Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.19 / 313d7b003ceceb797e8c0d18ab085ed0638b4aff
commit313d7b003ceceb797e8c0d18ab085ed0638b4aff[log] [tgz]
authorKeir Fraser <keir@xen.org>Wed Nov 24 22:08:20 2010 -0800
committerKonrad Rzeszutek Wilk <konrad.wilk@oracle.com>Thu Apr 14 18:26:15 2011 -0400
tree339506d76bb5850adb1203f2f7fd94784ec7541c
parenta81135d90bf176e6139c352c7b96c03d00131836 [diff]
blkback: Fix CVE-2010-3699

A guest can cause the backend driver to leak a kernel thread. Such
leaked threads hold references to the device, whichmakes the device
impossible to tear down. If shut down, the guest remains a zombie
domain, the xenwatch process hangs, and most xm commands will stop
working.

This patch tries to do the following for blkback:
    - identify/extract idempotent teardown operations,
    - add/move the invocation of said teardown operation
      right before we're about to allocate new resources in the
      Connected states.

[ linux-2.6.18-xen.hg 59f097ef181b ]

Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Signed-off-by: Keir Fraser <keir@xen.org>
Signed-off-by: Jeremy Fitzhardinge <jeremy.fitzhardinge@citrix.com>
1 file changed
tree: 339506d76bb5850adb1203f2f7fd94784ec7541c
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS