Received: by 2002:a05:6a10:22f:0:0:0:0 with SMTP id 15csp1050232pxk; Mon, 31 Aug 2020 08:29:14 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzmckjOEX8+jm/YkhK98FNojTl2gEGYTmXrXG0jEVt02jH9aAxbCenNp9lUb9msWjvWVwws X-Received: by 2002:a17:906:b286:: with SMTP id q6mr1522692ejz.99.1598887754162; Mon, 31 Aug 2020 08:29:14 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1598887754; cv=none; d=google.com; s=arc-20160816; b=UCch51//KoJ5OuKrw04Z6Cz6y4uOHTjhjXF3EpbzVBbd8Ga1v1R5IBsO0G+09Vzl05 Qyd9PHxvs1PebEkwWjFwNGU6eXurKwRoE/rZhurYsdpl1B1Z+DDBdHK3XxLuP77jgFku SPBOfjSrQ3jTJ3R7JXrjl9kAGPwJ1ieF1iv78b4OoUduJG/U/eeuuba84h66mPHEiYXg 8m9NlzdF6t9VUZLpxOMlnEiFm582f+HaXS3sOuMR4rSSNpSDLcwv03ydEUPXlvXOzWyg PxGtdaN5vxfHqYR8awRnhFgzaLdIpUzmhgwhu+uvTYJKywUul8EOs4Y0OUPDxSgZs7SM 2TEg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=QJuMvdCL5pyVoBdZbi0YTD5jwpk4srtZL9JQ6AoYPso=; b=SKugcapunkVkJev9SpBDN8SA8lVdqvv6EP5nUvHgUd0aVl7DXldfQ1WSPxXkspgylW n/pXPRNFU+o3dX9FdzXhjp+W+TQODyUCs9p6CTZHFAjdTipG4JZfrw2uHSd5ejxefRzt 3uoHtphQfPLKryrZj+E59kXUWvYqvqeh8Scr5oA5wuDUqiY/+x/csAGhxEN3QEVINoND LZHg0xUCrsAmPUErpojHDyhWfeOk2seOF4w1gxp7ipUiyMBppWH1nIeKJiirZWEb40Zo K4gBk6YCEov1tOK5X1C2lRDkmiNE5Ta5fL6ME7/bvFyiVYPWMWM0XCEhNvbJZ6OaCthq XB0g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=GiDRqZwF; spf=pass (google.com: domain of linux-nfs-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-nfs-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id n4si4846893edo.589.2020.08.31.08.28.48; Mon, 31 Aug 2020 08:29:14 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-nfs-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=GiDRqZwF; spf=pass (google.com: domain of linux-nfs-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-nfs-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728156AbgHaP1w (ORCPT + 99 others); Mon, 31 Aug 2020 11:27:52 -0400 Received: from mail.kernel.org ([198.145.29.99]:36562 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726755AbgHaP1v (ORCPT ); Mon, 31 Aug 2020 11:27:51 -0400 Received: from mail-ot1-f46.google.com (mail-ot1-f46.google.com [209.85.210.46]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 128BB2083E; Mon, 31 Aug 2020 15:27:50 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1598887670; bh=jT9yB63HJHApfihOIb1xEYGO+FSjOKTpNRpjd3xo4pw=; h=References:In-Reply-To:From:Date:Subject:To:Cc:From; b=GiDRqZwFHz8aWKhaEOHWvljJ3SIMOvASR0Xo/1jiLslulQm3q/SDofqpdF9H+t+Fl HZU5vKzFMeNP4ZToUobaoLQo1/5BfqwOXoCbuacyxvAoksjz+aOkFA7V+dOmJJbBi8 fz0TaciA7YC69ehMJYgLiQQmWNflQe+qRTiJeBN8= Received: by mail-ot1-f46.google.com with SMTP id k20so5674382otr.1; Mon, 31 Aug 2020 08:27:50 -0700 (PDT) X-Gm-Message-State: AOAM531MJiEKVnA4nfVNjWNpM2fAHfes3itKXju/UqYSv7URW3OE7fIj 6pJnCVJkroD9hKlnmjtHJYtn1EwD7cCzth6l1do= X-Received: by 2002:a9d:69c9:: with SMTP id v9mr1238535oto.90.1598887669390; Mon, 31 Aug 2020 08:27:49 -0700 (PDT) MIME-Version: 1.0 References: <20200827080252.26396-1-dinghao.liu@zju.edu.cn> <20200829153648.GB20499@fieldses.org> In-Reply-To: <20200829153648.GB20499@fieldses.org> From: Ard Biesheuvel Date: Mon, 31 Aug 2020 18:27:38 +0300 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [PATCH] gss_krb5: Fix memleak in krb5_make_rc4_seq_num To: "J. Bruce Fields" Cc: Dinghao Liu , Kangjie Lu , Trond Myklebust , Anna Schumaker , Chuck Lever , "David S. Miller" , Jakub Kicinski , Scott Mayhew , linux-nfs@vger.kernel.org, "open list:BPF JIT for MIPS (32-BIT AND 64-BIT)" , Linux Kernel Mailing List Content-Type: text/plain; charset="UTF-8" Sender: linux-nfs-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-nfs@vger.kernel.org On Sat, 29 Aug 2020 at 18:43, J. Bruce Fields wrote: > > This code is rarely if ever used, and there are pending patches to > remove it completely, so I don't think it's worth trying to fix a rare > memory leak at this point. > > --b. > FYI I just submitted v3 of my series removing this code to the linux-crypto list, and so hopefully it will disappear in v5.10 > On Thu, Aug 27, 2020 at 04:02:50PM +0800, Dinghao Liu wrote: > > When kmalloc() fails, cipher should be freed > > just like when krb5_rc4_setup_seq_key() fails. > > > > Fixes: e7afe6c1d486b ("sunrpc: fix 4 more call sites that were using stack memory with a scatterlist") > > Signed-off-by: Dinghao Liu > > --- > > net/sunrpc/auth_gss/gss_krb5_seqnum.c | 6 ++++-- > > 1 file changed, 4 insertions(+), 2 deletions(-) > > > > diff --git a/net/sunrpc/auth_gss/gss_krb5_seqnum.c b/net/sunrpc/auth_gss/gss_krb5_seqnum.c > > index 507105127095..88ca58d11082 100644 > > --- a/net/sunrpc/auth_gss/gss_krb5_seqnum.c > > +++ b/net/sunrpc/auth_gss/gss_krb5_seqnum.c > > @@ -53,8 +53,10 @@ krb5_make_rc4_seq_num(struct krb5_ctx *kctx, int direction, s32 seqnum, > > return PTR_ERR(cipher); > > > > plain = kmalloc(8, GFP_NOFS); > > - if (!plain) > > - return -ENOMEM; > > + if (!plain) { > > + code = -ENOMEM; > > + goto out; > > + } > > > > plain[0] = (unsigned char) ((seqnum >> 24) & 0xff); > > plain[1] = (unsigned char) ((seqnum >> 16) & 0xff); > > -- > > 2.17.1