David S. Miller 2bd84dce08 filter: make sure filters dont read uninitialized memory ... commit 57fe93b374 upstream. There is a possibility malicious users can get limited information about uninitialized stack mem array. Even if sk_run_filter() result is bound to packet length (0 .. 65535), we could imagine this can be used by hostile user. Initializing mem[] array, like Dan Rosenberg suggested in his patch is expensive since most filters dont even use this array. Its hard to make the filter validation in sk_chk_filter(), because of the jumps. This might be done later. In this patch, I use a bitmap (a single long var) so that only filters using mem[] loads/stores pay the price of added security checks. For other filters, additional cost is a single instruction. [ Since we access fentry->k a lot now, cache it in a local variable and mark filter entry pointer as const. -DaveM ] Reported-by: Dan Rosenberg <drosenberg@vsecurity.com> Signed-off-by: Eric Dumazet <eric.dumazet@gmail.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>		2010-12-09 13:33:30 -08:00
..
datagram.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
dev_addr_lists.c	net: include linux/proc_fs.h in dev_addr_lists.c	2010-04-07 16:46:36 -07:00
dev.c	vlan: Avoid hwaccel vlan packets when vid not used.	2010-12-09 13:33:29 -08:00
drop_monitor.c	drop_monitor: use genl_register_family_with_ops()	2010-07-26 20:59:42 -07:00
dst.c	__dst_free(): put EXPORT_SYMBOLS after the fct	2010-07-20 13:28:03 -07:00
ethtool.c	net: clear heap allocations for privileged ethtool actions	2010-10-11 12:23:25 -07:00
fib_rules.c	net: fib_rules: mark arguments to fib_rules_register const and __net_initdata	2010-04-26 16:02:04 +02:00
filter.c	filter: make sure filters dont read uninitialized memory	2010-12-09 13:33:30 -08:00
flow.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
gen_estimator.c	pkt_sched: Fix lockdep warning on est_tree_lock in gen_estimator	2010-09-02 13:22:11 -07:00
gen_stats.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
iovec.c	net: Limit socket I/O iovec total length to INT_MAX.	2010-12-09 13:33:28 -08:00
kmap_skb.h	[PATCH] severing skbuff.h -> highmem.h	2006-12-04 02:00:29 -05:00
link_watch.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
Makefile	net: support time stamping in phy devices.	2010-07-18 19:15:26 -07:00
neighbour.c	net/core: neighbour update Oops	2010-07-14 18:02:16 -07:00
net_namespace.c	net: disallow to use net_assign_generic externally	2010-04-27 15:49:02 -07:00
net-sysfs.c	sysfs: add attribute to indicate hw address assignment type	2010-07-24 20:49:29 -07:00
net-sysfs.h	net: Expose all network devices in a namespaces in sysfs	2010-05-21 09:37:34 -07:00
net-traces.c	include cleanup: Update gfp.h and slab.h includes to prepare for breaking implicit slab.h inclusion from percpu.h	2010-03-30 22:02:32 +09:00
netevent.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
netpoll.c	Revert "net: remove zap_completion_queue"	2010-08-03 00:24:04 -07:00
pktgen.c	net: core: don't use own hex_to_bin() method	2010-07-23 12:50:51 -07:00
request_sock.c	net: convert BUG_TRAP to generic WARN_ON	2008-07-25 21:43:18 -07:00
rtnetlink.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
scm.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00
skbuff.c	gro: Re-fix different skb headrooms	2010-09-08 10:32:15 -07:00
sock.c	net: fix a lockdep splat	2010-09-24 22:26:10 -07:00
stream.c	net: Fix the condition passed to sk_wait_event()	2010-10-03 20:41:32 -07:00
sysctl_net_core.c	net: Consistent skb timestamping	2010-05-15 23:57:10 -07:00
timestamping.c	net: support time stamping in phy devices.	2010-07-18 19:15:26 -07:00
user_dma.c	net/core/user_dma.c: Use frag list abstraction interfaces.	2009-06-09 00:19:10 -07:00
utils.c	net/core: EXPORT_SYMBOL cleanups	2010-07-12 12:57:55 -07:00