| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <0984a481-f5eb-4346-fb98-718174c55e36@gmail.com>
Date: Mon, 14 Oct 2019 05:33:14 -0700
From: Eric Dumazet <eric.dumazet@...il.com>
To: Markus Elfring <Markus.Elfring@....de>,
Eric Dumazet <eric.dumazet@...il.com>, netdev@...r.kernel.org,
Alexei Starovoitov <ast@...nel.org>,
Alexey Kuznetsov <kuznet@....inr.ac.ru>,
Daniel Borkmann <daniel@...earbox.net>,
"David S. Miller" <davem@...emloft.net>,
Eric Dumazet <edumazet@...gle.com>,
Hideaki Yoshifuji <yoshfuji@...ux-ipv6.org>,
Martin KaFai Lau <kafai@...com>,
Song Liu <songliubraving@...com>, Yonghong Song <yhs@...com>
Cc: LKML <linux-kernel@...r.kernel.org>,
kernel-janitors@...r.kernel.org, Aditya Pakki <pakki001@....edu>,
Kangjie Lu <kjlu@....edu>, Navid Emamdoost <emamd001@....edu>,
Stephen McCamant <smccaman@....edu>
Subject: Re: tcp: Checking a kmemdup() call in tcp_time_wait()
On 10/13/19 11:51 PM, Markus Elfring wrote:
>>> https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/net/ipv4/tcp_minisocks.c?id=1c0cc5f1ae5ee5a6913704c0d75a6e99604ee30a#n306
>>> https://elixir.bootlin.com/linux/v5.4-rc2/source/net/ipv4/tcp_minisocks.c#L306
> …
>> Presumably the BUG would trigger if a really disturbing bug happened.
>
> How “buggy” is this place if the function call “kmemdup” failed?
It is not buggy. The BUG will not trigger.
BUG_ON(tcptw->tw_md5_key && !tcp_alloc_md5sig_pool());
This would be different if we had instead :
BUG_ON(!tcptw->tw_md5_key && !tcp_alloc_md5sig_pool());
>
> Can an other error reporting approach be nicer here?
There is no error reported if kmemdup() has failed.
timewait is best effort.
Powered by blists - more mailing lists