Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1754523AbdGNP6e (ORCPT <rfc822;w@1wt.eu>);
        Fri, 14 Jul 2017 11:58:34 -0400
Received: from shards.monkeyblade.net ([184.105.139.130]:36714 "EHLO
        shards.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1753382AbdGNP6d (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 14 Jul 2017 11:58:33 -0400
Date: Fri, 14 Jul 2017 08:58:32 -0700 (PDT)
Message-Id: <20170714.085832.929093611392872988.davem@davemloft.net>
To: glider@google.com
Cc: dvyukov@google.com, kcc@google.com, edumazet@google.com,
        lucien.xin@gmail.com, linux-kernel@vger.kernel.org,
        netdev@vger.kernel.org
Subject: Re: [PATCH v2] sctp: don't dereference ptr before leaving
 _sctp_walk_{params,errors}()
From: David Miller <davem@davemloft.net>
In-Reply-To: <20170714100329.105604-1-glider@google.com>
References: <20170714100329.105604-1-glider@google.com>
X-Mailer: Mew version 6.7 on Emacs 25.2 / Mule 6.0 (HANACHIRUSATO)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-8859-7
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.5.12 (shards.monkeyblade.net [149.20.54.216]); Fri, 14 Jul 2017 08:58:32 -0700 (PDT)
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from base64 to 8bit by nfs id v6EFwhGC023106
Content-Length: 863
Lines: 19

From: Alexander Potapenko <glider@google.com>
Date: Fri, 14 Jul 2017 12:03:29 +0200

>  v2: per comment from David Miller, make sure the whole iterator->length
>      fits into the remaining buffer.

Please compile and functionally test your changes:

In file included from ./include/linux/compiler.h:58:0,
                 from ./include/uapi/linux/stddef.h:1,
                 from ./include/linux/stddef.h:4,
                 from ./include/uapi/linux/posix_types.h:4,
                 from ./include/uapi/linux/types.h:13,
                 from ./include/linux/types.h:5,
                 from net/sctp/sm_statefuns.c:48:
net/sctp/sm_statefuns.c: In function ?sctp_sf_do_reconf?:
./include/net/sctp/sctp.h:472:24: error: unknown type name ?sctp_paramhdr_t?
      (pos.v + offsetof(sctp_paramhdr_t, length) + sizeof(pos.p->length) <\
                        ^