| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <166441802156.18961.11257773505760240774.git-patchwork-notify@kernel.org>
Date: Thu, 29 Sep 2022 02:20:21 +0000
From: patchwork-bot+netdevbpf@...nel.org
To: Martin KaFai Lau <kafai@...com>
Cc: netdev@...r.kernel.org, davem@...emloft.net, edumazet@...gle.com,
kuba@...nel.org, kernel-team@...com, pabeni@...hat.com,
joannelkoong@...il.com, glider@...gle.com, martin.lau@...nel.org
Subject: Re: [PATCH net-next] net: Fix incorrect address comparison when searching
for a bind2 bucket
Hello:
This patch was applied to netdev/net-next.git (master)
by Jakub Kicinski <kuba@...nel.org>:
On Mon, 26 Sep 2022 17:25:44 -0700 you wrote:
> From: Martin KaFai Lau <martin.lau@...nel.org>
>
> The v6_rcv_saddr and rcv_saddr are inside a union in the
> 'struct inet_bind2_bucket'. When searching a bucket by following the
> bhash2 hashtable chain, eg. inet_bind2_bucket_match, it is only using
> the sk->sk_family and there is no way to check if the inet_bind2_bucket
> has a v6 or v4 address in the union. This leads to an uninit-value
> KMSAN report in [0] and also potentially incorrect matches.
>
> [...]
Here is the summary with links:
- [net-next] net: Fix incorrect address comparison when searching for a bind2 bucket
https://git.kernel.org/netdev/net-next/c/5456262d2baa
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
Powered by blists - more mailing lists