linux-next

mirror of https://github.com/edk2-porting/linux-next.git synced 2025-01-10 06:34:17 +08:00

History

Florian Westphal 1b789577f6 netfilter: arp_tables: init netns pointer in xt_tgchk_param struct We get crash when the targets checkentry function tries to make use of the network namespace pointer for arptables. When the net pointer got added back in 2010, only ip/ip6/ebtables were changed to initialize it, so arptables has this set to NULL. This isn't a problem for normal arptables because no existing arptables target has a checkentry function that makes use of par->net. However, direct users of the setsockopt interface can provide any target they want as long as its registered for ARP or UNPSEC protocols. syzkaller managed to send a semi-valid arptables rule for RATEEST target which is enough to trigger NULL deref: kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN RIP: xt_rateest_tg_checkentry+0x11d/0xb40 net/netfilter/xt_RATEEST.c:109 [..] xt_check_target+0x283/0x690 net/netfilter/x_tables.c:1019 check_target net/ipv4/netfilter/arp_tables.c:399 [inline] find_check_entry net/ipv4/netfilter/arp_tables.c:422 [inline] translate_table+0x1005/0x1d70 net/ipv4/netfilter/arp_tables.c:572 do_replace net/ipv4/netfilter/arp_tables.c:977 [inline] do_arpt_set_ctl+0x310/0x640 net/ipv4/netfilter/arp_tables.c:1456 Fixes: `add6746124` ("netfilter: add struct net * to target parameters") Reported-by: syzbot+d7358a458d8a81aee898@syzkaller.appspotmail.com Signed-off-by: Florian Westphal <fw@strlen.de> Acked-by: Cong Wang <xiyou.wangcong@gmail.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>		2019-12-30 13:09:04 +01:00
..
arp_tables.c	netfilter: arp_tables: init netns pointer in xt_tgchk_param struct	2019-12-30 13:09:04 +01:00
arpt_mangle.c	netfilter: ipv4: prefer skb_ensure_writable	2019-05-31 18:02:46 +02:00
arptable_filter.c	treewide: Add SPDX license identifier for more missed files	2019-05-21 10:50:45 +02:00
ip_tables.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
ipt_ah.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
ipt_CLUSTERIP.c	netfilter: Update obsolete comments referring to ip_conntrack	2019-07-16 13:17:00 +02:00
ipt_ECN.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2019-06-22 08:59:24 -04:00
ipt_REJECT.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
ipt_rpfilter.c	netfilter: Fix rpfilter dropping vrf packets by mistake	2019-07-16 13:16:47 +02:00
ipt_SYNPROXY.c	netfilter: synproxy: rename mss synproxy_options field	2019-08-03 18:39:08 +02:00
iptable_filter.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
iptable_mangle.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
iptable_nat.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
iptable_raw.c	Update my email address	2019-06-10 13:00:24 +02:00
iptable_security.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
Kconfig	netfilter: fix coding-style errors.	2019-09-13 11:39:38 +02:00
Makefile	netfilter: fix coding-style errors.	2019-09-13 11:39:38 +02:00
nf_defrag_ipv4.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
nf_dup_ipv4.c	netfilter: drop bridge nf reset from nf_reset	2019-10-01 18:42:15 +02:00
nf_flow_table_ipv4.c	netfilter: nf_flow_table_offload: add IPv6 support	2019-11-15 23:44:47 +01:00
nf_log_arp.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
nf_log_ipv4.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
nf_nat_h323.c	netfilter: nf_conntrack_sip: fix expectation clash	2019-07-16 13:16:59 +02:00
nf_nat_pptp.c	treewide: Add SPDX license identifier for more missed files	2019-05-21 10:50:45 +02:00
nf_nat_snmp_basic_main.c	netfilter: ipv4: prefer skb_ensure_writable	2019-05-31 18:02:46 +02:00
nf_nat_snmp_basic.asn1	netfilter: nf_nat_snmp_basic: use asn1 decoder library	2018-01-19 13:59:07 +01:00
nf_reject_ipv4.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
nf_socket_ipv4.c	icmp: remove duplicate code	2019-11-05 14:03:11 -08:00
nf_tproxy_ipv4.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2019-06-22 08:59:24 -04:00
nft_dup_ipv4.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
nft_fib_ipv4.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00
nft_reject_ipv4.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500	2019-06-19 17:09:55 +02:00