Re: [PATCH] net: cgroup: fix out of bounds accesses

From: Eric Dumazet
Date: Mon Jul 09 2012 - 07:50:53 EST

Next message: Michal Hocko: "Re: [PATCH] mm/memcg: return -EBUSY when oom-kill-disable modifiedand memcg use_hierarchy, has children"
Previous message: Jean Delvare: "Re: [PATCH] CONFIG_CC_STACKPROTECTOR is no longer experimental"
In reply to: Neil Horman: "Re: [PATCH] net: cgroup: fix out of bounds accesses"
Next in thread: Neil Horman: "Re: [PATCH] net: cgroup: fix out of bounds accesses"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2012-07-09 at 07:01 -0400, Neil Horman wrote:

> Thank you for doing this Eric, Gao. Just to be sure (I asked in the previous
> thread), would it be better to avoid the length check in skb_update_prio, and
> instead update the netdev tables to be long enough in cgrp_create and in
> netprio_device_event on device registration?

Yes probably, and it is even needed because extend_netdev_table() can
acutally fail to expand the table if kzalloc() returned NULL.

Current code just ignores this allocation failure so we also can crash
in write_priomap()

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michal Hocko: "Re: [PATCH] mm/memcg: return -EBUSY when oom-kill-disable modifiedand memcg use_hierarchy, has children"
Previous message: Jean Delvare: "Re: [PATCH] CONFIG_CC_STACKPROTECTOR is no longer experimental"
In reply to: Neil Horman: "Re: [PATCH] net: cgroup: fix out of bounds accesses"
Next in thread: Neil Horman: "Re: [PATCH] net: cgroup: fix out of bounds accesses"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]