5 files changed, 105 insertions, 7 deletions
diff --git a/fs/cifs/CHANGES b/fs/cifs/CHANGES
index 72063f5e56b1..851388fafc73 100644
--- a/fs/cifs/CHANGES
+++ b/fs/cifs/CHANGES
@@ -1,3 +1,13 @@
+Version 1.57
+------------
+Improve support for multiple security contexts to the same server. We
+used to use the same "vcnumber" for all connections which could cause
+the server to treat subsequent connections, especially those that
+are authenticated as guest, as reconnections, invalidating the earlier
+user's smb session.  This fix allows cifs to mount multiple times to the
+same server with different userids without risking invalidating earlier
+established security contexts.
 Version 1.56
 ------------
 Add "forcemandatorylock" mount option to allow user to use mandatory
diff --git a/fs/cifs/cifsfs.h b/fs/cifs/cifsfs.h
index 7ac481841f87..2b1d28a9ee28 100644
--- a/fs/cifs/cifsfs.h
+++ b/fs/cifs/cifsfs.h
@@ -100,5 +100,5 @@ extern long cifs_ioctl(struct file *filep, unsigned int cmd, unsigned long arg);
 extern const struct export_operations cifs_export_ops;
 #endif /* EXPERIMENTAL */
-#define CIFS_VERSION   "1.56"
+#define CIFS_VERSION   "1.57"
 #endif                          /* _CIFSFS_H */
diff --git a/fs/cifs/cifsglob.h b/fs/cifs/cifsglob.h
index 94c1ca0ec953..e004f6db5fc8 100644
--- a/fs/cifs/cifsglob.h
+++ b/fs/cifs/cifsglob.h
@@ -164,9 +164,12 @@ struct TCP_Server_Info {
        /* multiplexed reads or writes */
        unsigned int maxBuf;    /* maxBuf specifies the maximum */
        /* message size the server can send or receive for non-raw SMBs */
-        unsigned int maxRw;     /* maxRw specifies the maximum */
+        unsigned int max_rw;    /* maxRw specifies the maximum */
        /* message size the server can send or receive for */
        /* SMB_COM_WRITE_RAW or SMB_COM_READ_RAW. */
+        unsigned int max_vcs;   /* maximum number of smb sessions, at least
+                                   those that can be specified uniquely with
+                                   vcnumbers */
        char sessid[4];         /* unique token id for this session */
        /* (returned on Negotiate */
        int capabilities; /* allow selective disabling of caps by smb sess */
@@ -210,6 +213,7 @@ struct cifsSesInfo {
        unsigned overrideSecFlg;  /* if non-zero override global sec flags */
        __u16 ipc_tid;          /* special tid for connection to IPC share */
        __u16 flags;
+        __u16 vcnum;
        char *serverOS;         /* name of operating system underlying server */
        char *serverNOS;        /* name of network operating system of server */
        char *serverDomain;     /* security realm of server */
diff --git a/fs/cifs/cifssmb.c b/fs/cifs/cifssmb.c
index 552642a507c4..939e2f76b959 100644
--- a/fs/cifs/cifssmb.c
+++ b/fs/cifs/cifssmb.c
@@ -528,14 +528,15 @@ CIFSSMBNegotiate(unsigned int xid, struct cifsSesInfo *ses)
                server->maxReq = le16_to_cpu(rsp->MaxMpxCount);
                server->maxBuf = min((__u32)le16_to_cpu(rsp->MaxBufSize),
                                (__u32)CIFSMaxBufSize + MAX_CIFS_HDR_SIZE);
+                server->max_vcs = le16_to_cpu(rsp->MaxNumberVcs);
                GETU32(server->sessid) = le32_to_cpu(rsp->SessionKey);
                /* even though we do not use raw we might as well set this
                accurately, in case we ever find a need for it */
                if ((le16_to_cpu(rsp->RawMode) & RAW_ENABLE) == RAW_ENABLE) {
-                        server->maxRw = 0xFF00;
+                        server->max_rw = 0xFF00;
                        server->capabilities = CAP_MPX_MODE | CAP_RAW_MODE;
                } else {
-                        server->maxRw = 0;/* we do not need to use raw anyway */
+                        server->max_rw = 0;/* do not need to use raw anyway */
                        server->capabilities = CAP_MPX_MODE;
                }
                tmp = (__s16)le16_to_cpu(rsp->ServerTimeZone);
@@ -638,7 +639,7 @@ CIFSSMBNegotiate(unsigned int xid, struct cifsSesInfo *ses)
        /* probably no need to store and check maxvcs */
        server->maxBuf = min(le32_to_cpu(pSMBr->MaxBufferSize),
                        (__u32) CIFSMaxBufSize + MAX_CIFS_HDR_SIZE);
-        server->maxRw = le32_to_cpu(pSMBr->MaxRawSize);
+        server->max_rw = le32_to_cpu(pSMBr->MaxRawSize);
        cFYI(DBG2, ("Max buf = %d", ses->server->maxBuf));
        GETU32(ses->server->sessid) = le32_to_cpu(pSMBr->SessionKey);
        server->capabilities = le32_to_cpu(pSMBr->Capabilities);
diff --git a/fs/cifs/sess.c b/fs/cifs/sess.c
index b234407a3007..5c68b4282be9 100644
--- a/fs/cifs/sess.c
+++ b/fs/cifs/sess.c
@@ -34,15 +34,99 @@
 extern void SMBNTencrypt(unsigned char *passwd, unsigned char *c8,
                         unsigned char *p24);
+/* Checks if this is the first smb session to be reconnected after
+   the socket has been reestablished (so we know whether to use vc 0).
+   Called while holding the cifs_tcp_ses_lock, so do not block */
+static bool is_first_ses_reconnect(struct cifsSesInfo *ses)
+{
+        struct list_head *tmp;
+        struct cifsSesInfo *tmp_ses;
+        list_for_each(tmp, &ses->server->smb_ses_list) {
+                tmp_ses = list_entry(tmp, struct cifsSesInfo,
+                                     smb_ses_list);
+                if (tmp_ses->need_reconnect == false)
+                        return false;
+        }
+        /* could not find a session that was already connected,
+           this must be the first one we are reconnecting */
+        return true;
+}
+/*
+ *      vc number 0 is treated specially by some servers, and should be the
+ *      first one we request.  After that we can use vcnumbers up to maxvcs,
+ *      one for each smb session (some Windows versions set maxvcs incorrectly
+ *      so maxvc=1 can be ignored).  If we have too many vcs, we can reuse
+ *      any vc but zero (some servers reset the connection on vcnum zero)
+ *
+ */
+static __le16 get_next_vcnum(struct cifsSesInfo *ses)
+{
+        __u16 vcnum = 0;
+        struct list_head *tmp;
+        struct cifsSesInfo *tmp_ses;
+        __u16 max_vcs = ses->server->max_vcs;
+        __u16 i;
+        int free_vc_found = 0;
+        /* Quoting the MS-SMB specification: "Windows-based SMB servers set this
+        field to one but do not enforce this limit, which allows an SMB client
+        to establish more virtual circuits than allowed by this value ... but
+        other server implementations can enforce this limit." */
+        if (max_vcs < 2)
+                max_vcs = 0xFFFF;
+        write_lock(&cifs_tcp_ses_lock);
+        if ((ses->need_reconnect) && is_first_ses_reconnect(ses))
+                        goto get_vc_num_exit;  /* vcnum will be zero */
+        for (i = ses->server->srv_count - 1; i < max_vcs; i++) {
+                if (i == 0) /* this is the only connection, use vc 0 */
+                        break;
+                free_vc_found = 1;
+                list_for_each(tmp, &ses->server->smb_ses_list) {
+                        tmp_ses = list_entry(tmp, struct cifsSesInfo,
+                                             smb_ses_list);
+                        if (tmp_ses->vcnum == i) {
+                                free_vc_found = 0;
+                                break; /* found duplicate, try next vcnum */
+                        }
+                }
+                if (free_vc_found)
+                        break; /* we found a vcnumber that will work - use it */
+        }
+        if (i == 0)
+                vcnum = 0; /* for most common case, ie if one smb session, use
+                              vc zero.  Also for case when no free vcnum, zero
+                              is safest to send (some clients only send zero) */
+        else if (free_vc_found == 0)
+                vcnum = 1;  /* we can not reuse vc=0 safely, since some servers
+                                reset all uids on that, but 1 is ok. */
+        else
+                vcnum = i;
+        ses->vcnum = vcnum;
+get_vc_num_exit:
+        write_unlock(&cifs_tcp_ses_lock);
+        return le16_to_cpu(vcnum);
+}
 static __u32 cifs_ssetup_hdr(struct cifsSesInfo *ses, SESSION_SETUP_ANDX *pSMB)
 {
        __u32 capabilities = 0;
        /* init fields common to all four types of SessSetup */
-        /* note that header is initialized to zero in header_assemble */
+        /* Note that offsets for first seven fields in req struct are same  */
+        /*      in CIFS Specs so does not matter which of 3 forms of struct */
+        /*      that we use in next few lines                               */
+        /* Note that header is initialized to zero in header_assemble */
        pSMB->req.AndXCommand = 0xFF;
        pSMB->req.MaxBufferSize = cpu_to_le16(ses->server->maxBuf);
        pSMB->req.MaxMpxCount = cpu_to_le16(ses->server->maxReq);
+        pSMB->req.VcNumber = get_next_vcnum(ses);
        /* Now no need to set SMBFLG_CASELESS or obsolete CANONICAL PATH */
@@ -71,7 +155,6 @@ static __u32 cifs_ssetup_hdr(struct cifsSesInfo *ses, SESSION_SETUP_ANDX *pSMB)
        if (ses->capabilities & CAP_UNIX)
                capabilities |= CAP_UNIX;
-        /* BB check whether to init vcnum BB */
        return capabilities;
 }

diff --git a/fs/cifs/CHANGES b/fs/cifs/CHANGES index 72063f5e56b1..851388fafc73 100644 --- a/fs/cifs/CHANGES +++ b/fs/cifs/CHANGES
@@ -1,3 +1,13 @@
		1	Version 1.57
		2	------------
		3	Improve support for multiple security contexts to the same server. We
		4	used to use the same "vcnumber" for all connections which could cause
		5	the server to treat subsequent connections, especially those that
		6	are authenticated as guest, as reconnections, invalidating the earlier
		7	user's smb session. This fix allows cifs to mount multiple times to the
		8	same server with different userids without risking invalidating earlier
		9	established security contexts.
		10
1	Version 1.56	11	Version 1.56
2	------------	12	------------
3	Add "forcemandatorylock" mount option to allow user to use mandatory	13	Add "forcemandatorylock" mount option to allow user to use mandatory


diff --git a/fs/cifs/cifsfs.h b/fs/cifs/cifsfs.h index 7ac481841f87..2b1d28a9ee28 100644 --- a/fs/cifs/cifsfs.h +++ b/fs/cifs/cifsfs.h
@@ -100,5 +100,5 @@ extern long cifs_ioctl(struct file *filep, unsigned int cmd, unsigned long arg);
100	extern const struct export_operations cifs_export_ops;	100	extern const struct export_operations cifs_export_ops;
101	#endif /* EXPERIMENTAL */	101	#endif /* EXPERIMENTAL */
102		102
103	#define CIFS_VERSION "1.56"	103	#define CIFS_VERSION "1.57"
104	#endif /* _CIFSFS_H */	104	#endif /* _CIFSFS_H */


diff --git a/fs/cifs/cifsglob.h b/fs/cifs/cifsglob.h index 94c1ca0ec953..e004f6db5fc8 100644 --- a/fs/cifs/cifsglob.h +++ b/fs/cifs/cifsglob.h
@@ -164,9 +164,12 @@ struct TCP_Server_Info {
164	/* multiplexed reads or writes */	164	/* multiplexed reads or writes */
165	unsigned int maxBuf; /* maxBuf specifies the maximum */	165	unsigned int maxBuf; /* maxBuf specifies the maximum */
166	/* message size the server can send or receive for non-raw SMBs */	166	/* message size the server can send or receive for non-raw SMBs */
167	unsigned int maxRw; /* maxRw specifies the maximum */	167	unsigned int max_rw; /* maxRw specifies the maximum */
168	/* message size the server can send or receive for */	168	/* message size the server can send or receive for */
169	/* SMB_COM_WRITE_RAW or SMB_COM_READ_RAW. */	169	/* SMB_COM_WRITE_RAW or SMB_COM_READ_RAW. */
		170	unsigned int max_vcs; /* maximum number of smb sessions, at least
		171	those that can be specified uniquely with
		172	vcnumbers */
170	char sessid[4]; /* unique token id for this session */	173	char sessid[4]; /* unique token id for this session */
171	/* (returned on Negotiate */	174	/* (returned on Negotiate */
172	int capabilities; /* allow selective disabling of caps by smb sess */	175	int capabilities; /* allow selective disabling of caps by smb sess */
@@ -210,6 +213,7 @@ struct cifsSesInfo {
210	unsigned overrideSecFlg; /* if non-zero override global sec flags */	213	unsigned overrideSecFlg; /* if non-zero override global sec flags */
211	__u16 ipc_tid; /* special tid for connection to IPC share */	214	__u16 ipc_tid; /* special tid for connection to IPC share */
212	__u16 flags;	215	__u16 flags;
		216	__u16 vcnum;
213	char serverOS; / name of operating system underlying server */	217	char serverOS; / name of operating system underlying server */
214	char serverNOS; / name of network operating system of server */	218	char serverNOS; / name of network operating system of server */
215	char serverDomain; / security realm of server */	219	char serverDomain; / security realm of server */


diff --git a/fs/cifs/cifssmb.c b/fs/cifs/cifssmb.c index 552642a507c4..939e2f76b959 100644 --- a/fs/cifs/cifssmb.c +++ b/fs/cifs/cifssmb.c
@@ -528,14 +528,15 @@ CIFSSMBNegotiate(unsigned int xid, struct cifsSesInfo *ses)
528	server->maxReq = le16_to_cpu(rsp->MaxMpxCount);	528	server->maxReq = le16_to_cpu(rsp->MaxMpxCount);
529	server->maxBuf = min((__u32)le16_to_cpu(rsp->MaxBufSize),	529	server->maxBuf = min((__u32)le16_to_cpu(rsp->MaxBufSize),
530	(__u32)CIFSMaxBufSize + MAX_CIFS_HDR_SIZE);	530	(__u32)CIFSMaxBufSize + MAX_CIFS_HDR_SIZE);
		531	server->max_vcs = le16_to_cpu(rsp->MaxNumberVcs);
531	GETU32(server->sessid) = le32_to_cpu(rsp->SessionKey);	532	GETU32(server->sessid) = le32_to_cpu(rsp->SessionKey);
532	/* even though we do not use raw we might as well set this	533	/* even though we do not use raw we might as well set this
533	accurately, in case we ever find a need for it */	534	accurately, in case we ever find a need for it */
534	if ((le16_to_cpu(rsp->RawMode) & RAW_ENABLE) == RAW_ENABLE) {	535	if ((le16_to_cpu(rsp->RawMode) & RAW_ENABLE) == RAW_ENABLE) {
535	server->maxRw = 0xFF00;	536	server->max_rw = 0xFF00;
536	server->capabilities = CAP_MPX_MODE \| CAP_RAW_MODE;	537	server->capabilities = CAP_MPX_MODE \| CAP_RAW_MODE;
537	} else {	538	} else {
538	server->maxRw = 0;/* we do not need to use raw anyway */	539	server->max_rw = 0;/* do not need to use raw anyway */
539	server->capabilities = CAP_MPX_MODE;	540	server->capabilities = CAP_MPX_MODE;
540	}	541	}
541	tmp = (__s16)le16_to_cpu(rsp->ServerTimeZone);	542	tmp = (__s16)le16_to_cpu(rsp->ServerTimeZone);
@@ -638,7 +639,7 @@ CIFSSMBNegotiate(unsigned int xid, struct cifsSesInfo *ses)
638	/* probably no need to store and check maxvcs */	639	/* probably no need to store and check maxvcs */
639	server->maxBuf = min(le32_to_cpu(pSMBr->MaxBufferSize),	640	server->maxBuf = min(le32_to_cpu(pSMBr->MaxBufferSize),
640	(__u32) CIFSMaxBufSize + MAX_CIFS_HDR_SIZE);	641	(__u32) CIFSMaxBufSize + MAX_CIFS_HDR_SIZE);
641	server->maxRw = le32_to_cpu(pSMBr->MaxRawSize);	642	server->max_rw = le32_to_cpu(pSMBr->MaxRawSize);
642	cFYI(DBG2, ("Max buf = %d", ses->server->maxBuf));	643	cFYI(DBG2, ("Max buf = %d", ses->server->maxBuf));
643	GETU32(ses->server->sessid) = le32_to_cpu(pSMBr->SessionKey);	644	GETU32(ses->server->sessid) = le32_to_cpu(pSMBr->SessionKey);
644	server->capabilities = le32_to_cpu(pSMBr->Capabilities);	645	server->capabilities = le32_to_cpu(pSMBr->Capabilities);


diff --git a/fs/cifs/sess.c b/fs/cifs/sess.c index b234407a3007..5c68b4282be9 100644 --- a/fs/cifs/sess.c +++ b/fs/cifs/sess.c
@@ -34,15 +34,99 @@
34	extern void SMBNTencrypt(unsigned char passwd, unsigned char c8,	34	extern void SMBNTencrypt(unsigned char passwd, unsigned char c8,
35	unsigned char *p24);	35	unsigned char *p24);
36		36
		37	/* Checks if this is the first smb session to be reconnected after
		38	the socket has been reestablished (so we know whether to use vc 0).
		39	Called while holding the cifs_tcp_ses_lock, so do not block */
		40	static bool is_first_ses_reconnect(struct cifsSesInfo *ses)
		41	{
		42	struct list_head *tmp;
		43	struct cifsSesInfo *tmp_ses;
		44
		45	list_for_each(tmp, &ses->server->smb_ses_list) {
		46	tmp_ses = list_entry(tmp, struct cifsSesInfo,
		47	smb_ses_list);
		48	if (tmp_ses->need_reconnect == false)
		49	return false;
		50	}
		51	/* could not find a session that was already connected,
		52	this must be the first one we are reconnecting */
		53	return true;
		54	}
		55
		56	/*
		57	* vc number 0 is treated specially by some servers, and should be the
		58	* first one we request. After that we can use vcnumbers up to maxvcs,
		59	* one for each smb session (some Windows versions set maxvcs incorrectly
		60	* so maxvc=1 can be ignored). If we have too many vcs, we can reuse
		61	* any vc but zero (some servers reset the connection on vcnum zero)
		62	*
		63	*/
		64	static __le16 get_next_vcnum(struct cifsSesInfo *ses)
		65	{
		66	__u16 vcnum = 0;
		67	struct list_head *tmp;
		68	struct cifsSesInfo *tmp_ses;
		69	__u16 max_vcs = ses->server->max_vcs;
		70	__u16 i;
		71	int free_vc_found = 0;
		72
		73	/* Quoting the MS-SMB specification: "Windows-based SMB servers set this
		74	field to one but do not enforce this limit, which allows an SMB client
		75	to establish more virtual circuits than allowed by this value ... but
		76	other server implementations can enforce this limit." */
		77	if (max_vcs < 2)
		78	max_vcs = 0xFFFF;
		79
		80	write_lock(&cifs_tcp_ses_lock);
		81	if ((ses->need_reconnect) && is_first_ses_reconnect(ses))
		82	goto get_vc_num_exit; /* vcnum will be zero */
		83	for (i = ses->server->srv_count - 1; i < max_vcs; i++) {
		84	if (i == 0) /* this is the only connection, use vc 0 */
		85	break;
		86
		87	free_vc_found = 1;
		88
		89	list_for_each(tmp, &ses->server->smb_ses_list) {
		90	tmp_ses = list_entry(tmp, struct cifsSesInfo,
		91	smb_ses_list);
		92	if (tmp_ses->vcnum == i) {
		93	free_vc_found = 0;
		94	break; /* found duplicate, try next vcnum */
		95	}
		96	}
		97	if (free_vc_found)
		98	break; /* we found a vcnumber that will work - use it */
		99	}
		100
		101	if (i == 0)
		102	vcnum = 0; /* for most common case, ie if one smb session, use
		103	vc zero. Also for case when no free vcnum, zero
		104	is safest to send (some clients only send zero) */
		105	else if (free_vc_found == 0)
		106	vcnum = 1; /* we can not reuse vc=0 safely, since some servers
		107	reset all uids on that, but 1 is ok. */
		108	else
		109	vcnum = i;
		110	ses->vcnum = vcnum;
		111	get_vc_num_exit:
		112	write_unlock(&cifs_tcp_ses_lock);
		113
		114	return le16_to_cpu(vcnum);
		115	}
		116
37	static __u32 cifs_ssetup_hdr(struct cifsSesInfo ses, SESSION_SETUP_ANDX pSMB)	117	static __u32 cifs_ssetup_hdr(struct cifsSesInfo ses, SESSION_SETUP_ANDX pSMB)
38	{	118	{
39	__u32 capabilities = 0;	119	__u32 capabilities = 0;
40		120
41	/* init fields common to all four types of SessSetup */	121	/* init fields common to all four types of SessSetup */
42	/* note that header is initialized to zero in header_assemble */	122	/* Note that offsets for first seven fields in req struct are same */
		123	/* in CIFS Specs so does not matter which of 3 forms of struct */
		124	/* that we use in next few lines */
		125	/* Note that header is initialized to zero in header_assemble */
43	pSMB->req.AndXCommand = 0xFF;	126	pSMB->req.AndXCommand = 0xFF;
44	pSMB->req.MaxBufferSize = cpu_to_le16(ses->server->maxBuf);	127	pSMB->req.MaxBufferSize = cpu_to_le16(ses->server->maxBuf);
45	pSMB->req.MaxMpxCount = cpu_to_le16(ses->server->maxReq);	128	pSMB->req.MaxMpxCount = cpu_to_le16(ses->server->maxReq);
		129	pSMB->req.VcNumber = get_next_vcnum(ses);
46		130
47	/* Now no need to set SMBFLG_CASELESS or obsolete CANONICAL PATH */	131	/* Now no need to set SMBFLG_CASELESS or obsolete CANONICAL PATH */
48		132
@@ -71,7 +155,6 @@ static __u32 cifs_ssetup_hdr(struct cifsSesInfo ses, SESSION_SETUP_ANDX pSMB)
71	if (ses->capabilities & CAP_UNIX)	155	if (ses->capabilities & CAP_UNIX)
72	capabilities \|= CAP_UNIX;	156	capabilities \|= CAP_UNIX;
73		157
74	/* BB check whether to init vcnum BB */
75	return capabilities;	158	return capabilities;
76	}	159	}
77		160