Revision c460e7896e6906d4e154f2e7fb7f40d46edbd006 authored by Linus Torvalds on 24 October 2021, 16:43:59 UTC, committed by Linus Torvalds on 24 October 2021, 16:43:59 UTC
Pull ksmbd fixes from Steve French:
"Ten fixes for the ksmbd kernel server, for improved security and
additional buffer overflow checks:
- a security improvement to session establishment to reduce the
possibility of dictionary attacks
- fix to ensure that maximum i/o size negotiated in the protocol is
not less than 64K and not more than 8MB to better match expected
behavior
- fix for crediting (flow control) important to properly verify that
sufficient credits are available for the requested operation
- seven additional buffer overflow, buffer validation checks"
* tag '5.15-rc6-ksmbd-fixes' of git://git.samba.org/ksmbd:
ksmbd: add buffer validation in session setup
ksmbd: throttle session setup failures to avoid dictionary attacks
ksmbd: validate OutputBufferLength of QUERY_DIR, QUERY_INFO, IOCTL requests
ksmbd: validate credit charge after validating SMB2 PDU body size
ksmbd: add buffer validation for smb direct
ksmbd: limit read/write/trans buffer size not to exceed 8MB
ksmbd: validate compound response buffer
ksmbd: fix potencial 32bit overflow from data area check in smb2_write
ksmbd: improve credits management
ksmbd: add validation in smb2_ioctl
| File | Mode | Size |
|---|---|---|
| arm | ||
| interface | ||
| acpi.h | -rw-r--r-- | 2.5 KB |
| balloon.h | -rw-r--r-- | 1.0 KB |
| events.h | -rw-r--r-- | 4.7 KB |
| features.h | -rw-r--r-- | 502 bytes |
| grant_table.h | -rw-r--r-- | 10.5 KB |
| hvc-console.h | -rw-r--r-- | 518 bytes |
| hvm.h | -rw-r--r-- | 1.3 KB |
| mem-reservation.h | -rw-r--r-- | 1.5 KB |
| page.h | -rw-r--r-- | 1.3 KB |
| platform_pci.h | -rw-r--r-- | 2.0 KB |
| swiotlb-xen.h | -rw-r--r-- | 553 bytes |
| xen-front-pgdir-shbuf.h | -rw-r--r-- | 2.3 KB |
| xen-ops.h | -rw-r--r-- | 6.6 KB |
| xen.h | -rw-r--r-- | 1.6 KB |
| xenbus.h | -rw-r--r-- | 8.6 KB |
| xenbus_dev.h | -rw-r--r-- | 1.8 KB |
Computing file changes ...
