r2618: before we had refererence counts in talloc I added a hack in the

author Andrew Tridgell <tridge@samba.org>

Sat, 25 Sep 2004 08:16:16 +0000 (08:16 +0000)

committer Gerald (Jerry) Carter <jerry@samba.org>

Wed, 10 Oct 2007 17:59:12 +0000 (12:59 -0500)
author Andrew Tridgell <tridge@samba.org>
Sat, 25 Sep 2004 08:16:16 +0000 (08:16 +0000)
committer Gerald (Jerry) Carter <jerry@samba.org>
Wed, 10 Oct 2007 17:59:12 +0000 (12:59 -0500)
diff --git a/source/include/smb.h b/source/include/smb.h

index 16af58db7d6c1a7d5d0da1e774bd69fd440a673c..46b2dd03ca71fbe783626704a06d57914f3250da 100644 (file)
--- a/source/include/smb.h
+++ b/source/include/smb.h
@@ -607,7 +607,6 @@ typedef struct nt_user_token {
  
  
  /* a set of flags to control handling of request structures */
-#define REQ_CONTROL_PROTECTED (1<<0) /* don't destroy this request */
  #define REQ_CONTROL_LARGE     (1<<1) /* allow replies larger than max_xmit */
  #define REQ_CONTROL_ASYNC     (1<<2) /* the backend will answer this one later */
  
diff --git a/source/smb_server/nttrans.c b/source/smb_server/nttrans.c

index bd8c49c59463a5353a82d1b6d59935b7c3c9f690..683e9e3386eb2a864659efc925f15b0bc577bdab 100644 (file)
--- a/source/smb_server/nttrans.c
+++ b/source/smb_server/nttrans.c
@@ -198,8 +198,6 @@ void reply_nttrans(struct smbsrv_request *req)
         params      = trans.out.params.data;
         data        = trans.out.data.data;
  
-       req->control_flags |= REQ_CONTROL_PROTECTED;
-
         /* we need to divide up the reply into chunks that fit into
            the negotiated buffer size */
         do {
@@ -254,9 +252,9 @@ void reply_nttrans(struct smbsrv_request *req)
                 params += this_param;
                 data += this_data;
  
-               /* if this is the last chunk then the request can be destroyed */
-               if (params_left == 0 && data_left == 0) {
-                       req->control_flags &= ~REQ_CONTROL_PROTECTED;
+               /* don't destroy unless this is the last segment */
+               if (params_left != 0 || data_left != 0) {
+                       talloc_increase_ref_count(req);
                 }
  
                 req_send_reply(req);
diff --git a/source/smb_server/reply.c b/source/smb_server/reply.c

index 801327f086f8724b194df6c8780d7f9f5db958b7..72c7c20a1119d57ff822e7ab40d349ba979fcf86 100644 (file)
--- a/source/smb_server/reply.c
+++ b/source/smb_server/reply.c
@@ -1332,13 +1332,9 @@ void reply_echo(struct smbsrv_request *req)
  
         memcpy(req->out.data, req->in.data, req->in.data_size);
  
-       /* we need to make sure the request isn't destroyed till the
-        * last packet */
-       req->control_flags |= REQ_CONTROL_PROTECTED;
-
         for (i=1; i <= count;i++) {
-               if (i == count) {
-                       req->control_flags &= ~REQ_CONTROL_PROTECTED;
+               if (i != count) {
+                       talloc_increase_ref_count(req);
                 }
  
                 SSVAL(req->out.vwv, VWV(0), i);
diff --git a/source/smb_server/request.c b/source/smb_server/request.c

index 15e821b32bc13361db6ce42aefb75ec81a647ce5..3d78c0a55da5d16dabf7ad05f3bbe906163fcf0b 100644 (file)
--- a/source/smb_server/request.c
+++ b/source/smb_server/request.c
@@ -30,12 +30,6 @@
  /* destroy a request structure */
  void req_destroy(struct smbsrv_request *req)
  {
-       /* the request might be marked protected. This is done by the
-        * SMBecho code for example */
-       if (req->control_flags & REQ_CONTROL_PROTECTED) {
-               return;
-       }
-
         /* ahh, its so nice to destroy a complex structure in such a
          * simple way! */
         talloc_free(req);
diff --git a/source/smb_server/trans2.c b/source/smb_server/trans2.c

index a5033f9b5690d37ad6b2d46db2e8c63d410a032a..e681c9fe2998affb5b1985396262f05da204f7cc 100644 (file)
--- a/source/smb_server/trans2.c
+++ b/source/smb_server/trans2.c
@@ -1323,8 +1323,6 @@ void reply_trans_generic(struct smbsrv_request *req, uint8_t command)
         params      = trans.out.params.data;
         data        = trans.out.data.data;
  
-       req->control_flags |= REQ_CONTROL_PROTECTED;
-
         /* we need to divide up the reply into chunks that fit into
            the negotiated buffer size */
         do {
@@ -1384,9 +1382,9 @@ void reply_trans_generic(struct smbsrv_request *req, uint8_t command)
                 params += this_param;
                 data += this_data;
  
-               /* if this is the last chunk then the request can be destroyed */
-               if (params_left == 0 && data_left == 0) {
-                       req->control_flags &= ~REQ_CONTROL_PROTECTED;
+               /* don't destroy unless this is the last chunk */
+               if (params_left != 0 || data_left != 0) {
+                       talloc_increase_ref_count(req);
                 }
  
                 req_send_reply(req);
author	Andrew Tridgell <tridge@samba.org>
	Sat, 25 Sep 2004 08:16:16 +0000 (08:16 +0000)
committer	Gerald (Jerry) Carter <jerry@samba.org>
	Wed, 10 Oct 2007 17:59:12 +0000 (12:59 -0500)
source/include/smb.h		patch \| blob \| history
source/smb_server/nttrans.c		patch \| blob \| history
source/smb_server/reply.c		patch \| blob \| history
source/smb_server/request.c		patch \| blob \| history
source/smb_server/trans2.c		patch \| blob \| history