1. 01 4月, 2018 2 次提交
  2. 30 3月, 2018 5 次提交
  3. 28 3月, 2018 1 次提交
  4. 27 3月, 2018 1 次提交
  5. 24 3月, 2018 2 次提交
  6. 21 3月, 2018 2 次提交
  7. 20 3月, 2018 1 次提交
  8. 12 3月, 2018 2 次提交
    • F
      netfilter: bridge: ebt_among: add more missing match size checks · c8d70a70
      Florian Westphal 提交于
      ebt_among is special, it has a dynamic match size and is exempt
      from the central size checks.
      
      commit c4585a28 ("bridge: ebt_among: add missing match size checks")
      added validation for pool size, but missed fact that the macros
      ebt_among_wh_src/dst can already return out-of-bound result because
      they do not check value of wh_src/dst_ofs (an offset) vs. the size
      of the match that userspace gave to us.
      
      v2:
      check that offset has correct alignment.
      Paolo Abeni points out that we should also check that src/dst
      wormhash arrays do not overlap, and src + length lines up with
      start of dst (or vice versa).
      v3: compact wormhash_sizes_valid() part
      
      NB: Fixes tag is intentionally wrong, this bug exists from day
      one when match was added for 2.6 kernel. Tag is there so stable
      maintainers will notice this one too.
      
      Tested with same rules from the earlier patch.
      
      Fixes: c4585a28 ("bridge: ebt_among: add missing match size checks")
      Reported-by: <syzbot+bdabab6f1983a03fc009@syzkaller.appspotmail.com>
      Signed-off-by: NFlorian Westphal <fw@strlen.de>
      Reviewed-by: NEric Dumazet <edumazet@google.com>
      Signed-off-by: NPablo Neira Ayuso <pablo@netfilter.org>
      c8d70a70
    • F
      netfilter: ebtables: fix erroneous reject of last rule · 932909d9
      Florian Westphal 提交于
      The last rule in the blob has next_entry offset that is same as total size.
      This made "ebtables32 -A OUTPUT -d de:ad:be:ef:01:02" fail on 64 bit kernel.
      
      Fixes: b7181216 ("netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets")
      Signed-off-by: NFlorian Westphal <fw@strlen.de>
      Signed-off-by: NPablo Neira Ayuso <pablo@netfilter.org>
      932909d9
  9. 06 3月, 2018 1 次提交
  10. 05 3月, 2018 2 次提交
  11. 28 2月, 2018 2 次提交
  12. 27 2月, 2018 1 次提交
  13. 26 2月, 2018 4 次提交
  14. 15 2月, 2018 1 次提交
  15. 13 2月, 2018 1 次提交
    • X
      bridge: check brport attr show in brport_show · 1b12580a
      Xin Long 提交于
      Now br_sysfs_if file flush doesn't have attr show. To read it will
      cause kernel panic after users chmod u+r this file.
      
      Xiong found this issue when running the commands:
      
        ip link add br0 type bridge
        ip link add type veth
        ip link set veth0 master br0
        chmod u+r /sys/devices/virtual/net/veth0/brport/flush
        timeout 3 cat /sys/devices/virtual/net/veth0/brport/flush
      
      kernel crashed with NULL a pointer dereference call trace.
      
      This patch is to fix it by return -EINVAL when brport_attr->show
      is null, just the same as the check for brport_attr->store in
      brport_store().
      
      Fixes: 9cf63747 ("bridge: add sysfs hook to flush forwarding table")
      Reported-by: NXiong Zhou <xzhou@redhat.com>
      Signed-off-by: NXin Long <lucien.xin@gmail.com>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      1b12580a
  16. 01 2月, 2018 1 次提交
  17. 23 1月, 2018 1 次提交
  18. 20 1月, 2018 1 次提交
    • P
      netfilter: remove messages print and boot/module load time · e5531166
      Pablo Neira Ayuso 提交于
      Several reasons for this:
      
      * Several modules maintain internal version numbers, that they print at
        boot/module load time, that are not exposed to userspace, as a
        primitive mechanism to make revision number control from the earlier
        days of Netfilter.
      
      * IPset shows the protocol version at boot/module load time, instead
        display this via module description, as Jozsef suggested.
      
      * Remove copyright notice at boot/module load time in two spots, the
        Netfilter codebase is a collective development effort, if we would
        have to display copyrights for each contributor at boot/module load
        time for each extensions we have, we would probably fill up logs with
        lots of useless information - from a technical standpoint.
      
      So let's be consistent and remove them all.
      Acked-by: NFlorian Westphal <fw@strlen.de>
      Acked-by: NJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
      Signed-off-by: NPablo Neira Ayuso <pablo@netfilter.org>
      e5531166
  19. 10 1月, 2018 3 次提交
  20. 09 1月, 2018 6 次提交