Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 1 | /* |
| 2 | * linux/fs/nfs/callback.c |
| 3 | * |
| 4 | * Copyright (C) 2004 Trond Myklebust |
| 5 | * |
| 6 | * NFSv4 callback handling |
| 7 | */ |
| 8 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 9 | #include <linux/completion.h> |
| 10 | #include <linux/ip.h> |
| 11 | #include <linux/module.h> |
| 12 | #include <linux/smp_lock.h> |
| 13 | #include <linux/sunrpc/svc.h> |
| 14 | #include <linux/sunrpc/svcsock.h> |
| 15 | #include <linux/nfs_fs.h> |
Ingo Molnar | 353ab6e | 2006-03-26 01:37:12 -0800 | [diff] [blame] | 16 | #include <linux/mutex.h> |
Rafael J. Wysocki | 8314418 | 2007-07-17 04:03:35 -0700 | [diff] [blame] | 17 | #include <linux/freezer.h> |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 18 | #include <linux/kthread.h> |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 19 | #include <linux/sunrpc/svcauth_gss.h> |
Arnaldo Carvalho de Melo | 14c8502 | 2005-12-27 02:43:12 -0200 | [diff] [blame] | 20 | |
| 21 | #include <net/inet_sock.h> |
| 22 | |
Trond Myklebust | 4ce7971 | 2005-06-22 17:16:21 +0000 | [diff] [blame] | 23 | #include "nfs4_fs.h" |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 24 | #include "callback.h" |
David Howells | 24c8dbb | 2006-08-22 20:06:10 -0400 | [diff] [blame] | 25 | #include "internal.h" |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 26 | |
| 27 | #define NFSDBG_FACILITY NFSDBG_CALLBACK |
| 28 | |
| 29 | struct nfs_callback_data { |
| 30 | unsigned int users; |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 31 | struct svc_rqst *rqst; |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 32 | struct task_struct *task; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 33 | }; |
| 34 | |
| 35 | static struct nfs_callback_data nfs_callback_info; |
Ingo Molnar | 353ab6e | 2006-03-26 01:37:12 -0800 | [diff] [blame] | 36 | static DEFINE_MUTEX(nfs_callback_mutex); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 37 | static struct svc_program nfs4_callback_program; |
| 38 | |
Trond Myklebust | a72b442 | 2006-01-03 09:55:41 +0100 | [diff] [blame] | 39 | unsigned int nfs_callback_set_tcpport; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 40 | unsigned short nfs_callback_tcpport; |
David Howells | 7d4e274 | 2006-08-22 20:06:07 -0400 | [diff] [blame] | 41 | static const int nfs_set_port_min = 0; |
| 42 | static const int nfs_set_port_max = 65535; |
| 43 | |
Chuck Lever | 18de973 | 2008-10-16 17:41:11 -0400 | [diff] [blame] | 44 | /* |
| 45 | * If the kernel has IPv6 support available, always listen for |
| 46 | * both AF_INET and AF_INET6 requests. |
| 47 | */ |
| 48 | #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) |
| 49 | static const sa_family_t nfs_callback_family = AF_INET6; |
| 50 | #else |
| 51 | static const sa_family_t nfs_callback_family = AF_INET; |
| 52 | #endif |
| 53 | |
David Howells | 7d4e274 | 2006-08-22 20:06:07 -0400 | [diff] [blame] | 54 | static int param_set_port(const char *val, struct kernel_param *kp) |
| 55 | { |
| 56 | char *endp; |
| 57 | int num = simple_strtol(val, &endp, 0); |
| 58 | if (endp == val || *endp || num < nfs_set_port_min || num > nfs_set_port_max) |
| 59 | return -EINVAL; |
| 60 | *((int *)kp->arg) = num; |
| 61 | return 0; |
| 62 | } |
| 63 | |
| 64 | module_param_call(callback_tcpport, param_set_port, param_get_int, |
| 65 | &nfs_callback_set_tcpport, 0644); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 66 | |
| 67 | /* |
| 68 | * This is the callback kernel thread. |
| 69 | */ |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 70 | static int |
| 71 | nfs_callback_svc(void *vrqstp) |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 72 | { |
Jeff Layton | 06e02d6 | 2008-04-08 15:40:07 -0400 | [diff] [blame] | 73 | int err, preverr = 0; |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 74 | struct svc_rqst *rqstp = vrqstp; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 75 | |
Rafael J. Wysocki | 8314418 | 2007-07-17 04:03:35 -0700 | [diff] [blame] | 76 | set_freezable(); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 77 | |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 78 | /* |
| 79 | * FIXME: do we really need to run this under the BKL? If so, please |
| 80 | * add a comment about what it's intended to protect. |
| 81 | */ |
| 82 | lock_kernel(); |
| 83 | while (!kthread_should_stop()) { |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 84 | /* |
| 85 | * Listen for a request on the socket |
| 86 | */ |
NeilBrown | 6fb2b47 | 2006-10-02 02:17:50 -0700 | [diff] [blame] | 87 | err = svc_recv(rqstp, MAX_SCHEDULE_TIMEOUT); |
Jeff Layton | 06e02d6 | 2008-04-08 15:40:07 -0400 | [diff] [blame] | 88 | if (err == -EAGAIN || err == -EINTR) { |
| 89 | preverr = err; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 90 | continue; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 91 | } |
Jeff Layton | 06e02d6 | 2008-04-08 15:40:07 -0400 | [diff] [blame] | 92 | if (err < 0) { |
| 93 | if (err != preverr) { |
| 94 | printk(KERN_WARNING "%s: unexpected error " |
| 95 | "from svc_recv (%d)\n", __func__, err); |
| 96 | preverr = err; |
| 97 | } |
| 98 | schedule_timeout_uninterruptible(HZ); |
| 99 | continue; |
| 100 | } |
| 101 | preverr = err; |
NeilBrown | 6fb2b47 | 2006-10-02 02:17:50 -0700 | [diff] [blame] | 102 | svc_process(rqstp); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 103 | } |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 104 | unlock_kernel(); |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 105 | return 0; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 106 | } |
| 107 | |
| 108 | /* |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 109 | * Bring up the callback thread if it is not already up. |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 110 | */ |
| 111 | int nfs_callback_up(void) |
| 112 | { |
Jeff Layton | 8e60029 | 2008-02-11 10:00:20 -0500 | [diff] [blame] | 113 | struct svc_serv *serv = NULL; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 114 | int ret = 0; |
| 115 | |
Ingo Molnar | 353ab6e | 2006-03-26 01:37:12 -0800 | [diff] [blame] | 116 | mutex_lock(&nfs_callback_mutex); |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 117 | if (nfs_callback_info.users++ || nfs_callback_info.task != NULL) |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 118 | goto out; |
Chuck Lever | e851db5 | 2008-06-30 18:45:30 -0400 | [diff] [blame] | 119 | serv = svc_create(&nfs4_callback_program, NFS4_CALLBACK_BUFSIZE, |
Chuck Lever | 18de973 | 2008-10-16 17:41:11 -0400 | [diff] [blame] | 120 | nfs_callback_family, NULL); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 121 | ret = -ENOMEM; |
| 122 | if (!serv) |
| 123 | goto out_err; |
Chuck Lever | 482fb94 | 2007-02-12 00:53:29 -0800 | [diff] [blame] | 124 | |
Tom Tucker | d7c9f1e | 2007-12-30 21:07:44 -0600 | [diff] [blame] | 125 | ret = svc_create_xprt(serv, "tcp", nfs_callback_set_tcpport, |
| 126 | SVC_SOCK_ANONYMOUS); |
Chuck Lever | 482fb94 | 2007-02-12 00:53:29 -0800 | [diff] [blame] | 127 | if (ret <= 0) |
Jeff Layton | 8e60029 | 2008-02-11 10:00:20 -0500 | [diff] [blame] | 128 | goto out_err; |
Chuck Lever | 482fb94 | 2007-02-12 00:53:29 -0800 | [diff] [blame] | 129 | nfs_callback_tcpport = ret; |
Chuck Lever | 18de973 | 2008-10-16 17:41:11 -0400 | [diff] [blame] | 130 | dprintk("NFS: Callback listener port = %u (af %u)\n", |
| 131 | nfs_callback_tcpport, nfs_callback_family); |
Chuck Lever | 482fb94 | 2007-02-12 00:53:29 -0800 | [diff] [blame] | 132 | |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 133 | nfs_callback_info.rqst = svc_prepare_thread(serv, &serv->sv_pools[0]); |
| 134 | if (IS_ERR(nfs_callback_info.rqst)) { |
| 135 | ret = PTR_ERR(nfs_callback_info.rqst); |
| 136 | nfs_callback_info.rqst = NULL; |
Jeff Layton | 8e60029 | 2008-02-11 10:00:20 -0500 | [diff] [blame] | 137 | goto out_err; |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 138 | } |
| 139 | |
| 140 | svc_sock_update_bufs(serv); |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 141 | |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 142 | nfs_callback_info.task = kthread_run(nfs_callback_svc, |
| 143 | nfs_callback_info.rqst, |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 144 | "nfsv4-svc"); |
| 145 | if (IS_ERR(nfs_callback_info.task)) { |
| 146 | ret = PTR_ERR(nfs_callback_info.task); |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 147 | svc_exit_thread(nfs_callback_info.rqst); |
| 148 | nfs_callback_info.rqst = NULL; |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 149 | nfs_callback_info.task = NULL; |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 150 | goto out_err; |
| 151 | } |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 152 | out: |
Jeff Layton | 8e60029 | 2008-02-11 10:00:20 -0500 | [diff] [blame] | 153 | /* |
| 154 | * svc_create creates the svc_serv with sv_nrthreads == 1, and then |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 155 | * svc_prepare_thread increments that. So we need to call svc_destroy |
Jeff Layton | 8e60029 | 2008-02-11 10:00:20 -0500 | [diff] [blame] | 156 | * on both success and failure so that the refcount is 1 when the |
| 157 | * thread exits. |
| 158 | */ |
| 159 | if (serv) |
| 160 | svc_destroy(serv); |
Ingo Molnar | 353ab6e | 2006-03-26 01:37:12 -0800 | [diff] [blame] | 161 | mutex_unlock(&nfs_callback_mutex); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 162 | return ret; |
Jeff Layton | 8e60029 | 2008-02-11 10:00:20 -0500 | [diff] [blame] | 163 | out_err: |
Chuck Lever | 18de973 | 2008-10-16 17:41:11 -0400 | [diff] [blame] | 164 | dprintk("NFS: Couldn't create callback socket or server thread; " |
| 165 | "err = %d\n", ret); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 166 | nfs_callback_info.users--; |
| 167 | goto out; |
| 168 | } |
| 169 | |
| 170 | /* |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 171 | * Kill the callback thread if it's no longer being used. |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 172 | */ |
David Howells | 5ae1fbc | 2006-08-22 20:06:08 -0400 | [diff] [blame] | 173 | void nfs_callback_down(void) |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 174 | { |
Ingo Molnar | 353ab6e | 2006-03-26 01:37:12 -0800 | [diff] [blame] | 175 | mutex_lock(&nfs_callback_mutex); |
Trond Myklebust | 1dd761e | 2006-03-20 13:44:49 -0500 | [diff] [blame] | 176 | nfs_callback_info.users--; |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 177 | if (nfs_callback_info.users == 0 && nfs_callback_info.task != NULL) { |
Jeff Layton | a277e33 | 2008-02-20 08:55:30 -0500 | [diff] [blame] | 178 | kthread_stop(nfs_callback_info.task); |
Jeff Layton | 5afc597 | 2008-06-11 10:03:11 -0400 | [diff] [blame] | 179 | svc_exit_thread(nfs_callback_info.rqst); |
| 180 | nfs_callback_info.rqst = NULL; |
| 181 | nfs_callback_info.task = NULL; |
| 182 | } |
Ingo Molnar | 353ab6e | 2006-03-26 01:37:12 -0800 | [diff] [blame] | 183 | mutex_unlock(&nfs_callback_mutex); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 184 | } |
| 185 | |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 186 | static int check_gss_callback_principal(struct nfs_client *clp, |
| 187 | struct svc_rqst *rqstp) |
| 188 | { |
| 189 | struct rpc_clnt *r = clp->cl_rpcclient; |
| 190 | char *p = svc_gss_principal(rqstp); |
| 191 | |
| 192 | /* |
| 193 | * It might just be a normal user principal, in which case |
| 194 | * userspace won't bother to tell us the name at all. |
| 195 | */ |
| 196 | if (p == NULL) |
| 197 | return SVC_DENIED; |
| 198 | |
| 199 | /* Expect a GSS_C_NT_HOSTBASED_NAME like "nfs@serverhostname" */ |
| 200 | |
| 201 | if (memcmp(p, "nfs@", 4) != 0) |
| 202 | return SVC_DENIED; |
| 203 | p += 4; |
| 204 | if (strcmp(p, r->cl_server) != 0) |
| 205 | return SVC_DENIED; |
| 206 | return SVC_OK; |
| 207 | } |
| 208 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 209 | static int nfs_callback_authenticate(struct svc_rqst *rqstp) |
| 210 | { |
David Howells | adfa6f9 | 2006-08-22 20:06:08 -0400 | [diff] [blame] | 211 | struct nfs_client *clp; |
Pavel Emelyanov | 5216a8e | 2008-02-21 10:57:45 +0300 | [diff] [blame] | 212 | RPC_IFDEBUG(char buf[RPC_MAX_ADDRBUFLEN]); |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 213 | int ret = SVC_OK; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 214 | |
| 215 | /* Don't talk to strangers */ |
Chuck Lever | ff05264 | 2007-12-10 14:58:44 -0500 | [diff] [blame] | 216 | clp = nfs_find_client(svc_addr(rqstp), 4); |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 217 | if (clp == NULL) |
| 218 | return SVC_DROP; |
Chuck Lever | ad06e4b | 2007-02-12 00:53:32 -0800 | [diff] [blame] | 219 | |
Harvey Harrison | 3110ff8 | 2008-05-02 13:42:44 -0700 | [diff] [blame] | 220 | dprintk("%s: %s NFSv4 callback!\n", __func__, |
Chuck Lever | ad06e4b | 2007-02-12 00:53:32 -0800 | [diff] [blame] | 221 | svc_print_addr(rqstp, buf, sizeof(buf))); |
Chuck Lever | ad06e4b | 2007-02-12 00:53:32 -0800 | [diff] [blame] | 222 | |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 223 | switch (rqstp->rq_authop->flavour) { |
| 224 | case RPC_AUTH_NULL: |
| 225 | if (rqstp->rq_proc != CB_NULL) |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 226 | ret = SVC_DENIED; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 227 | break; |
| 228 | case RPC_AUTH_UNIX: |
| 229 | break; |
| 230 | case RPC_AUTH_GSS: |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 231 | ret = check_gss_callback_principal(clp, rqstp); |
| 232 | break; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 233 | default: |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 234 | ret = SVC_DENIED; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 235 | } |
Olga Kornievskaia | 945b34a | 2008-12-23 16:18:34 -0500 | [diff] [blame^] | 236 | nfs_put_client(clp); |
| 237 | return ret; |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 238 | } |
| 239 | |
| 240 | /* |
| 241 | * Define NFS4 callback program |
| 242 | */ |
Linus Torvalds | 1da177e | 2005-04-16 15:20:36 -0700 | [diff] [blame] | 243 | static struct svc_version *nfs4_callback_version[] = { |
| 244 | [1] = &nfs4_callback_version1, |
| 245 | }; |
| 246 | |
| 247 | static struct svc_stat nfs4_callback_stats; |
| 248 | |
| 249 | static struct svc_program nfs4_callback_program = { |
| 250 | .pg_prog = NFS4_CALLBACK, /* RPC service number */ |
| 251 | .pg_nvers = ARRAY_SIZE(nfs4_callback_version), /* Number of entries */ |
| 252 | .pg_vers = nfs4_callback_version, /* version table */ |
| 253 | .pg_name = "NFSv4 callback", /* service name */ |
| 254 | .pg_class = "nfs", /* authentication class */ |
| 255 | .pg_stats = &nfs4_callback_stats, |
| 256 | .pg_authenticate = nfs_callback_authenticate, |
| 257 | }; |