Re: [PATCH v2] integrity: Fix possible multiple allocation in integrity_inode_get()

[PATCH] integrity: Fix possible multiple allocation in integrity_inode_get() · Tianjia Zhang <hidden> · 2023-05-30
Re: [PATCH] integrity: Fix possible multiple allocation in integrity_inode_get() · Mimi Zohar <zohar@linux.ibm.com> · 2023-05-30
[PATCH v2] integrity: Fix possible multiple allocation in integrity_inode_get() · Tianjia Zhang <hidden> · 2023-06-01
Re: [PATCH v2] integrity: Fix possible multiple allocation in integrity_inode_get() · Mimi Zohar <zohar@linux.ibm.com> · 2023-06-05
Re: [PATCH v2] integrity: Fix possible multiple allocation in integrity_inode_get() · "Jarkko Sakkinen" <jarkko@kernel.org> · 2023-06-09
Re: [PATCH v2] integrity: Fix possible multiple allocation in integrity_inode_get() · Tianjia Zhang <hidden> · 2023-06-15

From: Mimi Zohar <zohar@linux.ibm.com>
Date: 2023-06-05 11:53:28
Also in: linux-integrity, lkml

On Thu, 2023-06-01 at 14:42 +0800, Tianjia Zhang wrote:

When integrity_inode_get() is querying and inserting the cache, there
is a conditional race in the concurrent environment.

The race condition is the result of not properly implementing
"double-checked locking". In this case, it first checks to see if the
iint cache record exists before taking the lock, but doesn't check
again after taking the integrity_iint_lock.

Fixes: bf2276d10ce5 ("ima: allocating iint improvements")
Signed-off-by: Tianjia Zhang <redacted>
Cc: Dmitry Kasatkin <dmitry.kasatkin@gmail.com>
Cc: <redacted> # v3.10+

Thanks, Tianjia.   The patch is now queued in next-integrity.

Mimi

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help