Message ID | 1703485231-27098-10-git-send-email-yifeid@nvidia.com |
---|---|
State | New |
Headers | show
Return-Path: <kernel-team-bounces@lists.ubuntu.com> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@legolas.ozlabs.org Authentication-Results: legolas.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=lists.ubuntu.com (client-ip=185.125.189.65; helo=lists.ubuntu.com; envelope-from=kernel-team-bounces@lists.ubuntu.com; receiver=patchwork.ozlabs.org) Received: from lists.ubuntu.com (lists.ubuntu.com [185.125.189.65]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by legolas.ozlabs.org (Postfix) with ESMTPS id 4Sz79732XTz20Rq for <incoming@patchwork.ozlabs.org>; Mon, 25 Dec 2023 17:22:03 +1100 (AEDT) Received: from localhost ([127.0.0.1] helo=lists.ubuntu.com) by lists.ubuntu.com with esmtp (Exim 4.86_2) (envelope-from <kernel-team-bounces@lists.ubuntu.com>) id 1rHeLZ-000788-G4; Mon, 25 Dec 2023 06:21:56 +0000 Received: from mail-mw2nam04on2085.outbound.protection.outlook.com ([40.107.101.85] helo=NAM04-MW2-obe.outbound.protection.outlook.com) by lists.ubuntu.com with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.86_2) (envelope-from <yifeid@nvidia.com>) id 1rHeKk-0006ou-JZ for kernel-team@lists.ubuntu.com; Mon, 25 Dec 2023 06:21:03 +0000 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=M8p3Yu9GI9fFy3DeizW+QuZJykKAeJNJ1vXkUj+JPlq/SxzcQN8UJgeuglFQoo1aMBbGSBNhDL746hD9/5cJb5dwj2kSfC3kzYbuaJoGZPSrQ939r1yOsttupeGp4QIItLaCZj3jWXEuUn4b8I/eD+Yqjw/AoigA3HhMWpMdn1CcKM0a93hHqZZAD3EnB/7xxijbC4oGFuKtcazPIULH6FYEOnaill5Ft5Fizgs1EL41DAsB3DhUjRLWyKLQR3rqXy/S+UccS/wuvjzqJYpq3EB2NbmXjACH7vN4L7JiO5ZVbMczYvC9rJ2KsAAclo/hvXb/ny0FAzLB6CKSLOtMwQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=e0wbWYdCtUFomdgKh6OxkzwxpLMIXvrZAvmJhxoDl/E=; b=HgD0DIb7XMXhzXvGJVrrbb7JYl5aNOYBgEZduwbBf5MPMG7iPE/i1GJ7pUDT5oT1fBahOKV0S1pe0Rq32L6qrGiGGr40n+dEncrZ1BiO1iUoKLKWwTzRZ3Wp+jzaOi9fgNTsVqrxqZlWxWKBpBXpdTRIQ2td/8mfMt7TluogAr/uh6qt9xyJJBUczBj8tTKFCJRUA2dqSfWKnYJHJ7b//uFLzLChMn8tbN4Nwjotd43jG4rJSRXcwoBpUkMoENSQ+YYWxaQs90Qwyq5OKQ5EAqAJa6rj8BVermSuT2kmMVphSu5LnBBQIDUdaXVKsL+53Toy93IMPN049fl/EgDMtw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 216.228.118.233) smtp.rcpttodomain=canonical.com smtp.mailfrom=nvidia.com; dmarc=pass (p=reject sp=reject pct=100) action=none header.from=nvidia.com; dkim=none (message not signed); arc=none (0) Received: from DM6PR07CA0098.namprd07.prod.outlook.com (2603:10b6:5:337::31) by MN2PR12MB4486.namprd12.prod.outlook.com (2603:10b6:208:263::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7113.26; Mon, 25 Dec 2023 06:20:58 +0000 Received: from DS1PEPF0001709B.namprd05.prod.outlook.com (2603:10b6:5:337:cafe::54) by DM6PR07CA0098.outlook.office365.com (2603:10b6:5:337::31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7113.26 via Frontend Transport; Mon, 25 Dec 2023 06:20:58 +0000 X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 216.228.118.233) smtp.mailfrom=nvidia.com; dkim=none (message not signed) header.d=none;dmarc=pass action=none header.from=nvidia.com; Received-SPF: Pass (protection.outlook.com: domain of nvidia.com designates 216.228.118.233 as permitted sender) receiver=protection.outlook.com; client-ip=216.228.118.233; helo=mail.nvidia.com; pr=C Received: from mail.nvidia.com (216.228.118.233) by DS1PEPF0001709B.mail.protection.outlook.com (10.167.18.105) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7135.14 via Frontend Transport; Mon, 25 Dec 2023 06:20:57 +0000 Received: from drhqmail202.nvidia.com (10.126.190.181) by mail.nvidia.com (10.127.129.6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.41; Sun, 24 Dec 2023 22:20:53 -0800 Received: from drhqmail203.nvidia.com (10.126.190.182) by drhqmail202.nvidia.com (10.126.190.181) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.41; Sun, 24 Dec 2023 22:20:52 -0800 Received: from mtl123.mtl.labs.mlnx (10.127.8.10) by mail.nvidia.com (10.126.190.182) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.41 via Frontend Transport; Sun, 24 Dec 2023 22:20:52 -0800 Received: from sw-mtx-008.mtx.labs.mlnx. (sw-mtx-008.mtx.labs.mlnx [10.9.150.35]) by mtl123.mtl.labs.mlnx (8.14.4/8.14.4) with ESMTP id 3BP6KW6L031863; Mon, 25 Dec 2023 08:20:49 +0200 From: Tony Duan <yifeid@nvidia.com> To: <kernel-team@lists.ubuntu.com> Subject: [SRU][J:linux-bluefield][PATCH v1 9/9] net: xfrm: Fix xfrm_address_filter OOB read Date: Mon, 25 Dec 2023 00:20:31 -0600 Message-ID: <1703485231-27098-10-git-send-email-yifeid@nvidia.com> X-Mailer: git-send-email 1.8.3.1 In-Reply-To: <1703485231-27098-1-git-send-email-yifeid@nvidia.com> References: <1703485231-27098-1-git-send-email-yifeid@nvidia.com> MIME-Version: 1.0 X-NV-OnPremToCloud: ExternallySecured X-EOPAttributedMessage: 0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: DS1PEPF0001709B:EE_|MN2PR12MB4486:EE_ X-MS-Office365-Filtering-Correlation-Id: ed882fc4-517d-4351-4dca-08dc0511a873 X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:216.228.118.233; CTRY:US; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:mail.nvidia.com; PTR:dc7edge2.nvidia.com; CAT:NONE; SFS:(13230031)(4636009)(396003)(39860400002)(376002)(346002)(136003)(230922051799003)(451199024)(1800799012)(82310400011)(186009)(64100799003)(40470700004)(46966006)(36840700001)(47076005)(356005)(7636003)(84970400001)(36860700001)(41300700001)(86362001)(26005)(336012)(36756003)(2616005)(83380400001)(40480700001)(40460700003)(82740400003)(478600001)(316002)(6916009)(966005)(54906003)(70586007)(70206006)(6666004)(8676002)(8936002)(5660300002)(4326008)(2906002); DIR:OUT; SFP:1101; X-OriginatorOrg: Nvidia.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Dec 2023 06:20:57.7229 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: ed882fc4-517d-4351-4dca-08dc0511a873 X-MS-Exchange-CrossTenant-Id: 43083d15-7273-40c1-b7db-39efd9ccc17a X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=43083d15-7273-40c1-b7db-39efd9ccc17a; Ip=[216.228.118.233]; Helo=[mail.nvidia.com] X-MS-Exchange-CrossTenant-AuthSource: DS1PEPF0001709B.namprd05.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR12MB4486 X-BeenThere: kernel-team@lists.ubuntu.com X-Mailman-Version: 2.1.20 Precedence: list List-Id: Kernel team discussions <kernel-team.lists.ubuntu.com> List-Unsubscribe: <https://lists.ubuntu.com/mailman/options/kernel-team>, <mailto:kernel-team-request@lists.ubuntu.com?subject=unsubscribe> List-Archive: <https://lists.ubuntu.com/archives/kernel-team> List-Post: <mailto:kernel-team@lists.ubuntu.com> List-Help: <mailto:kernel-team-request@lists.ubuntu.com?subject=help> List-Subscribe: <https://lists.ubuntu.com/mailman/listinfo/kernel-team>, <mailto:kernel-team-request@lists.ubuntu.com?subject=subscribe> Cc: vlad@nvidia.com, dann.frazier@canonical.com, bodong@nvidia.com Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com> |
Series |
Kernel panic in restart driver after configuring IPsec full offload
|
expand
|
diff --git a/net/xfrm/xfrm_user.c b/net/xfrm/xfrm_user.c index b17dcc5..f0b07cb 100644 --- a/net/xfrm/xfrm_user.c +++ b/net/xfrm/xfrm_user.c @@ -1167,6 +1167,15 @@ static int xfrm_dump_sa(struct sk_buff *skb, struct netlink_callback *cb) sizeof(*filter), GFP_KERNEL); if (filter == NULL) return -ENOMEM; + + /* see addr_match(), (prefix length >> 5) << 2 + * will be used to compare xfrm_address_t + */ + if (filter->splen > (sizeof(xfrm_address_t) << 3) || + filter->dplen > (sizeof(xfrm_address_t) << 3)) { + kfree(filter); + return -EINVAL; + } } if (attrs[XFRMA_PROTO])