162306a36Sopenharmony_ci/* 262306a36Sopenharmony_ci * fs/nfs/idmap.c 362306a36Sopenharmony_ci * 462306a36Sopenharmony_ci * UID and GID to name mapping for clients. 562306a36Sopenharmony_ci * 662306a36Sopenharmony_ci * Copyright (c) 2002 The Regents of the University of Michigan. 762306a36Sopenharmony_ci * All rights reserved. 862306a36Sopenharmony_ci * 962306a36Sopenharmony_ci * Marius Aamodt Eriksen <marius@umich.edu> 1062306a36Sopenharmony_ci * 1162306a36Sopenharmony_ci * Redistribution and use in source and binary forms, with or without 1262306a36Sopenharmony_ci * modification, are permitted provided that the following conditions 1362306a36Sopenharmony_ci * are met: 1462306a36Sopenharmony_ci * 1562306a36Sopenharmony_ci * 1. Redistributions of source code must retain the above copyright 1662306a36Sopenharmony_ci * notice, this list of conditions and the following disclaimer. 1762306a36Sopenharmony_ci * 2. Redistributions in binary form must reproduce the above copyright 1862306a36Sopenharmony_ci * notice, this list of conditions and the following disclaimer in the 1962306a36Sopenharmony_ci * documentation and/or other materials provided with the distribution. 2062306a36Sopenharmony_ci * 3. Neither the name of the University nor the names of its 2162306a36Sopenharmony_ci * contributors may be used to endorse or promote products derived 2262306a36Sopenharmony_ci * from this software without specific prior written permission. 2362306a36Sopenharmony_ci * 2462306a36Sopenharmony_ci * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED 2562306a36Sopenharmony_ci * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF 2662306a36Sopenharmony_ci * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE 2762306a36Sopenharmony_ci * DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 2862306a36Sopenharmony_ci * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 2962306a36Sopenharmony_ci * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 3062306a36Sopenharmony_ci * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR 3162306a36Sopenharmony_ci * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF 3262306a36Sopenharmony_ci * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING 3362306a36Sopenharmony_ci * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS 3462306a36Sopenharmony_ci * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 3562306a36Sopenharmony_ci */ 3662306a36Sopenharmony_ci#include <linux/types.h> 3762306a36Sopenharmony_ci#include <linux/parser.h> 3862306a36Sopenharmony_ci#include <linux/fs.h> 3962306a36Sopenharmony_ci#include <net/net_namespace.h> 4062306a36Sopenharmony_ci#include <linux/sunrpc/rpc_pipe_fs.h> 4162306a36Sopenharmony_ci#include <linux/nfs_fs.h> 4262306a36Sopenharmony_ci#include <linux/nfs_fs_sb.h> 4362306a36Sopenharmony_ci#include <linux/key.h> 4462306a36Sopenharmony_ci#include <linux/keyctl.h> 4562306a36Sopenharmony_ci#include <linux/key-type.h> 4662306a36Sopenharmony_ci#include <keys/user-type.h> 4762306a36Sopenharmony_ci#include <keys/request_key_auth-type.h> 4862306a36Sopenharmony_ci#include <linux/module.h> 4962306a36Sopenharmony_ci#include <linux/user_namespace.h> 5062306a36Sopenharmony_ci 5162306a36Sopenharmony_ci#include "internal.h" 5262306a36Sopenharmony_ci#include "netns.h" 5362306a36Sopenharmony_ci#include "nfs4idmap.h" 5462306a36Sopenharmony_ci#include "nfs4trace.h" 5562306a36Sopenharmony_ci 5662306a36Sopenharmony_ci#define NFS_UINT_MAXLEN 11 5762306a36Sopenharmony_ci 5862306a36Sopenharmony_cistatic const struct cred *id_resolver_cache; 5962306a36Sopenharmony_cistatic struct key_type key_type_id_resolver_legacy; 6062306a36Sopenharmony_ci 6162306a36Sopenharmony_cistruct idmap_legacy_upcalldata { 6262306a36Sopenharmony_ci struct rpc_pipe_msg pipe_msg; 6362306a36Sopenharmony_ci struct idmap_msg idmap_msg; 6462306a36Sopenharmony_ci struct key *authkey; 6562306a36Sopenharmony_ci struct idmap *idmap; 6662306a36Sopenharmony_ci}; 6762306a36Sopenharmony_ci 6862306a36Sopenharmony_cistruct idmap { 6962306a36Sopenharmony_ci struct rpc_pipe_dir_object idmap_pdo; 7062306a36Sopenharmony_ci struct rpc_pipe *idmap_pipe; 7162306a36Sopenharmony_ci struct idmap_legacy_upcalldata *idmap_upcall_data; 7262306a36Sopenharmony_ci struct mutex idmap_mutex; 7362306a36Sopenharmony_ci struct user_namespace *user_ns; 7462306a36Sopenharmony_ci}; 7562306a36Sopenharmony_ci 7662306a36Sopenharmony_cistatic struct user_namespace *idmap_userns(const struct idmap *idmap) 7762306a36Sopenharmony_ci{ 7862306a36Sopenharmony_ci if (idmap && idmap->user_ns) 7962306a36Sopenharmony_ci return idmap->user_ns; 8062306a36Sopenharmony_ci return &init_user_ns; 8162306a36Sopenharmony_ci} 8262306a36Sopenharmony_ci 8362306a36Sopenharmony_ci/** 8462306a36Sopenharmony_ci * nfs_fattr_init_names - initialise the nfs_fattr owner_name/group_name fields 8562306a36Sopenharmony_ci * @fattr: fully initialised struct nfs_fattr 8662306a36Sopenharmony_ci * @owner_name: owner name string cache 8762306a36Sopenharmony_ci * @group_name: group name string cache 8862306a36Sopenharmony_ci */ 8962306a36Sopenharmony_civoid nfs_fattr_init_names(struct nfs_fattr *fattr, 9062306a36Sopenharmony_ci struct nfs4_string *owner_name, 9162306a36Sopenharmony_ci struct nfs4_string *group_name) 9262306a36Sopenharmony_ci{ 9362306a36Sopenharmony_ci fattr->owner_name = owner_name; 9462306a36Sopenharmony_ci fattr->group_name = group_name; 9562306a36Sopenharmony_ci} 9662306a36Sopenharmony_ci 9762306a36Sopenharmony_cistatic void nfs_fattr_free_owner_name(struct nfs_fattr *fattr) 9862306a36Sopenharmony_ci{ 9962306a36Sopenharmony_ci fattr->valid &= ~NFS_ATTR_FATTR_OWNER_NAME; 10062306a36Sopenharmony_ci kfree(fattr->owner_name->data); 10162306a36Sopenharmony_ci} 10262306a36Sopenharmony_ci 10362306a36Sopenharmony_cistatic void nfs_fattr_free_group_name(struct nfs_fattr *fattr) 10462306a36Sopenharmony_ci{ 10562306a36Sopenharmony_ci fattr->valid &= ~NFS_ATTR_FATTR_GROUP_NAME; 10662306a36Sopenharmony_ci kfree(fattr->group_name->data); 10762306a36Sopenharmony_ci} 10862306a36Sopenharmony_ci 10962306a36Sopenharmony_cistatic bool nfs_fattr_map_owner_name(struct nfs_server *server, struct nfs_fattr *fattr) 11062306a36Sopenharmony_ci{ 11162306a36Sopenharmony_ci struct nfs4_string *owner = fattr->owner_name; 11262306a36Sopenharmony_ci kuid_t uid; 11362306a36Sopenharmony_ci 11462306a36Sopenharmony_ci if (!(fattr->valid & NFS_ATTR_FATTR_OWNER_NAME)) 11562306a36Sopenharmony_ci return false; 11662306a36Sopenharmony_ci if (nfs_map_name_to_uid(server, owner->data, owner->len, &uid) == 0) { 11762306a36Sopenharmony_ci fattr->uid = uid; 11862306a36Sopenharmony_ci fattr->valid |= NFS_ATTR_FATTR_OWNER; 11962306a36Sopenharmony_ci } 12062306a36Sopenharmony_ci return true; 12162306a36Sopenharmony_ci} 12262306a36Sopenharmony_ci 12362306a36Sopenharmony_cistatic bool nfs_fattr_map_group_name(struct nfs_server *server, struct nfs_fattr *fattr) 12462306a36Sopenharmony_ci{ 12562306a36Sopenharmony_ci struct nfs4_string *group = fattr->group_name; 12662306a36Sopenharmony_ci kgid_t gid; 12762306a36Sopenharmony_ci 12862306a36Sopenharmony_ci if (!(fattr->valid & NFS_ATTR_FATTR_GROUP_NAME)) 12962306a36Sopenharmony_ci return false; 13062306a36Sopenharmony_ci if (nfs_map_group_to_gid(server, group->data, group->len, &gid) == 0) { 13162306a36Sopenharmony_ci fattr->gid = gid; 13262306a36Sopenharmony_ci fattr->valid |= NFS_ATTR_FATTR_GROUP; 13362306a36Sopenharmony_ci } 13462306a36Sopenharmony_ci return true; 13562306a36Sopenharmony_ci} 13662306a36Sopenharmony_ci 13762306a36Sopenharmony_ci/** 13862306a36Sopenharmony_ci * nfs_fattr_free_names - free up the NFSv4 owner and group strings 13962306a36Sopenharmony_ci * @fattr: a fully initialised nfs_fattr structure 14062306a36Sopenharmony_ci */ 14162306a36Sopenharmony_civoid nfs_fattr_free_names(struct nfs_fattr *fattr) 14262306a36Sopenharmony_ci{ 14362306a36Sopenharmony_ci if (fattr->valid & NFS_ATTR_FATTR_OWNER_NAME) 14462306a36Sopenharmony_ci nfs_fattr_free_owner_name(fattr); 14562306a36Sopenharmony_ci if (fattr->valid & NFS_ATTR_FATTR_GROUP_NAME) 14662306a36Sopenharmony_ci nfs_fattr_free_group_name(fattr); 14762306a36Sopenharmony_ci} 14862306a36Sopenharmony_ci 14962306a36Sopenharmony_ci/** 15062306a36Sopenharmony_ci * nfs_fattr_map_and_free_names - map owner/group strings into uid/gid and free 15162306a36Sopenharmony_ci * @server: pointer to the filesystem nfs_server structure 15262306a36Sopenharmony_ci * @fattr: a fully initialised nfs_fattr structure 15362306a36Sopenharmony_ci * 15462306a36Sopenharmony_ci * This helper maps the cached NFSv4 owner/group strings in fattr into 15562306a36Sopenharmony_ci * their numeric uid/gid equivalents, and then frees the cached strings. 15662306a36Sopenharmony_ci */ 15762306a36Sopenharmony_civoid nfs_fattr_map_and_free_names(struct nfs_server *server, struct nfs_fattr *fattr) 15862306a36Sopenharmony_ci{ 15962306a36Sopenharmony_ci if (nfs_fattr_map_owner_name(server, fattr)) 16062306a36Sopenharmony_ci nfs_fattr_free_owner_name(fattr); 16162306a36Sopenharmony_ci if (nfs_fattr_map_group_name(server, fattr)) 16262306a36Sopenharmony_ci nfs_fattr_free_group_name(fattr); 16362306a36Sopenharmony_ci} 16462306a36Sopenharmony_ci 16562306a36Sopenharmony_ciint nfs_map_string_to_numeric(const char *name, size_t namelen, __u32 *res) 16662306a36Sopenharmony_ci{ 16762306a36Sopenharmony_ci unsigned long val; 16862306a36Sopenharmony_ci char buf[16]; 16962306a36Sopenharmony_ci 17062306a36Sopenharmony_ci if (memchr(name, '@', namelen) != NULL || namelen >= sizeof(buf)) 17162306a36Sopenharmony_ci return 0; 17262306a36Sopenharmony_ci memcpy(buf, name, namelen); 17362306a36Sopenharmony_ci buf[namelen] = '\0'; 17462306a36Sopenharmony_ci if (kstrtoul(buf, 0, &val) != 0) 17562306a36Sopenharmony_ci return 0; 17662306a36Sopenharmony_ci *res = val; 17762306a36Sopenharmony_ci return 1; 17862306a36Sopenharmony_ci} 17962306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(nfs_map_string_to_numeric); 18062306a36Sopenharmony_ci 18162306a36Sopenharmony_cistatic int nfs_map_numeric_to_string(__u32 id, char *buf, size_t buflen) 18262306a36Sopenharmony_ci{ 18362306a36Sopenharmony_ci return snprintf(buf, buflen, "%u", id); 18462306a36Sopenharmony_ci} 18562306a36Sopenharmony_ci 18662306a36Sopenharmony_cistatic struct key_type key_type_id_resolver = { 18762306a36Sopenharmony_ci .name = "id_resolver", 18862306a36Sopenharmony_ci .preparse = user_preparse, 18962306a36Sopenharmony_ci .free_preparse = user_free_preparse, 19062306a36Sopenharmony_ci .instantiate = generic_key_instantiate, 19162306a36Sopenharmony_ci .revoke = user_revoke, 19262306a36Sopenharmony_ci .destroy = user_destroy, 19362306a36Sopenharmony_ci .describe = user_describe, 19462306a36Sopenharmony_ci .read = user_read, 19562306a36Sopenharmony_ci}; 19662306a36Sopenharmony_ci 19762306a36Sopenharmony_ciint nfs_idmap_init(void) 19862306a36Sopenharmony_ci{ 19962306a36Sopenharmony_ci struct cred *cred; 20062306a36Sopenharmony_ci struct key *keyring; 20162306a36Sopenharmony_ci int ret = 0; 20262306a36Sopenharmony_ci 20362306a36Sopenharmony_ci printk(KERN_NOTICE "NFS: Registering the %s key type\n", 20462306a36Sopenharmony_ci key_type_id_resolver.name); 20562306a36Sopenharmony_ci 20662306a36Sopenharmony_ci cred = prepare_kernel_cred(&init_task); 20762306a36Sopenharmony_ci if (!cred) 20862306a36Sopenharmony_ci return -ENOMEM; 20962306a36Sopenharmony_ci 21062306a36Sopenharmony_ci keyring = keyring_alloc(".id_resolver", 21162306a36Sopenharmony_ci GLOBAL_ROOT_UID, GLOBAL_ROOT_GID, cred, 21262306a36Sopenharmony_ci (KEY_POS_ALL & ~KEY_POS_SETATTR) | 21362306a36Sopenharmony_ci KEY_USR_VIEW | KEY_USR_READ, 21462306a36Sopenharmony_ci KEY_ALLOC_NOT_IN_QUOTA, NULL, NULL); 21562306a36Sopenharmony_ci if (IS_ERR(keyring)) { 21662306a36Sopenharmony_ci ret = PTR_ERR(keyring); 21762306a36Sopenharmony_ci goto failed_put_cred; 21862306a36Sopenharmony_ci } 21962306a36Sopenharmony_ci 22062306a36Sopenharmony_ci ret = register_key_type(&key_type_id_resolver); 22162306a36Sopenharmony_ci if (ret < 0) 22262306a36Sopenharmony_ci goto failed_put_key; 22362306a36Sopenharmony_ci 22462306a36Sopenharmony_ci ret = register_key_type(&key_type_id_resolver_legacy); 22562306a36Sopenharmony_ci if (ret < 0) 22662306a36Sopenharmony_ci goto failed_reg_legacy; 22762306a36Sopenharmony_ci 22862306a36Sopenharmony_ci set_bit(KEY_FLAG_ROOT_CAN_CLEAR, &keyring->flags); 22962306a36Sopenharmony_ci cred->thread_keyring = keyring; 23062306a36Sopenharmony_ci cred->jit_keyring = KEY_REQKEY_DEFL_THREAD_KEYRING; 23162306a36Sopenharmony_ci id_resolver_cache = cred; 23262306a36Sopenharmony_ci return 0; 23362306a36Sopenharmony_ci 23462306a36Sopenharmony_cifailed_reg_legacy: 23562306a36Sopenharmony_ci unregister_key_type(&key_type_id_resolver); 23662306a36Sopenharmony_cifailed_put_key: 23762306a36Sopenharmony_ci key_put(keyring); 23862306a36Sopenharmony_cifailed_put_cred: 23962306a36Sopenharmony_ci put_cred(cred); 24062306a36Sopenharmony_ci return ret; 24162306a36Sopenharmony_ci} 24262306a36Sopenharmony_ci 24362306a36Sopenharmony_civoid nfs_idmap_quit(void) 24462306a36Sopenharmony_ci{ 24562306a36Sopenharmony_ci key_revoke(id_resolver_cache->thread_keyring); 24662306a36Sopenharmony_ci unregister_key_type(&key_type_id_resolver); 24762306a36Sopenharmony_ci unregister_key_type(&key_type_id_resolver_legacy); 24862306a36Sopenharmony_ci put_cred(id_resolver_cache); 24962306a36Sopenharmony_ci} 25062306a36Sopenharmony_ci 25162306a36Sopenharmony_ci/* 25262306a36Sopenharmony_ci * Assemble the description to pass to request_key() 25362306a36Sopenharmony_ci * This function will allocate a new string and update dest to point 25462306a36Sopenharmony_ci * at it. The caller is responsible for freeing dest. 25562306a36Sopenharmony_ci * 25662306a36Sopenharmony_ci * On error 0 is returned. Otherwise, the length of dest is returned. 25762306a36Sopenharmony_ci */ 25862306a36Sopenharmony_cistatic ssize_t nfs_idmap_get_desc(const char *name, size_t namelen, 25962306a36Sopenharmony_ci const char *type, size_t typelen, char **desc) 26062306a36Sopenharmony_ci{ 26162306a36Sopenharmony_ci char *cp; 26262306a36Sopenharmony_ci size_t desclen = typelen + namelen + 2; 26362306a36Sopenharmony_ci 26462306a36Sopenharmony_ci *desc = kmalloc(desclen, GFP_KERNEL); 26562306a36Sopenharmony_ci if (!*desc) 26662306a36Sopenharmony_ci return -ENOMEM; 26762306a36Sopenharmony_ci 26862306a36Sopenharmony_ci cp = *desc; 26962306a36Sopenharmony_ci memcpy(cp, type, typelen); 27062306a36Sopenharmony_ci cp += typelen; 27162306a36Sopenharmony_ci *cp++ = ':'; 27262306a36Sopenharmony_ci 27362306a36Sopenharmony_ci memcpy(cp, name, namelen); 27462306a36Sopenharmony_ci cp += namelen; 27562306a36Sopenharmony_ci *cp = '\0'; 27662306a36Sopenharmony_ci return desclen; 27762306a36Sopenharmony_ci} 27862306a36Sopenharmony_ci 27962306a36Sopenharmony_cistatic struct key *nfs_idmap_request_key(const char *name, size_t namelen, 28062306a36Sopenharmony_ci const char *type, struct idmap *idmap) 28162306a36Sopenharmony_ci{ 28262306a36Sopenharmony_ci char *desc; 28362306a36Sopenharmony_ci struct key *rkey = ERR_PTR(-EAGAIN); 28462306a36Sopenharmony_ci ssize_t ret; 28562306a36Sopenharmony_ci 28662306a36Sopenharmony_ci ret = nfs_idmap_get_desc(name, namelen, type, strlen(type), &desc); 28762306a36Sopenharmony_ci if (ret < 0) 28862306a36Sopenharmony_ci return ERR_PTR(ret); 28962306a36Sopenharmony_ci 29062306a36Sopenharmony_ci if (!idmap->user_ns || idmap->user_ns == &init_user_ns) 29162306a36Sopenharmony_ci rkey = request_key(&key_type_id_resolver, desc, ""); 29262306a36Sopenharmony_ci if (IS_ERR(rkey)) { 29362306a36Sopenharmony_ci mutex_lock(&idmap->idmap_mutex); 29462306a36Sopenharmony_ci rkey = request_key_with_auxdata(&key_type_id_resolver_legacy, 29562306a36Sopenharmony_ci desc, NULL, "", 0, idmap); 29662306a36Sopenharmony_ci mutex_unlock(&idmap->idmap_mutex); 29762306a36Sopenharmony_ci } 29862306a36Sopenharmony_ci if (!IS_ERR(rkey)) 29962306a36Sopenharmony_ci set_bit(KEY_FLAG_ROOT_CAN_INVAL, &rkey->flags); 30062306a36Sopenharmony_ci 30162306a36Sopenharmony_ci kfree(desc); 30262306a36Sopenharmony_ci return rkey; 30362306a36Sopenharmony_ci} 30462306a36Sopenharmony_ci 30562306a36Sopenharmony_cistatic ssize_t nfs_idmap_get_key(const char *name, size_t namelen, 30662306a36Sopenharmony_ci const char *type, void *data, 30762306a36Sopenharmony_ci size_t data_size, struct idmap *idmap) 30862306a36Sopenharmony_ci{ 30962306a36Sopenharmony_ci const struct cred *saved_cred; 31062306a36Sopenharmony_ci struct key *rkey; 31162306a36Sopenharmony_ci const struct user_key_payload *payload; 31262306a36Sopenharmony_ci ssize_t ret; 31362306a36Sopenharmony_ci 31462306a36Sopenharmony_ci saved_cred = override_creds(id_resolver_cache); 31562306a36Sopenharmony_ci rkey = nfs_idmap_request_key(name, namelen, type, idmap); 31662306a36Sopenharmony_ci revert_creds(saved_cred); 31762306a36Sopenharmony_ci 31862306a36Sopenharmony_ci if (IS_ERR(rkey)) { 31962306a36Sopenharmony_ci ret = PTR_ERR(rkey); 32062306a36Sopenharmony_ci goto out; 32162306a36Sopenharmony_ci } 32262306a36Sopenharmony_ci 32362306a36Sopenharmony_ci rcu_read_lock(); 32462306a36Sopenharmony_ci rkey->perm |= KEY_USR_VIEW; 32562306a36Sopenharmony_ci 32662306a36Sopenharmony_ci ret = key_validate(rkey); 32762306a36Sopenharmony_ci if (ret < 0) 32862306a36Sopenharmony_ci goto out_up; 32962306a36Sopenharmony_ci 33062306a36Sopenharmony_ci payload = user_key_payload_rcu(rkey); 33162306a36Sopenharmony_ci if (IS_ERR_OR_NULL(payload)) { 33262306a36Sopenharmony_ci ret = PTR_ERR(payload); 33362306a36Sopenharmony_ci goto out_up; 33462306a36Sopenharmony_ci } 33562306a36Sopenharmony_ci 33662306a36Sopenharmony_ci ret = payload->datalen; 33762306a36Sopenharmony_ci if (ret > 0 && ret <= data_size) 33862306a36Sopenharmony_ci memcpy(data, payload->data, ret); 33962306a36Sopenharmony_ci else 34062306a36Sopenharmony_ci ret = -EINVAL; 34162306a36Sopenharmony_ci 34262306a36Sopenharmony_ciout_up: 34362306a36Sopenharmony_ci rcu_read_unlock(); 34462306a36Sopenharmony_ci key_put(rkey); 34562306a36Sopenharmony_ciout: 34662306a36Sopenharmony_ci return ret; 34762306a36Sopenharmony_ci} 34862306a36Sopenharmony_ci 34962306a36Sopenharmony_ci/* ID -> Name */ 35062306a36Sopenharmony_cistatic ssize_t nfs_idmap_lookup_name(__u32 id, const char *type, char *buf, 35162306a36Sopenharmony_ci size_t buflen, struct idmap *idmap) 35262306a36Sopenharmony_ci{ 35362306a36Sopenharmony_ci char id_str[NFS_UINT_MAXLEN]; 35462306a36Sopenharmony_ci int id_len; 35562306a36Sopenharmony_ci ssize_t ret; 35662306a36Sopenharmony_ci 35762306a36Sopenharmony_ci id_len = nfs_map_numeric_to_string(id, id_str, sizeof(id_str)); 35862306a36Sopenharmony_ci ret = nfs_idmap_get_key(id_str, id_len, type, buf, buflen, idmap); 35962306a36Sopenharmony_ci if (ret < 0) 36062306a36Sopenharmony_ci return -EINVAL; 36162306a36Sopenharmony_ci return ret; 36262306a36Sopenharmony_ci} 36362306a36Sopenharmony_ci 36462306a36Sopenharmony_ci/* Name -> ID */ 36562306a36Sopenharmony_cistatic int nfs_idmap_lookup_id(const char *name, size_t namelen, const char *type, 36662306a36Sopenharmony_ci __u32 *id, struct idmap *idmap) 36762306a36Sopenharmony_ci{ 36862306a36Sopenharmony_ci char id_str[NFS_UINT_MAXLEN]; 36962306a36Sopenharmony_ci long id_long; 37062306a36Sopenharmony_ci ssize_t data_size; 37162306a36Sopenharmony_ci int ret = 0; 37262306a36Sopenharmony_ci 37362306a36Sopenharmony_ci data_size = nfs_idmap_get_key(name, namelen, type, id_str, NFS_UINT_MAXLEN, idmap); 37462306a36Sopenharmony_ci if (data_size <= 0) { 37562306a36Sopenharmony_ci ret = -EINVAL; 37662306a36Sopenharmony_ci } else { 37762306a36Sopenharmony_ci ret = kstrtol(id_str, 10, &id_long); 37862306a36Sopenharmony_ci if (!ret) 37962306a36Sopenharmony_ci *id = (__u32)id_long; 38062306a36Sopenharmony_ci } 38162306a36Sopenharmony_ci return ret; 38262306a36Sopenharmony_ci} 38362306a36Sopenharmony_ci 38462306a36Sopenharmony_ci/* idmap classic begins here */ 38562306a36Sopenharmony_ci 38662306a36Sopenharmony_cienum { 38762306a36Sopenharmony_ci Opt_find_uid, Opt_find_gid, Opt_find_user, Opt_find_group, Opt_find_err 38862306a36Sopenharmony_ci}; 38962306a36Sopenharmony_ci 39062306a36Sopenharmony_cistatic const match_table_t nfs_idmap_tokens = { 39162306a36Sopenharmony_ci { Opt_find_uid, "uid:%s" }, 39262306a36Sopenharmony_ci { Opt_find_gid, "gid:%s" }, 39362306a36Sopenharmony_ci { Opt_find_user, "user:%s" }, 39462306a36Sopenharmony_ci { Opt_find_group, "group:%s" }, 39562306a36Sopenharmony_ci { Opt_find_err, NULL } 39662306a36Sopenharmony_ci}; 39762306a36Sopenharmony_ci 39862306a36Sopenharmony_cistatic int nfs_idmap_legacy_upcall(struct key *, void *); 39962306a36Sopenharmony_cistatic ssize_t idmap_pipe_downcall(struct file *, const char __user *, 40062306a36Sopenharmony_ci size_t); 40162306a36Sopenharmony_cistatic void idmap_release_pipe(struct inode *); 40262306a36Sopenharmony_cistatic void idmap_pipe_destroy_msg(struct rpc_pipe_msg *); 40362306a36Sopenharmony_ci 40462306a36Sopenharmony_cistatic const struct rpc_pipe_ops idmap_upcall_ops = { 40562306a36Sopenharmony_ci .upcall = rpc_pipe_generic_upcall, 40662306a36Sopenharmony_ci .downcall = idmap_pipe_downcall, 40762306a36Sopenharmony_ci .release_pipe = idmap_release_pipe, 40862306a36Sopenharmony_ci .destroy_msg = idmap_pipe_destroy_msg, 40962306a36Sopenharmony_ci}; 41062306a36Sopenharmony_ci 41162306a36Sopenharmony_cistatic struct key_type key_type_id_resolver_legacy = { 41262306a36Sopenharmony_ci .name = "id_legacy", 41362306a36Sopenharmony_ci .preparse = user_preparse, 41462306a36Sopenharmony_ci .free_preparse = user_free_preparse, 41562306a36Sopenharmony_ci .instantiate = generic_key_instantiate, 41662306a36Sopenharmony_ci .revoke = user_revoke, 41762306a36Sopenharmony_ci .destroy = user_destroy, 41862306a36Sopenharmony_ci .describe = user_describe, 41962306a36Sopenharmony_ci .read = user_read, 42062306a36Sopenharmony_ci .request_key = nfs_idmap_legacy_upcall, 42162306a36Sopenharmony_ci}; 42262306a36Sopenharmony_ci 42362306a36Sopenharmony_cistatic void nfs_idmap_pipe_destroy(struct dentry *dir, 42462306a36Sopenharmony_ci struct rpc_pipe_dir_object *pdo) 42562306a36Sopenharmony_ci{ 42662306a36Sopenharmony_ci struct idmap *idmap = pdo->pdo_data; 42762306a36Sopenharmony_ci struct rpc_pipe *pipe = idmap->idmap_pipe; 42862306a36Sopenharmony_ci 42962306a36Sopenharmony_ci if (pipe->dentry) { 43062306a36Sopenharmony_ci rpc_unlink(pipe->dentry); 43162306a36Sopenharmony_ci pipe->dentry = NULL; 43262306a36Sopenharmony_ci } 43362306a36Sopenharmony_ci} 43462306a36Sopenharmony_ci 43562306a36Sopenharmony_cistatic int nfs_idmap_pipe_create(struct dentry *dir, 43662306a36Sopenharmony_ci struct rpc_pipe_dir_object *pdo) 43762306a36Sopenharmony_ci{ 43862306a36Sopenharmony_ci struct idmap *idmap = pdo->pdo_data; 43962306a36Sopenharmony_ci struct rpc_pipe *pipe = idmap->idmap_pipe; 44062306a36Sopenharmony_ci struct dentry *dentry; 44162306a36Sopenharmony_ci 44262306a36Sopenharmony_ci dentry = rpc_mkpipe_dentry(dir, "idmap", idmap, pipe); 44362306a36Sopenharmony_ci if (IS_ERR(dentry)) 44462306a36Sopenharmony_ci return PTR_ERR(dentry); 44562306a36Sopenharmony_ci pipe->dentry = dentry; 44662306a36Sopenharmony_ci return 0; 44762306a36Sopenharmony_ci} 44862306a36Sopenharmony_ci 44962306a36Sopenharmony_cistatic const struct rpc_pipe_dir_object_ops nfs_idmap_pipe_dir_object_ops = { 45062306a36Sopenharmony_ci .create = nfs_idmap_pipe_create, 45162306a36Sopenharmony_ci .destroy = nfs_idmap_pipe_destroy, 45262306a36Sopenharmony_ci}; 45362306a36Sopenharmony_ci 45462306a36Sopenharmony_ciint 45562306a36Sopenharmony_cinfs_idmap_new(struct nfs_client *clp) 45662306a36Sopenharmony_ci{ 45762306a36Sopenharmony_ci struct idmap *idmap; 45862306a36Sopenharmony_ci struct rpc_pipe *pipe; 45962306a36Sopenharmony_ci int error; 46062306a36Sopenharmony_ci 46162306a36Sopenharmony_ci idmap = kzalloc(sizeof(*idmap), GFP_KERNEL); 46262306a36Sopenharmony_ci if (idmap == NULL) 46362306a36Sopenharmony_ci return -ENOMEM; 46462306a36Sopenharmony_ci 46562306a36Sopenharmony_ci mutex_init(&idmap->idmap_mutex); 46662306a36Sopenharmony_ci idmap->user_ns = get_user_ns(clp->cl_rpcclient->cl_cred->user_ns); 46762306a36Sopenharmony_ci 46862306a36Sopenharmony_ci rpc_init_pipe_dir_object(&idmap->idmap_pdo, 46962306a36Sopenharmony_ci &nfs_idmap_pipe_dir_object_ops, 47062306a36Sopenharmony_ci idmap); 47162306a36Sopenharmony_ci 47262306a36Sopenharmony_ci pipe = rpc_mkpipe_data(&idmap_upcall_ops, 0); 47362306a36Sopenharmony_ci if (IS_ERR(pipe)) { 47462306a36Sopenharmony_ci error = PTR_ERR(pipe); 47562306a36Sopenharmony_ci goto err; 47662306a36Sopenharmony_ci } 47762306a36Sopenharmony_ci idmap->idmap_pipe = pipe; 47862306a36Sopenharmony_ci 47962306a36Sopenharmony_ci error = rpc_add_pipe_dir_object(clp->cl_net, 48062306a36Sopenharmony_ci &clp->cl_rpcclient->cl_pipedir_objects, 48162306a36Sopenharmony_ci &idmap->idmap_pdo); 48262306a36Sopenharmony_ci if (error) 48362306a36Sopenharmony_ci goto err_destroy_pipe; 48462306a36Sopenharmony_ci 48562306a36Sopenharmony_ci clp->cl_idmap = idmap; 48662306a36Sopenharmony_ci return 0; 48762306a36Sopenharmony_cierr_destroy_pipe: 48862306a36Sopenharmony_ci rpc_destroy_pipe_data(idmap->idmap_pipe); 48962306a36Sopenharmony_cierr: 49062306a36Sopenharmony_ci put_user_ns(idmap->user_ns); 49162306a36Sopenharmony_ci kfree(idmap); 49262306a36Sopenharmony_ci return error; 49362306a36Sopenharmony_ci} 49462306a36Sopenharmony_ci 49562306a36Sopenharmony_civoid 49662306a36Sopenharmony_cinfs_idmap_delete(struct nfs_client *clp) 49762306a36Sopenharmony_ci{ 49862306a36Sopenharmony_ci struct idmap *idmap = clp->cl_idmap; 49962306a36Sopenharmony_ci 50062306a36Sopenharmony_ci if (!idmap) 50162306a36Sopenharmony_ci return; 50262306a36Sopenharmony_ci clp->cl_idmap = NULL; 50362306a36Sopenharmony_ci rpc_remove_pipe_dir_object(clp->cl_net, 50462306a36Sopenharmony_ci &clp->cl_rpcclient->cl_pipedir_objects, 50562306a36Sopenharmony_ci &idmap->idmap_pdo); 50662306a36Sopenharmony_ci rpc_destroy_pipe_data(idmap->idmap_pipe); 50762306a36Sopenharmony_ci put_user_ns(idmap->user_ns); 50862306a36Sopenharmony_ci kfree(idmap); 50962306a36Sopenharmony_ci} 51062306a36Sopenharmony_ci 51162306a36Sopenharmony_cistatic int nfs_idmap_prepare_message(char *desc, struct idmap *idmap, 51262306a36Sopenharmony_ci struct idmap_msg *im, 51362306a36Sopenharmony_ci struct rpc_pipe_msg *msg) 51462306a36Sopenharmony_ci{ 51562306a36Sopenharmony_ci substring_t substr; 51662306a36Sopenharmony_ci int token, ret; 51762306a36Sopenharmony_ci 51862306a36Sopenharmony_ci im->im_type = IDMAP_TYPE_GROUP; 51962306a36Sopenharmony_ci token = match_token(desc, nfs_idmap_tokens, &substr); 52062306a36Sopenharmony_ci 52162306a36Sopenharmony_ci switch (token) { 52262306a36Sopenharmony_ci case Opt_find_uid: 52362306a36Sopenharmony_ci im->im_type = IDMAP_TYPE_USER; 52462306a36Sopenharmony_ci fallthrough; 52562306a36Sopenharmony_ci case Opt_find_gid: 52662306a36Sopenharmony_ci im->im_conv = IDMAP_CONV_NAMETOID; 52762306a36Sopenharmony_ci ret = match_strlcpy(im->im_name, &substr, IDMAP_NAMESZ); 52862306a36Sopenharmony_ci break; 52962306a36Sopenharmony_ci 53062306a36Sopenharmony_ci case Opt_find_user: 53162306a36Sopenharmony_ci im->im_type = IDMAP_TYPE_USER; 53262306a36Sopenharmony_ci fallthrough; 53362306a36Sopenharmony_ci case Opt_find_group: 53462306a36Sopenharmony_ci im->im_conv = IDMAP_CONV_IDTONAME; 53562306a36Sopenharmony_ci ret = match_int(&substr, &im->im_id); 53662306a36Sopenharmony_ci if (ret) 53762306a36Sopenharmony_ci goto out; 53862306a36Sopenharmony_ci break; 53962306a36Sopenharmony_ci 54062306a36Sopenharmony_ci default: 54162306a36Sopenharmony_ci ret = -EINVAL; 54262306a36Sopenharmony_ci goto out; 54362306a36Sopenharmony_ci } 54462306a36Sopenharmony_ci 54562306a36Sopenharmony_ci msg->data = im; 54662306a36Sopenharmony_ci msg->len = sizeof(struct idmap_msg); 54762306a36Sopenharmony_ci 54862306a36Sopenharmony_ciout: 54962306a36Sopenharmony_ci return ret; 55062306a36Sopenharmony_ci} 55162306a36Sopenharmony_ci 55262306a36Sopenharmony_cistatic bool 55362306a36Sopenharmony_cinfs_idmap_prepare_pipe_upcall(struct idmap *idmap, 55462306a36Sopenharmony_ci struct idmap_legacy_upcalldata *data) 55562306a36Sopenharmony_ci{ 55662306a36Sopenharmony_ci if (idmap->idmap_upcall_data != NULL) { 55762306a36Sopenharmony_ci WARN_ON_ONCE(1); 55862306a36Sopenharmony_ci return false; 55962306a36Sopenharmony_ci } 56062306a36Sopenharmony_ci idmap->idmap_upcall_data = data; 56162306a36Sopenharmony_ci return true; 56262306a36Sopenharmony_ci} 56362306a36Sopenharmony_ci 56462306a36Sopenharmony_cistatic void nfs_idmap_complete_pipe_upcall(struct idmap_legacy_upcalldata *data, 56562306a36Sopenharmony_ci int ret) 56662306a36Sopenharmony_ci{ 56762306a36Sopenharmony_ci complete_request_key(data->authkey, ret); 56862306a36Sopenharmony_ci key_put(data->authkey); 56962306a36Sopenharmony_ci kfree(data); 57062306a36Sopenharmony_ci} 57162306a36Sopenharmony_ci 57262306a36Sopenharmony_cistatic void nfs_idmap_abort_pipe_upcall(struct idmap *idmap, 57362306a36Sopenharmony_ci struct idmap_legacy_upcalldata *data, 57462306a36Sopenharmony_ci int ret) 57562306a36Sopenharmony_ci{ 57662306a36Sopenharmony_ci if (cmpxchg(&idmap->idmap_upcall_data, data, NULL) == data) 57762306a36Sopenharmony_ci nfs_idmap_complete_pipe_upcall(data, ret); 57862306a36Sopenharmony_ci} 57962306a36Sopenharmony_ci 58062306a36Sopenharmony_cistatic int nfs_idmap_legacy_upcall(struct key *authkey, void *aux) 58162306a36Sopenharmony_ci{ 58262306a36Sopenharmony_ci struct idmap_legacy_upcalldata *data; 58362306a36Sopenharmony_ci struct request_key_auth *rka = get_request_key_auth(authkey); 58462306a36Sopenharmony_ci struct rpc_pipe_msg *msg; 58562306a36Sopenharmony_ci struct idmap_msg *im; 58662306a36Sopenharmony_ci struct idmap *idmap = aux; 58762306a36Sopenharmony_ci struct key *key = rka->target_key; 58862306a36Sopenharmony_ci int ret = -ENOKEY; 58962306a36Sopenharmony_ci 59062306a36Sopenharmony_ci if (!aux) 59162306a36Sopenharmony_ci goto out1; 59262306a36Sopenharmony_ci 59362306a36Sopenharmony_ci /* msg and im are freed in idmap_pipe_destroy_msg */ 59462306a36Sopenharmony_ci ret = -ENOMEM; 59562306a36Sopenharmony_ci data = kzalloc(sizeof(*data), GFP_KERNEL); 59662306a36Sopenharmony_ci if (!data) 59762306a36Sopenharmony_ci goto out1; 59862306a36Sopenharmony_ci 59962306a36Sopenharmony_ci msg = &data->pipe_msg; 60062306a36Sopenharmony_ci im = &data->idmap_msg; 60162306a36Sopenharmony_ci data->idmap = idmap; 60262306a36Sopenharmony_ci data->authkey = key_get(authkey); 60362306a36Sopenharmony_ci 60462306a36Sopenharmony_ci ret = nfs_idmap_prepare_message(key->description, idmap, im, msg); 60562306a36Sopenharmony_ci if (ret < 0) 60662306a36Sopenharmony_ci goto out2; 60762306a36Sopenharmony_ci 60862306a36Sopenharmony_ci ret = -EAGAIN; 60962306a36Sopenharmony_ci if (!nfs_idmap_prepare_pipe_upcall(idmap, data)) 61062306a36Sopenharmony_ci goto out2; 61162306a36Sopenharmony_ci 61262306a36Sopenharmony_ci ret = rpc_queue_upcall(idmap->idmap_pipe, msg); 61362306a36Sopenharmony_ci if (ret < 0) 61462306a36Sopenharmony_ci nfs_idmap_abort_pipe_upcall(idmap, data, ret); 61562306a36Sopenharmony_ci 61662306a36Sopenharmony_ci return ret; 61762306a36Sopenharmony_ciout2: 61862306a36Sopenharmony_ci kfree(data); 61962306a36Sopenharmony_ciout1: 62062306a36Sopenharmony_ci complete_request_key(authkey, ret); 62162306a36Sopenharmony_ci return ret; 62262306a36Sopenharmony_ci} 62362306a36Sopenharmony_ci 62462306a36Sopenharmony_cistatic int nfs_idmap_instantiate(struct key *key, struct key *authkey, char *data, size_t datalen) 62562306a36Sopenharmony_ci{ 62662306a36Sopenharmony_ci return key_instantiate_and_link(key, data, datalen, 62762306a36Sopenharmony_ci id_resolver_cache->thread_keyring, 62862306a36Sopenharmony_ci authkey); 62962306a36Sopenharmony_ci} 63062306a36Sopenharmony_ci 63162306a36Sopenharmony_cistatic int nfs_idmap_read_and_verify_message(struct idmap_msg *im, 63262306a36Sopenharmony_ci struct idmap_msg *upcall, 63362306a36Sopenharmony_ci struct key *key, struct key *authkey) 63462306a36Sopenharmony_ci{ 63562306a36Sopenharmony_ci char id_str[NFS_UINT_MAXLEN]; 63662306a36Sopenharmony_ci size_t len; 63762306a36Sopenharmony_ci int ret = -ENOKEY; 63862306a36Sopenharmony_ci 63962306a36Sopenharmony_ci /* ret = -ENOKEY */ 64062306a36Sopenharmony_ci if (upcall->im_type != im->im_type || upcall->im_conv != im->im_conv) 64162306a36Sopenharmony_ci goto out; 64262306a36Sopenharmony_ci switch (im->im_conv) { 64362306a36Sopenharmony_ci case IDMAP_CONV_NAMETOID: 64462306a36Sopenharmony_ci if (strcmp(upcall->im_name, im->im_name) != 0) 64562306a36Sopenharmony_ci break; 64662306a36Sopenharmony_ci /* Note: here we store the NUL terminator too */ 64762306a36Sopenharmony_ci len = 1 + nfs_map_numeric_to_string(im->im_id, id_str, 64862306a36Sopenharmony_ci sizeof(id_str)); 64962306a36Sopenharmony_ci ret = nfs_idmap_instantiate(key, authkey, id_str, len); 65062306a36Sopenharmony_ci break; 65162306a36Sopenharmony_ci case IDMAP_CONV_IDTONAME: 65262306a36Sopenharmony_ci if (upcall->im_id != im->im_id) 65362306a36Sopenharmony_ci break; 65462306a36Sopenharmony_ci len = strlen(im->im_name); 65562306a36Sopenharmony_ci ret = nfs_idmap_instantiate(key, authkey, im->im_name, len); 65662306a36Sopenharmony_ci break; 65762306a36Sopenharmony_ci default: 65862306a36Sopenharmony_ci ret = -EINVAL; 65962306a36Sopenharmony_ci } 66062306a36Sopenharmony_ciout: 66162306a36Sopenharmony_ci return ret; 66262306a36Sopenharmony_ci} 66362306a36Sopenharmony_ci 66462306a36Sopenharmony_cistatic ssize_t 66562306a36Sopenharmony_ciidmap_pipe_downcall(struct file *filp, const char __user *src, size_t mlen) 66662306a36Sopenharmony_ci{ 66762306a36Sopenharmony_ci struct request_key_auth *rka; 66862306a36Sopenharmony_ci struct rpc_inode *rpci = RPC_I(file_inode(filp)); 66962306a36Sopenharmony_ci struct idmap *idmap = (struct idmap *)rpci->private; 67062306a36Sopenharmony_ci struct idmap_legacy_upcalldata *data; 67162306a36Sopenharmony_ci struct key *authkey; 67262306a36Sopenharmony_ci struct idmap_msg im; 67362306a36Sopenharmony_ci size_t namelen_in; 67462306a36Sopenharmony_ci int ret = -ENOKEY; 67562306a36Sopenharmony_ci 67662306a36Sopenharmony_ci /* If instantiation is successful, anyone waiting for key construction 67762306a36Sopenharmony_ci * will have been woken up and someone else may now have used 67862306a36Sopenharmony_ci * idmap_key_cons - so after this point we may no longer touch it. 67962306a36Sopenharmony_ci */ 68062306a36Sopenharmony_ci data = xchg(&idmap->idmap_upcall_data, NULL); 68162306a36Sopenharmony_ci if (data == NULL) 68262306a36Sopenharmony_ci goto out_noupcall; 68362306a36Sopenharmony_ci 68462306a36Sopenharmony_ci authkey = data->authkey; 68562306a36Sopenharmony_ci rka = get_request_key_auth(authkey); 68662306a36Sopenharmony_ci 68762306a36Sopenharmony_ci if (mlen != sizeof(im)) { 68862306a36Sopenharmony_ci ret = -ENOSPC; 68962306a36Sopenharmony_ci goto out; 69062306a36Sopenharmony_ci } 69162306a36Sopenharmony_ci 69262306a36Sopenharmony_ci if (copy_from_user(&im, src, mlen) != 0) { 69362306a36Sopenharmony_ci ret = -EFAULT; 69462306a36Sopenharmony_ci goto out; 69562306a36Sopenharmony_ci } 69662306a36Sopenharmony_ci 69762306a36Sopenharmony_ci if (!(im.im_status & IDMAP_STATUS_SUCCESS)) { 69862306a36Sopenharmony_ci ret = -ENOKEY; 69962306a36Sopenharmony_ci goto out; 70062306a36Sopenharmony_ci } 70162306a36Sopenharmony_ci 70262306a36Sopenharmony_ci namelen_in = strnlen(im.im_name, IDMAP_NAMESZ); 70362306a36Sopenharmony_ci if (namelen_in == 0 || namelen_in == IDMAP_NAMESZ) { 70462306a36Sopenharmony_ci ret = -EINVAL; 70562306a36Sopenharmony_ci goto out; 70662306a36Sopenharmony_ci } 70762306a36Sopenharmony_ci 70862306a36Sopenharmony_ci ret = nfs_idmap_read_and_verify_message(&im, &data->idmap_msg, 70962306a36Sopenharmony_ci rka->target_key, authkey); 71062306a36Sopenharmony_ci if (ret >= 0) { 71162306a36Sopenharmony_ci key_set_timeout(rka->target_key, nfs_idmap_cache_timeout); 71262306a36Sopenharmony_ci ret = mlen; 71362306a36Sopenharmony_ci } 71462306a36Sopenharmony_ci 71562306a36Sopenharmony_ciout: 71662306a36Sopenharmony_ci nfs_idmap_complete_pipe_upcall(data, ret); 71762306a36Sopenharmony_ciout_noupcall: 71862306a36Sopenharmony_ci return ret; 71962306a36Sopenharmony_ci} 72062306a36Sopenharmony_ci 72162306a36Sopenharmony_cistatic void 72262306a36Sopenharmony_ciidmap_pipe_destroy_msg(struct rpc_pipe_msg *msg) 72362306a36Sopenharmony_ci{ 72462306a36Sopenharmony_ci struct idmap_legacy_upcalldata *data = container_of(msg, 72562306a36Sopenharmony_ci struct idmap_legacy_upcalldata, 72662306a36Sopenharmony_ci pipe_msg); 72762306a36Sopenharmony_ci struct idmap *idmap = data->idmap; 72862306a36Sopenharmony_ci 72962306a36Sopenharmony_ci if (msg->errno) 73062306a36Sopenharmony_ci nfs_idmap_abort_pipe_upcall(idmap, data, msg->errno); 73162306a36Sopenharmony_ci} 73262306a36Sopenharmony_ci 73362306a36Sopenharmony_cistatic void 73462306a36Sopenharmony_ciidmap_release_pipe(struct inode *inode) 73562306a36Sopenharmony_ci{ 73662306a36Sopenharmony_ci struct rpc_inode *rpci = RPC_I(inode); 73762306a36Sopenharmony_ci struct idmap *idmap = (struct idmap *)rpci->private; 73862306a36Sopenharmony_ci struct idmap_legacy_upcalldata *data; 73962306a36Sopenharmony_ci 74062306a36Sopenharmony_ci data = xchg(&idmap->idmap_upcall_data, NULL); 74162306a36Sopenharmony_ci if (data) 74262306a36Sopenharmony_ci nfs_idmap_complete_pipe_upcall(data, -EPIPE); 74362306a36Sopenharmony_ci} 74462306a36Sopenharmony_ci 74562306a36Sopenharmony_ciint nfs_map_name_to_uid(const struct nfs_server *server, const char *name, size_t namelen, kuid_t *uid) 74662306a36Sopenharmony_ci{ 74762306a36Sopenharmony_ci struct idmap *idmap = server->nfs_client->cl_idmap; 74862306a36Sopenharmony_ci __u32 id = -1; 74962306a36Sopenharmony_ci int ret = 0; 75062306a36Sopenharmony_ci 75162306a36Sopenharmony_ci if (!nfs_map_string_to_numeric(name, namelen, &id)) 75262306a36Sopenharmony_ci ret = nfs_idmap_lookup_id(name, namelen, "uid", &id, idmap); 75362306a36Sopenharmony_ci if (ret == 0) { 75462306a36Sopenharmony_ci *uid = make_kuid(idmap_userns(idmap), id); 75562306a36Sopenharmony_ci if (!uid_valid(*uid)) 75662306a36Sopenharmony_ci ret = -ERANGE; 75762306a36Sopenharmony_ci } 75862306a36Sopenharmony_ci trace_nfs4_map_name_to_uid(name, namelen, id, ret); 75962306a36Sopenharmony_ci return ret; 76062306a36Sopenharmony_ci} 76162306a36Sopenharmony_ci 76262306a36Sopenharmony_ciint nfs_map_group_to_gid(const struct nfs_server *server, const char *name, size_t namelen, kgid_t *gid) 76362306a36Sopenharmony_ci{ 76462306a36Sopenharmony_ci struct idmap *idmap = server->nfs_client->cl_idmap; 76562306a36Sopenharmony_ci __u32 id = -1; 76662306a36Sopenharmony_ci int ret = 0; 76762306a36Sopenharmony_ci 76862306a36Sopenharmony_ci if (!nfs_map_string_to_numeric(name, namelen, &id)) 76962306a36Sopenharmony_ci ret = nfs_idmap_lookup_id(name, namelen, "gid", &id, idmap); 77062306a36Sopenharmony_ci if (ret == 0) { 77162306a36Sopenharmony_ci *gid = make_kgid(idmap_userns(idmap), id); 77262306a36Sopenharmony_ci if (!gid_valid(*gid)) 77362306a36Sopenharmony_ci ret = -ERANGE; 77462306a36Sopenharmony_ci } 77562306a36Sopenharmony_ci trace_nfs4_map_group_to_gid(name, namelen, id, ret); 77662306a36Sopenharmony_ci return ret; 77762306a36Sopenharmony_ci} 77862306a36Sopenharmony_ci 77962306a36Sopenharmony_ciint nfs_map_uid_to_name(const struct nfs_server *server, kuid_t uid, char *buf, size_t buflen) 78062306a36Sopenharmony_ci{ 78162306a36Sopenharmony_ci struct idmap *idmap = server->nfs_client->cl_idmap; 78262306a36Sopenharmony_ci int ret = -EINVAL; 78362306a36Sopenharmony_ci __u32 id; 78462306a36Sopenharmony_ci 78562306a36Sopenharmony_ci id = from_kuid_munged(idmap_userns(idmap), uid); 78662306a36Sopenharmony_ci if (!(server->caps & NFS_CAP_UIDGID_NOMAP)) 78762306a36Sopenharmony_ci ret = nfs_idmap_lookup_name(id, "user", buf, buflen, idmap); 78862306a36Sopenharmony_ci if (ret < 0) 78962306a36Sopenharmony_ci ret = nfs_map_numeric_to_string(id, buf, buflen); 79062306a36Sopenharmony_ci trace_nfs4_map_uid_to_name(buf, ret, id, ret); 79162306a36Sopenharmony_ci return ret; 79262306a36Sopenharmony_ci} 79362306a36Sopenharmony_ciint nfs_map_gid_to_group(const struct nfs_server *server, kgid_t gid, char *buf, size_t buflen) 79462306a36Sopenharmony_ci{ 79562306a36Sopenharmony_ci struct idmap *idmap = server->nfs_client->cl_idmap; 79662306a36Sopenharmony_ci int ret = -EINVAL; 79762306a36Sopenharmony_ci __u32 id; 79862306a36Sopenharmony_ci 79962306a36Sopenharmony_ci id = from_kgid_munged(idmap_userns(idmap), gid); 80062306a36Sopenharmony_ci if (!(server->caps & NFS_CAP_UIDGID_NOMAP)) 80162306a36Sopenharmony_ci ret = nfs_idmap_lookup_name(id, "group", buf, buflen, idmap); 80262306a36Sopenharmony_ci if (ret < 0) 80362306a36Sopenharmony_ci ret = nfs_map_numeric_to_string(id, buf, buflen); 80462306a36Sopenharmony_ci trace_nfs4_map_gid_to_group(buf, ret, id, ret); 80562306a36Sopenharmony_ci return ret; 80662306a36Sopenharmony_ci} 807