1. 02 May, 2006 7 commits
    • Patrick McHardy's avatar
      [NETFILTER] SCTP conntrack: fix infinite loop · e17df688
      Patrick McHardy authored
      
      
      fix infinite loop in the SCTP-netfilter code: check SCTP chunk size to
      guarantee progress of for_each_sctp_chunk(). (all other uses of
      for_each_sctp_chunk() are preceded by do_basic_checks(), so this fix
      should be complete.)
      
      Based on patch from Ingo Molnar <mingo@elte.hu>
      
      CVE-2006-1527
      
      Signed-off-by: default avatarPatrick McHardy <kaber@trash.net>
      Signed-off-by: default avatarLinus Torvalds <torvalds@osdl.org>
      e17df688
    • Ayaz Abdulla's avatar
      forcedeth: fix multi irq issues · ebf34c9b
      Ayaz Abdulla authored
      
      
      This patch fixes the issues with multiple irqs.
      
      I am resending based on feedback. I decoupled the dma mask for
      consistent memory and fixed leak with multiple irq in error path.
      
      Thanks to Manfred for catching the spin lock problem.
      
      Signed-Off-By: default avatarAyaz Abdulla <aabdulla@nvidia.com>
      ebf34c9b
    • Craig Brind's avatar
      [PATCH] via-rhine: zero pad short packets on Rhine I ethernet cards · 3e0d167a
      Craig Brind authored
      
      
      Fixes Rhine I cards disclosing fragments of previously transmitted frames
      in new transmissions.
      
      Before transmission, any socket buffer (skb) shorter than the ethernet
      minimum length of 60 bytes was zero-padded.  On Rhine I cards the data can
      later be copied into an aligned transmission buffer without copying this
      padding.  This resulted in the transmission of the frame with the extra
      bytes beyond the provided content leaking the previous contents of this
      buffer on to the network.
      
      Now zero-padding is repeated in the local aligned buffer if one is used.
      
      Following a suggestion from the via-rhine maintainer, no attempt is made
      here to avoid the duplicated effort of padding the skb if it is known that
      an aligned buffer will definitely be used.  This is to make the change
      "obviously correct" and allow it to be applied to a stable kernel if
      necessary.  There is no change to the flow of control and the changes are
      only to the Rhine I code path.
      
      The patch has run on an in-service Rhine-I host without incident.  Frames
      shorter than 60 bytes are now correctly zero-padded when captured on a
      separate host.  I see no unusual stats reported by ifconfig, and no unusual
      log messages.
      
      Signed-off-by: default avatarCraig Brind <craigbrind@gmail.com>
      Signed-off-by: default avatarRoger Luethi <rl@hellgate.ch>
      Cc: Jeff Garzik <jeff@garzik.org>
      Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
      Signed-off-by: default avatarJeff Garzik <jeff@garzik.org>
      3e0d167a
    • Olaf Hering's avatar
      [PATCH] mv643xx_eth: provide sysfs class device symlink · b0b8dab2
      Olaf Hering authored
      
      
      On Sat, Mar 11, Olaf Hering wrote:
      > Why is the /sys/class/net/eth0/device symlink not created for the
      > mv643xx_eth driver? Does this work for other platform device drivers?
      > Seems to work for the ps2 keyboard at least.
      
      The SET_NETDEV_DEV has to be done before a call to register_netdev.  With
      the new patch below, the device symlink for the platform device was
      created.  Unfortunately, after the 4 ls commands, the network connection
      died.  No idea if the box crashed or if something else broke, lost remote
      access.
      
      Provide sysfs 'device' in /class/net/ethN Also, set module owner field,
      like pcnet32 driver does.
      
      Signed-off-by: default avatarOlaf Hering <olh@suse.de>
      Acked-by: default avatarDale Farnsworth <dale@farnsworth.org>
      Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
      Signed-off-by: default avatarJeff Garzik <jeff@garzik.org>
      b0b8dab2
    • Jens Axboe's avatar
      [PATCH] vmsplice: restrict stealing a little more · 330ab716
      Jens Axboe authored
      
      
      Apply the same rules as the anon pipe pages, only allow stealing
      if no one else is using the page.
      
      Signed-off-by: default avatarJens Axboe <axboe@suse.de>
      330ab716
    • Jens Axboe's avatar
      [PATCH] splice: fix page LRU accounting · a893b99b
      Jens Axboe authored
      
      
      Currently we rely on the PIPE_BUF_FLAG_LRU flag being set correctly
      to know whether we need to fiddle with page LRU state after stealing it,
      however for some origins we just don't know if the page is on the LRU
      list or not.
      
      So remove PIPE_BUF_FLAG_LRU and do this check/add manually in pipe_to_file()
      instead.
      
      Signed-off-by: default avatarJens Axboe <axboe@suse.de>
      a893b99b
    • Jens Axboe's avatar
      [PATCH] vmsplice: fix badly placed end paranthesis · 7591489a
      Jens Axboe authored
      
      
      We need to use the minium of {len, PAGE_SIZE-off}, not {len, PAGE_SIZE}-off.
      The latter doesn't make any sense, and could cause us to attempt negative
      length transfers...
      
      Signed-off-by: default avatarJens Axboe <axboe@suse.de>
      7591489a
  2. 01 May, 2006 33 commits