[RFC PATCH 0/6 6.6] Address rename/readdir bugs in fs/libfs.c

cel at kernel.org cel at kernel.org
Mon Nov 11 00:52:36 UTC 2024


From: Chuck Lever <chuck.lever at oracle.com>

Address several bugs in v6.6's libfs/shmemfs, including
CVE-2024-46701.

Link: https://lore.kernel.org/stable/976C0DD5-4337-4C7D-92C6-A38C2EC335A4@oracle.com/T/#me685f54ac17ea1e39265dd5f1bb1f173c557a564

I'm still running the usual set of regression tests, but so far this
set looks stable. I'm interested in hearing review comments and test
results.

Branch for testing: https://git.kernel.org/pub/scm/linux/kernel/git/cel/linux.git/log/?h=nfsd-6.6.y

Chuck Lever (5):
  libfs: Define a minimum directory offset
  libfs: Add simple_offset_empty()
  libfs: Fix simple_offset_rename_exchange()
  libfs: Add simple_offset_rename() API
  shmem: Fix shmem_rename2()

yangerkun (1):
  libfs: fix infinite directory reads for offset dir

 fs/libfs.c         | 135 +++++++++++++++++++++++++++++++++++++--------
 include/linux/fs.h |   3 +
 mm/shmem.c         |   7 +--
 3 files changed, 119 insertions(+), 26 deletions(-)

-- 
2.47.0



More information about the dri-devel mailing list