lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-Id: <20240221231826.1404-1-daniel@iogearbox.net>
Date: Thu, 22 Feb 2024 00:18:26 +0100
From: Daniel Borkmann <daniel@...earbox.net>
To: davem@...emloft.net
Cc: kuba@...nel.org,
	pabeni@...hat.com,
	edumazet@...gle.com,
	daniel@...earbox.net,
	ast@...nel.org,
	andrii@...nel.org,
	martin.lau@...ux.dev,
	netdev@...r.kernel.org,
	bpf@...r.kernel.org
Subject: pull-request: bpf 2024-02-22

Hi David, hi Jakub, hi Paolo, hi Eric,

The following pull-request contains BPF updates for your *net* tree.

We've added 11 non-merge commits during the last 24 day(s) which contain
a total of 15 files changed, 217 insertions(+), 17 deletions(-).

The main changes are:

1) Fix a syzkaller-triggered oops when attempting to read the vsyscall
   page through bpf_probe_read_kernel and friends, from Hou Tao.

2) Fix a kernel panic due to uninitialized iter position pointer in
   bpf_iter_task, from Yafang Shao.

3) Fix a race between bpf_timer_cancel_and_free and bpf_timer_cancel,
   from Martin KaFai Lau.

4) Fix a xsk warning in skb_add_rx_frag() (under CONFIG_DEBUG_NET)
   due to incorrect truesize accounting, from Sebastian Andrzej Siewior.

5) Fix a NULL pointer dereference in sk_psock_verdict_data_ready,
   from Shigeru Yoshida.

6) Fix a resolve_btfids warning when bpf_cpumask symbol cannot be
   resolved, from Hari Bathini.

Please consider pulling these changes from:

  git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git tags/for-netdev

Thanks a lot!

Also thanks to reporters, reviewers and testers of commits in this pull-request:

David Vernet, Hou Tao, Jiri Olsa, John Fastabend, Maciej Fijalkowski, 
Oleg Nesterov, Quentin Monnet, Sohil Mehta, Stanislav Fomichev, Thomas 
Gleixner, xingwei lee, Yonghong Song

----------------------------------------------------------------

The following changes since commit 577e4432f3ac810049cb7e6b71f4d96ec7c6e894:

  tcp: add sanity checks to rx zerocopy (2024-01-29 12:07:35 +0000)

are available in the Git repository at:

  https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git tags/for-netdev

for you to fetch changes up to 4cd12c6065dfcdeba10f49949bffcf383b3952d8:

  bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready() (2024-02-21 17:15:23 +0100)

----------------------------------------------------------------
bpf-for-netdev

----------------------------------------------------------------
Alexei Starovoitov (1):
      Merge branch 'fix-the-read-of-vsyscall-page-through-bpf'

Gianmarco Lusvardi (1):
      bpf, scripts: Correct GPL license name

Hari Bathini (1):
      bpf: Fix warning for bpf_cpumask in verifier

Hou Tao (3):
      x86/mm: Move is_vsyscall_vaddr() into asm/vsyscall.h
      x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault()
      selftest/bpf: Test the read of vsyscall page under x86-64

Martin KaFai Lau (2):
      bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel
      selftests/bpf: Test racing between bpf_timer_cancel_and_free and bpf_timer_cancel

Sebastian Andrzej Siewior (1):
      xsk: Add truesize to skb_add_rx_frag().

Shigeru Yoshida (1):
      bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()

Yafang Shao (2):
      bpf: Fix an issue due to uninitialized bpf_iter_task
      selftests/bpf: Add negtive test cases for task iter

 arch/x86/include/asm/vsyscall.h                    | 10 ++++
 arch/x86/mm/fault.c                                |  9 ----
 arch/x86/mm/maccess.c                              | 10 ++++
 kernel/bpf/helpers.c                               |  5 +-
 kernel/bpf/task_iter.c                             |  2 +
 kernel/bpf/verifier.c                              |  2 +
 net/core/skmsg.c                                   |  7 ++-
 net/xdp/xsk.c                                      |  3 +-
 scripts/bpf_doc.py                                 |  2 +-
 tools/testing/selftests/bpf/prog_tests/iters.c     |  1 +
 .../selftests/bpf/prog_tests/read_vsyscall.c       | 57 ++++++++++++++++++++++
 tools/testing/selftests/bpf/prog_tests/timer.c     | 35 ++++++++++++-
 tools/testing/selftests/bpf/progs/iters_task.c     | 12 ++++-
 tools/testing/selftests/bpf/progs/read_vsyscall.c  | 45 +++++++++++++++++
 tools/testing/selftests/bpf/progs/timer.c          | 34 ++++++++++++-
 15 files changed, 217 insertions(+), 17 deletions(-)
 create mode 100644 tools/testing/selftests/bpf/prog_tests/read_vsyscall.c
 create mode 100644 tools/testing/selftests/bpf/progs/read_vsyscall.c

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ