Received: by 10.213.65.68 with SMTP id h4csp1016691imn; Wed, 14 Mar 2018 07:13:08 -0700 (PDT) X-Google-Smtp-Source: AG47ELtXQNTpqZhFEuYLGdwU6wxVgvGownPuh+Ov89HZLRjPzpZ+8dBJ5bi169VKQye7Pwp6HnuE X-Received: by 10.99.173.71 with SMTP id y7mr3821138pgo.432.1521036788897; Wed, 14 Mar 2018 07:13:08 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1521036788; cv=none; d=google.com; s=arc-20160816; b=Mffh+ijKYX2WyaeWWTHevf14YSJrPDjzc3AzVGMBiIGST9izpSMUnh9AtXOyKMk7Iz h8md6whOQrohofhu1hzod0c9pmEbf/liMQ2JcE1xTbcRYjRtb1X2ZZ8lgwz6lXYLpOki wN6y/4DvawVkjk3Z0OZgxGDWd43hmjQZE84HaMGPgOW6A7fYwrqIGdc5uJX6xpRnQRsr ZqEKXHvXvbr2imq9pNjcdg4v+jubCs9fMI7ttfb/XRoxpylFkuQg+oaQfAdfpzlxmgEH oP+4yCCa1LXY+kvOpMewopoypQthPX73e/HvjXd+88DceCwpkM7TrD9FWSxNghKSTqNU awzQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature :arc-authentication-results; bh=9kNrGrUvGky0Gi7UtuHuuHsQqgEV/nvpaepJ9MOBc3k=; b=W/NlsSskaQ7bfAuYA35Im7y69BJAyeNmV+LunGz3f0NiQhhU2BYnXkyZyfwPVieGFA s0Z+v86d2+3D2iHYfqcVb3QdTGyfWkNizOo1vrKa1YcawU/KLUWq97yGOA5kmNmD0j0/ M1NTBEfRJ+i6Lo0BeGxjPedGVCXCSpqG2rasAOLFk4EsdLxqvgTrLiQBEJovV13E4Pql UgI7R87uUxfbj6Flk5X7oewUuCSBGQZwy/+XCe9nTn3+Kpx5LmfYir1r7GIO1O753XkA LvbHnRZD13z8++s8AjpvRNQu8q9EvCF4ON3pYSunXoYZrhJvv2BnLIUiOrkMq0LUUWAb 0+GA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=cf//Io/a; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id e92-v6si2029094plb.82.2018.03.14.07.12.51; Wed, 14 Mar 2018 07:13:08 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=cf//Io/a; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751440AbeCNOLs (ORCPT + 99 others); Wed, 14 Mar 2018 10:11:48 -0400 Received: from mail-wr0-f196.google.com ([209.85.128.196]:44966 "EHLO mail-wr0-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751131AbeCNOLq (ORCPT ); Wed, 14 Mar 2018 10:11:46 -0400 Received: by mail-wr0-f196.google.com with SMTP id v65so4859990wrc.11 for ; Wed, 14 Mar 2018 07:11:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=9kNrGrUvGky0Gi7UtuHuuHsQqgEV/nvpaepJ9MOBc3k=; b=cf//Io/aVumqS4TtL2ZLQ2YuSyL2gzdleQtE9CWRlJoWsUL3zk8P1cyCtHR5M/isC2 e86Pl6kWf86TsZ8T3amjK2C7iAAFx1f7eHNEBpW5R42SNzZClaVFiNFJSUE0zhd3sCet LlFgQM+E9y9Du2YKWhXHZprXarVZMDOkS+K4xZ3h7qsMefs11vlJxkcOahgQUvzsyweC UJkx/FbOxYZzeq1Ksece3s9hrAvdANF66sZJREj3SERNWKXB4iqQUs9cEGwyhVLjy07F m57EHydkiJEwjKyHdNHizBhIfLtqms/zl3XvhSSiw/Ea7kPExxvD6dQ+XAfc9C+ncc6U Q2qw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=9kNrGrUvGky0Gi7UtuHuuHsQqgEV/nvpaepJ9MOBc3k=; b=HLmIDFcq0rtSULmz17KMpAwGvqfUcNOvaOYGzB3oWltfli1EeslzbyoDze9zALeRyn DpT0eCsctv6GRwd/76DXxUr3+Lp1ZHyNKV6ks/M1UTlOeFBFrTV8QqJqIZ5NA0cZaU1a XwPxPs5ACWZZR+jjHbbzGd7DkGp2QiDpe2TWuEXvsgR0ZbThoPIf/sjgcSy73kvYF2Ej b/fl1zDUAymRIfZtV2cwAA1ApvamV6xZKr2G0I5cDnt/ctbAbHsXXzcCeWZ9p9n5FSol dzeAy0SUE7mKRDfSdE7hGkqJ33irZiTFNQ2XvFbAPRloVQgIzlH5HHm/xucrx/0hzE8w 29DA== X-Gm-Message-State: AElRT7GOoaxgY514LI1JP8HXuxgONQSrXDwOJkr9aIVsliYF8+MHHvno oQ7dQc9QQHkbhQ52ZMwBnImTBvA8kJUbUOrAMZLogw== X-Received: by 10.223.185.73 with SMTP id b9mr4063085wrg.229.1521036705175; Wed, 14 Mar 2018 07:11:45 -0700 (PDT) MIME-Version: 1.0 Received: by 10.28.87.139 with HTTP; Wed, 14 Mar 2018 07:11:43 -0700 (PDT) In-Reply-To: <20180314140322.233047-1-glider@google.com> References: <20180314140322.233047-1-glider@google.com> From: Eric Dumazet Date: Wed, 14 Mar 2018 07:11:43 -0700 Message-ID: Subject: Re: [PATCH] netlink: make sure nladdr has correct size in netlink_connect() To: Alexander Potapenko Cc: Dmitry Vyukov , David Miller , netdev , LKML Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Mar 14, 2018 at 7:03 AM, Alexander Potapenko wrote: > KMSAN reports use of uninitialized memory in the case when |alen| is > smaller than sizeof(struct netlink_sock), and therefore |nladdr| isn't > fully copied from the userspace. > > Signed-off-by: Alexander Potapenko > Fixes: 1da177e4c3f41524 ("Linux-2.6.12-rc2") > --- > net/netlink/af_netlink.c | 3 +++ > 1 file changed, 3 insertions(+) > > diff --git a/net/netlink/af_netlink.c b/net/netlink/af_netlink.c > index 07e8478068f0..5d49b39e81c3 100644 > --- a/net/netlink/af_netlink.c > +++ b/net/netlink/af_netlink.c > @@ -1085,6 +1085,9 @@ static int netlink_connect(struct socket *sock, struct sockaddr *addr, > if (addr->sa_family != AF_NETLINK) > return -EINVAL; > > + if (alen < sizeof(struct netlink_sock)) > + return -EINVAL; > + > Hmmm. How was this patch tested exactly ? Thanks.