From patchwork Fri Aug 10 23:53:03 2018
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Steve French <smfrench@gmail.com>
X-Patchwork-Id: 956508
Return-Path: <linux-cifs-owner@vger.kernel.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Authentication-Results: ozlabs.org;
	spf=none (mailfrom) smtp.mailfrom=vger.kernel.org
	(client-ip=209.132.180.67; helo=vger.kernel.org;
	envelope-from=linux-cifs-owner@vger.kernel.org;
	receiver=<UNKNOWN>)
Authentication-Results: ozlabs.org;
	dmarc=pass (p=none dis=none) header.from=gmail.com
Authentication-Results: ozlabs.org; dkim=pass (2048-bit key;
	unprotected) header.d=gmail.com header.i=@gmail.com
	header.b="sB9vP3Wh"; dkim-atps=neutral
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by ozlabs.org (Postfix) with ESMTP id 41nMQ75F6Vz9s2P
	for <incoming@patchwork.ozlabs.org>;
	Sat, 11 Aug 2018 09:53:19 +1000 (AEST)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1727033AbeHKCZW (ORCPT <rfc822;incoming@patchwork.ozlabs.org>);
	Fri, 10 Aug 2018 22:25:22 -0400
Received: from mail-pg1-f194.google.com ([209.85.215.194]:41549 "EHLO
	mail-pg1-f194.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1726747AbeHKCZW (ORCPT
	<rfc822; linux-cifs@vger.kernel.org>); Fri, 10 Aug 2018 22:25:22 -0400
Received: by mail-pg1-f194.google.com with SMTP id z8-v6so5059167pgu.8
	for <linux-cifs@vger.kernel.org>;
	Fri, 10 Aug 2018 16:53:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=gmail.com; s=20161025;
	h=mime-version:from:date:message-id:subject:to;
	bh=RqWA/V3VE5Mt6vmEE+NMG/oKe2jpyABRkmpiS+zteIo=;
	b=sB9vP3WhjQuGqS5arpBLde5F7Opu+OQxUVDbOqIOIW4PHNHTSomgsaURn0OEy68tAM
	+dqudhcqqQyiz3+pZF6EO4cf6gbW2TwJSL2ITMXNDgzjvzVqMChLegb281FbjYk1WpL0
	xQS6+br4kosLcNgkdFhVmkAeuU+TwCaSXxK2LaFIH9IRbqq9ZSqU4oiuRWNxwGXSWODR
	0mmDW+vxA5IFOEkPzAdUEXGvynQe5WX5bRmnLYqbWUZvjVze61sVCj+V8z0Db1pBjozy
	uYoCLPKMzXhgNhQeD/+H6I/hn3dv/1GCsKxt9LhZcsqzdk/m5WznZ958seTrpIQY0cPX
	naaQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=1e100.net; s=20161025;
	h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
	bh=RqWA/V3VE5Mt6vmEE+NMG/oKe2jpyABRkmpiS+zteIo=;
	b=N6mYD5giqPogsGi8jkX2o+qhzVTMPn/2MFvHkROq0+1wZslNhTyYVSNgFSQwWTopcD
	iAa8SEb3j1o/RpFk9CGo72AML3ZCFKaKqzj3aC3fkB9vZBP+0dhuObtvle/RwSVGOSs0
	QdtBw9tWD2lvk5ZsTupkIcwf3HvskLxIZJpN5RrMWDhR/U3856y1Q9LByx/yhbe+wqd9
	lEcn2Sc1nN64tMCp+/y3eVELaHpHkdWCmAmErHqlfbwfPM5PNsRYxG0HurvWkGgtuIdg
	FgT0R7Aibk+q9otEUfJLlNl1la8c27OyT0X4WGlqOQ/Iu0Y9mX+7XFFnvdkfOTniK4X1
	nJRg==
X-Gm-Message-State: AOUpUlH1rBIQus2Qyj4TUeee2rnGOQJ/xe95lUvkbi7TV3JWuWcq4cZA
	FAJ6Ie9gq8XaF3b2vLpbevuej3Hj+j7RhAr6k+Vaksbr
X-Google-Smtp-Source: 
 AA+uWPxA5JvgTne/WOiLD6yO7f7rbk9uybWXqC4Y5czjvFQFJxzbkkRy5a8EJh93TKUkEjRPfYjgI72ppEHllNcyEvo=
X-Received: by 2002:a63:91c8:: with SMTP id
	l191-v6mr8105477pge.180.1533945197328;
	Fri, 10 Aug 2018 16:53:17 -0700 (PDT)
MIME-Version: 1.0
From: Steve French <smfrench@gmail.com>
Date: Fri, 10 Aug 2018 18:53:03 -0500
Message-ID: 
 <CAH2r5mtjURuj=ePMsnpkt6pUqTCQ+aoFtxxh468F1Ur6byhrRw@mail.gmail.com>
Subject: [PATCH] smb3: create smb3 equivalent alias for cifs pseudo-xattrs
To: CIFS <linux-cifs@vger.kernel.org>
Sender: linux-cifs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-cifs.vger.kernel.org>
X-Mailing-List: linux-cifs@vger.kernel.org

We really, really don't want to be encouraging people to use
cifs (the dialect) since it is insecure, so to avoid confusion
we want to move them to names which include 'smb3' instead of
'cifs' - so this simply creates an alias for the pseudo-xattrs

e.g. can now do:
getfattr -n user.smb3.creationtime /mnt1/file
and
getfattr -n user.smb3.dosattrib /mnt1/file
and
getfattr -n system.smb3_acl /mnt1/file

instead of forcing you to use the string 'cifs' in
these (e.g. getfattr -n system.cifs_acl /mnt1/file)

Signed-off-by: Steve French <stfrench@microsoft.com>
---
 fs/cifs/xattr.c | 28 ++++++++++++++++++++++++++--
 1 file changed, 26 insertions(+), 2 deletions(-)


 enum { XATTR_USER, XATTR_CIFS_ACL, XATTR_ACL_ACCESS, XATTR_ACL_DEFAULT };
@@ -220,10 +228,12 @@ static int cifs_xattr_get(const struct
xattr_handler *handler,
     switch (handler->flags) {
     case XATTR_USER:
         cifs_dbg(FYI, "%s:querying user xattr %s\n", __func__, name);
-        if (strcmp(name, CIFS_XATTR_ATTRIB) == 0) {
+        if ((strcmp(name, CIFS_XATTR_ATTRIB) == 0) ||
+            (strcmp(name, SMB3_XATTR_ATTRIB) == 0)) {
             rc = cifs_attrib_get(dentry, inode, value, size);
             break;
-        } else if (strcmp(name, CIFS_XATTR_CREATETIME) == 0) {
+        } else if ((strcmp(name, CIFS_XATTR_CREATETIME) == 0) ||
+            (strcmp(name, SMB3_XATTR_CREATETIME) == 0)) {
             rc = cifs_creation_time_get(dentry, inode, value, size);
             break;
         }
@@ -363,6 +373,19 @@ static const struct xattr_handler
cifs_cifs_acl_xattr_handler = {
     .set = cifs_xattr_set,
 };

+/*
+ * Although this is just an alias for the above, need to move away from
+ * confusing users and using the 20 year old term 'cifs' when it is no
+ * longer secure and was replaced by SMB2/SMB3 a long time ago, and
+ * SMB3 and later are highly secure.
+ */
+static const struct xattr_handler smb3_acl_xattr_handler = {
+    .name = SMB3_XATTR_CIFS_ACL,
+    .flags = XATTR_CIFS_ACL,
+    .get = cifs_xattr_get,
+    .set = cifs_xattr_set,
+};
+
 static const struct xattr_handler cifs_posix_acl_access_xattr_handler = {
     .name = XATTR_NAME_POSIX_ACL_ACCESS,
     .flags = XATTR_ACL_ACCESS,
@@ -381,6 +404,7 @@ const struct xattr_handler *cifs_xattr_handlers[] = {
     &cifs_user_xattr_handler,
     &cifs_os2_xattr_handler,
     &cifs_cifs_acl_xattr_handler,
+    &smb3_acl_xattr_handler, /* alias for above since avoiding "cifs" */
     &cifs_posix_acl_access_xattr_handler,
     &cifs_posix_acl_default_xattr_handler,
     NULL

From c4f7173ac3b7e22934e51f0121833642a581d723 Mon Sep 17 00:00:00 2001
From: Steve French <stfrench@microsoft.com>
Date: Fri, 10 Aug 2018 18:46:58 -0500
Subject: [PATCH] smb3: create smb3 equivalent alias for cifs pseudo-xattrs

We really, really don't want to be encouraging people to use
cifs (the dialect) since it is insecure, so to avoid confusion
we want to move them to names which include 'smb3' instead of
'cifs' - so this simply creates an alias for the pseudo-xattrs

e.g. can now do:
getfattr -n user.smb3.creationtime /mnt1/file
and
getfattr -n user.smb3.dosattrib /mnt1/file
and
getfattr -n system.smb3_acl /mnt1/file

instead of forcing you to use the string 'cifs' in
these (e.g. getfattr -n system.cifs_acl /mnt1/file)

Signed-off-by: Steve French <stfrench@microsoft.com>
---
 fs/cifs/xattr.c | 28 ++++++++++++++++++++++++++--
 1 file changed, 26 insertions(+), 2 deletions(-)

diff --git a/fs/cifs/xattr.c b/fs/cifs/xattr.c
index 316af84674f1..50ddb795aaeb 100644
--- a/fs/cifs/xattr.c
+++ b/fs/cifs/xattr.c
@@ -35,6 +35,14 @@
 #define CIFS_XATTR_CIFS_ACL "system.cifs_acl"
 #define CIFS_XATTR_ATTRIB "cifs.dosattrib"  /* full name: user.cifs.dosattrib */
 #define CIFS_XATTR_CREATETIME "cifs.creationtime"  /* user.cifs.creationtime */
+/*
+ * Although these three are just aliases for the above, need to move away from
+ * confusing users and using the 20+ year old term 'cifs' when it is no longer
+ * secure, replaced by SMB2 (then even more highly secure SMB3) many years ago
+ */
+#define SMB3_XATTR_CIFS_ACL "system.smb3_acl"
+#define SMB3_XATTR_ATTRIB "smb3.dosattrib"  /* full name: user.smb3.dosattrib */
+#define SMB3_XATTR_CREATETIME "smb3.creationtime"  /* user.smb3.creationtime */
 /* BB need to add server (Samba e.g) support for security and trusted prefix */
 
 enum { XATTR_USER, XATTR_CIFS_ACL, XATTR_ACL_ACCESS, XATTR_ACL_DEFAULT };
@@ -220,10 +228,12 @@ static int cifs_xattr_get(const struct xattr_handler *handler,
 	switch (handler->flags) {
 	case XATTR_USER:
 		cifs_dbg(FYI, "%s:querying user xattr %s\n", __func__, name);
-		if (strcmp(name, CIFS_XATTR_ATTRIB) == 0) {
+		if ((strcmp(name, CIFS_XATTR_ATTRIB) == 0) ||
+		    (strcmp(name, SMB3_XATTR_ATTRIB) == 0)) {
 			rc = cifs_attrib_get(dentry, inode, value, size);
 			break;
-		} else if (strcmp(name, CIFS_XATTR_CREATETIME) == 0) {
+		} else if ((strcmp(name, CIFS_XATTR_CREATETIME) == 0) ||
+		    (strcmp(name, SMB3_XATTR_CREATETIME) == 0)) {
 			rc = cifs_creation_time_get(dentry, inode, value, size);
 			break;
 		}
@@ -363,6 +373,19 @@ static const struct xattr_handler cifs_cifs_acl_xattr_handler = {
 	.set = cifs_xattr_set,
 };
 
+/*
+ * Although this is just an alias for the above, need to move away from
+ * confusing users and using the 20 year old term 'cifs' when it is no
+ * longer secure and was replaced by SMB2/SMB3 a long time ago, and
+ * SMB3 and later are highly secure.
+ */
+static const struct xattr_handler smb3_acl_xattr_handler = {
+	.name = SMB3_XATTR_CIFS_ACL,
+	.flags = XATTR_CIFS_ACL,
+	.get = cifs_xattr_get,
+	.set = cifs_xattr_set,
+};
+
 static const struct xattr_handler cifs_posix_acl_access_xattr_handler = {
 	.name = XATTR_NAME_POSIX_ACL_ACCESS,
 	.flags = XATTR_ACL_ACCESS,
@@ -381,6 +404,7 @@ const struct xattr_handler *cifs_xattr_handlers[] = {
 	&cifs_user_xattr_handler,
 	&cifs_os2_xattr_handler,
 	&cifs_cifs_acl_xattr_handler,
+	&smb3_acl_xattr_handler, /* alias for above since avoiding "cifs" */
 	&cifs_posix_acl_access_xattr_handler,
 	&cifs_posix_acl_default_xattr_handler,
 	NULL
-- 
2.17.1