]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c66d517) | patch
bpf: fix net.core.bpf_jit_enable race
authorAlexei Starovoitov <ast@fb.com>
Fri, 15 Dec 2017 01:55:14 +0000 (17:55 -0800)
committerDaniel Borkmann <daniel@iogearbox.net>
Sun, 17 Dec 2017 19:34:36 +0000 (20:34 +0100)
commita511effd1b8d1e71e6f7efca434bdf0d34efaffb
tree5651c4845120fc28c9712f53f31962adfd4abe73tree | snapshot
parentc66d5170f27344de7ae3fe5dcd0765e5b45c71a1commit | diff
bpf: fix net.core.bpf_jit_enable race

global bpf_jit_enable variable is tested multiple times in JITs,
blinding and verifier core. The malicious root can try to toggle
it while loading the programs. This race condition was accounted
for and there should be no issues, but it's safer to avoid
this race condition.

Signed-off-by: Alexei Starovoitov <ast@kernel.org>
Acked-by: Daniel Borkmann <daniel@iogearbox.net>
Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
arch/arm/net/bpf_jit_32.c diff | blob | history
arch/arm64/net/bpf_jit_comp.c diff | blob | history
arch/mips/net/ebpf_jit.c diff | blob | history
arch/powerpc/net/bpf_jit_comp64.c diff | blob | history
arch/s390/net/bpf_jit_comp.c diff | blob | history
arch/sparc/net/bpf_jit_comp_64.c diff | blob | history
arch/x86/net/bpf_jit_comp.c diff | blob | history
include/linux/filter.h diff | blob | history
kernel/bpf/core.c diff | blob | history
kernel/bpf/verifier.c diff | blob | history
Linux Kernel Source Tree.