Received: by 2002:a05:6a10:9848:0:0:0:0 with SMTP id x8csp2494579pxf;
        Sun, 4 Apr 2021 03:44:05 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJwf6wgLSXaQ3GGoDtI1cfskavSJh002qY0+wHg+jK63Pugh9TB5nzL+h4mwJvNBBg5MW93Y
X-Received: by 2002:a17:906:4d85:: with SMTP id s5mr22967990eju.43.1617533044875;
        Sun, 04 Apr 2021 03:44:04 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1617533044; cv=none;
        d=google.com; s=arc-20160816;
        b=mnyz6XIrTNWWXAyE2DaXxSSCt4Bq/z/6ObRTYLedWwaQ0kShRJsQKnHl8yTCu0kmV/
         dtcSk6xZMMtWNXnLyjcRBjp5R5wGwas9dodtpmLrg0Cnt5ACEfgLCD7lgkro375hyUWK
         FeM2/qITE5nkjPkJPTnggLY9JfyJ4kNQfWgc7rBYzpTwaWf4t48PKXZYapf+7YtmLHMb
         x0gUKyHDEwy7/hkOlq5Cl/ROo5SNf0ze1XsTnY9WLKPbq2t0B1edeXPoa3ZPJhbiQhXk
         9HqGTEHnUpzKJQau2rJ9giSl18dQXcAbkZ1cUVVdb6W/q5OBCsgI0xyXVi0DUF3n9zIe
         LlxQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date:dkim-signature;
        bh=xQDz+3lzlj4rBqrHwtzefFpQTST5IFduvvR4DQACyAU=;
        b=xWYbV4Zw+3o7Z76ChEgwgLxH5KLNm2WYF5b7q2Do5DAt/0y7EdC8KoEyBNNC76dC7K
         BYff0A6Fb2NNKnalrmpvwjleDoD7xCYEOlnQK/GLzv1z7prAvdajqE7PP/CkwoqjQYks
         jtcbpNYfSulNM4NUQ4+2/9ug6qEMLWRzexO9sggCRVvnACmIwrAY6pxRiIKSjSPM9Cdb
         Zft7i2qajsMJytS7EgD/RLioTTZnhkTU3DLj7bjfE1zXDHXVqYE5nuocPyGb/vkFd5vz
         xkSFlBFCDCtomTpgyCZyCmokBFUJSosOhqWoGixynhv7Hoo/Mj43Q9eJtwcOlPpAhCSz
         23MA==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=NG0CeWle;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id z23si11027992edr.25.2021.04.04.03.43.42;
        Sun, 04 Apr 2021 03:44:04 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=NG0CeWle;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230402AbhDDKdv (ORCPT <rfc822;mailbuggerdev@gmail.com>
        + 99 others); Sun, 4 Apr 2021 06:33:51 -0400
Received: from mail.kernel.org ([198.145.29.99]:53584 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S230381AbhDDKdv (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 4 Apr 2021 06:33:51 -0400
Received: by mail.kernel.org (Postfix) with ESMTPSA id 4833D61350;
        Sun,  4 Apr 2021 10:33:46 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=k20201202; t=1617532427;
        bh=/pslLDMEifIhDTuDQfSd6iPM/XLOWHSaWiw1i09FpeY=;
        h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
        b=NG0CeWleRlSf2LKg1lZ85FlqYf/JEyvvyhqMKfsbCZxITPGT+mEEsJOJCOVOnpwkn
         CZ0JqN5JFtkiyPgDWzOERdNMCEGteQZtZ0QYf6+i72ZogMbKaJUGQpM8IUXuffNxab
         AKN/u+NY3uHqUy62aNXVLV+IE085KJ9bQpqN01V4Yc71toBoYxrXqBpdip0tLngy46
         VKYX3b6GmASvxIeRUtaM6OUz88G8Wh+tC+zUS9lp6K6lSkER8KCSl5bRde63ZVsUO8
         pe7FE5g/MEJ42zUj9R0YnR/yfh5ddRAxiyEKSxLgEMMLq/ar5vX4nCJkUOafcp9iHk
         flj5Zdltjd+fA==
Date:   Sun, 4 Apr 2021 13:33:43 +0300
From:   Leon Romanovsky <leon@kernel.org>
To:     Dan Carpenter <dan.carpenter@oracle.com>
Cc:     Doug Ledford <dledford@redhat.com>, Jason Gunthorpe <jgg@ziepe.ca>,
        Mark Bloch <markb@mellanox.com>, linux-rdma@vger.kernel.org,
        linux-kernel@vger.kernel.org, kernel-janitors@vger.kernel.org
Subject: Re: [PATCH] RDMA/addr: potential uninitialized variable in
 ib_nl_process_good_ip_rsep()
Message-ID: <YGmWB4fT/8IFeiZf@unreal>
References: <YGcES6MsXGnh83qi@mwanda>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <YGcES6MsXGnh83qi@mwanda>
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Apr 02, 2021 at 02:47:23PM +0300, Dan Carpenter wrote:
> The nla_len() is less than or equal to 16.  If it's less than 16 then
> end of the "gid" buffer is uninitialized.
> 
> Fixes: ae43f8286730 ("IB/core: Add IP to GID netlink offload")
> Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
> ---
> I just spotted this in review.  I think it's a bug but I'm not 100%.

I tend to agree with you, that it is a bug.

LS_NLA_TYPE_DGID is declared as NLA_BINARY which doesn't complain if
data is less than declared ".len". However, the fix needs to be in
ib_nl_is_good_ip_resp(), it shouldn't return "true" if length not equal
to 16.

Thanks