Received: by 10.213.65.68 with SMTP id h4csp249886imn;
        Fri, 23 Mar 2018 03:56:29 -0700 (PDT)
X-Google-Smtp-Source: AG47ELvozhsB7k7lkiTa1Pau/rflG2mOjtoJQ54hHTHykOgsKR3zuB9oVXjehoXydxNFaMQiJuEI
X-Received: by 10.99.119.129 with SMTP id s123mr7250333pgc.137.1521802589097;
        Fri, 23 Mar 2018 03:56:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1521802589; cv=none;
        d=google.com; s=arc-20160816;
        b=IDszFj9uBmP1vK7ZvFia7/xClqb4fWt56xbDSvlG6Rvyl9kw/hM72ZdZMIRUgr70vf
         l3nSg6bX0wpx8pRjFJdS6OnFEho1n/dAeW615RnuTyAl3Lw/mWb9bvsyVByAWGro0tHn
         Wkk3X2Y/vdBmYXo/IZ/fO+EHC4CFqhQCEmEQ8+jVhdpTMfH1FUznQSxtlbrXotfpNPt1
         qVYcMRXr8UtV68E4KVBOwcLn3Ly8S1w4PjJgH6L919nb8vHear+YXSu3qU0BEKZw/ust
         Wyu1I7mrjUFgNKigmd8ZU4tnDccEzKnv7ipp3Pzhq1j9omxD+BDrcDXYtPY1oPbMmQYx
         k1uQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:user-agent:references
         :in-reply-to:message-id:date:subject:cc:to:from
         :arc-authentication-results;
        bh=OrWy35bBzeterRcezIZxSf3ge9SWbXmkvhGWK8TeC/0=;
        b=Un9iD6lFIKqo2q+/eM6+McvT7eeP2Ne3lWS6F5sI69pMKM+o8s+MVw2mVjZEDZ4Igi
         MXyMfiFcGKvepi/uzDZ+FjA+DctzObe4Z4ZnB605LdZHHwSt6JVvw8wq4NYWjwmMlu4L
         MipMQe+JBUoRutEmhW8iiXziNjijLRfJ0xpnAnF4byyBFGf+kCnZA5WuTukqwToQZUbu
         VuZK6CQEkXMvbvr//nbA8Uc5YXjO+1OBIitHy5NOQ2Jsm7CLnHrAvRPSTJ0gys9nIrA1
         TctJEDLdUuWiP3wBjM3rAqQ8Vt9/p0TYl6cTzHcStjwMpK11fsBbANeIQxDZEYsvoVt6
         f7Zg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id p12-v6si7900276plk.295.2018.03.23.03.56.14;
        Fri, 23 Mar 2018 03:56:29 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1755856AbeCWKNY (ORCPT <rfc822;chrisloverchio@gmail.com>
        + 99 others); Fri, 23 Mar 2018 06:13:24 -0400
Received: from mail.linuxfoundation.org ([140.211.169.12]:44784 "EHLO
        mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1755832AbeCWKNW (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 23 Mar 2018 06:13:22 -0400
Received: from localhost (LFbn-1-12247-202.w90-92.abo.wanadoo.fr [90.92.61.202])
        by mail.linuxfoundation.org (Postfix) with ESMTPSA id B29F11066;
        Fri, 23 Mar 2018 10:13:21 +0000 (UTC)
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     linux-kernel@vger.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        stable@vger.kernel.org, Steve French <smfrench@gmail.com>,
        "Srivatsa S. Bhat" <srivatsa@csail.mit.edu>
Subject: [PATCH 4.4 03/97] SMB3: Validate negotiate request must always be signed
Date:   Fri, 23 Mar 2018 10:53:50 +0100
Message-Id: <20180323094157.732693350@linuxfoundation.org>
X-Mailer: git-send-email 2.16.2
In-Reply-To: <20180323094157.535925724@linuxfoundation.org>
References: <20180323094157.535925724@linuxfoundation.org>
User-Agent: quilt/0.65
X-stable: review
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

4.4-stable review patch.  If anyone has any objections, please let me know.

------------------

From: Steve French <smfrench@gmail.com>

commit 4587eee04e2ac7ac3ac9fa2bc164fb6e548f99cd upstream.

According to MS-SMB2 3.2.55 validate_negotiate request must
always be signed. Some Windows can fail the request if you send it unsigned

See kernel bugzilla bug 197311

CC: Stable <stable@vger.kernel.org>
Acked-by: Ronnie Sahlberg <lsahlber.redhat.com>
Signed-off-by: Steve French <smfrench@gmail.com>
Signed-off-by: Srivatsa S. Bhat <srivatsa@csail.mit.edu>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

---
 fs/cifs/smb2pdu.c |    3 +++
 1 file changed, 3 insertions(+)

--- a/fs/cifs/smb2pdu.c
+++ b/fs/cifs/smb2pdu.c
@@ -1558,6 +1558,9 @@ SMB2_ioctl(const unsigned int xid, struc
 	} else
 		iov[0].iov_len = get_rfc1002_length(req) + 4;
 
+	/* validate negotiate request must be signed - see MS-SMB2 3.2.5.5 */
+	if (opcode == FSCTL_VALIDATE_NEGOTIATE_INFO)
+		req->hdr.Flags |= SMB2_FLAGS_SIGNED;
 
 	rc = SendReceive2(xid, ses, iov, num_iovecs, &resp_buftype, 0);
 	rsp = (struct smb2_ioctl_rsp *)iov[0].iov_base;