From: Steve French <smfrench@gmail.com>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Namjae Jeon <linkinjeon@kernel.org>,
CIFS <linux-cifs@vger.kernel.org>,
LKML <linux-kernel@vger.kernel.org>
Subject: [GIT PULL] ksmbd fixes
Date: Sat, 23 Oct 2021 10:06:41 -0500 [thread overview]
Message-ID: <CAH2r5mvY5kWAHs=0Lzgst0rjRaej+VW1ZLdFc8kDJ-07QmWQsA@mail.gmail.com> (raw)
Please pull the following changes since commit
64570fbc14f8d7cb3fe3995f20e26bc25ce4b2cc:
Linux 5.15-rc5 (2021-10-10 17:01:59 -0700)
are available in the Git repository at:
git://git.samba.org/ksmbd.git tags/5.15-rc6-ksmbd-fixes
for you to fetch changes up to 0d994cd482ee4e8e851388a70869beee51be1c54:
ksmbd: add buffer validation in session setup (2021-10-20 00:07:10 -0500)
----------------------------------------------------------------
Ten fixes for the ksmbd kernel server:
- a security improvement to session establishment to reduce the
possibility of dictionary attacks
- fix to ensure that maximum i/o size negotiated in the protocol is
not less than 64K and not more than 8MB to better match expected
behavior
- fix for crediting (flow control) important to properly verify that
sufficient credits are available for the requested operation
- seven additional buffer overflow, buffer validation checks
Regression test results for current linux-next:
http://smb3-test-rhel-75.southcentralus.cloudapp.azure.com/#/builders/8/builds/89
----------------------------------------------------------------
Hyunchul Lee (3):
ksmbd: improve credits management
ksmbd: add buffer validation for smb direct
ksmbd: validate OutputBufferLength of QUERY_DIR, QUERY_INFO,
IOCTL requests
Marios Makassikis (1):
ksmbd: add buffer validation in session setup
Namjae Jeon (5):
ksmbd: add validation in smb2_ioctl
ksmbd: fix potencial 32bit overflow from data area check in smb2_write
ksmbd: validate compound response buffer
ksmbd: limit read/write/trans buffer size not to exceed 8MB
ksmbd: throttle session setup failures to avoid dictionary attacks
Ralph Boehme (1):
ksmbd: validate credit charge after validating SMB2 PDU body size
fs/ksmbd/auth.c | 16 +-
fs/ksmbd/connection.c | 2 +
fs/ksmbd/ksmbd_netlink.h | 2 +
fs/ksmbd/mgmt/user_config.c | 2 +-
fs/ksmbd/mgmt/user_config.h | 1 +
fs/ksmbd/smb2misc.c | 55 ++++---
fs/ksmbd/smb2ops.c | 3 +
fs/ksmbd/smb2pdu.c | 346 ++++++++++++++++++++++++++++---------------
fs/ksmbd/smb2pdu.h | 2 +
fs/ksmbd/transport_ipc.c | 3 +-
fs/ksmbd/transport_ipc.h | 2 +-
fs/ksmbd/transport_rdma.c | 21 ++-
fs/ksmbd/vfs.c | 2 +-
fs/ksmbd/vfs.h | 2 +-
14 files changed, 306 insertions(+), 153 deletions(-)
--
Thanks,
Steve
next reply other threads:[~2021-10-23 15:07 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-10-23 15:06 Steve French [this message]
2021-10-24 17:12 ` [GIT PULL] ksmbd fixes pr-tracker-bot
-- strict thread matches above, loose matches on Subject: below --
2023-12-12 4:44 Steve French
2023-12-12 19:13 ` pr-tracker-bot
2022-01-20 6:14 Steve French
2022-01-20 11:59 ` pr-tracker-bot
2021-12-24 0:45 Steve French
2021-12-24 1:22 ` pr-tracker-bot
2021-11-12 16:19 Steve French
2021-11-13 19:44 ` pr-tracker-bot
2021-10-09 4:59 Steve French
2021-10-09 22:05 ` pr-tracker-bot
2021-09-09 21:59 Steve French
2021-09-09 23:18 ` Steve French
2021-09-09 23:21 ` Linus Torvalds
2021-09-09 23:23 ` pr-tracker-bot
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CAH2r5mvY5kWAHs=0Lzgst0rjRaej+VW1ZLdFc8kDJ-07QmWQsA@mail.gmail.com' \
--to=smfrench@gmail.com \
--cc=linkinjeon@kernel.org \
--cc=linux-cifs@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=torvalds@linux-foundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).