Merge tag 'v6.13-rc2-ksmbd-server-fixes' of git://git.samba.org/ksmbd

	ses_enc_key = enc ? sess->smb3encryptionkey :

		sess->smb3decryptionkey;

	if (enc)

		ksmbd_user_session_get(sess);

	memcpy(key, ses_enc_key, SMB3_ENC_DEC_KEY_SIZE);

	return 0;

	down_read(&conn->session_lock);

	sess = xa_load(&conn->sessions, id);

	if (sess)

	if (sess) {

		sess->last_active = jiffies;

		ksmbd_user_session_get(sess);

	}

	up_read(&conn->session_lock);

	return sess;

}

	down_read(&sessions_table_lock);

	sess = __session_lookup(id);

	if (sess)

		ksmbd_user_session_get(sess);

	up_read(&sessions_table_lock);

	return sess;

	if (work->tcon)

		ksmbd_tree_connect_put(work->tcon);

	smb3_preauth_hash_rsp(work);

	if (work->sess)

		ksmbd_user_session_put(work->sess);

	if (work->sess && work->sess->enc && work->encrypted &&

	    conn->ops->encrypt_resp) {

		rc = conn->ops->encrypt_resp(work);

		if (rc < 0)

			conn->ops->set_rsp_status(work, STATUS_DATA_ERROR);

	}

	if (work->sess)

		ksmbd_user_session_put(work->sess);

	ksmbd_conn_write(work);

}

		return false;

	sess = ksmbd_session_lookup_all(conn, id);

	if (sess)

	if (sess) {

		ksmbd_user_session_put(sess);

		return true;

	}

	pr_err("Invalid user session id: %llu\n", id);

	return false;

}

	/* Check for validity of user session */

	work->sess = ksmbd_session_lookup_all(conn, sess_id);

	if (work->sess) {

		ksmbd_user_session_get(work->sess);

	if (work->sess)

		return 1;

	}

	ksmbd_debug(SMB, "Invalid user session, Uid %llu\n", sess_id);

	return -ENOENT;

}

		if (conn->dialect != sess->dialect) {

			rc = -EINVAL;

			ksmbd_user_session_put(sess);

			goto out_err;

		}

		if (!(req->hdr.Flags & SMB2_FLAGS_SIGNED)) {

			rc = -EINVAL;

			ksmbd_user_session_put(sess);

			goto out_err;

		}

		if (strncmp(conn->ClientGUID, sess->ClientGUID,

			    SMB2_CLIENT_GUID_SIZE)) {

			rc = -ENOENT;

			ksmbd_user_session_put(sess);

			goto out_err;

		}

		if (sess->state == SMB2_SESSION_IN_PROGRESS) {

			rc = -EACCES;

			ksmbd_user_session_put(sess);

			goto out_err;

		}

		if (sess->state == SMB2_SESSION_EXPIRED) {

			rc = -EFAULT;

			ksmbd_user_session_put(sess);

			goto out_err;

		}

		ksmbd_user_session_put(sess);

		if (ksmbd_conn_need_reconnect(conn)) {

			rc = -EFAULT;

			goto out_err;

		}

		if (ksmbd_session_lookup(conn, sess_id)) {

		sess = ksmbd_session_lookup(conn, sess_id);

		if (!sess) {

			rc = -EACCES;

			goto out_err;

		}

		}

		conn->binding = true;

		ksmbd_user_session_get(sess);

	} else if ((conn->dialect < SMB30_PROT_ID ||

		    server_conf.flags & KSMBD_GLOBAL_FLAG_SMB3_MULTICHANNEL) &&

		   (req->Flags & SMB2_SESSION_REQ_FLAG_BINDING)) {

		}

		conn->binding = false;

		ksmbd_user_session_get(sess);

	}

	work->sess = sess;

int smb2_session_logoff(struct ksmbd_work *work)

{

	struct ksmbd_conn *conn = work->conn;

	struct ksmbd_session *sess = work->sess;

	struct smb2_logoff_req *req;

	struct smb2_logoff_rsp *rsp;

	struct ksmbd_session *sess;

	u64 sess_id;

	int err;

	ksmbd_close_session_fds(work);

	ksmbd_conn_wait_idle(conn);

	/*

	 * Re-lookup session to validate if session is deleted

	 * while waiting request complete

	 */

	sess = ksmbd_session_lookup_all(conn, sess_id);

	if (ksmbd_tree_conn_session_logoff(sess)) {

		ksmbd_debug(SMB, "Invalid tid %d\n", req->hdr.Id.SyncId.TreeId);

		rsp->hdr.Status = STATUS_NETWORK_NAME_DELETED;

	/* dot and dotdot entries are already reserved */

	if (!strcmp(".", name) || !strcmp("..", name))

		return true;

	d_info->num_scan++;

	if (ksmbd_share_veto_filename(priv->work->tcon->share_conf, name))

		return true;

	if (!match_pattern(name, namlen, priv->search_pattern))

	query_dir_private.info_level		= req->FileInformationClass;

	dir_fp->readdir_data.private		= &query_dir_private;

	set_ctx_actor(&dir_fp->readdir_data.ctx, __query_dir);

again:

	d_info.num_scan = 0;

	rc = iterate_dir(dir_fp->filp, &dir_fp->readdir_data.ctx);

	/*

	 * num_entry can be 0 if the directory iteration stops before reaching

	 * the end of the directory and no file is matched with the search

	 * pattern.

	 */

	if (rc >= 0 && !d_info.num_entry && d_info.num_scan &&

	    d_info.out_buf_len > 0)

		goto again;

	/*

	 * req->OutputBufferLength is too small to contain even one entry.

	 * In this case, it immediately returns OutputBufferLength 0 to client.

		attrs.ia_valid |= (ATTR_ATIME | ATTR_ATIME_SET);

	}

	attrs.ia_valid |= ATTR_CTIME;

	if (file_info->ChangeTime)

		attrs.ia_ctime = ksmbd_NTtimeToUnix(file_info->ChangeTime);

	else

		attrs.ia_ctime = inode_get_ctime(inode);

		inode_set_ctime_to_ts(inode,

				ksmbd_NTtimeToUnix(file_info->ChangeTime));

	if (file_info->LastWriteTime) {

		attrs.ia_mtime = ksmbd_NTtimeToUnix(file_info->LastWriteTime);

		attrs.ia_valid |= (ATTR_MTIME | ATTR_MTIME_SET);

		attrs.ia_valid |= (ATTR_MTIME | ATTR_MTIME_SET | ATTR_CTIME);

	}

	if (file_info->Attributes) {

			return -EACCES;

		inode_lock(inode);

		inode_set_ctime_to_ts(inode, attrs.ia_ctime);

		attrs.ia_valid &= ~ATTR_CTIME;

		rc = notify_change(idmap, dentry, &attrs, NULL);

		inode_unlock(inode);

	}

		       le64_to_cpu(tr_hdr->SessionId));

		return -ECONNABORTED;

	}

	ksmbd_user_session_put(sess);

	iov[0].iov_base = buf;

	iov[0].iov_len = sizeof(struct smb2_transform_hdr) + 4;

	char		*rptr;

	int		name_len;

	int		out_buf_len;

	int		num_scan;

	int		num_entry;

	int		data_count;

	int		last_entry_offset;