[CIFS] Fix ntlmv2 auth with ntlmssp

Make ntlmv2 as an authentication mechanism within ntlmssp instead of ntlmv1. Parse type 2 response in ntlmssp negotiation to pluck AV pairs and use them to calculate ntlmv2 response token. Also, assign domain name from the sever response in type 2 packet of ntlmssp and use that (netbios) domain name in calculation of response. Enable cifs/smb signing using rc4 and md5. Changed name of the structure mac_key to session_key to reflect the type of key it holds. Use kernel crypto_shash_* APIs instead of the equivalent cifs functions. Signed-off-by: Shirish Pargaonkar <shirishpargaonkar@gmail.com> Acked-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Steve French <sfrench@us.ibm.com>
author: Steve French <sfrench@us.ibm.com> 2010-08-20 16:42:26 -0400
committer: Steve French <sfrench@us.ibm.com> 2010-08-20 16:42:26 -0400
commit: 9fbc590860e75785bdaf8b83e48fabfe4d4f7d58 (patch)
tree: dccc154927cf1e12c702537b5bc028158b938e21 /fs/cifs/asn1.c
parent: bf4f12113812ac5be76c5590c6f50c8346f784a4 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/fs/cifs/asn1.c b/fs/cifs/asn1.c
index cfd1ce34e0bc..21f0fbd86989 100644
--- a/fs/cifs/asn1.c
+++ b/fs/cifs/asn1.c
@@ -597,13 +597,13 @@ decode_negTokenInit(unsigned char *security_blob, int length,
                                if (compare_oid(oid, oidlen, MSKRB5_OID,
                                                MSKRB5_OID_LEN))
                                        server->sec_mskerberos = true;
-                                else if (compare_oid(oid, oidlen, KRB5U2U_OID,
+                                if (compare_oid(oid, oidlen, KRB5U2U_OID,
                                                     KRB5U2U_OID_LEN))
                                        server->sec_kerberosu2u = true;
-                                else if (compare_oid(oid, oidlen, KRB5_OID,
+                                if (compare_oid(oid, oidlen, KRB5_OID,
                                                     KRB5_OID_LEN))
                                        server->sec_kerberos = true;
-                                else if (compare_oid(oid, oidlen, NTLMSSP_OID,
+                                if (compare_oid(oid, oidlen, NTLMSSP_OID,
                                                     NTLMSSP_OID_LEN))
                                        server->sec_ntlmssp = true;
author	Steve French <sfrench@us.ibm.com>	2010-08-20 16:42:26 -0400
committer	Steve French <sfrench@us.ibm.com>	2010-08-20 16:42:26 -0400
commit	9fbc590860e75785bdaf8b83e48fabfe4d4f7d58 (patch)
tree	dccc154927cf1e12c702537b5bc028158b938e21 /fs/cifs/asn1.c
parent	bf4f12113812ac5be76c5590c6f50c8346f784a4 (diff)

diff --git a/fs/cifs/asn1.c b/fs/cifs/asn1.c index cfd1ce34e0bc..21f0fbd86989 100644 --- a/fs/cifs/asn1.c +++ b/fs/cifs/asn1.c
@@ -597,13 +597,13 @@ decode_negTokenInit(unsigned char *security_blob, int length,
597	if (compare_oid(oid, oidlen, MSKRB5_OID,	597	if (compare_oid(oid, oidlen, MSKRB5_OID,
598	MSKRB5_OID_LEN))	598	MSKRB5_OID_LEN))
599	server->sec_mskerberos = true;	599	server->sec_mskerberos = true;
600	else if (compare_oid(oid, oidlen, KRB5U2U_OID,	600	if (compare_oid(oid, oidlen, KRB5U2U_OID,
601	KRB5U2U_OID_LEN))	601	KRB5U2U_OID_LEN))
602	server->sec_kerberosu2u = true;	602	server->sec_kerberosu2u = true;
603	else if (compare_oid(oid, oidlen, KRB5_OID,	603	if (compare_oid(oid, oidlen, KRB5_OID,
604	KRB5_OID_LEN))	604	KRB5_OID_LEN))
605	server->sec_kerberos = true;	605	server->sec_kerberos = true;
606	else if (compare_oid(oid, oidlen, NTLMSSP_OID,	606	if (compare_oid(oid, oidlen, NTLMSSP_OID,
607	NTLMSSP_OID_LEN))	607	NTLMSSP_OID_LEN))
608	server->sec_ntlmssp = true;	608	server->sec_ntlmssp = true;
609		609