smb3: fix setting SecurityFlags when encryption is required

Setting encryption as required in security flags was broken. For example (to require all mounts to be encrypted by setting): "echo 0x400c5 > /proc/fs/cifs/SecurityFlags" Would return "Invalid argument" and log "Unsupported security flags" This patch fixes that (e.g. allowing overriding the default for SecurityFlags 0x00c5, including 0x40000 to require seal, ie SMB3.1.1 encryption) so now that works and forces encryption on subsequent mounts. Acked-by: Bharath SM <bharathsm@microsoft.com> Cc: stable@vger.kernel.org Signed-off-by: Steve French <stfrench@microsoft.com>
author: Steve French <stfrench@microsoft.com> 2024-07-31 21:38:50 -0500
committer: Steve French <stfrench@microsoft.com> 2024-08-08 11:14:53 -0500
commit: 1b5487aefb1ce7a6b1f15a33297d1231306b4122 (patch)
tree: deb651cc85484975fe4f72ad69b4c8644b296f32 /Documentation
parent: de9c2c66ad8e787abec7c9d7eff4f8c3cdd28aed (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/Documentation/admin-guide/cifs/usage.rst b/Documentation/admin-guide/cifs/usage.rst
index fd4b56c0996f..c09674a75a9e 100644
--- a/Documentation/admin-guide/cifs/usage.rst
+++ b/Documentation/admin-guide/cifs/usage.rst
@@ -742,7 +742,7 @@ SecurityFlags		Flags which control security negotiation and
 			  may use NTLMSSP               		0x00080
 			  must use NTLMSSP           			0x80080
 			  seal (packet encryption)			0x00040
-			  must seal (not implemented yet)               0x40040
+			  must seal                                     0x40040
 
 cifsFYI			If set to non-zero value, additional debug information
 			will be logged to the system error log.  This field
author	Steve French <stfrench@microsoft.com>	2024-07-31 21:38:50 -0500
committer	Steve French <stfrench@microsoft.com>	2024-08-08 11:14:53 -0500
commit	1b5487aefb1ce7a6b1f15a33297d1231306b4122 (patch)
tree	deb651cc85484975fe4f72ad69b4c8644b296f32 /Documentation
parent	de9c2c66ad8e787abec7c9d7eff4f8c3cdd28aed (diff)