hollalinux
/
linux-sg2042
mirror of https://github.com/sophgo/linux-riscv.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

CIFS: Fix lease context buffer parsing 

to prevent missing RqLs context if it's not the first one.

Signed-off-by: Pavel Shilovsky <pshilovsky@samba.org>
Signed-off-by: Steven French <steven@steven-GA-970A-DS3.(none)>
This commit is contained in:
Pavel Shilovsky 2013-07-09 19:44:56 +04:00 committed by Steve French
parent 6658b9f70e
commit fd55439638
1 changed files with 7 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
fs/cifs/smb2pdu.c
View File

@ -853,23 +853,24 @@ parse_lease_state(struct smb2_create_rsp *rsp)
char *data_offset; char *data_offset;
struct create_lease *lc; struct create_lease *lc;
bool found = false; bool found = false;
unsigned int next = 0;
char *name;
data_offset = (char *)rsp; data_offset = (char *)rsp + 4 + le32_to_cpu(rsp->CreateContextsOffset);
data_offset += 4 + le32_to_cpu(rsp->CreateContextsOffset);
lc = (struct create_lease *)data_offset; lc = (struct create_lease *)data_offset;
do { do {
char *name = le16_to_cpu(lc->ccontext.NameOffset) + (char *)lc; lc = (struct create_lease *)((char *)lc + next);
name = le16_to_cpu(lc->ccontext.NameOffset) + (char *)lc;
if (le16_to_cpu(lc->ccontext.NameLength) != 4 || if (le16_to_cpu(lc->ccontext.NameLength) != 4 ||
strncmp(name, "RqLs", 4)) { strncmp(name, "RqLs", 4)) {
lc = (struct create_lease *)((char *)lc next = le32_to_cpu(lc->ccontext.Next);
+ le32_to_cpu(lc->ccontext.Next));
continue; continue;
} }
if (lc->lcontext.LeaseFlags & SMB2_LEASE_FLAG_BREAK_IN_PROGRESS) if (lc->lcontext.LeaseFlags & SMB2_LEASE_FLAG_BREAK_IN_PROGRESS)
return SMB2_OPLOCK_LEVEL_NOCHANGE; return SMB2_OPLOCK_LEVEL_NOCHANGE;
found = true; found = true;
break; break;
} while (le32_to_cpu(lc->ccontext.Next) != 0); } while (next != 0);
if (!found) if (!found)
return 0; return 0;