lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 9 Apr 2024 11:27:57 -0700
From: Jakub Kicinski <kuba@...nel.org>
To: Edward Adam Davis <eadavis@...com>
Cc: eric.dumazet@...il.com, edumazet@...gle.com, johan.hedberg@...il.com,
 linux-bluetooth@...r.kernel.org, linux-kernel@...r.kernel.org,
 luiz.dentz@...il.com, marcel@...tmann.org, netdev@...r.kernel.org,
 pmenzel@...gen.mpg.de,
 syzbot+d4ecae01a53fd9b42e7d@...kaller.appspotmail.com,
 syzkaller-bugs@...glegroups.com
Subject: Re: [PATCH] net/socket: Ensure length of input socket option param
 >= sizeof(int)

On Tue,  9 Apr 2024 22:01:45 +0800 Edward Adam Davis wrote:
> > I think I gave my feedback already.
> > 
> > Please do not ignore maintainers feedback.
> > 
> > This patch is absolutely wrong.
> > 
> > Some setsockopt() deal with optlen == 1 just fine, thank you very much.  
>
> It's better to use evidence to support your claim, rather than your "maintainer" title.

Run selftests.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ