]> Git Repo - linux.git/blame - fs/nfsd/nfsfh.c
projects / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge tag 'cgroup-for-6.8-rc7-fixes' of git://git.kernel.org/pub/scm/linux/kernel...
[linux.git] / fs / nfsd / nfsfh.c
CommitLineData
b2441318 1// SPDX-License-Identifier: GPL-2.0
1da177e4 2/*
1da177e4
LT		 3 * NFS server file handle treatment.
4 *
5 * Copyright (C) 1995, 1996 Olaf Kirch <[email protected]>
6 * Portions Copyright (C) 1999 G. Allen Morris III <[email protected]>
7 * Extensive rewrite by Neil Brown <[email protected]> Southern-Spring 1999
8 * ... and again Southern-Winter 2001 to support export_operations
9 */
10
a5694255 11#include <linux/exportfs.h>
1da177e4 12
32c1eb0c 13#include <linux/sunrpc/svcauth_gss.h>
9a74af21 14#include "nfsd.h"
0a3adade 15#include "vfs.h"
2e8138a2 16#include "auth.h"
f01274a9 17#include "trace.h"
1da177e4
LT		 18
19#define NFSDDBG_FACILITY NFSDDBG_FH
1da177e4
LT		 20
21
1da177e4
LT		 22/*
23 * our acceptability function.
24 * if NOSUBTREECHECK, accept anything
25 * if not, require that we can walk up to exp->ex_dentry
26 * doing some checks on the 'x' bits
27 */
28static int nfsd_acceptable(void *expv, struct dentry *dentry)
29{
30 struct svc_export *exp = expv;
31 int rv;
32 struct dentry *tdentry;
33 struct dentry *parent;
34
35 if (exp->ex_flags & NFSEXP_NOSUBTREECHECK)
36 return 1;
37
38 tdentry = dget(dentry);
54775491 39 while (tdentry != exp->ex_path.dentry && !IS_ROOT(tdentry)) {
1da177e4
LT		 40 /* make sure parents give x permission to user */
41 int err;
42 parent = dget_parent(tdentry);
4609e1f1 43 err = inode_permission(&nop_mnt_idmap,
47291baa 44 d_inode(parent), MAY_EXEC);
1da177e4
LT		 45 if (err < 0) {
46 dput(parent);
47 break;
48 }
49 dput(tdentry);
50 tdentry = parent;
51 }
54775491 52 if (tdentry != exp->ex_path.dentry)
97e47fa1 53 dprintk("nfsd_acceptable failed at %p %pd\n", tdentry, tdentry);
54775491 54 rv = (tdentry == exp->ex_path.dentry);
1da177e4
LT		 55 dput(tdentry);
56 return rv;
57}
58
59/* Type check. The correct error return for type mismatches does not seem to be
60 * generally agreed upon. SunOS seems to use EISDIR if file isn't S_IFREG; a
61 * comment in the NFSv3 spec says this is incorrect (implementation notes for
62 * the write call).
63 */
83b11340 64static inline __be32
e75b23f9
BF		 65nfsd_mode_check(struct svc_rqst *rqstp, struct dentry *dentry,
66 umode_t requested)
1da177e4 67{
e75b23f9 68 umode_t mode = d_inode(dentry)->i_mode & S_IFMT;
e10f9e14
BF		 69
70 if (requested == 0) /* the caller doesn't care */
71 return nfs_ok;
e75b23f9
BF		 72 if (mode == requested) {
73 if (mode == S_IFDIR && !d_can_lookup(dentry)) {
74 WARN_ON_ONCE(1);
75 return nfserr_notdir;
76 }
e10f9e14 77 return nfs_ok;
e75b23f9 78 }
e10f9e14
BF		 79 /*
80 * v4 has an error more specific than err_notdir which we should
81 * return in preference to err_notdir:
82 */
83 if (rqstp->rq_vers == 4 && mode == S_IFLNK)
84 return nfserr_symlink;
85 if (requested == S_IFDIR)
86 return nfserr_notdir;
87 if (mode == S_IFDIR)
88 return nfserr_isdir;
89 return nfserr_inval;
1da177e4
LT		 90}
91
9d7ed135
BF		 92static bool nfsd_originating_port_ok(struct svc_rqst *rqstp, int flags)
93{
94 if (flags & NFSEXP_INSECURE_PORT)
95 return true;
96 /* We don't require gss requests to use low ports: */
97 if (rqstp->rq_cred.cr_flavor >= RPC_AUTH_GSS)
98 return true;
99 return test_bit(RQ_SECURE, &rqstp->rq_flags);
100}
101
6fa02839
BF		 102static __be32 nfsd_setuser_and_check_port(struct svc_rqst *rqstp,
103 struct svc_export *exp)
104{
12045a6e
BF		 105 int flags = nfsexp_flags(rqstp, exp);
106
6fa02839 107 /* Check if the request originated from a secure port. */
9d7ed135 108 if (!nfsd_originating_port_ok(rqstp, flags)) {
5216a8e7 109 RPC_IFDEBUG(char buf[RPC_MAX_ADDRBUFLEN]);
a48fd0f9
KM		 110 dprintk("nfsd: request from insecure port %s!\n",
111 svc_print_addr(rqstp, buf, sizeof(buf)));
6fa02839
BF		 112 return nfserr_perm;
113 }
114
115 /* Set user creds for this exportpoint */
116 return nfserrno(nfsd_setuser(rqstp, exp));
117}
118
03a816b4
SD		 119static inline __be32 check_pseudo_root(struct svc_rqst *rqstp,
120 struct dentry *dentry, struct svc_export *exp)
121{
122 if (!(exp->ex_flags & NFSEXP_V4ROOT))
123 return nfs_ok;
124 /*
125 * v2/v3 clients have no need for the V4ROOT export--they use
126 * the mount protocl instead; also, further V4ROOT checks may be
127 * in v4-specific code, in which case v2/v3 clients could bypass
128 * them.
129 */
130 if (!nfsd_v4client(rqstp))
131 return nfserr_stale;
132 /*
133 * We're exposing only the directories and symlinks that have to be
134 * traversed on the way to real exports:
135 */
e36cb0b8
DH		 136 if (unlikely(!d_is_dir(dentry) &&
137 !d_is_symlink(dentry)))
03a816b4
SD		 138 return nfserr_stale;
139 /*
140 * A pseudoroot export gives permission to access only one
141 * single directory; the kernel has to make another upcall
142 * before granting access to anything else under it:
143 */
144 if (unlikely(dentry != exp->ex_path.dentry))
145 return nfserr_stale;
146 return nfs_ok;
147}
148
03550fac
BF		 149/*
150 * Use the given filehandle to look up the corresponding export and
151 * dentry. On success, the results are used to set fh_export and
152 * fh_dentry.
153 */
154static __be32 nfsd_set_fh_dentry(struct svc_rqst *rqstp, struct svc_fh *fhp)
155{
156 struct knfsd_fh *fh = &fhp->fh_handle;
c645a883 157 struct fid *fid = NULL;
03550fac
BF		 158 struct svc_export *exp;
159 struct dentry *dentry;
160 int fileid_type;
161 int data_left = fh->fh_size/4;
c645a883 162 int len;
03550fac
BF		 163 __be32 error;
164
165 error = nfserr_stale;
166 if (rqstp->rq_vers > 2)
167 error = nfserr_badhandle;
168 if (rqstp->rq_vers == 4 && fh->fh_size == 0)
169 return nfserr_nofilehandle;
170
c645a883
N		 171 if (fh->fh_version != 1)
172 return error;
173
174 if (--data_left < 0)
175 return error;
176 if (fh->fh_auth_type != 0)
177 return error;
178 len = key_len(fh->fh_fsid_type) / 4;
179 if (len == 0)
180 return error;
181 if (fh->fh_fsid_type == FSID_MAJOR_MINOR) {
182 /* deprecated, convert to type 3 */
183 len = key_len(FSID_ENCODE_DEV)/4;
184 fh->fh_fsid_type = FSID_ENCODE_DEV;
185 /*
186 * struct knfsd_fh uses host-endian fields, which are
187 * sometimes used to hold net-endian values. This
188 * confuses sparse, so we must use __force here to
189 * keep it from complaining.
190 */
191 fh->fh_fsid[0] = new_encode_dev(MKDEV(ntohl((__force __be32)fh->fh_fsid[0]),
192 ntohl((__force __be32)fh->fh_fsid[1])));
193 fh->fh_fsid[1] = fh->fh_fsid[2];
03550fac 194 }
c645a883
N		 195 data_left -= len;
196 if (data_left < 0)
197 return error;
198 exp = rqst_exp_find(rqstp, fh->fh_fsid_type, fh->fh_fsid);
199 fid = (struct fid *)(fh->fh_fsid + len);
03550fac
BF		 200
201 error = nfserr_stale;
f01274a9
TM		 202 if (IS_ERR(exp)) {
203 trace_nfsd_set_fh_dentry_badexport(rqstp, fhp, PTR_ERR(exp));
204
205 if (PTR_ERR(exp) == -ENOENT)
206 return error;
03550fac 207
03550fac 208 return nfserrno(PTR_ERR(exp));
f01274a9 209 }
03550fac 210
496d6c32
NB		 211 if (exp->ex_flags & NFSEXP_NOSUBTREECHECK) {
212 /* Elevate privileges so that the lack of 'r' or 'x'
213 * permission on some parent directory will
214 * not stop exportfs_decode_fh from being able
215 * to reconnect a directory into the dentry cache.
216 * The same problem can affect "SUBTREECHECK" exports,
217 * but as nfsd_acceptable depends on correct
218 * access control settings being in effect, we cannot
219 * fix that case easily.
220 */
d84f4f99 221 struct cred *new = prepare_creds();
027bc41a
KM		 222 if (!new) {
223 error = nfserrno(-ENOMEM);
224 goto out;
225 }
d84f4f99
DH		 226 new->cap_effective =
227 cap_raise_nfsd_set(new->cap_effective,
228 new->cap_permitted);
229 put_cred(override_creds(new));
230 put_cred(new);
496d6c32
NB		 231 } else {
232 error = nfsd_setuser_and_check_port(rqstp, exp);
233 if (error)
234 goto out;
235 }
03550fac
BF		 236
237 /*
238 * Look up the dentry using the NFS file handle.
239 */
240 error = nfserr_stale;
241 if (rqstp->rq_vers > 2)
242 error = nfserr_badhandle;
243
c645a883 244 fileid_type = fh->fh_fileid_type;
03550fac
BF		 245
246 if (fileid_type == FILEID_ROOT)
247 dentry = dget(exp->ex_path.dentry);
248 else {
2e19d10c
TM		 249 dentry = exportfs_decode_fh_raw(exp->ex_path.mnt, fid,
250 data_left, fileid_type,
251 nfsd_acceptable, exp);
252 if (IS_ERR_OR_NULL(dentry)) {
f01274a9
TM		 253 trace_nfsd_set_fh_dentry_badhandle(rqstp, fhp,
254 dentry ? PTR_ERR(dentry) : -ESTALE);
2e19d10c
TM		 255 switch (PTR_ERR(dentry)) {
256 case -ENOMEM:
257 case -ETIMEDOUT:
258 break;
259 default:
260 dentry = ERR_PTR(-ESTALE);
261 }
262 }
03550fac
BF		 263 }
264 if (dentry == NULL)
265 goto out;
266 if (IS_ERR(dentry)) {
267 if (PTR_ERR(dentry) != -EINVAL)
268 error = nfserrno(PTR_ERR(dentry));
269 goto out;
270 }
271
e36cb0b8 272 if (d_is_dir(dentry) &&
03550fac 273 (dentry->d_flags & DCACHE_DISCONNECTED)) {
97e47fa1
AV		 274 printk("nfsd: find_fh_dentry returned a DISCONNECTED directory: %pd2\n",
275 dentry);
03550fac
BF		 276 }
277
278 fhp->fh_dentry = dentry;
279 fhp->fh_export = exp;
daab110e
JL		 280
281 switch (rqstp->rq_vers) {
716a8bc7
TM		 282 case 4:
283 if (dentry->d_sb->s_export_op->flags & EXPORT_OP_NOATOMIC_ATTR)
284 fhp->fh_no_atomic_attr = true;
285 break;
daab110e
JL		 286 case 3:
287 if (dentry->d_sb->s_export_op->flags & EXPORT_OP_NOWCC)
288 fhp->fh_no_wcc = true;
289 break;
290 case 2:
291 fhp->fh_no_wcc = true;
292 }
293
03550fac
BF		 294 return 0;
295out:
296 exp_put(exp);
297 return error;
298}
299
b3d47676
BF		 300/**
301 * fh_verify - filehandle lookup and access checking
302 * @rqstp: pointer to current rpc request
303 * @fhp: filehandle to be verified
304 * @type: expected type of object pointed to by filehandle
305 * @access: type of access needed to object
306 *
307 * Look up a dentry from the on-the-wire filehandle, check the client's
308 * access to the export, and set the current task's credentials.
309 *
310 * Regardless of success or failure of fh_verify(), fh_put() should be
311 * called on @fhp when the caller is finished with the filehandle.
312 *
313 * fh_verify() may be called multiple times on a given filehandle, for
314 * example, when processing an NFSv4 compound. The first call will look
315 * up a dentry using the on-the-wire filehandle. Subsequent calls will
316 * skip the lookup and just perform the other checks and possibly change
317 * the current task's credentials.
1da177e4 318 *
b3d47676
BF		 319 * @type specifies the type of object expected using one of the S_IF*
320 * constants defined in include/linux/stat.h. The caller may use zero
321 * to indicate that it doesn't care, or a negative integer to indicate
322 * that it expects something not of the given type.
1da177e4 323 *
b3d47676 324 * @access is formed from the NFSD_MAY_* constants defined in
93f580a9 325 * fs/nfsd/vfs.h.
1da177e4 326 */
83b11340 327__be32
175a4eb7 328fh_verify(struct svc_rqst *rqstp, struct svc_fh *fhp, umode_t type, int access)
1da177e4 329{
20ad856e 330 struct svc_export *exp = NULL;
1da177e4 331 struct dentry *dentry;
03550fac 332 __be32 error;
1da177e4 333
1da177e4 334 if (!fhp->fh_dentry) {
03550fac 335 error = nfsd_set_fh_dentry(rqstp, fhp);
d1bbf14f
N		 336 if (error)
337 goto out;
1da177e4 338 }
864f0f61
BF		 339 dentry = fhp->fh_dentry;
340 exp = fhp->fh_export;
05138288
CL		 341
342 trace_nfsd_fh_verify(rqstp, fhp, type, access);
343
864f0f61
BF		 344 /*
345 * We still have to do all these permission checks, even when
346 * fh_dentry is already set:
347 * - fh_verify may be called multiple times with different
348 * "access" arguments (e.g. nfsd_proc_create calls
349 * fh_verify(...,NFSD_MAY_EXEC) first, then later (in
350 * nfsd_create) calls fh_verify(...,NFSD_MAY_CREATE).
351 * - in the NFSv4 case, the filehandle may have been filled
352 * in by fh_compose, and given a dentry, but further
353 * compound operations performed with that filehandle
354 * still need permissions checks. In the worst case, a
355 * mountpoint crossing may have changed the export
356 * options, and we may now need to use a different uid
357 * (for example, if different id-squashing options are in
358 * effect on the new filesystem).
359 */
03a816b4
SD		 360 error = check_pseudo_root(rqstp, dentry, exp);
361 if (error)
362 goto out;
363
864f0f61
BF		 364 error = nfsd_setuser_and_check_port(rqstp, exp);
365 if (error)
366 goto out;
7fc90ec9 367
e75b23f9 368 error = nfsd_mode_check(rqstp, dentry, type);
1da177e4
LT		 369 if (error)
370 goto out;
371
04716e66
BF		 372 /*
373 * pseudoflavor restrictions are not enforced on NLM,
374 * which clients virtually always use auth_sys for,
375 * even while using RPCSEC_GSS for NFS.
376 */
204f4ce7 377 if (access & NFSD_MAY_LOCK || access & NFSD_MAY_BYPASS_GSS)
04716e66
BF		 378 goto skip_pseudoflavor_check;
379 /*
380 * Clients may expect to be able to use auth_sys during mount,
381 * even if they use gss for everything else; see section 2.3.2
382 * of rfc 2623.
383 */
384 if (access & NFSD_MAY_BYPASS_GSS_ON_ROOT
385 && exp->ex_path.dentry == dentry)
386 goto skip_pseudoflavor_check;
387
388 error = check_nfsd_access(exp, rqstp);
389 if (error)
390 goto out;
32c1eb0c 391
04716e66 392skip_pseudoflavor_check:
1da177e4 393 /* Finally, check access permissions. */
0ec757df 394 error = nfsd_permission(rqstp, exp, dentry, access);
1da177e4 395out:
93c128e7 396 trace_nfsd_fh_verify_err(rqstp, fhp, type, access, error);
1da177e4 397 if (error == nfserr_stale)
20ad856e 398 nfsd_stats_fh_stale_inc(exp);
1da177e4
LT		 399 return error;
400}
401
402
403/*
404 * Compose a file handle for an NFS reply.
405 *
406 * Note that when first composed, the dentry may not yet have
407 * an inode. In this case a call to fh_update should be made
408 * before the fh goes out on the wire ...
409 */
6e91ea2b
CH		 410static void _fh_update(struct svc_fh *fhp, struct svc_export *exp,
411 struct dentry *dentry)
1da177e4 412{
54775491 413 if (dentry != exp->ex_path.dentry) {
6e91ea2b 414 struct fid *fid = (struct fid *)
5409e46f 415 (fhp->fh_handle.fh_fsid + fhp->fh_handle.fh_size/4 - 1);
6e91ea2b 416 int maxsize = (fhp->fh_maxsize - fhp->fh_handle.fh_size)/4;
b5287827
AG		 417 int fh_flags = (exp->ex_flags & NFSEXP_NOSUBTREECHECK) ? 0 :
418 EXPORT_FH_CONNECTABLE;
7cdafe6c
AG		 419 int fileid_type =
420 exportfs_encode_fh(dentry, fid, &maxsize, fh_flags);
1da177e4 421
6e91ea2b 422 fhp->fh_handle.fh_fileid_type =
7cdafe6c 423 fileid_type > 0 ? fileid_type : FILEID_INVALID;
6e91ea2b
CH		 424 fhp->fh_handle.fh_size += maxsize * 4;
425 } else {
426 fhp->fh_handle.fh_fileid_type = FILEID_ROOT;
427 }
1da177e4
LT		 428}
429
8e498751
BF		 430static bool is_root_export(struct svc_export *exp)
431{
432 return exp->ex_path.dentry == exp->ex_path.dentry->d_sb->s_root;
433}
434
435static struct super_block *exp_sb(struct svc_export *exp)
436{
fc64005c 437 return exp->ex_path.dentry->d_sb;
8e498751
BF		 438}
439
440static bool fsid_type_ok_for_exp(u8 fsid_type, struct svc_export *exp)
441{
442 switch (fsid_type) {
443 case FSID_DEV:
444 if (!old_valid_dev(exp_sb(exp)->s_dev))
a677a783 445 return false;
df561f66 446 fallthrough;
8e498751
BF		 447 case FSID_MAJOR_MINOR:
448 case FSID_ENCODE_DEV:
449 return exp_sb(exp)->s_type->fs_flags & FS_REQUIRES_DEV;
450 case FSID_NUM:
451 return exp->ex_flags & NFSEXP_FSID;
452 case FSID_UUID8:
453 case FSID_UUID16:
454 if (!is_root_export(exp))
a677a783 455 return false;
df561f66 456 fallthrough;
8e498751
BF		 457 case FSID_UUID4_INUM:
458 case FSID_UUID16_INUM:
459 return exp->ex_uuid != NULL;
460 }
a677a783 461 return true;
8e498751
BF		 462}
463
1da177e4 464
bc6c53d5
BF		 465static void set_version_and_fsid_type(struct svc_fh *fhp, struct svc_export *exp, struct svc_fh *ref_fh)
466{
b41eeef1 467 u8 version;
bc6c53d5
BF		 468 u8 fsid_type;
469retry:
b41eeef1 470 version = 1;
7e405364 471 if (ref_fh && ref_fh->fh_export == exp) {
982aedfd 472 version = ref_fh->fh_handle.fh_version;
b41eeef1
N		 473 fsid_type = ref_fh->fh_handle.fh_fsid_type;
474
b41eeef1
N		 475 ref_fh = NULL;
476
477 switch (version) {
478 case 0xca:
af6a4e28 479 fsid_type = FSID_DEV;
b41eeef1
N		 480 break;
481 case 1:
482 break;
483 default:
484 goto retry;
485 }
486
8e498751
BF		 487 /*
488 * As the fsid -> filesystem mapping was guided by
489 * user-space, there is no guarantee that the filesystem
490 * actually supports that fsid type. If it doesn't we
491 * loop around again without ref_fh set.
982aedfd 492 */
8e498751
BF		 493 if (!fsid_type_ok_for_exp(fsid_type, exp))
494 goto retry;
30fa8c01
SD		 495 } else if (exp->ex_flags & NFSEXP_FSID) {
496 fsid_type = FSID_NUM;
af6a4e28
N		 497 } else if (exp->ex_uuid) {
498 if (fhp->fh_maxsize >= 64) {
8e498751 499 if (is_root_export(exp))
af6a4e28
N		 500 fsid_type = FSID_UUID16;
501 else
502 fsid_type = FSID_UUID16_INUM;
503 } else {
8e498751 504 if (is_root_export(exp))
af6a4e28
N		 505 fsid_type = FSID_UUID8;
506 else
507 fsid_type = FSID_UUID4_INUM;
508 }
bc6c53d5 509 } else if (!old_valid_dev(exp_sb(exp)->s_dev))
1da177e4 510 /* for newer device numbers, we must use a newer fsid format */
af6a4e28 511 fsid_type = FSID_ENCODE_DEV;
982aedfd 512 else
af6a4e28 513 fsid_type = FSID_DEV;
bc6c53d5
BF		 514 fhp->fh_handle.fh_version = version;
515 if (version)
516 fhp->fh_handle.fh_fsid_type = fsid_type;
517}
518
519__be32
520fh_compose(struct svc_fh *fhp, struct svc_export *exp, struct dentry *dentry,
521 struct svc_fh *ref_fh)
522{
523 /* ref_fh is a reference file handle.
524 * if it is non-null and for the same filesystem, then we should compose
525 * a filehandle which is of the same version, where possible.
bc6c53d5
BF		 526 */
527
2b0143b5 528 struct inode * inode = d_inode(dentry);
bc6c53d5
BF		 529 dev_t ex_dev = exp_sb(exp)->s_dev;
530
97e47fa1 531 dprintk("nfsd: fh_compose(exp %02x:%02x/%ld %pd2, ino=%ld)\n",
bc6c53d5 532 MAJOR(ex_dev), MINOR(ex_dev),
2b0143b5 533 (long) d_inode(exp->ex_path.dentry)->i_ino,
97e47fa1 534 dentry,
bc6c53d5
BF		 535 (inode ? inode->i_ino : 0));
536
537 /* Choose filehandle version and fsid type based on
538 * the reference filehandle (if it is in the same export)
539 * or the export options.
540 */
d28c442f 541 set_version_and_fsid_type(fhp, exp, ref_fh);
1da177e4 542
daab110e
JL		 543 /* If we have a ref_fh, then copy the fh_no_wcc setting from it. */
544 fhp->fh_no_wcc = ref_fh ? ref_fh->fh_no_wcc : false;
545
1da177e4
LT		 546 if (ref_fh == fhp)
547 fh_put(ref_fh);
548
dd8dd403 549 if (fhp->fh_dentry) {
97e47fa1
AV		 550 printk(KERN_ERR "fh_compose: fh %pd2 not initialized!\n",
551 dentry);
1da177e4
LT		 552 }
553 if (fhp->fh_maxsize < NFS_FHSIZE)
97e47fa1 554 printk(KERN_ERR "fh_compose: called with maxsize %d! %pd2\n",
982aedfd 555 fhp->fh_maxsize,
97e47fa1 556 dentry);
1da177e4
LT		 557
558 fhp->fh_dentry = dget(dentry); /* our internal copy */
bf18f163 559 fhp->fh_export = exp_get(exp);
1da177e4 560
c645a883
N		 561 fhp->fh_handle.fh_size =
562 key_len(fhp->fh_handle.fh_fsid_type) + 4;
563 fhp->fh_handle.fh_auth_type = 0;
564
565 mk_fsid(fhp->fh_handle.fh_fsid_type,
566 fhp->fh_handle.fh_fsid,
567 ex_dev,
568 d_inode(exp->ex_path.dentry)->i_ino,
569 exp->ex_fsid, exp->ex_uuid);
570
571 if (inode)
572 _fh_update(fhp, exp, dentry);
573 if (fhp->fh_handle.fh_fileid_type == FILEID_INVALID) {
574 fh_put(fhp);
575 return nfserr_opnotsupp;
1da177e4
LT		 576 }
577
1da177e4
LT		 578 return 0;
579}
580
581/*
582 * Update file handle information after changing a dentry.
583 * This is only called by nfsd_create, nfsd_create_v3 and nfsd_proc_create
584 */
83b11340 585__be32
1da177e4
LT		 586fh_update(struct svc_fh *fhp)
587{
588 struct dentry *dentry;
982aedfd 589
1da177e4
LT		 590 if (!fhp->fh_dentry)
591 goto out_bad;
592
593 dentry = fhp->fh_dentry;
2b0143b5 594 if (d_really_is_negative(dentry))
1da177e4 595 goto out_negative;
c645a883
N		 596 if (fhp->fh_handle.fh_fileid_type != FILEID_ROOT)
597 return 0;
6e91ea2b 598
c645a883
N		 599 _fh_update(fhp, fhp->fh_export, dentry);
600 if (fhp->fh_handle.fh_fileid_type == FILEID_INVALID)
601 return nfserr_opnotsupp;
1da177e4 602 return 0;
1da177e4
LT		 603out_bad:
604 printk(KERN_ERR "fh_update: fh not verified!\n");
49e73720 605 return nfserr_serverfault;
1da177e4 606out_negative:
97e47fa1
AV		 607 printk(KERN_ERR "fh_update: %pd2 still negative!\n",
608 dentry);
49e73720 609 return nfserr_serverfault;
1da177e4
LT		 610}
611
fcb5e3fa
CL		 612/**
613 * fh_fill_pre_attrs - Fill in pre-op attributes
614 * @fhp: file handle to be updated
615 *
616 */
a332018a 617__be32 __must_check fh_fill_pre_attrs(struct svc_fh *fhp)
fcb5e3fa
CL		 618{
619 bool v4 = (fhp->fh_maxsize == NFS4_FHSIZE);
620 struct inode *inode;
621 struct kstat stat;
622 __be32 err;
623
624 if (fhp->fh_no_wcc || fhp->fh_pre_saved)
a332018a 625 return nfs_ok;
fcb5e3fa
CL		 626
627 inode = d_inode(fhp->fh_dentry);
628 err = fh_getattr(fhp, &stat);
518f375c 629 if (err)
a332018a 630 return err;
518f375c 631
fcb5e3fa
CL		 632 if (v4)
633 fhp->fh_pre_change = nfsd4_change_attribute(&stat, inode);
634
635 fhp->fh_pre_mtime = stat.mtime;
636 fhp->fh_pre_ctime = stat.ctime;
637 fhp->fh_pre_size = stat.size;
638 fhp->fh_pre_saved = true;
a332018a 639 return nfs_ok;
fcb5e3fa
CL		 640}
641
642/**
643 * fh_fill_post_attrs - Fill in post-op attributes
644 * @fhp: file handle to be updated
645 *
646 */
a332018a 647__be32 fh_fill_post_attrs(struct svc_fh *fhp)
fcb5e3fa
CL		 648{
649 bool v4 = (fhp->fh_maxsize == NFS4_FHSIZE);
650 struct inode *inode = d_inode(fhp->fh_dentry);
651 __be32 err;
652
653 if (fhp->fh_no_wcc)
a332018a 654 return nfs_ok;
fcb5e3fa
CL		 655
656 if (fhp->fh_post_saved)
657 printk("nfsd: inode locked twice during operation.\n");
658
659 err = fh_getattr(fhp, &fhp->fh_post_attr);
518f375c 660 if (err)
a332018a 661 return err;
518f375c
JL		 662
663 fhp->fh_post_saved = true;
fcb5e3fa
CL		 664 if (v4)
665 fhp->fh_post_change =
666 nfsd4_change_attribute(&fhp->fh_post_attr, inode);
a332018a 667 return nfs_ok;
fcb5e3fa
CL		 668}
669
19d008b4
N		 670/**
671 * fh_fill_both_attrs - Fill pre-op and post-op attributes
672 * @fhp: file handle to be updated
673 *
674 * This is used when the directory wasn't changed, but wcc attributes
675 * are needed anyway.
676 */
a332018a 677__be32 __must_check fh_fill_both_attrs(struct svc_fh *fhp)
19d008b4 678{
a332018a
JL		 679 __be32 err;
680
681 err = fh_fill_post_attrs(fhp);
682 if (err)
683 return err;
684
19d008b4
N		 685 fhp->fh_pre_change = fhp->fh_post_change;
686 fhp->fh_pre_mtime = fhp->fh_post_attr.mtime;
687 fhp->fh_pre_ctime = fhp->fh_post_attr.ctime;
688 fhp->fh_pre_size = fhp->fh_post_attr.size;
689 fhp->fh_pre_saved = true;
a332018a 690 return nfs_ok;
19d008b4
N		 691}
692
1da177e4
LT		 693/*
694 * Release a file handle.
695 */
696void
697fh_put(struct svc_fh *fhp)
698{
699 struct dentry * dentry = fhp->fh_dentry;
700 struct svc_export * exp = fhp->fh_export;
701 if (dentry) {
1da177e4
LT		 702 fhp->fh_dentry = NULL;
703 dput(dentry);
fcb5e3fa 704 fh_clear_pre_post_attrs(fhp);
1da177e4 705 }
4a55c101 706 fh_drop_write(fhp);
1da177e4 707 if (exp) {
a09581f2 708 exp_put(exp);
1da177e4
LT		 709 fhp->fh_export = NULL;
710 }
daab110e 711 fhp->fh_no_wcc = false;
1da177e4
LT		 712 return;
713}
714
715/*
716 * Shorthand for dprintk()'s
717 */
718char * SVCFH_fmt(struct svc_fh *fhp)
719{
720 struct knfsd_fh *fh = &fhp->fh_handle;
d8b26071 721 static char buf[2+1+1+64*3+1];
1da177e4 722
d8b26071
N		 723 if (fh->fh_size < 0 || fh->fh_size> 64)
724 return "bad-fh";
725 sprintf(buf, "%d: %*ph", fh->fh_size, fh->fh_size, fh->fh_raw);
1da177e4
LT		 726 return buf;
727}
af6a4e28 728
2c42f804 729enum fsid_source fsid_source(const struct svc_fh *fhp)
af6a4e28
N		 730{
731 if (fhp->fh_handle.fh_version != 1)
732 return FSIDSOURCE_DEV;
733 switch(fhp->fh_handle.fh_fsid_type) {
734 case FSID_DEV:
735 case FSID_ENCODE_DEV:
736 case FSID_MAJOR_MINOR:
8e498751 737 if (exp_sb(fhp->fh_export)->s_type->fs_flags & FS_REQUIRES_DEV)
b8da0d1c
NB		 738 return FSIDSOURCE_DEV;
739 break;
af6a4e28 740 case FSID_NUM:
af6a4e28
N		 741 if (fhp->fh_export->ex_flags & NFSEXP_FSID)
742 return FSIDSOURCE_FSID;
b8da0d1c
NB		 743 break;
744 default:
745 break;
af6a4e28 746 }
b8da0d1c
NB		 747 /* either a UUID type filehandle, or the filehandle doesn't
748 * match the export.
749 */
750 if (fhp->fh_export->ex_flags & NFSEXP_FSID)
751 return FSIDSOURCE_FSID;
752 if (fhp->fh_export->ex_uuid)
753 return FSIDSOURCE_UUID;
754 return FSIDSOURCE_DEV;
af6a4e28 755}
3139b1d7
JL		 756
757/*
638e3e7d
JL		 758 * We could use i_version alone as the change attribute. However, i_version
759 * can go backwards on a regular file after an unclean shutdown. On its own
760 * that doesn't necessarily cause a problem, but if i_version goes backwards
761 * and then is incremented again it could reuse a value that was previously
762 * used before boot, and a client who queried the two values might incorrectly
763 * assume nothing changed.
764 *
765 * By using both ctime and the i_version counter we guarantee that as long as
766 * time doesn't go backwards we never reuse an old value. If the filesystem
767 * advertises STATX_ATTR_CHANGE_MONOTONIC, then this mitigation is not
768 * needed.
3139b1d7 769 *
638e3e7d
JL		 770 * We only need to do this for regular files as well. For directories, we
771 * assume that the new change attr is always logged to stable storage in some
772 * fashion before the results can be seen.
3139b1d7 773 */
263453d9 774u64 nfsd4_change_attribute(const struct kstat *stat, const struct inode *inode)
3139b1d7 775{
638e3e7d
JL		 776 u64 chattr;
777
638e3e7d
JL		 778 if (stat->result_mask & STATX_CHANGE_COOKIE) {
779 chattr = stat->change_cookie;
638e3e7d
JL		 780 if (S_ISREG(inode->i_mode) &&
781 !(stat->attributes & STATX_ATTR_CHANGE_MONOTONIC)) {
782 chattr += (u64)stat->ctime.tv_sec << 30;
783 chattr += stat->ctime.tv_nsec;
784 }
785 } else {
786 chattr = time_to_chattr(&stat->ctime);
787 }
788 return chattr;
3139b1d7 789}
Empty description
This page took 1.21817 seconds and 4 git commands to generate.