lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20190123170454.GC30381@kroah.com> Date: Wed, 23 Jan 2019 18:04:54 +0100 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: Jann Horn <jannh@...gle.com> Cc: "David S. Miller" <davem@...emloft.net>, Alexei Starovoitov <alexei.starovoitov@...il.com>, Daniel Borkmann <daniel@...earbox.net>, Alexei Starovoitov <ast@...nel.org>, jakub.kicinski@...ronome.com, Network Development <netdev@...r.kernel.org> Subject: Re: stable backport for the BPF speculation series? [was: Re: [PATCH bpf v3 0/9] bpf fix to prevent oob under speculation] On Tue, Jan 22, 2019 at 03:36:54PM +0100, Jann Horn wrote: > On Thu, Jan 3, 2019 at 1:08 AM Alexei Starovoitov > <alexei.starovoitov@...il.com> wrote: > > On Thu, Jan 03, 2019 at 12:58:26AM +0100, Daniel Borkmann wrote: > > > This set fixes an out of bounds case under speculative execution > > > by implementing masking of pointer alu into the verifier. For > > > details please see the individual patches. > > > > > > Thanks! > > > > > > v2 -> v3: > > > - 8/9: change states_equal condition into old->speculative && > > > !cur->speculative, thanks Jakub! > > > - 8/9: remove incorrect speculative state test in > > > propagate_liveness(), thanks Jakub! > > > v1 -> v2: > > > - Typo fixes in commit msg and a comment, thanks David! > > > > Applied, Thanks > > This series and the followup fix ("bpf: fix sanitation of alu op with > pointer / scalar type from different paths") have been in Linus' tree > for six days, but from what I can tell, they aren't queued up for > stable yet. What are the git commit ids of the patches you think should be backported? thanks, greg k-h
Powered by blists - more mailing lists