Lin Ma 1ade48d0c2 ax25: NPD bug when detaching AX25 device ... The existing cleanup routine implementation is not well synchronized with the syscall routine. When a device is detaching, below race could occur. static int ax25_sendmsg(...) { ... lock_sock() ax25 = sk_to_ax25(sk); if (ax25->ax25_dev == NULL) // CHECK ... ax25_queue_xmit(skb, ax25->ax25_dev->dev); // USE ... } static void ax25_kill_by_device(...) { ... if (s->ax25_dev == ax25_dev) { s->ax25_dev = NULL; ... } Other syscall functions like ax25_getsockopt, ax25_getname, ax25_info_show also suffer from similar races. To fix them, this patch introduce lock_sock() into ax25_kill_by_device in order to guarantee that the nullify action in cleanup routine cannot proceed when another socket request is pending. Signed-off-by: Hanjie Wu <nagi@zju.edu.cn> Signed-off-by: Lin Ma <linma@zju.edu.cn> Signed-off-by: David S. Miller <davem@davemloft.net>		2021-12-18 12:33:56 +00:00
..
6lowpan
9p	9p: fix a bunch of checkpatch warnings	2021-11-04 21:04:25 +09:00
802	llc/snap: constify dev_addr passing	2021-10-13 09:40:46 -07:00
8021q	net: vlan: fix underflow for the real_dev refcnt	2021-11-26 11:20:46 -08:00
appletalk
atm	net: atm: use address setting helpers	2021-10-24 13:59:45 +01:00
ax25	ax25: NPD bug when detaching AX25 device	2021-12-18 12:33:56 +00:00
batman-adv	Merge branch 'exit-cleanups-for-v5.16' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace	2021-11-10 16:15:54 -08:00
bluetooth	bluetooth: use dev_addr_set()	2021-10-25 11:01:29 -07:00
bpf	bpf: Add dummy BPF STRUCT_OPS for test purpose	2021-11-01 14:10:00 -07:00
bpfilter
bridge	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2021-11-01 20:05:14 -07:00
caif	net: caif: get ready for const netdev->dev_addr	2021-10-24 13:59:45 +01:00
can	can: j1939: j1939_tp_cmd_recv(): check the dst address of TP.CM_BAM	2021-11-06 17:29:32 +01:00
ceph	libceph, ceph: move ceph_osdc_copy_from() into cephfs code	2021-11-08 03:29:52 +01:00
core	net/sched: flow_dissector: Fix matching on zone id for invalid conns	2021-12-17 18:06:35 -08:00
dcb
dccp	tcp: switch orphan_count to bare per-cpu counters	2021-10-15 11:28:34 +01:00
decnet	net: Remove redundant if statements	2021-08-05 13:27:50 +01:00
dns_resolver
dsa	net: dsa: felix: fix broken VLAN-tagged PTP under VLAN-aware bridge	2021-11-03 14:22:00 +00:00
ethernet	eth: platform: add a helper for loading netdev->dev_addr	2021-10-08 14:54:33 +01:00
ethtool	ethtool: do not perform operations on net devices being unregistered	2021-12-06 16:53:32 -08:00
hsr	net: hsr: Add support for redbox supervision frames	2021-10-26 14:52:17 +01:00
ieee802154	mac802154: use dev_addr_set() - manual	2021-10-20 14:27:40 +01:00
ife
ipv4	inet_diag: fix kernel-infoleak for UDP sockets	2021-12-10 21:14:49 -08:00
ipv6	sit: do not call ipip6_dev_free() from sit_init_net()	2021-12-16 08:38:10 -08:00
iucv	net/iucv: Replace deprecated CPU-hotplug functions.	2021-08-09 10:13:32 +01:00
kcm
key
l2tp	net/l2tp: Fix reference count leak in l2tp_udp_recv_core	2021-09-09 11:00:20 +01:00
l3mdev
lapb
llc	llc/snap: constify dev_addr passing	2021-10-13 09:40:46 -07:00
mac80211	mac80211: do drv_reconfig_complete() before restarting all	2021-12-14 11:22:20 +01:00
mac802154	mac802154: use dev_addr_set() - manual	2021-10-20 14:27:40 +01:00
mctp	mctp: Don't let RTM_DELROUTE delete local routes	2021-12-02 12:15:25 +00:00
mpls	net: mpls: Remove rcu protection from nh_dev	2021-11-29 12:39:42 +00:00
mptcp	mptcp: fix deadlock in __mptcp_push_pending()	2021-12-14 18:49:40 -08:00
ncsi	net/ncsi : Add payload to be 32-bit aligned to fix dropped packets	2021-11-24 11:53:17 +00:00
netfilter	netfilter: ctnetlink: remove expired entries first	2021-12-16 14:10:52 +01:00
netlabel	net: fix NULL pointer reference in cipso_v4_doi_free	2021-08-30 12:23:18 +01:00
netlink	net: netlink: af_netlink: Prevent empty skb by adding a check on len.	2021-11-30 17:45:01 -08:00
netrom	ax25: constify dev_addr passing	2021-10-13 09:40:45 -07:00
nfc	nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done	2021-12-09 07:50:32 -08:00
nsh
openvswitch	net: openvswitch: Fix matching zone id for invalid conns arriving from tc	2021-12-17 18:06:36 -08:00
packet	net/packet: rx_owner_map depends on pg_vec	2021-12-15 17:49:36 -08:00
phonet	phonet: refcount leak in pep_sock_accep	2021-12-10 19:53:52 -08:00
psample
qrtr	net: qrtr: combine nameservice into main module	2021-09-28 17:36:43 -07:00
rds	rds: memory leak in __rds_conn_create()	2021-12-14 12:51:52 +00:00
rfkill
rose	rose: constify dev_addr passing	2021-10-13 09:40:45 -07:00
rxrpc	rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer()	2021-11-29 15:40:02 +00:00
sched	net: openvswitch: Fix matching zone id for invalid conns arriving from tc	2021-12-17 18:06:36 -08:00
sctp	net,lsm,selinux: revert the security_sctp_assoc_established() hook	2021-11-14 12:21:53 +00:00
smc	net/smc: Prevent smc_release() from long blocking	2021-12-16 08:11:05 -08:00
strparser	bpf: sockmap, strparser, and tls are reusing qdisc_skb_cb and colliding	2021-11-09 01:05:28 +01:00
sunrpc	NFS client bugfixes for Linux 5.16	2021-11-27 10:33:55 -08:00
switchdev	net: switchdev: merge switchdev_handle_fdb_{add,del}_to_device	2021-10-27 14:54:02 +01:00
tipc	Revert "tipc: use consistent GFP flags"	2021-12-17 19:18:48 -08:00
tls	net/tls: Fix authentication failure in CCM mode	2021-11-29 12:48:28 +00:00
unix	af_unix: fix regression in read after shutdown	2021-11-20 15:10:30 +00:00
vmw_vsock	virtio/vsock: fix the transport to work with VMADDR_CID_ANY	2021-12-08 15:41:50 -05:00
wireless	cfg80211: Acquire wiphy mutex on regulatory work	2021-12-14 11:20:11 +01:00
x25
xdp	xsk: Do not sleep in poll() when need_wakeup set	2021-12-14 15:20:54 +01:00
xfrm	Core:	2021-11-02 06:20:58 -07:00
compat.c
devres.c
Kconfig	net/core: disable NET_RX_BUSY_POLL on PREEMPT_RT	2021-10-01 15:45:10 -07:00
Makefile	mctp: Add MCTP base	2021-07-29 15:06:49 +01:00
socket.c	Core:	2021-08-31 16:43:06 -07:00
sysctl_net.c	sections: move and rename core_kernel_data() to is_kernel_core_data()	2021-11-09 10:02:50 -08:00