Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v5.9.16 2020-10-02T20:00:38+00:00 2020-10-02T20:00:38+00:00 Johannes Berg johannes.berg@intel.com 2020-10-02T07:46:04+00:00 urn:sha1:a95bc734e60449e7b073ff7ff70c35083b290ae9 If userspace doesn't complete the policy dump, we leak the allocated state. Fix this. Fixes: d07dcf9aadd6 ("netlink: add infrastructure to expose policies to userspace") Signed-off-by: Johannes Berg <johannes.berg@intel.com> Reviewed-by: Jakub Kicinski <kuba@kernel.org> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-09-10T22:13:43+00:00 Nicolas Dichtel nicolas.dichtel@6wind.com 2020-09-10T13:34:39+00:00 urn:sha1:553d87b658fed0e22a0f86b4f1b093c39d3e3074 There is no @validate argument. CC: Johannes Berg <johannes.berg@intel.com> Fixes: 3de644035446 ("netlink: re-add parse/validate functions in strict mode") Signed-off-by: Nicolas Dichtel <nicolas.dichtel@6wind.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-05-01T00:51:42+00:00 Johannes Berg johannes.berg@intel.com 2020-04-30T20:13:12+00:00 urn:sha1:d07dcf9aadd6b2842b439e8668ff7ea2873f28d7 Add, and use in generic netlink, helpers to dump out a netlink policy to userspace, including all the range validation data, nested policies etc. This lets userspace discover what the kernel understands. For families/commands other than generic netlink, the helpers need to be used directly in an appropriate command, or we can add some infrastructure (a new netlink family) that those can register their policies with for introspection. I'm not that familiar with non-generic netlink, so that's left out for now. The data exposed to userspace also includes min and max length for binary/string data, I've done that instead of letting the userspace tools figure out whether min/max is intended based on the type so that we can extend this later in the kernel, we might want to just use the range data for example. Because of this, I opted to not directly expose the NLA_* values, even if some of them are already exposed via BPF, as with min/max length we don't need to have different types here for NLA_BINARY/NLA_MIN_LEN/NLA_EXACT_LEN, we just make them all NL_ATTR_TYPE_BINARY with min/max length optionally set. Similarly, we don't really need NLA_MSECS, and perhaps can remove it in the future - but not if we encode it into the userspace API now. It gets mapped to NL_ATTR_TYPE_U64 here. Note that the exposing here corresponds to the strict policy interpretation, and NLA_UNSPEC items are omitted entirely. To get those, change them to NLA_MIN_LEN which behaves in exactly the same way, but is exposed. Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-05-01T00:51:42+00:00 Johannes Berg johannes.berg@intel.com 2020-04-30T20:13:11+00:00 urn:sha1:2c28ae48f24d84fcda31fb8acaf2edca6ec46c49 Add helpers to get the policy's signed/unsigned range validation data. Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-05-01T00:51:42+00:00 Johannes Berg johannes.berg@intel.com 2020-04-30T20:13:10+00:00 urn:sha1:c7721c05a6217491810f406ec28df80a9bcf3546 Use a validation type instead, so we can later expose the NLA_* values to userspace for policy descriptions. Some transformations were done with this spatch: @@ identifier p; expression X, L, A; @@ struct nla_policy p[X] = { [A] = -{ .type = NLA_EXACT_LEN_WARN, .len = L }, +NLA_POLICY_EXACT_LEN_WARN(L), ... }; Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-05-01T00:51:42+00:00 Johannes Berg johannes.berg@intel.com 2020-04-30T20:13:09+00:00 urn:sha1:da4063bdfcfa70ec57a6c25f772ac6378b1584ad Since NLA_MSECS is really equivalent to NLA_U64, allow it to have range validation as well. Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-05-01T00:51:42+00:00 Johannes Berg johannes.berg@intel.com 2020-04-30T20:13:08+00:00 urn:sha1:d06a09b94c618c96ced584dd4611a888c8856b8d Using a pointer to a struct indicating the min/max values, extend the ability to do range validation for arbitrary values. Small values in the s16 range can be kept in the policy directly. Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-05-01T00:51:41+00:00 Johannes Berg johannes.berg@intel.com 2020-04-30T20:13:05+00:00 urn:sha1:47a1494b8208461094923400c396ce4b8163c064 In the netlink policy, we currently have a void *validation_data that's pointing to different things: * a u32 value for bitfield32, * the netlink policy for nested/nested array * the string for NLA_REJECT Remove the pointer and place appropriate type-safe items in the union instead. While at it, completely dissolve the pointer for the bitfield32 case and just put the value there directly. Signed-off-by: Johannes Berg <johannes.berg@intel.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2020-03-30T18:06:49+00:00 Jiri Pirko jiri@mellanox.com 2020-03-28T15:37:42+00:00 urn:sha1:8953b0770ff4e3038a6d4df3cc021f9bfb47548a Introduce a helper to pass value and selector to. The helper packs them into struct and puts them into netlink message. Signed-off-by: Jiri Pirko <jiri@mellanox.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2019-12-13T01:07:05+00:00 Michal Kubecek mkubecek@suse.cz 2019-12-11T09:58:19+00:00 urn:sha1:32d5109a9d864aea3981f0b5ea736eee4e11b42a Function nl80211_validate_nested() is not specific to nl80211, it's a counterpart to nla_validate_nested_deprecated() with strict validation. For consistency with other validation and parse functions, rename it to nla_validate_nested(). Signed-off-by: Michal Kubecek <mkubecek@suse.cz> Acked-by: Jiri Pirko <jiri@mellanox.com> Reviewed-by: Johannes Berg <johannes@sipsolutions.net> Signed-off-by: David S. Miller <davem@davemloft.net>