From patchwork Thu Jul 26 02:31:32 2018 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Dmitry Safonov X-Patchwork-Id: 949443 X-Patchwork-Delegate: davem@davemloft.net Return-Path: X-Original-To: patchwork-incoming-netdev@ozlabs.org Delivered-To: patchwork-incoming-netdev@ozlabs.org Authentication-Results: ozlabs.org; spf=none (mailfrom) smtp.mailfrom=vger.kernel.org (client-ip=209.132.180.67; helo=vger.kernel.org; envelope-from=netdev-owner@vger.kernel.org; receiver=) Authentication-Results: ozlabs.org; dmarc=pass (p=quarantine dis=none) header.from=arista.com Authentication-Results: ozlabs.org; dkim=pass (2048-bit key; unprotected) header.d=arista.com header.i=@arista.com header.b="bn8zq0M7"; dkim-atps=neutral Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by ozlabs.org (Postfix) with ESMTP id 41bbkx15rKz9ryl for ; Thu, 26 Jul 2018 12:34:01 +1000 (AEST) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728930AbeGZDsZ (ORCPT ); Wed, 25 Jul 2018 23:48:25 -0400 Received: from mail-ed1-f66.google.com ([209.85.208.66]:43889 "EHLO mail-ed1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728941AbeGZDq0 (ORCPT ); Wed, 25 Jul 2018 23:46:26 -0400 Received: by mail-ed1-f66.google.com with SMTP id b20-v6so326857edt.10 for ; Wed, 25 Jul 2018 19:31:54 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=arista.com; s=googlenew; h=from:to:cc:subject:date:message-id:in-reply-to:references; bh=KPyvd5o+I9Jov49HHmbeHutGib2mspLlbfetN7M1LJA=; b=bn8zq0M7lAwJea4JONbDDYyqexIzxU/As0lvD/oskkExa/sy5ZuwZDOJ0V1FlU6nxS R0I90dDdcY5vbDRh7yGstJGSJFgsznflAlOPXeHuclwJfE72dF9bIlUWIvkHDlCDZ7tG YOeBdzgJ1KJ6NXGRWay7ELBswj0IndWiomcqDCsSrKoSdyy+FZ6uUySKSM8dRlrnEDan kmBStLemWkvujmASB5ZWc5j+jneBZ651wXAuCUCvMowU3Ek8kK6/Q9iN/eogO4SRnOl+ tTZFkuJSjOA5Mfece1tPrkuD6Y3Snp024ZjGaPu50ktCumXSRqU37UjI5nefQHfd77o6 3Dsw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references; bh=KPyvd5o+I9Jov49HHmbeHutGib2mspLlbfetN7M1LJA=; b=GpVHIOPnPmosnvftmxRnWJ7CkBuaS7iymzSDd/lPJd51kt8oC5syaTFA4yoTNK79Do t4nSuQ5Qy1blIauG71mq8wrrZXlpV6clCZHLClNWIytPfYWGTHmt5oWj1el0GFIhl+9K QZJ2JGW0ULQSU/HA9GI6xDQpyTvuSNWr2Ye5PLvDXA7DpL3/6LZTLlzMLnq5B95bvVKA jtsDyXm38Kz2oVDaI4S2zfxbF1rj0yYfxCrWW7iJczhI7rBv2n85J5ZZKoP+NNN00sj1 Rjrrng0WTwwr8TWj67VpUIpwVvHmoU6XxTeEuuYbHkusc4oaq0uObZ2ELDkRd8Q/8PL4 5AOw== X-Gm-Message-State: AOUpUlER7MrrQAohJVan1UB1Pl25/XrAAumY+vmSlxtZL7RazNnSjnoz 1/8Qctab9fxUhI6NJR27TQV6bA== X-Google-Smtp-Source: AAOMgpcSIkFsLpiYtmeWEpYDEK4GRRLgKAcZW3kilt7W7Y9pstzVUsJUtGGFqNtBDZ84+JLiiwnKgw== X-Received: by 2002:a50:b306:: with SMTP id q6-v6mr481068edd.264.1532572313408; Wed, 25 Jul 2018 19:31:53 -0700 (PDT) Received: from dhcp.ire.aristanetworks.com ([217.173.96.166]) by smtp.gmail.com with ESMTPSA id x13-v6sm241024edx.17.2018.07.25.19.31.52 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Wed, 25 Jul 2018 19:31:52 -0700 (PDT) From: Dmitry Safonov To: linux-kernel@vger.kernel.org Cc: Dmitry Safonov , "David S. Miller" , Herbert Xu , Steffen Klassert , Dmitry Safonov <0x7f454c46@gmail.com>, netdev@vger.kernel.org Subject: [PATCH 06/18] netlink: Do not subscribe to non-existent groups Date: Thu, 26 Jul 2018 03:31:32 +0100 Message-Id: <20180726023144.31066-7-dima@arista.com> X-Mailer: git-send-email 2.13.6 In-Reply-To: <20180726023144.31066-1-dima@arista.com> References: <20180726023144.31066-1-dima@arista.com> Sender: netdev-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: netdev@vger.kernel.org Make ABI more strict about subscribing to group > ngroups. Code doesn't check for that and it looks bogus. (one can subscribe to non-existing group) Still, it's possible to bind() to all possible groups with (-1) Cc: "David S. Miller" Cc: Herbert Xu Cc: Steffen Klassert Cc: netdev@vger.kernel.org Signed-off-by: Dmitry Safonov --- net/netlink/af_netlink.c | 1 + 1 file changed, 1 insertion(+) diff --git a/net/netlink/af_netlink.c b/net/netlink/af_netlink.c index 393573a99a5a..ac805caed2e2 100644 --- a/net/netlink/af_netlink.c +++ b/net/netlink/af_netlink.c @@ -1008,6 +1008,7 @@ static int netlink_bind(struct socket *sock, struct sockaddr *addr, if (err) return err; } + groups &= (1UL << nlk->ngroups) - 1; bound = nlk->bound; if (bound) {