Re: [PATCH net-next v2 10/10] crypto: af_alg/hash: Support MSG_SPLICE_PAGES

From: Herbert Xu
Date: Tue Jun 06 2023 - 05:31:07 EST

Next message: Geert Uytterhoeven: "Re: [PATCH] net: stmmac: Fix build without PCS_LYNX"
Previous message: Russell King (Oracle): "Re: [PATCH net-next 1/2] net: stmmac: Add PCS_LYNX as a dependency for the whole driver"
In reply to: David Howells: "Re: [PATCH net-next v2 10/10] crypto: af_alg/hash: Support MSG_SPLICE_PAGES"
Next in thread: David Howells: "Re: [PATCH net-next v2 10/10] crypto: af_alg/hash: Support MSG_SPLICE_PAGES"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 06, 2023 at 10:24:55AM +0100, David Howells wrote:
>
> If the iov_iter is a user-backed type (IOVEC or UBUF) then it's not relaxed.
> max_pages is ALG_MAX_PAGES here (actually, I should just move that here so
> that it's clearer).

Even if it's kernel memory they can't be freed during the hashing
operation, which could be long if the amount is large (or the algo
is slow).

The reason for the limit here is to stop a malicious user from
pinning an unlimited amount of memory by doing a hashing operation,
IOW a DoS attack.

So I think we should keep the limit as is.

Cheers,
--
Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Next message: Geert Uytterhoeven: "Re: [PATCH] net: stmmac: Fix build without PCS_LYNX"
Previous message: Russell King (Oracle): "Re: [PATCH net-next 1/2] net: stmmac: Add PCS_LYNX as a dependency for the whole driver"
In reply to: David Howells: "Re: [PATCH net-next v2 10/10] crypto: af_alg/hash: Support MSG_SPLICE_PAGES"
Next in thread: David Howells: "Re: [PATCH net-next v2 10/10] crypto: af_alg/hash: Support MSG_SPLICE_PAGES"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]