Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / f40c562855294bf4e7268274d7461dc32c1e6b25^! / . / fs / cifs / cifssmb.c
commitf40c562855294bf4e7268274d7461dc32c1e6b25[log] [tgz]
authorSteve French <sfrench@us.ibm.com>Wed Jun 28 00:13:38 2006 +0000
committerSteve French <sfrench@us.ibm.com>Wed Jun 28 00:13:38 2006 +0000
tree23259eb48ddd99b080014937781e363993d21624
parent0223cf0b10bdb3b557d8884b1a957cc64be843c3 [diff] [blame]
[CIFS] Fix authentication choice so we do not force NTLMv2 unless the
user specifies it is required or turns of ntlm

Signed-off-by: Steve French <sfrench@us.ibm.com>

diff --git a/fs/cifs/cifssmb.c b/fs/cifs/cifssmb.c
index de405bf..19678c5 100644
--- a/fs/cifs/cifssmb.c
+++ b/fs/cifs/cifssmb.c

@@ -415,6 +415,8 @@
 	else /* if override flags set only sign/seal OR them with global auth */
 		secFlags = extended_security | ses->overrideSecFlg;
 
+	cFYI(1,("secFlags 0x%x",secFlags));
+
 	pSMB->hdr.Mid = GetNextMid(server);
 	pSMB->hdr.Flags2 |= SMBFLG2_UNICODE;
 	if((secFlags & CIFSSEC_MUST_KRB5) == CIFSSEC_MUST_KRB5)
@@ -511,11 +513,13 @@
 			cERROR(1,("Server requests plain text password"
 				  " but client support disabled"));
 
-	if(secFlags & CIFSSEC_MUST_NTLMV2)
+	if((secFlags & CIFSSEC_MUST_NTLMV2) == CIFSSEC_MUST_NTLMV2)
 		server->secType = NTLMv2;
-	else
+	else if(secFlags & CIFSSEC_MAY_NTLM)
 		server->secType = NTLM;
-	/* else krb5 ... */
+	else if(secFlags & CIFSSEC_MAY_NTLMV2)
+		server->secType = NTLMv2;
+	/* else krb5 ... any others ... */
 
 	/* one byte, so no need to convert this or EncryptionKeyLen from
 	   little endian */