git.baikalelectronics.ru Git - kernel.git/commit

author	Ilya Dryomov <idryomov@gmail.com>
	Wed, 14 Apr 2021 08:38:40 +0000 (10:38 +0200)
committer	Ilya Dryomov <idryomov@gmail.com>
	Tue, 27 Apr 2021 21:52:24 +0000 (23:52 +0200)
commit	875fcca00b404cac22685c5e5c5a9b19d218f269
tree	dcee8f9d339ff40b118675cbf4a25e4099e2e988	tree \| snapshot
parent	f429fec6851ab16f952b24e63556d6b490c2af5b	commit \| diff

libceph: bump CephXAuthenticate encoding version

A dummy v3 encoding (exactly the same as v2) was introduced so that
the monitors can distinguish broken clients that may not include their
auth ticket in CEPHX_GET_AUTH_SESSION_KEY request on reconnects, thus
failing to prove previous possession of their global_id (one part of
CVE-2021-20288).

The kernel client has always included its auth ticket, so it is
compatible with enforcing mode as is. However we want to bump the
encoding version to avoid having to authenticate twice on the initial
connect -- all legacy (CephXAuthenticate < v3) are now forced do so in
order to expose insecure global_id reclaim.

Marking for stable since at least for 5.11 and 5.12 it is trivial
(v2 -> v3).

Cc: stable@vger.kernel.org # 5.11+
URL: https://tracker.ceph.com/issues/50452
Signed-off-by: Ilya Dryomov <idryomov@gmail.com>
Reviewed-by: Sage Weil <sage@redhat.com>