Received: by 10.213.65.68 with SMTP id h4csp249886imn; Fri, 23 Mar 2018 03:56:29 -0700 (PDT) X-Google-Smtp-Source: AG47ELvozhsB7k7lkiTa1Pau/rflG2mOjtoJQ54hHTHykOgsKR3zuB9oVXjehoXydxNFaMQiJuEI X-Received: by 10.99.119.129 with SMTP id s123mr7250333pgc.137.1521802589097; Fri, 23 Mar 2018 03:56:29 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1521802589; cv=none; d=google.com; s=arc-20160816; b=IDszFj9uBmP1vK7ZvFia7/xClqb4fWt56xbDSvlG6Rvyl9kw/hM72ZdZMIRUgr70vf l3nSg6bX0wpx8pRjFJdS6OnFEho1n/dAeW615RnuTyAl3Lw/mWb9bvsyVByAWGro0tHn Wkk3X2Y/vdBmYXo/IZ/fO+EHC4CFqhQCEmEQ8+jVhdpTMfH1FUznQSxtlbrXotfpNPt1 qVYcMRXr8UtV68E4KVBOwcLn3Ly8S1w4PjJgH6L919nb8vHear+YXSu3qU0BEKZw/ust Wyu1I7mrjUFgNKigmd8ZU4tnDccEzKnv7ipp3Pzhq1j9omxD+BDrcDXYtPY1oPbMmQYx k1uQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:user-agent:references :in-reply-to:message-id:date:subject:cc:to:from :arc-authentication-results; bh=OrWy35bBzeterRcezIZxSf3ge9SWbXmkvhGWK8TeC/0=; b=Un9iD6lFIKqo2q+/eM6+McvT7eeP2Ne3lWS6F5sI69pMKM+o8s+MVw2mVjZEDZ4Igi MXyMfiFcGKvepi/uzDZ+FjA+DctzObe4Z4ZnB605LdZHHwSt6JVvw8wq4NYWjwmMlu4L MipMQe+JBUoRutEmhW8iiXziNjijLRfJ0xpnAnF4byyBFGf+kCnZA5WuTukqwToQZUbu VuZK6CQEkXMvbvr//nbA8Uc5YXjO+1OBIitHy5NOQ2Jsm7CLnHrAvRPSTJ0gys9nIrA1 TctJEDLdUuWiP3wBjM3rAqQ8Vt9/p0TYl6cTzHcStjwMpK11fsBbANeIQxDZEYsvoVt6 f7Zg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id p12-v6si7900276plk.295.2018.03.23.03.56.14; Fri, 23 Mar 2018 03:56:29 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1755856AbeCWKNY (ORCPT + 99 others); Fri, 23 Mar 2018 06:13:24 -0400 Received: from mail.linuxfoundation.org ([140.211.169.12]:44784 "EHLO mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1755832AbeCWKNW (ORCPT ); Fri, 23 Mar 2018 06:13:22 -0400 Received: from localhost (LFbn-1-12247-202.w90-92.abo.wanadoo.fr [90.92.61.202]) by mail.linuxfoundation.org (Postfix) with ESMTPSA id B29F11066; Fri, 23 Mar 2018 10:13:21 +0000 (UTC) From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Steve French , "Srivatsa S. Bhat" Subject: [PATCH 4.4 03/97] SMB3: Validate negotiate request must always be signed Date: Fri, 23 Mar 2018 10:53:50 +0100 Message-Id: <20180323094157.732693350@linuxfoundation.org> X-Mailer: git-send-email 2.16.2 In-Reply-To: <20180323094157.535925724@linuxfoundation.org> References: <20180323094157.535925724@linuxfoundation.org> User-Agent: quilt/0.65 X-stable: review MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org 4.4-stable review patch. If anyone has any objections, please let me know. ------------------ From: Steve French commit 4587eee04e2ac7ac3ac9fa2bc164fb6e548f99cd upstream. According to MS-SMB2 3.2.55 validate_negotiate request must always be signed. Some Windows can fail the request if you send it unsigned See kernel bugzilla bug 197311 CC: Stable Acked-by: Ronnie Sahlberg Signed-off-by: Steve French Signed-off-by: Srivatsa S. Bhat Signed-off-by: Greg Kroah-Hartman --- fs/cifs/smb2pdu.c | 3 +++ 1 file changed, 3 insertions(+) --- a/fs/cifs/smb2pdu.c +++ b/fs/cifs/smb2pdu.c @@ -1558,6 +1558,9 @@ SMB2_ioctl(const unsigned int xid, struc } else iov[0].iov_len = get_rfc1002_length(req) + 4; + /* validate negotiate request must be signed - see MS-SMB2 3.2.5.5 */ + if (opcode == FSCTL_VALIDATE_NEGOTIATE_INFO) + req->hdr.Flags |= SMB2_FLAGS_SIGNED; rc = SendReceive2(xid, ses, iov, num_iovecs, &resp_buftype, 0); rsp = (struct smb2_ioctl_rsp *)iov[0].iov_base;