Received: by 2002:a05:6a11:4021:0:0:0:0 with SMTP id ky33csp1242758pxb; Sun, 19 Sep 2021 10:32:14 -0700 (PDT) X-Google-Smtp-Source: ABdhPJw10clC9Jy7N3mVwk5GrpUdqzz6257mdCqe4we9UlNVwNPqLv+XWUNtpmQFlx2pKokZCeHD X-Received: by 2002:a05:6402:455:: with SMTP id p21mr24702633edw.309.1632072734727; Sun, 19 Sep 2021 10:32:14 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1632072734; cv=none; d=google.com; s=arc-20160816; b=kMyhh6tW2d1e2Q3S136QMstZGF6RqfY7HFvmmvW5f3lZCDw5xM5t8AmnVcds6fy8YL PA/cqo44Szuf7WGDmAA+a8bS9eq8wYOuZx3kdJFzB+OsTbpbEk0cWRT1jHjqhyUAO6do 9GuQvFciTHAmUiWf2tfZJCf6peuN2nBXGpr+WkVq/Ka5+tjtV6Ct9NV5wDdNWfhiC/OD zcRGd/SctJElFco0RQYIIAcgX/QQg7Iie4AVDd1GYL+JEIkxtgQj6pLFc5Px1/wqaoMz zDz6bwEA5ZOvzH292rSmLxHh5FKoGKumjzRXHPPNhEH+J6Lx4HzHSqEdfe7HXrNe1T5u 9qbw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:mime-version :dkim-signature; bh=U87PmLEulR4GIkAwC4Q7eR5y4RC0U0UQ55s5eDtGOsc=; b=Rl0X/ysDpPqHnLwRUrBiy9NISNQhax/lVPwK4KV7Vgd37oRHxXAka1YCaAkN20fII1 SB3TOiA5QeUoIkpZIlFs9S1q3rh2KNm20Gb+lfVj2NGBpWhjnGNgYH7UFHpjI78Vy0QU ZibjHdm3kQDLP5sBJqRUJViE+zJaPXS9yEHV1hQj2sgS+gF86HluXVrwpjCDdML7uBR2 nXUaSo5UNsDlqn6n8Q23mejcVPuS+CVN47mF45mi7m4G3NwMZcPQ3ZEm0D5dtDea/+b4 S07bGNzepzk0YotY99kXwk0IWYzEf76jzKT8BKohFIkKeANR5mzQEYPNfTVqGo0iDcoX U6eQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=QEbyTTSv; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id a18si12807563edj.264.2021.09.19.10.31.45; Sun, 19 Sep 2021 10:32:14 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=QEbyTTSv; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231805AbhISOYM (ORCPT + 99 others); Sun, 19 Sep 2021 10:24:12 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:43044 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230227AbhISOYJ (ORCPT ); Sun, 19 Sep 2021 10:24:09 -0400 Received: from mail-lf1-x12c.google.com (mail-lf1-x12c.google.com [IPv6:2a00:1450:4864:20::12c]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 56648C061574; Sun, 19 Sep 2021 07:22:44 -0700 (PDT) Received: by mail-lf1-x12c.google.com with SMTP id z24so29237178lfu.13; Sun, 19 Sep 2021 07:22:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:from:date:message-id:subject:to:cc; bh=U87PmLEulR4GIkAwC4Q7eR5y4RC0U0UQ55s5eDtGOsc=; b=QEbyTTSv86EC1cuq8WJnQbl9fi8wdYQDk19PS9ojjFFhUF+MBKPSSSj/GE1O+7lNS7 z8E/lJJFMHrASUa1Ej3C2yaaBPUuFqeIehR6BTKMbHo2xN3bumDySBBsNJbw8mLGFHDU kZpHsuh/spWVGN1y3Jm4gTTeBgVIf6uS9f3DJUXSL1Hoihf7dTyJ2Kmaag0C4uBSsoOt 4GYrk4mpybu+W1tUMJGrQJbe7s7mCcpHRl3uBZ2RIoeaefl9Y/KyiTwCxxklOzmDp+jL S4NGUQYkotV1q2VDyy9whnoIE/nZxWPRehBaSa6NAgzekJcqz25Eb843e7q0hL+HnUTs hKaQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc; bh=U87PmLEulR4GIkAwC4Q7eR5y4RC0U0UQ55s5eDtGOsc=; b=tn0d7avifDv8wfXoqls1nQ6VFywN2VARE5CPddJ2fEpdHFoqkA2BthRvj8ZVZgmBTU POlPh26rwfj8SNECElNQEOXwIccXv08YpPL296Tgkg6ZFAHgg2fVldS/Hi1ZSXnAi1et CBbNYDhCZszjqONeqOPVAPeF9zq9B9HcEsXQoWB1bWxxZ9iWfuM/bFn4Ccd6MGZGv+yj 20ZEshy8cdZi0FP/K6In0y8rKeG567hY5c6rHydWwlm16CxKVsx9a4QwN7VtlbywLc0u vVh+X296Wj0QcQO7uv3phPECcUI0aEro3vs0BqL39U/wfpwPO+Y8SbLVEVYzicDnRyS0 aCYw== X-Gm-Message-State: AOAM5309GD9MJr/rNKLxikZ8U0Md5ABypQLCjah7X9QmTT8uh6FQa74l rHRheIfym6kFSqfABdr+Au2grKZUfEvhAn/WC6b6lWuvhqQ= X-Received: by 2002:a2e:1652:: with SMTP id 18mr11675790ljw.23.1632061362579; Sun, 19 Sep 2021 07:22:42 -0700 (PDT) MIME-Version: 1.0 From: Steve French Date: Sun, 19 Sep 2021 09:22:31 -0500 Message-ID: Subject: [GIT PULL] ksmbd server security fixes To: Linus Torvalds Cc: CIFS , LKML Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Please pull the following changes since commit bf9f243f23e6623f310ba03fbb14e10ec3a61290: Merge tag '5.15-rc-ksmbd-part2' of git://git.samba.org/ksmbd (2021-09-09 16:17:14 -0700) are available in the Git repository at: git://git.samba.org/ksmbd.git tags/5.15-rc1-ksmbd for you to fetch changes up to 6d56262c3d224699b29b9bb6b4ace8bab7d692c2: ksmbd: add validation for FILE_FULL_EA_INFORMATION of smb2_get_info (2021-09-18 10:51:38 -0500) ---------------------------------------------------------------- 3 ksmbd fixes: including an important security fix for path processing, and a missing buffer overflow check, and a trivial fix for incorrect header inclusion There are three additional patches (and also a patch to improve symlink checks) for other buffer overflow cases that are being reviewed and tested. Regression test results: http://smb3-test-rhel-75.southcentralus.cloudapp.azure.com/#/builders/8/builds/67 and https://app.travis-ci.com/github/namjaejeon/ksmbd/builds/237919800 ---------------------------------------------------------------- Hyunchul Lee (1): ksmbd: prevent out of share access Mike Galbraith (1): ksmbd: transport_rdma: Don't include rwlock.h directly Namjae Jeon (1): ksmbd: add validation for FILE_FULL_EA_INFORMATION of smb2_get_info fs/ksmbd/misc.c | 76 +++++++++++++++++++++++++++++++++++++++++------ fs/ksmbd/misc.h | 3 +- fs/ksmbd/smb2pdu.c | 18 +++++++---- fs/ksmbd/transport_rdma.c | 1 - 4 files changed, 81 insertions(+), 17 deletions(-) -- Thanks, Steve