git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Shu Wang <shuwang@redhat.com>
	Fri, 8 Sep 2017 10:48:33 +0000 (18:48 +0800)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 5 Oct 2017 07:35:50 +0000 (09:35 +0200)
commit	456bbdc86d18d95d389cc8012259176c09211d5b
tree	89457ca7b36934d273e90b460939d2ab908524bd	tree \| snapshot
parent	0c317759e7805e8a615e076186108754093e6d68	commit \| diff

cifs: release auth_key.response for reconnect.

commit f5c4ba816315d3b813af16f5571f86c8d4e897bd upstream.

There is a race that cause cifs reconnect in cifs_mount,
- cifs_mount
  - cifs_get_tcp_session
    - [ start thread cifs_demultiplex_thread
      - cifs_read_from_socket: -ECONNABORTED
        - DELAY_WORK smb2_reconnect_server ]
  - cifs_setup_session
  - [ smb2_reconnect_server ]

auth_key.response was allocated in cifs_setup_session, and
will release when the session destoried. So when session re-
connect, auth_key.response should be check and released.

Tested with my system:
CIFS VFS: Free previous auth_key.response = ffff8800320bbf80

A simple auth_key.response allocation call trace:
- cifs_setup_session
- SMB2_sess_setup
- SMB2_sess_auth_rawntlmssp_authenticate
- build_ntlmssp_auth_blob
- setup_ntlmv2_rsp

Signed-off-by: Shu Wang <shuwang@redhat.com>
Signed-off-by: Steve French <smfrench@gmail.com>
Reviewed-by: Ronnie Sahlberg <lsahlber@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>