linux

mirror of https://github.com/torvalds/linux.git synced 2026-06-07 14:04:54 +02:00

Linux kernel source tree

Go to file

Phillip Lougher ff3a75bda7 squashfs: avoid out of bounds writes in decompressors commit `e812cbbbbb` upstream. Patch series "Squashfs: fix BIO migration regression and add sanity checks". Patch [1/4] fixes a regression introduced by the "migrate from ll_rw_block usage to BIO" patch, which has produced a number of Sysbot/Syzkaller reports. Patches [2/4], [3/4], and [4/4] fix a number of filesystem corruption issues which have produced Sysbot reports in the id, inode and xattr lookup code. Each patch has been tested against the Sysbot reproducers using the given kernel configuration. They have the appropriate "Reported-by:" lines added. Additionally, all of the reproducer filesystems are indirectly fixed by patch [4/4] due to the fact they all have xattr corruption which is now detected there. Additional testing with other configurations and architectures (32bit, big endian), and normal filesystems has also been done to trap any inadvertent regressions caused by the additional sanity checks. This patch (of 4): This is a regression introduced by the patch "migrate from ll_rw_block usage to BIO". Sysbot/Syskaller has reported a number of "out of bounds writes" and "unable to handle kernel paging request in squashfs_decompress" errors which have been identified as a regression introduced by the above patch. Specifically, the patch removed the following sanity check if (length < 0 \|\| length > output->length \|\| (index + length) > msblk->bytes_used) This check did two things: 1. It ensured any reads were not beyond the end of the filesystem 2. It ensured that the "length" field read from the filesystem was within the expected maximum length. Without this any corrupted values can over-run allocated buffers. Link: https://lkml.kernel.org/r/20210204130249.4495-1-phillip@squashfs.org.uk Link: https://lkml.kernel.org/r/20210204130249.4495-2-phillip@squashfs.org.uk Fixes: `93e72b3c61` ("squashfs: migrate from ll_rw_block usage to BIO") Reported-by: syzbot+6fba78f99b9afd4b5634@syzkaller.appspotmail.com Signed-off-by: Phillip Lougher <phillip@squashfs.org.uk> Cc: Philippe Liard <pliard@google.com> Cc: <stable@vger.kernel.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2021-02-13 13:55:17 +01:00
arch	powerpc/64/signal: Fix regression in __kernel_sigtramp_rt64() semantics	2021-02-13 13:55:02 +01:00
block	blk-cgroup: Use cond_resched() when destroy blkgs	2021-02-13 13:55:13 +01:00
certs	.gitignore: add SPDX License Identifier	2020-03-25 11:50:48 +01:00
crypto	crypto: xor - Fix divide error in do_xor_speed()	2021-01-27 11:54:52 +01:00
Documentation	ovl: implement volatile-specific fsync error behaviour	2021-02-10 09:29:16 +01:00
drivers	drm/i915: Skip vswing programming for TBT	2021-02-13 13:55:16 +01:00
fs	squashfs: avoid out of bounds writes in decompressors	2021-02-13 13:55:17 +01:00
include	SUNRPC: Move simple_get_bytes and simple_get_netobj into private header	2021-02-13 13:55:12 +01:00
init	fgraph: Initialize tracing_graph_pause at task creation	2021-02-10 09:29:16 +01:00
ipc	ipc: adjust proc_ipc_sem_dointvec definition to match prototype	2020-09-05 12:14:29 -07:00
kernel	bpf: Fix verifier jsgt branch analysis on max bound	2021-02-13 13:55:15 +01:00
lib	iov_iter: fix the uaccess area in copy_compat_iovec_from_user	2021-01-27 11:55:09 +01:00
LICENSES	LICENSES/deprecated: add Zlib license text	2020-09-16 14:33:49 +02:00
mm	Revert "mm: memcontrol: avoid workload stalls when lowering memory.high"	2021-02-13 13:55:17 +01:00
net	SUNRPC: Handle 0 length opaque XDR object data properly	2021-02-13 13:55:12 +01:00
samples	samples/bpf: Fix possible hang in xdpsock with multiple threads	2020-12-30 11:53:49 +01:00
scripts	scripts: use pkg-config to locate libcrypto	2021-02-10 09:29:17 +01:00
security	dump_common_audit_data(): fix racy accesses to ->d_name	2021-01-19 18:27:29 +01:00
sound	ASoC: Intel: sof_sdw: set proper flags for Dell TGL-H SKU 0A5E	2021-02-13 13:55:07 +01:00
tools	objtool: Don't fail the kernel build on fatal errors	2021-02-07 15:37:17 +01:00
usr	Merge branch 'work.fdpic' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2020-08-07 13:29:39 -07:00
virt	KVM: Forbid the use of tagged userspace addresses for memslots	2021-02-03 23:28:41 +01:00
.clang-format	RDMA 5.10 pull request	2020-10-17 11:18:18 -07:00
.cocciconfig
.get_maintainer.ignore	Opt out of scripts/get_maintainer.pl	2019-05-16 10:53:40 -07:00
.gitattributes	.gitattributes: use 'dts' diff driver for dts files	2019-12-04 19:44:11 -08:00
.gitignore	.gitignore: docs: ignore sphinx_*/ directories	2020-09-10 10:44:31 -06:00
.mailmap	mailmap: add two more addresses of Uwe Kleine-König	2020-12-06 10:19:07 -08:00
COPYING	COPYING: state that all contributions really are covered by this file	2020-02-10 13:32:20 -08:00
CREDITS	MAINTAINERS: Move Jason Cooper to CREDITS	2020-11-30 10:20:34 +01:00
Kbuild	kbuild: rename hostprogs-y/always to hostprogs/always-y	2020-02-04 01:53:07 +09:00
Kconfig	kbuild: ensure full rebuild when the compiler is updated	2020-05-12 13:28:33 +09:00
MAINTAINERS	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2020-12-10 15:30:13 -08:00
Makefile	Linux 5.10.15	2021-02-10 09:29:23 +01:00
README

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.