Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp3937065pxj; Mon, 21 Jun 2021 09:45:15 -0700 (PDT) X-Google-Smtp-Source: ABdhPJyeRCe7qnFhi8DTuPbLLsT5dWFbFrcW1tXNpBOYnvDFuwMnZW4bibgK21BlSNdSxPEN0lus X-Received: by 2002:a17:906:a3ce:: with SMTP id ca14mr7351640ejb.462.1624293915080; Mon, 21 Jun 2021 09:45:15 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1624293915; cv=none; d=google.com; s=arc-20160816; b=vqn5DbIaXipiSiMs5m09iUfW2aXIZF2ONFmjqU4vaX2Bq5lc2dzyaJ3N81eM1qxPeA HlVIhCJz1F6p0/CwOLpFZWWSH7R9KTvzsQEr0XyUIwWgfucyJtqvvtWtaK+g3bt7NfAw DxZc5O1haii1KRnGBs8LD1xXS1dyvvXodeotTkmWwrfG/e9EtDd3CEoPuX/DOL1IYjLV 7atnWuVQmsdrL+ETHXxXwL9Ygc1fWMWpKpj0eT9IH+G0GaiI9M0HEmVaSMKSzgBJj+MD eeWQ02ott6pu2ijb8+7kQi3B3v5Sbo68AAXiGakGMJzPIWzzZwpzORLuIyOK1zOUNSC2 dqBA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=W5bkARFmtGYQauIDroGQ9+OiJ1rvu2oes2nuHRX4Zis=; b=W//qHp8SN07AraI2Tlx1EDfUufMDFU7RLkHodNZ52wMqu2cFl/0cryQonV/wSBO7pr VNy0Ag/+4och1ov5C+3Cxbtg4mhoe4qP0E94YskdoXKs45PzGbEDXcopLMVDxLBkk+/h 1/F50yCM/kFYIr7HR4fjJZnhJ2MR/UNh0Y+8/hC/fIWbqGLWw4lmCLPeeN/Ns7W4RLOd MRQqyrrwGL9G2VLhu8UfiVwOUbyCbUNfccV2ETSIl36+2LaVyc2ITlaNXRkMh1rVKd+e dpv6YlAbImKiESOmd+pPyYhvA9EI2PH37ndLVkWQpb7dR07eDLauahXxgy5b9wxLAtrI d87g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=pprrU9QR; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id hs7si8603626ejc.659.2021.06.21.09.44.51; Mon, 21 Jun 2021 09:45:15 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=pprrU9QR; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231611AbhFUQms (ORCPT + 99 others); Mon, 21 Jun 2021 12:42:48 -0400 Received: from mail.kernel.org ([198.145.29.99]:33866 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S233095AbhFUQjS (ORCPT ); Mon, 21 Jun 2021 12:39:18 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id A3F81613F8; Mon, 21 Jun 2021 16:29:43 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1624292984; bh=RwaNuAqY/XNA8gP9+yHFrOtXWIhvfFAmJBuffn/O6D4=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=pprrU9QRy/cvPVwyDlVYt8X+NmeA2Rzy1oujFIpRo6rkCd1qMPaA71dfMPDtnjRkh YaC627mDP4YOr1GXI8elLMisD6KpdnMdS5MtYYEO/kdK2DdtsDAB46Ks5IY82P+NEu GT58n94XTldiSQV9Tbju2w8UyLRVIBns6Hy+VjBw= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Changbin Du , Cong Wang , Jakub Kicinski , David Laight , Christian Brauner , "David S. Miller" , Sasha Levin Subject: [PATCH 5.12 054/178] net: make get_net_ns return error if NET_NS is disabled Date: Mon, 21 Jun 2021 18:14:28 +0200 Message-Id: <20210621154924.260353660@linuxfoundation.org> X-Mailer: git-send-email 2.32.0 In-Reply-To: <20210621154921.212599475@linuxfoundation.org> References: <20210621154921.212599475@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Changbin Du [ Upstream commit ea6932d70e223e02fea3ae20a4feff05d7c1ea9a ] There is a panic in socket ioctl cmd SIOCGSKNS when NET_NS is not enabled. The reason is that nsfs tries to access ns->ops but the proc_ns_operations is not implemented in this case. [7.670023] Unable to handle kernel NULL pointer dereference at virtual address 00000010 [7.670268] pgd = 32b54000 [7.670544] [00000010] *pgd=00000000 [7.671861] Internal error: Oops: 5 [#1] SMP ARM [7.672315] Modules linked in: [7.672918] CPU: 0 PID: 1 Comm: systemd Not tainted 5.13.0-rc3-00375-g6799d4f2da49 #16 [7.673309] Hardware name: Generic DT based system [7.673642] PC is at nsfs_evict+0x24/0x30 [7.674486] LR is at clear_inode+0x20/0x9c The same to tun SIOCGSKNS command. To fix this problem, we make get_net_ns() return -EINVAL when NET_NS is disabled. Meanwhile move it to right place net/core/net_namespace.c. Signed-off-by: Changbin Du Fixes: c62cce2caee5 ("net: add an ioctl to get a socket network namespace") Cc: Cong Wang Cc: Jakub Kicinski Cc: David Laight Cc: Christian Brauner Suggested-by: Jakub Kicinski Acked-by: Christian Brauner Signed-off-by: David S. Miller Signed-off-by: Sasha Levin --- include/linux/socket.h | 2 -- include/net/net_namespace.h | 7 +++++++ net/core/net_namespace.c | 12 ++++++++++++ net/socket.c | 13 ------------- 4 files changed, 19 insertions(+), 15 deletions(-) diff --git a/include/linux/socket.h b/include/linux/socket.h index 385894b4a8bb..42222a84167f 100644 --- a/include/linux/socket.h +++ b/include/linux/socket.h @@ -438,6 +438,4 @@ extern int __sys_socketpair(int family, int type, int protocol, int __user *usockvec); extern int __sys_shutdown_sock(struct socket *sock, int how); extern int __sys_shutdown(int fd, int how); - -extern struct ns_common *get_net_ns(struct ns_common *ns); #endif /* _LINUX_SOCKET_H */ diff --git a/include/net/net_namespace.h b/include/net/net_namespace.h index dcaee24a4d87..14b6f7f44532 100644 --- a/include/net/net_namespace.h +++ b/include/net/net_namespace.h @@ -197,6 +197,8 @@ struct net *copy_net_ns(unsigned long flags, struct user_namespace *user_ns, void net_ns_get_ownership(const struct net *net, kuid_t *uid, kgid_t *gid); void net_ns_barrier(void); + +struct ns_common *get_net_ns(struct ns_common *ns); #else /* CONFIG_NET_NS */ #include #include @@ -216,6 +218,11 @@ static inline void net_ns_get_ownership(const struct net *net, } static inline void net_ns_barrier(void) {} + +static inline struct ns_common *get_net_ns(struct ns_common *ns) +{ + return ERR_PTR(-EINVAL); +} #endif /* CONFIG_NET_NS */ diff --git a/net/core/net_namespace.c b/net/core/net_namespace.c index 43b6ac4c4439..cc8dafb25d61 100644 --- a/net/core/net_namespace.c +++ b/net/core/net_namespace.c @@ -641,6 +641,18 @@ void __put_net(struct net *net) } EXPORT_SYMBOL_GPL(__put_net); +/** + * get_net_ns - increment the refcount of the network namespace + * @ns: common namespace (net) + * + * Returns the net's common namespace. + */ +struct ns_common *get_net_ns(struct ns_common *ns) +{ + return &get_net(container_of(ns, struct net, ns))->ns; +} +EXPORT_SYMBOL_GPL(get_net_ns); + struct net *get_net_ns_by_fd(int fd) { struct file *file; diff --git a/net/socket.c b/net/socket.c index 84a8049c2b09..03259cb919f7 100644 --- a/net/socket.c +++ b/net/socket.c @@ -1072,19 +1072,6 @@ static long sock_do_ioctl(struct net *net, struct socket *sock, * what to do with it - that's up to the protocol still. */ -/** - * get_net_ns - increment the refcount of the network namespace - * @ns: common namespace (net) - * - * Returns the net's common namespace. - */ - -struct ns_common *get_net_ns(struct ns_common *ns) -{ - return &get_net(container_of(ns, struct net, ns))->ns; -} -EXPORT_SYMBOL_GPL(get_net_ns); - static long sock_ioctl(struct file *file, unsigned cmd, unsigned long arg) { struct socket *sock; -- 2.30.2