Re: [PATCH net] net: openvswitch: fix nested key length validation in the set() action

From: Eelco Chaudron
Date: Mon Apr 14 2025 - 03:03:20 EST

Next message: Ard Biesheuvel: "Re: [PATCH] lib/crc: make the CPU feature static keys __ro_after_init"
Previous message: Petr Tesarik: "Re: [PATCH v2] usb: core: warn if a GFP zone flag is passed to hcd_buffer_alloc()"
In reply to: Ilya Maximets: "[PATCH net] net: openvswitch: fix nested key length validation in the set() action"
Next in thread: Aaron Conole: "Re: [PATCH net] net: openvswitch: fix nested key length validation in the set() action"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 12 Apr 2025, at 12:40, Ilya Maximets wrote:

> It's not safe to access nla_len(ovs_key) if the data is smaller than
> the netlink header. Check that the attribute is OK first.
>
> Fixes: ccb1352e76cf ("net: Add Open vSwitch kernel components.")
> Reported-by: syzbot+b07a9da40df1576b8048@xxxxxxxxxxxxxxxxxxxxxxxxx
> Closes: https://syzkaller.appspot.com/bug?extid=b07a9da40df1576b8048
> Tested-by: syzbot+b07a9da40df1576b8048@xxxxxxxxxxxxxxxxxxxxxxxxx
> Signed-off-by: Ilya Maximets <i.maximets@xxxxxxx>

The patch looks good to me.

Reviewed-by: Eelco Chaudron <echaudro@xxxxxxxxxx>

Next message: Ard Biesheuvel: "Re: [PATCH] lib/crc: make the CPU feature static keys __ro_after_init"
Previous message: Petr Tesarik: "Re: [PATCH v2] usb: core: warn if a GFP zone flag is passed to hcd_buffer_alloc()"
In reply to: Ilya Maximets: "[PATCH net] net: openvswitch: fix nested key length validation in the set() action"
Next in thread: Aaron Conole: "Re: [PATCH net] net: openvswitch: fix nested key length validation in the set() action"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]