566 int decode_ntlmssp_challenge(char *bcc_ptr, int blob_len,  in decode_ntlmssp_challenge()  argument
574 	if (blob_len < sizeof(CHALLENGE_MESSAGE)) {  in decode_ntlmssp_challenge()
575 		cifs_dbg(VFS, "challenge blob len %d too small\n", blob_len);  in decode_ntlmssp_challenge()
598 	if (tioffset > blob_len || tioffset + tilen > blob_len) {  in decode_ntlmssp_challenge()
1307 	u16 blob_len;  in sess_auth_kerberos()  local
1394 	blob_len = le16_to_cpu(pSMB->resp.SecurityBlobLength);  in sess_auth_kerberos()
1395 	if (blob_len > bytes_remaining) {  in sess_auth_kerberos()
1397 				blob_len);  in sess_auth_kerberos()
1401 	bcc_ptr += blob_len;  in sess_auth_kerberos()
1402 	bytes_remaining -= blob_len;  in sess_auth_kerberos()
1484 	u16 blob_len;  in sess_auth_rawntlmssp_negotiate()  local
1544 	blob_len = le16_to_cpu(pSMB->resp.SecurityBlobLength);  in sess_auth_rawntlmssp_negotiate()
1545 	if (blob_len > bytes_remaining) {  in sess_auth_rawntlmssp_negotiate()
1547 				blob_len);  in sess_auth_rawntlmssp_negotiate()
1552 	rc = decode_ntlmssp_challenge(bcc_ptr, blob_len, ses);  in sess_auth_rawntlmssp_negotiate()
1581 	u16 blob_len;  in sess_auth_rawntlmssp_authenticate()  local
1594 					&blob_len, ses, sess_data->nls_cp);  in sess_auth_rawntlmssp_authenticate()
1597 	sess_data->iov[1].iov_len = blob_len;  in sess_auth_rawntlmssp_authenticate()
1599 	pSMB->req.SecurityBlobLength = cpu_to_le16(blob_len);  in sess_auth_rawntlmssp_authenticate()
1633 	blob_len = le16_to_cpu(pSMB->resp.SecurityBlobLength);  in sess_auth_rawntlmssp_authenticate()
1634 	if (blob_len > bytes_remaining) {  in sess_auth_rawntlmssp_authenticate()
1636 				blob_len);  in sess_auth_rawntlmssp_authenticate()
1640 	bcc_ptr += blob_len;  in sess_auth_rawntlmssp_authenticate()
1641 	bytes_remaining -= blob_len;  in sess_auth_rawntlmssp_authenticate()