Update sources 2.6.28 from 2.6.28.10

Fix buffer format byte on NT Rename/hardlink commit d5496f8996e53b6a6841c9bf1889d04dbcfc55b3

Update sources 2.6.28 from 2.6.28.10
4e1a01f1 · Evgeny Sinelnikov · 868d7f02 · 4e1a01f1 · 4e1a01f1 · 4e1a01f1
Commit 4e1a01f1 authored Jul 02, 2009 by Evgeny Sinelnikov
Hide whitespace changes
Inline Side-by-side

Showing with 8 additions and 3 deletions

CHANGES sources/2.6.28/CHANGES +3 -0

cifssmb.c sources/2.6.28/cifssmb.c +4 -2

connect.c sources/2.6.28/connect.c +1 -1

No files found.
--- a/sources/2.6.28/CHANGES
+++ b/sources/2.6.28/CHANGES
 Fix oops in cifs_dfs_ref.c when prefixpath is not reachable when using DFS.
+Fix "redzone overwritten" bug in cifs_put_tcon (CIFSTcon may allocate too
+little memory for the "nativeFileSystem" field returned by the server
+during mount).
 Version 1.55
 ------------

--- a/sources/2.6.28/cifssmb.c
+++ b/sources/2.6.28/cifssmb.c
@@ -2389,8 +2389,10 @@ winCreateHardLinkRetry:
 				     PATH_MAX, nls_codepage, remap);
 		name_len++;	/* trailing null */
 		name_len *= 2;
-		pSMB->OldFileName[name_len] = 0;	/* pad */
-		pSMB->OldFileName[name_len + 1] = 0x04;
+		/* protocol specifies ASCII buffer format (0x04) for unicode */
+		pSMB->OldFileName[name_len] = 0x04;
+		pSMB->OldFileName[name_len + 1] = 0x00; /* pad */
 		name_len2 =
 		    cifsConvertToUCS((__le16 *)&pSMB->OldFileName[name_len + 2],
 				     toName, PATH_MAX, nls_codepage, remap);

--- a/sources/2.6.28/connect.c
+++ b/sources/2.6.28/connect.c
@@ -3585,7 +3585,7 @@ CIFSTCon(unsigned int xid, struct cifsSesInfo *ses,
 			    BCC(smb_buffer_response)) {
 				kfree(tcon->nativeFileSystem);
 				tcon->nativeFileSystem =
-				    kzalloc(length + 2, GFP_KERNEL);
+				    kzalloc(2*(length + 1), GFP_KERNEL);
 				if (tcon->nativeFileSystem)
 					cifs_strfromUCS_le(
 						tcon->nativeFileSystem,