mirrors/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2026-04-23 13:18:54 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
2acc0abc882ac3be47719e189f3db006493ab640
linux/net
History
Willem de Bruijn 4a06fa67c4 ip: on queued skb use skb_header_pointer instead of pskb_may_pull 
Commit 2efd4fca70 ("ip: in cmsg IP(V6)_ORIGDSTADDR call
pskb_may_pull") avoided a read beyond the end of the skb linear
segment by calling pskb_may_pull.

That function can trigger a BUG_ON in pskb_expand_head if the skb is
shared, which it is when when peeking. It can also return ENOMEM.

Avoid both by switching to safer skb_header_pointer.

Fixes: 2efd4fca70 ("ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull")
Reported-by: syzbot <syzkaller@googlegroups.com>
Suggested-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: Willem de Bruijn <willemb@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2019-01-10 09:27:20 -05:00
..
6lowpan
6lowpan: convert to DEFINE_SHOW_ATTRIBUTE
2018-12-19 00:28:05 +01:00
9p
9p/net: put a lower bound on msize
2018-12-25 17:07:49 +09:00
802
8021q
net: core: dev: Add extack argument to dev_change_flags()
2018-12-06 13:26:07 -08:00
appletalk
Revert changes to convert to ->poll_mask() and aio IOCB_CMD_POLL
2018-06-28 10:40:47 -07:00
atm
Revert "net: simplify sock_poll_wait"
2018-10-23 10:57:06 -07:00
ax25
ax25: fix a use-after-free in ax25_fillin_cb()
2018-12-30 14:07:54 -08:00
batman-adv
Remove 'type' argument from access_ok() function
2019-01-03 18:57:57 -08:00
bluetooth
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2018-12-27 13:53:32 -08:00
bpf
Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next
2018-12-10 18:00:43 -08:00
bpfilter
net: bpfilter: Set user mode helper's command line
2018-10-22 19:37:36 -07:00
bridge
net: bridge: Fix VLANs memory leak
2019-01-08 16:53:54 -05:00
caif
Revert "net: simplify sock_poll_wait"
2018-10-23 10:57:06 -07:00
can
can: gw: ensure DLC boundaries after CAN frame modification
2019-01-07 05:17:51 -08:00
ceph
libceph: fall back to sendmsg for slab pages
2018-11-19 17:59:47 +01:00
core
net, skbuff: do not prefer skb allocation fails early
2019-01-04 12:53:16 -08:00
dcb
net: dcb: Add priority-to-DSCP map getters
2018-07-27 13:17:50 -07:00
dccp
mm: convert totalram_pages and totalhigh_pages variables to atomic
2018-12-28 12:11:47 -08:00
decnet
mm: convert totalram_pages and totalhigh_pages variables to atomic
2018-12-28 12:11:47 -08:00
dns_resolver
dns: Allow the dns resolver to retrieve a server set
2018-10-04 09:40:52 -07:00
dsa
net: dsa: ksz: Add STP multicast handling
2018-12-16 14:23:33 -08:00
ethernet
net: ethernet: provide nvmem_get_mac_address()
2018-12-03 15:40:30 -08:00
hsr
ieee802154
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2018-12-24 16:19:56 -08:00
ife
net: sched: ife: check on metadata length
2018-04-22 21:12:00 -04:00
ipv4
ip: on queued skb use skb_header_pointer instead of pskb_may_pull
2019-01-10 09:27:20 -05:00
ipv6
ip: on queued skb use skb_header_pointer instead of pskb_may_pull
2019-01-10 09:27:20 -05:00
iucv
iucv: Remove SKB list assumptions.
2018-11-10 16:55:11 -08:00
kcm
Revert "kcm: remove any offset before parsing messages"
2018-09-17 18:43:42 -07:00
key
af_key: fix indentation on declaration statement
2018-11-15 18:09:32 +01:00
l2tp
ppp: Move PFC decompression to PPP generic layer
2018-12-20 16:49:30 -08:00
l3mdev
l3mdev: add function to retreive upper master
2018-12-03 14:15:26 -08:00
lapb
llc
llc: do not use sk_eat_skb()
2018-10-22 19:59:20 -07:00
mac80211
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2018-12-27 13:53:32 -08:00
mac802154
mac802154: Remove VLA usage of skcipher
2018-09-28 12:46:07 +08:00
mpls
net/mpls: Handle kernel side filtering of route dumps
2018-10-16 00:14:07 -07:00
ncsi
net/ncsi: Add NCSI Mellanox OEM command
2018-11-27 16:37:20 -08:00
netfilter
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-01-03 12:53:47 -08:00
netlabel
netlabel: check for IPV4MASK in addrinfo_get
2018-09-21 18:58:34 -07:00
netlink
net: netlink: rename NETLINK_DUMP_STRICT_CHK -> NETLINK_GET_STRICT_CHK
2018-12-14 11:44:31 -08:00
netrom
netrom: fix locking in nr_find_socket()
2018-12-30 20:24:16 -08:00
nfc
net: Revert recent Spectre-v1 patches.
2018-12-23 16:01:35 -08:00
nsh
nsh: set mac len based on inner packet
2018-07-12 16:55:29 -07:00
openvswitch
openvswitch: Fix IPv6 later frags parsing
2019-01-04 13:00:02 -08:00
packet
packet: Do not leak dev refcounts on error exit
2019-01-08 21:41:40 -05:00
phonet
net: Revert recent Spectre-v1 patches.
2018-12-23 16:01:35 -08:00
psample
qrtr
net: qrtr: Reset the node and port ID of broadcast messages
2018-07-05 20:20:03 +09:00
rds
rds: use DIV_ROUND_UP instead of ceil
2019-01-07 07:22:36 -08:00
rfkill
rfkill: gpio: Remove unused include
2018-12-18 13:13:56 +01:00
rose
Revert changes to convert to ->poll_mask() and aio IOCB_CMD_POLL
2018-06-28 10:40:47 -07:00
rxrpc
rxrpc: Fix life check
2018-11-15 11:35:40 -08:00
sched
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
2018-12-27 13:04:52 -08:00
sctp
mm: convert totalram_pages and totalhigh_pages variables to atomic
2018-12-28 12:11:47 -08:00
smc
smc: move unhash as early as possible in smc_release()
2019-01-07 14:40:27 -05:00
strparser
bpf, sockmap: convert to generic sk_msg interface
2018-10-15 12:23:19 -07:00
sunrpc
Remove 'type' argument from access_ok() function
2019-01-03 18:57:57 -08:00
switchdev
net: switchdev: Add extack to switchdev_handle_port_obj_add() callback
2018-12-12 16:34:22 -08:00
tipc
tipc: fix memory leak in tipc_nl_compat_publ_dump
2019-01-07 11:42:08 -05:00
tls
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2018-12-21 15:06:20 -08:00
unix
Revert "net: simplify sock_poll_wait"
2018-10-23 10:57:06 -07:00
vmw_vsock
VSOCK: Send reset control packet when socket is partially bound
2018-12-18 11:53:42 -08:00
wimax
wimax: remove blank lines at EOF
2018-07-24 14:10:42 -07:00
wireless
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2018-12-27 13:53:32 -08:00
x25
net/x25: handle call collisions
2018-11-29 14:25:36 -08:00
xdp
xsk: simplify AF_XDP socket teardown
2018-12-19 21:45:17 +01:00
xfrm
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2018-12-20 11:53:36 -08:00
compat.c
Remove 'type' argument from access_ok() function
2019-01-03 18:57:57 -08:00
Kconfig
net: convert bridge_nf to use skb extension infrastructure
2018-12-19 11:21:37 -08:00
Makefile
bpfilter: check compiler capability in Kconfig
2018-06-28 13:36:39 +09:00
socket.c
Merge tag 'y2038-for-4.21' of ssh://gitolite.kernel.org:/pub/scm/linux/kernel/git/arnd/playground
2018-12-28 12:45:04 -08:00
sysctl_net.c
net: Drop pernet_operations::async
2018-03-27 13:18:09 -04:00