Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "zhangpeng (AS)" <zhangpeng362@xxxxxxxxxx>
Subject: Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
From: Eric Dumazet <edumazet@xxxxxxxxxx>
Date: Thu, 25 Jan 2024 11:31:42 +0100
Cc: Matthew Wilcox <willy@xxxxxxxxxxxxx>, linux-mm@xxxxxxxxx, linux-fsdevel@xxxxxxxxxxxxxxx, netdev@xxxxxxxxxxxxxxx, akpm@xxxxxxxxxxxxxxxxxxxx, davem@xxxxxxxxxxxxx, dsahern@xxxxxxxxxx, kuba@xxxxxxxxxx, pabeni@xxxxxxxxxx, arjunroy@xxxxxxxxxx, wangkefeng.wang@xxxxxxxxxx
In-reply-to: <531c536d-a7d1-2be5-10aa-8d6eb4dcb5c9@huawei.com>
References: <20240119092024.193066-1-zhangpeng362@huawei.com> <Zap7t9GOLTM1yqjT@casper.infradead.org> <5106a58e-04da-372a-b836-9d3d0bd2507b@huawei.com> <Za6SD48Zf0CXriLm@casper.infradead.org> <CANn89iL4qUXsVDRNGgBOweZbJ6ErWMsH+EpOj-55Lky8JEEhqQ@mail.gmail.com> <Za6h-tB7plgKje5r@casper.infradead.org> <CANn89iJDNdOpb6L6PkrAcbGcsx6_v4VD0v2XFY77g7tEnJEXXQ@mail.gmail.com> <4f78fea2-ced6-fc5a-c7f2-b33fcd226f06@huawei.com> <CANn89iKbyTRvWEE-3TyVVwTa=N2KsiV73-__2ASktt2hrauQ0g@mail.gmail.com> <d68f50a5-8d83-99ba-1a5a-7f119cd52029@huawei.com> <CANn89iJSxsx_6oTM+ggo90vacNM33e_DpgJJg1HQRfkdj3ewqg@mail.gmail.com> <531c536d-a7d1-2be5-10aa-8d6eb4dcb5c9@huawei.com>

On Thu, Jan 25, 2024 at 10:22 AM zhangpeng (AS) <zhangpeng362@xxxxxxxxxx> wrote:
>

>
> This patch can fix this issue.
>
>

Great, I will submit this patch for review then, thanks a lot !

>
> If all the pages that need to be inserted by TCP zerocopy are
> page->mapping == NULL, this solution could be used.

At least the patch looks sane for stable submission.

If we need to extend functionality, it can be done in future kernels.

References:
- [RFC PATCH] filemap: add mapping_mapped check in filemap_unaccount_folio()
  - From: Peng Zhang
- Re: [RFC PATCH] filemap: add mapping_mapped check in filemap_unaccount_folio()
  - From: Matthew Wilcox
- Re: [RFC PATCH] filemap: add mapping_mapped check in filemap_unaccount_folio()
  - From: zhangpeng (AS)
- SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Matthew Wilcox
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Matthew Wilcox
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: zhangpeng (AS)
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: zhangpeng (AS)
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: Eric Dumazet
- Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
  - From: zhangpeng (AS)

Prev by Date: [RFC PATCH v1 17/28] prctl: arch-agnostic prctl for shadow stack
Next by Date: Re: [PATCH v2] mm/memory-failure: fix crash in split_huge_page_to_list from soft_offline_page
Previous by thread: Re: SECURITY PROBLEM: Any user can crash the kernel with TCP ZEROCOPY
Next by thread: [PATCH v2 0/2] mm/zswap: optimize the scalability of zswap rb-tree
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Bugtraq] [Linux OMAP] [Linux MIPS] [eCos] [Asterisk Internet PBX] [Linux API]