1 #define MSNFS /* HACK HACK */
3 * linux/fs/nfsd/export.c
5 * NFS exporting and validation.
7 * We maintain a list of clients, each of which has a list of
8 * exports. To export an fs to a given client, you first have
9 * to create the client entry with NFSCTL_ADDCLIENT, which
10 * creates a client control block and adds it to the hash
11 * table. Then, you call NFSCTL_EXPORT for each fs.
14 * Copyright (C) 1995, 1996 Olaf Kirch, <okir@monad.swb.de>
17 #include <linux/unistd.h>
18 #include <linux/slab.h>
19 #include <linux/sched.h>
20 #include <linux/stat.h>
22 #include <linux/seq_file.h>
23 #include <linux/syscalls.h>
24 #include <linux/rwsem.h>
25 #include <linux/dcache.h>
26 #include <linux/namei.h>
27 #include <linux/mount.h>
28 #include <linux/hash.h>
29 #include <linux/module.h>
31 #include <linux/sunrpc/svc.h>
32 #include <linux/nfsd/nfsd.h>
33 #include <linux/nfsd/nfsfh.h>
34 #include <linux/nfsd/syscall.h>
35 #include <linux/lockd/bind.h>
37 #define NFSDDBG_FACILITY NFSDDBG_EXPORT
38 #define NFSD_PARANOIA 1
40 typedef struct auth_domain svc_client;
41 typedef struct svc_export svc_export;
43 static void exp_do_unexport(svc_export *unexp);
44 static int exp_verify_string(char *cp, int max);
48 * One maps client+vfsmnt+dentry to export options - the export map
49 * The other maps client+filehandle-fragment to export options. - the expkey map
51 * The export options are actually stored in the first map, and the
52 * second map contains a reference to the entry in the first map.
55 #define EXPKEY_HASHBITS 8
56 #define EXPKEY_HASHMAX (1 << EXPKEY_HASHBITS)
57 #define EXPKEY_HASHMASK (EXPKEY_HASHMAX -1)
58 static struct cache_head *expkey_table[EXPKEY_HASHMAX];
60 static void expkey_put(struct kref *ref)
62 struct svc_expkey *key = container_of(ref, struct svc_expkey, h.ref);
64 if (test_bit(CACHE_VALID, &key->h.flags) &&
65 !test_bit(CACHE_NEGATIVE, &key->h.flags)) {
69 auth_domain_put(key->ek_client);
73 static void expkey_request(struct cache_detail *cd,
75 char **bpp, int *blen)
77 /* client fsidtype \xfsid */
78 struct svc_expkey *ek = container_of(h, struct svc_expkey, h);
81 qword_add(bpp, blen, ek->ek_client->name);
82 snprintf(type, 5, "%d", ek->ek_fsidtype);
83 qword_add(bpp, blen, type);
84 qword_addhex(bpp, blen, (char*)ek->ek_fsid, key_len(ek->ek_fsidtype));
88 static struct svc_expkey *svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old);
89 static struct svc_expkey *svc_expkey_lookup(struct svc_expkey *);
90 static struct cache_detail svc_expkey_cache;
92 static int expkey_parse(struct cache_detail *cd, char *mesg, int mlen)
94 /* client fsidtype fsid [path] */
97 struct auth_domain *dom = NULL;
101 struct svc_expkey key;
102 struct svc_expkey *ek;
104 if (mesg[mlen-1] != '\n')
108 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
113 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
117 dom = auth_domain_find(buf);
120 dprintk("found domain %s\n", buf);
123 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
125 fsidtype = simple_strtoul(buf, &ep, 10);
128 dprintk("found fsidtype %d\n", fsidtype);
129 if (key_len(fsidtype)==0) /* invalid type */
131 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
133 dprintk("found fsid length %d\n", len);
134 if (len != key_len(fsidtype))
137 /* OK, we seem to have a valid key */
139 key.h.expiry_time = get_expiry(&mesg);
140 if (key.h.expiry_time == 0)
144 key.ek_fsidtype = fsidtype;
145 memcpy(key.ek_fsid, buf, len);
147 ek = svc_expkey_lookup(&key);
152 /* now we want a pathname, or empty meaning NEGATIVE */
154 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) < 0)
156 dprintk("Path seems to be <%s>\n", buf);
159 set_bit(CACHE_NEGATIVE, &key.h.flags);
160 ek = svc_expkey_update(&key, ek);
162 cache_put(&ek->h, &svc_expkey_cache);
166 err = path_lookup(buf, 0, &nd);
170 dprintk("Found the path %s\n", buf);
172 key.ek_dentry = nd.dentry;
174 ek = svc_expkey_update(&key, ek);
176 cache_put(&ek->h, &svc_expkey_cache);
184 auth_domain_put(dom);
189 static int expkey_show(struct seq_file *m,
190 struct cache_detail *cd,
191 struct cache_head *h)
193 struct svc_expkey *ek ;
196 seq_puts(m, "#domain fsidtype fsid [path]\n");
199 ek = container_of(h, struct svc_expkey, h);
200 seq_printf(m, "%s %d 0x%08x", ek->ek_client->name,
201 ek->ek_fsidtype, ek->ek_fsid[0]);
202 if (ek->ek_fsidtype != 1)
203 seq_printf(m, "%08x", ek->ek_fsid[1]);
204 if (ek->ek_fsidtype == 2)
205 seq_printf(m, "%08x", ek->ek_fsid[2]);
206 if (test_bit(CACHE_VALID, &h->flags) &&
207 !test_bit(CACHE_NEGATIVE, &h->flags)) {
209 seq_path(m, ek->ek_mnt, ek->ek_dentry, "\\ \t\n");
215 static inline int expkey_match (struct cache_head *a, struct cache_head *b)
217 struct svc_expkey *orig = container_of(a, struct svc_expkey, h);
218 struct svc_expkey *new = container_of(b, struct svc_expkey, h);
220 if (orig->ek_fsidtype != new->ek_fsidtype ||
221 orig->ek_client != new->ek_client ||
222 memcmp(orig->ek_fsid, new->ek_fsid, key_len(orig->ek_fsidtype)) != 0)
227 static inline void expkey_init(struct cache_head *cnew,
228 struct cache_head *citem)
230 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
231 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
233 kref_get(&item->ek_client->ref);
234 new->ek_client = item->ek_client;
235 new->ek_fsidtype = item->ek_fsidtype;
236 new->ek_fsid[0] = item->ek_fsid[0];
237 new->ek_fsid[1] = item->ek_fsid[1];
238 new->ek_fsid[2] = item->ek_fsid[2];
241 static inline void expkey_update(struct cache_head *cnew,
242 struct cache_head *citem)
244 struct svc_expkey *new = container_of(cnew, struct svc_expkey, h);
245 struct svc_expkey *item = container_of(citem, struct svc_expkey, h);
247 new->ek_mnt = mntget(item->ek_mnt);
248 new->ek_dentry = dget(item->ek_dentry);
251 static struct cache_head *expkey_alloc(void)
253 struct svc_expkey *i = kmalloc(sizeof(*i), GFP_KERNEL);
260 static struct cache_detail svc_expkey_cache = {
261 .owner = THIS_MODULE,
262 .hash_size = EXPKEY_HASHMAX,
263 .hash_table = expkey_table,
265 .cache_put = expkey_put,
266 .cache_request = expkey_request,
267 .cache_parse = expkey_parse,
268 .cache_show = expkey_show,
269 .match = expkey_match,
271 .update = expkey_update,
272 .alloc = expkey_alloc,
275 static struct svc_expkey *
276 svc_expkey_lookup(struct svc_expkey *item)
278 struct cache_head *ch;
279 int hash = item->ek_fsidtype;
280 char * cp = (char*)item->ek_fsid;
281 int len = key_len(item->ek_fsidtype);
283 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
284 hash ^= hash_ptr(item->ek_client, EXPKEY_HASHBITS);
285 hash &= EXPKEY_HASHMASK;
287 ch = sunrpc_cache_lookup(&svc_expkey_cache, &item->h,
290 return container_of(ch, struct svc_expkey, h);
295 static struct svc_expkey *
296 svc_expkey_update(struct svc_expkey *new, struct svc_expkey *old)
298 struct cache_head *ch;
299 int hash = new->ek_fsidtype;
300 char * cp = (char*)new->ek_fsid;
301 int len = key_len(new->ek_fsidtype);
303 hash ^= hash_mem(cp, len, EXPKEY_HASHBITS);
304 hash ^= hash_ptr(new->ek_client, EXPKEY_HASHBITS);
305 hash &= EXPKEY_HASHMASK;
307 ch = sunrpc_cache_update(&svc_expkey_cache, &new->h,
310 return container_of(ch, struct svc_expkey, h);
316 #define EXPORT_HASHBITS 8
317 #define EXPORT_HASHMAX (1<< EXPORT_HASHBITS)
318 #define EXPORT_HASHMASK (EXPORT_HASHMAX -1)
320 static struct cache_head *export_table[EXPORT_HASHMAX];
322 static void svc_export_put(struct kref *ref)
324 struct svc_export *exp = container_of(ref, struct svc_export, h.ref);
325 dput(exp->ex_dentry);
327 auth_domain_put(exp->ex_client);
332 static void svc_export_request(struct cache_detail *cd,
333 struct cache_head *h,
334 char **bpp, int *blen)
337 struct svc_export *exp = container_of(h, struct svc_export, h);
340 qword_add(bpp, blen, exp->ex_client->name);
341 pth = d_path(exp->ex_dentry, exp->ex_mnt, *bpp, *blen);
343 /* is this correct? */
347 qword_add(bpp, blen, pth);
351 static struct svc_export *svc_export_update(struct svc_export *new,
352 struct svc_export *old);
353 static struct svc_export *svc_export_lookup(struct svc_export *);
355 static int check_export(struct inode *inode, int flags)
358 /* We currently export only dirs and regular files.
359 * This is what umountd does.
361 if (!S_ISDIR(inode->i_mode) &&
362 !S_ISREG(inode->i_mode))
365 /* There are two requirements on a filesystem to be exportable.
366 * 1: We must be able to identify the filesystem from a number.
367 * either a device number (so FS_REQUIRES_DEV needed)
368 * or an FSID number (so NFSEXP_FSID needed).
369 * 2: We must be able to find an inode from a filehandle.
370 * This means that s_export_op must be set.
372 if (!(inode->i_sb->s_type->fs_flags & FS_REQUIRES_DEV) &&
373 !(flags & NFSEXP_FSID)) {
374 dprintk("exp_export: export of non-dev fs without fsid\n");
377 if (!inode->i_sb->s_export_op) {
378 dprintk("exp_export: export of invalid fs type.\n");
382 /* Ok, we can export it */;
383 if (!inode->i_sb->s_export_op->find_exported_dentry)
384 inode->i_sb->s_export_op->find_exported_dentry =
385 find_exported_dentry;
390 static int svc_export_parse(struct cache_detail *cd, char *mesg, int mlen)
392 /* client path expiry [flags anonuid anongid fsid] */
396 struct auth_domain *dom = NULL;
398 struct svc_export exp, *expp;
404 if (mesg[mlen-1] != '\n')
408 buf = kmalloc(PAGE_SIZE, GFP_KERNEL);
413 len = qword_get(&mesg, buf, PAGE_SIZE);
415 if (len <= 0) goto out;
418 dom = auth_domain_find(buf);
424 if ((len=qword_get(&mesg, buf, PAGE_SIZE)) <= 0)
426 err = path_lookup(buf, 0, &nd);
427 if (err) goto out_no_path;
432 exp.ex_dentry = nd.dentry;
433 exp.ex_path = kstrdup(buf, GFP_KERNEL);
440 exp.h.expiry_time = get_expiry(&mesg);
441 if (exp.h.expiry_time == 0)
445 err = get_int(&mesg, &an_int);
447 set_bit(CACHE_NEGATIVE, &exp.h.flags);
449 if (err || an_int < 0) goto out;
450 exp.ex_flags= an_int;
453 err = get_int(&mesg, &an_int);
455 exp.ex_anon_uid= an_int;
458 err = get_int(&mesg, &an_int);
460 exp.ex_anon_gid= an_int;
463 err = get_int(&mesg, &an_int);
465 exp.ex_fsid = an_int;
467 err = check_export(nd.dentry->d_inode, exp.ex_flags);
471 expp = svc_export_lookup(&exp);
473 expp = svc_export_update(&exp, expp);
487 auth_domain_put(dom);
492 static void exp_flags(struct seq_file *m, int flag, int fsid, uid_t anonu, uid_t anong);
494 static int svc_export_show(struct seq_file *m,
495 struct cache_detail *cd,
496 struct cache_head *h)
498 struct svc_export *exp ;
501 seq_puts(m, "#path domain(flags)\n");
504 exp = container_of(h, struct svc_export, h);
505 seq_path(m, exp->ex_mnt, exp->ex_dentry, " \t\n\\");
507 seq_escape(m, exp->ex_client->name, " \t\n\\");
509 if (test_bit(CACHE_VALID, &h->flags) &&
510 !test_bit(CACHE_NEGATIVE, &h->flags))
511 exp_flags(m, exp->ex_flags, exp->ex_fsid,
512 exp->ex_anon_uid, exp->ex_anon_gid);
516 static int svc_export_match(struct cache_head *a, struct cache_head *b)
518 struct svc_export *orig = container_of(a, struct svc_export, h);
519 struct svc_export *new = container_of(b, struct svc_export, h);
520 return orig->ex_client == new->ex_client &&
521 orig->ex_dentry == new->ex_dentry &&
522 orig->ex_mnt == new->ex_mnt;
525 static void svc_export_init(struct cache_head *cnew, struct cache_head *citem)
527 struct svc_export *new = container_of(cnew, struct svc_export, h);
528 struct svc_export *item = container_of(citem, struct svc_export, h);
530 kref_get(&item->ex_client->ref);
531 new->ex_client = item->ex_client;
532 new->ex_dentry = dget(item->ex_dentry);
533 new->ex_mnt = mntget(item->ex_mnt);
537 static void export_update(struct cache_head *cnew, struct cache_head *citem)
539 struct svc_export *new = container_of(cnew, struct svc_export, h);
540 struct svc_export *item = container_of(citem, struct svc_export, h);
542 new->ex_flags = item->ex_flags;
543 new->ex_anon_uid = item->ex_anon_uid;
544 new->ex_anon_gid = item->ex_anon_gid;
545 new->ex_fsid = item->ex_fsid;
546 new->ex_path = item->ex_path;
547 item->ex_path = NULL;
550 static struct cache_head *svc_export_alloc(void)
552 struct svc_export *i = kmalloc(sizeof(*i), GFP_KERNEL);
559 struct cache_detail svc_export_cache = {
560 .owner = THIS_MODULE,
561 .hash_size = EXPORT_HASHMAX,
562 .hash_table = export_table,
563 .name = "nfsd.export",
564 .cache_put = svc_export_put,
565 .cache_request = svc_export_request,
566 .cache_parse = svc_export_parse,
567 .cache_show = svc_export_show,
568 .match = svc_export_match,
569 .init = svc_export_init,
570 .update = export_update,
571 .alloc = svc_export_alloc,
574 static struct svc_export *
575 svc_export_lookup(struct svc_export *exp)
577 struct cache_head *ch;
579 hash = hash_ptr(exp->ex_client, EXPORT_HASHBITS);
580 hash ^= hash_ptr(exp->ex_dentry, EXPORT_HASHBITS);
581 hash ^= hash_ptr(exp->ex_mnt, EXPORT_HASHBITS);
583 ch = sunrpc_cache_lookup(&svc_export_cache, &exp->h,
586 return container_of(ch, struct svc_export, h);
591 static struct svc_export *
592 svc_export_update(struct svc_export *new, struct svc_export *old)
594 struct cache_head *ch;
596 hash = hash_ptr(old->ex_client, EXPORT_HASHBITS);
597 hash ^= hash_ptr(old->ex_dentry, EXPORT_HASHBITS);
598 hash ^= hash_ptr(old->ex_mnt, EXPORT_HASHBITS);
600 ch = sunrpc_cache_update(&svc_export_cache, &new->h,
604 return container_of(ch, struct svc_export, h);
610 static struct svc_expkey *
611 exp_find_key(svc_client *clp, int fsid_type, u32 *fsidv, struct cache_req *reqp)
613 struct svc_expkey key, *ek;
620 key.ek_fsidtype = fsid_type;
621 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
623 ek = svc_expkey_lookup(&key);
625 if ((err = cache_check(&svc_expkey_cache, &ek->h, reqp)))
630 static int exp_set_key(svc_client *clp, int fsid_type, u32 *fsidv,
631 struct svc_export *exp)
633 struct svc_expkey key, *ek;
636 key.ek_fsidtype = fsid_type;
637 memcpy(key.ek_fsid, fsidv, key_len(fsid_type));
638 key.ek_mnt = exp->ex_mnt;
639 key.ek_dentry = exp->ex_dentry;
640 key.h.expiry_time = NEVER;
643 ek = svc_expkey_lookup(&key);
645 ek = svc_expkey_update(&key,ek);
647 cache_put(&ek->h, &svc_expkey_cache);
654 * Find the client's export entry matching xdev/xino.
656 static inline struct svc_expkey *
657 exp_get_key(svc_client *clp, dev_t dev, ino_t ino)
661 if (old_valid_dev(dev)) {
662 mk_fsid_v0(fsidv, dev, ino);
663 return exp_find_key(clp, 0, fsidv, NULL);
665 mk_fsid_v3(fsidv, dev, ino);
666 return exp_find_key(clp, 3, fsidv, NULL);
670 * Find the client's export entry matching fsid
672 static inline struct svc_expkey *
673 exp_get_fsid_key(svc_client *clp, int fsid)
677 mk_fsid_v1(fsidv, fsid);
679 return exp_find_key(clp, 1, fsidv, NULL);
683 exp_get_by_name(svc_client *clp, struct vfsmount *mnt, struct dentry *dentry,
684 struct cache_req *reqp)
686 struct svc_export *exp, key;
693 key.ex_dentry = dentry;
695 exp = svc_export_lookup(&key);
697 switch (cache_check(&svc_export_cache, &exp->h, reqp)) {
700 exp = ERR_PTR(-EAGAIN);
710 * Find the export entry for a given dentry.
713 exp_parent(svc_client *clp, struct vfsmount *mnt, struct dentry *dentry,
714 struct cache_req *reqp)
719 exp = exp_get_by_name(clp, mnt, dentry, reqp);
721 while (exp == NULL && !IS_ROOT(dentry)) {
722 struct dentry *parent;
724 parent = dget_parent(dentry);
727 exp = exp_get_by_name(clp, mnt, dentry, reqp);
734 * Hashtable locking. Write locks are placed only by user processes
735 * wanting to modify export information.
736 * Write locking only done in this file. Read locking
740 static DECLARE_RWSEM(hash_sem);
745 down_read(&hash_sem);
751 down_write(&hash_sem);
761 exp_writeunlock(void)
766 static void exp_fsid_unhash(struct svc_export *exp)
768 struct svc_expkey *ek;
770 if ((exp->ex_flags & NFSEXP_FSID) == 0)
773 ek = exp_get_fsid_key(exp->ex_client, exp->ex_fsid);
774 if (ek && !IS_ERR(ek)) {
775 ek->h.expiry_time = get_seconds()-1;
776 cache_put(&ek->h, &svc_expkey_cache);
778 svc_expkey_cache.nextcheck = get_seconds();
781 static int exp_fsid_hash(svc_client *clp, struct svc_export *exp)
785 if ((exp->ex_flags & NFSEXP_FSID) == 0)
788 mk_fsid_v1(fsid, exp->ex_fsid);
789 return exp_set_key(clp, 1, fsid, exp);
792 static int exp_hash(struct auth_domain *clp, struct svc_export *exp)
795 struct inode *inode = exp->ex_dentry->d_inode;
796 dev_t dev = inode->i_sb->s_dev;
798 if (old_valid_dev(dev)) {
799 mk_fsid_v0(fsid, dev, inode->i_ino);
800 return exp_set_key(clp, 0, fsid, exp);
802 mk_fsid_v3(fsid, dev, inode->i_ino);
803 return exp_set_key(clp, 3, fsid, exp);
806 static void exp_unhash(struct svc_export *exp)
808 struct svc_expkey *ek;
809 struct inode *inode = exp->ex_dentry->d_inode;
811 ek = exp_get_key(exp->ex_client, inode->i_sb->s_dev, inode->i_ino);
812 if (ek && !IS_ERR(ek)) {
813 ek->h.expiry_time = get_seconds()-1;
814 cache_put(&ek->h, &svc_expkey_cache);
816 svc_expkey_cache.nextcheck = get_seconds();
820 * Export a file system.
823 exp_export(struct nfsctl_export *nxp)
826 struct svc_export *exp = NULL;
827 struct svc_export new;
828 struct svc_expkey *fsid_key = NULL;
832 /* Consistency check */
834 if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
835 !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
838 dprintk("exp_export called for %s:%s (%x/%ld fl %x).\n",
839 nxp->ex_client, nxp->ex_path,
840 (unsigned)nxp->ex_dev, (long)nxp->ex_ino,
843 /* Try to lock the export table for update */
846 /* Look up client info */
847 if (!(clp = auth_domain_find(nxp->ex_client)))
851 /* Look up the dentry */
852 err = path_lookup(nxp->ex_path, 0, &nd);
857 exp = exp_get_by_name(clp, nd.mnt, nd.dentry, NULL);
859 /* must make sure there won't be an ex_fsid clash */
860 if ((nxp->ex_flags & NFSEXP_FSID) &&
861 (fsid_key = exp_get_fsid_key(clp, nxp->ex_dev)) &&
864 (fsid_key->ek_mnt != nd.mnt || fsid_key->ek_dentry != nd.dentry) )
868 /* just a flags/id/fsid update */
870 exp_fsid_unhash(exp);
871 exp->ex_flags = nxp->ex_flags;
872 exp->ex_anon_uid = nxp->ex_anon_uid;
873 exp->ex_anon_gid = nxp->ex_anon_gid;
874 exp->ex_fsid = nxp->ex_dev;
876 err = exp_fsid_hash(clp, exp);
880 err = check_export(nd.dentry->d_inode, nxp->ex_flags);
881 if (err) goto finish;
885 dprintk("nfsd: creating export entry %p for client %p\n", exp, clp);
887 new.h.expiry_time = NEVER;
891 new.ex_dentry = nd.dentry;
892 new.ex_flags = nxp->ex_flags;
893 new.ex_anon_uid = nxp->ex_anon_uid;
894 new.ex_anon_gid = nxp->ex_anon_gid;
895 new.ex_fsid = nxp->ex_dev;
897 exp = svc_export_lookup(&new);
899 exp = svc_export_update(&new, exp);
904 if (exp_hash(clp, exp) ||
905 exp_fsid_hash(clp, exp)) {
906 /* failed to create at least one index */
907 exp_do_unexport(exp);
915 if (fsid_key && !IS_ERR(fsid_key))
916 cache_put(&fsid_key->h, &svc_expkey_cache);
918 auth_domain_put(clp);
927 * Unexport a file system. The export entry has already
928 * been removed from the client's list of exported fs's.
931 exp_do_unexport(svc_export *unexp)
933 unexp->h.expiry_time = get_seconds()-1;
934 svc_export_cache.nextcheck = get_seconds();
936 exp_fsid_unhash(unexp);
944 exp_unexport(struct nfsctl_export *nxp)
946 struct auth_domain *dom;
951 /* Consistency check */
952 if (!exp_verify_string(nxp->ex_path, NFS_MAXPATHLEN) ||
953 !exp_verify_string(nxp->ex_client, NFSCLNT_IDMAX))
959 dom = auth_domain_find(nxp->ex_client);
961 dprintk("nfsd: unexport couldn't find %s\n", nxp->ex_client);
965 err = path_lookup(nxp->ex_path, 0, &nd);
970 exp = exp_get_by_name(dom, nd.mnt, nd.dentry, NULL);
975 exp_do_unexport(exp);
980 auth_domain_put(dom);
988 * Obtain the root fh on behalf of a client.
989 * This could be done in user space, but I feel that it adds some safety
990 * since its harder to fool a kernel module than a user space program.
993 exp_rootfh(svc_client *clp, char *path, struct knfsd_fh *f, int maxsize)
995 struct svc_export *exp;
1002 /* NB: we probably ought to check that it's NUL-terminated */
1003 if (path_lookup(path, 0, &nd)) {
1004 printk("nfsd: exp_rootfh path not found %s", path);
1007 inode = nd.dentry->d_inode;
1009 dprintk("nfsd: exp_rootfh(%s [%p] %s:%s/%ld)\n",
1010 path, nd.dentry, clp->name,
1011 inode->i_sb->s_id, inode->i_ino);
1012 exp = exp_parent(clp, nd.mnt, nd.dentry, NULL);
1014 dprintk("nfsd: exp_rootfh export not found.\n");
1019 * fh must be initialized before calling fh_compose
1021 fh_init(&fh, maxsize);
1022 if (fh_compose(&fh, exp, nd.dentry, NULL))
1026 memcpy(f, &fh.fh_handle, sizeof(struct knfsd_fh));
1035 exp_find(struct auth_domain *clp, int fsid_type, u32 *fsidv,
1036 struct cache_req *reqp)
1038 struct svc_export *exp;
1039 struct svc_expkey *ek = exp_find_key(clp, fsid_type, fsidv, reqp);
1040 if (!ek || IS_ERR(ek))
1041 return ERR_PTR(PTR_ERR(ek));
1043 exp = exp_get_by_name(clp, ek->ek_mnt, ek->ek_dentry, reqp);
1044 cache_put(&ek->h, &svc_expkey_cache);
1046 if (!exp || IS_ERR(exp))
1047 return ERR_PTR(PTR_ERR(exp));
1053 * Called when we need the filehandle for the root of the pseudofs,
1054 * for a given NFSv4 client. The root is defined to be the
1055 * export point with fsid==0
1058 exp_pseudoroot(struct auth_domain *clp, struct svc_fh *fhp,
1059 struct cache_req *creq)
1061 struct svc_export *exp;
1065 mk_fsid_v1(fsidv, 0);
1067 exp = exp_find(clp, 1, fsidv, creq);
1068 if (IS_ERR(exp) && PTR_ERR(exp) == -EAGAIN)
1069 return nfserr_dropit;
1072 else if (IS_ERR(exp))
1073 return nfserrno(PTR_ERR(exp));
1074 rv = fh_compose(fhp, exp, exp->ex_dentry, NULL);
1081 static void *e_start(struct seq_file *m, loff_t *pos)
1082 __acquires(svc_export_cache.hash_lock)
1085 unsigned hash, export;
1086 struct cache_head *ch;
1089 read_lock(&svc_export_cache.hash_lock);
1091 return SEQ_START_TOKEN;
1093 export = n & ((1LL<<32) - 1);
1096 for (ch=export_table[hash]; ch; ch=ch->next)
1099 n &= ~((1LL<<32) - 1);
1103 } while(hash < EXPORT_HASHMAX && export_table[hash]==NULL);
1104 if (hash >= EXPORT_HASHMAX)
1107 return export_table[hash];
1110 static void *e_next(struct seq_file *m, void *p, loff_t *pos)
1112 struct cache_head *ch = p;
1113 int hash = (*pos >> 32);
1115 if (p == SEQ_START_TOKEN)
1117 else if (ch->next == NULL) {
1124 *pos &= ~((1LL<<32) - 1);
1125 while (hash < EXPORT_HASHMAX && export_table[hash] == NULL) {
1129 if (hash >= EXPORT_HASHMAX)
1132 return export_table[hash];
1135 static void e_stop(struct seq_file *m, void *p)
1136 __releases(svc_export_cache.hash_lock)
1138 read_unlock(&svc_export_cache.hash_lock);
1142 static struct flags {
1146 { NFSEXP_READONLY, {"ro", "rw"}},
1147 { NFSEXP_INSECURE_PORT, {"insecure", ""}},
1148 { NFSEXP_ROOTSQUASH, {"root_squash", "no_root_squash"}},
1149 { NFSEXP_ALLSQUASH, {"all_squash", ""}},
1150 { NFSEXP_ASYNC, {"async", "sync"}},
1151 { NFSEXP_GATHERED_WRITES, {"wdelay", "no_wdelay"}},
1152 { NFSEXP_NOHIDE, {"nohide", ""}},
1153 { NFSEXP_CROSSMOUNT, {"crossmnt", ""}},
1154 { NFSEXP_NOSUBTREECHECK, {"no_subtree_check", ""}},
1155 { NFSEXP_NOAUTHNLM, {"insecure_locks", ""}},
1157 { NFSEXP_MSNFS, {"msnfs", ""}},
1162 static void exp_flags(struct seq_file *m, int flag, int fsid, uid_t anonu, uid_t anong)
1167 for (flg = expflags; flg->flag; flg++) {
1168 int state = (flg->flag & flag)?0:1;
1169 if (*flg->name[state])
1170 seq_printf(m, "%s%s", first++?",":"", flg->name[state]);
1172 if (flag & NFSEXP_FSID)
1173 seq_printf(m, "%sfsid=%d", first++?",":"", fsid);
1174 if (anonu != (uid_t)-2 && anonu != (0x10000-2))
1175 seq_printf(m, "%sanonuid=%d", first++?",":"", anonu);
1176 if (anong != (gid_t)-2 && anong != (0x10000-2))
1177 seq_printf(m, "%sanongid=%d", first++?",":"", anong);
1180 static int e_show(struct seq_file *m, void *p)
1182 struct cache_head *cp = p;
1183 struct svc_export *exp = container_of(cp, struct svc_export, h);
1185 if (p == SEQ_START_TOKEN) {
1186 seq_puts(m, "# Version 1.1\n");
1187 seq_puts(m, "# Path Client(Flags) # IPs\n");
1192 if (cache_check(&svc_export_cache, &exp->h, NULL))
1194 cache_put(&exp->h, &svc_export_cache);
1195 return svc_export_show(m, &svc_export_cache, cp);
1198 struct seq_operations nfs_exports_op = {
1206 * Add or modify a client.
1207 * Change requests may involve the list of host addresses. The list of
1208 * exports and possibly existing uid maps are left untouched.
1211 exp_addclient(struct nfsctl_client *ncp)
1213 struct auth_domain *dom;
1216 /* First, consistency check. */
1218 if (! exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1220 if (ncp->cl_naddr > NFSCLNT_ADDRMAX)
1223 /* Lock the hashtable */
1226 dom = unix_domain_find(ncp->cl_ident);
1232 /* Insert client into hashtable. */
1233 for (i = 0; i < ncp->cl_naddr; i++)
1234 auth_unix_add_addr(ncp->cl_addrlist[i], dom);
1236 auth_unix_forget_old(dom);
1237 auth_domain_put(dom);
1248 * Delete a client given an identifier.
1251 exp_delclient(struct nfsctl_client *ncp)
1254 struct auth_domain *dom;
1257 if (!exp_verify_string(ncp->cl_ident, NFSCLNT_IDMAX))
1260 /* Lock the hashtable */
1263 dom = auth_domain_find(ncp->cl_ident);
1264 /* just make sure that no addresses work
1265 * and that it will expire soon
1268 err = auth_unix_forget_old(dom);
1269 auth_domain_put(dom);
1278 * Verify that string is non-empty and does not exceed max length.
1281 exp_verify_string(char *cp, int max)
1285 for (i = 0; i < max; i++)
1289 printk(KERN_NOTICE "nfsd: couldn't validate string %s\n", cp);
1294 * Initialize the exports module.
1297 nfsd_export_init(void)
1299 dprintk("nfsd: initializing export module.\n");
1301 cache_register(&svc_export_cache);
1302 cache_register(&svc_expkey_cache);
1307 * Flush exports table - called when last nfsd thread is killed
1310 nfsd_export_flush(void)
1313 cache_purge(&svc_expkey_cache);
1314 cache_purge(&svc_export_cache);
1319 * Shutdown the exports module.
1322 nfsd_export_shutdown(void)
1325 dprintk("nfsd: shutting down export module.\n");
1329 if (cache_unregister(&svc_expkey_cache))
1330 printk(KERN_ERR "nfsd: failed to unregister expkey cache\n");
1331 if (cache_unregister(&svc_export_cache))
1332 printk(KERN_ERR "nfsd: failed to unregister export cache\n");
1333 svcauth_unix_purge();
1336 dprintk("nfsd: export shutdown complete.\n");