[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <194a53b80a3cd7fcc360ecf4e1dbf692@nuclearcat.com>
Date: Mon, 03 Apr 2017 15:14:04 +0300
From: Denys Fedoryshchenko <nuclearcat@...learcat.com>
To: Eric Dumazet <eric.dumazet@...il.com>
Cc: Florian Westphal <fw@...len.de>,
Linux Kernel Network Developers <netdev@...r.kernel.org>,
Pablo Neira Ayuso <pablo@...filter.org>,
Patrick McHardy <kaber@...sh.net>,
Jozsef Kadlecsik <kadlec@...ckhole.kfki.hu>,
netfilter-devel@...r.kernel.org, coreteam@...filter.org,
linux-kernel@...r.kernel.org, netdev-owner@...r.kernel.org
Subject: Re: KASAN, xt_TCPMSS finally found nasty use-after-free bug? 4.10.8
On 2017-04-03 15:09, Eric Dumazet wrote:
> On Mon, 2017-04-03 at 11:10 +0300, Denys Fedoryshchenko wrote:
>
>> I modified patch a little as:
>> if (th->doff * 4 < sizeof(_tcph)) {
>> par->hotdrop = true;
>> WARN_ON_ONCE(!tcpinfo->option);
>> return false;
>> }
>>
>> And it did triggered WARN once at morning, and didn't hit KASAN. I
>> will
>> run for a while more, to see if it is ok, and then if stable, will try
>> to enable SFQ again.
>
> Excellent news !
> We will post an official fix today, thanks a lot for this detective
> work
> Denys.
I am not sure it is finally fixed, maybe we need test more?
I'm doing extensive tests today with identical configuration (i had to
run fifo, because customer cannot afford anymore outages). I've dded sfq
now different way, and identical config i will run after 3 hours approx.
Powered by blists - more mailing lists