asedeno.scripts.mit.edu Git - linux.git/commit

author	David Howells <dhowells@redhat.com>
	Fri, 20 Dec 2019 16:17:16 +0000 (16:17 +0000)
committer	David Howells <dhowells@redhat.com>
	Fri, 20 Dec 2019 16:21:32 +0000 (16:21 +0000)
commit	063c60d39180cec7c9317f5acfc3071f8fecd705
tree	771d26b217eeed8115116b8fb23a90963d6eea36	tree \| snapshot
parent	13b7955a0252e15265386b229b814152f109b234	commit \| diff

rxrpc: Fix missing security check on incoming calls

Fix rxrpc_new_incoming_call() to check that we have a suitable service key
available for the combination of service ID and security class of a new
incoming call - and to reject calls for which we don't.

This causes an assertion like the following to appear:

rxrpc: Assertion failed - 6(0x6) == 12(0xc) is false
kernel BUG at net/rxrpc/call_object.c:456!

Where call->state is RXRPC_CALL_SERVER_SECURING (6) rather than
RXRPC_CALL_COMPLETE (12).

Fixes: 248f219cb8bc ("rxrpc: Rewrite the data and ack handling code")
Reported-by: Marc Dionne <marc.dionne@auristor.com>
Signed-off-by: David Howells <dhowells@redhat.com>

net/rxrpc/ar-internal.h		diff \| blob \| history
net/rxrpc/call_accept.c		diff \| blob \| history
net/rxrpc/conn_event.c		diff \| blob \| history
net/rxrpc/conn_service.c		diff \| blob \| history
net/rxrpc/rxkad.c		diff \| blob \| history
net/rxrpc/security.c		diff \| blob \| history