Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / 5c4b642141eb3576213ab59d06ba12e1fa989046 / . / fs / cifs / fs_context.c
blob: ca745fa6c4a152792ceacee6e6968d1121673974 [file] [log] [blame]
Ronnie Sahlberga6a9cff2020-10-21 10:22:33 +1000[diff] [blame]1// SPDX-License-Identifier: GPL-2.0-or-later
2/*
3 * Copyright (C) 2020, Microsoft Corporation.
4 *
5 * Author(s): Steve French <stfrench@microsoft.com>
6 * David Howells <dhowells@redhat.com>
7 */
8
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]9/*
10#include <linux/module.h>
11#include <linux/nsproxy.h>
12#include <linux/slab.h>
13#include <linux/magic.h>
14#include <linux/security.h>
15#include <net/net_namespace.h>
16*/
17
18#include <linux/ctype.h>
19#include <linux/fs_context.h>
20#include <linux/fs_parser.h>
21#include <linux/fs.h>
22#include <linux/mount.h>
23#include <linux/parser.h>
24#include <linux/utsname.h>
25#include "cifsfs.h"
26#include "cifspdu.h"
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]27#include "cifsglob.h"
Ronnie Sahlberg837e3a12020-11-02 09:36:24 +1000[diff] [blame]28#include "cifsproto.h"
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]29#include "cifs_unicode.h"
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]30#include "cifs_debug.h"
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]31#include "cifs_fs_sb.h"
32#include "ntlmssp.h"
33#include "nterr.h"
34#include "rfc1002pdu.h"
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]35#include "fs_context.h"
36
Ronnie Sahlberg555782a2020-10-21 12:10:44 +1000[diff] [blame]37static const match_table_t cifs_smb_version_tokens = {
38 { Smb_1, SMB1_VERSION_STRING },
39 { Smb_20, SMB20_VERSION_STRING},
40 { Smb_21, SMB21_VERSION_STRING },
41 { Smb_30, SMB30_VERSION_STRING },
42 { Smb_302, SMB302_VERSION_STRING },
43 { Smb_302, ALT_SMB302_VERSION_STRING },
44 { Smb_311, SMB311_VERSION_STRING },
45 { Smb_311, ALT_SMB311_VERSION_STRING },
46 { Smb_3any, SMB3ANY_VERSION_STRING },
47 { Smb_default, SMBDEFAULT_VERSION_STRING },
48 { Smb_version_err, NULL }
49};
50
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]51static const match_table_t cifs_secflavor_tokens = {
52 { Opt_sec_krb5, "krb5" },
53 { Opt_sec_krb5i, "krb5i" },
54 { Opt_sec_krb5p, "krb5p" },
55 { Opt_sec_ntlmsspi, "ntlmsspi" },
56 { Opt_sec_ntlmssp, "ntlmssp" },
57 { Opt_ntlm, "ntlm" },
58 { Opt_sec_ntlmi, "ntlmi" },
59 { Opt_sec_ntlmv2, "nontlm" },
60 { Opt_sec_ntlmv2, "ntlmv2" },
61 { Opt_sec_ntlmv2i, "ntlmv2i" },
62 { Opt_sec_lanman, "lanman" },
63 { Opt_sec_none, "none" },
64
65 { Opt_sec_err, NULL }
66};
67
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]68const struct fs_parameter_spec smb3_fs_parameters[] = {
69 /* Mount options that take no arguments */
70 fsparam_flag_no("user_xattr", Opt_user_xattr),
71 fsparam_flag_no("forceuid", Opt_forceuid),
72 fsparam_flag_no("multichannel", Opt_multichannel),
73 fsparam_flag_no("forcegid", Opt_forcegid),
74 fsparam_flag("noblocksend", Opt_noblocksend),
75 fsparam_flag("noautotune", Opt_noautotune),
76 fsparam_flag("nolease", Opt_nolease),
77 fsparam_flag_no("hard", Opt_hard),
78 fsparam_flag_no("soft", Opt_soft),
79 fsparam_flag_no("perm", Opt_perm),
80 fsparam_flag("nodelete", Opt_nodelete),
81 fsparam_flag_no("mapposix", Opt_mapposix),
82 fsparam_flag("mapchars", Opt_mapchars),
83 fsparam_flag("nomapchars", Opt_nomapchars),
84 fsparam_flag_no("sfu", Opt_sfu),
85 fsparam_flag("nodfs", Opt_nodfs),
86 fsparam_flag_no("posixpaths", Opt_posixpaths),
87 fsparam_flag_no("unix", Opt_unix),
88 fsparam_flag_no("linux", Opt_unix),
89 fsparam_flag_no("posix", Opt_unix),
90 fsparam_flag("nocase", Opt_nocase),
91 fsparam_flag("ignorecase", Opt_nocase),
92 fsparam_flag_no("brl", Opt_brl),
93 fsparam_flag_no("handlecache", Opt_handlecache),
94 fsparam_flag("forcemandatorylock", Opt_forcemandatorylock),
95 fsparam_flag("forcemand", Opt_forcemandatorylock),
96 fsparam_flag("setuidfromacl", Opt_setuidfromacl),
97 fsparam_flag_no("setuids", Opt_setuids),
98 fsparam_flag_no("dynperm", Opt_dynperm),
99 fsparam_flag_no("intr", Opt_intr),
100 fsparam_flag_no("strictsync", Opt_strictsync),
101 fsparam_flag_no("serverino", Opt_serverino),
102 fsparam_flag("rwpidforward", Opt_rwpidforward),
103 fsparam_flag("cifsacl", Opt_cifsacl),
104 fsparam_flag_no("acl", Opt_acl),
105 fsparam_flag("locallease", Opt_locallease),
106 fsparam_flag("sign", Opt_sign),
107 fsparam_flag("ignore_signature", Opt_ignore_signature),
108 fsparam_flag("seal", Opt_seal),
109 fsparam_flag("noac", Opt_noac),
110 fsparam_flag("fsc", Opt_fsc),
111 fsparam_flag("mfsymlinks", Opt_mfsymlinks),
112 fsparam_flag("multiuser", Opt_multiuser),
113 fsparam_flag("sloppy", Opt_sloppy),
114 fsparam_flag("nosharesock", Opt_nosharesock),
115 fsparam_flag_no("persistent", Opt_persistent),
116 fsparam_flag_no("resilient", Opt_resilient),
117 fsparam_flag("domainauto", Opt_domainauto),
118 fsparam_flag("rdma", Opt_rdma),
119 fsparam_flag("modesid", Opt_modesid),
120 fsparam_flag("rootfs", Opt_rootfs),
121 fsparam_flag("compress", Opt_compress),
Samuel Cabrero0ac4e292020-12-11 22:59:29 -0600[diff] [blame]122 fsparam_flag("witness", Opt_witness),
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]123
124 /* Mount options which take numeric value */
125 fsparam_u32("backupuid", Opt_backupuid),
126 fsparam_u32("backupgid", Opt_backupgid),
127 fsparam_u32("uid", Opt_uid),
128 fsparam_u32("cruid", Opt_cruid),
129 fsparam_u32("gid", Opt_gid),
130 fsparam_u32("file_mode", Opt_file_mode),
131 fsparam_u32("dirmode", Opt_dirmode),
132 fsparam_u32("dir_mode", Opt_dirmode),
133 fsparam_u32("port", Opt_port),
134 fsparam_u32("min_enc_offload", Opt_min_enc_offload),
135 fsparam_u32("bsize", Opt_blocksize),
136 fsparam_u32("rsize", Opt_rsize),
137 fsparam_u32("wsize", Opt_wsize),
138 fsparam_u32("actimeo", Opt_actimeo),
139 fsparam_u32("echo_interval", Opt_echo_interval),
140 fsparam_u32("max_credits", Opt_max_credits),
141 fsparam_u32("handletimeout", Opt_handletimeout),
142 fsparam_u32("snapshot", Opt_snapshot),
143 fsparam_u32("max_channels", Opt_max_channels),
144
145 /* Mount options which take string value */
146 fsparam_string("source", Opt_source),
147 fsparam_string("unc", Opt_source),
148 fsparam_string("user", Opt_user),
149 fsparam_string("username", Opt_user),
150 fsparam_string("pass", Opt_pass),
151 fsparam_string("password", Opt_pass),
152 fsparam_string("ip", Opt_ip),
153 fsparam_string("addr", Opt_ip),
154 fsparam_string("domain", Opt_domain),
155 fsparam_string("dom", Opt_domain),
156 fsparam_string("srcaddr", Opt_srcaddr),
157 fsparam_string("iocharset", Opt_iocharset),
158 fsparam_string("netbiosname", Opt_netbiosname),
159 fsparam_string("servern", Opt_servern),
160 fsparam_string("ver", Opt_ver),
161 fsparam_string("vers", Opt_vers),
162 fsparam_string("sec", Opt_sec),
163 fsparam_string("cache", Opt_cache),
164
165 /* Arguments that should be ignored */
166 fsparam_flag("guest", Opt_ignore),
167 fsparam_flag("noatime", Opt_ignore),
168 fsparam_flag("relatime", Opt_ignore),
169 fsparam_flag("_netdev", Opt_ignore),
170 fsparam_flag_no("suid", Opt_ignore),
171 fsparam_flag_no("exec", Opt_ignore),
172 fsparam_flag_no("dev", Opt_ignore),
173 fsparam_flag_no("mand", Opt_ignore),
174 fsparam_string("cred", Opt_ignore),
175 fsparam_string("credentials", Opt_ignore),
Dmitry Osipenko427c4f02020-12-14 14:37:45 +0300[diff] [blame]176 {}
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]177};
178
179int
180cifs_parse_security_flavors(char *value, struct smb3_fs_context *ctx)
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]181{
182
183 substring_t args[MAX_OPT_ARGS];
184
185 /*
186 * With mount options, the last one should win. Reset any existing
187 * settings back to default.
188 */
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]189 ctx->sectype = Unspecified;
190 ctx->sign = false;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]191
192 switch (match_token(value, cifs_secflavor_tokens, args)) {
193 case Opt_sec_krb5p:
194 cifs_dbg(VFS, "sec=krb5p is not supported!\n");
195 return 1;
196 case Opt_sec_krb5i:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]197 ctx->sign = true;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]198 fallthrough;
199 case Opt_sec_krb5:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]200 ctx->sectype = Kerberos;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]201 break;
202 case Opt_sec_ntlmsspi:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]203 ctx->sign = true;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]204 fallthrough;
205 case Opt_sec_ntlmssp:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]206 ctx->sectype = RawNTLMSSP;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]207 break;
208 case Opt_sec_ntlmi:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]209 ctx->sign = true;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]210 fallthrough;
211 case Opt_ntlm:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]212 ctx->sectype = NTLM;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]213 break;
214 case Opt_sec_ntlmv2i:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]215 ctx->sign = true;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]216 fallthrough;
217 case Opt_sec_ntlmv2:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]218 ctx->sectype = NTLMv2;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]219 break;
220#ifdef CONFIG_CIFS_WEAK_PW_HASH
221 case Opt_sec_lanman:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]222 ctx->sectype = LANMAN;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]223 break;
224#endif
225 case Opt_sec_none:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]226 ctx->nullauth = 1;
Ronnie Sahlberg5c6e5aa2020-10-21 10:37:11 +1000[diff] [blame]227 break;
228 default:
229 cifs_dbg(VFS, "bad security option: %s\n", value);
230 return 1;
231 }
232
233 return 0;
234}
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]235
236static const match_table_t cifs_cacheflavor_tokens = {
237 { Opt_cache_loose, "loose" },
238 { Opt_cache_strict, "strict" },
239 { Opt_cache_none, "none" },
240 { Opt_cache_ro, "ro" },
241 { Opt_cache_rw, "singleclient" },
242 { Opt_cache_err, NULL }
243};
244
245int
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]246cifs_parse_cache_flavor(char *value, struct smb3_fs_context *ctx)
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]247{
248 substring_t args[MAX_OPT_ARGS];
249
250 switch (match_token(value, cifs_cacheflavor_tokens, args)) {
251 case Opt_cache_loose:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]252 ctx->direct_io = false;
253 ctx->strict_io = false;
254 ctx->cache_ro = false;
255 ctx->cache_rw = false;
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]256 break;
257 case Opt_cache_strict:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]258 ctx->direct_io = false;
259 ctx->strict_io = true;
260 ctx->cache_ro = false;
261 ctx->cache_rw = false;
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]262 break;
263 case Opt_cache_none:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]264 ctx->direct_io = true;
265 ctx->strict_io = false;
266 ctx->cache_ro = false;
267 ctx->cache_rw = false;
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]268 break;
269 case Opt_cache_ro:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]270 ctx->direct_io = false;
271 ctx->strict_io = false;
272 ctx->cache_ro = true;
273 ctx->cache_rw = false;
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]274 break;
275 case Opt_cache_rw:
Ronnie Sahlberg3fa1c6d2020-12-09 23:07:12 -0600[diff] [blame]276 ctx->direct_io = false;
277 ctx->strict_io = false;
278 ctx->cache_ro = false;
279 ctx->cache_rw = true;
Ronnie Sahlberg2f20f072020-10-21 11:30:35 +1000[diff] [blame]280 break;
281 default:
282 cifs_dbg(VFS, "bad cache= option: %s\n", value);
283 return 1;
284 }
285 return 0;
286}
Ronnie Sahlberg837e3a12020-11-02 09:36:24 +1000[diff] [blame]287
288#define DUP_CTX_STR(field) \
289do { \
290 if (ctx->field) { \
291 new_ctx->field = kstrdup(ctx->field, GFP_ATOMIC); \
292 if (new_ctx->field == NULL) { \
Ronnie Sahlbergc741cba2020-12-14 16:40:16 +1000[diff] [blame]293 smb3_cleanup_fs_context_contents(new_ctx); \
Ronnie Sahlberg837e3a12020-11-02 09:36:24 +1000[diff] [blame]294 return -ENOMEM; \
295 } \
296 } \
297} while (0)
298
299int
300smb3_fs_context_dup(struct smb3_fs_context *new_ctx, struct smb3_fs_context *ctx)
301{
302 int rc = 0;
303
304 memcpy(new_ctx, ctx, sizeof(*ctx));
305 new_ctx->prepath = NULL;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]306 new_ctx->mount_options = NULL;
Ronnie Sahlberg837e3a12020-11-02 09:36:24 +1000[diff] [blame]307 new_ctx->nodename = NULL;
308 new_ctx->username = NULL;
309 new_ctx->password = NULL;
310 new_ctx->domainname = NULL;
311 new_ctx->UNC = NULL;
312 new_ctx->iocharset = NULL;
313
314 /*
Ronnie Sahlbergc741cba2020-12-14 16:40:16 +1000[diff] [blame]315 * Make sure to stay in sync with smb3_cleanup_fs_context_contents()
Ronnie Sahlberg837e3a12020-11-02 09:36:24 +1000[diff] [blame]316 */
317 DUP_CTX_STR(prepath);
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]318 DUP_CTX_STR(mount_options);
Ronnie Sahlberg837e3a12020-11-02 09:36:24 +1000[diff] [blame]319 DUP_CTX_STR(username);
320 DUP_CTX_STR(password);
321 DUP_CTX_STR(UNC);
322 DUP_CTX_STR(domainname);
323 DUP_CTX_STR(nodename);
324 DUP_CTX_STR(iocharset);
325
326 return rc;
327}
Ronnie Sahlberg66e7b092020-11-05 13:58:14 +1000[diff] [blame]328
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]329static int
330cifs_parse_smb_version(char *value, struct smb3_fs_context *ctx, bool is_smb3)
331{
332 substring_t args[MAX_OPT_ARGS];
333
334 switch (match_token(value, cifs_smb_version_tokens, args)) {
335#ifdef CONFIG_CIFS_ALLOW_INSECURE_LEGACY
336 case Smb_1:
337 if (disable_legacy_dialects) {
338 cifs_dbg(VFS, "mount with legacy dialect disabled\n");
339 return 1;
340 }
341 if (is_smb3) {
342 cifs_dbg(VFS, "vers=1.0 (cifs) not permitted when mounting with smb3\n");
343 return 1;
344 }
345 cifs_dbg(VFS, "Use of the less secure dialect vers=1.0 is not recommended unless required for access to very old servers\n");
346 ctx->ops = &smb1_operations;
347 ctx->vals = &smb1_values;
348 break;
349 case Smb_20:
350 if (disable_legacy_dialects) {
351 cifs_dbg(VFS, "mount with legacy dialect disabled\n");
352 return 1;
353 }
354 if (is_smb3) {
355 cifs_dbg(VFS, "vers=2.0 not permitted when mounting with smb3\n");
356 return 1;
357 }
358 ctx->ops = &smb20_operations;
359 ctx->vals = &smb20_values;
360 break;
361#else
362 case Smb_1:
363 cifs_dbg(VFS, "vers=1.0 (cifs) mount not permitted when legacy dialects disabled\n");
364 return 1;
365 case Smb_20:
366 cifs_dbg(VFS, "vers=2.0 mount not permitted when legacy dialects disabled\n");
367 return 1;
368#endif /* CIFS_ALLOW_INSECURE_LEGACY */
369 case Smb_21:
370 ctx->ops = &smb21_operations;
371 ctx->vals = &smb21_values;
372 break;
373 case Smb_30:
374 ctx->ops = &smb30_operations;
375 ctx->vals = &smb30_values;
376 break;
377 case Smb_302:
378 ctx->ops = &smb30_operations; /* currently identical with 3.0 */
379 ctx->vals = &smb302_values;
380 break;
381 case Smb_311:
382 ctx->ops = &smb311_operations;
383 ctx->vals = &smb311_values;
384 break;
385 case Smb_3any:
386 ctx->ops = &smb30_operations; /* currently identical with 3.0 */
387 ctx->vals = &smb3any_values;
388 break;
389 case Smb_default:
390 ctx->ops = &smb30_operations; /* currently identical with 3.0 */
391 ctx->vals = &smbdefault_values;
392 break;
393 default:
394 cifs_dbg(VFS, "Unknown vers= option specified: %s\n", value);
395 return 1;
396 }
397 return 0;
398}
399
Ronnie Sahlberg66e7b092020-11-05 13:58:14 +1000[diff] [blame]400/*
401 * Parse a devname into substrings and populate the ctx->UNC and ctx->prepath
402 * fields with the result. Returns 0 on success and an error otherwise
403 * (e.g. ENOMEM or EINVAL)
404 */
405int
406smb3_parse_devname(const char *devname, struct smb3_fs_context *ctx)
407{
408 char *pos;
409 const char *delims = "/\\";
410 size_t len;
411
412 if (unlikely(!devname || !*devname)) {
413 cifs_dbg(VFS, "Device name not specified\n");
414 return -EINVAL;
415 }
416
417 /* make sure we have a valid UNC double delimiter prefix */
418 len = strspn(devname, delims);
419 if (len != 2)
420 return -EINVAL;
421
422 /* find delimiter between host and sharename */
423 pos = strpbrk(devname + 2, delims);
424 if (!pos)
425 return -EINVAL;
426
427 /* skip past delimiter */
428 ++pos;
429
430 /* now go until next delimiter or end of string */
431 len = strcspn(pos, delims);
432
433 /* move "pos" up to delimiter or NULL */
434 pos += len;
435 ctx->UNC = kstrndup(devname, pos - devname, GFP_KERNEL);
436 if (!ctx->UNC)
437 return -ENOMEM;
438
439 convert_delimiter(ctx->UNC, '\\');
440
441 /* skip any delimiter */
442 if (*pos == '/' || *pos == '\\')
443 pos++;
444
445 /* If pos is NULL then no prepath */
446 if (!*pos)
447 return 0;
448
449 ctx->prepath = kstrdup(pos, GFP_KERNEL);
450 if (!ctx->prepath)
451 return -ENOMEM;
452
453 return 0;
454}
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]455
456static void smb3_fs_context_free(struct fs_context *fc);
457static int smb3_fs_context_parse_param(struct fs_context *fc,
458 struct fs_parameter *param);
459static int smb3_fs_context_parse_monolithic(struct fs_context *fc,
460 void *data);
461static int smb3_get_tree(struct fs_context *fc);
462static int smb3_reconfigure(struct fs_context *fc);
463
464static const struct fs_context_operations smb3_fs_context_ops = {
465 .free = smb3_fs_context_free,
466 .parse_param = smb3_fs_context_parse_param,
467 .parse_monolithic = smb3_fs_context_parse_monolithic,
468 .get_tree = smb3_get_tree,
469 .reconfigure = smb3_reconfigure,
470};
471
472/*
473 * Parse a monolithic block of data from sys_mount().
474 * smb3_fs_context_parse_monolithic - Parse key[=val][,key[=val]]* mount data
475 * @ctx: The superblock configuration to fill in.
476 * @data: The data to parse
477 *
478 * Parse a blob of data that's in key[=val][,key[=val]]* form. This can be
479 * called from the ->monolithic_mount_data() fs_context operation.
480 *
481 * Returns 0 on success or the error returned by the ->parse_option() fs_context
482 * operation on failure.
483 */
484static int smb3_fs_context_parse_monolithic(struct fs_context *fc,
485 void *data)
486{
487 struct smb3_fs_context *ctx = smb3_fc2context(fc);
488 char *options = data, *key;
489 int ret = 0;
490
491 if (!options)
492 return 0;
493
494 ctx->mount_options = kstrdup(data, GFP_KERNEL);
495 if (ctx->mount_options == NULL)
496 return -ENOMEM;
497
498 ret = security_sb_eat_lsm_opts(options, &fc->security);
499 if (ret)
500 return ret;
501
502 /* BB Need to add support for sep= here TBD */
503 while ((key = strsep(&options, ",")) != NULL) {
504 if (*key) {
505 size_t v_len = 0;
506 char *value = strchr(key, '=');
507
508 if (value) {
509 if (value == key)
510 continue;
511 *value++ = 0;
512 v_len = strlen(value);
513 }
514 ret = vfs_parse_fs_string(fc, key, value, v_len);
515 if (ret < 0)
516 break;
517 }
518 }
519
520 return ret;
521}
522
523/*
524 * Validate the preparsed information in the config.
525 */
526static int smb3_fs_context_validate(struct fs_context *fc)
527{
528 struct smb3_fs_context *ctx = smb3_fc2context(fc);
529
530 if (ctx->rdma && ctx->vals->protocol_id < SMB30_PROT_ID) {
531 cifs_dbg(VFS, "SMB Direct requires Version >=3.0\n");
532 return -1;
533 }
534
535#ifndef CONFIG_KEYS
536 /* Muliuser mounts require CONFIG_KEYS support */
537 if (ctx->multiuser) {
538 cifs_dbg(VFS, "Multiuser mounts require kernels with CONFIG_KEYS enabled\n");
539 return -1;
540 }
541#endif
542
543 if (ctx->got_version == false)
544 pr_warn_once("No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.\n");
545
546
547 if (!ctx->UNC) {
548 cifs_dbg(VFS, "CIFS mount error: No usable UNC path provided in device string!\n");
549 return -1;
550 }
551
552 /* make sure UNC has a share name */
553 if (strlen(ctx->UNC) < 3 || !strchr(ctx->UNC + 3, '\\')) {
554 cifs_dbg(VFS, "Malformed UNC. Unable to find share name.\n");
555 return -1;
556 }
557
558 if (!ctx->got_ip) {
559 int len;
560 const char *slash;
561
562 /* No ip= option specified? Try to get it from UNC */
563 /* Use the address part of the UNC. */
564 slash = strchr(&ctx->UNC[2], '\\');
565 len = slash - &ctx->UNC[2];
566 if (!cifs_convert_address((struct sockaddr *)&ctx->dstaddr,
567 &ctx->UNC[2], len)) {
568 pr_err("Unable to determine destination address\n");
569 return -1;
570 }
571 }
572
573 /* set the port that we got earlier */
574 cifs_set_port((struct sockaddr *)&ctx->dstaddr, ctx->port);
575
576 if (ctx->override_uid && !ctx->uid_specified) {
577 ctx->override_uid = 0;
578 pr_notice("ignoring forceuid mount option specified with no uid= option\n");
579 }
580
581 if (ctx->override_gid && !ctx->gid_specified) {
582 ctx->override_gid = 0;
583 pr_notice("ignoring forcegid mount option specified with no gid= option\n");
584 }
585
586 return 0;
587}
588
589static int smb3_get_tree_common(struct fs_context *fc)
590{
591 struct smb3_fs_context *ctx = smb3_fc2context(fc);
592 struct dentry *root;
593 int rc = 0;
594
595 root = cifs_smb3_do_mount(fc->fs_type, 0, ctx);
596 if (IS_ERR(root))
597 return PTR_ERR(root);
598
599 fc->root = root;
600
601 return rc;
602}
603
604/*
605 * Create an SMB3 superblock from the parameters passed.
606 */
607static int smb3_get_tree(struct fs_context *fc)
608{
609 int err = smb3_fs_context_validate(fc);
610
611 if (err)
612 return err;
613 return smb3_get_tree_common(fc);
614}
615
616static void smb3_fs_context_free(struct fs_context *fc)
617{
618 struct smb3_fs_context *ctx = smb3_fc2context(fc);
619
Ronnie Sahlbergc741cba2020-12-14 16:40:16 +1000[diff] [blame]620 smb3_cleanup_fs_context(ctx);
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]621}
622
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]623/*
624 * Compare the old and new proposed context during reconfigure
625 * and check if the changes are compatible.
626 */
627static int smb3_verify_reconfigure_ctx(struct smb3_fs_context *new_ctx,
628 struct smb3_fs_context *old_ctx)
629{
Ronnie Sahlberg531f03b2020-12-14 16:40:23 +1000[diff] [blame]630 if (new_ctx->posix_paths != old_ctx->posix_paths) {
631 cifs_dbg(VFS, "can not change posixpaths during remount\n");
632 return -EINVAL;
633 }
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]634 if (new_ctx->sectype != old_ctx->sectype) {
635 cifs_dbg(VFS, "can not change sec during remount\n");
636 return -EINVAL;
637 }
Ronnie Sahlberg9ccecae2020-12-14 16:40:19 +1000[diff] [blame]638 if (new_ctx->multiuser != old_ctx->multiuser) {
639 cifs_dbg(VFS, "can not change multiuser during remount\n");
640 return -EINVAL;
641 }
642 if (new_ctx->UNC &&
643 (!old_ctx->UNC || strcmp(new_ctx->UNC, old_ctx->UNC))) {
644 cifs_dbg(VFS, "can not change UNC during remount\n");
645 return -EINVAL;
646 }
647 if (new_ctx->username &&
648 (!old_ctx->username || strcmp(new_ctx->username, old_ctx->username))) {
649 cifs_dbg(VFS, "can not change username during remount\n");
650 return -EINVAL;
651 }
652 if (new_ctx->password &&
653 (!old_ctx->password || strcmp(new_ctx->password, old_ctx->password))) {
654 cifs_dbg(VFS, "can not change password during remount\n");
655 return -EINVAL;
656 }
657 if (new_ctx->domainname &&
658 (!old_ctx->domainname || strcmp(new_ctx->domainname, old_ctx->domainname))) {
659 cifs_dbg(VFS, "can not change domainname during remount\n");
660 return -EINVAL;
661 }
662 if (new_ctx->nodename &&
663 (!old_ctx->nodename || strcmp(new_ctx->nodename, old_ctx->nodename))) {
664 cifs_dbg(VFS, "can not change nodename during remount\n");
665 return -EINVAL;
666 }
667 if (new_ctx->iocharset &&
668 (!old_ctx->iocharset || strcmp(new_ctx->iocharset, old_ctx->iocharset))) {
669 cifs_dbg(VFS, "can not change iocharset during remount\n");
670 return -EINVAL;
671 }
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]672
673 return 0;
674}
675
Ronnie Sahlberg9ccecae2020-12-14 16:40:19 +1000[diff] [blame]676#define STEAL_STRING(cifs_sb, ctx, field) \
677do { \
678 kfree(ctx->field); \
679 ctx->field = cifs_sb->ctx->field; \
680 cifs_sb->ctx->field = NULL; \
681} while (0)
682
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]683static int smb3_reconfigure(struct fs_context *fc)
684{
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]685 struct smb3_fs_context *ctx = smb3_fc2context(fc);
686 struct dentry *root = fc->root;
687 struct cifs_sb_info *cifs_sb = CIFS_SB(root->d_sb);
688 int rc;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]689
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]690 rc = smb3_verify_reconfigure_ctx(ctx, cifs_sb->ctx);
691 if (rc)
692 return rc;
693
694 /*
Ronnie Sahlberg9ccecae2020-12-14 16:40:19 +1000[diff] [blame]695 * We can not change UNC/username/password/domainname/nodename/iocharset
696 * during reconnect so ignore what we have in the new context and
697 * just use what we already have in cifs_sb->ctx.
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]698 */
Ronnie Sahlberg9ccecae2020-12-14 16:40:19 +1000[diff] [blame]699 STEAL_STRING(cifs_sb, ctx, UNC);
700 STEAL_STRING(cifs_sb, ctx, username);
701 STEAL_STRING(cifs_sb, ctx, password);
702 STEAL_STRING(cifs_sb, ctx, domainname);
703 STEAL_STRING(cifs_sb, ctx, nodename);
704 STEAL_STRING(cifs_sb, ctx, iocharset);
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]705
706 smb3_cleanup_fs_context_contents(cifs_sb->ctx);
707 rc = smb3_fs_context_dup(cifs_sb->ctx, ctx);
Ronnie Sahlberg1cb6c3d2020-12-14 16:40:26 +1000[diff] [blame]708 smb3_update_mnt_flags(cifs_sb);
Ronnie Sahlbergd6a78782020-12-14 16:40:18 +1000[diff] [blame]709
710 return rc;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]711}
712
713static int smb3_fs_context_parse_param(struct fs_context *fc,
714 struct fs_parameter *param)
715{
716 struct fs_parse_result result;
717 struct smb3_fs_context *ctx = smb3_fc2context(fc);
718 int i, opt;
719 bool is_smb3 = !strcmp(fc->fs_type->name, "smb3");
720 bool skip_parsing = false;
721
722 cifs_dbg(FYI, "CIFS: parsing cifs mount option '%s'\n", param->key);
723
724 /*
725 * fs_parse can not handle string options with an empty value so
726 * we will need special handling of them.
727 */
728 if (param->type == fs_value_is_string && param->string[0] == 0) {
Ronnie Sahlberg5c4b6422020-12-14 16:40:27 +1000[diff] [blame^]729 if (!strcmp("pass", param->key) || !strcmp("password", param->key)) {
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]730 skip_parsing = true;
Ronnie Sahlberg5c4b6422020-12-14 16:40:27 +1000[diff] [blame^]731 opt = Opt_pass;
732 }
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]733 }
734
735 if (!skip_parsing) {
736 opt = fs_parse(fc, smb3_fs_parameters, param, &result);
737 if (opt < 0)
738 return ctx->sloppy ? 1 : opt;
739 }
740
741 switch (opt) {
742 case Opt_compress:
743 ctx->compression = UNKNOWN_TYPE;
744 cifs_dbg(VFS,
745 "SMB3 compression support is experimental\n");
746 break;
747 case Opt_nodfs:
748 ctx->nodfs = 1;
749 break;
750 case Opt_hard:
751 if (result.negated)
752 ctx->retry = 0;
753 else
754 ctx->retry = 1;
755 break;
756 case Opt_soft:
757 if (result.negated)
758 ctx->retry = 1;
759 else
760 ctx->retry = 0;
761 break;
762 case Opt_mapposix:
763 if (result.negated)
764 ctx->remap = false;
765 else {
766 ctx->remap = true;
767 ctx->sfu_remap = false; /* disable SFU mapping */
768 }
769 break;
770 case Opt_user_xattr:
771 if (result.negated)
772 ctx->no_xattr = 1;
773 else
774 ctx->no_xattr = 0;
775 break;
776 case Opt_forceuid:
777 if (result.negated)
778 ctx->override_uid = 0;
779 else
780 ctx->override_uid = 1;
781 break;
782 case Opt_forcegid:
783 if (result.negated)
784 ctx->override_gid = 0;
785 else
786 ctx->override_gid = 1;
787 break;
788 case Opt_perm:
789 if (result.negated)
790 ctx->noperm = 1;
791 else
792 ctx->noperm = 0;
793 break;
794 case Opt_dynperm:
795 if (result.negated)
796 ctx->dynperm = 0;
797 else
798 ctx->dynperm = 1;
799 break;
800 case Opt_sfu:
801 if (result.negated)
802 ctx->sfu_emul = 0;
803 else
804 ctx->sfu_emul = 1;
805 break;
806 case Opt_noblocksend:
807 ctx->noblocksnd = 1;
808 break;
809 case Opt_noautotune:
810 ctx->noautotune = 1;
811 break;
812 case Opt_nolease:
813 ctx->no_lease = 1;
814 break;
815 case Opt_nodelete:
816 ctx->nodelete = 1;
817 break;
818 case Opt_multichannel:
819 if (result.negated) {
820 ctx->multichannel = false;
821 ctx->max_channels = 1;
822 } else {
823 ctx->multichannel = true;
824 /* if number of channels not specified, default to 2 */
825 if (ctx->max_channels < 2)
826 ctx->max_channels = 2;
827 }
828 break;
829 case Opt_uid:
830 ctx->linux_uid.val = result.uint_32;
831 ctx->uid_specified = true;
832 break;
833 case Opt_cruid:
834 ctx->cred_uid.val = result.uint_32;
835 break;
836 case Opt_backupgid:
837 ctx->backupgid.val = result.uint_32;
838 ctx->backupgid_specified = true;
839 break;
840 case Opt_gid:
841 ctx->linux_gid.val = result.uint_32;
842 ctx->gid_specified = true;
843 break;
844 case Opt_port:
845 ctx->port = result.uint_32;
846 break;
847 case Opt_file_mode:
848 ctx->file_mode = result.uint_32;
849 break;
850 case Opt_dirmode:
851 ctx->dir_mode = result.uint_32;
852 break;
853 case Opt_min_enc_offload:
854 ctx->min_offload = result.uint_32;
855 break;
856 case Opt_blocksize:
857 /*
858 * inode blocksize realistically should never need to be
859 * less than 16K or greater than 16M and default is 1MB.
860 * Note that small inode block sizes (e.g. 64K) can lead
861 * to very poor performance of common tools like cp and scp
862 */
863 if ((result.uint_32 < CIFS_MAX_MSGSIZE) ||
864 (result.uint_32 > (4 * SMB3_DEFAULT_IOSIZE))) {
865 cifs_dbg(VFS, "%s: Invalid blocksize\n",
866 __func__);
867 goto cifs_parse_mount_err;
868 }
869 ctx->bsize = result.uint_32;
Ronnie Sahlberg522aa3b2020-12-14 16:40:17 +1000[diff] [blame]870 ctx->got_bsize = true;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]871 break;
872 case Opt_rsize:
873 ctx->rsize = result.uint_32;
Ronnie Sahlberg522aa3b2020-12-14 16:40:17 +1000[diff] [blame]874 ctx->got_rsize = true;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]875 break;
876 case Opt_wsize:
877 ctx->wsize = result.uint_32;
Ronnie Sahlberg522aa3b2020-12-14 16:40:17 +1000[diff] [blame]878 ctx->got_wsize = true;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]879 break;
880 case Opt_actimeo:
881 ctx->actimeo = HZ * result.uint_32;
882 if (ctx->actimeo > CIFS_MAX_ACTIMEO) {
883 cifs_dbg(VFS, "attribute cache timeout too large\n");
884 goto cifs_parse_mount_err;
885 }
886 break;
887 case Opt_echo_interval:
888 ctx->echo_interval = result.uint_32;
889 break;
890 case Opt_snapshot:
891 ctx->snapshot_time = result.uint_32;
892 break;
893 case Opt_max_credits:
894 if (result.uint_32 < 20 || result.uint_32 > 60000) {
895 cifs_dbg(VFS, "%s: Invalid max_credits value\n",
896 __func__);
897 goto cifs_parse_mount_err;
898 }
899 ctx->max_credits = result.uint_32;
900 break;
901 case Opt_max_channels:
902 if (result.uint_32 < 1 || result.uint_32 > CIFS_MAX_CHANNELS) {
903 cifs_dbg(VFS, "%s: Invalid max_channels value, needs to be 1-%d\n",
904 __func__, CIFS_MAX_CHANNELS);
905 goto cifs_parse_mount_err;
906 }
907 ctx->max_channels = result.uint_32;
908 break;
909 case Opt_handletimeout:
910 ctx->handle_timeout = result.uint_32;
911 if (ctx->handle_timeout > SMB3_MAX_HANDLE_TIMEOUT) {
912 cifs_dbg(VFS, "Invalid handle cache timeout, longer than 16 minutes\n");
913 goto cifs_parse_mount_err;
914 }
915 break;
916 case Opt_source:
917 kfree(ctx->UNC);
918 ctx->UNC = NULL;
919 switch (smb3_parse_devname(param->string, ctx)) {
920 case 0:
921 break;
922 case -ENOMEM:
923 cifs_dbg(VFS, "Unable to allocate memory for devname\n");
924 goto cifs_parse_mount_err;
925 case -EINVAL:
926 cifs_dbg(VFS, "Malformed UNC in devname\n");
927 goto cifs_parse_mount_err;
928 default:
929 cifs_dbg(VFS, "Unknown error parsing devname\n");
930 goto cifs_parse_mount_err;
931 }
932 fc->source = kstrdup(param->string, GFP_KERNEL);
933 if (fc->source == NULL) {
934 cifs_dbg(VFS, "OOM when copying UNC string\n");
935 goto cifs_parse_mount_err;
936 }
937 break;
938 case Opt_user:
939 kfree(ctx->username);
940 ctx->username = NULL;
941 if (strlen(param->string) == 0) {
942 /* null user, ie. anonymous authentication */
943 ctx->nullauth = 1;
944 break;
945 }
946
947 if (strnlen(param->string, CIFS_MAX_USERNAME_LEN) >
948 CIFS_MAX_USERNAME_LEN) {
949 pr_warn("username too long\n");
950 goto cifs_parse_mount_err;
951 }
952 ctx->username = kstrdup(param->string, GFP_KERNEL);
953 if (ctx->username == NULL) {
954 cifs_dbg(VFS, "OOM when copying username string\n");
955 goto cifs_parse_mount_err;
956 }
957 break;
958 case Opt_pass:
959 kfree(ctx->password);
960 ctx->password = NULL;
961 if (strlen(param->string) == 0)
962 break;
963
964 ctx->password = kstrdup(param->string, GFP_KERNEL);
965 if (ctx->password == NULL) {
966 cifs_dbg(VFS, "OOM when copying password string\n");
967 goto cifs_parse_mount_err;
968 }
969 break;
970 case Opt_ip:
971 if (strlen(param->string) == 0) {
972 ctx->got_ip = false;
973 break;
974 }
975 if (!cifs_convert_address((struct sockaddr *)&ctx->dstaddr,
976 param->string,
977 strlen(param->string))) {
978 pr_err("bad ip= option (%s)\n", param->string);
979 goto cifs_parse_mount_err;
980 }
981 ctx->got_ip = true;
982 break;
983 case Opt_domain:
984 if (strnlen(param->string, CIFS_MAX_DOMAINNAME_LEN)
985 == CIFS_MAX_DOMAINNAME_LEN) {
986 pr_warn("domain name too long\n");
987 goto cifs_parse_mount_err;
988 }
989
990 kfree(ctx->domainname);
991 ctx->domainname = kstrdup(param->string, GFP_KERNEL);
992 if (ctx->domainname == NULL) {
993 cifs_dbg(VFS, "OOM when copying domainname string\n");
994 goto cifs_parse_mount_err;
995 }
996 cifs_dbg(FYI, "Domain name set\n");
997 break;
998 case Opt_srcaddr:
999 if (!cifs_convert_address(
1000 (struct sockaddr *)&ctx->srcaddr,
1001 param->string, strlen(param->string))) {
1002 pr_warn("Could not parse srcaddr: %s\n",
1003 param->string);
1004 goto cifs_parse_mount_err;
1005 }
1006 break;
1007 case Opt_iocharset:
1008 if (strnlen(param->string, 1024) >= 65) {
1009 pr_warn("iocharset name too long\n");
1010 goto cifs_parse_mount_err;
1011 }
1012
1013 if (strncasecmp(param->string, "default", 7) != 0) {
1014 kfree(ctx->iocharset);
1015 ctx->iocharset = kstrdup(param->string, GFP_KERNEL);
1016 if (ctx->iocharset == NULL) {
1017 cifs_dbg(VFS, "OOM when copying iocharset string\n");
1018 goto cifs_parse_mount_err;
1019 }
1020 }
1021 /* if iocharset not set then load_nls_default
1022 * is used by caller
1023 */
1024 cifs_dbg(FYI, "iocharset set to %s\n", ctx->iocharset);
1025 break;
1026 case Opt_netbiosname:
1027 memset(ctx->source_rfc1001_name, 0x20,
1028 RFC1001_NAME_LEN);
1029 /*
1030 * FIXME: are there cases in which a comma can
1031 * be valid in workstation netbios name (and
1032 * need special handling)?
1033 */
1034 for (i = 0; i < RFC1001_NAME_LEN; i++) {
1035 /* don't ucase netbiosname for user */
1036 if (param->string[i] == 0)
1037 break;
1038 ctx->source_rfc1001_name[i] = param->string[i];
1039 }
1040 /* The string has 16th byte zero still from
1041 * set at top of the function
1042 */
1043 if (i == RFC1001_NAME_LEN && param->string[i] != 0)
1044 pr_warn("netbiosname longer than 15 truncated\n");
1045 break;
1046 case Opt_servern:
1047 /* last byte, type, is 0x20 for servr type */
1048 memset(ctx->target_rfc1001_name, 0x20,
1049 RFC1001_NAME_LEN_WITH_NULL);
1050 /*
1051 * BB are there cases in which a comma can be valid in this
1052 * workstation netbios name (and need special handling)?
1053 */
1054
1055 /* user or mount helper must uppercase the netbios name */
1056 for (i = 0; i < 15; i++) {
1057 if (param->string[i] == 0)
1058 break;
1059 ctx->target_rfc1001_name[i] = param->string[i];
1060 }
1061
1062 /* The string has 16th byte zero still from set at top of function */
1063 if (i == RFC1001_NAME_LEN && param->string[i] != 0)
1064 pr_warn("server netbiosname longer than 15 truncated\n");
1065 break;
1066 case Opt_ver:
1067 /* version of mount userspace tools, not dialect */
1068 /* If interface changes in mount.cifs bump to new ver */
1069 if (strncasecmp(param->string, "1", 1) == 0) {
1070 if (strlen(param->string) > 1) {
1071 pr_warn("Bad mount helper ver=%s. Did you want SMB1 (CIFS) dialect and mean to type vers=1.0 instead?\n",
1072 param->string);
1073 goto cifs_parse_mount_err;
1074 }
1075 /* This is the default */
1076 break;
1077 }
1078 /* For all other value, error */
1079 pr_warn("Invalid mount helper version specified\n");
1080 goto cifs_parse_mount_err;
1081 case Opt_vers:
1082 /* protocol version (dialect) */
1083 if (cifs_parse_smb_version(param->string, ctx, is_smb3) != 0)
1084 goto cifs_parse_mount_err;
1085 ctx->got_version = true;
1086 break;
1087 case Opt_sec:
1088 if (cifs_parse_security_flavors(param->string, ctx) != 0)
1089 goto cifs_parse_mount_err;
1090 break;
1091 case Opt_cache:
1092 if (cifs_parse_cache_flavor(param->string, ctx) != 0)
1093 goto cifs_parse_mount_err;
1094 break;
Samuel Cabrero0ac4e292020-12-11 22:59:29 -0600[diff] [blame]1095 case Opt_witness:
1096#ifndef CONFIG_CIFS_SWN_UPCALL
1097 cifs_dbg(VFS, "Witness support needs CONFIG_CIFS_SWN_UPCALL config option\n");
1098 goto cifs_parse_mount_err;
1099#endif
1100 ctx->witness = true;
1101 break;
Ronnie Sahlberg24e0a1e2020-12-10 00:06:02 -0600[diff] [blame]1102 case Opt_rootfs:
1103#ifdef CONFIG_CIFS_ROOT
1104 ctx->rootfs = true;
1105#endif
1106 break;
1107 case Opt_posixpaths:
1108 if (result.negated)
1109 ctx->posix_paths = 0;
1110 else
1111 ctx->posix_paths = 1;
1112 break;
1113 case Opt_unix:
1114 if (result.negated)
1115 ctx->linux_ext = 0;
1116 else
1117 ctx->no_linux_ext = 1;
1118 break;
1119 case Opt_nocase:
1120 ctx->nocase = 1;
1121 break;
1122 case Opt_brl:
1123 if (result.negated) {
1124 /*
1125 * turn off mandatory locking in mode
1126 * if remote locking is turned off since the
1127 * local vfs will do advisory
1128 */
1129 if (ctx->file_mode ==
1130 (S_IALLUGO & ~(S_ISUID | S_IXGRP)))
1131 ctx->file_mode = S_IALLUGO;
1132 ctx->nobrl = 1;
1133 } else
1134 ctx->nobrl = 0;
1135 break;
1136 case Opt_handlecache:
1137 if (result.negated)
1138 ctx->nohandlecache = 1;
1139 else
1140 ctx->nohandlecache = 0;
1141 break;
1142 case Opt_forcemandatorylock:
1143 ctx->mand_lock = 1;
1144 break;
1145 case Opt_setuids:
1146 ctx->setuids = result.negated;
1147 break;
1148 case Opt_intr:
1149 ctx->intr = !result.negated;
1150 break;
1151 case Opt_setuidfromacl:
1152 ctx->setuidfromacl = 1;
1153 break;
1154 case Opt_strictsync:
1155 ctx->nostrictsync = result.negated;
1156 break;
1157 case Opt_serverino:
1158 ctx->server_ino = !result.negated;
1159 break;
1160 case Opt_rwpidforward:
1161 ctx->rwpidforward = 1;
1162 break;
1163 case Opt_modesid:
1164 ctx->mode_ace = 1;
1165 break;
1166 case Opt_cifsacl:
1167 ctx->cifs_acl = !result.negated;
1168 break;
1169 case Opt_acl:
1170 ctx->no_psx_acl = result.negated;
1171 break;
1172 case Opt_locallease:
1173 ctx->local_lease = 1;
1174 break;
1175 case Opt_sign:
1176 ctx->sign = true;
1177 break;
1178 case Opt_ignore_signature:
1179 ctx->sign = true;
1180 ctx->ignore_signature = true;
1181 break;
1182 case Opt_seal:
1183 /* we do not do the following in secFlags because seal
1184 * is a per tree connection (mount) not a per socket
1185 * or per-smb connection option in the protocol
1186 * vol->secFlg |= CIFSSEC_MUST_SEAL;
1187 */
1188 ctx->seal = 1;
1189 break;
1190 case Opt_noac:
1191 pr_warn("Mount option noac not supported. Instead set /proc/fs/cifs/LookupCacheEnabled to 0\n");
1192 break;
1193 case Opt_fsc:
1194#ifndef CONFIG_CIFS_FSCACHE
1195 cifs_dbg(VFS, "FS-Cache support needs CONFIG_CIFS_FSCACHE kernel config option set\n");
1196 goto cifs_parse_mount_err;
1197#endif
1198 ctx->fsc = true;
1199 break;
1200 case Opt_mfsymlinks:
1201 ctx->mfsymlinks = true;
1202 break;
1203 case Opt_multiuser:
1204 ctx->multiuser = true;
1205 break;
1206 case Opt_sloppy:
1207 ctx->sloppy = true;
1208 break;
1209 case Opt_nosharesock:
1210 ctx->nosharesock = true;
1211 break;
1212 case Opt_persistent:
1213 if (result.negated) {
1214 if ((ctx->nopersistent) || (ctx->resilient)) {
1215 cifs_dbg(VFS,
1216 "persistenthandles mount options conflict\n");
1217 goto cifs_parse_mount_err;
1218 }
1219 } else {
1220 ctx->nopersistent = true;
1221 if (ctx->persistent) {
1222 cifs_dbg(VFS,
1223 "persistenthandles mount options conflict\n");
1224 goto cifs_parse_mount_err;
1225 }
1226 }
1227 break;
1228 case Opt_resilient:
1229 if (result.negated) {
1230 ctx->resilient = false; /* already the default */
1231 } else {
1232 ctx->resilient = true;
1233 if (ctx->persistent) {
1234 cifs_dbg(VFS,
1235 "persistenthandles mount options conflict\n");
1236 goto cifs_parse_mount_err;
1237 }
1238 }
1239 break;
1240 case Opt_domainauto:
1241 ctx->domainauto = true;
1242 break;
1243 case Opt_rdma:
1244 ctx->rdma = true;
1245 break;
1246 }
1247
1248 return 0;
1249
1250 cifs_parse_mount_err:
1251 return 1;
1252}
1253
1254int smb3_init_fs_context(struct fs_context *fc)
1255{
1256 struct smb3_fs_context *ctx;
1257 char *nodename = utsname()->nodename;
1258 int i;
1259
1260 ctx = kzalloc(sizeof(struct smb3_fs_context), GFP_KERNEL);
1261 if (unlikely(!ctx))
1262 return -ENOMEM;
1263
1264 /*
1265 * does not have to be perfect mapping since field is
1266 * informational, only used for servers that do not support
1267 * port 445 and it can be overridden at mount time
1268 */
1269 memset(ctx->source_rfc1001_name, 0x20, RFC1001_NAME_LEN);
1270 for (i = 0; i < strnlen(nodename, RFC1001_NAME_LEN); i++)
1271 ctx->source_rfc1001_name[i] = toupper(nodename[i]);
1272
1273 ctx->source_rfc1001_name[RFC1001_NAME_LEN] = 0;
1274 /*
1275 * null target name indicates to use *SMBSERVR default called name
1276 * if we end up sending RFC1001 session initialize
1277 */
1278 ctx->target_rfc1001_name[0] = 0;
1279 ctx->cred_uid = current_uid();
1280 ctx->linux_uid = current_uid();
1281 ctx->linux_gid = current_gid();
1282 ctx->bsize = 1024 * 1024; /* can improve cp performance significantly */
1283
1284 /*
1285 * default to SFM style remapping of seven reserved characters
1286 * unless user overrides it or we negotiate CIFS POSIX where
1287 * it is unnecessary. Can not simultaneously use more than one mapping
1288 * since then readdir could list files that open could not open
1289 */
1290 ctx->remap = true;
1291
1292 /* default to only allowing write access to owner of the mount */
1293 ctx->dir_mode = ctx->file_mode = S_IRUGO | S_IXUGO | S_IWUSR;
1294
1295 /* ctx->retry default is 0 (i.e. "soft" limited retry not hard retry) */
1296 /* default is always to request posix paths. */
1297 ctx->posix_paths = 1;
1298 /* default to using server inode numbers where available */
1299 ctx->server_ino = 1;
1300
1301 /* default is to use strict cifs caching semantics */
1302 ctx->strict_io = true;
1303
1304 ctx->actimeo = CIFS_DEF_ACTIMEO;
1305
1306 /* Most clients set timeout to 0, allows server to use its default */
1307 ctx->handle_timeout = 0; /* See MS-SMB2 spec section 2.2.14.2.12 */
1308
1309 /* offer SMB2.1 and later (SMB3 etc). Secure and widely accepted */
1310 ctx->ops = &smb30_operations;
1311 ctx->vals = &smbdefault_values;
1312
1313 ctx->echo_interval = SMB_ECHO_INTERVAL_DEFAULT;
1314
1315 /* default to no multichannel (single server connection) */
1316 ctx->multichannel = false;
1317 ctx->max_channels = 1;
1318
1319 ctx->backupuid_specified = false; /* no backup intent for a user */
1320 ctx->backupgid_specified = false; /* no backup intent for a group */
1321
1322/*
1323 * short int override_uid = -1;
1324 * short int override_gid = -1;
1325 * char *nodename = strdup(utsname()->nodename);
1326 * struct sockaddr *dstaddr = (struct sockaddr *)&vol->dstaddr;
1327 */
1328
1329 fc->fs_private = ctx;
1330 fc->ops = &smb3_fs_context_ops;
1331 return 0;
1332}
Ronnie Sahlbergc741cba2020-12-14 16:40:16 +1000[diff] [blame]1333
1334void
1335smb3_cleanup_fs_context_contents(struct smb3_fs_context *ctx)
1336{
1337 if (ctx == NULL)
1338 return;
1339
1340 /*
1341 * Make sure this stays in sync with smb3_fs_context_dup()
1342 */
1343 kfree(ctx->mount_options);
1344 ctx->mount_options = NULL;
1345 kfree(ctx->username);
1346 ctx->username = NULL;
1347 kfree_sensitive(ctx->password);
1348 ctx->password = NULL;
1349 kfree(ctx->UNC);
1350 ctx->UNC = NULL;
1351 kfree(ctx->domainname);
1352 ctx->domainname = NULL;
1353 kfree(ctx->nodename);
1354 ctx->nodename = NULL;
1355 kfree(ctx->iocharset);
1356 ctx->iocharset = NULL;
1357 kfree(ctx->prepath);
1358 ctx->prepath = NULL;
Ronnie Sahlbergc741cba2020-12-14 16:40:16 +1000[diff] [blame]1359}
1360
1361void
1362smb3_cleanup_fs_context(struct smb3_fs_context *ctx)
1363{
1364 if (!ctx)
1365 return;
1366 smb3_cleanup_fs_context_contents(ctx);
1367 kfree(ctx);
1368}
Ronnie Sahlberg2d39f502020-12-14 16:40:25 +1000[diff] [blame]1369
1370void smb3_update_mnt_flags(struct cifs_sb_info *cifs_sb)
1371{
1372 struct smb3_fs_context *ctx = cifs_sb->ctx;
1373
1374 if (ctx->nodfs)
1375 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_DFS;
1376 else
1377 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NO_DFS;
1378
1379 if (ctx->noperm)
1380 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_PERM;
1381 else
1382 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NO_PERM;
1383
1384 if (ctx->setuids)
1385 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SET_UID;
1386 else
1387 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_SET_UID;
1388
1389 if (ctx->setuidfromacl)
1390 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UID_FROM_ACL;
1391 else
1392 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_UID_FROM_ACL;
1393
1394 if (ctx->server_ino)
1395 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_SERVER_INUM;
1396 else
1397 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_SERVER_INUM;
1398
1399 if (ctx->remap)
1400 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SFM_CHR;
1401 else
1402 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_MAP_SFM_CHR;
1403
1404 if (ctx->sfu_remap)
1405 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MAP_SPECIAL_CHR;
1406 else
1407 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_MAP_SPECIAL_CHR;
1408
1409 if (ctx->no_xattr)
1410 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_XATTR;
1411 else
1412 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NO_XATTR;
1413
1414 if (ctx->sfu_emul)
1415 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_UNX_EMUL;
1416 else
1417 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_UNX_EMUL;
1418
1419 if (ctx->nobrl)
1420 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_BRL;
1421 else
1422 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NO_BRL;
1423
1424 if (ctx->nohandlecache)
1425 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NO_HANDLE_CACHE;
1426 else
1427 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NO_HANDLE_CACHE;
1428
1429 if (ctx->nostrictsync)
1430 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOSSYNC;
1431 else
1432 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NOSSYNC;
1433
1434 if (ctx->mand_lock)
1435 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_NOPOSIXBRL;
1436 else
1437 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_NOPOSIXBRL;
1438
1439 if (ctx->rwpidforward)
1440 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_RWPIDFORWARD;
1441 else
1442 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_RWPIDFORWARD;
1443
1444 if (ctx->mode_ace)
1445 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MODE_FROM_SID;
1446 else
1447 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_MODE_FROM_SID;
1448
1449 if (ctx->cifs_acl)
1450 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_ACL;
1451 else
1452 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_CIFS_ACL;
1453
1454 if (ctx->backupuid_specified)
1455 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPUID;
1456 else
1457 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_CIFS_BACKUPUID;
1458
1459 if (ctx->backupgid_specified)
1460 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_CIFS_BACKUPGID;
1461 else
1462 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_CIFS_BACKUPGID;
1463
1464 if (ctx->override_uid)
1465 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_UID;
1466 else
1467 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_OVERR_UID;
1468
1469 if (ctx->override_gid)
1470 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_OVERR_GID;
1471 else
1472 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_OVERR_GID;
1473
1474 if (ctx->dynperm)
1475 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DYNPERM;
1476 else
1477 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_DYNPERM;
1478
1479 if (ctx->fsc)
1480 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_FSCACHE;
1481 else
1482 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_FSCACHE;
1483
1484 if (ctx->multiuser)
1485 cifs_sb->mnt_cifs_flags |= (CIFS_MOUNT_MULTIUSER |
1486 CIFS_MOUNT_NO_PERM);
1487 else
1488 cifs_sb->mnt_cifs_flags &= ~(CIFS_MOUNT_MULTIUSER |
1489 CIFS_MOUNT_NO_PERM);
1490
1491 if (ctx->strict_io)
1492 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_STRICT_IO;
1493 else
1494 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_STRICT_IO;
1495
1496 if (ctx->direct_io)
1497 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_DIRECT_IO;
1498 else
1499 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_DIRECT_IO;
1500
1501 if (ctx->mfsymlinks)
1502 cifs_sb->mnt_cifs_flags |= CIFS_MOUNT_MF_SYMLINKS;
1503 else
1504 cifs_sb->mnt_cifs_flags &= ~CIFS_MOUNT_MF_SYMLINKS;
1505 if (ctx->mfsymlinks) {
1506 if (ctx->sfu_emul) {
1507 /*
1508 * Our SFU ("Services for Unix" emulation does not allow
1509 * creating symlinks but does allow reading existing SFU
1510 * symlinks (it does allow both creating and reading SFU
1511 * style mknod and FIFOs though). When "mfsymlinks" and
1512 * "sfu" are both enabled at the same time, it allows
1513 * reading both types of symlinks, but will only create
1514 * them with mfsymlinks format. This allows better
1515 * Apple compatibility (probably better for Samba too)
1516 * while still recognizing old Windows style symlinks.
1517 */
1518 cifs_dbg(VFS, "mount options mfsymlinks and sfu both enabled\n");
1519 }
1520 }
1521
1522 return;
1523}