Dev news

Commit c33f944a33d6 for kernel

commit c33f944a33d63c65f3506eee6f2ca3771b68454f
Merge: bdd39576bf50 9e68817f12d5
Author: Jakub Kicinski <kuba@kernel.org>
Date:   Thu May 21 08:49:01 2026 -0700

    Merge branch 'net-enetc-sr-iov-robustness-and-security-fixes'

    Wei Fang says:

    ====================
    net: enetc: SR-IOV robustness and security fixes

    This patch series addresses a number of robustness, security, and
    correctness issues in the ENETC driver's SR-IOV subsystem, focusing
    primarily on the VF-to-PF mailbox communication path.

    The series can be grouped into the following categories:

    1. DoS and security fixes:
       - Prevent an unbounded loop DoS in the VF-to-PF message handler,
         which could be triggered by a malicious or misbehaving VF.
       - Fix a TOCTOU (Time-of-Check-Time-of-Use) race and add proper
         validation of VF MAC addresses to prevent spoofing or invalid
         configuration from being applied.

    2. Race condition fixes:
       - Fix a race condition in VF MAC address configuration that could
         lead to inconsistent state between the VF request and PF
         application.
       - Fix a race condition during SR-IOV teardown that could cause
         VF->PF mailbox operations to time out, resulting in unnecessary
         errors during shutdown.

    3. Memory safety fixes:
       - Fix a DMA write to freed memory in enetc_msg_free_mbx(), which
         could cause silent memory corruption or system instability.

    4. Error handling and initialization fixes:
       - Fix missing error code propagation when pf->vf_state allocation
         fails, ensuring callers receive a proper errno instead of
         succeeding silently.
       - Fix incorrect mailbox message status values returned to VFs,
         which could cause VFs to misinterpret PF responses.
       - Fix initialization order to prevent the use of uninitialized
         resources during driver probe, which could cause undefined
         behavior on certain configurations.

    5. Diagnostics improvement:
       - Add rate limiting to VF mailbox error messages to prevent log
         flooding in the presence of a misbehaving VF.

    These fixes improve the overall stability and security of the ENETC
    SR-IOV implementation, particularly in multi-tenant environments where
    VFs may be assigned to untrusted guests.
    ====================

    Link: https://patch.msgid.link/20260520064421.91569-1-wei.fang@nxp.com
    Signed-off-by: Jakub Kicinski <kuba@kernel.org>