linux

mirror of https://github.com/hardkernel/linux.git synced 2026-06-01 00:36:40 +09:00

Go to file

Eric Dumazet 083b78a9ed ip: fix ip_mc_may_pull() return value

ip_mc_may_pull() must return 0 if there is a problem, not an errno.

syzbot reported :

BUG: KASAN: use-after-free in br_ip4_multicast_igmp3_report net/bridge/br_multicast.c:947 [inline]
BUG: KASAN: use-after-free in br_multicast_ipv4_rcv net/bridge/br_multicast.c:1631 [inline]
BUG: KASAN: use-after-free in br_multicast_rcv+0x3cd8/0x4440 net/bridge/br_multicast.c:1741
Read of size 4 at addr ffff88820a4084ee by task syz-executor.2/11183

CPU: 1 PID: 11183 Comm: syz-executor.2 Not tainted 5.0.0+ #14
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x172/0x1f0 lib/dump_stack.c:113
 print_address_description.cold+0x7c/0x20d mm/kasan/report.c:187
 kasan_report.cold+0x1b/0x40 mm/kasan/report.c:317
 __asan_report_load4_noabort+0x14/0x20 mm/kasan/generic_report.c:131
 br_ip4_multicast_igmp3_report net/bridge/br_multicast.c:947 [inline]
 br_multicast_ipv4_rcv net/bridge/br_multicast.c:1631 [inline]
 br_multicast_rcv+0x3cd8/0x4440 net/bridge/br_multicast.c:1741
 br_handle_frame_finish+0xa3a/0x14c0 net/bridge/br_input.c:108
 br_nf_hook_thresh+0x2ec/0x380 net/bridge/br_netfilter_hooks.c:1005
 br_nf_pre_routing_finish+0x8e2/0x1750 net/bridge/br_netfilter_hooks.c:410
 NF_HOOK include/linux/netfilter.h:289 [inline]
 NF_HOOK include/linux/netfilter.h:283 [inline]
 br_nf_pre_routing+0x7e7/0x13a0 net/bridge/br_netfilter_hooks.c:506
 nf_hook_entry_hookfn include/linux/netfilter.h:119 [inline]
 nf_hook_slow+0xbf/0x1f0 net/netfilter/core.c:511
 nf_hook include/linux/netfilter.h:244 [inline]
 NF_HOOK include/linux/netfilter.h:287 [inline]
 br_handle_frame+0x95b/0x1450 net/bridge/br_input.c:305
 __netif_receive_skb_core+0xa96/0x3040 net/core/dev.c:4902
 __netif_receive_skb_one_core+0xa8/0x1a0 net/core/dev.c:4971
 __netif_receive_skb+0x2c/0x1c0 net/core/dev.c:5083
 netif_receive_skb_internal+0x117/0x660 net/core/dev.c:5186
 netif_receive_skb+0x6e/0x5a0 net/core/dev.c:5261

Fixes: ba5ea61462 ("bridge: simplify ip_mc_check_igmp() and ipv6_mc_check_mld() calls")
Signed-off-by: Eric Dumazet <edumazet@google.com>
Reported-by: syzbot <syzkaller@googlegroups.com>
Cc: Linus Lüssing <linus.luessing@c0d3.blue>
Signed-off-by: David S. Miller <davem@davemloft.net>

2019-03-09 19:52:47 -08:00

arch

ARM: dts: stm32: Add Ethernet support on stm32h7 SOC and activate it for eval and disco boards

2019-03-08 11:48:19 -08:00

block

Merge tag 'for-linus-20190215' of git://git.kernel.dk/linux-block

2019-02-15 09:12:28 -08:00

certs

kbuild: remove redundant target cleaning on failure

2019-01-06 09:46:51 +09:00

crypto

Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6

2019-03-05 09:09:55 -08:00

Documentation

dt-bindings: net: stmmac: remove syscfg clock property

2019-03-08 11:48:19 -08:00

drivers

net: stmmac: Avoid one more sometimes uninitialized Clang warning

2019-03-08 23:20:22 -08:00

firmware

kbuild: change filechk to surround the given command with { }

2019-01-06 09:46:51 +09:00

a.out: remove core dumping support

2019-03-05 10:00:35 -08:00

include

ip: fix ip_mc_may_pull() return value

2019-03-09 19:52:47 -08:00

init

revert "initramfs: cleanup incomplete rootfs"

2019-02-21 09:00:59 -08:00

ipc

ipc: introduce ksys_ipc()/compat_ksys_ipc() for s390

2019-01-18 09:33:18 +01:00

kernel

bpf: fix replace_map_fd_with_map_ptr's ldimm64 second imm field

2019-03-07 08:47:13 -08:00

lib

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2019-03-04 13:26:15 -08:00

LICENSES

Merge tag 'docs-4.20' of git://git.lwn.net/linux

2018-10-24 18:01:11 +01:00

Merge branch 'akpm' (patches from Andrew)

2019-03-01 09:04:59 -08:00

net

rxrpc: Fix client call queueing, waiting for channel

2019-03-08 18:24:53 -08:00

samples

bpf: hbm: fix spelling mistake "deault" -> "default"

2019-03-07 10:35:00 +01:00

scripts

kasan: turn off asan-stack for clang-8 and earlier

2019-03-01 09:02:33 -08:00

security

get rid of legacy 'get_ds()' function

2019-03-04 10:50:14 -08:00

sound

Merge tag 'sound-5.0' of git://git.kernel.org/pub/scm/linux/kernel/git/tiwai/sound

2019-02-20 09:42:52 -08:00

tools

bpf, libbpf: fixing leak when kernel does not support btf

2019-03-08 21:16:36 +01:00

usr

user/Makefile: Fix typo and capitalization in comment section

2018-12-11 00:18:03 +09:00

virt

kvm: properly check debugfs dentry before using it

2019-02-28 08:57:32 -08:00

.clang-format

clang-format: Update .clang-format with the latest for_each macro list

2019-01-19 19:26:06 +01:00

.cocciconfig

scripts: add Linux .cocciconfig for coccinelle

2016-07-22 12:13:39 +02:00

.get_maintainer.ignore

Add hch to .get_maintainer.ignore

2015-08-21 14:30:10 -07:00

.gitattributes

.gitattributes: set git diff driver for C source code files

2016-10-07 18:46:30 -07:00

.gitignore

kbuild: Add support for DT binding schema checks

2018-12-13 09:41:32 -06:00

.mailmap

.mailmap: Add Mathieu Othacehe

2019-02-21 11:41:19 +00:00

COPYING

COPYING: use the new text with points to the license files

2018-03-23 12:41:45 -06:00

CREDITS

CREDITS/MAINTAINERS: Retire parisc-linux.org email domain

2019-02-21 20:16:10 +01:00

Kbuild

kbuild: use assignment instead of define ... endef for filechk_* rules

2019-01-06 10:22:35 +09:00

Kconfig

kconfig: move the "Executable file formats" menu to fs/Kconfig.binfmt

2018-08-02 08:06:55 +09:00

MAINTAINERS

appletalk: Add atalk.h header files to MAINTAINERS file

2019-03-06 10:46:43 -08:00

Makefile

Linux 5.0

2019-03-03 15:21:29 -08:00

README

Drop all 00-INDEX files from Documentation/

2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.