Skip to main content

Browse the archive

https://github.com/torvalds/linux
23 October 2021, 00:29:24 UTC
Revision 4e9a5ae8df5b3365183150f6df49e49dece80d8c authored by Masami Hiramatsu on 03 December 2020, 04:50:37 UTC, committed by Borislav Petkov on 06 December 2020, 08:58:13 UTC 
x86/uprobes: Do not use prefixes.nbytes when looping over prefixes.bytes
 
Since insn.prefixes.nbytes can be bigger than the size of
insn.prefixes.bytes[] when a prefix is repeated, the proper check must
be

  insn.prefixes.bytes[i] != 0 and i < 4

instead of using insn.prefixes.nbytes.

Introduce a for_each_insn_prefix() macro for this purpose. Debugged by
Kees Cook <keescook@chromium.org>.

 [ bp: Massage commit message, sync with the respective header in tools/
   and drop "we". ]

Fixes: 2b1444983508 ("uprobes, mm, x86: Add the ability to install and remove uprobes breakpoints")
Reported-by: syzbot+9b64b619f10f19d19a7c@syzkaller.appspotmail.com
Signed-off-by: Masami Hiramatsu <mhiramat@kernel.org>
Signed-off-by: Borislav Petkov <bp@suse.de>
Reviewed-by: Srikar Dronamraju <srikar@linux.vnet.ibm.com>
Cc: stable@vger.kernel.org
Link: https://lkml.kernel.org/r/160697103739.3146288.7437620795200799020.stgit@devnote2
1 parent 8dcc0e1
History
Tip revision: 4e9a5ae8df5b3365183150f6df49e49dece80d8c authored by Masami Hiramatsu on 03 December 2020, 04:50:37 UTC
x86/uprobes: Do not use prefixes.nbytes when looping over prefixes.bytes
Tip revision: 4e9a5ae
File Mode Size
partitions
Kconfig -rw-r--r-- 6.7 KB
Kconfig.iosched -rw-r--r-- 1.3 KB
Makefile -rw-r--r-- 1.7 KB
badblocks.c -rw-r--r-- 14.1 KB
bfq-cgroup.c -rw-r--r-- 38.5 KB
bfq-iosched.c -rw-r--r-- 236.6 KB
bfq-iosched.h -rw-r--r-- 36.7 KB
bfq-wf2q.c -rw-r--r-- 52.4 KB
bio-integrity.c -rw-r--r-- 12.5 KB
bio.c -rw-r--r-- 44.0 KB
blk-cgroup-rwstat.c -rw-r--r-- 3.4 KB
blk-cgroup-rwstat.h -rw-r--r-- 3.9 KB
blk-cgroup.c -rw-r--r-- 50.0 KB
blk-core.c -rw-r--r-- 47.9 KB
blk-crypto-fallback.c -rw-r--r-- 18.2 KB
blk-crypto-internal.h -rw-r--r-- 5.4 KB
blk-crypto.c -rw-r--r-- 11.9 KB
blk-exec.c -rw-r--r-- 2.6 KB
blk-flush.c -rw-r--r-- 14.1 KB
blk-integrity.c -rw-r--r-- 11.8 KB
blk-ioc.c -rw-r--r-- 10.1 KB
blk-iocost.c -rw-r--r-- 95.1 KB
blk-iolatency.c -rw-r--r-- 28.0 KB
blk-lib.c -rw-r--r-- 11.5 KB
blk-map.c -rw-r--r-- 15.7 KB
blk-merge.c -rw-r--r-- 30.2 KB
blk-mq-cpumap.c -rw-r--r-- 2.2 KB
blk-mq-debugfs-zoned.c -rw-r--r-- 435 bytes
blk-mq-debugfs.c -rw-r--r-- 24.4 KB
blk-mq-debugfs.h -rw-r--r-- 2.7 KB
blk-mq-pci.c -rw-r--r-- 1.3 KB
blk-mq-rdma.c -rw-r--r-- 1.3 KB
blk-mq-sched.c -rw-r--r-- 17.0 KB
blk-mq-sched.h -rw-r--r-- 2.4 KB
blk-mq-sysfs.c -rw-r--r-- 8.3 KB
blk-mq-tag.c -rw-r--r-- 17.0 KB
blk-mq-tag.h -rw-r--r-- 2.3 KB
blk-mq-virtio.c -rw-r--r-- 1.3 KB
blk-mq.c -rw-r--r-- 97.3 KB
blk-mq.h -rw-r--r-- 9.3 KB
blk-pm.c -rw-r--r-- 6.7 KB
blk-pm.h -rw-r--r-- 1.4 KB
blk-rq-qos.c -rw-r--r-- 7.1 KB
blk-rq-qos.h -rw-r--r-- 5.0 KB
blk-settings.c -rw-r--r-- 27.4 KB
blk-stat.c -rw-r--r-- 4.8 KB
blk-stat.h -rw-r--r-- 4.6 KB
blk-sysfs.c -rw-r--r-- 24.4 KB
blk-throttle.c -rw-r--r-- 67.5 KB
blk-timeout.c -rw-r--r-- 4.1 KB
blk-wbt.c -rw-r--r-- 19.8 KB
blk-wbt.h -rw-r--r-- 2.8 KB
blk-zoned.c -rw-r--r-- 14.0 KB
blk.h -rw-r--r-- 13.3 KB
bounce.c -rw-r--r-- 9.4 KB
bsg-lib.c -rw-r--r-- 9.9 KB
bsg.c -rw-r--r-- 11.1 KB
cmdline-parser.c -rw-r--r-- 4.9 KB
elevator.c -rw-r--r-- 18.5 KB
genhd.c -rw-r--r-- 58.0 KB
ioctl.c -rw-r--r-- 16.8 KB
ioprio.c -rw-r--r-- 5.1 KB
keyslot-manager.c -rw-r--r-- 10.7 KB
kyber-iosched.c -rw-r--r-- 27.8 KB
mq-deadline.c -rw-r--r-- 20.8 KB
opal_proto.h -rw-r--r-- 9.4 KB
scsi_ioctl.c -rw-r--r-- 22.6 KB
sed-opal.c -rw-r--r-- 62.5 KB
t10-pi.c -rw-r--r-- 7.8 KB
back to top