]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 708c304) | patch
ksmbd: destroy expired sessions
authorNamjae Jeon <linkinjeon@kernel.org>
Mon, 18 Dec 2023 15:33:49 +0000 (00:33 +0900)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 23 Dec 2023 09:41:55 +0000 (10:41 +0100)
commita6a9601ba995d0fec635324cb9fd8d14f9bea14e
tree9eb3bff28e61522eecaebd7ae8216e1e1ddfe3b5tree
parent708c304b583d789957399dd8237f212cf8ad1e4dcommit | diff
ksmbd: destroy expired sessions

[ Upstream commit ea174a91893956450510945a0c5d1a10b5323656 ]

client can indefinitely send smb2 session setup requests with
the SessionId set to 0, thus indefinitely spawning new sessions,
and causing indefinite memory usage. This patch limit to the number
of sessions using expired timeout and session state.

Cc: stable@vger.kernel.org
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-20478
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
fs/ksmbd/mgmt/user_session.c diff | blob | blame | history
fs/ksmbd/mgmt/user_session.h diff | blob | blame | history
fs/ksmbd/smb2pdu.c diff | blob | blame | history
fs/ksmbd/smb2pdu.h diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git