2 * NFS exporting and validation.
4 * We maintain a list of clients, each of which has a list of
5 * exports. To export an fs to a given client, you first have
6 * to create the client entry with NFSCTL_ADDCLIENT, which
7 * creates a client control block and adds it to the hash
8 * table. Then, you call NFSCTL_EXPORT for each fs.
11 * Copyright (C) 1995, 1996 Olaf Kirch, <okir@monad.swb.de>
14 #include <linux/slab.h>
15 #include <linux/namei.h>
16 #include <linux/module.h>
17 #include <linux/exportfs.h>
19 #include <linux/nfsd/syscall.h>
25 #define NFSDDBG_FACILITY NFSDDBG_EXPORT
27 typedef struct auth_domain svc_client;
28 typedef struct svc_export svc_export;
32 * One maps client+vfsmnt+dentry to export options - the export map
33 * The other maps client+filehandle-fragment to export options. - the expkey map
35 * The export options are actually stored in the first map, and the
36 * second map contains a reference to the entry in the first map.
39 #define EXPKEY_HASHBITS 8
40 #define EXPKEY_HASHMAX (1 << EXPKEY_HASHBITS)
41 #define EXPKEY_HASHMASK (EXPKEY_HASHMAX -1)
42 static struct cache_head *expkey_table[EXPKEY_HASHMAX];
44 static void expkey_put(struct kref *ref)
46 struct svc_expkey *key = container_of(ref, struct svc_expkey, h.ref);
48 if (test_bit(CACHE_VALID, &key->h.flags) &&
49 !test_bit(CACHE_NEGATIVE, &key->h.flags))
50 path_put(&key->ek_path);
51 auth_domain_put(key->ek_client);
55 static void expkey_request(struct cache_detail *cd,
57 char **bpp, int *blen)
59 /* client fsidtype \xfsid */
60 struct svc_expkey *ek = container_of(h, struct svc_expkey, h);
63 qword_add(bpp, blen, ek->ek_client->name);
64 snprintf(type, 5, "%d", ek->ek_fsidtype);
65 qword_add(bpp, blen, type);
66 qword_addhex(bpp, blen, (char*)ek->ek_fsid, key_len(ek->ek_fsidtype));
70 static int expkey_upcall(struct cache_detail *cd, struct cache_head *h)
72 return sunrpc_cache_pipe_upcall(cd, h, expkey_request);
75 static struct svc_expkey *svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old);
76 static struct svc_expkey *svc_expkey_lookup(struct svc_expkey *);
77 static struct cache_detail svc_expkey_cache;
79 static int expkey_parse(struct cache_detail *cd, char *mesg, int mlen)
81 /* client fsidtype fsid [path] */
84 struct auth_domain *dom = NULL;
88 struct svc_expkey key;
89 struct svc_expkey *ek = NULL;
91 if (mesg[mlen-1] != '\n')
95 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
101 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
105 dom = auth_domain_find(buf);
108 dprintk("found domain %s\n", buf);
111 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
113 fsidtype = simple_strtoul(buf, &ep, 10);
116 dprintk("found fsidtype %d\n", fsidtype);
117 if (key_len(fsidtype)==0) /* invalid type */
119 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
121 dprintk("found fsid length %d\n", len);
122 if (len != key_len(fsidtype))
125 /* OK, we seem to have a valid key */
127 key.h.expiry_time = get_expiry(&mesg);
128 if (key.h.expiry_time == 0)
132 key.ek_fsidtype = fsidtype;
133 memcpy(key.ek_fsid, buf, len);
135 ek = svc_expkey_lookup(&key);
140 /* now we want a pathname, or empty meaning NEGATIVE */
142 len = qword_get(&mesg, buf, PAGE_SIZE);
145 dprintk("Path seems to be <%s>\n", buf);
148 set_bit(CACHE_NEGATIVE, &key.h.flags);
149 ek = svc_expkey_update(&key, ek);
153 err = kern_path(buf, 0, &key.ek_path);
157 dprintk("Found the path %s\n", buf);
159 ek = svc_expkey_update(&key, ek);
162 path_put(&key.ek_path);
167 cache_put(&ek->h, &svc_expkey_cache);
169 auth_domain_put(dom);
174 static int expkey_show(struct seq_file *m,
175 struct cache_detail *cd,
176 struct cache_head *h)
178 struct svc_expkey *ek ;
182 seq_puts(m, "#domain fsidtype fsid [path]\n");
185 ek = container_of(h, struct svc_expkey, h);
186 seq_printf(m, "%s %d 0x", ek->ek_client->name,
188 for (i=0; i < key_len(ek->ek_fsidtype)/4; i++)
189 seq_printf(m, "%08x", ek->ek_fsid[i]);
190 if (test_bit(CACHE_VALID, &h->flags) &&
191 !test_bit(CACHE_NEGATIVE, &h->flags)) {
193 seq_path(m, &ek->ek_path, "\\ \t\n");
199 static inline int expkey_match (struct cache_head *a, struct cache_head *b)
201 struct svc_expkey *orig = container_of(a, struct svc_expkey, h);
202 struct svc_expkey *new = container_of(b, struct svc_expkey, h);
204 if (orig->ek_fsidtype != new->ek_fsidtype ||
205 orig->ek_client != new->ek_client ||
206 memcmp(orig->ek_fsid, new->ek_fsid, key_len(orig->ek_fsidtype)) != 0)
211 static inline void expkey_init(struct cache_head *cnew,
212 struct cache_head *citem)
214 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
215 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
217 kref_get(&item->ek_client->ref);
218 new->ek_client = item->ek_client;
219 new->ek_fsidtype = item->ek_fsidtype;
221 memcpy(new->ek_fsid, item->ek_fsid, sizeof(new->ek_fsid));
224 static inline void expkey_update(struct cache_head *cnew,
225 struct cache_head *citem)
227 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
228 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
230 new->ek_path = item->ek_path;
231 path_get(&item->ek_path);
234 static struct cache_head *expkey_alloc(void)
236 struct svc_expkey *i = kmalloc(sizeof(*i), GFP_KERNEL);
243 static struct cache_detail svc_expkey_cache = {
244 .owner = THIS_MODULE,
245 .hash_size = EXPKEY_HASHMAX,
246 .hash_table = expkey_table,
248 .cache_put = expkey_put,
249 .cache_upcall = expkey_upcall,
250 .cache_parse = expkey_parse,
251 .cache_show = expkey_show,
252 .match = expkey_match,
254 .update = expkey_update,
255 .alloc = expkey_alloc,
259 svc_expkey_hash(struct svc_expkey *item)
261 int hash = item->ek_fsidtype;
262 char * cp = (char*)item->ek_fsid;
263 int len = key_len(item->ek_fsidtype);
265 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
266 hash ^= hash_ptr(item->ek_client, EXPKEY_HASHBITS);
267 hash &= EXPKEY_HASHMASK;
271 static struct svc_expkey *
272 svc_expkey_lookup(struct svc_expkey *item)
274 struct cache_head *ch;
275 int hash = svc_expkey_hash(item);
277 ch = sunrpc_cache_lookup(&svc_expkey_cache, &item->h,
280 return container_of(ch, struct svc_expkey, h);
285 static struct svc_expkey *
286 svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old)
288 struct cache_head *ch;
289 int hash = svc_expkey_hash(new);
291 ch = sunrpc_cache_update(&svc_expkey_cache, &new->h,
294 return container_of(ch, struct svc_expkey, h);
300 #define EXPORT_HASHBITS 8
301 #define EXPORT_HASHMAX (1<< EXPORT_HASHBITS)
303 static struct cache_head *export_table[EXPORT_HASHMAX];
305 static void nfsd4_fslocs_free(struct nfsd4_fs_locations *fsloc)
309 for (i = 0; i < fsloc->locations_count; i++) {
310 kfree(fsloc->locations[i].path);
311 kfree(fsloc->locations[i].hosts);
313 kfree(fsloc->locations);
316 static void svc_export_put(struct kref *ref)
318 struct svc_export *exp = container_of(ref, struct svc_export, h.ref);
319 path_put(&exp->ex_path);
320 auth_domain_put(exp->ex_client);
321 kfree(exp->ex_pathname);
322 nfsd4_fslocs_free(&exp->ex_fslocs);
326 static void svc_export_request(struct cache_detail *cd,
327 struct cache_head *h,
328 char **bpp, int *blen)
331 struct svc_export *exp = container_of(h, struct svc_export, h);
334 qword_add(bpp, blen, exp->ex_client->name);
335 pth = d_path(&exp->ex_path, *bpp, *blen);
337 /* is this correct? */
341 qword_add(bpp, blen, pth);
345 static int svc_export_upcall(struct cache_detail *cd, struct cache_head *h)
347 return sunrpc_cache_pipe_upcall(cd, h, svc_export_request);
350 static struct svc_export *svc_export_update(struct svc_export *new,
351 struct svc_export *old);
352 static struct svc_export *svc_export_lookup(struct svc_export *);
354 static int check_export(struct inode *inode, int *flags, unsigned char *uuid)
358 * We currently export only dirs, regular files, and (for v4
359 * pseudoroot) symlinks.
361 if (!S_ISDIR(inode->i_mode) &&
362 !S_ISLNK(inode->i_mode) &&
363 !S_ISREG(inode->i_mode))
367 * Mountd should never pass down a writeable V4ROOT export, but,
370 if (*flags & NFSEXP_V4ROOT)
371 *flags |= NFSEXP_READONLY;
373 /* There are two requirements on a filesystem to be exportable.
374 * 1: We must be able to identify the filesystem from a number.
375 * either a device number (so FS_REQUIRES_DEV needed)
376 * or an FSID number (so NFSEXP_FSID or ->uuid is needed).
377 * 2: We must be able to find an inode from a filehandle.
378 * This means that s_export_op must be set.
380 if (!(inode->i_sb->s_type->fs_flags & FS_REQUIRES_DEV) &&
381 !(*flags & NFSEXP_FSID) &&
383 dprintk("exp_export: export of non-dev fs without fsid\n");
387 if (!inode->i_sb->s_export_op ||
388 !inode->i_sb->s_export_op->fh_to_dentry) {
389 dprintk("exp_export: export of invalid fs type.\n");
397 #ifdef CONFIG_NFSD_V4
400 fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc)
403 int migrated, i, err;
406 err = get_int(mesg, &fsloc->locations_count);
409 if (fsloc->locations_count > MAX_FS_LOCATIONS)
411 if (fsloc->locations_count == 0)
414 fsloc->locations = kzalloc(fsloc->locations_count
415 * sizeof(struct nfsd4_fs_location), GFP_KERNEL);
416 if (!fsloc->locations)
418 for (i=0; i < fsloc->locations_count; i++) {
419 /* colon separated host list */
421 len = qword_get(mesg, buf, PAGE_SIZE);
425 fsloc->locations[i].hosts = kstrdup(buf, GFP_KERNEL);
426 if (!fsloc->locations[i].hosts)
429 /* slash separated path component list */
430 len = qword_get(mesg, buf, PAGE_SIZE);
434 fsloc->locations[i].path = kstrdup(buf, GFP_KERNEL);
435 if (!fsloc->locations[i].path)
439 err = get_int(mesg, &migrated);
443 if (migrated < 0 || migrated > 1)
445 fsloc->migrated = migrated;
448 nfsd4_fslocs_free(fsloc);
452 static int secinfo_parse(char **mesg, char *buf, struct svc_export *exp)
455 struct exp_flavor_info *f;
457 err = get_int(mesg, &listsize);
460 if (listsize < 0 || listsize > MAX_SECINFO_LIST)
463 for (f = exp->ex_flavors; f < exp->ex_flavors + listsize; f++) {
464 err = get_int(mesg, &f->pseudoflavor);
468 * XXX: It would be nice to also check whether this
469 * pseudoflavor is supported, so we can discover the
470 * problem at export time instead of when a client fails
473 err = get_int(mesg, &f->flags);
476 /* Only some flags are allowed to differ between flavors: */
477 if (~NFSEXP_SECINFO_FLAGS & (f->flags ^ exp->ex_flags))
480 exp->ex_nflavors = listsize;
484 #else /* CONFIG_NFSD_V4 */
486 fsloc_parse(char **mesg, char *buf, struct nfsd4_fs_locations *fsloc){return 0;}
488 secinfo_parse(char **mesg, char *buf, struct svc_export *exp) { return 0; }
491 static int svc_export_parse(struct cache_detail *cd, char *mesg, int mlen)
493 /* client path expiry [flags anonuid anongid fsid] */
497 struct auth_domain *dom = NULL;
498 struct svc_export exp = {}, *expp;
501 if (mesg[mlen-1] != '\n')
505 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
511 len = qword_get(&mesg, buf, PAGE_SIZE);
516 dom = auth_domain_find(buf);
522 if ((len = qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
525 err = kern_path(buf, 0, &exp.ex_path);
532 exp.ex_pathname = kstrdup(buf, GFP_KERNEL);
533 if (!exp.ex_pathname)
538 exp.h.expiry_time = get_expiry(&mesg);
539 if (exp.h.expiry_time == 0)
543 err = get_int(&mesg, &an_int);
544 if (err == -ENOENT) {
546 set_bit(CACHE_NEGATIVE, &exp.h.flags);
548 if (err || an_int < 0)
550 exp.ex_flags= an_int;
553 err = get_int(&mesg, &an_int);
556 exp.ex_anon_uid= an_int;
559 err = get_int(&mesg, &an_int);
562 exp.ex_anon_gid= an_int;
565 err = get_int(&mesg, &an_int);
568 exp.ex_fsid = an_int;
570 while ((len = qword_get(&mesg, buf, PAGE_SIZE)) > 0) {
571 if (strcmp(buf, "fsloc") == 0)
572 err = fsloc_parse(&mesg, buf, &exp.ex_fslocs);
573 else if (strcmp(buf, "uuid") == 0) {
574 /* expect a 16 byte uuid encoded as \xXXXX... */
575 len = qword_get(&mesg, buf, PAGE_SIZE);
580 kmemdup(buf, 16, GFP_KERNEL);
581 if (exp.ex_uuid == NULL)
584 } else if (strcmp(buf, "secinfo") == 0)
585 err = secinfo_parse(&mesg, buf, &exp);
587 /* quietly ignore unknown words and anything
588 * following. Newer user-space can try to set
589 * new values, then see what the result was.
596 err = check_export(exp.ex_path.dentry->d_inode, &exp.ex_flags,
602 expp = svc_export_lookup(&exp);
604 expp = svc_export_update(&exp, expp);
613 nfsd4_fslocs_free(&exp.ex_fslocs);
616 kfree(exp.ex_pathname);
618 path_put(&exp.ex_path);
620 auth_domain_put(dom);
626 static void exp_flags(struct seq_file *m, int flag, int fsid,
627 uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fslocs);
628 static void show_secinfo(struct seq_file *m, struct svc_export *exp);
630 static int svc_export_show(struct seq_file *m,
631 struct cache_detail *cd,
632 struct cache_head *h)
634 struct svc_export *exp ;
637 seq_puts(m, "#path domain(flags)\n");
640 exp = container_of(h, struct svc_export, h);
641 seq_path(m, &exp->ex_path, " \t\n\\");
643 seq_escape(m, exp->ex_client->name, " \t\n\\");
645 if (test_bit(CACHE_VALID, &h->flags) &&
646 !test_bit(CACHE_NEGATIVE, &h->flags)) {
647 exp_flags(m, exp->ex_flags, exp->ex_fsid,
648 exp->ex_anon_uid, exp->ex_anon_gid, &exp->ex_fslocs);
651 seq_puts(m, ",uuid=");
652 for (i=0; i<16; i++) {
655 seq_printf(m, "%02x", exp->ex_uuid[i]);
658 show_secinfo(m, exp);
663 static int svc_export_match(struct cache_head *a, struct cache_head *b)
665 struct svc_export *orig = container_of(a, struct svc_export, h);
666 struct svc_export *new = container_of(b, struct svc_export, h);
667 return orig->ex_client == new->ex_client &&
668 orig->ex_path.dentry == new->ex_path.dentry &&
669 orig->ex_path.mnt == new->ex_path.mnt;
672 static void svc_export_init(struct cache_head *cnew, struct cache_head *citem)
674 struct svc_export *new = container_of(cnew, struct svc_export, h);
675 struct svc_export *item = container_of(citem, struct svc_export, h);
677 kref_get(&item->ex_client->ref);
678 new->ex_client = item->ex_client;
679 new->ex_path.dentry = dget(item->ex_path.dentry);
680 new->ex_path.mnt = mntget(item->ex_path.mnt);
681 new->ex_pathname = NULL;
682 new->ex_fslocs.locations = NULL;
683 new->ex_fslocs.locations_count = 0;
684 new->ex_fslocs.migrated = 0;
687 static void export_update(struct cache_head *cnew, struct cache_head *citem)
689 struct svc_export *new = container_of(cnew, struct svc_export, h);
690 struct svc_export *item = container_of(citem, struct svc_export, h);
693 new->ex_flags = item->ex_flags;
694 new->ex_anon_uid = item->ex_anon_uid;
695 new->ex_anon_gid = item->ex_anon_gid;
696 new->ex_fsid = item->ex_fsid;
697 new->ex_uuid = item->ex_uuid;
698 item->ex_uuid = NULL;
699 new->ex_pathname = item->ex_pathname;
700 item->ex_pathname = NULL;
701 new->ex_fslocs.locations = item->ex_fslocs.locations;
702 item->ex_fslocs.locations = NULL;
703 new->ex_fslocs.locations_count = item->ex_fslocs.locations_count;
704 item->ex_fslocs.locations_count = 0;
705 new->ex_fslocs.migrated = item->ex_fslocs.migrated;
706 item->ex_fslocs.migrated = 0;
707 new->ex_nflavors = item->ex_nflavors;
708 for (i = 0; i < MAX_SECINFO_LIST; i++) {
709 new->ex_flavors[i] = item->ex_flavors[i];
713 static struct cache_head *svc_export_alloc(void)
715 struct svc_export *i = kmalloc(sizeof(*i), GFP_KERNEL);
722 struct cache_detail svc_export_cache = {
723 .owner = THIS_MODULE,
724 .hash_size = EXPORT_HASHMAX,
725 .hash_table = export_table,
726 .name = "nfsd.export",
727 .cache_put = svc_export_put,
728 .cache_upcall = svc_export_upcall,
729 .cache_parse = svc_export_parse,
730 .cache_show = svc_export_show,
731 .match = svc_export_match,
732 .init = svc_export_init,
733 .update = export_update,
734 .alloc = svc_export_alloc,
738 svc_export_hash(struct svc_export *exp)
742 hash = hash_ptr(exp->ex_client, EXPORT_HASHBITS);
743 hash ^= hash_ptr(exp->ex_path.dentry, EXPORT_HASHBITS);
744 hash ^= hash_ptr(exp->ex_path.mnt, EXPORT_HASHBITS);
748 static struct svc_export *
749 svc_export_lookup(struct svc_export *exp)
751 struct cache_head *ch;
752 int hash = svc_export_hash(exp);
754 ch = sunrpc_cache_lookup(&svc_export_cache, &exp->h,
757 return container_of(ch, struct svc_export, h);
762 static struct svc_export *
763 svc_export_update(struct svc_export *new, struct svc_export *old)
765 struct cache_head *ch;
766 int hash = svc_export_hash(old);
768 ch = sunrpc_cache_update(&svc_export_cache, &new->h,
772 return container_of(ch, struct svc_export, h);
778 static struct svc_expkey *
779 exp_find_key(svc_client *clp, int fsid_type, u32 *fsidv, struct cache_req *reqp)
781 struct svc_expkey key, *ek;
785 return ERR_PTR(-ENOENT);
788 key.ek_fsidtype = fsid_type;
789 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
791 ek = svc_expkey_lookup(&key);
793 return ERR_PTR(-ENOMEM);
794 err = cache_check(&svc_expkey_cache, &ek->h, reqp);
801 static svc_export *exp_get_by_name(svc_client *clp, const struct path *path,
802 struct cache_req *reqp)
804 struct svc_export *exp, key;
808 return ERR_PTR(-ENOENT);
813 exp = svc_export_lookup(&key);
815 return ERR_PTR(-ENOMEM);
816 err = cache_check(&svc_export_cache, &exp->h, reqp);
823 * Find the export entry for a given dentry.
825 static struct svc_export *exp_parent(svc_client *clp, struct path *path)
827 struct dentry *saved = dget(path->dentry);
828 svc_export *exp = exp_get_by_name(clp, path, NULL);
830 while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(path->dentry)) {
831 struct dentry *parent = dget_parent(path->dentry);
833 path->dentry = parent;
834 exp = exp_get_by_name(clp, path, NULL);
837 path->dentry = saved;
844 * Obtain the root fh on behalf of a client.
845 * This could be done in user space, but I feel that it adds some safety
846 * since its harder to fool a kernel module than a user space program.
849 exp_rootfh(svc_client *clp, char *name, struct knfsd_fh *f, int maxsize)
851 struct svc_export *exp;
858 /* NB: we probably ought to check that it's NUL-terminated */
859 if (kern_path(name, 0, &path)) {
860 printk("nfsd: exp_rootfh path not found %s", name);
863 inode = path.dentry->d_inode;
865 dprintk("nfsd: exp_rootfh(%s [%p] %s:%s/%ld)\n",
866 name, path.dentry, clp->name,
867 inode->i_sb->s_id, inode->i_ino);
868 exp = exp_parent(clp, &path);
875 * fh must be initialized before calling fh_compose
877 fh_init(&fh, maxsize);
878 if (fh_compose(&fh, exp, path.dentry, NULL))
882 memcpy(f, &fh.fh_handle, sizeof(struct knfsd_fh));
890 static struct svc_export *exp_find(struct auth_domain *clp, int fsid_type,
891 u32 *fsidv, struct cache_req *reqp)
893 struct svc_export *exp;
894 struct svc_expkey *ek = exp_find_key(clp, fsid_type, fsidv, reqp);
898 exp = exp_get_by_name(clp, &ek->ek_path, reqp);
899 cache_put(&ek->h, &svc_expkey_cache);
902 return ERR_CAST(exp);
906 __be32 check_nfsd_access(struct svc_export *exp, struct svc_rqst *rqstp)
908 struct exp_flavor_info *f;
909 struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
911 /* legacy gss-only clients are always OK: */
912 if (exp->ex_client == rqstp->rq_gssclient)
914 /* ip-address based client; check sec= export option: */
915 for (f = exp->ex_flavors; f < end; f++) {
916 if (f->pseudoflavor == rqstp->rq_flavor)
919 /* defaults in absence of sec= options: */
920 if (exp->ex_nflavors == 0) {
921 if (rqstp->rq_flavor == RPC_AUTH_NULL ||
922 rqstp->rq_flavor == RPC_AUTH_UNIX)
925 return nfserr_wrongsec;
929 * Uses rq_client and rq_gssclient to find an export; uses rq_client (an
930 * auth_unix client) if it's available and has secinfo information;
931 * otherwise, will try to use rq_gssclient.
933 * Called from functions that handle requests; functions that do work on
934 * behalf of mountd are passed a single client name to use, and should
935 * use exp_get_by_name() or exp_find().
938 rqst_exp_get_by_name(struct svc_rqst *rqstp, struct path *path)
940 struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
942 if (rqstp->rq_client == NULL)
945 /* First try the auth_unix client: */
946 exp = exp_get_by_name(rqstp->rq_client, path, &rqstp->rq_chandle);
947 if (PTR_ERR(exp) == -ENOENT)
951 /* If it has secinfo, assume there are no gss/... clients */
952 if (exp->ex_nflavors > 0)
955 /* Otherwise, try falling back on gss client */
956 if (rqstp->rq_gssclient == NULL)
958 gssexp = exp_get_by_name(rqstp->rq_gssclient, path, &rqstp->rq_chandle);
959 if (PTR_ERR(gssexp) == -ENOENT)
967 rqst_exp_find(struct svc_rqst *rqstp, int fsid_type, u32 *fsidv)
969 struct svc_export *gssexp, *exp = ERR_PTR(-ENOENT);
971 if (rqstp->rq_client == NULL)
974 /* First try the auth_unix client: */
975 exp = exp_find(rqstp->rq_client, fsid_type, fsidv, &rqstp->rq_chandle);
976 if (PTR_ERR(exp) == -ENOENT)
980 /* If it has secinfo, assume there are no gss/... clients */
981 if (exp->ex_nflavors > 0)
984 /* Otherwise, try falling back on gss client */
985 if (rqstp->rq_gssclient == NULL)
987 gssexp = exp_find(rqstp->rq_gssclient, fsid_type, fsidv,
989 if (PTR_ERR(gssexp) == -ENOENT)
997 rqst_exp_parent(struct svc_rqst *rqstp, struct path *path)
999 struct dentry *saved = dget(path->dentry);
1000 struct svc_export *exp = rqst_exp_get_by_name(rqstp, path);
1002 while (PTR_ERR(exp) == -ENOENT && !IS_ROOT(path->dentry)) {
1003 struct dentry *parent = dget_parent(path->dentry);
1005 path->dentry = parent;
1006 exp = rqst_exp_get_by_name(rqstp, path);
1009 path->dentry = saved;
1013 static struct svc_export *find_fsidzero_export(struct svc_rqst *rqstp)
1017 mk_fsid(FSID_NUM, fsidv, 0, 0, 0, NULL);
1019 return rqst_exp_find(rqstp, FSID_NUM, fsidv);
1023 * Called when we need the filehandle for the root of the pseudofs,
1024 * for a given NFSv4 client. The root is defined to be the
1025 * export point with fsid==0
1028 exp_pseudoroot(struct svc_rqst *rqstp, struct svc_fh *fhp)
1030 struct svc_export *exp;
1033 exp = find_fsidzero_export(rqstp);
1035 return nfserrno(PTR_ERR(exp));
1036 rv = fh_compose(fhp, exp, exp->ex_path.dentry, NULL);
1043 static void *e_start(struct seq_file *m, loff_t *pos)
1044 __acquires(svc_export_cache.hash_lock)
1047 unsigned hash, export;
1048 struct cache_head *ch;
1050 read_lock(&svc_export_cache.hash_lock);
1052 return SEQ_START_TOKEN;
1054 export = n & ((1LL<<32) - 1);
1057 for (ch=export_table[hash]; ch; ch=ch->next)
1060 n &= ~((1LL<<32) - 1);
1064 } while(hash < EXPORT_HASHMAX && export_table[hash]==NULL);
1065 if (hash >= EXPORT_HASHMAX)
1068 return export_table[hash];
1071 static void *e_next(struct seq_file *m, void *p, loff_t *pos)
1073 struct cache_head *ch = p;
1074 int hash = (*pos >> 32);
1076 if (p == SEQ_START_TOKEN)
1078 else if (ch->next == NULL) {
1085 *pos &= ~((1LL<<32) - 1);
1086 while (hash < EXPORT_HASHMAX && export_table[hash] == NULL) {
1090 if (hash >= EXPORT_HASHMAX)
1093 return export_table[hash];
1096 static void e_stop(struct seq_file *m, void *p)
1097 __releases(svc_export_cache.hash_lock)
1099 read_unlock(&svc_export_cache.hash_lock);
1102 static struct flags {
1106 { NFSEXP_READONLY, {"ro", "rw"}},
1107 { NFSEXP_INSECURE_PORT, {"insecure", ""}},
1108 { NFSEXP_ROOTSQUASH, {"root_squash", "no_root_squash"}},
1109 { NFSEXP_ALLSQUASH, {"all_squash", ""}},
1110 { NFSEXP_ASYNC, {"async", "sync"}},
1111 { NFSEXP_GATHERED_WRITES, {"wdelay", "no_wdelay"}},
1112 { NFSEXP_NOHIDE, {"nohide", ""}},
1113 { NFSEXP_CROSSMOUNT, {"crossmnt", ""}},
1114 { NFSEXP_NOSUBTREECHECK, {"no_subtree_check", ""}},
1115 { NFSEXP_NOAUTHNLM, {"insecure_locks", ""}},
1116 { NFSEXP_V4ROOT, {"v4root", ""}},
1120 static void show_expflags(struct seq_file *m, int flags, int mask)
1123 int state, first = 0;
1125 for (flg = expflags; flg->flag; flg++) {
1126 if (flg->flag & ~mask)
1128 state = (flg->flag & flags) ? 0 : 1;
1129 if (*flg->name[state])
1130 seq_printf(m, "%s%s", first++?",":"", flg->name[state]);
1134 static void show_secinfo_flags(struct seq_file *m, int flags)
1137 show_expflags(m, flags, NFSEXP_SECINFO_FLAGS);
1140 static bool secinfo_flags_equal(int f, int g)
1142 f &= NFSEXP_SECINFO_FLAGS;
1143 g &= NFSEXP_SECINFO_FLAGS;
1147 static int show_secinfo_run(struct seq_file *m, struct exp_flavor_info **fp, struct exp_flavor_info *end)
1151 flags = (*fp)->flags;
1152 seq_printf(m, ",sec=%d", (*fp)->pseudoflavor);
1154 while (*fp != end && secinfo_flags_equal(flags, (*fp)->flags)) {
1155 seq_printf(m, ":%d", (*fp)->pseudoflavor);
1161 static void show_secinfo(struct seq_file *m, struct svc_export *exp)
1163 struct exp_flavor_info *f;
1164 struct exp_flavor_info *end = exp->ex_flavors + exp->ex_nflavors;
1167 if (exp->ex_nflavors == 0)
1169 f = exp->ex_flavors;
1170 flags = show_secinfo_run(m, &f, end);
1171 if (!secinfo_flags_equal(flags, exp->ex_flags))
1172 show_secinfo_flags(m, flags);
1174 flags = show_secinfo_run(m, &f, end);
1175 show_secinfo_flags(m, flags);
1179 static void exp_flags(struct seq_file *m, int flag, int fsid,
1180 uid_t anonu, uid_t anong, struct nfsd4_fs_locations *fsloc)
1182 show_expflags(m, flag, NFSEXP_ALLFLAGS);
1183 if (flag & NFSEXP_FSID)
1184 seq_printf(m, ",fsid=%d", fsid);
1185 if (anonu != (uid_t)-2 && anonu != (0x10000-2))
1186 seq_printf(m, ",anonuid=%u", anonu);
1187 if (anong != (gid_t)-2 && anong != (0x10000-2))
1188 seq_printf(m, ",anongid=%u", anong);
1189 if (fsloc && fsloc->locations_count > 0) {
1190 char *loctype = (fsloc->migrated) ? "refer" : "replicas";
1193 seq_printf(m, ",%s=", loctype);
1194 seq_escape(m, fsloc->locations[0].path, ",;@ \t\n\\");
1196 seq_escape(m, fsloc->locations[0].hosts, ",;@ \t\n\\");
1197 for (i = 1; i < fsloc->locations_count; i++) {
1199 seq_escape(m, fsloc->locations[i].path, ",;@ \t\n\\");
1201 seq_escape(m, fsloc->locations[i].hosts, ",;@ \t\n\\");
1206 static int e_show(struct seq_file *m, void *p)
1208 struct cache_head *cp = p;
1209 struct svc_export *exp = container_of(cp, struct svc_export, h);
1211 if (p == SEQ_START_TOKEN) {
1212 seq_puts(m, "# Version 1.1\n");
1213 seq_puts(m, "# Path Client(Flags) # IPs\n");
1218 if (cache_check(&svc_export_cache, &exp->h, NULL))
1220 cache_put(&exp->h, &svc_export_cache);
1221 return svc_export_show(m, &svc_export_cache, cp);
1224 const struct seq_operations nfs_exports_op = {
1233 * Initialize the exports module.
1236 nfsd_export_init(void)
1239 dprintk("nfsd: initializing export module.\n");
1241 rv = cache_register(&svc_export_cache);
1244 rv = cache_register(&svc_expkey_cache);
1246 cache_unregister(&svc_export_cache);
1252 * Flush exports table - called when last nfsd thread is killed
1255 nfsd_export_flush(void)
1257 cache_purge(&svc_expkey_cache);
1258 cache_purge(&svc_export_cache);
1262 * Shutdown the exports module.
1265 nfsd_export_shutdown(void)
1268 dprintk("nfsd: shutting down export module.\n");
1270 cache_unregister(&svc_expkey_cache);
1271 cache_unregister(&svc_export_cache);
1272 svcauth_unix_purge();
1274 dprintk("nfsd: export shutdown complete.\n");