Hello:
This series was applied to bpf/bpf-next.git (master)
by Daniel Borkmann <daniel@xxxxxxxxxxxxx>:
On Mon, 21 Nov 2022 15:34:37 +0800 you wrote:
> From: Hou Tao <houtao1@xxxxxxxxxx>
>
> Hi,
>
> The patchset tries to fix the potential use-after-free problem in cgroup
> iterator. The problem is similar with the UAF problem fixed in map
> iterator and the fix is also similar: pinning the iterated resource in
> .init_seq_private() and unpinning it in .fini_seq_private(). An
> alternative fix is pinning iterator link when opening iterator fd, but
> it will make iterator link still being visible after the close of
> iterator link fd and the behavior is different with other link types, so
> just fixing the bug alone by pinning the start cgroup when creating
> cgroup iterator. Also adding a selftests to demonstrate the UAF problem
> when iterating a dead cgroup.
>
> [...]
Here is the summary with links:
- [bpf-next,v3,1/3] bpf: Pin the start cgroup in cgroup_iter_seq_init()
https://git.kernel.org/bpf/bpf-next/c/1a5160d4d8fe
- [bpf-next,v3,2/3] selftests/bpf: Add cgroup helper remove_cgroup()
https://git.kernel.org/bpf/bpf-next/c/2a42461a8831
- [bpf-next,v3,3/3] selftests/bpf: Add test for cgroup iterator on a dead cgroup
https://git.kernel.org/bpf/bpf-next/c/8589e92675aa
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
