cifs: Fix memory and information leak in smb3_reconfigure()

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

In smb3_reconfigure(), if smb3_sync_session_ctx_passwords() fails, the
function returns immediately without freeing and erasing the newly
allocated new_password and new_password2. This causes both a memory leak
and a potential information leak.

Fix this by calling kfree_sensitive() on both password buffers before
returning in this error case.

Fixes: 0f0e357902957 ("cifs: during remount, make sure passwords are in sync")
Signed-off-by: Zilin Guan <zilin@seu.edu.cn>
Reviewed-by: ChenXiaoSong <chenxiaosong@kylinos.cn>
Signed-off-by: Steve French <stfrench@microsoft.com>

authored by

Zilin Guan and committed by

Steve French 3 months ago cb6d5aa9 9448598b

1 changed file

expand all

smb

client

fs_context.c

fs/smb/client/fs_context.c

··· 1139 1139 rc = smb3_sync_session_ctx_passwords(cifs_sb, ses); 1140 1140 if (rc) { 1141 1141 mutex_unlock(&ses->session_mutex); 1142 + kfree_sensitive(new_password); 1143 + kfree_sensitive(new_password2); 1142 1144 return rc; 1143 1145 } 1144 1146