[GIT PULL] smb3 client fixes
From: Steve French
Date: Fri May 08 2026 - 13:10:46 EST
Please pull the following changes since commit
7fd2df204f342fc17d1a0bfcd474b24232fb0f32:
Linux 7.1-rc2 (2026-05-03 14:21:25 -0700)
are available in the Git repository at:
git://git.samba.org/sfrench/cifs-2.6.git tags/v7.1-rc3-smb3-client-fixes
for you to fetch changes up to f98b48151cc502ada59d9778f0112d21f2586ca3:
smb: client: validate dacloffset before building DACL pointers
(2026-05-07 14:09:36 -0500)
----------------------------------------------------------------
Seven client fixes
- Fix for two ACL issues (security fix to validate dacloffset better
and chmod fix)
- Fix two out of bounds read (in check_wsl_eas and smb2_check_msg for symlinks)
- Two Kerberos fixes including an important one when AES-256 encryption chosen
- Fix open_cached_dir problem when directory leases disabled
----------------------------------------------------------------
Bjoern Doebel (1):
smb: client: use kzalloc to zero-initialize security descriptor buffer
Michael Bommarito (1):
smb: client: validate dacloffset before building DACL pointers
Piyush Sachdeva (2):
smb: client: Use FullSessionKey for AES-256 encryption key derivation
smb: client: Zero-pad short GSS session keys per MS-SMB2
Shyam Prasad N (1):
cifs: abort open_cached_dir if we don't request leases
Zisen Ye (2):
smb/client: fix out-of-bounds read in symlink_data()
smb/client: fix out-of-bounds read in smb2_compound_op()
fs/smb/client/cached_dir.c | 8 ++++++++
fs/smb/client/cifsacl.c | 37 +++++++++++++++++++++++++++++++++----
fs/smb/client/ioctl.c | 2 +-
fs/smb/client/smb2inode.c | 12 ++++++++----
fs/smb/client/smb2misc.c | 3 ++-
fs/smb/client/smb2pdu.c | 23 ++++++++++++++++++-----
fs/smb/client/smb2transport.c | 35 ++++++++++++++++++++++++++---------
7 files changed, 96 insertions(+), 24 deletions(-)
--
Thanks,
Steve