lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date:   Fri, 22 May 2020 23:19:13 +0200
From:   Daniel Borkmann <>
Subject: pull-request: bpf 2020-05-22

Hi David,

The following pull-request contains BPF updates for your *net* tree.

We've added 3 non-merge commits during the last 3 day(s) which contain
a total of 5 files changed, 69 insertions(+), 11 deletions(-).

The main changes are:

1) Fix to reject mmap()'ing read-only array maps as writable since BPF verifier
   relies on such map content to be frozen, from Andrii Nakryiko.

2) Fix breaking audit from secid_to_secctx() LSM hook by avoiding to use
   call_int_hook() since this hook is not stackable, from KP Singh.

3) Fix BPF flow dissector program ref leak on netns cleanup, from Jakub Sitnicki.

Please consider pulling these changes from:


Thanks a lot!

Also thanks to reporters, reviewers and testers of commits in this pull-request:

Alexei Starovoitov, James Morris, Jann Horn, Stanislav Fomichev


The following changes since commit 20a785aa52c82246055a089e55df9dac47d67da1:

  sctp: Don't add the shutdown timer if its already been added (2020-05-19 15:46:52 -0700)

are available in the Git repository at:


for you to fetch changes up to 5cf65922bb15279402e1e19b5ee8c51d618fa51f:

  flow_dissector: Drop BPF flow dissector prog ref on netns cleanup (2020-05-21 17:52:45 -0700)

Andrii Nakryiko (1):
      bpf: Prevent mmap()'ing read-only maps as writable

Jakub Sitnicki (1):
      flow_dissector: Drop BPF flow dissector prog ref on netns cleanup

KP Singh (1):
      security: Fix hook iteration for secid_to_secctx

 kernel/bpf/syscall.c                          | 17 ++++++++++++++---
 net/core/flow_dissector.c                     | 26 +++++++++++++++++++++-----
 security/security.c                           | 16 ++++++++++++++--
 tools/testing/selftests/bpf/prog_tests/mmap.c | 13 ++++++++++++-
 tools/testing/selftests/bpf/progs/test_mmap.c |  8 ++++++++
 5 files changed, 69 insertions(+), 11 deletions(-)

Powered by blists - more mailing lists