Re: [PATCH 1/2] ax25: integer overflows in ax25_setsockopt()

From: Xi Wang
Date: Wed Nov 23 2011 - 09:04:56 EST

Next message: Xander Hover: "[PATCH] b44.c Use dev_kfree_skb_irq() in b44_tx()"
Previous message: Dave Young: "Re: [PATCH v2] kdump: crashk_res init check for /sys/kernel/kexec_crash_size"
In reply to: Alan Cox: "Re: [PATCH 1/2] ax25: integer overflows in ax25_setsockopt()"
Next in thread: Alan Cox: "Re: [PATCH 1/2] ax25: integer overflows in ax25_setsockopt()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

All these magic numbers come from net/ax25/sysctl_net_ax25.c, where
min/max values of each field are set for sysctl. Is it okay to use
them?

- xi

On Wed, Nov 23, 2011 at 5:44 AM, Alan Cox <alan@xxxxxxxxxxxxxxxxxxx> wrote:
>> case AX25_T1:
>> - if (opt < 1) {
>> + if (opt < 1 || opt > 30) {
>
> Where do these values come from ? If they are from some 'standard' then
> really we should avoid restricting needlessly to it, particularly as
> AX.25 isn't well defined and is used for all sorts of crazy stuff where
> the usual range of settings isn't useful.
>
> Restricting to the point it would overflow makes sense however.
>
> Alan
>
>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Xander Hover: "[PATCH] b44.c Use dev_kfree_skb_irq() in b44_tx()"
Previous message: Dave Young: "Re: [PATCH v2] kdump: crashk_res init check for /sys/kernel/kexec_crash_size"
In reply to: Alan Cox: "Re: [PATCH 1/2] ax25: integer overflows in ax25_setsockopt()"
Next in thread: Alan Cox: "Re: [PATCH 1/2] ax25: integer overflows in ax25_setsockopt()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]