Re: [PATCH v2] macsec: dynamically allocate space for sglist

From: Sabrina Dubroca
Date: Tue Apr 25 2017 - 16:36:23 EST

Next message: Grygorii Strashko: "Re: [PATCH v2] gpio: omap: return error if requested debounce time is not possible"
Previous message: Linus Torvalds: "Re: [Y2038] [PATCH v5 2/5] vfs: Add checks for filesystem timestamp limits"
In reply to: Jason A. Donenfeld: "[PATCH v2] macsec: dynamically allocate space for sglist"
Next in thread: David Miller: "Re: [PATCH v2] macsec: dynamically allocate space for sglist"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

2017-04-25, 19:08:18 +0200, Jason A. Donenfeld wrote:
> We call skb_cow_data, which is good anyway to ensure we can actually
> modify the skb as such (another error from prior). Now that we have the
> number of fragments required, we can safely allocate exactly that amount
> of memory.
>
> Signed-off-by: Jason A. Donenfeld <Jason@xxxxxxxxx>
> Cc: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
> Cc: security@xxxxxxxxxx
> Cc: stable@xxxxxxxxxxxxxxx

Acked-by: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>

Fixes: c09440f7dcb3 ("macsec: introduce IEEE 802.1AE driver")
Fixes: CVE-2017-7477

David, this fix is essentially equivalent to my patch "macsec: avoid
heap overflow in skb_to_sgvec on receive". Feel free to pick my patch
if you prefer (it's smaller), but this looks ok to me.

Thanks,

--
Sabrina

Next message: Grygorii Strashko: "Re: [PATCH v2] gpio: omap: return error if requested debounce time is not possible"
Previous message: Linus Torvalds: "Re: [Y2038] [PATCH v5 2/5] vfs: Add checks for filesystem timestamp limits"
In reply to: Jason A. Donenfeld: "[PATCH v2] macsec: dynamically allocate space for sglist"
Next in thread: David Miller: "Re: [PATCH v2] macsec: dynamically allocate space for sglist"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]