Re: [PATCH] bpf: fix possible spectre-v1 in find_and_alloc_map()

From: David Miller
Date: Thu May 03 2018 - 12:48:58 EST

Next message: Justin Forbes: "Re: [Ksummit-discuss] bug-introducing patches"
Previous message: Joel Fernandes: "Re: [RFC PATCH for 4.18 00/14] Restartable Sequences"
In reply to: Mark Rutland: "[PATCH] bpf: fix possible spectre-v1 in find_and_alloc_map()"
Next in thread: Daniel Borkmann: "Re: [PATCH] bpf: fix possible spectre-v1 in find_and_alloc_map()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Mark Rutland <mark.rutland@xxxxxxx>
Date: Thu, 3 May 2018 17:04:59 +0100

> It's possible for userspace to control attr->map_type. Sanitize it when
> using it as an array index to prevent an out-of-bounds value being used
> under speculation.
>
> Found by smatch.
>
> Signed-off-by: Mark Rutland <mark.rutland@xxxxxxx>

Acked-by: David S. Miller <davem@xxxxxxxxxxxxx>

Next message: Justin Forbes: "Re: [Ksummit-discuss] bug-introducing patches"
Previous message: Joel Fernandes: "Re: [RFC PATCH for 4.18 00/14] Restartable Sequences"
In reply to: Mark Rutland: "[PATCH] bpf: fix possible spectre-v1 in find_and_alloc_map()"
Next in thread: Daniel Borkmann: "Re: [PATCH] bpf: fix possible spectre-v1 in find_and_alloc_map()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]