| Message ID | 20240110110451.5473-2-ptikhomirov@virtuozzo.com |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel+bounces-22038-ouuuleilei=gmail.com@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a05:7300:2411:b0:101:2151:f287 with SMTP id m17csp717431dyi;
Wed, 10 Jan 2024 03:08:18 -0800 (PST)
X-Google-Smtp-Source:
AGHT+IF6UGf+sDBIJRYSdlwfFTOc7ESJ7W7V1kkbAce2Q4Xe5p2AFamLswAC0iXjg9fq0/roiDor
X-Received: by 2002:a92:ca47:0:b0:360:6344:48a0 with SMTP id
q7-20020a92ca47000000b00360634448a0mr1373399ilo.55.1704884898145;
Wed, 10 Jan 2024 03:08:18 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1704884898; cv=pass;
d=google.com; s=arc-20160816;
b=WEda7xlzqRm+B8IQbJzl7M+Rocja7TvfbPl+YLHXn+2jmFy1zMmi6MxkXGTM1h7EeJ
ovwoyqPKWG3JThKmgcEfe8+iAwo50qavQ5fPM5MsQAyEpNaSEO+o8H+fLW5EhXeUEidP
JWmvg4Ykn6nSvj9D7zT6ReoTEagHsLwD1q7mhBy7ULKfhHtGJuRWdVKO7WZ6fWXARD9G
9wPRaigxGg/pykz7AfgeiRJTnT9TkKCK4UP0H/DVgmEjE8AWSr5Zf0ewiXs1dfHFsG0+
jZLiP4o+tkCfd4JkMAVGHiqbIj/TsQFeofQhpKWfR6E8CPWcGTSnPyek2x9mcmxiN+sX
MIEQ==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=mime-version:list-unsubscribe:list-subscribe:list-id:precedence
:content-transfer-encoding:references:in-reply-to:message-id:date
:subject:cc:to:from:dkim-signature;
bh=dHFID7yZPMUZ0kqhXE4bLvAGq4gFBZ1ilWbpG7XzBNg=;
fh=nHe+dLycVly9d/jJLFPdigL4KB0c7Xu5Yjx8SuZ6h70=;
b=gkpyqd/mXjgHJcOOcgQEL6cSGnbPeaaIxgLo11VSNWZyovuEkJ0yUl9TwK3ecjMivt
y1BY/dLfMoBJRFuZfccPduAyeBQB8DtLeBfgfnsWSK+u4p7ge0Iuk0Nn/xsPZwn5aGEF
w7wUwKh15dwum9vq5BcaLVwmE/MXNXTwEjUuQielh6icHUAJPYBfCHJobJmMf4ZtQCFO
eioeRK24gxpq3J9IQi/c/u/FWUZ3xcOFoZnGr+3aOiZVnolf7fZeGsUZ2Gj91nYk6nzs
Po+ENb9QxRKjf5bfzGJVXrkn283wqkogP//DrH7ZTtBpHT60xtkgahRTEbcTnjNUhgn0
WGZg==
ARC-Authentication-Results: i=2; mx.google.com;
dkim=pass header.i=@virtuozzo.com header.s=selector2 header.b=SRzYYAKZ;
arc=pass (i=1 spf=pass spfdomain=virtuozzo.com dkim=pass
dkdomain=virtuozzo.com dmarc=pass fromdomain=virtuozzo.com);
spf=pass (google.com: domain of
linux-kernel+bounces-22038-ouuuleilei=gmail.com@vger.kernel.org designates
139.178.88.99 as permitted sender)
smtp.mailfrom="linux-kernel+bounces-22038-ouuuleilei=gmail.com@vger.kernel.org";
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE)
header.from=virtuozzo.com
Received: from sv.mirrors.kernel.org (sv.mirrors.kernel.org. [139.178.88.99])
by mx.google.com with ESMTPS id
m126-20020a632684000000b005ced4fbeabcsi3483727pgm.844.2024.01.10.03.08.18
for <ouuuleilei@gmail.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Wed, 10 Jan 2024 03:08:18 -0800 (PST)
Received-SPF: pass (google.com: domain of
linux-kernel+bounces-22038-ouuuleilei=gmail.com@vger.kernel.org designates
139.178.88.99 as permitted sender) client-ip=139.178.88.99;
Authentication-Results: mx.google.com;
dkim=pass header.i=@virtuozzo.com header.s=selector2 header.b=SRzYYAKZ;
arc=pass (i=1 spf=pass spfdomain=virtuozzo.com dkim=pass
dkdomain=virtuozzo.com dmarc=pass fromdomain=virtuozzo.com);
spf=pass (google.com: domain of
linux-kernel+bounces-22038-ouuuleilei=gmail.com@vger.kernel.org designates
139.178.88.99 as permitted sender)
smtp.mailfrom="linux-kernel+bounces-22038-ouuuleilei=gmail.com@vger.kernel.org";
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE)
header.from=virtuozzo.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org
[52.25.139.140])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by sv.mirrors.kernel.org (Postfix) with ESMTPS id DB32B288C77
for <ouuuleilei@gmail.com>; Wed, 10 Jan 2024 11:06:11 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
by smtp.subspace.kernel.org (Postfix) with ESMTP id 07D1347F5A;
Wed, 10 Jan 2024 11:05:25 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
dkim=pass (2048-bit key) header.d=virtuozzo.com header.i=@virtuozzo.com
header.b="SRzYYAKZ"
Received: from EUR03-DBA-obe.outbound.protection.outlook.com
(mail-dbaeur03on2112.outbound.protection.outlook.com [40.107.104.112])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9840E45C1F;
Wed, 10 Jan 2024 11:05:19 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
dmarc=pass (p=quarantine dis=none) header.from=virtuozzo.com
Authentication-Results: smtp.subspace.kernel.org;
spf=pass smtp.mailfrom=virtuozzo.com
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=MvCiglLInss5Dz4PfaVyq6SQH2izIymECnA2gPDU1pQUbXfhZFpPhV5JyRwjn4GRIdmcbtt9kIdn0o6GGwFFn/kTVmQUvpvBRoDDDg1K0fZDoxy/LsT9enpZ+Fqr/Y0b4+Tll6wpsvJLwX/VUCWf7mxzzetJbFJkgL/5Gt2k6I142Q/1AJU0tGImJaXsgEsYt39Q3W5Kh9O4aRSfQXcdqKoh9vnazUWus46UFGc7RfrL9Wx184lFLDR03NWZUmSLQ8237hQUkDFA5a5ixLMIj4W7qTWvKy7N9HDPzFAMK8v8DLziCqZnt8291Jq+nHKHdfq+WpdtQGzLGGhbI/BJpg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
bh=dHFID7yZPMUZ0kqhXE4bLvAGq4gFBZ1ilWbpG7XzBNg=;
b=RJWHsmo2NmgVjgde3RTJk5TFw/tIiVH0LLJOUAj8YcgpFaBmCVcFnHNsOlnSruOWzKkUkH3/cfo7Ax2ZjkmA6OsimGAM5IIb9tMhCSt0A4G1OOeH/v6j+EQM3++t5SEvhHf2MOBgBTAk8P4JhSqMpzCTD+m+ilMhkpbK90fAA3mtajnj2iIUJO5uzUj84ks50Kp+IbHgAjo5nZrbAsaJs4M5zE3KV1yRgg9YQEI+Er286Zc2hjitVMaT6PEM8V2M3bTDTTCsNsOicOPOB509kgEdIapvClyohR0S3d0eyGh52fSUYqLVNG+grlZoeXYNGhGkvHEQn1QV/jXibj/M6g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
smtp.mailfrom=virtuozzo.com; dmarc=pass action=none
header.from=virtuozzo.com; dkim=pass header.d=virtuozzo.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=virtuozzo.com;
s=selector2;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=dHFID7yZPMUZ0kqhXE4bLvAGq4gFBZ1ilWbpG7XzBNg=;
b=SRzYYAKZDlY5edaAcAVA04T9kWgOvNgXAT7NBF45CnvcJ3gfSlNeq0j7+3Ql/gR+MfvAgjXzIg4ajw+Gm3edI8f0w8AN++rDlewaqe6fyMsB/XY+p35tBIp2hP/vSDHOzZvX37cqEME7F9hTVYGE/8dcVKO/Ui5y8cQ5f9bND/PpsMMmqV0lWjirKxoDQx8R4nFEWYZhAV2J3QfaOt4ZA/UkF1k32uNrtfPHLWMjryj6zvCDmBLVjO0o1DuIsC32B5yB40wVOpD2BUIV6r8uLMxE+w98nrO/UKsrIM1+vZs1vPxMEuJYLSIdtgpbZOeXh8AyKZsUTKqOO78Y3pflWA==
Authentication-Results: dkim=none (message not signed)
header.d=none;dmarc=none action=none header.from=virtuozzo.com;
Received: from DU0PR08MB9003.eurprd08.prod.outlook.com (2603:10a6:10:471::13)
by AS8PR08MB5990.eurprd08.prod.outlook.com (2603:10a6:20b:296::5) with
Microsoft SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7159.23; Wed, 10 Jan
2024 11:05:16 +0000
Received: from DU0PR08MB9003.eurprd08.prod.outlook.com
([fe80::72c4:98fc:4d1b:b9ba]) by DU0PR08MB9003.eurprd08.prod.outlook.com
([fe80::72c4:98fc:4d1b:b9ba%5]) with mapi id 15.20.7181.015; Wed, 10 Jan 2024
11:05:16 +0000
From: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
To: "David S. Miller" <davem@davemloft.net>,
Eric Dumazet <edumazet@google.com>,
Jakub Kicinski <kuba@kernel.org>,
Paolo Abeni <pabeni@redhat.com>,
Florian Westphal <fw@strlen.de>
Cc: netdev@vger.kernel.org,
linux-kernel@vger.kernel.org,
kernel@openvz.org,
Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
Subject: [PATCH 1/4] netfilter: nfnetlink_log: use proper helper for fetching
physinif
Date: Wed, 10 Jan 2024 19:00:11 +0800
Message-ID: <20240110110451.5473-2-ptikhomirov@virtuozzo.com>
X-Mailer: git-send-email 2.43.0
In-Reply-To: <20240110110451.5473-1-ptikhomirov@virtuozzo.com>
References: <20240110110451.5473-1-ptikhomirov@virtuozzo.com>
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-ClientProxiedBy: KU1PR03CA0041.apcprd03.prod.outlook.com
(2603:1096:802:19::29) To DU0PR08MB9003.eurprd08.prod.outlook.com
(2603:10a6:10:471::13)
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: DU0PR08MB9003:EE_|AS8PR08MB5990:EE_
X-MS-Office365-Filtering-Correlation-Id: 9aa885cc-3d70-496d-a2fe-08dc11cc0668
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info:
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
X-Forefront-Antispam-Report:
CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DU0PR08MB9003.eurprd08.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230031)(396003)(376002)(136003)(39850400004)(366004)(346002)(230922051799003)(451199024)(1800799012)(186009)(64100799003)(6512007)(1076003)(83380400001)(36756003)(86362001)(38100700002)(5660300002)(4326008)(6666004)(52116002)(6506007)(2616005)(107886003)(8676002)(316002)(110136005)(8936002)(66946007)(66556008)(66476007)(41300700001)(2906002)(6486002)(478600001);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0:
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
X-OriginatorOrg: virtuozzo.com
X-MS-Exchange-CrossTenant-Network-Message-Id:
9aa885cc-3d70-496d-a2fe-08dc11cc0668
X-MS-Exchange-CrossTenant-AuthSource: DU0PR08MB9003.eurprd08.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 10 Jan 2024 11:05:16.1331
(UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 0bc7f26d-0264-416e-a6fc-8352af79c58f
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName:
dW1X6rbMZ+/drMyafQmy2sB8OUFMO7YtWgqq/90mus7Bpc//r5ivYwmgDqgVJZuAmL3fGSF9TvL25W+CBIkKo5TCjpp3z8sfsVx5F68Rgyw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR08MB5990
X-getmail-retrieved-from-mailbox: INBOX
X-GMAIL-THRID: 1787701386744792328
X-GMAIL-MSGID: 1787701386744792328
|
| Series |
netlink: bridge: fix nf_bridge->physindev use after free
|
|
Commit Message
Pavel Tikhomirov
Jan. 10, 2024, 11 a.m. UTC
We don't use physindev in __build_packet_message except for getting
physinif from it. So let's switch to nf_bridge_get_physinif to get what
we want directly.
Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com>
---
net/netfilter/nfnetlink_log.c | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
Comments
Pavel Tikhomirov <ptikhomirov@virtuozzo.com> wrote: > We don't use physindev in __build_packet_message except for getting > physinif from it. So let's switch to nf_bridge_get_physinif to get what > we want directly. > > Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com> > --- > net/netfilter/nfnetlink_log.c | 8 ++++---- > 1 file changed, 4 insertions(+), 4 deletions(-) > > diff --git a/net/netfilter/nfnetlink_log.c b/net/netfilter/nfnetlink_log.c > index f03f4d4d7d889..134e05d31061e 100644 > --- a/net/netfilter/nfnetlink_log.c > +++ b/net/netfilter/nfnetlink_log.c > @@ -508,7 +508,7 @@ __build_packet_message(struct nfnl_log_net *log, > htonl(br_port_get_rcu(indev)->br->dev->ifindex))) > goto nla_put_failure; > } else { > - struct net_device *physindev; > + int physinif; > > /* Case 2: indev is bridge group, we need to look for > * physical device (when called from ipv4) */ > @@ -516,10 +516,10 @@ __build_packet_message(struct nfnl_log_net *log, > htonl(indev->ifindex))) > goto nla_put_failure; > > - physindev = nf_bridge_get_physindev(skb); > - if (physindev && > + physinif = nf_bridge_get_physinif(skb); > + if (physinif && > nla_put_be32(inst->skb, NFULA_IFINDEX_PHYSINDEV, > - htonl(physindev->ifindex))) > + htonl(physinif))) I think you can drop this patch and make the last patch pass nf_bridge_info->physinif directly.
On 10/01/2024 21:33, Florian Westphal wrote: > Pavel Tikhomirov <ptikhomirov@virtuozzo.com> wrote: >> We don't use physindev in __build_packet_message except for getting >> physinif from it. So let's switch to nf_bridge_get_physinif to get what >> we want directly. >> >> Signed-off-by: Pavel Tikhomirov <ptikhomirov@virtuozzo.com> >> --- >> net/netfilter/nfnetlink_log.c | 8 ++++---- >> 1 file changed, 4 insertions(+), 4 deletions(-) >> >> diff --git a/net/netfilter/nfnetlink_log.c b/net/netfilter/nfnetlink_log.c >> index f03f4d4d7d889..134e05d31061e 100644 >> --- a/net/netfilter/nfnetlink_log.c >> +++ b/net/netfilter/nfnetlink_log.c >> @@ -508,7 +508,7 @@ __build_packet_message(struct nfnl_log_net *log, >> htonl(br_port_get_rcu(indev)->br->dev->ifindex))) >> goto nla_put_failure; >> } else { >> - struct net_device *physindev; >> + int physinif; >> >> /* Case 2: indev is bridge group, we need to look for >> * physical device (when called from ipv4) */ >> @@ -516,10 +516,10 @@ __build_packet_message(struct nfnl_log_net *log, >> htonl(indev->ifindex))) >> goto nla_put_failure; >> >> - physindev = nf_bridge_get_physindev(skb); >> - if (physindev && >> + physinif = nf_bridge_get_physinif(skb); >> + if (physinif && >> nla_put_be32(inst->skb, NFULA_IFINDEX_PHYSINDEV, >> - htonl(physindev->ifindex))) >> + htonl(physinif))) > > I think you can drop this patch and make the last patch pass > nf_bridge_info->physinif directly. The whole Idea of this patch was to replace nf_bridge_get_physindev with nf_bridge_get_physinif before the patch which propagates net, so that we don't need to propagate net first and then in later patch remove it when replacing with nf_bridge_get_physinif. But I spoiled it by forgetting to remove net propagation to __build_packet_message... Is it ok if I leave this patch as is, but instead remove: diff --git a/net/netfilter/nfnetlink_log.c b/net/netfilter/nfnetlink_log.c index 134e05d31061e..ad93dd77e6071 100644 --- a/net/netfilter/nfnetlink_log.c +++ b/net/netfilter/nfnetlink_log.c @@ -463,7 +463,8 @@ __build_packet_message(struct nfnl_log_net *log, const struct net_device *outdev, const char *prefix, unsigned int plen, const struct nfnl_ct_hook *nfnl_ct, - struct nf_conn *ct, enum ip_conntrack_info ctinfo) + struct nf_conn *ct, enum ip_conntrack_info ctinfo, + struct net *net) { struct nfulnl_msg_packet_hdr pmsg; struct nlmsghdr *nlh; @@ -804,7 +805,7 @@ nfulnl_log_packet(struct net *net, __build_packet_message(log, inst, skb, data_len, pf, hooknum, in, out, prefix, plen, - nfnl_ct, ct, ctinfo); + nfnl_ct, ct, ctinfo, net); if (inst->qlen >= qthreshold) __nfulnl_flush(inst); from third patch?
Pavel Tikhomirov <ptikhomirov@virtuozzo.com> wrote: > On 10/01/2024 21:33, Florian Westphal wrote: > > Pavel Tikhomirov <ptikhomirov@virtuozzo.com> wrote: > > I think you can drop this patch and make the last patch pass > > nf_bridge_info->physinif directly. > > The whole Idea of this patch was to replace nf_bridge_get_physindev with > nf_bridge_get_physinif before the patch which propagates net, so that we > don't need to propagate net first and then in later patch remove it when > replacing with nf_bridge_get_physinif. > > But I spoiled it by forgetting to remove net propagation to > __build_packet_message... > > Is it ok if I leave this patch as is, but instead remove: Yes, thats fine.
diff --git a/net/netfilter/nfnetlink_log.c b/net/netfilter/nfnetlink_log.c index f03f4d4d7d889..134e05d31061e 100644 --- a/net/netfilter/nfnetlink_log.c +++ b/net/netfilter/nfnetlink_log.c @@ -508,7 +508,7 @@ __build_packet_message(struct nfnl_log_net *log, htonl(br_port_get_rcu(indev)->br->dev->ifindex))) goto nla_put_failure; } else { - struct net_device *physindev; + int physinif; /* Case 2: indev is bridge group, we need to look for * physical device (when called from ipv4) */ @@ -516,10 +516,10 @@ __build_packet_message(struct nfnl_log_net *log, htonl(indev->ifindex))) goto nla_put_failure; - physindev = nf_bridge_get_physindev(skb); - if (physindev && + physinif = nf_bridge_get_physinif(skb); + if (physinif && nla_put_be32(inst->skb, NFULA_IFINDEX_PHYSINDEV, - htonl(physindev->ifindex))) + htonl(physinif))) goto nla_put_failure; } #endif