kernel/linux.git/include/keys/rxrpc-type.h, branch v6.12.80 Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v6.12.80 2020-11-23T18:09:29+00:00 rxrpc: Don't leak the service-side session key to userspace 2020-11-23T18:09:29+00:00 David Howells dhowells@redhat.com 2020-09-27T10:07:21+00:00 urn:sha1:d2ae4e918218f543214fbd906db68a6c580efbbb Don't let someone reading a service-side rxrpc-type key get access to the session key that was exchanged with the client. The server application will, at some point, need to be able to read the information in the ticket, but this probably shouldn't include the key material. Signed-off-by: David Howells <dhowells@redhat.com> rxrpc: Remove the rxk5 security class as it's now defunct 2020-11-23T18:09:29+00:00 David Howells dhowells@redhat.com 2020-09-03T07:21:58+00:00 urn:sha1:8a5dc321158fb3032cf990deb7473e22826e7346 Remove the rxrpc rxk5 security class as it's now defunct and nothing uses it anymore. Signed-off-by: David Howells <dhowells@redhat.com> RxRPC: Replace zero-length array with flexible-array 2020-06-16T04:08:32+00:00 Gustavo A. R. Silva gustavoars@kernel.org 2020-05-28T14:35:11+00:00 urn:sha1:18bdc20be19741ac97499a37e42323248114b496 There is a regular need in the kernel to provide a way to declare having a dynamically sized set of trailing elements in a structure. Kernel code should always use “flexible array members”[1] for these cases. The older style of one-element or zero-length arrays should no longer be used[2]. [1] https://en.wikipedia.org/wiki/Flexible_array_member [2] https://github.com/KSPP/linux/issues/21 Signed-off-by: Gustavo A. R. Silva <gustavoars@kernel.org> treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152 2019-05-30T18:26:32+00:00 Thomas Gleixner tglx@linutronix.de 2019-05-27T06:55:01+00:00 urn:sha1:2874c5fd284268364ece81a7bd936f3c8168e567 Based on 1 normalized pattern(s): this program is free software you can redistribute it and or modify it under the terms of the gnu general public license as published by the free software foundation either version 2 of the license or at your option any later version extracted by the scancode license scanner the SPDX license identifier GPL-2.0-or-later has been chosen to replace the boilerplate/reference in 3029 file(s). Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Reviewed-by: Allison Randal <allison@lohutok.net> Cc: linux-spdx@vger.kernel.org Link: https://lkml.kernel.org/r/20190527070032.746973796@linutronix.de Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> net: rxrpc: Replace time_t type with time64_t type 2017-08-29T09:16:00+00:00 Baolin Wang baolin.wang@linaro.org 2017-08-29T09:15:40+00:00 urn:sha1:10674a03c633379fadb5b314abde975fba270058 Since the 'expiry' variable of 'struct key_preparsed_payload' has been changed to 'time64_t' type, which is year 2038 safe on 32bits system. In net/rxrpc subsystem, we need convert 'u32' type to 'time64_t' type when copying ticket expires time to 'prep->expiry', then this patch introduces two helper functions to help convert 'u32' to 'time64_t' type. This patch also uses ktime_get_real_seconds() to get current time instead of get_seconds() which is not year 2038 safe on 32bits system. Signed-off-by: Baolin Wang <baolin.wang@linaro.org> Signed-off-by: David Howells <dhowells@redhat.com> KEYS: Strip trailing spaces 2016-06-14T09:29:44+00:00 David Howells dhowells@redhat.com 2016-06-14T09:29:44+00:00 urn:sha1:965475acca2cbcc1d748a8b6a05f8c7cf57d075a Strip some trailing spaces. Signed-off-by: David Howells <dhowells@redhat.com> RxRPC: Fix v1 keys 2011-03-03T06:18:53+00:00 Anton Blanchard anton@au1.ibm.com 2011-02-28T03:27:53+00:00 urn:sha1:f009918a1c1bbf8607b8aab3959876913a30193a commit 339412841d7 (RxRPC: Allow key payloads to be passed in XDR form) broke klog for me. I notice the v1 key struct had a kif_version field added: -struct rxkad_key { - u16 security_index; /* RxRPC header security index */ - u16 ticket_len; /* length of ticket[] */ - u32 expiry; /* time at which expires */ - u32 kvno; /* key version number */ - u8 session_key[8]; /* DES session key */ - u8 ticket[0]; /* the encrypted ticket */ -}; +struct rxrpc_key_data_v1 { + u32 kif_version; /* 1 */ + u16 security_index; + u16 ticket_length; + u32 expiry; /* time_t */ + u32 kvno; + u8 session_key[8]; + u8 ticket[0]; +}; However the code in rxrpc_instantiate strips it away: data += sizeof(kver); datalen -= sizeof(kver); Removing kif_version fixes my problem. Signed-off-by: Anton Blanchard <anton@samba.org> Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net> RxRPC: Use uX/sX rather than uintX_t/intX_t types 2009-09-16T07:01:13+00:00 David Howells dhowells@redhat.com 2009-09-16T07:01:13+00:00 urn:sha1:4e36a95e591e9c58dd10bb4103c00993917c27fd Use uX rather than uintX_t types for consistency. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net> RxRPC: Parse security index 5 keys (Kerberos 5) 2009-09-15T09:44:33+00:00 David Howells dhowells@redhat.com 2009-09-14T01:17:46+00:00 urn:sha1:99455153d0670ba110e6a3b855b8369bcbd11120 Parse RxRPC security index 5 type keys (Kerberos 5 tokens). Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net> RxRPC: Allow key payloads to be passed in XDR form 2009-09-15T09:44:23+00:00 David Howells dhowells@redhat.com 2009-09-14T01:17:35+00:00 urn:sha1:339412841d7620f93fea805fbd7469f08186f458 Allow add_key() and KEYCTL_INSTANTIATE to accept key payloads in XDR form as described by openafs-1.4.10/src/auth/afs_token.xg. This provides a way of passing kaserver, Kerberos 4, Kerberos 5 and GSSAPI keys from userspace, and allows for future expansion. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net>