Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "zhangpeng (AS)" <zhangpeng362@xxxxxxxxxx>
Subject: Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
From: Eric Dumazet <edumazet@xxxxxxxxxx>
Date: Thu, 25 Jan 2024 11:31:42 +0100
Cc: Matthew Wilcox <willy@xxxxxxxxxxxxx>, linux-mm@xxxxxxxxx, linux-fsdevel@xxxxxxxxxxxxxxx, netdev@xxxxxxxxxxxxxxx, akpm@xxxxxxxxxxxxxxxxxxxx, davem@xxxxxxxxxxxxx, dsahern@xxxxxxxxxx, kuba@xxxxxxxxxx, pabeni@xxxxxxxxxx, arjunroy@xxxxxxxxxx, wangkefeng.wang@xxxxxxxxxx
In-reply-to: <531c536d-a7d1-2be5-10aa-8d6eb4dcb5c9@huawei.com>

On Thu, Jan 25, 2024 at 10:22 AM zhangpeng (AS) <zhangpeng362@xxxxxxxxxx> wrote:
>

>
> This patch can fix this issue.
>
>

Great, I will submit this patch for review then, thanks a lot !

>
> If all the pages that need to be inserted by TCP zerocopy are
> page->mapping == NULL, this solution could be used.

At least the patch looks sane for stable submission.

If we need to extend functionality, it can be done in future kernels.

References:
- [RFC PATCH] filemap: add mapping_mapped check in filemap_unaccount_folio()
  - From: Peng Zhang
- Re: [RFC PATCH] filemap: add mapping_mapped check in filemap_unaccount_folio()
  - From: Matthew Wilcox
- Re: [RFC PATCH] filemap: add mapping_mapped check in filemap_unaccount_folio()
  - From: zhangpeng (AS)
- SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Matthew Wilcox
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Matthew Wilcox
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: zhangpeng (AS)
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: zhangpeng (AS)
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: zhangpeng (AS)

Prev by Date: Re: [PATCH] exfat: fix file not locking when writing zeros in exfat_file_mmap()
Next by Date: [PATCH net] tcp: add sanity checks to rx zerocopy
Previous by thread: Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
Next by thread: [joel-granados:jag/sysctl_remove_empty_elem] [sysctl] 15acdfcefd: sysctl_table_check_failed
Index(es):
- Date
- Thread

[Index of Archives] [Linux Ext4 Filesystem] [Union Filesystem] [Filesystem Testing] [Ceph Users] [Ecryptfs] [NTFS 3] [AutoFS] [Kernel Newbies] [Share Photos] [Security] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux Cachefs] [Reiser Filesystem] [Linux RAID] [NTFS 3] [Samba] [Device Mapper] [CEPH Development]