提交 0124cc45 编写于 作者: J Jeff Layton 提交者: Steve French

cifs: store the real expected sequence number in the mid

Currently, the signing routines take a pointer to a place to store the
expected sequence number for the mid response. It then stores a value
that's one below what that sequence number should be, and then adds one
to it when verifying the signature on the response.

Increment the sequence number before storing the value in the mid, and
eliminate the "+1" when checking the signature.
Signed-off-by: NJeff Layton <jlayton@redhat.com>
Signed-off-by: NSteve French <sfrench@us.ibm.com>
Signed-off-by: NSteve French <smfrench@gmail.com>
上级 ad313cb8
...@@ -135,8 +135,8 @@ int cifs_sign_rqst(struct smb_rqst *rqst, struct TCP_Server_Info *server, ...@@ -135,8 +135,8 @@ int cifs_sign_rqst(struct smb_rqst *rqst, struct TCP_Server_Info *server,
cpu_to_le32(server->sequence_number); cpu_to_le32(server->sequence_number);
cifs_pdu->Signature.Sequence.Reserved = 0; cifs_pdu->Signature.Sequence.Reserved = 0;
*pexpected_response_sequence_number = server->sequence_number++; *pexpected_response_sequence_number = ++server->sequence_number;
server->sequence_number++; ++server->sequence_number;
rc = cifs_calc_signature(rqst, server, smb_signature); rc = cifs_calc_signature(rqst, server, smb_signature);
if (rc) if (rc)
......
...@@ -1545,7 +1545,7 @@ cifs_readv_callback(struct mid_q_entry *mid) ...@@ -1545,7 +1545,7 @@ cifs_readv_callback(struct mid_q_entry *mid)
int rc = 0; int rc = 0;
rc = cifs_verify_signature(&rqst, server, rc = cifs_verify_signature(&rqst, server,
mid->sequence_number + 1); mid->sequence_number);
if (rc) if (rc)
cifs_dbg(VFS, "SMB signature verification returned error = %d\n", cifs_dbg(VFS, "SMB signature verification returned error = %d\n",
rc); rc);
......
...@@ -622,7 +622,7 @@ cifs_check_receive(struct mid_q_entry *mid, struct TCP_Server_Info *server, ...@@ -622,7 +622,7 @@ cifs_check_receive(struct mid_q_entry *mid, struct TCP_Server_Info *server,
iov.iov_len = len; iov.iov_len = len;
/* FIXME: add code to kill session */ /* FIXME: add code to kill session */
rc = cifs_verify_signature(&rqst, server, rc = cifs_verify_signature(&rqst, server,
mid->sequence_number + 1); mid->sequence_number);
if (rc) if (rc)
cifs_dbg(VFS, "SMB signature verification returned error = %d\n", cifs_dbg(VFS, "SMB signature verification returned error = %d\n",
rc); rc);
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册