xnu-2782.30.5.tar.gz

[apple/xnu.git] / bsd / nfs / nfs_vfsops.c
diff --git a/bsd/nfs/nfs_vfsops.c b/bsd/nfs/nfs_vfsops.c

index 1c571a21f48f955bf90b45461953891d271bfd40..49d487f53d438338a5131fdb13fc60447392758a 100644 (file)
--- a/bsd/nfs/nfs_vfsops.c
+++ b/bsd/nfs/nfs_vfsops.c
@@ -1,5 +1,5 @@
  /*
  /*
- * Copyright (c) 2000-2011 Apple Inc. All rights reserved.
+ * Copyright (c) 2000-2015 Apple Inc. All rights reserved.
   *
   * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
   * 
   *
   * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
   * 
@@ -119,6 +119,8 @@
  
  #include <pexpert/pexpert.h>
  
  
  #include <pexpert/pexpert.h>
  
+#define NFS_VFS_DBG(...) NFS_DBG(NFS_FAC_VFS, 7, ## __VA_ARGS__)
+
  /*
   * NFS client globals
   */
  /*
   * NFS client globals
   */
@@ -180,6 +182,7 @@ static int  nfs_mount_diskless(struct nfs_dlmount *, const char *, int, vnode_t *
  static int     nfs_mount_diskless_private(struct nfs_dlmount *, const char *, int, vnode_t *, mount_t *, vfs_context_t);
  #endif /* NO_MOUNT_PRIVATE */
  int            nfs_mount_connect(struct nfsmount *);
  static int     nfs_mount_diskless_private(struct nfs_dlmount *, const char *, int, vnode_t *, mount_t *, vfs_context_t);
  #endif /* NO_MOUNT_PRIVATE */
  int            nfs_mount_connect(struct nfsmount *);
+void           nfs_mount_drain_and_cleanup(struct nfsmount *);
  void           nfs_mount_cleanup(struct nfsmount *);
  int            nfs_mountinfo_assemble(struct nfsmount *, struct xdrbuf *);
  int            nfs4_mount_update_path_with_symlink(struct nfsmount *, struct nfs_fs_path *, uint32_t, fhandle_t *, int *, fhandle_t *, vfs_context_t);
  void           nfs_mount_cleanup(struct nfsmount *);
  int            nfs_mountinfo_assemble(struct nfsmount *, struct xdrbuf *);
  int            nfs4_mount_update_path_with_symlink(struct nfsmount *, struct nfs_fs_path *, uint32_t, fhandle_t *, int *, fhandle_t *, vfs_context_t);
@@ -373,7 +376,10 @@ nfs3_update_statfs(struct nfsmount *nmp, vfs_context_t ctx)
         nfsm_chain_add_fh(error, &nmreq, nfsvers, np->n_fhp, np->n_fhsize);
         nfsm_chain_build_done(error, &nmreq);
         nfsmout_if(error);
         nfsm_chain_add_fh(error, &nmreq, nfsvers, np->n_fhp, np->n_fhsize);
         nfsm_chain_build_done(error, &nmreq);
         nfsmout_if(error);
-       error = nfs_request(np, NULL, &nmreq, NFSPROC_FSSTAT, ctx, NULL, &nmrep, &xid, &status);
+       error = nfs_request2(np, NULL, &nmreq, NFSPROC_FSSTAT, vfs_context_thread(ctx),
+               vfs_context_ucred(ctx), NULL, R_SOFT, &nmrep, &xid, &status);
+       if (error == ETIMEDOUT)
+               goto nfsmout;
         if ((lockerror = nfs_node_lock(np)))
                 error = lockerror;
         if (nfsvers == NFS_VER3)
         if ((lockerror = nfs_node_lock(np)))
                 error = lockerror;
         if (nfsvers == NFS_VER3)
@@ -461,7 +467,9 @@ nfs4_update_statfs(struct nfsmount *nmp, vfs_context_t ctx)
         nfsm_chain_build_done(error, &nmreq);
         nfsm_assert(error, (numops == 0), EPROTO);
         nfsmout_if(error);
         nfsm_chain_build_done(error, &nmreq);
         nfsm_assert(error, (numops == 0), EPROTO);
         nfsmout_if(error);
-       error = nfs_request(np, NULL, &nmreq, NFSPROC4_COMPOUND, ctx, &si, &nmrep, &xid, &status);
+       error = nfs_request2(np, NULL, &nmreq, NFSPROC4_COMPOUND,
+               vfs_context_thread(ctx), vfs_context_ucred(ctx),
+               NULL, R_SOFT, &nmrep, &xid, &status);
         nfsm_chain_skip_tag(error, &nmrep);
         nfsm_chain_get_32(error, &nmrep, numops);
         nfsm_chain_op_check(error, &nmrep, NFS_OP_PUTFH);
         nfsm_chain_skip_tag(error, &nmrep);
         nfsm_chain_get_32(error, &nmrep, numops);
         nfsm_chain_op_check(error, &nmrep, NFS_OP_PUTFH);
@@ -502,7 +510,8 @@ nfs_vfs_getattr(mount_t mp, struct vfs_attr *fsap, vfs_context_t ctx)
         uint32_t bsize;
         int error = 0, nfsvers;
  
         uint32_t bsize;
         int error = 0, nfsvers;
  
-       if (!(nmp = VFSTONFS(mp)))
+       nmp = VFSTONFS(mp);
+       if (nfs_mount_gone(nmp))
                 return (ENXIO);
         nfsvers = nmp->nm_vers;
  
                 return (ENXIO);
         nfsvers = nmp->nm_vers;
  
@@ -537,7 +546,7 @@ nfs_vfs_getattr(mount_t mp, struct vfs_attr *fsap, vfs_context_t ctx)
                         lck_mtx_unlock(&nmp->nm_lock);
                 }
  
                         lck_mtx_unlock(&nmp->nm_lock);
                 }
  
-               if (refresh)
+               if (refresh && !nfs_use_cache(nmp))
                         error = nmp->nm_funcs->nf_update_statfs(nmp, ctx);
                 if ((error == ESTALE) || (error == ETIMEDOUT))
                         error = 0;
                         error = nmp->nm_funcs->nf_update_statfs(nmp, ctx);
                 if ((error == ESTALE) || (error == ETIMEDOUT))
                         error = 0;
@@ -1309,6 +1318,7 @@ nfs_mount_diskless_private(
         strncpy(mp->mnt_vfsstat.f_fstypename, vfsp->vfc_name, MFSNAMELEN-1);
         vp->v_mountedhere = mp;
         mp->mnt_vnodecovered = vp;
         strncpy(mp->mnt_vfsstat.f_fstypename, vfsp->vfc_name, MFSNAMELEN-1);
         vp->v_mountedhere = mp;
         mp->mnt_vnodecovered = vp;
+       vp = NULLVP;
         mp->mnt_vfsstat.f_owner = kauth_cred_getuid(kauth_cred_get());
         (void) copystr(mntname, mp->mnt_vfsstat.f_mntonname, MAXPATHLEN - 1, 0);
         (void) copystr(ndmntp->ndm_mntfrom, mp->mnt_vfsstat.f_mntfromname, MAXPATHLEN - 1, 0);
         mp->mnt_vfsstat.f_owner = kauth_cred_getuid(kauth_cred_get());
         (void) copystr(mntname, mp->mnt_vfsstat.f_mntonname, MAXPATHLEN - 1, 0);
         (void) copystr(ndmntp->ndm_mntfrom, mp->mnt_vfsstat.f_mntfromname, MAXPATHLEN - 1, 0);
@@ -1424,6 +1434,7 @@ nfs_mount_diskless_private(
         /* do the mount */
         if ((error = mountnfs(xdrbuf, mp, ctx, &vp))) {
                 printf("nfs_mountroot: mount %s failed: %d\n", mntname, error);
         /* do the mount */
         if ((error = mountnfs(xdrbuf, mp, ctx, &vp))) {
                 printf("nfs_mountroot: mount %s failed: %d\n", mntname, error);
+               vnode_put(mp->mnt_vnodecovered);
                 mount_list_lock();
                 vfsp->vfc_refcount--;
                 mount_list_unlock();
                 mount_list_lock();
                 vfsp->vfc_refcount--;
                 mount_list_unlock();
@@ -2664,6 +2675,7 @@ mountnfs(
                 TAILQ_INIT(&nmp->nm_resendq);
                 TAILQ_INIT(&nmp->nm_iodq);
                 TAILQ_INIT(&nmp->nm_gsscl);
                 TAILQ_INIT(&nmp->nm_resendq);
                 TAILQ_INIT(&nmp->nm_iodq);
                 TAILQ_INIT(&nmp->nm_gsscl);
+               TAILQ_INIT(&nmp->nm_gssnccl);
                 LIST_INIT(&nmp->nm_monlist);
                 vfs_setfsprivate(mp, nmp);
                 vfs_getnewfsid(mp);
                 LIST_INIT(&nmp->nm_monlist);
                 vfs_setfsprivate(mp, nmp);
                 vfs_getnewfsid(mp);
@@ -2675,6 +2687,7 @@ mountnfs(
                 nmp->nm_args = xdrbuf;
  
                 /* set up defaults */
                 nmp->nm_args = xdrbuf;
  
                 /* set up defaults */
+               nmp->nm_ref = 0;
                 nmp->nm_vers = 0;
                 nmp->nm_timeo = NFS_TIMEO;
                 nmp->nm_retry = NFS_RETRANS;
                 nmp->nm_vers = 0;
                 nmp->nm_timeo = NFS_TIMEO;
                 nmp->nm_retry = NFS_RETRANS;
@@ -2697,9 +2710,13 @@ mountnfs(
                 nmp->nm_acdirmin = NFS_MINDIRATTRTIMO;
                 nmp->nm_acdirmax = NFS_MAXDIRATTRTIMO;
                 nmp->nm_auth = RPCAUTH_SYS;
                 nmp->nm_acdirmin = NFS_MINDIRATTRTIMO;
                 nmp->nm_acdirmax = NFS_MAXDIRATTRTIMO;
                 nmp->nm_auth = RPCAUTH_SYS;
+               nmp->nm_iodlink.tqe_next = NFSNOLIST;
                 nmp->nm_deadtimeout = 0;
                 nmp->nm_curdeadtimeout = 0;
                 NFS_BITMAP_SET(nmp->nm_flags, NFS_MFLAG_NOACL);
                 nmp->nm_deadtimeout = 0;
                 nmp->nm_curdeadtimeout = 0;
                 NFS_BITMAP_SET(nmp->nm_flags, NFS_MFLAG_NOACL);
+               nmp->nm_realm = NULL;
+               nmp->nm_principal = NULL;
+               nmp->nm_sprinc = NULL;
         }
  
         mattrs = nmp->nm_mattrs;
         }
  
         mattrs = nmp->nm_mattrs;
@@ -3040,6 +3057,50 @@ mountnfs(
         }
         nfsmerr_if(error);
  
         }
         nfsmerr_if(error);
  
+       if (NFS_BITMAP_ISSET(mattrs, NFS_MATTR_REALM)) {
+               xb_get_32(error, &xb, len);
+               if (!error && ((len < 1) || (len > MAXPATHLEN)))
+                       error=EINVAL;
+               nfsmerr_if(error);
+               /* allocate an extra byte for a leading '@' if its not already prepended to the realm */
+               MALLOC(nmp->nm_realm, char *, len+2, M_TEMP, M_WAITOK|M_ZERO);
+               if (!nmp->nm_realm)
+                       error = ENOMEM;
+               nfsmerr_if(error);
+               error = xb_get_bytes(&xb, nmp->nm_realm, len, 0);
+               if (error == 0 && *nmp->nm_realm != '@') {
+                       bcopy(nmp->nm_realm, &nmp->nm_realm[1], len);
+                       nmp->nm_realm[0] = '@';
+               }
+       }
+       nfsmerr_if(error);
+
+       if (NFS_BITMAP_ISSET(mattrs, NFS_MATTR_PRINCIPAL)) {
+               xb_get_32(error, &xb, len);
+               if (!error && ((len < 1) || (len > MAXPATHLEN)))
+                       error=EINVAL;
+               nfsmerr_if(error);
+               MALLOC(nmp->nm_principal, char *, len+1, M_TEMP, M_WAITOK|M_ZERO);
+               if (!nmp->nm_principal)
+                       error = ENOMEM;
+               nfsmerr_if(error);
+               error = xb_get_bytes(&xb, nmp->nm_principal, len, 0);
+       }
+       nfsmerr_if(error);
+
+       if (NFS_BITMAP_ISSET(mattrs, NFS_MATTR_SVCPRINCIPAL)) {
+               xb_get_32(error, &xb, len);
+               if (!error && ((len < 1) || (len > MAXPATHLEN)))
+                       error=EINVAL;
+               nfsmerr_if(error);
+               MALLOC(nmp->nm_sprinc, char *, len+1, M_TEMP, M_WAITOK|M_ZERO);
+               if (!nmp->nm_sprinc)
+                       error = ENOMEM;
+               nfsmerr_if(error);
+               error = xb_get_bytes(&xb, nmp->nm_sprinc, len, 0);
+       }
+       nfsmerr_if(error);
+
         /*
          * Sanity check/finalize settings.
          */
         /*
          * Sanity check/finalize settings.
          */
@@ -3109,8 +3170,6 @@ mountnfs(
                 NFS_BITMAP_CLR(nmp->nm_flags, NFS_MFLAG_NONAMEDATTR);
                 NFS_BITMAP_CLR(nmp->nm_flags, NFS_MFLAG_NOACL);
                 NFS_BITMAP_CLR(nmp->nm_flags, NFS_MFLAG_ACLONLY);
                 NFS_BITMAP_CLR(nmp->nm_flags, NFS_MFLAG_NONAMEDATTR);
                 NFS_BITMAP_CLR(nmp->nm_flags, NFS_MFLAG_NOACL);
                 NFS_BITMAP_CLR(nmp->nm_flags, NFS_MFLAG_ACLONLY);
-               if (IS_VALID_CRED(nmp->nm_mcred))
-                       kauth_cred_unref(&nmp->nm_mcred);
         }
         nfsmerr_if(error);
  
         }
         nfsmerr_if(error);
  
@@ -3270,7 +3329,7 @@ nfs_mirror_mount_domount(vnode_t dvp, vnode_t vp, vfs_context_t ctx)
  
         xb_init(&xbnew, 0);
  
  
         xb_init(&xbnew, 0);
  
-       if (!nmp || (nmp->nm_state & NFSSTA_FORCE))
+       if (!nmp || (nmp->nm_state & (NFSSTA_FORCE|NFSSTA_DEAD)))
                 return (ENXIO);
  
         /* allocate a couple path buffers we need */
                 return (ENXIO);
  
         /* allocate a couple path buffers we need */
@@ -4137,7 +4196,9 @@ nfs_vfs_unmount(
  
         vflush(mp, NULLVP, FORCECLOSE);
  
  
         vflush(mp, NULLVP, FORCECLOSE);
  
-       nfs_mount_cleanup(nmp);
+       /* Wait for all other references to be released and free the mount */
+       nfs_mount_drain_and_cleanup(nmp);
+       
         return (0);
  }
  
         return (0);
  }
  
@@ -4189,11 +4250,40 @@ nfs_fs_locations_cleanup(struct nfs_fs_locations *nfslsp)
         nfslsp->nl_locations = NULL;
  }
  
         nfslsp->nl_locations = NULL;
  }
  
+void
+nfs_mount_rele(struct nfsmount *nmp)
+{
+       int wup = 0;
+
+       lck_mtx_lock(&nmp->nm_lock);
+       if (nmp->nm_ref < 1)
+               panic("nfs zombie mount underflow\n");
+       nmp->nm_ref--;
+       if (nmp->nm_ref == 0)
+               wup = nmp->nm_state & NFSSTA_MOUNT_DRAIN;
+       lck_mtx_unlock(&nmp->nm_lock);
+       if (wup)
+               wakeup(&nmp->nm_ref);
+}
+
+void
+nfs_mount_drain_and_cleanup(struct nfsmount *nmp)
+{
+       lck_mtx_lock(&nmp->nm_lock);
+       nmp->nm_state |= NFSSTA_MOUNT_DRAIN;
+       while (nmp->nm_ref > 0) {
+               msleep(&nmp->nm_ref, &nmp->nm_lock, PZERO-1, "nfs_mount_drain", NULL);
+       }
+       assert(nmp->nm_ref == 0);
+       lck_mtx_unlock(&nmp->nm_lock);
+       nfs_mount_cleanup(nmp);
+}
+
  /*
  /*
- * cleanup/destroy an nfsmount
+ * nfs_mount_zombie
   */
  void
   */
  void
-nfs_mount_cleanup(struct nfsmount *nmp)
+nfs_mount_zombie(struct nfsmount *nmp, int nm_state_flags)
  {
         struct nfsreq *req, *treq;
         struct nfs_reqqhead iodq;
  {
         struct nfsreq *req, *treq;
         struct nfs_reqqhead iodq;
@@ -4202,13 +4292,17 @@ nfs_mount_cleanup(struct nfsmount *nmp)
         nfsnode_t np;
         int docallback;
  
         nfsnode_t np;
         int docallback;
  
+       lck_mtx_lock(&nmp->nm_lock);
+       nmp->nm_state |= nm_state_flags;
+       nmp->nm_ref++;
+       lck_mtx_unlock(&nmp->nm_lock);
+       
         /* stop callbacks */
         if ((nmp->nm_vers >= NFS_VER4) && !NMFLAG(nmp, NOCALLBACK) && nmp->nm_cbid)
                 nfs4_mount_callback_shutdown(nmp);
  
         /* Destroy any RPCSEC_GSS contexts */
         /* stop callbacks */
         if ((nmp->nm_vers >= NFS_VER4) && !NMFLAG(nmp, NOCALLBACK) && nmp->nm_cbid)
                 nfs4_mount_callback_shutdown(nmp);
  
         /* Destroy any RPCSEC_GSS contexts */
-       if (!TAILQ_EMPTY(&nmp->nm_gsscl))
-               nfs_gss_clnt_ctx_unmount(nmp);
+       nfs_gss_clnt_ctx_unmount(nmp);
  
         /* mark the socket for termination */
         lck_mtx_lock(&nmp->nm_lock);
  
         /* mark the socket for termination */
         lck_mtx_lock(&nmp->nm_lock);
@@ -4216,23 +4310,19 @@ nfs_mount_cleanup(struct nfsmount *nmp)
  
         /* Have the socket thread send the unmount RPC, if requested/appropriate. */
         if ((nmp->nm_vers < NFS_VER4) && (nmp->nm_state & NFSSTA_MOUNTED) &&
  
         /* Have the socket thread send the unmount RPC, if requested/appropriate. */
         if ((nmp->nm_vers < NFS_VER4) && (nmp->nm_state & NFSSTA_MOUNTED) &&
-           !(nmp->nm_state & NFSSTA_FORCE) && NMFLAG(nmp, CALLUMNT))
+           !(nmp->nm_state & (NFSSTA_FORCE|NFSSTA_DEAD)) && NMFLAG(nmp, CALLUMNT))
                 nfs_mount_sock_thread_wake(nmp);
  
         /* wait for the socket thread to terminate */
                 nfs_mount_sock_thread_wake(nmp);
  
         /* wait for the socket thread to terminate */
-       while (nmp->nm_sockthd) {
+       while (nmp->nm_sockthd && current_thread() != nmp->nm_sockthd) {
                 wakeup(&nmp->nm_sockthd);
                 msleep(&nmp->nm_sockthd, &nmp->nm_lock, PZERO-1, "nfswaitsockthd", &ts);
         }
                 wakeup(&nmp->nm_sockthd);
                 msleep(&nmp->nm_sockthd, &nmp->nm_lock, PZERO-1, "nfswaitsockthd", &ts);
         }
-
         lck_mtx_unlock(&nmp->nm_lock);
  
         /* tear down the socket */
         nfs_disconnect(nmp);
  
         lck_mtx_unlock(&nmp->nm_lock);
  
         /* tear down the socket */
         nfs_disconnect(nmp);
  
-       if (nmp->nm_mountp)
-               vfs_setfsprivate(nmp->nm_mountp, NULL);
-
         lck_mtx_lock(&nmp->nm_lock);
  
         if ((nmp->nm_vers >= NFS_VER4) && !NMFLAG(nmp, NOCALLBACK) && nmp->nm_cbid) {
         lck_mtx_lock(&nmp->nm_lock);
  
         if ((nmp->nm_vers >= NFS_VER4) && !NMFLAG(nmp, NOCALLBACK) && nmp->nm_cbid) {
@@ -4249,10 +4339,6 @@ nfs_mount_cleanup(struct nfsmount *nmp)
                 thread_call_free(nmp->nm_renew_timer);
         }
  
                 thread_call_free(nmp->nm_renew_timer);
         }
  
-       if (nmp->nm_saddr)
-               FREE(nmp->nm_saddr, M_SONAME);
-       if ((nmp->nm_vers < NFS_VER4) && nmp->nm_rqsaddr)
-               FREE(nmp->nm_rqsaddr, M_SONAME);
         lck_mtx_unlock(&nmp->nm_lock);
  
         if (nmp->nm_state & NFSSTA_MOUNTED)
         lck_mtx_unlock(&nmp->nm_lock);
  
         if (nmp->nm_state & NFSSTA_MOUNTED)
@@ -4262,8 +4348,10 @@ nfs_mount_cleanup(struct nfsmount *nmp)
                         break;
                 case NFS_LOCK_MODE_ENABLED:
                 default:
                         break;
                 case NFS_LOCK_MODE_ENABLED:
                 default:
-                       if (nmp->nm_vers <= NFS_VER3)
+                       if (nmp->nm_vers <= NFS_VER3) {
                                 nfs_lockd_mount_unregister(nmp);
                                 nfs_lockd_mount_unregister(nmp);
+                               nmp->nm_lockmode = NFS_LOCK_MODE_DISABLED;
+                       }
                         break;
                 }
  
                         break;
                 }
  
@@ -4285,27 +4373,14 @@ nfs_mount_cleanup(struct nfsmount *nmp)
         lck_mtx_lock(nfs_request_mutex);
         TAILQ_FOREACH(req, &nfs_reqq, r_chain) {
                 if (req->r_nmp == nmp) {
         lck_mtx_lock(nfs_request_mutex);
         TAILQ_FOREACH(req, &nfs_reqq, r_chain) {
                 if (req->r_nmp == nmp) {
-                       lck_mtx_lock(&req->r_mtx);
-                       req->r_nmp = NULL;
-                       lck_mtx_unlock(&req->r_mtx);
-                       if (req->r_callback.rcb_func) {
+                       if (req->r_callback.rcb_func && !(req->r_flags & R_WAITSENT)) {
                                 /* async I/O RPC needs to be finished */
                                 lck_mtx_lock(nfsiod_mutex);
                                 /* async I/O RPC needs to be finished */
                                 lck_mtx_lock(nfsiod_mutex);
-                               if (req->r_achain.tqe_next == NFSREQNOLIST)
+                               if (req->r_achain.tqe_next == NFSREQNOLIST) {
                                         TAILQ_INSERT_TAIL(&iodq, req, r_achain);
                                         TAILQ_INSERT_TAIL(&iodq, req, r_achain);
-                               lck_mtx_unlock(nfsiod_mutex);
-                       }
-                       lck_mtx_lock(&req->r_mtx);
-                       lck_mtx_lock(&nmp->nm_lock);
-                       if (req->r_flags & R_RESENDQ) {
-                               if (req->r_rchain.tqe_next != NFSREQNOLIST) {
-                                       TAILQ_REMOVE(&nmp->nm_resendq, req, r_rchain);
-                                       req->r_rchain.tqe_next = NFSREQNOLIST;
                                 }
                                 }
-                               req->r_flags &= ~R_RESENDQ;
+                               lck_mtx_unlock(nfsiod_mutex);
                         }
                         }
-                       lck_mtx_unlock(&nmp->nm_lock);
-                       lck_mtx_unlock(&req->r_mtx);
                         wakeup(req);
                 }
         }
                         wakeup(req);
                 }
         }
@@ -4313,11 +4388,15 @@ nfs_mount_cleanup(struct nfsmount *nmp)
  
         /* finish any async I/O RPCs queued up */
         lck_mtx_lock(nfsiod_mutex);
  
         /* finish any async I/O RPCs queued up */
         lck_mtx_lock(nfsiod_mutex);
+       if (nmp->nm_iodlink.tqe_next != NFSNOLIST)
+               TAILQ_REMOVE(&nfsiodmounts, nmp, nm_iodlink);
         TAILQ_CONCAT(&iodq, &nmp->nm_iodq, r_achain);
         lck_mtx_unlock(nfsiod_mutex);
         TAILQ_FOREACH_SAFE(req, &iodq, r_achain, treq) {
                 TAILQ_REMOVE(&iodq, req, r_achain);
         TAILQ_CONCAT(&iodq, &nmp->nm_iodq, r_achain);
         lck_mtx_unlock(nfsiod_mutex);
         TAILQ_FOREACH_SAFE(req, &iodq, r_achain, treq) {
                 TAILQ_REMOVE(&iodq, req, r_achain);
-               req->r_achain.tqe_next = NFSREQNOLIST;
+               lck_mtx_lock(nfsiod_mutex);
+               req->r_achain.tqe_next = NFSIODCOMPLETING;
+               lck_mtx_unlock(nfsiod_mutex);
                 lck_mtx_lock(&req->r_mtx);
                 req->r_error = ENXIO;
                 docallback = !(req->r_flags & R_WAITSENT);
                 lck_mtx_lock(&req->r_mtx);
                 req->r_error = ENXIO;
                 docallback = !(req->r_flags & R_WAITSENT);
@@ -4350,13 +4429,58 @@ nfs_mount_cleanup(struct nfsmount *nmp)
                 }
                 lck_mtx_unlock(&nmp->nm_lock);
         }
                 }
                 lck_mtx_unlock(&nmp->nm_lock);
         }
+
+       nfs_mount_rele(nmp);
+}
+
+/*
+ * cleanup/destroy an nfsmount
+ */
+void
+nfs_mount_cleanup(struct nfsmount *nmp)
+{
+       if (!nmp)
+               return;
+
+       nfs_mount_zombie(nmp, 0);
+
+       NFS_VFS_DBG("Unmounting %s from %s\n",
+                   vfs_statfs(nmp->nm_mountp)->f_mntfromname,
+                   vfs_statfs(nmp->nm_mountp)->f_mntonname);
+       NFS_VFS_DBG("nfs state = %x\n", nmp->nm_state);
+       NFS_VFS_DBG("nfs socket flags = %x\n", nmp->nm_sockflags);
+       NFS_VFS_DBG("nfs mount ref count is %d\n", nmp->nm_ref);
+       NFS_VFS_DBG("mount ref count is %d\n", nmp->nm_mountp->mnt_count);
+       
+       if (nmp->nm_mountp)
+               vfs_setfsprivate(nmp->nm_mountp, NULL);
+
+       lck_mtx_lock(&nmp->nm_lock);
+       if (nmp->nm_ref)
+               panic("Some one has grabbed a ref %d\n", nmp->nm_ref);
+
+       if (nmp->nm_saddr)
+               FREE(nmp->nm_saddr, M_SONAME);
+       if ((nmp->nm_vers < NFS_VER4) && nmp->nm_rqsaddr)
+               FREE(nmp->nm_rqsaddr, M_SONAME);
+
         if (IS_VALID_CRED(nmp->nm_mcred))
                 kauth_cred_unref(&nmp->nm_mcred);
  
         nfs_fs_locations_cleanup(&nmp->nm_locations);
  
         if (IS_VALID_CRED(nmp->nm_mcred))
                 kauth_cred_unref(&nmp->nm_mcred);
  
         nfs_fs_locations_cleanup(&nmp->nm_locations);
  
+       if (nmp->nm_realm)
+               FREE(nmp->nm_realm, M_TEMP);
+       if (nmp->nm_principal)
+               FREE(nmp->nm_principal, M_TEMP);
+       if (nmp->nm_sprinc)
+               FREE(nmp->nm_sprinc, M_TEMP);
+       
         if (nmp->nm_args)
                 xb_free(nmp->nm_args);
         if (nmp->nm_args)
                 xb_free(nmp->nm_args);
+
+       lck_mtx_unlock(&nmp->nm_lock);
+       
         lck_mtx_destroy(&nmp->nm_lock, nfs_mount_grp);
         if (nmp->nm_fh)
                 FREE(nmp->nm_fh, M_TEMP);
         lck_mtx_destroy(&nmp->nm_lock, nfs_mount_grp);
         if (nmp->nm_fh)
                 FREE(nmp->nm_fh, M_TEMP);
@@ -4613,7 +4737,8 @@ nfs_vfs_quotactl(mount_t mp, int cmds, uid_t uid, caddr_t datap, vfs_context_t c
         uid_t euid = kauth_cred_getuid(vfs_context_ucred(ctx));
         struct dqblk *dqb = (struct dqblk*)datap;
  
         uid_t euid = kauth_cred_getuid(vfs_context_ucred(ctx));
         struct dqblk *dqb = (struct dqblk*)datap;
  
-       if (!(nmp = VFSTONFS(mp)))
+       nmp = VFSTONFS(mp);
+       if (nfs_mount_gone(nmp))
                 return (ENXIO);
         nfsvers = nmp->nm_vers;
  
                 return (ENXIO);
         nfsvers = nmp->nm_vers;
  
@@ -4839,7 +4964,13 @@ nfs_mountinfo_assemble(struct nfsmount *nmp, struct xdrbuf *xb)
         NFS_BITMAP_SET(mattrs, NFS_MATTR_MNTFLAGS);
         if (origargsvers < NFS_ARGSVERSION_XDR)
                 NFS_BITMAP_SET(mattrs, NFS_MATTR_MNTFROM);
         NFS_BITMAP_SET(mattrs, NFS_MATTR_MNTFLAGS);
         if (origargsvers < NFS_ARGSVERSION_XDR)
                 NFS_BITMAP_SET(mattrs, NFS_MATTR_MNTFROM);
-
+       if (nmp->nm_realm)
+               NFS_BITMAP_SET(mattrs, NFS_MATTR_REALM);
+       if (nmp->nm_principal)
+               NFS_BITMAP_SET(mattrs, NFS_MATTR_PRINCIPAL);
+       if (nmp->nm_sprinc)
+               NFS_BITMAP_SET(mattrs, NFS_MATTR_SVCPRINCIPAL);
+       
         /* set up current mount flags bitmap */
         /* first set the flags that we will be setting - either on OR off */
         NFS_BITMAP_ZERO(mflags_mask, NFS_MFLAG_BITMAP_LEN);
         /* set up current mount flags bitmap */
         /* first set the flags that we will be setting - either on OR off */
         NFS_BITMAP_ZERO(mflags_mask, NFS_MFLAG_BITMAP_LEN);
@@ -5007,6 +5138,13 @@ nfs_mountinfo_assemble(struct nfsmount *nmp, struct xdrbuf *xb)
         if (origargsvers < NFS_ARGSVERSION_XDR)
                 xb_add_string(error, &xbinfo, vfs_statfs(nmp->nm_mountp)->f_mntfromname,
                         strlen(vfs_statfs(nmp->nm_mountp)->f_mntfromname));     /* MNTFROM */
         if (origargsvers < NFS_ARGSVERSION_XDR)
                 xb_add_string(error, &xbinfo, vfs_statfs(nmp->nm_mountp)->f_mntfromname,
                         strlen(vfs_statfs(nmp->nm_mountp)->f_mntfromname));     /* MNTFROM */
+       if (NFS_BITMAP_ISSET(mattrs, NFS_MATTR_REALM))
+               xb_add_string(error, &xbinfo, nmp->nm_realm, strlen(nmp->nm_realm));
+       if (NFS_BITMAP_ISSET(mattrs, NFS_MATTR_PRINCIPAL))
+               xb_add_string(error, &xbinfo, nmp->nm_principal, strlen(nmp->nm_principal));
+       if (NFS_BITMAP_ISSET(mattrs, NFS_MATTR_SVCPRINCIPAL))
+               xb_add_string(error, &xbinfo, nmp->nm_sprinc, strlen(nmp->nm_sprinc));
+
         curargs_end_offset = xb_offset(&xbinfo);
  
         /* NFS_MIATTR_CUR_LOC_INDEX */
         curargs_end_offset = xb_offset(&xbinfo);
  
         /* NFS_MIATTR_CUR_LOC_INDEX */
@@ -5054,15 +5192,20 @@ int
  nfs_vfs_sysctl(int *name, u_int namelen, user_addr_t oldp, size_t *oldlenp,
             user_addr_t newp, size_t newlen, vfs_context_t ctx)
  {
  nfs_vfs_sysctl(int *name, u_int namelen, user_addr_t oldp, size_t *oldlenp,
             user_addr_t newp, size_t newlen, vfs_context_t ctx)
  {
-       int error = 0, val, softnobrowse;
+       int error = 0, val;
+       int softnobrowse;
         struct sysctl_req *req = NULL;
         union union_vfsidctl vc;
         mount_t mp;
         struct nfsmount *nmp = NULL;
         struct vfsquery vq;
         struct sysctl_req *req = NULL;
         union union_vfsidctl vc;
         mount_t mp;
         struct nfsmount *nmp = NULL;
         struct vfsquery vq;
+       struct nfsreq *rq;
         boolean_t is_64_bit;
         fsid_t fsid;
         struct xdrbuf xb;
         boolean_t is_64_bit;
         fsid_t fsid;
         struct xdrbuf xb;
+       struct netfs_status *nsp = NULL;
+       int timeoutmask;
+       uint pos, totlen, count, numThreads;
  #if NFSSERVER
         struct nfs_exportfs *nxfs;
         struct nfs_export *nx;
  #if NFSSERVER
         struct nfs_exportfs *nxfs;
         struct nfs_export *nx;
@@ -5074,7 +5217,7 @@ nfs_vfs_sysctl(int *name, u_int namelen, user_addr_t oldp, size_t *oldlenp,
         struct nfs_user_stat_user_rec ustat_rec;
         struct nfs_user_stat_path_rec upath_rec;
         uint bytes_avail, bytes_total, recs_copied;
         struct nfs_user_stat_user_rec ustat_rec;
         struct nfs_user_stat_path_rec upath_rec;
         uint bytes_avail, bytes_total, recs_copied;
-       uint numExports, totlen, pos, numRecs, count;
+       uint numExports, numRecs;
  #endif /* NFSSERVER */
  
         /*
  #endif /* NFSSERVER */
  
         /*
@@ -5088,9 +5231,13 @@ nfs_vfs_sysctl(int *name, u_int namelen, user_addr_t oldp, size_t *oldlenp,
         /* common code for "new style" VFS_CTL sysctl, get the mount. */
         switch (name[0]) {
         case VFS_CTL_TIMEO:
         /* common code for "new style" VFS_CTL sysctl, get the mount. */
         switch (name[0]) {
         case VFS_CTL_TIMEO:
-       case VFS_CTL_QUERY:
         case VFS_CTL_NOLOCKS:
         case VFS_CTL_NOLOCKS:
+       case VFS_CTL_NSTATUS:
+       case VFS_CTL_QUERY:
                 req = CAST_DOWN(struct sysctl_req *, oldp);
                 req = CAST_DOWN(struct sysctl_req *, oldp);
+               if (req == NULL) {
+                       return EFAULT;
+               }
                 error = SYSCTL_IN(req, &vc, is_64_bit? sizeof(vc.vc64):sizeof(vc.vc32));
                 if (error)
                         return (error);
                 error = SYSCTL_IN(req, &vc, is_64_bit? sizeof(vc.vc64):sizeof(vc.vc32));
                 if (error)
                         return (error);
@@ -5098,7 +5245,7 @@ nfs_vfs_sysctl(int *name, u_int namelen, user_addr_t oldp, size_t *oldlenp,
                 if (mp == NULL)
                         return (ENOENT);
                 nmp = VFSTONFS(mp);
                 if (mp == NULL)
                         return (ENOENT);
                 nmp = VFSTONFS(mp);
-               if (nmp == NULL)
+               if (!nmp)
                         return (ENOENT);
                 bzero(&vq, sizeof(vq));
                 req->newidx = 0;
                         return (ENOENT);
                 bzero(&vq, sizeof(vq));
                 req->newidx = 0;
@@ -5109,6 +5256,7 @@ nfs_vfs_sysctl(int *name, u_int namelen, user_addr_t oldp, size_t *oldlenp,
                         req->newptr = CAST_USER_ADDR_T(vc.vc32.vc_ptr);
                         req->newlen = vc.vc32.vc_len;
                 }
                         req->newptr = CAST_USER_ADDR_T(vc.vc32.vc_ptr);
                         req->newlen = vc.vc32.vc_len;
                 }
+               break;
         }
  
         switch(name[0]) {
         }
  
         switch(name[0]) {
@@ -5470,6 +5618,88 @@ ustat_skip:
                         lck_mtx_unlock(&nmp->nm_lock);
                 }
                 break;
                         lck_mtx_unlock(&nmp->nm_lock);
                 }
                 break;
+       case VFS_CTL_NSTATUS:
+               /*
+                * Return the status of this mount.  This is much more
+                * information than VFS_CTL_QUERY.  In addition to the
+                * vq_flags return the significant mount options along
+                * with the list of threads blocked on the mount and
+                * how long the threads have been waiting.
+                */
+
+               lck_mtx_lock(nfs_request_mutex);
+               lck_mtx_lock(&nmp->nm_lock);
+
+               /*
+                * Count the number of requests waiting for a reply.
+                * Note: there could be multiple requests from the same thread.
+                */
+               numThreads = 0;
+               TAILQ_FOREACH(rq, &nfs_reqq, r_chain) {
+                       if (rq->r_nmp == nmp)
+                               numThreads++;
+               }
+
+               /* Calculate total size of result buffer */
+               totlen = sizeof(struct netfs_status) + (numThreads * sizeof(uint64_t));
+
+               if (req->oldptr == USER_ADDR_NULL) {            // Caller is querying buffer size
+                       lck_mtx_unlock(&nmp->nm_lock);
+                       lck_mtx_unlock(nfs_request_mutex);
+                       return SYSCTL_OUT(req, NULL, totlen);
+               }
+               if (req->oldlen < totlen) {     // Check if caller's buffer is big enough
+                       lck_mtx_unlock(&nmp->nm_lock);
+                       lck_mtx_unlock(nfs_request_mutex);
+                       return (ERANGE);
+               }
+
+               MALLOC(nsp, struct netfs_status *, totlen, M_TEMP, M_WAITOK|M_ZERO);
+               if (nsp == NULL) {
+                       lck_mtx_unlock(&nmp->nm_lock);
+                       lck_mtx_unlock(nfs_request_mutex);
+                       return (ENOMEM);
+               }
+               timeoutmask = NFSSTA_TIMEO | NFSSTA_LOCKTIMEO | NFSSTA_JUKEBOXTIMEO;
+               if (nmp->nm_state & timeoutmask)
+                       nsp->ns_status |= VQ_NOTRESP;
+               if (nmp->nm_state & NFSSTA_DEAD)
+                       nsp->ns_status |= VQ_DEAD;
+
+               (void) nfs_mountopts(nmp, nsp->ns_mountopts, sizeof(nsp->ns_mountopts));
+               nsp->ns_threadcount = numThreads;
+               
+               /*
+                * Get the thread ids of threads waiting for a reply
+                * and find the longest wait time.
+                */
+               if (numThreads > 0) {
+                       struct timeval now;
+                       time_t sendtime;
+
+                       microuptime(&now);
+                       count = 0;
+                       sendtime = now.tv_sec;
+                       TAILQ_FOREACH(rq, &nfs_reqq, r_chain) {
+                               if (rq->r_nmp == nmp) {
+                                       if (rq->r_start < sendtime)
+                                               sendtime = rq->r_start;
+                                       // A thread_id of zero is used to represent an async I/O request.
+                                       nsp->ns_threadids[count] =
+                                               rq->r_thread ? thread_tid(rq->r_thread) : 0;
+                                       if (++count >= numThreads)
+                                               break;
+                               }
+                       }
+                       nsp->ns_waittime = now.tv_sec - sendtime;
+               }
+
+               lck_mtx_unlock(&nmp->nm_lock);
+               lck_mtx_unlock(nfs_request_mutex);
+
+               error = SYSCTL_OUT(req, nsp, totlen);
+               FREE(nsp, M_TEMP);
+               break;
         default:
                 return (ENOTSUP);
         }
         default:
                 return (ENOTSUP);
         }