4 * Copyright (C) International Business Machines Corp., 2002,2008
5 * Author(s): Steve French (sfrench@us.ibm.com)
6 * Jeremy Allison (jra@samba.org) 2006.
8 * This library is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU Lesser General Public License as published
10 * by the Free Software Foundation; either version 2.1 of the License, or
11 * (at your option) any later version.
13 * This library is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
16 * the GNU Lesser General Public License for more details.
18 * You should have received a copy of the GNU Lesser General Public License
19 * along with this library; if not, write to the Free Software
20 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
24 #include <linux/list.h>
25 #include <linux/gfp.h>
26 #include <linux/wait.h>
27 #include <linux/net.h>
28 #include <linux/delay.h>
29 #include <asm/uaccess.h>
30 #include <asm/processor.h>
31 #include <linux/mempool.h>
34 #include "cifsproto.h"
35 #include "cifs_debug.h"
37 extern mempool_t
*cifs_mid_poolp
;
39 static struct mid_q_entry
*
40 AllocMidQEntry(const struct smb_hdr
*smb_buffer
, struct TCP_Server_Info
*server
)
42 struct mid_q_entry
*temp
;
45 cERROR(1, "Null TCP session in AllocMidQEntry");
49 temp
= mempool_alloc(cifs_mid_poolp
, GFP_NOFS
);
53 memset(temp
, 0, sizeof(struct mid_q_entry
));
54 temp
->mid
= smb_buffer
->Mid
; /* always LE */
55 temp
->pid
= current
->pid
;
56 temp
->command
= smb_buffer
->Command
;
57 cFYI(1, "For smb_command %d", temp
->command
);
58 /* do_gettimeofday(&temp->when_sent);*/ /* easier to use jiffies */
59 /* when mid allocated can be before when sent */
60 temp
->when_alloc
= jiffies
;
64 atomic_inc(&midCount
);
65 temp
->midState
= MID_REQUEST_ALLOCATED
;
70 DeleteMidQEntry(struct mid_q_entry
*midEntry
)
72 #ifdef CONFIG_CIFS_STATS2
75 midEntry
->midState
= MID_FREE
;
76 atomic_dec(&midCount
);
77 if (midEntry
->largeBuf
)
78 cifs_buf_release(midEntry
->resp_buf
);
80 cifs_small_buf_release(midEntry
->resp_buf
);
81 #ifdef CONFIG_CIFS_STATS2
83 /* commands taking longer than one second are indications that
84 something is wrong, unless it is quite a slow link or server */
85 if ((now
- midEntry
->when_alloc
) > HZ
) {
86 if ((cifsFYI
& CIFS_TIMER
) &&
87 (midEntry
->command
!= SMB_COM_LOCKING_ANDX
)) {
88 printk(KERN_DEBUG
" CIFS slow rsp: cmd %d mid %d",
89 midEntry
->command
, midEntry
->mid
);
90 printk(" A: 0x%lx S: 0x%lx R: 0x%lx\n",
91 now
- midEntry
->when_alloc
,
92 now
- midEntry
->when_sent
,
93 now
- midEntry
->when_received
);
97 mempool_free(midEntry
, cifs_mid_poolp
);
101 delete_mid(struct mid_q_entry
*mid
)
103 spin_lock(&GlobalMid_Lock
);
104 list_del(&mid
->qhead
);
105 spin_unlock(&GlobalMid_Lock
);
107 DeleteMidQEntry(mid
);
111 smb_sendv(struct TCP_Server_Info
*server
, struct kvec
*iov
, int n_vec
)
115 struct msghdr smb_msg
;
116 struct smb_hdr
*smb_buffer
= iov
[0].iov_base
;
117 unsigned int len
= iov
[0].iov_len
;
118 unsigned int total_len
;
120 unsigned int smb_buf_length
= smb_buffer
->smb_buf_length
;
121 struct socket
*ssocket
= server
->ssocket
;
124 return -ENOTSOCK
; /* BB eventually add reconnect code here */
126 smb_msg
.msg_name
= (struct sockaddr
*) &server
->dstaddr
;
127 smb_msg
.msg_namelen
= sizeof(struct sockaddr
);
128 smb_msg
.msg_control
= NULL
;
129 smb_msg
.msg_controllen
= 0;
130 if (server
->noblocksnd
)
131 smb_msg
.msg_flags
= MSG_DONTWAIT
+ MSG_NOSIGNAL
;
133 smb_msg
.msg_flags
= MSG_NOSIGNAL
;
135 /* smb header is converted in header_assemble. bcc and rest of SMB word
136 area, and byte area if necessary, is converted to littleendian in
137 cifssmb.c and RFC1001 len is converted to bigendian in smb_send
138 Flags2 is converted in SendReceive */
142 for (i
= 0; i
< n_vec
; i
++)
143 total_len
+= iov
[i
].iov_len
;
145 smb_buffer
->smb_buf_length
= cpu_to_be32(smb_buffer
->smb_buf_length
);
146 cFYI(1, "Sending smb: total_len %d", total_len
);
147 dump_smb(smb_buffer
, len
);
151 rc
= kernel_sendmsg(ssocket
, &smb_msg
, &iov
[first_vec
],
152 n_vec
- first_vec
, total_len
);
153 if ((rc
== -ENOSPC
) || (rc
== -EAGAIN
)) {
155 /* if blocking send we try 3 times, since each can block
156 for 5 seconds. For nonblocking we have to try more
157 but wait increasing amounts of time allowing time for
158 socket to clear. The overall time we wait in either
159 case to send on the socket is about 15 seconds.
160 Similarly we wait for 15 seconds for
161 a response from the server in SendReceive[2]
162 for the server to send a response back for
163 most types of requests (except SMB Write
164 past end of file which can be slow, and
165 blocking lock operations). NFS waits slightly longer
166 than CIFS, but this can make it take longer for
167 nonresponsive servers to be detected and 15 seconds
168 is more than enough time for modern networks to
169 send a packet. In most cases if we fail to send
170 after the retries we will kill the socket and
171 reconnect which may clear the network problem.
173 if ((i
>= 14) || (!server
->noblocksnd
&& (i
> 2))) {
174 cERROR(1, "sends on sock %p stuck for 15 seconds",
185 if (rc
== total_len
) {
188 } else if (rc
> total_len
) {
189 cERROR(1, "sent %d requested %d", rc
, total_len
);
193 /* should never happen, letting socket clear before
194 retrying is our only obvious option here */
195 cERROR(1, "tcp sent no data");
200 /* the line below resets i */
201 for (i
= first_vec
; i
< n_vec
; i
++) {
202 if (iov
[i
].iov_len
) {
203 if (rc
> iov
[i
].iov_len
) {
204 rc
-= iov
[i
].iov_len
;
207 iov
[i
].iov_base
+= rc
;
208 iov
[i
].iov_len
-= rc
;
214 i
= 0; /* in case we get ENOSPC on the next send */
217 if ((total_len
> 0) && (total_len
!= smb_buf_length
+ 4)) {
218 cFYI(1, "partial send (%d remaining), terminating session",
220 /* If we have only sent part of an SMB then the next SMB
221 could be taken as the remainder of this one. We need
222 to kill the socket so the server throws away the partial
224 server
->tcpStatus
= CifsNeedReconnect
;
228 cERROR(1, "Error %d sending data on socket to server", rc
);
232 /* Don't want to modify the buffer as a
233 side effect of this call. */
234 smb_buffer
->smb_buf_length
= smb_buf_length
;
240 smb_send(struct TCP_Server_Info
*server
, struct smb_hdr
*smb_buffer
,
241 unsigned int smb_buf_length
)
245 iov
.iov_base
= smb_buffer
;
246 iov
.iov_len
= smb_buf_length
+ 4;
248 return smb_sendv(server
, &iov
, 1);
251 static int wait_for_free_request(struct TCP_Server_Info
*server
,
254 if (long_op
== CIFS_ASYNC_OP
) {
255 /* oplock breaks must not be held up */
256 atomic_inc(&server
->inFlight
);
260 spin_lock(&GlobalMid_Lock
);
262 if (atomic_read(&server
->inFlight
) >= cifs_max_pending
) {
263 spin_unlock(&GlobalMid_Lock
);
264 #ifdef CONFIG_CIFS_STATS2
265 atomic_inc(&server
->num_waiters
);
267 wait_event(server
->request_q
,
268 atomic_read(&server
->inFlight
)
270 #ifdef CONFIG_CIFS_STATS2
271 atomic_dec(&server
->num_waiters
);
273 spin_lock(&GlobalMid_Lock
);
275 if (server
->tcpStatus
== CifsExiting
) {
276 spin_unlock(&GlobalMid_Lock
);
280 /* can not count locking commands against total
281 as they are allowed to block on server */
283 /* update # of requests on the wire to server */
284 if (long_op
!= CIFS_BLOCKING_OP
)
285 atomic_inc(&server
->inFlight
);
286 spin_unlock(&GlobalMid_Lock
);
293 static int allocate_mid(struct cifsSesInfo
*ses
, struct smb_hdr
*in_buf
,
294 struct mid_q_entry
**ppmidQ
)
296 if (ses
->server
->tcpStatus
== CifsExiting
) {
300 if (ses
->server
->tcpStatus
== CifsNeedReconnect
) {
301 cFYI(1, "tcp session dead - return to caller to retry");
305 if (ses
->status
!= CifsGood
) {
306 /* check if SMB session is bad because we are setting it up */
307 if ((in_buf
->Command
!= SMB_COM_SESSION_SETUP_ANDX
) &&
308 (in_buf
->Command
!= SMB_COM_NEGOTIATE
))
310 /* else ok - we are setting up session */
312 *ppmidQ
= AllocMidQEntry(in_buf
, ses
->server
);
315 spin_lock(&GlobalMid_Lock
);
316 list_add_tail(&(*ppmidQ
)->qhead
, &ses
->server
->pending_mid_q
);
317 spin_unlock(&GlobalMid_Lock
);
322 wait_for_response(struct TCP_Server_Info
*server
, struct mid_q_entry
*midQ
)
326 error
= wait_event_killable(server
->response_q
,
327 midQ
->midState
!= MID_REQUEST_SUBMITTED
);
337 * Send an SMB Request. No response info (other than return code)
338 * needs to be parsed.
340 * flags indicate the type of request buffer and how long to wait
341 * and whether to log NT STATUS code (error) before mapping it to POSIX error
345 SendReceiveNoRsp(const unsigned int xid
, struct cifsSesInfo
*ses
,
346 struct smb_hdr
*in_buf
, int flags
)
352 iov
[0].iov_base
= (char *)in_buf
;
353 iov
[0].iov_len
= in_buf
->smb_buf_length
+ 4;
354 flags
|= CIFS_NO_RESP
;
355 rc
= SendReceive2(xid
, ses
, iov
, 1, &resp_buf_type
, flags
);
356 cFYI(DBG2
, "SendRcvNoRsp flags %d rc %d", flags
, rc
);
362 sync_mid_result(struct mid_q_entry
*mid
, struct TCP_Server_Info
*server
)
366 spin_lock(&GlobalMid_Lock
);
369 spin_unlock(&GlobalMid_Lock
);
373 cERROR(1, "No response to cmd %d mid %d", mid
->command
, mid
->mid
);
374 if (mid
->midState
== MID_REQUEST_SUBMITTED
) {
375 if (server
->tcpStatus
== CifsExiting
)
378 mid
->midState
= MID_RETRY_NEEDED
;
381 if (rc
!= -EHOSTDOWN
) {
382 if (mid
->midState
== MID_RETRY_NEEDED
) {
384 cFYI(1, "marking request for retry");
389 spin_unlock(&GlobalMid_Lock
);
396 SendReceive2(const unsigned int xid
, struct cifsSesInfo
*ses
,
397 struct kvec
*iov
, int n_vec
, int *pRespBufType
/* ret */,
402 unsigned int receive_len
;
403 struct mid_q_entry
*midQ
;
404 struct smb_hdr
*in_buf
= iov
[0].iov_base
;
406 long_op
= flags
& CIFS_TIMEOUT_MASK
;
408 *pRespBufType
= CIFS_NO_BUFFER
; /* no response buf yet */
410 if ((ses
== NULL
) || (ses
->server
== NULL
)) {
411 cifs_small_buf_release(in_buf
);
412 cERROR(1, "Null session");
416 if (ses
->server
->tcpStatus
== CifsExiting
) {
417 cifs_small_buf_release(in_buf
);
421 /* Ensure that we do not send more than 50 overlapping requests
422 to the same server. We may make this configurable later or
425 rc
= wait_for_free_request(ses
->server
, long_op
);
427 cifs_small_buf_release(in_buf
);
431 /* make sure that we sign in the same order that we send on this socket
432 and avoid races inside tcp sendmsg code that could cause corruption
435 mutex_lock(&ses
->server
->srv_mutex
);
437 rc
= allocate_mid(ses
, in_buf
, &midQ
);
439 mutex_unlock(&ses
->server
->srv_mutex
);
440 cifs_small_buf_release(in_buf
);
441 /* Update # of requests on wire to server */
442 atomic_dec(&ses
->server
->inFlight
);
443 wake_up(&ses
->server
->request_q
);
446 rc
= cifs_sign_smb2(iov
, n_vec
, ses
->server
, &midQ
->sequence_number
);
448 mutex_unlock(&ses
->server
->srv_mutex
);
449 cifs_small_buf_release(in_buf
);
453 midQ
->midState
= MID_REQUEST_SUBMITTED
;
454 #ifdef CONFIG_CIFS_STATS2
455 atomic_inc(&ses
->server
->inSend
);
457 rc
= smb_sendv(ses
->server
, iov
, n_vec
);
458 #ifdef CONFIG_CIFS_STATS2
459 atomic_dec(&ses
->server
->inSend
);
460 midQ
->when_sent
= jiffies
;
463 mutex_unlock(&ses
->server
->srv_mutex
);
464 cifs_small_buf_release(in_buf
);
469 if (long_op
== CIFS_ASYNC_OP
)
472 rc
= wait_for_response(ses
->server
, midQ
);
476 rc
= sync_mid_result(midQ
, ses
->server
);
478 atomic_dec(&ses
->server
->inFlight
);
479 wake_up(&ses
->server
->request_q
);
483 receive_len
= midQ
->resp_buf
->smb_buf_length
;
485 if (receive_len
> CIFSMaxBufSize
+ MAX_CIFS_HDR_SIZE
) {
486 cERROR(1, "Frame too large received. Length: %d Xid: %d",
492 /* rcvd frame is ok */
494 if (midQ
->resp_buf
&&
495 (midQ
->midState
== MID_RESPONSE_RECEIVED
)) {
497 iov
[0].iov_base
= (char *)midQ
->resp_buf
;
499 *pRespBufType
= CIFS_LARGE_BUFFER
;
501 *pRespBufType
= CIFS_SMALL_BUFFER
;
502 iov
[0].iov_len
= receive_len
+ 4;
504 dump_smb(midQ
->resp_buf
, 80);
505 /* convert the length into a more usable form */
506 if ((receive_len
> 24) &&
507 (ses
->server
->secMode
& (SECMODE_SIGN_REQUIRED
|
508 SECMODE_SIGN_ENABLED
))) {
509 rc
= cifs_verify_signature(midQ
->resp_buf
,
511 midQ
->sequence_number
+1);
513 cERROR(1, "Unexpected SMB signature");
514 /* BB FIXME add code to kill session */
518 /* BB special case reconnect tid and uid here? */
519 rc
= map_smb_to_linux_error(midQ
->resp_buf
,
520 flags
& CIFS_LOG_ERROR
);
522 /* convert ByteCount if necessary */
523 if (receive_len
>= sizeof(struct smb_hdr
) - 4
524 /* do not count RFC1001 header */ +
525 (2 * midQ
->resp_buf
->WordCount
) + 2 /* bcc */ )
526 BCC(midQ
->resp_buf
) =
527 le16_to_cpu(BCC_LE(midQ
->resp_buf
));
528 if ((flags
& CIFS_NO_RESP
) == 0)
529 midQ
->resp_buf
= NULL
; /* mark it so buf will
534 cFYI(1, "Bad MID state?");
539 atomic_dec(&ses
->server
->inFlight
);
540 wake_up(&ses
->server
->request_q
);
546 SendReceive(const unsigned int xid
, struct cifsSesInfo
*ses
,
547 struct smb_hdr
*in_buf
, struct smb_hdr
*out_buf
,
548 int *pbytes_returned
, const int long_op
)
551 unsigned int receive_len
;
552 struct mid_q_entry
*midQ
;
555 cERROR(1, "Null smb session");
558 if (ses
->server
== NULL
) {
559 cERROR(1, "Null tcp session");
563 if (ses
->server
->tcpStatus
== CifsExiting
)
566 /* Ensure that we do not send more than 50 overlapping requests
567 to the same server. We may make this configurable later or
570 if (in_buf
->smb_buf_length
> CIFSMaxBufSize
+ MAX_CIFS_HDR_SIZE
- 4) {
571 cERROR(1, "Illegal length, greater than maximum frame, %d",
572 in_buf
->smb_buf_length
);
576 rc
= wait_for_free_request(ses
->server
, long_op
);
580 /* make sure that we sign in the same order that we send on this socket
581 and avoid races inside tcp sendmsg code that could cause corruption
584 mutex_lock(&ses
->server
->srv_mutex
);
586 rc
= allocate_mid(ses
, in_buf
, &midQ
);
588 mutex_unlock(&ses
->server
->srv_mutex
);
589 /* Update # of requests on wire to server */
590 atomic_dec(&ses
->server
->inFlight
);
591 wake_up(&ses
->server
->request_q
);
595 rc
= cifs_sign_smb(in_buf
, ses
->server
, &midQ
->sequence_number
);
597 mutex_unlock(&ses
->server
->srv_mutex
);
601 midQ
->midState
= MID_REQUEST_SUBMITTED
;
602 #ifdef CONFIG_CIFS_STATS2
603 atomic_inc(&ses
->server
->inSend
);
605 rc
= smb_send(ses
->server
, in_buf
, in_buf
->smb_buf_length
);
606 #ifdef CONFIG_CIFS_STATS2
607 atomic_dec(&ses
->server
->inSend
);
608 midQ
->when_sent
= jiffies
;
610 mutex_unlock(&ses
->server
->srv_mutex
);
615 if (long_op
== CIFS_ASYNC_OP
)
618 rc
= wait_for_response(ses
->server
, midQ
);
622 rc
= sync_mid_result(midQ
, ses
->server
);
624 atomic_dec(&ses
->server
->inFlight
);
625 wake_up(&ses
->server
->request_q
);
629 receive_len
= midQ
->resp_buf
->smb_buf_length
;
631 if (receive_len
> CIFSMaxBufSize
+ MAX_CIFS_HDR_SIZE
) {
632 cERROR(1, "Frame too large received. Length: %d Xid: %d",
638 /* rcvd frame is ok */
640 if (midQ
->resp_buf
&& out_buf
641 && (midQ
->midState
== MID_RESPONSE_RECEIVED
)) {
642 out_buf
->smb_buf_length
= receive_len
;
643 memcpy((char *)out_buf
+ 4,
644 (char *)midQ
->resp_buf
+ 4,
647 dump_smb(out_buf
, 92);
648 /* convert the length into a more usable form */
649 if ((receive_len
> 24) &&
650 (ses
->server
->secMode
& (SECMODE_SIGN_REQUIRED
|
651 SECMODE_SIGN_ENABLED
))) {
652 rc
= cifs_verify_signature(out_buf
,
654 midQ
->sequence_number
+1);
656 cERROR(1, "Unexpected SMB signature");
657 /* BB FIXME add code to kill session */
661 *pbytes_returned
= out_buf
->smb_buf_length
;
663 /* BB special case reconnect tid and uid here? */
664 rc
= map_smb_to_linux_error(out_buf
, 0 /* no log */ );
666 /* convert ByteCount if necessary */
667 if (receive_len
>= sizeof(struct smb_hdr
) - 4
668 /* do not count RFC1001 header */ +
669 (2 * out_buf
->WordCount
) + 2 /* bcc */ )
670 BCC(out_buf
) = le16_to_cpu(BCC_LE(out_buf
));
673 cERROR(1, "Bad MID state?");
678 atomic_dec(&ses
->server
->inFlight
);
679 wake_up(&ses
->server
->request_q
);
684 /* Send an NT_CANCEL SMB to cause the POSIX blocking lock to return. */
687 send_nt_cancel(struct cifsTconInfo
*tcon
, struct smb_hdr
*in_buf
,
688 struct mid_q_entry
*midQ
)
691 struct cifsSesInfo
*ses
= tcon
->ses
;
692 __u16 mid
= in_buf
->Mid
;
694 header_assemble(in_buf
, SMB_COM_NT_CANCEL
, tcon
, 0);
696 mutex_lock(&ses
->server
->srv_mutex
);
697 rc
= cifs_sign_smb(in_buf
, ses
->server
, &midQ
->sequence_number
);
699 mutex_unlock(&ses
->server
->srv_mutex
);
702 rc
= smb_send(ses
->server
, in_buf
, in_buf
->smb_buf_length
);
703 mutex_unlock(&ses
->server
->srv_mutex
);
707 /* We send a LOCKINGX_CANCEL_LOCK to cause the Windows
708 blocking lock to return. */
711 send_lock_cancel(const unsigned int xid
, struct cifsTconInfo
*tcon
,
712 struct smb_hdr
*in_buf
,
713 struct smb_hdr
*out_buf
)
716 struct cifsSesInfo
*ses
= tcon
->ses
;
717 LOCK_REQ
*pSMB
= (LOCK_REQ
*)in_buf
;
719 /* We just modify the current in_buf to change
720 the type of lock from LOCKING_ANDX_SHARED_LOCK
721 or LOCKING_ANDX_EXCLUSIVE_LOCK to
722 LOCKING_ANDX_CANCEL_LOCK. */
724 pSMB
->LockType
= LOCKING_ANDX_CANCEL_LOCK
|LOCKING_ANDX_LARGE_FILES
;
726 pSMB
->hdr
.Mid
= GetNextMid(ses
->server
);
728 return SendReceive(xid
, ses
, in_buf
, out_buf
,
729 &bytes_returned
, CIFS_STD_OP
);
733 SendReceiveBlockingLock(const unsigned int xid
, struct cifsTconInfo
*tcon
,
734 struct smb_hdr
*in_buf
, struct smb_hdr
*out_buf
,
735 int *pbytes_returned
)
739 unsigned int receive_len
;
740 struct mid_q_entry
*midQ
;
741 struct cifsSesInfo
*ses
;
743 if (tcon
== NULL
|| tcon
->ses
== NULL
) {
744 cERROR(1, "Null smb session");
749 if (ses
->server
== NULL
) {
750 cERROR(1, "Null tcp session");
754 if (ses
->server
->tcpStatus
== CifsExiting
)
757 /* Ensure that we do not send more than 50 overlapping requests
758 to the same server. We may make this configurable later or
761 if (in_buf
->smb_buf_length
> CIFSMaxBufSize
+ MAX_CIFS_HDR_SIZE
- 4) {
762 cERROR(1, "Illegal length, greater than maximum frame, %d",
763 in_buf
->smb_buf_length
);
767 rc
= wait_for_free_request(ses
->server
, CIFS_BLOCKING_OP
);
771 /* make sure that we sign in the same order that we send on this socket
772 and avoid races inside tcp sendmsg code that could cause corruption
775 mutex_lock(&ses
->server
->srv_mutex
);
777 rc
= allocate_mid(ses
, in_buf
, &midQ
);
779 mutex_unlock(&ses
->server
->srv_mutex
);
783 rc
= cifs_sign_smb(in_buf
, ses
->server
, &midQ
->sequence_number
);
786 mutex_unlock(&ses
->server
->srv_mutex
);
790 midQ
->midState
= MID_REQUEST_SUBMITTED
;
791 #ifdef CONFIG_CIFS_STATS2
792 atomic_inc(&ses
->server
->inSend
);
794 rc
= smb_send(ses
->server
, in_buf
, in_buf
->smb_buf_length
);
795 #ifdef CONFIG_CIFS_STATS2
796 atomic_dec(&ses
->server
->inSend
);
797 midQ
->when_sent
= jiffies
;
799 mutex_unlock(&ses
->server
->srv_mutex
);
806 /* Wait for a reply - allow signals to interrupt. */
807 rc
= wait_event_interruptible(ses
->server
->response_q
,
808 (!(midQ
->midState
== MID_REQUEST_SUBMITTED
)) ||
809 ((ses
->server
->tcpStatus
!= CifsGood
) &&
810 (ses
->server
->tcpStatus
!= CifsNew
)));
812 /* Were we interrupted by a signal ? */
813 if ((rc
== -ERESTARTSYS
) &&
814 (midQ
->midState
== MID_REQUEST_SUBMITTED
) &&
815 ((ses
->server
->tcpStatus
== CifsGood
) ||
816 (ses
->server
->tcpStatus
== CifsNew
))) {
818 if (in_buf
->Command
== SMB_COM_TRANSACTION2
) {
819 /* POSIX lock. We send a NT_CANCEL SMB to cause the
820 blocking lock to return. */
822 rc
= send_nt_cancel(tcon
, in_buf
, midQ
);
828 /* Windows lock. We send a LOCKINGX_CANCEL_LOCK
829 to cause the blocking lock to return. */
831 rc
= send_lock_cancel(xid
, tcon
, in_buf
, out_buf
);
833 /* If we get -ENOLCK back the lock may have
834 already been removed. Don't exit in this case. */
835 if (rc
&& rc
!= -ENOLCK
) {
841 if (wait_for_response(ses
->server
, midQ
) == 0) {
842 /* We got the response - restart system call. */
847 rc
= sync_mid_result(midQ
, ses
->server
);
851 receive_len
= midQ
->resp_buf
->smb_buf_length
;
852 if (receive_len
> CIFSMaxBufSize
+ MAX_CIFS_HDR_SIZE
) {
853 cERROR(1, "Frame too large received. Length: %d Xid: %d",
859 /* rcvd frame is ok */
861 if ((out_buf
== NULL
) || (midQ
->midState
!= MID_RESPONSE_RECEIVED
)) {
863 cERROR(1, "Bad MID state?");
867 out_buf
->smb_buf_length
= receive_len
;
868 memcpy((char *)out_buf
+ 4,
869 (char *)midQ
->resp_buf
+ 4,
872 dump_smb(out_buf
, 92);
873 /* convert the length into a more usable form */
874 if ((receive_len
> 24) &&
875 (ses
->server
->secMode
& (SECMODE_SIGN_REQUIRED
|
876 SECMODE_SIGN_ENABLED
))) {
877 rc
= cifs_verify_signature(out_buf
,
879 midQ
->sequence_number
+1);
881 cERROR(1, "Unexpected SMB signature");
882 /* BB FIXME add code to kill session */
886 *pbytes_returned
= out_buf
->smb_buf_length
;
888 /* BB special case reconnect tid and uid here? */
889 rc
= map_smb_to_linux_error(out_buf
, 0 /* no log */ );
891 /* convert ByteCount if necessary */
892 if (receive_len
>= sizeof(struct smb_hdr
) - 4
893 /* do not count RFC1001 header */ +
894 (2 * out_buf
->WordCount
) + 2 /* bcc */ )
895 BCC(out_buf
) = le16_to_cpu(BCC_LE(out_buf
));
899 if (rstart
&& rc
== -EACCES
)