net/dev: fix information leak to userspace

From: Pavel Machek
Date: Sun Mar 21 2021 - 12:33:20 EST

Next message: Pavel Machek: "vDPA: explain in Kconfig what vDPA is, capitalise it consistenly"
Previous message: Pavel Machek: "vDPA: explain in Kconfig what vDPA is, capitalise it consistenly"
Next in thread: Cong Wang: "Re: net/dev: fix information leak to userspace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

dev_get_mac_address() does not always initialize whole
structure. Unfortunately, other code copies such structure to
userspace, leaking information. Fix it.

Signed-off-by: Pavel Machek (CIP) <pavel@xxxxxxx>
Cc: stable@xxxxxxxxxx

diff --git a/net/core/dev.c b/net/core/dev.c
index 6c5967e80132..28283a9eb63a 100644
--- a/net/core/dev.c
+++ b/net/core/dev.c
@@ -8949,11 +8949,9 @@ int dev_get_mac_address(struct sockaddr *sa, struct net *net, char *dev_name)
ret = -ENODEV;
goto unlock;
}
- if (!dev->addr_len)
- memset(sa->sa_data, 0, size);
- else
- memcpy(sa->sa_data, dev->dev_addr,
- min_t(size_t, size, dev->addr_len));
+ memset(sa->sa_data, 0, size);
+ memcpy(sa->sa_data, dev->dev_addr,
+ min_t(size_t, size, dev->addr_len));
sa->sa_family = dev->type;

unlock:

--
DENX Software Engineering GmbH, Managing Director: Wolfgang Denk
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany

Attachment: signature.asc
Description: Digital signature

Next message: Pavel Machek: "vDPA: explain in Kconfig what vDPA is, capitalise it consistenly"
Previous message: Pavel Machek: "vDPA: explain in Kconfig what vDPA is, capitalise it consistenly"
Next in thread: Cong Wang: "Re: net/dev: fix information leak to userspace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]