linux-kernel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
From: Steve French <smfrench@gmail.com>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Namjae Jeon <linkinjeon@kernel.org>,
	CIFS <linux-cifs@vger.kernel.org>,
	LKML <linux-kernel@vger.kernel.org>
Subject: [GIT PULL] ksmbd fixes
Date: Sat, 23 Oct 2021 10:06:41 -0500	[thread overview]
Message-ID: <CAH2r5mvY5kWAHs=0Lzgst0rjRaej+VW1ZLdFc8kDJ-07QmWQsA@mail.gmail.com> (raw)

Please pull the following changes since commit
64570fbc14f8d7cb3fe3995f20e26bc25ce4b2cc:

  Linux 5.15-rc5 (2021-10-10 17:01:59 -0700)

are available in the Git repository at:

  git://git.samba.org/ksmbd.git tags/5.15-rc6-ksmbd-fixes

for you to fetch changes up to 0d994cd482ee4e8e851388a70869beee51be1c54:

  ksmbd: add buffer validation in session setup (2021-10-20 00:07:10 -0500)

----------------------------------------------------------------
Ten fixes for the ksmbd kernel server:
- a security improvement to session establishment to reduce the
possibility of dictionary attacks
- fix to ensure that maximum i/o size negotiated in the protocol is
not less than 64K and not more than 8MB to better match expected
behavior
- fix for crediting (flow control) important to properly verify that
sufficient credits are available for the requested operation
- seven additional buffer overflow, buffer validation checks

Regression test results for current linux-next:
http://smb3-test-rhel-75.southcentralus.cloudapp.azure.com/#/builders/8/builds/89
----------------------------------------------------------------
Hyunchul Lee (3):
      ksmbd: improve credits management
      ksmbd: add buffer validation for smb direct
      ksmbd: validate OutputBufferLength of QUERY_DIR, QUERY_INFO,
IOCTL requests

Marios Makassikis (1):
      ksmbd: add buffer validation in session setup

Namjae Jeon (5):
      ksmbd: add validation in smb2_ioctl
      ksmbd: fix potencial 32bit overflow from data area check in smb2_write
      ksmbd: validate compound response buffer
      ksmbd: limit read/write/trans buffer size not to exceed 8MB
      ksmbd: throttle session setup failures to avoid dictionary attacks

Ralph Boehme (1):
      ksmbd: validate credit charge after validating SMB2 PDU body size

 fs/ksmbd/auth.c             |  16 +-
 fs/ksmbd/connection.c       |   2 +
 fs/ksmbd/ksmbd_netlink.h    |   2 +
 fs/ksmbd/mgmt/user_config.c |   2 +-
 fs/ksmbd/mgmt/user_config.h |   1 +
 fs/ksmbd/smb2misc.c         |  55 ++++---
 fs/ksmbd/smb2ops.c          |   3 +
 fs/ksmbd/smb2pdu.c          | 346 ++++++++++++++++++++++++++++---------------
 fs/ksmbd/smb2pdu.h          |   2 +
 fs/ksmbd/transport_ipc.c    |   3 +-
 fs/ksmbd/transport_ipc.h    |   2 +-
 fs/ksmbd/transport_rdma.c   |  21 ++-
 fs/ksmbd/vfs.c              |   2 +-
 fs/ksmbd/vfs.h              |   2 +-
 14 files changed, 306 insertions(+), 153 deletions(-)

-- 
Thanks,

Steve

             reply	other threads:[~2021-10-23 15:07 UTC|newest]

Thread overview: 16+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2021-10-23 15:06 Steve French [this message]
2021-10-24 17:12 ` [GIT PULL] ksmbd fixes pr-tracker-bot
  -- strict thread matches above, loose matches on Subject: below --
2023-12-12  4:44 Steve French
2023-12-12 19:13 ` pr-tracker-bot
2022-01-20  6:14 Steve French
2022-01-20 11:59 ` pr-tracker-bot
2021-12-24  0:45 Steve French
2021-12-24  1:22 ` pr-tracker-bot
2021-11-12 16:19 Steve French
2021-11-13 19:44 ` pr-tracker-bot
2021-10-09  4:59 Steve French
2021-10-09 22:05 ` pr-tracker-bot
2021-09-09 21:59 Steve French
2021-09-09 23:18 ` Steve French
2021-09-09 23:21 ` Linus Torvalds
2021-09-09 23:23 ` pr-tracker-bot

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to='CAH2r5mvY5kWAHs=0Lzgst0rjRaej+VW1ZLdFc8kDJ-07QmWQsA@mail.gmail.com' \
    --to=smfrench@gmail.com \
    --cc=linkinjeon@kernel.org \
    --cc=linux-cifs@vger.kernel.org \
    --cc=linux-kernel@vger.kernel.org \
    --cc=torvalds@linux-foundation.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).