[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAHk-=whefxRGyNGzCzG6BVeM=5vnvgb-XhSeFJVxJyAxAF8XRA@mail.gmail.com>
Date: Mon, 20 Mar 2023 15:16:48 -0700
From: Linus Torvalds <torvalds@...ux-foundation.org>
To: Eric Biggers <ebiggers@...nel.org>
Cc: linux-fscrypt@...r.kernel.org, linux-fsdevel@...r.kernel.org,
linux-security-module@...r.kernel.org,
linux-kernel@...r.kernel.org, "Theodore Ts'o" <tytso@....edu>,
Jaegeuk Kim <jaegeuk@...nel.org>
Subject: Re: [GIT PULL] fscrypt fix for v6.3-rc4
On Mon, Mar 20, 2023 at 1:56 PM Eric Biggers <ebiggers@...nel.org> wrote:
>
> fscrypt: check for NULL keyring in fscrypt_put_master_key_activeref()
Side note: please just use WARN_ON_ONCE() for things like this, not WARN_ON.
If it's triggerable, it should be triggered only once rather than
flood the logs and possibly cause a DoS.
And if it's not triggerable, the "ONCE" doesn't matter.
I note that fscypt in general seems to be *way* too happy with
WARN_ON() as some kind of debugging aid.
It's not good in general (printf for debugging is wonderful, but
shouldn't be left in the sources to rot for all eternity), but it's
particularly not good in that form.
Linus
Powered by blists - more mailing lists