Received: by 2002:ac0:a594:0:0:0:0:0 with SMTP id m20-v6csp3993060imm; Mon, 14 May 2018 00:36:35 -0700 (PDT) X-Google-Smtp-Source: AB8JxZoH02QRlKyzL3FwhebmOoaS6SlyxdxEalwob0u+WXVEO78tfPHScrMbgks2jf3/snrK/0cn X-Received: by 2002:aa7:8084:: with SMTP id v4-v6mr9282920pff.105.1526283395551; Mon, 14 May 2018 00:36:35 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1526283395; cv=none; d=google.com; s=arc-20160816; b=Zw7XDDthElpxDwflmlnloTD45v5o3O/SbYWe8ABbOo/0Bx5WUszDsIMXAHRkswGbI7 M06PCXA9aU1PSrl6gnuEPwZHexTXg0H2mjObkD8tchHDSyfERy48kZj0wuIj/rvoL9Ul x5WTB8R6TYAlEF1Cb1pfL2ZNi6PNBBPPp6YtuF4IUu43/aIi1JiGpR/9KBkJva3F3k+w DJ0jPDSgjPtEqhnBBi1q+oeVnh0W9IEVNERpkw8WQ1k4wt80xlK8Oqq0ToAVrvCQoona Hzju3806iFelWOCDHjGQb7YKZPu/cYeVEZOf2w5JMvGbGKHIcQLSS1k9mq11kg3LUPIQ F6VA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:user-agent:references :in-reply-to:message-id:date:subject:cc:to:from:dkim-signature :arc-authentication-results; bh=pwnG+gRwjdh6hlMTLTuro9qbfFSMPv0hP0hhCeE+xy0=; b=HuBrZMkgXHPDvqmMSlKvD2CkZCUp2LNuUp6lzlXErm+fFFAGATn625TYHMoPPKQNUS gtpAaPz8kfRcGplA27xwcgnRpFXkD5m5HyeMHIzei0MCtw9+Zb7EWMbbsUZs0AExjOgf Uogn5pqmUsFnF2vJnmP+8fDSrp1G3+BbCFsMaDEqFJcaZNXJAvnin8G8YQI9ffJni1FI JffoIBfoaqxRQpY0SVgosvSL0ECrMcz2+pF4aDSLnfTEaB2Q5tO3kgHVJpB6a95qd1qs 3oln9IwLPg+570bZ32rCW7URVuAGP8tEnmXGKxsodBUZiUGv4XzcL7Laq1UELSHKZIcF 9IKA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=uHwxhc2Y; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 63-v6si9590716plf.524.2018.05.14.00.36.21; Mon, 14 May 2018 00:36:35 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=uHwxhc2Y; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752827AbeENGxW (ORCPT + 99 others); Mon, 14 May 2018 02:53:22 -0400 Received: from mail.kernel.org ([198.145.29.99]:59598 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752028AbeENGxT (ORCPT ); Mon, 14 May 2018 02:53:19 -0400 Received: from localhost (LFbn-1-12247-202.w90-92.abo.wanadoo.fr [90.92.61.202]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id BAA7621771; Mon, 14 May 2018 06:53:18 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1526280799; bh=6TQosbPkKKtas8MIxcxfYUwyYfaLfR6DHpiknKfzako=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=uHwxhc2YRrcLc+dm7ccxmg93sYR86VKhfXBvx2NfNxXXGeGkGrCgc2YAeqcsM2W7w 6/w/cX9eMDCZpXwc9QEKkDl53un2TPkfmnzkizchOFlnfRt3SThIMnwX53TJLN+1W0 TqT6Y7ZWsfBA0qG2XG8Qs1DbYWf1lsYGZejlOe2c= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Eric Dumazet , syzbot , "David S. Miller" Subject: [PATCH 4.4 36/56] net: fix uninit-value in __hw_addr_add_ex() Date: Mon, 14 May 2018 08:48:41 +0200 Message-Id: <20180514064758.269850889@linuxfoundation.org> X-Mailer: git-send-email 2.17.0 In-Reply-To: <20180514064754.853201981@linuxfoundation.org> References: <20180514064754.853201981@linuxfoundation.org> User-Agent: quilt/0.65 X-stable: review MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org 4.4-stable review patch. If anyone has any objections, please let me know. ------------------ From: Eric Dumazet commit 77d36398d99f2565c0a8d43a86fd520a82e64bb8 upstream. syzbot complained : BUG: KMSAN: uninit-value in memcmp+0x119/0x180 lib/string.c:861 CPU: 0 PID: 3 Comm: kworker/0:0 Not tainted 4.16.0+ #82 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: ipv6_addrconf addrconf_dad_work Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x185/0x1d0 lib/dump_stack.c:53 kmsan_report+0x142/0x240 mm/kmsan/kmsan.c:1067 __msan_warning_32+0x6c/0xb0 mm/kmsan/kmsan_instr.c:676 memcmp+0x119/0x180 lib/string.c:861 __hw_addr_add_ex net/core/dev_addr_lists.c:60 [inline] __dev_mc_add+0x1c2/0x8e0 net/core/dev_addr_lists.c:670 dev_mc_add+0x6d/0x80 net/core/dev_addr_lists.c:687 igmp6_group_added+0x2db/0xa00 net/ipv6/mcast.c:662 ipv6_dev_mc_inc+0xe9e/0x1130 net/ipv6/mcast.c:914 addrconf_join_solict net/ipv6/addrconf.c:2078 [inline] addrconf_dad_begin net/ipv6/addrconf.c:3828 [inline] addrconf_dad_work+0x427/0x2150 net/ipv6/addrconf.c:3954 process_one_work+0x12c6/0x1f60 kernel/workqueue.c:2113 worker_thread+0x113c/0x24f0 kernel/workqueue.c:2247 kthread+0x539/0x720 kernel/kthread.c:239 Fixes: f001fde5eadd ("net: introduce a list of device addresses dev_addr_list (v6)") Signed-off-by: Eric Dumazet Reported-by: syzbot Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman --- net/core/dev_addr_lists.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) --- a/net/core/dev_addr_lists.c +++ b/net/core/dev_addr_lists.c @@ -57,8 +57,8 @@ static int __hw_addr_add_ex(struct netde return -EINVAL; list_for_each_entry(ha, &list->list, list) { - if (!memcmp(ha->addr, addr, addr_len) && - ha->type == addr_type) { + if (ha->type == addr_type && + !memcmp(ha->addr, addr, addr_len)) { if (global) { /* check if addr is already used as global */ if (ha->global_use)