101 | WARN_ON_ONCE(deny > NFS4_SHARE_DENY_BOTH); | 
|  | 1102 | stp->st_deny_bmap |= mask; | 
|  | 1103 | } | 
|  | 1104 |  | 
|  | 1105 | /* clear share deny for a given stateid */ | 
|  | 1106 | static inline void | 
|  | 1107 | clear_deny(u32 deny, struct nfs4_ol_stateid *stp) | 
|  | 1108 | { | 
|  | 1109 | unsigned char mask = 1 << deny; | 
|  | 1110 |  | 
|  | 1111 | WARN_ON_ONCE(deny > NFS4_SHARE_DENY_BOTH); | 
|  | 1112 | stp->st_deny_bmap &= ~mask; | 
|  | 1113 | } | 
|  | 1114 |  | 
|  | 1115 | /* test whether a given stateid is denying specific access */ | 
|  | 1116 | static inline bool | 
|  | 1117 | test_deny(u32 deny, struct nfs4_ol_stateid *stp) | 
|  | 1118 | { | 
|  | 1119 | unsigned char mask = 1 << deny; | 
|  | 1120 |  | 
|  | 1121 | return (bool)(stp->st_deny_bmap & mask); | 
|  | 1122 | } | 
|  | 1123 |  | 
|  | 1124 | static int nfs4_access_to_omode(u32 access) | 
|  | 1125 | { | 
|  | 1126 | switch (access & NFS4_SHARE_ACCESS_BOTH) { | 
|  | 1127 | case NFS4_SHARE_ACCESS_READ: | 
|  | 1128 | return O_RDONLY; | 
|  | 1129 | case NFS4_SHARE_ACCESS_WRITE: | 
|  | 1130 | return O_WRONLY; | 
|  | 1131 | case NFS4_SHARE_ACCESS_BOTH: | 
|  | 1132 | return O_RDWR; | 
|  | 1133 | } | 
|  | 1134 | WARN_ON_ONCE(1); | 
|  | 1135 | return O_RDONLY; | 
|  | 1136 | } | 
|  | 1137 |  | 
|  | 1138 | /* | 
|  | 1139 | * A stateid that had a deny mode associated with it is being released | 
|  | 1140 | * or downgraded. Recalculate the deny mode on the file. | 
|  | 1141 | */ | 
|  | 1142 | static void | 
|  | 1143 | recalculate_deny_mode(struct nfs4_file *fp) | 
|  | 1144 | { | 
|  | 1145 | struct nfs4_ol_stateid *stp; | 
|  | 1146 |  | 
|  | 1147 | spin_lock(&fp->fi_lock); | 
|  | 1148 | fp->fi_share_deny = 0; | 
|  | 1149 | list_for_each_entry(stp, &fp->fi_stateids, st_perfile) | 
|  | 1150 | fp->fi_share_deny |= bmap_to_share_mode(stp->st_deny_bmap); | 
|  | 1151 | spin_unlock(&fp->fi_lock); | 
|  | 1152 | } | 
|  | 1153 |  | 
|  | 1154 | static void | 
|  | 1155 | reset_union_bmap_deny(u32 deny, struct nfs4_ol_stateid *stp) | 
|  | 1156 | { | 
|  | 1157 | int i; | 
|  | 1158 | bool change = false; | 
|  | 1159 |  | 
|  | 1160 | for (i = 1; i < 4; i++) { | 
|  | 1161 | if ((i & deny) != i) { | 
|  | 1162 | change = true; | 
|  | 1163 | clear_deny(i, stp); | 
|  | 1164 | } | 
|  | 1165 | } | 
|  | 1166 |  | 
|  | 1167 | /* Recalculate per-file deny mode if there was a change */ | 
|  | 1168 | if (change) | 
|  | 1169 | recalculate_deny_mode(stp->st_stid.sc_file); | 
|  | 1170 | } | 
|  | 1171 |  | 
|  | 1172 | /* release all access and file references for a given stateid */ | 
|  | 1173 | static void | 
|  | 1174 | release_all_access(struct nfs4_ol_stateid *stp) | 
|  | 1175 | { | 
|  | 1176 | int i; | 
|  | 1177 | struct nfs4_file *fp = stp->st_stid.sc_file; | 
|  | 1178 |  | 
|  | 1179 | if (fp && stp->st_deny_bmap != 0) | 
|  | 1180 | recalculate_deny_mode(fp); | 
|  | 1181 |  | 
|  | 1182 | for (i = 1; i < 4; i++) { | 
|  | 1183 | if (test_access(i, stp)) | 
|  | 1184 | nfs4_file_put_access(stp->st_stid.sc_file, i); | 
|  | 1185 | clear_access(i, stp); | 
|  | 1186 | } | 
|  | 1187 | } | 
|  | 1188 |  | 
|  | 1189 | static inline void nfs4_free_stateowner(struct nfs4_stateowner *sop) | 
|  | 1190 | { | 
|  | 1191 | kfree(sop->so_owner.data); | 
|  | 1192 | sop->so_ops->so_free(sop); | 
|  | 1193 | } | 
|  | 1194 |  | 
|  | 1195 | static void nfs4_put_stateowner(struct nfs4_stateowner *sop) | 
|  | 1196 | { | 
|  | 1197 | struct nfs4_client *clp = sop->so_client; | 
|  | 1198 |  | 
|  | 1199 | might_lock(&clp->cl_lock); | 
|  | 1200 |  | 
|  | 1201 | if (!atomic_dec_and_lock(&sop->so_count, &clp->cl_lock)) | 
|  | 1202 | return; | 
|  | 1203 | sop->so_ops->so_unhash(sop); | 
|  | 1204 | spin_unlock(&clp->cl_lock); | 
|  | 1205 | nfs4_free_stateowner(sop); | 
|  | 1206 | } | 
|  | 1207 |  | 
|  | 1208 | static bool unhash_ol_stateid(struct nfs4_ol_stateid *stp) | 
|  | 1209 | { | 
|  | 1210 | struct nfs4_file *fp = stp->st_stid.sc_file; | 
|  | 1211 |  | 
|  | 1212 | lockdep_assert_held(&stp->st_stateowner->so_client->cl_lock); | 
|  | 1213 |  | 
|  | 1214 | if (list_empty(&stp->st_perfile)) | 
|  | 1215 | return false; | 
|  | 1216 |  | 
|  | 1217 | spin_lock(&fp->fi_lock); | 
|  | 1218 | list_del_init(&stp->st_perfile); | 
|  | 1219 | spin_unlock(&fp->fi_lock); | 
|  | 1220 | list_del(&stp->st_perstateowner); | 
|  | 1221 | return true; | 
|  | 1222 | } | 
|  | 1223 |  | 
|  | 1224 | static void nfs4_free_ol_stateid(struct nfs4_stid *stid) | 
|  | 1225 | { | 
|  | 1226 | struct nfs4_ol_stateid *stp = openlockstateid(stid); | 
|  | 1227 |  | 
|  | 1228 | put_clnt_odstate(stp->st_clnt_odstate); | 
|  | 1229 | release_all_access(stp); | 
|  | 1230 | if (stp->st_stateowner) | 
|  | 1231 | nfs4_put_stateowner(stp->st_stateowner); | 
|  | 1232 | kmem_cache_free(stateid_slab, stid); | 
|  | 1233 | } | 
|  | 1234 |  | 
|  | 1235 | static void nfs4_free_lock_stateid(struct nfs4_stid *stid) | 
|  | 1236 | { | 
|  | 1237 | struct nfs4_ol_stateid *stp = openlockstateid(stid); | 
|  | 1238 | struct nfs4_lockowner *lo = lockowner(stp->st_stateowner); | 
|  | 1239 | struct file *file; | 
|  | 1240 |  | 
|  | 1241 | file = find_any_file(stp->st_stid.sc_file); | 
|  | 1242 | if (file) | 
|  | 1243 | filp_close(file, (fl_owner_t)lo); | 
|  | 1244 | nfs4_free_ol_stateid(stid); | 
|  | 1245 | } | 
|  | 1246 |  | 
|  | 1247 | /* | 
|  | 1248 | * Put the persistent reference to an already unhashed generic stateid, while | 
|  | 1249 | * holding the cl_lock. If it's the last reference, then put it onto the | 
|  | 1250 | * reaplist for later destruction. | 
|  | 1251 | */ | 
|  | 1252 | static void put_ol_stateid_locked(struct nfs4_ol_stateid *stp, | 
|  | 1253 | struct list_head *reaplist) | 
|  | 1254 | { | 
|  | 1255 | struct nfs4_stid *s = &stp->st_stid; | 
|  | 1256 | struct nfs4_client *clp = s->sc_client; | 
|  | 1257 |  | 
|  | 1258 | lockdep_assert_held(&clp->cl_lock); | 
|  | 1259 |  | 
|  | 1260 | WARN_ON_ONCE(!list_empty(&stp->st_locks)); | 
|  | 1261 |  | 
|  | 1262 | if (!refcount_dec_and_test(&s->sc_count)) { | 
|  | 1263 | wake_up_all(&close_wq); | 
|  | 1264 | return; | 
|  | 1265 | } | 
|  | 1266 |  | 
|  | 1267 | idr_remove(&clp->cl_stateids, s->sc_stateid.si_opaque.so_id); | 
|  | 1268 | list_add(&stp->st_locks, reaplist); | 
|  | 1269 | } | 
|  | 1270 |  | 
|  | 1271 | static bool unhash_lock_stateid(struct nfs4_ol_stateid *stp) | 
|  | 1272 | { | 
|  | 1273 | lockdep_assert_held(&stp->st_stid.sc_client->cl_lock); | 
|  | 1274 |  | 
|  | 1275 | list_del_init(&stp->st_locks); | 
|  | 1276 | nfs4_unhash_stid(&stp->st_stid); | 
|  | 1277 | return unhash_ol_stateid(stp); | 
|  | 1278 | } | 
|  | 1279 |  | 
|  | 1280 | static void release_lock_stateid(struct nfs4_ol_stateid *stp) | 
|  | 1281 | { | 
|  | 1282 | struct nfs4_client *clp = stp->st_stid.sc_client; | 
|  | 1283 | bool unhashed; | 
|  | 1284 |  | 
|  | 1285 | spin_lock(&clp->cl_lock); | 
|  | 1286 | unhashed = unhash_lock_stateid(stp); | 
|  | 1287 | spin_unlock(&clp->cl_lock); | 
|  | 1288 | if (unhashed) | 
|  | 1289 | nfs4_put_stid(&stp->st_stid); | 
|  | 1290 | } | 
|  | 1291 |  | 
|  | 1292 | static void unhash_lockowner_locked(struct nfs4_lockowner *lo) | 
|  | 1293 | { | 
|  | 1294 | struct nfs4_client *clp = lo->lo_owner.so_client; | 
|  | 1295 |  | 
|  | 1296 | lockdep_assert_held(&clp->cl_lock); | 
|  | 1297 |  | 
|  | 1298 | list_del_init(&lo->lo_owner.so_strhash); | 
|  | 1299 | } | 
|  | 1300 |  | 
|  | 1301 | /* | 
|  | 1302 | * Free a list of generic stateids that were collected earlier after being | 
|  | 1303 | * fully unhashed. | 
|  | 1304 | */ | 
|  | 1305 | static void | 
|  | 1306 | free_ol_stateid_reaplist(struct list_head *reaplist) | 
|  | 1307 | { | 
|  | 1308 | struct nfs4_ol_stateid *stp; | 
|  | 1309 | struct nfs4_file *fp; | 
|  | 1310 |  | 
|  | 1311 | might_sleep(); | 
|  | 1312 |  | 
|  | 1313 | while (!list_empty(reaplist)) { | 
|  | 1314 | stp = list_first_entry(reaplist, struct nfs4_ol_stateid, | 
|  | 1315 | st_locks); | 
|  | 1316 | list_del(&stp->st_locks); | 
|  | 1317 | fp = stp->st_stid.sc_file; | 
|  | 1318 | stp->st_stid.sc_free(&stp->st_stid); | 
|  | 1319 | if (fp) | 
|  | 1320 | put_nfs4_file(fp); | 
|  | 1321 | } | 
|  | 1322 | } | 
|  | 1323 |  | 
|  | 1324 | static void release_open_stateid_locks(struct nfs4_ol_stateid *open_stp, | 
|  | 1325 | struct list_head *reaplist) | 
|  | 1326 | { | 
|  | 1327 | struct nfs4_ol_stateid *stp; | 
|  | 1328 |  | 
|  | 1329 | lockdep_assert_held(&open_stp->st_stid.sc_client->cl_lock); | 
|  | 1330 |  | 
|  | 1331 | while (!list_empty(&open_stp->st_locks)) { | 
|  | 1332 | stp = list_entry(open_stp->st_locks.next, | 
|  | 1333 | struct nfs4_ol_stateid, st_locks); | 
|  | 1334 | WARN_ON(!unhash_lock_stateid(stp)); | 
|  | 1335 | put_ol_stateid_locked(stp, reaplist); | 
|  | 1336 | } | 
|  | 1337 | } | 
|  | 1338 |  | 
|  | 1339 | static bool unhash_open_stateid(struct nfs4_ol_stateid *stp, | 
|  | 1340 | struct list_head *reaplist) | 
|  | 1341 | { | 
|  | 1342 | bool unhashed; | 
|  | 1343 |  | 
|  | 1344 | lockdep_assert_held(&stp->st_stid.sc_client->cl_lock); | 
|  | 1345 |  | 
|  | 1346 | unhashed = unhash_ol_stateid(stp); | 
|  | 1347 | release_open_stateid_locks(stp, reaplist); | 
|  | 1348 | return unhashed; | 
|  | 1349 | } | 
|  | 1350 |  | 
|  | 1351 | static void release_open_stateid(struct nfs4_ol_stateid *stp) | 
|  | 1352 | { | 
|  | 1353 | LIST_HEAD(reaplist); | 
|  | 1354 |  | 
|  | 1355 | spin_lock(&stp->st_stid.sc_client->cl_lock); | 
|  | 1356 | if (unhash_open_stateid(stp, &reaplist)) | 
|  | 1357 | put_ol_stateid_locked(stp, &reaplist); | 
|  | 1358 | spin_unlock(&stp->st_stid.sc_client->cl_lock); | 
|  | 1359 | free_ol_stateid_reaplist(&reaplist); | 
|  | 1360 | } | 
|  | 1361 |  | 
|  | 1362 | static void unhash_openowner_locked(struct nfs4_openowner *oo) | 
|  | 1363 | { | 
|  | 1364 | struct nfs4_client *clp = oo->oo_owner.so_client; | 
|  | 1365 |  | 
|  | 1366 | lockdep_assert_held(&clp->cl_lock); | 
|  | 1367 |  | 
|  | 1368 | list_del_init(&oo->oo_owner.so_strhash); | 
|  | 1369 | list_del_init(&oo->oo_perclient); | 
|  | 1370 | } | 
|  | 1371 |  | 
|  | 1372 | static void release_last_closed_stateid(struct nfs4_openowner *oo) | 
|  | 1373 | { | 
|  | 1374 | struct nfsd_net *nn = net_generic(oo->oo_owner.so_client->net, | 
|  | 1375 | nfsd_net_id); | 
|  | 1376 | struct nfs4_ol_stateid *s; | 
|  | 1377 |  | 
|  | 1378 | spin_lock(&nn->client_lock); | 
|  | 1379 | s = oo->oo_last_closed_stid; | 
|  | 1380 | if (s) { | 
|  | 1381 | list_del_init(&oo->oo_close_lru); | 
|  | 1382 | oo->oo_last_closed_stid = NULL; | 
|  | 1383 | } | 
|  | 1384 | spin_unlock(&nn->client_lock); | 
|  | 1385 | if (s) | 
|  | 1386 | nfs4_put_stid(&s->st_stid); | 
|  | 1387 | } | 
|  | 1388 |  | 
|  | 1389 | static void release_openowner(struct nfs4_openowner *oo) | 
|  | 1390 | { | 
|  | 1391 | struct nfs4_ol_stateid *stp; | 
|  | 1392 | struct nfs4_client *clp = oo->oo_owner.so_client; | 
|  | 1393 | struct list_head reaplist; | 
|  | 1394 |  | 
|  | 1395 | INIT_LIST_HEAD(&reaplist); | 
|  | 1396 |  | 
|  | 1397 | spin_lock(&clp->cl_lock); | 
|  | 1398 | unhash_openowner_locked(oo); | 
|  | 1399 | while (!list_empty(&oo->oo_owner.so_stateids)) { | 
|  | 1400 | stp = list_first_entry(&oo->oo_owner.so_stateids, | 
|  | 1401 | struct nfs4_ol_stateid, st_perstateowner); | 
|  | 1402 | if (unhash_open_stateid(stp, &reaplist)) | 
|  | 1403 | put_ol_stateid_locked(stp, &reaplist); | 
|  | 1404 | } | 
|  | 1405 | spin_unlock(&clp->cl_lock); | 
|  | 1406 | free_ol_stateid_reaplist(&reaplist); | 
|  | 1407 | release_last_closed_stateid(oo); | 
|  | 1408 | nfs4_put_stateowner(&oo->oo_owner); | 
|  | 1409 | } | 
|  | 1410 |  | 
|  | 1411 | static inline int | 
|  | 1412 | hash_sessionid(struct nfs4_sessionid *sessionid) | 
|  | 1413 | { | 
|  | 1414 | struct nfsd4_sessionid *sid = (struct nfsd4_sessionid *)sessionid; | 
|  | 1415 |  | 
|  | 1416 | return sid->sequence % SESSION_HASH_SIZE; | 
|  | 1417 | } | 
|  | 1418 |  | 
|  | 1419 | #ifdef CONFIG_SUNRPC_DEBUG | 
|  | 1420 | static inline void | 
|  | 1421 | dump_sessionid(const char *fn, struct nfs4_sessionid *sessionid) | 
|  | 1422 | { | 
|  | 1423 | u32 *ptr = (u32 *)(&sessionid->data[0]); | 
|  | 1424 | dprintk("%s: %u:%u:%u:%u\n", fn, ptr[0], ptr[1], ptr[2], ptr[3]); | 
|  | 1425 | } | 
|  | 1426 | #else | 
|  | 1427 | static inline void | 
|  | 1428 | dump_sessionid(const char *fn, struct nfs4_sessionid *sessionid) | 
|  | 1429 | { | 
|  | 1430 | } | 
|  | 1431 | #endif | 
|  | 1432 |  | 
|  | 1433 | /* | 
|  | 1434 | * Bump the seqid on cstate->replay_owner, and clear replay_owner if it | 
|  | 1435 | * won't be used for replay. | 
|  | 1436 | */ | 
|  | 1437 | void nfsd4_bump_seqid(struct nfsd4_compound_state *cstate, __be32 nfserr) | 
|  | 1438 | { | 
|  | 1439 | struct nfs4_stateowner *so = cstate->replay_owner; | 
|  | 1440 |  | 
|  | 1441 | if (nfserr == nfserr_replay_me) | 
|  | 1442 | return; | 
|  | 1443 |  | 
|  | 1444 | if (!seqid_mutating_err(ntohl(nfserr))) { | 
|  | 1445 | nfsd4_cstate_clear_replay(cstate); | 
|  | 1446 | return; | 
|  | 1447 | } | 
|  | 1448 | if (!so) | 
|  | 1449 | return; | 
|  | 1450 | if (so->so_is_open_owner) | 
|  | 1451 | release_last_closed_stateid(openowner(so)); | 
|  | 1452 | so->so_seqid++; | 
|  | 1453 | return; | 
|  | 1454 | } | 
|  | 1455 |  | 
|  | 1456 | static void | 
|  | 1457 | gen_sessionid(struct nfsd4_session *ses) | 
|  | 1458 | { | 
|  | 1459 | struct nfs4_client *clp = ses->se_client; | 
|  | 1460 | struct nfsd4_sessionid *sid; | 
|  | 1461 |  | 
|  | 1462 | sid = (struct nfsd4_sessionid *)ses->se_sessionid.data; | 
|  | 1463 | sid->clientid = clp->cl_clientid; | 
|  | 1464 | sid->sequence = current_sessionid++; | 
|  | 1465 | sid->reserved = 0; | 
|  | 1466 | } | 
|  | 1467 |  | 
|  | 1468 | /* | 
|  | 1469 | * The protocol defines ca_maxresponssize_cached to include the size of | 
|  | 1470 | * the rpc header, but all we need to cache is the data starting after | 
|  | 1471 | * the end of the initial SEQUENCE operation--the rest we regenerate | 
|  | 1472 | * each time.  Therefore we can advertise a ca_maxresponssize_cached | 
|  | 1473 | * value that is the number of bytes in our cache plus a few additional | 
|  | 1474 | * bytes.  In order to stay on the safe side, and not promise more than | 
|  | 1475 | * we can cache, those additional bytes must be the minimum possible: 24 | 
|  | 1476 | * bytes of rpc header (xid through accept state, with AUTH_NULL | 
|  | 1477 | * verifier), 12 for the compound header (with zero-length tag), and 44 | 
|  | 1478 | * for the SEQUENCE op response: | 
|  | 1479 | */ | 
|  | 1480 | #define NFSD_MIN_HDR_SEQ_SZ  (24 + 12 + 44) | 
|  | 1481 |  | 
|  | 1482 | static void | 
|  | 1483 | free_session_slots(struct nfsd4_session *ses) | 
|  | 1484 | { | 
|  | 1485 | int i; | 
|  | 1486 |  | 
|  | 1487 | for (i = 0; i < ses->se_fchannel.maxreqs; i++) { | 
|  | 1488 | free_svc_cred(&ses->se_slots[i]->sl_cred); | 
|  | 1489 | kfree(ses->se_slots[i]); | 
|  | 1490 | } | 
|  | 1491 | } | 
|  | 1492 |  | 
|  | 1493 | /* | 
|  | 1494 | * We don't actually need to cache the rpc and session headers, so we | 
|  | 1495 | * can allocate a little less for each slot: | 
|  | 1496 | */ | 
|  | 1497 | static inline u32 slot_bytes(struct nfsd4_channel_attrs *ca) | 
|  | 1498 | { | 
|  | 1499 | u32 size; | 
|  | 1500 |  | 
|  | 1501 | if (ca->maxresp_cached < NFSD_MIN_HDR_SEQ_SZ) | 
|  | 1502 | size = 0; | 
|  | 1503 | else | 
|  | 1504 | size = ca->maxresp_cached - NFSD_MIN_HDR_SEQ_SZ; | 
|  | 1505 | return size + sizeof(struct nfsd4_slot); | 
|  | 1506 | } | 
|  | 1507 |  | 
|  | 1508 | /* | 
|  | 1509 | * XXX: If we run out of reserved DRC memory we could (up to a point) | 
|  | 1510 | * re-negotiate active sessions and reduce their slot usage to make | 
|  | 1511 | * room for new connections. For now we just fail the create session. | 
|  | 1512 | */ | 
|  | 1513 | static u32 nfsd4_get_drc_mem(struct nfsd4_channel_attrs *ca) | 
|  | 1514 | { | 
|  | 1515 | u32 slotsize = slot_bytes(ca); | 
|  | 1516 | u32 num = ca->maxreqs; | 
|  | 1517 | unsigned long avail, total_avail; | 
|  | 1518 |  | 
|  | 1519 | spin_lock(&nfsd_drc_lock); | 
|  | 1520 | total_avail = nfsd_drc_max_mem - nfsd_drc_mem_used; | 
|  | 1521 | avail = min((unsigned long)NFSD_MAX_MEM_PER_SESSION, total_avail); | 
|  | 1522 | /* | 
|  | 1523 | * Never use more than a third of the remaining memory, | 
|  | 1524 | * unless it's the only way to give this client a slot: | 
|  | 1525 | */ | 
|  | 1526 | avail = clamp_t(unsigned long, avail, slotsize, total_avail/3); | 
|  | 1527 | num = min_t(int, num, avail / slotsize); | 
|  | 1528 | nfsd_drc_mem_used += num * slotsize; | 
|  | 1529 | spin_unlock(&nfsd_drc_lock); | 
|  | 1530 |  | 
|  | 1531 | return num; | 
|  | 1532 | } | 
|  | 1533 |  | 
|  | 1534 | static void nfsd4_put_drc_mem(struct nfsd4_channel_attrs *ca) | 
|  | 1535 | { | 
|  | 1536 | int slotsize = slot_bytes(ca); | 
|  | 1537 |  | 
|  | 1538 | spin_lock(&nfsd_drc_lock); | 
|  | 1539 | nfsd_drc_mem_used -= slotsize * ca->maxreqs; | 
|  | 1540 | spin_unlock(&nfsd_drc_lock); | 
|  | 1541 | } | 
|  | 1542 |  | 
|  | 1543 | static struct nfsd4_session *alloc_session(struct nfsd4_channel_attrs *fattrs, | 
|  | 1544 | struct nfsd4_channel_attrs *battrs) | 
|  | 1545 | { | 
|  | 1546 | int numslots = fattrs->maxreqs; | 
|  | 1547 | int slotsize = slot_bytes(fattrs); | 
|  | 1548 | struct nfsd4_session *new; | 
|  | 1549 | int mem, i; | 
|  | 1550 |  | 
|  | 1551 | BUILD_BUG_ON(NFSD_MAX_SLOTS_PER_SESSION * sizeof(struct nfsd4_slot *) | 
|  | 1552 | + sizeof(struct nfsd4_session) > PAGE_SIZE); | 
|  | 1553 | mem = numslots * sizeof(struct nfsd4_slot *); | 
|  | 1554 |  | 
|  | 1555 | new = kzalloc(sizeof(*new) + mem, GFP_KERNEL); | 
|  | 1556 | if (!new) | 
|  | 1557 | return NULL; | 
|  | 1558 | /* allocate each struct nfsd4_slot and data cache in one piece */ | 
|  | 1559 | for (i = 0; i < numslots; i++) { | 
|  | 1560 | new->se_slots[i] = kzalloc(slotsize, GFP_KERNEL); | 
|  | 1561 | if (!new->se_slots[i]) | 
|  | 1562 | goto out_free; | 
|  | 1563 | } | 
|  | 1564 |  | 
|  | 1565 | memcpy(&new->se_fchannel, fattrs, sizeof(struct nfsd4_channel_attrs)); | 
|  | 1566 | memcpy(&new->se_bchannel, battrs, sizeof(struct nfsd4_channel_attrs)); | 
|  | 1567 |  | 
|  | 1568 | return new; | 
|  | 1569 | out_free: | 
|  | 1570 | while (i--) | 
|  | 1571 | kfree(new->se_slots[i]); | 
|  | 1572 | kfree(new); | 
|  | 1573 | return NULL; | 
|  | 1574 | } | 
|  | 1575 |  | 
|  | 1576 | static void free_conn(struct nfsd4_conn *c) | 
|  | 1577 | { | 
|  | 1578 | svc_xprt_put(c->cn_xprt); | 
|  | 1579 | kfree(c); | 
|  | 1580 | } | 
|  | 1581 |  | 
|  | 1582 | static void nfsd4_conn_lost(struct svc_xpt_user *u) | 
|  | 1583 | { | 
|  | 1584 | struct nfsd4_conn *c = container_of(u, struct nfsd4_conn, cn_xpt_user); | 
|  | 1585 | struct nfs4_client *clp = c->cn_session->se_client; | 
|  | 1586 |  | 
|  | 1587 | spin_lock(&clp->cl_lock); | 
|  | 1588 | if (!list_empty(&c->cn_persession)) { | 
|  | 1589 | list_del(&c->cn_persession); | 
|  | 1590 | free_conn(c); | 
|  | 1591 | } | 
|  | 1592 | nfsd4_probe_callback(clp); | 
|  | 1593 | spin_unlock(&clp->cl_lock); | 
|  | 1594 | } | 
|  | 1595 |  | 
|  | 1596 | static struct nfsd4_conn *alloc_conn(struct svc_rqst *rqstp, u32 flags) | 
|  | 1597 | { | 
|  | 1598 | struct nfsd4_conn *conn; | 
|  | 1599 |  | 
|  | 1600 | conn = kmalloc(sizeof(struct nfsd4_conn), GFP_KERNEL); | 
|  | 1601 | if (!conn) | 
|  | 1602 | return NULL; | 
|  | 1603 | svc_xprt_get(rqstp->rq_xprt); | 
|  | 1604 | conn->cn_xprt = rqstp->rq_xprt; | 
|  | 1605 | conn->cn_flags = flags; | 
|  | 1606 | INIT_LIST_HEAD(&conn->cn_xpt_user.list); | 
|  | 1607 | return conn; | 
|  | 1608 | } | 
|  | 1609 |  | 
|  | 1610 | static void __nfsd4_hash_conn(struct nfsd4_conn *conn, struct nfsd4_session *ses) | 
|  | 1611 | { | 
|  | 1612 | conn->cn_session = ses; | 
|  | 1613 | list_add(&conn->cn_persession, &ses->se_conns); | 
|  | 1614 | } | 
|  | 1615 |  | 
|  | 1616 | static void nfsd4_hash_conn(struct nfsd4_conn *conn, struct nfsd4_session *ses) | 
|  | 1617 | { | 
|  | 1618 | struct nfs4_client *clp = ses->se_client; | 
|  | 1619 |  | 
|  | 1620 | spin_lock(&clp->cl_lock); | 
|  | 1621 | __nfsd4_hash_conn(conn, ses); | 
|  | 1622 | spin_unlock(&clp->cl_lock); | 
|  | 1623 | } | 
|  | 1624 |  | 
|  | 1625 | static int nfsd4_register_conn(struct nfsd4_conn *conn) | 
|  | 1626 | { | 
|  | 1627 | conn->cn_xpt_user.callback = nfsd4_conn_lost; | 
|  | 1628 | return register_xpt_user(conn->cn_xprt, &conn->cn_xpt_user); | 
|  | 1629 | } | 
|  | 1630 |  | 
|  | 1631 | static void nfsd4_init_conn(struct svc_rqst *rqstp, struct nfsd4_conn *conn, struct nfsd4_session *ses) | 
|  | 1632 | { | 
|  | 1633 | int ret; | 
|  | 1634 |  | 
|  | 1635 | nfsd4_hash_conn(conn, ses); | 
|  | 1636 | ret = nfsd4_register_conn(conn); | 
|  | 1637 | if (ret) | 
|  | 1638 | /* oops; xprt is already down: */ | 
|  | 1639 | nfsd4_conn_lost(&conn->cn_xpt_user); | 
|  | 1640 | /* We may have gained or lost a callback channel: */ | 
|  | 1641 | nfsd4_probe_callback_sync(ses->se_client); | 
|  | 1642 | } | 
|  | 1643 |  | 
|  | 1644 | static struct nfsd4_conn *alloc_conn_from_crses(struct svc_rqst *rqstp, struct nfsd4_create_session *cses) | 
|  | 1645 | { | 
|  | 1646 | u32 dir = NFS4_CDFC4_FORE; | 
|  | 1647 |  | 
|  | 1648 | if (cses->flags & SESSION4_BACK_CHAN) | 
|  | 1649 | dir |= NFS4_CDFC4_BACK; | 
|  | 1650 | return alloc_conn(rqstp, dir); | 
|  | 1651 | } | 
|  | 1652 |  | 
|  | 1653 | /* must be called under client_lock */ | 
|  | 1654 | static void nfsd4_del_conns(struct nfsd4_session *s) | 
|  | 1655 | { | 
|  | 1656 | struct nfs4_client *clp = s->se_client; | 
|  | 1657 | struct nfsd4_conn *c; | 
|  | 1658 |  | 
|  | 1659 | spin_lock(&clp->cl_lock); | 
|  | 1660 | while (!list_empty(&s->se_conns)) { | 
|  | 1661 | c = list_first_entry(&s->se_conns, struct nfsd4_conn, cn_persession); | 
|  | 1662 | list_del_init(&c->cn_persession); | 
|  | 1663 | spin_unlock(&clp->cl_lock); | 
|  | 1664 |  | 
|  | 1665 | unregister_xpt_user(c->cn_xprt, &c->cn_xpt_user); | 
|  | 1666 | free_conn(c); | 
|  | 1667 |  | 
|  | 1668 | spin_lock(&clp->cl_lock); | 
|  | 1669 | } | 
|  | 1670 | spin_unlock(&clp->cl_lock); | 
|  | 1671 | } | 
|  | 1672 |  | 
|  | 1673 | static void __free_session(struct nfsd4_session *ses) | 
|  | 1674 | { | 
|  | 1675 | free_session_slots(ses); | 
|  | 1676 | kfree(ses); | 
|  | 1677 | } | 
|  | 1678 |  | 
|  | 1679 | static void free_session(struct nfsd4_session *ses) | 
|  | 1680 | { | 
|  | 1681 | nfsd4_del_conns(ses); | 
|  | 1682 | nfsd4_put_drc_mem(&ses->se_fchannel); | 
|  | 1683 | __free_session(ses); | 
|  | 1684 | } | 
|  | 1685 |  | 
|  | 1686 | static void init_session(struct svc_rqst *rqstp, struct nfsd4_session *new, struct nfs4_client *clp, struct nfsd4_create_session *cses) | 
|  | 1687 | { | 
|  | 1688 | int idx; | 
|  | 1689 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 1690 |  | 
|  | 1691 | new->se_client = clp; | 
|  | 1692 | gen_sessionid(new); | 
|  | 1693 |  | 
|  | 1694 | INIT_LIST_HEAD(&new->se_conns); | 
|  | 1695 |  | 
|  | 1696 | new->se_cb_seq_nr = 1; | 
|  | 1697 | new->se_flags = cses->flags; | 
|  | 1698 | new->se_cb_prog = cses->callback_prog; | 
|  | 1699 | new->se_cb_sec = cses->cb_sec; | 
|  | 1700 | atomic_set(&new->se_ref, 0); | 
|  | 1701 | idx = hash_sessionid(&new->se_sessionid); | 
|  | 1702 | list_add(&new->se_hash, &nn->sessionid_hashtbl[idx]); | 
|  | 1703 | spin_lock(&clp->cl_lock); | 
|  | 1704 | list_add(&new->se_perclnt, &clp->cl_sessions); | 
|  | 1705 | spin_unlock(&clp->cl_lock); | 
|  | 1706 |  | 
|  | 1707 | { | 
|  | 1708 | struct sockaddr *sa = svc_addr(rqstp); | 
|  | 1709 | /* | 
|  | 1710 | * This is a little silly; with sessions there's no real | 
|  | 1711 | * use for the callback address.  Use the peer address | 
|  | 1712 | * as a reasonable default for now, but consider fixing | 
|  | 1713 | * the rpc client not to require an address in the | 
|  | 1714 | * future: | 
|  | 1715 | */ | 
|  | 1716 | rpc_copy_addr((struct sockaddr *)&clp->cl_cb_conn.cb_addr, sa); | 
|  | 1717 | clp->cl_cb_conn.cb_addrlen = svc_addr_len(sa); | 
|  | 1718 | } | 
|  | 1719 | } | 
|  | 1720 |  | 
|  | 1721 | /* caller must hold client_lock */ | 
|  | 1722 | static struct nfsd4_session * | 
|  | 1723 | __find_in_sessionid_hashtbl(struct nfs4_sessionid *sessionid, struct net *net) | 
|  | 1724 | { | 
|  | 1725 | struct nfsd4_session *elem; | 
|  | 1726 | int idx; | 
|  | 1727 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 1728 |  | 
|  | 1729 | lockdep_assert_held(&nn->client_lock); | 
|  | 1730 |  | 
|  | 1731 | dump_sessionid(__func__, sessionid); | 
|  | 1732 | idx = hash_sessionid(sessionid); | 
|  | 1733 | /* Search in the appropriate list */ | 
|  | 1734 | list_for_each_entry(elem, &nn->sessionid_hashtbl[idx], se_hash) { | 
|  | 1735 | if (!memcmp(elem->se_sessionid.data, sessionid->data, | 
|  | 1736 | NFS4_MAX_SESSIONID_LEN)) { | 
|  | 1737 | return elem; | 
|  | 1738 | } | 
|  | 1739 | } | 
|  | 1740 |  | 
|  | 1741 | dprintk("%s: session not found\n", __func__); | 
|  | 1742 | return NULL; | 
|  | 1743 | } | 
|  | 1744 |  | 
|  | 1745 | static struct nfsd4_session * | 
|  | 1746 | find_in_sessionid_hashtbl(struct nfs4_sessionid *sessionid, struct net *net, | 
|  | 1747 | __be32 *ret) | 
|  | 1748 | { | 
|  | 1749 | struct nfsd4_session *session; | 
|  | 1750 | __be32 status = nfserr_badsession; | 
|  | 1751 |  | 
|  | 1752 | session = __find_in_sessionid_hashtbl(sessionid, net); | 
|  | 1753 | if (!session) | 
|  | 1754 | goto out; | 
|  | 1755 | status = nfsd4_get_session_locked(session); | 
|  | 1756 | if (status) | 
|  | 1757 | session = NULL; | 
|  | 1758 | out: | 
|  | 1759 | *ret = status; | 
|  | 1760 | return session; | 
|  | 1761 | } | 
|  | 1762 |  | 
|  | 1763 | /* caller must hold client_lock */ | 
|  | 1764 | static void | 
|  | 1765 | unhash_session(struct nfsd4_session *ses) | 
|  | 1766 | { | 
|  | 1767 | struct nfs4_client *clp = ses->se_client; | 
|  | 1768 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 1769 |  | 
|  | 1770 | lockdep_assert_held(&nn->client_lock); | 
|  | 1771 |  | 
|  | 1772 | list_del(&ses->se_hash); | 
|  | 1773 | spin_lock(&ses->se_client->cl_lock); | 
|  | 1774 | list_del(&ses->se_perclnt); | 
|  | 1775 | spin_unlock(&ses->se_client->cl_lock); | 
|  | 1776 | } | 
|  | 1777 |  | 
|  | 1778 | /* SETCLIENTID and SETCLIENTID_CONFIRM Helper functions */ | 
|  | 1779 | static int | 
|  | 1780 | STALE_CLIENTID(clientid_t *clid, struct nfsd_net *nn) | 
|  | 1781 | { | 
|  | 1782 | /* | 
|  | 1783 | * We're assuming the clid was not given out from a boot | 
|  | 1784 | * precisely 2^32 (about 136 years) before this one.  That seems | 
|  | 1785 | * a safe assumption: | 
|  | 1786 | */ | 
|  | 1787 | if (clid->cl_boot == (u32)nn->boot_time) | 
|  | 1788 | return 0; | 
|  | 1789 | dprintk("NFSD stale clientid (%08x/%08x) boot_time %08lx\n", | 
|  | 1790 | clid->cl_boot, clid->cl_id, nn->boot_time); | 
|  | 1791 | return 1; | 
|  | 1792 | } | 
|  | 1793 |  | 
|  | 1794 | /* | 
|  | 1795 | * XXX Should we use a slab cache ? | 
|  | 1796 | * This type of memory management is somewhat inefficient, but we use it | 
|  | 1797 | * anyway since SETCLIENTID is not a common operation. | 
|  | 1798 | */ | 
|  | 1799 | static struct nfs4_client *alloc_client(struct xdr_netobj name) | 
|  | 1800 | { | 
|  | 1801 | struct nfs4_client *clp; | 
|  | 1802 | int i; | 
|  | 1803 |  | 
|  | 1804 | clp = kmem_cache_zalloc(client_slab, GFP_KERNEL); | 
|  | 1805 | if (clp == NULL) | 
|  | 1806 | return NULL; | 
|  | 1807 | clp->cl_name.data = kmemdup(name.data, name.len, GFP_KERNEL); | 
|  | 1808 | if (clp->cl_name.data == NULL) | 
|  | 1809 | goto err_no_name; | 
|  | 1810 | clp->cl_ownerstr_hashtbl = kmalloc_array(OWNER_HASH_SIZE, | 
|  | 1811 | sizeof(struct list_head), | 
|  | 1812 | GFP_KERNEL); | 
|  | 1813 | if (!clp->cl_ownerstr_hashtbl) | 
|  | 1814 | goto err_no_hashtbl; | 
|  | 1815 | for (i = 0; i < OWNER_HASH_SIZE; i++) | 
|  | 1816 | INIT_LIST_HEAD(&clp->cl_ownerstr_hashtbl[i]); | 
|  | 1817 | clp->cl_name.len = name.len; | 
|  | 1818 | INIT_LIST_HEAD(&clp->cl_sessions); | 
|  | 1819 | idr_init(&clp->cl_stateids); | 
|  | 1820 | atomic_set(&clp->cl_refcount, 0); | 
|  | 1821 | clp->cl_cb_state = NFSD4_CB_UNKNOWN; | 
|  | 1822 | INIT_LIST_HEAD(&clp->cl_idhash); | 
|  | 1823 | INIT_LIST_HEAD(&clp->cl_openowners); | 
|  | 1824 | INIT_LIST_HEAD(&clp->cl_delegations); | 
|  | 1825 | INIT_LIST_HEAD(&clp->cl_lru); | 
|  | 1826 | INIT_LIST_HEAD(&clp->cl_revoked); | 
|  | 1827 | #ifdef CONFIG_NFSD_PNFS | 
|  | 1828 | INIT_LIST_HEAD(&clp->cl_lo_states); | 
|  | 1829 | #endif | 
|  | 1830 | spin_lock_init(&clp->cl_lock); | 
|  | 1831 | rpc_init_wait_queue(&clp->cl_cb_waitq, "Backchannel slot table"); | 
|  | 1832 | return clp; | 
|  | 1833 | err_no_hashtbl: | 
|  | 1834 | kfree(clp->cl_name.data); | 
|  | 1835 | err_no_name: | 
|  | 1836 | kmem_cache_free(client_slab, clp); | 
|  | 1837 | return NULL; | 
|  | 1838 | } | 
|  | 1839 |  | 
|  | 1840 | static void | 
|  | 1841 | free_client(struct nfs4_client *clp) | 
|  | 1842 | { | 
|  | 1843 | while (!list_empty(&clp->cl_sessions)) { | 
|  | 1844 | struct nfsd4_session *ses; | 
|  | 1845 | ses = list_entry(clp->cl_sessions.next, struct nfsd4_session, | 
|  | 1846 | se_perclnt); | 
|  | 1847 | list_del(&ses->se_perclnt); | 
|  | 1848 | WARN_ON_ONCE(atomic_read(&ses->se_ref)); | 
|  | 1849 | free_session(ses); | 
|  | 1850 | } | 
|  | 1851 | rpc_destroy_wait_queue(&clp->cl_cb_waitq); | 
|  | 1852 | free_svc_cred(&clp->cl_cred); | 
|  | 1853 | kfree(clp->cl_ownerstr_hashtbl); | 
|  | 1854 | kfree(clp->cl_name.data); | 
|  | 1855 | idr_destroy(&clp->cl_stateids); | 
|  | 1856 | kmem_cache_free(client_slab, clp); | 
|  | 1857 | } | 
|  | 1858 |  | 
|  | 1859 | /* must be called under the client_lock */ | 
|  | 1860 | static void | 
|  | 1861 | unhash_client_locked(struct nfs4_client *clp) | 
|  | 1862 | { | 
|  | 1863 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 1864 | struct nfsd4_session *ses; | 
|  | 1865 |  | 
|  | 1866 | lockdep_assert_held(&nn->client_lock); | 
|  | 1867 |  | 
|  | 1868 | /* Mark the client as expired! */ | 
|  | 1869 | clp->cl_time = 0; | 
|  | 1870 | /* Make it invisible */ | 
|  | 1871 | if (!list_empty(&clp->cl_idhash)) { | 
|  | 1872 | list_del_init(&clp->cl_idhash); | 
|  | 1873 | if (test_bit(NFSD4_CLIENT_CONFIRMED, &clp->cl_flags)) | 
|  | 1874 | rb_erase(&clp->cl_namenode, &nn->conf_name_tree); | 
|  | 1875 | else | 
|  | 1876 | rb_erase(&clp->cl_namenode, &nn->unconf_name_tree); | 
|  | 1877 | } | 
|  | 1878 | list_del_init(&clp->cl_lru); | 
|  | 1879 | spin_lock(&clp->cl_lock); | 
|  | 1880 | list_for_each_entry(ses, &clp->cl_sessions, se_perclnt) | 
|  | 1881 | list_del_init(&ses->se_hash); | 
|  | 1882 | spin_unlock(&clp->cl_lock); | 
|  | 1883 | } | 
|  | 1884 |  | 
|  | 1885 | static void | 
|  | 1886 | unhash_client(struct nfs4_client *clp) | 
|  | 1887 | { | 
|  | 1888 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 1889 |  | 
|  | 1890 | spin_lock(&nn->client_lock); | 
|  | 1891 | unhash_client_locked(clp); | 
|  | 1892 | spin_unlock(&nn->client_lock); | 
|  | 1893 | } | 
|  | 1894 |  | 
|  | 1895 | static __be32 mark_client_expired_locked(struct nfs4_client *clp) | 
|  | 1896 | { | 
|  | 1897 | if (atomic_read(&clp->cl_refcount)) | 
|  | 1898 | return nfserr_jukebox; | 
|  | 1899 | unhash_client_locked(clp); | 
|  | 1900 | return nfs_ok; | 
|  | 1901 | } | 
|  | 1902 |  | 
|  | 1903 | static void | 
|  | 1904 | __destroy_client(struct nfs4_client *clp) | 
|  | 1905 | { | 
|  | 1906 | int i; | 
|  | 1907 | struct nfs4_openowner *oo; | 
|  | 1908 | struct nfs4_delegation *dp; | 
|  | 1909 | struct list_head reaplist; | 
|  | 1910 |  | 
|  | 1911 | INIT_LIST_HEAD(&reaplist); | 
|  | 1912 | spin_lock(&state_lock); | 
|  | 1913 | while (!list_empty(&clp->cl_delegations)) { | 
|  | 1914 | dp = list_entry(clp->cl_delegations.next, struct nfs4_delegation, dl_perclnt); | 
|  | 1915 | WARN_ON(!unhash_delegation_locked(dp)); | 
|  | 1916 | list_add(&dp->dl_recall_lru, &reaplist); | 
|  | 1917 | } | 
|  | 1918 | spin_unlock(&state_lock); | 
|  | 1919 | while (!list_empty(&reaplist)) { | 
|  | 1920 | dp = list_entry(reaplist.next, struct nfs4_delegation, dl_recall_lru); | 
|  | 1921 | list_del_init(&dp->dl_recall_lru); | 
|  | 1922 | destroy_unhashed_deleg(dp); | 
|  | 1923 | } | 
|  | 1924 | while (!list_empty(&clp->cl_revoked)) { | 
|  | 1925 | dp = list_entry(clp->cl_revoked.next, struct nfs4_delegation, dl_recall_lru); | 
|  | 1926 | list_del_init(&dp->dl_recall_lru); | 
|  | 1927 | nfs4_put_stid(&dp->dl_stid); | 
|  | 1928 | } | 
|  | 1929 | while (!list_empty(&clp->cl_openowners)) { | 
|  | 1930 | oo = list_entry(clp->cl_openowners.next, struct nfs4_openowner, oo_perclient); | 
|  | 1931 | nfs4_get_stateowner(&oo->oo_owner); | 
|  | 1932 | release_openowner(oo); | 
|  | 1933 | } | 
|  | 1934 | for (i = 0; i < OWNER_HASH_SIZE; i++) { | 
|  | 1935 | struct nfs4_stateowner *so, *tmp; | 
|  | 1936 |  | 
|  | 1937 | list_for_each_entry_safe(so, tmp, &clp->cl_ownerstr_hashtbl[i], | 
|  | 1938 | so_strhash) { | 
|  | 1939 | /* Should be no openowners at this point */ | 
|  | 1940 | WARN_ON_ONCE(so->so_is_open_owner); | 
|  | 1941 | remove_blocked_locks(lockowner(so)); | 
|  | 1942 | } | 
|  | 1943 | } | 
|  | 1944 | nfsd4_return_all_client_layouts(clp); | 
|  | 1945 | nfsd4_shutdown_callback(clp); | 
|  | 1946 | if (clp->cl_cb_conn.cb_xprt) | 
|  | 1947 | svc_xprt_put(clp->cl_cb_conn.cb_xprt); | 
|  | 1948 | free_client(clp); | 
|  | 1949 | } | 
|  | 1950 |  | 
|  | 1951 | static void | 
|  | 1952 | destroy_client(struct nfs4_client *clp) | 
|  | 1953 | { | 
|  | 1954 | unhash_client(clp); | 
|  | 1955 | __destroy_client(clp); | 
|  | 1956 | } | 
|  | 1957 |  | 
|  | 1958 | static void expire_client(struct nfs4_client *clp) | 
|  | 1959 | { | 
|  | 1960 | unhash_client(clp); | 
|  | 1961 | nfsd4_client_record_remove(clp); | 
|  | 1962 | __destroy_client(clp); | 
|  | 1963 | } | 
|  | 1964 |  | 
|  | 1965 | static void copy_verf(struct nfs4_client *target, nfs4_verifier *source) | 
|  | 1966 | { | 
|  | 1967 | memcpy(target->cl_verifier.data, source->data, | 
|  | 1968 | sizeof(target->cl_verifier.data)); | 
|  | 1969 | } | 
|  | 1970 |  | 
|  | 1971 | static void copy_clid(struct nfs4_client *target, struct nfs4_client *source) | 
|  | 1972 | { | 
|  | 1973 | target->cl_clientid.cl_boot = source->cl_clientid.cl_boot; | 
|  | 1974 | target->cl_clientid.cl_id = source->cl_clientid.cl_id; | 
|  | 1975 | } | 
|  | 1976 |  | 
|  | 1977 | static int copy_cred(struct svc_cred *target, struct svc_cred *source) | 
|  | 1978 | { | 
|  | 1979 | target->cr_principal = kstrdup(source->cr_principal, GFP_KERNEL); | 
|  | 1980 | target->cr_raw_principal = kstrdup(source->cr_raw_principal, | 
|  | 1981 | GFP_KERNEL); | 
|  | 1982 | target->cr_targ_princ = kstrdup(source->cr_targ_princ, GFP_KERNEL); | 
|  | 1983 | if ((source->cr_principal && !target->cr_principal) || | 
|  | 1984 | (source->cr_raw_principal && !target->cr_raw_principal) || | 
|  | 1985 | (source->cr_targ_princ && !target->cr_targ_princ)) | 
|  | 1986 | return -ENOMEM; | 
|  | 1987 |  | 
|  | 1988 | target->cr_flavor = source->cr_flavor; | 
|  | 1989 | target->cr_uid = source->cr_uid; | 
|  | 1990 | target->cr_gid = source->cr_gid; | 
|  | 1991 | target->cr_group_info = source->cr_group_info; | 
|  | 1992 | get_group_info(target->cr_group_info); | 
|  | 1993 | target->cr_gss_mech = source->cr_gss_mech; | 
|  | 1994 | if (source->cr_gss_mech) | 
|  | 1995 | gss_mech_get(source->cr_gss_mech); | 
|  | 1996 | return 0; | 
|  | 1997 | } | 
|  | 1998 |  | 
|  | 1999 | static int | 
|  | 2000 | compare_blob(const struct xdr_netobj *o1, const struct xdr_netobj *o2) | 
|  | 2001 | { | 
|  | 2002 | if (o1->len < o2->len) | 
|  | 2003 | return -1; | 
|  | 2004 | if (o1->len > o2->len) | 
|  | 2005 | return 1; | 
|  | 2006 | return memcmp(o1->data, o2->data, o1->len); | 
|  | 2007 | } | 
|  | 2008 |  | 
|  | 2009 | static int same_name(const char *n1, const char *n2) | 
|  | 2010 | { | 
|  | 2011 | return 0 == memcmp(n1, n2, HEXDIR_LEN); | 
|  | 2012 | } | 
|  | 2013 |  | 
|  | 2014 | static int | 
|  | 2015 | same_verf(nfs4_verifier *v1, nfs4_verifier *v2) | 
|  | 2016 | { | 
|  | 2017 | return 0 == memcmp(v1->data, v2->data, sizeof(v1->data)); | 
|  | 2018 | } | 
|  | 2019 |  | 
|  | 2020 | static int | 
|  | 2021 | same_clid(clientid_t *cl1, clientid_t *cl2) | 
|  | 2022 | { | 
|  | 2023 | return (cl1->cl_boot == cl2->cl_boot) && (cl1->cl_id == cl2->cl_id); | 
|  | 2024 | } | 
|  | 2025 |  | 
|  | 2026 | static bool groups_equal(struct group_info *g1, struct group_info *g2) | 
|  | 2027 | { | 
|  | 2028 | int i; | 
|  | 2029 |  | 
|  | 2030 | if (g1->ngroups != g2->ngroups) | 
|  | 2031 | return false; | 
|  | 2032 | for (i=0; i<g1->ngroups; i++) | 
|  | 2033 | if (!gid_eq(g1->gid[i], g2->gid[i])) | 
|  | 2034 | return false; | 
|  | 2035 | return true; | 
|  | 2036 | } | 
|  | 2037 |  | 
|  | 2038 | /* | 
|  | 2039 | * RFC 3530 language requires clid_inuse be returned when the | 
|  | 2040 | * "principal" associated with a requests differs from that previously | 
|  | 2041 | * used.  We use uid, gid's, and gss principal string as our best | 
|  | 2042 | * approximation.  We also don't want to allow non-gss use of a client | 
|  | 2043 | * established using gss: in theory cr_principal should catch that | 
|  | 2044 | * change, but in practice cr_principal can be null even in the gss case | 
|  | 2045 | * since gssd doesn't always pass down a principal string. | 
|  | 2046 | */ | 
|  | 2047 | static bool is_gss_cred(struct svc_cred *cr) | 
|  | 2048 | { | 
|  | 2049 | /* Is cr_flavor one of the gss "pseudoflavors"?: */ | 
|  | 2050 | return (cr->cr_flavor > RPC_AUTH_MAXFLAVOR); | 
|  | 2051 | } | 
|  | 2052 |  | 
|  | 2053 |  | 
|  | 2054 | static bool | 
|  | 2055 | same_creds(struct svc_cred *cr1, struct svc_cred *cr2) | 
|  | 2056 | { | 
|  | 2057 | if ((is_gss_cred(cr1) != is_gss_cred(cr2)) | 
|  | 2058 | || (!uid_eq(cr1->cr_uid, cr2->cr_uid)) | 
|  | 2059 | || (!gid_eq(cr1->cr_gid, cr2->cr_gid)) | 
|  | 2060 | || !groups_equal(cr1->cr_group_info, cr2->cr_group_info)) | 
|  | 2061 | return false; | 
|  | 2062 | /* XXX: check that cr_targ_princ fields match ? */ | 
|  | 2063 | if (cr1->cr_principal == cr2->cr_principal) | 
|  | 2064 | return true; | 
|  | 2065 | if (!cr1->cr_principal || !cr2->cr_principal) | 
|  | 2066 | return false; | 
|  | 2067 | return 0 == strcmp(cr1->cr_principal, cr2->cr_principal); | 
|  | 2068 | } | 
|  | 2069 |  | 
|  | 2070 | static bool svc_rqst_integrity_protected(struct svc_rqst *rqstp) | 
|  | 2071 | { | 
|  | 2072 | struct svc_cred *cr = &rqstp->rq_cred; | 
|  | 2073 | u32 service; | 
|  | 2074 |  | 
|  | 2075 | if (!cr->cr_gss_mech) | 
|  | 2076 | return false; | 
|  | 2077 | service = gss_pseudoflavor_to_service(cr->cr_gss_mech, cr->cr_flavor); | 
|  | 2078 | return service == RPC_GSS_SVC_INTEGRITY || | 
|  | 2079 | service == RPC_GSS_SVC_PRIVACY; | 
|  | 2080 | } | 
|  | 2081 |  | 
|  | 2082 | bool nfsd4_mach_creds_match(struct nfs4_client *cl, struct svc_rqst *rqstp) | 
|  | 2083 | { | 
|  | 2084 | struct svc_cred *cr = &rqstp->rq_cred; | 
|  | 2085 |  | 
|  | 2086 | if (!cl->cl_mach_cred) | 
|  | 2087 | return true; | 
|  | 2088 | if (cl->cl_cred.cr_gss_mech != cr->cr_gss_mech) | 
|  | 2089 | return false; | 
|  | 2090 | if (!svc_rqst_integrity_protected(rqstp)) | 
|  | 2091 | return false; | 
|  | 2092 | if (cl->cl_cred.cr_raw_principal) | 
|  | 2093 | return 0 == strcmp(cl->cl_cred.cr_raw_principal, | 
|  | 2094 | cr->cr_raw_principal); | 
|  | 2095 | if (!cr->cr_principal) | 
|  | 2096 | return false; | 
|  | 2097 | return 0 == strcmp(cl->cl_cred.cr_principal, cr->cr_principal); | 
|  | 2098 | } | 
|  | 2099 |  | 
|  | 2100 | static void gen_confirm(struct nfs4_client *clp, struct nfsd_net *nn) | 
|  | 2101 | { | 
|  | 2102 | __be32 verf[2]; | 
|  | 2103 |  | 
|  | 2104 | /* | 
|  | 2105 | * This is opaque to client, so no need to byte-swap. Use | 
|  | 2106 | * __force to keep sparse happy | 
|  | 2107 | */ | 
|  | 2108 | verf[0] = (__force __be32)get_seconds(); | 
|  | 2109 | verf[1] = (__force __be32)nn->clverifier_counter++; | 
|  | 2110 | memcpy(clp->cl_confirm.data, verf, sizeof(clp->cl_confirm.data)); | 
|  | 2111 | } | 
|  | 2112 |  | 
|  | 2113 | static void gen_clid(struct nfs4_client *clp, struct nfsd_net *nn) | 
|  | 2114 | { | 
|  | 2115 | clp->cl_clientid.cl_boot = nn->boot_time; | 
|  | 2116 | clp->cl_clientid.cl_id = nn->clientid_counter++; | 
|  | 2117 | gen_confirm(clp, nn); | 
|  | 2118 | } | 
|  | 2119 |  | 
|  | 2120 | static struct nfs4_stid * | 
|  | 2121 | find_stateid_locked(struct nfs4_client *cl, stateid_t *t) | 
|  | 2122 | { | 
|  | 2123 | struct nfs4_stid *ret; | 
|  | 2124 |  | 
|  | 2125 | ret = idr_find(&cl->cl_stateids, t->si_opaque.so_id); | 
|  | 2126 | if (!ret || !ret->sc_type) | 
|  | 2127 | return NULL; | 
|  | 2128 | return ret; | 
|  | 2129 | } | 
|  | 2130 |  | 
|  | 2131 | static struct nfs4_stid * | 
|  | 2132 | find_stateid_by_type(struct nfs4_client *cl, stateid_t *t, char typemask) | 
|  | 2133 | { | 
|  | 2134 | struct nfs4_stid *s; | 
|  | 2135 |  | 
|  | 2136 | spin_lock(&cl->cl_lock); | 
|  | 2137 | s = find_stateid_locked(cl, t); | 
|  | 2138 | if (s != NULL) { | 
|  | 2139 | if (typemask & s->sc_type) | 
|  | 2140 | refcount_inc(&s->sc_count); | 
|  | 2141 | else | 
|  | 2142 | s = NULL; | 
|  | 2143 | } | 
|  | 2144 | spin_unlock(&cl->cl_lock); | 
|  | 2145 | return s; | 
|  | 2146 | } | 
|  | 2147 |  | 
|  | 2148 | static struct nfs4_client *create_client(struct xdr_netobj name, | 
|  | 2149 | struct svc_rqst *rqstp, nfs4_verifier *verf) | 
|  | 2150 | { | 
|  | 2151 | struct nfs4_client *clp; | 
|  | 2152 | struct sockaddr *sa = svc_addr(rqstp); | 
|  | 2153 | int ret; | 
|  | 2154 | struct net *net = SVC_NET(rqstp); | 
|  | 2155 |  | 
|  | 2156 | clp = alloc_client(name); | 
|  | 2157 | if (clp == NULL) | 
|  | 2158 | return NULL; | 
|  | 2159 |  | 
|  | 2160 | ret = copy_cred(&clp->cl_cred, &rqstp->rq_cred); | 
|  | 2161 | if (ret) { | 
|  | 2162 | free_client(clp); | 
|  | 2163 | return NULL; | 
|  | 2164 | } | 
|  | 2165 | nfsd4_init_cb(&clp->cl_cb_null, clp, NULL, NFSPROC4_CLNT_CB_NULL); | 
|  | 2166 | clp->cl_time = get_seconds(); | 
|  | 2167 | clear_bit(0, &clp->cl_cb_slot_busy); | 
|  | 2168 | copy_verf(clp, verf); | 
|  | 2169 | rpc_copy_addr((struct sockaddr *) &clp->cl_addr, sa); | 
|  | 2170 | clp->cl_cb_session = NULL; | 
|  | 2171 | clp->net = net; | 
|  | 2172 | return clp; | 
|  | 2173 | } | 
|  | 2174 |  | 
|  | 2175 | static void | 
|  | 2176 | add_clp_to_name_tree(struct nfs4_client *new_clp, struct rb_root *root) | 
|  | 2177 | { | 
|  | 2178 | struct rb_node **new = &(root->rb_node), *parent = NULL; | 
|  | 2179 | struct nfs4_client *clp; | 
|  | 2180 |  | 
|  | 2181 | while (*new) { | 
|  | 2182 | clp = rb_entry(*new, struct nfs4_client, cl_namenode); | 
|  | 2183 | parent = *new; | 
|  | 2184 |  | 
|  | 2185 | if (compare_blob(&clp->cl_name, &new_clp->cl_name) > 0) | 
|  | 2186 | new = &((*new)->rb_left); | 
|  | 2187 | else | 
|  | 2188 | new = &((*new)->rb_right); | 
|  | 2189 | } | 
|  | 2190 |  | 
|  | 2191 | rb_link_node(&new_clp->cl_namenode, parent, new); | 
|  | 2192 | rb_insert_color(&new_clp->cl_namenode, root); | 
|  | 2193 | } | 
|  | 2194 |  | 
|  | 2195 | static struct nfs4_client * | 
|  | 2196 | find_clp_in_name_tree(struct xdr_netobj *name, struct rb_root *root) | 
|  | 2197 | { | 
|  | 2198 | int cmp; | 
|  | 2199 | struct rb_node *node = root->rb_node; | 
|  | 2200 | struct nfs4_client *clp; | 
|  | 2201 |  | 
|  | 2202 | while (node) { | 
|  | 2203 | clp = rb_entry(node, struct nfs4_client, cl_namenode); | 
|  | 2204 | cmp = compare_blob(&clp->cl_name, name); | 
|  | 2205 | if (cmp > 0) | 
|  | 2206 | node = node->rb_left; | 
|  | 2207 | else if (cmp < 0) | 
|  | 2208 | node = node->rb_right; | 
|  | 2209 | else | 
|  | 2210 | return clp; | 
|  | 2211 | } | 
|  | 2212 | return NULL; | 
|  | 2213 | } | 
|  | 2214 |  | 
|  | 2215 | static void | 
|  | 2216 | add_to_unconfirmed(struct nfs4_client *clp) | 
|  | 2217 | { | 
|  | 2218 | unsigned int idhashval; | 
|  | 2219 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 2220 |  | 
|  | 2221 | lockdep_assert_held(&nn->client_lock); | 
|  | 2222 |  | 
|  | 2223 | clear_bit(NFSD4_CLIENT_CONFIRMED, &clp->cl_flags); | 
|  | 2224 | add_clp_to_name_tree(clp, &nn->unconf_name_tree); | 
|  | 2225 | idhashval = clientid_hashval(clp->cl_clientid.cl_id); | 
|  | 2226 | list_add(&clp->cl_idhash, &nn->unconf_id_hashtbl[idhashval]); | 
|  | 2227 | renew_client_locked(clp); | 
|  | 2228 | } | 
|  | 2229 |  | 
|  | 2230 | static void | 
|  | 2231 | move_to_confirmed(struct nfs4_client *clp) | 
|  | 2232 | { | 
|  | 2233 | unsigned int idhashval = clientid_hashval(clp->cl_clientid.cl_id); | 
|  | 2234 | struct nfsd_net *nn = net_generic(clp->net, nfsd_net_id); | 
|  | 2235 |  | 
|  | 2236 | lockdep_assert_held(&nn->client_lock); | 
|  | 2237 |  | 
|  | 2238 | dprintk("NFSD: move_to_confirm nfs4_client %p\n", clp); | 
|  | 2239 | list_move(&clp->cl_idhash, &nn->conf_id_hashtbl[idhashval]); | 
|  | 2240 | rb_erase(&clp->cl_namenode, &nn->unconf_name_tree); | 
|  | 2241 | add_clp_to_name_tree(clp, &nn->conf_name_tree); | 
|  | 2242 | set_bit(NFSD4_CLIENT_CONFIRMED, &clp->cl_flags); | 
|  | 2243 | renew_client_locked(clp); | 
|  | 2244 | } | 
|  | 2245 |  | 
|  | 2246 | static struct nfs4_client * | 
|  | 2247 | find_client_in_id_table(struct list_head *tbl, clientid_t *clid, bool sessions) | 
|  | 2248 | { | 
|  | 2249 | struct nfs4_client *clp; | 
|  | 2250 | unsigned int idhashval = clientid_hashval(clid->cl_id); | 
|  | 2251 |  | 
|  | 2252 | list_for_each_entry(clp, &tbl[idhashval], cl_idhash) { | 
|  | 2253 | if (same_clid(&clp->cl_clientid, clid)) { | 
|  | 2254 | if ((bool)clp->cl_minorversion != sessions) | 
|  | 2255 | return NULL; | 
|  | 2256 | renew_client_locked(clp); | 
|  | 2257 | return clp; | 
|  | 2258 | } | 
|  | 2259 | } | 
|  | 2260 | return NULL; | 
|  | 2261 | } | 
|  | 2262 |  | 
|  | 2263 | static struct nfs4_client * | 
|  | 2264 | find_confirmed_client(clientid_t *clid, bool sessions, struct nfsd_net *nn) | 
|  | 2265 | { | 
|  | 2266 | struct list_head *tbl = nn->conf_id_hashtbl; | 
|  | 2267 |  | 
|  | 2268 | lockdep_assert_held(&nn->client_lock); | 
|  | 2269 | return find_client_in_id_table(tbl, clid, sessions); | 
|  | 2270 | } | 
|  | 2271 |  | 
|  | 2272 | static struct nfs4_client * | 
|  | 2273 | find_unconfirmed_client(clientid_t *clid, bool sessions, struct nfsd_net *nn) | 
|  | 2274 | { | 
|  | 2275 | struct list_head *tbl = nn->unconf_id_hashtbl; | 
|  | 2276 |  | 
|  | 2277 | lockdep_assert_held(&nn->client_lock); | 
|  | 2278 | return find_client_in_id_table(tbl, clid, sessions); | 
|  | 2279 | } | 
|  | 2280 |  | 
|  | 2281 | static bool clp_used_exchangeid(struct nfs4_client *clp) | 
|  | 2282 | { | 
|  | 2283 | return clp->cl_exchange_flags != 0; | 
|  | 2284 | } | 
|  | 2285 |  | 
|  | 2286 | static struct nfs4_client * | 
|  | 2287 | find_confirmed_client_by_name(struct xdr_netobj *name, struct nfsd_net *nn) | 
|  | 2288 | { | 
|  | 2289 | lockdep_assert_held(&nn->client_lock); | 
|  | 2290 | return find_clp_in_name_tree(name, &nn->conf_name_tree); | 
|  | 2291 | } | 
|  | 2292 |  | 
|  | 2293 | static struct nfs4_client * | 
|  | 2294 | find_unconfirmed_client_by_name(struct xdr_netobj *name, struct nfsd_net *nn) | 
|  | 2295 | { | 
|  | 2296 | lockdep_assert_held(&nn->client_lock); | 
|  | 2297 | return find_clp_in_name_tree(name, &nn->unconf_name_tree); | 
|  | 2298 | } | 
|  | 2299 |  | 
|  | 2300 | static void | 
|  | 2301 | gen_callback(struct nfs4_client *clp, struct nfsd4_setclientid *se, struct svc_rqst *rqstp) | 
|  | 2302 | { | 
|  | 2303 | struct nfs4_cb_conn *conn = &clp->cl_cb_conn; | 
|  | 2304 | struct sockaddr	*sa = svc_addr(rqstp); | 
|  | 2305 | u32 scopeid = rpc_get_scope_id(sa); | 
|  | 2306 | unsigned short expected_family; | 
|  | 2307 |  | 
|  | 2308 | /* Currently, we only support tcp and tcp6 for the callback channel */ | 
|  | 2309 | if (se->se_callback_netid_len == 3 && | 
|  | 2310 | !memcmp(se->se_callback_netid_val, "tcp", 3)) | 
|  | 2311 | expected_family = AF_INET; | 
|  | 2312 | else if (se->se_callback_netid_len == 4 && | 
|  | 2313 | !memcmp(se->se_callback_netid_val, "tcp6", 4)) | 
|  | 2314 | expected_family = AF_INET6; | 
|  | 2315 | else | 
|  | 2316 | goto out_err; | 
|  | 2317 |  | 
|  | 2318 | conn->cb_addrlen = rpc_uaddr2sockaddr(clp->net, se->se_callback_addr_val, | 
|  | 2319 | se->se_callback_addr_len, | 
|  | 2320 | (struct sockaddr *)&conn->cb_addr, | 
|  | 2321 | sizeof(conn->cb_addr)); | 
|  | 2322 |  | 
|  | 2323 | if (!conn->cb_addrlen || conn->cb_addr.ss_family != expected_family) | 
|  | 2324 | goto out_err; | 
|  | 2325 |  | 
|  | 2326 | if (conn->cb_addr.ss_family == AF_INET6) | 
|  | 2327 | ((struct sockaddr_in6 *)&conn->cb_addr)->sin6_scope_id = scopeid; | 
|  | 2328 |  | 
|  | 2329 | conn->cb_prog = se->se_callback_prog; | 
|  | 2330 | conn->cb_ident = se->se_callback_ident; | 
|  | 2331 | memcpy(&conn->cb_saddr, &rqstp->rq_daddr, rqstp->rq_daddrlen); | 
|  | 2332 | return; | 
|  | 2333 | out_err: | 
|  | 2334 | conn->cb_addr.ss_family = AF_UNSPEC; | 
|  | 2335 | conn->cb_addrlen = 0; | 
|  | 2336 | dprintk("NFSD: this client (clientid %08x/%08x) " | 
|  | 2337 | "will not receive delegations\n", | 
|  | 2338 | clp->cl_clientid.cl_boot, clp->cl_clientid.cl_id); | 
|  | 2339 |  | 
|  | 2340 | return; | 
|  | 2341 | } | 
|  | 2342 |  | 
|  | 2343 | /* | 
|  | 2344 | * Cache a reply. nfsd4_check_resp_size() has bounded the cache size. | 
|  | 2345 | */ | 
|  | 2346 | static void | 
|  | 2347 | nfsd4_store_cache_entry(struct nfsd4_compoundres *resp) | 
|  | 2348 | { | 
|  | 2349 | struct xdr_buf *buf = resp->xdr.buf; | 
|  | 2350 | struct nfsd4_slot *slot = resp->cstate.slot; | 
|  | 2351 | unsigned int base; | 
|  | 2352 |  | 
|  | 2353 | dprintk("--> %s slot %p\n", __func__, slot); | 
|  | 2354 |  | 
|  | 2355 | slot->sl_flags |= NFSD4_SLOT_INITIALIZED; | 
|  | 2356 | slot->sl_opcnt = resp->opcnt; | 
|  | 2357 | slot->sl_status = resp->cstate.status; | 
|  | 2358 | free_svc_cred(&slot->sl_cred); | 
|  | 2359 | copy_cred(&slot->sl_cred, &resp->rqstp->rq_cred); | 
|  | 2360 |  | 
|  | 2361 | if (!nfsd4_cache_this(resp)) { | 
|  | 2362 | slot->sl_flags &= ~NFSD4_SLOT_CACHED; | 
|  | 2363 | return; | 
|  | 2364 | } | 
|  | 2365 | slot->sl_flags |= NFSD4_SLOT_CACHED; | 
|  | 2366 |  | 
|  | 2367 | base = resp->cstate.data_offset; | 
|  | 2368 | slot->sl_datalen = buf->len - base; | 
|  | 2369 | if (read_bytes_from_xdr_buf(buf, base, slot->sl_data, slot->sl_datalen)) | 
|  | 2370 | WARN(1, "%s: sessions DRC could not cache compound\n", | 
|  | 2371 | __func__); | 
|  | 2372 | return; | 
|  | 2373 | } | 
|  | 2374 |  | 
|  | 2375 | /* | 
|  | 2376 | * Encode the replay sequence operation from the slot values. | 
|  | 2377 | * If cachethis is FALSE encode the uncached rep error on the next | 
|  | 2378 | * operation which sets resp->p and increments resp->opcnt for | 
|  | 2379 | * nfs4svc_encode_compoundres. | 
|  | 2380 | * | 
|  | 2381 | */ | 
|  | 2382 | static __be32 | 
|  | 2383 | nfsd4_enc_sequence_replay(struct nfsd4_compoundargs *args, | 
|  | 2384 | struct nfsd4_compoundres *resp) | 
|  | 2385 | { | 
|  | 2386 | struct nfsd4_op *op; | 
|  | 2387 | struct nfsd4_slot *slot = resp->cstate.slot; | 
|  | 2388 |  | 
|  | 2389 | /* Encode the replayed sequence operation */ | 
|  | 2390 | op = &args->ops[resp->opcnt - 1]; | 
|  | 2391 | nfsd4_encode_operation(resp, op); | 
|  | 2392 |  | 
|  | 2393 | if (slot->sl_flags & NFSD4_SLOT_CACHED) | 
|  | 2394 | return op->status; | 
|  | 2395 | if (args->opcnt == 1) { | 
|  | 2396 | /* | 
|  | 2397 | * The original operation wasn't a solo sequence--we | 
|  | 2398 | * always cache those--so this retry must not match the | 
|  | 2399 | * original: | 
|  | 2400 | */ | 
|  | 2401 | op->status = nfserr_seq_false_retry; | 
|  | 2402 | } else { | 
|  | 2403 | op = &args->ops[resp->opcnt++]; | 
|  | 2404 | op->status = nfserr_retry_uncached_rep; | 
|  | 2405 | nfsd4_encode_operation(resp, op); | 
|  | 2406 | } | 
|  | 2407 | return op->status; | 
|  | 2408 | } | 
|  | 2409 |  | 
|  | 2410 | /* | 
|  | 2411 | * The sequence operation is not cached because we can use the slot and | 
|  | 2412 | * session values. | 
|  | 2413 | */ | 
|  | 2414 | static __be32 | 
|  | 2415 | nfsd4_replay_cache_entry(struct nfsd4_compoundres *resp, | 
|  | 2416 | struct nfsd4_sequence *seq) | 
|  | 2417 | { | 
|  | 2418 | struct nfsd4_slot *slot = resp->cstate.slot; | 
|  | 2419 | struct xdr_stream *xdr = &resp->xdr; | 
|  | 2420 | __be32 *p; | 
|  | 2421 | __be32 status; | 
|  | 2422 |  | 
|  | 2423 | dprintk("--> %s slot %p\n", __func__, slot); | 
|  | 2424 |  | 
|  | 2425 | status = nfsd4_enc_sequence_replay(resp->rqstp->rq_argp, resp); | 
|  | 2426 | if (status) | 
|  | 2427 | return status; | 
|  | 2428 |  | 
|  | 2429 | p = xdr_reserve_space(xdr, slot->sl_datalen); | 
|  | 2430 | if (!p) { | 
|  | 2431 | WARN_ON_ONCE(1); | 
|  | 2432 | return nfserr_serverfault; | 
|  | 2433 | } | 
|  | 2434 | xdr_encode_opaque_fixed(p, slot->sl_data, slot->sl_datalen); | 
|  | 2435 | xdr_commit_encode(xdr); | 
|  | 2436 |  | 
|  | 2437 | resp->opcnt = slot->sl_opcnt; | 
|  | 2438 | return slot->sl_status; | 
|  | 2439 | } | 
|  | 2440 |  | 
|  | 2441 | /* | 
|  | 2442 | * Set the exchange_id flags returned by the server. | 
|  | 2443 | */ | 
|  | 2444 | static void | 
|  | 2445 | nfsd4_set_ex_flags(struct nfs4_client *new, struct nfsd4_exchange_id *clid) | 
|  | 2446 | { | 
|  | 2447 | #ifdef CONFIG_NFSD_PNFS | 
|  | 2448 | new->cl_exchange_flags |= EXCHGID4_FLAG_USE_PNFS_MDS; | 
|  | 2449 | #else | 
|  | 2450 | new->cl_exchange_flags |= EXCHGID4_FLAG_USE_NON_PNFS; | 
|  | 2451 | #endif | 
|  | 2452 |  | 
|  | 2453 | /* Referrals are supported, Migration is not. */ | 
|  | 2454 | new->cl_exchange_flags |= EXCHGID4_FLAG_SUPP_MOVED_REFER; | 
|  | 2455 |  | 
|  | 2456 | /* set the wire flags to return to client. */ | 
|  | 2457 | clid->flags = new->cl_exchange_flags; | 
|  | 2458 | } | 
|  | 2459 |  | 
|  | 2460 | static bool client_has_openowners(struct nfs4_client *clp) | 
|  | 2461 | { | 
|  | 2462 | struct nfs4_openowner *oo; | 
|  | 2463 |  | 
|  | 2464 | list_for_each_entry(oo, &clp->cl_openowners, oo_perclient) { | 
|  | 2465 | if (!list_empty(&oo->oo_owner.so_stateids)) | 
|  | 2466 | return true; | 
|  | 2467 | } | 
|  | 2468 | return false; | 
|  | 2469 | } | 
|  | 2470 |  | 
|  | 2471 | static bool client_has_state(struct nfs4_client *clp) | 
|  | 2472 | { | 
|  | 2473 | return client_has_openowners(clp) | 
|  | 2474 | #ifdef CONFIG_NFSD_PNFS | 
|  | 2475 | || !list_empty(&clp->cl_lo_states) | 
|  | 2476 | #endif | 
|  | 2477 | || !list_empty(&clp->cl_delegations) | 
|  | 2478 | || !list_empty(&clp->cl_sessions); | 
|  | 2479 | } | 
|  | 2480 |  | 
|  | 2481 | __be32 | 
|  | 2482 | nfsd4_exchange_id(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 2483 | union nfsd4_op_u *u) | 
|  | 2484 | { | 
|  | 2485 | struct nfsd4_exchange_id *exid = &u->exchange_id; | 
|  | 2486 | struct nfs4_client *conf, *new; | 
|  | 2487 | struct nfs4_client *unconf = NULL; | 
|  | 2488 | __be32 status; | 
|  | 2489 | char			addr_str[INET6_ADDRSTRLEN]; | 
|  | 2490 | nfs4_verifier		verf = exid->verifier; | 
|  | 2491 | struct sockaddr		*sa = svc_addr(rqstp); | 
|  | 2492 | bool	update = exid->flags & EXCHGID4_FLAG_UPD_CONFIRMED_REC_A; | 
|  | 2493 | struct nfsd_net		*nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 2494 |  | 
|  | 2495 | rpc_ntop(sa, addr_str, sizeof(addr_str)); | 
|  | 2496 | dprintk("%s rqstp=%p exid=%p clname.len=%u clname.data=%p " | 
|  | 2497 | "ip_addr=%s flags %x, spa_how %d\n", | 
|  | 2498 | __func__, rqstp, exid, exid->clname.len, exid->clname.data, | 
|  | 2499 | addr_str, exid->flags, exid->spa_how); | 
|  | 2500 |  | 
|  | 2501 | if (exid->flags & ~EXCHGID4_FLAG_MASK_A) | 
|  | 2502 | return nfserr_inval; | 
|  | 2503 |  | 
|  | 2504 | new = create_client(exid->clname, rqstp, &verf); | 
|  | 2505 | if (new == NULL) | 
|  | 2506 | return nfserr_jukebox; | 
|  | 2507 |  | 
|  | 2508 | switch (exid->spa_how) { | 
|  | 2509 | case SP4_MACH_CRED: | 
|  | 2510 | exid->spo_must_enforce[0] = 0; | 
|  | 2511 | exid->spo_must_enforce[1] = ( | 
|  | 2512 | 1 << (OP_BIND_CONN_TO_SESSION - 32) | | 
|  | 2513 | 1 << (OP_EXCHANGE_ID - 32) | | 
|  | 2514 | 1 << (OP_CREATE_SESSION - 32) | | 
|  | 2515 | 1 << (OP_DESTROY_SESSION - 32) | | 
|  | 2516 | 1 << (OP_DESTROY_CLIENTID - 32)); | 
|  | 2517 |  | 
|  | 2518 | exid->spo_must_allow[0] &= (1 << (OP_CLOSE) | | 
|  | 2519 | 1 << (OP_OPEN_DOWNGRADE) | | 
|  | 2520 | 1 << (OP_LOCKU) | | 
|  | 2521 | 1 << (OP_DELEGRETURN)); | 
|  | 2522 |  | 
|  | 2523 | exid->spo_must_allow[1] &= ( | 
|  | 2524 | 1 << (OP_TEST_STATEID - 32) | | 
|  | 2525 | 1 << (OP_FREE_STATEID - 32)); | 
|  | 2526 | if (!svc_rqst_integrity_protected(rqstp)) { | 
|  | 2527 | status = nfserr_inval; | 
|  | 2528 | goto out_nolock; | 
|  | 2529 | } | 
|  | 2530 | /* | 
|  | 2531 | * Sometimes userspace doesn't give us a principal. | 
|  | 2532 | * Which is a bug, really.  Anyway, we can't enforce | 
|  | 2533 | * MACH_CRED in that case, better to give up now: | 
|  | 2534 | */ | 
|  | 2535 | if (!new->cl_cred.cr_principal && | 
|  | 2536 | !new->cl_cred.cr_raw_principal) { | 
|  | 2537 | status = nfserr_serverfault; | 
|  | 2538 | goto out_nolock; | 
|  | 2539 | } | 
|  | 2540 | new->cl_mach_cred = true; | 
|  | 2541 | case SP4_NONE: | 
|  | 2542 | break; | 
|  | 2543 | default:				/* checked by xdr code */ | 
|  | 2544 | WARN_ON_ONCE(1); | 
|  | 2545 | case SP4_SSV: | 
|  | 2546 | status = nfserr_encr_alg_unsupp; | 
|  | 2547 | goto out_nolock; | 
|  | 2548 | } | 
|  | 2549 |  | 
|  | 2550 | /* Cases below refer to rfc 5661 section 18.35.4: */ | 
|  | 2551 | spin_lock(&nn->client_lock); | 
|  | 2552 | conf = find_confirmed_client_by_name(&exid->clname, nn); | 
|  | 2553 | if (conf) { | 
|  | 2554 | bool creds_match = same_creds(&conf->cl_cred, &rqstp->rq_cred); | 
|  | 2555 | bool verfs_match = same_verf(&verf, &conf->cl_verifier); | 
|  | 2556 |  | 
|  | 2557 | if (update) { | 
|  | 2558 | if (!clp_used_exchangeid(conf)) { /* buggy client */ | 
|  | 2559 | status = nfserr_inval; | 
|  | 2560 | goto out; | 
|  | 2561 | } | 
|  | 2562 | if (!nfsd4_mach_creds_match(conf, rqstp)) { | 
|  | 2563 | status = nfserr_wrong_cred; | 
|  | 2564 | goto out; | 
|  | 2565 | } | 
|  | 2566 | if (!creds_match) { /* case 9 */ | 
|  | 2567 | status = nfserr_perm; | 
|  | 2568 | goto out; | 
|  | 2569 | } | 
|  | 2570 | if (!verfs_match) { /* case 8 */ | 
|  | 2571 | status = nfserr_not_same; | 
|  | 2572 | goto out; | 
|  | 2573 | } | 
|  | 2574 | /* case 6 */ | 
|  | 2575 | exid->flags |= EXCHGID4_FLAG_CONFIRMED_R; | 
|  | 2576 | goto out_copy; | 
|  | 2577 | } | 
|  | 2578 | if (!creds_match) { /* case 3 */ | 
|  | 2579 | if (client_has_state(conf)) { | 
|  | 2580 | status = nfserr_clid_inuse; | 
|  | 2581 | goto out; | 
|  | 2582 | } | 
|  | 2583 | goto out_new; | 
|  | 2584 | } | 
|  | 2585 | if (verfs_match) { /* case 2 */ | 
|  | 2586 | conf->cl_exchange_flags |= EXCHGID4_FLAG_CONFIRMED_R; | 
|  | 2587 | goto out_copy; | 
|  | 2588 | } | 
|  | 2589 | /* case 5, client reboot */ | 
|  | 2590 | conf = NULL; | 
|  | 2591 | goto out_new; | 
|  | 2592 | } | 
|  | 2593 |  | 
|  | 2594 | if (update) { /* case 7 */ | 
|  | 2595 | status = nfserr_noent; | 
|  | 2596 | goto out; | 
|  | 2597 | } | 
|  | 2598 |  | 
|  | 2599 | unconf  = find_unconfirmed_client_by_name(&exid->clname, nn); | 
|  | 2600 | if (unconf) /* case 4, possible retry or client restart */ | 
|  | 2601 | unhash_client_locked(unconf); | 
|  | 2602 |  | 
|  | 2603 | /* case 1 (normal case) */ | 
|  | 2604 | out_new: | 
|  | 2605 | if (conf) { | 
|  | 2606 | status = mark_client_expired_locked(conf); | 
|  | 2607 | if (status) | 
|  | 2608 | goto out; | 
|  | 2609 | } | 
|  | 2610 | new->cl_minorversion = cstate->minorversion; | 
|  | 2611 | new->cl_spo_must_allow.u.words[0] = exid->spo_must_allow[0]; | 
|  | 2612 | new->cl_spo_must_allow.u.words[1] = exid->spo_must_allow[1]; | 
|  | 2613 |  | 
|  | 2614 | gen_clid(new, nn); | 
|  | 2615 | add_to_unconfirmed(new); | 
|  | 2616 | swap(new, conf); | 
|  | 2617 | out_copy: | 
|  | 2618 | exid->clientid.cl_boot = conf->cl_clientid.cl_boot; | 
|  | 2619 | exid->clientid.cl_id = conf->cl_clientid.cl_id; | 
|  | 2620 |  | 
|  | 2621 | exid->seqid = conf->cl_cs_slot.sl_seqid + 1; | 
|  | 2622 | nfsd4_set_ex_flags(conf, exid); | 
|  | 2623 |  | 
|  | 2624 | dprintk("nfsd4_exchange_id seqid %d flags %x\n", | 
|  | 2625 | conf->cl_cs_slot.sl_seqid, conf->cl_exchange_flags); | 
|  | 2626 | status = nfs_ok; | 
|  | 2627 |  | 
|  | 2628 | out: | 
|  | 2629 | spin_unlock(&nn->client_lock); | 
|  | 2630 | out_nolock: | 
|  | 2631 | if (new) | 
|  | 2632 | expire_client(new); | 
|  | 2633 | if (unconf) | 
|  | 2634 | expire_client(unconf); | 
|  | 2635 | return status; | 
|  | 2636 | } | 
|  | 2637 |  | 
|  | 2638 | static __be32 | 
|  | 2639 | check_slot_seqid(u32 seqid, u32 slot_seqid, int slot_inuse) | 
|  | 2640 | { | 
|  | 2641 | dprintk("%s enter. seqid %d slot_seqid %d\n", __func__, seqid, | 
|  | 2642 | slot_seqid); | 
|  | 2643 |  | 
|  | 2644 | /* The slot is in use, and no response has been sent. */ | 
|  | 2645 | if (slot_inuse) { | 
|  | 2646 | if (seqid == slot_seqid) | 
|  | 2647 | return nfserr_jukebox; | 
|  | 2648 | else | 
|  | 2649 | return nfserr_seq_misordered; | 
|  | 2650 | } | 
|  | 2651 | /* Note unsigned 32-bit arithmetic handles wraparound: */ | 
|  | 2652 | if (likely(seqid == slot_seqid + 1)) | 
|  | 2653 | return nfs_ok; | 
|  | 2654 | if (seqid == slot_seqid) | 
|  | 2655 | return nfserr_replay_cache; | 
|  | 2656 | return nfserr_seq_misordered; | 
|  | 2657 | } | 
|  | 2658 |  | 
|  | 2659 | /* | 
|  | 2660 | * Cache the create session result into the create session single DRC | 
|  | 2661 | * slot cache by saving the xdr structure. sl_seqid has been set. | 
|  | 2662 | * Do this for solo or embedded create session operations. | 
|  | 2663 | */ | 
|  | 2664 | static void | 
|  | 2665 | nfsd4_cache_create_session(struct nfsd4_create_session *cr_ses, | 
|  | 2666 | struct nfsd4_clid_slot *slot, __be32 nfserr) | 
|  | 2667 | { | 
|  | 2668 | slot->sl_status = nfserr; | 
|  | 2669 | memcpy(&slot->sl_cr_ses, cr_ses, sizeof(*cr_ses)); | 
|  | 2670 | } | 
|  | 2671 |  | 
|  | 2672 | static __be32 | 
|  | 2673 | nfsd4_replay_create_session(struct nfsd4_create_session *cr_ses, | 
|  | 2674 | struct nfsd4_clid_slot *slot) | 
|  | 2675 | { | 
|  | 2676 | memcpy(cr_ses, &slot->sl_cr_ses, sizeof(*cr_ses)); | 
|  | 2677 | return slot->sl_status; | 
|  | 2678 | } | 
|  | 2679 |  | 
|  | 2680 | #define NFSD_MIN_REQ_HDR_SEQ_SZ	((\ | 
|  | 2681 | 2 * 2 + /* credential,verifier: AUTH_NULL, length 0 */ \ | 
|  | 2682 | 1 +	/* MIN tag is length with zero, only length */ \ | 
|  | 2683 | 3 +	/* version, opcount, opcode */ \ | 
|  | 2684 | XDR_QUADLEN(NFS4_MAX_SESSIONID_LEN) + \ | 
|  | 2685 | /* seqid, slotID, slotID, cache */ \ | 
|  | 2686 | 4 ) * sizeof(__be32)) | 
|  | 2687 |  | 
|  | 2688 | #define NFSD_MIN_RESP_HDR_SEQ_SZ ((\ | 
|  | 2689 | 2 +	/* verifier: AUTH_NULL, length 0 */\ | 
|  | 2690 | 1 +	/* status */ \ | 
|  | 2691 | 1 +	/* MIN tag is length with zero, only length */ \ | 
|  | 2692 | 3 +	/* opcount, opcode, opstatus*/ \ | 
|  | 2693 | XDR_QUADLEN(NFS4_MAX_SESSIONID_LEN) + \ | 
|  | 2694 | /* seqid, slotID, slotID, slotID, status */ \ | 
|  | 2695 | 5 ) * sizeof(__be32)) | 
|  | 2696 |  | 
|  | 2697 | static __be32 check_forechannel_attrs(struct nfsd4_channel_attrs *ca, struct nfsd_net *nn) | 
|  | 2698 | { | 
|  | 2699 | u32 maxrpc = nn->nfsd_serv->sv_max_mesg; | 
|  | 2700 |  | 
|  | 2701 | if (ca->maxreq_sz < NFSD_MIN_REQ_HDR_SEQ_SZ) | 
|  | 2702 | return nfserr_toosmall; | 
|  | 2703 | if (ca->maxresp_sz < NFSD_MIN_RESP_HDR_SEQ_SZ) | 
|  | 2704 | return nfserr_toosmall; | 
|  | 2705 | ca->headerpadsz = 0; | 
|  | 2706 | ca->maxreq_sz = min_t(u32, ca->maxreq_sz, maxrpc); | 
|  | 2707 | ca->maxresp_sz = min_t(u32, ca->maxresp_sz, maxrpc); | 
|  | 2708 | ca->maxops = min_t(u32, ca->maxops, NFSD_MAX_OPS_PER_COMPOUND); | 
|  | 2709 | ca->maxresp_cached = min_t(u32, ca->maxresp_cached, | 
|  | 2710 | NFSD_SLOT_CACHE_SIZE + NFSD_MIN_HDR_SEQ_SZ); | 
|  | 2711 | ca->maxreqs = min_t(u32, ca->maxreqs, NFSD_MAX_SLOTS_PER_SESSION); | 
|  | 2712 | /* | 
|  | 2713 | * Note decreasing slot size below client's request may make it | 
|  | 2714 | * difficult for client to function correctly, whereas | 
|  | 2715 | * decreasing the number of slots will (just?) affect | 
|  | 2716 | * performance.  When short on memory we therefore prefer to | 
|  | 2717 | * decrease number of slots instead of their size.  Clients that | 
|  | 2718 | * request larger slots than they need will get poor results: | 
|  | 2719 | */ | 
|  | 2720 | ca->maxreqs = nfsd4_get_drc_mem(ca); | 
|  | 2721 | if (!ca->maxreqs) | 
|  | 2722 | return nfserr_jukebox; | 
|  | 2723 |  | 
|  | 2724 | return nfs_ok; | 
|  | 2725 | } | 
|  | 2726 |  | 
|  | 2727 | /* | 
|  | 2728 | * Server's NFSv4.1 backchannel support is AUTH_SYS-only for now. | 
|  | 2729 | * These are based on similar macros in linux/sunrpc/msg_prot.h . | 
|  | 2730 | */ | 
|  | 2731 | #define RPC_MAX_HEADER_WITH_AUTH_SYS \ | 
|  | 2732 | (RPC_CALLHDRSIZE + 2 * (2 + UNX_CALLSLACK)) | 
|  | 2733 |  | 
|  | 2734 | #define RPC_MAX_REPHEADER_WITH_AUTH_SYS \ | 
|  | 2735 | (RPC_REPHDRSIZE + (2 + NUL_REPLYSLACK)) | 
|  | 2736 |  | 
|  | 2737 | #define NFSD_CB_MAX_REQ_SZ	((NFS4_enc_cb_recall_sz + \ | 
|  | 2738 | RPC_MAX_HEADER_WITH_AUTH_SYS) * sizeof(__be32)) | 
|  | 2739 | #define NFSD_CB_MAX_RESP_SZ	((NFS4_dec_cb_recall_sz + \ | 
|  | 2740 | RPC_MAX_REPHEADER_WITH_AUTH_SYS) * \ | 
|  | 2741 | sizeof(__be32)) | 
|  | 2742 |  | 
|  | 2743 | static __be32 check_backchannel_attrs(struct nfsd4_channel_attrs *ca) | 
|  | 2744 | { | 
|  | 2745 | ca->headerpadsz = 0; | 
|  | 2746 |  | 
|  | 2747 | if (ca->maxreq_sz < NFSD_CB_MAX_REQ_SZ) | 
|  | 2748 | return nfserr_toosmall; | 
|  | 2749 | if (ca->maxresp_sz < NFSD_CB_MAX_RESP_SZ) | 
|  | 2750 | return nfserr_toosmall; | 
|  | 2751 | ca->maxresp_cached = 0; | 
|  | 2752 | if (ca->maxops < 2) | 
|  | 2753 | return nfserr_toosmall; | 
|  | 2754 |  | 
|  | 2755 | return nfs_ok; | 
|  | 2756 | } | 
|  | 2757 |  | 
|  | 2758 | static __be32 nfsd4_check_cb_sec(struct nfsd4_cb_sec *cbs) | 
|  | 2759 | { | 
|  | 2760 | switch (cbs->flavor) { | 
|  | 2761 | case RPC_AUTH_NULL: | 
|  | 2762 | case RPC_AUTH_UNIX: | 
|  | 2763 | return nfs_ok; | 
|  | 2764 | default: | 
|  | 2765 | /* | 
|  | 2766 | * GSS case: the spec doesn't allow us to return this | 
|  | 2767 | * error.  But it also doesn't allow us not to support | 
|  | 2768 | * GSS. | 
|  | 2769 | * I'd rather this fail hard than return some error the | 
|  | 2770 | * client might think it can already handle: | 
|  | 2771 | */ | 
|  | 2772 | return nfserr_encr_alg_unsupp; | 
|  | 2773 | } | 
|  | 2774 | } | 
|  | 2775 |  | 
|  | 2776 | __be32 | 
|  | 2777 | nfsd4_create_session(struct svc_rqst *rqstp, | 
|  | 2778 | struct nfsd4_compound_state *cstate, union nfsd4_op_u *u) | 
|  | 2779 | { | 
|  | 2780 | struct nfsd4_create_session *cr_ses = &u->create_session; | 
|  | 2781 | struct sockaddr *sa = svc_addr(rqstp); | 
|  | 2782 | struct nfs4_client *conf, *unconf; | 
|  | 2783 | struct nfs4_client *old = NULL; | 
|  | 2784 | struct nfsd4_session *new; | 
|  | 2785 | struct nfsd4_conn *conn; | 
|  | 2786 | struct nfsd4_clid_slot *cs_slot = NULL; | 
|  | 2787 | __be32 status = 0; | 
|  | 2788 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 2789 |  | 
|  | 2790 | if (cr_ses->flags & ~SESSION4_FLAG_MASK_A) | 
|  | 2791 | return nfserr_inval; | 
|  | 2792 | status = nfsd4_check_cb_sec(&cr_ses->cb_sec); | 
|  | 2793 | if (status) | 
|  | 2794 | return status; | 
|  | 2795 | status = check_forechannel_attrs(&cr_ses->fore_channel, nn); | 
|  | 2796 | if (status) | 
|  | 2797 | return status; | 
|  | 2798 | status = check_backchannel_attrs(&cr_ses->back_channel); | 
|  | 2799 | if (status) | 
|  | 2800 | goto out_release_drc_mem; | 
|  | 2801 | status = nfserr_jukebox; | 
|  | 2802 | new = alloc_session(&cr_ses->fore_channel, &cr_ses->back_channel); | 
|  | 2803 | if (!new) | 
|  | 2804 | goto out_release_drc_mem; | 
|  | 2805 | conn = alloc_conn_from_crses(rqstp, cr_ses); | 
|  | 2806 | if (!conn) | 
|  | 2807 | goto out_free_session; | 
|  | 2808 |  | 
|  | 2809 | spin_lock(&nn->client_lock); | 
|  | 2810 | unconf = find_unconfirmed_client(&cr_ses->clientid, true, nn); | 
|  | 2811 | conf = find_confirmed_client(&cr_ses->clientid, true, nn); | 
|  | 2812 | WARN_ON_ONCE(conf && unconf); | 
|  | 2813 |  | 
|  | 2814 | if (conf) { | 
|  | 2815 | status = nfserr_wrong_cred; | 
|  | 2816 | if (!nfsd4_mach_creds_match(conf, rqstp)) | 
|  | 2817 | goto out_free_conn; | 
|  | 2818 | cs_slot = &conf->cl_cs_slot; | 
|  | 2819 | status = check_slot_seqid(cr_ses->seqid, cs_slot->sl_seqid, 0); | 
|  | 2820 | if (status) { | 
|  | 2821 | if (status == nfserr_replay_cache) | 
|  | 2822 | status = nfsd4_replay_create_session(cr_ses, cs_slot); | 
|  | 2823 | goto out_free_conn; | 
|  | 2824 | } | 
|  | 2825 | } else if (unconf) { | 
|  | 2826 | if (!same_creds(&unconf->cl_cred, &rqstp->rq_cred) || | 
|  | 2827 | !rpc_cmp_addr(sa, (struct sockaddr *) &unconf->cl_addr)) { | 
|  | 2828 | status = nfserr_clid_inuse; | 
|  | 2829 | goto out_free_conn; | 
|  | 2830 | } | 
|  | 2831 | status = nfserr_wrong_cred; | 
|  | 2832 | if (!nfsd4_mach_creds_match(unconf, rqstp)) | 
|  | 2833 | goto out_free_conn; | 
|  | 2834 | cs_slot = &unconf->cl_cs_slot; | 
|  | 2835 | status = check_slot_seqid(cr_ses->seqid, cs_slot->sl_seqid, 0); | 
|  | 2836 | if (status) { | 
|  | 2837 | /* an unconfirmed replay returns misordered */ | 
|  | 2838 | status = nfserr_seq_misordered; | 
|  | 2839 | goto out_free_conn; | 
|  | 2840 | } | 
|  | 2841 | old = find_confirmed_client_by_name(&unconf->cl_name, nn); | 
|  | 2842 | if (old) { | 
|  | 2843 | status = mark_client_expired_locked(old); | 
|  | 2844 | if (status) { | 
|  | 2845 | old = NULL; | 
|  | 2846 | goto out_free_conn; | 
|  | 2847 | } | 
|  | 2848 | } | 
|  | 2849 | move_to_confirmed(unconf); | 
|  | 2850 | conf = unconf; | 
|  | 2851 | } else { | 
|  | 2852 | status = nfserr_stale_clientid; | 
|  | 2853 | goto out_free_conn; | 
|  | 2854 | } | 
|  | 2855 | status = nfs_ok; | 
|  | 2856 | /* Persistent sessions are not supported */ | 
|  | 2857 | cr_ses->flags &= ~SESSION4_PERSIST; | 
|  | 2858 | /* Upshifting from TCP to RDMA is not supported */ | 
|  | 2859 | cr_ses->flags &= ~SESSION4_RDMA; | 
|  | 2860 |  | 
|  | 2861 | init_session(rqstp, new, conf, cr_ses); | 
|  | 2862 | nfsd4_get_session_locked(new); | 
|  | 2863 |  | 
|  | 2864 | memcpy(cr_ses->sessionid.data, new->se_sessionid.data, | 
|  | 2865 | NFS4_MAX_SESSIONID_LEN); | 
|  | 2866 | cs_slot->sl_seqid++; | 
|  | 2867 | cr_ses->seqid = cs_slot->sl_seqid; | 
|  | 2868 |  | 
|  | 2869 | /* cache solo and embedded create sessions under the client_lock */ | 
|  | 2870 | nfsd4_cache_create_session(cr_ses, cs_slot, status); | 
|  | 2871 | spin_unlock(&nn->client_lock); | 
|  | 2872 | /* init connection and backchannel */ | 
|  | 2873 | nfsd4_init_conn(rqstp, conn, new); | 
|  | 2874 | nfsd4_put_session(new); | 
|  | 2875 | if (old) | 
|  | 2876 | expire_client(old); | 
|  | 2877 | return status; | 
|  | 2878 | out_free_conn: | 
|  | 2879 | spin_unlock(&nn->client_lock); | 
|  | 2880 | free_conn(conn); | 
|  | 2881 | if (old) | 
|  | 2882 | expire_client(old); | 
|  | 2883 | out_free_session: | 
|  | 2884 | __free_session(new); | 
|  | 2885 | out_release_drc_mem: | 
|  | 2886 | nfsd4_put_drc_mem(&cr_ses->fore_channel); | 
|  | 2887 | return status; | 
|  | 2888 | } | 
|  | 2889 |  | 
|  | 2890 | static __be32 nfsd4_map_bcts_dir(u32 *dir) | 
|  | 2891 | { | 
|  | 2892 | switch (*dir) { | 
|  | 2893 | case NFS4_CDFC4_FORE: | 
|  | 2894 | case NFS4_CDFC4_BACK: | 
|  | 2895 | return nfs_ok; | 
|  | 2896 | case NFS4_CDFC4_FORE_OR_BOTH: | 
|  | 2897 | case NFS4_CDFC4_BACK_OR_BOTH: | 
|  | 2898 | *dir = NFS4_CDFC4_BOTH; | 
|  | 2899 | return nfs_ok; | 
|  | 2900 | }; | 
|  | 2901 | return nfserr_inval; | 
|  | 2902 | } | 
|  | 2903 |  | 
|  | 2904 | __be32 nfsd4_backchannel_ctl(struct svc_rqst *rqstp, | 
|  | 2905 | struct nfsd4_compound_state *cstate, | 
|  | 2906 | union nfsd4_op_u *u) | 
|  | 2907 | { | 
|  | 2908 | struct nfsd4_backchannel_ctl *bc = &u->backchannel_ctl; | 
|  | 2909 | struct nfsd4_session *session = cstate->session; | 
|  | 2910 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 2911 | __be32 status; | 
|  | 2912 |  | 
|  | 2913 | status = nfsd4_check_cb_sec(&bc->bc_cb_sec); | 
|  | 2914 | if (status) | 
|  | 2915 | return status; | 
|  | 2916 | spin_lock(&nn->client_lock); | 
|  | 2917 | session->se_cb_prog = bc->bc_cb_program; | 
|  | 2918 | session->se_cb_sec = bc->bc_cb_sec; | 
|  | 2919 | spin_unlock(&nn->client_lock); | 
|  | 2920 |  | 
|  | 2921 | nfsd4_probe_callback(session->se_client); | 
|  | 2922 |  | 
|  | 2923 | return nfs_ok; | 
|  | 2924 | } | 
|  | 2925 |  | 
|  | 2926 | __be32 nfsd4_bind_conn_to_session(struct svc_rqst *rqstp, | 
|  | 2927 | struct nfsd4_compound_state *cstate, | 
|  | 2928 | union nfsd4_op_u *u) | 
|  | 2929 | { | 
|  | 2930 | struct nfsd4_bind_conn_to_session *bcts = &u->bind_conn_to_session; | 
|  | 2931 | __be32 status; | 
|  | 2932 | struct nfsd4_conn *conn; | 
|  | 2933 | struct nfsd4_session *session; | 
|  | 2934 | struct net *net = SVC_NET(rqstp); | 
|  | 2935 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 2936 |  | 
|  | 2937 | if (!nfsd4_last_compound_op(rqstp)) | 
|  | 2938 | return nfserr_not_only_op; | 
|  | 2939 | spin_lock(&nn->client_lock); | 
|  | 2940 | session = find_in_sessionid_hashtbl(&bcts->sessionid, net, &status); | 
|  | 2941 | spin_unlock(&nn->client_lock); | 
|  | 2942 | if (!session) | 
|  | 2943 | goto out_no_session; | 
|  | 2944 | status = nfserr_wrong_cred; | 
|  | 2945 | if (!nfsd4_mach_creds_match(session->se_client, rqstp)) | 
|  | 2946 | goto out; | 
|  | 2947 | status = nfsd4_map_bcts_dir(&bcts->dir); | 
|  | 2948 | if (status) | 
|  | 2949 | goto out; | 
|  | 2950 | conn = alloc_conn(rqstp, bcts->dir); | 
|  | 2951 | status = nfserr_jukebox; | 
|  | 2952 | if (!conn) | 
|  | 2953 | goto out; | 
|  | 2954 | nfsd4_init_conn(rqstp, conn, session); | 
|  | 2955 | status = nfs_ok; | 
|  | 2956 | out: | 
|  | 2957 | nfsd4_put_session(session); | 
|  | 2958 | out_no_session: | 
|  | 2959 | return status; | 
|  | 2960 | } | 
|  | 2961 |  | 
|  | 2962 | static bool nfsd4_compound_in_session(struct nfsd4_compound_state *cstate, struct nfs4_sessionid *sid) | 
|  | 2963 | { | 
|  | 2964 | if (!cstate->session) | 
|  | 2965 | return false; | 
|  | 2966 | return !memcmp(sid, &cstate->session->se_sessionid, sizeof(*sid)); | 
|  | 2967 | } | 
|  | 2968 |  | 
|  | 2969 | __be32 | 
|  | 2970 | nfsd4_destroy_session(struct svc_rqst *r, struct nfsd4_compound_state *cstate, | 
|  | 2971 | union nfsd4_op_u *u) | 
|  | 2972 | { | 
|  | 2973 | struct nfs4_sessionid *sessionid = &u->destroy_session.sessionid; | 
|  | 2974 | struct nfsd4_session *ses; | 
|  | 2975 | __be32 status; | 
|  | 2976 | int ref_held_by_me = 0; | 
|  | 2977 | struct net *net = SVC_NET(r); | 
|  | 2978 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 2979 |  | 
|  | 2980 | status = nfserr_not_only_op; | 
|  | 2981 | if (nfsd4_compound_in_session(cstate, sessionid)) { | 
|  | 2982 | if (!nfsd4_last_compound_op(r)) | 
|  | 2983 | goto out; | 
|  | 2984 | ref_held_by_me++; | 
|  | 2985 | } | 
|  | 2986 | dump_sessionid(__func__, sessionid); | 
|  | 2987 | spin_lock(&nn->client_lock); | 
|  | 2988 | ses = find_in_sessionid_hashtbl(sessionid, net, &status); | 
|  | 2989 | if (!ses) | 
|  | 2990 | goto out_client_lock; | 
|  | 2991 | status = nfserr_wrong_cred; | 
|  | 2992 | if (!nfsd4_mach_creds_match(ses->se_client, r)) | 
|  | 2993 | goto out_put_session; | 
|  | 2994 | status = mark_session_dead_locked(ses, 1 + ref_held_by_me); | 
|  | 2995 | if (status) | 
|  | 2996 | goto out_put_session; | 
|  | 2997 | unhash_session(ses); | 
|  | 2998 | spin_unlock(&nn->client_lock); | 
|  | 2999 |  | 
|  | 3000 | nfsd4_probe_callback_sync(ses->se_client); | 
|  | 3001 |  | 
|  | 3002 | spin_lock(&nn->client_lock); | 
|  | 3003 | status = nfs_ok; | 
|  | 3004 | out_put_session: | 
|  | 3005 | nfsd4_put_session_locked(ses); | 
|  | 3006 | out_client_lock: | 
|  | 3007 | spin_unlock(&nn->client_lock); | 
|  | 3008 | out: | 
|  | 3009 | return status; | 
|  | 3010 | } | 
|  | 3011 |  | 
|  | 3012 | static struct nfsd4_conn *__nfsd4_find_conn(struct svc_xprt *xpt, struct nfsd4_session *s) | 
|  | 3013 | { | 
|  | 3014 | struct nfsd4_conn *c; | 
|  | 3015 |  | 
|  | 3016 | list_for_each_entry(c, &s->se_conns, cn_persession) { | 
|  | 3017 | if (c->cn_xprt == xpt) { | 
|  | 3018 | return c; | 
|  | 3019 | } | 
|  | 3020 | } | 
|  | 3021 | return NULL; | 
|  | 3022 | } | 
|  | 3023 |  | 
|  | 3024 | static __be32 nfsd4_sequence_check_conn(struct nfsd4_conn *new, struct nfsd4_session *ses) | 
|  | 3025 | { | 
|  | 3026 | struct nfs4_client *clp = ses->se_client; | 
|  | 3027 | struct nfsd4_conn *c; | 
|  | 3028 | __be32 status = nfs_ok; | 
|  | 3029 | int ret; | 
|  | 3030 |  | 
|  | 3031 | spin_lock(&clp->cl_lock); | 
|  | 3032 | c = __nfsd4_find_conn(new->cn_xprt, ses); | 
|  | 3033 | if (c) | 
|  | 3034 | goto out_free; | 
|  | 3035 | status = nfserr_conn_not_bound_to_session; | 
|  | 3036 | if (clp->cl_mach_cred) | 
|  | 3037 | goto out_free; | 
|  | 3038 | __nfsd4_hash_conn(new, ses); | 
|  | 3039 | spin_unlock(&clp->cl_lock); | 
|  | 3040 | ret = nfsd4_register_conn(new); | 
|  | 3041 | if (ret) | 
|  | 3042 | /* oops; xprt is already down: */ | 
|  | 3043 | nfsd4_conn_lost(&new->cn_xpt_user); | 
|  | 3044 | return nfs_ok; | 
|  | 3045 | out_free: | 
|  | 3046 | spin_unlock(&clp->cl_lock); | 
|  | 3047 | free_conn(new); | 
|  | 3048 | return status; | 
|  | 3049 | } | 
|  | 3050 |  | 
|  | 3051 | static bool nfsd4_session_too_many_ops(struct svc_rqst *rqstp, struct nfsd4_session *session) | 
|  | 3052 | { | 
|  | 3053 | struct nfsd4_compoundargs *args = rqstp->rq_argp; | 
|  | 3054 |  | 
|  | 3055 | return args->opcnt > session->se_fchannel.maxops; | 
|  | 3056 | } | 
|  | 3057 |  | 
|  | 3058 | static bool nfsd4_request_too_big(struct svc_rqst *rqstp, | 
|  | 3059 | struct nfsd4_session *session) | 
|  | 3060 | { | 
|  | 3061 | struct xdr_buf *xb = &rqstp->rq_arg; | 
|  | 3062 |  | 
|  | 3063 | return xb->len > session->se_fchannel.maxreq_sz; | 
|  | 3064 | } | 
|  | 3065 |  | 
|  | 3066 | static bool replay_matches_cache(struct svc_rqst *rqstp, | 
|  | 3067 | struct nfsd4_sequence *seq, struct nfsd4_slot *slot) | 
|  | 3068 | { | 
|  | 3069 | struct nfsd4_compoundargs *argp = rqstp->rq_argp; | 
|  | 3070 |  | 
|  | 3071 | if ((bool)(slot->sl_flags & NFSD4_SLOT_CACHETHIS) != | 
|  | 3072 | (bool)seq->cachethis) | 
|  | 3073 | return false; | 
|  | 3074 | /* | 
|  | 3075 | * If there's an error then the reply can have fewer ops than | 
|  | 3076 | * the call. | 
|  | 3077 | */ | 
|  | 3078 | if (slot->sl_opcnt < argp->opcnt && !slot->sl_status) | 
|  | 3079 | return false; | 
|  | 3080 | /* | 
|  | 3081 | * But if we cached a reply with *more* ops than the call you're | 
|  | 3082 | * sending us now, then this new call is clearly not really a | 
|  | 3083 | * replay of the old one: | 
|  | 3084 | */ | 
|  | 3085 | if (slot->sl_opcnt > argp->opcnt) | 
|  | 3086 | return false; | 
|  | 3087 | /* This is the only check explicitly called by spec: */ | 
|  | 3088 | if (!same_creds(&rqstp->rq_cred, &slot->sl_cred)) | 
|  | 3089 | return false; | 
|  | 3090 | /* | 
|  | 3091 | * There may be more comparisons we could actually do, but the | 
|  | 3092 | * spec doesn't require us to catch every case where the calls | 
|  | 3093 | * don't match (that would require caching the call as well as | 
|  | 3094 | * the reply), so we don't bother. | 
|  | 3095 | */ | 
|  | 3096 | return true; | 
|  | 3097 | } | 
|  | 3098 |  | 
|  | 3099 | __be32 | 
|  | 3100 | nfsd4_sequence(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 3101 | union nfsd4_op_u *u) | 
|  | 3102 | { | 
|  | 3103 | struct nfsd4_sequence *seq = &u->sequence; | 
|  | 3104 | struct nfsd4_compoundres *resp = rqstp->rq_resp; | 
|  | 3105 | struct xdr_stream *xdr = &resp->xdr; | 
|  | 3106 | struct nfsd4_session *session; | 
|  | 3107 | struct nfs4_client *clp; | 
|  | 3108 | struct nfsd4_slot *slot; | 
|  | 3109 | struct nfsd4_conn *conn; | 
|  | 3110 | __be32 status; | 
|  | 3111 | int buflen; | 
|  | 3112 | struct net *net = SVC_NET(rqstp); | 
|  | 3113 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 3114 |  | 
|  | 3115 | if (resp->opcnt != 1) | 
|  | 3116 | return nfserr_sequence_pos; | 
|  | 3117 |  | 
|  | 3118 | /* | 
|  | 3119 | * Will be either used or freed by nfsd4_sequence_check_conn | 
|  | 3120 | * below. | 
|  | 3121 | */ | 
|  | 3122 | conn = alloc_conn(rqstp, NFS4_CDFC4_FORE); | 
|  | 3123 | if (!conn) | 
|  | 3124 | return nfserr_jukebox; | 
|  | 3125 |  | 
|  | 3126 | spin_lock(&nn->client_lock); | 
|  | 3127 | session = find_in_sessionid_hashtbl(&seq->sessionid, net, &status); | 
|  | 3128 | if (!session) | 
|  | 3129 | goto out_no_session; | 
|  | 3130 | clp = session->se_client; | 
|  | 3131 |  | 
|  | 3132 | status = nfserr_too_many_ops; | 
|  | 3133 | if (nfsd4_session_too_many_ops(rqstp, session)) | 
|  | 3134 | goto out_put_session; | 
|  | 3135 |  | 
|  | 3136 | status = nfserr_req_too_big; | 
|  | 3137 | if (nfsd4_request_too_big(rqstp, session)) | 
|  | 3138 | goto out_put_session; | 
|  | 3139 |  | 
|  | 3140 | status = nfserr_badslot; | 
|  | 3141 | if (seq->slotid >= session->se_fchannel.maxreqs) | 
|  | 3142 | goto out_put_session; | 
|  | 3143 |  | 
|  | 3144 | slot = session->se_slots[seq->slotid]; | 
|  | 3145 | dprintk("%s: slotid %d\n", __func__, seq->slotid); | 
|  | 3146 |  | 
|  | 3147 | /* We do not negotiate the number of slots yet, so set the | 
|  | 3148 | * maxslots to the session maxreqs which is used to encode | 
|  | 3149 | * sr_highest_slotid and the sr_target_slot id to maxslots */ | 
|  | 3150 | seq->maxslots = session->se_fchannel.maxreqs; | 
|  | 3151 |  | 
|  | 3152 | status = check_slot_seqid(seq->seqid, slot->sl_seqid, | 
|  | 3153 | slot->sl_flags & NFSD4_SLOT_INUSE); | 
|  | 3154 | if (status == nfserr_replay_cache) { | 
|  | 3155 | status = nfserr_seq_misordered; | 
|  | 3156 | if (!(slot->sl_flags & NFSD4_SLOT_INITIALIZED)) | 
|  | 3157 | goto out_put_session; | 
|  | 3158 | status = nfserr_seq_false_retry; | 
|  | 3159 | if (!replay_matches_cache(rqstp, seq, slot)) | 
|  | 3160 | goto out_put_session; | 
|  | 3161 | cstate->slot = slot; | 
|  | 3162 | cstate->session = session; | 
|  | 3163 | cstate->clp = clp; | 
|  | 3164 | /* Return the cached reply status and set cstate->status | 
|  | 3165 | * for nfsd4_proc_compound processing */ | 
|  | 3166 | status = nfsd4_replay_cache_entry(resp, seq); | 
|  | 3167 | cstate->status = nfserr_replay_cache; | 
|  | 3168 | goto out; | 
|  | 3169 | } | 
|  | 3170 | if (status) | 
|  | 3171 | goto out_put_session; | 
|  | 3172 |  | 
|  | 3173 | status = nfsd4_sequence_check_conn(conn, session); | 
|  | 3174 | conn = NULL; | 
|  | 3175 | if (status) | 
|  | 3176 | goto out_put_session; | 
|  | 3177 |  | 
|  | 3178 | buflen = (seq->cachethis) ? | 
|  | 3179 | session->se_fchannel.maxresp_cached : | 
|  | 3180 | session->se_fchannel.maxresp_sz; | 
|  | 3181 | status = (seq->cachethis) ? nfserr_rep_too_big_to_cache : | 
|  | 3182 | nfserr_rep_too_big; | 
|  | 3183 | if (xdr_restrict_buflen(xdr, buflen - rqstp->rq_auth_slack)) | 
|  | 3184 | goto out_put_session; | 
|  | 3185 | svc_reserve(rqstp, buflen); | 
|  | 3186 |  | 
|  | 3187 | status = nfs_ok; | 
|  | 3188 | /* Success! bump slot seqid */ | 
|  | 3189 | slot->sl_seqid = seq->seqid; | 
|  | 3190 | slot->sl_flags |= NFSD4_SLOT_INUSE; | 
|  | 3191 | if (seq->cachethis) | 
|  | 3192 | slot->sl_flags |= NFSD4_SLOT_CACHETHIS; | 
|  | 3193 | else | 
|  | 3194 | slot->sl_flags &= ~NFSD4_SLOT_CACHETHIS; | 
|  | 3195 |  | 
|  | 3196 | cstate->slot = slot; | 
|  | 3197 | cstate->session = session; | 
|  | 3198 | cstate->clp = clp; | 
|  | 3199 |  | 
|  | 3200 | out: | 
|  | 3201 | switch (clp->cl_cb_state) { | 
|  | 3202 | case NFSD4_CB_DOWN: | 
|  | 3203 | seq->status_flags = SEQ4_STATUS_CB_PATH_DOWN; | 
|  | 3204 | break; | 
|  | 3205 | case NFSD4_CB_FAULT: | 
|  | 3206 | seq->status_flags = SEQ4_STATUS_BACKCHANNEL_FAULT; | 
|  | 3207 | break; | 
|  | 3208 | default: | 
|  | 3209 | seq->status_flags = 0; | 
|  | 3210 | } | 
|  | 3211 | if (!list_empty(&clp->cl_revoked)) | 
|  | 3212 | seq->status_flags |= SEQ4_STATUS_RECALLABLE_STATE_REVOKED; | 
|  | 3213 | out_no_session: | 
|  | 3214 | if (conn) | 
|  | 3215 | free_conn(conn); | 
|  | 3216 | spin_unlock(&nn->client_lock); | 
|  | 3217 | return status; | 
|  | 3218 | out_put_session: | 
|  | 3219 | nfsd4_put_session_locked(session); | 
|  | 3220 | goto out_no_session; | 
|  | 3221 | } | 
|  | 3222 |  | 
|  | 3223 | void | 
|  | 3224 | nfsd4_sequence_done(struct nfsd4_compoundres *resp) | 
|  | 3225 | { | 
|  | 3226 | struct nfsd4_compound_state *cs = &resp->cstate; | 
|  | 3227 |  | 
|  | 3228 | if (nfsd4_has_session(cs)) { | 
|  | 3229 | if (cs->status != nfserr_replay_cache) { | 
|  | 3230 | nfsd4_store_cache_entry(resp); | 
|  | 3231 | cs->slot->sl_flags &= ~NFSD4_SLOT_INUSE; | 
|  | 3232 | } | 
|  | 3233 | /* Drop session reference that was taken in nfsd4_sequence() */ | 
|  | 3234 | nfsd4_put_session(cs->session); | 
|  | 3235 | } else if (cs->clp) | 
|  | 3236 | put_client_renew(cs->clp); | 
|  | 3237 | } | 
|  | 3238 |  | 
|  | 3239 | __be32 | 
|  | 3240 | nfsd4_destroy_clientid(struct svc_rqst *rqstp, | 
|  | 3241 | struct nfsd4_compound_state *cstate, | 
|  | 3242 | union nfsd4_op_u *u) | 
|  | 3243 | { | 
|  | 3244 | struct nfsd4_destroy_clientid *dc = &u->destroy_clientid; | 
|  | 3245 | struct nfs4_client *conf, *unconf; | 
|  | 3246 | struct nfs4_client *clp = NULL; | 
|  | 3247 | __be32 status = 0; | 
|  | 3248 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 3249 |  | 
|  | 3250 | spin_lock(&nn->client_lock); | 
|  | 3251 | unconf = find_unconfirmed_client(&dc->clientid, true, nn); | 
|  | 3252 | conf = find_confirmed_client(&dc->clientid, true, nn); | 
|  | 3253 | WARN_ON_ONCE(conf && unconf); | 
|  | 3254 |  | 
|  | 3255 | if (conf) { | 
|  | 3256 | if (client_has_state(conf)) { | 
|  | 3257 | status = nfserr_clientid_busy; | 
|  | 3258 | goto out; | 
|  | 3259 | } | 
|  | 3260 | status = mark_client_expired_locked(conf); | 
|  | 3261 | if (status) | 
|  | 3262 | goto out; | 
|  | 3263 | clp = conf; | 
|  | 3264 | } else if (unconf) | 
|  | 3265 | clp = unconf; | 
|  | 3266 | else { | 
|  | 3267 | status = nfserr_stale_clientid; | 
|  | 3268 | goto out; | 
|  | 3269 | } | 
|  | 3270 | if (!nfsd4_mach_creds_match(clp, rqstp)) { | 
|  | 3271 | clp = NULL; | 
|  | 3272 | status = nfserr_wrong_cred; | 
|  | 3273 | goto out; | 
|  | 3274 | } | 
|  | 3275 | unhash_client_locked(clp); | 
|  | 3276 | out: | 
|  | 3277 | spin_unlock(&nn->client_lock); | 
|  | 3278 | if (clp) | 
|  | 3279 | expire_client(clp); | 
|  | 3280 | return status; | 
|  | 3281 | } | 
|  | 3282 |  | 
|  | 3283 | __be32 | 
|  | 3284 | nfsd4_reclaim_complete(struct svc_rqst *rqstp, | 
|  | 3285 | struct nfsd4_compound_state *cstate, union nfsd4_op_u *u) | 
|  | 3286 | { | 
|  | 3287 | struct nfsd4_reclaim_complete *rc = &u->reclaim_complete; | 
|  | 3288 | __be32 status = 0; | 
|  | 3289 |  | 
|  | 3290 | if (rc->rca_one_fs) { | 
|  | 3291 | if (!cstate->current_fh.fh_dentry) | 
|  | 3292 | return nfserr_nofilehandle; | 
|  | 3293 | /* | 
|  | 3294 | * We don't take advantage of the rca_one_fs case. | 
|  | 3295 | * That's OK, it's optional, we can safely ignore it. | 
|  | 3296 | */ | 
|  | 3297 | return nfs_ok; | 
|  | 3298 | } | 
|  | 3299 |  | 
|  | 3300 | status = nfserr_complete_already; | 
|  | 3301 | if (test_and_set_bit(NFSD4_CLIENT_RECLAIM_COMPLETE, | 
|  | 3302 | &cstate->session->se_client->cl_flags)) | 
|  | 3303 | goto out; | 
|  | 3304 |  | 
|  | 3305 | status = nfserr_stale_clientid; | 
|  | 3306 | if (is_client_expired(cstate->session->se_client)) | 
|  | 3307 | /* | 
|  | 3308 | * The following error isn't really legal. | 
|  | 3309 | * But we only get here if the client just explicitly | 
|  | 3310 | * destroyed the client.  Surely it no longer cares what | 
|  | 3311 | * error it gets back on an operation for the dead | 
|  | 3312 | * client. | 
|  | 3313 | */ | 
|  | 3314 | goto out; | 
|  | 3315 |  | 
|  | 3316 | status = nfs_ok; | 
|  | 3317 | nfsd4_client_record_create(cstate->session->se_client); | 
|  | 3318 | out: | 
|  | 3319 | return status; | 
|  | 3320 | } | 
|  | 3321 |  | 
|  | 3322 | __be32 | 
|  | 3323 | nfsd4_setclientid(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 3324 | union nfsd4_op_u *u) | 
|  | 3325 | { | 
|  | 3326 | struct nfsd4_setclientid *setclid = &u->setclientid; | 
|  | 3327 | struct xdr_netobj 	clname = setclid->se_name; | 
|  | 3328 | nfs4_verifier		clverifier = setclid->se_verf; | 
|  | 3329 | struct nfs4_client	*conf, *new; | 
|  | 3330 | struct nfs4_client	*unconf = NULL; | 
|  | 3331 | __be32 			status; | 
|  | 3332 | struct nfsd_net		*nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 3333 |  | 
|  | 3334 | new = create_client(clname, rqstp, &clverifier); | 
|  | 3335 | if (new == NULL) | 
|  | 3336 | return nfserr_jukebox; | 
|  | 3337 | /* Cases below refer to rfc 3530 section 14.2.33: */ | 
|  | 3338 | spin_lock(&nn->client_lock); | 
|  | 3339 | conf = find_confirmed_client_by_name(&clname, nn); | 
|  | 3340 | if (conf && client_has_state(conf)) { | 
|  | 3341 | /* case 0: */ | 
|  | 3342 | status = nfserr_clid_inuse; | 
|  | 3343 | if (clp_used_exchangeid(conf)) | 
|  | 3344 | goto out; | 
|  | 3345 | if (!same_creds(&conf->cl_cred, &rqstp->rq_cred)) { | 
|  | 3346 | char addr_str[INET6_ADDRSTRLEN]; | 
|  | 3347 | rpc_ntop((struct sockaddr *) &conf->cl_addr, addr_str, | 
|  | 3348 | sizeof(addr_str)); | 
|  | 3349 | dprintk("NFSD: setclientid: string in use by client " | 
|  | 3350 | "at %s\n", addr_str); | 
|  | 3351 | goto out; | 
|  | 3352 | } | 
|  | 3353 | } | 
|  | 3354 | unconf = find_unconfirmed_client_by_name(&clname, nn); | 
|  | 3355 | if (unconf) | 
|  | 3356 | unhash_client_locked(unconf); | 
|  | 3357 | if (conf && same_verf(&conf->cl_verifier, &clverifier)) { | 
|  | 3358 | /* case 1: probable callback update */ | 
|  | 3359 | copy_clid(new, conf); | 
|  | 3360 | gen_confirm(new, nn); | 
|  | 3361 | } else /* case 4 (new client) or cases 2, 3 (client reboot): */ | 
|  | 3362 | gen_clid(new, nn); | 
|  | 3363 | new->cl_minorversion = 0; | 
|  | 3364 | gen_callback(new, setclid, rqstp); | 
|  | 3365 | add_to_unconfirmed(new); | 
|  | 3366 | setclid->se_clientid.cl_boot = new->cl_clientid.cl_boot; | 
|  | 3367 | setclid->se_clientid.cl_id = new->cl_clientid.cl_id; | 
|  | 3368 | memcpy(setclid->se_confirm.data, new->cl_confirm.data, sizeof(setclid->se_confirm.data)); | 
|  | 3369 | new = NULL; | 
|  | 3370 | status = nfs_ok; | 
|  | 3371 | out: | 
|  | 3372 | spin_unlock(&nn->client_lock); | 
|  | 3373 | if (new) | 
|  | 3374 | free_client(new); | 
|  | 3375 | if (unconf) | 
|  | 3376 | expire_client(unconf); | 
|  | 3377 | return status; | 
|  | 3378 | } | 
|  | 3379 |  | 
|  | 3380 |  | 
|  | 3381 | __be32 | 
|  | 3382 | nfsd4_setclientid_confirm(struct svc_rqst *rqstp, | 
|  | 3383 | struct nfsd4_compound_state *cstate, | 
|  | 3384 | union nfsd4_op_u *u) | 
|  | 3385 | { | 
|  | 3386 | struct nfsd4_setclientid_confirm *setclientid_confirm = | 
|  | 3387 | &u->setclientid_confirm; | 
|  | 3388 | struct nfs4_client *conf, *unconf; | 
|  | 3389 | struct nfs4_client *old = NULL; | 
|  | 3390 | nfs4_verifier confirm = setclientid_confirm->sc_confirm; | 
|  | 3391 | clientid_t * clid = &setclientid_confirm->sc_clientid; | 
|  | 3392 | __be32 status; | 
|  | 3393 | struct nfsd_net	*nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 3394 |  | 
|  | 3395 | if (STALE_CLIENTID(clid, nn)) | 
|  | 3396 | return nfserr_stale_clientid; | 
|  | 3397 |  | 
|  | 3398 | spin_lock(&nn->client_lock); | 
|  | 3399 | conf = find_confirmed_client(clid, false, nn); | 
|  | 3400 | unconf = find_unconfirmed_client(clid, false, nn); | 
|  | 3401 | /* | 
|  | 3402 | * We try hard to give out unique clientid's, so if we get an | 
|  | 3403 | * attempt to confirm the same clientid with a different cred, | 
|  | 3404 | * the client may be buggy; this should never happen. | 
|  | 3405 | * | 
|  | 3406 | * Nevertheless, RFC 7530 recommends INUSE for this case: | 
|  | 3407 | */ | 
|  | 3408 | status = nfserr_clid_inuse; | 
|  | 3409 | if (unconf && !same_creds(&unconf->cl_cred, &rqstp->rq_cred)) | 
|  | 3410 | goto out; | 
|  | 3411 | if (conf && !same_creds(&conf->cl_cred, &rqstp->rq_cred)) | 
|  | 3412 | goto out; | 
|  | 3413 | /* cases below refer to rfc 3530 section 14.2.34: */ | 
|  | 3414 | if (!unconf || !same_verf(&confirm, &unconf->cl_confirm)) { | 
|  | 3415 | if (conf && same_verf(&confirm, &conf->cl_confirm)) { | 
|  | 3416 | /* case 2: probable retransmit */ | 
|  | 3417 | status = nfs_ok; | 
|  | 3418 | } else /* case 4: client hasn't noticed we rebooted yet? */ | 
|  | 3419 | status = nfserr_stale_clientid; | 
|  | 3420 | goto out; | 
|  | 3421 | } | 
|  | 3422 | status = nfs_ok; | 
|  | 3423 | if (conf) { /* case 1: callback update */ | 
|  | 3424 | old = unconf; | 
|  | 3425 | unhash_client_locked(old); | 
|  | 3426 | nfsd4_change_callback(conf, &unconf->cl_cb_conn); | 
|  | 3427 | } else { /* case 3: normal case; new or rebooted client */ | 
|  | 3428 | old = find_confirmed_client_by_name(&unconf->cl_name, nn); | 
|  | 3429 | if (old) { | 
|  | 3430 | status = nfserr_clid_inuse; | 
|  | 3431 | if (client_has_state(old) | 
|  | 3432 | && !same_creds(&unconf->cl_cred, | 
|  | 3433 | &old->cl_cred)) | 
|  | 3434 | goto out; | 
|  | 3435 | status = mark_client_expired_locked(old); | 
|  | 3436 | if (status) { | 
|  | 3437 | old = NULL; | 
|  | 3438 | goto out; | 
|  | 3439 | } | 
|  | 3440 | } | 
|  | 3441 | move_to_confirmed(unconf); | 
|  | 3442 | conf = unconf; | 
|  | 3443 | } | 
|  | 3444 | get_client_locked(conf); | 
|  | 3445 | spin_unlock(&nn->client_lock); | 
|  | 3446 | nfsd4_probe_callback(conf); | 
|  | 3447 | spin_lock(&nn->client_lock); | 
|  | 3448 | put_client_renew_locked(conf); | 
|  | 3449 | out: | 
|  | 3450 | spin_unlock(&nn->client_lock); | 
|  | 3451 | if (old) | 
|  | 3452 | expire_client(old); | 
|  | 3453 | return status; | 
|  | 3454 | } | 
|  | 3455 |  | 
|  | 3456 | static struct nfs4_file *nfsd4_alloc_file(void) | 
|  | 3457 | { | 
|  | 3458 | return kmem_cache_alloc(file_slab, GFP_KERNEL); | 
|  | 3459 | } | 
|  | 3460 |  | 
|  | 3461 | /* OPEN Share state helper functions */ | 
|  | 3462 | static void nfsd4_init_file(struct knfsd_fh *fh, unsigned int hashval, | 
|  | 3463 | struct nfs4_file *fp) | 
|  | 3464 | { | 
|  | 3465 | lockdep_assert_held(&state_lock); | 
|  | 3466 |  | 
|  | 3467 | refcount_set(&fp->fi_ref, 1); | 
|  | 3468 | spin_lock_init(&fp->fi_lock); | 
|  | 3469 | INIT_LIST_HEAD(&fp->fi_stateids); | 
|  | 3470 | INIT_LIST_HEAD(&fp->fi_delegations); | 
|  | 3471 | INIT_LIST_HEAD(&fp->fi_clnt_odstate); | 
|  | 3472 | fh_copy_shallow(&fp->fi_fhandle, fh); | 
|  | 3473 | fp->fi_deleg_file = NULL; | 
|  | 3474 | fp->fi_had_conflict = false; | 
|  | 3475 | fp->fi_share_deny = 0; | 
|  | 3476 | memset(fp->fi_fds, 0, sizeof(fp->fi_fds)); | 
|  | 3477 | memset(fp->fi_access, 0, sizeof(fp->fi_access)); | 
|  | 3478 | #ifdef CONFIG_NFSD_PNFS | 
|  | 3479 | INIT_LIST_HEAD(&fp->fi_lo_states); | 
|  | 3480 | atomic_set(&fp->fi_lo_recalls, 0); | 
|  | 3481 | #endif | 
|  | 3482 | hlist_add_head_rcu(&fp->fi_hash, &file_hashtbl[hashval]); | 
|  | 3483 | } | 
|  | 3484 |  | 
|  | 3485 | void | 
|  | 3486 | nfsd4_free_slabs(void) | 
|  | 3487 | { | 
|  | 3488 | kmem_cache_destroy(client_slab); | 
|  | 3489 | kmem_cache_destroy(openowner_slab); | 
|  | 3490 | kmem_cache_destroy(lockowner_slab); | 
|  | 3491 | kmem_cache_destroy(file_slab); | 
|  | 3492 | kmem_cache_destroy(stateid_slab); | 
|  | 3493 | kmem_cache_destroy(deleg_slab); | 
|  | 3494 | kmem_cache_destroy(odstate_slab); | 
|  | 3495 | } | 
|  | 3496 |  | 
|  | 3497 | int | 
|  | 3498 | nfsd4_init_slabs(void) | 
|  | 3499 | { | 
|  | 3500 | client_slab = kmem_cache_create("nfsd4_clients", | 
|  | 3501 | sizeof(struct nfs4_client), 0, 0, NULL); | 
|  | 3502 | if (client_slab == NULL) | 
|  | 3503 | goto out; | 
|  | 3504 | openowner_slab = kmem_cache_create("nfsd4_openowners", | 
|  | 3505 | sizeof(struct nfs4_openowner), 0, 0, NULL); | 
|  | 3506 | if (openowner_slab == NULL) | 
|  | 3507 | goto out_free_client_slab; | 
|  | 3508 | lockowner_slab = kmem_cache_create("nfsd4_lockowners", | 
|  | 3509 | sizeof(struct nfs4_lockowner), 0, 0, NULL); | 
|  | 3510 | if (lockowner_slab == NULL) | 
|  | 3511 | goto out_free_openowner_slab; | 
|  | 3512 | file_slab = kmem_cache_create("nfsd4_files", | 
|  | 3513 | sizeof(struct nfs4_file), 0, 0, NULL); | 
|  | 3514 | if (file_slab == NULL) | 
|  | 3515 | goto out_free_lockowner_slab; | 
|  | 3516 | stateid_slab = kmem_cache_create("nfsd4_stateids", | 
|  | 3517 | sizeof(struct nfs4_ol_stateid), 0, 0, NULL); | 
|  | 3518 | if (stateid_slab == NULL) | 
|  | 3519 | goto out_free_file_slab; | 
|  | 3520 | deleg_slab = kmem_cache_create("nfsd4_delegations", | 
|  | 3521 | sizeof(struct nfs4_delegation), 0, 0, NULL); | 
|  | 3522 | if (deleg_slab == NULL) | 
|  | 3523 | goto out_free_stateid_slab; | 
|  | 3524 | odstate_slab = kmem_cache_create("nfsd4_odstate", | 
|  | 3525 | sizeof(struct nfs4_clnt_odstate), 0, 0, NULL); | 
|  | 3526 | if (odstate_slab == NULL) | 
|  | 3527 | goto out_free_deleg_slab; | 
|  | 3528 | return 0; | 
|  | 3529 |  | 
|  | 3530 | out_free_deleg_slab: | 
|  | 3531 | kmem_cache_destroy(deleg_slab); | 
|  | 3532 | out_free_stateid_slab: | 
|  | 3533 | kmem_cache_destroy(stateid_slab); | 
|  | 3534 | out_free_file_slab: | 
|  | 3535 | kmem_cache_destroy(file_slab); | 
|  | 3536 | out_free_lockowner_slab: | 
|  | 3537 | kmem_cache_destroy(lockowner_slab); | 
|  | 3538 | out_free_openowner_slab: | 
|  | 3539 | kmem_cache_destroy(openowner_slab); | 
|  | 3540 | out_free_client_slab: | 
|  | 3541 | kmem_cache_destroy(client_slab); | 
|  | 3542 | out: | 
|  | 3543 | dprintk("nfsd4: out of memory while initializing nfsv4\n"); | 
|  | 3544 | return -ENOMEM; | 
|  | 3545 | } | 
|  | 3546 |  | 
|  | 3547 | static void init_nfs4_replay(struct nfs4_replay *rp) | 
|  | 3548 | { | 
|  | 3549 | rp->rp_status = nfserr_serverfault; | 
|  | 3550 | rp->rp_buflen = 0; | 
|  | 3551 | rp->rp_buf = rp->rp_ibuf; | 
|  | 3552 | mutex_init(&rp->rp_mutex); | 
|  | 3553 | } | 
|  | 3554 |  | 
|  | 3555 | static void nfsd4_cstate_assign_replay(struct nfsd4_compound_state *cstate, | 
|  | 3556 | struct nfs4_stateowner *so) | 
|  | 3557 | { | 
|  | 3558 | if (!nfsd4_has_session(cstate)) { | 
|  | 3559 | mutex_lock(&so->so_replay.rp_mutex); | 
|  | 3560 | cstate->replay_owner = nfs4_get_stateowner(so); | 
|  | 3561 | } | 
|  | 3562 | } | 
|  | 3563 |  | 
|  | 3564 | void nfsd4_cstate_clear_replay(struct nfsd4_compound_state *cstate) | 
|  | 3565 | { | 
|  | 3566 | struct nfs4_stateowner *so = cstate->replay_owner; | 
|  | 3567 |  | 
|  | 3568 | if (so != NULL) { | 
|  | 3569 | cstate->replay_owner = NULL; | 
|  | 3570 | mutex_unlock(&so->so_replay.rp_mutex); | 
|  | 3571 | nfs4_put_stateowner(so); | 
|  | 3572 | } | 
|  | 3573 | } | 
|  | 3574 |  | 
|  | 3575 | static inline void *alloc_stateowner(struct kmem_cache *slab, struct xdr_netobj *owner, struct nfs4_client *clp) | 
|  | 3576 | { | 
|  | 3577 | struct nfs4_stateowner *sop; | 
|  | 3578 |  | 
|  | 3579 | sop = kmem_cache_alloc(slab, GFP_KERNEL); | 
|  | 3580 | if (!sop) | 
|  | 3581 | return NULL; | 
|  | 3582 |  | 
|  | 3583 | sop->so_owner.data = kmemdup(owner->data, owner->len, GFP_KERNEL); | 
|  | 3584 | if (!sop->so_owner.data) { | 
|  | 3585 | kmem_cache_free(slab, sop); | 
|  | 3586 | return NULL; | 
|  | 3587 | } | 
|  | 3588 | sop->so_owner.len = owner->len; | 
|  | 3589 |  | 
|  | 3590 | INIT_LIST_HEAD(&sop->so_stateids); | 
|  | 3591 | sop->so_client = clp; | 
|  | 3592 | init_nfs4_replay(&sop->so_replay); | 
|  | 3593 | atomic_set(&sop->so_count, 1); | 
|  | 3594 | return sop; | 
|  | 3595 | } | 
|  | 3596 |  | 
|  | 3597 | static void hash_openowner(struct nfs4_openowner *oo, struct nfs4_client *clp, unsigned int strhashval) | 
|  | 3598 | { | 
|  | 3599 | lockdep_assert_held(&clp->cl_lock); | 
|  | 3600 |  | 
|  | 3601 | list_add(&oo->oo_owner.so_strhash, | 
|  | 3602 | &clp->cl_ownerstr_hashtbl[strhashval]); | 
|  | 3603 | list_add(&oo->oo_perclient, &clp->cl_openowners); | 
|  | 3604 | } | 
|  | 3605 |  | 
|  | 3606 | static void nfs4_unhash_openowner(struct nfs4_stateowner *so) | 
|  | 3607 | { | 
|  | 3608 | unhash_openowner_locked(openowner(so)); | 
|  | 3609 | } | 
|  | 3610 |  | 
|  | 3611 | static void nfs4_free_openowner(struct nfs4_stateowner *so) | 
|  | 3612 | { | 
|  | 3613 | struct nfs4_openowner *oo = openowner(so); | 
|  | 3614 |  | 
|  | 3615 | kmem_cache_free(openowner_slab, oo); | 
|  | 3616 | } | 
|  | 3617 |  | 
|  | 3618 | static const struct nfs4_stateowner_operations openowner_ops = { | 
|  | 3619 | .so_unhash =	nfs4_unhash_openowner, | 
|  | 3620 | .so_free =	nfs4_free_openowner, | 
|  | 3621 | }; | 
|  | 3622 |  | 
|  | 3623 | static struct nfs4_ol_stateid * | 
|  | 3624 | nfsd4_find_existing_open(struct nfs4_file *fp, struct nfsd4_open *open) | 
|  | 3625 | { | 
|  | 3626 | struct nfs4_ol_stateid *local, *ret = NULL; | 
|  | 3627 | struct nfs4_openowner *oo = open->op_openowner; | 
|  | 3628 |  | 
|  | 3629 | lockdep_assert_held(&fp->fi_lock); | 
|  | 3630 |  | 
|  | 3631 | list_for_each_entry(local, &fp->fi_stateids, st_perfile) { | 
|  | 3632 | /* ignore lock owners */ | 
|  | 3633 | if (local->st_stateowner->so_is_open_owner == 0) | 
|  | 3634 | continue; | 
|  | 3635 | if (local->st_stateowner != &oo->oo_owner) | 
|  | 3636 | continue; | 
|  | 3637 | if (local->st_stid.sc_type == NFS4_OPEN_STID) { | 
|  | 3638 | ret = local; | 
|  | 3639 | refcount_inc(&ret->st_stid.sc_count); | 
|  | 3640 | break; | 
|  | 3641 | } | 
|  | 3642 | } | 
|  | 3643 | return ret; | 
|  | 3644 | } | 
|  | 3645 |  | 
|  | 3646 | static __be32 | 
|  | 3647 | nfsd4_verify_open_stid(struct nfs4_stid *s) | 
|  | 3648 | { | 
|  | 3649 | __be32 ret = nfs_ok; | 
|  | 3650 |  | 
|  | 3651 | switch (s->sc_type) { | 
|  | 3652 | default: | 
|  | 3653 | break; | 
|  | 3654 | case 0: | 
|  | 3655 | case NFS4_CLOSED_STID: | 
|  | 3656 | case NFS4_CLOSED_DELEG_STID: | 
|  | 3657 | ret = nfserr_bad_stateid; | 
|  | 3658 | break; | 
|  | 3659 | case NFS4_REVOKED_DELEG_STID: | 
|  | 3660 | ret = nfserr_deleg_revoked; | 
|  | 3661 | } | 
|  | 3662 | return ret; | 
|  | 3663 | } | 
|  | 3664 |  | 
|  | 3665 | /* Lock the stateid st_mutex, and deal with races with CLOSE */ | 
|  | 3666 | static __be32 | 
|  | 3667 | nfsd4_lock_ol_stateid(struct nfs4_ol_stateid *stp) | 
|  | 3668 | { | 
|  | 3669 | __be32 ret; | 
|  | 3670 |  | 
|  | 3671 | mutex_lock_nested(&stp->st_mutex, LOCK_STATEID_MUTEX); | 
|  | 3672 | ret = nfsd4_verify_open_stid(&stp->st_stid); | 
|  | 3673 | if (ret != nfs_ok) | 
|  | 3674 | mutex_unlock(&stp->st_mutex); | 
|  | 3675 | return ret; | 
|  | 3676 | } | 
|  | 3677 |  | 
|  | 3678 | static struct nfs4_ol_stateid * | 
|  | 3679 | nfsd4_find_and_lock_existing_open(struct nfs4_file *fp, struct nfsd4_open *open) | 
|  | 3680 | { | 
|  | 3681 | struct nfs4_ol_stateid *stp; | 
|  | 3682 | for (;;) { | 
|  | 3683 | spin_lock(&fp->fi_lock); | 
|  | 3684 | stp = nfsd4_find_existing_open(fp, open); | 
|  | 3685 | spin_unlock(&fp->fi_lock); | 
|  | 3686 | if (!stp || nfsd4_lock_ol_stateid(stp) == nfs_ok) | 
|  | 3687 | break; | 
|  | 3688 | nfs4_put_stid(&stp->st_stid); | 
|  | 3689 | } | 
|  | 3690 | return stp; | 
|  | 3691 | } | 
|  | 3692 |  | 
|  | 3693 | static struct nfs4_openowner * | 
|  | 3694 | alloc_init_open_stateowner(unsigned int strhashval, struct nfsd4_open *open, | 
|  | 3695 | struct nfsd4_compound_state *cstate) | 
|  | 3696 | { | 
|  | 3697 | struct nfs4_client *clp = cstate->clp; | 
|  | 3698 | struct nfs4_openowner *oo, *ret; | 
|  | 3699 |  | 
|  | 3700 | oo = alloc_stateowner(openowner_slab, &open->op_owner, clp); | 
|  | 3701 | if (!oo) | 
|  | 3702 | return NULL; | 
|  | 3703 | oo->oo_owner.so_ops = &openowner_ops; | 
|  | 3704 | oo->oo_owner.so_is_open_owner = 1; | 
|  | 3705 | oo->oo_owner.so_seqid = open->op_seqid; | 
|  | 3706 | oo->oo_flags = 0; | 
|  | 3707 | if (nfsd4_has_session(cstate)) | 
|  | 3708 | oo->oo_flags |= NFS4_OO_CONFIRMED; | 
|  | 3709 | oo->oo_time = 0; | 
|  | 3710 | oo->oo_last_closed_stid = NULL; | 
|  | 3711 | INIT_LIST_HEAD(&oo->oo_close_lru); | 
|  | 3712 | spin_lock(&clp->cl_lock); | 
|  | 3713 | ret = find_openstateowner_str_locked(strhashval, open, clp); | 
|  | 3714 | if (ret == NULL) { | 
|  | 3715 | hash_openowner(oo, clp, strhashval); | 
|  | 3716 | ret = oo; | 
|  | 3717 | } else | 
|  | 3718 | nfs4_free_stateowner(&oo->oo_owner); | 
|  | 3719 |  | 
|  | 3720 | spin_unlock(&clp->cl_lock); | 
|  | 3721 | return ret; | 
|  | 3722 | } | 
|  | 3723 |  | 
|  | 3724 | static struct nfs4_ol_stateid * | 
|  | 3725 | init_open_stateid(struct nfs4_file *fp, struct nfsd4_open *open) | 
|  | 3726 | { | 
|  | 3727 |  | 
|  | 3728 | struct nfs4_openowner *oo = open->op_openowner; | 
|  | 3729 | struct nfs4_ol_stateid *retstp = NULL; | 
|  | 3730 | struct nfs4_ol_stateid *stp; | 
|  | 3731 |  | 
|  | 3732 | stp = open->op_stp; | 
|  | 3733 | /* We are moving these outside of the spinlocks to avoid the warnings */ | 
|  | 3734 | mutex_init(&stp->st_mutex); | 
|  | 3735 | mutex_lock_nested(&stp->st_mutex, OPEN_STATEID_MUTEX); | 
|  | 3736 |  | 
|  | 3737 | retry: | 
|  | 3738 | spin_lock(&oo->oo_owner.so_client->cl_lock); | 
|  | 3739 | spin_lock(&fp->fi_lock); | 
|  | 3740 |  | 
|  | 3741 | retstp = nfsd4_find_existing_open(fp, open); | 
|  | 3742 | if (retstp) | 
|  | 3743 | goto out_unlock; | 
|  | 3744 |  | 
|  | 3745 | open->op_stp = NULL; | 
|  | 3746 | refcount_inc(&stp->st_stid.sc_count); | 
|  | 3747 | stp->st_stid.sc_type = NFS4_OPEN_STID; | 
|  | 3748 | INIT_LIST_HEAD(&stp->st_locks); | 
|  | 3749 | stp->st_stateowner = nfs4_get_stateowner(&oo->oo_owner); | 
|  | 3750 | get_nfs4_file(fp); | 
|  | 3751 | stp->st_stid.sc_file = fp; | 
|  | 3752 | stp->st_access_bmap = 0; | 
|  | 3753 | stp->st_deny_bmap = 0; | 
|  | 3754 | stp->st_openstp = NULL; | 
|  | 3755 | list_add(&stp->st_perstateowner, &oo->oo_owner.so_stateids); | 
|  | 3756 | list_add(&stp->st_perfile, &fp->fi_stateids); | 
|  | 3757 |  | 
|  | 3758 | out_unlock: | 
|  | 3759 | spin_unlock(&fp->fi_lock); | 
|  | 3760 | spin_unlock(&oo->oo_owner.so_client->cl_lock); | 
|  | 3761 | if (retstp) { | 
|  | 3762 | /* Handle races with CLOSE */ | 
|  | 3763 | if (nfsd4_lock_ol_stateid(retstp) != nfs_ok) { | 
|  | 3764 | nfs4_put_stid(&retstp->st_stid); | 
|  | 3765 | goto retry; | 
|  | 3766 | } | 
|  | 3767 | /* To keep mutex tracking happy */ | 
|  | 3768 | mutex_unlock(&stp->st_mutex); | 
|  | 3769 | stp = retstp; | 
|  | 3770 | } | 
|  | 3771 | return stp; | 
|  | 3772 | } | 
|  | 3773 |  | 
|  | 3774 | /* | 
|  | 3775 | * In the 4.0 case we need to keep the owners around a little while to handle | 
|  | 3776 | * CLOSE replay. We still do need to release any file access that is held by | 
|  | 3777 | * them before returning however. | 
|  | 3778 | */ | 
|  | 3779 | static void | 
|  | 3780 | move_to_close_lru(struct nfs4_ol_stateid *s, struct net *net) | 
|  | 3781 | { | 
|  | 3782 | struct nfs4_ol_stateid *last; | 
|  | 3783 | struct nfs4_openowner *oo = openowner(s->st_stateowner); | 
|  | 3784 | struct nfsd_net *nn = net_generic(s->st_stid.sc_client->net, | 
|  | 3785 | nfsd_net_id); | 
|  | 3786 |  | 
|  | 3787 | dprintk("NFSD: move_to_close_lru nfs4_openowner %p\n", oo); | 
|  | 3788 |  | 
|  | 3789 | /* | 
|  | 3790 | * We know that we hold one reference via nfsd4_close, and another | 
|  | 3791 | * "persistent" reference for the client. If the refcount is higher | 
|  | 3792 | * than 2, then there are still calls in progress that are using this | 
|  | 3793 | * stateid. We can't put the sc_file reference until they are finished. | 
|  | 3794 | * Wait for the refcount to drop to 2. Since it has been unhashed, | 
|  | 3795 | * there should be no danger of the refcount going back up again at | 
|  | 3796 | * this point. | 
|  | 3797 | */ | 
|  | 3798 | wait_event(close_wq, refcount_read(&s->st_stid.sc_count) == 2); | 
|  | 3799 |  | 
|  | 3800 | release_all_access(s); | 
|  | 3801 | if (s->st_stid.sc_file) { | 
|  | 3802 | put_nfs4_file(s->st_stid.sc_file); | 
|  | 3803 | s->st_stid.sc_file = NULL; | 
|  | 3804 | } | 
|  | 3805 |  | 
|  | 3806 | spin_lock(&nn->client_lock); | 
|  | 3807 | last = oo->oo_last_closed_stid; | 
|  | 3808 | oo->oo_last_closed_stid = s; | 
|  | 3809 | list_move_tail(&oo->oo_close_lru, &nn->close_lru); | 
|  | 3810 | oo->oo_time = get_seconds(); | 
|  | 3811 | spin_unlock(&nn->client_lock); | 
|  | 3812 | if (last) | 
|  | 3813 | nfs4_put_stid(&last->st_stid); | 
|  | 3814 | } | 
|  | 3815 |  | 
|  | 3816 | /* search file_hashtbl[] for file */ | 
|  | 3817 | static struct nfs4_file * | 
|  | 3818 | find_file_locked(struct knfsd_fh *fh, unsigned int hashval) | 
|  | 3819 | { | 
|  | 3820 | struct nfs4_file *fp; | 
|  | 3821 |  | 
|  | 3822 | hlist_for_each_entry_rcu(fp, &file_hashtbl[hashval], fi_hash) { | 
|  | 3823 | if (fh_match(&fp->fi_fhandle, fh)) { | 
|  | 3824 | if (refcount_inc_not_zero(&fp->fi_ref)) | 
|  | 3825 | return fp; | 
|  | 3826 | } | 
|  | 3827 | } | 
|  | 3828 | return NULL; | 
|  | 3829 | } | 
|  | 3830 |  | 
|  | 3831 | struct nfs4_file * | 
|  | 3832 | find_file(struct knfsd_fh *fh) | 
|  | 3833 | { | 
|  | 3834 | struct nfs4_file *fp; | 
|  | 3835 | unsigned int hashval = file_hashval(fh); | 
|  | 3836 |  | 
|  | 3837 | rcu_read_lock(); | 
|  | 3838 | fp = find_file_locked(fh, hashval); | 
|  | 3839 | rcu_read_unlock(); | 
|  | 3840 | return fp; | 
|  | 3841 | } | 
|  | 3842 |  | 
|  | 3843 | static struct nfs4_file * | 
|  | 3844 | find_or_add_file(struct nfs4_file *new, struct knfsd_fh *fh) | 
|  | 3845 | { | 
|  | 3846 | struct nfs4_file *fp; | 
|  | 3847 | unsigned int hashval = file_hashval(fh); | 
|  | 3848 |  | 
|  | 3849 | rcu_read_lock(); | 
|  | 3850 | fp = find_file_locked(fh, hashval); | 
|  | 3851 | rcu_read_unlock(); | 
|  | 3852 | if (fp) | 
|  | 3853 | return fp; | 
|  | 3854 |  | 
|  | 3855 | spin_lock(&state_lock); | 
|  | 3856 | fp = find_file_locked(fh, hashval); | 
|  | 3857 | if (likely(fp == NULL)) { | 
|  | 3858 | nfsd4_init_file(fh, hashval, new); | 
|  | 3859 | fp = new; | 
|  | 3860 | } | 
|  | 3861 | spin_unlock(&state_lock); | 
|  | 3862 |  | 
|  | 3863 | return fp; | 
|  | 3864 | } | 
|  | 3865 |  | 
|  | 3866 | /* | 
|  | 3867 | * Called to check deny when READ with all zero stateid or | 
|  | 3868 | * WRITE with all zero or all one stateid | 
|  | 3869 | */ | 
|  | 3870 | static __be32 | 
|  | 3871 | nfs4_share_conflict(struct svc_fh *current_fh, unsigned int deny_type) | 
|  | 3872 | { | 
|  | 3873 | struct nfs4_file *fp; | 
|  | 3874 | __be32 ret = nfs_ok; | 
|  | 3875 |  | 
|  | 3876 | fp = find_file(¤t_fh->fh_handle); | 
|  | 3877 | if (!fp) | 
|  | 3878 | return ret; | 
|  | 3879 | /* Check for conflicting share reservations */ | 
|  | 3880 | spin_lock(&fp->fi_lock); | 
|  | 3881 | if (fp->fi_share_deny & deny_type) | 
|  | 3882 | ret = nfserr_locked; | 
|  | 3883 | spin_unlock(&fp->fi_lock); | 
|  | 3884 | put_nfs4_file(fp); | 
|  | 3885 | return ret; | 
|  | 3886 | } | 
|  | 3887 |  | 
|  | 3888 | static void nfsd4_cb_recall_prepare(struct nfsd4_callback *cb) | 
|  | 3889 | { | 
|  | 3890 | struct nfs4_delegation *dp = cb_to_delegation(cb); | 
|  | 3891 | struct nfsd_net *nn = net_generic(dp->dl_stid.sc_client->net, | 
|  | 3892 | nfsd_net_id); | 
|  | 3893 |  | 
|  | 3894 | block_delegations(&dp->dl_stid.sc_file->fi_fhandle); | 
|  | 3895 |  | 
|  | 3896 | /* | 
|  | 3897 | * We can't do this in nfsd_break_deleg_cb because it is | 
|  | 3898 | * already holding inode->i_lock. | 
|  | 3899 | * | 
|  | 3900 | * If the dl_time != 0, then we know that it has already been | 
|  | 3901 | * queued for a lease break. Don't queue it again. | 
|  | 3902 | */ | 
|  | 3903 | spin_lock(&state_lock); | 
|  | 3904 | if (dp->dl_time == 0) { | 
|  | 3905 | dp->dl_time = get_seconds(); | 
|  | 3906 | list_add_tail(&dp->dl_recall_lru, &nn->del_recall_lru); | 
|  | 3907 | } | 
|  | 3908 | spin_unlock(&state_lock); | 
|  | 3909 | } | 
|  | 3910 |  | 
|  | 3911 | static int nfsd4_cb_recall_done(struct nfsd4_callback *cb, | 
|  | 3912 | struct rpc_task *task) | 
|  | 3913 | { | 
|  | 3914 | struct nfs4_delegation *dp = cb_to_delegation(cb); | 
|  | 3915 |  | 
|  | 3916 | if (dp->dl_stid.sc_type == NFS4_CLOSED_DELEG_STID) | 
|  | 3917 | return 1; | 
|  | 3918 |  | 
|  | 3919 | switch (task->tk_status) { | 
|  | 3920 | case 0: | 
|  | 3921 | return 1; | 
|  | 3922 | case -EBADHANDLE: | 
|  | 3923 | case -NFS4ERR_BAD_STATEID: | 
|  | 3924 | /* | 
|  | 3925 | * Race: client probably got cb_recall before open reply | 
|  | 3926 | * granting delegation. | 
|  | 3927 | */ | 
|  | 3928 | if (dp->dl_retries--) { | 
|  | 3929 | rpc_delay(task, 2 * HZ); | 
|  | 3930 | return 0; | 
|  | 3931 | } | 
|  | 3932 | /*FALLTHRU*/ | 
|  | 3933 | default: | 
|  | 3934 | return -1; | 
|  | 3935 | } | 
|  | 3936 | } | 
|  | 3937 |  | 
|  | 3938 | static void nfsd4_cb_recall_release(struct nfsd4_callback *cb) | 
|  | 3939 | { | 
|  | 3940 | struct nfs4_delegation *dp = cb_to_delegation(cb); | 
|  | 3941 |  | 
|  | 3942 | nfs4_put_stid(&dp->dl_stid); | 
|  | 3943 | } | 
|  | 3944 |  | 
|  | 3945 | static const struct nfsd4_callback_ops nfsd4_cb_recall_ops = { | 
|  | 3946 | .prepare	= nfsd4_cb_recall_prepare, | 
|  | 3947 | .done		= nfsd4_cb_recall_done, | 
|  | 3948 | .release	= nfsd4_cb_recall_release, | 
|  | 3949 | }; | 
|  | 3950 |  | 
|  | 3951 | static void nfsd_break_one_deleg(struct nfs4_delegation *dp) | 
|  | 3952 | { | 
|  | 3953 | /* | 
|  | 3954 | * We're assuming the state code never drops its reference | 
|  | 3955 | * without first removing the lease.  Since we're in this lease | 
|  | 3956 | * callback (and since the lease code is serialized by the | 
|  | 3957 | * i_lock) we know the server hasn't removed the lease yet, and | 
|  | 3958 | * we know it's safe to take a reference. | 
|  | 3959 | */ | 
|  | 3960 | refcount_inc(&dp->dl_stid.sc_count); | 
|  | 3961 | nfsd4_run_cb(&dp->dl_recall); | 
|  | 3962 | } | 
|  | 3963 |  | 
|  | 3964 | /* Called from break_lease() with i_lock held. */ | 
|  | 3965 | static bool | 
|  | 3966 | nfsd_break_deleg_cb(struct file_lock *fl) | 
|  | 3967 | { | 
|  | 3968 | bool ret = false; | 
|  | 3969 | struct nfs4_delegation *dp = (struct nfs4_delegation *)fl->fl_owner; | 
|  | 3970 | struct nfs4_file *fp = dp->dl_stid.sc_file; | 
|  | 3971 |  | 
|  | 3972 | /* | 
|  | 3973 | * We don't want the locks code to timeout the lease for us; | 
|  | 3974 | * we'll remove it ourself if a delegation isn't returned | 
|  | 3975 | * in time: | 
|  | 3976 | */ | 
|  | 3977 | fl->fl_break_time = 0; | 
|  | 3978 |  | 
|  | 3979 | spin_lock(&fp->fi_lock); | 
|  | 3980 | fp->fi_had_conflict = true; | 
|  | 3981 | nfsd_break_one_deleg(dp); | 
|  | 3982 | spin_unlock(&fp->fi_lock); | 
|  | 3983 | return ret; | 
|  | 3984 | } | 
|  | 3985 |  | 
|  | 3986 | static int | 
|  | 3987 | nfsd_change_deleg_cb(struct file_lock *onlist, int arg, | 
|  | 3988 | struct list_head *dispose) | 
|  | 3989 | { | 
|  | 3990 | if (arg & F_UNLCK) | 
|  | 3991 | return lease_modify(onlist, arg, dispose); | 
|  | 3992 | else | 
|  | 3993 | return -EAGAIN; | 
|  | 3994 | } | 
|  | 3995 |  | 
|  | 3996 | static const struct lock_manager_operations nfsd_lease_mng_ops = { | 
|  | 3997 | .lm_break = nfsd_break_deleg_cb, | 
|  | 3998 | .lm_change = nfsd_change_deleg_cb, | 
|  | 3999 | }; | 
|  | 4000 |  | 
|  | 4001 | static __be32 nfsd4_check_seqid(struct nfsd4_compound_state *cstate, struct nfs4_stateowner *so, u32 seqid) | 
|  | 4002 | { | 
|  | 4003 | if (nfsd4_has_session(cstate)) | 
|  | 4004 | return nfs_ok; | 
|  | 4005 | if (seqid == so->so_seqid - 1) | 
|  | 4006 | return nfserr_replay_me; | 
|  | 4007 | if (seqid == so->so_seqid) | 
|  | 4008 | return nfs_ok; | 
|  | 4009 | return nfserr_bad_seqid; | 
|  | 4010 | } | 
|  | 4011 |  | 
|  | 4012 | static __be32 lookup_clientid(clientid_t *clid, | 
|  | 4013 | struct nfsd4_compound_state *cstate, | 
|  | 4014 | struct nfsd_net *nn) | 
|  | 4015 | { | 
|  | 4016 | struct nfs4_client *found; | 
|  | 4017 |  | 
|  | 4018 | if (cstate->clp) { | 
|  | 4019 | found = cstate->clp; | 
|  | 4020 | if (!same_clid(&found->cl_clientid, clid)) | 
|  | 4021 | return nfserr_stale_clientid; | 
|  | 4022 | return nfs_ok; | 
|  | 4023 | } | 
|  | 4024 |  | 
|  | 4025 | if (STALE_CLIENTID(clid, nn)) | 
|  | 4026 | return nfserr_stale_clientid; | 
|  | 4027 |  | 
|  | 4028 | /* | 
|  | 4029 | * For v4.1+ we get the client in the SEQUENCE op. If we don't have one | 
|  | 4030 | * cached already then we know this is for is for v4.0 and "sessions" | 
|  | 4031 | * will be false. | 
|  | 4032 | */ | 
|  | 4033 | WARN_ON_ONCE(cstate->session); | 
|  | 4034 | spin_lock(&nn->client_lock); | 
|  | 4035 | found = find_confirmed_client(clid, false, nn); | 
|  | 4036 | if (!found) { | 
|  | 4037 | spin_unlock(&nn->client_lock); | 
|  | 4038 | return nfserr_expired; | 
|  | 4039 | } | 
|  | 4040 | atomic_inc(&found->cl_refcount); | 
|  | 4041 | spin_unlock(&nn->client_lock); | 
|  | 4042 |  | 
|  | 4043 | /* Cache the nfs4_client in cstate! */ | 
|  | 4044 | cstate->clp = found; | 
|  | 4045 | return nfs_ok; | 
|  | 4046 | } | 
|  | 4047 |  | 
|  | 4048 | __be32 | 
|  | 4049 | nfsd4_process_open1(struct nfsd4_compound_state *cstate, | 
|  | 4050 | struct nfsd4_open *open, struct nfsd_net *nn) | 
|  | 4051 | { | 
|  | 4052 | clientid_t *clientid = &open->op_clientid; | 
|  | 4053 | struct nfs4_client *clp = NULL; | 
|  | 4054 | unsigned int strhashval; | 
|  | 4055 | struct nfs4_openowner *oo = NULL; | 
|  | 4056 | __be32 status; | 
|  | 4057 |  | 
|  | 4058 | if (STALE_CLIENTID(&open->op_clientid, nn)) | 
|  | 4059 | return nfserr_stale_clientid; | 
|  | 4060 | /* | 
|  | 4061 | * In case we need it later, after we've already created the | 
|  | 4062 | * file and don't want to risk a further failure: | 
|  | 4063 | */ | 
|  | 4064 | open->op_file = nfsd4_alloc_file(); | 
|  | 4065 | if (open->op_file == NULL) | 
|  | 4066 | return nfserr_jukebox; | 
|  | 4067 |  | 
|  | 4068 | status = lookup_clientid(clientid, cstate, nn); | 
|  | 4069 | if (status) | 
|  | 4070 | return status; | 
|  | 4071 | clp = cstate->clp; | 
|  | 4072 |  | 
|  | 4073 | strhashval = ownerstr_hashval(&open->op_owner); | 
|  | 4074 | oo = find_openstateowner_str(strhashval, open, clp); | 
|  | 4075 | open->op_openowner = oo; | 
|  | 4076 | if (!oo) { | 
|  | 4077 | goto new_owner; | 
|  | 4078 | } | 
|  | 4079 | if (!(oo->oo_flags & NFS4_OO_CONFIRMED)) { | 
|  | 4080 | /* Replace unconfirmed owners without checking for replay. */ | 
|  | 4081 | release_openowner(oo); | 
|  | 4082 | open->op_openowner = NULL; | 
|  | 4083 | goto new_owner; | 
|  | 4084 | } | 
|  | 4085 | status = nfsd4_check_seqid(cstate, &oo->oo_owner, open->op_seqid); | 
|  | 4086 | if (status) | 
|  | 4087 | return status; | 
|  | 4088 | goto alloc_stateid; | 
|  | 4089 | new_owner: | 
|  | 4090 | oo = alloc_init_open_stateowner(strhashval, open, cstate); | 
|  | 4091 | if (oo == NULL) | 
|  | 4092 | return nfserr_jukebox; | 
|  | 4093 | open->op_openowner = oo; | 
|  | 4094 | alloc_stateid: | 
|  | 4095 | open->op_stp = nfs4_alloc_open_stateid(clp); | 
|  | 4096 | if (!open->op_stp) | 
|  | 4097 | return nfserr_jukebox; | 
|  | 4098 |  | 
|  | 4099 | if (nfsd4_has_session(cstate) && | 
|  | 4100 | (cstate->current_fh.fh_export->ex_flags & NFSEXP_PNFS)) { | 
|  | 4101 | open->op_odstate = alloc_clnt_odstate(clp); | 
|  | 4102 | if (!open->op_odstate) | 
|  | 4103 | return nfserr_jukebox; | 
|  | 4104 | } | 
|  | 4105 |  | 
|  | 4106 | return nfs_ok; | 
|  | 4107 | } | 
|  | 4108 |  | 
|  | 4109 | static inline __be32 | 
|  | 4110 | nfs4_check_delegmode(struct nfs4_delegation *dp, int flags) | 
|  | 4111 | { | 
|  | 4112 | if ((flags & WR_STATE) && (dp->dl_type == NFS4_OPEN_DELEGATE_READ)) | 
|  | 4113 | return nfserr_openmode; | 
|  | 4114 | else | 
|  | 4115 | return nfs_ok; | 
|  | 4116 | } | 
|  | 4117 |  | 
|  | 4118 | static int share_access_to_flags(u32 share_access) | 
|  | 4119 | { | 
|  | 4120 | return share_access == NFS4_SHARE_ACCESS_READ ? RD_STATE : WR_STATE; | 
|  | 4121 | } | 
|  | 4122 |  | 
|  | 4123 | static struct nfs4_delegation *find_deleg_stateid(struct nfs4_client *cl, stateid_t *s) | 
|  | 4124 | { | 
|  | 4125 | struct nfs4_stid *ret; | 
|  | 4126 |  | 
|  | 4127 | ret = find_stateid_by_type(cl, s, | 
|  | 4128 | NFS4_DELEG_STID|NFS4_REVOKED_DELEG_STID); | 
|  | 4129 | if (!ret) | 
|  | 4130 | return NULL; | 
|  | 4131 | return delegstateid(ret); | 
|  | 4132 | } | 
|  | 4133 |  | 
|  | 4134 | static bool nfsd4_is_deleg_cur(struct nfsd4_open *open) | 
|  | 4135 | { | 
|  | 4136 | return open->op_claim_type == NFS4_OPEN_CLAIM_DELEGATE_CUR || | 
|  | 4137 | open->op_claim_type == NFS4_OPEN_CLAIM_DELEG_CUR_FH; | 
|  | 4138 | } | 
|  | 4139 |  | 
|  | 4140 | static __be32 | 
|  | 4141 | nfs4_check_deleg(struct nfs4_client *cl, struct nfsd4_open *open, | 
|  | 4142 | struct nfs4_delegation **dp) | 
|  | 4143 | { | 
|  | 4144 | int flags; | 
|  | 4145 | __be32 status = nfserr_bad_stateid; | 
|  | 4146 | struct nfs4_delegation *deleg; | 
|  | 4147 |  | 
|  | 4148 | deleg = find_deleg_stateid(cl, &open->op_delegate_stateid); | 
|  | 4149 | if (deleg == NULL) | 
|  | 4150 | goto out; | 
|  | 4151 | if (deleg->dl_stid.sc_type == NFS4_REVOKED_DELEG_STID) { | 
|  | 4152 | nfs4_put_stid(&deleg->dl_stid); | 
|  | 4153 | if (cl->cl_minorversion) | 
|  | 4154 | status = nfserr_deleg_revoked; | 
|  | 4155 | goto out; | 
|  | 4156 | } | 
|  | 4157 | flags = share_access_to_flags(open->op_share_access); | 
|  | 4158 | status = nfs4_check_delegmode(deleg, flags); | 
|  | 4159 | if (status) { | 
|  | 4160 | nfs4_put_stid(&deleg->dl_stid); | 
|  | 4161 | goto out; | 
|  | 4162 | } | 
|  | 4163 | *dp = deleg; | 
|  | 4164 | out: | 
|  | 4165 | if (!nfsd4_is_deleg_cur(open)) | 
|  | 4166 | return nfs_ok; | 
|  | 4167 | if (status) | 
|  | 4168 | return status; | 
|  | 4169 | open->op_openowner->oo_flags |= NFS4_OO_CONFIRMED; | 
|  | 4170 | return nfs_ok; | 
|  | 4171 | } | 
|  | 4172 |  | 
|  | 4173 | static inline int nfs4_access_to_access(u32 nfs4_access) | 
|  | 4174 | { | 
|  | 4175 | int flags = 0; | 
|  | 4176 |  | 
|  | 4177 | if (nfs4_access & NFS4_SHARE_ACCESS_READ) | 
|  | 4178 | flags |= NFSD_MAY_READ; | 
|  | 4179 | if (nfs4_access & NFS4_SHARE_ACCESS_WRITE) | 
|  | 4180 | flags |= NFSD_MAY_WRITE; | 
|  | 4181 | return flags; | 
|  | 4182 | } | 
|  | 4183 |  | 
|  | 4184 | static inline __be32 | 
|  | 4185 | nfsd4_truncate(struct svc_rqst *rqstp, struct svc_fh *fh, | 
|  | 4186 | struct nfsd4_open *open) | 
|  | 4187 | { | 
|  | 4188 | struct iattr iattr = { | 
|  | 4189 | .ia_valid = ATTR_SIZE, | 
|  | 4190 | .ia_size = 0, | 
|  | 4191 | }; | 
|  | 4192 | if (!open->op_truncate) | 
|  | 4193 | return 0; | 
|  | 4194 | if (!(open->op_share_access & NFS4_SHARE_ACCESS_WRITE)) | 
|  | 4195 | return nfserr_inval; | 
|  | 4196 | return nfsd_setattr(rqstp, fh, &iattr, 0, (time_t)0); | 
|  | 4197 | } | 
|  | 4198 |  | 
|  | 4199 | static __be32 nfs4_get_vfs_file(struct svc_rqst *rqstp, struct nfs4_file *fp, | 
|  | 4200 | struct svc_fh *cur_fh, struct nfs4_ol_stateid *stp, | 
|  | 4201 | struct nfsd4_open *open) | 
|  | 4202 | { | 
|  | 4203 | struct file *filp = NULL; | 
|  | 4204 | __be32 status; | 
|  | 4205 | int oflag = nfs4_access_to_omode(open->op_share_access); | 
|  | 4206 | int access = nfs4_access_to_access(open->op_share_access); | 
|  | 4207 | unsigned char old_access_bmap, old_deny_bmap; | 
|  | 4208 |  | 
|  | 4209 | spin_lock(&fp->fi_lock); | 
|  | 4210 |  | 
|  | 4211 | /* | 
|  | 4212 | * Are we trying to set a deny mode that would conflict with | 
|  | 4213 | * current access? | 
|  | 4214 | */ | 
|  | 4215 | status = nfs4_file_check_deny(fp, open->op_share_deny); | 
|  | 4216 | if (status != nfs_ok) { | 
|  | 4217 | spin_unlock(&fp->fi_lock); | 
|  | 4218 | goto out; | 
|  | 4219 | } | 
|  | 4220 |  | 
|  | 4221 | /* set access to the file */ | 
|  | 4222 | status = nfs4_file_get_access(fp, open->op_share_access); | 
|  | 4223 | if (status != nfs_ok) { | 
|  | 4224 | spin_unlock(&fp->fi_lock); | 
|  | 4225 | goto out; | 
|  | 4226 | } | 
|  | 4227 |  | 
|  | 4228 | /* Set access bits in stateid */ | 
|  | 4229 | old_access_bmap = stp->st_access_bmap; | 
|  | 4230 | set_access(open->op_share_access, stp); | 
|  | 4231 |  | 
|  | 4232 | /* Set new deny mask */ | 
|  | 4233 | old_deny_bmap = stp->st_deny_bmap; | 
|  | 4234 | set_deny(open->op_share_deny, stp); | 
|  | 4235 | fp->fi_share_deny |= (open->op_share_deny & NFS4_SHARE_DENY_BOTH); | 
|  | 4236 |  | 
|  | 4237 | if (!fp->fi_fds[oflag]) { | 
|  | 4238 | spin_unlock(&fp->fi_lock); | 
|  | 4239 | status = nfsd_open(rqstp, cur_fh, S_IFREG, access, &filp); | 
|  | 4240 | if (status) | 
|  | 4241 | goto out_put_access; | 
|  | 4242 | spin_lock(&fp->fi_lock); | 
|  | 4243 | if (!fp->fi_fds[oflag]) { | 
|  | 4244 | fp->fi_fds[oflag] = filp; | 
|  | 4245 | filp = NULL; | 
|  | 4246 | } | 
|  | 4247 | } | 
|  | 4248 | spin_unlock(&fp->fi_lock); | 
|  | 4249 | if (filp) | 
|  | 4250 | fput(filp); | 
|  | 4251 |  | 
|  | 4252 | status = nfsd4_truncate(rqstp, cur_fh, open); | 
|  | 4253 | if (status) | 
|  | 4254 | goto out_put_access; | 
|  | 4255 | out: | 
|  | 4256 | return status; | 
|  | 4257 | out_put_access: | 
|  | 4258 | stp->st_access_bmap = old_access_bmap; | 
|  | 4259 | nfs4_file_put_access(fp, open->op_share_access); | 
|  | 4260 | reset_union_bmap_deny(bmap_to_share_mode(old_deny_bmap), stp); | 
|  | 4261 | goto out; | 
|  | 4262 | } | 
|  | 4263 |  | 
|  | 4264 | static __be32 | 
|  | 4265 | nfs4_upgrade_open(struct svc_rqst *rqstp, struct nfs4_file *fp, struct svc_fh *cur_fh, struct nfs4_ol_stateid *stp, struct nfsd4_open *open) | 
|  | 4266 | { | 
|  | 4267 | __be32 status; | 
|  | 4268 | unsigned char old_deny_bmap = stp->st_deny_bmap; | 
|  | 4269 |  | 
|  | 4270 | if (!test_access(open->op_share_access, stp)) | 
|  | 4271 | return nfs4_get_vfs_file(rqstp, fp, cur_fh, stp, open); | 
|  | 4272 |  | 
|  | 4273 | /* test and set deny mode */ | 
|  | 4274 | spin_lock(&fp->fi_lock); | 
|  | 4275 | status = nfs4_file_check_deny(fp, open->op_share_deny); | 
|  | 4276 | if (status == nfs_ok) { | 
|  | 4277 | set_deny(open->op_share_deny, stp); | 
|  | 4278 | fp->fi_share_deny |= | 
|  | 4279 | (open->op_share_deny & NFS4_SHARE_DENY_BOTH); | 
|  | 4280 | } | 
|  | 4281 | spin_unlock(&fp->fi_lock); | 
|  | 4282 |  | 
|  | 4283 | if (status != nfs_ok) | 
|  | 4284 | return status; | 
|  | 4285 |  | 
|  | 4286 | status = nfsd4_truncate(rqstp, cur_fh, open); | 
|  | 4287 | if (status != nfs_ok) | 
|  | 4288 | reset_union_bmap_deny(old_deny_bmap, stp); | 
|  | 4289 | return status; | 
|  | 4290 | } | 
|  | 4291 |  | 
|  | 4292 | /* Should we give out recallable state?: */ | 
|  | 4293 | static bool nfsd4_cb_channel_good(struct nfs4_client *clp) | 
|  | 4294 | { | 
|  | 4295 | if (clp->cl_cb_state == NFSD4_CB_UP) | 
|  | 4296 | return true; | 
|  | 4297 | /* | 
|  | 4298 | * In the sessions case, since we don't have to establish a | 
|  | 4299 | * separate connection for callbacks, we assume it's OK | 
|  | 4300 | * until we hear otherwise: | 
|  | 4301 | */ | 
|  | 4302 | return clp->cl_minorversion && clp->cl_cb_state == NFSD4_CB_UNKNOWN; | 
|  | 4303 | } | 
|  | 4304 |  | 
|  | 4305 | static struct file_lock *nfs4_alloc_init_lease(struct nfs4_delegation *dp, | 
|  | 4306 | int flag) | 
|  | 4307 | { | 
|  | 4308 | struct file_lock *fl; | 
|  | 4309 |  | 
|  | 4310 | fl = locks_alloc_lock(); | 
|  | 4311 | if (!fl) | 
|  | 4312 | return NULL; | 
|  | 4313 | fl->fl_lmops = &nfsd_lease_mng_ops; | 
|  | 4314 | fl->fl_flags = FL_DELEG; | 
|  | 4315 | fl->fl_type = flag == NFS4_OPEN_DELEGATE_READ? F_RDLCK: F_WRLCK; | 
|  | 4316 | fl->fl_end = OFFSET_MAX; | 
|  | 4317 | fl->fl_owner = (fl_owner_t)dp; | 
|  | 4318 | fl->fl_pid = current->tgid; | 
|  | 4319 | fl->fl_file = dp->dl_stid.sc_file->fi_deleg_file; | 
|  | 4320 | return fl; | 
|  | 4321 | } | 
|  | 4322 |  | 
|  | 4323 | static struct nfs4_delegation * | 
|  | 4324 | nfs4_set_delegation(struct nfs4_client *clp, struct svc_fh *fh, | 
|  | 4325 | struct nfs4_file *fp, struct nfs4_clnt_odstate *odstate) | 
|  | 4326 | { | 
|  | 4327 | int status = 0; | 
|  | 4328 | struct nfs4_delegation *dp; | 
|  | 4329 | struct file *filp; | 
|  | 4330 | struct file_lock *fl; | 
|  | 4331 |  | 
|  | 4332 | /* | 
|  | 4333 | * The fi_had_conflict and nfs_get_existing_delegation checks | 
|  | 4334 | * here are just optimizations; we'll need to recheck them at | 
|  | 4335 | * the end: | 
|  | 4336 | */ | 
|  | 4337 | if (fp->fi_had_conflict) | 
|  | 4338 | return ERR_PTR(-EAGAIN); | 
|  | 4339 |  | 
|  | 4340 | filp = find_readable_file(fp); | 
|  | 4341 | if (!filp) { | 
|  | 4342 | /* We should always have a readable file here */ | 
|  | 4343 | WARN_ON_ONCE(1); | 
|  | 4344 | return ERR_PTR(-EBADF); | 
|  | 4345 | } | 
|  | 4346 | spin_lock(&state_lock); | 
|  | 4347 | spin_lock(&fp->fi_lock); | 
|  | 4348 | if (nfs4_delegation_exists(clp, fp)) | 
|  | 4349 | status = -EAGAIN; | 
|  | 4350 | else if (!fp->fi_deleg_file) { | 
|  | 4351 | fp->fi_deleg_file = filp; | 
|  | 4352 | /* increment early to prevent fi_deleg_file from being | 
|  | 4353 | * cleared */ | 
|  | 4354 | fp->fi_delegees = 1; | 
|  | 4355 | filp = NULL; | 
|  | 4356 | } else | 
|  | 4357 | fp->fi_delegees++; | 
|  | 4358 | spin_unlock(&fp->fi_lock); | 
|  | 4359 | spin_unlock(&state_lock); | 
|  | 4360 | if (filp) | 
|  | 4361 | fput(filp); | 
|  | 4362 | if (status) | 
|  | 4363 | return ERR_PTR(status); | 
|  | 4364 |  | 
|  | 4365 | status = -ENOMEM; | 
|  | 4366 | dp = alloc_init_deleg(clp, fp, fh, odstate); | 
|  | 4367 | if (!dp) | 
|  | 4368 | goto out_delegees; | 
|  | 4369 |  | 
|  | 4370 | fl = nfs4_alloc_init_lease(dp, NFS4_OPEN_DELEGATE_READ); | 
|  | 4371 | if (!fl) | 
|  | 4372 | goto out_clnt_odstate; | 
|  | 4373 |  | 
|  | 4374 | status = vfs_setlease(fp->fi_deleg_file, fl->fl_type, &fl, NULL); | 
|  | 4375 | if (fl) | 
|  | 4376 | locks_free_lock(fl); | 
|  | 4377 | if (status) | 
|  | 4378 | goto out_clnt_odstate; | 
|  | 4379 |  | 
|  | 4380 | spin_lock(&state_lock); | 
|  | 4381 | spin_lock(&fp->fi_lock); | 
|  | 4382 | if (fp->fi_had_conflict) | 
|  | 4383 | status = -EAGAIN; | 
|  | 4384 | else | 
|  | 4385 | status = hash_delegation_locked(dp, fp); | 
|  | 4386 | spin_unlock(&fp->fi_lock); | 
|  | 4387 | spin_unlock(&state_lock); | 
|  | 4388 |  | 
|  | 4389 | if (status) | 
|  | 4390 | goto out_unlock; | 
|  | 4391 |  | 
|  | 4392 | return dp; | 
|  | 4393 | out_unlock: | 
|  | 4394 | vfs_setlease(fp->fi_deleg_file, F_UNLCK, NULL, (void **)&dp); | 
|  | 4395 | out_clnt_odstate: | 
|  | 4396 | put_clnt_odstate(dp->dl_clnt_odstate); | 
|  | 4397 | nfs4_put_stid(&dp->dl_stid); | 
|  | 4398 | out_delegees: | 
|  | 4399 | put_deleg_file(fp); | 
|  | 4400 | return ERR_PTR(status); | 
|  | 4401 | } | 
|  | 4402 |  | 
|  | 4403 | static void nfsd4_open_deleg_none_ext(struct nfsd4_open *open, int status) | 
|  | 4404 | { | 
|  | 4405 | open->op_delegate_type = NFS4_OPEN_DELEGATE_NONE_EXT; | 
|  | 4406 | if (status == -EAGAIN) | 
|  | 4407 | open->op_why_no_deleg = WND4_CONTENTION; | 
|  | 4408 | else { | 
|  | 4409 | open->op_why_no_deleg = WND4_RESOURCE; | 
|  | 4410 | switch (open->op_deleg_want) { | 
|  | 4411 | case NFS4_SHARE_WANT_READ_DELEG: | 
|  | 4412 | case NFS4_SHARE_WANT_WRITE_DELEG: | 
|  | 4413 | case NFS4_SHARE_WANT_ANY_DELEG: | 
|  | 4414 | break; | 
|  | 4415 | case NFS4_SHARE_WANT_CANCEL: | 
|  | 4416 | open->op_why_no_deleg = WND4_CANCELLED; | 
|  | 4417 | break; | 
|  | 4418 | case NFS4_SHARE_WANT_NO_DELEG: | 
|  | 4419 | WARN_ON_ONCE(1); | 
|  | 4420 | } | 
|  | 4421 | } | 
|  | 4422 | } | 
|  | 4423 |  | 
|  | 4424 | /* | 
|  | 4425 | * Attempt to hand out a delegation. | 
|  | 4426 | * | 
|  | 4427 | * Note we don't support write delegations, and won't until the vfs has | 
|  | 4428 | * proper support for them. | 
|  | 4429 | */ | 
|  | 4430 | static void | 
|  | 4431 | nfs4_open_delegation(struct svc_fh *fh, struct nfsd4_open *open, | 
|  | 4432 | struct nfs4_ol_stateid *stp) | 
|  | 4433 | { | 
|  | 4434 | struct nfs4_delegation *dp; | 
|  | 4435 | struct nfs4_openowner *oo = openowner(stp->st_stateowner); | 
|  | 4436 | struct nfs4_client *clp = stp->st_stid.sc_client; | 
|  | 4437 | int cb_up; | 
|  | 4438 | int status = 0; | 
|  | 4439 |  | 
|  | 4440 | cb_up = nfsd4_cb_channel_good(oo->oo_owner.so_client); | 
|  | 4441 | open->op_recall = 0; | 
|  | 4442 | switch (open->op_claim_type) { | 
|  | 4443 | case NFS4_OPEN_CLAIM_PREVIOUS: | 
|  | 4444 | if (!cb_up) | 
|  | 4445 | open->op_recall = 1; | 
|  | 4446 | if (open->op_delegate_type != NFS4_OPEN_DELEGATE_READ) | 
|  | 4447 | goto out_no_deleg; | 
|  | 4448 | break; | 
|  | 4449 | case NFS4_OPEN_CLAIM_NULL: | 
|  | 4450 | case NFS4_OPEN_CLAIM_FH: | 
|  | 4451 | /* | 
|  | 4452 | * Let's not give out any delegations till everyone's | 
|  | 4453 | * had the chance to reclaim theirs, *and* until | 
|  | 4454 | * NLM locks have all been reclaimed: | 
|  | 4455 | */ | 
|  | 4456 | if (locks_in_grace(clp->net)) | 
|  | 4457 | goto out_no_deleg; | 
|  | 4458 | if (!cb_up || !(oo->oo_flags & NFS4_OO_CONFIRMED)) | 
|  | 4459 | goto out_no_deleg; | 
|  | 4460 | /* | 
|  | 4461 | * Also, if the file was opened for write or | 
|  | 4462 | * create, there's a good chance the client's | 
|  | 4463 | * about to write to it, resulting in an | 
|  | 4464 | * immediate recall (since we don't support | 
|  | 4465 | * write delegations): | 
|  | 4466 | */ | 
|  | 4467 | if (open->op_share_access & NFS4_SHARE_ACCESS_WRITE) | 
|  | 4468 | goto out_no_deleg; | 
|  | 4469 | if (open->op_create == NFS4_OPEN_CREATE) | 
|  | 4470 | goto out_no_deleg; | 
|  | 4471 | break; | 
|  | 4472 | default: | 
|  | 4473 | goto out_no_deleg; | 
|  | 4474 | } | 
|  | 4475 | dp = nfs4_set_delegation(clp, fh, stp->st_stid.sc_file, stp->st_clnt_odstate); | 
|  | 4476 | if (IS_ERR(dp)) | 
|  | 4477 | goto out_no_deleg; | 
|  | 4478 |  | 
|  | 4479 | memcpy(&open->op_delegate_stateid, &dp->dl_stid.sc_stateid, sizeof(dp->dl_stid.sc_stateid)); | 
|  | 4480 |  | 
|  | 4481 | dprintk("NFSD: delegation stateid=" STATEID_FMT "\n", | 
|  | 4482 | STATEID_VAL(&dp->dl_stid.sc_stateid)); | 
|  | 4483 | open->op_delegate_type = NFS4_OPEN_DELEGATE_READ; | 
|  | 4484 | nfs4_put_stid(&dp->dl_stid); | 
|  | 4485 | return; | 
|  | 4486 | out_no_deleg: | 
|  | 4487 | open->op_delegate_type = NFS4_OPEN_DELEGATE_NONE; | 
|  | 4488 | if (open->op_claim_type == NFS4_OPEN_CLAIM_PREVIOUS && | 
|  | 4489 | open->op_delegate_type != NFS4_OPEN_DELEGATE_NONE) { | 
|  | 4490 | dprintk("NFSD: WARNING: refusing delegation reclaim\n"); | 
|  | 4491 | open->op_recall = 1; | 
|  | 4492 | } | 
|  | 4493 |  | 
|  | 4494 | /* 4.1 client asking for a delegation? */ | 
|  | 4495 | if (open->op_deleg_want) | 
|  | 4496 | nfsd4_open_deleg_none_ext(open, status); | 
|  | 4497 | return; | 
|  | 4498 | } | 
|  | 4499 |  | 
|  | 4500 | static void nfsd4_deleg_xgrade_none_ext(struct nfsd4_open *open, | 
|  | 4501 | struct nfs4_delegation *dp) | 
|  | 4502 | { | 
|  | 4503 | if (open->op_deleg_want == NFS4_SHARE_WANT_READ_DELEG && | 
|  | 4504 | dp->dl_type == NFS4_OPEN_DELEGATE_WRITE) { | 
|  | 4505 | open->op_delegate_type = NFS4_OPEN_DELEGATE_NONE_EXT; | 
|  | 4506 | open->op_why_no_deleg = WND4_NOT_SUPP_DOWNGRADE; | 
|  | 4507 | } else if (open->op_deleg_want == NFS4_SHARE_WANT_WRITE_DELEG && | 
|  | 4508 | dp->dl_type == NFS4_OPEN_DELEGATE_WRITE) { | 
|  | 4509 | open->op_delegate_type = NFS4_OPEN_DELEGATE_NONE_EXT; | 
|  | 4510 | open->op_why_no_deleg = WND4_NOT_SUPP_UPGRADE; | 
|  | 4511 | } | 
|  | 4512 | /* Otherwise the client must be confused wanting a delegation | 
|  | 4513 | * it already has, therefore we don't return | 
|  | 4514 | * NFS4_OPEN_DELEGATE_NONE_EXT and reason. | 
|  | 4515 | */ | 
|  | 4516 | } | 
|  | 4517 |  | 
|  | 4518 | __be32 | 
|  | 4519 | nfsd4_process_open2(struct svc_rqst *rqstp, struct svc_fh *current_fh, struct nfsd4_open *open) | 
|  | 4520 | { | 
|  | 4521 | struct nfsd4_compoundres *resp = rqstp->rq_resp; | 
|  | 4522 | struct nfs4_client *cl = open->op_openowner->oo_owner.so_client; | 
|  | 4523 | struct nfs4_file *fp = NULL; | 
|  | 4524 | struct nfs4_ol_stateid *stp = NULL; | 
|  | 4525 | struct nfs4_delegation *dp = NULL; | 
|  | 4526 | __be32 status; | 
|  | 4527 | bool new_stp = false; | 
|  | 4528 |  | 
|  | 4529 | /* | 
|  | 4530 | * Lookup file; if found, lookup stateid and check open request, | 
|  | 4531 | * and check for delegations in the process of being recalled. | 
|  | 4532 | * If not found, create the nfs4_file struct | 
|  | 4533 | */ | 
|  | 4534 | fp = find_or_add_file(open->op_file, ¤t_fh->fh_handle); | 
|  | 4535 | if (fp != open->op_file) { | 
|  | 4536 | status = nfs4_check_deleg(cl, open, &dp); | 
|  | 4537 | if (status) | 
|  | 4538 | goto out; | 
|  | 4539 | stp = nfsd4_find_and_lock_existing_open(fp, open); | 
|  | 4540 | } else { | 
|  | 4541 | open->op_file = NULL; | 
|  | 4542 | status = nfserr_bad_stateid; | 
|  | 4543 | if (nfsd4_is_deleg_cur(open)) | 
|  | 4544 | goto out; | 
|  | 4545 | } | 
|  | 4546 |  | 
|  | 4547 | if (!stp) { | 
|  | 4548 | stp = init_open_stateid(fp, open); | 
|  | 4549 | if (!open->op_stp) | 
|  | 4550 | new_stp = true; | 
|  | 4551 | } | 
|  | 4552 |  | 
|  | 4553 | /* | 
|  | 4554 | * OPEN the file, or upgrade an existing OPEN. | 
|  | 4555 | * If truncate fails, the OPEN fails. | 
|  | 4556 | * | 
|  | 4557 | * stp is already locked. | 
|  | 4558 | */ | 
|  | 4559 | if (!new_stp) { | 
|  | 4560 | /* Stateid was found, this is an OPEN upgrade */ | 
|  | 4561 | status = nfs4_upgrade_open(rqstp, fp, current_fh, stp, open); | 
|  | 4562 | if (status) { | 
|  | 4563 | mutex_unlock(&stp->st_mutex); | 
|  | 4564 | goto out; | 
|  | 4565 | } | 
|  | 4566 | } else { | 
|  | 4567 | status = nfs4_get_vfs_file(rqstp, fp, current_fh, stp, open); | 
|  | 4568 | if (status) { | 
|  | 4569 | stp->st_stid.sc_type = NFS4_CLOSED_STID; | 
|  | 4570 | release_open_stateid(stp); | 
|  | 4571 | mutex_unlock(&stp->st_mutex); | 
|  | 4572 | goto out; | 
|  | 4573 | } | 
|  | 4574 |  | 
|  | 4575 | stp->st_clnt_odstate = find_or_hash_clnt_odstate(fp, | 
|  | 4576 | open->op_odstate); | 
|  | 4577 | if (stp->st_clnt_odstate == open->op_odstate) | 
|  | 4578 | open->op_odstate = NULL; | 
|  | 4579 | } | 
|  | 4580 |  | 
|  | 4581 | nfs4_inc_and_copy_stateid(&open->op_stateid, &stp->st_stid); | 
|  | 4582 | mutex_unlock(&stp->st_mutex); | 
|  | 4583 |  | 
|  | 4584 | if (nfsd4_has_session(&resp->cstate)) { | 
|  | 4585 | if (open->op_deleg_want & NFS4_SHARE_WANT_NO_DELEG) { | 
|  | 4586 | open->op_delegate_type = NFS4_OPEN_DELEGATE_NONE_EXT; | 
|  | 4587 | open->op_why_no_deleg = WND4_NOT_WANTED; | 
|  | 4588 | goto nodeleg; | 
|  | 4589 | } | 
|  | 4590 | } | 
|  | 4591 |  | 
|  | 4592 | /* | 
|  | 4593 | * Attempt to hand out a delegation. No error return, because the | 
|  | 4594 | * OPEN succeeds even if we fail. | 
|  | 4595 | */ | 
|  | 4596 | nfs4_open_delegation(current_fh, open, stp); | 
|  | 4597 | nodeleg: | 
|  | 4598 | status = nfs_ok; | 
|  | 4599 |  | 
|  | 4600 | dprintk("%s: stateid=" STATEID_FMT "\n", __func__, | 
|  | 4601 | STATEID_VAL(&stp->st_stid.sc_stateid)); | 
|  | 4602 | out: | 
|  | 4603 | /* 4.1 client trying to upgrade/downgrade delegation? */ | 
|  | 4604 | if (open->op_delegate_type == NFS4_OPEN_DELEGATE_NONE && dp && | 
|  | 4605 | open->op_deleg_want) | 
|  | 4606 | nfsd4_deleg_xgrade_none_ext(open, dp); | 
|  | 4607 |  | 
|  | 4608 | if (fp) | 
|  | 4609 | put_nfs4_file(fp); | 
|  | 4610 | if (status == 0 && open->op_claim_type == NFS4_OPEN_CLAIM_PREVIOUS) | 
|  | 4611 | open->op_openowner->oo_flags |= NFS4_OO_CONFIRMED; | 
|  | 4612 | /* | 
|  | 4613 | * To finish the open response, we just need to set the rflags. | 
|  | 4614 | */ | 
|  | 4615 | open->op_rflags = NFS4_OPEN_RESULT_LOCKTYPE_POSIX; | 
|  | 4616 | if (nfsd4_has_session(&resp->cstate)) | 
|  | 4617 | open->op_rflags |= NFS4_OPEN_RESULT_MAY_NOTIFY_LOCK; | 
|  | 4618 | else if (!(open->op_openowner->oo_flags & NFS4_OO_CONFIRMED)) | 
|  | 4619 | open->op_rflags |= NFS4_OPEN_RESULT_CONFIRM; | 
|  | 4620 |  | 
|  | 4621 | if (dp) | 
|  | 4622 | nfs4_put_stid(&dp->dl_stid); | 
|  | 4623 | if (stp) | 
|  | 4624 | nfs4_put_stid(&stp->st_stid); | 
|  | 4625 |  | 
|  | 4626 | return status; | 
|  | 4627 | } | 
|  | 4628 |  | 
|  | 4629 | void nfsd4_cleanup_open_state(struct nfsd4_compound_state *cstate, | 
|  | 4630 | struct nfsd4_open *open) | 
|  | 4631 | { | 
|  | 4632 | if (open->op_openowner) { | 
|  | 4633 | struct nfs4_stateowner *so = &open->op_openowner->oo_owner; | 
|  | 4634 |  | 
|  | 4635 | nfsd4_cstate_assign_replay(cstate, so); | 
|  | 4636 | nfs4_put_stateowner(so); | 
|  | 4637 | } | 
|  | 4638 | if (open->op_file) | 
|  | 4639 | kmem_cache_free(file_slab, open->op_file); | 
|  | 4640 | if (open->op_stp) | 
|  | 4641 | nfs4_put_stid(&open->op_stp->st_stid); | 
|  | 4642 | if (open->op_odstate) | 
|  | 4643 | kmem_cache_free(odstate_slab, open->op_odstate); | 
|  | 4644 | } | 
|  | 4645 |  | 
|  | 4646 | __be32 | 
|  | 4647 | nfsd4_renew(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 4648 | union nfsd4_op_u *u) | 
|  | 4649 | { | 
|  | 4650 | clientid_t *clid = &u->renew; | 
|  | 4651 | struct nfs4_client *clp; | 
|  | 4652 | __be32 status; | 
|  | 4653 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 4654 |  | 
|  | 4655 | dprintk("process_renew(%08x/%08x): starting\n", | 
|  | 4656 | clid->cl_boot, clid->cl_id); | 
|  | 4657 | status = lookup_clientid(clid, cstate, nn); | 
|  | 4658 | if (status) | 
|  | 4659 | goto out; | 
|  | 4660 | clp = cstate->clp; | 
|  | 4661 | status = nfserr_cb_path_down; | 
|  | 4662 | if (!list_empty(&clp->cl_delegations) | 
|  | 4663 | && clp->cl_cb_state != NFSD4_CB_UP) | 
|  | 4664 | goto out; | 
|  | 4665 | status = nfs_ok; | 
|  | 4666 | out: | 
|  | 4667 | return status; | 
|  | 4668 | } | 
|  | 4669 |  | 
|  | 4670 | void | 
|  | 4671 | nfsd4_end_grace(struct nfsd_net *nn) | 
|  | 4672 | { | 
|  | 4673 | /* do nothing if grace period already ended */ | 
|  | 4674 | if (nn->grace_ended) | 
|  | 4675 | return; | 
|  | 4676 |  | 
|  | 4677 | dprintk("NFSD: end of grace period\n"); | 
|  | 4678 | nn->grace_ended = true; | 
|  | 4679 | /* | 
|  | 4680 | * If the server goes down again right now, an NFSv4 | 
|  | 4681 | * client will still be allowed to reclaim after it comes back up, | 
|  | 4682 | * even if it hasn't yet had a chance to reclaim state this time. | 
|  | 4683 | * | 
|  | 4684 | */ | 
|  | 4685 | nfsd4_record_grace_done(nn); | 
|  | 4686 | /* | 
|  | 4687 | * At this point, NFSv4 clients can still reclaim.  But if the | 
|  | 4688 | * server crashes, any that have not yet reclaimed will be out | 
|  | 4689 | * of luck on the next boot. | 
|  | 4690 | * | 
|  | 4691 | * (NFSv4.1+ clients are considered to have reclaimed once they | 
|  | 4692 | * call RECLAIM_COMPLETE.  NFSv4.0 clients are considered to | 
|  | 4693 | * have reclaimed after their first OPEN.) | 
|  | 4694 | */ | 
|  | 4695 | locks_end_grace(&nn->nfsd4_manager); | 
|  | 4696 | /* | 
|  | 4697 | * At this point, and once lockd and/or any other containers | 
|  | 4698 | * exit their grace period, further reclaims will fail and | 
|  | 4699 | * regular locking can resume. | 
|  | 4700 | */ | 
|  | 4701 | } | 
|  | 4702 |  | 
|  | 4703 | /* | 
|  | 4704 | * If we've waited a lease period but there are still clients trying to | 
|  | 4705 | * reclaim, wait a little longer to give them a chance to finish. | 
|  | 4706 | */ | 
|  | 4707 | static bool clients_still_reclaiming(struct nfsd_net *nn) | 
|  | 4708 | { | 
|  | 4709 | unsigned long now = get_seconds(); | 
|  | 4710 | unsigned long double_grace_period_end = nn->boot_time + | 
|  | 4711 | 2 * nn->nfsd4_lease; | 
|  | 4712 |  | 
|  | 4713 | if (!nn->somebody_reclaimed) | 
|  | 4714 | return false; | 
|  | 4715 | nn->somebody_reclaimed = false; | 
|  | 4716 | /* | 
|  | 4717 | * If we've given them *two* lease times to reclaim, and they're | 
|  | 4718 | * still not done, give up: | 
|  | 4719 | */ | 
|  | 4720 | if (time_after(now, double_grace_period_end)) | 
|  | 4721 | return false; | 
|  | 4722 | return true; | 
|  | 4723 | } | 
|  | 4724 |  | 
|  | 4725 | static time_t | 
|  | 4726 | nfs4_laundromat(struct nfsd_net *nn) | 
|  | 4727 | { | 
|  | 4728 | struct nfs4_client *clp; | 
|  | 4729 | struct nfs4_openowner *oo; | 
|  | 4730 | struct nfs4_delegation *dp; | 
|  | 4731 | struct nfs4_ol_stateid *stp; | 
|  | 4732 | struct nfsd4_blocked_lock *nbl; | 
|  | 4733 | struct list_head *pos, *next, reaplist; | 
|  | 4734 | time_t cutoff = get_seconds() - nn->nfsd4_lease; | 
|  | 4735 | time_t t, new_timeo = nn->nfsd4_lease; | 
|  | 4736 |  | 
|  | 4737 | dprintk("NFSD: laundromat service - starting\n"); | 
|  | 4738 |  | 
|  | 4739 | if (clients_still_reclaiming(nn)) { | 
|  | 4740 | new_timeo = 0; | 
|  | 4741 | goto out; | 
|  | 4742 | } | 
|  | 4743 | nfsd4_end_grace(nn); | 
|  | 4744 | INIT_LIST_HEAD(&reaplist); | 
|  | 4745 | spin_lock(&nn->client_lock); | 
|  | 4746 | list_for_each_safe(pos, next, &nn->client_lru) { | 
|  | 4747 | clp = list_entry(pos, struct nfs4_client, cl_lru); | 
|  | 4748 | if (time_after((unsigned long)clp->cl_time, (unsigned long)cutoff)) { | 
|  | 4749 | t = clp->cl_time - cutoff; | 
|  | 4750 | new_timeo = min(new_timeo, t); | 
|  | 4751 | break; | 
|  | 4752 | } | 
|  | 4753 | if (mark_client_expired_locked(clp)) { | 
|  | 4754 | dprintk("NFSD: client in use (clientid %08x)\n", | 
|  | 4755 | clp->cl_clientid.cl_id); | 
|  | 4756 | continue; | 
|  | 4757 | } | 
|  | 4758 | list_add(&clp->cl_lru, &reaplist); | 
|  | 4759 | } | 
|  | 4760 | spin_unlock(&nn->client_lock); | 
|  | 4761 | list_for_each_safe(pos, next, &reaplist) { | 
|  | 4762 | clp = list_entry(pos, struct nfs4_client, cl_lru); | 
|  | 4763 | dprintk("NFSD: purging unused client (clientid %08x)\n", | 
|  | 4764 | clp->cl_clientid.cl_id); | 
|  | 4765 | list_del_init(&clp->cl_lru); | 
|  | 4766 | expire_client(clp); | 
|  | 4767 | } | 
|  | 4768 | spin_lock(&state_lock); | 
|  | 4769 | list_for_each_safe(pos, next, &nn->del_recall_lru) { | 
|  | 4770 | dp = list_entry (pos, struct nfs4_delegation, dl_recall_lru); | 
|  | 4771 | if (time_after((unsigned long)dp->dl_time, (unsigned long)cutoff)) { | 
|  | 4772 | t = dp->dl_time - cutoff; | 
|  | 4773 | new_timeo = min(new_timeo, t); | 
|  | 4774 | break; | 
|  | 4775 | } | 
|  | 4776 | WARN_ON(!unhash_delegation_locked(dp)); | 
|  | 4777 | list_add(&dp->dl_recall_lru, &reaplist); | 
|  | 4778 | } | 
|  | 4779 | spin_unlock(&state_lock); | 
|  | 4780 | while (!list_empty(&reaplist)) { | 
|  | 4781 | dp = list_first_entry(&reaplist, struct nfs4_delegation, | 
|  | 4782 | dl_recall_lru); | 
|  | 4783 | list_del_init(&dp->dl_recall_lru); | 
|  | 4784 | revoke_delegation(dp); | 
|  | 4785 | } | 
|  | 4786 |  | 
|  | 4787 | spin_lock(&nn->client_lock); | 
|  | 4788 | while (!list_empty(&nn->close_lru)) { | 
|  | 4789 | oo = list_first_entry(&nn->close_lru, struct nfs4_openowner, | 
|  | 4790 | oo_close_lru); | 
|  | 4791 | if (time_after((unsigned long)oo->oo_time, | 
|  | 4792 | (unsigned long)cutoff)) { | 
|  | 4793 | t = oo->oo_time - cutoff; | 
|  | 4794 | new_timeo = min(new_timeo, t); | 
|  | 4795 | break; | 
|  | 4796 | } | 
|  | 4797 | list_del_init(&oo->oo_close_lru); | 
|  | 4798 | stp = oo->oo_last_closed_stid; | 
|  | 4799 | oo->oo_last_closed_stid = NULL; | 
|  | 4800 | spin_unlock(&nn->client_lock); | 
|  | 4801 | nfs4_put_stid(&stp->st_stid); | 
|  | 4802 | spin_lock(&nn->client_lock); | 
|  | 4803 | } | 
|  | 4804 | spin_unlock(&nn->client_lock); | 
|  | 4805 |  | 
|  | 4806 | /* | 
|  | 4807 | * It's possible for a client to try and acquire an already held lock | 
|  | 4808 | * that is being held for a long time, and then lose interest in it. | 
|  | 4809 | * So, we clean out any un-revisited request after a lease period | 
|  | 4810 | * under the assumption that the client is no longer interested. | 
|  | 4811 | * | 
|  | 4812 | * RFC5661, sec. 9.6 states that the client must not rely on getting | 
|  | 4813 | * notifications and must continue to poll for locks, even when the | 
|  | 4814 | * server supports them. Thus this shouldn't lead to clients blocking | 
|  | 4815 | * indefinitely once the lock does become free. | 
|  | 4816 | */ | 
|  | 4817 | BUG_ON(!list_empty(&reaplist)); | 
|  | 4818 | spin_lock(&nn->blocked_locks_lock); | 
|  | 4819 | while (!list_empty(&nn->blocked_locks_lru)) { | 
|  | 4820 | nbl = list_first_entry(&nn->blocked_locks_lru, | 
|  | 4821 | struct nfsd4_blocked_lock, nbl_lru); | 
|  | 4822 | if (time_after((unsigned long)nbl->nbl_time, | 
|  | 4823 | (unsigned long)cutoff)) { | 
|  | 4824 | t = nbl->nbl_time - cutoff; | 
|  | 4825 | new_timeo = min(new_timeo, t); | 
|  | 4826 | break; | 
|  | 4827 | } | 
|  | 4828 | list_move(&nbl->nbl_lru, &reaplist); | 
|  | 4829 | list_del_init(&nbl->nbl_list); | 
|  | 4830 | } | 
|  | 4831 | spin_unlock(&nn->blocked_locks_lock); | 
|  | 4832 |  | 
|  | 4833 | while (!list_empty(&reaplist)) { | 
|  | 4834 | nbl = list_first_entry(&reaplist, | 
|  | 4835 | struct nfsd4_blocked_lock, nbl_lru); | 
|  | 4836 | list_del_init(&nbl->nbl_lru); | 
|  | 4837 | posix_unblock_lock(&nbl->nbl_lock); | 
|  | 4838 | free_blocked_lock(nbl); | 
|  | 4839 | } | 
|  | 4840 | out: | 
|  | 4841 | new_timeo = max_t(time_t, new_timeo, NFSD_LAUNDROMAT_MINTIMEOUT); | 
|  | 4842 | return new_timeo; | 
|  | 4843 | } | 
|  | 4844 |  | 
|  | 4845 | static struct workqueue_struct *laundry_wq; | 
|  | 4846 | static void laundromat_main(struct work_struct *); | 
|  | 4847 |  | 
|  | 4848 | static void | 
|  | 4849 | laundromat_main(struct work_struct *laundry) | 
|  | 4850 | { | 
|  | 4851 | time_t t; | 
|  | 4852 | struct delayed_work *dwork = to_delayed_work(laundry); | 
|  | 4853 | struct nfsd_net *nn = container_of(dwork, struct nfsd_net, | 
|  | 4854 | laundromat_work); | 
|  | 4855 |  | 
|  | 4856 | t = nfs4_laundromat(nn); | 
|  | 4857 | dprintk("NFSD: laundromat_main - sleeping for %ld seconds\n", t); | 
|  | 4858 | queue_delayed_work(laundry_wq, &nn->laundromat_work, t*HZ); | 
|  | 4859 | } | 
|  | 4860 |  | 
|  | 4861 | static inline __be32 nfs4_check_fh(struct svc_fh *fhp, struct nfs4_stid *stp) | 
|  | 4862 | { | 
|  | 4863 | if (!fh_match(&fhp->fh_handle, &stp->sc_file->fi_fhandle)) | 
|  | 4864 | return nfserr_bad_stateid; | 
|  | 4865 | return nfs_ok; | 
|  | 4866 | } | 
|  | 4867 |  | 
|  | 4868 | static inline int | 
|  | 4869 | access_permit_read(struct nfs4_ol_stateid *stp) | 
|  | 4870 | { | 
|  | 4871 | return test_access(NFS4_SHARE_ACCESS_READ, stp) || | 
|  | 4872 | test_access(NFS4_SHARE_ACCESS_BOTH, stp) || | 
|  | 4873 | test_access(NFS4_SHARE_ACCESS_WRITE, stp); | 
|  | 4874 | } | 
|  | 4875 |  | 
|  | 4876 | static inline int | 
|  | 4877 | access_permit_write(struct nfs4_ol_stateid *stp) | 
|  | 4878 | { | 
|  | 4879 | return test_access(NFS4_SHARE_ACCESS_WRITE, stp) || | 
|  | 4880 | test_access(NFS4_SHARE_ACCESS_BOTH, stp); | 
|  | 4881 | } | 
|  | 4882 |  | 
|  | 4883 | static | 
|  | 4884 | __be32 nfs4_check_openmode(struct nfs4_ol_stateid *stp, int flags) | 
|  | 4885 | { | 
|  | 4886 | __be32 status = nfserr_openmode; | 
|  | 4887 |  | 
|  | 4888 | /* For lock stateid's, we test the parent open, not the lock: */ | 
|  | 4889 | if (stp->st_openstp) | 
|  | 4890 | stp = stp->st_openstp; | 
|  | 4891 | if ((flags & WR_STATE) && !access_permit_write(stp)) | 
|  | 4892 | goto out; | 
|  | 4893 | if ((flags & RD_STATE) && !access_permit_read(stp)) | 
|  | 4894 | goto out; | 
|  | 4895 | status = nfs_ok; | 
|  | 4896 | out: | 
|  | 4897 | return status; | 
|  | 4898 | } | 
|  | 4899 |  | 
|  | 4900 | static inline __be32 | 
|  | 4901 | check_special_stateids(struct net *net, svc_fh *current_fh, stateid_t *stateid, int flags) | 
|  | 4902 | { | 
|  | 4903 | if (ONE_STATEID(stateid) && (flags & RD_STATE)) | 
|  | 4904 | return nfs_ok; | 
|  | 4905 | else if (opens_in_grace(net)) { | 
|  | 4906 | /* Answer in remaining cases depends on existence of | 
|  | 4907 | * conflicting state; so we must wait out the grace period. */ | 
|  | 4908 | return nfserr_grace; | 
|  | 4909 | } else if (flags & WR_STATE) | 
|  | 4910 | return nfs4_share_conflict(current_fh, | 
|  | 4911 | NFS4_SHARE_DENY_WRITE); | 
|  | 4912 | else /* (flags & RD_STATE) && ZERO_STATEID(stateid) */ | 
|  | 4913 | return nfs4_share_conflict(current_fh, | 
|  | 4914 | NFS4_SHARE_DENY_READ); | 
|  | 4915 | } | 
|  | 4916 |  | 
|  | 4917 | /* | 
|  | 4918 | * Allow READ/WRITE during grace period on recovered state only for files | 
|  | 4919 | * that are not able to provide mandatory locking. | 
|  | 4920 | */ | 
|  | 4921 | static inline int | 
|  | 4922 | grace_disallows_io(struct net *net, struct inode *inode) | 
|  | 4923 | { | 
|  | 4924 | return opens_in_grace(net) && mandatory_lock(inode); | 
|  | 4925 | } | 
|  | 4926 |  | 
|  | 4927 | static __be32 check_stateid_generation(stateid_t *in, stateid_t *ref, bool has_session) | 
|  | 4928 | { | 
|  | 4929 | /* | 
|  | 4930 | * When sessions are used the stateid generation number is ignored | 
|  | 4931 | * when it is zero. | 
|  | 4932 | */ | 
|  | 4933 | if (has_session && in->si_generation == 0) | 
|  | 4934 | return nfs_ok; | 
|  | 4935 |  | 
|  | 4936 | if (in->si_generation == ref->si_generation) | 
|  | 4937 | return nfs_ok; | 
|  | 4938 |  | 
|  | 4939 | /* If the client sends us a stateid from the future, it's buggy: */ | 
|  | 4940 | if (nfsd4_stateid_generation_after(in, ref)) | 
|  | 4941 | return nfserr_bad_stateid; | 
|  | 4942 | /* | 
|  | 4943 | * However, we could see a stateid from the past, even from a | 
|  | 4944 | * non-buggy client.  For example, if the client sends a lock | 
|  | 4945 | * while some IO is outstanding, the lock may bump si_generation | 
|  | 4946 | * while the IO is still in flight.  The client could avoid that | 
|  | 4947 | * situation by waiting for responses on all the IO requests, | 
|  | 4948 | * but better performance may result in retrying IO that | 
|  | 4949 | * receives an old_stateid error if requests are rarely | 
|  | 4950 | * reordered in flight: | 
|  | 4951 | */ | 
|  | 4952 | return nfserr_old_stateid; | 
|  | 4953 | } | 
|  | 4954 |  | 
|  | 4955 | static __be32 nfsd4_stid_check_stateid_generation(stateid_t *in, struct nfs4_stid *s, bool has_session) | 
|  | 4956 | { | 
|  | 4957 | __be32 ret; | 
|  | 4958 |  | 
|  | 4959 | spin_lock(&s->sc_lock); | 
|  | 4960 | ret = nfsd4_verify_open_stid(s); | 
|  | 4961 | if (ret == nfs_ok) | 
|  | 4962 | ret = check_stateid_generation(in, &s->sc_stateid, has_session); | 
|  | 4963 | spin_unlock(&s->sc_lock); | 
|  | 4964 | return ret; | 
|  | 4965 | } | 
|  | 4966 |  | 
|  | 4967 | static __be32 nfsd4_check_openowner_confirmed(struct nfs4_ol_stateid *ols) | 
|  | 4968 | { | 
|  | 4969 | if (ols->st_stateowner->so_is_open_owner && | 
|  | 4970 | !(openowner(ols->st_stateowner)->oo_flags & NFS4_OO_CONFIRMED)) | 
|  | 4971 | return nfserr_bad_stateid; | 
|  | 4972 | return nfs_ok; | 
|  | 4973 | } | 
|  | 4974 |  | 
|  | 4975 | static __be32 nfsd4_validate_stateid(struct nfs4_client *cl, stateid_t *stateid) | 
|  | 4976 | { | 
|  | 4977 | struct nfs4_stid *s; | 
|  | 4978 | __be32 status = nfserr_bad_stateid; | 
|  | 4979 |  | 
|  | 4980 | if (ZERO_STATEID(stateid) || ONE_STATEID(stateid) || | 
|  | 4981 | CLOSE_STATEID(stateid)) | 
|  | 4982 | return status; | 
|  | 4983 | /* Client debugging aid. */ | 
|  | 4984 | if (!same_clid(&stateid->si_opaque.so_clid, &cl->cl_clientid)) { | 
|  | 4985 | char addr_str[INET6_ADDRSTRLEN]; | 
|  | 4986 | rpc_ntop((struct sockaddr *)&cl->cl_addr, addr_str, | 
|  | 4987 | sizeof(addr_str)); | 
|  | 4988 | pr_warn_ratelimited("NFSD: client %s testing state ID " | 
|  | 4989 | "with incorrect client ID\n", addr_str); | 
|  | 4990 | return status; | 
|  | 4991 | } | 
|  | 4992 | spin_lock(&cl->cl_lock); | 
|  | 4993 | s = find_stateid_locked(cl, stateid); | 
|  | 4994 | if (!s) | 
|  | 4995 | goto out_unlock; | 
|  | 4996 | status = nfsd4_stid_check_stateid_generation(stateid, s, 1); | 
|  | 4997 | if (status) | 
|  | 4998 | goto out_unlock; | 
|  | 4999 | switch (s->sc_type) { | 
|  | 5000 | case NFS4_DELEG_STID: | 
|  | 5001 | status = nfs_ok; | 
|  | 5002 | break; | 
|  | 5003 | case NFS4_REVOKED_DELEG_STID: | 
|  | 5004 | status = nfserr_deleg_revoked; | 
|  | 5005 | break; | 
|  | 5006 | case NFS4_OPEN_STID: | 
|  | 5007 | case NFS4_LOCK_STID: | 
|  | 5008 | status = nfsd4_check_openowner_confirmed(openlockstateid(s)); | 
|  | 5009 | break; | 
|  | 5010 | default: | 
|  | 5011 | printk("unknown stateid type %x\n", s->sc_type); | 
|  | 5012 | /* Fallthrough */ | 
|  | 5013 | case NFS4_CLOSED_STID: | 
|  | 5014 | case NFS4_CLOSED_DELEG_STID: | 
|  | 5015 | status = nfserr_bad_stateid; | 
|  | 5016 | } | 
|  | 5017 | out_unlock: | 
|  | 5018 | spin_unlock(&cl->cl_lock); | 
|  | 5019 | return status; | 
|  | 5020 | } | 
|  | 5021 |  | 
|  | 5022 | __be32 | 
|  | 5023 | nfsd4_lookup_stateid(struct nfsd4_compound_state *cstate, | 
|  | 5024 | stateid_t *stateid, unsigned char typemask, | 
|  | 5025 | struct nfs4_stid **s, struct nfsd_net *nn) | 
|  | 5026 | { | 
|  | 5027 | __be32 status; | 
|  | 5028 | bool return_revoked = false; | 
|  | 5029 |  | 
|  | 5030 | /* | 
|  | 5031 | *  only return revoked delegations if explicitly asked. | 
|  | 5032 | *  otherwise we report revoked or bad_stateid status. | 
|  | 5033 | */ | 
|  | 5034 | if (typemask & NFS4_REVOKED_DELEG_STID) | 
|  | 5035 | return_revoked = true; | 
|  | 5036 | else if (typemask & NFS4_DELEG_STID) | 
|  | 5037 | typemask |= NFS4_REVOKED_DELEG_STID; | 
|  | 5038 |  | 
|  | 5039 | if (ZERO_STATEID(stateid) || ONE_STATEID(stateid) || | 
|  | 5040 | CLOSE_STATEID(stateid)) | 
|  | 5041 | return nfserr_bad_stateid; | 
|  | 5042 | status = lookup_clientid(&stateid->si_opaque.so_clid, cstate, nn); | 
|  | 5043 | if (status == nfserr_stale_clientid) { | 
|  | 5044 | if (cstate->session) | 
|  | 5045 | return nfserr_bad_stateid; | 
|  | 5046 | return nfserr_stale_stateid; | 
|  | 5047 | } | 
|  | 5048 | if (status) | 
|  | 5049 | return status; | 
|  | 5050 | *s = find_stateid_by_type(cstate->clp, stateid, typemask); | 
|  | 5051 | if (!*s) | 
|  | 5052 | return nfserr_bad_stateid; | 
|  | 5053 | if (((*s)->sc_type == NFS4_REVOKED_DELEG_STID) && !return_revoked) { | 
|  | 5054 | nfs4_put_stid(*s); | 
|  | 5055 | if (cstate->minorversion) | 
|  | 5056 | return nfserr_deleg_revoked; | 
|  | 5057 | return nfserr_bad_stateid; | 
|  | 5058 | } | 
|  | 5059 | return nfs_ok; | 
|  | 5060 | } | 
|  | 5061 |  | 
|  | 5062 | static struct file * | 
|  | 5063 | nfs4_find_file(struct nfs4_stid *s, int flags) | 
|  | 5064 | { | 
|  | 5065 | if (!s) | 
|  | 5066 | return NULL; | 
|  | 5067 |  | 
|  | 5068 | switch (s->sc_type) { | 
|  | 5069 | case NFS4_DELEG_STID: | 
|  | 5070 | if (WARN_ON_ONCE(!s->sc_file->fi_deleg_file)) | 
|  | 5071 | return NULL; | 
|  | 5072 | return get_file(s->sc_file->fi_deleg_file); | 
|  | 5073 | case NFS4_OPEN_STID: | 
|  | 5074 | case NFS4_LOCK_STID: | 
|  | 5075 | if (flags & RD_STATE) | 
|  | 5076 | return find_readable_file(s->sc_file); | 
|  | 5077 | else | 
|  | 5078 | return find_writeable_file(s->sc_file); | 
|  | 5079 | break; | 
|  | 5080 | } | 
|  | 5081 |  | 
|  | 5082 | return NULL; | 
|  | 5083 | } | 
|  | 5084 |  | 
|  | 5085 | static __be32 | 
|  | 5086 | nfs4_check_olstateid(struct svc_fh *fhp, struct nfs4_ol_stateid *ols, int flags) | 
|  | 5087 | { | 
|  | 5088 | __be32 status; | 
|  | 5089 |  | 
|  | 5090 | status = nfsd4_check_openowner_confirmed(ols); | 
|  | 5091 | if (status) | 
|  | 5092 | return status; | 
|  | 5093 | return nfs4_check_openmode(ols, flags); | 
|  | 5094 | } | 
|  | 5095 |  | 
|  | 5096 | static __be32 | 
|  | 5097 | nfs4_check_file(struct svc_rqst *rqstp, struct svc_fh *fhp, struct nfs4_stid *s, | 
|  | 5098 | struct file **filpp, bool *tmp_file, int flags) | 
|  | 5099 | { | 
|  | 5100 | int acc = (flags & RD_STATE) ? NFSD_MAY_READ : NFSD_MAY_WRITE; | 
|  | 5101 | struct file *file; | 
|  | 5102 | __be32 status; | 
|  | 5103 |  | 
|  | 5104 | file = nfs4_find_file(s, flags); | 
|  | 5105 | if (file) { | 
|  | 5106 | status = nfsd_permission(rqstp, fhp->fh_export, fhp->fh_dentry, | 
|  | 5107 | acc | NFSD_MAY_OWNER_OVERRIDE); | 
|  | 5108 | if (status) { | 
|  | 5109 | fput(file); | 
|  | 5110 | return status; | 
|  | 5111 | } | 
|  | 5112 |  | 
|  | 5113 | *filpp = file; | 
|  | 5114 | } else { | 
|  | 5115 | status = nfsd_open(rqstp, fhp, S_IFREG, acc, filpp); | 
|  | 5116 | if (status) | 
|  | 5117 | return status; | 
|  | 5118 |  | 
|  | 5119 | if (tmp_file) | 
|  | 5120 | *tmp_file = true; | 
|  | 5121 | } | 
|  | 5122 |  | 
|  | 5123 | return 0; | 
|  | 5124 | } | 
|  | 5125 |  | 
|  | 5126 | /* | 
|  | 5127 | * Checks for stateid operations | 
|  | 5128 | */ | 
|  | 5129 | __be32 | 
|  | 5130 | nfs4_preprocess_stateid_op(struct svc_rqst *rqstp, | 
|  | 5131 | struct nfsd4_compound_state *cstate, struct svc_fh *fhp, | 
|  | 5132 | stateid_t *stateid, int flags, struct file **filpp, bool *tmp_file) | 
|  | 5133 | { | 
|  | 5134 | struct inode *ino = d_inode(fhp->fh_dentry); | 
|  | 5135 | struct net *net = SVC_NET(rqstp); | 
|  | 5136 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 5137 | struct nfs4_stid *s = NULL; | 
|  | 5138 | __be32 status; | 
|  | 5139 |  | 
|  | 5140 | if (filpp) | 
|  | 5141 | *filpp = NULL; | 
|  | 5142 | if (tmp_file) | 
|  | 5143 | *tmp_file = false; | 
|  | 5144 |  | 
|  | 5145 | if (grace_disallows_io(net, ino)) | 
|  | 5146 | return nfserr_grace; | 
|  | 5147 |  | 
|  | 5148 | if (ZERO_STATEID(stateid) || ONE_STATEID(stateid)) { | 
|  | 5149 | status = check_special_stateids(net, fhp, stateid, flags); | 
|  | 5150 | goto done; | 
|  | 5151 | } | 
|  | 5152 |  | 
|  | 5153 | status = nfsd4_lookup_stateid(cstate, stateid, | 
|  | 5154 | NFS4_DELEG_STID|NFS4_OPEN_STID|NFS4_LOCK_STID, | 
|  | 5155 | &s, nn); | 
|  | 5156 | if (status) | 
|  | 5157 | return status; | 
|  | 5158 | status = nfsd4_stid_check_stateid_generation(stateid, s, | 
|  | 5159 | nfsd4_has_session(cstate)); | 
|  | 5160 | if (status) | 
|  | 5161 | goto out; | 
|  | 5162 |  | 
|  | 5163 | switch (s->sc_type) { | 
|  | 5164 | case NFS4_DELEG_STID: | 
|  | 5165 | status = nfs4_check_delegmode(delegstateid(s), flags); | 
|  | 5166 | break; | 
|  | 5167 | case NFS4_OPEN_STID: | 
|  | 5168 | case NFS4_LOCK_STID: | 
|  | 5169 | status = nfs4_check_olstateid(fhp, openlockstateid(s), flags); | 
|  | 5170 | break; | 
|  | 5171 | default: | 
|  | 5172 | status = nfserr_bad_stateid; | 
|  | 5173 | break; | 
|  | 5174 | } | 
|  | 5175 | if (status) | 
|  | 5176 | goto out; | 
|  | 5177 | status = nfs4_check_fh(fhp, s); | 
|  | 5178 |  | 
|  | 5179 | done: | 
|  | 5180 | if (!status && filpp) | 
|  | 5181 | status = nfs4_check_file(rqstp, fhp, s, filpp, tmp_file, flags); | 
|  | 5182 | out: | 
|  | 5183 | if (s) | 
|  | 5184 | nfs4_put_stid(s); | 
|  | 5185 | return status; | 
|  | 5186 | } | 
|  | 5187 |  | 
|  | 5188 | /* | 
|  | 5189 | * Test if the stateid is valid | 
|  | 5190 | */ | 
|  | 5191 | __be32 | 
|  | 5192 | nfsd4_test_stateid(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 5193 | union nfsd4_op_u *u) | 
|  | 5194 | { | 
|  | 5195 | struct nfsd4_test_stateid *test_stateid = &u->test_stateid; | 
|  | 5196 | struct nfsd4_test_stateid_id *stateid; | 
|  | 5197 | struct nfs4_client *cl = cstate->session->se_client; | 
|  | 5198 |  | 
|  | 5199 | list_for_each_entry(stateid, &test_stateid->ts_stateid_list, ts_id_list) | 
|  | 5200 | stateid->ts_id_status = | 
|  | 5201 | nfsd4_validate_stateid(cl, &stateid->ts_id_stateid); | 
|  | 5202 |  | 
|  | 5203 | return nfs_ok; | 
|  | 5204 | } | 
|  | 5205 |  | 
|  | 5206 | static __be32 | 
|  | 5207 | nfsd4_free_lock_stateid(stateid_t *stateid, struct nfs4_stid *s) | 
|  | 5208 | { | 
|  | 5209 | struct nfs4_ol_stateid *stp = openlockstateid(s); | 
|  | 5210 | __be32 ret; | 
|  | 5211 |  | 
|  | 5212 | ret = nfsd4_lock_ol_stateid(stp); | 
|  | 5213 | if (ret) | 
|  | 5214 | goto out_put_stid; | 
|  | 5215 |  | 
|  | 5216 | ret = check_stateid_generation(stateid, &s->sc_stateid, 1); | 
|  | 5217 | if (ret) | 
|  | 5218 | goto out; | 
|  | 5219 |  | 
|  | 5220 | ret = nfserr_locks_held; | 
|  | 5221 | if (check_for_locks(stp->st_stid.sc_file, | 
|  | 5222 | lockowner(stp->st_stateowner))) | 
|  | 5223 | goto out; | 
|  | 5224 |  | 
|  | 5225 | release_lock_stateid(stp); | 
|  | 5226 | ret = nfs_ok; | 
|  | 5227 |  | 
|  | 5228 | out: | 
|  | 5229 | mutex_unlock(&stp->st_mutex); | 
|  | 5230 | out_put_stid: | 
|  | 5231 | nfs4_put_stid(s); | 
|  | 5232 | return ret; | 
|  | 5233 | } | 
|  | 5234 |  | 
|  | 5235 | __be32 | 
|  | 5236 | nfsd4_free_stateid(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 5237 | union nfsd4_op_u *u) | 
|  | 5238 | { | 
|  | 5239 | struct nfsd4_free_stateid *free_stateid = &u->free_stateid; | 
|  | 5240 | stateid_t *stateid = &free_stateid->fr_stateid; | 
|  | 5241 | struct nfs4_stid *s; | 
|  | 5242 | struct nfs4_delegation *dp; | 
|  | 5243 | struct nfs4_client *cl = cstate->session->se_client; | 
|  | 5244 | __be32 ret = nfserr_bad_stateid; | 
|  | 5245 |  | 
|  | 5246 | spin_lock(&cl->cl_lock); | 
|  | 5247 | s = find_stateid_locked(cl, stateid); | 
|  | 5248 | if (!s) | 
|  | 5249 | goto out_unlock; | 
|  | 5250 | spin_lock(&s->sc_lock); | 
|  | 5251 | switch (s->sc_type) { | 
|  | 5252 | case NFS4_DELEG_STID: | 
|  | 5253 | ret = nfserr_locks_held; | 
|  | 5254 | break; | 
|  | 5255 | case NFS4_OPEN_STID: | 
|  | 5256 | ret = check_stateid_generation(stateid, &s->sc_stateid, 1); | 
|  | 5257 | if (ret) | 
|  | 5258 | break; | 
|  | 5259 | ret = nfserr_locks_held; | 
|  | 5260 | break; | 
|  | 5261 | case NFS4_LOCK_STID: | 
|  | 5262 | spin_unlock(&s->sc_lock); | 
|  | 5263 | refcount_inc(&s->sc_count); | 
|  | 5264 | spin_unlock(&cl->cl_lock); | 
|  | 5265 | ret = nfsd4_free_lock_stateid(stateid, s); | 
|  | 5266 | goto out; | 
|  | 5267 | case NFS4_REVOKED_DELEG_STID: | 
|  | 5268 | spin_unlock(&s->sc_lock); | 
|  | 5269 | dp = delegstateid(s); | 
|  | 5270 | list_del_init(&dp->dl_recall_lru); | 
|  | 5271 | spin_unlock(&cl->cl_lock); | 
|  | 5272 | nfs4_put_stid(s); | 
|  | 5273 | ret = nfs_ok; | 
|  | 5274 | goto out; | 
|  | 5275 | /* Default falls through and returns nfserr_bad_stateid */ | 
|  | 5276 | } | 
|  | 5277 | spin_unlock(&s->sc_lock); | 
|  | 5278 | out_unlock: | 
|  | 5279 | spin_unlock(&cl->cl_lock); | 
|  | 5280 | out: | 
|  | 5281 | return ret; | 
|  | 5282 | } | 
|  | 5283 |  | 
|  | 5284 | static inline int | 
|  | 5285 | setlkflg (int type) | 
|  | 5286 | { | 
|  | 5287 | return (type == NFS4_READW_LT || type == NFS4_READ_LT) ? | 
|  | 5288 | RD_STATE : WR_STATE; | 
|  | 5289 | } | 
|  | 5290 |  | 
|  | 5291 | static __be32 nfs4_seqid_op_checks(struct nfsd4_compound_state *cstate, stateid_t *stateid, u32 seqid, struct nfs4_ol_stateid *stp) | 
|  | 5292 | { | 
|  | 5293 | struct svc_fh *current_fh = &cstate->current_fh; | 
|  | 5294 | struct nfs4_stateowner *sop = stp->st_stateowner; | 
|  | 5295 | __be32 status; | 
|  | 5296 |  | 
|  | 5297 | status = nfsd4_check_seqid(cstate, sop, seqid); | 
|  | 5298 | if (status) | 
|  | 5299 | return status; | 
|  | 5300 | status = nfsd4_lock_ol_stateid(stp); | 
|  | 5301 | if (status != nfs_ok) | 
|  | 5302 | return status; | 
|  | 5303 | status = check_stateid_generation(stateid, &stp->st_stid.sc_stateid, nfsd4_has_session(cstate)); | 
|  | 5304 | if (status == nfs_ok) | 
|  | 5305 | status = nfs4_check_fh(current_fh, &stp->st_stid); | 
|  | 5306 | if (status != nfs_ok) | 
|  | 5307 | mutex_unlock(&stp->st_mutex); | 
|  | 5308 | return status; | 
|  | 5309 | } | 
|  | 5310 |  | 
|  | 5311 | /* | 
|  | 5312 | * Checks for sequence id mutating operations. | 
|  | 5313 | */ | 
|  | 5314 | static __be32 | 
|  | 5315 | nfs4_preprocess_seqid_op(struct nfsd4_compound_state *cstate, u32 seqid, | 
|  | 5316 | stateid_t *stateid, char typemask, | 
|  | 5317 | struct nfs4_ol_stateid **stpp, | 
|  | 5318 | struct nfsd_net *nn) | 
|  | 5319 | { | 
|  | 5320 | __be32 status; | 
|  | 5321 | struct nfs4_stid *s; | 
|  | 5322 | struct nfs4_ol_stateid *stp = NULL; | 
|  | 5323 |  | 
|  | 5324 | dprintk("NFSD: %s: seqid=%d stateid = " STATEID_FMT "\n", __func__, | 
|  | 5325 | seqid, STATEID_VAL(stateid)); | 
|  | 5326 |  | 
|  | 5327 | *stpp = NULL; | 
|  | 5328 | status = nfsd4_lookup_stateid(cstate, stateid, typemask, &s, nn); | 
|  | 5329 | if (status) | 
|  | 5330 | return status; | 
|  | 5331 | stp = openlockstateid(s); | 
|  | 5332 | nfsd4_cstate_assign_replay(cstate, stp->st_stateowner); | 
|  | 5333 |  | 
|  | 5334 | status = nfs4_seqid_op_checks(cstate, stateid, seqid, stp); | 
|  | 5335 | if (!status) | 
|  | 5336 | *stpp = stp; | 
|  | 5337 | else | 
|  | 5338 | nfs4_put_stid(&stp->st_stid); | 
|  | 5339 | return status; | 
|  | 5340 | } | 
|  | 5341 |  | 
|  | 5342 | static __be32 nfs4_preprocess_confirmed_seqid_op(struct nfsd4_compound_state *cstate, u32 seqid, | 
|  | 5343 | stateid_t *stateid, struct nfs4_ol_stateid **stpp, struct nfsd_net *nn) | 
|  | 5344 | { | 
|  | 5345 | __be32 status; | 
|  | 5346 | struct nfs4_openowner *oo; | 
|  | 5347 | struct nfs4_ol_stateid *stp; | 
|  | 5348 |  | 
|  | 5349 | status = nfs4_preprocess_seqid_op(cstate, seqid, stateid, | 
|  | 5350 | NFS4_OPEN_STID, &stp, nn); | 
|  | 5351 | if (status) | 
|  | 5352 | return status; | 
|  | 5353 | oo = openowner(stp->st_stateowner); | 
|  | 5354 | if (!(oo->oo_flags & NFS4_OO_CONFIRMED)) { | 
|  | 5355 | mutex_unlock(&stp->st_mutex); | 
|  | 5356 | nfs4_put_stid(&stp->st_stid); | 
|  | 5357 | return nfserr_bad_stateid; | 
|  | 5358 | } | 
|  | 5359 | *stpp = stp; | 
|  | 5360 | return nfs_ok; | 
|  | 5361 | } | 
|  | 5362 |  | 
|  | 5363 | __be32 | 
|  | 5364 | nfsd4_open_confirm(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 5365 | union nfsd4_op_u *u) | 
|  | 5366 | { | 
|  | 5367 | struct nfsd4_open_confirm *oc = &u->open_confirm; | 
|  | 5368 | __be32 status; | 
|  | 5369 | struct nfs4_openowner *oo; | 
|  | 5370 | struct nfs4_ol_stateid *stp; | 
|  | 5371 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 5372 |  | 
|  | 5373 | dprintk("NFSD: nfsd4_open_confirm on file %pd\n", | 
|  | 5374 | cstate->current_fh.fh_dentry); | 
|  | 5375 |  | 
|  | 5376 | status = fh_verify(rqstp, &cstate->current_fh, S_IFREG, 0); | 
|  | 5377 | if (status) | 
|  | 5378 | return status; | 
|  | 5379 |  | 
|  | 5380 | status = nfs4_preprocess_seqid_op(cstate, | 
|  | 5381 | oc->oc_seqid, &oc->oc_req_stateid, | 
|  | 5382 | NFS4_OPEN_STID, &stp, nn); | 
|  | 5383 | if (status) | 
|  | 5384 | goto out; | 
|  | 5385 | oo = openowner(stp->st_stateowner); | 
|  | 5386 | status = nfserr_bad_stateid; | 
|  | 5387 | if (oo->oo_flags & NFS4_OO_CONFIRMED) { | 
|  | 5388 | mutex_unlock(&stp->st_mutex); | 
|  | 5389 | goto put_stateid; | 
|  | 5390 | } | 
|  | 5391 | oo->oo_flags |= NFS4_OO_CONFIRMED; | 
|  | 5392 | nfs4_inc_and_copy_stateid(&oc->oc_resp_stateid, &stp->st_stid); | 
|  | 5393 | mutex_unlock(&stp->st_mutex); | 
|  | 5394 | dprintk("NFSD: %s: success, seqid=%d stateid=" STATEID_FMT "\n", | 
|  | 5395 | __func__, oc->oc_seqid, STATEID_VAL(&stp->st_stid.sc_stateid)); | 
|  | 5396 |  | 
|  | 5397 | nfsd4_client_record_create(oo->oo_owner.so_client); | 
|  | 5398 | status = nfs_ok; | 
|  | 5399 | put_stateid: | 
|  | 5400 | nfs4_put_stid(&stp->st_stid); | 
|  | 5401 | out: | 
|  | 5402 | nfsd4_bump_seqid(cstate, status); | 
|  | 5403 | return status; | 
|  | 5404 | } | 
|  | 5405 |  | 
|  | 5406 | static inline void nfs4_stateid_downgrade_bit(struct nfs4_ol_stateid *stp, u32 access) | 
|  | 5407 | { | 
|  | 5408 | if (!test_access(access, stp)) | 
|  | 5409 | return; | 
|  | 5410 | nfs4_file_put_access(stp->st_stid.sc_file, access); | 
|  | 5411 | clear_access(access, stp); | 
|  | 5412 | } | 
|  | 5413 |  | 
|  | 5414 | static inline void nfs4_stateid_downgrade(struct nfs4_ol_stateid *stp, u32 to_access) | 
|  | 5415 | { | 
|  | 5416 | switch (to_access) { | 
|  | 5417 | case NFS4_SHARE_ACCESS_READ: | 
|  | 5418 | nfs4_stateid_downgrade_bit(stp, NFS4_SHARE_ACCESS_WRITE); | 
|  | 5419 | nfs4_stateid_downgrade_bit(stp, NFS4_SHARE_ACCESS_BOTH); | 
|  | 5420 | break; | 
|  | 5421 | case NFS4_SHARE_ACCESS_WRITE: | 
|  | 5422 | nfs4_stateid_downgrade_bit(stp, NFS4_SHARE_ACCESS_READ); | 
|  | 5423 | nfs4_stateid_downgrade_bit(stp, NFS4_SHARE_ACCESS_BOTH); | 
|  | 5424 | break; | 
|  | 5425 | case NFS4_SHARE_ACCESS_BOTH: | 
|  | 5426 | break; | 
|  | 5427 | default: | 
|  | 5428 | WARN_ON_ONCE(1); | 
|  | 5429 | } | 
|  | 5430 | } | 
|  | 5431 |  | 
|  | 5432 | __be32 | 
|  | 5433 | nfsd4_open_downgrade(struct svc_rqst *rqstp, | 
|  | 5434 | struct nfsd4_compound_state *cstate, union nfsd4_op_u *u) | 
|  | 5435 | { | 
|  | 5436 | struct nfsd4_open_downgrade *od = &u->open_downgrade; | 
|  | 5437 | __be32 status; | 
|  | 5438 | struct nfs4_ol_stateid *stp; | 
|  | 5439 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 5440 |  | 
|  | 5441 | dprintk("NFSD: nfsd4_open_downgrade on file %pd\n", | 
|  | 5442 | cstate->current_fh.fh_dentry); | 
|  | 5443 |  | 
|  | 5444 | /* We don't yet support WANT bits: */ | 
|  | 5445 | if (od->od_deleg_want) | 
|  | 5446 | dprintk("NFSD: %s: od_deleg_want=0x%x ignored\n", __func__, | 
|  | 5447 | od->od_deleg_want); | 
|  | 5448 |  | 
|  | 5449 | status = nfs4_preprocess_confirmed_seqid_op(cstate, od->od_seqid, | 
|  | 5450 | &od->od_stateid, &stp, nn); | 
|  | 5451 | if (status) | 
|  | 5452 | goto out; | 
|  | 5453 | status = nfserr_inval; | 
|  | 5454 | if (!test_access(od->od_share_access, stp)) { | 
|  | 5455 | dprintk("NFSD: access not a subset of current bitmap: 0x%hhx, input access=%08x\n", | 
|  | 5456 | stp->st_access_bmap, od->od_share_access); | 
|  | 5457 | goto put_stateid; | 
|  | 5458 | } | 
|  | 5459 | if (!test_deny(od->od_share_deny, stp)) { | 
|  | 5460 | dprintk("NFSD: deny not a subset of current bitmap: 0x%hhx, input deny=%08x\n", | 
|  | 5461 | stp->st_deny_bmap, od->od_share_deny); | 
|  | 5462 | goto put_stateid; | 
|  | 5463 | } | 
|  | 5464 | nfs4_stateid_downgrade(stp, od->od_share_access); | 
|  | 5465 | reset_union_bmap_deny(od->od_share_deny, stp); | 
|  | 5466 | nfs4_inc_and_copy_stateid(&od->od_stateid, &stp->st_stid); | 
|  | 5467 | status = nfs_ok; | 
|  | 5468 | put_stateid: | 
|  | 5469 | mutex_unlock(&stp->st_mutex); | 
|  | 5470 | nfs4_put_stid(&stp->st_stid); | 
|  | 5471 | out: | 
|  | 5472 | nfsd4_bump_seqid(cstate, status); | 
|  | 5473 | return status; | 
|  | 5474 | } | 
|  | 5475 |  | 
|  | 5476 | static void nfsd4_close_open_stateid(struct nfs4_ol_stateid *s) | 
|  | 5477 | { | 
|  | 5478 | struct nfs4_client *clp = s->st_stid.sc_client; | 
|  | 5479 | bool unhashed; | 
|  | 5480 | LIST_HEAD(reaplist); | 
|  | 5481 |  | 
|  | 5482 | spin_lock(&clp->cl_lock); | 
|  | 5483 | unhashed = unhash_open_stateid(s, &reaplist); | 
|  | 5484 |  | 
|  | 5485 | if (clp->cl_minorversion) { | 
|  | 5486 | if (unhashed) | 
|  | 5487 | put_ol_stateid_locked(s, &reaplist); | 
|  | 5488 | spin_unlock(&clp->cl_lock); | 
|  | 5489 | free_ol_stateid_reaplist(&reaplist); | 
|  | 5490 | } else { | 
|  | 5491 | spin_unlock(&clp->cl_lock); | 
|  | 5492 | free_ol_stateid_reaplist(&reaplist); | 
|  | 5493 | if (unhashed) | 
|  | 5494 | move_to_close_lru(s, clp->net); | 
|  | 5495 | } | 
|  | 5496 | } | 
|  | 5497 |  | 
|  | 5498 | /* | 
|  | 5499 | * nfs4_unlock_state() called after encode | 
|  | 5500 | */ | 
|  | 5501 | __be32 | 
|  | 5502 | nfsd4_close(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 5503 | union nfsd4_op_u *u) | 
|  | 5504 | { | 
|  | 5505 | struct nfsd4_close *close = &u->close; | 
|  | 5506 | __be32 status; | 
|  | 5507 | struct nfs4_ol_stateid *stp; | 
|  | 5508 | struct net *net = SVC_NET(rqstp); | 
|  | 5509 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 5510 |  | 
|  | 5511 | dprintk("NFSD: nfsd4_close on file %pd\n", | 
|  | 5512 | cstate->current_fh.fh_dentry); | 
|  | 5513 |  | 
|  | 5514 | status = nfs4_preprocess_seqid_op(cstate, close->cl_seqid, | 
|  | 5515 | &close->cl_stateid, | 
|  | 5516 | NFS4_OPEN_STID|NFS4_CLOSED_STID, | 
|  | 5517 | &stp, nn); | 
|  | 5518 | nfsd4_bump_seqid(cstate, status); | 
|  | 5519 | if (status) | 
|  | 5520 | goto out; | 
|  | 5521 |  | 
|  | 5522 | stp->st_stid.sc_type = NFS4_CLOSED_STID; | 
|  | 5523 |  | 
|  | 5524 | /* | 
|  | 5525 | * Technically we don't _really_ have to increment or copy it, since | 
|  | 5526 | * it should just be gone after this operation and we clobber the | 
|  | 5527 | * copied value below, but we continue to do so here just to ensure | 
|  | 5528 | * that racing ops see that there was a state change. | 
|  | 5529 | */ | 
|  | 5530 | nfs4_inc_and_copy_stateid(&close->cl_stateid, &stp->st_stid); | 
|  | 5531 |  | 
|  | 5532 | nfsd4_close_open_stateid(stp); | 
|  | 5533 | mutex_unlock(&stp->st_mutex); | 
|  | 5534 |  | 
|  | 5535 | /* v4.1+ suggests that we send a special stateid in here, since the | 
|  | 5536 | * clients should just ignore this anyway. Since this is not useful | 
|  | 5537 | * for v4.0 clients either, we set it to the special close_stateid | 
|  | 5538 | * universally. | 
|  | 5539 | * | 
|  | 5540 | * See RFC5661 section 18.2.4, and RFC7530 section 16.2.5 | 
|  | 5541 | */ | 
|  | 5542 | memcpy(&close->cl_stateid, &close_stateid, sizeof(close->cl_stateid)); | 
|  | 5543 |  | 
|  | 5544 | /* put reference from nfs4_preprocess_seqid_op */ | 
|  | 5545 | nfs4_put_stid(&stp->st_stid); | 
|  | 5546 | out: | 
|  | 5547 | return status; | 
|  | 5548 | } | 
|  | 5549 |  | 
|  | 5550 | __be32 | 
|  | 5551 | nfsd4_delegreturn(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 5552 | union nfsd4_op_u *u) | 
|  | 5553 | { | 
|  | 5554 | struct nfsd4_delegreturn *dr = &u->delegreturn; | 
|  | 5555 | struct nfs4_delegation *dp; | 
|  | 5556 | stateid_t *stateid = &dr->dr_stateid; | 
|  | 5557 | struct nfs4_stid *s; | 
|  | 5558 | __be32 status; | 
|  | 5559 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 5560 |  | 
|  | 5561 | if ((status = fh_verify(rqstp, &cstate->current_fh, S_IFREG, 0))) | 
|  | 5562 | return status; | 
|  | 5563 |  | 
|  | 5564 | status = nfsd4_lookup_stateid(cstate, stateid, NFS4_DELEG_STID, &s, nn); | 
|  | 5565 | if (status) | 
|  | 5566 | goto out; | 
|  | 5567 | dp = delegstateid(s); | 
|  | 5568 | status = nfsd4_stid_check_stateid_generation(stateid, &dp->dl_stid, nfsd4_has_session(cstate)); | 
|  | 5569 | if (status) | 
|  | 5570 | goto put_stateid; | 
|  | 5571 |  | 
|  | 5572 | destroy_delegation(dp); | 
|  | 5573 | put_stateid: | 
|  | 5574 | nfs4_put_stid(&dp->dl_stid); | 
|  | 5575 | out: | 
|  | 5576 | return status; | 
|  | 5577 | } | 
|  | 5578 |  | 
|  | 5579 | static inline u64 | 
|  | 5580 | end_offset(u64 start, u64 len) | 
|  | 5581 | { | 
|  | 5582 | u64 end; | 
|  | 5583 |  | 
|  | 5584 | end = start + len; | 
|  | 5585 | return end >= start ? end: NFS4_MAX_UINT64; | 
|  | 5586 | } | 
|  | 5587 |  | 
|  | 5588 | /* last octet in a range */ | 
|  | 5589 | static inline u64 | 
|  | 5590 | last_byte_offset(u64 start, u64 len) | 
|  | 5591 | { | 
|  | 5592 | u64 end; | 
|  | 5593 |  | 
|  | 5594 | WARN_ON_ONCE(!len); | 
|  | 5595 | end = start + len; | 
|  | 5596 | return end > start ? end - 1: NFS4_MAX_UINT64; | 
|  | 5597 | } | 
|  | 5598 |  | 
|  | 5599 | /* | 
|  | 5600 | * TODO: Linux file offsets are _signed_ 64-bit quantities, which means that | 
|  | 5601 | * we can't properly handle lock requests that go beyond the (2^63 - 1)-th | 
|  | 5602 | * byte, because of sign extension problems.  Since NFSv4 calls for 64-bit | 
|  | 5603 | * locking, this prevents us from being completely protocol-compliant.  The | 
|  | 5604 | * real solution to this problem is to start using unsigned file offsets in | 
|  | 5605 | * the VFS, but this is a very deep change! | 
|  | 5606 | */ | 
|  | 5607 | static inline void | 
|  | 5608 | nfs4_transform_lock_offset(struct file_lock *lock) | 
|  | 5609 | { | 
|  | 5610 | if (lock->fl_start < 0) | 
|  | 5611 | lock->fl_start = OFFSET_MAX; | 
|  | 5612 | if (lock->fl_end < 0) | 
|  | 5613 | lock->fl_end = OFFSET_MAX; | 
|  | 5614 | } | 
|  | 5615 |  | 
|  | 5616 | static fl_owner_t | 
|  | 5617 | nfsd4_fl_get_owner(fl_owner_t owner) | 
|  | 5618 | { | 
|  | 5619 | struct nfs4_lockowner *lo = (struct nfs4_lockowner *)owner; | 
|  | 5620 |  | 
|  | 5621 | nfs4_get_stateowner(&lo->lo_owner); | 
|  | 5622 | return owner; | 
|  | 5623 | } | 
|  | 5624 |  | 
|  | 5625 | static void | 
|  | 5626 | nfsd4_fl_put_owner(fl_owner_t owner) | 
|  | 5627 | { | 
|  | 5628 | struct nfs4_lockowner *lo = (struct nfs4_lockowner *)owner; | 
|  | 5629 |  | 
|  | 5630 | if (lo) | 
|  | 5631 | nfs4_put_stateowner(&lo->lo_owner); | 
|  | 5632 | } | 
|  | 5633 |  | 
|  | 5634 | static void | 
|  | 5635 | nfsd4_lm_notify(struct file_lock *fl) | 
|  | 5636 | { | 
|  | 5637 | struct nfs4_lockowner		*lo = (struct nfs4_lockowner *)fl->fl_owner; | 
|  | 5638 | struct net			*net = lo->lo_owner.so_client->net; | 
|  | 5639 | struct nfsd_net			*nn = net_generic(net, nfsd_net_id); | 
|  | 5640 | struct nfsd4_blocked_lock	*nbl = container_of(fl, | 
|  | 5641 | struct nfsd4_blocked_lock, nbl_lock); | 
|  | 5642 | bool queue = false; | 
|  | 5643 |  | 
|  | 5644 | /* An empty list means that something else is going to be using it */ | 
|  | 5645 | spin_lock(&nn->blocked_locks_lock); | 
|  | 5646 | if (!list_empty(&nbl->nbl_list)) { | 
|  | 5647 | list_del_init(&nbl->nbl_list); | 
|  | 5648 | list_del_init(&nbl->nbl_lru); | 
|  | 5649 | queue = true; | 
|  | 5650 | } | 
|  | 5651 | spin_unlock(&nn->blocked_locks_lock); | 
|  | 5652 |  | 
|  | 5653 | if (queue) | 
|  | 5654 | nfsd4_run_cb(&nbl->nbl_cb); | 
|  | 5655 | } | 
|  | 5656 |  | 
|  | 5657 | static const struct lock_manager_operations nfsd_posix_mng_ops  = { | 
|  | 5658 | .lm_notify = nfsd4_lm_notify, | 
|  | 5659 | .lm_get_owner = nfsd4_fl_get_owner, | 
|  | 5660 | .lm_put_owner = nfsd4_fl_put_owner, | 
|  | 5661 | }; | 
|  | 5662 |  | 
|  | 5663 | static inline void | 
|  | 5664 | nfs4_set_lock_denied(struct file_lock *fl, struct nfsd4_lock_denied *deny) | 
|  | 5665 | { | 
|  | 5666 | struct nfs4_lockowner *lo; | 
|  | 5667 |  | 
|  | 5668 | if (fl->fl_lmops == &nfsd_posix_mng_ops) { | 
|  | 5669 | lo = (struct nfs4_lockowner *) fl->fl_owner; | 
|  | 5670 | deny->ld_owner.data = kmemdup(lo->lo_owner.so_owner.data, | 
|  | 5671 | lo->lo_owner.so_owner.len, GFP_KERNEL); | 
|  | 5672 | if (!deny->ld_owner.data) | 
|  | 5673 | /* We just don't care that much */ | 
|  | 5674 | goto nevermind; | 
|  | 5675 | deny->ld_owner.len = lo->lo_owner.so_owner.len; | 
|  | 5676 | deny->ld_clientid = lo->lo_owner.so_client->cl_clientid; | 
|  | 5677 | } else { | 
|  | 5678 | nevermind: | 
|  | 5679 | deny->ld_owner.len = 0; | 
|  | 5680 | deny->ld_owner.data = NULL; | 
|  | 5681 | deny->ld_clientid.cl_boot = 0; | 
|  | 5682 | deny->ld_clientid.cl_id = 0; | 
|  | 5683 | } | 
|  | 5684 | deny->ld_start = fl->fl_start; | 
|  | 5685 | deny->ld_length = NFS4_MAX_UINT64; | 
|  | 5686 | if (fl->fl_end != NFS4_MAX_UINT64) | 
|  | 5687 | deny->ld_length = fl->fl_end - fl->fl_start + 1; | 
|  | 5688 | deny->ld_type = NFS4_READ_LT; | 
|  | 5689 | if (fl->fl_type != F_RDLCK) | 
|  | 5690 | deny->ld_type = NFS4_WRITE_LT; | 
|  | 5691 | } | 
|  | 5692 |  | 
|  | 5693 | static struct nfs4_lockowner * | 
|  | 5694 | find_lockowner_str_locked(struct nfs4_client *clp, struct xdr_netobj *owner) | 
|  | 5695 | { | 
|  | 5696 | unsigned int strhashval = ownerstr_hashval(owner); | 
|  | 5697 | struct nfs4_stateowner *so; | 
|  | 5698 |  | 
|  | 5699 | lockdep_assert_held(&clp->cl_lock); | 
|  | 5700 |  | 
|  | 5701 | list_for_each_entry(so, &clp->cl_ownerstr_hashtbl[strhashval], | 
|  | 5702 | so_strhash) { | 
|  | 5703 | if (so->so_is_open_owner) | 
|  | 5704 | continue; | 
|  | 5705 | if (same_owner_str(so, owner)) | 
|  | 5706 | return lockowner(nfs4_get_stateowner(so)); | 
|  | 5707 | } | 
|  | 5708 | return NULL; | 
|  | 5709 | } | 
|  | 5710 |  | 
|  | 5711 | static struct nfs4_lockowner * | 
|  | 5712 | find_lockowner_str(struct nfs4_client *clp, struct xdr_netobj *owner) | 
|  | 5713 | { | 
|  | 5714 | struct nfs4_lockowner *lo; | 
|  | 5715 |  | 
|  | 5716 | spin_lock(&clp->cl_lock); | 
|  | 5717 | lo = find_lockowner_str_locked(clp, owner); | 
|  | 5718 | spin_unlock(&clp->cl_lock); | 
|  | 5719 | return lo; | 
|  | 5720 | } | 
|  | 5721 |  | 
|  | 5722 | static void nfs4_unhash_lockowner(struct nfs4_stateowner *sop) | 
|  | 5723 | { | 
|  | 5724 | unhash_lockowner_locked(lockowner(sop)); | 
|  | 5725 | } | 
|  | 5726 |  | 
|  | 5727 | static void nfs4_free_lockowner(struct nfs4_stateowner *sop) | 
|  | 5728 | { | 
|  | 5729 | struct nfs4_lockowner *lo = lockowner(sop); | 
|  | 5730 |  | 
|  | 5731 | kmem_cache_free(lockowner_slab, lo); | 
|  | 5732 | } | 
|  | 5733 |  | 
|  | 5734 | static const struct nfs4_stateowner_operations lockowner_ops = { | 
|  | 5735 | .so_unhash =	nfs4_unhash_lockowner, | 
|  | 5736 | .so_free =	nfs4_free_lockowner, | 
|  | 5737 | }; | 
|  | 5738 |  | 
|  | 5739 | /* | 
|  | 5740 | * Alloc a lock owner structure. | 
|  | 5741 | * Called in nfsd4_lock - therefore, OPEN and OPEN_CONFIRM (if needed) has | 
|  | 5742 | * occurred. | 
|  | 5743 | * | 
|  | 5744 | * strhashval = ownerstr_hashval | 
|  | 5745 | */ | 
|  | 5746 | static struct nfs4_lockowner * | 
|  | 5747 | alloc_init_lock_stateowner(unsigned int strhashval, struct nfs4_client *clp, | 
|  | 5748 | struct nfs4_ol_stateid *open_stp, | 
|  | 5749 | struct nfsd4_lock *lock) | 
|  | 5750 | { | 
|  | 5751 | struct nfs4_lockowner *lo, *ret; | 
|  | 5752 |  | 
|  | 5753 | lo = alloc_stateowner(lockowner_slab, &lock->lk_new_owner, clp); | 
|  | 5754 | if (!lo) | 
|  | 5755 | return NULL; | 
|  | 5756 | INIT_LIST_HEAD(&lo->lo_blocked); | 
|  | 5757 | INIT_LIST_HEAD(&lo->lo_owner.so_stateids); | 
|  | 5758 | lo->lo_owner.so_is_open_owner = 0; | 
|  | 5759 | lo->lo_owner.so_seqid = lock->lk_new_lock_seqid; | 
|  | 5760 | lo->lo_owner.so_ops = &lockowner_ops; | 
|  | 5761 | spin_lock(&clp->cl_lock); | 
|  | 5762 | ret = find_lockowner_str_locked(clp, &lock->lk_new_owner); | 
|  | 5763 | if (ret == NULL) { | 
|  | 5764 | list_add(&lo->lo_owner.so_strhash, | 
|  | 5765 | &clp->cl_ownerstr_hashtbl[strhashval]); | 
|  | 5766 | ret = lo; | 
|  | 5767 | } else | 
|  | 5768 | nfs4_free_stateowner(&lo->lo_owner); | 
|  | 5769 |  | 
|  | 5770 | spin_unlock(&clp->cl_lock); | 
|  | 5771 | return ret; | 
|  | 5772 | } | 
|  | 5773 |  | 
|  | 5774 | static struct nfs4_ol_stateid * | 
|  | 5775 | find_lock_stateid(struct nfs4_lockowner *lo, struct nfs4_file *fp) | 
|  | 5776 | { | 
|  | 5777 | struct nfs4_ol_stateid *lst; | 
|  | 5778 | struct nfs4_client *clp = lo->lo_owner.so_client; | 
|  | 5779 |  | 
|  | 5780 | lockdep_assert_held(&clp->cl_lock); | 
|  | 5781 |  | 
|  | 5782 | list_for_each_entry(lst, &lo->lo_owner.so_stateids, st_perstateowner) { | 
|  | 5783 | if (lst->st_stid.sc_type != NFS4_LOCK_STID) | 
|  | 5784 | continue; | 
|  | 5785 | if (lst->st_stid.sc_file == fp) { | 
|  | 5786 | refcount_inc(&lst->st_stid.sc_count); | 
|  | 5787 | return lst; | 
|  | 5788 | } | 
|  | 5789 | } | 
|  | 5790 | return NULL; | 
|  | 5791 | } | 
|  | 5792 |  | 
|  | 5793 | static struct nfs4_ol_stateid * | 
|  | 5794 | init_lock_stateid(struct nfs4_ol_stateid *stp, struct nfs4_lockowner *lo, | 
|  | 5795 | struct nfs4_file *fp, struct inode *inode, | 
|  | 5796 | struct nfs4_ol_stateid *open_stp) | 
|  | 5797 | { | 
|  | 5798 | struct nfs4_client *clp = lo->lo_owner.so_client; | 
|  | 5799 | struct nfs4_ol_stateid *retstp; | 
|  | 5800 |  | 
|  | 5801 | mutex_init(&stp->st_mutex); | 
|  | 5802 | mutex_lock_nested(&stp->st_mutex, OPEN_STATEID_MUTEX); | 
|  | 5803 | retry: | 
|  | 5804 | spin_lock(&clp->cl_lock); | 
|  | 5805 | spin_lock(&fp->fi_lock); | 
|  | 5806 | retstp = find_lock_stateid(lo, fp); | 
|  | 5807 | if (retstp) | 
|  | 5808 | goto out_unlock; | 
|  | 5809 |  | 
|  | 5810 | refcount_inc(&stp->st_stid.sc_count); | 
|  | 5811 | stp->st_stid.sc_type = NFS4_LOCK_STID; | 
|  | 5812 | stp->st_stateowner = nfs4_get_stateowner(&lo->lo_owner); | 
|  | 5813 | get_nfs4_file(fp); | 
|  | 5814 | stp->st_stid.sc_file = fp; | 
|  | 5815 | stp->st_access_bmap = 0; | 
|  | 5816 | stp->st_deny_bmap = open_stp->st_deny_bmap; | 
|  | 5817 | stp->st_openstp = open_stp; | 
|  | 5818 | list_add(&stp->st_locks, &open_stp->st_locks); | 
|  | 5819 | list_add(&stp->st_perstateowner, &lo->lo_owner.so_stateids); | 
|  | 5820 | list_add(&stp->st_perfile, &fp->fi_stateids); | 
|  | 5821 | out_unlock: | 
|  | 5822 | spin_unlock(&fp->fi_lock); | 
|  | 5823 | spin_unlock(&clp->cl_lock); | 
|  | 5824 | if (retstp) { | 
|  | 5825 | if (nfsd4_lock_ol_stateid(retstp) != nfs_ok) { | 
|  | 5826 | nfs4_put_stid(&retstp->st_stid); | 
|  | 5827 | goto retry; | 
|  | 5828 | } | 
|  | 5829 | /* To keep mutex tracking happy */ | 
|  | 5830 | mutex_unlock(&stp->st_mutex); | 
|  | 5831 | stp = retstp; | 
|  | 5832 | } | 
|  | 5833 | return stp; | 
|  | 5834 | } | 
|  | 5835 |  | 
|  | 5836 | static struct nfs4_ol_stateid * | 
|  | 5837 | find_or_create_lock_stateid(struct nfs4_lockowner *lo, struct nfs4_file *fi, | 
|  | 5838 | struct inode *inode, struct nfs4_ol_stateid *ost, | 
|  | 5839 | bool *new) | 
|  | 5840 | { | 
|  | 5841 | struct nfs4_stid *ns = NULL; | 
|  | 5842 | struct nfs4_ol_stateid *lst; | 
|  | 5843 | struct nfs4_openowner *oo = openowner(ost->st_stateowner); | 
|  | 5844 | struct nfs4_client *clp = oo->oo_owner.so_client; | 
|  | 5845 |  | 
|  | 5846 | *new = false; | 
|  | 5847 | spin_lock(&clp->cl_lock); | 
|  | 5848 | lst = find_lock_stateid(lo, fi); | 
|  | 5849 | spin_unlock(&clp->cl_lock); | 
|  | 5850 | if (lst != NULL) { | 
|  | 5851 | if (nfsd4_lock_ol_stateid(lst) == nfs_ok) | 
|  | 5852 | goto out; | 
|  | 5853 | nfs4_put_stid(&lst->st_stid); | 
|  | 5854 | } | 
|  | 5855 | ns = nfs4_alloc_stid(clp, stateid_slab, nfs4_free_lock_stateid); | 
|  | 5856 | if (ns == NULL) | 
|  | 5857 | return NULL; | 
|  | 5858 |  | 
|  | 5859 | lst = init_lock_stateid(openlockstateid(ns), lo, fi, inode, ost); | 
|  | 5860 | if (lst == openlockstateid(ns)) | 
|  | 5861 | *new = true; | 
|  | 5862 | else | 
|  | 5863 | nfs4_put_stid(ns); | 
|  | 5864 | out: | 
|  | 5865 | return lst; | 
|  | 5866 | } | 
|  | 5867 |  | 
|  | 5868 | static int | 
|  | 5869 | check_lock_length(u64 offset, u64 length) | 
|  | 5870 | { | 
|  | 5871 | return ((length == 0) || ((length != NFS4_MAX_UINT64) && | 
|  | 5872 | (length > ~offset))); | 
|  | 5873 | } | 
|  | 5874 |  | 
|  | 5875 | static void get_lock_access(struct nfs4_ol_stateid *lock_stp, u32 access) | 
|  | 5876 | { | 
|  | 5877 | struct nfs4_file *fp = lock_stp->st_stid.sc_file; | 
|  | 5878 |  | 
|  | 5879 | lockdep_assert_held(&fp->fi_lock); | 
|  | 5880 |  | 
|  | 5881 | if (test_access(access, lock_stp)) | 
|  | 5882 | return; | 
|  | 5883 | __nfs4_file_get_access(fp, access); | 
|  | 5884 | set_access(access, lock_stp); | 
|  | 5885 | } | 
|  | 5886 |  | 
|  | 5887 | static __be32 | 
|  | 5888 | lookup_or_create_lock_state(struct nfsd4_compound_state *cstate, | 
|  | 5889 | struct nfs4_ol_stateid *ost, | 
|  | 5890 | struct nfsd4_lock *lock, | 
|  | 5891 | struct nfs4_ol_stateid **plst, bool *new) | 
|  | 5892 | { | 
|  | 5893 | __be32 status; | 
|  | 5894 | struct nfs4_file *fi = ost->st_stid.sc_file; | 
|  | 5895 | struct nfs4_openowner *oo = openowner(ost->st_stateowner); | 
|  | 5896 | struct nfs4_client *cl = oo->oo_owner.so_client; | 
|  | 5897 | struct inode *inode = d_inode(cstate->current_fh.fh_dentry); | 
|  | 5898 | struct nfs4_lockowner *lo; | 
|  | 5899 | struct nfs4_ol_stateid *lst; | 
|  | 5900 | unsigned int strhashval; | 
|  | 5901 |  | 
|  | 5902 | lo = find_lockowner_str(cl, &lock->lk_new_owner); | 
|  | 5903 | if (!lo) { | 
|  | 5904 | strhashval = ownerstr_hashval(&lock->lk_new_owner); | 
|  | 5905 | lo = alloc_init_lock_stateowner(strhashval, cl, ost, lock); | 
|  | 5906 | if (lo == NULL) | 
|  | 5907 | return nfserr_jukebox; | 
|  | 5908 | } else { | 
|  | 5909 | /* with an existing lockowner, seqids must be the same */ | 
|  | 5910 | status = nfserr_bad_seqid; | 
|  | 5911 | if (!cstate->minorversion && | 
|  | 5912 | lock->lk_new_lock_seqid != lo->lo_owner.so_seqid) | 
|  | 5913 | goto out; | 
|  | 5914 | } | 
|  | 5915 |  | 
|  | 5916 | lst = find_or_create_lock_stateid(lo, fi, inode, ost, new); | 
|  | 5917 | if (lst == NULL) { | 
|  | 5918 | status = nfserr_jukebox; | 
|  | 5919 | goto out; | 
|  | 5920 | } | 
|  | 5921 |  | 
|  | 5922 | status = nfs_ok; | 
|  | 5923 | *plst = lst; | 
|  | 5924 | out: | 
|  | 5925 | nfs4_put_stateowner(&lo->lo_owner); | 
|  | 5926 | return status; | 
|  | 5927 | } | 
|  | 5928 |  | 
|  | 5929 | /* | 
|  | 5930 | *  LOCK operation | 
|  | 5931 | */ | 
|  | 5932 | __be32 | 
|  | 5933 | nfsd4_lock(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 5934 | union nfsd4_op_u *u) | 
|  | 5935 | { | 
|  | 5936 | struct nfsd4_lock *lock = &u->lock; | 
|  | 5937 | struct nfs4_openowner *open_sop = NULL; | 
|  | 5938 | struct nfs4_lockowner *lock_sop = NULL; | 
|  | 5939 | struct nfs4_ol_stateid *lock_stp = NULL; | 
|  | 5940 | struct nfs4_ol_stateid *open_stp = NULL; | 
|  | 5941 | struct nfs4_file *fp; | 
|  | 5942 | struct file *filp = NULL; | 
|  | 5943 | struct nfsd4_blocked_lock *nbl = NULL; | 
|  | 5944 | struct file_lock *file_lock = NULL; | 
|  | 5945 | struct file_lock *conflock = NULL; | 
|  | 5946 | __be32 status = 0; | 
|  | 5947 | int lkflg; | 
|  | 5948 | int err; | 
|  | 5949 | bool new = false; | 
|  | 5950 | unsigned char fl_type; | 
|  | 5951 | unsigned int fl_flags = FL_POSIX; | 
|  | 5952 | struct net *net = SVC_NET(rqstp); | 
|  | 5953 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 5954 |  | 
|  | 5955 | dprintk("NFSD: nfsd4_lock: start=%Ld length=%Ld\n", | 
|  | 5956 | (long long) lock->lk_offset, | 
|  | 5957 | (long long) lock->lk_length); | 
|  | 5958 |  | 
|  | 5959 | if (check_lock_length(lock->lk_offset, lock->lk_length)) | 
|  | 5960 | return nfserr_inval; | 
|  | 5961 |  | 
|  | 5962 | if ((status = fh_verify(rqstp, &cstate->current_fh, | 
|  | 5963 | S_IFREG, NFSD_MAY_LOCK))) { | 
|  | 5964 | dprintk("NFSD: nfsd4_lock: permission denied!\n"); | 
|  | 5965 | return status; | 
|  | 5966 | } | 
|  | 5967 |  | 
|  | 5968 | if (lock->lk_is_new) { | 
|  | 5969 | if (nfsd4_has_session(cstate)) | 
|  | 5970 | /* See rfc 5661 18.10.3: given clientid is ignored: */ | 
|  | 5971 | memcpy(&lock->lk_new_clientid, | 
|  | 5972 | &cstate->session->se_client->cl_clientid, | 
|  | 5973 | sizeof(clientid_t)); | 
|  | 5974 |  | 
|  | 5975 | status = nfserr_stale_clientid; | 
|  | 5976 | if (STALE_CLIENTID(&lock->lk_new_clientid, nn)) | 
|  | 5977 | goto out; | 
|  | 5978 |  | 
|  | 5979 | /* validate and update open stateid and open seqid */ | 
|  | 5980 | status = nfs4_preprocess_confirmed_seqid_op(cstate, | 
|  | 5981 | lock->lk_new_open_seqid, | 
|  | 5982 | &lock->lk_new_open_stateid, | 
|  | 5983 | &open_stp, nn); | 
|  | 5984 | if (status) | 
|  | 5985 | goto out; | 
|  | 5986 | mutex_unlock(&open_stp->st_mutex); | 
|  | 5987 | open_sop = openowner(open_stp->st_stateowner); | 
|  | 5988 | status = nfserr_bad_stateid; | 
|  | 5989 | if (!same_clid(&open_sop->oo_owner.so_client->cl_clientid, | 
|  | 5990 | &lock->lk_new_clientid)) | 
|  | 5991 | goto out; | 
|  | 5992 | status = lookup_or_create_lock_state(cstate, open_stp, lock, | 
|  | 5993 | &lock_stp, &new); | 
|  | 5994 | } else { | 
|  | 5995 | status = nfs4_preprocess_seqid_op(cstate, | 
|  | 5996 | lock->lk_old_lock_seqid, | 
|  | 5997 | &lock->lk_old_lock_stateid, | 
|  | 5998 | NFS4_LOCK_STID, &lock_stp, nn); | 
|  | 5999 | } | 
|  | 6000 | if (status) | 
|  | 6001 | goto out; | 
|  | 6002 | lock_sop = lockowner(lock_stp->st_stateowner); | 
|  | 6003 |  | 
|  | 6004 | lkflg = setlkflg(lock->lk_type); | 
|  | 6005 | status = nfs4_check_openmode(lock_stp, lkflg); | 
|  | 6006 | if (status) | 
|  | 6007 | goto out; | 
|  | 6008 |  | 
|  | 6009 | status = nfserr_grace; | 
|  | 6010 | if (locks_in_grace(net) && !lock->lk_reclaim) | 
|  | 6011 | goto out; | 
|  | 6012 | status = nfserr_no_grace; | 
|  | 6013 | if (!locks_in_grace(net) && lock->lk_reclaim) | 
|  | 6014 | goto out; | 
|  | 6015 |  | 
|  | 6016 | fp = lock_stp->st_stid.sc_file; | 
|  | 6017 | switch (lock->lk_type) { | 
|  | 6018 | case NFS4_READW_LT: | 
|  | 6019 | if (nfsd4_has_session(cstate)) | 
|  | 6020 | fl_flags |= FL_SLEEP; | 
|  | 6021 | /* Fallthrough */ | 
|  | 6022 | case NFS4_READ_LT: | 
|  | 6023 | spin_lock(&fp->fi_lock); | 
|  | 6024 | filp = find_readable_file_locked(fp); | 
|  | 6025 | if (filp) | 
|  | 6026 | get_lock_access(lock_stp, NFS4_SHARE_ACCESS_READ); | 
|  | 6027 | spin_unlock(&fp->fi_lock); | 
|  | 6028 | fl_type = F_RDLCK; | 
|  | 6029 | break; | 
|  | 6030 | case NFS4_WRITEW_LT: | 
|  | 6031 | if (nfsd4_has_session(cstate)) | 
|  | 6032 | fl_flags |= FL_SLEEP; | 
|  | 6033 | /* Fallthrough */ | 
|  | 6034 | case NFS4_WRITE_LT: | 
|  | 6035 | spin_lock(&fp->fi_lock); | 
|  | 6036 | filp = find_writeable_file_locked(fp); | 
|  | 6037 | if (filp) | 
|  | 6038 | get_lock_access(lock_stp, NFS4_SHARE_ACCESS_WRITE); | 
|  | 6039 | spin_unlock(&fp->fi_lock); | 
|  | 6040 | fl_type = F_WRLCK; | 
|  | 6041 | break; | 
|  | 6042 | default: | 
|  | 6043 | status = nfserr_inval; | 
|  | 6044 | goto out; | 
|  | 6045 | } | 
|  | 6046 |  | 
|  | 6047 | if (!filp) { | 
|  | 6048 | status = nfserr_openmode; | 
|  | 6049 | goto out; | 
|  | 6050 | } | 
|  | 6051 |  | 
|  | 6052 | nbl = find_or_allocate_block(lock_sop, &fp->fi_fhandle, nn); | 
|  | 6053 | if (!nbl) { | 
|  | 6054 | dprintk("NFSD: %s: unable to allocate block!\n", __func__); | 
|  | 6055 | status = nfserr_jukebox; | 
|  | 6056 | goto out; | 
|  | 6057 | } | 
|  | 6058 |  | 
|  | 6059 | file_lock = &nbl->nbl_lock; | 
|  | 6060 | file_lock->fl_type = fl_type; | 
|  | 6061 | file_lock->fl_owner = (fl_owner_t)lockowner(nfs4_get_stateowner(&lock_sop->lo_owner)); | 
|  | 6062 | file_lock->fl_pid = current->tgid; | 
|  | 6063 | file_lock->fl_file = filp; | 
|  | 6064 | file_lock->fl_flags = fl_flags; | 
|  | 6065 | file_lock->fl_lmops = &nfsd_posix_mng_ops; | 
|  | 6066 | file_lock->fl_start = lock->lk_offset; | 
|  | 6067 | file_lock->fl_end = last_byte_offset(lock->lk_offset, lock->lk_length); | 
|  | 6068 | nfs4_transform_lock_offset(file_lock); | 
|  | 6069 |  | 
|  | 6070 | conflock = locks_alloc_lock(); | 
|  | 6071 | if (!conflock) { | 
|  | 6072 | dprintk("NFSD: %s: unable to allocate lock!\n", __func__); | 
|  | 6073 | status = nfserr_jukebox; | 
|  | 6074 | goto out; | 
|  | 6075 | } | 
|  | 6076 |  | 
|  | 6077 | if (fl_flags & FL_SLEEP) { | 
|  | 6078 | nbl->nbl_time = jiffies; | 
|  | 6079 | spin_lock(&nn->blocked_locks_lock); | 
|  | 6080 | list_add_tail(&nbl->nbl_list, &lock_sop->lo_blocked); | 
|  | 6081 | list_add_tail(&nbl->nbl_lru, &nn->blocked_locks_lru); | 
|  | 6082 | spin_unlock(&nn->blocked_locks_lock); | 
|  | 6083 | } | 
|  | 6084 |  | 
|  | 6085 | err = vfs_lock_file(filp, F_SETLK, file_lock, conflock); | 
|  | 6086 | switch (err) { | 
|  | 6087 | case 0: /* success! */ | 
|  | 6088 | nfs4_inc_and_copy_stateid(&lock->lk_resp_stateid, &lock_stp->st_stid); | 
|  | 6089 | status = 0; | 
|  | 6090 | if (lock->lk_reclaim) | 
|  | 6091 | nn->somebody_reclaimed = true; | 
|  | 6092 | break; | 
|  | 6093 | case FILE_LOCK_DEFERRED: | 
|  | 6094 | nbl = NULL; | 
|  | 6095 | /* Fallthrough */ | 
|  | 6096 | case -EAGAIN:		/* conflock holds conflicting lock */ | 
|  | 6097 | status = nfserr_denied; | 
|  | 6098 | dprintk("NFSD: nfsd4_lock: conflicting lock found!\n"); | 
|  | 6099 | nfs4_set_lock_denied(conflock, &lock->lk_denied); | 
|  | 6100 | break; | 
|  | 6101 | case -EDEADLK: | 
|  | 6102 | status = nfserr_deadlock; | 
|  | 6103 | break; | 
|  | 6104 | default: | 
|  | 6105 | dprintk("NFSD: nfsd4_lock: vfs_lock_file() failed! status %d\n",err); | 
|  | 6106 | status = nfserrno(err); | 
|  | 6107 | break; | 
|  | 6108 | } | 
|  | 6109 | out: | 
|  | 6110 | if (nbl) { | 
|  | 6111 | /* dequeue it if we queued it before */ | 
|  | 6112 | if (fl_flags & FL_SLEEP) { | 
|  | 6113 | spin_lock(&nn->blocked_locks_lock); | 
|  | 6114 | list_del_init(&nbl->nbl_list); | 
|  | 6115 | list_del_init(&nbl->nbl_lru); | 
|  | 6116 | spin_unlock(&nn->blocked_locks_lock); | 
|  | 6117 | } | 
|  | 6118 | free_blocked_lock(nbl); | 
|  | 6119 | } | 
|  | 6120 | if (filp) | 
|  | 6121 | fput(filp); | 
|  | 6122 | if (lock_stp) { | 
|  | 6123 | /* Bump seqid manually if the 4.0 replay owner is openowner */ | 
|  | 6124 | if (cstate->replay_owner && | 
|  | 6125 | cstate->replay_owner != &lock_sop->lo_owner && | 
|  | 6126 | seqid_mutating_err(ntohl(status))) | 
|  | 6127 | lock_sop->lo_owner.so_seqid++; | 
|  | 6128 |  | 
|  | 6129 | /* | 
|  | 6130 | * If this is a new, never-before-used stateid, and we are | 
|  | 6131 | * returning an error, then just go ahead and release it. | 
|  | 6132 | */ | 
|  | 6133 | if (status && new) | 
|  | 6134 | release_lock_stateid(lock_stp); | 
|  | 6135 |  | 
|  | 6136 | mutex_unlock(&lock_stp->st_mutex); | 
|  | 6137 |  | 
|  | 6138 | nfs4_put_stid(&lock_stp->st_stid); | 
|  | 6139 | } | 
|  | 6140 | if (open_stp) | 
|  | 6141 | nfs4_put_stid(&open_stp->st_stid); | 
|  | 6142 | nfsd4_bump_seqid(cstate, status); | 
|  | 6143 | if (conflock) | 
|  | 6144 | locks_free_lock(conflock); | 
|  | 6145 | return status; | 
|  | 6146 | } | 
|  | 6147 |  | 
|  | 6148 | /* | 
|  | 6149 | * The NFSv4 spec allows a client to do a LOCKT without holding an OPEN, | 
|  | 6150 | * so we do a temporary open here just to get an open file to pass to | 
|  | 6151 | * vfs_test_lock.  (Arguably perhaps test_lock should be done with an | 
|  | 6152 | * inode operation.) | 
|  | 6153 | */ | 
|  | 6154 | static __be32 nfsd_test_lock(struct svc_rqst *rqstp, struct svc_fh *fhp, struct file_lock *lock) | 
|  | 6155 | { | 
|  | 6156 | struct file *file; | 
|  | 6157 | __be32 err = nfsd_open(rqstp, fhp, S_IFREG, NFSD_MAY_READ, &file); | 
|  | 6158 | if (!err) { | 
|  | 6159 | err = nfserrno(vfs_test_lock(file, lock)); | 
|  | 6160 | fput(file); | 
|  | 6161 | } | 
|  | 6162 | return err; | 
|  | 6163 | } | 
|  | 6164 |  | 
|  | 6165 | /* | 
|  | 6166 | * LOCKT operation | 
|  | 6167 | */ | 
|  | 6168 | __be32 | 
|  | 6169 | nfsd4_lockt(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 6170 | union nfsd4_op_u *u) | 
|  | 6171 | { | 
|  | 6172 | struct nfsd4_lockt *lockt = &u->lockt; | 
|  | 6173 | struct file_lock *file_lock = NULL; | 
|  | 6174 | struct nfs4_lockowner *lo = NULL; | 
|  | 6175 | __be32 status; | 
|  | 6176 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 6177 |  | 
|  | 6178 | if (locks_in_grace(SVC_NET(rqstp))) | 
|  | 6179 | return nfserr_grace; | 
|  | 6180 |  | 
|  | 6181 | if (check_lock_length(lockt->lt_offset, lockt->lt_length)) | 
|  | 6182 | return nfserr_inval; | 
|  | 6183 |  | 
|  | 6184 | if (!nfsd4_has_session(cstate)) { | 
|  | 6185 | status = lookup_clientid(&lockt->lt_clientid, cstate, nn); | 
|  | 6186 | if (status) | 
|  | 6187 | goto out; | 
|  | 6188 | } | 
|  | 6189 |  | 
|  | 6190 | if ((status = fh_verify(rqstp, &cstate->current_fh, S_IFREG, 0))) | 
|  | 6191 | goto out; | 
|  | 6192 |  | 
|  | 6193 | file_lock = locks_alloc_lock(); | 
|  | 6194 | if (!file_lock) { | 
|  | 6195 | dprintk("NFSD: %s: unable to allocate lock!\n", __func__); | 
|  | 6196 | status = nfserr_jukebox; | 
|  | 6197 | goto out; | 
|  | 6198 | } | 
|  | 6199 |  | 
|  | 6200 | switch (lockt->lt_type) { | 
|  | 6201 | case NFS4_READ_LT: | 
|  | 6202 | case NFS4_READW_LT: | 
|  | 6203 | file_lock->fl_type = F_RDLCK; | 
|  | 6204 | break; | 
|  | 6205 | case NFS4_WRITE_LT: | 
|  | 6206 | case NFS4_WRITEW_LT: | 
|  | 6207 | file_lock->fl_type = F_WRLCK; | 
|  | 6208 | break; | 
|  | 6209 | default: | 
|  | 6210 | dprintk("NFSD: nfs4_lockt: bad lock type!\n"); | 
|  | 6211 | status = nfserr_inval; | 
|  | 6212 | goto out; | 
|  | 6213 | } | 
|  | 6214 |  | 
|  | 6215 | lo = find_lockowner_str(cstate->clp, &lockt->lt_owner); | 
|  | 6216 | if (lo) | 
|  | 6217 | file_lock->fl_owner = (fl_owner_t)lo; | 
|  | 6218 | file_lock->fl_pid = current->tgid; | 
|  | 6219 | file_lock->fl_flags = FL_POSIX; | 
|  | 6220 |  | 
|  | 6221 | file_lock->fl_start = lockt->lt_offset; | 
|  | 6222 | file_lock->fl_end = last_byte_offset(lockt->lt_offset, lockt->lt_length); | 
|  | 6223 |  | 
|  | 6224 | nfs4_transform_lock_offset(file_lock); | 
|  | 6225 |  | 
|  | 6226 | status = nfsd_test_lock(rqstp, &cstate->current_fh, file_lock); | 
|  | 6227 | if (status) | 
|  | 6228 | goto out; | 
|  | 6229 |  | 
|  | 6230 | if (file_lock->fl_type != F_UNLCK) { | 
|  | 6231 | status = nfserr_denied; | 
|  | 6232 | nfs4_set_lock_denied(file_lock, &lockt->lt_denied); | 
|  | 6233 | } | 
|  | 6234 | out: | 
|  | 6235 | if (lo) | 
|  | 6236 | nfs4_put_stateowner(&lo->lo_owner); | 
|  | 6237 | if (file_lock) | 
|  | 6238 | locks_free_lock(file_lock); | 
|  | 6239 | return status; | 
|  | 6240 | } | 
|  | 6241 |  | 
|  | 6242 | __be32 | 
|  | 6243 | nfsd4_locku(struct svc_rqst *rqstp, struct nfsd4_compound_state *cstate, | 
|  | 6244 | union nfsd4_op_u *u) | 
|  | 6245 | { | 
|  | 6246 | struct nfsd4_locku *locku = &u->locku; | 
|  | 6247 | struct nfs4_ol_stateid *stp; | 
|  | 6248 | struct file *filp = NULL; | 
|  | 6249 | struct file_lock *file_lock = NULL; | 
|  | 6250 | __be32 status; | 
|  | 6251 | int err; | 
|  | 6252 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 6253 |  | 
|  | 6254 | dprintk("NFSD: nfsd4_locku: start=%Ld length=%Ld\n", | 
|  | 6255 | (long long) locku->lu_offset, | 
|  | 6256 | (long long) locku->lu_length); | 
|  | 6257 |  | 
|  | 6258 | if (check_lock_length(locku->lu_offset, locku->lu_length)) | 
|  | 6259 | return nfserr_inval; | 
|  | 6260 |  | 
|  | 6261 | status = nfs4_preprocess_seqid_op(cstate, locku->lu_seqid, | 
|  | 6262 | &locku->lu_stateid, NFS4_LOCK_STID, | 
|  | 6263 | &stp, nn); | 
|  | 6264 | if (status) | 
|  | 6265 | goto out; | 
|  | 6266 | filp = find_any_file(stp->st_stid.sc_file); | 
|  | 6267 | if (!filp) { | 
|  | 6268 | status = nfserr_lock_range; | 
|  | 6269 | goto put_stateid; | 
|  | 6270 | } | 
|  | 6271 | file_lock = locks_alloc_lock(); | 
|  | 6272 | if (!file_lock) { | 
|  | 6273 | dprintk("NFSD: %s: unable to allocate lock!\n", __func__); | 
|  | 6274 | status = nfserr_jukebox; | 
|  | 6275 | goto fput; | 
|  | 6276 | } | 
|  | 6277 |  | 
|  | 6278 | file_lock->fl_type = F_UNLCK; | 
|  | 6279 | file_lock->fl_owner = (fl_owner_t)lockowner(nfs4_get_stateowner(stp->st_stateowner)); | 
|  | 6280 | file_lock->fl_pid = current->tgid; | 
|  | 6281 | file_lock->fl_file = filp; | 
|  | 6282 | file_lock->fl_flags = FL_POSIX; | 
|  | 6283 | file_lock->fl_lmops = &nfsd_posix_mng_ops; | 
|  | 6284 | file_lock->fl_start = locku->lu_offset; | 
|  | 6285 |  | 
|  | 6286 | file_lock->fl_end = last_byte_offset(locku->lu_offset, | 
|  | 6287 | locku->lu_length); | 
|  | 6288 | nfs4_transform_lock_offset(file_lock); | 
|  | 6289 |  | 
|  | 6290 | err = vfs_lock_file(filp, F_SETLK, file_lock, NULL); | 
|  | 6291 | if (err) { | 
|  | 6292 | dprintk("NFSD: nfs4_locku: vfs_lock_file failed!\n"); | 
|  | 6293 | goto out_nfserr; | 
|  | 6294 | } | 
|  | 6295 | nfs4_inc_and_copy_stateid(&locku->lu_stateid, &stp->st_stid); | 
|  | 6296 | fput: | 
|  | 6297 | fput(filp); | 
|  | 6298 | put_stateid: | 
|  | 6299 | mutex_unlock(&stp->st_mutex); | 
|  | 6300 | nfs4_put_stid(&stp->st_stid); | 
|  | 6301 | out: | 
|  | 6302 | nfsd4_bump_seqid(cstate, status); | 
|  | 6303 | if (file_lock) | 
|  | 6304 | locks_free_lock(file_lock); | 
|  | 6305 | return status; | 
|  | 6306 |  | 
|  | 6307 | out_nfserr: | 
|  | 6308 | status = nfserrno(err); | 
|  | 6309 | goto fput; | 
|  | 6310 | } | 
|  | 6311 |  | 
|  | 6312 | /* | 
|  | 6313 | * returns | 
|  | 6314 | * 	true:  locks held by lockowner | 
|  | 6315 | * 	false: no locks held by lockowner | 
|  | 6316 | */ | 
|  | 6317 | static bool | 
|  | 6318 | check_for_locks(struct nfs4_file *fp, struct nfs4_lockowner *lowner) | 
|  | 6319 | { | 
|  | 6320 | struct file_lock *fl; | 
|  | 6321 | int status = false; | 
|  | 6322 | struct file *filp = find_any_file(fp); | 
|  | 6323 | struct inode *inode; | 
|  | 6324 | struct file_lock_context *flctx; | 
|  | 6325 |  | 
|  | 6326 | if (!filp) { | 
|  | 6327 | /* Any valid lock stateid should have some sort of access */ | 
|  | 6328 | WARN_ON_ONCE(1); | 
|  | 6329 | return status; | 
|  | 6330 | } | 
|  | 6331 |  | 
|  | 6332 | inode = locks_inode(filp); | 
|  | 6333 | flctx = inode->i_flctx; | 
|  | 6334 |  | 
|  | 6335 | if (flctx && !list_empty_careful(&flctx->flc_posix)) { | 
|  | 6336 | spin_lock(&flctx->flc_lock); | 
|  | 6337 | list_for_each_entry(fl, &flctx->flc_posix, fl_list) { | 
|  | 6338 | if (fl->fl_owner == (fl_owner_t)lowner) { | 
|  | 6339 | status = true; | 
|  | 6340 | break; | 
|  | 6341 | } | 
|  | 6342 | } | 
|  | 6343 | spin_unlock(&flctx->flc_lock); | 
|  | 6344 | } | 
|  | 6345 | fput(filp); | 
|  | 6346 | return status; | 
|  | 6347 | } | 
|  | 6348 |  | 
|  | 6349 | __be32 | 
|  | 6350 | nfsd4_release_lockowner(struct svc_rqst *rqstp, | 
|  | 6351 | struct nfsd4_compound_state *cstate, | 
|  | 6352 | union nfsd4_op_u *u) | 
|  | 6353 | { | 
|  | 6354 | struct nfsd4_release_lockowner *rlockowner = &u->release_lockowner; | 
|  | 6355 | clientid_t *clid = &rlockowner->rl_clientid; | 
|  | 6356 | struct nfs4_stateowner *sop; | 
|  | 6357 | struct nfs4_lockowner *lo = NULL; | 
|  | 6358 | struct nfs4_ol_stateid *stp; | 
|  | 6359 | struct xdr_netobj *owner = &rlockowner->rl_owner; | 
|  | 6360 | unsigned int hashval = ownerstr_hashval(owner); | 
|  | 6361 | __be32 status; | 
|  | 6362 | struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id); | 
|  | 6363 | struct nfs4_client *clp; | 
|  | 6364 | LIST_HEAD (reaplist); | 
|  | 6365 |  | 
|  | 6366 | dprintk("nfsd4_release_lockowner clientid: (%08x/%08x):\n", | 
|  | 6367 | clid->cl_boot, clid->cl_id); | 
|  | 6368 |  | 
|  | 6369 | status = lookup_clientid(clid, cstate, nn); | 
|  | 6370 | if (status) | 
|  | 6371 | return status; | 
|  | 6372 |  | 
|  | 6373 | clp = cstate->clp; | 
|  | 6374 | /* Find the matching lock stateowner */ | 
|  | 6375 | spin_lock(&clp->cl_lock); | 
|  | 6376 | list_for_each_entry(sop, &clp->cl_ownerstr_hashtbl[hashval], | 
|  | 6377 | so_strhash) { | 
|  | 6378 |  | 
|  | 6379 | if (sop->so_is_open_owner || !same_owner_str(sop, owner)) | 
|  | 6380 | continue; | 
|  | 6381 |  | 
|  | 6382 | /* see if there are still any locks associated with it */ | 
|  | 6383 | lo = lockowner(sop); | 
|  | 6384 | list_for_each_entry(stp, &sop->so_stateids, st_perstateowner) { | 
|  | 6385 | if (check_for_locks(stp->st_stid.sc_file, lo)) { | 
|  | 6386 | status = nfserr_locks_held; | 
|  | 6387 | spin_unlock(&clp->cl_lock); | 
|  | 6388 | return status; | 
|  | 6389 | } | 
|  | 6390 | } | 
|  | 6391 |  | 
|  | 6392 | nfs4_get_stateowner(sop); | 
|  | 6393 | break; | 
|  | 6394 | } | 
|  | 6395 | if (!lo) { | 
|  | 6396 | spin_unlock(&clp->cl_lock); | 
|  | 6397 | return status; | 
|  | 6398 | } | 
|  | 6399 |  | 
|  | 6400 | unhash_lockowner_locked(lo); | 
|  | 6401 | while (!list_empty(&lo->lo_owner.so_stateids)) { | 
|  | 6402 | stp = list_first_entry(&lo->lo_owner.so_stateids, | 
|  | 6403 | struct nfs4_ol_stateid, | 
|  | 6404 | st_perstateowner); | 
|  | 6405 | WARN_ON(!unhash_lock_stateid(stp)); | 
|  | 6406 | put_ol_stateid_locked(stp, &reaplist); | 
|  | 6407 | } | 
|  | 6408 | spin_unlock(&clp->cl_lock); | 
|  | 6409 | free_ol_stateid_reaplist(&reaplist); | 
|  | 6410 | remove_blocked_locks(lo); | 
|  | 6411 | nfs4_put_stateowner(&lo->lo_owner); | 
|  | 6412 |  | 
|  | 6413 | return status; | 
|  | 6414 | } | 
|  | 6415 |  | 
|  | 6416 | static inline struct nfs4_client_reclaim * | 
|  | 6417 | alloc_reclaim(void) | 
|  | 6418 | { | 
|  | 6419 | return kmalloc(sizeof(struct nfs4_client_reclaim), GFP_KERNEL); | 
|  | 6420 | } | 
|  | 6421 |  | 
|  | 6422 | bool | 
|  | 6423 | nfs4_has_reclaimed_state(const char *name, struct nfsd_net *nn) | 
|  | 6424 | { | 
|  | 6425 | struct nfs4_client_reclaim *crp; | 
|  | 6426 |  | 
|  | 6427 | crp = nfsd4_find_reclaim_client(name, nn); | 
|  | 6428 | return (crp && crp->cr_clp); | 
|  | 6429 | } | 
|  | 6430 |  | 
|  | 6431 | /* | 
|  | 6432 | * failure => all reset bets are off, nfserr_no_grace... | 
|  | 6433 | */ | 
|  | 6434 | struct nfs4_client_reclaim * | 
|  | 6435 | nfs4_client_to_reclaim(const char *name, struct nfsd_net *nn) | 
|  | 6436 | { | 
|  | 6437 | unsigned int strhashval; | 
|  | 6438 | struct nfs4_client_reclaim *crp; | 
|  | 6439 |  | 
|  | 6440 | dprintk("NFSD nfs4_client_to_reclaim NAME: %.*s\n", HEXDIR_LEN, name); | 
|  | 6441 | crp = alloc_reclaim(); | 
|  | 6442 | if (crp) { | 
|  | 6443 | strhashval = clientstr_hashval(name); | 
|  | 6444 | INIT_LIST_HEAD(&crp->cr_strhash); | 
|  | 6445 | list_add(&crp->cr_strhash, &nn->reclaim_str_hashtbl[strhashval]); | 
|  | 6446 | memcpy(crp->cr_recdir, name, HEXDIR_LEN); | 
|  | 6447 | crp->cr_clp = NULL; | 
|  | 6448 | nn->reclaim_str_hashtbl_size++; | 
|  | 6449 | } | 
|  | 6450 | return crp; | 
|  | 6451 | } | 
|  | 6452 |  | 
|  | 6453 | void | 
|  | 6454 | nfs4_remove_reclaim_record(struct nfs4_client_reclaim *crp, struct nfsd_net *nn) | 
|  | 6455 | { | 
|  | 6456 | list_del(&crp->cr_strhash); | 
|  | 6457 | kfree(crp); | 
|  | 6458 | nn->reclaim_str_hashtbl_size--; | 
|  | 6459 | } | 
|  | 6460 |  | 
|  | 6461 | void | 
|  | 6462 | nfs4_release_reclaim(struct nfsd_net *nn) | 
|  | 6463 | { | 
|  | 6464 | struct nfs4_client_reclaim *crp = NULL; | 
|  | 6465 | int i; | 
|  | 6466 |  | 
|  | 6467 | for (i = 0; i < CLIENT_HASH_SIZE; i++) { | 
|  | 6468 | while (!list_empty(&nn->reclaim_str_hashtbl[i])) { | 
|  | 6469 | crp = list_entry(nn->reclaim_str_hashtbl[i].next, | 
|  | 6470 | struct nfs4_client_reclaim, cr_strhash); | 
|  | 6471 | nfs4_remove_reclaim_record(crp, nn); | 
|  | 6472 | } | 
|  | 6473 | } | 
|  | 6474 | WARN_ON_ONCE(nn->reclaim_str_hashtbl_size); | 
|  | 6475 | } | 
|  | 6476 |  | 
|  | 6477 | /* | 
|  | 6478 | * called from OPEN, CLAIM_PREVIOUS with a new clientid. */ | 
|  | 6479 | struct nfs4_client_reclaim * | 
|  | 6480 | nfsd4_find_reclaim_client(const char *recdir, struct nfsd_net *nn) | 
|  | 6481 | { | 
|  | 6482 | unsigned int strhashval; | 
|  | 6483 | struct nfs4_client_reclaim *crp = NULL; | 
|  | 6484 |  | 
|  | 6485 | dprintk("NFSD: nfs4_find_reclaim_client for recdir %s\n", recdir); | 
|  | 6486 |  | 
|  | 6487 | strhashval = clientstr_hashval(recdir); | 
|  | 6488 | list_for_each_entry(crp, &nn->reclaim_str_hashtbl[strhashval], cr_strhash) { | 
|  | 6489 | if (same_name(crp->cr_recdir, recdir)) { | 
|  | 6490 | return crp; | 
|  | 6491 | } | 
|  | 6492 | } | 
|  | 6493 | return NULL; | 
|  | 6494 | } | 
|  | 6495 |  | 
|  | 6496 | /* | 
|  | 6497 | * Called from OPEN. Look for clientid in reclaim list. | 
|  | 6498 | */ | 
|  | 6499 | __be32 | 
|  | 6500 | nfs4_check_open_reclaim(clientid_t *clid, | 
|  | 6501 | struct nfsd4_compound_state *cstate, | 
|  | 6502 | struct nfsd_net *nn) | 
|  | 6503 | { | 
|  | 6504 | __be32 status; | 
|  | 6505 |  | 
|  | 6506 | /* find clientid in conf_id_hashtbl */ | 
|  | 6507 | status = lookup_clientid(clid, cstate, nn); | 
|  | 6508 | if (status) | 
|  | 6509 | return nfserr_reclaim_bad; | 
|  | 6510 |  | 
|  | 6511 | if (test_bit(NFSD4_CLIENT_RECLAIM_COMPLETE, &cstate->clp->cl_flags)) | 
|  | 6512 | return nfserr_no_grace; | 
|  | 6513 |  | 
|  | 6514 | if (nfsd4_client_record_check(cstate->clp)) | 
|  | 6515 | return nfserr_reclaim_bad; | 
|  | 6516 |  | 
|  | 6517 | return nfs_ok; | 
|  | 6518 | } | 
|  | 6519 |  | 
|  | 6520 | #ifdef CONFIG_NFSD_FAULT_INJECTION | 
|  | 6521 | static inline void | 
|  | 6522 | put_client(struct nfs4_client *clp) | 
|  | 6523 | { | 
|  | 6524 | atomic_dec(&clp->cl_refcount); | 
|  | 6525 | } | 
|  | 6526 |  | 
|  | 6527 | static struct nfs4_client * | 
|  | 6528 | nfsd_find_client(struct sockaddr_storage *addr, size_t addr_size) | 
|  | 6529 | { | 
|  | 6530 | struct nfs4_client *clp; | 
|  | 6531 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6532 | nfsd_net_id); | 
|  | 6533 |  | 
|  | 6534 | if (!nfsd_netns_ready(nn)) | 
|  | 6535 | return NULL; | 
|  | 6536 |  | 
|  | 6537 | list_for_each_entry(clp, &nn->client_lru, cl_lru) { | 
|  | 6538 | if (memcmp(&clp->cl_addr, addr, addr_size) == 0) | 
|  | 6539 | return clp; | 
|  | 6540 | } | 
|  | 6541 | return NULL; | 
|  | 6542 | } | 
|  | 6543 |  | 
|  | 6544 | u64 | 
|  | 6545 | nfsd_inject_print_clients(void) | 
|  | 6546 | { | 
|  | 6547 | struct nfs4_client *clp; | 
|  | 6548 | u64 count = 0; | 
|  | 6549 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6550 | nfsd_net_id); | 
|  | 6551 | char buf[INET6_ADDRSTRLEN]; | 
|  | 6552 |  | 
|  | 6553 | if (!nfsd_netns_ready(nn)) | 
|  | 6554 | return 0; | 
|  | 6555 |  | 
|  | 6556 | spin_lock(&nn->client_lock); | 
|  | 6557 | list_for_each_entry(clp, &nn->client_lru, cl_lru) { | 
|  | 6558 | rpc_ntop((struct sockaddr *)&clp->cl_addr, buf, sizeof(buf)); | 
|  | 6559 | pr_info("NFS Client: %s\n", buf); | 
|  | 6560 | ++count; | 
|  | 6561 | } | 
|  | 6562 | spin_unlock(&nn->client_lock); | 
|  | 6563 |  | 
|  | 6564 | return count; | 
|  | 6565 | } | 
|  | 6566 |  | 
|  | 6567 | u64 | 
|  | 6568 | nfsd_inject_forget_client(struct sockaddr_storage *addr, size_t addr_size) | 
|  | 6569 | { | 
|  | 6570 | u64 count = 0; | 
|  | 6571 | struct nfs4_client *clp; | 
|  | 6572 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6573 | nfsd_net_id); | 
|  | 6574 |  | 
|  | 6575 | if (!nfsd_netns_ready(nn)) | 
|  | 6576 | return count; | 
|  | 6577 |  | 
|  | 6578 | spin_lock(&nn->client_lock); | 
|  | 6579 | clp = nfsd_find_client(addr, addr_size); | 
|  | 6580 | if (clp) { | 
|  | 6581 | if (mark_client_expired_locked(clp) == nfs_ok) | 
|  | 6582 | ++count; | 
|  | 6583 | else | 
|  | 6584 | clp = NULL; | 
|  | 6585 | } | 
|  | 6586 | spin_unlock(&nn->client_lock); | 
|  | 6587 |  | 
|  | 6588 | if (clp) | 
|  | 6589 | expire_client(clp); | 
|  | 6590 |  | 
|  | 6591 | return count; | 
|  | 6592 | } | 
|  | 6593 |  | 
|  | 6594 | u64 | 
|  | 6595 | nfsd_inject_forget_clients(u64 max) | 
|  | 6596 | { | 
|  | 6597 | u64 count = 0; | 
|  | 6598 | struct nfs4_client *clp, *next; | 
|  | 6599 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6600 | nfsd_net_id); | 
|  | 6601 | LIST_HEAD(reaplist); | 
|  | 6602 |  | 
|  | 6603 | if (!nfsd_netns_ready(nn)) | 
|  | 6604 | return count; | 
|  | 6605 |  | 
|  | 6606 | spin_lock(&nn->client_lock); | 
|  | 6607 | list_for_each_entry_safe(clp, next, &nn->client_lru, cl_lru) { | 
|  | 6608 | if (mark_client_expired_locked(clp) == nfs_ok) { | 
|  | 6609 | list_add(&clp->cl_lru, &reaplist); | 
|  | 6610 | if (max != 0 && ++count >= max) | 
|  | 6611 | break; | 
|  | 6612 | } | 
|  | 6613 | } | 
|  | 6614 | spin_unlock(&nn->client_lock); | 
|  | 6615 |  | 
|  | 6616 | list_for_each_entry_safe(clp, next, &reaplist, cl_lru) | 
|  | 6617 | expire_client(clp); | 
|  | 6618 |  | 
|  | 6619 | return count; | 
|  | 6620 | } | 
|  | 6621 |  | 
|  | 6622 | static void nfsd_print_count(struct nfs4_client *clp, unsigned int count, | 
|  | 6623 | const char *type) | 
|  | 6624 | { | 
|  | 6625 | char buf[INET6_ADDRSTRLEN]; | 
|  | 6626 | rpc_ntop((struct sockaddr *)&clp->cl_addr, buf, sizeof(buf)); | 
|  | 6627 | printk(KERN_INFO "NFS Client: %s has %u %s\n", buf, count, type); | 
|  | 6628 | } | 
|  | 6629 |  | 
|  | 6630 | static void | 
|  | 6631 | nfsd_inject_add_lock_to_list(struct nfs4_ol_stateid *lst, | 
|  | 6632 | struct list_head *collect) | 
|  | 6633 | { | 
|  | 6634 | struct nfs4_client *clp = lst->st_stid.sc_client; | 
|  | 6635 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6636 | nfsd_net_id); | 
|  | 6637 |  | 
|  | 6638 | if (!collect) | 
|  | 6639 | return; | 
|  | 6640 |  | 
|  | 6641 | lockdep_assert_held(&nn->client_lock); | 
|  | 6642 | atomic_inc(&clp->cl_refcount); | 
|  | 6643 | list_add(&lst->st_locks, collect); | 
|  | 6644 | } | 
|  | 6645 |  | 
|  | 6646 | static u64 nfsd_foreach_client_lock(struct nfs4_client *clp, u64 max, | 
|  | 6647 | struct list_head *collect, | 
|  | 6648 | bool (*func)(struct nfs4_ol_stateid *)) | 
|  | 6649 | { | 
|  | 6650 | struct nfs4_openowner *oop; | 
|  | 6651 | struct nfs4_ol_stateid *stp, *st_next; | 
|  | 6652 | struct nfs4_ol_stateid *lst, *lst_next; | 
|  | 6653 | u64 count = 0; | 
|  | 6654 |  | 
|  | 6655 | spin_lock(&clp->cl_lock); | 
|  | 6656 | list_for_each_entry(oop, &clp->cl_openowners, oo_perclient) { | 
|  | 6657 | list_for_each_entry_safe(stp, st_next, | 
|  | 6658 | &oop->oo_owner.so_stateids, st_perstateowner) { | 
|  | 6659 | list_for_each_entry_safe(lst, lst_next, | 
|  | 6660 | &stp->st_locks, st_locks) { | 
|  | 6661 | if (func) { | 
|  | 6662 | if (func(lst)) | 
|  | 6663 | nfsd_inject_add_lock_to_list(lst, | 
|  | 6664 | collect); | 
|  | 6665 | } | 
|  | 6666 | ++count; | 
|  | 6667 | /* | 
|  | 6668 | * Despite the fact that these functions deal | 
|  | 6669 | * with 64-bit integers for "count", we must | 
|  | 6670 | * ensure that it doesn't blow up the | 
|  | 6671 | * clp->cl_refcount. Throw a warning if we | 
|  | 6672 | * start to approach INT_MAX here. | 
|  | 6673 | */ | 
|  | 6674 | WARN_ON_ONCE(count == (INT_MAX / 2)); | 
|  | 6675 | if (count == max) | 
|  | 6676 | goto out; | 
|  | 6677 | } | 
|  | 6678 | } | 
|  | 6679 | } | 
|  | 6680 | out: | 
|  | 6681 | spin_unlock(&clp->cl_lock); | 
|  | 6682 |  | 
|  | 6683 | return count; | 
|  | 6684 | } | 
|  | 6685 |  | 
|  | 6686 | static u64 | 
|  | 6687 | nfsd_collect_client_locks(struct nfs4_client *clp, struct list_head *collect, | 
|  | 6688 | u64 max) | 
|  | 6689 | { | 
|  | 6690 | return nfsd_foreach_client_lock(clp, max, collect, unhash_lock_stateid); | 
|  | 6691 | } | 
|  | 6692 |  | 
|  | 6693 | static u64 | 
|  | 6694 | nfsd_print_client_locks(struct nfs4_client *clp) | 
|  | 6695 | { | 
|  | 6696 | u64 count = nfsd_foreach_client_lock(clp, 0, NULL, NULL); | 
|  | 6697 | nfsd_print_count(clp, count, "locked files"); | 
|  | 6698 | return count; | 
|  | 6699 | } | 
|  | 6700 |  | 
|  | 6701 | u64 | 
|  | 6702 | nfsd_inject_print_locks(void) | 
|  | 6703 | { | 
|  | 6704 | struct nfs4_client *clp; | 
|  | 6705 | u64 count = 0; | 
|  | 6706 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6707 | nfsd_net_id); | 
|  | 6708 |  | 
|  | 6709 | if (!nfsd_netns_ready(nn)) | 
|  | 6710 | return 0; | 
|  | 6711 |  | 
|  | 6712 | spin_lock(&nn->client_lock); | 
|  | 6713 | list_for_each_entry(clp, &nn->client_lru, cl_lru) | 
|  | 6714 | count += nfsd_print_client_locks(clp); | 
|  | 6715 | spin_unlock(&nn->client_lock); | 
|  | 6716 |  | 
|  | 6717 | return count; | 
|  | 6718 | } | 
|  | 6719 |  | 
|  | 6720 | static void | 
|  | 6721 | nfsd_reap_locks(struct list_head *reaplist) | 
|  | 6722 | { | 
|  | 6723 | struct nfs4_client *clp; | 
|  | 6724 | struct nfs4_ol_stateid *stp, *next; | 
|  | 6725 |  | 
|  | 6726 | list_for_each_entry_safe(stp, next, reaplist, st_locks) { | 
|  | 6727 | list_del_init(&stp->st_locks); | 
|  | 6728 | clp = stp->st_stid.sc_client; | 
|  | 6729 | nfs4_put_stid(&stp->st_stid); | 
|  | 6730 | put_client(clp); | 
|  | 6731 | } | 
|  | 6732 | } | 
|  | 6733 |  | 
|  | 6734 | u64 | 
|  | 6735 | nfsd_inject_forget_client_locks(struct sockaddr_storage *addr, size_t addr_size) | 
|  | 6736 | { | 
|  | 6737 | unsigned int count = 0; | 
|  | 6738 | struct nfs4_client *clp; | 
|  | 6739 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6740 | nfsd_net_id); | 
|  | 6741 | LIST_HEAD(reaplist); | 
|  | 6742 |  | 
|  | 6743 | if (!nfsd_netns_ready(nn)) | 
|  | 6744 | return count; | 
|  | 6745 |  | 
|  | 6746 | spin_lock(&nn->client_lock); | 
|  | 6747 | clp = nfsd_find_client(addr, addr_size); | 
|  | 6748 | if (clp) | 
|  | 6749 | count = nfsd_collect_client_locks(clp, &reaplist, 0); | 
|  | 6750 | spin_unlock(&nn->client_lock); | 
|  | 6751 | nfsd_reap_locks(&reaplist); | 
|  | 6752 | return count; | 
|  | 6753 | } | 
|  | 6754 |  | 
|  | 6755 | u64 | 
|  | 6756 | nfsd_inject_forget_locks(u64 max) | 
|  | 6757 | { | 
|  | 6758 | u64 count = 0; | 
|  | 6759 | struct nfs4_client *clp; | 
|  | 6760 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6761 | nfsd_net_id); | 
|  | 6762 | LIST_HEAD(reaplist); | 
|  | 6763 |  | 
|  | 6764 | if (!nfsd_netns_ready(nn)) | 
|  | 6765 | return count; | 
|  | 6766 |  | 
|  | 6767 | spin_lock(&nn->client_lock); | 
|  | 6768 | list_for_each_entry(clp, &nn->client_lru, cl_lru) { | 
|  | 6769 | count += nfsd_collect_client_locks(clp, &reaplist, max - count); | 
|  | 6770 | if (max != 0 && count >= max) | 
|  | 6771 | break; | 
|  | 6772 | } | 
|  | 6773 | spin_unlock(&nn->client_lock); | 
|  | 6774 | nfsd_reap_locks(&reaplist); | 
|  | 6775 | return count; | 
|  | 6776 | } | 
|  | 6777 |  | 
|  | 6778 | static u64 | 
|  | 6779 | nfsd_foreach_client_openowner(struct nfs4_client *clp, u64 max, | 
|  | 6780 | struct list_head *collect, | 
|  | 6781 | void (*func)(struct nfs4_openowner *)) | 
|  | 6782 | { | 
|  | 6783 | struct nfs4_openowner *oop, *next; | 
|  | 6784 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6785 | nfsd_net_id); | 
|  | 6786 | u64 count = 0; | 
|  | 6787 |  | 
|  | 6788 | lockdep_assert_held(&nn->client_lock); | 
|  | 6789 |  | 
|  | 6790 | spin_lock(&clp->cl_lock); | 
|  | 6791 | list_for_each_entry_safe(oop, next, &clp->cl_openowners, oo_perclient) { | 
|  | 6792 | if (func) { | 
|  | 6793 | func(oop); | 
|  | 6794 | if (collect) { | 
|  | 6795 | atomic_inc(&clp->cl_refcount); | 
|  | 6796 | list_add(&oop->oo_perclient, collect); | 
|  | 6797 | } | 
|  | 6798 | } | 
|  | 6799 | ++count; | 
|  | 6800 | /* | 
|  | 6801 | * Despite the fact that these functions deal with | 
|  | 6802 | * 64-bit integers for "count", we must ensure that | 
|  | 6803 | * it doesn't blow up the clp->cl_refcount. Throw a | 
|  | 6804 | * warning if we start to approach INT_MAX here. | 
|  | 6805 | */ | 
|  | 6806 | WARN_ON_ONCE(count == (INT_MAX / 2)); | 
|  | 6807 | if (count == max) | 
|  | 6808 | break; | 
|  | 6809 | } | 
|  | 6810 | spin_unlock(&clp->cl_lock); | 
|  | 6811 |  | 
|  | 6812 | return count; | 
|  | 6813 | } | 
|  | 6814 |  | 
|  | 6815 | static u64 | 
|  | 6816 | nfsd_print_client_openowners(struct nfs4_client *clp) | 
|  | 6817 | { | 
|  | 6818 | u64 count = nfsd_foreach_client_openowner(clp, 0, NULL, NULL); | 
|  | 6819 |  | 
|  | 6820 | nfsd_print_count(clp, count, "openowners"); | 
|  | 6821 | return count; | 
|  | 6822 | } | 
|  | 6823 |  | 
|  | 6824 | static u64 | 
|  | 6825 | nfsd_collect_client_openowners(struct nfs4_client *clp, | 
|  | 6826 | struct list_head *collect, u64 max) | 
|  | 6827 | { | 
|  | 6828 | return nfsd_foreach_client_openowner(clp, max, collect, | 
|  | 6829 | unhash_openowner_locked); | 
|  | 6830 | } | 
|  | 6831 |  | 
|  | 6832 | u64 | 
|  | 6833 | nfsd_inject_print_openowners(void) | 
|  | 6834 | { | 
|  | 6835 | struct nfs4_client *clp; | 
|  | 6836 | u64 count = 0; | 
|  | 6837 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6838 | nfsd_net_id); | 
|  | 6839 |  | 
|  | 6840 | if (!nfsd_netns_ready(nn)) | 
|  | 6841 | return 0; | 
|  | 6842 |  | 
|  | 6843 | spin_lock(&nn->client_lock); | 
|  | 6844 | list_for_each_entry(clp, &nn->client_lru, cl_lru) | 
|  | 6845 | count += nfsd_print_client_openowners(clp); | 
|  | 6846 | spin_unlock(&nn->client_lock); | 
|  | 6847 |  | 
|  | 6848 | return count; | 
|  | 6849 | } | 
|  | 6850 |  | 
|  | 6851 | static void | 
|  | 6852 | nfsd_reap_openowners(struct list_head *reaplist) | 
|  | 6853 | { | 
|  | 6854 | struct nfs4_client *clp; | 
|  | 6855 | struct nfs4_openowner *oop, *next; | 
|  | 6856 |  | 
|  | 6857 | list_for_each_entry_safe(oop, next, reaplist, oo_perclient) { | 
|  | 6858 | list_del_init(&oop->oo_perclient); | 
|  | 6859 | clp = oop->oo_owner.so_client; | 
|  | 6860 | release_openowner(oop); | 
|  | 6861 | put_client(clp); | 
|  | 6862 | } | 
|  | 6863 | } | 
|  | 6864 |  | 
|  | 6865 | u64 | 
|  | 6866 | nfsd_inject_forget_client_openowners(struct sockaddr_storage *addr, | 
|  | 6867 | size_t addr_size) | 
|  | 6868 | { | 
|  | 6869 | unsigned int count = 0; | 
|  | 6870 | struct nfs4_client *clp; | 
|  | 6871 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6872 | nfsd_net_id); | 
|  | 6873 | LIST_HEAD(reaplist); | 
|  | 6874 |  | 
|  | 6875 | if (!nfsd_netns_ready(nn)) | 
|  | 6876 | return count; | 
|  | 6877 |  | 
|  | 6878 | spin_lock(&nn->client_lock); | 
|  | 6879 | clp = nfsd_find_client(addr, addr_size); | 
|  | 6880 | if (clp) | 
|  | 6881 | count = nfsd_collect_client_openowners(clp, &reaplist, 0); | 
|  | 6882 | spin_unlock(&nn->client_lock); | 
|  | 6883 | nfsd_reap_openowners(&reaplist); | 
|  | 6884 | return count; | 
|  | 6885 | } | 
|  | 6886 |  | 
|  | 6887 | u64 | 
|  | 6888 | nfsd_inject_forget_openowners(u64 max) | 
|  | 6889 | { | 
|  | 6890 | u64 count = 0; | 
|  | 6891 | struct nfs4_client *clp; | 
|  | 6892 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6893 | nfsd_net_id); | 
|  | 6894 | LIST_HEAD(reaplist); | 
|  | 6895 |  | 
|  | 6896 | if (!nfsd_netns_ready(nn)) | 
|  | 6897 | return count; | 
|  | 6898 |  | 
|  | 6899 | spin_lock(&nn->client_lock); | 
|  | 6900 | list_for_each_entry(clp, &nn->client_lru, cl_lru) { | 
|  | 6901 | count += nfsd_collect_client_openowners(clp, &reaplist, | 
|  | 6902 | max - count); | 
|  | 6903 | if (max != 0 && count >= max) | 
|  | 6904 | break; | 
|  | 6905 | } | 
|  | 6906 | spin_unlock(&nn->client_lock); | 
|  | 6907 | nfsd_reap_openowners(&reaplist); | 
|  | 6908 | return count; | 
|  | 6909 | } | 
|  | 6910 |  | 
|  | 6911 | static u64 nfsd_find_all_delegations(struct nfs4_client *clp, u64 max, | 
|  | 6912 | struct list_head *victims) | 
|  | 6913 | { | 
|  | 6914 | struct nfs4_delegation *dp, *next; | 
|  | 6915 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6916 | nfsd_net_id); | 
|  | 6917 | u64 count = 0; | 
|  | 6918 |  | 
|  | 6919 | lockdep_assert_held(&nn->client_lock); | 
|  | 6920 |  | 
|  | 6921 | spin_lock(&state_lock); | 
|  | 6922 | list_for_each_entry_safe(dp, next, &clp->cl_delegations, dl_perclnt) { | 
|  | 6923 | if (victims) { | 
|  | 6924 | /* | 
|  | 6925 | * It's not safe to mess with delegations that have a | 
|  | 6926 | * non-zero dl_time. They might have already been broken | 
|  | 6927 | * and could be processed by the laundromat outside of | 
|  | 6928 | * the state_lock. Just leave them be. | 
|  | 6929 | */ | 
|  | 6930 | if (dp->dl_time != 0) | 
|  | 6931 | continue; | 
|  | 6932 |  | 
|  | 6933 | atomic_inc(&clp->cl_refcount); | 
|  | 6934 | WARN_ON(!unhash_delegation_locked(dp)); | 
|  | 6935 | list_add(&dp->dl_recall_lru, victims); | 
|  | 6936 | } | 
|  | 6937 | ++count; | 
|  | 6938 | /* | 
|  | 6939 | * Despite the fact that these functions deal with | 
|  | 6940 | * 64-bit integers for "count", we must ensure that | 
|  | 6941 | * it doesn't blow up the clp->cl_refcount. Throw a | 
|  | 6942 | * warning if we start to approach INT_MAX here. | 
|  | 6943 | */ | 
|  | 6944 | WARN_ON_ONCE(count == (INT_MAX / 2)); | 
|  | 6945 | if (count == max) | 
|  | 6946 | break; | 
|  | 6947 | } | 
|  | 6948 | spin_unlock(&state_lock); | 
|  | 6949 | return count; | 
|  | 6950 | } | 
|  | 6951 |  | 
|  | 6952 | static u64 | 
|  | 6953 | nfsd_print_client_delegations(struct nfs4_client *clp) | 
|  | 6954 | { | 
|  | 6955 | u64 count = nfsd_find_all_delegations(clp, 0, NULL); | 
|  | 6956 |  | 
|  | 6957 | nfsd_print_count(clp, count, "delegations"); | 
|  | 6958 | return count; | 
|  | 6959 | } | 
|  | 6960 |  | 
|  | 6961 | u64 | 
|  | 6962 | nfsd_inject_print_delegations(void) | 
|  | 6963 | { | 
|  | 6964 | struct nfs4_client *clp; | 
|  | 6965 | u64 count = 0; | 
|  | 6966 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 6967 | nfsd_net_id); | 
|  | 6968 |  | 
|  | 6969 | if (!nfsd_netns_ready(nn)) | 
|  | 6970 | return 0; | 
|  | 6971 |  | 
|  | 6972 | spin_lock(&nn->client_lock); | 
|  | 6973 | list_for_each_entry(clp, &nn->client_lru, cl_lru) | 
|  | 6974 | count += nfsd_print_client_delegations(clp); | 
|  | 6975 | spin_unlock(&nn->client_lock); | 
|  | 6976 |  | 
|  | 6977 | return count; | 
|  | 6978 | } | 
|  | 6979 |  | 
|  | 6980 | static void | 
|  | 6981 | nfsd_forget_delegations(struct list_head *reaplist) | 
|  | 6982 | { | 
|  | 6983 | struct nfs4_client *clp; | 
|  | 6984 | struct nfs4_delegation *dp, *next; | 
|  | 6985 |  | 
|  | 6986 | list_for_each_entry_safe(dp, next, reaplist, dl_recall_lru) { | 
|  | 6987 | list_del_init(&dp->dl_recall_lru); | 
|  | 6988 | clp = dp->dl_stid.sc_client; | 
|  | 6989 | revoke_delegation(dp); | 
|  | 6990 | put_client(clp); | 
|  | 6991 | } | 
|  | 6992 | } | 
|  | 6993 |  | 
|  | 6994 | u64 | 
|  | 6995 | nfsd_inject_forget_client_delegations(struct sockaddr_storage *addr, | 
|  | 6996 | size_t addr_size) | 
|  | 6997 | { | 
|  | 6998 | u64 count = 0; | 
|  | 6999 | struct nfs4_client *clp; | 
|  | 7000 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 7001 | nfsd_net_id); | 
|  | 7002 | LIST_HEAD(reaplist); | 
|  | 7003 |  | 
|  | 7004 | if (!nfsd_netns_ready(nn)) | 
|  | 7005 | return count; | 
|  | 7006 |  | 
|  | 7007 | spin_lock(&nn->client_lock); | 
|  | 7008 | clp = nfsd_find_client(addr, addr_size); | 
|  | 7009 | if (clp) | 
|  | 7010 | count = nfsd_find_all_delegations(clp, 0, &reaplist); | 
|  | 7011 | spin_unlock(&nn->client_lock); | 
|  | 7012 |  | 
|  | 7013 | nfsd_forget_delegations(&reaplist); | 
|  | 7014 | return count; | 
|  | 7015 | } | 
|  | 7016 |  | 
|  | 7017 | u64 | 
|  | 7018 | nfsd_inject_forget_delegations(u64 max) | 
|  | 7019 | { | 
|  | 7020 | u64 count = 0; | 
|  | 7021 | struct nfs4_client *clp; | 
|  | 7022 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 7023 | nfsd_net_id); | 
|  | 7024 | LIST_HEAD(reaplist); | 
|  | 7025 |  | 
|  | 7026 | if (!nfsd_netns_ready(nn)) | 
|  | 7027 | return count; | 
|  | 7028 |  | 
|  | 7029 | spin_lock(&nn->client_lock); | 
|  | 7030 | list_for_each_entry(clp, &nn->client_lru, cl_lru) { | 
|  | 7031 | count += nfsd_find_all_delegations(clp, max - count, &reaplist); | 
|  | 7032 | if (max != 0 && count >= max) | 
|  | 7033 | break; | 
|  | 7034 | } | 
|  | 7035 | spin_unlock(&nn->client_lock); | 
|  | 7036 | nfsd_forget_delegations(&reaplist); | 
|  | 7037 | return count; | 
|  | 7038 | } | 
|  | 7039 |  | 
|  | 7040 | static void | 
|  | 7041 | nfsd_recall_delegations(struct list_head *reaplist) | 
|  | 7042 | { | 
|  | 7043 | struct nfs4_client *clp; | 
|  | 7044 | struct nfs4_delegation *dp, *next; | 
|  | 7045 |  | 
|  | 7046 | list_for_each_entry_safe(dp, next, reaplist, dl_recall_lru) { | 
|  | 7047 | list_del_init(&dp->dl_recall_lru); | 
|  | 7048 | clp = dp->dl_stid.sc_client; | 
|  | 7049 | /* | 
|  | 7050 | * We skipped all entries that had a zero dl_time before, | 
|  | 7051 | * so we can now reset the dl_time back to 0. If a delegation | 
|  | 7052 | * break comes in now, then it won't make any difference since | 
|  | 7053 | * we're recalling it either way. | 
|  | 7054 | */ | 
|  | 7055 | spin_lock(&state_lock); | 
|  | 7056 | dp->dl_time = 0; | 
|  | 7057 | spin_unlock(&state_lock); | 
|  | 7058 | nfsd_break_one_deleg(dp); | 
|  | 7059 | put_client(clp); | 
|  | 7060 | } | 
|  | 7061 | } | 
|  | 7062 |  | 
|  | 7063 | u64 | 
|  | 7064 | nfsd_inject_recall_client_delegations(struct sockaddr_storage *addr, | 
|  | 7065 | size_t addr_size) | 
|  | 7066 | { | 
|  | 7067 | u64 count = 0; | 
|  | 7068 | struct nfs4_client *clp; | 
|  | 7069 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 7070 | nfsd_net_id); | 
|  | 7071 | LIST_HEAD(reaplist); | 
|  | 7072 |  | 
|  | 7073 | if (!nfsd_netns_ready(nn)) | 
|  | 7074 | return count; | 
|  | 7075 |  | 
|  | 7076 | spin_lock(&nn->client_lock); | 
|  | 7077 | clp = nfsd_find_client(addr, addr_size); | 
|  | 7078 | if (clp) | 
|  | 7079 | count = nfsd_find_all_delegations(clp, 0, &reaplist); | 
|  | 7080 | spin_unlock(&nn->client_lock); | 
|  | 7081 |  | 
|  | 7082 | nfsd_recall_delegations(&reaplist); | 
|  | 7083 | return count; | 
|  | 7084 | } | 
|  | 7085 |  | 
|  | 7086 | u64 | 
|  | 7087 | nfsd_inject_recall_delegations(u64 max) | 
|  | 7088 | { | 
|  | 7089 | u64 count = 0; | 
|  | 7090 | struct nfs4_client *clp, *next; | 
|  | 7091 | struct nfsd_net *nn = net_generic(current->nsproxy->net_ns, | 
|  | 7092 | nfsd_net_id); | 
|  | 7093 | LIST_HEAD(reaplist); | 
|  | 7094 |  | 
|  | 7095 | if (!nfsd_netns_ready(nn)) | 
|  | 7096 | return count; | 
|  | 7097 |  | 
|  | 7098 | spin_lock(&nn->client_lock); | 
|  | 7099 | list_for_each_entry_safe(clp, next, &nn->client_lru, cl_lru) { | 
|  | 7100 | count += nfsd_find_all_delegations(clp, max - count, &reaplist); | 
|  | 7101 | if (max != 0 && ++count >= max) | 
|  | 7102 | break; | 
|  | 7103 | } | 
|  | 7104 | spin_unlock(&nn->client_lock); | 
|  | 7105 | nfsd_recall_delegations(&reaplist); | 
|  | 7106 | return count; | 
|  | 7107 | } | 
|  | 7108 | #endif /* CONFIG_NFSD_FAULT_INJECTION */ | 
|  | 7109 |  | 
|  | 7110 | /* | 
|  | 7111 | * Since the lifetime of a delegation isn't limited to that of an open, a | 
|  | 7112 | * client may quite reasonably hang on to a delegation as long as it has | 
|  | 7113 | * the inode cached.  This becomes an obvious problem the first time a | 
|  | 7114 | * client's inode cache approaches the size of the server's total memory. | 
|  | 7115 | * | 
|  | 7116 | * For now we avoid this problem by imposing a hard limit on the number | 
|  | 7117 | * of delegations, which varies according to the server's memory size. | 
|  | 7118 | */ | 
|  | 7119 | static void | 
|  | 7120 | set_max_delegations(void) | 
|  | 7121 | { | 
|  | 7122 | /* | 
|  | 7123 | * Allow at most 4 delegations per megabyte of RAM.  Quick | 
|  | 7124 | * estimates suggest that in the worst case (where every delegation | 
|  | 7125 | * is for a different inode), a delegation could take about 1.5K, | 
|  | 7126 | * giving a worst case usage of about 6% of memory. | 
|  | 7127 | */ | 
|  | 7128 | max_delegations = nr_free_buffer_pages() >> (20 - 2 - PAGE_SHIFT); | 
|  | 7129 | } | 
|  | 7130 |  | 
|  | 7131 | static int nfs4_state_create_net(struct net *net) | 
|  | 7132 | { | 
|  | 7133 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 7134 | int i; | 
|  | 7135 |  | 
|  | 7136 | nn->conf_id_hashtbl = kmalloc_array(CLIENT_HASH_SIZE, | 
|  | 7137 | sizeof(struct list_head), | 
|  | 7138 | GFP_KERNEL); | 
|  | 7139 | if (!nn->conf_id_hashtbl) | 
|  | 7140 | goto err; | 
|  | 7141 | nn->unconf_id_hashtbl = kmalloc_array(CLIENT_HASH_SIZE, | 
|  | 7142 | sizeof(struct list_head), | 
|  | 7143 | GFP_KERNEL); | 
|  | 7144 | if (!nn->unconf_id_hashtbl) | 
|  | 7145 | goto err_unconf_id; | 
|  | 7146 | nn->sessionid_hashtbl = kmalloc_array(SESSION_HASH_SIZE, | 
|  | 7147 | sizeof(struct list_head), | 
|  | 7148 | GFP_KERNEL); | 
|  | 7149 | if (!nn->sessionid_hashtbl) | 
|  | 7150 | goto err_sessionid; | 
|  | 7151 |  | 
|  | 7152 | for (i = 0; i < CLIENT_HASH_SIZE; i++) { | 
|  | 7153 | INIT_LIST_HEAD(&nn->conf_id_hashtbl[i]); | 
|  | 7154 | INIT_LIST_HEAD(&nn->unconf_id_hashtbl[i]); | 
|  | 7155 | } | 
|  | 7156 | for (i = 0; i < SESSION_HASH_SIZE; i++) | 
|  | 7157 | INIT_LIST_HEAD(&nn->sessionid_hashtbl[i]); | 
|  | 7158 | nn->conf_name_tree = RB_ROOT; | 
|  | 7159 | nn->unconf_name_tree = RB_ROOT; | 
|  | 7160 | nn->boot_time = get_seconds(); | 
|  | 7161 | nn->grace_ended = false; | 
|  | 7162 | nn->nfsd4_manager.block_opens = true; | 
|  | 7163 | INIT_LIST_HEAD(&nn->nfsd4_manager.list); | 
|  | 7164 | INIT_LIST_HEAD(&nn->client_lru); | 
|  | 7165 | INIT_LIST_HEAD(&nn->close_lru); | 
|  | 7166 | INIT_LIST_HEAD(&nn->del_recall_lru); | 
|  | 7167 | spin_lock_init(&nn->client_lock); | 
|  | 7168 |  | 
|  | 7169 | spin_lock_init(&nn->blocked_locks_lock); | 
|  | 7170 | INIT_LIST_HEAD(&nn->blocked_locks_lru); | 
|  | 7171 |  | 
|  | 7172 | INIT_DELAYED_WORK(&nn->laundromat_work, laundromat_main); | 
|  | 7173 | get_net(net); | 
|  | 7174 |  | 
|  | 7175 | return 0; | 
|  | 7176 |  | 
|  | 7177 | err_sessionid: | 
|  | 7178 | kfree(nn->unconf_id_hashtbl); | 
|  | 7179 | err_unconf_id: | 
|  | 7180 | kfree(nn->conf_id_hashtbl); | 
|  | 7181 | err: | 
|  | 7182 | return -ENOMEM; | 
|  | 7183 | } | 
|  | 7184 |  | 
|  | 7185 | static void | 
|  | 7186 | nfs4_state_destroy_net(struct net *net) | 
|  | 7187 | { | 
|  | 7188 | int i; | 
|  | 7189 | struct nfs4_client *clp = NULL; | 
|  | 7190 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 7191 |  | 
|  | 7192 | for (i = 0; i < CLIENT_HASH_SIZE; i++) { | 
|  | 7193 | while (!list_empty(&nn->conf_id_hashtbl[i])) { | 
|  | 7194 | clp = list_entry(nn->conf_id_hashtbl[i].next, struct nfs4_client, cl_idhash); | 
|  | 7195 | destroy_client(clp); | 
|  | 7196 | } | 
|  | 7197 | } | 
|  | 7198 |  | 
|  | 7199 | WARN_ON(!list_empty(&nn->blocked_locks_lru)); | 
|  | 7200 |  | 
|  | 7201 | for (i = 0; i < CLIENT_HASH_SIZE; i++) { | 
|  | 7202 | while (!list_empty(&nn->unconf_id_hashtbl[i])) { | 
|  | 7203 | clp = list_entry(nn->unconf_id_hashtbl[i].next, struct nfs4_client, cl_idhash); | 
|  | 7204 | destroy_client(clp); | 
|  | 7205 | } | 
|  | 7206 | } | 
|  | 7207 |  | 
|  | 7208 | kfree(nn->sessionid_hashtbl); | 
|  | 7209 | kfree(nn->unconf_id_hashtbl); | 
|  | 7210 | kfree(nn->conf_id_hashtbl); | 
|  | 7211 | put_net(net); | 
|  | 7212 | } | 
|  | 7213 |  | 
|  | 7214 | int | 
|  | 7215 | nfs4_state_start_net(struct net *net) | 
|  | 7216 | { | 
|  | 7217 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 7218 | int ret; | 
|  | 7219 |  | 
|  | 7220 | ret = nfs4_state_create_net(net); | 
|  | 7221 | if (ret) | 
|  | 7222 | return ret; | 
|  | 7223 | locks_start_grace(net, &nn->nfsd4_manager); | 
|  | 7224 | nfsd4_client_tracking_init(net); | 
|  | 7225 | printk(KERN_INFO "NFSD: starting %ld-second grace period (net %x)\n", | 
|  | 7226 | nn->nfsd4_grace, net->ns.inum); | 
|  | 7227 | queue_delayed_work(laundry_wq, &nn->laundromat_work, nn->nfsd4_grace * HZ); | 
|  | 7228 | return 0; | 
|  | 7229 | } | 
|  | 7230 |  | 
|  | 7231 | /* initialization to perform when the nfsd service is started: */ | 
|  | 7232 |  | 
|  | 7233 | int | 
|  | 7234 | nfs4_state_start(void) | 
|  | 7235 | { | 
|  | 7236 | int ret; | 
|  | 7237 |  | 
|  | 7238 | laundry_wq = alloc_workqueue("%s", WQ_UNBOUND, 0, "nfsd4"); | 
|  | 7239 | if (laundry_wq == NULL) { | 
|  | 7240 | ret = -ENOMEM; | 
|  | 7241 | goto out; | 
|  | 7242 | } | 
|  | 7243 | ret = nfsd4_create_callback_queue(); | 
|  | 7244 | if (ret) | 
|  | 7245 | goto out_free_laundry; | 
|  | 7246 |  | 
|  | 7247 | set_max_delegations(); | 
|  | 7248 | return 0; | 
|  | 7249 |  | 
|  | 7250 | out_free_laundry: | 
|  | 7251 | destroy_workqueue(laundry_wq); | 
|  | 7252 | out: | 
|  | 7253 | return ret; | 
|  | 7254 | } | 
|  | 7255 |  | 
|  | 7256 | void | 
|  | 7257 | nfs4_state_shutdown_net(struct net *net) | 
|  | 7258 | { | 
|  | 7259 | struct nfs4_delegation *dp = NULL; | 
|  | 7260 | struct list_head *pos, *next, reaplist; | 
|  | 7261 | struct nfsd_net *nn = net_generic(net, nfsd_net_id); | 
|  | 7262 |  | 
|  | 7263 | cancel_delayed_work_sync(&nn->laundromat_work); | 
|  | 7264 | locks_end_grace(&nn->nfsd4_manager); | 
|  | 7265 |  | 
|  | 7266 | INIT_LIST_HEAD(&reaplist); | 
|  | 7267 | spin_lock(&state_lock); | 
|  | 7268 | list_for_each_safe(pos, next, &nn->del_recall_lru) { | 
|  | 7269 | dp = list_entry (pos, struct nfs4_delegation, dl_recall_lru); | 
|  | 7270 | WARN_ON(!unhash_delegation_locked(dp)); | 
|  | 7271 | list_add(&dp->dl_recall_lru, &reaplist); | 
|  | 7272 | } | 
|  | 7273 | spin_unlock(&state_lock); | 
|  | 7274 | list_for_each_safe(pos, next, &reaplist) { | 
|  | 7275 | dp = list_entry (pos, struct nfs4_delegation, dl_recall_lru); | 
|  | 7276 | list_del_init(&dp->dl_recall_lru); | 
|  | 7277 | destroy_unhashed_deleg(dp); | 
|  | 7278 | } | 
|  | 7279 |  | 
|  | 7280 | nfsd4_client_tracking_exit(net); | 
|  | 7281 | nfs4_state_destroy_net(net); | 
|  | 7282 | } | 
|  | 7283 |  | 
|  | 7284 | void | 
|  | 7285 | nfs4_state_shutdown(void) | 
|  | 7286 | { | 
|  | 7287 | destroy_workqueue(laundry_wq); | 
|  | 7288 | nfsd4_destroy_callback_queue(); | 
|  | 7289 | } | 
|  | 7290 |  | 
|  | 7291 | static void | 
|  | 7292 | get_stateid(struct nfsd4_compound_state *cstate, stateid_t *stateid) | 
|  | 7293 | { | 
|  | 7294 | if (HAS_STATE_ID(cstate, CURRENT_STATE_ID_FLAG) && CURRENT_STATEID(stateid)) | 
|  | 7295 | memcpy(stateid, &cstate->current_stateid, sizeof(stateid_t)); | 
|  | 7296 | } | 
|  | 7297 |  | 
|  | 7298 | static void | 
|  | 7299 | put_stateid(struct nfsd4_compound_state *cstate, stateid_t *stateid) | 
|  | 7300 | { | 
|  | 7301 | if (cstate->minorversion) { | 
|  | 7302 | memcpy(&cstate->current_stateid, stateid, sizeof(stateid_t)); | 
|  | 7303 | SET_STATE_ID(cstate, CURRENT_STATE_ID_FLAG); | 
|  | 7304 | } | 
|  | 7305 | } | 
|  | 7306 |  | 
|  | 7307 | void | 
|  | 7308 | clear_current_stateid(struct nfsd4_compound_state *cstate) | 
|  | 7309 | { | 
|  | 7310 | CLEAR_STATE_ID(cstate, CURRENT_STATE_ID_FLAG); | 
|  | 7311 | } | 
|  | 7312 |  | 
|  | 7313 | /* | 
|  | 7314 | * functions to set current state id | 
|  | 7315 | */ | 
|  | 7316 | void | 
|  | 7317 | nfsd4_set_opendowngradestateid(struct nfsd4_compound_state *cstate, | 
|  | 7318 | union nfsd4_op_u *u) | 
|  | 7319 | { | 
|  | 7320 | put_stateid(cstate, &u->open_downgrade.od_stateid); | 
|  | 7321 | } | 
|  | 7322 |  | 
|  | 7323 | void | 
|  | 7324 | nfsd4_set_openstateid(struct nfsd4_compound_state *cstate, | 
|  | 7325 | union nfsd4_op_u *u) | 
|  | 7326 | { | 
|  | 7327 | put_stateid(cstate, &u->open.op_stateid); | 
|  | 7328 | } | 
|  | 7329 |  | 
|  | 7330 | void | 
|  | 7331 | nfsd4_set_closestateid(struct nfsd4_compound_state *cstate, | 
|  | 7332 | union nfsd4_op_u *u) | 
|  | 7333 | { | 
|  | 7334 | put_stateid(cstate, &u->close.cl_stateid); | 
|  | 7335 | } | 
|  | 7336 |  | 
|  | 7337 | void | 
|  | 7338 | nfsd4_set_lockstateid(struct nfsd4_compound_state *cstate, | 
|  | 7339 | union nfsd4_op_u *u) | 
|  | 7340 | { | 
|  | 7341 | put_stateid(cstate, &u->lock.lk_resp_stateid); | 
|  | 7342 | } | 
|  | 7343 |  | 
|  | 7344 | /* | 
|  | 7345 | * functions to consume current state id | 
|  | 7346 | */ | 
|  | 7347 |  | 
|  | 7348 | void | 
|  | 7349 | nfsd4_get_opendowngradestateid(struct nfsd4_compound_state *cstate, | 
|  | 7350 | union nfsd4_op_u *u) | 
|  | 7351 | { | 
|  | 7352 | get_stateid(cstate, &u->open_downgrade.od_stateid); | 
|  | 7353 | } | 
|  | 7354 |  | 
|  | 7355 | void | 
|  | 7356 | nfsd4_get_delegreturnstateid(struct nfsd4_compound_state *cstate, | 
|  | 7357 | union nfsd4_op_u *u) | 
|  | 7358 | { | 
|  | 7359 | get_stateid(cstate, &u->delegreturn.dr_stateid); | 
|  | 7360 | } | 
|  | 7361 |  | 
|  | 7362 | void | 
|  | 7363 | nfsd4_get_freestateid(struct nfsd4_compound_state *cstate, | 
|  | 7364 | union nfsd4_op_u *u) | 
|  | 7365 | { | 
|  | 7366 | get_stateid(cstate, &u->free_stateid.fr_stateid); | 
|  | 7367 | } | 
|  | 7368 |  | 
|  | 7369 | void | 
|  | 7370 | nfsd4_get_setattrstateid(struct nfsd4_compound_state *cstate, | 
|  | 7371 | union nfsd4_op_u *u) | 
|  | 7372 | { | 
|  | 7373 | get_stateid(cstate, &u->setattr.sa_stateid); | 
|  | 7374 | } | 
|  | 7375 |  | 
|  | 7376 | void | 
|  | 7377 | nfsd4_get_closestateid(struct nfsd4_compound_state *cstate, | 
|  | 7378 | union nfsd4_op_u *u) | 
|  | 7379 | { | 
|  | 7380 | get_stateid(cstate, &u->close.cl_stateid); | 
|  | 7381 | } | 
|  | 7382 |  | 
|  | 7383 | void | 
|  | 7384 | nfsd4_get_lockustateid(struct nfsd4_compound_state *cstate, | 
|  | 7385 | union nfsd4_op_u *u) | 
|  | 7386 | { | 
|  | 7387 | get_stateid(cstate, &u->locku.lu_stateid); | 
|  | 7388 | } | 
|  | 7389 |  | 
|  | 7390 | void | 
|  | 7391 | nfsd4_get_readstateid(struct nfsd4_compound_state *cstate, | 
|  | 7392 | union nfsd4_op_u *u) | 
|  | 7393 | { | 
|  | 7394 | get_stateid(cstate, &u->read.rd_stateid); | 
|  | 7395 | } | 
|  | 7396 |  | 
|  | 7397 | void | 
|  | 7398 | nfsd4_get_writestateid(struct nfsd4_compound_state *cstate, | 
|  | 7399 | union nfsd4_op_u *u) | 
|  | 7400 | { | 
|  | 7401 | get_stateid(cstate, &u->write.wr_stateid); | 
|  | 7402 | } |