1 files changed, 18 insertions, 15 deletions
diff --git a/fs/cifs/cifsencrypt.c b/fs/cifs/cifsencrypt.c
index a51585f9852b..45c3f78c8f81 100644
--- a/fs/cifs/cifsencrypt.c
+++ b/fs/cifs/cifsencrypt.c
@@ -30,12 +30,13 @@
 #include <linux/ctype.h>
 #include <linux/random.h>
-/* Calculate and return the CIFS signature based on the mac key and SMB PDU */
+/*
-/* the 16 byte signature must be allocated by the caller  */
+ * Calculate and return the CIFS signature based on the mac key and SMB PDU.
-/* Note we only use the 1st eight bytes */
+ * The 16 byte signature must be allocated by the caller. Note we only use the
-/* Note that the smb header signature field on input contains the
+ * 1st eight bytes and that the smb header signature field on input contains
-        sequence number before this function is called */
+ * the sequence number before this function is called. Also, this function
+ * should be called with the server->srv_mutex held.
+ */
 static int cifs_calculate_signature(const struct smb_hdr *cifs_pdu,
                                struct TCP_Server_Info *server, char *signature)
 {
@@ -59,7 +60,7 @@ static int cifs_calculate_signature(const struct smb_hdr *cifs_pdu,
                server->session_key.response, server->session_key.len);
        crypto_shash_update(&server->secmech.sdescmd5->shash,
-                cifs_pdu->Protocol, cifs_pdu->smb_buf_length);
+                cifs_pdu->Protocol, be32_to_cpu(cifs_pdu->smb_buf_length));
        rc = crypto_shash_final(&server->secmech.sdescmd5->shash, signature);
@@ -209,8 +210,10 @@ int cifs_verify_signature(struct smb_hdr *cifs_pdu,
                                        cpu_to_le32(expected_sequence_number);
        cifs_pdu->Signature.Sequence.Reserved = 0;
+        mutex_lock(&server->srv_mutex);
        rc = cifs_calculate_signature(cifs_pdu, server,
                what_we_think_sig_should_be);
+        mutex_unlock(&server->srv_mutex);
        if (rc)
                return rc;
@@ -265,10 +268,11 @@ int setup_ntlm_response(struct cifsSesInfo *ses)
 }
 #ifdef CONFIG_CIFS_WEAK_PW_HASH
-void calc_lanman_hash(const char *password, const char *cryptkey, bool encrypt,
+int calc_lanman_hash(const char *password, const char *cryptkey, bool encrypt,
                        char *lnm_session_key)
 {
        int i;
+        int rc;
        char password_with_pad[CIFS_ENCPWD_SIZE];
        memset(password_with_pad, 0, CIFS_ENCPWD_SIZE);
@@ -279,7 +283,7 @@ void calc_lanman_hash(const char *password, const char *cryptkey, bool encrypt,
                memset(lnm_session_key, 0, CIFS_SESS_KEY_SIZE);
                memcpy(lnm_session_key, password_with_pad,
                        CIFS_ENCPWD_SIZE);
-                return;
+                return 0;
        }
        /* calculate old style session key */
@@ -296,10 +300,9 @@ void calc_lanman_hash(const char *password, const char *cryptkey, bool encrypt,
        for (i = 0; i < CIFS_ENCPWD_SIZE; i++)
                password_with_pad[i] = toupper(password_with_pad[i]);
-        SMBencrypt(password_with_pad, cryptkey, lnm_session_key);
+        rc = SMBencrypt(password_with_pad, cryptkey, lnm_session_key);
-        /* clear password before we return/free memory */
+        return rc;
-        memset(password_with_pad, 0, CIFS_ENCPWD_SIZE);
 }
 #endif /* CIFS_WEAK_PW_HASH */
@@ -469,15 +472,15 @@ static int calc_ntlmv2_hash(struct cifsSesInfo *ses, char *ntlmv2_hash,
                return rc;
        }
-        /* convert ses->userName to unicode and uppercase */
+        /* convert ses->user_name to unicode and uppercase */
-        len = strlen(ses->userName);
+        len = strlen(ses->user_name);
        user = kmalloc(2 + (len * 2), GFP_KERNEL);
        if (user == NULL) {
                cERROR(1, "calc_ntlmv2_hash: user mem alloc failure\n");
                rc = -ENOMEM;
                goto calc_exit_2;
        }
-        len = cifs_strtoUCS((__le16 *)user, ses->userName, len, nls_cp);
+        len = cifs_strtoUCS((__le16 *)user, ses->user_name, len, nls_cp);
        UniStrupr(user);
        crypto_shash_update(&ses->server->secmech.sdeschmacmd5->shash,

diff --git a/fs/cifs/cifsencrypt.c b/fs/cifs/cifsencrypt.c index a51585f9852b..45c3f78c8f81 100644 --- a/fs/cifs/cifsencrypt.c +++ b/fs/cifs/cifsencrypt.c
@@ -30,12 +30,13 @@
30	#include <linux/ctype.h>	30	#include <linux/ctype.h>
31	#include <linux/random.h>	31	#include <linux/random.h>
32		32
33	/* Calculate and return the CIFS signature based on the mac key and SMB PDU */	33	/*
34	/* the 16 byte signature must be allocated by the caller */	34	* Calculate and return the CIFS signature based on the mac key and SMB PDU.
35	/* Note we only use the 1st eight bytes */	35	* The 16 byte signature must be allocated by the caller. Note we only use the
36	/* Note that the smb header signature field on input contains the	36	* 1st eight bytes and that the smb header signature field on input contains
37	sequence number before this function is called */	37	* the sequence number before this function is called. Also, this function
38		38	* should be called with the server->srv_mutex held.
		39	*/
39	static int cifs_calculate_signature(const struct smb_hdr *cifs_pdu,	40	static int cifs_calculate_signature(const struct smb_hdr *cifs_pdu,
40	struct TCP_Server_Info server, char signature)	41	struct TCP_Server_Info server, char signature)
41	{	42	{
@@ -59,7 +60,7 @@ static int cifs_calculate_signature(const struct smb_hdr *cifs_pdu,
59	server->session_key.response, server->session_key.len);	60	server->session_key.response, server->session_key.len);
60		61
61	crypto_shash_update(&server->secmech.sdescmd5->shash,	62	crypto_shash_update(&server->secmech.sdescmd5->shash,
62	cifs_pdu->Protocol, cifs_pdu->smb_buf_length);	63	cifs_pdu->Protocol, be32_to_cpu(cifs_pdu->smb_buf_length));
63		64
64	rc = crypto_shash_final(&server->secmech.sdescmd5->shash, signature);	65	rc = crypto_shash_final(&server->secmech.sdescmd5->shash, signature);
65		66
@@ -209,8 +210,10 @@ int cifs_verify_signature(struct smb_hdr *cifs_pdu,
209	cpu_to_le32(expected_sequence_number);	210	cpu_to_le32(expected_sequence_number);
210	cifs_pdu->Signature.Sequence.Reserved = 0;	211	cifs_pdu->Signature.Sequence.Reserved = 0;
211		212
		213	mutex_lock(&server->srv_mutex);
212	rc = cifs_calculate_signature(cifs_pdu, server,	214	rc = cifs_calculate_signature(cifs_pdu, server,
213	what_we_think_sig_should_be);	215	what_we_think_sig_should_be);
		216	mutex_unlock(&server->srv_mutex);
214		217
215	if (rc)	218	if (rc)
216	return rc;	219	return rc;
@@ -265,10 +268,11 @@ int setup_ntlm_response(struct cifsSesInfo *ses)
265	}	268	}
266		269
267	#ifdef CONFIG_CIFS_WEAK_PW_HASH	270	#ifdef CONFIG_CIFS_WEAK_PW_HASH
268	void calc_lanman_hash(const char password, const char cryptkey, bool encrypt,	271	int calc_lanman_hash(const char password, const char cryptkey, bool encrypt,
269	char *lnm_session_key)	272	char *lnm_session_key)
270	{	273	{
271	int i;	274	int i;
		275	int rc;
272	char password_with_pad[CIFS_ENCPWD_SIZE];	276	char password_with_pad[CIFS_ENCPWD_SIZE];
273		277
274	memset(password_with_pad, 0, CIFS_ENCPWD_SIZE);	278	memset(password_with_pad, 0, CIFS_ENCPWD_SIZE);
@@ -279,7 +283,7 @@ void calc_lanman_hash(const char password, const char cryptkey, bool encrypt,
279	memset(lnm_session_key, 0, CIFS_SESS_KEY_SIZE);	283	memset(lnm_session_key, 0, CIFS_SESS_KEY_SIZE);
280	memcpy(lnm_session_key, password_with_pad,	284	memcpy(lnm_session_key, password_with_pad,
281	CIFS_ENCPWD_SIZE);	285	CIFS_ENCPWD_SIZE);
282	return;	286	return 0;
283	}	287	}
284		288
285	/* calculate old style session key */	289	/* calculate old style session key */
@@ -296,10 +300,9 @@ void calc_lanman_hash(const char password, const char cryptkey, bool encrypt,
296	for (i = 0; i < CIFS_ENCPWD_SIZE; i++)	300	for (i = 0; i < CIFS_ENCPWD_SIZE; i++)
297	password_with_pad[i] = toupper(password_with_pad[i]);	301	password_with_pad[i] = toupper(password_with_pad[i]);
298		302
299	SMBencrypt(password_with_pad, cryptkey, lnm_session_key);	303	rc = SMBencrypt(password_with_pad, cryptkey, lnm_session_key);
300		304
301	/* clear password before we return/free memory */	305	return rc;
302	memset(password_with_pad, 0, CIFS_ENCPWD_SIZE);
303	}	306	}
304	#endif /* CIFS_WEAK_PW_HASH */	307	#endif /* CIFS_WEAK_PW_HASH */
305		308
@@ -469,15 +472,15 @@ static int calc_ntlmv2_hash(struct cifsSesInfo ses, char ntlmv2_hash,
469	return rc;	472	return rc;
470	}	473	}
471		474
472	/* convert ses->userName to unicode and uppercase */	475	/* convert ses->user_name to unicode and uppercase */
473	len = strlen(ses->userName);	476	len = strlen(ses->user_name);
474	user = kmalloc(2 + (len * 2), GFP_KERNEL);	477	user = kmalloc(2 + (len * 2), GFP_KERNEL);
475	if (user == NULL) {	478	if (user == NULL) {
476	cERROR(1, "calc_ntlmv2_hash: user mem alloc failure\n");	479	cERROR(1, "calc_ntlmv2_hash: user mem alloc failure\n");
477	rc = -ENOMEM;	480	rc = -ENOMEM;
478	goto calc_exit_2;	481	goto calc_exit_2;
479	}	482	}
480	len = cifs_strtoUCS((__le16 *)user, ses->userName, len, nls_cp);	483	len = cifs_strtoUCS((__le16 *)user, ses->user_name, len, nls_cp);
481	UniStrupr(user);	484	UniStrupr(user);
482		485
483	crypto_shash_update(&ses->server->secmech.sdeschmacmd5->shash,	486	crypto_shash_update(&ses->server->secmech.sdeschmacmd5->shash,