[06/18] netlink: Do not subscribe to non-existent groups

Message ID	20180726023144.31066-7-dima@arista.com
State	Awaiting Upstream, archived
Delegated to:	David Miller
Headers	show Return-Path: <netdev-owner@vger.kernel.org> From: Dmitry Safonov <dima@arista.com> To: linux-kernel@vger.kernel.org Cc: Dmitry Safonov <dima@arista.com>, "David S. Miller" <davem@davemloft.net>, Herbert Xu <herbert@gondor.apana.org.au>, Steffen Klassert <steffen.klassert@secunet.com>, Dmitry Safonov <0x7f454c46@gmail.com>, netdev@vger.kernel.org Subject: [PATCH 06/18] netlink: Do not subscribe to non-existent groups Date: Thu, 26 Jul 2018 03:31:32 +0100 Message-Id: <20180726023144.31066-7-dima@arista.com> In-Reply-To: <20180726023144.31066-1-dima@arista.com> References: <20180726023144.31066-1-dima@arista.com> Sender: netdev-owner@vger.kernel.org Precedence: bulk
Series	xfrm: Add compat layer \| expand [00/18] xfrm: Add compat layer [01/18] x86/compat: Adjust in_compat_syscall() to generic code under !COMPAT [02/18] compat: Cleanup in_compat_syscall() callers [03/18] selftest/net/xfrm: Add test for ipsec tunnel [04/18] net/xfrm: Add _packed types for compat users [05/18] net/xfrm: Parse userspi_info{,_packed} depending on syscall [06/18] netlink: Do not subscribe to non-existent groups [07/18] netlink: Pass groups pointer to .bind() [08/18] xfrm: Add in-kernel groups for compat notifications [09/18] xfrm: Dump usersa_info in compat/native formats [10/18] xfrm: Send state notifications in compat format too [11/18] xfrm: Add compat support for xfrm_user_expire messages [12/18] xfrm: Add compat support for xfrm_userpolicy_info messages [13/18] xfrm: Add compat support for xfrm_user_acquire messages [14/18] xfrm: Add compat support for xfrm_user_polexpire messages [15/18] xfrm: Check compat acquire listeners in xfrm_is_alive() [16/18] xfrm: Notify compat listeners about policy flush [17/18] xfrm: Notify compat listeners about state flush [18/18] xfrm: Enable compat syscalls

Message ID

20180726023144.31066-7-dima@arista.com

State

Awaiting Upstream, archived

Delegated to:

David Miller

Headers

From: Dmitry Safonov <dima@arista.com>
To: linux-kernel@vger.kernel.org
Cc: Dmitry Safonov <dima@arista.com>,
	"David S. Miller" <davem@davemloft.net>,
	Herbert Xu <herbert@gondor.apana.org.au>,
	Steffen Klassert <steffen.klassert@secunet.com>,
	Dmitry Safonov <0x7f454c46@gmail.com>, netdev@vger.kernel.org
Subject: [PATCH 06/18] netlink: Do not subscribe to non-existent groups
Date: Thu, 26 Jul 2018 03:31:32 +0100
Message-Id: <20180726023144.31066-7-dima@arista.com>
In-Reply-To: <20180726023144.31066-1-dima@arista.com>
References: <20180726023144.31066-1-dima@arista.com>
Sender: netdev-owner@vger.kernel.org
Precedence: bulk

Series

xfrm: Add compat layer | expand

Commit Message

Dmitry Safonov July 26, 2018, 2:31 a.m. UTC

Make ABI more strict about subscribing to group > ngroups.
Code doesn't check for that and it looks bogus.
(one can subscribe to non-existing group)
Still, it's possible to bind() to all possible groups with (-1)

Cc: "David S. Miller" <davem@davemloft.net>
Cc: Herbert Xu <herbert@gondor.apana.org.au>
Cc: Steffen Klassert <steffen.klassert@secunet.com>
Cc: netdev@vger.kernel.org
Signed-off-by: Dmitry Safonov <dima@arista.com>
---
 net/netlink/af_netlink.c | 1 +
 1 file changed, 1 insertion(+)

Comments

David Miller July 26, 2018, 4:22 a.m. UTC | #1

From: Dmitry Safonov <dima@arista.com>
Date: Thu, 26 Jul 2018 03:31:32 +0100

> Make ABI more strict about subscribing to group > ngroups.
> Code doesn't check for that and it looks bogus.
> (one can subscribe to non-existing group)
> Still, it's possible to bind() to all possible groups with (-1)
> 
> Cc: "David S. Miller" <davem@davemloft.net>
> Cc: Herbert Xu <herbert@gondor.apana.org.au>
> Cc: Steffen Klassert <steffen.klassert@secunet.com>
> Cc: netdev@vger.kernel.org
> Signed-off-by: Dmitry Safonov <dima@arista.com>

This really has nothing to do with adding a compat layer for xfrm,
and is a bug fix that should be submitted separately in it's own
right.

Dmitry Safonov July 27, 2018, 1:43 p.m. UTC | #2

On Wed, 2018-07-25 at 21:22 -0700, David Miller wrote:
> From: Dmitry Safonov <dima@arista.com>
> Date: Thu, 26 Jul 2018 03:31:32 +0100
> 
> > Make ABI more strict about subscribing to group > ngroups.
> > Code doesn't check for that and it looks bogus.
> > (one can subscribe to non-existing group)
> > Still, it's possible to bind() to all possible groups with (-1)
> > 
> > Cc: "David S. Miller" <davem@davemloft.net>
> > Cc: Herbert Xu <herbert@gondor.apana.org.au>
> > Cc: Steffen Klassert <steffen.klassert@secunet.com>
> > Cc: netdev@vger.kernel.org
> > Signed-off-by: Dmitry Safonov <dima@arista.com>
> 
> This really has nothing to do with adding a compat layer for xfrm,
> and is a bug fix that should be submitted separately in it's own
> right.

Sure, will do.

diff --git a/net/netlink/af_netlink.c b/net/netlink/af_netlink.c
index 393573a99a5a..ac805caed2e2 100644
--- a/net/netlink/af_netlink.c
+++ b/net/netlink/af_netlink.c
@@ -1008,6 +1008,7 @@  static int netlink_bind(struct socket *sock, struct sockaddr *addr,
 		if (err)
 			return err;
 	}
+	groups &= (1UL << nlk->ngroups) - 1;
 
 	bound = nlk->bound;
 	if (bound) {

[06/18] netlink: Do not subscribe to non-existent groups

Commit Message

Comments

Patch