mirrors/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2026-03-30 15:24:31 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
f7387d6579d65efd490a864254101cb665f2e7a7
linux/include
History
Nikhil P. Rao 60abb0ac11 xsk: Fix fragment node deletion to prevent buffer leak 
After commit b692bf9a75 ("xsk: Get rid of xdp_buff_xsk::xskb_list_node"),
the list_node field is reused for both the xskb pool list and the buffer
free list, this causes a buffer leak as described below.

xp_free() checks if a buffer is already on the free list using
list_empty(&xskb->list_node). When list_del() is used to remove a node
from the xskb pool list, it doesn't reinitialize the node pointers.
This means list_empty() will return false even after the node has been
removed, causing xp_free() to incorrectly skip adding the buffer to the
free list.

Fix this by using list_del_init() instead of list_del() in all fragment
handling paths, this ensures the list node is reinitialized after removal,
allowing the list_empty() to work correctly.

Fixes: b692bf9a75 ("xsk: Get rid of xdp_buff_xsk::xskb_list_node")
Acked-by: Maciej Fijalkowski <maciej.fijalkowski@intel.com>
Signed-off-by: Nikhil P. Rao <nikhil.rao@amd.com>
Link: https://patch.msgid.link/20260225000456.107806-2-nikhil.rao@amd.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
2026-02-28 08:55:11 -08:00
..
acpi
Merge tag 'mailbox-v6.20' of git://git.kernel.org/pub/scm/linux/kernel/git/jassibrar/mailbox
2026-02-14 11:13:32 -08:00
asm-generic
Merge tag 'hyperv-next-signed-20260218' of git://git.kernel.org/pub/scm/linux/kernel/git/hyperv/linux
2026-02-20 08:48:31 -08:00
clocksource
crypto
Merge tag 'net-next-7.0' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next
2026-02-11 19:31:52 -08:00
cxl
drm
drm/pagemap: pass pagemap_addr by reference
2026-02-17 19:39:44 -05:00
dt-bindings
Merge tag 'phy-for-7.0' of git://git.kernel.org/pub/scm/linux/kernel/git/phy/linux-phy
2026-02-17 11:40:04 -08:00
hyperv
Merge tag 'hyperv-next-signed-20260218' of git://git.kernel.org/pub/scm/linux/kernel/git/hyperv/linux
2026-02-20 08:48:31 -08:00
keys
keys/trusted_keys: establish PKWM as a trusted source
2026-01-30 09:27:26 +05:30
kunit
treewide: Replace kmalloc with kmalloc_obj for non-scalar types
2026-02-21 01:02:28 -08:00
kvm
KVM: arm64: Use standard seq_file iterator for vgic-debug debugfs
2026-02-02 10:59:25 +00:00
linux
net: usb: r8152: add TRENDnet TUC-ET2G
2026-02-27 19:27:31 -08:00
math-emu
media
Merge tag 'media/v7.0-2' of git://git.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-media
2026-02-11 12:20:25 -08:00
memory
misc
net
xsk: Fix fragment node deletion to prevent buffer leak
2026-02-28 08:55:11 -08:00
pcmcia
ras
PCI/AER: Report CXL or PCIe bus type in AER trace logging
2026-01-22 15:07:04 -07:00
rdma
Merge tag 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rdma/rdma
2026-02-12 17:05:20 -08:00
rv
rv: Fix multiple definition of __pcpu_unique_da_mon_this
2026-02-20 13:12:00 +01:00
scsi
Merge tag 'scsi-misc' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi
2026-02-12 15:43:02 -08:00
soc
Merge tag 'reset-for-v6.20' of https://git.pengutronix.de/git/pza/linux into soc/drivers
2026-01-29 10:24:25 +01:00
sound
Merge tag 'asoc-v6.20' of https://git.kernel.org/pub/scm/linux/kernel/git/broonie/sound into for-linus
2026-02-09 17:39:11 +01:00
target
trace
Merge tag 'vfs-7.0-rc1.misc.2' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs
2026-02-16 13:00:36 -08:00
uapi
Merge tag 'drm-next-2026-02-21' of https://gitlab.freedesktop.org/drm/kernel
2026-02-20 15:36:38 -08:00
ufs
scsi: ufs: host: mediatek: Require CONFIG_PM
2026-02-03 22:28:44 -05:00
vdso
video
xen
Partial revert "x86/xen: fix balloon target initialization for PVH dom0"
2026-02-02 07:31:22 +01:00
Kbuild