| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 10 Jun 2016 14:29:47 +0000 From: David Laight <David.Laight@...LAB.COM> To: 'Eric Dumazet' <eric.dumazet@...il.com>, Saeed Mahameed <saeedm@...lanox.com> CC: "David S. Miller" <davem@...emloft.net>, "netdev@...r.kernel.org" <netdev@...r.kernel.org>, "netfilter-devel@...r.kernel.org" <netfilter-devel@...r.kernel.org>, Yevgeny Petrilin <yevgenyp@...lanox.com>, Andre Melkoumian <andre@...lanox.com>, Matthew Finlay <matt@...lanox.com>, Pablo Neira Ayuso <pablo@...filter.org>, Patrick McHardy <kaber@...sh.net>, Jozsef Kadlecsik <kadlec@...ckhole.kfki.hu> Subject: RE: [PATCH net-next] nfnetlink_queue: enable PID info retrieval From: Eric Dumazet > Sent: 09 June 2016 22:17 > On Thu, 2016-06-09 at 23:50 +0300, Saeed Mahameed wrote: > > From: Matthew Finlay <matt@...lanox.com> > > > > diff --git a/net/socket.c b/net/socket.c > > index a1bd161..67de200 100644 > > --- a/net/socket.c > > +++ b/net/socket.c > > @@ -382,6 +382,7 @@ struct file *sock_alloc_file(struct socket *sock, int flags, const char *dname) > > } > > > > sock->file = file; > > + file->f_owner.sock_pid = find_get_pid(task_pid_nr(current)); > > file->f_flags = O_RDWR | (flags & O_NONBLOCK); > > file->private_data = sock; > > return file; > > Wow, that is a serious memory leak weapon (of struct pid) > > Why don't you store the pid value, instead of a pointer ? Since the numeric 'pid' values can be reused (with no grace time) you'd need to hold a reference to the pid structure (added in about 2.6.27) instead. Which is just a smaller memory leak! (and annoyingly a non-gpl driver can't drop a reference to it). David
Powered by blists - more mailing lists