From patchwork Thu Jan 11 15:00:12 2018
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Daniel N Pettersson <daniel.n.pettersson@axis.com>
X-Patchwork-Id: 10158125
Return-Path: <linux-cifs-owner@kernel.org>
Received: from mail.wl.linuxfoundation.org (pdx-wl-mail.web.codeaurora.org
	[172.30.200.125])
	by pdx-korg-patchwork.web.codeaurora.org (Postfix) with ESMTP id
	E7ADF601A1 for <patchwork-cifs-client@patchwork.kernel.org>;
	Thu, 11 Jan 2018 15:00:57 +0000 (UTC)
Received: from mail.wl.linuxfoundation.org (localhost [127.0.0.1])
	by mail.wl.linuxfoundation.org (Postfix) with ESMTP id CEEBE205AF
	for <patchwork-cifs-client@patchwork.kernel.org>;
	Thu, 11 Jan 2018 15:00:57 +0000 (UTC)
Received: by mail.wl.linuxfoundation.org (Postfix, from userid 486)
	id C18C828789; Thu, 11 Jan 2018 15:00:57 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	pdx-wl-mail.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-6.9 required=2.0 tests=BAYES_00,RCVD_IN_DNSWL_HI
	autolearn=ham version=3.3.1
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.wl.linuxfoundation.org (Postfix) with ESMTP id 8BD77205AF
	for <patchwork-cifs-client@patchwork.kernel.org>;
	Thu, 11 Jan 2018 15:00:56 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S932950AbeAKPA4 (ORCPT
	<rfc822;patchwork-cifs-client@patchwork.kernel.org>);
	Thu, 11 Jan 2018 10:00:56 -0500
Received: from bastet.se.axis.com ([195.60.68.11]:57679 "EHLO
	bastet.se.axis.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S932925AbeAKPAz (ORCPT
	<rfc822; linux-cifs@vger.kernel.org>); Thu, 11 Jan 2018 10:00:55 -0500
Received: from localhost (localhost [127.0.0.1])
	by bastet.se.axis.com (Postfix) with ESMTP id 74B0918305;
	Thu, 11 Jan 2018 16:00:54 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at bastet.se.axis.com
Received: from bastet.se.axis.com ([IPv6:::ffff:127.0.0.1])
	by localhost (bastet.se.axis.com [::ffff:127.0.0.1]) (amavisd-new,
	port 10024)
	with LMTP id J1IQzjalsjeJ; Thu, 11 Jan 2018 16:00:53 +0100 (CET)
Received: from boulder02.se.axis.com (boulder02.se.axis.com [10.0.8.16])
	by bastet.se.axis.com (Postfix) with ESMTPS id C08FF1842D;
	Thu, 11 Jan 2018 16:00:53 +0100 (CET)
Received: from boulder02.se.axis.com (unknown [127.0.0.1])
	by IMSVA (Postfix) with ESMTP id A77841A063;
	Thu, 11 Jan 2018 16:00:53 +0100 (CET)
Received: from boulder02.se.axis.com (unknown [127.0.0.1])
	by IMSVA (Postfix) with ESMTP id 9C8021A05E;
	Thu, 11 Jan 2018 16:00:53 +0100 (CET)
Received: from seth.se.axis.com (unknown [10.0.2.172])
	by boulder02.se.axis.com (Postfix) with ESMTP;
	Thu, 11 Jan 2018 16:00:53 +0100 (CET)
Received: from lnxdanielnp1.se.axis.com (lnxdanielnp1.se.axis.com
	[10.93.76.2])
	by seth.se.axis.com (Postfix) with ESMTP id 90E432F4C;
	Thu, 11 Jan 2018 16:00:53 +0100 (CET)
Received: by lnxdanielnp1.se.axis.com (Postfix, from userid 20271)
	id 8ABB9809F5; Thu, 11 Jan 2018 16:00:53 +0100 (CET)
From: Daniel N Pettersson <daniel.n.pettersson@axis.com>
To: sfrench@samba.org
Cc: linux-cifs@vger.kernel.org, Daniel N Pettersson <danielnp@axis.com>
Subject: [PATCH] cifs: Fix autonegotiate security settings mismatch
Date: Thu, 11 Jan 2018 16:00:12 +0100
Message-Id: <1515682812-21567-1-git-send-email-Daniel.N.Pettersson@axis.com>
X-Mailer: git-send-email 2.1.4
X-TM-AS-GCONF: 00
Sender: linux-cifs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-cifs.vger.kernel.org>
X-Mailing-List: linux-cifs@vger.kernel.org
X-Virus-Scanned: ClamAV using ClamSMTP

From: Daniel N Pettersson <danielnp@axis.com>

Autonegotiation gives a security settings mismatch error if the SMB
server selects an SMBv3 dialect that isn't SMB3.02. The exact error is
"protocol revalidation - security settings mismatch".
This can be tested using Samba v4.2 or by setting the global Samba
setting max protocol = SMB3_00.

The check that fails in smb3_validate_negotiate is the dialect
verification of the negotiate info response. This is because it tries
to verify against the protocol_id in the global smbdefault_values. The
protocol_id in smbdefault_values is SMB3.02.
In SMB2_negotiate the protocol_id in smbdefault_values isn't updated,
it is global so it probably shouldn't be, but server->dialect is.

This patch changes the check in smb3_validate_negotiate to use
server->dialect instead of server->vals->protocol_id. The patch works
with autonegotiate and when using a specific version in the vers mount
option.

Signed-off-by: Daniel N Pettersson <danielnp@axis.com>
---
 fs/cifs/smb2pdu.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/fs/cifs/smb2pdu.c b/fs/cifs/smb2pdu.c
index 01346b8..66af1f8 100644
--- a/fs/cifs/smb2pdu.c
+++ b/fs/cifs/smb2pdu.c
@@ -733,8 +733,7 @@ int smb3_validate_negotiate(const unsigned int xid, struct cifs_tcon *tcon)
 	}
 
 	/* check validate negotiate info response matches what we got earlier */
-	if (pneg_rsp->Dialect !=
-			cpu_to_le16(tcon->ses->server->vals->protocol_id))
+	if (pneg_rsp->Dialect != cpu_to_le16(tcon->ses->server->dialect))
 		goto vneg_out;
 
 	if (pneg_rsp->SecurityMode != cpu_to_le16(tcon->ses->server->sec_mode))