CVE-2022-49957

strpinit() is called just a few lines above this csk->skuserdata check, it also initializes strp->work etc., therefore, it is unnecessary to call strpdone() to cancel the freshly initialized work.

And if skuserdata is already used by KCM, psock->strp should not be touched, particularly strp->work state, so we need to move strpinit() after the csk->skuser_data check.

This also makes a lockdep warning reported by syzbot go away.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49957.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

44890e9ff771ef11777b2d1ebf8589255eb12502

Fixed

473f394953216614087f4179e55cdf0cf616a13b

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

e5571240236c5652f3e079b1d5866716a7ad819c

Fixed

a8a0c321319ad64a5427d6172cd9c23b4d6ca1e8

Fixed

0946ff31d1a8778787bf6708beb20f38715267cc

Fixed

1b6666964ca1de93a7bf06e122bcf3616dbd33a9

Fixed

55fb8c3baa8071c5d533a9ad48624e44e2a04ef5

Fixed

f865976baa85915c7672f351b74d5974b93215f6

Fixed

8fc29ff3910f3af08a7c40a75d436b5720efe2bf

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

085cbbda4b4cc7dd2ba63806346881c2c2e10107

Last affected

383250363daf01eb7aa3728c09ef8a4f6d8a3252

Last affected

19042316b9e12c93bf334a04d4dd7a4e846c7311

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49957.json"