]> git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/blame - fs/cifs/misc.c
projects / mirror_ubuntu-zesty-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/hpa/linux...
[mirror_ubuntu-zesty-kernel.git] / fs / cifs / misc.c
CommitLineData
1da177e4
LT		 1/*
2 * fs/cifs/misc.c
3 *
790fe579 4 * Copyright (C) International Business Machines Corp., 2002,2007
1da177e4
LT		 5 * Author(s): Steve French (sfrench@us.ibm.com)
6 *
7 * This library is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as published
9 * by the Free Software Foundation; either version 2.1 of the License, or
10 * (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
15 * the GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public License
18 * along with this library; if not, write to the Free Software
fb8c4b14 19 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
1da177e4
LT		 20 */
21
22#include <linux/slab.h>
23#include <linux/ctype.h>
24#include <linux/mempool.h>
25#include "cifspdu.h"
26#include "cifsglob.h"
27#include "cifsproto.h"
28#include "cifs_debug.h"
29#include "smberr.h"
30#include "nterr.h"
6c91d362 31#include "cifs_unicode.h"
1da177e4
LT		 32
33extern mempool_t *cifs_sm_req_poolp;
34extern mempool_t *cifs_req_poolp;
fb8c4b14 35extern struct task_struct *oplockThread;
1da177e4 36
fb8c4b14
SF		 37/* The xid serves as a useful identifier for each incoming vfs request,
38 in a similar way to the mid which is useful to track each sent smb,
39 and CurrentXid can also provide a running counter (although it
40 will eventually wrap past zero) of the total vfs operations handled
1da177e4
LT		 41 since the cifs fs was mounted */
42
43unsigned int
44_GetXid(void)
45{
46 unsigned int xid;
47
48 spin_lock(&GlobalMid_Lock);
49 GlobalTotalActiveXid++;
50c2f753
SF		 50
51 /* keep high water mark for number of simultaneous ops in filesystem */
1da177e4 52 if (GlobalTotalActiveXid > GlobalMaxActiveXid)
50c2f753 53 GlobalMaxActiveXid = GlobalTotalActiveXid;
790fe579 54 if (GlobalTotalActiveXid > 65000)
fb8c4b14 55 cFYI(1, ("warning: more than 65000 requests active"));
1da177e4
LT		 56 xid = GlobalCurrentXid++;
57 spin_unlock(&GlobalMid_Lock);
58 return xid;
59}
60
61void
62_FreeXid(unsigned int xid)
63{
64 spin_lock(&GlobalMid_Lock);
790fe579 65 /* if (GlobalTotalActiveXid == 0)
1da177e4
LT		 66 BUG(); */
67 GlobalTotalActiveXid--;
68 spin_unlock(&GlobalMid_Lock);
69}
70
71struct cifsSesInfo *
72sesInfoAlloc(void)
73{
74 struct cifsSesInfo *ret_buf;
75
76849e3e 76 ret_buf = kzalloc(sizeof (struct cifsSesInfo), GFP_KERNEL);
1da177e4 77 if (ret_buf) {
1da177e4
LT		 78 write_lock(&GlobalSMBSeslock);
79 atomic_inc(&sesInfoAllocCount);
80 ret_buf->status = CifsNew;
81 list_add(&ret_buf->cifsSessionList, &GlobalSMBSessionList);
82 init_MUTEX(&ret_buf->sesSem);
83 write_unlock(&GlobalSMBSeslock);
84 }
85 return ret_buf;
86}
87
88void
89sesInfoFree(struct cifsSesInfo *buf_to_free)
90{
91 if (buf_to_free == NULL) {
92 cFYI(1, ("Null buffer passed to sesInfoFree"));
93 return;
94 }
95
96 write_lock(&GlobalSMBSeslock);
97 atomic_dec(&sesInfoAllocCount);
98 list_del(&buf_to_free->cifsSessionList);
99 write_unlock(&GlobalSMBSeslock);
f99d49ad
JJ		 100 kfree(buf_to_free->serverOS);
101 kfree(buf_to_free->serverDomain);
102 kfree(buf_to_free->serverNOS);
103 kfree(buf_to_free->password);
3979877e 104 kfree(buf_to_free->domainName);
1da177e4
LT		 105 kfree(buf_to_free);
106}
107
108struct cifsTconInfo *
109tconInfoAlloc(void)
110{
111 struct cifsTconInfo *ret_buf;
76849e3e 112 ret_buf = kzalloc(sizeof (struct cifsTconInfo), GFP_KERNEL);
1da177e4 113 if (ret_buf) {
1da177e4
LT		 114 write_lock(&GlobalSMBSeslock);
115 atomic_inc(&tconInfoAllocCount);
116 list_add(&ret_buf->cifsConnectionList,
117 &GlobalTreeConnectionList);
118 ret_buf->tidStatus = CifsNew;
119 INIT_LIST_HEAD(&ret_buf->openFileList);
120 init_MUTEX(&ret_buf->tconSem);
121#ifdef CONFIG_CIFS_STATS
122 spin_lock_init(&ret_buf->stat_lock);
123#endif
124 write_unlock(&GlobalSMBSeslock);
125 }
126 return ret_buf;
127}
128
129void
130tconInfoFree(struct cifsTconInfo *buf_to_free)
131{
132 if (buf_to_free == NULL) {
133 cFYI(1, ("Null buffer passed to tconInfoFree"));
134 return;
135 }
136 write_lock(&GlobalSMBSeslock);
137 atomic_dec(&tconInfoAllocCount);
138 list_del(&buf_to_free->cifsConnectionList);
139 write_unlock(&GlobalSMBSeslock);
f99d49ad 140 kfree(buf_to_free->nativeFileSystem);
1da177e4
LT		 141 kfree(buf_to_free);
142}
143
144struct smb_hdr *
145cifs_buf_get(void)
146{
147 struct smb_hdr *ret_buf = NULL;
148
fb8c4b14
SF		 149/* We could use negotiated size instead of max_msgsize -
150 but it may be more efficient to always alloc same size
151 albeit slightly larger than necessary and maxbuffersize
1da177e4 152 defaults to this and can not be bigger */
50c2f753
SF		 153 ret_buf = (struct smb_hdr *) mempool_alloc(cifs_req_poolp,
154 GFP_KERNEL | GFP_NOFS);
1da177e4
LT		 155
156 /* clear the first few header bytes */
157 /* for most paths, more is cleared in header_assemble */
158 if (ret_buf) {
159 memset(ret_buf, 0, sizeof(struct smb_hdr) + 3);
160 atomic_inc(&bufAllocCount);
4498eed5
SF		 161#ifdef CONFIG_CIFS_STATS2
162 atomic_inc(&totBufAllocCount);
163#endif /* CONFIG_CIFS_STATS2 */
1da177e4
LT		 164 }
165
166 return ret_buf;
167}
168
169void
170cifs_buf_release(void *buf_to_free)
171{
172
173 if (buf_to_free == NULL) {
174 /* cFYI(1, ("Null buffer passed to cifs_buf_release"));*/
175 return;
176 }
fb8c4b14 177 mempool_free(buf_to_free, cifs_req_poolp);
1da177e4
LT		 178
179 atomic_dec(&bufAllocCount);
180 return;
181}
182
183struct smb_hdr *
184cifs_small_buf_get(void)
185{
186 struct smb_hdr *ret_buf = NULL;
187
fb8c4b14
SF		 188/* We could use negotiated size instead of max_msgsize -
189 but it may be more efficient to always alloc same size
190 albeit slightly larger than necessary and maxbuffersize
1da177e4 191 defaults to this and can not be bigger */
50c2f753
SF		 192 ret_buf = (struct smb_hdr *) mempool_alloc(cifs_sm_req_poolp,
193 GFP_KERNEL | GFP_NOFS);
1da177e4
LT		 194 if (ret_buf) {
195 /* No need to clear memory here, cleared in header assemble */
196 /* memset(ret_buf, 0, sizeof(struct smb_hdr) + 27);*/
197 atomic_inc(&smBufAllocCount);
4498eed5
SF		 198#ifdef CONFIG_CIFS_STATS2
199 atomic_inc(&totSmBufAllocCount);
200#endif /* CONFIG_CIFS_STATS2 */
201
1da177e4
LT		 202 }
203 return ret_buf;
204}
205
206void
207cifs_small_buf_release(void *buf_to_free)
208{
209
210 if (buf_to_free == NULL) {
211 cFYI(1, ("Null buffer passed to cifs_small_buf_release"));
212 return;
213 }
fb8c4b14 214 mempool_free(buf_to_free, cifs_sm_req_poolp);
1da177e4
LT		 215
216 atomic_dec(&smBufAllocCount);
217 return;
218}
219
fb8c4b14 220/*
1982c344
SF		 221 Find a free multiplex id (SMB mid). Otherwise there could be
222 mid collisions which might cause problems, demultiplexing the
223 wrong response to this request. Multiplex ids could collide if
224 one of a series requests takes much longer than the others, or
225 if a very large number of long lived requests (byte range
226 locks or FindNotify requests) are pending. No more than
fb8c4b14 227 64K-1 requests can be outstanding at one time. If no
1982c344
SF		 228 mids are available, return zero. A future optimization
229 could make the combination of mids and uid the key we use
fb8c4b14 230 to demultiplex on (rather than mid alone).
1982c344
SF		 231 In addition to the above check, the cifs demultiplex
232 code already used the command code as a secondary
233 check of the frame and if signing is negotiated the
234 response would be discarded if the mid were the same
235 but the signature was wrong. Since the mid is not put in the
236 pending queue until later (when it is about to be dispatched)
fb8c4b14 237 we do have to limit the number of outstanding requests
1982c344
SF		 238 to somewhat less than 64K-1 although it is hard to imagine
239 so many threads being in the vfs at one time.
240*/
241__u16 GetNextMid(struct TCP_Server_Info *server)
242{
243 __u16 mid = 0;
244 __u16 last_mid;
fb8c4b14 245 int collision;
1982c344 246
790fe579 247 if (server == NULL)
1982c344
SF		 248 return mid;
249
250 spin_lock(&GlobalMid_Lock);
251 last_mid = server->CurrentMid; /* we do not want to loop forever */
252 server->CurrentMid++;
253 /* This nested loop looks more expensive than it is.
fb8c4b14 254 In practice the list of pending requests is short,
1982c344
SF		 255 fewer than 50, and the mids are likely to be unique
256 on the first pass through the loop unless some request
257 takes longer than the 64 thousand requests before it
258 (and it would also have to have been a request that
259 did not time out) */
fb8c4b14 260 while (server->CurrentMid != last_mid) {
1982c344
SF		 261 struct list_head *tmp;
262 struct mid_q_entry *mid_entry;
263
264 collision = 0;
790fe579 265 if (server->CurrentMid == 0)
1982c344
SF		 266 server->CurrentMid++;
267
268 list_for_each(tmp, &server->pending_mid_q) {
269 mid_entry = list_entry(tmp, struct mid_q_entry, qhead);
270
271 if ((mid_entry->mid == server->CurrentMid) &&
272 (mid_entry->midState == MID_REQUEST_SUBMITTED)) {
273 /* This mid is in use, try a different one */
274 collision = 1;
275 break;
276 }
277 }
790fe579 278 if (collision == 0) {
1982c344
SF		 279 mid = server->CurrentMid;
280 break;
281 }
282 server->CurrentMid++;
283 }
284 spin_unlock(&GlobalMid_Lock);
285 return mid;
286}
287
288/* NB: MID can not be set if treeCon not passed in, in that
289 case it is responsbility of caller to set the mid */
1da177e4
LT		 290void
291header_assemble(struct smb_hdr *buffer, char smb_command /* command */ ,
292 const struct cifsTconInfo *treeCon, int word_count
293 /* length of fixed section (word count) in two byte units */)
294{
fb8c4b14
SF		 295 struct list_head *temp_item;
296 struct cifsSesInfo *ses;
1da177e4
LT		 297 char *temp = (char *) buffer;
298
fb8c4b14 299 memset(temp, 0, 256); /* bigger than MAX_CIFS_HDR_SIZE */
1da177e4
LT		 300
301 buffer->smb_buf_length =
302 (2 * word_count) + sizeof (struct smb_hdr) -
303 4 /* RFC 1001 length field does not count */ +
304 2 /* for bcc field itself */ ;
1982c344
SF		 305 /* Note that this is the only network field that has to be converted
306 to big endian and it is done just before we send it */
1da177e4
LT		 307
308 buffer->Protocol[0] = 0xFF;
309 buffer->Protocol[1] = 'S';
310 buffer->Protocol[2] = 'M';
311 buffer->Protocol[3] = 'B';
312 buffer->Command = smb_command;
313 buffer->Flags = 0x00; /* case sensitive */
314 buffer->Flags2 = SMBFLG2_KNOWS_LONG_NAMES;
315 buffer->Pid = cpu_to_le16((__u16)current->tgid);
316 buffer->PidHigh = cpu_to_le16((__u16)(current->tgid >> 16));
317 spin_lock(&GlobalMid_Lock);
1da177e4
LT		 318 spin_unlock(&GlobalMid_Lock);
319 if (treeCon) {
320 buffer->Tid = treeCon->tid;
321 if (treeCon->ses) {
322 if (treeCon->ses->capabilities & CAP_UNICODE)
323 buffer->Flags2 |= SMBFLG2_UNICODE;
324 if (treeCon->ses->capabilities & CAP_STATUS32) {
325 buffer->Flags2 |= SMBFLG2_ERR_STATUS;
326 }
1982c344
SF		 327 /* Uid is not converted */
328 buffer->Uid = treeCon->ses->Suid;
329 buffer->Mid = GetNextMid(treeCon->ses->server);
790fe579 330 if (multiuser_mount != 0) {
1da177e4
LT		 331 /* For the multiuser case, there are few obvious technically */
332 /* possible mechanisms to match the local linux user (uid) */
333 /* to a valid remote smb user (smb_uid): */
334 /* 1) Query Winbind (or other local pam/nss daemon */
335 /* for userid/password/logon_domain or credential */
336 /* 2) Query Winbind for uid to sid to username mapping */
337 /* and see if we have a matching password for existing*/
338 /* session for that user perhas getting password by */
339 /* adding a new pam_cifs module that stores passwords */
340 /* so that the cifs vfs can get at that for all logged*/
341 /* on users */
342 /* 3) (Which is the mechanism we have chosen) */
343 /* Search through sessions to the same server for a */
344 /* a match on the uid that was passed in on mount */
345 /* with the current processes uid (or euid?) and use */
346 /* that smb uid. If no existing smb session for */
347 /* that uid found, use the default smb session ie */
348 /* the smb session for the volume mounted which is */
349 /* the same as would be used if the multiuser mount */
350 /* flag were disabled. */
351
352 /* BB Add support for establishing new tCon and SMB Session */
fb8c4b14 353 /* with userid/password pairs found on the smb session */
1da177e4 354 /* for other target tcp/ip addresses BB */
790fe579 355 if (current->fsuid != treeCon->ses->linux_uid) {
63135e08
SF		 356 cFYI(1, ("Multiuser mode and UID "
357 "did not match tcon uid"));
1da177e4
LT		 358 read_lock(&GlobalSMBSeslock);
359 list_for_each(temp_item, &GlobalSMBSessionList) {
360 ses = list_entry(temp_item, struct cifsSesInfo, cifsSessionList);
790fe579
SF		 361 if (ses->linux_uid == current->fsuid) {
362 if (ses->server == treeCon->ses->server) {
fb8c4b14 363 cFYI(1, ("found matching uid substitute right smb_uid"));
1da177e4
LT		 364 buffer->Uid = ses->Suid;
365 break;
366 } else {
fb8c4b14
SF		 367 /* BB eventually call cifs_setup_session here */
368 cFYI(1, ("local UID found but no smb sess with this server exists"));
1da177e4
LT		 369 }
370 }
371 }
372 read_unlock(&GlobalSMBSeslock);
373 }
374 }
375 }
376 if (treeCon->Flags & SMB_SHARE_IS_IN_DFS)
377 buffer->Flags2 |= SMBFLG2_DFS;
d3485d37
SF		 378 if (treeCon->nocase)
379 buffer->Flags |= SMBFLG_CASELESS;
790fe579
SF		 380 if ((treeCon->ses) && (treeCon->ses->server))
381 if (treeCon->ses->server->secMode &
1da177e4
LT		 382 (SECMODE_SIGN_REQUIRED | SECMODE_SIGN_ENABLED))
383 buffer->Flags2 |= SMBFLG2_SECURITY_SIGNATURE;
384 }
385
386/* endian conversion of flags is now done just before sending */
387 buffer->WordCount = (char) word_count;
388 return;
389}
390
2cd646a2 391static int
1da177e4
LT		 392checkSMBhdr(struct smb_hdr *smb, __u16 mid)
393{
fb8c4b14 394 /* Make sure that this really is an SMB, that it is a response,
1da177e4 395 and that the message ids match */
fb8c4b14
SF		 396 if ((*(__le32 *) smb->Protocol == cpu_to_le32(0x424d53ff)) &&
397 (mid == smb->Mid)) {
790fe579 398 if (smb->Flags & SMBFLG_RESPONSE)
fb8c4b14
SF		 399 return 0;
400 else {
1da177e4 401 /* only one valid case where server sends us request */
790fe579 402 if (smb->Command == SMB_COM_LOCKING_ANDX)
1da177e4
LT		 403 return 0;
404 else
fb8c4b14 405 cERROR(1, ("Received Request not response"));
1da177e4
LT		 406 }
407 } else { /* bad signature or mid */
408 if (*(__le32 *) smb->Protocol != cpu_to_le32(0x424d53ff))
409 cERROR(1,
6ab16d24 410 ("Bad protocol string signature header %x",
1da177e4
LT		 411 *(unsigned int *) smb->Protocol));
412 if (mid != smb->Mid)
413 cERROR(1, ("Mids do not match"));
414 }
415 cERROR(1, ("bad smb detected. The Mid=%d", smb->Mid));
416 return 1;
417}
418
419int
d103e164 420checkSMB(struct smb_hdr *smb, __u16 mid, unsigned int length)
1da177e4 421{
70ca734a 422 __u32 len = smb->smb_buf_length;
190fdeb8 423 __u32 clc_len; /* calculated length */
184ed211 424 cFYI(0, ("checkSMB Length: 0x%x, smb_buf_length: 0x%x", length, len));
d103e164
SF		 425
426 if (length < 2 + sizeof (struct smb_hdr)) {
427 if ((length >= sizeof (struct smb_hdr) - 1)
1da177e4 428 && (smb->Status.CifsError != 0)) {
d103e164
SF		 429 smb->WordCount = 0;
430 /* some error cases do not return wct and bcc */
431 return 0;
fb8c4b14 432 } else if ((length == sizeof(struct smb_hdr) + 1) &&
d103e164 433 (smb->WordCount == 0)) {
fb8c4b14 434 char *tmp = (char *)smb;
d103e164
SF		 435 /* Need to work around a bug in two servers here */
436 /* First, check if the part of bcc they sent was zero */
437 if (tmp[sizeof(struct smb_hdr)] == 0) {
438 /* some servers return only half of bcc
439 * on simple responses (wct, bcc both zero)
440 * in particular have seen this on
441 * ulogoffX and FindClose. This leaves
442 * one byte of bcc potentially unitialized
443 */
444 /* zero rest of bcc */
445 tmp[sizeof(struct smb_hdr)+1] = 0;
46c79a64 446 return 0;
1da177e4 447 }
fb8c4b14 448 cERROR(1, ("rcvd invalid byte count (bcc)"));
d103e164
SF		 449 } else {
450 cERROR(1, ("Length less than smb header size"));
1da177e4 451 }
d103e164
SF		 452 return 1;
453 }
454 if (len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
455 cERROR(1, ("smb length greater than MaxBufSize, mid=%d",
184ed211 456 smb->Mid));
1da177e4
LT		 457 return 1;
458 }
459
460 if (checkSMBhdr(smb, mid))
461 return 1;
190fdeb8 462 clc_len = smbCalcSize_LE(smb);
184ed211 463
790fe579 464 if (4 + len != length) {
63135e08
SF		 465 cERROR(1, ("Length read does not match RFC1001 length %d",
466 len));
184ed211
SF		 467 return 1;
468 }
469
470 if (4 + len != clc_len) {
471 /* check if bcc wrapped around for large read responses */
790fe579 472 if ((len > 64 * 1024) && (len > clc_len)) {
184ed211 473 /* check if lengths match mod 64K */
790fe579 474 if (((4 + len) & 0xFFFF) == (clc_len & 0xFFFF))
fb8c4b14 475 return 0; /* bcc wrapped */
184ed211 476 }
46c79a64
SF		 477 cFYI(1, ("Calculated size %d vs length %d mismatch for mid %d",
478 clc_len, 4 + len, smb->Mid));
190fdeb8 479 /* Windows XP can return a few bytes too much, presumably
fb8c4b14 480 an illegal pad, at the end of byte range lock responses
6ab16d24 481 so we allow for that three byte pad, as long as actual
190fdeb8 482 received length is as long or longer than calculated length */
fb8c4b14 483 /* We have now had to extend this more, since there is a
6ab16d24
SF		 484 case in which it needs to be bigger still to handle a
485 malformed response to transact2 findfirst from WinXP when
486 access denied is returned and thus bcc and wct are zero
487 but server says length is 0x21 bytes too long as if the server
488 forget to reset the smb rfc1001 length when it reset the
489 wct and bcc to minimum size and drop the t2 parms and data */
790fe579 490 if ((4+len > clc_len) && (len <= clc_len + 512))
190fdeb8 491 return 0;
46c79a64
SF		 492 else {
493 cERROR(1, ("RFC1001 size %d bigger than SMB for Mid=%d",
494 len, smb->Mid));
190fdeb8 495 return 1;
46c79a64 496 }
1da177e4 497 }
20962438 498 return 0;
1da177e4
LT		 499}
500int
d7c8c94d 501is_valid_oplock_break(struct smb_hdr *buf, struct TCP_Server_Info *srv)
fb8c4b14
SF		 502{
503 struct smb_com_lock_req *pSMB = (struct smb_com_lock_req *)buf;
1da177e4
LT		 504 struct list_head *tmp;
505 struct list_head *tmp1;
506 struct cifsTconInfo *tcon;
507 struct cifsFileInfo *netfile;
508
fb8c4b14 509 cFYI(1, ("Checking for oplock break or dnotify response"));
790fe579 510 if ((pSMB->hdr.Command == SMB_COM_NT_TRANSACT) &&
1da177e4 511 (pSMB->hdr.Flags & SMBFLG_RESPONSE)) {
fb8c4b14 512 struct smb_com_transaction_change_notify_rsp *pSMBr =
1da177e4 513 (struct smb_com_transaction_change_notify_rsp *)buf;
fb8c4b14 514 struct file_notify_information *pnotify;
1da177e4 515 __u32 data_offset = 0;
790fe579 516 if (pSMBr->ByteCount > sizeof(struct file_notify_information)) {
1da177e4
LT		 517 data_offset = le32_to_cpu(pSMBr->DataOffset);
518
3979877e
SF		 519 pnotify = (struct file_notify_information *)
520 ((char *)&pSMBr->hdr.Protocol + data_offset);
63135e08
SF		 521 cFYI(1, ("dnotify on %s Action: 0x%x",
522 pnotify->FileName,
1da177e4 523 pnotify->Action)); /* BB removeme BB */
fb8c4b14 524 /* cifs_dump_mem("Rcvd notify Data: ",buf,
3979877e 525 sizeof(struct smb_hdr)+60); */
1da177e4
LT		 526 return TRUE;
527 }
790fe579 528 if (pSMBr->hdr.Status.CifsError) {
fb8c4b14
SF		 529 cFYI(1, ("notify err 0x%d",
530 pSMBr->hdr.Status.CifsError));
1da177e4
LT		 531 return TRUE;
532 }
533 return FALSE;
fb8c4b14 534 }
790fe579 535 if (pSMB->hdr.Command != SMB_COM_LOCKING_ANDX)
1da177e4 536 return FALSE;
790fe579 537 if (pSMB->hdr.Flags & SMBFLG_RESPONSE) {
1da177e4
LT		 538 /* no sense logging error on invalid handle on oplock
539 break - harmless race between close request and oplock
540 break response is expected from time to time writing out
541 large dirty files cached on the client */
fb8c4b14
SF		 542 if ((NT_STATUS_INVALID_HANDLE) ==
543 le32_to_cpu(pSMB->hdr.Status.CifsError)) {
544 cFYI(1, ("invalid handle on oplock break"));
1da177e4 545 return TRUE;
fb8c4b14 546 } else if (ERRbadfid ==
1da177e4 547 le16_to_cpu(pSMB->hdr.Status.DosError.Error)) {
fb8c4b14 548 return TRUE;
1da177e4
LT		 549 } else {
550 return FALSE; /* on valid oplock brk we get "request" */
551 }
552 }
790fe579 553 if (pSMB->hdr.WordCount != 8)
1da177e4
LT		 554 return FALSE;
555
fb8c4b14
SF		 556 cFYI(1, ("oplock type 0x%d level 0x%d",
557 pSMB->LockType, pSMB->OplockLevel));
790fe579 558 if (!(pSMB->LockType & LOCKING_ANDX_OPLOCK_RELEASE))
fb8c4b14 559 return FALSE;
1da177e4
LT		 560
561 /* look up tcon based on tid & uid */
562 read_lock(&GlobalSMBSeslock);
563 list_for_each(tmp, &GlobalTreeConnectionList) {
564 tcon = list_entry(tmp, struct cifsTconInfo, cifsConnectionList);
d7c8c94d 565 if ((tcon->tid == buf->Tid) && (srv == tcon->ses->server)) {
a4544347 566 cifs_stats_inc(&tcon->num_oplock_brks);
fb8c4b14
SF		 567 list_for_each(tmp1, &tcon->openFileList) {
568 netfile = list_entry(tmp1, struct cifsFileInfo,
57337e42 569 tlist);
790fe579 570 if (pSMB->Fid == netfile->netfid) {
1da177e4
LT		 571 struct cifsInodeInfo *pCifsInode;
572 read_unlock(&GlobalSMBSeslock);
63135e08
SF		 573 cFYI(1,
574 ("file id match, oplock break"));
fb8c4b14 575 pCifsInode =
1da177e4
LT		 576 CIFS_I(netfile->pInode);
577 pCifsInode->clientCanCacheAll = FALSE;
790fe579 578 if (pSMB->OplockLevel == 0)
57337e42
SF		 579 pCifsInode->clientCanCacheRead
580 = FALSE;
1da177e4 581 pCifsInode->oplockPending = TRUE;
57337e42
SF		 582 AllocOplockQEntry(netfile->pInode,
583 netfile->netfid,
584 tcon);
63135e08
SF		 585 cFYI(1,
586 ("about to wake up oplock thread"));
790fe579 587 if (oplockThread)
57337e42 588 wake_up_process(oplockThread);
1da177e4
LT		 589 return TRUE;
590 }
591 }
592 read_unlock(&GlobalSMBSeslock);
fb8c4b14 593 cFYI(1, ("No matching file for oplock break"));
1da177e4
LT		 594 return TRUE;
595 }
596 }
597 read_unlock(&GlobalSMBSeslock);
fb8c4b14 598 cFYI(1, ("Can not process oplock break for non-existent connection"));
1da177e4
LT		 599 return TRUE;
600}
601
602void
603dump_smb(struct smb_hdr *smb_buf, int smb_buf_length)
604{
605 int i, j;
606 char debug_line[17];
607 unsigned char *buffer;
608
609 if (traceSMB == 0)
610 return;
611
612 buffer = (unsigned char *) smb_buf;
613 for (i = 0, j = 0; i < smb_buf_length; i++, j++) {
57337e42 614 if (i % 8 == 0) { /* have reached the beginning of line */
1da177e4
LT		 615 printk(KERN_DEBUG "| ");
616 j = 0;
617 }
618 printk("%0#4x ", buffer[i]);
619 debug_line[2 * j] = ' ';
620 if (isprint(buffer[i]))
621 debug_line[1 + (2 * j)] = buffer[i];
622 else
623 debug_line[1 + (2 * j)] = '_';
624
57337e42 625 if (i % 8 == 7) { /* reached end of line, time to print ascii */
1da177e4
LT		 626 debug_line[16] = 0;
627 printk(" | %s\n", debug_line);
628 }
629 }
630 for (; j < 8; j++) {
631 printk(" ");
632 debug_line[2 * j] = ' ';
633 debug_line[1 + (2 * j)] = ' ';
634 }
635 printk( " | %s\n", debug_line);
636 return;
637}
6a0b4824 638
6a0b4824
SF		 639/* Windows maps these to the user defined 16 bit Unicode range since they are
640 reserved symbols (along with \ and /), otherwise illegal to store
641 in filenames in NTFS */
d0724714
SF		 642#define UNI_ASTERIK (__u16) ('*' + 0xF000)
643#define UNI_QUESTION (__u16) ('?' + 0xF000)
644#define UNI_COLON (__u16) (':' + 0xF000)
645#define UNI_GRTRTHAN (__u16) ('>' + 0xF000)
646#define UNI_LESSTHAN (__u16) ('<' + 0xF000)
647#define UNI_PIPE (__u16) ('|' + 0xF000)
648#define UNI_SLASH (__u16) ('\\' + 0xF000)
6a0b4824
SF		 649
650/* Convert 16 bit Unicode pathname from wire format to string in current code
651 page. Conversion may involve remapping up the seven characters that are
652 only legal in POSIX-like OS (if they are present in the string). Path
653 names are little endian 16 bit Unicode on the wire */
654int
fb8c4b14
SF		 655cifs_convertUCSpath(char *target, const __le16 *source, int maxlen,
656 const struct nls_table *cp)
6a0b4824 657{
fb8c4b14 658 int i, j, len;
d0724714 659 __u16 src_char;
6a0b4824 660
fb8c4b14 661 for (i = 0, j = 0; i < maxlen; i++) {
6a0b4824
SF		 662 src_char = le16_to_cpu(source[i]);
663 switch (src_char) {
664 case 0:
665 goto cUCS_out; /* BB check this BB */
666 case UNI_COLON:
667 target[j] = ':';
668 break;
669 case UNI_ASTERIK:
670 target[j] = '*';
671 break;
672 case UNI_QUESTION:
673 target[j] = '?';
674 break;
6c91d362
SF		 675 /* BB We can not handle remapping slash until
676 all the calls to build_path_from_dentry
677 are modified, as they use slash as separator BB */
678 /* case UNI_SLASH:
679 target[j] = '\\';
680 break;*/
6a0b4824
SF		 681 case UNI_PIPE:
682 target[j] = '|';
683 break;
684 case UNI_GRTRTHAN:
685 target[j] = '>';
686 break;
687 case UNI_LESSTHAN:
688 target[j] = '<';
67594feb 689 break;
fb8c4b14
SF		 690 default:
691 len = cp->uni2char(src_char, &target[j],
6a0b4824 692 NLS_MAX_CHARSET_SIZE);
790fe579 693 if (len > 0) {
6a0b4824
SF		 694 j += len;
695 continue;
696 } else {
697 target[j] = '?';
698 }
699 }
700 j++;
57337e42 701 /* make sure we do not overrun callers allocated temp buffer */
790fe579 702 if (j >= (2 * NAME_MAX))
6a0b4824
SF		 703 break;
704 }
705cUCS_out:
706 target[j] = 0;
707 return j;
708}
6c91d362
SF		 709
710/* Convert 16 bit Unicode pathname to wire format from string in current code
711 page. Conversion may involve remapping up the seven characters that are
712 only legal in POSIX-like OS (if they are present in the string). Path
713 names are little endian 16 bit Unicode on the wire */
714int
fb8c4b14
SF		 715cifsConvertToUCS(__le16 *target, const char *source, int maxlen,
716 const struct nls_table *cp, int mapChars)
6c91d362 717{
fb8c4b14 718 int i, j, charlen;
6c91d362
SF		 719 int len_remaining = maxlen;
720 char src_char;
70ca734a 721 __u16 temp;
6c91d362 722
790fe579 723 if (!mapChars)
e89dc920 724 return cifs_strtoUCS(target, source, PATH_MAX, cp);
6c91d362 725
fb8c4b14 726 for (i = 0, j = 0; i < maxlen; j++) {
6c91d362
SF		 727 src_char = source[i];
728 switch (src_char) {
729 case 0:
f4cfd69c 730 target[j] = 0;
6c91d362
SF		 731 goto ctoUCS_out;
732 case ':':
733 target[j] = cpu_to_le16(UNI_COLON);
734 break;
735 case '*':
736 target[j] = cpu_to_le16(UNI_ASTERIK);
737 break;
738 case '?':
739 target[j] = cpu_to_le16(UNI_QUESTION);
740 break;
741 case '<':
742 target[j] = cpu_to_le16(UNI_LESSTHAN);
743 break;
744 case '>':
745 target[j] = cpu_to_le16(UNI_GRTRTHAN);
746 break;
747 case '|':
748 target[j] = cpu_to_le16(UNI_PIPE);
fb8c4b14 749 break;
6c91d362
SF		 750 /* BB We can not handle remapping slash until
751 all the calls to build_path_from_dentry
752 are modified, as they use slash as separator BB */
753 /* case '\\':
754 target[j] = cpu_to_le16(UNI_SLASH);
755 break;*/
756 default:
757 charlen = cp->char2uni(source+i,
70ca734a 758 len_remaining, &temp);
6c91d362
SF		 759 /* if no match, use question mark, which
760 at least in some cases servers as wild card */
790fe579 761 if (charlen < 1) {
6c91d362
SF		 762 target[j] = cpu_to_le16(0x003f);
763 charlen = 1;
70ca734a
SF		 764 } else
765 target[j] = cpu_to_le16(temp);
6c91d362
SF		 766 len_remaining -= charlen;
767 /* character may take more than one byte in the
768 the source string, but will take exactly two
769 bytes in the target string */
fb8c4b14 770 i += charlen;
6c91d362
SF		 771 continue;
772 }
773 i++; /* move to next char in source string */
774 len_remaining--;
775 }
776
777ctoUCS_out:
778 return i;
779}
ubuntu-zesty-kernel mirror