1 // SPDX-License-Identifier: GPL-2.0
3 * linux/fs/nfs/callback.c
5 * Copyright (C) 2004 Trond Myklebust
7 * NFSv4 callback handling
10 #include <linux/completion.h>
12 #include <linux/module.h>
13 #include <linux/sched/signal.h>
14 #include <linux/sunrpc/svc.h>
15 #include <linux/sunrpc/svcsock.h>
16 #include <linux/nfs_fs.h>
17 #include <linux/errno.h>
18 #include <linux/mutex.h>
19 #include <linux/freezer.h>
20 #include <linux/sunrpc/svcauth_gss.h>
21 #include <linux/sunrpc/bc_xprt.h>
23 #include <net/inet_sock.h>
30 #define NFSDBG_FACILITY NFSDBG_CALLBACK
32 struct nfs_callback_data {
34 struct svc_serv *serv;
37 static struct nfs_callback_data nfs_callback_info[NFS4_MAX_MINOR_VERSION + 1];
38 static DEFINE_MUTEX(nfs_callback_mutex);
39 static struct svc_program nfs4_callback_program;
41 static int nfs4_callback_up_net(struct svc_serv *serv, struct net *net)
43 const struct cred *cred = current_cred();
45 struct nfs_net *nn = net_generic(net, nfs_net_id);
47 ret = svc_xprt_create(serv, "tcp", net, PF_INET,
48 nfs_callback_set_tcpport, SVC_SOCK_ANONYMOUS,
52 nn->nfs_callback_tcpport = ret;
53 dprintk("NFS: Callback listener port = %u (af %u, net %x)\n",
54 nn->nfs_callback_tcpport, PF_INET, net->ns.inum);
56 ret = svc_xprt_create(serv, "tcp", net, PF_INET6,
57 nfs_callback_set_tcpport, SVC_SOCK_ANONYMOUS,
60 nn->nfs_callback_tcpport6 = ret;
61 dprintk("NFS: Callback listener port = %u (af %u, net %x)\n",
62 nn->nfs_callback_tcpport6, PF_INET6, net->ns.inum);
63 } else if (ret != -EAFNOSUPPORT)
68 return (ret) ? ret : -ENOMEM;
72 * This is the NFSv4 callback kernel thread.
75 nfs4_callback_svc(void *vrqstp)
77 struct svc_rqst *rqstp = vrqstp;
79 svc_thread_init_status(rqstp, 0);
83 while (!svc_thread_should_stop(rqstp))
86 svc_exit_thread(rqstp);
90 #if defined(CONFIG_NFS_V4_1)
91 static inline void nfs_callback_bc_serv(u32 minorversion, struct rpc_xprt *xprt,
92 struct svc_serv *serv)
96 * Save the svc_serv in the transport so that it can
97 * be referenced when the session backchannel is initialized
102 static inline void nfs_callback_bc_serv(u32 minorversion, struct rpc_xprt *xprt,
103 struct svc_serv *serv)
106 #endif /* CONFIG_NFS_V4_1 */
108 static int nfs_callback_start_svc(int minorversion, struct rpc_xprt *xprt,
109 struct svc_serv *serv)
111 int nrservs = nfs_callback_nr_threads;
114 nfs_callback_bc_serv(minorversion, xprt, serv);
116 if (nrservs < NFS4_MIN_NR_CALLBACK_THREADS)
117 nrservs = NFS4_MIN_NR_CALLBACK_THREADS;
119 if (serv->sv_nrthreads == nrservs)
122 ret = svc_set_num_threads(serv, NULL, nrservs);
124 svc_set_num_threads(serv, NULL, 0);
127 dprintk("nfs_callback_up: service started\n");
131 static void nfs_callback_down_net(u32 minorversion, struct svc_serv *serv, struct net *net)
133 struct nfs_net *nn = net_generic(net, nfs_net_id);
135 if (--nn->cb_users[minorversion])
138 dprintk("NFS: destroy per-net callback data; net=%x\n", net->ns.inum);
139 svc_xprt_destroy_all(serv, net);
142 static int nfs_callback_up_net(int minorversion, struct svc_serv *serv,
143 struct net *net, struct rpc_xprt *xprt)
145 struct nfs_net *nn = net_generic(net, nfs_net_id);
148 if (nn->cb_users[minorversion]++)
151 dprintk("NFS: create per-net callback data; net=%x\n", net->ns.inum);
153 ret = svc_bind(serv, net);
155 printk(KERN_WARNING "NFS: bind callback service failed\n");
160 if (!IS_ENABLED(CONFIG_NFS_V4_1) || minorversion == 0)
161 ret = nfs4_callback_up_net(serv, net);
162 else if (xprt->ops->bc_setup)
163 set_bc_enabled(serv);
165 ret = -EPROTONOSUPPORT;
168 printk(KERN_ERR "NFS: callback service start failed\n");
174 svc_rpcb_cleanup(serv, net);
176 nn->cb_users[minorversion]--;
177 dprintk("NFS: Couldn't create callback socket: err = %d; "
178 "net = %x\n", ret, net->ns.inum);
182 static struct svc_serv *nfs_callback_create_svc(int minorversion)
184 struct nfs_callback_data *cb_info = &nfs_callback_info[minorversion];
185 int (*threadfn)(void *data);
186 struct svc_serv *serv;
189 * Check whether we're already up and running.
192 return cb_info->serv;
195 * Sanity check: if there's no task,
196 * we should be the first user ...
199 printk(KERN_WARNING "nfs_callback_create_svc: no kthread, %d users??\n",
202 threadfn = nfs4_callback_svc;
203 #if !defined(CONFIG_NFS_V4_1)
205 return ERR_PTR(-ENOTSUPP);
207 serv = svc_create(&nfs4_callback_program, NFS4_CALLBACK_BUFSIZE,
210 printk(KERN_ERR "nfs_callback_create_svc: create service failed\n");
211 return ERR_PTR(-ENOMEM);
213 cb_info->serv = serv;
214 /* As there is only one thread we need to over-ride the
215 * default maximum of 80 connections
217 serv->sv_maxconn = 1024;
218 dprintk("nfs_callback_create_svc: service created\n");
223 * Bring up the callback thread if it is not already up.
225 int nfs_callback_up(u32 minorversion, struct rpc_xprt *xprt)
227 struct svc_serv *serv;
228 struct nfs_callback_data *cb_info = &nfs_callback_info[minorversion];
230 struct net *net = xprt->xprt_net;
232 mutex_lock(&nfs_callback_mutex);
234 serv = nfs_callback_create_svc(minorversion);
240 ret = nfs_callback_up_net(minorversion, serv, net, xprt);
244 ret = nfs_callback_start_svc(minorversion, xprt, serv);
250 if (!cb_info->users) {
251 svc_set_num_threads(cb_info->serv, NULL, 0);
252 svc_destroy(&cb_info->serv);
255 mutex_unlock(&nfs_callback_mutex);
259 nfs_callback_down_net(minorversion, serv, net);
260 dprintk("NFS: Couldn't create server thread; err = %d\n", ret);
265 * Kill the callback thread if it's no longer being used.
267 void nfs_callback_down(int minorversion, struct net *net)
269 struct nfs_callback_data *cb_info = &nfs_callback_info[minorversion];
270 struct svc_serv *serv;
272 mutex_lock(&nfs_callback_mutex);
273 serv = cb_info->serv;
274 nfs_callback_down_net(minorversion, serv, net);
276 if (cb_info->users == 0) {
277 svc_set_num_threads(serv, NULL, 0);
278 dprintk("nfs_callback_down: service destroyed\n");
279 svc_destroy(&cb_info->serv);
281 mutex_unlock(&nfs_callback_mutex);
284 /* Boolean check of RPC_AUTH_GSS principal */
286 check_gss_callback_principal(struct nfs_client *clp, struct svc_rqst *rqstp)
288 char *p = rqstp->rq_cred.cr_principal;
290 if (rqstp->rq_authop->flavour != RPC_AUTH_GSS)
293 /* No RPC_AUTH_GSS on NFSv4.1 back channel yet */
294 if (clp->cl_minorversion != 0)
297 * It might just be a normal user principal, in which case
298 * userspace won't bother to tell us the name at all.
304 * Did we get the acceptor from userland during the SETCLIENID
307 if (clp->cl_acceptor)
308 return !strcmp(p, clp->cl_acceptor);
311 * Otherwise try to verify it using the cl_hostname. Note that this
312 * doesn't work if a non-canonical hostname was used in the devname.
315 /* Expect a GSS_C_NT_HOSTBASED_NAME like "nfs@serverhostname" */
317 if (memcmp(p, "nfs@", 4) != 0)
320 if (strcmp(p, clp->cl_hostname) != 0)
326 * pg_authenticate method for nfsv4 callback threads.
328 * The authflavor has been negotiated, so an incorrect flavor is a server
329 * bug. Deny packets with incorrect authflavor.
331 * All other checking done after NFS decoding where the nfs_client can be
332 * found in nfs4_callback_compound
334 static enum svc_auth_status nfs_callback_authenticate(struct svc_rqst *rqstp)
336 rqstp->rq_auth_stat = rpc_autherr_badcred;
338 switch (rqstp->rq_authop->flavour) {
340 if (rqstp->rq_proc != CB_NULL)
344 /* No RPC_AUTH_GSS support yet in NFSv4.1 */
345 if (svc_is_backchannel(rqstp))
349 rqstp->rq_auth_stat = rpc_auth_ok;
354 * Define NFS4 callback program
356 static const struct svc_version *nfs4_callback_version[] = {
357 [1] = &nfs4_callback_version1,
358 [4] = &nfs4_callback_version4,
361 static struct svc_program nfs4_callback_program = {
362 .pg_prog = NFS4_CALLBACK, /* RPC service number */
363 .pg_nvers = ARRAY_SIZE(nfs4_callback_version), /* Number of entries */
364 .pg_vers = nfs4_callback_version, /* version table */
365 .pg_name = "NFSv4 callback", /* service name */
366 .pg_class = "nfs", /* authentication class */
367 .pg_authenticate = nfs_callback_authenticate,
368 .pg_init_request = svc_generic_init_request,
369 .pg_rpcbind_set = svc_generic_rpcbind_set,
projects / J-linux.git / blob