AuxXxilium/linux_dsm_epyc7002
1
0
Fork 0
mirror of https://github.com/AuxXxilium/linux_dsm_epyc7002.git synced 2025-02-25 18:39:08 +07:00
Code Issues Actions Packages Projects Releases Wiki Activity
11044f8c2c
linux_dsm_epyc7002/net/sunrpc/auth_gss
History
J. Bruce Fields 5fb71b231c rpc: fix NULL dereference on kmalloc failure 
[ Upstream commit 0ddc942394013f08992fc379ca04cffacbbe3dae ]

I think this is unlikely but possible:

svc_authenticate sets rq_authop and calls svcauth_gss_accept.  The
kmalloc(sizeof(*svcdata), GFP_KERNEL) fails, leaving rq_auth_data NULL,
and returning SVC_DENIED.

This causes svc_process_common to go to err_bad_auth, and eventually
call svc_authorise.  That calls ->release == svcauth_gss_release, which
tries to dereference rq_auth_data.

Signed-off-by: J. Bruce Fields <bfields@redhat.com>
Link: https://lore.kernel.org/linux-nfs/3F1B347F-B809-478F-A1E9-0BE98E22B0F0@oracle.com/T/#t
Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2021-04-07 15:00:04 +02:00
..
auth_gss_internal.h SUNRPC: Handle 0 length opaque XDR object data properly 2021-02-13 13:55:12 +01:00
auth_gss.c SUNRPC: Move simple_get_bytes and simple_get_netobj into private header 2021-02-13 13:55:12 +01:00
gss_generic_token.c
gss_krb5_crypto.c
gss_krb5_keys.c
gss_krb5_mech.c SUNRPC: Move simple_get_bytes and simple_get_netobj into private header 2021-02-13 13:55:12 +01:00
gss_krb5_seal.c
gss_krb5_seqnum.c
gss_krb5_unseal.c
gss_krb5_wrap.c
gss_mech_switch.c
gss_rpc_upcall.c
gss_rpc_upcall.h
gss_rpc_xdr.c
gss_rpc_xdr.h
Makefile
svcauth_gss.c rpc: fix NULL dereference on kmalloc failure 2021-04-07 15:00:04 +02:00
trace.c