Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / d0709f1e66e8066c4ac6a54620ec116aa41937c0
commitd0709f1e66e8066c4ac6a54620ec116aa41937c0[log] [tgz]
authorDavid Jeffery <djeffery@redhat.com>Thu Feb 12 16:45:31 2015 +0000
committerJames Morris <james.l.morris@oracle.com>Mon Feb 16 13:45:16 2015 +1100
treedbccabd56c8031be37c2bad08eeccea4d29ee879
parentcd07db5f2770cf7f96b0202ef93533c8a9eee09f [diff]
Don't leak a key reference if request_key() tries to use a revoked keyring

If a request_key() call to allocate and fill out a key attempts to insert the
key structure into a revoked keyring, the key will leak, using memory and part
of the user's key quota until the system reboots. This is from a failure of
construct_alloc_key() to decrement the key's reference count after the attempt
to insert into the requested keyring is rejected.

key_put() needs to be called in the link_prealloc_failed callpath to ensure
the unused key is released.

Signed-off-by: David Jeffery <djeffery@redhat.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: James Morris <james.l.morris@oracle.com>
1 file changed
tree: dbccabd56c8031be37c2bad08eeccea4d29ee879
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS