On Mon, Jan 28, 2019 at 09:23:20PM +0100, Daniel Borkmann wrote:
The following patches are targeted at 4.20 stable tree.
Thanks!
Daniel Borkmann (10):
bpf: move {prev_,}insn_idx into verifier env
bpf: move tmp variable into ax register in interpreter
bpf: enable access to ax register also from verifier rewrite
bpf: restrict map value pointer arithmetic for unprivileged
bpf: restrict stack pointer arithmetic for unprivileged
bpf: restrict unknown scalars of mixed signed bounds for unprivileged
bpf: fix check_map_access smin_value test when pointer contains offset
bpf: prevent out of bounds speculation on pointer arithmetic
bpf: fix sanitation of alu op with pointer / scalar type from
different paths
bpf: fix inner map masking to prevent oob under speculation
include/linux/bpf_verifier.h | 13 ++
include/linux/filter.h | 10 +-
kernel/bpf/core.c | 54 +++--
kernel/bpf/map_in_map.c | 17 +-
kernel/bpf/verifier.c | 369 +++++++++++++++++++++++++++++------
5 files changed, 377 insertions(+), 86 deletions(-)
I've queued these and the 4.19 ones, thank you.
--
Thanks,
Sasha
