SUNRPC: Advertise support for RFC 8009 encryption types

Add the RFC 8009 encryption types to the string of integers that is reported to gssd during upcalls. This enables gssd to utilize keys with these encryption types when support for them is built into the kernel. Link: https://bugzilla.linux-nfs.org/show_bug.cgi?id=400 Tested-by: Scott Mayhew <smayhew@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com> Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
author: Chuck Lever <chuck.lever@oracle.com> 2023-01-15 20:23:02 +0300
committer: Chuck Lever <chuck.lever@oracle.com> 2023-02-20 17:20:43 +0300
commit: f26ec6b1b15c5d84e4c8e5b361e2be119def498d (patch)
tree: 676091c3f05608e5cae67c37c3d8cc1728e61f33 /net
parent: 0d5b5a0f32dfc9be3521803aba53e856759f0250 (diff)
download: linux-f26ec6b1b15c5d84e4c8e5b361e2be119def498d.tar.xz
1 files changed, 4 insertions, 0 deletions
diff --git a/net/sunrpc/auth_gss/gss_krb5_mech.c b/net/sunrpc/auth_gss/gss_krb5_mech.c
index 7fe39e47c84f..97a365608233 100644
--- a/net/sunrpc/auth_gss/gss_krb5_mech.c
+++ b/net/sunrpc/auth_gss/gss_krb5_mech.c
@@ -214,6 +214,10 @@ static char gss_krb5_enctype_priority_list[64];
 static void gss_krb5_prepare_enctype_priority_list(void)
 {
 	static const u32 gss_krb5_enctypes[] = {
+#if defined(CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_AES_SHA2)
+		ENCTYPE_AES256_CTS_HMAC_SHA384_192,
+		ENCTYPE_AES128_CTS_HMAC_SHA256_128,
+#endif
 #if defined(CONFIG_RPCSEC_GSS_KRB5_ENCTYPES_AES_SHA1)
 		ENCTYPE_AES256_CTS_HMAC_SHA1_96,
 		ENCTYPE_AES128_CTS_HMAC_SHA1_96,
author	Chuck Lever <chuck.lever@oracle.com>	2023-01-15 20:23:02 +0300
committer	Chuck Lever <chuck.lever@oracle.com>	2023-02-20 17:20:43 +0300
commit	f26ec6b1b15c5d84e4c8e5b361e2be119def498d (patch)
tree	676091c3f05608e5cae67c37c3d8cc1728e61f33 /net
parent	0d5b5a0f32dfc9be3521803aba53e856759f0250 (diff)
download	linux-f26ec6b1b15c5d84e4c8e5b361e2be119def498d.tar.xz