diff options
| author | Meetakshi Setiya <msetiya@microsoft.com> | 2024-10-30 05:37:21 -0400 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2024-12-05 14:02:52 +0100 |
| commit | 486f2c22ba57da66a11bfaadacb3c70f6919f65e (patch) | |
| tree | 75d77eb1931467aeef2508556119f480747810cb /scripts/patch-kernel | |
| parent | 941202d8c326037813317fb6a4266d7f343d3d05 (diff) | |
| download | linux-486f2c22ba57da66a11bfaadacb3c70f6919f65e.tar.gz linux-486f2c22ba57da66a11bfaadacb3c70f6919f65e.tar.bz2 linux-486f2c22ba57da66a11bfaadacb3c70f6919f65e.zip | |
cifs: support mounting with alternate password to allow password rotation
commit b9aef1b13a0a92aa7058ba235afb24b5b89153ca upstream.
Fixes the case for example where the password specified on mount is a
recently expired password, but password2 is valid. Without this patch
this mount scenario would fail.
This patch introduces the following changes to support password rotation on
mount:
1. If an existing session is not found and the new session setup results in
EACCES, EKEYEXPIRED or EKEYREVOKED, swap password and password2 (if
available), and retry the mount.
2. To match the new mount with an existing session, add conditions to check
if a) password and password2 of the new mount and the existing session are
the same, or b) password of the new mount is the same as the password2 of
the existing session, and password2 of the new mount is the same as the
password of the existing session.
3. If an existing session is found, but needs reconnect, retry the session
setup after swapping password and password2 (if available), in case the
previous attempt results in EACCES, EKEYEXPIRED or EKEYREVOKED.
Cc: stable@vger.kernel.org
Signed-off-by: Meetakshi Setiya <msetiya@microsoft.com>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Diffstat (limited to 'scripts/patch-kernel')
0 files changed, 0 insertions, 0 deletions