• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 // SPDX-License-Identifier: GPL-2.0
2 /*
3  * XDR support for nfsd/protocol version 3.
4  *
5  * Copyright (C) 1995, 1996, 1997 Olaf Kirch <okir@monad.swb.de>
6  *
7  * 2003-08-09 Jamie Lokier: Use htonl() for nanoseconds, not htons()!
8  */
9 
10 #include <linux/namei.h>
11 #include <linux/sunrpc/svc_xprt.h>
12 #include "xdr3.h"
13 #include "auth.h"
14 #include "netns.h"
15 #include "vfs.h"
16 
17 #define NFSDDBG_FACILITY		NFSDDBG_XDR
18 
19 
20 /*
21  * Mapping of S_IF* types to NFS file types
22  */
23 static u32	nfs3_ftypes[] = {
24 	NF3NON,  NF3FIFO, NF3CHR, NF3BAD,
25 	NF3DIR,  NF3BAD,  NF3BLK, NF3BAD,
26 	NF3REG,  NF3BAD,  NF3LNK, NF3BAD,
27 	NF3SOCK, NF3BAD,  NF3LNK, NF3BAD,
28 };
29 
30 
31 /*
32  * XDR functions for basic NFS types
33  */
34 static __be32 *
encode_time3(__be32 * p,struct timespec * time)35 encode_time3(__be32 *p, struct timespec *time)
36 {
37 	*p++ = htonl((u32) time->tv_sec); *p++ = htonl(time->tv_nsec);
38 	return p;
39 }
40 
41 static __be32 *
decode_time3(__be32 * p,struct timespec * time)42 decode_time3(__be32 *p, struct timespec *time)
43 {
44 	time->tv_sec = ntohl(*p++);
45 	time->tv_nsec = ntohl(*p++);
46 	return p;
47 }
48 
49 static __be32 *
decode_fh(__be32 * p,struct svc_fh * fhp)50 decode_fh(__be32 *p, struct svc_fh *fhp)
51 {
52 	unsigned int size;
53 	fh_init(fhp, NFS3_FHSIZE);
54 	size = ntohl(*p++);
55 	if (size > NFS3_FHSIZE)
56 		return NULL;
57 
58 	memcpy(&fhp->fh_handle.fh_base, p, size);
59 	fhp->fh_handle.fh_size = size;
60 	return p + XDR_QUADLEN(size);
61 }
62 
63 /* Helper function for NFSv3 ACL code */
nfs3svc_decode_fh(__be32 * p,struct svc_fh * fhp)64 __be32 *nfs3svc_decode_fh(__be32 *p, struct svc_fh *fhp)
65 {
66 	return decode_fh(p, fhp);
67 }
68 
69 static __be32 *
encode_fh(__be32 * p,struct svc_fh * fhp)70 encode_fh(__be32 *p, struct svc_fh *fhp)
71 {
72 	unsigned int size = fhp->fh_handle.fh_size;
73 	*p++ = htonl(size);
74 	if (size) p[XDR_QUADLEN(size)-1]=0;
75 	memcpy(p, &fhp->fh_handle.fh_base, size);
76 	return p + XDR_QUADLEN(size);
77 }
78 
79 /*
80  * Decode a file name and make sure that the path contains
81  * no slashes or null bytes.
82  */
83 static __be32 *
decode_filename(__be32 * p,char ** namp,unsigned int * lenp)84 decode_filename(__be32 *p, char **namp, unsigned int *lenp)
85 {
86 	char		*name;
87 	unsigned int	i;
88 
89 	if ((p = xdr_decode_string_inplace(p, namp, lenp, NFS3_MAXNAMLEN)) != NULL) {
90 		for (i = 0, name = *namp; i < *lenp; i++, name++) {
91 			if (*name == '\0' || *name == '/')
92 				return NULL;
93 		}
94 	}
95 
96 	return p;
97 }
98 
99 static __be32 *
decode_sattr3(__be32 * p,struct iattr * iap,struct user_namespace * userns)100 decode_sattr3(__be32 *p, struct iattr *iap, struct user_namespace *userns)
101 {
102 	u32	tmp;
103 
104 	iap->ia_valid = 0;
105 
106 	if (*p++) {
107 		iap->ia_valid |= ATTR_MODE;
108 		iap->ia_mode = ntohl(*p++);
109 	}
110 	if (*p++) {
111 		iap->ia_uid = make_kuid(userns, ntohl(*p++));
112 		if (uid_valid(iap->ia_uid))
113 			iap->ia_valid |= ATTR_UID;
114 	}
115 	if (*p++) {
116 		iap->ia_gid = make_kgid(userns, ntohl(*p++));
117 		if (gid_valid(iap->ia_gid))
118 			iap->ia_valid |= ATTR_GID;
119 	}
120 	if (*p++) {
121 		u64	newsize;
122 
123 		iap->ia_valid |= ATTR_SIZE;
124 		p = xdr_decode_hyper(p, &newsize);
125 		iap->ia_size = min_t(u64, newsize, NFS_OFFSET_MAX);
126 	}
127 	if ((tmp = ntohl(*p++)) == 1) {	/* set to server time */
128 		iap->ia_valid |= ATTR_ATIME;
129 	} else if (tmp == 2) {		/* set to client time */
130 		iap->ia_valid |= ATTR_ATIME | ATTR_ATIME_SET;
131 		iap->ia_atime.tv_sec = ntohl(*p++);
132 		iap->ia_atime.tv_nsec = ntohl(*p++);
133 	}
134 	if ((tmp = ntohl(*p++)) == 1) {	/* set to server time */
135 		iap->ia_valid |= ATTR_MTIME;
136 	} else if (tmp == 2) {		/* set to client time */
137 		iap->ia_valid |= ATTR_MTIME | ATTR_MTIME_SET;
138 		iap->ia_mtime.tv_sec = ntohl(*p++);
139 		iap->ia_mtime.tv_nsec = ntohl(*p++);
140 	}
141 	return p;
142 }
143 
encode_fsid(__be32 * p,struct svc_fh * fhp)144 static __be32 *encode_fsid(__be32 *p, struct svc_fh *fhp)
145 {
146 	u64 f;
147 	switch(fsid_source(fhp)) {
148 	default:
149 	case FSIDSOURCE_DEV:
150 		p = xdr_encode_hyper(p, (u64)huge_encode_dev
151 				     (fhp->fh_dentry->d_sb->s_dev));
152 		break;
153 	case FSIDSOURCE_FSID:
154 		p = xdr_encode_hyper(p, (u64) fhp->fh_export->ex_fsid);
155 		break;
156 	case FSIDSOURCE_UUID:
157 		f = ((u64*)fhp->fh_export->ex_uuid)[0];
158 		f ^= ((u64*)fhp->fh_export->ex_uuid)[1];
159 		p = xdr_encode_hyper(p, f);
160 		break;
161 	}
162 	return p;
163 }
164 
165 static __be32 *
encode_fattr3(struct svc_rqst * rqstp,__be32 * p,struct svc_fh * fhp,struct kstat * stat)166 encode_fattr3(struct svc_rqst *rqstp, __be32 *p, struct svc_fh *fhp,
167 	      struct kstat *stat)
168 {
169 	struct user_namespace *userns = nfsd_user_namespace(rqstp);
170 	struct timespec ts;
171 	*p++ = htonl(nfs3_ftypes[(stat->mode & S_IFMT) >> 12]);
172 	*p++ = htonl((u32) (stat->mode & S_IALLUGO));
173 	*p++ = htonl((u32) stat->nlink);
174 	*p++ = htonl((u32) from_kuid_munged(userns, stat->uid));
175 	*p++ = htonl((u32) from_kgid_munged(userns, stat->gid));
176 	if (S_ISLNK(stat->mode) && stat->size > NFS3_MAXPATHLEN) {
177 		p = xdr_encode_hyper(p, (u64) NFS3_MAXPATHLEN);
178 	} else {
179 		p = xdr_encode_hyper(p, (u64) stat->size);
180 	}
181 	p = xdr_encode_hyper(p, ((u64)stat->blocks) << 9);
182 	*p++ = htonl((u32) MAJOR(stat->rdev));
183 	*p++ = htonl((u32) MINOR(stat->rdev));
184 	p = encode_fsid(p, fhp);
185 	p = xdr_encode_hyper(p, stat->ino);
186 	ts = timespec64_to_timespec(stat->atime);
187 	p = encode_time3(p, &ts);
188 	ts = timespec64_to_timespec(stat->mtime);
189 	p = encode_time3(p, &ts);
190 	ts = timespec64_to_timespec(stat->ctime);
191 	p = encode_time3(p, &ts);
192 
193 	return p;
194 }
195 
196 static __be32 *
encode_saved_post_attr(struct svc_rqst * rqstp,__be32 * p,struct svc_fh * fhp)197 encode_saved_post_attr(struct svc_rqst *rqstp, __be32 *p, struct svc_fh *fhp)
198 {
199 	/* Attributes to follow */
200 	*p++ = xdr_one;
201 	return encode_fattr3(rqstp, p, fhp, &fhp->fh_post_attr);
202 }
203 
204 /*
205  * Encode post-operation attributes.
206  * The inode may be NULL if the call failed because of a stale file
207  * handle. In this case, no attributes are returned.
208  */
209 static __be32 *
encode_post_op_attr(struct svc_rqst * rqstp,__be32 * p,struct svc_fh * fhp)210 encode_post_op_attr(struct svc_rqst *rqstp, __be32 *p, struct svc_fh *fhp)
211 {
212 	struct dentry *dentry = fhp->fh_dentry;
213 	if (dentry && d_really_is_positive(dentry)) {
214 	        __be32 err;
215 		struct kstat stat;
216 
217 		err = fh_getattr(fhp, &stat);
218 		if (!err) {
219 			*p++ = xdr_one;		/* attributes follow */
220 			lease_get_mtime(d_inode(dentry), &stat.mtime);
221 			return encode_fattr3(rqstp, p, fhp, &stat);
222 		}
223 	}
224 	*p++ = xdr_zero;
225 	return p;
226 }
227 
228 /* Helper for NFSv3 ACLs */
229 __be32 *
nfs3svc_encode_post_op_attr(struct svc_rqst * rqstp,__be32 * p,struct svc_fh * fhp)230 nfs3svc_encode_post_op_attr(struct svc_rqst *rqstp, __be32 *p, struct svc_fh *fhp)
231 {
232 	return encode_post_op_attr(rqstp, p, fhp);
233 }
234 
235 /*
236  * Enocde weak cache consistency data
237  */
238 static __be32 *
encode_wcc_data(struct svc_rqst * rqstp,__be32 * p,struct svc_fh * fhp)239 encode_wcc_data(struct svc_rqst *rqstp, __be32 *p, struct svc_fh *fhp)
240 {
241 	struct dentry	*dentry = fhp->fh_dentry;
242 
243 	if (dentry && d_really_is_positive(dentry) && fhp->fh_post_saved) {
244 		if (fhp->fh_pre_saved) {
245 			*p++ = xdr_one;
246 			p = xdr_encode_hyper(p, (u64) fhp->fh_pre_size);
247 			p = encode_time3(p, &fhp->fh_pre_mtime);
248 			p = encode_time3(p, &fhp->fh_pre_ctime);
249 		} else {
250 			*p++ = xdr_zero;
251 		}
252 		return encode_saved_post_attr(rqstp, p, fhp);
253 	}
254 	/* no pre- or post-attrs */
255 	*p++ = xdr_zero;
256 	return encode_post_op_attr(rqstp, p, fhp);
257 }
258 
259 /*
260  * Fill in the pre_op attr for the wcc data
261  */
fill_pre_wcc(struct svc_fh * fhp)262 void fill_pre_wcc(struct svc_fh *fhp)
263 {
264 	struct inode    *inode;
265 	struct kstat	stat;
266 	__be32 err;
267 
268 	if (fhp->fh_pre_saved)
269 		return;
270 
271 	inode = d_inode(fhp->fh_dentry);
272 	err = fh_getattr(fhp, &stat);
273 	if (err) {
274 		/* Grab the times from inode anyway */
275 		stat.mtime = inode->i_mtime;
276 		stat.ctime = inode->i_ctime;
277 		stat.size  = inode->i_size;
278 	}
279 
280 	fhp->fh_pre_mtime = timespec64_to_timespec(stat.mtime);
281 	fhp->fh_pre_ctime = timespec64_to_timespec(stat.ctime);
282 	fhp->fh_pre_size  = stat.size;
283 	fhp->fh_pre_change = nfsd4_change_attribute(&stat, inode);
284 	fhp->fh_pre_saved = true;
285 }
286 
287 /*
288  * Fill in the post_op attr for the wcc data
289  */
fill_post_wcc(struct svc_fh * fhp)290 void fill_post_wcc(struct svc_fh *fhp)
291 {
292 	__be32 err;
293 
294 	if (fhp->fh_post_saved)
295 		printk("nfsd: inode locked twice during operation.\n");
296 
297 	err = fh_getattr(fhp, &fhp->fh_post_attr);
298 	fhp->fh_post_change = nfsd4_change_attribute(&fhp->fh_post_attr,
299 						     d_inode(fhp->fh_dentry));
300 	if (err) {
301 		fhp->fh_post_saved = false;
302 		/* Grab the ctime anyway - set_change_info might use it */
303 		fhp->fh_post_attr.ctime = d_inode(fhp->fh_dentry)->i_ctime;
304 	} else
305 		fhp->fh_post_saved = true;
306 }
307 
308 /*
309  * XDR decode functions
310  */
311 int
nfs3svc_decode_fhandle(struct svc_rqst * rqstp,__be32 * p)312 nfs3svc_decode_fhandle(struct svc_rqst *rqstp, __be32 *p)
313 {
314 	struct nfsd_fhandle *args = rqstp->rq_argp;
315 
316 	p = decode_fh(p, &args->fh);
317 	if (!p)
318 		return 0;
319 	return xdr_argsize_check(rqstp, p);
320 }
321 
322 int
nfs3svc_decode_sattrargs(struct svc_rqst * rqstp,__be32 * p)323 nfs3svc_decode_sattrargs(struct svc_rqst *rqstp, __be32 *p)
324 {
325 	struct nfsd3_sattrargs *args = rqstp->rq_argp;
326 
327 	p = decode_fh(p, &args->fh);
328 	if (!p)
329 		return 0;
330 	p = decode_sattr3(p, &args->attrs, nfsd_user_namespace(rqstp));
331 
332 	if ((args->check_guard = ntohl(*p++)) != 0) {
333 		struct timespec time;
334 		p = decode_time3(p, &time);
335 		args->guardtime = time.tv_sec;
336 	}
337 
338 	return xdr_argsize_check(rqstp, p);
339 }
340 
341 int
nfs3svc_decode_diropargs(struct svc_rqst * rqstp,__be32 * p)342 nfs3svc_decode_diropargs(struct svc_rqst *rqstp, __be32 *p)
343 {
344 	struct nfsd3_diropargs *args = rqstp->rq_argp;
345 
346 	if (!(p = decode_fh(p, &args->fh))
347 	 || !(p = decode_filename(p, &args->name, &args->len)))
348 		return 0;
349 
350 	return xdr_argsize_check(rqstp, p);
351 }
352 
353 int
nfs3svc_decode_accessargs(struct svc_rqst * rqstp,__be32 * p)354 nfs3svc_decode_accessargs(struct svc_rqst *rqstp, __be32 *p)
355 {
356 	struct nfsd3_accessargs *args = rqstp->rq_argp;
357 
358 	p = decode_fh(p, &args->fh);
359 	if (!p)
360 		return 0;
361 	args->access = ntohl(*p++);
362 
363 	return xdr_argsize_check(rqstp, p);
364 }
365 
366 int
nfs3svc_decode_readargs(struct svc_rqst * rqstp,__be32 * p)367 nfs3svc_decode_readargs(struct svc_rqst *rqstp, __be32 *p)
368 {
369 	struct nfsd3_readargs *args = rqstp->rq_argp;
370 	unsigned int len;
371 	int v;
372 	u32 max_blocksize = svc_max_payload(rqstp);
373 
374 	p = decode_fh(p, &args->fh);
375 	if (!p)
376 		return 0;
377 	p = xdr_decode_hyper(p, &args->offset);
378 
379 	args->count = ntohl(*p++);
380 	len = min(args->count, max_blocksize);
381 
382 	/* set up the kvec */
383 	v=0;
384 	while (len > 0) {
385 		struct page *p = *(rqstp->rq_next_page++);
386 
387 		rqstp->rq_vec[v].iov_base = page_address(p);
388 		rqstp->rq_vec[v].iov_len = min_t(unsigned int, len, PAGE_SIZE);
389 		len -= rqstp->rq_vec[v].iov_len;
390 		v++;
391 	}
392 	args->vlen = v;
393 	return xdr_argsize_check(rqstp, p);
394 }
395 
396 int
nfs3svc_decode_writeargs(struct svc_rqst * rqstp,__be32 * p)397 nfs3svc_decode_writeargs(struct svc_rqst *rqstp, __be32 *p)
398 {
399 	struct nfsd3_writeargs *args = rqstp->rq_argp;
400 	unsigned int len, hdr, dlen;
401 	u32 max_blocksize = svc_max_payload(rqstp);
402 	struct kvec *head = rqstp->rq_arg.head;
403 	struct kvec *tail = rqstp->rq_arg.tail;
404 
405 	p = decode_fh(p, &args->fh);
406 	if (!p)
407 		return 0;
408 	p = xdr_decode_hyper(p, &args->offset);
409 
410 	args->count = ntohl(*p++);
411 	args->stable = ntohl(*p++);
412 	len = args->len = ntohl(*p++);
413 	if ((void *)p > head->iov_base + head->iov_len)
414 		return 0;
415 	/*
416 	 * The count must equal the amount of data passed.
417 	 */
418 	if (args->count != args->len)
419 		return 0;
420 
421 	/*
422 	 * Check to make sure that we got the right number of
423 	 * bytes.
424 	 */
425 	hdr = (void*)p - head->iov_base;
426 	dlen = head->iov_len + rqstp->rq_arg.page_len + tail->iov_len - hdr;
427 	/*
428 	 * Round the length of the data which was specified up to
429 	 * the next multiple of XDR units and then compare that
430 	 * against the length which was actually received.
431 	 * Note that when RPCSEC/GSS (for example) is used, the
432 	 * data buffer can be padded so dlen might be larger
433 	 * than required.  It must never be smaller.
434 	 */
435 	if (dlen < XDR_QUADLEN(len)*4)
436 		return 0;
437 
438 	if (args->count > max_blocksize) {
439 		args->count = max_blocksize;
440 		len = args->len = max_blocksize;
441 	}
442 
443 	args->first.iov_base = (void *)p;
444 	args->first.iov_len = head->iov_len - hdr;
445 	return 1;
446 }
447 
448 int
nfs3svc_decode_createargs(struct svc_rqst * rqstp,__be32 * p)449 nfs3svc_decode_createargs(struct svc_rqst *rqstp, __be32 *p)
450 {
451 	struct nfsd3_createargs *args = rqstp->rq_argp;
452 
453 	if (!(p = decode_fh(p, &args->fh))
454 	 || !(p = decode_filename(p, &args->name, &args->len)))
455 		return 0;
456 
457 	switch (args->createmode = ntohl(*p++)) {
458 	case NFS3_CREATE_UNCHECKED:
459 	case NFS3_CREATE_GUARDED:
460 		p = decode_sattr3(p, &args->attrs, nfsd_user_namespace(rqstp));
461 		break;
462 	case NFS3_CREATE_EXCLUSIVE:
463 		args->verf = p;
464 		p += 2;
465 		break;
466 	default:
467 		return 0;
468 	}
469 
470 	return xdr_argsize_check(rqstp, p);
471 }
472 
473 int
nfs3svc_decode_mkdirargs(struct svc_rqst * rqstp,__be32 * p)474 nfs3svc_decode_mkdirargs(struct svc_rqst *rqstp, __be32 *p)
475 {
476 	struct nfsd3_createargs *args = rqstp->rq_argp;
477 
478 	if (!(p = decode_fh(p, &args->fh)) ||
479 	    !(p = decode_filename(p, &args->name, &args->len)))
480 		return 0;
481 	p = decode_sattr3(p, &args->attrs, nfsd_user_namespace(rqstp));
482 
483 	return xdr_argsize_check(rqstp, p);
484 }
485 
486 int
nfs3svc_decode_symlinkargs(struct svc_rqst * rqstp,__be32 * p)487 nfs3svc_decode_symlinkargs(struct svc_rqst *rqstp, __be32 *p)
488 {
489 	struct nfsd3_symlinkargs *args = rqstp->rq_argp;
490 	char *base = (char *)p;
491 	size_t dlen;
492 
493 	if (!(p = decode_fh(p, &args->ffh)) ||
494 	    !(p = decode_filename(p, &args->fname, &args->flen)))
495 		return 0;
496 	p = decode_sattr3(p, &args->attrs, nfsd_user_namespace(rqstp));
497 
498 	args->tlen = ntohl(*p++);
499 
500 	args->first.iov_base = p;
501 	args->first.iov_len = rqstp->rq_arg.head[0].iov_len;
502 	args->first.iov_len -= (char *)p - base;
503 
504 	dlen = args->first.iov_len + rqstp->rq_arg.page_len +
505 	       rqstp->rq_arg.tail[0].iov_len;
506 	if (dlen < XDR_QUADLEN(args->tlen) << 2)
507 		return 0;
508 	return 1;
509 }
510 
511 int
nfs3svc_decode_mknodargs(struct svc_rqst * rqstp,__be32 * p)512 nfs3svc_decode_mknodargs(struct svc_rqst *rqstp, __be32 *p)
513 {
514 	struct nfsd3_mknodargs *args = rqstp->rq_argp;
515 
516 	if (!(p = decode_fh(p, &args->fh))
517 	 || !(p = decode_filename(p, &args->name, &args->len)))
518 		return 0;
519 
520 	args->ftype = ntohl(*p++);
521 
522 	if (args->ftype == NF3BLK  || args->ftype == NF3CHR
523 	 || args->ftype == NF3SOCK || args->ftype == NF3FIFO)
524 		p = decode_sattr3(p, &args->attrs, nfsd_user_namespace(rqstp));
525 
526 	if (args->ftype == NF3BLK || args->ftype == NF3CHR) {
527 		args->major = ntohl(*p++);
528 		args->minor = ntohl(*p++);
529 	}
530 
531 	return xdr_argsize_check(rqstp, p);
532 }
533 
534 int
nfs3svc_decode_renameargs(struct svc_rqst * rqstp,__be32 * p)535 nfs3svc_decode_renameargs(struct svc_rqst *rqstp, __be32 *p)
536 {
537 	struct nfsd3_renameargs *args = rqstp->rq_argp;
538 
539 	if (!(p = decode_fh(p, &args->ffh))
540 	 || !(p = decode_filename(p, &args->fname, &args->flen))
541 	 || !(p = decode_fh(p, &args->tfh))
542 	 || !(p = decode_filename(p, &args->tname, &args->tlen)))
543 		return 0;
544 
545 	return xdr_argsize_check(rqstp, p);
546 }
547 
548 int
nfs3svc_decode_readlinkargs(struct svc_rqst * rqstp,__be32 * p)549 nfs3svc_decode_readlinkargs(struct svc_rqst *rqstp, __be32 *p)
550 {
551 	struct nfsd3_readlinkargs *args = rqstp->rq_argp;
552 
553 	p = decode_fh(p, &args->fh);
554 	if (!p)
555 		return 0;
556 	args->buffer = page_address(*(rqstp->rq_next_page++));
557 
558 	return xdr_argsize_check(rqstp, p);
559 }
560 
561 int
nfs3svc_decode_linkargs(struct svc_rqst * rqstp,__be32 * p)562 nfs3svc_decode_linkargs(struct svc_rqst *rqstp, __be32 *p)
563 {
564 	struct nfsd3_linkargs *args = rqstp->rq_argp;
565 
566 	if (!(p = decode_fh(p, &args->ffh))
567 	 || !(p = decode_fh(p, &args->tfh))
568 	 || !(p = decode_filename(p, &args->tname, &args->tlen)))
569 		return 0;
570 
571 	return xdr_argsize_check(rqstp, p);
572 }
573 
574 int
nfs3svc_decode_readdirargs(struct svc_rqst * rqstp,__be32 * p)575 nfs3svc_decode_readdirargs(struct svc_rqst *rqstp, __be32 *p)
576 {
577 	struct nfsd3_readdirargs *args = rqstp->rq_argp;
578 	int len;
579 	u32 max_blocksize = svc_max_payload(rqstp);
580 
581 	p = decode_fh(p, &args->fh);
582 	if (!p)
583 		return 0;
584 	p = xdr_decode_hyper(p, &args->cookie);
585 	args->verf   = p; p += 2;
586 	args->dircount = ~0;
587 	args->count  = ntohl(*p++);
588 	len = args->count  = min_t(u32, args->count, max_blocksize);
589 
590 	while (len > 0) {
591 		struct page *p = *(rqstp->rq_next_page++);
592 		if (!args->buffer)
593 			args->buffer = page_address(p);
594 		len -= PAGE_SIZE;
595 	}
596 
597 	return xdr_argsize_check(rqstp, p);
598 }
599 
600 int
nfs3svc_decode_readdirplusargs(struct svc_rqst * rqstp,__be32 * p)601 nfs3svc_decode_readdirplusargs(struct svc_rqst *rqstp, __be32 *p)
602 {
603 	struct nfsd3_readdirargs *args = rqstp->rq_argp;
604 	int len;
605 	u32 max_blocksize = svc_max_payload(rqstp);
606 
607 	p = decode_fh(p, &args->fh);
608 	if (!p)
609 		return 0;
610 	p = xdr_decode_hyper(p, &args->cookie);
611 	args->verf     = p; p += 2;
612 	args->dircount = ntohl(*p++);
613 	args->count    = ntohl(*p++);
614 
615 	len = args->count = min(args->count, max_blocksize);
616 	while (len > 0) {
617 		struct page *p = *(rqstp->rq_next_page++);
618 		if (!args->buffer)
619 			args->buffer = page_address(p);
620 		len -= PAGE_SIZE;
621 	}
622 
623 	return xdr_argsize_check(rqstp, p);
624 }
625 
626 int
nfs3svc_decode_commitargs(struct svc_rqst * rqstp,__be32 * p)627 nfs3svc_decode_commitargs(struct svc_rqst *rqstp, __be32 *p)
628 {
629 	struct nfsd3_commitargs *args = rqstp->rq_argp;
630 	p = decode_fh(p, &args->fh);
631 	if (!p)
632 		return 0;
633 	p = xdr_decode_hyper(p, &args->offset);
634 	args->count = ntohl(*p++);
635 
636 	return xdr_argsize_check(rqstp, p);
637 }
638 
639 /*
640  * XDR encode functions
641  */
642 /*
643  * There must be an encoding function for void results so svc_process
644  * will work properly.
645  */
646 int
nfs3svc_encode_voidres(struct svc_rqst * rqstp,__be32 * p)647 nfs3svc_encode_voidres(struct svc_rqst *rqstp, __be32 *p)
648 {
649 	return xdr_ressize_check(rqstp, p);
650 }
651 
652 /* GETATTR */
653 int
nfs3svc_encode_attrstat(struct svc_rqst * rqstp,__be32 * p)654 nfs3svc_encode_attrstat(struct svc_rqst *rqstp, __be32 *p)
655 {
656 	struct nfsd3_attrstat *resp = rqstp->rq_resp;
657 
658 	if (resp->status == 0) {
659 		lease_get_mtime(d_inode(resp->fh.fh_dentry),
660 				&resp->stat.mtime);
661 		p = encode_fattr3(rqstp, p, &resp->fh, &resp->stat);
662 	}
663 	return xdr_ressize_check(rqstp, p);
664 }
665 
666 /* SETATTR, REMOVE, RMDIR */
667 int
nfs3svc_encode_wccstat(struct svc_rqst * rqstp,__be32 * p)668 nfs3svc_encode_wccstat(struct svc_rqst *rqstp, __be32 *p)
669 {
670 	struct nfsd3_attrstat *resp = rqstp->rq_resp;
671 
672 	p = encode_wcc_data(rqstp, p, &resp->fh);
673 	return xdr_ressize_check(rqstp, p);
674 }
675 
676 /* LOOKUP */
677 int
nfs3svc_encode_diropres(struct svc_rqst * rqstp,__be32 * p)678 nfs3svc_encode_diropres(struct svc_rqst *rqstp, __be32 *p)
679 {
680 	struct nfsd3_diropres *resp = rqstp->rq_resp;
681 
682 	if (resp->status == 0) {
683 		p = encode_fh(p, &resp->fh);
684 		p = encode_post_op_attr(rqstp, p, &resp->fh);
685 	}
686 	p = encode_post_op_attr(rqstp, p, &resp->dirfh);
687 	return xdr_ressize_check(rqstp, p);
688 }
689 
690 /* ACCESS */
691 int
nfs3svc_encode_accessres(struct svc_rqst * rqstp,__be32 * p)692 nfs3svc_encode_accessres(struct svc_rqst *rqstp, __be32 *p)
693 {
694 	struct nfsd3_accessres *resp = rqstp->rq_resp;
695 
696 	p = encode_post_op_attr(rqstp, p, &resp->fh);
697 	if (resp->status == 0)
698 		*p++ = htonl(resp->access);
699 	return xdr_ressize_check(rqstp, p);
700 }
701 
702 /* READLINK */
703 int
nfs3svc_encode_readlinkres(struct svc_rqst * rqstp,__be32 * p)704 nfs3svc_encode_readlinkres(struct svc_rqst *rqstp, __be32 *p)
705 {
706 	struct nfsd3_readlinkres *resp = rqstp->rq_resp;
707 
708 	p = encode_post_op_attr(rqstp, p, &resp->fh);
709 	if (resp->status == 0) {
710 		*p++ = htonl(resp->len);
711 		xdr_ressize_check(rqstp, p);
712 		rqstp->rq_res.page_len = resp->len;
713 		if (resp->len & 3) {
714 			/* need to pad the tail */
715 			rqstp->rq_res.tail[0].iov_base = p;
716 			*p = 0;
717 			rqstp->rq_res.tail[0].iov_len = 4 - (resp->len&3);
718 		}
719 		return 1;
720 	} else
721 		return xdr_ressize_check(rqstp, p);
722 }
723 
724 /* READ */
725 int
nfs3svc_encode_readres(struct svc_rqst * rqstp,__be32 * p)726 nfs3svc_encode_readres(struct svc_rqst *rqstp, __be32 *p)
727 {
728 	struct nfsd3_readres *resp = rqstp->rq_resp;
729 
730 	p = encode_post_op_attr(rqstp, p, &resp->fh);
731 	if (resp->status == 0) {
732 		*p++ = htonl(resp->count);
733 		*p++ = htonl(resp->eof);
734 		*p++ = htonl(resp->count);	/* xdr opaque count */
735 		xdr_ressize_check(rqstp, p);
736 		/* now update rqstp->rq_res to reflect data as well */
737 		rqstp->rq_res.page_len = resp->count;
738 		if (resp->count & 3) {
739 			/* need to pad the tail */
740 			rqstp->rq_res.tail[0].iov_base = p;
741 			*p = 0;
742 			rqstp->rq_res.tail[0].iov_len = 4 - (resp->count & 3);
743 		}
744 		return 1;
745 	} else
746 		return xdr_ressize_check(rqstp, p);
747 }
748 
749 /* WRITE */
750 int
nfs3svc_encode_writeres(struct svc_rqst * rqstp,__be32 * p)751 nfs3svc_encode_writeres(struct svc_rqst *rqstp, __be32 *p)
752 {
753 	struct nfsd3_writeres *resp = rqstp->rq_resp;
754 	struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id);
755 	__be32 verf[2];
756 
757 	p = encode_wcc_data(rqstp, p, &resp->fh);
758 	if (resp->status == 0) {
759 		*p++ = htonl(resp->count);
760 		*p++ = htonl(resp->committed);
761 		/* unique identifier, y2038 overflow can be ignored */
762 		nfsd_copy_boot_verifier(verf, nn);
763 		*p++ = verf[0];
764 		*p++ = verf[1];
765 	}
766 	return xdr_ressize_check(rqstp, p);
767 }
768 
769 /* CREATE, MKDIR, SYMLINK, MKNOD */
770 int
nfs3svc_encode_createres(struct svc_rqst * rqstp,__be32 * p)771 nfs3svc_encode_createres(struct svc_rqst *rqstp, __be32 *p)
772 {
773 	struct nfsd3_diropres *resp = rqstp->rq_resp;
774 
775 	if (resp->status == 0) {
776 		*p++ = xdr_one;
777 		p = encode_fh(p, &resp->fh);
778 		p = encode_post_op_attr(rqstp, p, &resp->fh);
779 	}
780 	p = encode_wcc_data(rqstp, p, &resp->dirfh);
781 	return xdr_ressize_check(rqstp, p);
782 }
783 
784 /* RENAME */
785 int
nfs3svc_encode_renameres(struct svc_rqst * rqstp,__be32 * p)786 nfs3svc_encode_renameres(struct svc_rqst *rqstp, __be32 *p)
787 {
788 	struct nfsd3_renameres *resp = rqstp->rq_resp;
789 
790 	p = encode_wcc_data(rqstp, p, &resp->ffh);
791 	p = encode_wcc_data(rqstp, p, &resp->tfh);
792 	return xdr_ressize_check(rqstp, p);
793 }
794 
795 /* LINK */
796 int
nfs3svc_encode_linkres(struct svc_rqst * rqstp,__be32 * p)797 nfs3svc_encode_linkres(struct svc_rqst *rqstp, __be32 *p)
798 {
799 	struct nfsd3_linkres *resp = rqstp->rq_resp;
800 
801 	p = encode_post_op_attr(rqstp, p, &resp->fh);
802 	p = encode_wcc_data(rqstp, p, &resp->tfh);
803 	return xdr_ressize_check(rqstp, p);
804 }
805 
806 /* READDIR */
807 int
nfs3svc_encode_readdirres(struct svc_rqst * rqstp,__be32 * p)808 nfs3svc_encode_readdirres(struct svc_rqst *rqstp, __be32 *p)
809 {
810 	struct nfsd3_readdirres *resp = rqstp->rq_resp;
811 
812 	p = encode_post_op_attr(rqstp, p, &resp->fh);
813 
814 	if (resp->status == 0) {
815 		/* stupid readdir cookie */
816 		memcpy(p, resp->verf, 8); p += 2;
817 		xdr_ressize_check(rqstp, p);
818 		if (rqstp->rq_res.head[0].iov_len + (2<<2) > PAGE_SIZE)
819 			return 1; /*No room for trailer */
820 		rqstp->rq_res.page_len = (resp->count) << 2;
821 
822 		/* add the 'tail' to the end of the 'head' page - page 0. */
823 		rqstp->rq_res.tail[0].iov_base = p;
824 		*p++ = 0;		/* no more entries */
825 		*p++ = htonl(resp->common.err == nfserr_eof);
826 		rqstp->rq_res.tail[0].iov_len = 2<<2;
827 		return 1;
828 	} else
829 		return xdr_ressize_check(rqstp, p);
830 }
831 
832 static __be32 *
encode_entry_baggage(struct nfsd3_readdirres * cd,__be32 * p,const char * name,int namlen,u64 ino)833 encode_entry_baggage(struct nfsd3_readdirres *cd, __be32 *p, const char *name,
834 	     int namlen, u64 ino)
835 {
836 	*p++ = xdr_one;				 /* mark entry present */
837 	p    = xdr_encode_hyper(p, ino);	 /* file id */
838 	p    = xdr_encode_array(p, name, namlen);/* name length & name */
839 
840 	cd->offset = p;				/* remember pointer */
841 	p = xdr_encode_hyper(p, NFS_OFFSET_MAX);/* offset of next entry */
842 
843 	return p;
844 }
845 
846 static __be32
compose_entry_fh(struct nfsd3_readdirres * cd,struct svc_fh * fhp,const char * name,int namlen,u64 ino)847 compose_entry_fh(struct nfsd3_readdirres *cd, struct svc_fh *fhp,
848 		 const char *name, int namlen, u64 ino)
849 {
850 	struct svc_export	*exp;
851 	struct dentry		*dparent, *dchild;
852 	__be32 rv = nfserr_noent;
853 
854 	dparent = cd->fh.fh_dentry;
855 	exp  = cd->fh.fh_export;
856 
857 	if (isdotent(name, namlen)) {
858 		if (namlen == 2) {
859 			dchild = dget_parent(dparent);
860 			/*
861 			 * Don't return filehandle for ".." if we're at
862 			 * the filesystem or export root:
863 			 */
864 			if (dchild == dparent)
865 				goto out;
866 			if (dparent == exp->ex_path.dentry)
867 				goto out;
868 		} else
869 			dchild = dget(dparent);
870 	} else
871 		dchild = lookup_positive_unlocked(name, dparent, namlen);
872 	if (IS_ERR(dchild))
873 		return rv;
874 	if (d_mountpoint(dchild))
875 		goto out;
876 	if (dchild->d_inode->i_ino != ino)
877 		goto out;
878 	rv = fh_compose(fhp, exp, dchild, &cd->fh);
879 out:
880 	dput(dchild);
881 	return rv;
882 }
883 
encode_entryplus_baggage(struct nfsd3_readdirres * cd,__be32 * p,const char * name,int namlen,u64 ino)884 static __be32 *encode_entryplus_baggage(struct nfsd3_readdirres *cd, __be32 *p, const char *name, int namlen, u64 ino)
885 {
886 	struct svc_fh	*fh = &cd->scratch;
887 	__be32 err;
888 
889 	fh_init(fh, NFS3_FHSIZE);
890 	err = compose_entry_fh(cd, fh, name, namlen, ino);
891 	if (err) {
892 		*p++ = 0;
893 		*p++ = 0;
894 		goto out;
895 	}
896 	p = encode_post_op_attr(cd->rqstp, p, fh);
897 	*p++ = xdr_one;			/* yes, a file handle follows */
898 	p = encode_fh(p, fh);
899 out:
900 	fh_put(fh);
901 	return p;
902 }
903 
904 /*
905  * Encode a directory entry. This one works for both normal readdir
906  * and readdirplus.
907  * The normal readdir reply requires 2 (fileid) + 1 (stringlen)
908  * + string + 2 (cookie) + 1 (next) words, i.e. 6 + strlen.
909  *
910  * The readdirplus baggage is 1+21 words for post_op_attr, plus the
911  * file handle.
912  */
913 
914 #define NFS3_ENTRY_BAGGAGE	(2 + 1 + 2 + 1)
915 #define NFS3_ENTRYPLUS_BAGGAGE	(1 + 21 + 1 + (NFS3_FHSIZE >> 2))
916 static int
encode_entry(struct readdir_cd * ccd,const char * name,int namlen,loff_t offset,u64 ino,unsigned int d_type,int plus)917 encode_entry(struct readdir_cd *ccd, const char *name, int namlen,
918 	     loff_t offset, u64 ino, unsigned int d_type, int plus)
919 {
920 	struct nfsd3_readdirres *cd = container_of(ccd, struct nfsd3_readdirres,
921 		       					common);
922 	__be32		*p = cd->buffer;
923 	caddr_t		curr_page_addr = NULL;
924 	struct page **	page;
925 	int		slen;		/* string (name) length */
926 	int		elen;		/* estimated entry length in words */
927 	int		num_entry_words = 0;	/* actual number of words */
928 
929 	if (cd->offset) {
930 		u64 offset64 = offset;
931 
932 		if (unlikely(cd->offset1)) {
933 			/* we ended up with offset on a page boundary */
934 			*cd->offset = htonl(offset64 >> 32);
935 			*cd->offset1 = htonl(offset64 & 0xffffffff);
936 			cd->offset1 = NULL;
937 		} else {
938 			xdr_encode_hyper(cd->offset, offset64);
939 		}
940 		cd->offset = NULL;
941 	}
942 
943 	/*
944 	dprintk("encode_entry(%.*s @%ld%s)\n",
945 		namlen, name, (long) offset, plus? " plus" : "");
946 	 */
947 
948 	/* truncate filename if too long */
949 	namlen = min(namlen, NFS3_MAXNAMLEN);
950 
951 	slen = XDR_QUADLEN(namlen);
952 	elen = slen + NFS3_ENTRY_BAGGAGE
953 		+ (plus? NFS3_ENTRYPLUS_BAGGAGE : 0);
954 
955 	if (cd->buflen < elen) {
956 		cd->common.err = nfserr_toosmall;
957 		return -EINVAL;
958 	}
959 
960 	/* determine which page in rq_respages[] we are currently filling */
961 	for (page = cd->rqstp->rq_respages + 1;
962 				page < cd->rqstp->rq_next_page; page++) {
963 		curr_page_addr = page_address(*page);
964 
965 		if (((caddr_t)cd->buffer >= curr_page_addr) &&
966 		    ((caddr_t)cd->buffer <  curr_page_addr + PAGE_SIZE))
967 			break;
968 	}
969 
970 	if ((caddr_t)(cd->buffer + elen) < (curr_page_addr + PAGE_SIZE)) {
971 		/* encode entry in current page */
972 
973 		p = encode_entry_baggage(cd, p, name, namlen, ino);
974 
975 		if (plus)
976 			p = encode_entryplus_baggage(cd, p, name, namlen, ino);
977 		num_entry_words = p - cd->buffer;
978 	} else if (*(page+1) != NULL) {
979 		/* temporarily encode entry into next page, then move back to
980 		 * current and next page in rq_respages[] */
981 		__be32 *p1, *tmp;
982 		int len1, len2;
983 
984 		/* grab next page for temporary storage of entry */
985 		p1 = tmp = page_address(*(page+1));
986 
987 		p1 = encode_entry_baggage(cd, p1, name, namlen, ino);
988 
989 		if (plus)
990 			p1 = encode_entryplus_baggage(cd, p1, name, namlen, ino);
991 
992 		/* determine entry word length and lengths to go in pages */
993 		num_entry_words = p1 - tmp;
994 		len1 = curr_page_addr + PAGE_SIZE - (caddr_t)cd->buffer;
995 		if ((num_entry_words << 2) < len1) {
996 			/* the actual number of words in the entry is less
997 			 * than elen and can still fit in the current page
998 			 */
999 			memmove(p, tmp, num_entry_words << 2);
1000 			p += num_entry_words;
1001 
1002 			/* update offset */
1003 			cd->offset = cd->buffer + (cd->offset - tmp);
1004 		} else {
1005 			unsigned int offset_r = (cd->offset - tmp) << 2;
1006 
1007 			/* update pointer to offset location.
1008 			 * This is a 64bit quantity, so we need to
1009 			 * deal with 3 cases:
1010 			 *  -	entirely in first page
1011 			 *  -	entirely in second page
1012 			 *  -	4 bytes in each page
1013 			 */
1014 			if (offset_r + 8 <= len1) {
1015 				cd->offset = p + (cd->offset - tmp);
1016 			} else if (offset_r >= len1) {
1017 				cd->offset -= len1 >> 2;
1018 			} else {
1019 				/* sitting on the fence */
1020 				BUG_ON(offset_r != len1 - 4);
1021 				cd->offset = p + (cd->offset - tmp);
1022 				cd->offset1 = tmp;
1023 			}
1024 
1025 			len2 = (num_entry_words << 2) - len1;
1026 
1027 			/* move from temp page to current and next pages */
1028 			memmove(p, tmp, len1);
1029 			memmove(tmp, (caddr_t)tmp+len1, len2);
1030 
1031 			p = tmp + (len2 >> 2);
1032 		}
1033 	}
1034 	else {
1035 		cd->common.err = nfserr_toosmall;
1036 		return -EINVAL;
1037 	}
1038 
1039 	cd->buflen -= num_entry_words;
1040 	cd->buffer = p;
1041 	cd->common.err = nfs_ok;
1042 	return 0;
1043 
1044 }
1045 
1046 int
nfs3svc_encode_entry(void * cd,const char * name,int namlen,loff_t offset,u64 ino,unsigned int d_type)1047 nfs3svc_encode_entry(void *cd, const char *name,
1048 		     int namlen, loff_t offset, u64 ino, unsigned int d_type)
1049 {
1050 	return encode_entry(cd, name, namlen, offset, ino, d_type, 0);
1051 }
1052 
1053 int
nfs3svc_encode_entry_plus(void * cd,const char * name,int namlen,loff_t offset,u64 ino,unsigned int d_type)1054 nfs3svc_encode_entry_plus(void *cd, const char *name,
1055 			  int namlen, loff_t offset, u64 ino,
1056 			  unsigned int d_type)
1057 {
1058 	return encode_entry(cd, name, namlen, offset, ino, d_type, 1);
1059 }
1060 
1061 /* FSSTAT */
1062 int
nfs3svc_encode_fsstatres(struct svc_rqst * rqstp,__be32 * p)1063 nfs3svc_encode_fsstatres(struct svc_rqst *rqstp, __be32 *p)
1064 {
1065 	struct nfsd3_fsstatres *resp = rqstp->rq_resp;
1066 	struct kstatfs	*s = &resp->stats;
1067 	u64		bs = s->f_bsize;
1068 
1069 	*p++ = xdr_zero;	/* no post_op_attr */
1070 
1071 	if (resp->status == 0) {
1072 		p = xdr_encode_hyper(p, bs * s->f_blocks);	/* total bytes */
1073 		p = xdr_encode_hyper(p, bs * s->f_bfree);	/* free bytes */
1074 		p = xdr_encode_hyper(p, bs * s->f_bavail);	/* user available bytes */
1075 		p = xdr_encode_hyper(p, s->f_files);	/* total inodes */
1076 		p = xdr_encode_hyper(p, s->f_ffree);	/* free inodes */
1077 		p = xdr_encode_hyper(p, s->f_ffree);	/* user available inodes */
1078 		*p++ = htonl(resp->invarsec);	/* mean unchanged time */
1079 	}
1080 	return xdr_ressize_check(rqstp, p);
1081 }
1082 
1083 /* FSINFO */
1084 int
nfs3svc_encode_fsinfores(struct svc_rqst * rqstp,__be32 * p)1085 nfs3svc_encode_fsinfores(struct svc_rqst *rqstp, __be32 *p)
1086 {
1087 	struct nfsd3_fsinfores *resp = rqstp->rq_resp;
1088 
1089 	*p++ = xdr_zero;	/* no post_op_attr */
1090 
1091 	if (resp->status == 0) {
1092 		*p++ = htonl(resp->f_rtmax);
1093 		*p++ = htonl(resp->f_rtpref);
1094 		*p++ = htonl(resp->f_rtmult);
1095 		*p++ = htonl(resp->f_wtmax);
1096 		*p++ = htonl(resp->f_wtpref);
1097 		*p++ = htonl(resp->f_wtmult);
1098 		*p++ = htonl(resp->f_dtpref);
1099 		p = xdr_encode_hyper(p, resp->f_maxfilesize);
1100 		*p++ = xdr_one;
1101 		*p++ = xdr_zero;
1102 		*p++ = htonl(resp->f_properties);
1103 	}
1104 
1105 	return xdr_ressize_check(rqstp, p);
1106 }
1107 
1108 /* PATHCONF */
1109 int
nfs3svc_encode_pathconfres(struct svc_rqst * rqstp,__be32 * p)1110 nfs3svc_encode_pathconfres(struct svc_rqst *rqstp, __be32 *p)
1111 {
1112 	struct nfsd3_pathconfres *resp = rqstp->rq_resp;
1113 
1114 	*p++ = xdr_zero;	/* no post_op_attr */
1115 
1116 	if (resp->status == 0) {
1117 		*p++ = htonl(resp->p_link_max);
1118 		*p++ = htonl(resp->p_name_max);
1119 		*p++ = htonl(resp->p_no_trunc);
1120 		*p++ = htonl(resp->p_chown_restricted);
1121 		*p++ = htonl(resp->p_case_insensitive);
1122 		*p++ = htonl(resp->p_case_preserving);
1123 	}
1124 
1125 	return xdr_ressize_check(rqstp, p);
1126 }
1127 
1128 /* COMMIT */
1129 int
nfs3svc_encode_commitres(struct svc_rqst * rqstp,__be32 * p)1130 nfs3svc_encode_commitres(struct svc_rqst *rqstp, __be32 *p)
1131 {
1132 	struct nfsd3_commitres *resp = rqstp->rq_resp;
1133 	struct nfsd_net *nn = net_generic(SVC_NET(rqstp), nfsd_net_id);
1134 	__be32 verf[2];
1135 
1136 	p = encode_wcc_data(rqstp, p, &resp->fh);
1137 	/* Write verifier */
1138 	if (resp->status == 0) {
1139 		/* unique identifier, y2038 overflow can be ignored */
1140 		nfsd_copy_boot_verifier(verf, nn);
1141 		*p++ = verf[0];
1142 		*p++ = verf[1];
1143 	}
1144 	return xdr_ressize_check(rqstp, p);
1145 }
1146 
1147 /*
1148  * XDR release functions
1149  */
1150 void
nfs3svc_release_fhandle(struct svc_rqst * rqstp)1151 nfs3svc_release_fhandle(struct svc_rqst *rqstp)
1152 {
1153 	struct nfsd3_attrstat *resp = rqstp->rq_resp;
1154 
1155 	fh_put(&resp->fh);
1156 }
1157 
1158 void
nfs3svc_release_fhandle2(struct svc_rqst * rqstp)1159 nfs3svc_release_fhandle2(struct svc_rqst *rqstp)
1160 {
1161 	struct nfsd3_fhandle_pair *resp = rqstp->rq_resp;
1162 
1163 	fh_put(&resp->fh1);
1164 	fh_put(&resp->fh2);
1165 }
1166