[PATCH v4 0/2] sched: Fix dup_user_cpus_ptr() & do_set_cpus_allowed() bugs

From: Waiman Long
Date: Thu Dec 22 2022 - 17:50:38 EST

Next message: Waiman Long: "[PATCH v4 2/2] sched: Use kfree_rcu() in do_set_cpus_allowed()"
Previous message: Andrew Morton: "[GIT PULL] hotfixes for 6.2-rc1"
Next in thread: Waiman Long: "[PATCH v4 2/2] sched: Use kfree_rcu() in do_set_cpus_allowed()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

v4:
- Make sure user_cpus_ptr allocation size is large enough for
rcu_head.

This series fixes a UAF bug in dup_user_cpus_ptr() and uses kfree_rcu()
in do_set_cpus_allowed to avoid lockdep splats.

Waiman Long (2):
sched: Fix use-after-free bug in dup_user_cpus_ptr()
sched: Use kfree_rcu() in do_set_cpus_allowed()

kernel/sched/core.c | 59 +++++++++++++++++++++++++++++++++++++++------
1 file changed, 51 insertions(+), 8 deletions(-)

--
2.31.1

Next message: Waiman Long: "[PATCH v4 2/2] sched: Use kfree_rcu() in do_set_cpus_allowed()"
Previous message: Andrew Morton: "[GIT PULL] hotfixes for 6.2-rc1"
Next in thread: Waiman Long: "[PATCH v4 2/2] sched: Use kfree_rcu() in do_set_cpus_allowed()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]