2 tristate "CIFS support (advanced network filesystem, SMBFS successor)"
7 This is the client VFS module for the Common Internet File System
8 (CIFS) protocol which is the successor to the Server Message Block
9 (SMB) protocol, the native file sharing mechanism for most early
10 PC operating systems. The CIFS protocol is fully supported by
11 file servers such as Windows 2000 (including Windows 2003, NT 4
12 and Windows XP) as well by Samba (which provides excellent CIFS
13 server support for Linux and many other operating systems). Limited
14 support for OS/2 and Windows ME and similar servers is provided as
17 The cifs module provides an advanced network file system
18 client for mounting to CIFS compliant servers. It includes
19 support for DFS (hierarchical name space), secure per-user
20 session establishment via Kerberos or NTLM or NTLMv2,
21 safe distributed caching (oplock), optional packet
22 signing, Unicode and other internationalization improvements.
23 If you need to mount to Samba or Windows from this machine, say Y.
26 bool "CIFS statistics"
29 Enabling this option will cause statistics for each server share
30 mounted by the cifs client to be displayed in /proc/fs/cifs/Stats
33 bool "Extended statistics"
36 Enabling this option will allow more detailed statistics on SMB
37 request timing to be displayed in /proc/fs/cifs/DebugData and also
38 allow optional logging of slow responses to dmesg (depending on the
39 value of /proc/fs/cifs/cifsFYI, see fs/cifs/README for more details).
40 These additional statistics may have a minor effect on performance
41 and memory utilization.
43 Unless you are a developer or are doing network performance analysis
46 config CIFS_WEAK_PW_HASH
47 bool "Support legacy servers which use weaker LANMAN security"
50 Modern CIFS servers including Samba and most Windows versions
51 (since 1997) support stronger NTLM (and even NTLMv2 and Kerberos)
52 security mechanisms. These hash the password more securely
53 than the mechanisms used in the older LANMAN version of the
54 SMB protocol but LANMAN based authentication is needed to
55 establish sessions with some old SMB servers.
57 Enabling this option allows the cifs module to mount to older
58 LANMAN based servers such as OS/2 and Windows 95, but such
59 mounts may be less secure than mounts using NTLM or more recent
60 security mechanisms if you are on a public network. Unless you
61 have a need to access old SMB servers (and are on a private
62 network) you probably want to say N. Even if this support
63 is enabled in the kernel build, LANMAN authentication will not be
64 used automatically. At runtime LANMAN mounts are disabled but
65 can be set to required (or optional) either in
66 /proc/fs/cifs (see fs/cifs/README for more detail) or via an
67 option on the mount command. This support is disabled by
68 default in order to reduce the possibility of a downgrade
74 bool "Kerberos/SPNEGO advanced session setup"
75 depends on CIFS && KEYS
77 Enables an upcall mechanism for CIFS which accesses
78 userspace helper utilities to provide SPNEGO packaged (RFC 4178)
79 Kerberos tickets which are needed to mount to certain secure servers
80 (for which more secure Kerberos authentication is required). If
84 bool "CIFS extended attributes"
87 Extended attributes are name:value pairs associated with inodes by
88 the kernel or by users (see the attr(5) manual page, or visit
89 <http://acl.bestbits.at/> for details). CIFS maps the name of
90 extended attributes beginning with the user namespace prefix
91 to SMB/CIFS EAs. EAs are stored on Windows servers without the
92 user namespace prefix, but their names are seen by Linux cifs clients
93 prefaced by the user namespace prefix. The system namespace
94 (used by some filesystems to store ACLs) is not supported at
100 bool "CIFS POSIX Extensions"
101 depends on CIFS_XATTR
103 Enabling this option will cause the cifs client to attempt to
104 negotiate a newer dialect with servers, such as Samba 3.0.5
105 or later, that optionally can handle more POSIX like (rather
106 than Windows like) file behavior. It also enables
107 support for POSIX ACLs (getfacl and setfacl) to servers
108 (such as Samba 3.10 and later) which can negotiate
109 CIFS POSIX ACL support. If unsure, say N.
112 bool "Enable additional CIFS debugging routines"
115 Enabling this option adds a few more debugging routines
116 to the cifs code which slightly increases the size of
117 the cifs module and can cause additional logging of debug
118 messages in some error paths, slowing performance. This
119 option can be turned off unless you are debugging
120 cifs problems. If unsure, say N.
122 config CIFS_DFS_UPCALL
123 bool "DFS feature support"
124 depends on CIFS && KEYS
126 Distributed File System (DFS) support is used to access shares
127 transparently in an enterprise name space, even if the share
128 moves to a different server. This feature also enables
129 an upcall mechanism for CIFS which contacts userspace helper
130 utilities to provide server name resolution (host names to
131 IP addresses) which is needed for implicit mounts of DFS junction
132 points. If unsure, say N.
134 config CIFS_EXPERIMENTAL
135 bool "CIFS Experimental Features (EXPERIMENTAL)"
136 depends on CIFS && EXPERIMENTAL
138 Enables cifs features under testing. These features are
139 experimental and currently include DFS support and directory
140 change notification ie fcntl(F_DNOTIFY), as well as the upcall
141 mechanism which will be used for Kerberos session negotiation
142 and uid remapping. Some of these features also may depend on
143 setting a value of 1 to the pseudo-file /proc/fs/cifs/Experimental
144 (which is disabled by default). See the file fs/cifs/README
145 for more details. If unsure, say N.