Received: by 2002:a05:7412:518d:b0:e2:908c:2ebd with SMTP id fn13csp341567rdb; Thu, 5 Oct 2023 07:32:40 -0700 (PDT) X-Google-Smtp-Source: AGHT+IFqT86/lSTp9wXNrDv+pSxX2X4/XQdbK8qeyuPQmzT3FJheWq0ZEpZ7KW1h9f/lBN1TQvj9 X-Received: by 2002:a05:6358:9192:b0:150:70a:417 with SMTP id j18-20020a056358919200b00150070a0417mr6047278rwa.22.1696516359898; Thu, 05 Oct 2023 07:32:39 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1696516359; cv=none; d=google.com; s=arc-20160816; b=MvQJ0m+rNBdygTQR4FrseCrVq/plakywMUdlgVCU1ybvy1GHijciBUSvmgaRXjkpdw ZLPj/BZrvh1wX1RuHrzjtF4THJZywx3TkFeIB4OQcF9oU4wPD/ZXMqvCAfRDprnmqRkm z4EMpr/lr9/vz76IEn5A6O7VUnm1vYZH9uMohdq2oBJIqUUGrR2gSYR/I+3TuIu3Nj8x 2PqOLGS5BrGpx2ULBWQjY5wfmUOeMP11unheAb4j/JtS3/14qXag4BAmKWxd5/KGueGU j4o5DlCbyKeWnTqUxVLqCHpPAW4oyJyBzvtCyb5Zszhljer6c7rZxGPu/cJQjtmbUuqj 832Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:in-reply-to:from :references:cc:to:content-language:subject:user-agent:mime-version :date:message-id; bh=AZEY9v8qAx8o1Ey06ColX5/9u7R3eP0ihW2UJ14jzkI=; fh=5Vqzs3rMvBirh3HX84SOr/Zm67jBHvOfMCYGuv5bESA=; b=jo/prwynwGnATYVwdTdB8TPGNEAlm3V02GbtKHXyj363mLU3BYSmc3gehZ30NJrC/5 cx4XLa+Jj8/v3RBwDoYCnfHlLYtcK6677YJBz0C1jByay80HCXgxepe7Lk4lF67g0Ngr rQ6xDZBnZ+4jO+XWYacFfM57FTxQs6YpChik1ErsMaps7+bxrEBZ9PQ49vkM5pmPySQ/ 2fiR3wsotsyqIjV1sxEaySH21eq81BnggjMdfLtW0CwIwor1Zy+NpsAHqKjqPQYrHlMc wXpXGrqG0GfOMRv72ySDdwsmWvUA4XFUkTZMApbmZaEVQBQh8iodqdDlgTDh4/K9A+HB Uyug== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:5 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=mcst.ru Return-Path: Received: from groat.vger.email (groat.vger.email. [2620:137:e000::3:5]) by mx.google.com with ESMTPS id bv4-20020a632e04000000b0057d7cff25c7si1570889pgb.417.2023.10.05.07.32.35 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 05 Oct 2023 07:32:39 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:5 as permitted sender) client-ip=2620:137:e000::3:5; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:5 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=mcst.ru Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by groat.vger.email (Postfix) with ESMTP id 6FF078056C6E; Thu, 5 Oct 2023 07:32:21 -0700 (PDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.10 at groat.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S235095AbjJEOb3 (ORCPT + 99 others); Thu, 5 Oct 2023 10:31:29 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:38894 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S234668AbjJEO31 (ORCPT ); Thu, 5 Oct 2023 10:29:27 -0400 Received: from tretyak2.mcst.ru (tretyak2.mcst.ru [212.5.119.215]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C4EBB199F; Thu, 5 Oct 2023 06:49:35 -0700 (PDT) Received: from tretyak2.mcst.ru (localhost [127.0.0.1]) by tretyak2.mcst.ru (Postfix) with ESMTP id 15AF0102396; Thu, 5 Oct 2023 15:32:09 +0300 (MSK) Received: from frog.lab.sun.mcst.ru (frog.lab.sun.mcst.ru [176.16.4.50]) by tretyak2.mcst.ru (Postfix) with ESMTP id 0FFD1102395; Thu, 5 Oct 2023 15:31:24 +0300 (MSK) Received: from [176.16.7.18] (gang [176.16.7.18]) by frog.lab.sun.mcst.ru (8.13.4/8.12.11) with ESMTP id 395CVNlh030864; Thu, 5 Oct 2023 15:31:23 +0300 Message-ID: Date: Thu, 5 Oct 2023 15:31:23 +0300 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.13.1 Subject: Re: [lvc-project] [PATCH] wifi: mac80211: fix buffer overflow in ieee80211_rx_get_bigtk() Content-Language: en-US To: Johannes Berg Cc: "David S. Miller" , Eric Dumazet , Jakub Kicinski , Paolo Abeni , linux-wireless@vger.kernel.org, netdev@vger.kernel.org, linux-kernel@vger.kernel.org, lvc-project@linuxtesting.org References: <20231004143740.40933-1-Igor.A.Artemiev@mcst.ru> <3ba8e3902ade7483a82bd305a35a236744ffba25.camel@sipsolutions.net> From: "Igor A. Artemiev" In-Reply-To: <3ba8e3902ade7483a82bd305a35a236744ffba25.camel@sipsolutions.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Anti-Virus: Kaspersky Anti-Virus for Linux Mail Server 5.6.39/RELEASE, bases: 20111107 #2745587, check: 20231005 notchecked X-AV-Checked: ClamAV using ClamSMTP X-Spam-Status: No, score=-5.0 required=5.0 tests=HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,NICE_REPLY_A,SPF_HELO_NONE,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on groat.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (groat.vger.email [0.0.0.0]); Thu, 05 Oct 2023 07:32:21 -0700 (PDT) On 10/4/23 17:58, Johannes Berg wrote: > And ... how exactly do you propose that is going to happen? 'conf.keyidx', the value that is passed to the function, can be 0. But I missed checking the second argument of the ieee80211_rx_get_bigtk() function before calling it. Sorry to bother you. Thanks, Igor