| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250410161744.1e0562eb@kernel.org> Date: Thu, 10 Apr 2025 16:17:44 -0700 From: Jakub Kicinski <kuba@...nel.org> To: Qasim Ijaz <qasdev00@...il.com> Cc: andrew+netdev@...n.ch, davem@...emloft.net, edumazet@...gle.com, pabeni@...hat.com, horms@...nel.org, linux-usb@...r.kernel.org, netdev@...r.kernel.org, linux-kernel@...r.kernel.org, syzbot <syzbot+3361c2d6f78a3e0892f9@...kaller.appspotmail.com> Subject: Re: [PATCH 1/4] net: fix uninitialised access in mii_nway_restart() On Thu, 10 Apr 2025 23:15:23 +0100 Qasim Ijaz wrote: > Apologies for my delayed response, I had another look at this and I > think my patch may be off a bit. You are correct that there are multiple > mdio_read() calls and looking at the mii.c file we can see that calls to > functions like mdio_read (and a lot of others) dont check return values. > > So in light of this I think a better patch would be to not edit the > mii.c file at all and just make ch9200_mdio_read return 0 on > error. This way if mdio_read fails and 0 is returned, the > check for "bmcr & BMCR_ANENABLE" won't be triggered and mii_nway_restart > will just return 0 and end. If we return a negative on error it may > contain the exact bit the function checks. > > Similiar to this patch: > <https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=c68b2c9eba38> > > If this sounds good, should i send another patch series with all the > changes? SG
Powered by blists - more mailing lists