Skip to content

Commit 2f37dc4

Browse files
tobluxsmfrench
authored andcommitted
smb: client: Don't log plaintext credentials in cifs_set_cifscreds
When debug logging is enabled, cifs_set_cifscreds() logs the key payload and exposes the plaintext username and password. Remove the debug log to avoid exposing credentials. Fixes: 8a8798a ("cifs: fetch credentials out of keyring for non-krb5 auth multiuser mounts") Cc: stable@vger.kernel.org Acked-by: Paulo Alcantara (Red Hat) <pc@manguebit.org> Signed-off-by: Thorsten Blum <thorsten.blum@linux.dev> Signed-off-by: Steve French <stfrench@microsoft.com>
1 parent d9d1e31 commit 2f37dc4

1 file changed

Lines changed: 0 additions & 1 deletion

File tree

fs/smb/client/connect.c

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2236,7 +2236,6 @@ cifs_set_cifscreds(struct smb3_fs_context *ctx, struct cifs_ses *ses)
22362236
/* find first : in payload */
22372237
payload = upayload->data;
22382238
delim = strnchr(payload, upayload->datalen, ':');
2239-
cifs_dbg(FYI, "payload=%s\n", payload);
22402239
if (!delim) {
22412240
cifs_dbg(FYI, "Unable to find ':' in payload (datalen=%d)\n",
22422241
upayload->datalen);

0 commit comments

Comments
 (0)