[GIT PULL] hardening updates for v6.5-rc1-fixes
From: Kees Cook
Date: Fri Jul 07 2023 - 14:12:35 EST
Hi Linus,
Please pull these handful of kernel hardening fixes for v6.5-rc1.
Thanks!
-Kees
The following changes since commit acf15e07eb06507c69f92394c36052677029b0a8:
netfilter: ipset: Replace strlcpy with strscpy (2023-06-20 13:35:37 -0700)
are available in the Git repository at:
https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.5-rc1-fixes
for you to fetch changes up to 01f23c5f1526f5b6ff744887aa511b9e69d4401b:
usb: ch9: Replace bmSublinkSpeedAttr 1-element array with flexible array (2023-07-05 14:11:30 -0700)
----------------------------------------------------------------
hardening fixes for v6.5-rc1
- Check for NULL bdev in LoadPin (Matthias Kaehlcke)
- Revert unwanted KUnit FORTIFY build default
- Fix 1-element array causing boot warnings with xhci-hub
----------------------------------------------------------------
Kees Cook (2):
Revert "fortify: Allow KUnit test to build without FORTIFY"
usb: ch9: Replace bmSublinkSpeedAttr 1-element array with flexible array
Matthias Kaehlcke (1):
dm: verity-loadpin: Add NULL pointer check for 'bdev' parameter
drivers/md/dm-verity-loadpin.c | 3 +++
include/uapi/linux/usb/ch9.h | 6 +++++-
lib/Kconfig.debug | 2 +-
lib/fortify_kunit.c | 14 --------------
4 files changed, 9 insertions(+), 16 deletions(-)
--
Kees Cook