lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-Id: 
 <174410343500.1831514.15019771038334698036.git-patchwork-notify@kernel.org>
Date: Tue, 08 Apr 2025 09:10:35 +0000
From: patchwork-bot+netdevbpf@...nel.org
To: Cong Wang <xiyou.wangcong@...il.com>
Cc: netdev@...r.kernel.org, jhs@...atatu.com, jiri@...nulli.us,
 victor@...atatu.com
Subject: Re: [Patch net v2 00/11] net_sched: make ->qlen_notify() idempotent

Hello:

This series was applied to netdev/net.git (main)
by Paolo Abeni <pabeni@...hat.com>:

On Thu,  3 Apr 2025 14:10:22 -0700 you wrote:
> Gerrard reported a vulnerability exists in fq_codel where manipulating
> the MTU can cause codel_dequeue() to drop all packets. The parent qdisc's
> sch->q.qlen is only updated via ->qlen_notify() if the fq_codel queue
> remains non-empty after the drops. This discrepancy in qlen between
> fq_codel and its parent can lead to a use-after-free condition.
> 
> Let's fix this by making all existing ->qlen_notify() idempotent so that
> the sch->q.qlen check will be no longer necessary.
> 
> [...]

Here is the summary with links:
  - [net,v2,01/11] sch_htb: make htb_qlen_notify() idempotent
    https://git.kernel.org/netdev/net/c/5ba8b837b522
  - [net,v2,02/11] sch_drr: make drr_qlen_notify() idempotent
    https://git.kernel.org/netdev/net/c/df008598b3a0
  - [net,v2,03/11] sch_hfsc: make hfsc_qlen_notify() idempotent
    https://git.kernel.org/netdev/net/c/51eb3b65544c
  - [net,v2,04/11] sch_qfq: make qfq_qlen_notify() idempotent
    https://git.kernel.org/netdev/net/c/55f9eca4bfe3
  - [net,v2,05/11] sch_ets: make est_qlen_notify() idempotent
    https://git.kernel.org/netdev/net/c/a7a15f39c682
  - [net,v2,06/11] codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()
    https://git.kernel.org/netdev/net/c/342debc12183
  - [net,v2,07/11] selftests/tc-testing: Add a test case for FQ_CODEL with HTB parent
    https://git.kernel.org/netdev/net/c/cbe9588b12d0
  - [net,v2,08/11] selftests/tc-testing: Add a test case for FQ_CODEL with QFQ parent
    https://git.kernel.org/netdev/net/c/4cb1837ac537
  - [net,v2,09/11] selftests/tc-testing: Add a test case for FQ_CODEL with HFSC parent
    https://git.kernel.org/netdev/net/c/72b05c1bf7ea
  - [net,v2,10/11] selftests/tc-testing: Add a test case for FQ_CODEL with DRR parent
    https://git.kernel.org/netdev/net/c/0d5c27ecb60c
  - [net,v2,11/11] selftests/tc-testing: Add a test case for FQ_CODEL with ETS parent
    https://git.kernel.org/netdev/net/c/ce94507f5fe0

You are awesome, thank you!
-- 
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ