diff options
author | Trond Myklebust <Trond.Myklebust@netapp.com> | 2013-08-23 14:42:29 -0400 |
---|---|---|
committer | Trond Myklebust <Trond.Myklebust@netapp.com> | 2013-08-30 09:19:37 -0400 |
commit | e726340ac9cf6bb5b3f92a064664e10cd2b748de (patch) | |
tree | 0b0003144c4f1e174d8902eb35ecf6a54c2c43ee /net/sunrpc | |
parent | c2190661039b3817b4cc1cbfea620b3f7dbe5cd8 (diff) |
RPCSEC_GSS: Further cleanups
Don't pass the rpc_client as a parameter, when what we really want is
the net namespace.
Signed-off-by: Trond Myklebust <Trond.Myklebust@netapp.com>
Diffstat (limited to 'net/sunrpc')
-rw-r--r-- | net/sunrpc/auth_gss/auth_gss.c | 31 |
1 files changed, 20 insertions, 11 deletions
diff --git a/net/sunrpc/auth_gss/auth_gss.c b/net/sunrpc/auth_gss/auth_gss.c index 672a67ff6449..632380336660 100644 --- a/net/sunrpc/auth_gss/auth_gss.c +++ b/net/sunrpc/auth_gss/auth_gss.c | |||
@@ -77,6 +77,7 @@ struct gss_auth { | |||
77 | struct gss_api_mech *mech; | 77 | struct gss_api_mech *mech; |
78 | enum rpc_gss_svc service; | 78 | enum rpc_gss_svc service; |
79 | struct rpc_clnt *client; | 79 | struct rpc_clnt *client; |
80 | struct net *net; | ||
80 | /* | 81 | /* |
81 | * There are two upcall pipes; dentry[1], named "gssd", is used | 82 | * There are two upcall pipes; dentry[1], named "gssd", is used |
82 | * for the new text-based upcall; dentry[0] is named after the | 83 | * for the new text-based upcall; dentry[0] is named after the |
@@ -295,7 +296,7 @@ static void put_pipe_version(struct net *net) | |||
295 | static void | 296 | static void |
296 | gss_release_msg(struct gss_upcall_msg *gss_msg) | 297 | gss_release_msg(struct gss_upcall_msg *gss_msg) |
297 | { | 298 | { |
298 | struct net *net = rpc_net_ns(gss_msg->auth->client); | 299 | struct net *net = gss_msg->auth->net; |
299 | if (!atomic_dec_and_test(&gss_msg->count)) | 300 | if (!atomic_dec_and_test(&gss_msg->count)) |
300 | return; | 301 | return; |
301 | put_pipe_version(net); | 302 | put_pipe_version(net); |
@@ -441,7 +442,7 @@ static void gss_encode_v1_msg(struct gss_upcall_msg *gss_msg, | |||
441 | } | 442 | } |
442 | 443 | ||
443 | static struct gss_upcall_msg * | 444 | static struct gss_upcall_msg * |
444 | gss_alloc_msg(struct gss_auth *gss_auth, struct rpc_clnt *clnt, | 445 | gss_alloc_msg(struct gss_auth *gss_auth, |
445 | kuid_t uid, const char *service_name) | 446 | kuid_t uid, const char *service_name) |
446 | { | 447 | { |
447 | struct gss_upcall_msg *gss_msg; | 448 | struct gss_upcall_msg *gss_msg; |
@@ -450,7 +451,7 @@ gss_alloc_msg(struct gss_auth *gss_auth, struct rpc_clnt *clnt, | |||
450 | gss_msg = kzalloc(sizeof(*gss_msg), GFP_NOFS); | 451 | gss_msg = kzalloc(sizeof(*gss_msg), GFP_NOFS); |
451 | if (gss_msg == NULL) | 452 | if (gss_msg == NULL) |
452 | return ERR_PTR(-ENOMEM); | 453 | return ERR_PTR(-ENOMEM); |
453 | vers = get_pipe_version(rpc_net_ns(clnt)); | 454 | vers = get_pipe_version(gss_auth->net); |
454 | if (vers < 0) { | 455 | if (vers < 0) { |
455 | kfree(gss_msg); | 456 | kfree(gss_msg); |
456 | return ERR_PTR(vers); | 457 | return ERR_PTR(vers); |
@@ -472,14 +473,14 @@ gss_alloc_msg(struct gss_auth *gss_auth, struct rpc_clnt *clnt, | |||
472 | } | 473 | } |
473 | 474 | ||
474 | static struct gss_upcall_msg * | 475 | static struct gss_upcall_msg * |
475 | gss_setup_upcall(struct rpc_clnt *clnt, struct gss_auth *gss_auth, struct rpc_cred *cred) | 476 | gss_setup_upcall(struct gss_auth *gss_auth, struct rpc_cred *cred) |
476 | { | 477 | { |
477 | struct gss_cred *gss_cred = container_of(cred, | 478 | struct gss_cred *gss_cred = container_of(cred, |
478 | struct gss_cred, gc_base); | 479 | struct gss_cred, gc_base); |
479 | struct gss_upcall_msg *gss_new, *gss_msg; | 480 | struct gss_upcall_msg *gss_new, *gss_msg; |
480 | kuid_t uid = cred->cr_uid; | 481 | kuid_t uid = cred->cr_uid; |
481 | 482 | ||
482 | gss_new = gss_alloc_msg(gss_auth, clnt, uid, gss_cred->gc_principal); | 483 | gss_new = gss_alloc_msg(gss_auth, uid, gss_cred->gc_principal); |
483 | if (IS_ERR(gss_new)) | 484 | if (IS_ERR(gss_new)) |
484 | return gss_new; | 485 | return gss_new; |
485 | gss_msg = gss_add_msg(gss_new); | 486 | gss_msg = gss_add_msg(gss_new); |
@@ -520,7 +521,7 @@ gss_refresh_upcall(struct rpc_task *task) | |||
520 | 521 | ||
521 | dprintk("RPC: %5u %s for uid %u\n", | 522 | dprintk("RPC: %5u %s for uid %u\n", |
522 | task->tk_pid, __func__, from_kuid(&init_user_ns, cred->cr_uid)); | 523 | task->tk_pid, __func__, from_kuid(&init_user_ns, cred->cr_uid)); |
523 | gss_msg = gss_setup_upcall(task->tk_client, gss_auth, cred); | 524 | gss_msg = gss_setup_upcall(gss_auth, cred); |
524 | if (PTR_ERR(gss_msg) == -EAGAIN) { | 525 | if (PTR_ERR(gss_msg) == -EAGAIN) { |
525 | /* XXX: warning on the first, under the assumption we | 526 | /* XXX: warning on the first, under the assumption we |
526 | * shouldn't normally hit this case on a refresh. */ | 527 | * shouldn't normally hit this case on a refresh. */ |
@@ -559,7 +560,7 @@ out: | |||
559 | static inline int | 560 | static inline int |
560 | gss_create_upcall(struct gss_auth *gss_auth, struct gss_cred *gss_cred) | 561 | gss_create_upcall(struct gss_auth *gss_auth, struct gss_cred *gss_cred) |
561 | { | 562 | { |
562 | struct net *net = rpc_net_ns(gss_auth->client); | 563 | struct net *net = gss_auth->net; |
563 | struct sunrpc_net *sn = net_generic(net, sunrpc_net_id); | 564 | struct sunrpc_net *sn = net_generic(net, sunrpc_net_id); |
564 | struct rpc_pipe *pipe; | 565 | struct rpc_pipe *pipe; |
565 | struct rpc_cred *cred = &gss_cred->gc_base; | 566 | struct rpc_cred *cred = &gss_cred->gc_base; |
@@ -576,7 +577,7 @@ retry: | |||
576 | timeout = 15 * HZ; | 577 | timeout = 15 * HZ; |
577 | if (!sn->gssd_running) | 578 | if (!sn->gssd_running) |
578 | timeout = HZ >> 2; | 579 | timeout = HZ >> 2; |
579 | gss_msg = gss_setup_upcall(gss_auth->client, gss_auth, cred); | 580 | gss_msg = gss_setup_upcall(gss_auth, cred); |
580 | if (PTR_ERR(gss_msg) == -EAGAIN) { | 581 | if (PTR_ERR(gss_msg) == -EAGAIN) { |
581 | err = wait_event_interruptible_timeout(pipe_version_waitqueue, | 582 | err = wait_event_interruptible_timeout(pipe_version_waitqueue, |
582 | sn->pipe_version >= 0, timeout); | 583 | sn->pipe_version >= 0, timeout); |
@@ -832,7 +833,9 @@ err_unlink_pipe_1: | |||
832 | static void gss_pipes_dentries_destroy_net(struct rpc_clnt *clnt, | 833 | static void gss_pipes_dentries_destroy_net(struct rpc_clnt *clnt, |
833 | struct rpc_auth *auth) | 834 | struct rpc_auth *auth) |
834 | { | 835 | { |
835 | struct net *net = rpc_net_ns(clnt); | 836 | struct gss_auth *gss_auth = container_of(auth, struct gss_auth, |
837 | rpc_auth); | ||
838 | struct net *net = gss_auth->net; | ||
836 | struct super_block *sb; | 839 | struct super_block *sb; |
837 | 840 | ||
838 | sb = rpc_get_sb_net(net); | 841 | sb = rpc_get_sb_net(net); |
@@ -846,7 +849,9 @@ static void gss_pipes_dentries_destroy_net(struct rpc_clnt *clnt, | |||
846 | static int gss_pipes_dentries_create_net(struct rpc_clnt *clnt, | 849 | static int gss_pipes_dentries_create_net(struct rpc_clnt *clnt, |
847 | struct rpc_auth *auth) | 850 | struct rpc_auth *auth) |
848 | { | 851 | { |
849 | struct net *net = rpc_net_ns(clnt); | 852 | struct gss_auth *gss_auth = container_of(auth, struct gss_auth, |
853 | rpc_auth); | ||
854 | struct net *net = gss_auth->net; | ||
850 | struct super_block *sb; | 855 | struct super_block *sb; |
851 | int err = 0; | 856 | int err = 0; |
852 | 857 | ||
@@ -884,11 +889,12 @@ gss_create(struct rpc_auth_create_args *args, struct rpc_clnt *clnt) | |||
884 | goto err_free; | 889 | goto err_free; |
885 | } | 890 | } |
886 | gss_auth->client = clnt; | 891 | gss_auth->client = clnt; |
892 | gss_auth->net = get_net(rpc_net_ns(clnt)); | ||
887 | err = -EINVAL; | 893 | err = -EINVAL; |
888 | gss_auth->mech = gss_mech_get_by_pseudoflavor(flavor); | 894 | gss_auth->mech = gss_mech_get_by_pseudoflavor(flavor); |
889 | if (!gss_auth->mech) { | 895 | if (!gss_auth->mech) { |
890 | dprintk("RPC: Pseudoflavor %d not found!\n", flavor); | 896 | dprintk("RPC: Pseudoflavor %d not found!\n", flavor); |
891 | goto err_free; | 897 | goto err_put_net; |
892 | } | 898 | } |
893 | gss_auth->service = gss_pseudoflavor_to_service(gss_auth->mech, flavor); | 899 | gss_auth->service = gss_pseudoflavor_to_service(gss_auth->mech, flavor); |
894 | if (gss_auth->service == 0) | 900 | if (gss_auth->service == 0) |
@@ -936,6 +942,8 @@ err_destroy_pipe_1: | |||
936 | rpc_destroy_pipe_data(gss_auth->pipe[1]); | 942 | rpc_destroy_pipe_data(gss_auth->pipe[1]); |
937 | err_put_mech: | 943 | err_put_mech: |
938 | gss_mech_put(gss_auth->mech); | 944 | gss_mech_put(gss_auth->mech); |
945 | err_put_net: | ||
946 | put_net(gss_auth->net); | ||
939 | err_free: | 947 | err_free: |
940 | kfree(gss_auth->target_name); | 948 | kfree(gss_auth->target_name); |
941 | kfree(gss_auth); | 949 | kfree(gss_auth); |
@@ -951,6 +959,7 @@ gss_free(struct gss_auth *gss_auth) | |||
951 | rpc_destroy_pipe_data(gss_auth->pipe[0]); | 959 | rpc_destroy_pipe_data(gss_auth->pipe[0]); |
952 | rpc_destroy_pipe_data(gss_auth->pipe[1]); | 960 | rpc_destroy_pipe_data(gss_auth->pipe[1]); |
953 | gss_mech_put(gss_auth->mech); | 961 | gss_mech_put(gss_auth->mech); |
962 | put_net(gss_auth->net); | ||
954 | kfree(gss_auth->target_name); | 963 | kfree(gss_auth->target_name); |
955 | 964 | ||
956 | kfree(gss_auth); | 965 | kfree(gss_auth); |