Re: [PATCH v2 18/47] nfsd41: enforce NFS4ERR_SEQUENCE_POS operation order rules

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Mar. 31, 2009, 6:20 +0300, "J. Bruce Fields" <bfields@xxxxxxxxxxxx> wrote:
> There are a number of other ordering requirements too:
> 
> 	- EXCHANGE_ID must be the only op if there's no sequence
> 	- DESTROY_SESSION must be the last op in its compound, I think?

Right on the spot (with one reservation).

   If the COMPOUND request starts with SEQUENCE, and if the sessionids
   specified in SEQUENCE and DESTROY_SESSION are the same, then

   o  DESTROY_SESSION MUST be the final operation in the COMPOUND
      request.

Though I'm not sure what error should the server return in this case,
NFS4ERR_BADXDR maybe?  But even if we don't enforce it, any op referring
to the destroyed session coming after DESTROY_SESSION must fail on
NFS4ERR_BADSESSION.  An interesting case will be CREATE_SESSION
following DESTROY_SESSION in a COMPOUND starting with SEQUENCE... :-)

> 
> Are there others?  And are these enforced somewhere as well?

Good catch!  These aren't enforced yet (note to self - Doc).
Other than that, I see:
   | NFS4ERR_NOT_ONLY_OP               | BIND_CONN_TO_SESSION,         |
   |                                   | CREATE_SESSION,               |
   |                                   | DESTROY_CLIENTID,             |
   |                                   | DESTROY_SESSION, EXCHANGE_ID  |
- If CREATE_SESSION is sent without a
   preceding SEQUENCE, then it MUST be the only operation in the
   COMPOUND procedure's request.

Benny

> 
> --b.
> 
> On Sat, Mar 28, 2009 at 11:32:29AM +0300, Benny Halevy wrote:
>> From: Andy Adamson <andros@xxxxxxxxxx>
>>
>> Signed-off-by: Andy Adamson<andros@xxxxxxxxxx>
>> Signed-off-by: Benny Halevy <bhalevy@xxxxxxxxxxx>
>> ---
>>  fs/nfsd/nfs4proc.c  |   24 ++++++++++++++++--------
>>  fs/nfsd/nfs4state.c |    4 ++++
>>  2 files changed, 20 insertions(+), 8 deletions(-)
>>
>> diff --git a/fs/nfsd/nfs4proc.c b/fs/nfsd/nfs4proc.c
>> index f618e8e..e703ac2 100644
>> --- a/fs/nfsd/nfs4proc.c
>> +++ b/fs/nfsd/nfs4proc.c
>> @@ -811,14 +811,15 @@ static inline void nfsd4_increment_op_stats(u32 opnum)
>>  
>>  typedef __be32(*nfsd4op_func)(struct svc_rqst *, struct nfsd4_compound_state *,
>>  			      void *);
>> +enum nfsd4_op_flags {
>> +	ALLOWED_WITHOUT_FH = 1 << 0,	/* No current filehandle required */
>> +	ALLOWED_ON_ABSENT_FS = 2 << 0,	/* ops processed on absent fs */
>> +	ALLOWED_AS_FIRST_OP = 3 << 0,	/* ops reqired first in compound */
>> +};
>>  
>>  struct nfsd4_operation {
>>  	nfsd4op_func op_func;
>>  	u32 op_flags;
>> -/* Most ops require a valid current filehandle; a few don't: */
>> -#define ALLOWED_WITHOUT_FH 1
>> -/* GETATTR and ops not listed as returning NFS4ERR_MOVED: */
>> -#define ALLOWED_ON_ABSENT_FS 2
>>  	char *op_name;
>>  };
>>  
>> @@ -864,6 +865,13 @@ nfsd4_proc_compound(struct svc_rqst *rqstp,
>>  	if (args->minorversion > NFSD_SUPPORTED_MINOR_VERSION)
>>  		goto out;
>>  
>> +	op = &args->ops[0];
>> +	if (args->opcnt > 0 && op->status != nfserr_op_illegal &&
>> +	    !(nfsd4_ops[op->opnum].op_flags & ALLOWED_AS_FIRST_OP)) {
>> +		op->status = nfserr_sequence_pos;
>> +		goto encode_op;
>> +	}
>> +
>>  	status = nfs_ok;
>>  	while (!status && resp->opcnt < args->opcnt) {
>>  		op = &args->ops[resp->opcnt++];
>> @@ -1104,22 +1112,22 @@ static struct nfsd4_operation nfsd4_ops[] = {
>>  #if defined(CONFIG_NFSD_V4_1)
>>  	[OP_EXCHANGE_ID] = {
>>  		.op_func = (nfsd4op_func)nfsd4_exchange_id,
>> -		.op_flags = ALLOWED_WITHOUT_FH,
>> +		.op_flags = ALLOWED_WITHOUT_FH | ALLOWED_AS_FIRST_OP,
>>  		.op_name = "OP_EXCHANGE_ID",
>>  	},
>>  	[OP_CREATE_SESSION] = {
>>  		.op_func = (nfsd4op_func)nfsd4_create_session,
>> -		.op_flags = ALLOWED_WITHOUT_FH,
>> +		.op_flags = ALLOWED_WITHOUT_FH | ALLOWED_AS_FIRST_OP,
>>  		.op_name = "OP_CREATE_SESSION",
>>  	},
>>  	[OP_DESTROY_SESSION] = {
>>  		.op_func = (nfsd4op_func)nfsd4_destroy_session,
>> -		.op_flags = ALLOWED_WITHOUT_FH,
>> +		.op_flags = ALLOWED_WITHOUT_FH | ALLOWED_AS_FIRST_OP,
>>  		.op_name = "OP_DESTROY_SESSION",
>>  	},
>>  	[OP_SEQUENCE] = {
>>  		.op_func = (nfsd4op_func)nfsd4_sequence,
>> -		.op_flags = ALLOWED_WITHOUT_FH,
>> +		.op_flags = ALLOWED_WITHOUT_FH | ALLOWED_AS_FIRST_OP,
>>  		.op_name = "OP_SEQUENCE",
>>  	},
>>  #endif /* CONFIG_NFSD_V4_1 */
>> diff --git a/fs/nfsd/nfs4state.c b/fs/nfsd/nfs4state.c
>> index a19f292..10eb67b 100644
>> --- a/fs/nfsd/nfs4state.c
>> +++ b/fs/nfsd/nfs4state.c
>> @@ -1051,10 +1051,14 @@ nfsd4_sequence(struct svc_rqst *rqstp,
>>  	       struct nfsd4_compound_state *cstate,
>>  	       struct nfsd4_sequence *seq)
>>  {
>> +	struct nfsd4_compoundres *resp = rqstp->rq_resp;
>>  	struct nfsd4_session *session;
>>  	struct nfsd4_slot *slot;
>>  	int status;
>>  
>> +	if (resp->opcnt != 1)
>> +		return nfserr_sequence_pos;
>> +
>>  	spin_lock(&sessionid_lock);
>>  	status = nfserr_badsession;
>>  	session = find_in_sessionid_hashtbl(&seq->sessionid);
>> -- 
>> 1.6.2.1
>>
--
To unsubscribe from this list: send the line "unsubscribe linux-nfs" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Filesystem Development]     [Linux USB Development]     [Linux Media Development]     [Video for Linux]     [Linux NILFS]     [Linux Audio Users]     [Yosemite Info]     [Linux SCSI]

  Powered by Linux