| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <202506010901.522039FEAC@keescook>
Date: Sun, 1 Jun 2025 09:34:02 -0700
From: Kees Cook <kees@...nel.org>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: linux-kernel@...r.kernel.org, Eric Biggers <ebiggers@...nel.org>,
Ingo Saitz <ingo@...nover.ccc.de>, Kees Cook <kees@...nel.org>,
kernel test robot <oliver.sang@...el.com>,
Marco Elver <elver@...gle.com>,
Nathan Chancellor <nathan@...nel.org>,
Thiago Jung Bauermann <thiago.bauermann@...aro.org>
Subject: [GIT PULL] hardening fixes for v6.16-rc1 (take 2)
Hi Linus,
Please pull these hardening fixes for v6.16-rc1 (take 2). This is based on
my original rc1 PR, rather than on the horribly mangled version of your tree.
Once merged with your tree, allmodconfig builds cleanly. Unmerged, this
current tree of mine doesn't build allmodconfig cleanly, as it doesn't
have the fix from d4ad53adfe21 ("drm/ttm: Remove the struct ttm_backup
abstraction"), which is in your tree now. (Avoiding this warning was
one of my motivations for the attempted merge-gone-wrong seen in take 1.)
Thanks and sorry for the horrible confusion and waste of everyone's time
that was take 1 of this PR!
-Kees
The following changes since commit f0cd6012c40da99b45f8f63052b97ec89d5f307b:
Revert "hardening: Disable GCC randstruct for COMPILE_TEST" (2025-05-08 09:42:40 -0700)
are available in the Git repository at:
https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.16-rc1-fix1-take2
for you to fetch changes up to f39f18f3c3531aa802b58a20d39d96e82eb96c14:
randstruct: gcc-plugin: Fix attribute addition (2025-06-01 08:41:11 -0700)
----------------------------------------------------------------
hardening fixes for v6.16-rc1 (take 2)
- randstruct: gcc-plugin: Fix attribute addition with GCC 15
- ubsan: integer-overflow: depend on BROKEN to keep this out of CI
- overflow: Introduce __DEFINE_FLEX for having no initializer
- wifi: iwlwifi: mld: Work around Clang loop unrolling bug
----------------------------------------------------------------
Kees Cook (4):
wifi: iwlwifi: mld: Work around Clang loop unrolling bug
ubsan: integer-overflow: depend on BROKEN to keep this out of CI
overflow: Introduce __DEFINE_FLEX for having no initializer
randstruct: gcc-plugin: Fix attribute addition
lib/Kconfig.ubsan | 2 ++
scripts/gcc-plugins/gcc-common.h | 32 +++++++++++++++++++++++++++
scripts/gcc-plugins/randomize_layout_plugin.c | 22 +++++++++---------
include/linux/overflow.h | 25 ++++++++++++++++-----
drivers/net/wireless/intel/iwlwifi/mld/d3.c | 2 +-
5 files changed, 65 insertions(+), 18 deletions(-)
--
Kees Cook
Powered by blists - more mailing lists