review.tizen.org Git - platform/kernel/linux-starfive.git/commit

projects / platform / kernel / linux-starfive.git / commit

author	Jeff Moyer <jmoyer@redhat.com>
	Tue, 11 Dec 2018 17:37:49 +0000 (12:37 -0500)
committer	Jens Axboe <axboe@kernel.dk>
	Tue, 11 Dec 2018 18:45:50 +0000 (11:45 -0700)
commit	a538e3ff9dabcdf6c3f477a373c629213d1c3066
tree	8f94a879f2bd8b990032bead3a410b1bf000558b	tree \| snapshot
parent	f55adad601c6a97c8c9628195453e0fb23b4a0ae	commit \| diff

aio: fix spectre gadget in lookup_ioctx

Matthew pointed out that the ioctx_table is susceptible to spectre v1,
because the index can be controlled by an attacker. The below patch
should mitigate the attack for all of the aio system calls.

Cc: stable@vger.kernel.org
Reported-by: Matthew Wilcox <willy@infradead.org>
Reported-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Jeff Moyer <jmoyer@redhat.com>
Signed-off-by: Jens Axboe <axboe@kernel.dk>

fs/aio.c

diff | blob | history

Domain: System / Kernel;

RSS Atom