linux-stable/fs/smb/server
Norbert Szetei 06a025448b ksmbd: align aux_payload_buf to avoid OOB reads in cryptographic operations
The aux_payload_buf allocation in SMB2 read is performed without ensuring
alignment, which could result in out-of-bounds (OOB) reads during
cryptographic operations such as crypto_xor or ghash. This patch aligns
the allocation of aux_payload_buf to prevent these issues.
(Note that to add this patch to stable would require modifications due
to recent patch "ksmbd: use __GFP_RETRY_MAYFAIL")

Signed-off-by: Norbert Szetei <norbert@doyensec.com>
Acked-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
2024-12-04 19:45:28 -06:00
..
mgmt ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
asn1.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
asn1.h
auth.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
auth.h
connection.c ksmbd: add debug print for pending request during server shutdown 2024-11-25 18:58:27 -06:00
connection.h ksmbd: check outstanding simultaneous SMB operations 2024-11-05 09:26:38 +09:00
crypto_ctx.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
crypto_ctx.h
glob.h ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
Kconfig ksmbd: remove experimental warning 2023-09-03 21:06:36 -05:00
ksmbd_netlink.h ksmbd: add support for supplementary groups 2024-10-11 11:02:14 -05:00
ksmbd_spnego_negtokeninit.asn1 treewide: Add SPDX identifier to IETF ASN.1 modules 2023-10-27 18:04:28 +08:00
ksmbd_spnego_negtokentarg.asn1 treewide: Add SPDX identifier to IETF ASN.1 modules 2023-10-27 18:04:28 +08:00
ksmbd_work.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
ksmbd_work.h ksmbd: fix wrong interim response on compound 2023-08-29 12:30:19 -05:00
Makefile
misc.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
misc.h
ndr.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
ndr.h
nterr.h
ntlmssp.h
oplock.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
oplock.h ksmbd: remove duplicate SMB2 Oplock levels definitions 2024-07-14 18:00:35 -05:00
server.c ksmbd: fix use-after-free in SMB request handling 2024-11-25 18:58:27 -06:00
server.h ksmbd: add durable scavenger timer 2024-07-14 21:45:40 -05:00
smb2misc.c smb: move SMB2 Status code to common header file 2024-09-15 10:42:44 -05:00
smb2ops.c ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1 2024-04-02 09:21:25 -05:00
smb2pdu.c ksmbd: align aux_payload_buf to avoid OOB reads in cryptographic operations 2024-12-04 19:45:28 -06:00
smb2pdu.h ksmbd: Annotate struct copychunk_ioctl_req with __counted_by_le() 2024-10-01 14:50:51 -05:00
smb_common.c smb: server: Fix building with GCC 15 2024-12-01 17:31:19 -06:00
smb_common.h ksmbd: check outstanding simultaneous SMB operations 2024-11-05 09:26:38 +09:00
smbacl.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
smbacl.h smb: move some duplicate definitions to common/smbacl.h 2024-09-15 10:42:44 -05:00
smbfsctl.h cifs: correct references in Documentation to old fs/cifs path 2023-05-24 16:29:21 -05:00
transport_ipc.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
transport_ipc.h ksmbd: add support for supplementary groups 2024-10-11 11:02:14 -05:00
transport_rdma.c ksmbd: add debug print for rdma capable 2024-11-25 18:58:27 -06:00
transport_rdma.h
transport_tcp.c ksmbd: add netdev-up/down event debug print 2024-11-25 18:58:27 -06:00
transport_tcp.h
unicode.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
unicode.h fs/smb: Swing unicode common code from smb->NLS 2023-08-30 08:55:51 -05:00
vfs_cache.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
vfs_cache.h ksmbd: fix warning: comparison of distinct pointer types lacks a cast 2024-09-20 22:16:11 -05:00
vfs.c ksmbd: use __GFP_RETRY_MAYFAIL 2024-11-25 18:58:02 -06:00
vfs.h ksmbd: fix missing use of get_write in in smb2_set_ea() 2024-06-11 23:43:09 -05:00
xattr.h ksmbd: Correct typos in multiple comments across various files 2024-09-25 21:33:22 -05:00