]> git.itanic.dy.fi Git - linux-stable/commit
projects / linux-stable / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f5c779b) | patch
ksmbd: destroy expired sessions
authorNamjae Jeon <linkinjeon@kernel.org>
Tue, 2 May 2023 23:42:21 +0000 (08:42 +0900)
committerSteve French <stfrench@microsoft.com>
Thu, 4 May 2023 04:03:01 +0000 (23:03 -0500)
commitea174a91893956450510945a0c5d1a10b5323656
treead6c0cf2673430e70277868a0ec072c5849bd191tree | snapshot
parentf5c779b7ddbda30866cf2a27c63e34158f858c73commit | diff
ksmbd: destroy expired sessions

client can indefinitely send smb2 session setup requests with
the SessionId set to 0, thus indefinitely spawning new sessions,
and causing indefinite memory usage. This patch limit to the number
of sessions using expired timeout and session state.

Cc: stable@vger.kernel.org
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-20478
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
fs/ksmbd/mgmt/user_session.c diff | blob | history
fs/ksmbd/mgmt/user_session.h diff | blob | history
fs/ksmbd/smb2pdu.c diff | blob | history
fs/ksmbd/smb2pdu.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.