2023-01-03 21:50:41 |
Shih-Yi Chen |
bug |
|
|
added bug |
2023-01-03 22:41:26 |
Shih-Yi Chen |
description |
Reproducible with TLS/HTTPS client initiates TLS handshake on BF3 with Ubuntu 22.04, OpenSSL 3.0.2.
wget https://google.com
kernel will crash with the following logs.
[ 1126.234077] Unable to handle kernel access to user memory outside uaccess routines at virtual address 0000ffffce65d328
[ 1126.255579] Mem abort info:
[ 1126.261186] ESR = 0x9600000f
[ 1126.267319] EC = 0x25: DABT (current EL), IL = 32 bits
[ 1126.277968] SET = 0, FnV = 0
[ 1126.284081] EA = 0, S1PTW = 0
[ 1126.290367] FSC = 0x0f: level 3 permission fault
[ 1126.299964] Data abort info:
[ 1126.305727] ISV = 0, ISS = 0x0000000f
[ 1126.313411] CM = 0, WnR = 0
[ 1126.319349] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000154bf1000
[ 1126.332259] [0000ffffce65d328] pgd=080000011927a003, p4d=080000011927a003, pud=0800000103a97003, pmd=0800000156cba003, pte=00e8000115a3ff43
[ 1126.357360] Internal error: Oops: 9600000f [#1] PREEMPT SMP |
SRU Justification
[Impact]
Bluefield 3 on Ubuntu 22.04 and OpenSSL 3.0.2, encounters kernel crash/oops when HTTPS client uses OpenSSL with PKA engine during TLS handshake. The issue is with TRNG ioctl call. The kernel logs show the following errors.
Unable to handle kernel access to user memory outside uaccess routines at virtual address 0000ffffce65d328
BF3 on Ubuntu 22.04, OpenSSl 3.0.2
[Fix]
* Change RNG ioctl kernel handler code to copy data from user to kernel space.
[Test Case]
openssl rand -engine pka 512 |
|
2023-01-06 16:52:52 |
Tim Gardner |
nominated for series |
|
Ubuntu Jammy |
|
2023-01-06 16:52:52 |
Tim Gardner |
bug task added |
|
linux-bluefield (Ubuntu Jammy) |
|
2023-01-06 16:52:52 |
Tim Gardner |
nominated for series |
|
Ubuntu Focal |
|
2023-01-06 16:52:52 |
Tim Gardner |
bug task added |
|
linux-bluefield (Ubuntu Focal) |
|
2023-01-06 16:53:38 |
Tim Gardner |
linux-bluefield (Ubuntu Focal): importance |
Undecided |
Medium |
|
2023-01-06 16:53:38 |
Tim Gardner |
linux-bluefield (Ubuntu Focal): status |
New |
In Progress |
|
2023-01-06 16:53:38 |
Tim Gardner |
linux-bluefield (Ubuntu Focal): assignee |
|
Shih-Yi Chen (shihyic) |
|
2023-01-06 16:54:12 |
Tim Gardner |
linux-bluefield (Ubuntu Jammy): importance |
Undecided |
Medium |
|
2023-01-06 16:54:12 |
Tim Gardner |
linux-bluefield (Ubuntu Jammy): status |
New |
In Progress |
|
2023-01-06 16:54:12 |
Tim Gardner |
linux-bluefield (Ubuntu Jammy): assignee |
|
Shih-Yi Chen (shihyic) |
|
2023-01-06 16:54:30 |
Tim Gardner |
linux-bluefield (Ubuntu): status |
New |
Invalid |
|
2023-01-13 15:52:11 |
Bartlomiej Zolnierkiewicz |
linux-bluefield (Ubuntu Focal): status |
In Progress |
Fix Committed |
|
2023-01-13 15:52:14 |
Bartlomiej Zolnierkiewicz |
linux-bluefield (Ubuntu Jammy): status |
In Progress |
Fix Committed |
|
2023-02-08 16:44:09 |
Ubuntu Kernel Bot |
tags |
|
kernel-spammed-focal-linux-bluefield verification-needed-focal |
|
2023-02-08 20:31:32 |
Shih-Yi Chen |
tags |
kernel-spammed-focal-linux-bluefield verification-needed-focal |
kernel-spammed-focal-linux-bluefield verification-done-focal |
|
2023-02-17 15:12:44 |
Khoa Vo |
tags |
kernel-spammed-focal-linux-bluefield verification-done-focal |
kernel-spammed-focal-linux-bluefield verification-done-focal verification-done-jammy |
|
2023-03-02 10:49:39 |
Launchpad Janitor |
linux-bluefield (Ubuntu Focal): status |
Fix Committed |
Fix Released |
|
2023-03-02 10:49:39 |
Launchpad Janitor |
cve linked |
|
2022-3643 |
|
2023-03-02 10:49:39 |
Launchpad Janitor |
cve linked |
|
2022-42896 |
|
2023-03-02 10:49:39 |
Launchpad Janitor |
cve linked |
|
2022-43945 |
|
2023-03-02 10:49:39 |
Launchpad Janitor |
cve linked |
|
2022-45934 |
|