Ilya Dryomov 0fd3fd0a9b libceph: handle an empty authorize reply ...

The authorize reply can be empty, for example when the ticket used to
build the authorizer is too old and TAG_BADAUTHORIZER is returned from
the service.  Calling ->verify_authorizer_reply() results in an attempt
to decrypt and validate (somewhat) random data in au->buf (most likely
the signature block from calc_signature()), which fails and ends up in
con_fault_finish() with !con->auth_retry.  The ticket isn't invalidated
and the connection is retried again and again until a new ticket is
obtained from the monitor:

  libceph: osd2 192.168.122.1:6809 bad authorize reply
  libceph: osd2 192.168.122.1:6809 bad authorize reply
  libceph: osd2 192.168.122.1:6809 bad authorize reply
  libceph: osd2 192.168.122.1:6809 bad authorize reply

Let TAG_BADAUTHORIZER handler kick in and increment con->auth_retry.

Cc: stable@vger.kernel.org
Fixes: 5c056fdc5b ("libceph: verify authorize reply on connect")
Link: https://tracker.ceph.com/issues/20164
Signed-off-by: Ilya Dryomov <idryomov@gmail.com>
Reviewed-by: Sage Weil <sage@redhat.com>

2019-02-18 18:05:33 +01:00

..

6lowpan

6lowpan: convert to DEFINE_SHOW_ATTRIBUTE

2018-12-19 00:28:05 +01:00

9p

9p/net: put a lower bound on msize

2018-12-25 17:07:49 +09:00

802

…

8021q

net: core: dev: Add extack argument to dev_change_flags()

2018-12-06 13:26:07 -08:00

appletalk

Revert changes to convert to ->poll_mask() and aio IOCB_CMD_POLL

2018-06-28 10:40:47 -07:00

atm

Revert "net: simplify sock_poll_wait"

2018-10-23 10:57:06 -07:00

ax25

ax25: fix possible use-after-free

2019-01-23 11:18:00 -08:00

batman-adv

batman-adv: fix uninit-value in batadv_interface_tx()

2019-02-12 13:30:43 -05:00

bluetooth

Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6

2018-12-27 13:53:32 -08:00

bpf

Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next

2018-12-10 18:00:43 -08:00

bpfilter

net: bpfilter: change section name of bpfilter UMH blob.

2019-01-16 15:46:46 -08:00

bridge

Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf

2019-01-28 10:51:51 -08:00

caif

Revert "net: simplify sock_poll_wait"

2018-10-23 10:57:06 -07:00

can

can: bcm: check timer values before ktime conversion

2019-01-22 11:33:46 +01:00

ceph

libceph: handle an empty authorize reply

2019-02-18 18:05:33 +01:00

core

net: fix possible overflow in __sk_mem_raise_allocated()

2019-02-13 21:05:18 -08:00

dcb

net: dcb: Add priority-to-DSCP map getters

2018-07-27 13:17:50 -07:00

dccp

dccp: fool proof ccid_hc_[rt]x_parse_options()

2019-02-01 14:49:10 -08:00

decnet

decnet: fix DN_IFREQ_SIZE

2019-01-27 23:11:55 -08:00

dns_resolver

dns: Allow the dns resolver to retrieve a server set

2018-10-04 09:40:52 -07:00

dsa

net: dsa: Fix NULL checking in dsa_slave_set_eee()

2019-02-06 13:42:54 -08:00

ethernet

net: ethernet: provide nvmem_get_mac_address()

2018-12-03 15:40:30 -08:00

hsr

…

ieee802154

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2018-12-24 16:19:56 -08:00

ife

net: sched: ife: check on metadata length

2018-04-22 21:12:00 -04:00

ipv4

inet_diag: fix reporting cgroup classid and fallback to priority

2019-02-12 13:35:57 -05:00

ipv6

ipv6: propagate genlmsg_reply return code

2019-02-12 12:36:02 -05:00

iucv

iucv: Remove SKB list assumptions.

2018-11-10 16:55:11 -08:00

kcm

Revert "kcm: remove any offset before parsing messages"

2018-09-17 18:43:42 -07:00

key

af_key: fix indentation on declaration statement

2018-11-15 18:09:32 +01:00

l2tp

l2tp: copy 4 more bytes to linear part if necessary

2019-01-31 08:58:46 -08:00

l3mdev

l3mdev: add function to retreive upper master

2018-12-03 14:15:26 -08:00

lapb

…

llc

llc: do not use sk_eat_skb()

2018-10-22 19:59:20 -07:00

mac80211

mac80211: Fix Tx aggregation session tear down with ITXQs

2019-02-11 15:50:56 +01:00

mac802154

mac802154: Remove VLA usage of skcipher

2018-09-28 12:46:07 +08:00

mpls

net/mpls: Handle kernel side filtering of route dumps

2018-10-16 00:14:07 -07:00

ncsi

net/ncsi: Add NCSI Mellanox OEM command

2018-11-27 16:37:20 -08:00

netfilter

netfilter: nft_compat: use-after-free when deleting targets

2019-02-13 18:14:54 +01:00

netlabel

netlabel: check for IPV4MASK in addrinfo_get

2018-09-21 18:58:34 -07:00

netlink

net: netlink: rename NETLINK_DUMP_STRICT_CHK -> NETLINK_GET_STRICT_CHK

2018-12-14 11:44:31 -08:00

netrom

netrom: switch to sock timer API

2019-01-27 10:38:04 -08:00

nfc

net: Revert recent Spectre-v1 patches.

2018-12-23 16:01:35 -08:00

nsh

nsh: set mac len based on inner packet

2018-07-12 16:55:29 -07:00

openvswitch

openvswitch: Avoid OOB read when parsing flow nlattrs

2019-01-16 13:35:21 -08:00

packet

net/packet: fix 4gb buffer limit due to overflow check

2019-02-12 13:37:23 -05:00

phonet

net: Revert recent Spectre-v1 patches.

2018-12-23 16:01:35 -08:00

psample

…

qrtr

net: qrtr: Reset the node and port ID of broadcast messages

2018-07-05 20:20:03 +09:00

rds

rds: fix refcount bug in rds_sock_addref

2019-01-31 09:43:27 -08:00

rfkill

rfkill: gpio: Remove unused include

2018-12-18 13:13:56 +01:00

rose

net/rose: fix NULL ax25_cb kernel panic

2019-01-27 10:40:01 -08:00

rxrpc

rxrpc: bad unlock balance in rxrpc_recvmsg

2019-02-06 10:54:07 -08:00

sched

net_sched: fix two more memory leaks in cls_tcindex

2019-02-12 14:10:56 -05:00

sctp

sctp: set stream ext to NULL after freeing it in sctp_stream_outq_migrate

2019-02-13 19:33:44 -05:00

smc

net/smc: fix byte_order for rx_curs_confirmed

2019-02-08 22:33:25 -08:00

strparser

bpf, sockmap: convert to generic sk_msg interface

2018-10-15 12:23:19 -07:00

sunrpc

Merge tag 'nfsd-5.0-2' of git://linux-nfs.org/~bfields/linux

2019-02-16 17:38:01 -08:00

switchdev

net: switchdev: Add extack to switchdev_handle_port_obj_add() callback

2018-12-12 16:34:22 -08:00

tipc

tipc: fix link session and re-establish issues

2019-02-11 21:26:20 -08:00

tls

net: tls: Fix deadlock in free_resources tx

2019-01-28 23:07:08 -08:00

unix

Revert "net: simplify sock_poll_wait"

2018-10-23 10:57:06 -07:00

vmw_vsock

vsock: cope with memory allocation failure at socket creation time

2019-02-08 22:32:05 -08:00

wimax

wimax: remove blank lines at EOF

2018-07-24 14:10:42 -07:00

wireless

cfg80211: prevent speculation on cfg80211_classify8021d() return

2019-02-11 15:50:56 +01:00

x25

net/x25: do not hold the cpu too long in x25_new_lci()

2019-02-11 13:20:14 -08:00

xdp

xsk: Check if a queue exists during umem setup

2019-01-15 20:51:57 +01:00

xfrm

xfrm: Make set-mark default behavior backward compatible

2019-01-16 13:10:55 +01:00

compat.c

Remove 'type' argument from access_ok() function

2019-01-03 18:57:57 -08:00

Kconfig

net: convert bridge_nf to use skb extension infrastructure

2018-12-19 11:21:37 -08:00

Makefile

bpfilter: check compiler capability in Kconfig

2018-06-28 13:36:39 +09:00

socket.c

net: socket: make bond ioctls go through compat_ifreq_ioctl()

2019-01-30 10:19:31 -08:00

sysctl_net.c

net: Drop pernet_operations::async

2018-03-27 13:18:09 -04:00