Eric Lee / smarc-fsl-linux-kernel

25 Jun, 2020

1 commit

19 Jan, 2020

1 commit

  • 7eaecf796   netfilter: nft_osf: add missing check for DREG attribute ... Browse Code »

    syzbot reports just another NULL deref crash because of missing test
    for presence of the attribute.

    Reported-by: syzbot+cf23983d697c26c34f60@syzkaller.appspotmail.com
    Fixes: b96af92d6eaf9fadd ("netfilter: nf_tables: implement Passive OS fingerprint module in nft_osf")
    Signed-off-by: Florian Westphal
    Signed-off-by: Pablo Neira Ayuso

    Florian Westphal
     

21 May, 2019

1 commit

  • 09c434b8a   treewide: Add SPDX license identifier for more missed files ... Browse Code »

    Add SPDX license identifiers to all files which:

    - Have no license information of any form

    - Have MODULE_LICENCE("GPL*") inside which was used in the initial
    scan/conversion to ignore the file

    These files fall under the project license, GPL v2 only. The resulting SPDX
    license identifier is:

    GPL-2.0-only

    Signed-off-by: Thomas Gleixner
    Signed-off-by: Greg Kroah-Hartman

    Thomas Gleixner
     

09 Apr, 2019

1 commit

25 Oct, 2018

1 commit

23 Oct, 2018

1 commit

  • 807192deb   Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf ... Browse Code »

    Pablo Neira Ayuso says:

    ====================
    Netfilter fixes for net

    The following patchset contains Netfilter fixes for your net tree:

    1) rbtree lookup from control plane returns the left-hand side element
    of the range when the interval end flag is set on.

    2) osf extension is not supported from the input path, reject this from
    the control plane, from Fernando Fernandez Mancera.

    3) xt_TEE is leaving output interface unset due to a recent incorrect
    netns rework, from Taehee Yoo.

    4) xt_TEE allows to select an interface which does not belong to this
    netnamespace, from Taehee Yoo.

    5) Zero private extension area in nft_compat, just like we do in x_tables,
    otherwise we leak kernel memory to userspace.

    6) Missing .checkentry and .destroy entries in new DNAT extensions breaks
    it since we never load nf_conntrack dependencies, from Paolo Abeni.

    7) Do not remove flowtable hook from netns exit path, the netdevice handler
    already deals with this, also from Taehee Yoo.

    8) Only cleanup flowtable entries that reside in this netnamespace, also
    from Taehee Yoo.
    ====================

    Signed-off-by: David S. Miller

    David S. Miller
     

16 Oct, 2018

1 commit

11 Oct, 2018

1 commit

21 Sep, 2018

1 commit

  • bab434497   netfilter: nft_osf: use enum nft_data_types for nft_validate_register_store ... Browse Code »

    The function nft_validate_register_store requires a struct of type
    struct nft_data_types. NFTA_DATA_VALUE is of type enum
    nft_verdict_attributes. Pass the correct enum type.

    This fixes a warning seen with Clang:
    net/netfilter/nft_osf.c:52:8: warning: implicit conversion from
    enumeration type 'enum nft_data_attributes' to different enumeration
    type 'enum nft_data_types' [-Wenum-conversion]
    NFTA_DATA_VALUE, NFT_OSF_MAXGENRELEN);
    ^~~~~~~~~~~~~~~

    Fixes: b96af92d6eaf ("netfilter: nf_tables: implement Passive OS fingerprint module in nft_osf")
    Link: https://github.com/ClangBuiltLinux/linux/issues/103
    Signed-off-by: Stefan Agner
    Signed-off-by: Pablo Neira Ayuso

    Stefan Agner
     

07 Aug, 2018

1 commit

04 Aug, 2018

1 commit

30 Jul, 2018

1 commit