4 * Copyright (C) International Business Machines Corp., 2002,2008
5 * Author(s): Steve French (sfrench@us.ibm.com)
6 * Jeremy Allison (jra@samba.org) 2006.
8 * This library is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU Lesser General Public License as published
10 * by the Free Software Foundation; either version 2.1 of the License, or
11 * (at your option) any later version.
13 * This library is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
16 * the GNU Lesser General Public License for more details.
18 * You should have received a copy of the GNU Lesser General Public License
19 * along with this library; if not, write to the Free Software
20 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
24 #include <linux/list.h>
25 #include <linux/wait.h>
26 #include <linux/net.h>
27 #include <linux/delay.h>
28 #include <asm/uaccess.h>
29 #include <asm/processor.h>
30 #include <linux/mempool.h>
33 #include "cifsproto.h"
34 #include "cifs_debug.h"
36 extern mempool_t *cifs_mid_poolp;
37 extern struct kmem_cache *cifs_oplock_cachep;
39 static struct mid_q_entry *
40 AllocMidQEntry(const struct smb_hdr *smb_buffer, struct TCP_Server_Info *server)
42 struct mid_q_entry *temp;
45 cERROR(1, ("Null TCP session in AllocMidQEntry"));
49 temp = mempool_alloc(cifs_mid_poolp, GFP_NOFS);
53 memset(temp, 0, sizeof(struct mid_q_entry));
54 temp->mid = smb_buffer->Mid; /* always LE */
55 temp->pid = current->pid;
56 temp->command = smb_buffer->Command;
57 cFYI(1, ("For smb_command %d", temp->command));
58 /* do_gettimeofday(&temp->when_sent);*/ /* easier to use jiffies */
59 /* when mid allocated can be before when sent */
60 temp->when_alloc = jiffies;
64 spin_lock(&GlobalMid_Lock);
65 list_add_tail(&temp->qhead, &server->pending_mid_q);
66 atomic_inc(&midCount);
67 temp->midState = MID_REQUEST_ALLOCATED;
68 spin_unlock(&GlobalMid_Lock);
73 DeleteMidQEntry(struct mid_q_entry *midEntry)
75 #ifdef CONFIG_CIFS_STATS2
78 spin_lock(&GlobalMid_Lock);
79 midEntry->midState = MID_FREE;
80 list_del(&midEntry->qhead);
81 atomic_dec(&midCount);
82 spin_unlock(&GlobalMid_Lock);
83 if (midEntry->largeBuf)
84 cifs_buf_release(midEntry->resp_buf);
86 cifs_small_buf_release(midEntry->resp_buf);
87 #ifdef CONFIG_CIFS_STATS2
89 /* commands taking longer than one second are indications that
90 something is wrong, unless it is quite a slow link or server */
91 if ((now - midEntry->when_alloc) > HZ) {
92 if ((cifsFYI & CIFS_TIMER) &&
93 (midEntry->command != SMB_COM_LOCKING_ANDX)) {
94 printk(KERN_DEBUG " CIFS slow rsp: cmd %d mid %d",
95 midEntry->command, midEntry->mid);
96 printk(" A: 0x%lx S: 0x%lx R: 0x%lx\n",
97 now - midEntry->when_alloc,
98 now - midEntry->when_sent,
99 now - midEntry->when_received);
103 mempool_free(midEntry, cifs_mid_poolp);
106 struct oplock_q_entry *
107 AllocOplockQEntry(struct inode *pinode, __u16 fid, struct cifsTconInfo *tcon)
109 struct oplock_q_entry *temp;
110 if ((pinode == NULL) || (tcon == NULL)) {
111 cERROR(1, ("Null parms passed to AllocOplockQEntry"));
114 temp = (struct oplock_q_entry *) kmem_cache_alloc(cifs_oplock_cachep,
119 temp->pinode = pinode;
122 spin_lock(&GlobalMid_Lock);
123 list_add_tail(&temp->qhead, &GlobalOplock_Q);
124 spin_unlock(&GlobalMid_Lock);
130 void DeleteOplockQEntry(struct oplock_q_entry *oplockEntry)
132 spin_lock(&GlobalMid_Lock);
133 /* should we check if list empty first? */
134 list_del(&oplockEntry->qhead);
135 spin_unlock(&GlobalMid_Lock);
136 kmem_cache_free(cifs_oplock_cachep, oplockEntry);
140 void DeleteTconOplockQEntries(struct cifsTconInfo *tcon)
142 struct oplock_q_entry *temp;
147 spin_lock(&GlobalMid_Lock);
148 list_for_each_entry(temp, &GlobalOplock_Q, qhead) {
149 if ((temp->tcon) && (temp->tcon == tcon)) {
150 list_del(&temp->qhead);
151 kmem_cache_free(cifs_oplock_cachep, temp);
154 spin_unlock(&GlobalMid_Lock);
158 smb_send(struct socket *ssocket, struct smb_hdr *smb_buffer,
159 unsigned int smb_buf_length, struct sockaddr *sin, bool noblocksnd)
163 struct msghdr smb_msg;
165 unsigned len = smb_buf_length + 4;
168 return -ENOTSOCK; /* BB eventually add reconnect code here */
169 iov.iov_base = smb_buffer;
172 smb_msg.msg_name = sin;
173 smb_msg.msg_namelen = sizeof(struct sockaddr);
174 smb_msg.msg_control = NULL;
175 smb_msg.msg_controllen = 0;
177 smb_msg.msg_flags = MSG_DONTWAIT + MSG_NOSIGNAL;
179 smb_msg.msg_flags = MSG_NOSIGNAL;
181 /* smb header is converted in header_assemble. bcc and rest of SMB word
182 area, and byte area if necessary, is converted to littleendian in
183 cifssmb.c and RFC1001 len is converted to bigendian in smb_send
184 Flags2 is converted in SendReceive */
186 smb_buffer->smb_buf_length = cpu_to_be32(smb_buffer->smb_buf_length);
187 cFYI(1, ("Sending smb of length %d", smb_buf_length));
188 dump_smb(smb_buffer, len);
191 rc = kernel_sendmsg(ssocket, &smb_msg, &iov, 1, len);
192 if ((rc == -ENOSPC) || (rc == -EAGAIN)) {
194 /* smaller timeout here than send2 since smaller size */
195 /* Although it may not be required, this also is smaller
199 ("sends on sock %p stuck for 7 seconds",
210 i = 0; /* reset i after each successful send */
217 cERROR(1, ("Error %d sending data on socket to server", rc));
222 /* Don't want to modify the buffer as a
223 side effect of this call. */
224 smb_buffer->smb_buf_length = smb_buf_length;
230 smb_send2(struct TCP_Server_Info *server, struct kvec *iov, int n_vec,
231 struct sockaddr *sin, bool noblocksnd)
235 struct msghdr smb_msg;
236 struct smb_hdr *smb_buffer = iov[0].iov_base;
237 unsigned int len = iov[0].iov_len;
238 unsigned int total_len;
240 unsigned int smb_buf_length = smb_buffer->smb_buf_length;
241 struct socket *ssocket = server->ssocket;
244 return -ENOTSOCK; /* BB eventually add reconnect code here */
246 smb_msg.msg_name = sin;
247 smb_msg.msg_namelen = sizeof(struct sockaddr);
248 smb_msg.msg_control = NULL;
249 smb_msg.msg_controllen = 0;
251 smb_msg.msg_flags = MSG_DONTWAIT + MSG_NOSIGNAL;
253 smb_msg.msg_flags = MSG_NOSIGNAL;
255 /* smb header is converted in header_assemble. bcc and rest of SMB word
256 area, and byte area if necessary, is converted to littleendian in
257 cifssmb.c and RFC1001 len is converted to bigendian in smb_send
258 Flags2 is converted in SendReceive */
262 for (i = 0; i < n_vec; i++)
263 total_len += iov[i].iov_len;
265 smb_buffer->smb_buf_length = cpu_to_be32(smb_buffer->smb_buf_length);
266 cFYI(1, ("Sending smb: total_len %d", total_len));
267 dump_smb(smb_buffer, len);
271 rc = kernel_sendmsg(ssocket, &smb_msg, &iov[first_vec],
272 n_vec - first_vec, total_len);
273 if ((rc == -ENOSPC) || (rc == -EAGAIN)) {
277 ("sends on sock %p stuck for 15 seconds",
288 if (rc == total_len) {
291 } else if (rc > total_len) {
292 cERROR(1, ("sent %d requested %d", rc, total_len));
296 /* should never happen, letting socket clear before
297 retrying is our only obvious option here */
298 cERROR(1, ("tcp sent no data"));
303 /* the line below resets i */
304 for (i = first_vec; i < n_vec; i++) {
305 if (iov[i].iov_len) {
306 if (rc > iov[i].iov_len) {
307 rc -= iov[i].iov_len;
310 iov[i].iov_base += rc;
311 iov[i].iov_len -= rc;
317 i = 0; /* in case we get ENOSPC on the next send */
320 if ((total_len > 0) && (total_len != smb_buf_length + 4)) {
321 cFYI(1, ("partial send (%d remaining), terminating session",
323 /* If we have only sent part of an SMB then the next SMB
324 could be taken as the remainder of this one. We need
325 to kill the socket so the server throws away the partial
327 server->tcpStatus = CifsNeedReconnect;
331 cERROR(1, ("Error %d sending data on socket to server", rc));
335 /* Don't want to modify the buffer as a
336 side effect of this call. */
337 smb_buffer->smb_buf_length = smb_buf_length;
342 static int wait_for_free_request(struct cifsSesInfo *ses, const int long_op)
344 if (long_op == CIFS_ASYNC_OP) {
345 /* oplock breaks must not be held up */
346 atomic_inc(&ses->server->inFlight);
350 spin_lock(&GlobalMid_Lock);
352 if (atomic_read(&ses->server->inFlight) >=
354 spin_unlock(&GlobalMid_Lock);
355 #ifdef CONFIG_CIFS_STATS2
356 atomic_inc(&ses->server->num_waiters);
358 wait_event(ses->server->request_q,
359 atomic_read(&ses->server->inFlight)
361 #ifdef CONFIG_CIFS_STATS2
362 atomic_dec(&ses->server->num_waiters);
364 spin_lock(&GlobalMid_Lock);
366 if (ses->server->tcpStatus == CifsExiting) {
367 spin_unlock(&GlobalMid_Lock);
371 /* can not count locking commands against total
372 as they are allowed to block on server */
374 /* update # of requests on the wire to server */
375 if (long_op != CIFS_BLOCKING_OP)
376 atomic_inc(&ses->server->inFlight);
377 spin_unlock(&GlobalMid_Lock);
384 static int allocate_mid(struct cifsSesInfo *ses, struct smb_hdr *in_buf,
385 struct mid_q_entry **ppmidQ)
387 if (ses->server->tcpStatus == CifsExiting) {
391 if (ses->server->tcpStatus == CifsNeedReconnect) {
392 cFYI(1, ("tcp session dead - return to caller to retry"));
396 if (ses->status != CifsGood) {
397 /* check if SMB session is bad because we are setting it up */
398 if ((in_buf->Command != SMB_COM_SESSION_SETUP_ANDX) &&
399 (in_buf->Command != SMB_COM_NEGOTIATE))
401 /* else ok - we are setting up session */
403 *ppmidQ = AllocMidQEntry(in_buf, ses->server);
409 static int wait_for_response(struct cifsSesInfo *ses,
410 struct mid_q_entry *midQ,
411 unsigned long timeout,
412 unsigned long time_to_wait)
414 unsigned long curr_timeout;
417 curr_timeout = timeout + jiffies;
418 wait_event_timeout(ses->server->response_q,
419 midQ->midState != MID_REQUEST_SUBMITTED, timeout);
421 if (time_after(jiffies, curr_timeout) &&
422 (midQ->midState == MID_REQUEST_SUBMITTED) &&
423 ((ses->server->tcpStatus == CifsGood) ||
424 (ses->server->tcpStatus == CifsNew))) {
428 /* We timed out. Is the server still
430 spin_lock(&GlobalMid_Lock);
431 lrt = ses->server->lstrp;
432 spin_unlock(&GlobalMid_Lock);
434 /* Calculate time_to_wait past last receive time.
435 Although we prefer not to time out if the
436 server is still responding - we will time
437 out if the server takes more than 15 (or 45
438 or 180) seconds to respond to this request
439 and has not responded to any request from
440 other threads on the client within 10 seconds */
442 if (time_after(jiffies, lrt)) {
443 /* No replies for time_to_wait. */
444 cERROR(1, ("server not responding"));
456 * Send an SMB Request. No response info (other than return code)
457 * needs to be parsed.
459 * flags indicate the type of request buffer and how long to wait
460 * and whether to log NT STATUS code (error) before mapping it to POSIX error
464 SendReceiveNoRsp(const unsigned int xid, struct cifsSesInfo *ses,
465 struct smb_hdr *in_buf, int flags)
471 iov[0].iov_base = (char *)in_buf;
472 iov[0].iov_len = in_buf->smb_buf_length + 4;
473 flags |= CIFS_NO_RESP;
474 rc = SendReceive2(xid, ses, iov, 1, &resp_buf_type, flags);
475 cFYI(DBG2, ("SendRcvNoRsp flags %d rc %d", flags, rc));
481 SendReceive2(const unsigned int xid, struct cifsSesInfo *ses,
482 struct kvec *iov, int n_vec, int *pRespBufType /* ret */,
487 unsigned int receive_len;
488 unsigned long timeout;
489 struct mid_q_entry *midQ;
490 struct smb_hdr *in_buf = iov[0].iov_base;
492 long_op = flags & CIFS_TIMEOUT_MASK;
494 *pRespBufType = CIFS_NO_BUFFER; /* no response buf yet */
496 if ((ses == NULL) || (ses->server == NULL)) {
497 cifs_small_buf_release(in_buf);
498 cERROR(1, ("Null session"));
502 if (ses->server->tcpStatus == CifsExiting) {
503 cifs_small_buf_release(in_buf);
507 /* Ensure that we do not send more than 50 overlapping requests
508 to the same server. We may make this configurable later or
511 rc = wait_for_free_request(ses, long_op);
513 cifs_small_buf_release(in_buf);
517 /* make sure that we sign in the same order that we send on this socket
518 and avoid races inside tcp sendmsg code that could cause corruption
521 mutex_lock(&ses->server->srv_mutex);
523 rc = allocate_mid(ses, in_buf, &midQ);
525 mutex_unlock(&ses->server->srv_mutex);
526 cifs_small_buf_release(in_buf);
527 /* Update # of requests on wire to server */
528 atomic_dec(&ses->server->inFlight);
529 wake_up(&ses->server->request_q);
532 rc = cifs_sign_smb2(iov, n_vec, ses->server, &midQ->sequence_number);
534 mutex_unlock(&ses->server->srv_mutex);
535 cifs_small_buf_release(in_buf);
539 midQ->midState = MID_REQUEST_SUBMITTED;
540 #ifdef CONFIG_CIFS_STATS2
541 atomic_inc(&ses->server->inSend);
543 rc = smb_send2(ses->server, iov, n_vec,
544 (struct sockaddr *) &(ses->server->addr.sockAddr),
545 ses->server->noblocksnd);
546 #ifdef CONFIG_CIFS_STATS2
547 atomic_dec(&ses->server->inSend);
548 midQ->when_sent = jiffies;
551 mutex_unlock(&ses->server->srv_mutex);
552 cifs_small_buf_release(in_buf);
557 if (long_op == CIFS_STD_OP)
559 else if (long_op == CIFS_VLONG_OP) /* e.g. slow writes past EOF */
561 else if (long_op == CIFS_LONG_OP)
562 timeout = 45 * HZ; /* should be greater than
563 servers oplock break timeout (about 43 seconds) */
564 else if (long_op == CIFS_ASYNC_OP)
566 else if (long_op == CIFS_BLOCKING_OP)
567 timeout = 0x7FFFFFFF; /* large, but not so large as to wrap */
569 cERROR(1, ("unknown timeout flag %d", long_op));
574 /* wait for 15 seconds or until woken up due to response arriving or
575 due to last connection to this server being unmounted */
576 if (signal_pending(current)) {
577 /* if signal pending do not hold up user for full smb timeout
578 but we still give response a chance to complete */
582 /* No user interrupts in wait - wreaks havoc with performance */
583 wait_for_response(ses, midQ, timeout, 10 * HZ);
585 spin_lock(&GlobalMid_Lock);
586 if (midQ->resp_buf) {
587 spin_unlock(&GlobalMid_Lock);
588 receive_len = midQ->resp_buf->smb_buf_length;
590 cERROR(1, ("No response to cmd %d mid %d",
591 midQ->command, midQ->mid));
592 if (midQ->midState == MID_REQUEST_SUBMITTED) {
593 if (ses->server->tcpStatus == CifsExiting)
596 ses->server->tcpStatus = CifsNeedReconnect;
597 midQ->midState = MID_RETRY_NEEDED;
601 if (rc != -EHOSTDOWN) {
602 if (midQ->midState == MID_RETRY_NEEDED) {
604 cFYI(1, ("marking request for retry"));
609 spin_unlock(&GlobalMid_Lock);
610 DeleteMidQEntry(midQ);
611 /* Update # of requests on wire to server */
612 atomic_dec(&ses->server->inFlight);
613 wake_up(&ses->server->request_q);
617 if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) {
618 cERROR(1, ("Frame too large received. Length: %d Xid: %d",
621 } else { /* rcvd frame is ok */
622 if (midQ->resp_buf &&
623 (midQ->midState == MID_RESPONSE_RECEIVED)) {
625 iov[0].iov_base = (char *)midQ->resp_buf;
627 *pRespBufType = CIFS_LARGE_BUFFER;
629 *pRespBufType = CIFS_SMALL_BUFFER;
630 iov[0].iov_len = receive_len + 4;
632 dump_smb(midQ->resp_buf, 80);
633 /* convert the length into a more usable form */
634 if ((receive_len > 24) &&
635 (ses->server->secMode & (SECMODE_SIGN_REQUIRED |
636 SECMODE_SIGN_ENABLED))) {
637 rc = cifs_verify_signature(midQ->resp_buf,
638 &ses->server->mac_signing_key,
639 midQ->sequence_number+1);
641 cERROR(1, ("Unexpected SMB signature"));
642 /* BB FIXME add code to kill session */
646 /* BB special case reconnect tid and uid here? */
647 rc = map_smb_to_linux_error(midQ->resp_buf,
648 flags & CIFS_LOG_ERROR);
650 /* convert ByteCount if necessary */
651 if (receive_len >= sizeof(struct smb_hdr) - 4
652 /* do not count RFC1001 header */ +
653 (2 * midQ->resp_buf->WordCount) + 2 /* bcc */ )
654 BCC(midQ->resp_buf) =
655 le16_to_cpu(BCC_LE(midQ->resp_buf));
656 if ((flags & CIFS_NO_RESP) == 0)
657 midQ->resp_buf = NULL; /* mark it so buf will
662 cFYI(1, ("Bad MID state?"));
667 DeleteMidQEntry(midQ);
668 atomic_dec(&ses->server->inFlight);
669 wake_up(&ses->server->request_q);
675 SendReceive(const unsigned int xid, struct cifsSesInfo *ses,
676 struct smb_hdr *in_buf, struct smb_hdr *out_buf,
677 int *pbytes_returned, const int long_op)
680 unsigned int receive_len;
681 unsigned long timeout;
682 struct mid_q_entry *midQ;
685 cERROR(1, ("Null smb session"));
688 if (ses->server == NULL) {
689 cERROR(1, ("Null tcp session"));
693 if (ses->server->tcpStatus == CifsExiting)
696 /* Ensure that we do not send more than 50 overlapping requests
697 to the same server. We may make this configurable later or
700 if (in_buf->smb_buf_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
701 cERROR(1, ("Illegal length, greater than maximum frame, %d",
702 in_buf->smb_buf_length));
706 rc = wait_for_free_request(ses, long_op);
710 /* make sure that we sign in the same order that we send on this socket
711 and avoid races inside tcp sendmsg code that could cause corruption
714 mutex_lock(&ses->server->srv_mutex);
716 rc = allocate_mid(ses, in_buf, &midQ);
718 mutex_unlock(&ses->server->srv_mutex);
719 /* Update # of requests on wire to server */
720 atomic_dec(&ses->server->inFlight);
721 wake_up(&ses->server->request_q);
725 rc = cifs_sign_smb(in_buf, ses->server, &midQ->sequence_number);
727 mutex_unlock(&ses->server->srv_mutex);
731 midQ->midState = MID_REQUEST_SUBMITTED;
732 #ifdef CONFIG_CIFS_STATS2
733 atomic_inc(&ses->server->inSend);
735 rc = smb_send(ses->server->ssocket, in_buf, in_buf->smb_buf_length,
736 (struct sockaddr *) &(ses->server->addr.sockAddr),
737 ses->server->noblocksnd);
738 #ifdef CONFIG_CIFS_STATS2
739 atomic_dec(&ses->server->inSend);
740 midQ->when_sent = jiffies;
742 mutex_unlock(&ses->server->srv_mutex);
747 if (long_op == CIFS_STD_OP)
749 /* wait for 15 seconds or until woken up due to response arriving or
750 due to last connection to this server being unmounted */
751 else if (long_op == CIFS_ASYNC_OP)
753 else if (long_op == CIFS_VLONG_OP) /* writes past EOF can be slow */
755 else if (long_op == CIFS_LONG_OP)
756 timeout = 45 * HZ; /* should be greater than
757 servers oplock break timeout (about 43 seconds) */
758 else if (long_op == CIFS_BLOCKING_OP)
759 timeout = 0x7FFFFFFF; /* large but no so large as to wrap */
761 cERROR(1, ("unknown timeout flag %d", long_op));
766 if (signal_pending(current)) {
767 /* if signal pending do not hold up user for full smb timeout
768 but we still give response a chance to complete */
772 /* No user interrupts in wait - wreaks havoc with performance */
773 wait_for_response(ses, midQ, timeout, 10 * HZ);
775 spin_lock(&GlobalMid_Lock);
776 if (midQ->resp_buf) {
777 spin_unlock(&GlobalMid_Lock);
778 receive_len = midQ->resp_buf->smb_buf_length;
780 cERROR(1, ("No response for cmd %d mid %d",
781 midQ->command, midQ->mid));
782 if (midQ->midState == MID_REQUEST_SUBMITTED) {
783 if (ses->server->tcpStatus == CifsExiting)
786 ses->server->tcpStatus = CifsNeedReconnect;
787 midQ->midState = MID_RETRY_NEEDED;
791 if (rc != -EHOSTDOWN) {
792 if (midQ->midState == MID_RETRY_NEEDED) {
794 cFYI(1, ("marking request for retry"));
799 spin_unlock(&GlobalMid_Lock);
800 DeleteMidQEntry(midQ);
801 /* Update # of requests on wire to server */
802 atomic_dec(&ses->server->inFlight);
803 wake_up(&ses->server->request_q);
807 if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) {
808 cERROR(1, ("Frame too large received. Length: %d Xid: %d",
811 } else { /* rcvd frame is ok */
813 if (midQ->resp_buf && out_buf
814 && (midQ->midState == MID_RESPONSE_RECEIVED)) {
815 out_buf->smb_buf_length = receive_len;
816 memcpy((char *)out_buf + 4,
817 (char *)midQ->resp_buf + 4,
820 dump_smb(out_buf, 92);
821 /* convert the length into a more usable form */
822 if ((receive_len > 24) &&
823 (ses->server->secMode & (SECMODE_SIGN_REQUIRED |
824 SECMODE_SIGN_ENABLED))) {
825 rc = cifs_verify_signature(out_buf,
826 &ses->server->mac_signing_key,
827 midQ->sequence_number+1);
829 cERROR(1, ("Unexpected SMB signature"));
830 /* BB FIXME add code to kill session */
834 *pbytes_returned = out_buf->smb_buf_length;
836 /* BB special case reconnect tid and uid here? */
837 rc = map_smb_to_linux_error(out_buf, 0 /* no log */ );
839 /* convert ByteCount if necessary */
840 if (receive_len >= sizeof(struct smb_hdr) - 4
841 /* do not count RFC1001 header */ +
842 (2 * out_buf->WordCount) + 2 /* bcc */ )
843 BCC(out_buf) = le16_to_cpu(BCC_LE(out_buf));
846 cERROR(1, ("Bad MID state?"));
851 DeleteMidQEntry(midQ);
852 atomic_dec(&ses->server->inFlight);
853 wake_up(&ses->server->request_q);
858 /* Send an NT_CANCEL SMB to cause the POSIX blocking lock to return. */
861 send_nt_cancel(struct cifsTconInfo *tcon, struct smb_hdr *in_buf,
862 struct mid_q_entry *midQ)
865 struct cifsSesInfo *ses = tcon->ses;
866 __u16 mid = in_buf->Mid;
868 header_assemble(in_buf, SMB_COM_NT_CANCEL, tcon, 0);
870 mutex_lock(&ses->server->srv_mutex);
871 rc = cifs_sign_smb(in_buf, ses->server, &midQ->sequence_number);
873 mutex_unlock(&ses->server->srv_mutex);
876 rc = smb_send(ses->server->ssocket, in_buf, in_buf->smb_buf_length,
877 (struct sockaddr *) &(ses->server->addr.sockAddr),
878 ses->server->noblocksnd);
879 mutex_unlock(&ses->server->srv_mutex);
883 /* We send a LOCKINGX_CANCEL_LOCK to cause the Windows
884 blocking lock to return. */
887 send_lock_cancel(const unsigned int xid, struct cifsTconInfo *tcon,
888 struct smb_hdr *in_buf,
889 struct smb_hdr *out_buf)
892 struct cifsSesInfo *ses = tcon->ses;
893 LOCK_REQ *pSMB = (LOCK_REQ *)in_buf;
895 /* We just modify the current in_buf to change
896 the type of lock from LOCKING_ANDX_SHARED_LOCK
897 or LOCKING_ANDX_EXCLUSIVE_LOCK to
898 LOCKING_ANDX_CANCEL_LOCK. */
900 pSMB->LockType = LOCKING_ANDX_CANCEL_LOCK|LOCKING_ANDX_LARGE_FILES;
902 pSMB->hdr.Mid = GetNextMid(ses->server);
904 return SendReceive(xid, ses, in_buf, out_buf,
905 &bytes_returned, CIFS_STD_OP);
909 SendReceiveBlockingLock(const unsigned int xid, struct cifsTconInfo *tcon,
910 struct smb_hdr *in_buf, struct smb_hdr *out_buf,
911 int *pbytes_returned)
915 unsigned int receive_len;
916 struct mid_q_entry *midQ;
917 struct cifsSesInfo *ses;
919 if (tcon == NULL || tcon->ses == NULL) {
920 cERROR(1, ("Null smb session"));
925 if (ses->server == NULL) {
926 cERROR(1, ("Null tcp session"));
930 if (ses->server->tcpStatus == CifsExiting)
933 /* Ensure that we do not send more than 50 overlapping requests
934 to the same server. We may make this configurable later or
937 if (in_buf->smb_buf_length > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE - 4) {
938 cERROR(1, ("Illegal length, greater than maximum frame, %d",
939 in_buf->smb_buf_length));
943 rc = wait_for_free_request(ses, CIFS_BLOCKING_OP);
947 /* make sure that we sign in the same order that we send on this socket
948 and avoid races inside tcp sendmsg code that could cause corruption
951 mutex_lock(&ses->server->srv_mutex);
953 rc = allocate_mid(ses, in_buf, &midQ);
955 mutex_unlock(&ses->server->srv_mutex);
959 rc = cifs_sign_smb(in_buf, ses->server, &midQ->sequence_number);
961 DeleteMidQEntry(midQ);
962 mutex_unlock(&ses->server->srv_mutex);
966 midQ->midState = MID_REQUEST_SUBMITTED;
967 #ifdef CONFIG_CIFS_STATS2
968 atomic_inc(&ses->server->inSend);
970 rc = smb_send(ses->server->ssocket, in_buf, in_buf->smb_buf_length,
971 (struct sockaddr *) &(ses->server->addr.sockAddr),
972 ses->server->noblocksnd);
973 #ifdef CONFIG_CIFS_STATS2
974 atomic_dec(&ses->server->inSend);
975 midQ->when_sent = jiffies;
977 mutex_unlock(&ses->server->srv_mutex);
980 DeleteMidQEntry(midQ);
984 /* Wait for a reply - allow signals to interrupt. */
985 rc = wait_event_interruptible(ses->server->response_q,
986 (!(midQ->midState == MID_REQUEST_SUBMITTED)) ||
987 ((ses->server->tcpStatus != CifsGood) &&
988 (ses->server->tcpStatus != CifsNew)));
990 /* Were we interrupted by a signal ? */
991 if ((rc == -ERESTARTSYS) &&
992 (midQ->midState == MID_REQUEST_SUBMITTED) &&
993 ((ses->server->tcpStatus == CifsGood) ||
994 (ses->server->tcpStatus == CifsNew))) {
996 if (in_buf->Command == SMB_COM_TRANSACTION2) {
997 /* POSIX lock. We send a NT_CANCEL SMB to cause the
998 blocking lock to return. */
1000 rc = send_nt_cancel(tcon, in_buf, midQ);
1002 DeleteMidQEntry(midQ);
1006 /* Windows lock. We send a LOCKINGX_CANCEL_LOCK
1007 to cause the blocking lock to return. */
1009 rc = send_lock_cancel(xid, tcon, in_buf, out_buf);
1011 /* If we get -ENOLCK back the lock may have
1012 already been removed. Don't exit in this case. */
1013 if (rc && rc != -ENOLCK) {
1014 DeleteMidQEntry(midQ);
1019 /* Wait 5 seconds for the response. */
1020 if (wait_for_response(ses, midQ, 5 * HZ, 5 * HZ) == 0) {
1021 /* We got the response - restart system call. */
1026 spin_lock(&GlobalMid_Lock);
1027 if (midQ->resp_buf) {
1028 spin_unlock(&GlobalMid_Lock);
1029 receive_len = midQ->resp_buf->smb_buf_length;
1031 cERROR(1, ("No response for cmd %d mid %d",
1032 midQ->command, midQ->mid));
1033 if (midQ->midState == MID_REQUEST_SUBMITTED) {
1034 if (ses->server->tcpStatus == CifsExiting)
1037 ses->server->tcpStatus = CifsNeedReconnect;
1038 midQ->midState = MID_RETRY_NEEDED;
1042 if (rc != -EHOSTDOWN) {
1043 if (midQ->midState == MID_RETRY_NEEDED) {
1045 cFYI(1, ("marking request for retry"));
1050 spin_unlock(&GlobalMid_Lock);
1051 DeleteMidQEntry(midQ);
1055 if (receive_len > CIFSMaxBufSize + MAX_CIFS_HDR_SIZE) {
1056 cERROR(1, ("Frame too large received. Length: %d Xid: %d",
1059 } else { /* rcvd frame is ok */
1061 if (midQ->resp_buf && out_buf
1062 && (midQ->midState == MID_RESPONSE_RECEIVED)) {
1063 out_buf->smb_buf_length = receive_len;
1064 memcpy((char *)out_buf + 4,
1065 (char *)midQ->resp_buf + 4,
1068 dump_smb(out_buf, 92);
1069 /* convert the length into a more usable form */
1070 if ((receive_len > 24) &&
1071 (ses->server->secMode & (SECMODE_SIGN_REQUIRED |
1072 SECMODE_SIGN_ENABLED))) {
1073 rc = cifs_verify_signature(out_buf,
1074 &ses->server->mac_signing_key,
1075 midQ->sequence_number+1);
1077 cERROR(1, ("Unexpected SMB signature"));
1078 /* BB FIXME add code to kill session */
1082 *pbytes_returned = out_buf->smb_buf_length;
1084 /* BB special case reconnect tid and uid here? */
1085 rc = map_smb_to_linux_error(out_buf, 0 /* no log */ );
1087 /* convert ByteCount if necessary */
1088 if (receive_len >= sizeof(struct smb_hdr) - 4
1089 /* do not count RFC1001 header */ +
1090 (2 * out_buf->WordCount) + 2 /* bcc */ )
1091 BCC(out_buf) = le16_to_cpu(BCC_LE(out_buf));
1094 cERROR(1, ("Bad MID state?"));
1097 DeleteMidQEntry(midQ);
1098 if (rstart && rc == -EACCES)
1099 return -ERESTARTSYS;
projects / karo-tx-linux.git / blob