[GIT PULL] hardening updates for v6.5-rc1-fixes

From: Kees Cook
Date: Fri Jul 07 2023 - 14:12:35 EST

Next message: Zhangjin Wu: "[PATCH v4 00/18] selftests/nolibc: allow run with minimal kernel config"
Previous message: Nicolas Dufresne: "Re: [PATCH 3/9] drm/verisilicon: Add basic drm driver"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Linus,

Please pull these handful of kernel hardening fixes for v6.5-rc1.

Thanks!

-Kees

The following changes since commit acf15e07eb06507c69f92394c36052677029b0a8:

netfilter: ipset: Replace strlcpy with strscpy (2023-06-20 13:35:37 -0700)

are available in the Git repository at:

https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.5-rc1-fixes

for you to fetch changes up to 01f23c5f1526f5b6ff744887aa511b9e69d4401b:

usb: ch9: Replace bmSublinkSpeedAttr 1-element array with flexible array (2023-07-05 14:11:30 -0700)

----------------------------------------------------------------
hardening fixes for v6.5-rc1

- Check for NULL bdev in LoadPin (Matthias Kaehlcke)

- Revert unwanted KUnit FORTIFY build default

- Fix 1-element array causing boot warnings with xhci-hub

----------------------------------------------------------------
Kees Cook (2):
Revert "fortify: Allow KUnit test to build without FORTIFY"
usb: ch9: Replace bmSublinkSpeedAttr 1-element array with flexible array

Matthias Kaehlcke (1):
dm: verity-loadpin: Add NULL pointer check for 'bdev' parameter

drivers/md/dm-verity-loadpin.c | 3 +++
include/uapi/linux/usb/ch9.h | 6 +++++-
lib/Kconfig.debug | 2 +-
lib/fortify_kunit.c | 14 --------------
4 files changed, 9 insertions(+), 16 deletions(-)

--
Kees Cook

Next message: Zhangjin Wu: "[PATCH v4 00/18] selftests/nolibc: allow run with minimal kernel config"
Previous message: Nicolas Dufresne: "Re: [PATCH 3/9] drm/verisilicon: Add basic drm driver"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]