Received: by 2002:a05:7412:8d10:b0:f3:1519:9f41 with SMTP id bj16csp6383488rdb; Thu, 14 Dec 2023 17:36:22 -0800 (PST) X-Google-Smtp-Source: AGHT+IEv/Fgs1p5OUs6VcQUMqj3MkuQwW/fyFbPRNSWPjgqjUu6xMZ95aAjoZV6N8ks8U0+6xWlh X-Received: by 2002:a05:622a:19a9:b0:425:a117:90ec with SMTP id u41-20020a05622a19a900b00425a11790ecmr14609021qtc.66.1702604182721; Thu, 14 Dec 2023 17:36:22 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1702604182; cv=none; d=google.com; s=arc-20160816; b=nvxg5MtYo3KamAYyU0PF9QSEieoU5iC4HPgVHEafZvNr0aMjW1y7pgXFo+JK17JKqE oq8uMDYhTYKw1seYdkL+7ilYa+H59DT+XIiNcH6TaatNsp5nYhk27Jb02xBvwaj93lA/ awz1RlatkLkVwoYDUxyyUk9c5wQ3ZkLHWjANUdg1Em3oWJ469+XgqRq/6/TwxqgBTPU3 2pbCEjJbZc28f3UPtn3OkFz/cKS/RZQ10y1GN4H9dCXr2DZWyDpj2TJzQsQT0U/NbRCV hSBaT4yl9dUcH5Ju+hz5/ebKeUAZYjJg8Ilj11dyaXcOez+X9sMMUxJq3onsPT0UBuBe 7lrA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=cc:to:subject:message-id:date:from:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:dkim-signature; bh=msKpLJDj2E+6ke2GakBcCsbJMiMSu4+2qkb0cKHtw4I=; fh=iSQD847iOK0xwKFHLK3q7zHi4idS5mYG9STvds/uuxw=; b=qoJZj9aaiKX8as9dAser9V0FjWclWMtJRJpHUgUR1ShTxngd7l6GdlnmEx+Fpt+43B v5lwAp/NO+Y5akiLb3M9kd4ndH32yCPLPoskGtL1zuidv+aMffHRIUDnaXO6UnrWdzcC BeFOFiPUjcRgA036dqLJltycxWyPvDQIqgMvdy45MjidWS0by6f8O6FmK5mL1MpLeaEa eYPIuI9GznRsy47U5k9vsPft7ASV+SZQi8UMkDy2AtJcNXh8rT5P5opGporuvMf5rRR4 ZYn8egZFdZT2tRv4HhG9RJe09M6VEc8du/fRBv9PoONCsXMbdsJKCo2fqy8WS5qiACyF SCrg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=XbzDrMrG; spf=pass (google.com: domain of linux-kernel+bounces-317-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-317-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223]) by mx.google.com with ESMTPS id s23-20020ac85ed7000000b004258614b585si7646198qtx.122.2023.12.14.17.36.22 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 14 Dec 2023 17:36:22 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-317-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=XbzDrMrG; spf=pass (google.com: domain of linux-kernel+bounces-317-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-317-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id 78FA51C220FE for ; Fri, 15 Dec 2023 01:36:22 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 3F742806; Fri, 15 Dec 2023 01:36:15 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="XbzDrMrG" X-Original-To: linux-kernel@vger.kernel.org Received: from mail-lf1-f42.google.com (mail-lf1-f42.google.com [209.85.167.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id DB5E8650; Fri, 15 Dec 2023 01:36:12 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=gmail.com Received: by mail-lf1-f42.google.com with SMTP id 2adb3069b0e04-50e1d61b657so140123e87.0; Thu, 14 Dec 2023 17:36:12 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1702604171; x=1703208971; darn=vger.kernel.org; h=cc:to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=msKpLJDj2E+6ke2GakBcCsbJMiMSu4+2qkb0cKHtw4I=; b=XbzDrMrGgJPUkNzAq6pRwJqjXj9NmJA2p6qRpgeoEoEIk6aiH102nd3I8tRwfzHOlB N5ha6teHRbG6elw/h2rXdEZczdSzZCR8PCn1DDAcydcje4VdGaiZBGNOREqSerHwJX/+ YuRCpcAatJ1qjKQEF+7p/QW5mzbvaPde3CLBGhpHMKJofr3CgWayhpO3c6F5D+ENG2ju d+ciW15YWJWrVDdi2E7E54PGCIHhtItrKLYOcXI2tLJk4Krejc2acZtt4WYEUsVmdAAG jnym2nQezzKbkfNBu/6wvmFzuTMU1b5LzWR71pnU2EZ+sa2LKrA5vB+vq0SHr6rsrazB iy+g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1702604171; x=1703208971; h=cc:to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=msKpLJDj2E+6ke2GakBcCsbJMiMSu4+2qkb0cKHtw4I=; b=iFHxOAKlnPlmXM+tNsAebrxRwoQK9iES5ojs9/9Fc0txeYN/SRQoL8qbXhy74fG6Ri GAF+BLUcjazPbF36N0kgG/JhT44I+ZK1R0IOjWgOqJMOLQLYpgzLprGnTaH0MvNUnFek LPz9PxxBWiNFuLuTOPE4T91n3m64bF3zAKRl5ziZeToD/qgSg5x7A5j7HJieQasW4WVz 6ir03UtKjFnnpqqdINfcUoiWgj15ouZ0BBk8tifuM550UfpFywgGBkmBnUqOpD0yRnWs 4bQhcyJq42vf+dUeWMblM+EQXeYus61vF3sXWtzMCkTX0qom4881nEbrANsFFN2FsKeA CruQ== X-Gm-Message-State: AOJu0Yxh4hPfavufgHli9TiZ5Etn06gHD1kCgUhitB0kuXfsaqui/iEb rs3cl2QOx6xZNn1me52oNdYmrHQkTgfYN2RU3NfI4fpy6AA= X-Received: by 2002:a05:6512:1322:b0:50d:1f0c:2b24 with SMTP id x34-20020a056512132200b0050d1f0c2b24mr4973835lfu.20.1702604170570; Thu, 14 Dec 2023 17:36:10 -0800 (PST) Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 From: Steve French Date: Thu, 14 Dec 2023 19:35:59 -0600 Message-ID: Subject: [GIT PULL] four smb3 client fixes To: Linus Torvalds Cc: Paulo Alcantara , Robert Morris , CIFS , LKML Content-Type: text/plain; charset="UTF-8" Please pull the following changes since commit a39b6ac3781d46ba18193c9dbb2110f31e9bffe9: Linux 6.7-rc5 (2023-12-10 14:33:40 -0800) are available in the Git repository at: git://git.samba.org/sfrench/cifs-2.6.git tags/6.7-rc5-smb3-client-fixes for you to fetch changes up to 3a42709fa909e22b0be4bb1e2795aa04ada732a3: smb: client: fix OOB in smb2_query_reparse_point() (2023-12-11 12:30:39 -0600) ---------------------------------------------------------------- Four import client fixes addressing potential overflows, all marked for stable as well - address OOBs and null dereference found by Dr. Morris's recent analysis and fuzzing ---------------------------------------------------------------- Paulo Alcantara (4): smb: client: fix OOB in receive_encrypted_standard() smb: client: fix potential OOBs in smb2_parse_contexts() smb: client: fix NULL deref in asn1_ber_decoder() smb: client: fix OOB in smb2_query_reparse_point() fs/smb/client/cached_dir.c | 17 +++++++--- fs/smb/client/smb2misc.c | 26 ++++++--------- fs/smb/client/smb2ops.c | 40 +++++++++++++---------- fs/smb/client/smb2pdu.c | 93 ++++++++++++++++++++++++++++++++---------------------- fs/smb/client/smb2proto.h | 12 ++++--- 5 files changed, 109 insertions(+), 79 deletions(-) -- Thanks, Steve