diff options
Diffstat (limited to 'fs/cifs/transport.c')
| -rw-r--r-- | fs/cifs/transport.c | 47 |
1 files changed, 21 insertions, 26 deletions
diff --git a/fs/cifs/transport.c b/fs/cifs/transport.c index 46d8756f2b24..19df0e5af122 100644 --- a/fs/cifs/transport.c +++ b/fs/cifs/transport.c | |||
| @@ -129,7 +129,7 @@ smb_sendv(struct TCP_Server_Info *server, struct kvec *iov, int n_vec) | |||
| 129 | unsigned int len = iov[0].iov_len; | 129 | unsigned int len = iov[0].iov_len; |
| 130 | unsigned int total_len; | 130 | unsigned int total_len; |
| 131 | int first_vec = 0; | 131 | int first_vec = 0; |
| 132 | unsigned int smb_buf_length = smb_buffer->smb_buf_length; | 132 | unsigned int smb_buf_length = be32_to_cpu(smb_buffer->smb_buf_length); |
| 133 | struct socket *ssocket = server->ssocket; | 133 | struct socket *ssocket = server->ssocket; |
| 134 | 134 | ||
| 135 | if (ssocket == NULL) | 135 | if (ssocket == NULL) |
| @@ -144,17 +144,10 @@ smb_sendv(struct TCP_Server_Info *server, struct kvec *iov, int n_vec) | |||
| 144 | else | 144 | else |
| 145 | smb_msg.msg_flags = MSG_NOSIGNAL; | 145 | smb_msg.msg_flags = MSG_NOSIGNAL; |
| 146 | 146 | ||
| 147 | /* smb header is converted in header_assemble. bcc and rest of SMB word | ||
| 148 | area, and byte area if necessary, is converted to littleendian in | ||
| 149 | cifssmb.c and RFC1001 len is converted to bigendian in smb_send | ||
| 150 | Flags2 is converted in SendReceive */ | ||
| 151 | |||
| 152 | |||
| 153 | total_len = 0; | 147 | total_len = 0; |
| 154 | for (i = 0; i < n_vec; i++) | 148 | for (i = 0; i < n_vec; i++) |
| 155 | total_len += iov[i].iov_len; | 149 | total_len += iov[i].iov_len; |
| 156 | 150 | ||
| 157 | smb_buffer->smb_buf_length = cpu_to_be32(smb_buffer->smb_buf_length); | ||
| 158 | cFYI(1, "Sending smb: total_len %d", total_len); | 151 | cFYI(1, "Sending smb: total_len %d", total_len); |
| 159 | dump_smb(smb_buffer, len); | 152 | dump_smb(smb_buffer, len); |
| 160 | 153 | ||
| @@ -243,7 +236,7 @@ smb_sendv(struct TCP_Server_Info *server, struct kvec *iov, int n_vec) | |||
| 243 | 236 | ||
| 244 | /* Don't want to modify the buffer as a | 237 | /* Don't want to modify the buffer as a |
| 245 | side effect of this call. */ | 238 | side effect of this call. */ |
| 246 | smb_buffer->smb_buf_length = smb_buf_length; | 239 | smb_buffer->smb_buf_length = cpu_to_be32(smb_buf_length); |
| 247 | 240 | ||
| 248 | return rc; | 241 | return rc; |
| 249 | } | 242 | } |
| @@ -387,7 +380,7 @@ cifs_call_async(struct TCP_Server_Info *server, struct smb_hdr *in_buf, | |||
| 387 | #ifdef CONFIG_CIFS_STATS2 | 380 | #ifdef CONFIG_CIFS_STATS2 |
| 388 | atomic_inc(&server->inSend); | 381 | atomic_inc(&server->inSend); |
| 389 | #endif | 382 | #endif |
| 390 | rc = smb_send(server, in_buf, in_buf->smb_buf_length); | 383 | rc = smb_send(server, in_buf, be32_to_cpu(in_buf->smb_buf_length)); |
| 391 | #ifdef CONFIG_CIFS_STATS2 | 384 | #ifdef CONFIG_CIFS_STATS2 |
| 392 | atomic_dec(&server->inSend); | 385 | atomic_dec(&server->inSend); |
| 393 | mid->when_sent = jiffies; | 386 | mid->when_sent = jiffies; |
| @@ -422,7 +415,7 @@ SendReceiveNoRsp(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 422 | int resp_buf_type; | 415 | int resp_buf_type; |
| 423 | 416 | ||
| 424 | iov[0].iov_base = (char *)in_buf; | 417 | iov[0].iov_base = (char *)in_buf; |
| 425 | iov[0].iov_len = in_buf->smb_buf_length + 4; | 418 | iov[0].iov_len = be32_to_cpu(in_buf->smb_buf_length) + 4; |
| 426 | flags |= CIFS_NO_RESP; | 419 | flags |= CIFS_NO_RESP; |
| 427 | rc = SendReceive2(xid, ses, iov, 1, &resp_buf_type, flags); | 420 | rc = SendReceive2(xid, ses, iov, 1, &resp_buf_type, flags); |
| 428 | cFYI(DBG2, "SendRcvNoRsp flags %d rc %d", flags, rc); | 421 | cFYI(DBG2, "SendRcvNoRsp flags %d rc %d", flags, rc); |
| @@ -488,7 +481,7 @@ send_nt_cancel(struct TCP_Server_Info *server, struct smb_hdr *in_buf, | |||
| 488 | int rc = 0; | 481 | int rc = 0; |
| 489 | 482 | ||
| 490 | /* -4 for RFC1001 length and +2 for BCC field */ | 483 | /* -4 for RFC1001 length and +2 for BCC field */ |
| 491 | in_buf->smb_buf_length = sizeof(struct smb_hdr) - 4 + 2; | 484 | in_buf->smb_buf_length = cpu_to_be32(sizeof(struct smb_hdr) - 4 + 2); |
| 492 | in_buf->Command = SMB_COM_NT_CANCEL; | 485 | in_buf->Command = SMB_COM_NT_CANCEL; |
| 493 | in_buf->WordCount = 0; | 486 | in_buf->WordCount = 0; |
| 494 | put_bcc_le(0, in_buf); | 487 | put_bcc_le(0, in_buf); |
| @@ -499,7 +492,7 @@ send_nt_cancel(struct TCP_Server_Info *server, struct smb_hdr *in_buf, | |||
| 499 | mutex_unlock(&server->srv_mutex); | 492 | mutex_unlock(&server->srv_mutex); |
| 500 | return rc; | 493 | return rc; |
| 501 | } | 494 | } |
| 502 | rc = smb_send(server, in_buf, in_buf->smb_buf_length); | 495 | rc = smb_send(server, in_buf, be32_to_cpu(in_buf->smb_buf_length)); |
| 503 | mutex_unlock(&server->srv_mutex); | 496 | mutex_unlock(&server->srv_mutex); |
| 504 | 497 | ||
| 505 | cFYI(1, "issued NT_CANCEL for mid %u, rc = %d", | 498 | cFYI(1, "issued NT_CANCEL for mid %u, rc = %d", |
| @@ -612,7 +605,7 @@ SendReceive2(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 612 | return rc; | 605 | return rc; |
| 613 | } | 606 | } |
| 614 | 607 | ||
| 615 | receive_len = midQ->resp_buf->smb_buf_length; | 608 | receive_len = be32_to_cpu(midQ->resp_buf->smb_buf_length); |
| 616 | 609 | ||
| 617 | if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) { | 610 | if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) { |
| 618 | cERROR(1, "Frame too large received. Length: %d Xid: %d", | 611 | cERROR(1, "Frame too large received. Length: %d Xid: %d", |
| @@ -698,9 +691,10 @@ SendReceive(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 698 | to the same server. We may make this configurable later or | 691 | to the same server. We may make this configurable later or |
| 699 | use ses->maxReq */ | 692 | use ses->maxReq */ |
| 700 | 693 | ||
| 701 | if (in_buf->smb_buf_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) { | 694 | if (be32_to_cpu(in_buf->smb_buf_length) > CIFSMaxBufSize + |
| 695 | MAX_CIFS_HDR_SIZE - 4) { | ||
| 702 | cERROR(1, "Illegal length, greater than maximum frame, %d", | 696 | cERROR(1, "Illegal length, greater than maximum frame, %d", |
| 703 | in_buf->smb_buf_length); | 697 | be32_to_cpu(in_buf->smb_buf_length)); |
| 704 | return -EIO; | 698 | return -EIO; |
| 705 | } | 699 | } |
| 706 | 700 | ||
| @@ -733,7 +727,7 @@ SendReceive(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 733 | #ifdef CONFIG_CIFS_STATS2 | 727 | #ifdef CONFIG_CIFS_STATS2 |
| 734 | atomic_inc(&ses->server->inSend); | 728 | atomic_inc(&ses->server->inSend); |
| 735 | #endif | 729 | #endif |
| 736 | rc = smb_send(ses->server, in_buf, in_buf->smb_buf_length); | 730 | rc = smb_send(ses->server, in_buf, be32_to_cpu(in_buf->smb_buf_length)); |
| 737 | #ifdef CONFIG_CIFS_STATS2 | 731 | #ifdef CONFIG_CIFS_STATS2 |
| 738 | atomic_dec(&ses->server->inSend); | 732 | atomic_dec(&ses->server->inSend); |
| 739 | midQ->when_sent = jiffies; | 733 | midQ->when_sent = jiffies; |
| @@ -768,7 +762,7 @@ SendReceive(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 768 | return rc; | 762 | return rc; |
| 769 | } | 763 | } |
| 770 | 764 | ||
| 771 | receive_len = midQ->resp_buf->smb_buf_length; | 765 | receive_len = be32_to_cpu(midQ->resp_buf->smb_buf_length); |
| 772 | 766 | ||
| 773 | if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) { | 767 | if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) { |
| 774 | cERROR(1, "Frame too large received. Length: %d Xid: %d", | 768 | cERROR(1, "Frame too large received. Length: %d Xid: %d", |
| @@ -781,7 +775,7 @@ SendReceive(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 781 | 775 | ||
| 782 | if (midQ->resp_buf && out_buf | 776 | if (midQ->resp_buf && out_buf |
| 783 | && (midQ->midState == MID_RESPONSE_RECEIVED)) { | 777 | && (midQ->midState == MID_RESPONSE_RECEIVED)) { |
| 784 | out_buf->smb_buf_length = receive_len; | 778 | out_buf->smb_buf_length = cpu_to_be32(receive_len); |
| 785 | memcpy((char *)out_buf + 4, | 779 | memcpy((char *)out_buf + 4, |
| 786 | (char *)midQ->resp_buf + 4, | 780 | (char *)midQ->resp_buf + 4, |
| 787 | receive_len); | 781 | receive_len); |
| @@ -800,7 +794,7 @@ SendReceive(const unsigned int xid, struct cifsSesInfo *ses, | |||
| 800 | } | 794 | } |
| 801 | } | 795 | } |
| 802 | 796 | ||
| 803 | *pbytes_returned = out_buf->smb_buf_length; | 797 | *pbytes_returned = be32_to_cpu(out_buf->smb_buf_length); |
| 804 | 798 | ||
| 805 | /* BB special case reconnect tid and uid here? */ | 799 | /* BB special case reconnect tid and uid here? */ |
| 806 | rc = map_smb_to_linux_error(out_buf, 0 /* no log */ ); | 800 | rc = map_smb_to_linux_error(out_buf, 0 /* no log */ ); |
| @@ -877,9 +871,10 @@ SendReceiveBlockingLock(const unsigned int xid, struct cifsTconInfo *tcon, | |||
| 877 | to the same server. We may make this configurable later or | 871 | to the same server. We may make this configurable later or |
| 878 | use ses->maxReq */ | 872 | use ses->maxReq */ |
| 879 | 873 | ||
| 880 | if (in_buf->smb_buf_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) { | 874 | if (be32_to_cpu(in_buf->smb_buf_length) > CIFSMaxBufSize + |
| 875 | MAX_CIFS_HDR_SIZE - 4) { | ||
| 881 | cERROR(1, "Illegal length, greater than maximum frame, %d", | 876 | cERROR(1, "Illegal length, greater than maximum frame, %d", |
| 882 | in_buf->smb_buf_length); | 877 | be32_to_cpu(in_buf->smb_buf_length)); |
| 883 | return -EIO; | 878 | return -EIO; |
| 884 | } | 879 | } |
| 885 | 880 | ||
| @@ -910,7 +905,7 @@ SendReceiveBlockingLock(const unsigned int xid, struct cifsTconInfo *tcon, | |||
| 910 | #ifdef CONFIG_CIFS_STATS2 | 905 | #ifdef CONFIG_CIFS_STATS2 |
| 911 | atomic_inc(&ses->server->inSend); | 906 | atomic_inc(&ses->server->inSend); |
| 912 | #endif | 907 | #endif |
| 913 | rc = smb_send(ses->server, in_buf, in_buf->smb_buf_length); | 908 | rc = smb_send(ses->server, in_buf, be32_to_cpu(in_buf->smb_buf_length)); |
| 914 | #ifdef CONFIG_CIFS_STATS2 | 909 | #ifdef CONFIG_CIFS_STATS2 |
| 915 | atomic_dec(&ses->server->inSend); | 910 | atomic_dec(&ses->server->inSend); |
| 916 | midQ->when_sent = jiffies; | 911 | midQ->when_sent = jiffies; |
| @@ -977,7 +972,7 @@ SendReceiveBlockingLock(const unsigned int xid, struct cifsTconInfo *tcon, | |||
| 977 | if (rc != 0) | 972 | if (rc != 0) |
| 978 | return rc; | 973 | return rc; |
| 979 | 974 | ||
| 980 | receive_len = midQ->resp_buf->smb_buf_length; | 975 | receive_len = be32_to_cpu(midQ->resp_buf->smb_buf_length); |
| 981 | if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) { | 976 | if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) { |
| 982 | cERROR(1, "Frame too large received. Length: %d Xid: %d", | 977 | cERROR(1, "Frame too large received. Length: %d Xid: %d", |
| 983 | receive_len, xid); | 978 | receive_len, xid); |
| @@ -993,7 +988,7 @@ SendReceiveBlockingLock(const unsigned int xid, struct cifsTconInfo *tcon, | |||
| 993 | goto out; | 988 | goto out; |
| 994 | } | 989 | } |
| 995 | 990 | ||
| 996 | out_buf->smb_buf_length = receive_len; | 991 | out_buf->smb_buf_length = cpu_to_be32(receive_len); |
| 997 | memcpy((char *)out_buf + 4, | 992 | memcpy((char *)out_buf + 4, |
| 998 | (char *)midQ->resp_buf + 4, | 993 | (char *)midQ->resp_buf + 4, |
| 999 | receive_len); | 994 | receive_len); |
| @@ -1012,7 +1007,7 @@ SendReceiveBlockingLock(const unsigned int xid, struct cifsTconInfo *tcon, | |||
| 1012 | } | 1007 | } |
| 1013 | } | 1008 | } |
| 1014 | 1009 | ||
| 1015 | *pbytes_returned = out_buf->smb_buf_length; | 1010 | *pbytes_returned = be32_to_cpu(out_buf->smb_buf_length); |
| 1016 | 1011 | ||
| 1017 | /* BB special case reconnect tid and uid here? */ | 1012 | /* BB special case reconnect tid and uid here? */ |
| 1018 | rc = map_smb_to_linux_error(out_buf, 0 /* no log */ ); | 1013 | rc = map_smb_to_linux_error(out_buf, 0 /* no log */ ); |