mirror of git://git.yoctoproject.org/linux-yocto.git synced 2025-10-22 23:13:01 +02:00

Go to file

Liam R. Howlett 64c37e134b kernel: be more careful about dup_mmap() failures and uprobe registering If a memory allocation fails during dup_mmap(), the maple tree can be left in an unsafe state for other iterators besides the exit path. All the locks are dropped before the exit_mmap() call (in mm/mmap.c), but the incomplete mm_struct can be reached through (at least) the rmap finding the vmas which have a pointer back to the mm_struct. Up to this point, there have been no issues with being able to find an mm_struct that was only partially initialised. Syzbot was able to make the incomplete mm_struct fail with recent forking changes, so it has been proven unsafe to use the mm_struct that hasn't been initialised, as referenced in the link below. Although `8ac662f5da` ("fork: avoid inappropriate uprobe access to invalid mm") fixed the uprobe access, it does not completely remove the race. This patch sets the MMF_OOM_SKIP to avoid the iteration of the vmas on the oom side (even though this is extremely unlikely to be selected as an oom victim in the race window), and sets MMF_UNSTABLE to avoid other potential users from using a partially initialised mm_struct. When registering vmas for uprobe, skip the vmas in an mm that is marked unstable. Modifying a vma in an unstable mm may cause issues if the mm isn't fully initialised. Link: https://lore.kernel.org/all/6756d273.050a0220.2477f.003d.GAE@google.com/ Link: https://lkml.kernel.org/r/20250127170221.1761366-1-Liam.Howlett@oracle.com Fixes: `d240629148` ("fork: use __mt_dup() to duplicate maple tree in dup_mmap()") Signed-off-by: Liam R. Howlett <Liam.Howlett@Oracle.com> Reviewed-by: Lorenzo Stoakes <lorenzo.stoakes@oracle.com> Cc: Oleg Nesterov <oleg@redhat.com> Cc: Masami Hiramatsu <mhiramat@kernel.org> Cc: Jann Horn <jannh@google.com> Cc: Peter Zijlstra <peterz@infradead.org> Cc: Michal Hocko <mhocko@suse.com> Cc: Peng Zhang <zhangpeng.00@bytedance.com> Cc: Matthew Wilcox <willy@infradead.org> Signed-off-by: Andrew Morton <akpm@linux-foundation.org>		2025-02-01 03:53:25 -08:00
arch	s390 fixes for 6.14 merge window	2025-01-30 10:53:49 -08:00
block	Driver core and debugfs updates	2025-01-28 12:25:12 -08:00
certs	sign-file,extract-cert: use pkcs11 provider for OPENSSL MAJOR >= 3	2024-09-20 19:52:48 +03:00
crypto	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
Documentation	Two fixes for footnote-related warnings that appeared with Sphinx 8.x.	2025-01-30 10:57:19 -08:00
drivers	mm/fake-numa: handle cases with no SRAT info	2025-02-01 03:53:25 -08:00
fs	ocfs2: fix incorrect CPU endianness conversion causing mount failure	2025-02-01 03:53:24 -08:00
include	mm/vmscan: fix hard LOCKUP in function isolate_lru_folios	2025-02-01 03:53:23 -08:00
init	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
io_uring	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
ipc	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
kernel	kernel: be more careful about dup_mmap() failures and uprobe registering	2025-02-01 03:53:25 -08:00
lib	CRC fixes for 6.14	2025-01-29 10:50:28 -08:00
LICENSES	LICENSES: add 0BSD license text	2024-09-01 20:43:24 -07:00
mm	mm: kmemleak: fix upper boundary check for physical address objects	2025-02-01 03:53:25 -08:00
net	NFS Client Updates for Linux 6.14	2025-01-28 14:23:46 -08:00
rust	Driver core and debugfs updates	2025-01-28 12:25:12 -08:00
samples	Driver core and debugfs updates	2025-01-28 12:25:12 -08:00
scripts	scripts/gdb: fix aarch64 userspace detection in get_current_task	2025-02-01 03:53:24 -08:00
security	treewide: const qualify ctl_tables where applicable	2025-01-28 13:48:37 +01:00
sound	Driver core and debugfs updates	2025-01-28 12:25:12 -08:00
tools	gpio fixes for v6.14-rc1	2025-01-30 10:19:30 -08:00
usr	kbuild: Drop support for include/asm-<arch> in headers_check.pl	2024-12-21 11:43:17 +09:00
virt	Merge branch 'kvm-mirror-page-tables' into HEAD	2025-01-20 07:15:58 -05:00
.clang-format	clang-format: Update with v6.11-rc1's `for_each` macro list	2024-08-02 13:20:31 +02:00
.clippy.toml	rust: give Clippy the minimum supported Rust version	2025-01-10 00:17:25 +01:00
.cocciconfig
.editorconfig	.editorconfig: remove trim_trailing_whitespace option	2024-06-13 16:47:52 +02:00
.get_maintainer.ignore	MAINTAINERS: Retire Ralf Baechle	2024-11-12 15:48:59 +01:00
.gitattributes	.gitattributes: set diff driver for Rust source code files	2023-05-31 17:48:25 +02:00
.gitignore	rust: use host dylib naming convention to support macOS	2025-01-10 01:01:24 +01:00
.mailmap	mailmap: add an entry for Hamza Mahfooz	2025-02-01 03:53:24 -08:00
.rustfmt.toml	rust: add `.rustfmt.toml`	2022-09-28 09:02:20 +02:00
COPYING
CREDITS	Mainly individually changelogged singleton patches. The patch series in	2025-01-26 17:50:53 -08:00
Kbuild	Kbuild updates for v6.1	2022-10-10 12:00:45 -07:00
Kconfig	kbuild: ensure full rebuild when the compiler is updated	2020-05-12 13:28:33 +09:00
MAINTAINERS	MAINTAINERS: mailmap: update Yosry Ahmed's email address	2025-02-01 03:53:24 -08:00
Makefile	Networking changes for 6.14.	2025-01-22 08:28:57 -08:00
README	README: Fix spelling	2024-03-18 03:36:32 -06:00

README

Linux kernel

There are several guides for kernel developers and users. These guides can be rendered in a number of formats, like HTML and PDF. Please read Documentation/admin-guide/README.rst first.

In order to build the documentation, use make htmldocs or make pdfdocs. The formatted documentation can also be read online at:

https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory, several of them using the reStructuredText markup notation.

Please read the Documentation/process/changes.rst file, as it contains the requirements for building and running the kernel, and information about the problems which may result by upgrading your kernel.