After Today's Update CIFS mount no longer works

After today’s kernel update my NAS drives no longer mount. Using mount -a doesn’t work either. It alternates between 2 errors:

“An error occurred while accessing ‘/home/dave/Pictures’, the system responded: mount.cifs: permission denied”

and

“An error occurred while accessing ‘/home/dave/NASMusic’, the system responded: Couldn’t chdir to /home/dave/NASMusic: No such device
munmap_chunk(): invalid pointer”

Booting with previous kernel gives same errors.

Any help would be greatly appreciated. Thanks.

Can you try mounting the share(s) manually with mount command?

mount --verbose //server/share /path/to/mount-point -o........

Are directory permissions as expected?

ls -ld ~/*/

Anything interesting reported?

sudo journalctl -b | egrep -i "cifs|smb"

Some more info:
This computer is set up for triple boot windows 10, MacOs Big Sur, and TW. The other OS’s still see the NAS stuff just fine. The problem startedafter doing the latest TW update with a new kernel.

When I try and mount manually:
DavesPC:~ # mount --verbose //Vomitus/music /home/dave/NASMusic
Couldn’t chdir to /home/dave/NASMusic: No such device
munmap_chunk(): invalid pointer

Results of:
avesPC:~ # ls -ld ~/*/
drwxr-xr-x 1 root root 0 Oct 8 16:13 /root/bin/
drwxr-xr-x 1 root root 36 Jun 11 08:40 **/root/inst-sys/

**And:
DavesPC:~ # journalctl -b | egrep -i “cifs|smb”
Nov 21 06:44:13 localhost kernel: efi: ACPI=0x996d5000 ACPI 2.0=0x996d5014 SMBIOS=0x99c87000 SMBIOS 3.0=0x9
9c86000 MEMATTR=0x8f18d118 ESRT=0x95298e18 MOKvar=0x8f195000 RNG=0x99cb8f98
Nov 21 06:44:13 localhost kernel: SMBIOS 3.2.0 present.
Nov 21 06:44:16 localhost kernel: i801_smbus 0000:00:1f.4: SMBus using PCI interrupt
Nov 21 09:40:09 DavesPC kernel: FS-Cache: Netfs ‘cifs’ registered for caching
Nov 21 09:40:09 DavesPC mount[2072]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: Key type cifs.spnego registered
Nov 21 09:40:09 DavesPC kernel: Key type cifs.idmap registered
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2082]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2085]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2095]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2098]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2102]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2145]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2148]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:09 DavesPC mount[2151]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:09 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:10 DavesPC mount[2187]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:10 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:10 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 09:40:10 DavesPC mount[2190]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:10 DavesPC mount[2193]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:18 DavesPC mount[2373]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 09:40:18 DavesPC kernel: cifsparsesmb_version: 2 callbacks suppressed
Nov 21 09:40:18 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 09:40:18 DavesPC kernel: cifs_parse_security_flavors: 2 callbacks suppressed
Nov 21 09:40:18 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 11:45:42 DavesPC mount[2697]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 11:45:42 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 11:45:42 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 11:45:42 DavesPC mount[2706]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 11:45:42 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 11:45:42 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 11:47:00 DavesPC mount[2788]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 11:47:00 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 11:47:00 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 11:47:00 DavesPC mount[2791]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 11:47:00 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 11:47:00 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 11:48:26 DavesPC systemd[1]: home-dave-NASMusic.automount: Got automount request for /home/dave/NASM
usic, triggered by 2835 (mount.cifs)
Nov 21 11:48:26 DavesPC mount[2837]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kerne
l log messages (dmesg)
Nov 21 11:48:26 DavesPC kernel: CIFS: VFS: Use of the less secure dialect vers=1.0 is not recommended unles
s required for access to very old servers
Nov 21 11:48:26 DavesPC kernel: CIFS: VFS: bad security option: ntlm
DavesPC:~ #

Note:
I tried changing vers=1.0 to vers=2.0 and still wont mount.

Hi
Does the NAS your using support 2.0?

My new one likely does but my previous one didn’t. I did change all 3 instances of vers=1.0 to vers=2.0 in fstab but still no mounting.

I also found that if I click in “shared folders (SMB)” under Network in Dolphin it no longer sees anything on my network.

Here is the latest journal:

DavesPC:~ # journalctl -b | egrep -i “cifs|smb”
Nov 21 12:39:20 localhost kernel: efi: ACPI=0x996d5000 ACPI 2.0=0x996d5014 SMBIOS=0x99c87000 SMBIOS 3.0=0x99c86000 M
EMATTR=0x8f18d118 ESRT=0x95298e18 MOKvar=0x8f195000 RNG=0x99cb8f98
Nov 21 12:39:20 localhost kernel: SMBIOS 3.2.0 present.
Nov 21 12:39:24 localhost kernel: i801_smbus 0000:00:1f.4: SMBus using PCI interrupt
Nov 21 12:39:31 DavesPC kernel: FS-Cache: Netfs ‘cifs’ registered for caching
Nov 21 12:39:31 DavesPC kernel: Key type cifs.spnego registered
Nov 21 12:39:31 DavesPC kernel: Key type cifs.idmap registered
Nov 21 12:39:31 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:31 DavesPC mount[2097]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:31 DavesPC mount[2107]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:31 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:31 DavesPC mount[2110]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:31 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2138]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2141]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2145]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2205]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2208]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2221]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2233]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:32 DavesPC kernel: CIFS: VFS: bad security option: ntlm
Nov 21 12:39:32 DavesPC mount[2236]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:33 DavesPC mount[2324]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:33 DavesPC mount[2330]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:33 DavesPC mount[2357]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
Nov 21 12:39:33 DavesPC mount[2360]: Refer to the mount.cifs(8) manual page (e.g. man mount.cifs) and kernel log mes
sages (dmesg)
DavesPC:~ #

You should have run this command as regular user (dave). It is the /home/dave/directories mentioned in your opening post I was after.

Note:
I tried changing vers=1.0 to vers=2.0 and still wont mount.

Yes, definitely best to use SMBv2 for devices that support it.

Please, when posting commands and code, use CODE tags (refer to the # button in the forum editor).

Hi
In you linux host, there must be an client ntlm option set in /etc/samba/smb.conf?

Is security = domain set and the correct workgroup?

For my old startech I use the following in the global section;


security = domain
client use spnego = no
client ntlmv2 auth = no
client min protocol = NT1

I forgot to do it when I upgraded to a new NAS.

You should also know that the CIFS client dropped support for NTLM and weaker authentication algorithms…
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=76a3c92ec9e0668e4cd0e9ff1782eb68f61a179c

Hi
NTLMv2 is still there…

Should I just remove the ntlm instances from fstab? Should I replace it with something else?

thanks. As you can see its been a long time since I updated the fstab stuff.

In /etc/samba/smb.conf the workgroup is set correctly but there are non of the items you showed listed there for security. But this has been working as it is for years until this latest kernel update.

Hi
As indicated, the ntlm, in your mount command if you cnage it to ntlmv2 instead does that help?

I would try the smbclient with some verbosity to see what may be happening…


smbclient -d 3 -L //<ip_address>

Can you show the exact fstab entry?

I tried removing all instances of ntlm and now everything works again.

thanks

Good. Thanks for the update.

Well, there’s your problem right there. There’s no /home/dave/NASMusic/ directory.

No, that was not the issue. It was the attempted use of ntlm authentication (now removed from cifs).