On Thu, May 12, 2022 at 9:23 AM Greg KH gregkh@linuxfoundation.org wrote:
On Tue, May 10, 2022 at 07:33:23PM -0700, Meena Shanmugam wrote:
Hi all,
The commit f00432063db1a0db484e85193eccc6845435b80e upstream (SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()) fixes CVE-2022-28893, hence good candidate for stable trees. The above commit depends on 3be232f(SUNRPC: Prevent immediate close+reconnect) and 89f4249(SUNRPC: Don't call connect() more than once on a TCP socket). Commit 3be232f depends on commit e26d9972720e(SUNRPC: Clean up scheduling of autoclose).
Commits e26d9972720e, 3be232f, f00432063db1 apply cleanly on 5.10 kernel. commit 89f4249 didn't apply cleanly. I have patch for 89f4249 below.
We also need this for 5.15.y first, before we can apply it to 5.10.y. Can you provide a working backport for that tree as well?
And as others pointed out, your patch is totally corrupted and can not be used, please fix your email client.
thanks,
greg k-h
For 5.15.y commit f00432063db1a0db484e85193eccc6845435b80e((SUNRPC: Ensure we flush any closed sockets before xs_xprt_free())) applies cleanly. The depend patch 3be232f(SUNRPC: Prevent immediate close+reconnect) also applies cleanly. Patch 89f4249 (SUNRPC: Don't call connect() more than once on a TCP socket) is already present in 5.15.34 onwards.
Sorry about the patch corruption, I will fix it.
Thanks, Meena