| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20100529.002124.149815573.davem@davemloft.net> Date: Sat, 29 May 2010 00:21:24 -0700 (PDT) From: David Miller <davem@...emloft.net> To: eric.dumazet@...il.com Cc: anton@...ba.org, netdev@...r.kernel.org Subject: Re: Warning in net/ipv4/af_inet.c:154 From: Eric Dumazet <eric.dumazet@...il.com> Date: Wed, 26 May 2010 12:12:56 +0200 > [PATCH] net: fix sk_forward_alloc corruptions > > As David found out, sock_queue_err_skb() should be called with socket > lock hold, or we risk sk_forward_alloc corruption, since we use non > atomic operations to update this field. > > This patch adds bh_lock_sock()/bh_unlock_sock() pair to three spots. > (BH already disabled) > > 1) skb_tstamp_tx() > 2) Before calling ip_icmp_error(), in __udp4_lib_err() > 3) Before calling ipv6_icmp_error(), in __udp6_lib_err() > > Reported-by: Anton Blanchard <anton@...ba.org> > Signed-off-by: Eric Dumazet <eric.dumazet@...il.com> This wasn't the direct cause of Anton's problems but is a serious legitimate bug. So, applied, thanks! -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists