5 files changed, 217 insertions, 76 deletions
diff --git a/Documentation/filesystems/Locking b/Documentation/filesystems/Locking
index 28bfea75bcf2..59c14159cc47 100644
--- a/Documentation/filesystems/Locking
+++ b/Documentation/filesystems/Locking
@@ -15,6 +15,7 @@ prototypes:
        int (*d_delete)(struct dentry *);
        void (*d_release)(struct dentry *);
        void (*d_iput)(struct dentry *, struct inode *);
+        char *(*d_dname)((struct dentry *dentry, char *buffer, int buflen);
 locking rules:
        none have BKL
@@ -25,6 +26,7 @@ d_compare:	no		yes		no		no
 d_delete:       yes             no              yes             no
 d_release:      no              no              no              yes
 d_iput:         no              no              no              yes
+d_dname:        no              no              no              no
 --------------------------- inode_operations --------------------------- 
 prototypes:
diff --git a/Documentation/filesystems/afs.txt b/Documentation/filesystems/afs.txt
index 2f4237dfb8c7..12ad6c7f4e50 100644
--- a/Documentation/filesystems/afs.txt
+++ b/Documentation/filesystems/afs.txt
@@ -1,31 +1,82 @@
+                             ====================
                             kAFS: AFS FILESYSTEM
                             ====================
-ABOUT
+Contents:
-=====
+ - Overview.
+ - Usage.
+ - Mountpoints.
+ - Proc filesystem.
+ - The cell database.
+ - Security.
+ - Examples.
+========
+OVERVIEW
+========
-This filesystem provides a fairly simple AFS filesystem driver. It is under
+This filesystem provides a fairly simple secure AFS filesystem driver. It is
-development and only provides very basic facilities. It does not yet support
+under development and does not yet provide the full feature set.  The features
-the following AFS features:
+it does support include:
-        (*) Write support.
+ (*) Security (currently only AFS kaserver and KerberosIV tickets).
-        (*) Communications security.
-        (*) Local caching.
-        (*) pioctl() system call.
-        (*) Automatic mounting of embedded mountpoints.
+ (*) File reading.
+ (*) Automounting.
+It does not yet support the following AFS features:
+ (*) Write support.
+ (*) Local caching.
+ (*) pioctl() system call.
+===========
+COMPILATION
+===========
+The filesystem should be enabled by turning on the kernel configuration
+options:
+        CONFIG_AF_RXRPC         - The RxRPC protocol transport
+        CONFIG_RXKAD            - The RxRPC Kerberos security handler
+        CONFIG_AFS              - The AFS filesystem
+Additionally, the following can be turned on to aid debugging:
+        CONFIG_AF_RXRPC_DEBUG   - Permit AF_RXRPC debugging to be enabled
+        CONFIG_AFS_DEBUG        - Permit AFS debugging to be enabled
+They permit the debugging messages to be turned on dynamically by manipulating
+the masks in the following files:
+        /sys/module/af_rxrpc/parameters/debug
+        /sys/module/afs/parameters/debug
+=====
 USAGE
 =====
 When inserting the driver modules the root cell must be specified along with a
 list of volume location server IP addresses:
-        insmod rxrpc.o
+        insmod af_rxrpc.o
+        insmod rxkad.o
        insmod kafs.o rootcell=cambridge.redhat.com:172.16.18.73:172.16.18.91
-The first module is a driver for the RxRPC remote operation protocol, and the
+The first module is the AF_RXRPC network protocol driver.  This provides the
-second is the actual filesystem driver for the AFS filesystem.
+RxRPC remote operation protocol and may also be accessed from userspace.  See:
+        Documentation/networking/rxrpc.txt
+The second module is the kerberos RxRPC security driver, and the third module
+is the actual filesystem driver for the AFS filesystem.
 Once the module has been loaded, more modules can be added by the following
 procedure:
@@ -33,7 +84,7 @@ procedure:
        echo add grand.central.org 18.7.14.88:128.2.191.224 >/proc/fs/afs/cells
 Where the parameters to the "add" command are the name of a cell and a list of
-volume location servers within that cell.
+volume location servers within that cell, with the latter separated by colons.
 Filesystems can be mounted anywhere by commands similar to the following:
@@ -42,11 +93,6 @@ Filesystems can be mounted anywhere by commands similar to the following:
        mount -t afs "#root.afs." /afs
        mount -t afs "#root.cell." /afs/cambridge
-  NB: When using this on Linux 2.4, the mount command has to be different,
-      since the filesystem doesn't have access to the device name argument:
-        mount -t afs none /afs -ovol="#root.afs."
 Where the initial character is either a hash or a percent symbol depending on
 whether you definitely want a R/W volume (hash) or whether you'd prefer a R/O
 volume, but are willing to use a R/W volume instead (percent).
@@ -60,55 +106,66 @@ named volume will be looked up in the cell specified during insmod.
 Additional cells can be added through /proc (see later section).
+===========
 MOUNTPOINTS
 ===========
-AFS has a concept of mountpoints. These are specially formatted symbolic links
+AFS has a concept of mountpoints. In AFS terms, these are specially formatted
-(of the same form as the "device name" passed to mount). kAFS presents these
+symbolic links (of the same form as the "device name" passed to mount).  kAFS
-to the user as directories that have special properties:
+presents these to the user as directories that have a follow-link capability
+(ie: symbolic link semantics).  If anyone attempts to access them, they will
+automatically cause the target volume to be mounted (if possible) on that site.
-  (*) They cannot be listed. Running a program like "ls" on them will incur an
+Automatically mounted filesystems will be automatically unmounted approximately
-      EREMOTE error (Object is remote).
+twenty minutes after they were last used.  Alternatively they can be unmounted
+directly with the umount() system call.
-  (*) Other objects can't be looked up inside of them. This also incurs an
+Manually unmounting an AFS volume will cause any idle submounts upon it to be
-      EREMOTE error.
+culled first.  If all are culled, then the requested volume will also be
+unmounted, otherwise error EBUSY will be returned.
-  (*) They can be queried with the readlink() system call, which will return
+This can be used by the administrator to attempt to unmount the whole AFS tree
-      the name of the mountpoint to which they point. The "readlink" program
+mounted on /afs in one go by doing:
-      will also work.
-  (*) They can be mounted on (which symbolic links can't).
+        umount /afs
+===============
 PROC FILESYSTEM
 ===============
-The rxrpc module creates a number of files in various places in the /proc
-filesystem:
-  (*) Firstly, some information files are made available in a directory called
-      "/proc/net/rxrpc/". These list the extant transport endpoint, peer,
-      connection and call records.
-  (*) Secondly, some control files are made available in a directory called
-      "/proc/sys/rxrpc/". Currently, all these files can be used for is to
-      turn on various levels of tracing.
 The AFS modules creates a "/proc/fs/afs/" directory and populates it:
-  (*) A "cells" file that lists cells currently known to the afs module.
+  (*) A "cells" file that lists cells currently known to the afs module and
+      their usage counts:
+        [root@andromeda ~]# cat /proc/fs/afs/cells
+        USE NAME
+          3 cambridge.redhat.com
  (*) A directory per cell that contains files that list volume location
      servers, volumes, and active servers known within that cell.
+        [root@andromeda ~]# cat /proc/fs/afs/cambridge.redhat.com/servers
+        USE ADDR            STATE
+          4 172.16.18.91        0
+        [root@andromeda ~]# cat /proc/fs/afs/cambridge.redhat.com/vlservers
+        ADDRESS
+        172.16.18.91
+        [root@andromeda ~]# cat /proc/fs/afs/cambridge.redhat.com/volumes
+        USE STT VLID[0]  VLID[1]  VLID[2]  NAME
+          1 Val 20000000 20000001 20000002 root.afs
+=================
 THE CELL DATABASE
 =================
-The filesystem maintains an internal database of all the cells it knows and
+The filesystem maintains an internal database of all the cells it knows and the
-the IP addresses of the volume location servers for those cells. The cell to
+IP addresses of the volume location servers for those cells.  The cell to which
-which the computer belongs is added to the database when insmod is performed
+the system belongs is added to the database when insmod is performed by the
-by the "rootcell=" argument.
+"rootcell=" argument or, if compiled in, using a "kafs.rootcell=" argument on
+the kernel command line.
 Further cells can be added by commands similar to the following:
@@ -118,20 +175,65 @@ Further cells can be added by commands similar to the following:
 No other cell database operations are available at this time.
+========
+SECURITY
+========
+Secure operations are initiated by acquiring a key using the klog program.  A
+very primitive klog program is available at:
+        http://people.redhat.com/~dhowells/rxrpc/klog.c
+This should be compiled by:
+        make klog LDLIBS="-lcrypto -lcrypt -lkrb4 -lkeyutils"
+And then run as:
+        ./klog
+Assuming it's successful, this adds a key of type RxRPC, named for the service
+and cell, eg: "afs@<cellname>".  This can be viewed with the keyctl program or
+by cat'ing /proc/keys:
+        [root@andromeda ~]# keyctl show
+        Session Keyring
+               -3 --alswrv      0     0  keyring: _ses.3268
+                2 --alswrv      0     0   \_ keyring: _uid.0
+        111416553 --als--v      0     0   \_ rxrpc: afs@CAMBRIDGE.REDHAT.COM
+Currently the username, realm, password and proposed ticket lifetime are
+compiled in to the program.
+It is not required to acquire a key before using AFS facilities, but if one is
+not acquired then all operations will be governed by the anonymous user parts
+of the ACLs.
+If a key is acquired, then all AFS operations, including mounts and automounts,
+made by a possessor of that key will be secured with that key.
+If a file is opened with a particular key and then the file descriptor is
+passed to a process that doesn't have that key (perhaps over an AF_UNIX
+socket), then the operations on the file will be made with key that was used to
+open the file.
+========
 EXAMPLES
 ========
-Here's what I use to test this. Some of the names and IP addresses are local
+Here's what I use to test this.  Some of the names and IP addresses are local
-to my internal DNS. My "root.afs" partition has a mount point within it for
+to my internal DNS.  My "root.afs" partition has a mount point within it for
 some public volumes volumes.
-insmod -S /tmp/rxrpc.o 
+insmod /tmp/rxrpc.o
-insmod -S /tmp/kafs.o rootcell=cambridge.redhat.com:172.16.18.73:172.16.18.91
+insmod /tmp/rxkad.o
+insmod /tmp/kafs.o rootcell=cambridge.redhat.com:172.16.18.91
 mount -t afs \%root.afs. /afs
 mount -t afs \%cambridge.redhat.com:root.cell. /afs/cambridge.redhat.com/
-echo add grand.central.org 18.7.14.88:128.2.191.224 > /proc/fs/afs/cells 
+echo add grand.central.org 18.7.14.88:128.2.191.224 > /proc/fs/afs/cells
 mount -t afs "#grand.central.org:root.cell." /afs/grand.central.org/
 mount -t afs "#grand.central.org:root.archive." /afs/grand.central.org/archive
 mount -t afs "#grand.central.org:root.contrib." /afs/grand.central.org/contrib
@@ -141,15 +243,7 @@ mount -t afs "#grand.central.org:root.service." /afs/grand.central.org/service
 mount -t afs "#grand.central.org:root.software." /afs/grand.central.org/software
 mount -t afs "#grand.central.org:root.user." /afs/grand.central.org/user
-umount /afs/grand.central.org/user
-umount /afs/grand.central.org/software
-umount /afs/grand.central.org/service
-umount /afs/grand.central.org/project
-umount /afs/grand.central.org/doc
-umount /afs/grand.central.org/contrib
-umount /afs/grand.central.org/archive
-umount /afs/grand.central.org
-umount /afs/cambridge.redhat.com
 umount /afs
 rmmod kafs
+rmmod rxkad
 rmmod rxrpc
diff --git a/Documentation/filesystems/proc.txt b/Documentation/filesystems/proc.txt
index 5484ab5efd4f..4f3e84c520a5 100644
--- a/Documentation/filesystems/proc.txt
+++ b/Documentation/filesystems/proc.txt
@@ -122,21 +122,22 @@ subdirectory has the entries listed in Table 1-1.
 Table 1-1: Process specific entries in /proc 
 ..............................................................................
- File    Content                                        
+ File           Content
- cmdline Command line arguments                         
+ clear_refs     Clears page referenced bits shown in smaps output
- cpu     Current and last cpu in which it was executed          (2.4)(smp)
+ cmdline        Command line arguments
- cwd     Link to the current working directory
+ cpu            Current and last cpu in which it was executed   (2.4)(smp)
- environ Values of environment variables      
+ cwd            Link to the current working directory
- exe     Link to the executable of this process
+ environ        Values of environment variables
- fd      Directory, which contains all file descriptors 
+ exe            Link to the executable of this process
- maps    Memory maps to executables and library files           (2.4)
+ fd             Directory, which contains all file descriptors
- mem     Memory held by this process                    
+ maps           Memory maps to executables and library files    (2.4)
- root    Link to the root directory of this process
+ mem            Memory held by this process
- stat    Process status                                 
+ root           Link to the root directory of this process
- statm   Process memory status information              
+ stat           Process status
- status  Process status in human readable form          
+ statm          Process memory status information
- wchan   If CONFIG_KALLSYMS is set, a pre-decoded wchan
+ status         Process status in human readable form
- smaps   Extension based on maps, presenting the rss size for each mapped file
+ wchan          If CONFIG_KALLSYMS is set, a pre-decoded wchan
+ smaps          Extension based on maps, the rss size for each mapped file
 ..............................................................................
 For example, to get the status information of a process, all you have to do is
@@ -1137,6 +1138,13 @@ determine whether or not they are still functioning properly.
 Because the NMI watchdog shares registers with oprofile, by disabling the NMI
 watchdog, oprofile may have more registers to utilize.
+maps_protect
+------------
+Enables/Disables the protection of the per-process proc entries "maps" and
+"smaps".  When enabled, the contents of these files are visible only to
+readers that are allowed to ptrace() the given process.
 2.4 /proc/sys/vm - The virtual memory subsystem
 -----------------------------------------------
@@ -1421,6 +1429,15 @@ fewer messages that will be written. Message_burst controls when messages will
 be dropped.  The  default  settings  limit  warning messages to one every five
 seconds.
+warnings
+--------
+This controls console messages from the networking stack that can occur because
+of problems on the network like duplicate address or bad checksums. Normally,
+this should be enabled, but if the problem persists the messages can be
+disabled.
 netdev_max_backlog
 ------------------
diff --git a/Documentation/filesystems/vfat.txt b/Documentation/filesystems/vfat.txt
index 069cb1094300..fcc123ffa252 100644
--- a/Documentation/filesystems/vfat.txt
+++ b/Documentation/filesystems/vfat.txt
@@ -57,6 +57,13 @@ nonumtail=<bool> -- When creating 8.3 aliases, normally the alias will
                 currently exist in the directory, 'longfile.txt' will
                 be the short alias instead of 'longfi~1.txt'. 
                  
+usefree       -- Use the "free clusters" value stored on FSINFO. It'll
+                 be used to determine number of free clusters without
+                 scanning disk. But it's not used by default, because
+                 recent Windows don't update it correctly in some
+                 case. If you are sure the "free clusters" on FSINFO is
+                 correct, by this option you can avoid scanning disk.
 quiet         -- Stops printing certain warning messages.
 check=s|r|n   -- Case sensitivity checking setting.
diff --git a/Documentation/filesystems/vfs.txt b/Documentation/filesystems/vfs.txt
index ea271f2d3954..a47cc819f37b 100644
--- a/Documentation/filesystems/vfs.txt
+++ b/Documentation/filesystems/vfs.txt
@@ -827,7 +827,7 @@ This describes how a filesystem can overload the standard dentry
 operations. Dentries and the dcache are the domain of the VFS and the
 individual filesystem implementations. Device drivers have no business
 here. These methods may be set to NULL, as they are either optional or
-the VFS uses a default. As of kernel 2.6.13, the following members are
+the VFS uses a default. As of kernel 2.6.22, the following members are
 defined:
 struct dentry_operations {
@@ -837,6 +837,7 @@ struct dentry_operations {
        int (*d_delete)(struct dentry *);
        void (*d_release)(struct dentry *);
        void (*d_iput)(struct dentry *, struct inode *);
+        char *(*d_dname)(struct dentry *, char *, int);
 };
  d_revalidate: called when the VFS needs to revalidate a dentry. This
@@ -859,6 +860,26 @@ struct dentry_operations {
        VFS calls iput(). If you define this method, you must call
        iput() yourself
+  d_dname: called when the pathname of a dentry should be generated.
+        Usefull for some pseudo filesystems (sockfs, pipefs, ...) to delay
+        pathname generation. (Instead of doing it when dentry is created,
+        its done only when the path is needed.). Real filesystems probably
+        dont want to use it, because their dentries are present in global
+        dcache hash, so their hash should be an invariant. As no lock is
+        held, d_dname() should not try to modify the dentry itself, unless
+        appropriate SMP safety is used. CAUTION : d_path() logic is quite
+        tricky. The correct way to return for example "Hello" is to put it
+        at the end of the buffer, and returns a pointer to the first char.
+        dynamic_dname() helper function is provided to take care of this.
+Example :
+static char *pipefs_dname(struct dentry *dent, char *buffer, int buflen)
+{
+        return dynamic_dname(dentry, buffer, buflen, "pipe:[%lu]",
+                                dentry->d_inode->i_ino);
+}
 Each dentry has a pointer to its parent dentry, as well as a hash list
 of child dentries. Child dentries are basically like files in a
 directory.