Google Git
Sign in
cos / third_party / kernel / 37f1a8fd2121c37cdab90d8770e83e43721fe830
commit37f1a8fd2121c37cdab90d8770e83e43721fe830[log] [tgz]
authorBing-Jhong Billy Jheng <billy@starlabs.sg>Thu Mar 02 21:00:06 2023 +0800
committerMeena Shanmugam <meenashanmugam@google.com>Tue Apr 11 00:11:59 2023 +0000
tree006910ece41309a26a0fe3a1b87e29ab9ed104e0
parent074da5e42d63c8710d723b966019dfdec7b54815 [diff]
io_uring: add missing lock in io_get_file_fixed

io_get_file_fixed will access io_uring's context. Lock it if it is
invoked unlocked (eg via io-wq) to avoid a race condition with fixed
files getting unregistered.

No single upstream patch exists for this issue, it was fixed as part
of the file assignment changes that went into the 5.18 cycle.

BUG=b/277048957,b/277623506
TEST=presubmit,validation
RELEASE_NOTE=Fixed race condition in io_uring in the Linux kernel.

Signed-off-by: Jheng, Bing-Jhong Billy <billy@starlabs.sg>
Signed-off-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

cos-patch: security-moderate
Change-Id: Ib6e6dae5827c9cef2a8085e8b56b75534cad44c9
Reviewed-on: https://cos-review.googlesource.com/c/third_party/kernel/+/46357
Tested-by: Meena Shanmugam <meenashanmugam@google.com>
Reviewed-by: Oleksandr Tymoshenko <ovt@google.com>
Main-Branch-Verified: Cusky Presubmit Bot <presubmit@cos-infra-prod.iam.gserviceaccount.com>
1 file changed
tree: 006910ece41309a26a0fe3a1b87e29ab9ed104e0
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. google/
  9. include/
  10. init/
  11. io_uring/
  12. ipc/
  13. kernel/
  14. lib/
  15. LICENSES/
  16. mm/
  17. net/
  18. samples/
  19. scripts/
  20. security/
  21. sound/
  22. tools/
  23. usr/
  24. virt/
  25. .clang-format
  26. .cocciconfig
  27. .get_maintainer.ignore
  28. .gitattributes
  29. .gitignore
  30. .mailmap
  31. COPYING
  32. CREDITS
  33. Kbuild
  34. Kconfig
  35. MAINTAINERS
  36. Makefile
  37. PRESUBMIT.cfg
  38. README