torvalds/linux
torvalds/linux
2
0
Fork 0
mirror of git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-09-04 20:19:47 +08:00
Code
0d60fd5032
linux/fs/smb/server
History
Namjae Jeon 1b8b67f3c5 ksmbd: fix incorrect validation for num_aces field of smb_acl 
parse_dcal() validate num_aces to allocate posix_ace_state_array.

if (num_aces > ULONG_MAX / sizeof(struct smb_ace *))

It is an incorrect validation that we can create an array of size ULONG_MAX.
smb_acl has ->size field to calculate actual number of aces in request buffer
size. Use this to check invalid num_aces.

Reported-by: Igor Leite Ladessa <igor-ladessa@hotmail.com>
Tested-by: Igor Leite Ladessa <igor-ladessa@hotmail.com>
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
2025-03-02 22:50:54 -06:00
..
mgmt ksmbd: fix racy issue from session lookup and expire 2024-12-10 17:48:06 -06:00
asn1.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
asn1.h
auth.c ksmbd: fix racy issue from session lookup and expire 2024-12-10 17:48:06 -06:00
auth.h
connection.c ksmbd: fix broken transfers when exceeding max simultaneous operations 2024-12-15 22:20:03 -06:00
connection.h ksmbd: fix broken transfers when exceeding max simultaneous operations 2024-12-15 22:20:03 -06:00
crypto_ctx.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
crypto_ctx.h
glob.h ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
Kconfig ksmbd: remove experimental warning 2023-09-03 21:06:36 -05:00
ksmbd_netlink.h ksmbd: browse interfaces list on FSCTL_QUERY_INTERFACE_INFO IOCTL 2025-01-15 23:24:51 -06:00
ksmbd_spnego_negtokeninit.asn1 treewide: Add SPDX identifier to IETF ASN.1 modules 2023-10-27 18:04:28 +08:00
ksmbd_spnego_negtokentarg.asn1 treewide: Add SPDX identifier to IETF ASN.1 modules 2023-10-27 18:04:28 +08:00
ksmbd_work.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
ksmbd_work.h ksmbd: fix wrong interim response on compound 2023-08-29 12:30:19 -05:00
Makefile
misc.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
misc.h
ndr.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
ndr.h
nterr.h
ntlmssp.h
oplock.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
oplock.h ksmbd: remove duplicate SMB2 Oplock levels definitions 2024-07-14 18:00:35 -05:00
server.c ksmbd: fix broken transfers when exceeding max simultaneous operations 2024-12-15 22:20:03 -06:00
server.h ksmbd: browse interfaces list on FSCTL_QUERY_INTERFACE_INFO IOCTL 2025-01-15 23:24:51 -06:00
smb2misc.c smb: move SMB2 Status code to common header file 2024-09-15 10:42:44 -05:00
smb2ops.c ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1 2024-04-02 09:21:25 -05:00
smb2pdu.c ksmbd: fix bug on trap in smb2_lock 2025-03-02 22:50:53 -06:00
smb2pdu.h ksmbd: Implement new SMB3 POSIX type 2025-01-07 18:48:49 -06:00
smb_common.c kernel-6.14-rc1.cred 2025-01-20 10:13:06 -08:00
smb_common.h ksmbd: check outstanding simultaneous SMB operations 2024-11-05 09:26:38 +09:00
smbacl.c ksmbd: fix incorrect validation for num_aces field of smb_acl 2025-03-02 22:50:54 -06:00
smbacl.h smb: common: change the data type of num_aces to le16 2025-03-02 22:50:54 -06:00
smbfsctl.h
transport_ipc.c ksmbd: fix type confusion via race condition when using ipc_msg_send_request 2025-03-02 22:50:53 -06:00
transport_ipc.h ksmbd: Remove unused functions 2025-01-15 23:24:51 -06:00
transport_rdma.c ksmbd: Remove unneeded if check in ksmbd_rdma_capable_netdev() 2025-01-05 20:43:37 -06:00
transport_rdma.h
transport_tcp.c ksmbd: browse interfaces list on FSCTL_QUERY_INTERFACE_INFO IOCTL 2025-01-15 23:24:51 -06:00
transport_tcp.h ksmbd: browse interfaces list on FSCTL_QUERY_INTERFACE_INFO IOCTL 2025-01-15 23:24:51 -06:00
unicode.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
unicode.h fs/smb: Swing unicode common code from smb->NLS 2023-08-30 08:55:51 -05:00
vfs_cache.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
vfs_cache.h ksmbd: fix warning: comparison of distinct pointer types lacks a cast 2024-09-20 22:16:11 -05:00
vfs.c ksmbd: Remove unused functions 2025-01-15 23:24:51 -06:00
vfs.h ksmbd: Remove unused functions 2025-01-15 23:24:51 -06:00
xattr.h ksmbd: Correct typos in multiple comments across various files 2024-09-25 21:33:22 -05:00