Re: KMSAN: kernel-infoleak in move_addr_to_user (4)

From: Oliver Hartkopp
Date: Tue Jan 12 2021 - 04:18:31 EST

Next message: Damien Le Moal: "Re: [PATCH] bio: limit bio max size."
Previous message: Stanley Chu: "Re: [PATCH 1/2] scsi: ufs: Fix a possible NULL pointer issue"
In reply to: Cong Wang: "Re: KMSAN: kernel-infoleak in move_addr_to_user (4)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 12.01.21 01:17, Cong Wang wrote:

On Mon, Jan 11, 2021 at 11:33 AM Jakub Kicinski <kuba@xxxxxxxxxx> wrote:

Looks like a AF_CAN socket:

r0 = socket(0x1d, 0x2, 0x6)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)

Right, it seems we need a memset(0) in isotp_getname().

Yes m(

Sent a patch to fix it:

https://lore.kernel.org/linux-can/20210112090457.11262-1-socketcan@xxxxxxxxxxxx/T/#u

Many thanks!

Oliver

Next message: Damien Le Moal: "Re: [PATCH] bio: limit bio max size."
Previous message: Stanley Chu: "Re: [PATCH 1/2] scsi: ufs: Fix a possible NULL pointer issue"
In reply to: Cong Wang: "Re: KMSAN: kernel-infoleak in move_addr_to_user (4)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]