www.infradead.org Git - users/dwmw2/linux.git/commit

author	Guangguan Wang <guangguan.wang@linux.alibaba.com>
	Wed, 11 Dec 2024 09:21:20 +0000 (17:21 +0800)
committer	David S. Miller <davem@davemloft.net>
	Sun, 15 Dec 2024 12:34:59 +0000 (12:34 +0000)
commit	9ab332deb671d8f7e66d82a2ff2b3f715bc3a4ad
tree	167b6df5cefbcfa41048ad2a79f4fdb919aa1b82	tree
parent	7863c9f3d24ba49dbead7e03dfbe40deb5888fdf	commit \| diff

net/smc: check smcd_v2_ext_offset when receiving proposal msg

When receiving proposal msg in server, the field smcd_v2_ext_offset in
proposal msg is from the remote client and can not be fully trusted.
Once the value of smcd_v2_ext_offset exceed the max value, there has
the chance to access wrong address, and crash may happen.

This patch checks the value of smcd_v2_ext_offset before using it.

Fixes: 5c21c4ccafe8 ("net/smc: determine accepted ISM devices")
Signed-off-by: Guangguan Wang <guangguan.wang@linux.alibaba.com>
Reviewed-by: Wen Gu <guwen@linux.alibaba.com>
Reviewed-by: D. Wythe <alibuda@linux.alibaba.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

net/smc/af_smc.c		diff \| blob \| history
net/smc/smc_clc.h		diff \| blob \| history