cifs: after upcalling for krb5 creds, invalidate key rather than revoking it

Calling key_revoke here isn't ideal as further requests for the key will end up returning -EKEYREVOKED until it gets purged from the cache. What we really intend here is to force a new upcall on the next request_key. Cc: David Howells <dhowells@redhat.com> Signed-off-by: N Jeff Layton <jlayton@redhat.com> Signed-off-by: N Steve French <smfrench@gmail.com>

cifs: after upcalling for krb5 creds, invalidate key rather than revoking it
Calling key_revoke here isn't ideal as further requests for the key will end up returning -EKEYREVOKED until it gets purged from the cache. What we really intend here is to force a new upcall on the next request_key. Cc: David Howells <dhowells@redhat.com> Signed-off-by: N Jeff Layton <jlayton@redhat.com> Signed-off-by: N Steve French <smfrench@gmail.com>
00401ff7 · Jeff Layton · Steve French · 0ec4f431 · 00401ff7
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

fs/cifs/sess.c fs/cifs/sess.c +1 -1

未找到文件。
--- a/fs/cifs/sess.c
+++ b/fs/cifs/sess.c
@@ -938,7 +938,7 @@ CIFS_SessSetup(unsigned int xid, struct cifs_ses *ses,

 ssetup_exit:
 	if (spnego_key) {
-		key_revoke(spnego_key);
+		key_invalidate(spnego_key);
 		key_put(spnego_key);
 	}
 	kfree(str_area);