Re: [PATCH] net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()

From: Jakub Kicinski
Date: Fri Feb 24 2023 - 13:55:15 EST

Next message: Jakub Kicinski: "Re: [PATCH v2] net: tls: fix possible info leak in tls_set_device_offload()"
Previous message: Josh Poimboeuf: "Re: [PATCH v9 7/8] x86/cpu: Support AMD Automatic IBRS"
In reply to: Florian Westphal: "Re: [PATCH] net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()"
Next in thread: Sabrina Dubroca: "Re: [PATCH] net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 24 Feb 2023 13:06:06 +0100 Florian Westphal wrote:
> Hangyu Hua <hbh25y@xxxxxxxxx> wrote:
> > ctx->crypto_send.info is not protected by lock_sock in
> > do_tls_getsockopt_conf(). A race condition between do_tls_getsockopt_conf()
> > and do_tls_setsockopt_conf() can cause a NULL point dereference or
> > use-after-free read when memcpy.
>
> Its good practice to quote the relevant parts of the splat here.

Right, the bug and the fix seem completely bogus.
Please make sure the bugs are real and the fixes you sent actually
fix them.

Next message: Jakub Kicinski: "Re: [PATCH v2] net: tls: fix possible info leak in tls_set_device_offload()"
Previous message: Josh Poimboeuf: "Re: [PATCH v9 7/8] x86/cpu: Support AMD Automatic IBRS"
In reply to: Florian Westphal: "Re: [PATCH] net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()"
Next in thread: Sabrina Dubroca: "Re: [PATCH] net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]