linux

iv/linux

Go to file

Wang Yufen c453e64cbc selftests/bpf: fix memory leak of lsm_cgroup

kmemleak reports this issue:

unreferenced object 0xffff88810b7835c0 (size 32):
  comm "test_progs", pid 270, jiffies 4294969007 (age 1621.315s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    03 00 00 00 03 00 00 00 0f 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000376cdeab>] kmalloc_trace+0x27/0x110
    [<000000003bcdb3b6>] selinux_sk_alloc_security+0x66/0x110
    [<000000003959008f>] security_sk_alloc+0x47/0x80
    [<00000000e7bc6668>] sk_prot_alloc+0xbd/0x1a0
    [<0000000002d6343a>] sk_alloc+0x3b/0x940
    [<000000009812a46d>] unix_create1+0x8f/0x3d0
    [<000000005ed0976b>] unix_create+0xa1/0x150
    [<0000000086a1d27f>] __sock_create+0x233/0x4a0
    [<00000000cffe3a73>] __sys_socket_create.part.0+0xaa/0x110
    [<0000000007c63f20>] __sys_socket+0x49/0xf0
    [<00000000b08753c8>] __x64_sys_socket+0x42/0x50
    [<00000000b56e26b3>] do_syscall_64+0x3b/0x90
    [<000000009b4871b8>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

The issue occurs in the following scenarios:

unix_create1()
  sk_alloc()
    sk_prot_alloc()
      security_sk_alloc()
        call_int_hook()
          hlist_for_each_entry()
            entry1->hook.sk_alloc_security
            <-- selinux_sk_alloc_security() succeeded,
            <-- sk->security alloced here.
            entry2->hook.sk_alloc_security
            <-- bpf_lsm_sk_alloc_security() failed
      goto out_free;
        ...    <-- the sk->security not freed, memleak

The core problem is that the LSM is not yet fully stacked (work is
actively going on in this space) which means that some LSM hooks do
not support multiple LSMs at the same time. To fix, skip the
"EPERM" test when it runs in the environments that already have
non-bpf lsms installed

Fixes: dca85aac8895 ("selftests/bpf: lsm_cgroup functional test")
Signed-off-by: Wang Yufen <wangyufen@huawei.com>
Cc: Stanislav Fomichev <sdf@google.com>
Acked-by: Stanislav Fomichev <sdf@google.com>
Link: https://lore.kernel.org/r/1668482980-16163-1-git-send-email-wangyufen@huawei.com
Signed-off-by: Martin KaFai Lau <martin.lau@kernel.org>

2022-11-16 23:00:56 -08:00

arch

net: remove skb->vlan_present

2022-11-11 18:18:05 -08:00

block

block-6.1-2022-11-05

2022-11-05 09:02:28 -07:00

certs

certs: make system keyring depend on built-in x509 parser

2022-09-24 04:31:18 +09:00

crypto

treewide: use get_random_bytes() when possible

2022-10-11 17:42:58 -06:00

Documentation

docs/bpf: Fix sample code in MAP_TYPE_ARRAY docs

2022-11-15 21:33:47 -08:00

drivers

mlx5-updates-2022-11-12

2022-11-14 11:35:28 +00:00

for-6.1-rc4-tag

2022-11-10 08:58:29 -08:00

include

bpf: Expand map key argument of bpf_redirect_map to u64

2022-11-15 09:00:27 -08:00

init

init: Kconfig: fix spelling mistake "satify" -> "satisfy"

2022-10-20 21:27:22 -07:00

io_uring

io_uring: unlock if __io_run_local_work locked inside

2022-10-27 09:52:12 -06:00

ipc

ipc/msg.c: fix percpu_counter use after free

2022-10-28 13:37:22 -07:00

kernel

bpf: propagate nullness information for reg to reg comparisons

2022-11-15 17:38:36 -08:00

lib

net: remove skb->vlan_present

2022-11-11 18:18:05 -08:00

LICENSES

LICENSES/LGPL-2.1: Add LGPL-2.1-or-later as valid identifiers

2021-12-16 14:33:10 +01:00

slab fixes for 6.1-rc4

2022-11-09 13:07:50 -08:00

net

bpf: Expand map key argument of bpf_redirect_map to u64

2022-11-15 09:00:27 -08:00

rust

Kbuild: add Rust support

2022-09-28 09:02:20 +02:00

samples

samples/bpf: Fix sockex3 error: Missing BPF prog type

2022-11-07 17:13:35 -08:00

scripts

Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net

2022-11-10 17:43:53 -08:00

security

lsm/stable-6.1 PR 20221031

2022-10-31 12:09:42 -07:00

sound

ALSA: aoa: Fix I2S device accounting

2022-10-27 08:53:08 +02:00

tools

selftests/bpf: fix memory leak of lsm_cgroup

2022-11-16 23:00:56 -08:00

usr

usr/gen_init_cpio.c: remove unnecessary -1 values from int file

2022-10-03 14:21:44 -07:00

virt

Merge tag 'kvmarm-fixes-6.1-3' of git://git.kernel.org/pub/scm/linux/kernel/git/kvmarm/kvmarm into HEAD

2022-11-06 03:30:49 -05:00

.clang-format

PCI/DOE: Add DOE mailbox support functions

2022-07-19 15:38:04 -07:00

.cocciconfig

…

.get_maintainer.ignore

get_maintainer: add Alan to .get_maintainer.ignore

2022-08-20 15:17:44 -07:00

.gitattributes

.gitattributes: use 'dts' diff driver for dts files

2019-12-04 19:44:11 -08:00

.gitignore

Kbuild: add Rust support

2022-09-28 09:02:20 +02:00

.mailmap

mailmap: update email for Qais Yousef

2022-10-20 21:27:21 -07:00

.rustfmt.toml

rust: add .rustfmt.toml

2022-09-28 09:02:20 +02:00

COPYING

COPYING: state that all contributions really are covered by this file

2020-02-10 13:32:20 -08:00

CREDITS

MAINTAINERS: Move Vivien to CREDITS

2022-11-10 13:53:53 -08:00

Kbuild

Kbuild updates for v6.1

2022-10-10 12:00:45 -07:00

Kconfig

kbuild: ensure full rebuild when the compiler is updated

2020-05-12 13:28:33 +09:00

MAINTAINERS

MAINTAINERS: update MEDIATEK ETHERNET entry

2022-11-11 08:09:32 +00:00

Makefile

Linux 6.1-rc4

2022-11-06 15:07:11 -08:00

README

Drop all 00-INDEX files from Documentation/

2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.

Languages

C 97.6%

Assembly 1%

Shell 0.5%

Python 0.3%

Makefile 0.3%