diff options
author | Steve French <stfrench@microsoft.com> | 2024-07-31 21:38:50 -0500 |
---|---|---|
committer | Steve French <stfrench@microsoft.com> | 2024-08-08 11:14:53 -0500 |
commit | 1b5487aefb1ce7a6b1f15a33297d1231306b4122 (patch) | |
tree | deb651cc85484975fe4f72ad69b4c8644b296f32 /Documentation | |
parent | de9c2c66ad8e787abec7c9d7eff4f8c3cdd28aed (diff) | |
download | lwn-1b5487aefb1ce7a6b1f15a33297d1231306b4122.tar.gz lwn-1b5487aefb1ce7a6b1f15a33297d1231306b4122.zip |
smb3: fix setting SecurityFlags when encryption is required
Setting encryption as required in security flags was broken.
For example (to require all mounts to be encrypted by setting):
"echo 0x400c5 > /proc/fs/cifs/SecurityFlags"
Would return "Invalid argument" and log "Unsupported security flags"
This patch fixes that (e.g. allowing overriding the default for
SecurityFlags 0x00c5, including 0x40000 to require seal, ie
SMB3.1.1 encryption) so now that works and forces encryption
on subsequent mounts.
Acked-by: Bharath SM <bharathsm@microsoft.com>
Cc: stable@vger.kernel.org
Signed-off-by: Steve French <stfrench@microsoft.com>
Diffstat (limited to 'Documentation')
-rw-r--r-- | Documentation/admin-guide/cifs/usage.rst | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Documentation/admin-guide/cifs/usage.rst b/Documentation/admin-guide/cifs/usage.rst index fd4b56c0996f..c09674a75a9e 100644 --- a/Documentation/admin-guide/cifs/usage.rst +++ b/Documentation/admin-guide/cifs/usage.rst @@ -742,7 +742,7 @@ SecurityFlags Flags which control security negotiation and may use NTLMSSP 0x00080 must use NTLMSSP 0x80080 seal (packet encryption) 0x00040 - must seal (not implemented yet) 0x40040 + must seal 0x40040 cifsFYI If set to non-zero value, additional debug information will be logged to the system error log. This field |