Skip to content

Commit e959fe7

Browse files
kuba-mookuba-moo
committed
Merge branch 'fix-vsock-error-handling-regression-introduced-in-v6-17-rc1'
Will Deacon says: ==================== Fix vsock error-handling regression introduced in v6.17-rc1 Here are a couple of patches fixing the vsock error-handling regression found by syzbot that I introduced during the recent merge window. ==================== Link: https://patch.msgid.link/[email protected] Signed-off-by: Jakub Kicinski <[email protected]>
2 parents 6439a0e + 7fb1291 commit e959fe7

File tree

3 files changed

+21
-3
lines changed

3 files changed

+21
-3
lines changed

include/linux/skbuff.h

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4172,6 +4172,8 @@ int skb_copy_and_crc32c_datagram_iter(const struct sk_buff *skb, int offset,
41724172
struct iov_iter *to, int len, u32 *crcp);
41734173
int skb_copy_datagram_from_iter(struct sk_buff *skb, int offset,
41744174
struct iov_iter *from, int len);
4175+
int skb_copy_datagram_from_iter_full(struct sk_buff *skb, int offset,
4176+
struct iov_iter *from, int len);
41754177
int zerocopy_sg_from_iter(struct sk_buff *skb, struct iov_iter *frm);
41764178
void skb_free_datagram(struct sock *sk, struct sk_buff *skb);
41774179
int skb_kill_datagram(struct sock *sk, struct sk_buff *skb, unsigned int flags);

net/core/datagram.c

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -618,6 +618,20 @@ int skb_copy_datagram_from_iter(struct sk_buff *skb, int offset,
618618
}
619619
EXPORT_SYMBOL(skb_copy_datagram_from_iter);
620620

621+
int skb_copy_datagram_from_iter_full(struct sk_buff *skb, int offset,
622+
struct iov_iter *from, int len)
623+
{
624+
struct iov_iter_state state;
625+
int ret;
626+
627+
iov_iter_save_state(from, &state);
628+
ret = skb_copy_datagram_from_iter(skb, offset, from, len);
629+
if (ret)
630+
iov_iter_restore(from, &state);
631+
return ret;
632+
}
633+
EXPORT_SYMBOL(skb_copy_datagram_from_iter_full);
634+
621635
int zerocopy_fill_skb_from_iter(struct sk_buff *skb,
622636
struct iov_iter *from, size_t length)
623637
{

net/vmw_vsock/virtio_transport_common.c

Lines changed: 5 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -105,12 +105,14 @@ static int virtio_transport_fill_skb(struct sk_buff *skb,
105105
size_t len,
106106
bool zcopy)
107107
{
108+
struct msghdr *msg = info->msg;
109+
108110
if (zcopy)
109-
return __zerocopy_sg_from_iter(info->msg, NULL, skb,
110-
&info->msg->msg_iter, len, NULL);
111+
return __zerocopy_sg_from_iter(msg, NULL, skb,
112+
&msg->msg_iter, len, NULL);
111113

112114
virtio_vsock_skb_put(skb, len);
113-
return skb_copy_datagram_from_iter(skb, 0, &info->msg->msg_iter, len);
115+
return skb_copy_datagram_from_iter_full(skb, 0, &msg->msg_iter, len);
114116
}
115117

116118
static void virtio_transport_init_hdr(struct sk_buff *skb,

0 commit comments

Comments
 (0)