iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net
History
Eric Dumazet 2191a54f63 sched: act_ct: take care of padding in struct zones_ht_key 
Blamed commit increased lookup key size from 2 bytes to 16 bytes,
because zones_ht_key got a struct net pointer.

Make sure rhashtable_lookup() is not using the padding bytes
which are not initialized.

 BUG: KMSAN: uninit-value in rht_ptr_rcu include/linux/rhashtable.h:376 [inline]
 BUG: KMSAN: uninit-value in __rhashtable_lookup include/linux/rhashtable.h:607 [inline]
 BUG: KMSAN: uninit-value in rhashtable_lookup include/linux/rhashtable.h:646 [inline]
 BUG: KMSAN: uninit-value in rhashtable_lookup_fast include/linux/rhashtable.h:672 [inline]
 BUG: KMSAN: uninit-value in tcf_ct_flow_table_get+0x611/0x2260 net/sched/act_ct.c:329
  rht_ptr_rcu include/linux/rhashtable.h:376 [inline]
  __rhashtable_lookup include/linux/rhashtable.h:607 [inline]
  rhashtable_lookup include/linux/rhashtable.h:646 [inline]
  rhashtable_lookup_fast include/linux/rhashtable.h:672 [inline]
  tcf_ct_flow_table_get+0x611/0x2260 net/sched/act_ct.c:329
  tcf_ct_init+0xa67/0x2890 net/sched/act_ct.c:1408
  tcf_action_init_1+0x6cc/0xb30 net/sched/act_api.c:1425
  tcf_action_init+0x458/0xf00 net/sched/act_api.c:1488
  tcf_action_add net/sched/act_api.c:2061 [inline]
  tc_ctl_action+0x4be/0x19d0 net/sched/act_api.c:2118
  rtnetlink_rcv_msg+0x12fc/0x1410 net/core/rtnetlink.c:6647
  netlink_rcv_skb+0x375/0x650 net/netlink/af_netlink.c:2550
  rtnetlink_rcv+0x34/0x40 net/core/rtnetlink.c:6665
  netlink_unicast_kernel net/netlink/af_netlink.c:1331 [inline]
  netlink_unicast+0xf52/0x1260 net/netlink/af_netlink.c:1357
  netlink_sendmsg+0x10da/0x11e0 net/netlink/af_netlink.c:1901
  sock_sendmsg_nosec net/socket.c:730 [inline]
  __sock_sendmsg+0x30f/0x380 net/socket.c:745
  ____sys_sendmsg+0x877/0xb60 net/socket.c:2597
  ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2651
  __sys_sendmsg net/socket.c:2680 [inline]
  __do_sys_sendmsg net/socket.c:2689 [inline]
  __se_sys_sendmsg net/socket.c:2687 [inline]
  __x64_sys_sendmsg+0x307/0x4a0 net/socket.c:2687
  x64_sys_call+0x2dd6/0x3c10 arch/x86/include/generated/asm/syscalls_64.h:47
  do_syscall_x64 arch/x86/entry/common.c:52 [inline]
  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Local variable key created at:
  tcf_ct_flow_table_get+0x4a/0x2260 net/sched/act_ct.c:324
  tcf_ct_init+0xa67/0x2890 net/sched/act_ct.c:1408

Fixes: 88c67aeb1407 ("sched: act_ct: add netns into the key of tcf_ct_flow_table")
Reported-by: syzbot+1b5e4e187cc586d05ea0@syzkaller.appspotmail.com
Signed-off-by: Eric Dumazet <edumazet@google.com>
Cc: Xin Long <lucien.xin@gmail.com>
Reviewed-by: Simon Horman <horms@kernel.org>
Reviewed-by: Xin Long <lucien.xin@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2024-07-26 11:22:57 +01:00
..
6lowpan
9p
Two fixes headed to stable trees:
2024-05-29 09:25:15 -07:00
802
8021q
net: Add struct kernel_ethtool_ts_info
2024-07-15 08:02:26 -07:00
appletalk
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-05-09 10:01:01 -07:00
atm
atm: clean up a put_user() calls
2024-06-14 19:08:50 -07:00
ax25
ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
2024-06-01 15:49:42 -07:00
batman-adv
Revert "batman-adv: prefer kfree_rcu() over call_rcu() with free-only callbacks"
2024-06-12 20:18:00 +02:00
bluetooth
Bluetooth: Remove hci_request.{c,h}
2024-07-15 10:11:35 -04:00
bpf
bpf-next-for-netdev
2024-07-09 17:01:46 +02:00
bridge
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
caif
net: caif: remove unused structs
2024-06-05 10:18:06 +01:00
can
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-06-27 12:14:11 -07:00
ceph
libceph: fix crush_choose_firstn() kernel-doc warnings
2024-07-11 16:33:07 +02:00
core
A lot of networking people were at a conference last week, busy
2024-07-25 13:32:25 -07:00
dcb
dccp
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-06-27 12:14:11 -07:00
devlink
devlink: Constify the 'table_ops' parameter of devl_dpipe_table_register()
2024-06-05 10:24:57 +01:00
dns_resolver
dsa
Merge branch 'net-make-timestamping-selectable'
2024-07-15 08:02:30 -07:00
ethernet
netkit: Fix pkt_type override upon netkit pass verdict
2024-05-25 10:48:57 -07:00
ethtool
ethtool: rss: echo the context number back
2024-07-25 16:23:47 -07:00
handshake
net/handshake: remove redundant assignment to variable ret
2024-04-16 17:14:55 -07:00
hsr
net: hsr: cosmetic: Remove extra white space
2024-06-19 17:32:57 -07:00
ieee802154
bpf-next-for-netdev
2024-05-28 07:27:29 -07:00
ife
ipv4
A lot of networking people were at a conference last week, busy
2024-07-25 13:32:25 -07:00
ipv6
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
iucv
driver core: have match() callback in struct bus_type take a const *
2024-07-03 15:16:54 +02:00
kcm
key
l2tp
l2tp: make session IDR and tunnel session list coherent
2024-07-23 11:24:46 +02:00
l3mdev
lapb
llc
llc: Constify struct llc_sap_state_trans
2024-07-15 08:51:19 -07:00
mac80211
wifi: mac80211: fix AP chandef capturing in CSA
2024-07-10 12:35:58 +02:00
mac802154
net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and DEV_STATS_ADD()
2024-06-03 11:20:56 +02:00
mctp
mpls
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
mptcp
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
ncsi
net/ncsi: Fix the multi thread manner of NCSI driver
2024-06-01 16:21:44 -07:00
netfilter
A lot of networking people were at a conference last week, busy
2024-07-25 13:32:25 -07:00
netlabel
netlabel: fix RCU annotation for IPv4 options on socket creation
2024-05-13 14:58:12 -07:00
netlink
net: netlink: remove the cb_mutex "injection" from netlink core
2024-06-10 13:15:40 +01:00
netrom
netrom: Fix a memory leak in nr_heartbeat_expiry()
2024-06-17 13:06:23 +01:00
nfc
Quite smaller than usual. Notably it includes the fix for the unix
2024-05-23 12:49:37 -07:00
nsh
nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment().
2024-04-26 12:20:01 +02:00
openvswitch
net: openvswitch: store sampling probability in cb.
2024-07-05 17:45:47 -07:00
packet
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-07-15 13:19:17 -07:00
phonet
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
psample
net: psample: fix flag being set in wrong skb
2024-07-11 18:11:31 -07:00
qrtr
net: qrtr: ns: Ignore ENODEV failures in ns
2024-06-14 13:17:21 +02:00
rds
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
rfkill
net: rfkill: Correct return value in invalid parameter case
2024-06-26 10:49:01 +02:00
rose
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
rxrpc
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-05-09 10:01:01 -07:00
sched
sched: act_ct: take care of padding in struct zones_ht_key
2024-07-26 11:22:57 +01:00
sctp
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
smc
net/smc: Introduce IPPROTO_SMC
2024-06-17 13:14:09 +01:00
strparser
sunrpc
sysctl: treewide: constify the ctl_table argument of proc_handlers
2024-07-24 20:59:29 +02:00
switchdev
net: bridge: switchdev: Improve error message for port_obj_add/del functions
2024-05-08 12:19:12 +01:00
tipc
A lot of networking people were at a conference last week, busy
2024-07-25 13:32:25 -07:00
tls
net: tls: Pass union tls_crypto_context pointer to memzero_explicit
2024-07-09 11:14:47 -07:00
unix
af_unix: Disable MSG_OOB handling for sockets in sockmap/sockhash
2024-07-17 22:49:00 +02:00
vmw_vsock
virtio: rename virtio_find_vqs_info() to virtio_find_vqs()
2024-07-17 05:20:58 -04:00
wireless
wifi: cfg80211: add helper for checking if a chandef is valid on a radio
2024-07-09 11:36:00 +02:00
x25
net: change proto and proto_ops accept type
2024-05-13 18:19:09 -06:00
xdp
xsk: Require XDP_UMEM_TX_METADATA_LEN to actuate tx_metadata_len
2024-07-25 11:57:27 +02:00
xfrm
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2024-07-15 13:19:17 -07:00
compat.c
devres.c
Kconfig
ethtool: provide customized dim profile management
2024-06-25 17:15:06 -07:00
Kconfig.debug
Makefile
socket.c
net: Split a __sys_listen helper for io_uring
2024-06-19 07:57:21 -06:00
sysctl_net.c
sysctl: Remove check for sentinel element in ctl_table arrays
2024-06-13 10:50:52 +02:00