| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 01 Jun 2010 08:34:27 -0400 From: jamal <hadi@...erus.ca> To: Changli Gao <xiaosuo@...il.com> Cc: "David S. Miller" <davem@...emloft.net>, netdev@...r.kernel.org Subject: Re: [PATCH] cls_u32: use skb_copy_bits() to dereference data safely Hi Changli, On Mon, 2010-05-31 at 10:24 +0800, Changli Gao wrote: > use skb_copy_bits() to dereference data safely > > the original skb->data dereference isn't safe, as there isn't any skb->len or > skb_is_nonlinear() check. I dont see any safety issue in current code in this respect. Do you have a specific scenario where this would be unsafe? We inspect in 32 bit chunks walking the packet data and stop when there is no more packet data. > skb_copy_bits() is used instead in this patch. And > when the skb isn't long enough, we terminate the function u32_classify() > immediately with -1. > That could be a very interesting optimization - but i see it as _very hard_ to do with current u32 given it has branching and different branches would have different lengths etc. You'd have to essentially do some math in user space as to what min length would suffice given a specified filter and pass that to the kernel. cheers, jamal -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists