Project

General

Profile

Actions

Bug #8683

closed

SMB server should check tokens from authsvc

Added by Gordon Ross over 4 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
-
Start date:
2017-09-23
Due date:
% Done:

0%

Estimated time:
Difficulty:
Medium
Tags:
needs-triage
Gerrit CR:

Description

If the user space smb deamon (smbd) constructs an authentication "token" in response to a "get token" request on the "authsvc" named pipe.
The client-side of that request is an SMB logon thread in the smbsrv driver, so that "token" will be unpacked in the smbsrv driver.
That means this object needs scrutiny similar to any other object coming into the kernel from user space, in case smbd
has a bug (or whatever) causing that token to be incompletely formed.

Fix is to check that all of the token is there when the client-side (in-kernel) gets that response.

Actions #1

Updated by Gordon Ross over 1 year ago

  • Status changed from New to Closed

I don't remember a reproducible bug here. Whatever it was is probably fixed by now. Let's just close.

Actions

Also available in: Atom PDF