Received: by 2002:a05:6a10:17d3:0:0:0:0 with SMTP id hz19csp2518353pxb; Mon, 19 Apr 2021 07:35:49 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzxGt1ncGBTaPV/KmOVxAurnnvkUTsFVzKKobQOay4LzwMqiNkbGDdmKbZmpWYvjylGDzEI X-Received: by 2002:a17:90a:ec09:: with SMTP id l9mr25383507pjy.141.1618842948875; Mon, 19 Apr 2021 07:35:48 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1618842948; cv=none; d=google.com; s=arc-20160816; b=Bpn/7KYOzNB62mQhxbOQUfq6XY5v30RE+okaa2tfDjHG8w44RqQpITq0MyvBW6+/Ku qqJDKEU/s++pqsx2LiIKrfPj0mFqm5DGqX1rMPD7JtAu9jPH8njvBk+qU1sellrReexG I4QrkzoqNiLYqXN8wL5gPjzhlpaQf8UuhFb3JKKNQL7Qy9P+mQS9dZIazF1UyWa0U8L9 aiGRfD42fH4/3LoUGUr3DIGCaPucx4xGmJXmEY9uCpdqMPJ27gQGOM6gMctHRP/j+Lwi jKKZHVllqMN5aPC8GNoGAXMpho0Qa/+jEis6MhShxdv5hOoqkJfz+AbamOA8L//Wxx5P UR1w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=gOAsTkEPDOYd88lROFYibER2fbF1vVK5UpVKwy8xUxc=; b=uKFIl83Sqlp+hw1Fsq8ScB6wPlRt9wqulJ20oGpcqEkbB0qoqjOZn2LwXUx84kWgIh VT9Mz90XrO3NYkfOcov2D72AredOXfVi1IDnDYXT2yIfff2vMJbBwUmQXqtMR/0NK9+x UnNhehfQnqnth4ha6PijvxwR4S+xbaKr4sleVWC24tyqe4NIV7nvHxwo7j7JlQYwvrrD I36/lEHBcFNAwTWEVIvGnCMEabP66nPUFb5ABQrvmzAghs8yycRlzb0e9+ANj+i3c0qf ugV/dRUYhN2nT1mpydVNx5u5yVSEDjXrtUVMSaamM5fBHELL5HVjVW/RzH9bPpMQaqHa OfBg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=F0mbXCOs; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id s13si10331951pfc.346.2021.04.19.07.35.35; Mon, 19 Apr 2021 07:35:48 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=F0mbXCOs; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S240506AbhDSNR0 (ORCPT + 99 others); Mon, 19 Apr 2021 09:17:26 -0400 Received: from mail.kernel.org ([198.145.29.99]:47332 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S240502AbhDSNOS (ORCPT ); Mon, 19 Apr 2021 09:14:18 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id EE437613C0; Mon, 19 Apr 2021 13:12:49 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1618837970; bh=B7G27NmKOcMt7b22fMTYWdLZCW+CHKy93lnSWLRJf6w=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=F0mbXCOshazvry5ZofEGbtCPHIE4Xhofvsp8MbOviOIMlkYIEJJoN5zOrSTcxDwCv IebwjCvG8iUnLjbv/DFqPGWSQYpYNRe1mXpcMBEYq6SkmYdAWysf1VilSef6O5VMWu g6TTuRQ0tFCrRXNCFS0tLKH05qgYWd/75837/vtM= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Eric Dumazet , Guenter Roeck , Xuan Zhuo , "Michael S. Tsirkin" , Jason Wang , "David S. Miller" Subject: [PATCH 5.11 102/122] gro: ensure frag0 meets IP header alignment Date: Mon, 19 Apr 2021 15:06:22 +0200 Message-Id: <20210419130533.622969374@linuxfoundation.org> X-Mailer: git-send-email 2.31.1 In-Reply-To: <20210419130530.166331793@linuxfoundation.org> References: <20210419130530.166331793@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Eric Dumazet commit 38ec4944b593fd90c5ef42aaaa53e66ae5769d04 upstream. After commit 0f6925b3e8da ("virtio_net: Do not pull payload in skb->head") Guenter Roeck reported one failure in his tests using sh architecture. After much debugging, we have been able to spot silent unaligned accesses in inet_gro_receive() The issue at hand is that upper networking stacks assume their header is word-aligned. Low level drivers are supposed to reserve NET_IP_ALIGN bytes before the Ethernet header to make that happen. This patch hardens skb_gro_reset_offset() to not allow frag0 fast-path if the fragment is not properly aligned. Some arches like x86, arm64 and powerpc do not care and define NET_IP_ALIGN as 0, this extra check will be a NOP for them. Note that if frag0 is not used, GRO will call pskb_may_pull() as many times as needed to pull network and transport headers. Fixes: 0f6925b3e8da ("virtio_net: Do not pull payload in skb->head") Fixes: 78a478d0efd9 ("gro: Inline skb_gro_header and cache frag0 virtual address") Signed-off-by: Eric Dumazet Reported-by: Guenter Roeck Cc: Xuan Zhuo Cc: "Michael S. Tsirkin" Cc: Jason Wang Acked-by: Michael S. Tsirkin Tested-by: Guenter Roeck Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman --- net/core/dev.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) --- a/net/core/dev.c +++ b/net/core/dev.c @@ -5877,7 +5877,8 @@ static void skb_gro_reset_offset(struct NAPI_GRO_CB(skb)->frag0_len = 0; if (!skb_headlen(skb) && pinfo->nr_frags && - !PageHighMem(skb_frag_page(frag0))) { + !PageHighMem(skb_frag_page(frag0)) && + (!NET_IP_ALIGN || !(skb_frag_off(frag0) & 3))) { NAPI_GRO_CB(skb)->frag0 = skb_frag_address(frag0); NAPI_GRO_CB(skb)->frag0_len = min_t(unsigned int, skb_frag_size(frag0),