首頁 探索 說明
註冊 登入
phyus
/
linux-vybrid_public
8
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
瀏覽代碼

[CIFS] use krb5 session key from first SMB session after a NegProt

Currently, any new kerberos SMB session overwrites the server's session
key. The session key should only be set by the first SMB session set up
on the socket.

Signed-off-by: Jeff Layton <jlayton@tupile.poochiereds.net>
Signed-off-by: Steve French <sfrench@us.ibm.com>
Jeff Layton 17 年之前
父節點
1d9a8852c3
當前提交
1a67570c76
共有 1 個文件被更改,包括 5 次插入3 次删除
分割檢視 顯示文件統計
  1. 5 3
      fs/cifs/sess.c

+ 5 - 3
fs/cifs/sess.c
查看文件 

@@ -528,9 +528,11 @@ CIFS_SessSetup(unsigned int xid, struct cifsSesInfo *ses, int first_time,
 
 			rc = -EOVERFLOW;
 
 			goto ssetup_exit;
 
 		}
 
-		ses->server->mac_signing_key.len = msg->sesskey_len;
 
-		memcpy(ses->server->mac_signing_key.data.krb5, msg->data,
 
-			msg->sesskey_len);
 
+		if (first_time) {
 
+			ses->server->mac_signing_key.len = msg->sesskey_len;
 
+			memcpy(ses->server->mac_signing_key.data.krb5,
 
+				msg->data, msg->sesskey_len);
 
+		}
 
 		pSMB->req.hdr.Flags2 |= SMBFLG2_EXT_SEC;
 
 		capabilities |= CAP_EXTENDED_SECURITY;
 
 		pSMB->req.Capabilities = cpu_to_le32(capabilities);