Re: [netfilter-core] Re: [lockup] 2.6.17-rc3: netfilter/sctp: lockup in sctp_new(), do_basic_checks()

From: Ingo Molnar
Date: Tue May 02 2006 - 10:33:12 EST

Next message: Al Viro: "Re: Compiling C++ modules"
Previous message: David Woodhouse: "Re: [PATCH] CodingStyle: add typedefs chapter"
In reply to: Patrick McHardy: "Re: [netfilter-core] Re: [lockup] 2.6.17-rc3: netfilter/sctp: lockupin sctp_new(), do_basic_checks()"
Next in thread: Patrick McHardy: "Re: [netfilter-core] Re: [lockup] 2.6.17-rc3: netfilter/sctp: lockupin sctp_new(), do_basic_checks()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Patrick McHardy <kaber@xxxxxxxxx> wrote:

> > + /*
> > + * Dont trust the initial offset:
> > + */
> > + offset = skb->nh.iph->ihl * 4 + sizeof(sctp_sctphdr_t);
> > + if (offset >= skb->len)
> > + return 1;
> > +
>
> That part is unnecessary, the presence of one sctp_sctphdr_t
> has already been verified by skb_header_pointer() in sctp_new().

ok.

> How about this patch (based on your patch, but typos fixed and also
> covers nf_conntrack)?

sure, fine with me!

Ingo
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Al Viro: "Re: Compiling C++ modules"
Previous message: David Woodhouse: "Re: [PATCH] CodingStyle: add typedefs chapter"
In reply to: Patrick McHardy: "Re: [netfilter-core] Re: [lockup] 2.6.17-rc3: netfilter/sctp: lockupin sctp_new(), do_basic_checks()"
Next in thread: Patrick McHardy: "Re: [netfilter-core] Re: [lockup] 2.6.17-rc3: netfilter/sctp: lockupin sctp_new(), do_basic_checks()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]