linux-sg2042

Go to file

Daniel Borkmann 9facc33687 bpf: reject any prog that failed read-only lock We currently lock any JITed image as read-only via bpf_jit_binary_lock_ro() as well as the BPF image as read-only through bpf_prog_lock_ro(). In the case any of these would fail we throw a WARN_ON_ONCE() in order to yell loudly to the log. Perhaps, to some extend, this may be comparable to an allocation where __GFP_NOWARN is explicitly not set. Added via `65869a47f3` ("bpf: improve read-only handling"), this behavior is slightly different compared to any of the other in-kernel set_memory_ro() users who do not check the return code of set_memory_ro() and friends /at all/ (e.g. in the case of module_enable_ro() / module_disable_ro()). Given in BPF this is mandatory hardening step, we want to know whether there are any issues that would leave both BPF data writable. So it happens that syzkaller enabled fault injection and it triggered memory allocation failure deep inside x86's change_page_attr_set_clr() which was triggered from set_memory_ro(). Now, there are two options: i) leaving everything as is, and ii) reworking the image locking code in order to have a final checkpoint out of the central bpf_prog_select_runtime() which probes whether any of the calls during prog setup weren't successful, and then bailing out with an error. Option ii) is a better approach since this additional paranoia avoids altogether leaving any potential W+X pages from BPF side in the system. Therefore, lets be strict about it, and reject programs in such unlikely occasion. While testing I noticed also that one bpf_prog_lock_ro() call was missing on the outer dummy prog in case of calls, e.g. in the destructor we call bpf_prog_free_deferred() on the main prog where we try to bpf_prog_unlock_free() the program, and since we go via bpf_prog_select_runtime() do that as well. Reported-by: syzbot+3b889862e65a98317058@syzkaller.appspotmail.com Reported-by: syzbot+9e762b52dd17e616a7a5@syzkaller.appspotmail.com Signed-off-by: Daniel Borkmann <daniel@iogearbox.net> Acked-by: Martin KaFai Lau <kafai@fb.com> Signed-off-by: Alexei Starovoitov <ast@kernel.org>		2018-06-15 11:14:25 -07:00
Documentation	RTC for 4.18	2018-06-10 16:13:24 -07:00
LICENSES	LICENSES: Add Linux-OpenIB license text	2018-04-27 16:41:53 -06:00
arch	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2018-06-10 19:25:23 -07:00
block	for-linus-20180610	2018-06-10 10:50:41 -07:00
certs	certs/blacklist_nohashes.c: fix const confusion in certs blacklist	2018-02-21 15:35:43 -08:00
crypto	- Introduce arithmetic overflow test helper functions (Rasmus)	2018-06-06 17:27:14 -07:00
drivers	ixgbe: Fix bit definitions and add support for testing for ipsec support	2018-06-11 08:50:51 -07:00
firmware	kbuild: remove all dummy assignments to obj-	2017-11-18 11:46:06 +09:00
fs	This pull request contains updates for both UBI and UBIFS:	2018-06-10 15:52:09 -07:00
include	bpf: reject any prog that failed read-only lock	2018-06-15 11:14:25 -07:00
init	Merge branch 'core-rseq-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-06-10 10:17:09 -07:00
ipc	Merge branch 'timers-2038-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-06-04 21:02:18 -07:00
kernel	bpf: reject any prog that failed read-only lock	2018-06-15 11:14:25 -07:00
lib	libnvdimm for 4.18	2018-06-08 17:21:52 -07:00
mm	libnvdimm for 4.18	2018-06-08 17:21:52 -07:00
net	xsk: re-add queue id check for XDP_SKB path	2018-06-12 12:19:04 +02:00
samples	Mostly small fixes and cleanups, plus a non-trivial fix for charlcd	2018-06-07 14:01:16 -07:00
scripts	Staging/IIO patches for 4.18-rc1	2018-06-09 10:32:39 -07:00
security	Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security	2018-06-07 15:57:04 -07:00
sound	media updates for v4.18-rc1	2018-06-07 12:34:37 -07:00
tools	bpf, selftests: delete xfrm tunnel when test exits.	2018-06-15 03:31:52 +02:00
usr	kbuild: rename built-in.o to built-in.a	2018-03-26 02:01:19 +09:00
virt	arm64 updates for 4.18:	2018-06-08 11:10:58 -07:00
.clang-format	clang-format: add configuration file	2018-04-11 10:28:35 -07:00
.cocciconfig	scripts: add Linux .cocciconfig for coccinelle	2016-07-22 12:13:39 +02:00
.get_maintainer.ignore	…
.gitattributes	.gitattributes: set git diff driver for C source code files	2016-10-07 18:46:30 -07:00
.gitignore	Kbuild updates for v4.17 (2nd)	2018-04-15 17:21:30 -07:00
.mailmap	Merge branch 'asoc-4.17' into asoc-4.18 for compress dependencies	2018-04-26 12:24:28 +01:00
COPYING	COPYING: use the new text with points to the license files	2018-03-23 12:41:45 -06:00
CREDITS	MAINTAINERS/CREDITS: Drop METAG ARCHITECTURE	2018-03-05 16:34:24 +00:00
Kbuild	Kbuild updates for v4.15	2017-11-17 17:45:29 -08:00
Kconfig	kconfig: add basic helper macros to scripts/Kconfig.include	2018-05-29 03:31:19 +09:00
MAINTAINERS	SCSI misc on 20180610	2018-06-10 13:01:12 -07:00
Makefile	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next	2018-06-06 18:39:49 -07:00
README	Docs: Added a pointer to the formatted docs to README	2018-03-21 09:02:53 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.
See Documentation/00-INDEX for a list of what is contained in each file.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.