Received: by 2002:a25:1506:0:0:0:0:0 with SMTP id 6csp707696ybv; Thu, 13 Feb 2020 08:06:48 -0800 (PST) X-Google-Smtp-Source: APXvYqzKvcww05qZEErFrEOzTfoxyR++dp1LRu2IA1+FdJJoKecMHNP5W6hkYNze/rMdnKDCDRTO X-Received: by 2002:a9d:7d9a:: with SMTP id j26mr13190516otn.21.1581610008464; Thu, 13 Feb 2020 08:06:48 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1581610008; cv=none; d=google.com; s=arc-20160816; b=tpR0+8Y7P1wZwUVlgVxJURQKaWdpawSaG3j8QelyEjU+9Vup3RBz9CBdUtaNPVqWeb 6plyTQm9y05o2qQ4IwkzaXkoQJQd8HHAaLFPvFxVq87uXsNiu15NKXExt3UbYptEYDND /Mi+GwKsJjO09ALshzG8/nuY+lfjPaSJkpeJQV3UFu5/srtJYODNMlxHBqpyhfKNV0Ex WdFlgWansOms82Ca9dHqXd9xh7jy1ydEKnqRBCtzTc0W03jLTjMMOzL1YOvrEnlq9xg/ H8v3BIr2/RYEwDl1OSYRGn/PqfZ7sPtHlIRyr22fGddxWsVn91+vU/5+PG844SfAI9IM 7tFQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=pfyPiPYY1LlESqtr1vz8iTGD0fVOSGJJkqRyO0sM+1M=; b=QYEKb/o3nuDQ+KgzhNa/C6DIHqdMZbq7Qv8UqkRUoCiXT1M68xVsdqh2z30/bJhS68 Uxch5Jn/py/ctjaEUeYXjH/MRDXk9Y2kClClL4/tw4pCfE7aWz2sNGk53ymxO6M/m0wf bm2CQjzKuYQU1VrkL1L5RQQgca73Ogh1/IK6sE4UeSyUFzPasQ9gWtOxWV9b7qvsoGdl 16nsmGDtRT8GO3jR/C7fNxmbmTWyrxXVgCBftiFNY9pXZS7KRNCNWeiVAAc2sMbr9Wv/ STmNmBG+Qweso1jD6Qx2SYtA2gz2Vrg3CeWhVn5XTz3HhU04x1GSjmsQ+qI9sKUVJcnO ZMKQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=wHqBzD6o; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id l20si1232407otr.202.2020.02.13.08.06.31; Thu, 13 Feb 2020 08:06:48 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=wHqBzD6o; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1730325AbgBMQFg (ORCPT + 99 others); Thu, 13 Feb 2020 11:05:36 -0500 Received: from mail.kernel.org ([198.145.29.99]:35800 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728486AbgBMPXs (ORCPT ); Thu, 13 Feb 2020 10:23:48 -0500 Received: from localhost (unknown [104.132.1.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 574EA2469C; Thu, 13 Feb 2020 15:23:48 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1581607428; bh=2S2Xv7OmE/qAmWepxc4mgXxqfn5c9L+ojn0/7KWDObU=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=wHqBzD6o4UZcfsCPDiJp5uW08VzbWVT2dmsHqpG0H3H06d14rOjj64fV42RhQ/HcR 5BpBKx8BBLt4o7yKzdSubH+n8aJaRolraZ9aS4VTm0ktDKCoFx7JXUuzGDb7fnFryr 4yzMUVNPYsONQvU2jYHbbf7dTOrV+xJv3E9wFKEk= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Roberto Bergantinos Corpas , Frank Sorenson , "J. Bruce Fields" Subject: [PATCH 4.9 043/116] sunrpc: expiry_time should be seconds not timeval Date: Thu, 13 Feb 2020 07:19:47 -0800 Message-Id: <20200213151859.743949173@linuxfoundation.org> X-Mailer: git-send-email 2.25.0 In-Reply-To: <20200213151842.259660170@linuxfoundation.org> References: <20200213151842.259660170@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Roberto Bergantinos Corpas commit 3d96208c30f84d6edf9ab4fac813306ac0d20c10 upstream. When upcalling gssproxy, cache_head.expiry_time is set as a timeval, not seconds since boot. As such, RPC cache expiry logic will not clean expired objects created under auth.rpcsec.context cache. This has proven to cause kernel memory leaks on field. Using 64 bit variants of getboottime/timespec Expiration times have worked this way since 2010's c5b29f885afe "sunrpc: use seconds since boot in expiry cache". The gssproxy code introduced in 2012 added gss_proxy_save_rsc and introduced the bug. That's a while for this to lurk, but it required a bit of an extreme case to make it obvious. Signed-off-by: Roberto Bergantinos Corpas Cc: stable@vger.kernel.org Fixes: 030d794bf498 "SUNRPC: Use gssproxy upcall for server..." Tested-By: Frank Sorenson Signed-off-by: J. Bruce Fields Signed-off-by: Greg Kroah-Hartman --- net/sunrpc/auth_gss/svcauth_gss.c | 4 ++++ 1 file changed, 4 insertions(+) --- a/net/sunrpc/auth_gss/svcauth_gss.c +++ b/net/sunrpc/auth_gss/svcauth_gss.c @@ -1180,6 +1180,7 @@ static int gss_proxy_save_rsc(struct cac dprintk("RPC: No creds found!\n"); goto out; } else { + struct timespec64 boot; /* steal creds */ rsci.cred = ud->creds; @@ -1200,6 +1201,9 @@ static int gss_proxy_save_rsc(struct cac &expiry, GFP_KERNEL); if (status) goto out; + + getboottime64(&boot); + expiry -= boot.tv_sec; } rsci.h.expiry_time = expiry;