linux-stable

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-13 14:14:37 +00:00

No description

Find a file

Vladimir Zapolskiy 64b7f674c2 cifs: Fix incomplete memory allocation on setxattr path On setxattr() syscall path due to an apprent typo the size of a dynamically allocated memory chunk for storing struct smb2_file_full_ea_info object is computed incorrectly, to be more precise the first addend is the size of a pointer instead of the wanted object size. Coincidentally it makes no difference on 64-bit platforms, however on 32-bit targets the following memcpy() writes 4 bytes of data outside of the dynamically allocated memory. ============================================================================= BUG kmalloc-16 (Not tainted): Redzone overwritten ----------------------------------------------------------------------------- Disabling lock debugging due to kernel taint INFO: 0x79e69a6f-0x9e5cdecf @offset=368. First byte 0x73 instead of 0xcc INFO: Slab 0xd36d2454 objects=85 used=51 fp=0xf7d0fc7a flags=0x35000201 INFO: Object 0x6f171df3 @offset=352 fp=0x00000000 Redzone 5d4ff02d: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc ................ Object 6f171df3: 00 00 00 00 00 05 06 00 73 6e 72 75 62 00 66 69 ........snrub.fi Redzone 79e69a6f: 73 68 32 0a sh2. Padding 56254d82: 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZ CPU: 0 PID: 8196 Comm: attr Tainted: G B 5.9.0-rc8+ #3 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1 04/01/2014 Call Trace: dump_stack+0x54/0x6e print_trailer+0x12c/0x134 check_bytes_and_report.cold+0x3e/0x69 check_object+0x18c/0x250 free_debug_processing+0xfe/0x230 __slab_free+0x1c0/0x300 kfree+0x1d3/0x220 smb2_set_ea+0x27d/0x540 cifs_xattr_set+0x57f/0x620 __vfs_setxattr+0x4e/0x60 __vfs_setxattr_noperm+0x4e/0x100 __vfs_setxattr_locked+0xae/0xd0 vfs_setxattr+0x4e/0xe0 setxattr+0x12c/0x1a0 path_setxattr+0xa4/0xc0 __ia32_sys_lsetxattr+0x1d/0x20 __do_fast_syscall_32+0x40/0x70 do_fast_syscall_32+0x29/0x60 do_SYSENTER_32+0x15/0x20 entry_SYSENTER_32+0x9f/0xf2 Fixes: `5517554e43` ("cifs: Add support for writing attributes on SMB2+") Signed-off-by: Vladimir Zapolskiy <vladimir@tuxera.com> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>		2020-10-10 15:52:54 -07:00
arch	RISC-V Fixes for 5.9	2020-10-09 11:49:22 -07:00
block	block5.9-2020-10-08	2020-10-08 18:48:34 -07:00
certs	.gitignore: add SPDX License Identifier	2020-03-25 11:50:48 +01:00
crypto	Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6	2020-08-30 15:53:44 -07:00
Documentation	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2020-10-05 11:27:14 -07:00
drivers	spi: Fix for v5.9	2020-10-09 18:05:12 -07:00
fs	cifs: Fix incomplete memory allocation on setxattr path	2020-10-10 15:52:54 -07:00
include	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2020-10-08 14:11:21 -07:00
init	bootconfig: init: make xbc_namebuf static	2020-09-18 22:17:05 -04:00
ipc	ipc: adjust proc_ipc_sem_dointvec definition to match prototype	2020-09-05 12:14:29 -07:00
kernel	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2020-10-08 14:11:21 -07:00
lib	drm-misc-fixes for v5.9:	2020-10-06 12:38:28 +10:00
LICENSES	LICENSES: Rename other to deprecated	2019-05-03 06:34:32 -06:00
mm	mm/khugepaged: fix filemap page_to_pgoff(page) != offset	2020-10-10 15:52:54 -07:00
net	openvswitch: handle DNAT tuple collision	2020-10-08 12:20:35 -07:00
samples	treewide: Use fallthrough pseudo-keyword	2020-08-23 17:36:59 -05:00
scripts	scripts/spelling.txt: fix malformed entry	2020-10-03 11:28:12 -07:00
security	device_cgroup RCU warning fix from Amol Grover <frextrite@gmail.com>	2020-09-15 16:26:57 -07:00
sound	sound fixes for 5.9-rc7	2020-09-24 09:00:05 -07:00
tools	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2020-10-05 11:27:14 -07:00
usr	Merge branch 'work.fdpic' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2020-08-07 13:29:39 -07:00
virt	KVM: fix memory leak in kvm_io_bus_unregister_dev()	2020-09-11 13:15:11 -04:00
.clang-format	clang-format: Update with the latest for_each macro list	2020-09-01 12:53:42 +02:00
.cocciconfig
.get_maintainer.ignore	Opt out of scripts/get_maintainer.pl	2019-05-16 10:53:40 -07:00
.gitattributes	.gitattributes: use 'dts' diff driver for dts files	2019-12-04 19:44:11 -08:00
.gitignore	.gitignore: Add ZSTD-compressed files	2020-07-31 11:50:49 +02:00
.mailmap	mailmap: add older email addresses for Kees Cook	2020-09-19 13:13:38 -07:00
COPYING	COPYING: state that all contributions really are covered by this file	2020-02-10 13:32:20 -08:00
CREDITS	CREDITS: Replace HTTP links with HTTPS ones	2020-07-23 14:53:58 -06:00
Kbuild	kbuild: rename hostprogs-y/always to hostprogs/always-y	2020-02-04 01:53:07 +09:00
Kconfig	kbuild: ensure full rebuild when the compiler is updated	2020-05-12 13:28:33 +09:00
MAINTAINERS	spi: Fix for v5.9	2020-10-09 18:05:12 -07:00
Makefile	Linux 5.9-rc8	2020-10-04 16:04:34 -07:00
README	Drop all 00-INDEX files from Documentation/	2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.