| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20090518.214039.143926575.davem@davemloft.net> Date: Mon, 18 May 2009 21:40:39 -0700 (PDT) From: David Miller <davem@...emloft.net> To: ilpo.jarvinen@...sinki.fi Cc: elendil@...net.nl, matthias.andree@....de, netdev@...r.kernel.org Subject: Re: [PATCH v2] tcp: fix MSG_PEEK race check From: "Ilpo Järvinen" <ilpo.jarvinen@...sinki.fi> Date: Tue, 19 May 2009 07:33:02 +0300 (EEST) > Sure, the copied_seq is moving, but what I'm after is that does it really > make any difference from tcp_recvmsg point of view? It certainly triggers > the message but that won't work as a proof of the evilness for me. > > ...The above paragraph is assuming recvmsg is able to deal with that and > doesn't choke because of the changing copied_seq. I'd have to audit it > once again to verify that it's really ok but I don't see any particular > reason why it couldn't be possible to make recvmsg to not care on the > tcp_check_urg side copied_seq changes but I'd like to hear a clear > confirmation on that from you too. recvmsg can deal with it fine, because we reset the peek_seq when we print out that message. There is no way that an application writer has any clue about this interaction, where peeked bytes disappear and then reappear in the out-of-band URG byte. That's why the message is there. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists