- 17 Oct, 2007 3 commits
-
-
Steve French authored
When kernel_recvmsg returns -EAGAIN or -ERESTARTSYS, then cifs_demultiplex_thread sleeps for a bit and then tries the read again. When it does this, it's not zeroing out the length and that throws off the value of total_read. Fix it to zero out the length. Can cause memory corruption: If kernel_recvmsg returns an error and total_read is a large enough value, then we'll end up going through the loop again. total_read will be a bogus value, as will (pdu_length-total_read). When this happens we end up calling kernel_recvmsg with a bogus value (possibly larger than the current iov_len). At that point, memcpy_toiovec can overrun iov. It will start walking up the stack, casting other things that are there to struct iovecs (since it assumes that it's been passed an array of them). Any pointer on the stack at an address above the kvec is a candidate for corruption here. Many thanks to Ulrich Obergfell for pointing this out. Signed-off-by:
Jeff Layton <jlayton@redhat.com> Signed-off-by:
Steve French <sfrench@us.ibm.com>
-
Steve French authored
Signed-off-by: -
Steve French authored
Signed-off-by:
-
- 16 Oct, 2007 7 commits
-
-
Dave Kleikamp authored
Signed-off-by:
Dave Kleikamp <shaggy@austin.ibm.com> Signed-off-by:
-
Steve French authored
Signed-off-by: -
Steve French authored
Signed-off-by: -
Cyrill Gorcunov authored
Signed-off-by:
Cyrill Gorcunov <gorcunov@gmail.com> Signed-off-by:
-
Jeff Layton authored
SPNEGO setup needs only some of these strings. Break up unicode_ssetup_strings so we can call them individually. Signed-off-by:
-
Jeff Layton authored
SPNEGO NegProt response also contains a server_GUID. Parse it as we would for RawNTLMSSP. Signed-off-by:
-
Jeff Layton authored
[CIFS] fix error message about packet signing When packet signing is disabled and the server requires it, cifs prints an error message. The current message refers to a file in /proc that no longer exists. Fix it to refer to the correct file. Signed-off-by:
-
- 14 Oct, 2007 1 commit
-
-
Cyril Gorcunov authored
Signed-off-by:
-
- 12 Oct, 2007 4 commits
-
-
Steve French authored
Signed-off-by:
Andrew Morton <akpm@linux-foundation.org> Signed-off-by:
-
Steve French authored
Signed-off-by:
-
Steve French authored
Signed-off-by: -
Steve French authored
Signed-off-by:
Shirish Pargaonkar <shirishp@us.ibm.com> Signed-off-by:
-
- 04 Oct, 2007 1 commit
-
-
Steve French authored
Fixes two problems: 1) we dropped down to negotiating lanman if we did not recognize the mechanism (krb5 e.g.) 2) we did not stop cifsd (thus will fail when doing rmod cifs with slab free errors) when we fail tcon but have a bad session (which is the case in which signing is required but we don't allow signing on the client) It also turns on extended security flag in the header when passing "sec=krb5" on mount command (although kerberos support is not done of course) Acked-by:
-
- 03 Oct, 2007 3 commits
-
-
Steve French authored
Signed-off-by: -
Shirish Pargaonkar authored
Signed-off-by:
-
Mariusz Kozlowski authored
This patch does kmalloc + memset conversion to kzalloc and removes some redundant argument checks. Signed-off-by:
Mariusz Kozlowski <m.kozlowski@tuxland.pl> Signed-off-by:
-
- 02 Oct, 2007 1 commit
-
-
Steve French authored
When find_writable_file is racing with close and the session to the server goes down, Shaggy noticed that there was a chance that an open file in the list of files off the inode could have been freed by close since cifs_reconnect can block (the spinlock thus not held). This means that we have to start over at the beginning of the list in some cases. There is a 2nd change that needs to be made later (pointed out by Jeremy Allison and Shaggy) in order to prevent cifs_close ever freeing the cifs per file info when a write is pending. Although we delay close from freeing this memory for sufficiently long for all known cases, ultimately on a very, very slow write overlapping a close pending we need to allow close to return (without freeing the cifs file info) and defer freeing the memory to be the responsibility of the (sloooow) write thread (presumably have to look at every place wrtPending is decremented - and add a flag for deferred free for after wrtPending goes to zero). Acked-by:
Shaggy <shaggy@us.ibm.com> Acked-by:
-
- 01 Oct, 2007 1 commit
-
-
Steve French authored
num_auth is really num_subauth in ACL terminology Signed-off-by:
-
- 29 Sep, 2007 1 commit
-
-
Steve French authored
Also fixes typo which could cause build break Signed-off-by:
-
- 28 Sep, 2007 2 commits
-
-
Steve French authored
This allows cifs to mount to ipc shares (IPC$) which will allow user space applications to layer over authenticated cifs connections (useful for Wine and others that would want to put DCE/RPC over CIFS or run CIFS named pipes) Acked-by:
Rob Shearman <rob@codeweavers.com> Signed-off-by:
-
Steve French authored
We were allocating request buffers twice in the statfs path when mounted to very old (Windows 9x) servers. Signed-off-by:
-
- 25 Sep, 2007 2 commits
-
-
Steve French authored
Signed-off-by: -
Steve French authored
Signed-off-by:
-
- 24 Sep, 2007 1 commit
-
-
Steve French authored
Add code to be able to dump CIFS ACL information when Query Posix ACL with cifsacl mount parm enabled. Signed-off-by:
-
- 20 Sep, 2007 3 commits
-
-
Steve French authored
Signed-off-by: -
Steve French authored
Signed-off-by: -
Steve French authored
A reasonably common NAS server returns an error on the SetFSInfo of the Unix capabilities. Log a message for this alerting the user that the server may have problems with the Unix extensions, and telling them what they can do to workaround it. Unfortunately the server does not return other clues that we could easily use to turn the Unix Extension support off automatically in this case (since they claim to support it). Signed-off-by:
-
- 17 Sep, 2007 1 commit
-
-
Steve French authored
posix ops Signed-off-by:
-
- 16 Sep, 2007 1 commit
-
-
Steve French authored
There is a small memory leak in fs/cifs/inode.c::cifs_mkdir(). Storage for 'pInfo' is allocated with kzalloc(), but if the call to CIFSPOSIXCreate(...) happens to return 0 and pInfo->Type == -1, then we'll jump to the 'mkdir_get_info' label without freeing the storage allocated for 'pInfo'. This patch adds a kfree() call to free the storage just before jumping to the label, thus getting rid of the leak. Signed-off-by:
Jesper Juhl <jesper.juhl@gmail.com> Signed-off-by:
-
- 15 Sep, 2007 3 commits
-
-
Steve French authored
Signed-off-by: -
Steve French authored
Potential problem was noticed by Cyrill Gorcunov CC: Cyrill Gorcunov <gorcunov@gmail.com> Signed-off-by: -
Steve French authored
Signed-off-by:
-
- 13 Sep, 2007 1 commit
-
-
Jeff authored
When making a directory with POSIX mkdir calls, cifs_mkdir does not respect the umask. This patch causes the new POSIX mkdir to create with the right mode Signed-off-by:
-
- 11 Sep, 2007 1 commit
-
-
Steve French authored
Harmless since it only protected turning off caching for the inode, but cleaner to lock around this in case we have a close racing with open. Signed-off-by:
-
- 07 Sep, 2007 1 commit
-
-
Steve French authored
There was a case in which find_writable_file was not waiting long enough under heavy stress when writepages was racing with close of the file handle being used by the write. Signed-off-by:
-
- 31 Aug, 2007 1 commit
-
-
Steve French authored
Signed-off-by:
-
- 30 Aug, 2007 1 commit
-
-
Steve French authored
Signed-off-by:
-
