Commit 85bf0442 authored by Sarthak Kukreti's avatar Sarthak Kukreti Committed by Yongqiang Liu
Browse files

dm verity: set DM_TARGET_IMMUTABLE feature flag 

stable inclusion
from stable-4.19.246
commit 6bff6107d1364c95109609c3fd680e6c8d7fa503
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I5M4ZO


CVE: CVE-2022-2503

--------------------------------

commit 4caae584 upstream.

The device-mapper framework provides a mechanism to mark targets as
immutable (and hence fail table reloads that try to change the target
type). Add the DM_TARGET_IMMUTABLE flag to the dm-verity target's
feature flags to prevent switching the verity target with a different
target type.

Fixes: a4ffc152 ("dm: add verity target")
Cc: stable@vger.kernel.org
Signed-off-by: default avatarSarthak Kukreti <sarthakkukreti@google.com>
Reviewed-by: default avatarKees Cook <keescook@chromium.org>
Signed-off-by: default avatarMike Snitzer <snitzer@kernel.org>
Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: default avatarLuo Meng <luomeng12@huawei.com>

Conflicts:
	drivers/md/dm-verity-target.c
Reviewed-by: default avatarXiu Jianfeng <xiujianfeng@huawei.com>
Reviewed-by: default avatarZhang Xiaoxu <zhangxiaoxu5@huawei.com>
Signed-off-by: default avatarYongqiang Liu <liuyongqiang13@huawei.com>
parent 9a26603c
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment