** Changed in: linux (Ubuntu Groovy)
Status: In Progress => Invalid
** Description changed:
- When net_prio and net_cls cgroups are used, cgroup refcount is bogus, as
- it's not incremented anymore, but decremented when sockets are closed.
+ [Impact]
+ When net_prio and net_cls cgroups are used, cgroup refcount is bogus, as it's
not incremented anymore, but decremented when sockets are closed.
This might lead to crashes possibly because of use-after-free when
packets are received as shown in LP #1886668.
- Cascardo.
+ [Test case]
+ Ran reproducer from comment #2.
+
+ [Regression potential]
+ We could break the use of cgroup bpf. The use of cgroup bpf looks to still be
working from the reproducer.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1886860
Title:
cgroup refcount is bogus when cgroup_sk_alloc is disabled
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1886860/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
