3 files changed, 45 insertions, 1 deletions
diff --git a/fs/nfs/callback.c b/fs/nfs/callback.c
index 073b4cf67ed9..54de482143cc 100644
--- a/fs/nfs/callback.c
+++ b/fs/nfs/callback.c
@@ -428,6 +428,18 @@ check_gss_callback_principal(struct nfs_client *clp, struct svc_rqst *rqstp)
        if (p == NULL)
                return 0;
+        /*
+         * Did we get the acceptor from userland during the SETCLIENID
+         * negotiation?
+         */
+        if (clp->cl_acceptor)
+                return !strcmp(p, clp->cl_acceptor);
+        /*
+         * Otherwise try to verify it using the cl_hostname. Note that this
+         * doesn't work if a non-canonical hostname was used in the devname.
+         */
        /* Expect a GSS_C_NT_HOSTBASED_NAME like "nfs@serverhostname" */
        if (memcmp(p, "nfs@", 4) != 0)
diff --git a/fs/nfs/client.c b/fs/nfs/client.c
index b213ee8fb012..168aa0df2658 100644
--- a/fs/nfs/client.c
+++ b/fs/nfs/client.c
@@ -252,6 +252,7 @@ void nfs_free_client(struct nfs_client *clp)
        put_net(clp->cl_net);
        put_nfs_version(clp->cl_nfs_mod);
        kfree(clp->cl_hostname);
+        kfree(clp->cl_acceptor);
        kfree(clp);
        dprintk("<-- nfs_free_client()\n");
diff --git a/fs/nfs/nfs4proc.c b/fs/nfs/nfs4proc.c
index 0b8490eab486..b7babb3b8a4d 100644
--- a/fs/nfs/nfs4proc.c
+++ b/fs/nfs/nfs4proc.c
@@ -4936,6 +4936,18 @@ nfs4_init_callback_netid(const struct nfs_client *clp, char *buf, size_t len)
                return scnprintf(buf, len, "tcp");
 }
+static void nfs4_setclientid_done(struct rpc_task *task, void *calldata)
+{
+        struct nfs4_setclientid *sc = calldata;
+        if (task->tk_status == 0)
+                sc->sc_cred = get_rpccred(task->tk_rqstp->rq_cred);
+}
+static const struct rpc_call_ops nfs4_setclientid_ops = {
+        .rpc_call_done = nfs4_setclientid_done,
+};
 /**
 * nfs4_proc_setclientid - Negotiate client ID
 * @clp: state data structure
@@ -4962,6 +4974,14 @@ int nfs4_proc_setclientid(struct nfs_client *clp, u32 program,
                .rpc_resp = res,
                .rpc_cred = cred,
        };
+        struct rpc_task *task;
+        struct rpc_task_setup task_setup_data = {
+                .rpc_client = clp->cl_rpcclient,
+                .rpc_message = &msg,
+                .callback_ops = &nfs4_setclientid_ops,
+                .callback_data = &setclientid,
+                .flags = RPC_TASK_TIMEOUT,
+        };
        int status;
        /* nfs_client_id4 */
@@ -4988,7 +5008,18 @@ int nfs4_proc_setclientid(struct nfs_client *clp, u32 program,
        dprintk("NFS call  setclientid auth=%s, '%.*s'\n",
                clp->cl_rpcclient->cl_auth->au_ops->au_name,
                setclientid.sc_name_len, setclientid.sc_name);
-        status = rpc_call_sync(clp->cl_rpcclient, &msg, RPC_TASK_TIMEOUT);
+        task = rpc_run_task(&task_setup_data);
+        if (IS_ERR(task)) {
+                status = PTR_ERR(task);
+                goto out;
+        }
+        status = task->tk_status;
+        if (setclientid.sc_cred) {
+                clp->cl_acceptor = rpcauth_stringify_acceptor(setclientid.sc_cred);
+                put_rpccred(setclientid.sc_cred);
+        }
+        rpc_put_task(task);
+out:
        trace_nfs4_setclientid(clp, status);
        dprintk("NFS reply setclientid: %d\n", status);
        return status;

diff --git a/fs/nfs/callback.c b/fs/nfs/callback.c index 073b4cf67ed9..54de482143cc 100644 --- a/fs/nfs/callback.c +++ b/fs/nfs/callback.c
@@ -428,6 +428,18 @@ check_gss_callback_principal(struct nfs_client clp, struct svc_rqst rqstp)
428	if (p == NULL)	428	if (p == NULL)
429	return 0;	429	return 0;
430		430
		431	/*
		432	* Did we get the acceptor from userland during the SETCLIENID
		433	* negotiation?
		434	*/
		435	if (clp->cl_acceptor)
		436	return !strcmp(p, clp->cl_acceptor);
		437
		438	/*
		439	* Otherwise try to verify it using the cl_hostname. Note that this
		440	* doesn't work if a non-canonical hostname was used in the devname.
		441	*/
		442
431	/* Expect a GSS_C_NT_HOSTBASED_NAME like "nfs@serverhostname" */	443	/* Expect a GSS_C_NT_HOSTBASED_NAME like "nfs@serverhostname" */
432		444
433	if (memcmp(p, "nfs@", 4) != 0)	445	if (memcmp(p, "nfs@", 4) != 0)


diff --git a/fs/nfs/client.c b/fs/nfs/client.c index b213ee8fb012..168aa0df2658 100644 --- a/fs/nfs/client.c +++ b/fs/nfs/client.c
@@ -252,6 +252,7 @@ void nfs_free_client(struct nfs_client *clp)
252	put_net(clp->cl_net);	252	put_net(clp->cl_net);
253	put_nfs_version(clp->cl_nfs_mod);	253	put_nfs_version(clp->cl_nfs_mod);
254	kfree(clp->cl_hostname);	254	kfree(clp->cl_hostname);
		255	kfree(clp->cl_acceptor);
255	kfree(clp);	256	kfree(clp);
256		257
257	dprintk("<-- nfs_free_client()\n");	258	dprintk("<-- nfs_free_client()\n");


diff --git a/fs/nfs/nfs4proc.c b/fs/nfs/nfs4proc.c index 0b8490eab486..b7babb3b8a4d 100644 --- a/fs/nfs/nfs4proc.c +++ b/fs/nfs/nfs4proc.c
@@ -4936,6 +4936,18 @@ nfs4_init_callback_netid(const struct nfs_client clp, char buf, size_t len)
4936	return scnprintf(buf, len, "tcp");	4936	return scnprintf(buf, len, "tcp");
4937	}	4937	}
4938		4938
		4939	static void nfs4_setclientid_done(struct rpc_task task, void calldata)
		4940	{
		4941	struct nfs4_setclientid *sc = calldata;
		4942
		4943	if (task->tk_status == 0)
		4944	sc->sc_cred = get_rpccred(task->tk_rqstp->rq_cred);
		4945	}
		4946
		4947	static const struct rpc_call_ops nfs4_setclientid_ops = {
		4948	.rpc_call_done = nfs4_setclientid_done,
		4949	};
		4950
4939	/**	4951	/**
4940	* nfs4_proc_setclientid - Negotiate client ID	4952	* nfs4_proc_setclientid - Negotiate client ID
4941	* @clp: state data structure	4953	* @clp: state data structure
@@ -4962,6 +4974,14 @@ int nfs4_proc_setclientid(struct nfs_client *clp, u32 program,
4962	.rpc_resp = res,	4974	.rpc_resp = res,
4963	.rpc_cred = cred,	4975	.rpc_cred = cred,
4964	};	4976	};
		4977	struct rpc_task *task;
		4978	struct rpc_task_setup task_setup_data = {
		4979	.rpc_client = clp->cl_rpcclient,
		4980	.rpc_message = &msg,
		4981	.callback_ops = &nfs4_setclientid_ops,
		4982	.callback_data = &setclientid,
		4983	.flags = RPC_TASK_TIMEOUT,
		4984	};
4965	int status;	4985	int status;
4966		4986
4967	/* nfs_client_id4 */	4987	/* nfs_client_id4 */
@@ -4988,7 +5008,18 @@ int nfs4_proc_setclientid(struct nfs_client *clp, u32 program,
4988	dprintk("NFS call setclientid auth=%s, '%.*s'\n",	5008	dprintk("NFS call setclientid auth=%s, '%.*s'\n",
4989	clp->cl_rpcclient->cl_auth->au_ops->au_name,	5009	clp->cl_rpcclient->cl_auth->au_ops->au_name,
4990	setclientid.sc_name_len, setclientid.sc_name);	5010	setclientid.sc_name_len, setclientid.sc_name);
4991	status = rpc_call_sync(clp->cl_rpcclient, &msg, RPC_TASK_TIMEOUT);	5011	task = rpc_run_task(&task_setup_data);
		5012	if (IS_ERR(task)) {
		5013	status = PTR_ERR(task);
		5014	goto out;
		5015	}
		5016	status = task->tk_status;
		5017	if (setclientid.sc_cred) {
		5018	clp->cl_acceptor = rpcauth_stringify_acceptor(setclientid.sc_cred);
		5019	put_rpccred(setclientid.sc_cred);
		5020	}
		5021	rpc_put_task(task);
		5022	out:
4992	trace_nfs4_setclientid(clp, status);	5023	trace_nfs4_setclientid(clp, status);
4993	dprintk("NFS reply setclientid: %d\n", status);	5024	dprintk("NFS reply setclientid: %d\n", status);
4994	return status;	5025	return status;