From patchwork Mon Sep 27 23:12:15 2021 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Thadeu Lima de Souza Cascardo X-Patchwork-Id: 1533619 Return-Path: X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Authentication-Results: bilbo.ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=canonical.com header.i=@canonical.com header.a=rsa-sha256 header.s=20210705 header.b=NtgKTStO; dkim-atps=neutral Authentication-Results: ozlabs.org; spf=none (no SPF record) smtp.mailfrom=lists.ubuntu.com (client-ip=91.189.94.19; helo=huckleberry.canonical.com; envelope-from=kernel-team-bounces@lists.ubuntu.com; receiver=) Received: from huckleberry.canonical.com (huckleberry.canonical.com [91.189.94.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by bilbo.ozlabs.org (Postfix) with ESMTPS id 4HJJPZ1mwhz9t5m for ; Tue, 28 Sep 2021 09:14:41 +1000 (AEST) Received: from localhost ([127.0.0.1] helo=huckleberry.canonical.com) by huckleberry.canonical.com with esmtp (Exim 4.86_2) (envelope-from ) id 1mUzpT-00032o-Hf; Mon, 27 Sep 2021 23:14:35 +0000 Received: from smtp-relay-canonical-0.internal ([10.131.114.83] helo=smtp-relay-canonical-0.canonical.com) by huckleberry.canonical.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.86_2) (envelope-from ) id 1mUzpS-00032i-2P for kernel-team@lists.ubuntu.com; Mon, 27 Sep 2021 23:14:34 +0000 Received: from localhost.localdomain (1.general.cascardo.us.vpn [10.172.70.58]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by smtp-relay-canonical-0.canonical.com (Postfix) with ESMTPSA id 3A7A740CEE for ; Mon, 27 Sep 2021 23:14:32 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=canonical.com; s=20210705; t=1632784473; bh=SgTx0zdWmYzKq88EZthxGOj8WqYEtK6lUWn5/bOe6z8=; h=From:To:Subject:Date:Message-Id:MIME-Version; b=NtgKTStO0LJWX4LsDwQV1saWhMmIyQWMuwvt7pXreORScE9m3P3RCTcaGQ5PoM12Y ljsuZfid6esl7rvgnKC38xr8vERq/sjxTPbq0v5sb0J0teEFeVrjWOz79pQJQPKqYN JH7CskYLGykosLwRefMsT1VC5wPiPrvlNYuGnzYnaNwq9Y6jKVJCYulxaAG7JFJLXJ m/2eRtzKKBgAWDyvLn4l14ugrxGMXvnHWXL6EDA0sWUjwszlKqgVo152jupvJguGNS bFQvp/ZJYRDqwRnrJSKrL16exHz/DHvPN0AbnMfR/H8zqjmKADFKI8g7dPwKAiGW20 Qy4TN0r8IaRLw== From: Thadeu Lima de Souza Cascardo To: kernel-team@lists.ubuntu.com Subject: [SRU Bionic/HWE-5.8 0/1] CVE-2021-38199 Date: Mon, 27 Sep 2021 20:12:15 -0300 Message-Id: <20210927231217.116193-1-cascardo@canonical.com> X-Mailer: git-send-email 2.30.2 MIME-Version: 1.0 X-BeenThere: kernel-team@lists.ubuntu.com X-Mailman-Version: 2.1.20 Precedence: list List-Id: Kernel team discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" [Impact] "Operators of remote NFSv4 can servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during trunking detection." [Backport] There was an extra line from a different commit absent from bionic, which required a conflict fix because of the extra line in the context. [Test case] No specific test case for the vulnerability was tested. However, it was tested that an NFSv4 mount could still work on both 4.15 and 5.8 versions. [Potential regression] NFS mount or access could cause a hang or crash. Trond Myklebust (1): NFSv4: Initialise connection to the server in nfs4_alloc_client() fs/nfs/nfs4client.c | 82 +++++++++++++++++++++++---------------------- 1 file changed, 42 insertions(+), 40 deletions(-) Acked-by: Tim Gardner Acked-by: Stefan Bader