vfs, fdtable: Prevent bounds-check bypass via speculative execution - kernel

diff options

author	Dan Williams <[email protected]>	2018-01-30 01:03:05 +0000
committer	Thomas Gleixner <[email protected]>	2018-01-30 20:54:32 +0000
commit	56c30ba7b348b90484969054d561f711ba196507 (patch)
tree	6e5d8ed79763c5cbf8477f8627ae0545dacc3ff0 /lib/debugobjects.c
parent	x86/syscall: Sanitize syscall table de-references under speculation (diff)
download	kernel-56c30ba7b348b90484969054d561f711ba196507.tar.gz kernel-56c30ba7b348b90484969054d561f711ba196507.zip

vfs, fdtable: Prevent bounds-check bypass via speculative execution

'fd' is a user controlled value that is used as a data dependency to read from the 'fdt->fd' array. In order to avoid potential leaks of kernel memory values, block speculative execution of the instruction stream that could issue reads based on an invalid 'file *' returned from __fcheck_files. Co-developed-by: Elena Reshetova <[email protected]> Signed-off-by: Dan Williams <[email protected]> Signed-off-by: Thomas Gleixner <[email protected]> Cc: [email protected] Cc: [email protected] Cc: [email protected] Cc: Al Viro <[email protected]> Cc: [email protected] Cc: [email protected] Link: https://lkml.kernel.org/r/151727418500.33451.17392199002892248656.stgit@dwillia2-desk3.amr.corp.intel.com

Diffstat (limited to 'lib/debugobjects.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: