From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from wp530.webpack.hosteurope.de (wp530.webpack.hosteurope.de [80.237.130.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id B84C5168 for ; Mon, 10 Jan 2022 12:15:06 +0000 (UTC) Received: from ip4d173d02.dynamic.kabel-deutschland.de ([77.23.61.2] helo=[192.168.66.200]); authenticated by wp530.webpack.hosteurope.de running ExIM with esmtpsa (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) id 1n6tZn-0008Q4-Rw; Mon, 10 Jan 2022 13:15:04 +0100 Message-ID: Date: Mon, 10 Jan 2022 13:15:02 +0100 Precedence: bulk X-Mailing-List: regressions@lists.linux.dev List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.4.0 Subject: Re: Possible regression: unable to mount CIFS 1.0 shares from older machines since 76a3c92ec9e0668e4cd0e9ff1782eb68f61a179c Content-Language: en-BS To: Davyd McColl , "lsahlber@redhat.com" , "stfrench@microsoft.com" Cc: "linux-cifs@vger.kernel.org" , "linux-kernel@vger.kernel.org" , "regressions@lists.linux.dev" References: From: Thorsten Leemhuis In-Reply-To: Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-bounce-key: webpack.hosteurope.de;regressions@leemhuis.info;1641816906;2f31c2aa; X-HE-SMSGID: 1n6tZn-0008Q4-Rw Hi, this is your Linux kernel regression tracker speaking. On 10.01.22 06:53, Davyd McColl wrote: > > I'm following advice from the thread at > https://bugzilla.kernel.org/show_bug.cgi?id=215375 >  as to how to report > this, so please bear with me and redirect me as necessary. > > Since commit 76a3c92ec9e0668e4cd0e9ff1782eb68f61a179c, FWIW, that is "cifs: remove support for NTLM and weaker authentication algorithms" > I'm unable to > mount a CIFS 1.0 share ( from a media player: mede8er med600x3d, which > runs some older linux). Apparently I'm not the only one, according to > that thread, though the other affected party there is windows-based. > > I first logged this in the Gentoo bugtracker > (https://bugs.gentoo.org/821895 ) and a > reversion patch is available there for the time being. > > I understand that some of the encryption methods upon which the original > feature relied are to be removed and, as such, the ability to mount > these older shares was removed. This is sure to affect anyone running > older Windows virtual machines (or older, internally-visible windows > hosts) in addition to anyone attempting to connect to shares from > esoteric devices like mine. > Whilst I understand the desire to clean up code and remove dead > branches, I'd really appreciate it if this particular feature remains > available either by kernel configuration (which suits me fine, but is > likely to be a hassle for anyone running a binary distribution) or via > boot parameters. In the mean-time, I'm updating my own sync software to > support this older device because if I can't sync media to the player, > the device is not very useful to me. >From my point of view this afaics looks like one of those issues where the "no regressions" rule gets tricky. But I told Davyd to bring it forward here to get it discussed in the open. I also wonder if some middle-ground solution could be found in this particular case -- e.g. one where the commit stated above gets reverted and the code then slightly changed to only allow weaker authentication if the user manually requests in somehow, for example using a module parameter or something in /proc or /sys. Ciao, Thorsten P.S.: Anyway, getting this tracked: #regzbot ^introduced 76a3c92ec9e0668e4cd0e9ff1782eb68f61a179c #regzbot title cifs: unable to shares that require NTLM or weaker authentication algorithms #regzbot link: https://bugzilla.kernel.org/show_bug.cgi?id=215375