af_key: Do not call xfrm_probe_algs in parallel (b4649d7c) · Commits · Summer2022 / 22b970264

Commit b4649d7c authored 2 years ago by

Herbert Xu Committed by Yongqiang Liu 2 years ago

af_key: Do not call xfrm_probe_algs in parallel

mainline inclusion
from mainline-v6.0-rc3
commit ba953a9d89a00c078b85f4b190bc1dde66fe16b5
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I5OPA4


CVE: CVE-2022-3028

--------------------------------

When namespace support was added to xfrm/afkey, it caused the
previously single-threaded call to xfrm_probe_algs to become
multi-threaded.  This is buggy and needs to be fixed with a mutex.

Reported-by: Abhishek Shah <abhishek.shah@columbia.edu>
Fixes: 283bc9f3 ("xfrm: Namespacify xfrm state/policy locks")
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>
Signed-off-by: Xu Jia <xujia39@huawei.com>
Reviewed-by: Wei Yongjun <weiyongjun1@huawei.com>
Reviewed-by: Wang Weiyang <wangweiyang2@huawei.com>
Signed-off-by: Yongqiang Liu <liuyongqiang13@huawei.com>

parent 24d2149f

No related branches found

No related tags found

Hide whitespace changes

Inline Side-by-side

Showing with 3 additions and 0 deletions

Please register or to comment