Kernel/linux-next
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git synced 2025-01-10 15:58:47 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux-next/security
History
David Howells 94c4554ba0 KEYS: Fix race between key destruction and finding a keyring by name 
There appears to be a race between:

 (1) key_gc_unused_keys() which frees key->security and then calls
     keyring_destroy() to unlink the name from the name list

 (2) find_keyring_by_name() which calls key_permission(), thus accessing
     key->security, on a key before checking to see whether the key usage is 0
     (ie. the key is dead and might be cleaned up).

Fix this by calling ->destroy() before cleaning up the core key data -
including key->security.

Reported-by: Petr Matousek <pmatouse@redhat.com>
Signed-off-by: David Howells <dhowells@redhat.com>
2015-09-25 16:30:08 +01:00
..
apparmor
Minor merge needed, due to function move.
2015-07-01 10:49:25 -07:00
integrity
Minor merge needed, due to function move.
2015-07-01 10:49:25 -07:00
keys
KEYS: Fix race between key destruction and finding a keyring by name
2015-09-25 16:30:08 +01:00
selinux
mm: mark most vm_operations_struct const
2015-09-10 13:29:01 -07:00
smack
Smack - Fix build error with bringup unconfigured
2015-08-12 18:10:01 -07:00
tomoyo
LSM: Switch to lists of hooks
2015-05-12 15:00:41 +10:00
yama
Adding YAMA hooks also when YAMA is not stacked.
2015-08-04 01:36:18 +10:00
commoncap.c
capabilities: add a securebit to disable PR_CAP_AMBIENT_RAISE
2015-09-04 16:54:41 -07:00
device_cgroup.c
security/device_cgroup: Fix RCU_LOCKDEP_WARN() condition
2015-09-03 18:13:10 -07:00
inode.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2015-07-04 19:36:06 -07:00
Kconfig
Yama: remove needless CONFIG_SECURITY_YAMA_STACKED
2015-07-28 13:18:19 +10:00
lsm_audit.c
Merge branch 'next' of git://git.infradead.org/users/pcmoore/selinux into next
2015-08-15 13:29:57 +10:00
Makefile
LSM: Switch to lists of hooks
2015-05-12 15:00:41 +10:00
min_addr.c
mmap_min_addr check CAP_SYS_RAWIO only for write
2010-04-23 08:56:31 +10:00
security.c
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
2015-09-08 12:41:25 -07:00