Received: by 2002:ad5:474a:0:0:0:0:0 with SMTP id i10csp3016591imu; Mon, 19 Nov 2018 09:24:01 -0800 (PST) X-Google-Smtp-Source: AJdET5dibaB2AIVL9tw8iM6T9wxkpilJw+G8C6UdW3YFQIvj4BHd+cT4i2HwBjyK+sY3dtYbSRT5 X-Received: by 2002:a65:6148:: with SMTP id o8mr20855597pgv.451.1542648241254; Mon, 19 Nov 2018 09:24:01 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1542648241; cv=none; d=google.com; s=arc-20160816; b=z/C3JxzweVHiiCoK44hI8+bbea7P2j00giSM0zBxulyQ3lDvhUoUKdbl9kkDC8udCk Y8j0Tajxg5T0bRUlJFxM3QkTKpFvgurblHPGRa1OH73BE+hl/6ylE/3d3Wd/GEcNornd eJsIt7mVpQaAVzkAOtJe1CZaeiCnDGKx0IrX1UjGSIXm/jMBmP9bCTkCQ2+EJhgP0MGo P9Als71vMoFCqEmv6BB71QhUejXYYRWYfYLTIEgZ85Uyjhv/TVPHphQ8rASZr/ShTfqg 6Fv85GLn8LOUYETSUN+uzO0lPDjbexDkwNhliDSYf0QQQQ1a8SGnGVsPllCRFgQa6g/0 CMgg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=gZyv3PL5LVHABV38tfXUvI5cpgwbNVXSaejlBBMIu10=; b=FUT4envI9yleHEsrUmm3y43Q2NgJiKz87YIb0SozdYABBwfbAJ0RszC3bSHSQ60lss 71ePWECxD7BR0r4YCiGnFxV/80k2ACwiZFIwzAaPa0i3cQuzM+W/nCxJdgKAT7Qy6JNv OutWYQT0r1EnZfkZRjL1kT1SKW83RgUxqm0Qx+HSEGjvzkSXPT7L1dRFpse3w4tGwaAx hHRZ4ZyYHg4hEId7hq8uHjGR4yBeaQQdlDF0ieB0xYz1Z6eLvABlt3FybeY4cxH8rxqV KVOhZru/ES365CmbeaQBrDf4MAM+GGurhOOmYFn5YuhpilS4932uKzVvruWeRRsC83Am SZDA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=wZcDllbF; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id u5si11891276plj.129.2018.11.19.09.23.40; Mon, 19 Nov 2018 09:24:01 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=wZcDllbF; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2405086AbeKTDXn (ORCPT + 99 others); Mon, 19 Nov 2018 22:23:43 -0500 Received: from mail.kernel.org ([198.145.29.99]:35786 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2404684AbeKTDXm (ORCPT ); Mon, 19 Nov 2018 22:23:42 -0500 Received: from localhost (5356596B.cm-6-7b.dynamic.ziggo.nl [83.86.89.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id A29C6214E0; Mon, 19 Nov 2018 16:59:25 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1542646766; bh=X7KdRkvyAHeGfQnIMtV/VuY5Bb68dxZtnpqjg7ssAzA=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=wZcDllbFRHFn5+AuCIA1z9HHBtarZVO4sKqM0g5yZ6wko5kPXvAy7gWniufIsjbCA xwNf/l7P+wi3fbN2xJKFU9VOwgPv8wdwRGj3AlDGFx6Avl81LJSBtLD660pHq+bGQ0 XPgLYjPB6RfblM/5tNbj1j149IdgQwjVQ8lNhOdw= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Steve French , Ronnie Sahlberg Subject: [PATCH 4.4 065/160] smb3: on kerberos mount if server doesnt specify auth type use krb5 Date: Mon, 19 Nov 2018 17:28:24 +0100 Message-Id: <20181119162637.675809487@linuxfoundation.org> X-Mailer: git-send-email 2.19.1 In-Reply-To: <20181119162630.031306128@linuxfoundation.org> References: <20181119162630.031306128@linuxfoundation.org> User-Agent: quilt/0.65 X-stable: review MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org 4.4-stable review patch. If anyone has any objections, please let me know. ------------------ From: Steve French commit 926674de6705f0f1dbf29a62fd758d0977f535d6 upstream. Some servers (e.g. Azure) do not include a spnego blob in the SMB3 negotiate protocol response, so on kerberos mounts ("sec=krb5") we can fail, as we expected the server to list its supported auth types (OIDs in the spnego blob in the negprot response). Change this so that on krb5 mounts we default to trying krb5 if the server doesn't list its supported protocol mechanisms. Signed-off-by: Steve French Reviewed-by: Ronnie Sahlberg CC: Stable Signed-off-by: Greg Kroah-Hartman --- fs/cifs/cifs_spnego.c | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) --- a/fs/cifs/cifs_spnego.c +++ b/fs/cifs/cifs_spnego.c @@ -143,8 +143,10 @@ cifs_get_spnego_key(struct cifs_ses *ses sprintf(dp, ";sec=krb5"); else if (server->sec_mskerberos) sprintf(dp, ";sec=mskrb5"); - else - goto out; + else { + cifs_dbg(VFS, "unknown or missing server auth type, use krb5\n"); + sprintf(dp, ";sec=krb5"); + } dp = description + strlen(description); sprintf(dp, ";uid=0x%x",