Linux Kernel fscrypt Key Management Vulnerability

A vulnerability in the Linux kernel's fscrypt implementation has been addressed. The issue arose from the use of the keyrings subsystem to manage fscrypt_master_key structures, which led to several complications. Notably, the keyrings subsystem can delay the destruction of keys, causing potential use-after-free issues, and complicating the removal process of master keys, which can lead to deadlocks. Additionally, this approach interfered with the intended access control for encrypted files, requiring unnecessary adjustments to SELinux policies. The vulnerability has been resolved by discontinuing the use of the keyrings subsystem for fscrypt master keys and instead managing them with a regular kernel data structure, while still supporting RCU-mode key lookups.

Impact

The vulnerability could lead to use-after-free errors, deadlocks, and improper management of encryption keys, potentially causing data corruption or access issues.