[IPV6]: Defer IPv6 device initialization until a valid qdisc is specified

[linux-2.6-omap-h63xx.git] / net / sunrpc / auth_gss / svcauth_gss.c
diff --git a/net/sunrpc/auth_gss/svcauth_gss.c b/net/sunrpc/auth_gss/svcauth_gss.c

index c094583386fd2242cfc633e30235153e06d7cf35..7da7050f06c39cfcc79f1383256ebbc66ba7e07b 100644 (file)
--- a/net/sunrpc/auth_gss/svcauth_gss.c
+++ b/net/sunrpc/auth_gss/svcauth_gss.c
@@ -42,7 +42,6 @@
  #include <linux/pagemap.h>
  
  #include <linux/sunrpc/auth_gss.h>
-#include <linux/sunrpc/svcauth.h>
  #include <linux/sunrpc/gss_err.h>
  #include <linux/sunrpc/svcauth.h>
  #include <linux/sunrpc/svcauth_gss.h>
@@ -743,6 +742,15 @@ find_gss_auth_domain(struct gss_ctx *ctx, u32 svc)
  
  static struct auth_ops svcauthops_gss;
  
+u32 svcauth_gss_flavor(struct auth_domain *dom)
+{
+       struct gss_domain *gd = container_of(dom, struct gss_domain, h);
+
+       return gd->pseudoflavor;
+}
+
+EXPORT_SYMBOL(svcauth_gss_flavor);
+
  int
  svcauth_gss_register_pseudoflavor(u32 pseudoflavor, char * name)
  {
@@ -760,11 +768,12 @@ svcauth_gss_register_pseudoflavor(u32 pseudoflavor, char * name)
         new->h.flavour = &svcauthops_gss;
         new->pseudoflavor = pseudoflavor;
  
+       stat = 0;
         test = auth_domain_lookup(name, &new->h);
-       if (test != &new->h) { /* XXX Duplicate registration? */
-               auth_domain_put(&new->h);
-               /* dangling ref-count... */
-               goto out;
+       if (test != &new->h) { /* Duplicate registration */
+               auth_domain_put(test);
+               kfree(new->h.name);
+               goto out_free_dom;
         }
         return 0;
  
@@ -913,10 +922,23 @@ svcauth_gss_set_client(struct svc_rqst *rqstp)
         struct gss_svc_data *svcdata = rqstp->rq_auth_data;
         struct rsc *rsci = svcdata->rsci;
         struct rpc_gss_wire_cred *gc = &svcdata->clcred;
+       int stat;
  
-       rqstp->rq_client = find_gss_auth_domain(rsci->mechctx, gc->gc_svc);
-       if (rqstp->rq_client == NULL)
+       /*
+        * A gss export can be specified either by:
+        *      export  *(sec=krb5,rw)
+        * or by
+        *      export gss/krb5(rw)
+        * The latter is deprecated; but for backwards compatibility reasons
+        * the nfsd code will still fall back on trying it if the former
+        * doesn't work; so we try to make both available to nfsd, below.
+        */
+       rqstp->rq_gssclient = find_gss_auth_domain(rsci->mechctx, gc->gc_svc);
+       if (rqstp->rq_gssclient == NULL)
                 return SVC_DENIED;
+       stat = svcauth_unix_set_client(rqstp);
+       if (stat == SVC_DROP)
+               return stat;
         return SVC_OK;
  }
  
@@ -1088,7 +1110,6 @@ svcauth_gss_accept(struct svc_rqst *rqstp, __be32 *authp)
                         svc_putnl(resv, GSS_SEQ_WIN);
                         if (svc_safe_putnetobj(resv, &rsip->out_token))
                                 goto drop;
-                       rqstp->rq_client = NULL;
                 }
                 goto complete;
         case RPC_GSS_PROC_DESTROY:
@@ -1131,6 +1152,8 @@ svcauth_gss_accept(struct svc_rqst *rqstp, __be32 *authp)
                 }
                 svcdata->rsci = rsci;
                 cache_get(&rsci->h);
+               rqstp->rq_flavor = gss_svc_to_pseudoflavor(
+                                       rsci->mechctx->mech_type, gc->gc_svc);
                 ret = SVC_OK;
                 goto out;
         }
@@ -1317,6 +1340,9 @@ out_err:
         if (rqstp->rq_client)
                 auth_domain_put(rqstp->rq_client);
         rqstp->rq_client = NULL;
+       if (rqstp->rq_gssclient)
+               auth_domain_put(rqstp->rq_gssclient);
+       rqstp->rq_gssclient = NULL;
         if (rqstp->rq_cred.cr_group_info)
                 put_group_info(rqstp->rq_cred.cr_group_info);
         rqstp->rq_cred.cr_group_info = NULL;