| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20161109.131845.1786294086774828048.davem@davemloft.net>
Date: Wed, 09 Nov 2016 13:18:45 -0500 (EST)
From: David Miller <davem@...emloft.net>
To: soheil.kdev@...il.com
Cc: netdev@...r.kernel.org, edumazet@...gle.com, willemb@...gle.com,
ncardwell@...gle.com, soheil@...gle.com
Subject: Re: [PATCH net] sock: fix sendmmsg for partial sendmsg
From: Soheil Hassas Yeganeh <soheil.kdev@...il.com>
Date: Fri, 4 Nov 2016 15:36:49 -0400
> From: Soheil Hassas Yeganeh <soheil@...gle.com>
>
> Do not send the next message in sendmmsg for partial sendmsg
> invocations.
>
> sendmmsg assumes that it can continue sending the next message
> when the return value of the individual sendmsg invocations
> is positive. It results in corrupting the data for TCP,
> SCTP, and UNIX streams.
>
> For example, sendmmsg([["abcd"], ["efgh"]]) can result in a stream
> of "aefgh" if the first sendmsg invocation sends only the first
> byte while the second sendmsg goes through.
>
> Datagram sockets either send the entire datagram or fail, so
> this patch affects only sockets of type SOCK_STREAM and
> SOCK_SEQPACKET.
>
> Fixes: 228e548e6020 ("net: Add sendmmsg socket system call")
> Signed-off-by: Soheil Hassas Yeganeh <soheil@...gle.com>
> Signed-off-by: Eric Dumazet <edumazet@...gle.com>
> Signed-off-by: Willem de Bruijn <willemb@...gle.com>
> Signed-off-by: Neal Cardwell <ncardwell@...gle.com>
Applied and queued up for -stable, thanks.
Powered by blists - more mailing lists