linux

mirror of https://github.com/torvalds/linux.git synced 2026-06-09 15:12:59 +02:00

History

Sabrina Dubroca a583f2f3c8 esp: limit skb_page_frag_refill use to a single page [ Upstream commit `5bd8baab08` ] Commit `ebe48d368e` ("esp: Fix possible buffer overflow in ESP transformation") tried to fix skb_page_frag_refill usage in ESP by capping allocsize to 32k, but that doesn't completely solve the issue, as skb_page_frag_refill may return a single page. If that happens, we will write out of bounds, despite the check introduced in the previous patch. This patch forces COW in cases where we would end up calling skb_page_frag_refill with a size larger than a page (first in esp_output_head with tailen, then in esp_output_tail with skb->data_len). Fixes: `cac2661c53` ("esp4: Avoid skb_cow_data whenever possible") Fixes: `03e2a30f6a` ("esp6: Avoid skb_cow_data whenever possible") Signed-off-by: Sabrina Dubroca <sd@queasysnail.net> Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com> Signed-off-by: Sasha Levin <sashal@kernel.org>		2022-04-27 14:38:52 +02:00
..
bpfilter
netfilter	netfilter: ipt_CLUSTERIP: fix refcount leak in clusterip_tg_check()	2022-01-27 11:03:50 +01:00
af_inet.c	gso: do not skip outer ip header in case of ipip and net_failover	2022-03-02 11:47:56 +01:00
ah4.c	Networking changes for 5.14.	2021-06-30 15:51:09 -07:00
arp.c	ipv4: Invalidate neighbour for broadcast address upon address addition	2022-04-13 20:59:05 +02:00
bpf_tcp_ca.c	bpf: Forbid bpf_ktime_get_coarse_ns and bpf_timer_* in tracing progs	2021-11-25 09:49:07 +01:00
cipso_ipv4.c	net: remove the unnecessary check in cipso_v4_doi_free	2021-09-03 13:52:29 +01:00
datagram.c
devinet.c	net: return correct error code	2021-12-08 09:04:38 +01:00
esp4_offload.c	esp: Fix BEET mode inter address family tunneling on GSO	2022-03-16 14:23:36 +01:00
esp4.c	esp: limit skb_page_frag_refill use to a single page	2022-04-27 14:38:52 +02:00
fib_frontend.c	ipv4: Invalidate neighbour for broadcast address upon address addition	2022-04-13 20:59:05 +02:00
fib_lookup.h	ipv4: fix data races in fib_alias_hw_flags_set	2022-02-23 12:03:10 +01:00
fib_notifier.c
fib_rules.c	ipv4: convert fib_num_tclassid_users to atomic_t	2021-12-08 09:04:49 +01:00
fib_semantics.c	net: ipv4: fix route with nexthop object delete warning	2022-04-13 20:59:16 +02:00
fib_trie.c	ipv4: fix data races in fib_alias_hw_flags_set	2022-02-23 12:03:10 +01:00
fou.c	fou: remove sparse errors	2021-08-31 12:03:33 +01:00
gre_demux.c	net: Remove the member netns_ok	2021-05-17 15:29:35 -07:00
gre_offload.c	ip_gre: add csum offload support for gre header	2021-01-29 20:39:14 -08:00
icmp.c	icmp: fix icmp_ext_echo_iio parsing in icmp_build_probe	2021-10-14 07:54:47 -07:00
igmp.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2021-08-13 06:41:22 -07:00
inet_connection_sock.c	inet: use #ifdef CONFIG_SOCK_RX_QUEUE_MAPPING consistently	2021-12-17 10:30:13 +01:00
inet_diag.c	inet_diag: fix kernel-infoleak for UDP sockets	2021-12-22 09:32:40 +01:00
inet_fragment.c	inet: frags: annotate races around fqdir->dead and fqdir->high_thresh	2022-01-27 11:05:35 +01:00
inet_hashtables.c	tcp: Don't acquire inet_listen_hashbucket::lock with disabled BH.	2022-04-13 20:59:04 +02:00
inet_timewait_sock.c
inetpeer.c	inetpeer: use div64_ul() and clamp_val() calculate inet_peer_threshold	2021-03-01 13:32:12 -08:00
ip_forward.c
ip_fragment.c	inet: frags: annotate races around fqdir->dead and fqdir->high_thresh	2022-01-27 11:05:35 +01:00
ip_gre.c	gre: Don't accidentally set RTO_ONLINK in gre_fill_metadata_dst()	2022-01-27 11:05:36 +01:00
ip_input.c	net: use indirect call helpers for dst_input	2021-02-03 14:51:39 -08:00
ip_options.c
ip_output.c	net-timestamp: convert sk->sk_tskey to atomic_t	2022-03-02 11:48:01 +01:00
ip_sockglue.c	Revert "Revert "ipv4: fix memory leaks in ip_cmsg_send() callers""	2021-09-14 14:24:31 +01:00
ip_tunnel_core.c	net: ip_tunnel: clean up endianness conversions	2021-01-08 19:25:35 -08:00
ip_tunnel.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2021-07-31 09:14:46 -07:00
ip_vti.c	ip_tunnel: use ndo_siocdevprivate	2021-07-27 20:11:44 +01:00
ipcomp.c	Networking changes for 5.14.	2021-06-30 15:51:09 -07:00
ipconfig.c	net: ipconfig: Don't override command-line hostnames or domains	2021-06-02 13:27:03 -07:00
ipip.c	ip_tunnel: use ndo_siocdevprivate	2021-07-27 20:11:44 +01:00
ipmr_base.c
ipmr.c	ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path	2022-02-16 12:56:29 +01:00
Kconfig
Makefile	bpf: Clean up sockmap related Kconfigs	2021-02-26 12:28:03 -08:00
metrics.c	treewide: rename nla_strlcpy to nla_strscpy.	2020-11-16 08:08:54 -08:00
netfilter.c	netfilter: Dissect flow after packet mangling	2021-04-18 22:04:16 +02:00
netlink.c
nexthop.c	net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group	2021-12-01 09:04:49 +01:00
ping.c	ping: remove pr_err from ping_lookup	2022-03-02 11:47:52 +01:00
proc.c	tcp: switch orphan_count to bare per-cpu counters	2021-11-18 19:16:33 +01:00
protocol.c	net: Remove the member netns_ok	2021-05-17 15:29:35 -07:00
raw_diag.c	net: Use nlmsg_unicast() instead of netlink_unicast()	2021-07-13 09:28:29 -07:00
raw.c	ipv4: raw: lock the socket in raw_bind()	2022-02-01 17:27:14 +01:00
route.c	ipv4: Fix route lookups when handling ICMP redirects and PMTU updates	2022-04-08 14:23:41 +02:00
syncookies.c	selinux/stable-5.11 PR 20201214	2020-12-16 11:01:04 -08:00
sysctl_net_ipv4.c	net: Introduce net.ipv4.tcp_migrate_req.	2021-06-15 18:01:05 +02:00
tcp_bbr.c	tcp_bbr: fix u32 wrap bug in round logic if bbr_init() called after 2B packets	2021-08-11 15:00:15 -07:00
tcp_bic.c
tcp_bpf.c	bpf, sockmap: Fix double uncharge the mem of sk_msg	2022-04-08 14:23:40 +02:00
tcp_cdg.c
tcp_cong.c	net: Only allow init netns to set default tcp cong to a restricted algo	2021-05-04 11:58:28 -07:00
tcp_cubic.c	tcp_cubic: fix spurious Hystart ACK train detections for not-cwnd-limited flows	2021-12-01 09:04:52 +01:00
tcp_dctcp.c
tcp_dctcp.h
tcp_diag.c
tcp_fastopen.c	tcp: enable data-less, empty-cookie SYN with TFO_SERVER_COOKIE_NOT_REQD	2021-08-16 17:25:49 -07:00
tcp_highspeed.c
tcp_htcp.c
tcp_hybla.c
tcp_illinois.c
tcp_input.c	tcp: add missing tcp_skb_can_collapse() test in tcp_shift_skb_data()	2022-02-05 12:38:59 +01:00
tcp_ipv4.c	inet: fully convert sk->sk_rx_dst to RCU rules	2021-12-29 12:28:42 +01:00
tcp_lp.c	ipv4: tcp_lp.c: Couple of typo fixes	2021-03-28 17:31:13 -07:00
tcp_metrics.c	fixes-v5.11	2020-12-14 16:40:27 -08:00
tcp_minisocks.c	tcp: Add stats for socket migration.	2021-06-23 12:56:08 -07:00
tcp_nv.c
tcp_offload.c	net, gro: Set inner transport header offset in tcp/udp GRO hook	2021-08-02 10:20:56 +01:00
tcp_output.c	tcp: ensure PMTU updates are processed during fastopen	2022-04-08 14:23:42 +02:00
tcp_rate.c
tcp_recovery.c	tcp: more accurately check DSACKs to grow RACK reordering window	2021-07-27 20:07:21 +01:00
tcp_scalable.c
tcp_timer.c	net: sock: introduce sk_error_report	2021-06-29 11:28:21 -07:00
tcp_ulp.c
tcp_vegas.c
tcp_vegas.h
tcp_veno.c
tcp_westwood.c
tcp_yeah.c	tcp_yeah: check struct yeah size at compile time	2021-06-29 11:54:36 -07:00
tcp.c	tcp: make tcp_read_sock() more robust	2022-03-19 13:47:50 +01:00
tunnel4.c	net: Remove the member netns_ok	2021-05-17 15:29:35 -07:00
udp_bpf.c	net: Implement ->sock_is_readable() for UDP and AF_UNIX	2021-10-26 12:29:33 -07:00
udp_diag.c	net: Use nlmsg_unicast() instead of netlink_unicast()	2021-07-13 09:28:29 -07:00
udp_impl.h
udp_offload.c	fou: remove sparse errors	2021-08-31 12:03:33 +01:00
udp_tunnel_core.c	udp_tunnel: reshuffle NETIF_F_RX_UDP_TUNNEL_PORT checks	2021-01-07 12:53:29 -08:00
udp_tunnel_nic.c	udp_tunnel: Fix end of loop test in udp_tunnel_nic_unregister()	2022-03-02 11:47:59 +01:00
udp_tunnel_stub.c
udp.c	net: udp: fix alignment problem in udp4_seq_show()	2022-01-11 15:35:18 +01:00
udplite.c	net: Remove the member netns_ok	2021-05-17 15:29:35 -07:00
xfrm4_input.c
xfrm4_output.c
xfrm4_policy.c
xfrm4_protocol.c	net: Remove the member netns_ok	2021-05-17 15:29:35 -07:00
xfrm4_state.c
xfrm4_tunnel.c	xfrm: remove description from xfrm_type struct	2021-06-09 09:38:52 +02:00