Received: by 2002:a05:6a10:f3d0:0:0:0:0 with SMTP id a16csp2893965pxv;
        Mon, 12 Jul 2021 04:38:25 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxqE6/gvkuNw2BgW+hk3eD5Z5A4z8LOxm0Qelc0AtcdFms5vXbU/QheLwt40B3krRMnn9yG
X-Received: by 2002:a92:1906:: with SMTP id 6mr32365644ilz.273.1626089905331;
        Mon, 12 Jul 2021 04:38:25 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1626089905; cv=none;
        d=google.com; s=arc-20160816;
        b=ERb9+Ox0OJ3Q2MahPHYSLnLUigvSjsQvQdYkvZkHmNticql6EVM1uEa2R+RjbfWFzt
         zpUwG8KS1v6Q7K5dij2CFyGuBSHvpO+DBuOs5jIfou2k0hjW7u2PTe6mcwg3bVyd9Nng
         l8TChMFmXQuYk+dJu6pK+rWB2twVDvt6sEaF/6oFrDVw6EEjrVZoIyUH3489avmJrLOq
         0lVMVLMetwypDRyV9r8s0KXHF/3XZ/XqRUHMiC5WMJVUBpHtPivq1rDZQr1h5jKlp9kY
         JhzOrgrj/LpKbG0XzMlQPMTP/GzOirC0JkLfeENlSdnLwOUNt010EONuPGXi99kKgNQS
         T2fg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :user-agent:references:in-reply-to:message-id:date:subject:cc:to
         :from:dkim-signature;
        bh=9knVBZO7ljtRoWauA88UfhTSic2HscSl6j2K8FJ5Rts=;
        b=LsjQY4imch19hgri3DLrOozSn5GeirL/wyEJxZpf32aIXuD6hiX2qIRdY4t0a4V+gi
         ZBVrxuofAXXiynDyU656bTeGaQceV3dTmcU6y4H2U+rJ+XaoeIhkzdUHR65D5NFgLzr3
         fOPY4U/0iRFdPAaKz+qRPvDYVzxMDgtjOQhH1+0XKifbtYaRqR8/LeUol+AX8+qDWXeZ
         9NzoWdubLlC62fILvAv2zlhD2B7FNIxg0AgsRsb2b/7Xk19Y/Ift2VZbwOCpmyoMczX8
         pl/GhOaAhQOohGCu9bZl6rkw6ylEV6Lw6uDG1anBJ09Cr/juj41fHiXCIpd0L4Emgm+H
         /OYg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=eNOp75yb;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id q1si18416666ile.21.2021.07.12.04.38.13;
        Mon, 12 Jul 2021 04:38:25 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=eNOp75yb;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1354876AbhGLIPl (ORCPT <rfc822;maloy021189ju@gmail.com>
        + 99 others); Mon, 12 Jul 2021 04:15:41 -0400
Received: from mail.kernel.org ([198.145.29.99]:43946 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1345414AbhGLH3n (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 12 Jul 2021 03:29:43 -0400
Received: by mail.kernel.org (Postfix) with ESMTPSA id D566A614A5;
        Mon, 12 Jul 2021 07:26:23 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org;
        s=korg; t=1626074784;
        bh=3W871Qfg9H1Bij5bI2sZFMODcqMe4MuXxmNLYwDXHxc=;
        h=From:To:Cc:Subject:Date:In-Reply-To:References:From;
        b=eNOp75ybx3i42euss1e/ZSWvfujk3j5iwTQUBNiLnOsZk9bs4uXN5zoxgNzS74JPi
         171zxnnKCrWo1QEPprziEkFv1jcdxImj55D7E827Yv/VZJqMtETL9tfnRnmrync1q3
         qEtiEU2j7o+qeF/tBsMHPrxf4y6iIu0PIZxlCXmc=
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     linux-kernel@vger.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        stable@vger.kernel.org, Dmitry Kadashev <dkadashev@gmail.com>,
        Jens Axboe <axboe@kernel.dk>
Subject: [PATCH 5.12 696/700] io_uring: add IOPOLL and reserved field checks to IORING_OP_UNLINKAT
Date:   Mon, 12 Jul 2021 08:12:59 +0200
Message-Id: <20210712061049.992994867@linuxfoundation.org>
X-Mailer: git-send-email 2.32.0
In-Reply-To: <20210712060924.797321836@linuxfoundation.org>
References: <20210712060924.797321836@linuxfoundation.org>
User-Agent: quilt/0.66
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

From: Jens Axboe <axboe@kernel.dk>

commit 22634bc5620d29765e5199c7b230a372c7ddcda2 upstream.

We can't support IOPOLL with non-pollable request types, and we should
check for unused/reserved fields like we do for other request types.

Fixes: 14a1143b68ee ("io_uring: add support for IORING_OP_UNLINKAT")
Cc: stable@vger.kernel.org
Reported-by: Dmitry Kadashev <dkadashev@gmail.com>
Signed-off-by: Jens Axboe <axboe@kernel.dk>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

---
 fs/io_uring.c |    4 ++++
 1 file changed, 4 insertions(+)

--- a/fs/io_uring.c
+++ b/fs/io_uring.c
@@ -3548,6 +3548,10 @@ static int io_unlinkat_prep(struct io_ki
 	struct io_unlink *un = &req->unlink;
 	const char __user *fname;
 
+	if (unlikely(req->ctx->flags & IORING_SETUP_IOPOLL))
+		return -EINVAL;
+	if (sqe->ioprio || sqe->off || sqe->len || sqe->buf_index)
+		return -EINVAL;
 	if (unlikely(req->flags & REQ_F_FIXED_FILE))
 		return -EBADF;