git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	David Howells <dhowells@redhat.com>
	Wed, 8 Apr 2026 12:12:31 +0000 (13:12 +0100)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sat, 18 Apr 2026 08:46:46 +0000 (10:46 +0200)
commit	4a4a60fe1b1bf62def95635d479a779289e5348f
tree	94b29ee06b4c08f1d9f7e51e475324e12e70c302	tree \| snapshot
parent	01f51318feb626deee1d0c8a190198cd7857d599	commit \| diff

rxrpc: Fix anonymous key handling

commit 6a59d84b4fc2f27f7b40e348506cc686712e260b upstream.

In rxrpc_new_client_call_for_sendmsg(), a key with no payload is meant to
be substituted for a NULL key pointer, but the variable this is done with
is subsequently not used.

Fix this by using "key" rather than "rx->key" when filling in the
connection parameters.

Note that this only affects direct use of AF_RXRPC; the kAFS filesystem
doesn't use sendmsg() directly and so bypasses the issue. Further,
AF_RXRPC passes a NULL key in if no key is set, so using an anonymous key
in that manner works. Since this hasn't been noticed to this point, it
might be better just to remove the "key" variable and the code that sets it
- and, arguably, rxrpc_init_client_call_security() would be a better place
to handle it.

Fixes: 19ffa01c9c45 ("rxrpc: Use structs to hold connection params and protocol info")
Closes: https://sashiko.dev/#/patchset/20260319150150.4189381-1-dhowells%40redhat.com
Signed-off-by: David Howells <dhowells@redhat.com>
cc: Marc Dionne <marc.dionne@auristor.com>
cc: Jeffrey Altman <jaltman@auristor.com>
cc: Simon Horman <horms@kernel.org>
cc: linux-afs@lists.infradead.org
cc: stable@kernel.org
Link: https://patch.msgid.link/20260408121252.2249051-4-dhowells@redhat.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>